SUSE-SLE-Module-Python3-15-SP7-2025-1557 moderate SUSE Updates SLE-Module-Python3 15-SP7 x86 64 This update ships python311-docopt and python311-redis to the Public Cloud Module, and the python311-msgpack to the Python3 module. python-msgpack-1.0.7-150600.3.2.1.src.rpm python-passlib-1.7.4-150600.12.2.1.src.rpm python-sqlparse-0.4.4-150600.3.2.1.src.rpm python311-msgpack-1.0.7-150600.3.2.1.x86_64.rpm python311-passlib-1.7.4-150600.12.2.1.noarch.rpm python311-sqlparse-0.4.4-150600.3.2.1.noarch.rpm SUSE-SLE-Module-Python3-15-SP7-2025-1539 moderate SUSE Updates SLE-Module-Python3 15-SP7 x86 64 This update for csp-billing-adapter fixes the following issues: - Update to version 1.3.1 * Fix bug, Make the datetime timezone aware - Update to version 1.3.0 csp-billing-adapter-1.3.1-150400.9.34.1.src.rpm python311-csp-billing-adapter-1.3.1-150400.9.34.1.noarch.rpm SUSE-SLE-Module-Python3-15-SP7-2025-2057 important SUSE Updates SLE-Module-Python3 15-SP7 x86 64 This update for python311 fixes the following issues: python311 was updated from version 3.11.10 to 3.11.13: - Security issues fixed: * CVE-2025-4516: Fixed blocking DecodeError handling vulnerability, which could lead to DoS (bsc#1243273). * CVE-2024-12718, CVE-2025-4138, CVE-2025-4330, CVE-2025-4517: Fixed multiple issues that allowed tarfile extraction filters to be bypassed using crafted symlinks and hard links (bsc#1244056, bsc#1244059, bsc#1244060, bsc#1244032) - Other changes and bugs fixed: * Improved handling of system call failures that OpenSSL reports (bsc#1241067) * Disable GC during thread operations to prevent deadlocks. * Fixed a potential denial of service vulnerability in the imaplib module. * Fixed bugs in the in the folding of rfc2047 encoded-words and in the folding of quoted strings when flattening an email message using a modern email policy. * Fixed parsing long IPv6 addresses with embedded IPv4 address. * Fixed ipaddress.IPv6Address.reverse_pointer output according to RFC 3596 * Improved the textual representation of IPv4-mapped IPv6 addresses in ipaddress. * ipaddress: fixed hash collisions for IPv4Network and IPv6Network objects * os.path.realpath() now accepts a strict keyword-only argument. * Stop the processing of long IPv6 addresses early in ipaddress to prevent excessive memory consumption and a minor denial-of-service. * Updated bundled libexpat to 2.7.1 * Writers of CPython documentation can now use next as the version for the versionchanged, versionadded, deprecated directives. python311-3.11.13-150600.3.30.1.src.rpm python311-3.11.13-150600.3.30.1.x86_64.rpm python311-core-3.11.13-150600.3.30.1.src.rpm python311-curses-3.11.13-150600.3.30.1.x86_64.rpm python311-dbm-3.11.13-150600.3.30.1.x86_64.rpm python311-devel-3.11.13-150600.3.30.1.x86_64.rpm python311-idle-3.11.13-150600.3.30.1.x86_64.rpm python311-tk-3.11.13-150600.3.30.1.x86_64.rpm python311-tools-3.11.13-150600.3.30.1.x86_64.rpm SUSE-SLE-Module-Python3-15-SP7-2025-1612 moderate SUSE Updates SLE-Module-Python3 15-SP7 x86 64 This update for python-durationpy, python3-kubernetes fixes the following issues: python3-kubernetes was updated from version 26.1.0 to 31.0.0 (jsc#PED-12710, PED-12477): - Key changes in version 31.0.0: - Alignment with significant API changes in Kubernetes. - Enhancements to Dynamic Resource Allocation (DRA) with new API versions and features. - Node improvements like user namespace support and supplemental group policies scheduling performance upgrades. - Changes to API servers include such as atomic updates for Ingress objects and tricter validation of encryption provider configurations. - Kube-proxy now has a "primary" nodeport address option, and several feature gates have graduated or been removed. - Improvements to CustomResourceDefinitions (CRDs), Service CIDR allocation, OCI artifact-based volumes, and logging. - Full list of changes: https://github.com/kubernetes-client/python/blob/v31.0.0/CHANGELOG.md - Key changes in version 29.0.0: - Updates to API versions for scheduling components and priority/fairness mechanism. - Enhanced configuration options for kube-proxy (including a new experimental mode). - Improved handling of authentication and authorization through configuration files. - New capabilities for pod lifecycle management (pre-stop hooks), resource management (image garbage collection), and network configuration, along with more flexible options for pod affinity and anti-affinity rules. - Full list of changes: https://github.com/kubernetes-client/python/blob/v29.0.0/CHANGELOG.md#v2900 - Key changes in version 28.1.0: - API improvements and updates, notably the removal of a deprecated API version for kube-scheduler configurations, requiring migration. - New features were also added, such as sidecar containers for enhanced pod lifecycle management, more granular control over Job retry limits, and improvements to CustomResourceDefinition (CRD) validation. - Updates were also made to pod management, networking, and security, with a general focus on enhancing flexibility, performance, and user experience. - Full list of changes: https://github.com/kubernetes-client/python/blob/v28.1.0/CHANGELOG.md - Key changes in version 27.2.0: - Enhancements to admission control policies, including features for runtime cost calculation and audit annotations. - Networking received updates with a new ClusterIP allocator, and a new API (ClusterTrustBundle) was introduced. - Scheduling was optimized through adjustments to pod affinity, and API interactions were improved with the implementation of streaming for the watch-cache. - Component updates included increased QPS limits for the kubelet. - Changes related to pods involve label updates, mutable resource type and resize policies. - Changes to API server encryption. - Improved logging capabilities. - Deprecations and removals of older features. - Full list of changes: https://github.com/kubernetes-client/python/blob/v27.2.0/CHANGELOG.md python-durationpy-0.9-150400.9.6.2.src.rpm python3-durationpy-0.9-150400.9.6.2.x86_64.rpm python311-durationpy-0.9-150400.9.6.2.x86_64.rpm SUSE-SLE-Module-Python3-15-SP7-2025-1730 moderate SUSE Updates SLE-Module-Python3 15-SP7 x86 64 This update for lifecycle-data-sle-module-python3 fixes the following issues: - document python312 and python313 lifecycle (jsc#PED-12726) - extend python311 lifecycle (jsc#PED-12726) lifecycle-data-sle-module-python3-1-150400.9.6.1.noarch.rpm lifecycle-data-sle-module-python3-1-150400.9.6.1.src.rpm SUSE-SLE-Module-Python3-15-SP7-2025-1662 low SUSE Updates SLE-Module-Python3 15-SP7 x86 64 This update for python-cryptography fixes the following issues: - CVE-2025-3416: openssl: use-after-free in `Md::fetch` and `Cipher::fetch` when `Some(...)` value passed as `properties` argument to either function (bsc#1242631). python-cryptography-41.0.3-150600.23.6.1.src.rpm python311-cryptography-41.0.3-150600.23.6.1.x86_64.rpm SUSE-SLE-Module-Python3-15-SP7-2025-1649 important SUSE Updates SLE-Module-Python3 15-SP7 x86 64 This update for python-tornado6 fixes the following issues: - CVE-2025-47287: excessive logging when parsing malformed `multipart/form-data` can lead to a denial-of-service (bsc#1243268). python-tornado6-6.3.2-150400.9.9.1.src.rpm python311-tornado6-6.3.2-150400.9.9.1.x86_64.rpm SUSE-SLE-Module-Python3-15-SP7-2025-1704 important SUSE Updates SLE-Module-Python3 15-SP7 x86 64 This update for python-setuptools fixes the following issues: - CVE-2025-47273: path traversal in PackageIndex.download may lead to an arbitrary file write (bsc#1243313). python-setuptools-67.7.2-150400.3.19.1.src.rpm python311-setuptools-67.7.2-150400.3.19.1.noarch.rpm SUSE-SLE-Module-Python3-15-SP7-2025-2215 moderate SUSE Updates SLE-Module-Python3 15-SP7 x86 64 This update for firewalld fixes the following issue: Align with up to update python stack tools. This update also ships python311-firewall and python311-dbus-python to the Python3 Module. firewalld-2.0.1-150600.3.9.1.src.rpm python-dbus-python-1.3.2-150600.3.4.1.src.rpm python311-dbus-python-1.3.2-150600.3.4.1.x86_64.rpm python311-firewall-2.0.1-150600.3.9.1.noarch.rpm SUSE-SLE-Module-Python3-15-SP7-2025-1744 important SUSE Updates SLE-Module-Python3 15-SP7 x86 64 This update for python313-setuptools fixes the following issues: - CVE-2025-47273: path traversal in PackageIndex.download may lead to an arbitrary file write (bsc#1243313). python313-setuptools-72.1.0-150700.3.3.1.noarch.rpm python313-setuptools-72.1.0-150700.3.3.1.src.rpm SUSE-SLE-Module-Python3-15-SP7-2025-1827 low SUSE Updates SLE-Module-Python3 15-SP7 x86 64 This update python-six fixes the following issue: - Rebuild for consistency across products, no source changes. python-six-1.16.0-150400.18.11.1.src.rpm python311-six-1.16.0-150400.18.11.1.noarch.rpm SUSE-SLE-Module-Python3-15-SP7-2025-2265 moderate SUSE Updates SLE-Module-Python3 15-SP7 x86 64 This update for ansible-core fixes the following issue: - Fix distribution.py source code to identify the correct distribution for server-sap and micro. python-PyYAML-6.0.1-150400.5.11.1.src.rpm python311-PyYAML-6.0.1-150400.5.11.1.x86_64.rpm SUSE-SLE-Module-Python3-15-SP7-2025-2205 moderate SUSE Updates SLE-Module-Python3 15-SP7 x86 64 This update for python-requests fixes the following issues: - CVE-2024-47081: fixes netrc credential leak (bsc#1244039). python-requests-2.31.0-150400.6.18.1.src.rpm python311-requests-2.31.0-150400.6.18.1.noarch.rpm SUSE-SLE-Module-Python3-15-SP7-2025-2074 important SUSE Updates SLE-Module-Python3 15-SP7 x86 64 This update for python313 fixes the following issues: Update to version 3.13.5. Security issues fixed: - CVE-2025-4517: arbitrary filesystem writes outside the extraction directory during extraction with filter="data" (bsc#1244032) - CVE-2025-4516: use-after-free in the unicode-escape decoder when using the error handler (bsc#1243273). - CVE-2025-4330: extraction filter bypass for linking outside extraction directory (bsc#1244060) - CVE-2025-4138: may allow symlink targets to point outside the destination directory, and the modification of some file metadata. (bsc#1244059) - CVE-2025-0938: domain names containing square brackets are not identified as incorrect by urlparse (bsc#1236705). - CVE-2024-12718: bypass extraction filter to modify file metadata outside extraction directory (bsc#1244056) - CVE-2024-12254: memory exhaustion due to unbounded memory buffering in `SelectorSocketTransport.writelines()` (bsc#1234290). Other changes and issues fixed: Changes from 3.13.5: - Tests - gh-135120: Add test.support.subTests(). - Library - gh-133967: Do not normalize locale name ‘C.UTF-8’ to ‘en_US.UTF-8’. - gh-135326: Restore support of integer-like objects with __index__() in random.getrandbits(). - gh-135321: Raise a correct exception for values greater than 0x7fffffff for the BINSTRING opcode in the C implementation of pickle. - gh-135276: Backported bugfixes in zipfile.Path from zipp 3.23. Fixed .name, .stem and other basename-based properties on Windows when working with a zipfile on disk. - gh-134151: email: Fix TypeError in email.utils.decode_params() when sorting RFC 2231 continuations that contain an unnumbered section. - gh-134152: email: Fix parsing of email message ID with invalid domain. - gh-127081: Fix libc thread safety issues with os by replacing getlogin with getlogin_r re-entrant version. - gh-131884: Fix formatting issues in json.dump() when both indent and skipkeys are used. - Core and Builtins - gh-135171: Roll back changes to generator and list comprehensions that went into 3.13.4 to fix gh-127682, but which involved semantic and bytecode changes not appropriate for a bugfix release. - C API - gh-134989: Fix Py_RETURN_NONE, Py_RETURN_TRUE and Py_RETURN_FALSE macros in the limited C API 3.11 and older: don’t treat Py_None, Py_True and Py_False as immortal. Patch by Victor Stinner. - gh-134989: Implement PyObject_DelAttr() and PyObject_DelAttrString() as macros in the limited C API 3.12 and older. Patch by Victor Stinner. Changes from 3.13.4: - Security - gh-135034: Fixes multiple issues that allowed tarfile extraction filters (filter="data" and filter="tar") to be bypassed using crafted symlinks and hard links. Addresses CVE-2024-12718 (bsc#1244056), CVE-2025-4138 (bsc#1244059), CVE-2025-4330 (bsc#1244060), and CVE-2025-4517 (bsc#1244032). - gh-133767: Fix use-after-free in the “unicode-escape” decoder with a non-“strict” error handler (CVE-2025-4516, bsc#1243273). - gh-128840: Short-circuit the processing of long IPv6 addresses early in ipaddress to prevent excessive memory consumption and a minor denial-of-service. - Library - gh-134718: ast.dump() now only omits None and [] values if they are default values. - gh-128840: Fix parsing long IPv6 addresses with embedded IPv4 address. - gh-134696: Built-in HACL* and OpenSSL implementations of hash function constructors now correctly accept the same documented named arguments. For instance, md5() could be previously invoked as md5(data=data) or md5(string=string) depending on the underlying implementation but these calls were not compatible. Patch by Bénédikt Tran. - gh-134210: curses.window.getch() now correctly handles signals. Patch by Bénédikt Tran. - gh-80334: multiprocessing.freeze_support() now checks for work on any “spawn” start method platform rather than only on Windows. - gh-114177: Fix asyncio to not close subprocess pipes which would otherwise error out when the event loop is already closed. - gh-134152: Fixed UnboundLocalError that could occur during email header parsing if an expected trailing delimiter is missing in some contexts. - gh-62184: Remove import of C implementation of io.FileIO from Python implementation which has its own implementation - gh-133982: Emit RuntimeWarning in the Python implementation of io when the file-like object is not closed explicitly in the presence of multiple I/O layers. - gh-133890: The tarfile module now handles UnicodeEncodeError in the same way as OSError when cannot extract a member. - gh-134097: Fix interaction of the new REPL and -X showrefcount command line option. - gh-133889: The generated directory listing page in http.server.SimpleHTTPRequestHandler now only shows the decoded path component of the requested URL, and not the query and fragment. - gh-134098: Fix handling paths that end with a percent-encoded slash (%2f or %2F) in http.server.SimpleHTTPRequestHandler. - gh-134062: ipaddress: fix collisions in __hash__() for IPv4Network and IPv6Network objects. - gh-133745: In 3.13.3 we accidentally changed the signature of the asyncio create_task() family of methods and how it calls a custom task factory in a backwards incompatible way. Since some 3rd party libraries have already made changes to work around the issue that might break if we simply reverted the changes, we’re instead changing things to be backwards compatible with 3.13.2 while still supporting those workarounds for 3.13.3. In particular, the special-casing of name and context is back (until 3.14) and consequently eager tasks may still find that their name hasn’t been set before they execute their first yielding await. - gh-71253: Raise ValueError in open() if opener returns a negative file-descriptor in the Python implementation of io to match the C implementation. - gh-77057: Fix handling of invalid markup declarations in html.parser.HTMLParser. - gh-133489: random.getrandbits() can now generate more that 231 bits. random.randbytes() can now generate more that 256 MiB. - gh-133290: Fix attribute caching issue when setting ctypes._Pointer._type_ in the undocumented and deprecated ctypes.SetPointerType() function and the undocumented set_type() method. - gh-132876: ldexp() on Windows doesn’t round subnormal results before Windows 11, but should. Python’s math.ldexp() wrapper now does round them, so results may change slightly, in rare cases of very small results, on Windows versions before 11. - gh-133089: Use original timeout value for subprocess.TimeoutExpired when the func subprocess.run() is called with a timeout instead of sometimes a confusing partial remaining time out value used internally on the final wait(). - gh-133009: xml.etree.ElementTree: Fix a crash in Element.__deepcopy__ when the element is concurrently mutated. Patch by Bénédikt Tran. - gh-132995: Bump the version of pip bundled in ensurepip to version 25.1.1 - gh-132017: Fix error when pyrepl is suspended, then resumed and terminated. - gh-132673: Fix a crash when using _align_ = 0 and _fields_ = [] in a ctypes.Structure. - gh-132527: Include the valid typecode ‘w’ in the error message when an invalid typecode is passed to array.array. - gh-132439: Fix PyREPL on Windows: characters entered via AltGr are swallowed. Patch by Chris Eibl. - gh-132429: Fix support of Bluetooth sockets on NetBSD and DragonFly BSD. - gh-132106: QueueListener.start now raises a RuntimeError if the listener is already started. - gh-132417: Fix a NULL pointer dereference when a C function called using ctypes with restype py_object returns NULL. - gh-132385: Fix instance error suggestions trigger potential exceptions in object.__getattr__() in traceback. - gh-132308: A traceback.TracebackException now correctly renders the __context__ and __cause__ attributes from falsey Exception, and the exceptions attribute from falsey ExceptionGroup. - gh-132250: Fixed the SystemError in cProfile when locating the actual C function of a method raises an exception. - gh-132063: Prevent exceptions that evaluate as falsey (namely, when their __bool__ method returns False or their __len__ method returns 0) from being ignored by concurrent.futures.ProcessPoolExecutor and concurrent.futures.ThreadPoolExecutor. - gh-119605: Respect follow_wrapped for __init__() and __new__() methods when getting the class signature for a class with inspect.signature(). Preserve class signature after wrapping with warnings.deprecated(). Patch by Xuehai Pan. - gh-91555: Ignore log messages generated during handling of log messages, to avoid deadlock or infinite recursion. - gh-131434: Improve error reporting for incorrect format in time.strptime(). - gh-131127: Systems using LibreSSL now successfully build. - gh-130999: Avoid exiting the new REPL and offer suggestions even if there are non-string candidates when errors occur. - gh-130941: Fix configparser.ConfigParser parsing empty interpolation with allow_no_value set to True. - gh-129098: Fix REPL traceback reporting when using compile() with an inexisting file. Patch by Bénédikt Tran. - gh-130631: http.cookiejar.join_header_words() is now more similar to the original Perl version. It now quotes the same set of characters and always quote values that end with "\n". - gh-129719: Fix missing socket.CAN_RAW_ERR_FILTER constant in the socket module on Linux systems. It was missing since Python 3.11. - gh-124096: Turn on virtual terminal mode and enable bracketed paste in REPL on Windows console. (If the terminal does not support bracketed paste, enabling it does nothing.) - gh-122559: Remove __reduce__() and __reduce_ex__() methods that always raise TypeError in the C implementation of io.FileIO, io.BufferedReader, io.BufferedWriter and io.BufferedRandom and replace them with default __getstate__() methods that raise TypeError. This restores fine details of behavior of Python 3.11 and older versions. - gh-122179: hashlib.file_digest() now raises BlockingIOError when no data is available during non-blocking I/O. Before, it added spurious null bytes to the digest. - gh-86155: html.parser.HTMLParser.close() no longer loses data when the <script> tag is not closed. Patch by Waylan Limberg. - gh-69426: Fix html.parser.HTMLParser to not unescape character entities in attribute values if they are followed by an ASCII alphanumeric or an equals sign. - bpo-44172: Keep a reference to original curses windows in subwindows so that the original window does not get deleted before subwindows. - Tests - gh-133744: Fix multiprocessing interrupt test. Add an event to synchronize the parent process with the child process: wait until the child process starts sleeping. Patch by Victor Stinner. - gh-133639: Fix TestPyReplAutoindent.test_auto_indent_default() doesn’t run input_code. - gh-133131: The iOS testbed will now select the most recently released “SE-class” device for testing if a device isn’t explicitly specified. - gh-109981: The test helper that counts the list of open file descriptors now uses the optimised /dev/fd approach on all Apple platforms, not just macOS. This avoids crashes caused by guarded file descriptors. - IDLE - gh-112936: fix IDLE: no Shell menu item in single-process mode. - Documentation - gh-107006: Move documentation and example code for threading.local from its docstring to the official docs. - Core and Builtins - gh-134908: Fix crash when iterating over lines in a text file on the free threaded build. - gh-127682: No longer call __iter__ twice in list comprehensions. This brings the behavior of list comprehensions in line with other forms of iteration - gh-134381: Fix RuntimeError when using a not-started threading.Thread after calling os.fork() - gh-128066: Fixes an edge case where PyREPL improperly threw an error when Python is invoked on a read only filesystem while trying to write history file entries. - gh-134100: Fix a use-after-free bug that occurs when an imported module isn’t in sys.modules after its initial import. Patch by Nico-Posada. - gh-133703: Fix hashtable in dict can be bigger than intended in some situations. - gh-132869: Fix crash in the free threading build when accessing an object attribute that may be concurrently inserted or deleted. - gh-132762: fromkeys() no longer loops forever when adding a small set of keys to a large base dict. Patch by Angela Liss. - gh-133543: Fix a possible memory leak that could occur when directly accessing instance dictionaries (__dict__) that later become part of a reference cycle. - gh-133516: Raise ValueError when constants True, False or None are used as an identifier after NFKC normalization. - gh-133441: Fix crash upon setting an attribute with a dict subclass. Patch by Victor Stinner. - gh-132942: Fix two races in the type lookup cache. This affected the free-threaded build and could cause crashes (apparently quite difficult to trigger). - gh-132713: Fix repr(list) race condition: hold a strong reference to the item while calling repr(item). Patch by Victor Stinner. - gh-132747: Fix a crash when calling __get__() of a method with a None second argument. - gh-132542: Update Thread.native_id after fork(2) to ensure accuracy. Patch by Noam Cohen. - gh-124476: Fix decoding from the locale encoding in the C.UTF-8 locale. - gh-131927: Compiler warnings originating from the same module and line number are now only emitted once, matching the behaviour of warnings emitted from user code. This can also be configured with warnings filters. - gh-127682: No longer call __iter__ twice when creating and executing a generator expression. Creating a generator expression from a non-interable will raise only when the generator expression is executed. This brings the behavior of generator expressions in line with other generators. - gh-131878: Handle uncaught exceptions in the main input loop for the new REPL. - gh-131878: Fix support of unicode characters with two or more codepoints on Windows in the new REPL. - gh-130804: Fix support of unicode characters on Windows in the new REPL. - gh-130070: Fixed an assertion error for exec() passed a string source and a non-None closure. Patch by Bartosz Sławecki. - gh-129958: Fix a bug that was allowing newlines inconsitently in format specifiers for single-quoted f-strings. Patch by Pablo Galindo. - C API - gh-132909: Fix an overflow when handling the K format in Py_BuildValue(). Patch by Bénédikt Tran. - Changes from version 3.13.3 - Tools/Demos - gh-131852: msgfmt no longer adds the POT-Creation-Date to generated .mo files for consistency with GNU msgfmt. - gh-85012: Correctly reset msgctxt when compiling messages in msgfmt. - gh-130025: The iOS testbed now correctly handles symlinks used as Python framework references. - Tests - gh-131050: test_ssl.test_dh_params is skipped if the underlying TLS library does not support finite-field ephemeral Diffie-Hellman. - gh-129200: Multiple iOS testbed runners can now be started at the same time without introducing an ambiguity over simulator ownership. - gh-130292: The iOS testbed will now run successfully on a machine that has not previously run Xcode tests (such as CI configurations). - gh-130293: The tests of terminal colorization are no longer sensitive to the value of the TERM variable in the testing environment. - gh-126332: Add unit tests for pyrepl. - Security - gh-131809: Update bundled libexpat to 2.7.1 - gh-131261: Upgrade to libexpat 2.7.0 - gh-127371: Avoid unbounded buffering for tempfile.SpooledTemporaryFile.writelines(). Previously, disk spillover was only checked after the lines iterator had been exhausted. This is now done after each line is written. - gh-121284: Fix bug in the folding of rfc2047 encoded-words when flattening an email message using a modern email policy. Previously when an encoded-word was too long for a line, it would be decoded, split across lines, and re-encoded. But commas and other special characters in the original text could be left unencoded and unquoted. This could theoretically be used to spoof header lines using a carefully constructed encoded-word if the resulting rendered email was transmitted or re-parsed. - Library - gh-132174: Fix function name in error message of _interpreters.run_string. - gh-132171: Fix crash of _interpreters.run_string on string subclasses. - gh-129204: Introduce new _PYTHON_SUBPROCESS_USE_POSIX_SPAWN environment variable knob in subprocess to control the use of os.posix_spawn(). - gh-132159: Do not shadow user arguments in generated __new__() by decorator warnings.deprecated. Patch by Xuehai Pan. - gh-132075: Fix possible use of socket address structures with uninitialized members. Now all structure members are initialized with zeroes by default. - gh-132002: Fix crash when deallocating contextvars.ContextVar with weird unahashable string names. - gh-131668: socket: Fix code parsing AF_BLUETOOTH socket addresses. - gh-131492: Fix a resource leak when constructing a gzip.GzipFile with a filename fails, for example when passing an invalid compresslevel. - gh-131325: Fix sendfile fallback implementation to drain data after writing to transport in asyncio. - gh-129843: Fix incorrect argument passing in warnings.warn_explicit(). - gh-131204: Use monospace font from System Font Stack for cross-platform support in difflib.HtmlDiff. - gh-130940: The PyConfig.use_system_logger attribute, introduced in Python 3.13.2, has been removed. The introduction of this attribute inadvertently introduced an ABI breakage on macOS and iOS. The use of the system logger is now enabled by default on iOS, and disabled by default on macOS. - gh-131045: Fix issue with __contains__, values, and pseudo-members for enum.Flag. - gh-130959: Fix pure-Python implementation of datetime.time.fromisoformat() to reject times with spaces in fractional part (for example, 12:34:56.400 +02:00), matching the C implementation. Patch by Michał Gorny. - gh-130637: Add validation for numeric response data in poplib.POP3.stat() method - gh-130461: Remove .. index:: directives from the uuid module documentation. These directives previously created entries in the general index for getnode() as well as the uuid1(), uuid3(), uuid4(), and uuid5() constructor functions. - gh-130379: The zipapp module now calculates the list of files to be added to the archive before creating the archive. This avoids accidentally including the target when it is being created in the source directory. - gh-130285: Fix corner case for random.sample() allowing the counts parameter to specify an empty population. So now, sample([], 0, counts=[]) and sample('abc', k=0, counts=[0, 0, 0]) both give the same result as sample([], 0). - gh-130250: Fix regression in traceback.print_last(). - gh-130230: Fix crash in pow() with only Decimal third argument. - gh-118761: Reverts a change in the previous release attempting to make some stdlib imports used within the subprocess module lazy as this was causing errors during __del__ finalizers calling methods such as terminate, or kill, or send_signal. - gh-130164: Fixed failure to raise TypeError in inspect.Signature.bind() for positional-only arguments provided by keyword when a variadic keyword argument (e.g. --kwargs) is present. - gh-130151: Fix reference leaks in _hashlib.hmac_new() and _hashlib.hmac_digest(). Patch by Bénédikt Tran. - gh-130145: Fix asyncio.AbstractEventloop.run_forever() when another loop is already running. - gh-129726: Fix gzip.GzipFile raising an unraisable exception during garbage collection when referring to a temporary object by breaking the reference loop with weakref. - gh-127750: Remove broken functools.singledispatchmethod() caching introduced in gh-85160. - gh-129583: Update bundled pip to 25.0.1 - gh-97850: Update the deprecation warning of importlib.abc.Loader.load_module(). - gh-129646: Update the locale alias mapping in the locale module to match the latest X Org locale alias mapping and support new locales in Glibc 2.41. - gh-129603: Fix bugs where sqlite3.Row objects could segfault if their inherited description was set to None. Patch by Erlend Aasland. - gh-128231: Execution of multiple statements in the new REPL now stops immediately upon the first exception encountered. Patch by Bartosz Sławecki. - gh-117779: Fix reading duplicated entries in zipfile by name. Reading duplicated entries (except the last one) by ZipInfo now emits a warning instead of raising an exception. - gh-128772: Fix pydoc for methods with the __module__ attribute equal to None. - gh-92897: Scheduled the deprecation of the check_home argument of sysconfig.is_python_build() to Python 3.15. - gh-128657: Fix possible extra reference when using objects returned by hashlib.sha256() under free threading. - gh-128703: Fix mimetypes.guess_type() to use default mapping for empty Content-Type in registry. - gh-128308: Support the name keyword argument for eager tasks in asyncio.loop.create_task(), asyncio.create_task() and asyncio.TaskGroup.create_task(), by passing on all kwargs to the task factory set by asyncio.loop.set_task_factory(). - gh-128388: Fix PyREPL on Windows to support more keybindings, like the Control-← and Control-→ word-skipping keybindings and those with meta (i.e. Alt), e.g. Alt-d to kill-word or Alt-Backspace backward-kill-word. - gh-126037: xml.etree.ElementTree: Fix a crash in Element.find, Element.findtext and Element.findall when the tag to find implements an __eq__() method mutating the element being queried. Patch by Bénédikt Tran. - gh-127712: Fix handling of the secure argument of logging.handlers.SMTPHandler. - gh-126033: xml.etree.ElementTree: Fix a crash in Element.remove when the element is concurrently mutated. Patch by Bénédikt Tran. - gh-118201: Fixed intermittent failures of os.confstr, os.pathconf and os.sysconf on iOS and Android. - gh-124927: Non-printing characters are now properly handled in the new REPL. - IDLE - gh-129873: Simplify displaying the IDLE doc by only copying the text section of idle.html to idlelib/help.html. Patch by Stan Ulbrych. - Documentation - gh-131417: Mention asyncio.Future and asyncio.Task in generic classes list. - gh-125722: Require Sphinx 8.2.0 or later to build the Python documentation. Patch by Adam Turner. - gh-129712: The wheel tags supported by each macOS universal SDK option are now documented. - gh-46236: C API: Document PyUnicode_RSplit(), PyUnicode_Partition() and PyUnicode_RPartition(). - Core and Builtins - gh-132011: Fix crash when calling list.append() as an unbound method. - gh-131998: Fix a crash when using an unbound method descriptor object in a function where a bound method descriptor was used. - gh-131988: Fix a performance regression that caused scaling bottlenecks in the free threaded build in 3.13.1 and 3.13.2. - gh-131719: Fix missing NULL check in _PyMem_FreeDelayed in free-threaded build. - gh-131670: Fix anext() failing on sync __anext__() raising an exception. - gh-131141: Fix data race in sys.monitoring instrumentation while registering callback. - gh-130932: Fix incorrect exception handling in _PyModule_IsPossiblyShadowing - gh-130851: Fix a crash in the free threading build when constructing a code object with co_consts that contains instances of types that are not otherwise generated by the bytecode compiler. - gh-130794: Fix memory leak in the free threaded build when resizing a shared list or dictionary from multiple short-lived threads. - gh-130775: Do not crash on negative column and end_column in ast locations. - gh-130382: Fix PyRefTracer_DESTROY not being sent from Python/ceval.c Py_DECREF(). - gh-130618: Fix a bug that was causing UnicodeDecodeError or SystemError to be raised when using f-strings with lambda expressions with non-ASCII characters. Patch by Pablo Galindo - gh-130163: Fix possible crashes related to concurrent change and use of the sys module attributes. - gh-88887: Fixing multiprocessing Resource Tracker process leaking, usually observed when running Python as PID 1. - gh-130115: Fix an issue with thread identifiers being sign-extended on some platforms. - gh-128396: Fix a crash that occurs when calling locals() inside an inline comprehension that uses the same local variable as the outer frame scope where the variable is a free or cell var. - gh-116042: Fix location for SyntaxErrors of invalid escapes in the tokenizer. Patch by Pablo Galindo - gh-129983: Fix data race in compile_template in sre.c. - gh-129967: Fix a race condition in the free threading build when repr(set) is called concurrently with set.clear(). - gh-129900: Fix return codes inside SystemExit not getting returned by the REPL. - gh-129732: Fixed a race in _Py_qsbr_reserve in the free threading build. - gh-129643: Fix thread safety of PyList_Insert() in free-threading builds. - gh-129668: Fix race condition when raising MemoryError in the free threaded build. - gh-129643: Fix thread safety of PyList_SetItem() in free-threading builds. Patch by Kumar Aditya. - gh-128714: Fix the potential races in get/set dunder methods __annotations__, __annotate__ and __type_params__ for function object, and add related tests. - gh-128632: Disallow __classdict__ as the name of a type parameter. Using this name would previously crash the interpreter in some circumstances. - gh-127953: The time to handle a LINE event in sys.monitoring (and sys.settrace) is now independent of the number of lines in the code object. - gh-125331: from __future__ import barry_as_FLUFL now works in more contexts, including when it is used in files, with the -c flag, and in the REPL when there are multiple statements on the same line. Previously, it worked only on subsequent lines in the REPL, and when the appropriate flags were passed directly to compile(). Patch by Pablo Galindo. - C API - gh-131740: Update PyUnstable_GC_VisitObjects to traverse perm gen. - gh-129533: Update PyGC_Enable(), PyGC_Disable(), PyGC_IsEnabled() to use atomic operation for thread-safety at free-threading build. Patch by Donghee Na. - Build - gh-131865: The DTrace build now properly passes the CC and CFLAGS variables to the dtrace command when utilizing SystemTap on Linux. - gh-131675: Fix mimalloc library builds for 32-bit ARM targets. - gh-130673: Fix potential KeyError when handling object sections during JIT building process. - gh-130740: Ensure that Python.h is included before stdbool.h unless pyconfig.h is included before or in some platform-specific contexts. - gh-129838: Don’t redefine _Py_NO_SANITIZE_UNDEFINED when compiling with a recent GCC version and undefined sanitizer enabled. - gh-129660: Drop test_embed from PGO training, whose contribution in recent versions is considered to be ignorable. - Changes from version 3.13.2: - Tools/Demos - gh-128152: Fix a bug where Argument Clinic’s C pre-processor parser tried to parse pre-processor directives inside C comments. Patch by Erlend Aasland. - Tests - gh-127906: Test the limited C API in test_cppext. Patch by Victor Stinner. - gh-127637: Add tests for the dis command-line interface. Patch by Bénédikt Tran. - gh-126925: iOS test results are now streamed during test execution, and the deprecated xcresulttool is no longer used. - Security - gh-105704: When using urllib.parse.urlsplit() and urllib.parse.urlparse() host parsing would not reject domain names containing square brackets ([ and ]). Square brackets are only valid for IPv6 and IPvFuture hosts according to RFC 3986 Section 3.2.2. (CVE-2025-0938, bsc#1236705) - gh-127655: Fixed the asyncio.selector_events._SelectorSocketTransport transport not pausing writes for the protocol when the buffer reaches the high water mark when using asyncio.WriteTransport.writelines() (CVE-2024-12254, bsc#1234290). - gh-126108: Fix a possible NULL pointer dereference in PySys_AddWarnOptionUnicode(). - gh-80222: Fix bug in the folding of quoted strings when flattening an email message using a modern email policy. Previously when a quoted string was folded so that it spanned more than one line, the surrounding quotes and internal escapes would be omitted. This could theoretically be used to spoof header lines using a carefully constructed quoted string if the resulting rendered email was transmitted or re-parsed. - gh-119511: Fix a potential denial of service in the imaplib module. When connecting to a malicious server, it could cause an arbitrary amount of memory to be allocated. On many systems this is harmless as unused virtual memory is only a mapping, but if this hit a virtual address size limit it could lead to a MemoryError or other process crash. On unusual systems or builds where all allocated memory is touched and backed by actual ram or storage it could’ve consumed resources doing so until similarly crashing. - Library - gh-129502: Unlikely errors in preparing arguments for ctypes callback are now handled in the same way as errors raised in the callback of in converting the result of the callback – using sys.unraisablehook() instead of sys.excepthook() and not setting sys.last_exc and other variables. - gh-129403: Corrected ValueError message for asyncio.Barrier and threading.Barrier. - gh-129409: Fix an integer overflow in the csv module when writing a data field larger than 2GB. - gh-118761: Improve import time of subprocess by lazy importing locale and signal. Patch by Taneli Hukkinen. - gh-129346: In sqlite3, handle out-of-memory when creating user-defined SQL functions. - gh-129061: Fix FORCE_COLOR and NO_COLOR when empty strings. Patch by Hugo van Kemenade. - gh-128550: Removed an incorrect optimization relating to eager tasks in asyncio.TaskGroup that resulted in cancellations being missed. - gh-128991: Release the enter frame reference within bdb callback - gh-128978: Fix a NameError in sysconfig.expand_makefile_vars(). Patch by Bénédikt Tran. - gh-128961: Fix a crash when setting state on an exhausted array.array iterator. - gh-128894: Fix traceback.TracebackException._format_syntax_error not to fail on exceptions with custom metadata. - gh-128916: Do not attempt to set SO_REUSEPORT on sockets of address families other than AF_INET and AF_INET6, as it is meaningless with these address families, and the call with fail with Linux kernel 6.12.9 and newer. - gh-128679: Fix tracemalloc.stop() race condition. Fix tracemalloc to support calling tracemalloc.stop() in one thread, while another thread is tracing memory allocations. Patch by Victor Stinner. - gh-128636: Fix PyREPL failure when os.environ is overwritten with an invalid value. - gh-128562: Fix possible conflicts in generated tkinter widget names if the widget class name ends with a digit. - gh-128498: Default to stdout isatty for color detection instead of stderr. Patch by Hugo van Kemenade. - gh-128552: Fix cyclic garbage introduced by asyncio.loop.create_task() and asyncio.TaskGroup.create_task() holding a reference to the created task if it is eager. - gh-128479: Fix asyncio.staggered.staggered_race() leaking tasks and issuing an unhandled exception. - gh-128400: Fix crash when using faulthandler.dump_traceback() while other threads are active on the free threaded build. - gh-88834: Unify the instance check for typing.Union and types.UnionType: Union now uses the instance checks against its parameters instead of the subclass checks. - gh-128302: Fix xml.dom.xmlbuilder.DOMEntityResolver.resolveEntity(), which was broken by the Python 3.0 transition. - gh-128302: Allow xml.dom.xmlbuilder.DOMParser.parse() to correctly handle xml.dom.xmlbuilder.DOMInputSource instances that only have a systemId attribute set. - gh-112064: Fix incorrect handling of negative read sizes in HTTPResponse.read. Patch by Yury Manushkin. - gh-58956: Fixed a frame reference leak in bdb. - gh-128131: Completely support random access of uncompressed unencrypted read-only zip files obtained by ZipFile.open. - gh-112328: enum.EnumDict can now be used without resorting to private API. - gh-127975: Avoid reusing quote types in ast.unparse() if not needed. - gh-128062: Revert the font of turtledemo’s menu bar to its default value and display the shortcut keys in the correct position. - gh-128014: Fix resetting the default window icon by passing default='' to the tkinter method wm_iconbitmap(). - gh-115514: Fix exceptions and incomplete writes after asyncio._SelectorTransport is closed before writes are completed. - gh-41872: Fix quick extraction of module docstrings from a file in pydoc. It now supports docstrings with single quotes, escape sequences, raw string literals, and other Python syntax. - gh-127060: Set TERM environment variable to “dumb” to disable traceback colors in IDLE, since IDLE doesn’t understand ANSI escape sequences. Patch by Victor Stinner. - gh-126742: Fix support of localized error messages reported by dlerror(3) and gdbm_strerror in ctypes and dbm.gnu functions respectively. Patch by Bénédikt Tran. - gh-127873: When -E is set, only ignore PYTHON_COLORS and not FORCE_COLOR/NO_COLOR/TERM when colourising output. Patch by Hugo van Kemenade. - gh-127870: Detect recursive calls in ctypes _as_parameter_ handling. Patch by Victor Stinner. - gh-127847: Fix the position when doing interleaved seeks and reads in uncompressed, unencrypted zip files returned by zipfile.ZipFile.open(). - gh-127732: The platform module now correctly detects Windows Server 2025. - gh-126821: macOS and iOS apps can now choose to redirect stdout and stderr to the system log during interpreter configuration. - gh-93312: Include <sys/pidfd.h> to get os.PIDFD_NONBLOCK constant. Patch by Victor Stinner. - gh-83662: Add missing __class_getitem__ method to the Python implementation of functools.partial(), to make it compatible with the C version. This is mainly relevant for alternative Python implementations like PyPy and GraalPy, because CPython will usually use the C-implementation of that function. - gh-127586: multiprocessing.pool.Pool now properly restores blocked signal handlers of the parent thread when creating processes via either spawn or forkserver. - gh-98188: Fix an issue in email.message.Message.get_payload() where data cannot be decoded if the Content Transfer Encoding mechanism contains trailing whitespaces or additional junk text. Patch by Hui Liu. - gh-127257: In ssl, system call failures that OpenSSL reports using ERR_LIB_SYS are now raised as OSError. - gh-127096: Do not recreate unnamed section on every read in configparser.ConfigParser. Patch by Andrey Efremov. - gh-127196: Fix crash when dict with keys in invalid encoding were passed to several functions in _interpreters module. - gh-126775: Make linecache.checkcache() thread safe and GC re-entrancy safe. - gh-126332: Fix _pyrepl crash when entering a double CTRL-Z on an overflowing line. - gh-126225: getopt and optparse are no longer marked as deprecated. There are legitimate reasons to use one of these modules in preference to argparse, and none of these modules are at risk of being removed from the standard library. Of the three, argparse remains the recommended default choice, unless one of the concerns noted at the top of the optparse module documentation applies. - gh-125553: Fix round-trip invariance for backslash continuations in tokenize.untokenize(). - gh-123987: Fixed issue in NamespaceReader where a non-path item in a namespace path, such as a sentinel added by an editable installer, would break resource loading. - gh-123401: The http.cookies module now supports parsing obsolete RFC 850 date formats, in accordance with RFC 9110 requirements. Patch by Nano Zheng. - gh-122431: readline.append_history_file() now raises a ValueError when given a negative value. - gh-119257: Show tab completions menu below the current line, which results in less janky behaviour, and fixes a cursor movement bug. Patch by Daniel Hollas - Documentation - gh-125722: Require Sphinx 8.1.3 or later to build the Python documentation. Patch by Adam Turner. - gh-67206: Document that string.printable is not printable in the POSIX sense. In particular, string.printable.isprintable() returns False. Patch by Bénédikt Tran. - Core and Builtins - gh-129345: Fix null pointer dereference in syslog.openlog() when an audit hook raises an exception. - gh-129093: Fix f-strings such as f'{expr=}' sometimes not displaying the full expression when the expression contains !=. - gh-124363: Treat debug expressions in f-string as raw strings. Patch by Pablo Galindo - gh-128799: Add frame of except* to traceback when it wraps a naked exception. - gh-128078: Fix a SystemError when using anext() with a default tuple value. Patch by Bénédikt Tran. - gh-128717: Fix a crash when setting the recursion limit while other threads are active on the free threaded build. - gh-128330: Restore terminal control characters on REPL exit. - gh-128079: Fix a bug where except* does not properly check the return value of an ExceptionGroup’s split() function, leading to a crash in some cases. Now when split() returns an invalid object, except* raises a TypeError with the original raised ExceptionGroup object chained to it. - gh-128030: Avoid error from calling PyModule_GetFilenameObject on a non-module object when importing a non-existent symbol from a non-module object. - gh-127903: Objects/unicodeobject.c: fix a crash on DEBUG builds in _copy_characters when there is nothing to copy. - gh-127599: Fix statistics for increments of object reference counts (in particular, when a reference count was increased by more than 1 in a single operation). - gh-127651: When raising ImportError for missing symbols in from imports, use __file__ in the error message if __spec__.origin is not a location - gh-127582: Fix non-thread-safe object resurrection when calling finalizers and watcher callbacks in the free threading build. - gh-127434: The iOS compiler shims can now accept arguments with spaces. - gh-127536: Add missing locks around some list assignment operations in the free threading build. - gh-126862: Fix a possible overflow when a class inherits from an absurd number of super-classes. Reported by Valery Fedorenko. Patch by Bénédikt Tran. - gh-127349: Fixed the error when resizing terminal in Python REPL. Patch by Semyon Moroz. - gh-126076: Relocated objects such as tuple, bytes and str objects are properly tracked by tracemalloc and its associated hooks. Patch by Pablo Galindo. - C API - gh-127791: Fix loss of callbacks after more than one call to PyUnstable_AtExit(). - Build - gh-129539: Don’t redefine EX_OK when the system has the sysexits.h header. - gh-128472: Skip BOLT optimization of functions using computed gotos, fixing errors on build with LLVM 19. - gh-123925: Fix building the curses module on platforms with libncurses but without libncursesw. - gh-128321: Set LIBS instead of LDFLAGS when checking if sqlite3 library functions are available. This fixes the ordering of linked libraries during checks, which was incorrect when using a statically linked libsqlite3. - gh-127865: Fix build failure on systems without thread-locals support. - Changes from version 3.13.1: - Tools/Demos - gh-126807: Fix extraction warnings in pygettext.py caused by mistaking function definitions for function calls. - gh-126167: The iOS testbed was modified so that it can be used by third-party projects for testing purposes. - Tests - gh-126909: Fix test_os extended attribute tests to work on filesystems with 1 KiB xattr size limit. - gh-125041: Re-enable skipped tests for zlib on the s390x architecture: only skip checks of the compressed bytes, which can be different between zlib’s software implementation and the hardware-accelerated implementation. - gh-124295: Add translation tests to the argparse module. - Security - gh-126623: Upgrade libexpat to 2.6.4 - gh-125140: Remove the current directory from sys.path when using PyREPL. - gh-122792: Changed IPv4-mapped ipaddress.IPv6Address to consistently use the mapped IPv4 address value for deciding properties. Properties which have their behavior fixed are is_multicast, is_reserved, is_link_local, is_global, and is_unspecified. - Library - gh-127321: pdb.set_trace() will not stop at an opcode that does not have an associated line number anymore. - gh-127303: Publicly expose EXACT_TOKEN_TYPES in token.__all__. - gh-123967: Fix faulthandler for trampoline frames. If the top-most frame is a trampoline frame, skip it. Patch by Victor Stinner. - gh-127182: Fix io.StringIO.__setstate__() crash, when None was passed as the first value. - gh-127217: Fix urllib.request.pathname2url() for paths starting with multiple slashes on Posix. - gh-127035: Fix shutil.which on Windows. Now it looks at direct match if and only if the command ends with a PATHEXT extension or X_OK is not in mode. Support extensionless files if “.” is in PATHEXT. Support PATHEXT extensions that end with a dot. - gh-122273: Support PyREPL history on Windows. Patch by devdanzin and Victor Stinner. - gh-127078: Fix issue where urllib.request.url2pathname() failed to discard an extra slash before a UNC drive in the URL path on Windows. - gh-126766: Fix issue where urllib.request.url2pathname() failed to discard any ‘localhost’ authority present in the URL. - gh-127065: Fix crash when calling a operator.methodcaller() instance from multiple threads in the free threading build. - gh-126997: Fix support of STRING and GLOBAL opcodes with non-ASCII arguments in pickletools. pickletools.dis() now outputs non-ASCII bytes in STRING, BINSTRING and SHORT_BINSTRING arguments as escaped (\xXX). - gh-126316: grp: Make grp.getgrall() thread-safe by adding a mutex. Patch by Victor Stinner. - gh-126618: Fix the representation of itertools.count objects when the count value is sys.maxsize. - gh-85168: Fix issue where urllib.request.url2pathname() and pathname2url() always used UTF-8 when quoting and unquoting file URIs. They now use the filesystem encoding and error handler. - gh-67877: Fix memory leaks when regular expression matching terminates abruptly, either because of a signal or because memory allocation fails. - gh-126789: Fixed the values of sysconfig.get_config_vars(), sysconfig.get_paths(), and their siblings when the site initialization happens after sysconfig has built a cache for sysconfig.get_config_vars(). - gh-126188: Update bundled pip to 24.3.1 - gh-126780: Fix os.path.normpath() for drive-relative paths on Windows. - gh-126766: Fix issue where urllib.request.url2pathname() failed to discard two leading slashes introducing an empty authority section. - gh-126727: locale.nl_langinfo(locale.ERA) now returns multiple era description segments separated by semicolons. Previously it only returned the first segment on platforms with Glibc. - gh-126699: Allow collections.abc.AsyncIterator to be a base for Protocols. - gh-126654: Fix crash when non-dict was passed to several functions in _interpreters module. - gh-104745: Limit starting a patcher (from unittest.mock.patch() or unittest.mock.patch.object()) more than once without stopping it - gh-126595: Fix a crash when instantiating itertools.count with an initial count of sys.maxsize on debug builds. Patch by Bénédikt Tran. - gh-120423: Fix issue where urllib.request.pathname2url() mishandled Windows paths with embedded forward slashes. - gh-126565: Improve performances of zipfile.Path.open() for non-reading modes. - gh-126505: Fix bugs in compiling case-insensitive regular expressions with character classes containing non-BMP characters: upper-case non-BMP character did was ignored and the ASCII flag was ignored when matching a character range whose upper bound is beyond the BMP region. - gh-117378: Fixed the multiprocessing "forkserver" start method forkserver process to correctly inherit the parent’s sys.path during the importing of multiprocessing.set_forkserver_preload() modules in the same manner as sys.path is configured in workers before executing work items. - This bug caused some forkserver module preloading to silently fail to preload. This manifested as a performance degration in child processes when the sys.path was required due to additional repeated work in every worker. - It could also have a side effect of "" remaining in sys.path during forkserver preload imports instead of the absolute path from os.getcwd() at multiprocessing import time used in the worker sys.path. - The sys.path differences between phases in the child process could potentially have caused preload to import incorrect things from the wrong location. We are unaware of that actually having happened in practice. - gh-125679: The multiprocessing.Lock and multiprocessing.RLock repr values no longer say “unknown” on macOS. - gh-126476: Raise calendar.IllegalMonthError (now a subclass of IndexError) for calendar.month() when the input month is not correct. - gh-126489: The Python implementation of pickle no longer calls pickle.Pickler.persistent_id() for the result of persistent_id(). - gh-126313: Fix an issue in curses.napms() when curses.initscr() has not yet been called. Patch by Bénédikt Tran. - gh-126303: Fix pickling and copying of os.sched_param objects. - gh-126138: Fix a use-after-free crash on asyncio.Task objects whose underlying coroutine yields an object that implements an evil __getattribute__(). Patch by Nico Posada. - gh-126220: Fix crash in cProfile.Profile and _lsprof.Profiler when their callbacks were directly called with 0 arguments. - gh-126212: Fix issue where urllib.request.pathname2url() and url2pathname() removed slashes from Windows DOS drive paths and URLs. - gh-126223: Raise a UnicodeEncodeError instead of a SystemError upon calling _interpreters.create() with an invalid Unicode character. - gh-126205: Fix issue where urllib.request.pathname2url() generated URLs beginning with four slashes (rather than two) when given a Windows UNC path. - gh-126105: Fix a crash in ast when the ast.AST._fields attribute is deleted. - gh-126106: Fixes a possible NULL pointer dereference in ssl. - gh-126080: Fix a use-after-free crash on asyncio.Task objects for which the underlying event loop implements an evil __getattribute__(). Reported by Nico-Posada. Patch by Bénédikt Tran. - gh-126083: Fixed a reference leak in asyncio.Task objects when reinitializing the same object with a non-None context. Patch by Nico Posada. - gh-125984: Fix use-after-free crashes on asyncio.Future objects for which the underlying event loop implements an evil __getattribute__(). Reported by Nico-Posada. Patch by Bénédikt Tran. - gh-125969: Fix an out-of-bounds crash when an evil asyncio.loop.call_soon() mutates the length of the internal callbacks list. Patch by Bénédikt Tran. - gh-125966: Fix a use-after-free crash in asyncio.Future.remove_done_callback(). Patch by Bénédikt Tran. - gh-125789: Fix possible crash when mutating list of callbacks returned by asyncio.Future._callbacks. It now always returns a new copy in C implementation _asyncio. Patch by Kumar Aditya. - gh-124452: Fix an issue in email.policy.EmailPolicy.header_source_parse() and email.policy.Compat32.header_source_parse() that introduced spurious leading whitespaces into header values when the header includes a newline character after the header name delimiter (:) and before the value. - gh-125884: Fixed the bug for pdb where it can’t set breakpoints on functions with certain annotations. - gh-125355: Fix several bugs in argparse.ArgumentParser.parse_intermixed_args(). - The parser no longer changes temporarily during parsing. - Default values are not processed twice. - Required mutually exclusive groups containing positional arguments are now supported. - The missing arguments report now includes the names of all required optional and positional arguments. - Unknown options can be intermixed with positional arguments in parse_known_intermixed_args(). - gh-125666: Avoid the exiting the interpreter if a null byte is given as input in the new REPL. - gh-125710: [Enum] fix hashable<->nonhashable comparisons for member values - gh-125631: Restore ability to set persistent_id and persistent_load attributes of instances of the Pickler and Unpickler classes in the pickle module. - gh-125378: Fixed the bug in pdb where after a multi-line command, an empty line repeats the first line of the multi-line command, instead of the full command. - gh-125682: Reject non-ASCII digits in the Python implementation of json.loads() conforming to the JSON specification. - gh-125660: Reject invalid unicode escapes for Python implementation of json.loads(). - gh-125259: Fix the notes removal logic for errors thrown in enum initialization. - gh-125590: Allow FrameLocalsProxy to delete and pop if the key is not a fast variable. - gh-125519: Improve traceback if importlib.reload() is called with an object that is not a module. Patch by Alex Waygood. - gh-125451: Fix deadlock when concurrent.futures.ProcessPoolExecutor shuts down concurrently with an error when feeding a job to a worker process. - gh-125422: Fixed the bug where pdb and bdb can step into the bottom caller frame. - gh-100141: Fixed the bug where pdb will be stuck in an infinite loop when debugging an empty file. - gh-125115: Fixed a bug in pdb where arguments starting with - can’t be passed to the debugged script. - gh-53203: Fix time.strptime() for %c, %x and %X formats in many locales that use non-ASCII digits, like Persian, Burmese, Odia and Shan. - gh-125398: Fix the conversion of the VIRTUAL_ENV path in the activate script in venv when running in Git Bash for Windows. - gh-125316: Fix using functools.partial() as enum.Enum member. A FutureWarning with suggestion to use enum.member() is now emitted when the partial instance is used as an enum member. - gh-125245: Fix race condition when importing collections.abc, which could incorrectly return an empty module. - gh-125243: Fix data race when creating zoneinfo.ZoneInfo objects in the free threading build. - gh-125254: Fix a bug where ArgumentError includes the incorrect ambiguous option in argparse. - gh-125235: Keep tkinter TCL paths in venv pointing to base installation on Windows. - gh-61011: Fix inheritance of nested mutually exclusive groups from parent parser in argparse.ArgumentParser. Previously, all nested mutually exclusive groups lost their connection to the group containing them and were displayed as belonging directly to the parser. - gh-52551: Fix encoding issues in time.strftime(), the strftime() method of the datetime classes datetime, date and time and formatting of these classes. Characters not encodable in the current locale are now acceptable in the format string. Surrogate pairs and sequence of surrogatescape-encoded bytes are no longer recombinated. Embedded null character no longer terminates the format string. - gh-125118: Don’t copy arbitrary values to _Bool in the struct module. - gh-125069: Fix an issue where providing a pathlib.PurePath object as an initializer argument to a second PurePath object with a different parser resulted in arguments to the former object’s initializer being joined by the latter object’s parser. - gh-125096: If the PYTHON_BASIC_REPL environment variable is set, the site module no longer imports the _pyrepl module. Moreover, the site module now respects -E and -I command line options: ignore PYTHON_BASIC_REPL in this case. Patch by Victor Stinner. - gh-124969: Fix locale.nl_langinfo(locale.ALT_DIGITS) on platforms with glibc. Now it returns a string consisting of up to 100 semicolon-separated symbols (an empty string in most locales) on all Posix platforms. Previously it only returned the first symbol or an empty string. - gh-124960: Fix support for the barry_as_FLUFL future flag in the new REPL. - gh-124984: Fixed thread safety in ssl in the free-threaded build. OpenSSL operations are now protected by a per-object lock. - gh-124958: Fix refcycles in exceptions raised from asyncio.TaskGroup and the python implementation of asyncio.Future - gh-53203: Fix time.strptime() for %c and %x formats in many locales: Arabic, Bislama, Breton, Bodo, Kashubian, Chuvash, Estonian, French, Irish, Ge’ez, Gurajati, Manx Gaelic, Hebrew, Hindi, Chhattisgarhi, Haitian Kreyol, Japanese, Kannada, Korean, Marathi, Malay, Norwegian, Nynorsk, Punjabi, Rajasthani, Tok Pisin, Yoruba, Yue Chinese, Yau/Nungon and Chinese. - gh-124917: Allow calling os.path.exists() and os.path.lexists() with keyword arguments on Windows. Fixes a regression in 3.13.0. - gh-124653: Fix detection of the minimal Queue API needed by the logging module. Patch by Bénédikt Tran. - gh-124858: Fix reference cycles left in tracebacks in asyncio.open_connection() when used with happy_eyeballs_delay - gh-124390: Fixed AssertionError when using asyncio.staggered.staggered_race() with asyncio.eager_task_factory. - gh-124651: Properly quote template strings in venv activation scripts (bsc#1232241, CVE-2024-9287). - gh-116850: Fix argparse for namespaces with not directly writable dict (e.g. classes). - gh-58573: Fix conflicts between abbreviated long options in the parent parser and subparsers in argparse. - gh-124594: All asyncio REPL prompts run in the same context. Contributed by Bartosz Sławecki. - gh-61181: Fix support of choices with string value in argparse. Substrings of the specified string no longer considered valid values. - gh-80259: Fix argparse support of positional arguments with nargs='?', default=argparse.SUPPRESS and specified type. - gh-120378: Fix a crash related to an integer overflow in curses.resizeterm() and curses.resize_term(). - gh-123884: Fixed bug in itertools.tee() handling of other tee inputs (a tee in a tee). The output now has the promised n independent new iterators. Formerly, the first iterator was identical (not independent) to the input iterator. This would sometimes give surprising results. - gh-58956: Fixed a bug in pdb where sometimes the breakpoint won’t trigger if it was set on a function which is already in the call stack. - gh-124345: argparse vim supports abbreviated single-dash long options separated by = from its value. - gh-104860: Fix disallowing abbreviation of single-dash long options in argparse with allow_abbrev=False. - gh-63143: Fix parsing mutually exclusive arguments in argparse. Arguments with the value identical to the default value (e.g. booleans, small integers, empty or 1-character strings) are no longer considered “not present”. - gh-72795: Positional arguments with nargs equal to '*' or argparse.REMAINDER are no longer required. This allows to use positional argument with nargs='*' and without default in mutually exclusive group and improves error message about required arguments. - gh-59317: Fix parsing positional argument with nargs equal to '?' or '*' if it is preceded by an option and another positional argument. - gh-53780: argparse now ignores the first "--" (double dash) between an option and command. - gh-124217: Add RFC 9637 reserved IPv6 block 3fff::/20 in ipaddress module. - gh-81691: Fix handling of multiple "--" (double dashes) in argparse. Only the first one has now been removed, all subsequent ones are now taken literally. - gh-123978: Remove broken time.thread_time() and time.thread_time_ns() on NetBSD. - gh-124008: Fix possible crash (in debug build), incorrect output or returning incorrect value from raw binary write() when writing to console on Windows. - gh-123935: Fix parent slots detection for dataclasses that inherit from classes with __dictoffset__. - gh-122765: Fix unbalanced quote errors occurring when activate.csh in venv was sourced with a custom prompt containing unpaired quotes or newlines. - gh-123370: Fix the canvas not clearing after running turtledemo clock. - gh-116810: Resolve a memory leak introduced in CPython 3.10’s ssl when the ssl.SSLSocket.session property was accessed. Speeds up read and write access to said property by no longer unnecessarily cloning session objects via serialization. - gh-120754: Update unbounded read calls in zipfile to specify an explicit size putting a limit on how much data they may read. This also updates handling around ZIP max comment size to match the standard instead of reading comments that are one byte too long. - gh-70764: Fixed an issue where inspect.getclosurevars() would incorrectly classify an attribute name as a global variable when the name exists both as an attribute name and a global variable. - gh-118289: posixpath.realpath() now raises NotADirectoryError when strict mode is enabled and a non-directory path with a trailing slash is supplied. - gh-119826: Always return an absolute path for os.path.abspath() on Windows. - gh-117766: Always use str() to print choices in argparse. - gh-101955: Fix SystemError when match regular expression pattern containing some combination of possessive quantifier, alternative and capture group. - gh-88110: Fixed multiprocessing.Process reporting a .exitcode of 1 even on success when using the "fork" start method while using a concurrent.futures.ThreadPoolExecutor. - gh-71936: Fix a race condition in multiprocessing.pool.Pool. - bpo-46128: Strip unittest.IsolatedAsyncioTestCase stack frames from reported stacktraces. - bpo-14074: Fix argparse metavar processing to allow positional arguments to have a tuple metavar. - IDLE - gh-122392: Increase currently inadequate vertical spacing for the IDLE browsers (path, module, and stack) on high-resolution monitors. - Documentation - gh-126622: Added stub pages for removed modules explaining their removal, where to find replacements, and linking to the last Python version that supported them. Contributed by Ned Batchelder. - gh-125277: Require Sphinx 7.2.6 or later to build the Python documentation. Patch by Adam Turner. - gh-124872: Added definitions for context, current context, and context management protocol, updated related definitions to be consistent, and expanded the documentation for contextvars.Context. - gh-125018: The importlib.metadata documentation now includes semantic cross-reference targets for the significant documented APIs. This means intersphinx references like importlib.metadata.version() will now work as expected. - gh-70870: Clarified the dual usage of the term “free variable” (both the formal meaning of any reference to names defined outside the local scope, and the narrower pragmatic meaning of nonlocal variables named in co_freevars). - gh-121277: Writers of CPython’s documentation can now use next as the version for the versionchanged, versionadded, deprecated directives. - gh-60712: Include the object type in the lists of documented types. Change by Furkan Onder and Martin Panter. - bpo-34008: The Py_Main() documentation moved from the “Very High Level API” section to the “Initialization and Finalization” section. - Also make it explicit that we expect Py_Main to typically be called instead of Py_Initialize rather than after it (since Py_Main makes its own call to Py_Initialize). Document that calling both is supported but is version dependent on which settings will be applied correctly. - Core and Builtins - gh-113841: Fix possible undefined behavior division by zero in complex’s _Py_c_pow(). - gh-127020: Fix a crash in the free threading build when PyCode_GetCode(), PyCode_GetVarnames(), PyCode_GetCellvars(), or PyCode_GetFreevars() were called from multiple threads at the same time. - gh-126980: Fix __buffer__() of bytearray crashing when READ or WRITE are passed as flags. - gh-126881: Fix crash in finalization of dtoa state. Patch by Kumar Aditya. - gh-126341: Now ValueError is raised instead of SystemError when trying to iterate over a released memoryview object. - gh-126688: Fix a crash when calling os.fork() on some operating systems, including SerenityOS. - gh-126066: Fix importlib to not write an incomplete .pyc files when a ulimit or some other operating system mechanism is preventing the write to go through fully. - gh-126312: Fix crash during garbage collection on an object frozen by gc.freeze() on the free-threaded build. - gh-126139: Provide better error location when attempting to use a future statement with an unknown future feature. - gh-126018: Fix a crash in sys.audit() when passing a non-string as first argument and Python was compiled in debug mode. - gh-125942: On Android, the errors setting of sys.stdout was changed from surrogateescape to backslashreplace. - gh-125859: Fix a crash in the free threading build when gc.get_objects() or gc.get_referrers() is called during an in-progress garbage collection. - gh-125703: Correctly honour tracemalloc hooks in specialized Py_DECREF paths. Patch by Pablo Galindo - gh-125593: Use color to highlight error locations in traceback from exception group - gh-125444: Fix illegal instruction for older Arm architectures. Patch by Diego Russo, testing by Ross Burton. - gh-124375: Fix a crash in the free threading build when the GC runs concurrently with a new thread starting. - gh-125221: Fix possible race condition when calling __reduce_ex__() for the first time in the free threading build. - gh-125038: Fix crash when iterating over a generator expression after direct changes on gi_frame.f_locals. Patch by Mikhail Efimov. - gh-123378: Fix a crash in the __str__() method of UnicodeError objects when the UnicodeError.start and UnicodeError.end values are invalid or out-of-range. Patch by Bénédikt Tran. - gh-116510: Fix a crash caused by immortal interned strings being shared between sub-interpreters that use basic single-phase init. In that case, the string can be used by an interpreter that outlives the interpreter that created and interned it. For interpreters that share obmalloc state, also share the interned dict with the main interpreter. - gh-122878: Use the pager binary, if available (e.g. on Debian and derivatives), to display REPL help(). - gh-124188: Fix reading and decoding a line from the source file witn non-UTF-8 encoding for syntax errors raised in the compiler. - gh-123930: Improve the error message when a script shadowing a module from the standard library causes ImportError to be raised during a “from” import. Similarly, improve the error message when a script shadowing a third party module attempts to “from” import an attribute from that third party module while still initialising. - gh-122907: Building with HAVE_DYNAMIC_LOADING now works as well as it did in 3.12. Existing deficiences will be addressed separately. (See https://github.com/python/cpython/issues/122950.) - gh-118950: Fix bug where SSLProtocol.connection_lost wasn’t getting called when OSError was thrown on writing to socket. - gh-113570: Fixed a bug in reprlib.repr where it incorrectly called the repr method on shadowed Python built-in types. - gh-109746: If _thread.start_new_thread() fails to start a new thread, it deletes its state from interpreter and thus avoids its repeated cleanup on finalization. - C API - gh-126554: Fix error handling in ctypes.CDLL objects which could result in a crash in rare situations. - gh-125608: Fix a bug where dictionary watchers (e.g., PyDict_Watch()) on an object’s attribute dictionary (__dict__) were not triggered when the object’s attributes were modified. - bpo-34008: Added Py_IsInitialized to the list of APIs that are safe to call before the interpreter is initialized, and updated the embedding tests to cover it. - Build - gh-123877: Set wasm32-wasip1 as the WASI target. The old wasm32-wasi target is deprecated so it can be used for an eventual WASI 1.0. - gh-89640: Hard-code float word ordering as little endian on WASM. - gh-125940: The Android build now supports 16 KB page sizes. - gh-89640: Improve detection of float word ordering on Linux when link-time optimizations are enabled. - gh-125269: Fix detection of whether -latomic is needed when cross-compiling CPython using the configure script. - gh-121634: Allow for specifying the target compile triple for WASI. - gh-122578: Use WASI SDK 24 for testing. - gh-115382: Fix cross compile failures when the host and target SOABIs match. - Skip PGO with %want_reproducible_builds (bsc#1239210). - Configure externally_managed with a bcond https://en.opensuse.org/openSUSE:Python:Externally_managed (bsc#1228165). libpython3_13-1_0-3.13.5-150700.4.11.1.x86_64.rpm python313-3.13.5-150700.4.11.1.src.rpm python313-3.13.5-150700.4.11.1.x86_64.rpm python313-base-3.13.5-150700.4.11.1.x86_64.rpm python313-core-3.13.5-150700.4.11.1.src.rpm python313-curses-3.13.5-150700.4.11.1.x86_64.rpm python313-dbm-3.13.5-150700.4.11.1.x86_64.rpm python313-devel-3.13.5-150700.4.11.1.x86_64.rpm python313-idle-3.13.5-150700.4.11.1.x86_64.rpm python313-tk-3.13.5-150700.4.11.1.x86_64.rpm python313-tools-3.13.5-150700.4.11.1.x86_64.rpm SUSE-SLE-Module-Python3-15-SP7-2025-2286 moderate SUSE Updates SLE-Module-Python3 15-SP7 x86 64 This update for csp-billing-adapter fixes the following issues: - Update to version 1.3.2 + Make customer id required in meter billing hookspec csp-billing-adapter-1.3.2-150400.9.37.1.src.rpm python-pluggy-1.0.0-150400.14.7.1.src.rpm python311-csp-billing-adapter-1.3.2-150400.9.37.1.noarch.rpm python311-pluggy-1.0.0-150400.14.7.1.noarch.rpm SUSE-SLE-Module-Python3-15-SP7-2025-2285 moderate SUSE Updates SLE-Module-Python3 15-SP7 x86 64 This update for csp-billing-adapter-microsoft fixes the following issues: - Make customer id required in meter billing hookspec csp-billing-adapter-microsoft-1.2.2-150400.9.19.1.src.rpm python311-csp-billing-adapter-microsoft-1.2.2-150400.9.19.1.noarch.rpm SUSE-SLE-Module-Python3-15-SP7-2025-2284 moderate SUSE Updates SLE-Module-Python3 15-SP7 x86 64 This update for csp-billing-adapter-amazon fixes the following issues: - Make customer id required in meter billing hookspec csp-billing-adapter-amazon-1.2.1-150400.9.19.1.src.rpm python311-csp-billing-adapter-amazon-1.2.1-150400.9.19.1.noarch.rpm SUSE-SLE-Module-Python3-15-SP7-2025-2311 moderate SUSE Updates SLE-Module-Python3 15-SP7 x86 64 This update for protobuf fixes the following issues: - CVE-2025-4565: Fix parsing of untrusted Protocol Buffers data containing an arbitrary number of recursive groups or messages that can lead to crash due to RecursionError (bsc#1244663). protobuf-25.1-150600.16.13.1.src.rpm python311-protobuf-4.25.1-150600.16.13.1.x86_64.rpm SUSE-SLE-Module-Python3-15-SP7-2025-2450 moderate SUSE Updates SLE-Module-Python3 15-SP7 x86 64 This update for python-paramiko fixes the following issues: - Update to 3.5.1. - reenable python 313 build. - Remove upstreamed patches. python-paramiko-3.5.1-150700.20.3.1.src.rpm python311-paramiko-3.5.1-150700.20.3.1.noarch.rpm SUSE-SLE-Module-Python3-15-SP7-2025-3354 moderate SUSE Updates SLE-Module-Python3 15-SP7 x86 64 This update for python-pycares fixes the following issues: Update to version 4.10.0 (jsc#PED-13442): - CVE-2025-48945: Fixed use-after-free vulnerability may have led to a crash (bsc#1244691). python-pycares-4.10.0-150400.9.8.1.src.rpm python311-pycares-4.10.0-150400.9.8.1.x86_64.rpm SUSE-SLE-Module-Python3-15-SP7-2025-2543 moderate SUSE Updates SLE-Module-Python3 15-SP7 x86 64 This update for python-PyYAML, python-bcrypt, python-gssapi, python-pyparsing, python-python-dateutil, python-pytz, python-requests, python-setuptools_scm, python-simplejson, python-urllib3 fixes the following issues: - Add python36 provides/obsoletes to enable SLE-12 to SLE-15 migration (bsc#1233012) python-gssapi-1.6.12-150300.3.3.1.src.rpm python3-gssapi-1.6.12-150300.3.3.1.x86_64.rpm SUSE-SLE-Module-Python3-15-SP7-2025-2735 moderate SUSE Updates SLE-Module-Python3 15-SP7 x86 64 This update for python-urllib3 fixes the following issues: - CVE-2025-50181: Pool managers now properly control redirects when retries is passed. (bsc#1244925) python-urllib3-2.0.7-150400.7.21.1.src.rpm python311-urllib3-2.0.7-150400.7.21.1.noarch.rpm SUSE-SLE-Module-Python3-15-SP7-2025-2767 important SUSE Updates SLE-Module-Python3 15-SP7 x86 64 This update for python313 fixes the following issues: - CVE-2025-8194: Fixed denial of service caused by tar archives with negative offsets (bsc#1247249). - CVE-2025-6069: Avoid worst case quadratic complexity when processing certain crafted malformed inputs with HTMLParser (bsc#1244705). - CVE-2025-4435: Fixed Tarfile extracting filtered members when errorlevel=0 (bsc#1244061). libpython3_13-1_0-3.13.5-150700.4.20.1.x86_64.rpm python313-3.13.5-150700.4.20.1.src.rpm python313-3.13.5-150700.4.20.1.x86_64.rpm python313-base-3.13.5-150700.4.20.1.x86_64.rpm python313-core-3.13.5-150700.4.20.1.src.rpm python313-curses-3.13.5-150700.4.20.1.x86_64.rpm python313-dbm-3.13.5-150700.4.20.1.x86_64.rpm python313-devel-3.13.5-150700.4.20.1.x86_64.rpm python313-idle-3.13.5-150700.4.20.1.x86_64.rpm python313-tk-3.13.5-150700.4.20.1.x86_64.rpm python313-tools-3.13.5-150700.4.20.1.x86_64.rpm SUSE-SLE-Module-Python3-15-SP7-2025-2717 important SUSE Updates SLE-Module-Python3 15-SP7 x86 64 This update for python311 fixes the following issues: - CVE-2025-8194: Fixed denial of service caused by tar archives with negative offsets (bsc#1247249). - CVE-2025-6069: Avoid worst case quadratic complexity when processing certain crafted malformed inputs with HTMLParser (bsc#1244705). - CVE-2025-4435: Fixed Tarfile extracting filtered members when errorlevel=0 (bsc#1244061). python311-3.11.13-150600.3.35.2.src.rpm python311-3.11.13-150600.3.35.2.x86_64.rpm python311-core-3.11.13-150600.3.35.1.src.rpm python311-curses-3.11.13-150600.3.35.2.x86_64.rpm python311-dbm-3.11.13-150600.3.35.2.x86_64.rpm python311-devel-3.11.13-150600.3.35.1.x86_64.rpm python311-idle-3.11.13-150600.3.35.2.x86_64.rpm python311-tk-3.11.13-150600.3.35.2.x86_64.rpm python311-tools-3.11.13-150600.3.35.1.x86_64.rpm SUSE-SLE-Module-Python3-15-SP7-2025-2260 important SUSE Updates SLE-Module-Python3 15-SP7 x86 64 This update for libxml2 fixes the following issues: - CVE-2025-49794: Fixed a heap use after free which could lead to denial of service. (bsc#1244554) - CVE-2025-49796: Fixed type confusion which could lead to denial of service. (bsc#1244557) - CVE-2025-49795: Fixed a null pointer dereference which could lead to denial of service. (bsc#1244555) - CVE-2025-6170: Fixed a stack buffer overflow which could lead to a crash. (bsc#1244700) - CVE-2025-6021: Fixed an integer overflow in xmlBuildQName() which could lead to stack buffer overflow. (bsc#1244590) libxml2-python-2.12.10-150700.4.3.1.src.rpm python311-libxml2-2.12.10-150700.4.3.1.x86_64.rpm SUSE-SLE-Module-Python3-15-SP7-2025-3035 moderate SUSE Updates SLE-Module-Python3 15-SP7 x86 64 This update for python-mccabe fixes the following issues: - update mccabe to 0.7.0 - update flakes to 7.0.0 - Just build python311 version in SP6 codestream (bsc#1240402) - Convert to pip-based build - Fix the test run with new pytest python-flake8-7.0.0-150600.14.3.1.src.rpm python-mccabe-0.7.0-150600.17.3.1.src.rpm python311-flake8-7.0.0-150600.14.3.1.noarch.rpm python311-mccabe-0.7.0-150600.17.3.1.noarch.rpm SUSE-SLE-Module-Python3-15-SP7-2025-2580 moderate SUSE Updates SLE-Module-Python3 15-SP7 x86 64 This update for firewalld fixes the following issues: - Do not recommend python311-firewalld (bsc#1246100) firewalld-2.0.1-150600.3.12.1.src.rpm python311-firewall-2.0.1-150600.3.12.1.noarch.rpm SUSE-SLE-Module-Python3-15-SP7-2025-2617 important SUSE Updates SLE-Module-Python3 15-SP7 x86 64 This update for libxml2 fixes the following issues: - CVE-2025-7425: Fixed heap Use-After-Free in libxslt caused by atype corruption in xmlAttrPtr (bsc#1246296) libxml2-python-2.12.10-150700.4.6.1.src.rpm python311-libxml2-2.12.10-150700.4.6.1.x86_64.rpm SUSE-SLE-Module-Python3-15-SP7-2025-3057 low SUSE Updates SLE-Module-Python3 15-SP7 x86 64 This update for python-aiohttp fixes the following issues: - CVE-2025-53643: Fixed request smuggling due to incorrect parsing of chunked trailer section (bsc#1246517) python-aiohttp-3.9.3-150400.10.33.1.src.rpm python311-aiohttp-3.9.3-150400.10.33.1.x86_64.rpm SUSE-SLE-Module-Python3-15-SP7-2025-3517 low SUSE Updates SLE-Module-Python3 15-SP7 x86 64 This update for python311-scp fixes the following issue: - Ship python311-scp to SLES 15 SP5 Public Cloud Module. python-scp-0.14.5-150400.12.9.1.src.rpm python311-scp-0.14.5-150400.12.9.1.noarch.rpm SUSE-SLE-Module-Python3-15-SP7-2025-2906 important SUSE Updates SLE-Module-Python3 15-SP7 x86 64 This update for pgadmin4 fixes the following issues: - Add patches from upstream to add support for PostgreSQL 17 (bsc#1247122): * Ensure that pgAdmin4 is compatible with PostgreSQL v17 * Added support for a builtin locale provider in the Database pgadmin4-8.5-150600.3.12.1.noarch.rpm pgadmin4-8.5-150600.3.12.1.src.rpm pgadmin4-doc-8.5-150600.3.12.1.noarch.rpm system-user-pgadmin-8.5-150600.3.12.1.noarch.rpm SUSE-SLE-Module-Python3-15-SP7-2025-3012 important SUSE Updates SLE-Module-Python3 15-SP7 x86 64 This update for git, git-lfs, obs-scm-bridge, python-PyYAML fixes the following issues: git was updated from version 2.43.0 to 2.51.0 (bsc#1243197): - Security issues fixed: * CVE-2025-27613 Fixed arbitrary writable file creation and truncation in Gitk(bsc#1245938) * CVE-2025-27614 Fixed arbitrary script execution via repository clonation in gitk(bsc#1245939) * CVE-2025-46835 Fixed arbitrary writable file creation in Git GUI when untrusted repository is cloned (bsc#1245942) * CVE-2025-48384 Fixed the unintentional execution of a script after checkout due to CRLF transforming (bsc#1245943) * CVE-2025-48385 Fixed arbitrary code execution due to protocol injection via fetching advertised bundle(bsc#1245946) - Other changes and bugs fixed: - Other changes and bugs fixed: * Added SHA256 support (bsc#1243197) * Git moved to /usr/libexec/git/git and updated AppArmor profile accordingly (bsc#1218588) * gitweb AppArmor profile: allow reading etc/gitweb-common.conf (bsc#1218664) * Do not replace apparmor configuration (bsc#1216545) * Fixed the Python version required (bsc#1212476) - Version Updates Release Notes: * https://raw.githubusercontent.com/git/git/master/Documentation/RelNotes/2.51.0.adoc * https://raw.githubusercontent.com/git/git/master/Documentation/RelNotes/2.50.1.adoc * https://raw.githubusercontent.com/git/git/master/Documentation/RelNotes/2.50.0.adoc * https://raw.githubusercontent.com/git/git/master/Documentation/RelNotes/2.49.0.adoc * https://raw.githubusercontent.com/git/git/master/Documentation/RelNotes/2.48.1.adoc * https://raw.githubusercontent.com/git/git/master/Documentation/RelNotes/2.48.0.adoc * https://raw.githubusercontent.com/git/git/master/Documentation/RelNotes/2.47.1.adoc * https://raw.githubusercontent.com/git/git/master/Documentation/RelNotes/2.47.0.adoc * https://raw.githubusercontent.com/git/git/master/Documentation/RelNotes/2.46.2.adoc * https://raw.githubusercontent.com/git/git/master/Documentation/RelNotes/2.46.1.adoc * https://raw.githubusercontent.com/git/git/master/Documentation/RelNotes/2.46.0.adoc * https://raw.githubusercontent.com/git/git/master/Documentation/RelNotes/2.45.3.adoc * https://raw.githubusercontent.com/git/git/master/Documentation/RelNotes/2.45.2.adoc * https://raw.githubusercontent.com/git/git/master/Documentation/RelNotes/2.45.1.adoc * https://raw.githubusercontent.com/git/git/master/Documentation/RelNotes/2.45.0.adoc * https://raw.githubusercontent.com/git/git/master/Documentation/RelNotes/2.44.0.adoc * https://raw.githubusercontent.com/git/git/master/Documentation/RelNotes/2.43.3.adoc * https://raw.githubusercontent.com/git/git/master/Documentation/RelNotes/2.43.2.adoc * https://raw.githubusercontent.com/git/git/master/Documentation/RelNotes/2.43.1.adoc git-lfs is included in version 3.7.0. python-PyYAML was updated from version 6.0.1 to 6.0.2: - Added support for Cython 3.x and Python 3.13 obs-scm-bridge was updated from version 0.5.4 to 0.7.4: - New Features and Improvements: * Manifest File Support: Support has been added for a `_manifest file`, which serves as a successor to the `_subdirs` file. * Control Over Git Information: A new noobsinfo query parameter was added to hide git information in source and binary files. * Enhanced Submodule Handling: The system now records the configured branch of submodules and stays on that branch during checkout. * Git SHA Tracking: In project mode, the tool now uses git SHA sums instead of md5sum to track package sources. * SSH URL Support: ssh:// SCM URLs can now be used. * Improved Error Messages: Error reporting for invalid files within package subdirectories has been improved. * Standardized Config Location: In project mode, the _config file is now always located in the top-level directory, even when using subdirs. * Reduced Unnecessary Changes: In project mode, unnecessary modifications to the package meta URL are now avoided. * Limit Asset Handling: A new mechanism has been introduced to limit how assets are handled. * Branch Information Export: The trackingbranch is now exported to scmsync.obsinfo. - Bugs fixed: * Syntax Fix: A syntax issue was corrected. * Git Submodule Parsing: The .gitsubmodule parser was fixed to correctly handle files that contain a mix of spaces and tabs. python-PyYAML-6.0.2-150600.10.3.1.src.rpm python311-PyYAML-6.0.2-150600.10.3.1.x86_64.rpm SUSE-SLE-Module-Python3-15-SP7-2025-3132 moderate SUSE Updates SLE-Module-Python3 15-SP7 x86 64 This update for salt and Python dependencies fixes the following issues: - Implementation of python311-salt package and required Python 3.11 dependencies on SUSE Linux Enterprise 15 SP4 (no source changes) (jsc#PED-13283) python311-zypp-plugin-0.6.5-150600.18.8.1.noarch.rpm True zypp-plugin-0.6.5-150600.18.8.1.src.rpm True SUSE-SLE-Module-Python3-15-SP7-2025-3038 important SUSE Updates SLE-Module-Python3 15-SP7 x86 64 This update for python-future fixes the following issues: - CVE-2025-50817: Fixed arbitrary code execution via the automatic import of file test.py (bsc#1248124) python-future-0.18.3-150400.6.6.1.src.rpm python311-future-0.18.3-150400.6.6.1.noarch.rpm SUSE-SLE-Module-Python3-15-SP7-2025-3199 moderate SUSE Updates SLE-Module-Python3 15-SP7 x86 64 This update for python-h2 fixes the following issues: - CVE-2025-57804: Fixed HTTP Request Smuggling due to illegal characters in headers (bsc#1248737) python-h2-4.1.0-150400.8.6.1.src.rpm python311-h2-4.1.0-150400.8.6.1.noarch.rpm SUSE-SLE-Module-Python3-15-SP7-2025-3202 moderate SUSE Updates SLE-Module-Python3 15-SP7 x86 64 This update for python-eventlet fixes the following issues: - CVE-2025-58068: improper handling of HTTP trailer sections in WSGI parser leads to HTTP request smuggling (bsc#1248994). python-eventlet-0.33.3-150400.5.6.1.src.rpm python311-eventlet-0.33.3-150400.5.6.1.noarch.rpm SUSE-SLE-Module-Python3-15-SP7-2025-3134 moderate SUSE Updates SLE-Module-Python3 15-SP7 x86 64 This update for salt and Python dependencies fixes the following issues: - Implementation of python311-salt and missing required Python 3.11 dependencies on the following SUSE Linux Enterprise 15 SP4 Products (no source changes) (jsc#PED-13283): * SUSE Linux Enterprise Server 15 SP4 LTSS * SUSE Linux Enterprise Server for SAP Applications 15 SP4 * SUSE Linux Enterprise High Performance Computing 15 SP4 LTSS and ESPOS python-contextvars-2.4-150400.10.5.1.src.rpm True python-immutables-0.19-150400.10.5.1.src.rpm True python-looseversion-1.3.0-150400.10.6.1.src.rpm True python-psutil-5.9.5-150400.6.11.1.src.rpm True python-pyzmq-25.1.2-150400.12.6.1.src.rpm True python311-contextvars-2.4-150400.10.5.1.noarch.rpm True python311-immutables-0.19-150400.10.5.1.x86_64.rpm True python311-looseversion-1.3.0-150400.10.6.1.noarch.rpm True python311-psutil-5.9.5-150400.6.11.1.x86_64.rpm True python311-pyzmq-25.1.2-150400.12.6.1.x86_64.rpm True python311-pyzmq-devel-25.1.2-150400.12.6.1.x86_64.rpm True SUSE-SLE-Module-Python3-15-SP7-2025-3519 moderate SUSE Updates SLE-Module-Python3 15-SP7 x86 64 This update for python-requests-unitsocket fixes the following issues: - Fixed compatibility with urllib3 2.31.0 (bsc#1247244) python-requests-unixsocket-0.3.0-150400.7.6.1.src.rpm python311-requests-unixsocket-0.3.0-150400.7.6.1.noarch.rpm SUSE-SLE-Module-Python3-15-SP7-2025-3706 moderate SUSE Updates SLE-Module-Python3 15-SP7 x86 64 This update for python313 fixes the following issues: Update to version 3.13.7. - Fixes in 3.13.7: * gh-137583: Fix a deadlock introduced in 3.13.6 when a call to ssl.SSLSocket.recv was blocked in one thread, and then another method on the object (such as ssl.SSLSocket.send) was subsequently called in another thread. * gh-137044: Return large limit values as positive integers instead of negative integers in resource.getrlimit(). Accept large values and reject negative values (except RLIM_INFINITY) for limits in resource.setrlimit(). * gh-136914: Fix retrieval of doctest.DocTest.lineno for objects decorated with functools.cache() or functools.cached_property. * gh-131788: Make ResourceTracker.send from multiprocessing re-entrant safe * gh-136155: We are now checking for fatal errors in EPUB builds in CI. * gh-137400: Fix a crash in the free threading build when disabling profiling or tracing across all threads with PyEval_SetProfileAllThreads() or PyEval_SetTraceAllThreads() or their Python equivalents threading.settrace_all_threads() and threading.setprofile_all_threads(). - Fixes in 3.13.6: * Security - gh-135661: Fix parsing start and end tags in html.parser.HTMLParser according to the HTML5 standard. - Whitespaces no longer accepted between </ and the tag name. E.g. </ script> does not end the script section. - Vertical tabulation (\v) and non-ASCII whitespaces no longer recognized as whitespaces. The only whitespaces are \t\n\r\f and space. - Null character (U+0000) no longer ends the tag name. - Attributes and slashes after the tag name in end tags are now ignored, instead of terminating after the first > in quoted attribute value. E.g. </script/foo=">"/>. - Multiple slashes and whitespaces between the last attribute and closing > are now ignored in both start and end tags. E.g. <a foo=bar/ //>. - Multiple = between attribute name and value are no longer collapsed. E.g. <a foo==bar> produces attribute “foo” with value “=bar”. - gh-102555: Fix comment parsing in html.parser.HTMLParser according to the HTML5 standard. --!> now ends the comment. -- > no longer ends the comment. Support abnormally ended empty comments <--> and <--->. - gh-135462: Fix quadratic complexity in processing specially crafted input in html.parser.HTMLParser. End-of-file errors are now handled according to the HTML5 specs – comments and declarations are automatically closed, tags are ignored (CVE-2025-6069, bsc#1244705). - gh-118350: Fix support of escapable raw text mode (elements “textarea” and “title”) in html.parser.HTMLParser. * Core and Builtins - gh-58124: Fix name of the Python encoding in Unicode errors of the code page codec: use “cp65000” and “cp65001” instead of “CP_UTF7” and “CP_UTF8” which are not valid Python code names. Patch by Victor Stinner. - gh-137314: Fixed a regression where raw f-strings incorrectly interpreted escape sequences in format specifications. Raw f-strings now properly preserve literal backslashes in format specs, matching the behavior from Python 3.11. For example, rf"{obj:\xFF}" now correctly produces '\\xFF' instead of 'ÿ'. Patch by Pablo Galindo. - gh-136541: Fix some issues with the perf trampolines on x86-64 and aarch64. The trampolines were not being generated correctly for some cases, which could lead to the perf integration not working correctly. Patch by Pablo Galindo. - gh-109700: Fix memory error handling in PyDict_SetDefault(). - gh-78465: Fix error message for cls.__new__(cls, ...) where cls is not instantiable builtin or extension type (with tp_new set to NULL). - gh-135871: Non-blocking mutex lock attempts now return immediately when the lock is busy instead of briefly spinning in the free threading build. - gh-135607: Fix potential weakref races in an object’s destructor on the free threaded build. - gh-135496: Fix typo in the f-string conversion type error (“exclamanation” -> “exclamation”). - gh-130077: Properly raise custom syntax errors when incorrect syntax containing names that are prefixes of soft keywords is encountered. Patch by Pablo Galindo. - gh-135148: Fixed a bug where f-string debug expressions (using =) would incorrectly strip out parts of strings containing escaped quotes and # characters. Patch by Pablo Galindo. - gh-133136: Limit excess memory usage in the free threading build when a large dictionary or list is resized and accessed by multiple threads. - gh-132617: Fix dict.update() modification check that could incorrectly raise a “dict mutated during update” error when a different dictionary was modified that happens to share the same underlying keys object. - gh-91153: Fix a crash when a bytearray is concurrently mutated during item assignment. - gh-127971: Fix off-by-one read beyond the end of a string in string search. - gh-125723: Fix crash with gi_frame.f_locals when generator frames outlive their generator. Patch by Mikhail Efimov. * Library - gh-132710: If possible, ensure that uuid.getnode() returns the same result even across different processes. Previously, the result was constant only within the same process. Patch by Bénédikt Tran. - gh-137273: Fix debug assertion failure in locale.setlocale() on Windows. - gh-137257: Bump the version of pip bundled in ensurepip to version 25.2 - gh-81325: tarfile.TarFile now accepts a path-like when working on a tar archive. (Contributed by Alexander Enrique Urieles Nieto in gh-81325.) - gh-130522: Fix unraisable TypeError raised during interpreter shutdown in the threading module. - gh-130577: tarfile now validates archives to ensure member offsets are non-negative. (Contributed by Alexander Enrique Urieles Nieto in gh-130577; CVE-2025-8194, bsc#1247249). - gh-136549: Fix signature of threading.excepthook(). - gh-136523: Fix wave.Wave_write emitting an unraisable when open raises. - gh-52876: Add missing keepends (default True) parameter to codecs.StreamReaderWriter.readline() and codecs.StreamReaderWriter.readlines(). - gh-85702: If zoneinfo._common.load_tzdata is given a package without a resource a zoneinfo.ZoneInfoNotFoundError is raised rather than a PermissionError. Patch by Victor Stinner. - gh-134759: Fix UnboundLocalError in email.message.Message.get_payload() when the payload to decode is a bytes object. Patch by Kliment Lamonov. - gh-136028: Fix parsing month names containing “İ” (U+0130, LATIN CAPITAL LETTER I WITH DOT ABOVE) in time.strptime(). This affects locales az_AZ, ber_DZ, ber_MA and crh_UA. - gh-135995: In the palmos encoding, make byte 0x9b decode to › (U+203A - SINGLE RIGHT-POINTING ANGLE QUOTATION MARK). - gh-53203: Fix time.strptime() for %c and %x formats on locales byn_ER, wal_ET and lzh_TW, and for %X format on locales ar_SA, bg_BG and lzh_TW. - gh-91555: An earlier change, which was introduced in 3.13.4, has been reverted. It disabled logging for a logger during handling of log messages for that logger. Since the reversion, the behaviour should be as it was before 3.13.4. - gh-135878: Fixes a crash of types.SimpleNamespace on free threading builds, when several threads were calling its __repr__() method at the same time. - gh-135836: Fix IndexError in asyncio.loop.create_connection() that could occur when non-OSError exception is raised during connection and socket’s close() raises OSError. - gh-135836: Fix IndexError in asyncio.loop.create_connection() that could occur when the Happy Eyeballs algorithm resulted in an empty exceptions list during connection attempts. - gh-135855: Raise TypeError instead of SystemError when _interpreters.set___main___attrs() is passed a non-dict object. Patch by Brian Schubert. - gh-135815: netrc: skip security checks if os.getuid() is missing. Patch by Bénédikt Tran. - gh-135640: Address bug where it was possible to call xml.etree.ElementTree.ElementTree.write() on an ElementTree object with an invalid root element. This behavior blanked the file passed to write if it already existed. - gh-135444: Fix asyncio.DatagramTransport.sendto() to account for datagram header size when data cannot be sent. - gh-135497: Fix os.getlogin() failing for longer usernames on BSD-based platforms. - gh-135487: Fix reprlib.Repr.repr_int() when given integers with more than sys.get_int_max_str_digits() digits. Patch by Bénédikt Tran. - gh-135335: multiprocessing: Flush stdout and stderr after preloading modules in the forkserver. - gh-135244: uuid: when the MAC address cannot be determined, the 48-bit node ID is now generated with a cryptographically-secure pseudo-random number generator (CSPRNG) as per RFC 9562, §6.10.3. This affects uuid1(). - gh-135069: Fix the “Invalid error handling” exception in encodings.idna.IncrementalDecoder to correctly replace the ‘errors’ parameter. - gh-134698: Fix a crash when calling methods of ssl.SSLContext or ssl.SSLSocket across multiple threads. - gh-132124: On POSIX-compliant systems, multiprocessing.util.get_temp_dir() now ignores TMPDIR (and similar environment variables) if the path length of AF_UNIX socket files exceeds the platform-specific maximum length when using the forkserver start method. Patch by Bénédikt Tran. - gh-133439: Fix dot commands with trailing spaces are mistaken for multi-line SQL statements in the sqlite3 command-line interface. - gh-132969: Prevent the ProcessPoolExecutor executor thread, which remains running when shutdown(wait=False), from attempting to adjust the pool’s worker processes after the object state has already been reset during shutdown. A combination of conditions, including a worker process having terminated abormally, resulted in an exception and a potential hang when the still-running executor thread attempted to replace dead workers within the pool. - gh-130664: Support the '_' digit separator in formatting of the integral part of Decimal’s. Patch by Sergey B Kirpichev. - gh-85702: If zoneinfo._common.load_tzdata is given a package without a resource a ZoneInfoNotFoundError is raised rather than a IsADirectoryError. - gh-130664: Handle corner-case for Fraction’s formatting: treat zero-padding (preceding the width field by a zero ('0') character) as an equivalent to a fill character of '0' with an alignment type of '=', just as in case of float’s. * Tools/Demos - gh-135968: Stubs for strip are now provided as part of an iOS install. * Tests - gh-135966: The iOS testbed now handles the app_packages folder as a site directory. - gh-135494: Fix regrtest to support excluding tests from --pgo tests. Patch by Victor Stinner. - gh-135489: Show verbose output for failing tests during PGO profiling step with –enable-optimizations. * Documentation - gh-135171: Document that the iterator for the leftmost for clause in the generator expression is created immediately. * Build - gh-135497: Fix the detection of MAXLOGNAME in the configure.ac script. libpython3_13-1_0-3.13.7-150700.4.23.1.x86_64.rpm python313-3.13.7-150700.4.23.1.src.rpm python313-3.13.7-150700.4.23.1.x86_64.rpm python313-base-3.13.7-150700.4.23.1.x86_64.rpm python313-core-3.13.7-150700.4.23.1.src.rpm python313-curses-3.13.7-150700.4.23.1.x86_64.rpm python313-dbm-3.13.7-150700.4.23.1.x86_64.rpm python313-devel-3.13.7-150700.4.23.1.x86_64.rpm python313-idle-3.13.7-150700.4.23.1.x86_64.rpm python313-tk-3.13.7-150700.4.23.1.x86_64.rpm python313-tools-3.13.7-150700.4.23.1.x86_64.rpm SUSE-SLE-Module-Python3-15-SP7-2025-3167 low SUSE Updates SLE-Module-Python3 15-SP7 x86 64 This update for python-rpmfile, python-zstandard fixes the following issue: - Ship python-rpmfile, and dependencies, to SLES 15-SP6 Python Module. python-rpmfile-2.1.0-150600.13.3.1.src.rpm python311-rpmfile-2.1.0-150600.13.3.1.noarch.rpm SUSE-SLE-Module-Python3-15-SP7-2025-3166 low SUSE Updates SLE-Module-Python3 15-SP7 x86 64 This update for python-zstandard fixes the following issue: - Ships python-rpmfile dependency, python-zstandart, to SLES 15-SP7 Python Module. python-zstandard-0.22.0-150700.15.3.1.src.rpm python311-zstandard-0.22.0-150700.15.3.1.x86_64.rpm SUSE-SLE-Module-Python3-15-SP7-2025-3744 important SUSE Updates SLE-Module-Python3 15-SP7 x86 64 This update for aws-cli, local-npm-registry, python-boto3, python-botocore, python-coverage, python-flaky, python-pluggy, python-pytest, python-pytest-cov, python-pytest-html, python-pytest-metadata, python-pytest-mock contains the following fixes: Changes in aws-cli: - Update to 1.33.26 * api-change:``acm-pca``: Minor refactoring of C2J model for AWS Private CA * api-change:``arc-zonal-shift``: Adds the option to subscribe to get notifications when a zonal autoshift occurs in a region. * api-change:``globalaccelerator``: This feature adds exceptions to the Customer API to avoid throwing Internal Service errors * api-change:``pinpoint``: Add v2 smoke tests and smithy smokeTests trait for SDK testing. * api-change:``quicksight``: Vega ally control options and Support for Reviewed Answers in Topics - from version 1.33.25 * api-change:``batch``: This feature allows AWS Batch Jobs with EKS container orchestration type to be run as Multi-Node Parallel Jobs. * api-change:``bedrock``: Add support for contextual grounding check for Guardrails for Amazon Bedrock. * api-change:``bedrock-agent``: Introduces new data sources and chunking strategies for Knowledge bases, advanced parsing logic using FMs, session summary generation, and code interpretation (preview) for Claude V3 Sonnet and Haiku models. Also introduces Prompt Flows (preview) to link prompts, foundational models, and resources. * api-change:``bedrock-agent-runtime``: Introduces query decomposition, enhanced Agents integration with Knowledge bases, session summary generation, and code interpretation (preview) for Claude V3 Sonnet and Haiku models. Also introduces Prompt Flows (preview) to link prompts, foundational models, and resources for end-to-end solutions. * api-change:``bedrock-runtime``: Add support for contextual grounding check and ApplyGuardrail API for Guardrails for Amazon Bedrock. * api-change:``ec2``: Add parameters to enable provisioning IPAM BYOIPv4 space at a Local Zone Network Border Group level * api-change:``glue``: Add recipe step support for recipe node * api-change:``groundstation``: Documentation update specifying OEM ephemeris units of measurement * api-change:``license-manager-linux-subscriptions``: Add support for third party subscription providers, starting with RHEL subscriptions through Red Hat Subscription Manager (RHSM). Additionally, add support for tagging subscription provider resources, and detect when an instance has more than one Linux subscription and notify the customer. * api-change:``mediaconnect``: AWS Elemental MediaConnect introduces the ability to disable outputs. Disabling an output allows you to keep the output attached to the flow, but stop streaming to the output destination. A disabled output does not incur data transfer costs. - from version 1.33.24 * api-change:``datazone``: This release deprecates dataProductItem field from SearchInventoryResultItem, along with some unused DataProduct shapes * api-change:``fsx``: Adds support for FSx for NetApp ONTAP 2nd Generation file systems, and FSx for OpenZFS Single AZ HA file systems. * api-change:``opensearch``: This release adds support for enabling or disabling Natural Language Query Processing feature for Amazon OpenSearch Service domains, and provides visibility into the current state of the setup or tear-down. * api-change:``sagemaker``: This release 1/ enables optimization jobs that allows customers to perform Ahead-of-time compilation and quantization. 2/ allows customers to control access to Amazon Q integration in SageMaker Studio. 3/ enables AdditionalModelDataSources for CreateModel action. - from version 1.33.23 * api-change:``codedeploy``: Add v2 smoke tests and smithy smokeTests trait for SDK testing. * api-change:``devicefarm``: Add v2 smoke tests and smithy smokeTests trait for SDK testing. * api-change:``dms``: Add v2 smoke tests and smithy smokeTests trait for SDK testing. * api-change:``elasticbeanstalk``: Add v2 smoke tests and smithy smokeTests trait for SDK testing. * api-change:``es``: Add v2 smoke tests and smithy smokeTests trait for SDK testing. * api-change:``firehose``: Add v2 smoke tests and smithy smokeTests trait for SDK testing. * api-change:``gamelift``: Add v2 smoke tests and smithy smokeTests trait for SDK testing. * api-change:``qapps``: This is a general availability (GA) release of Amazon Q Apps, a capability of Amazon Q Business. Q Apps leverages data sources your company has provided to enable users to build, share, and customize apps within your organization. * api-change:``route53resolver``: Add v2 smoke tests and smithy smokeTests trait for SDK testing. * api-change:``ses``: Add v2 smoke tests and smithy smokeTests trait for SDK testing. - from version 1.33.22 * api-change:``acm``: Documentation updates, including fixes for xml formatting, broken links, and ListCertificates description. * api-change:``ecr``: This release for Amazon ECR makes change to bring the SDK into sync with the API. * api-change:``payment-cryptography-data``: Added further restrictions on logging of potentially sensitive inputs and outputs. * api-change:``qbusiness``: Add personalization to Q Applications. Customers can enable or disable personalization when creating or updating a Q application with the personalization configuration. - from version 1.33.21 * api-change:``application-autoscaling``: Doc only update for Application Auto Scaling that fixes resource name. * api-change:``directconnect``: This update includes documentation for support of new native 400 GBps ports for Direct Connect. * api-change:``organizations``: Added a new reason under ConstraintViolationException in RegisterDelegatedAdministrator API to prevent registering suspended accounts as delegated administrator of a service. * api-change:``rekognition``: This release adds support for tagging projects and datasets with the CreateProject and CreateDataset APIs. * api-change:``workspaces``: Fix create workspace bundle RootStorage/UserStorage to accept non null values - Refresh patches for new version - Update Requires from setup.py - Update to 1.33.20 * api-change:``ec2``: Documentation updates for Elastic Compute Cloud (EC2). * api-change:``fms``: Increases Customer API's ManagedServiceData length * api-change:``s3``: Added response overrides to Head Object requests. - from version 1.33.19 * api-change:``apigateway``: Add v2 smoke tests and smithy smokeTests trait for SDK testing. * api-change:``cognito-identity``: Add v2 smoke tests and smithy smokeTests trait for SDK testing. * api-change:``connect``: Authentication profiles are Amazon Connect resources (in gated preview) that allow you to configure authentication settings for users in your contact center. This release adds support for new ListAuthenticationProfiles, DescribeAuthenticationProfile and UpdateAuthenticationProfile APIs. * api-change:``docdb``: Add v2 smoke tests and smithy smokeTests trait for SDK testing. * api-change:``eks``: Updates EKS managed node groups to support EC2 Capacity Blocks for ML * api-change:``payment-cryptography``: Added further restrictions on logging of potentially sensitive inputs and outputs. * api-change:``payment-cryptography-data``: Adding support for dynamic keys for encrypt, decrypt, re-encrypt and translate pin functions. With this change, customers can use one-time TR-31 keys directly in dataplane operations without the need to first import them into the service. * api-change:``stepfunctions``: Add v2 smoke tests and smithy smokeTests trait for SDK testing. * api-change:``swf``: Add v2 smoke tests and smithy smokeTests trait for SDK testing. * api-change:``wafv2``: JSON body inspection: Update documentation to clarify that JSON parsing doesn't include full validation. - from version 1.33.18 * api-change:``acm-pca``: Added CCPC_LEVEL_1_OR_HIGHER KeyStorageSecurityStandard and SM2 KeyAlgorithm and SM3WITHSM2 SigningAlgorithm for China regions. * api-change:``cloudhsmv2``: Added 3 new APIs to support backup sharing: GetResourcePolicy, PutResourcePolicy, and DeleteResourcePolicy. Added BackupArn to the output of the DescribeBackups API. Added support for BackupArn in the CreateCluster API. * api-change:``connect``: This release supports showing PreferredAgentRouting step via DescribeContact API. * api-change:``emr``: This release provides the support for new allocation strategies i.e. CAPACITY_OPTIMIZED_PRIORITIZED for Spot and PRIORITIZED for On-Demand by taking input of priority value for each instance type for instance fleet clusters. * api-change:``glue``: Added AttributesToGet parameter to Glue GetDatabases, allowing caller to limit output to include only the database name. * api-change:``kinesisanalyticsv2``: Support for Flink 1.19 in Managed Service for Apache Flink * api-change:``opensearch``: This release removes support for enabling or disabling Natural Language Query Processing feature for Amazon OpenSearch Service domains. * api-change:``pi``: Noting that the filter db.sql.db_id isn't available for RDS for SQL Server DB instances. * api-change:``workspaces``: Added support for Red Hat Enterprise Linux 8 on Amazon WorkSpaces Personal. - from version 1.33.17 * api-change:``application-autoscaling``: Amazon WorkSpaces customers can now use Application Auto Scaling to automatically scale the number of virtual desktops in a WorkSpaces pool. * api-change:``chime-sdk-media-pipelines``: Added Amazon Transcribe multi language identification to Chime SDK call analytics. Enabling customers sending single stream audio to generate call recordings using Chime SDK call analytics * api-change:``cloudfront``: Doc only update for CloudFront that fixes customer-reported issue * api-change:``datazone``: This release supports the data lineage feature of business data catalog in Amazon DataZone. * api-change:``elasticache``: Add v2 smoke tests and smithy smokeTests trait for SDK testing. * api-change:``mq``: This release makes the EngineVersion field optional for both broker and configuration and uses the latest available version by default. The AutoMinorVersionUpgrade field is also now optional for broker creation and defaults to 'true'. * api-change:``qconnect``: Adds CreateContentAssociation, ListContentAssociations, GetContentAssociation, and DeleteContentAssociation APIs. * api-change:``quicksight``: Adding support for Repeating Sections, Nested Filters * api-change:``rds``: Updates Amazon RDS documentation for TAZ export to S3. * api-change:``sagemaker``: Add capability for Admins to customize Studio experience for the user by showing or hiding Apps and MLTools. * api-change:``workspaces``: Added support for WorkSpaces Pools. - from version 1.33.16 * api-change:``controltower``: Added ListLandingZoneOperations API. * api-change:``eks``: Added support for disabling unmanaged addons during cluster creation. * api-change:``ivs-realtime``: IVS Real-Time now offers customers the ability to upload public keys for customer vended participant tokens. * api-change:``kinesisanalyticsv2``: This release adds support for new ListApplicationOperations and DescribeApplicationOperation APIs. It adds a new configuration to enable system rollbacks, adds field ApplicationVersionCreateTimestamp for clarity and improves support for pagination for APIs. * api-change:``opensearch``: This release adds support for enabling or disabling Natural Language Query Processing feature for Amazon OpenSearch Service domains, and provides visibility into the current state of the setup or tear-down. - from version 1.33.15 * api-change:``autoscaling``: Doc only update for Auto Scaling's TargetTrackingMetricDataQuery * api-change:``ec2``: This release is for the launch of the new u7ib-12tb.224xlarge, R8g, c7gn.metal and mac2-m1ultra.metal instance types * api-change:``networkmanager``: This is model changes & documentation update for the Asynchronous Error Reporting feature for AWS Cloud WAN. This feature allows customers to view errors that occur while their resources are being provisioned, enabling customers to fix their resources without needing external support. * api-change:``workspaces-thin-client``: This release adds the deviceCreationTags field to CreateEnvironment API input, UpdateEnvironment API input and GetEnvironment API output. - from version 1.33.14 * api-change:``bedrock-runtime``: Increases Converse API's document name length * api-change:``customer-profiles``: This release includes changes to ProfileObjectType APIs, adds functionality top set and get capacity for profile object types. * api-change:``ec2``: Fix EC2 multi-protocol info in models. * api-change:``qbusiness``: Allow enable/disable Q Apps when creating/updating a Q application; Return the Q Apps enablement information when getting a Q application. * api-change:``ssm``: Add sensitive trait to SSM IPAddress property for CloudTrail redaction * api-change:``workspaces-web``: Added ability to enable DeepLinking functionality on a Portal via UserSettings as well as added support for IdentityProvider resource tagging. - from version 1.33.13 * api-change:``bedrock-runtime``: This release adds document support to Converse and ConverseStream APIs * api-change:``codeartifact``: Add support for the Cargo package format. * api-change:``compute-optimizer``: This release enables AWS Compute Optimizer to analyze and generate optimization recommendations for Amazon RDS MySQL and RDS PostgreSQL. * api-change:``cost-optimization-hub``: This release enables AWS Cost Optimization Hub to show cost optimization recommendations for Amazon RDS MySQL and RDS PostgreSQL. * api-change:``dynamodb``: Doc-only update for DynamoDB. Fixed Important note in 6 Global table APIs - CreateGlobalTable, DescribeGlobalTable, DescribeGlobalTableSettings, ListGlobalTables, UpdateGlobalTable, and UpdateGlobalTableSettings. * api-change:``glue``: Fix Glue paginators for Jobs, JobRuns, Triggers, Blueprints and Workflows. * api-change:``ivs-realtime``: IVS Real-Time now offers customers the ability to record individual stage participants to S3. * api-change:``sagemaker``: Adds support for model references in Hub service, and adds support for cross-account access of Hubs * api-change:``securityhub``: Documentation updates for Security Hub - from version 1.33.12 * api-change:``artifact``: This release adds an acceptanceType field to the ReportSummary structure (used in the ListReports API response). * api-change:``athena``: Add v2 smoke tests and smithy smokeTests trait for SDK testing. * api-change:``cur``: Add v2 smoke tests and smithy smokeTests trait for SDK testing. * api-change:``directconnect``: Add v2 smoke tests and smithy smokeTests trait for SDK testing. * api-change:``elastictranscoder``: Add v2 smoke tests and smithy smokeTests trait for SDK testing. * api-change:``opensearch``: This release enables customers to use JSON Web Tokens (JWT) for authentication on their Amazon OpenSearch Service domains. - from version 1.33.11 * api-change:``bedrock-runtime``: This release adds support for using Guardrails with the Converse and ConverseStream APIs. * api-change:``cloudtrail``: Add v2 smoke tests and smithy smokeTests trait for SDK testing. * api-change:``config``: Add v2 smoke tests and smithy smokeTests trait for SDK testing. * api-change:``eks``: This release adds support to surface async fargate customer errors from async path to customer through describe-fargate-profile API response. * api-change:``lightsail``: Add v2 smoke tests and smithy smokeTests trait for SDK testing. * api-change:``polly``: Add v2 smoke tests and smithy smokeTests trait for SDK testing. * api-change:``rekognition``: Add v2 smoke tests and smithy smokeTests trait for SDK testing. * api-change:``sagemaker``: Launched a new feature in SageMaker to provide managed MLflow Tracking Servers for customers to track ML experiments. This release also adds a new capability of attaching additional storage to SageMaker HyperPod cluster instances. * api-change:``shield``: Add v2 smoke tests and smithy smokeTests trait for SDK testing. * api-change:``snowball``: Add v2 smoke tests and smithy smokeTests trait for SDK testing. - from version 1.33.10 * api-change:``acm-pca``: Doc-only update that adds name constraints as an allowed extension for ImportCertificateAuthorityCertificate. * api-change:``batch``: Add v2 smoke tests and smithy smokeTests trait for SDK testing. * api-change:``codebuild``: AWS CodeBuild now supports global and organization GitHub webhooks * api-change:``cognito-idp``: Add v2 smoke tests and smithy smokeTests trait for SDK testing. * api-change:``ds``: Add v2 smoke tests and smithy smokeTests trait for SDK testing. * api-change:``efs``: Add v2 smoke tests and smithy smokeTests trait for SDK testing. * api-change:``glue``: This release introduces a new feature, Usage profiles. Usage profiles allow the AWS Glue admin to create different profiles for various classes of users within the account, enforcing limits and defaults for jobs and sessions. * api-change:``mediaconvert``: This release includes support for creating I-frame only video segments for DASH trick play. * api-change:``secretsmanager``: Doc only update for Secrets Manager * api-change:``waf``: Add v2 smoke tests and smithy smokeTests trait for SDK testing. - from version 1.33.9 * api-change:``datazone``: This release introduces a new default service blueprint for custom environment creation. * api-change:``ec2``: Documentation updates for Amazon EC2. * api-change:``macie2``: This release adds support for managing the status of automated sensitive data discovery for individual accounts in an organization, and determining whether individual S3 buckets are included in the scope of the analyses. * api-change:``mediaconvert``: This release adds the ability to search for historical job records within the management console using a search box and/or via the SDK/CLI with partial string matching search on input file name. * api-change:``route53domains``: Add v2 smoke tests and smithy smokeTests trait for SDK testing. - from version 1.33.8 * api-change:``cloudhsmv2``: Added support for hsm type hsm2m.medium. Added supported for creating a cluster in FIPS or NON_FIPS mode. * api-change:``glue``: This release adds support for configuration of evaluation method for composite rules in Glue Data Quality rulesets. * api-change:``iotwireless``: Add RoamingDeviceSNR and RoamingDeviceRSSI to Customer Metrics. * api-change:``kms``: This feature allows customers to use their keys stored in KMS to derive a shared secret which can then be used to establish a secured channel for communication, provide proof of possession, or establish trust with other parties. * api-change:``mediapackagev2``: This release adds support for CMAF ingest (DASH-IF live media ingest protocol interface 1) - from version 1.33.7 * api-change:``apptest``: AWS Mainframe Modernization Application Testing is an AWS Mainframe Modernization service feature that automates functional equivalence testing for mainframe application modernization and migration to AWS, and regression testing. * api-change:``ec2``: Tagging support for Traffic Mirroring FilterRule resource * api-change:``osis``: SDK changes for self-managed vpc endpoint to OpenSearch ingestion pipelines. * api-change:``redshift``: Updates to remove DC1 and DS2 node types. * api-change:``secretsmanager``: Introducing RotationToken parameter for PutSecretValue API * api-change:``securitylake``: This release updates request validation regex to account for non-commercial aws partitions. * api-change:``sesv2``: This release adds support for Amazon EventBridge as an email sending events destination. - from version 1.33.6 * api-change:``accessanalyzer``: IAM Access Analyzer now provides policy recommendations to help resolve unused permissions for IAM roles and users. Additionally, IAM Access Analyzer now extends its custom policy checks to detect when IAM policies grant public access or access to critical resources ahead of deployments. * api-change:``guardduty``: Added API support for GuardDuty Malware Protection for S3. * api-change:``networkmanager``: This is model changes & documentation update for Service Insertion feature for AWS Cloud WAN. This feature allows insertion of AWS/3rd party security services on Cloud WAN. This allows to steer inter/intra segment traffic via security appliances and provide visibility to the route updates. * api-change:``pca-connector-scep``: Connector for SCEP allows you to use a managed, cloud CA to enroll mobile devices and networking gear. SCEP is a widely-adopted protocol used by mobile device management (MDM) solutions for enrolling mobile devices. With the connector, you can use AWS Private CA with popular MDM solutions. * api-change:``sagemaker``: Introduced Scope and AuthenticationRequestExtraParams to SageMaker Workforce OIDC configuration; this allows customers to modify these options for their private Workforce IdP integration. Model Registry Cross-account model package groups are discoverable. - from version 1.33.5 * api-change:``application-signals``: This is the initial SDK release for Amazon CloudWatch Application Signals. Amazon CloudWatch Application Signals provides curated application performance monitoring for developers to monitor and troubleshoot application health using pre-built dashboards and Service Level Objectives. * api-change:``ecs``: This release introduces a new cluster configuration to support the customer-managed keys for ECS managed storage encryption. * api-change:``imagebuilder``: This release updates the regex pattern for Image Builder ARNs. - Refresh patches for new version - Update Requires from setup.py - Update to 1.33.4 * api-change:``auditmanager``: New feature: common controls. When creating custom controls, you can now use pre-grouped AWS data sources based on common compliance themes. Also, the awsServices parameter is deprecated because we now manage services in scope for you. If used, the input is ignored and an empty list is returned. * api-change:``b2bi``: Added exceptions to B2Bi List operations and ConflictException to B2Bi StartTransformerJob operation. Also made capabilities field explicitly required when creating a Partnership. * api-change:``codepipeline``: CodePipeline now supports overriding S3 Source Object Key during StartPipelineExecution, as part of Source Overrides. * api-change:``sagemaker``: This release introduces a new optional parameter: InferenceAmiVersion, in ProductionVariant. * api-change:``verifiedpermissions``: This release adds OpenIdConnect (OIDC) configuration support for IdentitySources, allowing for external IDPs to be used in authorization requests. - from version 1.33.3 * api-change:``account``: This release adds 3 new APIs (AcceptPrimaryEmailUpdate, GetPrimaryEmail, and StartPrimaryEmailUpdate) used to centrally manage the root user email address of member accounts within an AWS organization. * api-change:``firehose``: Adds integration with Secrets Manager for Redshift, Splunk, HttpEndpoint, and Snowflake destinations * api-change:``fsx``: This release adds support to increase metadata performance on FSx for Lustre file systems beyond the default level provisioned when a file system is created. This can be done by specifying MetadataConfiguration during the creation of Persistent_2 file systems or by updating it on demand. * api-change:``glue``: This release adds support for creating and updating Glue Data Catalog Views. * api-change:``iotwireless``: Adds support for wireless device to be in Conflict FUOTA Device Status due to a FUOTA Task, so it couldn't be attached to a new one. * api-change:``location``: Added two new APIs, VerifyDevicePosition and ForecastGeofenceEvents. Added support for putting larger geofences up to 100,000 vertices with Geobuf fields. * api-change:``sns``: Doc-only update for SNS. These changes include customer-reported issues and TXC3 updates. * api-change:``sqs``: Doc only updates for SQS. These updates include customer-reported issues and TCX3 modifications. * api-change:``storagegateway``: Adds SoftwareUpdatePreferences to DescribeMaintenanceStartTime and UpdateMaintenanceStartTime, a structure which contains AutomaticUpdatePolicy. - from version 1.33.2 * api-change:``globalaccelerator``: This release contains a new optional ip-addresses input field for the update accelerator and update custom routing accelerator apis. This input enables consumers to replace IPv4 addresses on existing accelerators with addresses provided in the input. * api-change:``glue``: AWS Glue now supports native SaaS connectivity: Salesforce connector available now * api-change:``s3``: Added new params copySource and key to copyObject API for supporting S3 Access Grants plugin. These changes will not change any of the existing S3 API functionality. * bugfix:emr customization: Update the EC2 service principal when creating the trust policy for EMR default roles to always be ec2.amazonaws.com. - from version 1.33.1 * api-change:``ec2``: U7i instances with up to 32 TiB of DDR5 memory and 896 vCPUs are now available. C7i-flex instances are launched and are lower-priced variants of the Amazon EC2 C7i instances that offer a baseline level of CPU performance with the ability to scale up to the full compute performance 95% of the time. * api-change:``pipes``: This release adds Timestream for LiveAnalytics as a supported target in EventBridge Pipes * api-change:``sagemaker``: Extend DescribeClusterNode response with private DNS hostname and IP address, and placement information about availability zone and availability zone ID. * api-change:``taxsettings``: Initial release of AWS Tax Settings API - from version 1.33.0 * api-change:``amplify``: This doc-only update identifies fields that are specific to Gen 1 and Gen 2 applications. * api-change:``batch``: This release adds support for the AWS Batch GetJobQueueSnapshot API operation. * api-change:``eks``: Adds support for EKS add-ons pod identity associations integration * api-change:``iottwinmaker``: Support RESET_VALUE UpdateType for PropertyUpdates to reset property value to default or null * feature:logs start-live-tail: Adds support for starting a live tail streaming session for one or more log groups. - from version 1.32.117 * api-change:``codebuild``: AWS CodeBuild now supports Self-hosted GitHub Actions runners for Github Enterprise * api-change:``codeguru-security``: This release includes minor model updates and documentation updates. * api-change:``elasticache``: Update to attributes of TestFailover and minor revisions. * api-change:``launch-wizard``: This release adds support for describing workload deployment specifications, deploying additional workload types, and managing tags for Launch Wizard resources with API operations. - from version 1.32.116 * api-change:``acm``: add v2 smoke tests and smithy smokeTests trait for SDK testing. * api-change:``bedrock-agent``: With this release, Knowledge bases for Bedrock adds support for Titan Text Embedding v2. * api-change:``bedrock-runtime``: This release adds Converse and ConverseStream APIs to Bedrock Runtime * api-change:``cloudtrail``: CloudTrail Lake returns PartitionKeys in the GetEventDataStore API response. Events are grouped into partitions based on these keys for better query performance. For example, the calendarday key groups events by day, while combining the calendarday key with the hour key groups them by day and hour. * api-change:``connect``: Adding associatedQueueIds as a SearchCriteria and response field to the SearchRoutingProfiles API * api-change:``emr-serverless``: The release adds support for spark structured streaming. * api-change:``rds``: Updates Amazon RDS documentation for Aurora Postgres DBname. * api-change:``sagemaker``: Adds Model Card information as a new component to Model Package. Autopilot launches algorithm selection for TimeSeries modality to generate AutoML candidates per algorithm. * bugfix:``ssm start-session``: Only provide profile name to session-manager-plugin if provided using --profile flag - from version 1.32.115 * api-change:``athena``: Throwing validation errors on CreateNotebook with Name containing `/`,`:`,`\` * api-change:``codebuild``: AWS CodeBuild now supports manually creating GitHub webhooks * api-change:``connect``: This release includes changes to DescribeContact API's response by including ConnectedToSystemTimestamp, RoutingCriteria, Customer, Campaign, AnsweringMachineDetectionStatus, CustomerVoiceActivity, QualityMetrics, DisconnectDetails, and SegmentAttributes information from a contact in Amazon Connect. * api-change:``glue``: Add optional field JobMode to CreateJob and UpdateJob APIs. * api-change:``securityhub``: Add ROOT type for TargetType model - from version 1.32.114 * api-change:``dynamodb``: Doc-only update for DynamoDB. Specified the IAM actions needed to authorize a user to create a table with a resource-based policy. * api-change:``ec2``: Providing support to accept BgpAsnExtended attribute * api-change:``kafka``: Adds ControllerNodeInfo in ListNodes response to support Raft mode for MSK * api-change:``swf``: This release adds new APIs for deleting activity type and workflow type resources. - from version 1.32.113 * api-change:``dynamodb``: Documentation only updates for DynamoDB. * api-change:``iotfleetwise``: AWS IoT FleetWise now supports listing vehicles with attributes filter, ListVehicles API is updated to support additional attributes filter. * api-change:``managedblockchain``: This is a minor documentation update to address the impact of the shut down of the Goerli and Polygon networks. - from version 1.32.112 * api-change:``emr-serverless``: This release adds the capability to run interactive workloads using Apache Livy Endpoint. * api-change:``opsworks``: Documentation-only update for OpsWorks Stacks. - from version 1.32.111 * api-change:``chatbot``: This change adds support for tagging Chatbot configurations. * api-change:``cloudformation``: Added DeletionMode FORCE_DELETE_STACK for deleting a stack that is stuck in DELETE_FAILED state due to resource deletion failure. * api-change:``kms``: This release includes feature to import customer's asymmetric (RSA, ECC and SM2) and HMAC keys into KMS in China. * api-change:``opensearch``: This release adds support for enabling or disabling a data source configured as part of Zero-ETL integration with Amazon S3, by setting its status. * api-change:``wafv2``: You can now use Security Lake to collect web ACL traffic data. - from version 1.32.110 * api-change:``cloudfront``: Model update; no change to SDK functionality. * api-change:``glue``: Add Maintenance window to CreateJob and UpdateJob APIs and JobRun response. Add a new Job Run State for EXPIRED. * api-change:``lightsail``: This release adds support for Amazon Lightsail instances to switch between dual-stack or IPv4 only and IPv6-only public IP address types. * api-change:``mailmanager``: This release includes a new Amazon SES feature called Mail Manager, which is a set of email gateway capabilities designed to help customers strengthen their organization's email infrastructure, simplify email workflow management, and streamline email compliance control. * api-change:``pi``: Performance Insights added a new input parameter called AuthorizedActions to support the fine-grained access feature. Performance Insights also restricted the acceptable input characters. * api-change:``rds``: Updates Amazon RDS documentation for Db2 license through AWS Marketplace. * api-change:``storagegateway``: Added new SMBSecurityStrategy enum named MandatoryEncryptionNoAes128, new mode enforces encryption and disables AES 128-bit algorithums. - from version 1.32.109 * api-change:``bedrock-agent``: This release adds support for using Guardrails with Bedrock Agents. * api-change:``bedrock-agent-runtime``: This release adds support for using Guardrails with Bedrock Agents. * api-change:``controltower``: Added ListControlOperations API and filtering support for ListEnabledControls API. Updates also includes added metadata for enabled controls and control operations. * api-change:``osis``: Add support for creating an OpenSearch Ingestion pipeline that is attached to a provided VPC. Add information about the destinations of an OpenSearch Ingestion pipeline to the GetPipeline and ListPipelines APIs. * api-change:``rds``: This release adds support for EngineLifecycleSupport on DBInstances, DBClusters, and GlobalClusters. * api-change:``secretsmanager``: add v2 smoke tests and smithy smokeTests trait for SDK testing - from version 1.32.108 * api-change:``application-autoscaling``: add v2 smoke tests and smithy smokeTests trait for SDK testing. * api-change:``codebuild``: Aws CodeBuild now supports 36 hours build timeout * api-change:``elbv2``: This release adds dualstack-without-public-ipv4 IP address type for ALB. * api-change:``lakeformation``: Introduces a new API, GetDataLakePrincipal, that returns the identity of the invoking principal * api-change:``transfer``: Enable use of CloudFormation traits in Smithy model to improve generated CloudFormation schema from the Smithy API model. - from version 1.32.107 * api-change:``acm-pca``: This release adds support for waiters to fail on AccessDeniedException when having insufficient permissions * api-change:``connect``: Adding Contact Flow metrics to the GetMetricDataV2 API * api-change:``kafka``: AWS MSK support for Broker Removal. * api-change:``mwaa``: Amazon MWAA now supports Airflow web server auto scaling to automatically handle increased demand from REST APIs, Command Line Interface (CLI), or more Airflow User Interface (UI) users. Customers can specify maximum and minimum web server instances during environment creation and update workflow. * api-change:``quicksight``: This release adds DescribeKeyRegistration and UpdateKeyRegistration APIs to manage QuickSight Customer Managed Keys (CMK). * api-change:``sagemaker``: Introduced WorkerAccessConfiguration to SageMaker Workteam. This allows customers to configure resource access for workers in a workteam. * api-change:``secretsmanager``: Documentation updates for AWS Secrets Manager - from version 1.32.106 * api-change:``bedrock-agent-runtime``: Updating Bedrock Knowledge Base Metadata & Filters feature with two new filters listContains and stringContains * api-change:``codebuild``: CodeBuild Reserved Capacity VPC Support * api-change:``datasync``: Task executions now display a CANCELLING status when an execution is in the process of being cancelled. * api-change:``grafana``: This release adds new ServiceAccount and ServiceAccountToken APIs. * api-change:``medical-imaging``: Added support for importing medical imaging data from Amazon S3 buckets across accounts and regions. * api-change:``securityhub``: Documentation-only update for AWS Security Hub - Refresh patches for new version - Update Requires from setup.py - Update to 1.32.105 * api-change:``connect``: Amazon Connect provides enhanced search capabilities for flows & flow modules on the Connect admin website and programmatically using APIs. You can search for flows and flow modules by name, description, type, status, and tags, to filter and identify a specific flow in your Connect instances. * api-change:``s3``: Updated a few x-id in the http uri traits - from version 1.32.104 * api-change:``events``: Amazon EventBridge introduces KMS customer-managed key (CMK) encryption support for custom and partner events published on EventBridge Event Bus (including default bus) and UpdateEventBus API. * api-change:``vpc-lattice``: This release adds TLS Passthrough support. It also increases max number of target group per rule to 10. - from version 1.32.103 * api-change:``discovery``: add v2 smoke tests and smithy smokeTests trait for SDK testing * api-change:``greengrassv2``: Mark ComponentVersion in ComponentDeploymentSpecification as required. * api-change:``sagemaker``: Introduced support for G6 instance types on Sagemaker Notebook Instances and on SageMaker Studio for JupyterLab and CodeEditor applications. * api-change:``sso-oidc``: Updated request parameters for PKCE support. - from version 1.32.102 * api-change:``bedrock-agent-runtime``: This release adds support to provide guardrail configuration and modify inference parameters that are then used in RetrieveAndGenerate API in Agents for Amazon Bedrock. * api-change:``pinpoint``: This release adds support for specifying email message headers for Email Templates, Campaigns, Journeys and Send Messages. * api-change:``route53resolver``: Update the DNS Firewall settings to correct a spelling issue. * api-change:``ssm-sap``: Added support for application-aware start/stop of SAP applications running on EC2 instances, with SSM for SAP * api-change:``verifiedpermissions``: Adds policy effect and actions fields to Policy API's. - from version 1.32.101 * api-change:``cognito-idp``: Add EXTERNAL_PROVIDER enum value to UserStatusType. * api-change:``ec2``: Adding Precision Hardware Clock (PHC) to public API DescribeInstanceTypes * api-change:``ecr``: This release adds pull through cache rules support for GitLab container registry in Amazon ECR. * api-change:``fms``: The policy scope resource tag is always a string value, either a non-empty string or an empty string. * api-change:``polly``: Add new engine - generative - that builds the most expressive conversational voices. * api-change:``sqs``: This release adds MessageSystemAttributeNames to ReceiveMessageRequest to replace AttributeNames. - from version 1.32.100 * api-change:``b2bi``: Documentation update to clarify the MappingTemplate definition. * api-change:``budgets``: This release adds tag support for budgets and budget actions. * api-change:``resiliencehub``: AWS Resilience Hub has expanded its drift detection capabilities by introducing a new type of drift detection - application resource drift. This new enhancement detects changes, such as the addition or deletion of resources within the application's input sources. * api-change:``route53profiles``: Doc only update for Route 53 profiles that fixes some link issues - from version 1.32.99 * api-change:``medialive``: AWS Elemental MediaLive now supports configuring how SCTE 35 passthrough triggers segment breaks in HLS and MediaPackage output groups. Previously, messages triggered breaks in all these output groups. The new option is to trigger segment breaks only in groups that have SCTE 35 passthrough enabled. - from version 1.32.98 * api-change:``bedrock-agent``: This release adds support for using Provisioned Throughput with Bedrock Agents. * api-change:``connect``: This release adds 5 new APIs for managing attachments: StartAttachedFileUpload, CompleteAttachedFileUpload, GetAttachedFile, BatchGetAttachedFileMetadata, DeleteAttachedFile. These APIs can be used to programmatically upload and download attachments to Connect resources, like cases. * api-change:``connectcases``: This feature supports the release of Files related items * api-change:``datasync``: Updated guidance on using private or self-signed certificate authorities (CAs) with AWS DataSync object storage locations. * api-change:``inspector2``: This release adds CSV format to GetCisScanReport for Inspector v2 * api-change:``sagemaker``: Amazon SageMaker Inference now supports m6i, c6i, r6i, m7i, c7i, r7i and g5 instance types for Batch Transform Jobs * api-change:``sesv2``: Adds support for specifying replacement headers per BulkEmailEntry in SendBulkEmail in SESv2. - from version 1.32.97 * api-change:``dynamodb``: This release adds support to specify an optional, maximum OnDemandThroughput for DynamoDB tables and global secondary indexes in the CreateTable or UpdateTable APIs. You can also override the OnDemandThroughput settings by calling the ImportTable, RestoreFromPointInTime, or RestoreFromBackup APIs. * api-change:``ec2``: This release includes a new API for retrieving the public endorsement key of the EC2 instance's Nitro Trusted Platform Module (NitroTPM). * api-change:``personalize``: This releases ability to delete users and their data, including their metadata and interactions data, from a dataset group. * api-change:``redshift-serverless``: Update Redshift Serverless List Scheduled Actions Output Response to include Namespace Name. - from version 1.32.96 * api-change:``bedrock-agent``: This release adds support for using MongoDB Atlas as a vector store when creating a knowledge base. * api-change:``ec2``: Documentation updates for Amazon EC2. * api-change:``personalize-runtime``: This release adds support for a Reason attribute for predicted items generated by User-Personalization-v2. * api-change:``securityhub``: Updated CreateMembers API request with limits. * api-change:``sesv2``: Fixes ListContacts and ListImportJobs APIs to use POST instead of GET. - from version 1.32.95 * api-change:``chime-sdk-voice``: Due to changes made by the Amazon Alexa service, GetSipMediaApplicationAlexaSkillConfiguration and PutSipMediaApplicationAlexaSkillConfiguration APIs are no longer available for use. For more information, refer to the Alexa Smart Properties page. * api-change:``codeartifact``: Add support for the Ruby package format. * api-change:``fms``: AWS Firewall Manager now supports the network firewall service stream exception policy feature for accounts within your organization. * api-change:``omics``: Add support for workflow sharing and dynamic run storage * api-change:``opensearch``: This release enables customers to create Route53 A and AAAA alias record types to point custom endpoint domain to OpenSearch domain's dualstack search endpoint. * api-change:``pinpoint-sms-voice-v2``: Amazon Pinpoint has added two new features Multimedia services (MMS) and protect configurations. Use the three new MMS APIs to send media messages to a mobile phone which includes image, audio, text, or video files. Use the ten new protect configurations APIs to block messages to specific countries. * api-change:``qbusiness``: This is a general availability (GA) release of Amazon Q Business. Q Business enables employees in an enterprise to get comprehensive answers to complex questions and take actions through a unified, intuitive web-based chat experience - using an enterprise's existing content, data, and systems. * api-change:``quicksight``: New Q embedding supporting Generative Q&A * api-change:``route53resolver``: Release of FirewallDomainRedirectionAction parameter on the Route 53 DNS Firewall Rule. This allows customers to configure a DNS Firewall rule to inspect all the domains in the DNS redirection chain (default) , such as CNAME, ALIAS, DNAME, etc., or just the first domain and trust the rest. * api-change:``sagemaker``: Amazon SageMaker Training now supports the use of attribute-based access control (ABAC) roles for training job execution roles. Amazon SageMaker Inference now supports G6 instance types. * api-change:``signer``: Documentation updates for AWS Signer. Adds cross-account signing constraint and definitions for cross-account actions. - from version 1.32.94 * api-change:``amplify``: Updating max results limit for listing any resources (Job, Artifacts, Branch, BackendResources, DomainAssociation) to 50 with the exception of list apps that where max results can be up to 100. * api-change:``connectcases``: This feature releases DeleteField, DeletedLayout, and DeleteTemplate API's * api-change:``inspector2``: Update Inspector2 to include new Agentless API parameters. * api-change:``timestream-query``: This change allows users to update and describe account settings associated with their accounts. * api-change:``transcribe``: This update provides error messaging for generative call summarization in Transcribe Call Analytics * api-change:``trustedadvisor``: This release adds the BatchUpdateRecommendationResourceExclusion API to support batch updates of Recommendation Resource exclusion statuses and introduces a new exclusion status filter to the ListRecommendationResources and ListOrganizationRecommendationResources APIs. - from version 1.32.93 * api-change:``codepipeline``: Add ability to manually and automatically roll back a pipeline stage to a previously successful execution. * api-change:``cognito-idp``: Add LimitExceededException to SignUp errors * api-change:``connectcampaigns``: This release adds support for specifying if Answering Machine should wait for prompt sound. * api-change:``marketplace-entitlement``: Releasing minor endpoint updates. * api-change:``oam``: This release introduces support for Source Accounts to define which Metrics and Logs to share with the Monitoring Account * api-change:``rds``: SupportsLimitlessDatabase field added to describe-db-engine-versions to indicate whether the DB engine version supports Aurora Limitless Database. * api-change:``support``: Releasing minor endpoint updates. * enhancement:dependency: Bump upper bound of colorama to <0.4.7; fixes `#7086 <https://github.com/aws/aws-cli/issues/7086>`__ - from version 1.32.92 * api-change:``appsync``: UpdateGraphQLAPI documentation update and datasource introspection secret arn update * api-change:``fms``: AWS Firewall Manager adds support for network ACL policies to manage Amazon Virtual Private Cloud (VPC) network access control lists (ACLs) for accounts in your organization. * api-change:``ivs``: Bug Fix: IVS does not support arns with the `svs` prefix * api-change:``ivs-realtime``: Bug Fix: IVS Real Time does not support ARNs using the `svs` prefix. * api-change:``rds``: Updates Amazon RDS documentation for setting local time zones for RDS for Db2 DB instances. * api-change:``stepfunctions``: Add new ValidateStateMachineDefinition operation, which performs syntax checking on the definition of a Amazon States Language (ASL) state machine. - from version 1.32.91 * api-change:``datasync``: This change allows users to disable and enable the schedules associated with their tasks. * api-change:``ec2``: Launching capability for customers to enable or disable automatic assignment of public IPv4 addresses to their network interface * api-change:``emr-containers``: EMRonEKS Service support for SecurityConfiguration enforcement for Spark Jobs. * api-change:``entityresolution``: Support Batch Unique IDs Deletion. * api-change:``gamelift``: Amazon GameLift releases container fleets support for public preview. Deploy Linux-based containerized game server software for hosting on Amazon GameLift. * api-change:``ssm``: Add SSM DescribeInstanceProperties API to public AWS SDK. - from version 1.32.90 * api-change:``bedrock``: This release introduces Model Evaluation and Guardrails for Amazon Bedrock. * api-change:``bedrock-agent``: Introducing the ability to create multiple data sources per knowledge base, specify S3 buckets as data sources from external accounts, and exposing levers to define the deletion behavior of the underlying vector store data. * api-change:``bedrock-agent-runtime``: This release introduces zero-setup file upload support for the RetrieveAndGenerate API. This allows you to chat with your data without setting up a Knowledge Base. * api-change:``bedrock-runtime``: This release introduces Guardrails for Amazon Bedrock. * api-change:``ce``: Added additional metadata that might be applicable to your reservation recommendations. * api-change:``ec2``: This release introduces EC2 AMI Deregistration Protection, a new AMI property that can be enabled by customers to protect an AMI against an unintended deregistration. This release also enables the AMI owners to view the AMI 'LastLaunchedTime' in DescribeImages API. * api-change:``pi``: Clarifies how aggregation works for GetResourceMetrics in the Performance Insights API. * api-change:``rds``: Fix the example ARN for ModifyActivityStreamRequest * api-change:``workspaces-web``: Added InstanceType and MaxConcurrentSessions parameters on CreatePortal and UpdatePortal Operations as well as the ability to read Customer Managed Key & Additional Encryption Context parameters on supported resources (Portal, BrowserSettings, UserSettings, IPAccessSettings) - from version 1.32.89 * api-change:``bedrock-agent``: Releasing the support for simplified configuration and return of control * api-change:``bedrock-agent-runtime``: Releasing the support for simplified configuration and return of control * api-change:``payment-cryptography``: Adding support to TR-31/TR-34 exports for optional headers, allowing customers to add additional metadata (such as key version and KSN) when exporting keys from the service. * api-change:``redshift-serverless``: Updates description of schedule field for scheduled actions. * api-change:``route53profiles``: Route 53 Profiles allows you to apply a central DNS configuration across many VPCs regardless of account. * api-change:``sagemaker``: This release adds support for Real-Time Collaboration and Shared Space for JupyterLab App on SageMaker Studio. * api-change:``servicediscovery``: This release adds examples to several Cloud Map actions. * api-change:``transfer``: Adding new API to support remote directory listing using SFTP connector - from version 1.32.88 * api-change:``glue``: Adding RowFilter in the response for GetUnfilteredTableMetadata API * api-change:``internetmonitor``: This update introduces the GetInternetEvent and ListInternetEvents APIs, which provide access to internet events displayed on the Amazon CloudWatch Internet Weather Map. * api-change:``personalize``: This releases auto training capability while creating a solution and automatically syncing latest solution versions when creating/updating a campaign - from version 1.32.87 * api-change:``drs``: Outpost ARN added to Source Server and Recovery Instance * api-change:``emr-serverless``: This release adds the capability to publish detailed Spark engine metrics to Amazon Managed Service for Prometheus (AMP) for enhanced monitoring for Spark jobs. * api-change:``guardduty``: Added IPv6Address fields for local and remote IP addresses * api-change:``quicksight``: This release adds support for the Cross Sheet Filter and Control features, and support for warnings in asset imports for any permitted errors encountered during execution * api-change:``rolesanywhere``: This release introduces the PutAttributeMapping and DeleteAttributeMapping APIs. IAM Roles Anywhere now provides the capability to define a set of mapping rules, allowing customers to specify which data is extracted from their X.509 end-entity certificates. * api-change:``sagemaker``: Removed deprecated enum values and updated API documentation. * api-change:``workspaces``: Adds new APIs for managing and sharing WorkSpaces BYOL configuration across accounts. - from version 1.32.86 * api-change:``ec2``: Documentation updates for Elastic Compute Cloud (EC2). * api-change:``qbusiness``: This release adds support for IAM Identity Center (IDC) as the identity gateway for Q Business. It also allows users to provide an explicit intent for Q Business to identify how the Chat request should be handled. - from version 1.32.85 * api-change:``bedrock-agent``: For Create Agent API, the agentResourceRoleArn parameter is no longer required. * api-change:``emr-serverless``: This release adds support for shuffle optimized disks that allow larger disk sizes and higher IOPS to efficiently run shuffle heavy workloads. * api-change:``entityresolution``: Cross Account Resource Support . * api-change:``iotwireless``: Add PublicGateways in the GetWirelessStatistics call response, indicating the LoRaWAN public network accessed by the device. * api-change:``lakeformation``: This release adds Lake Formation managed RAM support for the 4 APIs - "DescribeLakeFormationIdentityCenterConfiguration", "CreateLakeFormationIdentityCenterConfiguration", "DescribeLakeFormationIdentityCenterConfiguration", and "DeleteLakeFormationIdentityCenterConfiguration" * api-change:``m2``: Adding new ListBatchJobRestartPoints API and support for restart batch job. * api-change:``mediapackagev2``: Dash v2 is a MediaPackage V2 feature to support egressing on DASH manifest format. * api-change:``outposts``: This release adds new APIs to allow customers to configure their Outpost capacity at order-time. * api-change:``wellarchitected``: AWS Well-Architected now has a Connector for Jira to allow customers to efficiently track workload risks and improvement efforts and create closed-loop mechanisms. - from version 1.32.84 * api-change:``cloudformation``: Adding support for the new parameter "IncludePropertyValues" in the CloudFormation DescribeChangeSet API. When this parameter is included, the DescribeChangeSet response will include more detailed information such as before and after values for the resource properties that will change. * api-change:``config``: Updates documentation for AWS Config * api-change:``glue``: Modifying request for GetUnfilteredTableMetadata for view-related fields. * api-change:``healthlake``: Added new CREATE_FAILED status for data stores. Added new errorCause to DescribeFHIRDatastore API and ListFHIRDatastores API response for additional insights into data store creation and deletion workflows. * api-change:``iotfleethub``: Documentation updates for AWS IoT Fleet Hub to clarify that Fleet Hub supports organization instance of IAM Identity Center. * api-change:``kms``: This feature supports the ability to specify a custom rotation period for automatic key rotations, the ability to perform on-demand key rotations, and visibility into your key material rotations. * api-change:``mediatailor``: Added InsertionMode to PlaybackConfigurations. This setting controls whether players can use stitched or guided ad insertion. The default for players that do not specify an insertion mode is stitched. * api-change:``neptune-graph``: Update to API documentation to resolve customer reported issues. * api-change:``outposts``: This release adds EXPEDITORS as a valid shipment carrier. * api-change:``redshift``: Adds support for Amazon Redshift DescribeClusterSnapshots API to include Snapshot ARN response field. * api-change:``transfer``: This change releases support for importing self signed certificates to the Transfer Family for sending outbound file transfers over TLS/HTTPS. - from version 1.32.83 * api-change:``batch``: This release adds the task properties field to attempt details and the name field on EKS container detail. * api-change:``cloudfront``: CloudFront origin access control extends support to AWS Lambda function URLs and AWS Elemental MediaPackage v2 origins. * api-change:``cloudwatch``: This release adds support for Metric Characteristics for CloudWatch Anomaly Detection. Anomaly Detector now takes Metric Characteristics object with Periodic Spikes boolean field that tells Anomaly Detection that spikes that repeat at the same time every week are part of the expected pattern. * api-change:``codebuild``: Support access tokens for Bitbucket sources * api-change:``iam``: For CreateOpenIDConnectProvider API, the ThumbprintList parameter is no longer required. * api-change:``medialive``: AWS Elemental MediaLive introduces workflow monitor, a new feature that enables the visualization and monitoring of your media workflows. Create signal maps of your existing workflows and monitor them by creating notification and monitoring template groups. * api-change:``omics``: This release adds support for retrieval of S3 direct access metadata on sequence stores and read sets, and adds support for SHA256up and SHA512up HealthOmics ETags. * api-change:``pipes``: LogConfiguration ARN validation fixes * api-change:``rds``: Updates Amazon RDS documentation for Standard Edition 2 support in RDS Custom for Oracle. * api-change:``s3control``: Documentation updates for Amazon S3-control. - from version 1.32.82 * api-change:``cleanrooms``: AWS Clean Rooms Differential Privacy is now fully available. Differential privacy protects against user-identification attempts. * api-change:``connect``: This release adds new Submit Auto Evaluation Action for Amazon Connect Rules. * api-change:``networkmonitor``: Examples were added to CloudWatch Network Monitor commands. * api-change:``qconnect``: This release adds a new QiC public API updateSession and updates an existing QiC public API createSession * api-change:``rekognition``: Added support for ContentType to content moderation detections. * api-change:``supplychain``: This release includes API SendDataIntegrationEvent for AWS Supply Chain * api-change:``workspaces-thin-client``: Adding tags field to SoftwareSet. Removing tags fields from Summary objects. Changing the list of exceptions in tagging APIs. Fixing an issue where the SDK returns empty tags in Get APIs. - from version 1.32.81 * api-change:``codebuild``: Add new webhook filter types for GitHub webhooks * api-change:``mediaconvert``: This release includes support for bringing your own fonts to use for burn-in or DVB-Sub captioning workflows. * api-change:``pinpoint``: The OrchestrationSendingRoleArn has been added to the email channel and is used to send emails from campaigns or journeys. * api-change:``rds``: This release adds support for specifying the CA certificate to use for the new db instance when restoring from db snapshot, restoring from s3, restoring to point in time, and creating a db instance read replica. - from version 1.32.80 * api-change:``controlcatalog``: This is the initial SDK release for AWS Control Catalog, a central catalog for AWS managed controls. This release includes 3 new APIs - ListDomains, ListObjectives, and ListCommonControls - that vend high-level data to categorize controls across the AWS platform. * api-change:``mgn``: Added USE_SOURCE as default option to LaunchConfigurationTemplate bootMode parameter. * api-change:``networkmonitor``: Updated the allowed monitorName length for CloudWatch Network Monitor. - from version 1.32.79 * api-change:``quicksight``: Adding IAMIdentityCenterInstanceArn parameter to CreateAccountSubscription * api-change:``resource-groups``: Added a new QueryErrorCode RESOURCE_TYPE_NOT_SUPPORTED that is returned by the ListGroupResources operation if the group query contains unsupported resource types. * api-change:``verifiedpermissions``: Adding BatchIsAuthorizedWithToken API which supports multiple authorization requests against a PolicyStore given a bearer token. - from version 1.32.78 * api-change:``b2bi``: Adding support for X12 5010 HIPAA EDI version and associated transaction sets. * api-change:``cleanrooms``: Feature: New schemaStatusDetails field to the existing Schema object that displays a status on Schema API responses to show whether a schema is queryable or not. New BatchGetSchemaAnalysisRule API to retrieve multiple schemaAnalysisRules using a single API call. * api-change:``ec2``: Amazon EC2 G6 instances powered by NVIDIA L4 Tensor Core GPUs can be used for a wide range of graphics-intensive and machine learning use cases. Gr6 instances also feature NVIDIA L4 GPUs and can be used for graphics workloads with higher memory requirements. * api-change:``emr-containers``: This release adds support for integration with EKS AccessEntry APIs to enable automatic Cluster Access for EMR on EKS. * api-change:``ivs``: API update to include an SRT ingest endpoint and passphrase for all channels. * api-change:``verifiedpermissions``: Adds GroupConfiguration field to Identity Source API's - from version 1.32.77 * api-change:``cleanroomsml``: The release includes a public SDK for AWS Clean Rooms ML APIs, making them globally available to developers worldwide. * api-change:``cloudformation``: This release would return a new field - PolicyAction in cloudformation's existed DescribeChangeSetResponse, showing actions we are going to apply on the physical resource (e.g., Delete, Retain) according to the user's template * api-change:``datazone``: This release supports the feature of dataQuality to enrich asset with dataQualityResult in Amazon DataZone. * api-change:``docdb``: This release adds Global Cluster Switchover capability which enables you to change your global cluster's primary AWS Region, the region that serves writes, while preserving the replication between all regions in the global cluster. * api-change:``groundstation``: This release adds visibilityStartTime and visibilityEndTime to DescribeContact and ListContacts responses. * api-change:``lambda``: Add Ruby 3.3 (ruby3.3) support to AWS Lambda * api-change:``medialive``: Cmaf Ingest outputs are now supported in Media Live * api-change:``medical-imaging``: SearchImageSets API now supports following enhancements - Additional support for searching on UpdatedAt and SeriesInstanceUID - Support for searching existing filters between dates/times - Support for sorting the search result by Ascending/Descending - Additional parameters returned in the response * api-change:``transfer``: Add ability to specify Security Policies for SFTP Connectors - from version 1.32.76 * api-change:``ecs``: Documentation only update for Amazon ECS. * api-change:``glue``: Adding View related fields to responses of read-only Table APIs. * api-change:``ivschat``: Doc-only update. Changed "Resources" to "Key Concepts" in docs and updated text. * api-change:``rolesanywhere``: This release increases the limit on the roleArns request parameter for the *Profile APIs that support it. This parameter can now take up to 250 role ARNs. * api-change:``securityhub``: Documentation updates for AWS Security Hub - from version 1.32.75 * api-change:``cloudwatch``: This release adds support for CloudWatch Anomaly Detection on cross-account metrics. SingleMetricAnomalyDetector and MetricDataQuery inputs to Anomaly Detection APIs now take an optional AccountId field. * api-change:``datazone``: This release supports the feature of AI recommendations for descriptions to enrich the business data catalog in Amazon DataZone. * api-change:``deadline``: AWS Deadline Cloud is a new fully managed service that helps customers set up, deploy, and scale rendering projects in minutes, so they can improve the efficiency of their rendering pipelines and take on more projects. * api-change:``emr``: This release fixes a broken link in the documentation. * api-change:``lightsail``: This release adds support to upgrade the TLS version of the distribution. - from version 1.32.74 * api-change:``b2bi``: Supporting new EDI X12 transaction sets for X12 versions 4010, 4030, and 5010. * api-change:``codebuild``: Add new fleet status code for Reserved Capacity. * api-change:``codeconnections``: Duplicating the CodeStar Connections service into the new, rebranded AWS CodeConnections service. * api-change:``internetmonitor``: This release adds support to allow customers to track cross account monitors through ListMonitor, GetMonitor, ListHealthEvents, GetHealthEvent, StartQuery APIs. * api-change:``iotwireless``: Add support for retrieving key historical and live metrics for LoRaWAN devices and gateways * api-change:``marketplace-catalog``: This release enhances the ListEntities API to support ResaleAuthorizationId filter and sort for OfferEntity in the request and the addition of a ResaleAuthorizationId field in the response of OfferSummary. * api-change:``neptune-graph``: Add the new API Start-Import-Task for Amazon Neptune Analytics. * api-change:``sagemaker``: This release adds support for custom images for the CodeEditor App on SageMaker Studio * enhancement:``s3``: Add parameter to validate source and destination S3 URIs to the ``mv`` command. - from version 1.32.73 * api-change:``codecatalyst``: This release adds support for understanding pending changes to subscriptions by including two new response parameters for the GetSubscription API for Amazon CodeCatalyst. * api-change:``compute-optimizer``: This release enables AWS Compute Optimizer to analyze and generate recommendations with a new customization preference, Memory Utilization. * api-change:``ec2``: Amazon EC2 C7gd, M7gd and R7gd metal instances with up to 3.8 TB of local NVMe-based SSD block-level storage have up to 45% improved real-time NVMe storage performance than comparable Graviton2-based instances. * api-change:``eks``: Add multiple customer error code to handle customer caused failure when managing EKS node groups * api-change:``guardduty``: Add EC2 support for GuardDuty Runtime Monitoring auto management. * api-change:``neptune-graph``: Update ImportTaskCancelled waiter to evaluate task state correctly and minor documentation changes. * api-change:``oam``: This release adds support for sharing AWS::InternetMonitor::Monitor resources. * api-change:``quicksight``: Amazon QuickSight: Adds support for setting up VPC Endpoint restrictions for accessing QuickSight Website. - from version 1.32.72 * api-change:``batch``: This feature allows AWS Batch to support configuration of imagePullSecrets and allowPrivilegeEscalation for jobs running on EKS * api-change:``bedrock-agent``: This changes introduces metadata documents statistics and also updates the documentation for bedrock agent. * api-change:``bedrock-agent-runtime``: This release introduces filtering support on Retrieve and RetrieveAndGenerate APIs. * api-change:``elasticache``: Added minimum capacity to Amazon ElastiCache Serverless. This feature allows customer to ensure minimum capacity even without current load * api-change:``secretsmanager``: Documentation updates for Secrets Manager - from version 1.32.71 * api-change:``bedrock-agent-runtime``: This release adds support to customize prompts sent through the RetrieveAndGenerate API in Agents for Amazon Bedrock. * api-change:``ce``: Adds support for backfill of cost allocation tags, with new StartCostAllocationTagBackfill and ListCostAllocationTagBackfillHistory API. * api-change:``ec2``: Documentation updates for Elastic Compute Cloud (EC2). * api-change:``ecs``: This is a documentation update for Amazon ECS. * api-change:``finspace``: Add new operation delete-kx-cluster-node and add status parameter to list-kx-cluster-node operation. - from version 1.32.70 * api-change:``codebuild``: Supporting GitLab and GitLab Self Managed as source types in AWS CodeBuild. * api-change:``ec2``: Added support for ModifyInstanceMetadataDefaults and GetInstanceMetadataDefaults to set Instance Metadata Service account defaults * api-change:``ecs``: Documentation only update for Amazon ECS. * api-change:``emr-containers``: This release increases the number of supported job template parameters from 20 to 100. * api-change:``globalaccelerator``: AWS Global Accelerator now supports cross-account sharing for bring your own IP addresses. * api-change:``medialive``: Exposing TileMedia H265 options * api-change:``sagemaker``: Introduced support for the following new instance types on SageMaker Studio for JupyterLab and CodeEditor applications: m6i, m6id, m7i, c6i, c6id, c7i, r6i, r6id, r7i, and p5 - from version 1.32.69 * api-change:``firehose``: Updates Amazon Firehose documentation for message regarding Enforcing Tags IAM Policy. * api-change:``kendra``: Documentation update, March 2024. Corrects some docs for Amazon Kendra. * api-change:``pricing``: Add ResourceNotFoundException to ListPriceLists and GetPriceListFileUrl APIs * api-change:``rolesanywhere``: This release relaxes constraints on the durationSeconds request parameter for the *Profile APIs that support it. This parameter can now take on values that go up to 43200. * api-change:``securityhub``: Added new resource detail object to ASFF, including resource for LastKnownExploitAt - from version 1.32.68 * api-change:``codeartifact``: This release adds Package groups to CodeArtifact so you can more conveniently configure package origin controls for multiple packages. - from version 1.32.67 * api-change:``accessanalyzer``: This release adds support for policy validation and external access findings for DynamoDB tables and streams. IAM Access Analyzer helps you author functional and secure resource-based policies and identify cross-account access. Updated service API, documentation, and paginators. * api-change:``codebuild``: This release adds support for new webhook events (RELEASED and PRERELEASED) and filter types (TAG_NAME and RELEASE_NAME). * api-change:``connect``: This release updates the *InstanceStorageConfig APIs to support a new ResourceType: REAL_TIME_CONTACT_ANALYSIS_CHAT_SEGMENTS. Use this resource type to enable streaming for real-time analysis of chat contacts and to associate a Kinesis stream where real-time analysis chat segments will be published. * api-change:``dynamodb``: This release introduces 3 new APIs ('GetResourcePolicy', 'PutResourcePolicy' and 'DeleteResourcePolicy') and modifies the existing 'CreateTable' API for the resource-based policy support. It also modifies several APIs to accept a 'TableArn' for the 'TableName' parameter. * api-change:``managedblockchain-query``: AMB Query: update GetTransaction to include transactionId as input * api-change:``savingsplans``: Introducing the Savings Plans Return feature enabling customers to return their Savings Plans within 7 days of purchase. - from version 1.32.66 * api-change:``cloudformation``: Documentation update, March 2024. Corrects some formatting. * api-change:``ec2``: This release adds the new DescribeMacHosts API operation for getting information about EC2 Mac Dedicated Hosts. Users can now see the latest macOS versions that their underlying Apple Mac can support without needing to be updated. * api-change:``finspace``: Adding new attributes readWrite and onDemand to dataview models for Database Maintenance operations. * api-change:``logs``: Update LogSamples field in Anomaly model to be a list of LogEvent * api-change:``managedblockchain-query``: Introduces a new API for Amazon Managed Blockchain Query: ListFilteredTransactionEvents. - from version 1.32.65 * api-change:``cloudformation``: This release supports for a new API ListStackSetAutoDeploymentTargets, which provider auto-deployment configuration as a describable resource. Customers can now view the specific combinations of regions and OUs that are being auto-deployed. * api-change:``kms``: Adds the ability to use the default policy name by omitting the policyName parameter in calls to PutKeyPolicy and GetKeyPolicy * api-change:``mediatailor``: This release adds support to allow customers to show different content within a channel depending on metadata associated with the viewer. * api-change:``rds``: This release launches the ModifyIntegration API and support for data filtering for zero-ETL Integrations. * api-change:``s3``: Fix two issues with response root node names. * api-change:``timestream-query``: Documentation updates, March 2024 - from version 1.32.64 * api-change:``backup``: This release introduces a boolean attribute ManagedByAWSBackupOnly as part of ListRecoveryPointsByResource api to filter the recovery points based on ownership. This attribute can be used to filter out the recovery points protected by AWSBackup. * api-change:``codebuild``: AWS CodeBuild now supports overflow behavior on Reserved Capacity. * api-change:``connect``: This release adds Hierarchy based Access Control fields to Security Profile public APIs and adds support for UserAttributeFilter to SearchUsers API. * api-change:``ec2``: Add media accelerator and neuron device information on the describe instance types API. * api-change:``kinesisanalyticsv2``: Support for Flink 1.18 in Managed Service for Apache Flink * api-change:``s3``: Documentation updates for Amazon S3. * api-change:``sagemaker``: Adds m6i, m6id, m7i, c6i, c6id, c7i, r6i r6id, r7i, p5 instance type support to Sagemaker Notebook Instances and miscellaneous wording fixes for previous Sagemaker documentation. * api-change:``workspaces-thin-client``: Removed unused parameter kmsKeyArn from UpdateDeviceRequest - from version 1.32.63 * api-change:``amplify``: Documentation updates for Amplify. Identifies the APIs available only to apps created using Amplify Gen 1. * api-change:``ec2-instance-connect``: This release includes a new exception type "SerialConsoleSessionUnsupportedException" for SendSerialConsoleSSHPublicKey API. * api-change:``elbv2``: This release allows you to configure HTTP client keep-alive duration for communication between clients and Application Load Balancers. * api-change:``fis``: This release adds support for previewing target resources before running a FIS experiment. It also adds resource ARNs for actions, experiments, and experiment templates to API responses. * api-change:``rds``: Updates Amazon RDS documentation for EBCDIC collation for RDS for Db2. * api-change:``secretsmanager``: Doc only update for Secrets Manager * api-change:``timestream-influxdb``: This is the initial SDK release for Amazon Timestream for InfluxDB. Amazon Timestream for InfluxDB is a new time-series database engine that makes it easy for application developers and DevOps teams to run InfluxDB databases on AWS for near real-time time-series applications using open source APIs. - from version 1.32.62 * api-change:``ivs-realtime``: adds support for multiple new composition layout configuration options (grid, pip) * api-change:``kinesisanalyticsv2``: Support new RuntimeEnvironmentUpdate parameter within UpdateApplication API allowing callers to change the Flink version upon which their application runs. * api-change:``s3``: This release makes the default option for S3 on Outposts request signing to use the SigV4A algorithm when using AWS Common Runtime (CRT). - from version 1.32.61 * api-change:``cloudformation``: CloudFormation documentation update for March, 2024 * api-change:``connect``: This release increases MaxResults limit to 500 in request for SearchUsers, SearchQueues and SearchRoutingProfiles APIs of Amazon Connect. * api-change:``ec2``: Documentation updates for Amazon EC2. * api-change:``kafka``: Added support for specifying the starting position of topic replication in MSK-Replicator. * api-change:``ssm``: March 2024 doc-only updates for Systems Manager. - from version 1.32.60 * api-change:``codestar-connections``: Added a sync configuration enum to disable publishing of deployment status to source providers (PublishDeploymentStatus). Added a sync configuration enum (TriggerStackUpdateOn) to only trigger changes. * api-change:``elasticache``: Revisions to API text that are now to be carried over to SDK text, changing usages of "SFO" in code examples to "us-west-1", and some other typos. * api-change:``mediapackagev2``: This release enables customers to safely update their MediaPackage v2 channel groups, channels and origin endpoints using entity tags. - from version 1.32.59 * api-change:``batch``: This release adds JobStateTimeLimitActions setting to the Job Queue API. It allows you to configure an action Batch can take for a blocking job in front of the queue after the defined period of time. The new parameter applies for ECS, EKS, and FARGATE Job Queues. * api-change:``bedrock-agent-runtime``: Documentation update for Bedrock Runtime Agent * api-change:``cloudtrail``: Added exceptions to CreateTrail, DescribeTrails, and ListImportFailures APIs. * api-change:``codebuild``: This release adds support for a new webhook event: PULL_REQUEST_CLOSED. * api-change:``cognito-idp``: Add ConcurrentModificationException to SetUserPoolMfaConfig * api-change:``guardduty``: Add RDS Provisioned and Serverless Usage types * api-change:``transfer``: Added DES_EDE3_CBC to the list of supported encryption algorithms for messages sent with an AS2 connector. - from version 1.32.58 * api-change:``appconfig``: AWS AppConfig now supports dynamic parameters, which enhance the functionality of AppConfig Extensions by allowing you to provide parameter values to your Extensions at the time you deploy your configuration. * api-change:``ec2``: This release adds an optional parameter to RegisterImage and CopyImage APIs to support tagging AMIs at the time of creation. * api-change:``grafana``: Adds support for the new GrafanaToken as part of the Amazon Managed Grafana Enterprise plugins upgrade to associate your AWS account with a Grafana Labs account. * api-change:``lambda``: Documentation updates for AWS Lambda * api-change:``payment-cryptography-data``: AWS Payment Cryptography EMV Decrypt Feature Release * api-change:``rds``: Updates Amazon RDS documentation for io2 storage for Multi-AZ DB clusters * api-change:``snowball``: Doc-only update for change to EKS-Anywhere ordering. * api-change:``wafv2``: You can increase the max request body inspection size for some regional resources. The size setting is in the web ACL association config. Also, the AWSManagedRulesBotControlRuleSet EnableMachineLearning setting now takes a Boolean instead of a primitive boolean type, for languages like Java. * api-change:``workspaces``: Added note for user decoupling - from version 1.32.57 * api-change:``dynamodb``: Doc only updates for DynamoDB documentation * api-change:``imagebuilder``: Add PENDING status to Lifecycle Execution resource status. Add StartTime and EndTime to ListLifecycleExecutionResource API response. * api-change:``mwaa``: Amazon MWAA adds support for Apache Airflow v2.8.1. * api-change:``rds``: Updated the input of CreateDBCluster and ModifyDBCluster to support setting CA certificates. Updated the output of DescribeDBCluster to show current CA certificate setting value. * api-change:``redshift``: Update for documentation only. Covers port ranges, definition updates for data sharing, and definition updates to cluster-snapshot documentation. * api-change:``verifiedpermissions``: Deprecating details in favor of configuration for GetIdentitySource and ListIdentitySources APIs. - from version 1.32.56 * api-change:``apigateway``: Documentation updates for Amazon API Gateway * api-change:``chatbot``: Minor update to documentation. * api-change:``organizations``: This release contains an endpoint addition * api-change:``sesv2``: Adds support for providing custom headers within SendEmail and SendBulkEmail for SESv2. - from version 1.32.55 * api-change:``cloudformation``: Add DetailedStatus field to DescribeStackEvents and DescribeStacks APIs * api-change:``fsx``: Added support for creating FSx for NetApp ONTAP file systems with up to 12 HA pairs, delivering up to 72 GB/s of read throughput and 12 GB/s of write throughput. * api-change:``organizations``: Documentation update for AWS Organizations - from version 1.32.54 * api-change:``accessanalyzer``: Fixed a typo in description field. * api-change:``autoscaling``: With this release, Amazon EC2 Auto Scaling groups, EC2 Fleet, and Spot Fleet improve the default price protection behavior of attribute-based instance type selection of Spot Instances, to consistently select from a wide range of instance types. * api-change:``ec2``: With this release, Amazon EC2 Auto Scaling groups, EC2 Fleet, and Spot Fleet improve the default price protection behavior of attribute-based instance type selection of Spot Instances, to consistently select from a wide range of instance types. - from version 1.32.53 * api-change:``docdb-elastic``: Launched Elastic Clusters Readable Secondaries, Start/Stop, Configurable Shard Instance count, Automatic Backups and Snapshot Copying * api-change:``eks``: Added support for new AL2023 AMIs to the supported AMITypes. * api-change:``lexv2-models``: This release makes AMAZON.QnAIntent generally available in Amazon Lex. This generative AI feature leverages large language models available through Amazon Bedrock to automate frequently asked questions (FAQ) experience for end-users. * api-change:``migrationhuborchestrator``: Adds new CreateTemplate, UpdateTemplate and DeleteTemplate APIs. * api-change:``quicksight``: TooltipTarget for Combo chart visuals; ColumnConfiguration limit increase to 2000; Documentation Update * api-change:``sagemaker``: Adds support for ModelDataSource in Model Packages to support unzipped models. Adds support to specify SourceUri for models which allows registration of models without mandating a container for hosting. Using SourceUri, customers can decouple the model from hosting information during registration. * api-change:``securitylake``: Add capability to update the Data Lake's MetaStoreManager Role in order to perform required data lake updates to use Iceberg table format in their data lake or update the role for any other reason. - from version 1.32.52 * api-change:``batch``: This release adds Batch support for configuration of multicontainer jobs in ECS, Fargate, and EKS. This support is available for all types of jobs, including both array jobs and multi-node parallel jobs. * api-change:``bedrock-agent-runtime``: This release adds support to override search strategy performed by the Retrieve and RetrieveAndGenerate APIs for Amazon Bedrock Agents * api-change:``ce``: This release introduces the new API 'GetApproximateUsageRecords', which retrieves estimated usage records for hourly granularity or resource-level data at daily granularity. * api-change:``ec2``: This release increases the range of MaxResults for GetNetworkInsightsAccessScopeAnalysisFindings to 1,000. * api-change:``iot``: This release reduces the maximum results returned per query invocation from 500 to 100 for the SearchIndex API. This change has no implications as long as the API is invoked until the nextToken is NULL. * api-change:``wafv2``: AWS WAF now supports configurable time windows for request aggregation with rate-based rules. Customers can now select time windows of 1 minute, 2 minutes or 10 minutes, in addition to the previously supported 5 minutes. - from version 1.32.51 * api-change:``amplifyuibuilder``: We have added the ability to tag resources after they are created - from version 1.32.50 * api-change:``apigateway``: Documentation updates for Amazon API Gateway. * api-change:``drs``: Added volume status to DescribeSourceServer replicated volumes. * api-change:``kafkaconnect``: Adds support for tagging, with new TagResource, UntagResource and ListTagsForResource APIs to manage tags and updates to existing APIs to allow tag on create. This release also adds support for the new DeleteWorkerConfiguration API. * api-change:``rds``: This release adds support for gp3 data volumes for Multi-AZ DB Clusters. - from version 1.32.49 * api-change:``appsync``: Documentation only updates for AppSync * api-change:``qldb``: Clarify possible values for KmsKeyArn and EncryptionDescription. * api-change:``rds``: Add pattern and length based validations for DBShardGroupIdentifier * api-change:``rum``: Doc-only update for new RUM metrics that were added - from version 1.32.48 * api-change:``internetmonitor``: This release adds IPv4 prefixes to health events * api-change:``kinesisvideo``: Increasing NextToken parameter length restriction for List APIs from 512 to 1024. - from version 1.32.47 * api-change:``iotevents``: Increase the maximum length of descriptions for Inputs, Detector Models, and Alarm Models * api-change:``lookoutequipment``: This release adds a field exposing model quality to read APIs for models. It also adds a model quality field to the API response when creating an inference scheduler. * api-change:``medialive``: MediaLive now supports the ability to restart pipelines in a running channel. * api-change:``ssm``: This release adds support for sharing Systems Manager parameters with other AWS accounts. - from version 1.32.46 * api-change:``dynamodb``: Publishing quick fix for doc only update. * api-change:``firehose``: This release updates a few Firehose related APIs. * api-change:``lambda``: Add .NET 8 (dotnet8) Runtime support to AWS Lambda. - from version 1.32.45 * api-change:``amplify``: This release contains API changes that enable users to configure their Amplify domains with their own custom SSL/TLS certificate. * api-change:``chatbot``: This release adds support for AWS Chatbot. You can now monitor, operate, and troubleshoot your AWS resources with interactive ChatOps using the AWS SDK. * api-change:``config``: Documentation updates for the AWS Config CLI * api-change:``ivs``: Changed description for latencyMode in Create/UpdateChannel and Channel/ChannelSummary. * api-change:``keyspaces``: Documentation updates for Amazon Keyspaces * api-change:``mediatailor``: MediaTailor: marking #AdBreak.OffsetMillis as required. - from version 1.32.44 * api-change:``connectparticipant``: Doc only update to GetTranscript API reference guide to inform users about presence of events in the chat transcript. * api-change:``emr``: adds fine grained control over Unhealthy Node Replacement to Amazon ElasticMapReduce * api-change:``firehose``: This release adds support for Data Message Extraction for decompressed CloudWatch logs, and to use a custom file extension or time zone for S3 destinations. * api-change:``lambda``: Documentation-only updates for Lambda to clarify a number of existing actions and properties. * api-change:``rds``: Doc only update for a valid option in DB parameter group * api-change:``sns``: This release marks phone numbers as sensitive inputs. - from version 1.32.43 * api-change:``artifact``: This is the initial SDK release for AWS Artifact. AWS Artifact provides on-demand access to compliance and third-party compliance reports. This release includes access to List and Get reports, along with their metadata. This release also includes access to AWS Artifact notifications settings. * api-change:``codepipeline``: Add ability to override timeout on action level. * api-change:``detective``: Doc only updates for content enhancement * api-change:``guardduty``: Marked fields IpAddressV4, PrivateIpAddress, Email as Sensitive. * api-change:``healthlake``: This release adds a new response parameter, JobProgressReport, to the DescribeFHIRImportJob and ListFHIRImportJobs API operation. JobProgressReport provides details on the progress of the import job on the server. * api-change:``opensearch``: Adds additional supported instance types. * api-change:``polly``: Amazon Polly adds 1 new voice - Burcu (tr-TR) * api-change:``sagemaker``: This release adds a new API UpdateClusterSoftware for SageMaker HyperPod. This API allows users to patch HyperPod clusters with latest platform softwares. * api-change:``secretsmanager``: Doc only update for Secrets Manager * api-change:``endpoint-rules``: Update endpoint-rules command to latest version - from version 1.32.42 * api-change:``controltower``: Adds support for new Baseline and EnabledBaseline APIs for automating multi-account governance. * api-change:``lookoutequipment``: This feature allows customers to see pointwise model diagnostics results for their models. * api-change:``qbusiness``: This release adds the metadata-boosting feature, which allows customers to easily fine-tune the underlying ranking of retrieved RAG passages in order to optimize Q&A answer relevance. It also adds new feedback reasons for the PutFeedback API. - from version 1.32.41 * api-change:``lightsail``: This release adds support to upgrade the major version of a database. * api-change:``marketplace-catalog``: AWS Marketplace Catalog API now supports setting intent on requests * api-change:``resource-explorer-2``: Resource Explorer now uses newly supported IPv4 'amazonaws.com' endpoints by default. * api-change:``securitylake``: Documentation updates for Security Lake * api-change:``endpoint-rules``: Update endpoint-rules command to latest version - from version 1.32.40 * api-change:``appsync``: Adds support for new options on GraphqlAPIs, Resolvers and Data Sources for emitting Amazon CloudWatch metrics for enhanced monitoring of AppSync APIs. * api-change:``cloudwatch``: Update cloudwatch command to latest version * api-change:``neptune-graph``: Adding a new option "parameters" for data plane api ExecuteQuery to support running parameterized query via SDK. * api-change:``route53domains``: This release adds bill contact support for RegisterDomain, TransferDomain, UpdateDomainContact and GetDomainDetail API. - from version 1.32.39 * api-change:``amp``: Overall documentation updates. * api-change:``batch``: This feature allows Batch to support configuration of repository credentials for jobs running on ECS * api-change:``braket``: Creating a job will result in DeviceOfflineException when using an offline device, and DeviceRetiredException when using a retired device. * api-change:``cost-optimization-hub``: Adding includeMemberAccounts field to the response of ListEnrollmentStatuses API. * api-change:``ecs``: Documentation only update for Amazon ECS. * api-change:``iot``: This release allows AWS IoT Core users to enable Online Certificate Status Protocol (OCSP) Stapling for TLS X.509 Server Certificates when creating and updating AWS IoT Domain Configurations with Custom Domain. * api-change:``pricing``: Add Throttling Exception to all APIs. - from version 1.32.38 * api-change:``codepipeline``: Add ability to execute pipelines with new parallel & queued execution modes and add support for triggers with filtering on branches and file paths. * api-change:``quicksight``: General Interactions for Visuals; Waterfall Chart Color Configuration; Documentation Update * api-change:``workspaces``: This release introduces User-Decoupling feature. This feature allows Workspaces Core customers to provision workspaces without providing users. CreateWorkspaces and DescribeWorkspaces APIs will now take a new optional parameter "WorkspaceName". - from version 1.32.37 * api-change:``datasync``: AWS DataSync now supports manifests for specifying files or objects to transfer. * api-change:``lexv2-models``: Update lexv2-models command to latest version * api-change:``redshift``: LisRecommendations API to fetch Amazon Redshift Advisor recommendations. - from version 1.32.36 * api-change:``appsync``: Support for environment variables in AppSync GraphQL APIs * api-change:``ecs``: This release is a documentation only update to address customer issues. * api-change:``es``: This release adds clear visibility to the customers on the changes that they make on the domain. * api-change:``logs``: This release adds a new field, logGroupArn, to the response of the logs:DescribeLogGroups action. * api-change:``opensearch``: This release adds clear visibility to the customers on the changes that they make on the domain. * api-change:``wafv2``: You can now delete an API key that you've created for use with your CAPTCHA JavaScript integration API. - from version 1.32.35 * api-change:``glue``: Introduce Catalog Encryption Role within Glue Data Catalog Settings. Introduce SASL/PLAIN as an authentication method for Glue Kafka connections * api-change:``workspaces``: Added definitions of various WorkSpace states - from version 1.32.34 * api-change:``dynamodb``: Any number of users can execute up to 50 concurrent restores (any type of restore) in a given account. * api-change:``sagemaker``: Amazon SageMaker Canvas adds GenerativeAiSettings support for CanvasAppSettings. * api-change:``endpoint-rules``: Update endpoint-rules command to latest version - from version 1.32.33 * api-change:``cognito-idp``: Added CreateIdentityProvider and UpdateIdentityProvider details for new SAML IdP features * api-change:``ivs``: This release introduces a new resource Playback Restriction Policy which can be used to geo-restrict or domain-restrict channel stream playback when associated with a channel. New APIs to support this resource were introduced in the form of Create/Delete/Get/Update/List. * api-change:``managedblockchain-query``: This release adds support for transactions that have not reached finality. It also removes support for the status property from the response of the GetTransaction operation. You can use the confirmationStatus and executionStatus properties to determine the status of the transaction. * api-change:``mediaconvert``: This release includes support for broadcast-mixed audio description tracks. * api-change:``neptune-graph``: Adding new APIs in SDK for Amazon Neptune Analytics. These APIs include operations to execute, cancel, list queries and get the graph summary. - from version 1.32.32 * api-change:``cloudformation``: CloudFormation IaC generator allows you to scan existing resources in your account and select resources to generate a template for a new or existing CloudFormation stack. * api-change:``elbv2``: Update elbv2 command to latest version * api-change:``glue``: Update page size limits for GetJobRuns and GetTriggers APIs. * api-change:``ssm``: This release adds an optional Duration parameter to StateManager Associations. This allows customers to specify how long an apply-only-on-cron association execution should run. Once the specified Duration is out all the ongoing cancellable commands or automations are cancelled. - Refresh patches for new version - Update Requires from setup.py Changes in local-npm-registry: - fix await import error on older node.js versions - update to 1.1.0 * always run npm with --no-package-lock. This will fix all weird errors and no loger require cleaning package-lock.json from upstream * `quilt setup` script is now in the utility * everything is run in JS now, so you can run directly with node version of change. Either, local-npm-registry or node22 /usr/bin/local-npm-registry - update to 1.0.2 * --help invocation fixes * cleanup npm's config.registry on exit * adds support for non-standard alternative versions - Escape `quilt setup` invoked section in the helper script - update to 1.0.1 * update dependencies * no longer shows paths for tarballs served by the proxy * works with latest nodejs * removing npm command patch dropped, upstreamed - Revert Requires: back to npm-default. If we need support for Fedora to have something else, we can do this another way https://en.opensuse.org/openSUSE:Build_Service_prjconf#Substitute - Allow the user to override `node` and `npm` commands in PATH. This is useful if one wants to eg. use Electron to run npm. - Change Requires: npm-default to Requires: npm. npm-default is already prefered by the prjconf, this works with any version of npm, and Fedora does not have npm-default. - update to 0.0.3: * fixes case when npm is stalling when package is not found - Update to 0.0.2: fixes uncaught exceptions - work with quilt when unpacking archive - Initial version 0.0.1 Changes in python-boto3: - Update to 1.34.144 * api-change:``acm-pca``: [``botocore``] Minor refactoring of C2J model for AWS Private CA * api-change:``arc-zonal-shift``: [``botocore``] Adds the option to subscribe to get notifications when a zonal autoshift occurs in a region. * api-change:``globalaccelerator``: [``botocore``] This feature adds exceptions to the Customer API to avoid throwing Internal Service errors * api-change:``pinpoint``: [``botocore``] Add v2 smoke tests and smithy smokeTests trait for SDK testing. * api-change:``quicksight``: [``botocore``] Vega ally control options and Support for Reviewed Answers in Topics - from version 1.34.143 * api-change:``batch``: [``botocore``] This feature allows AWS Batch Jobs with EKS container orchestration type to be run as Multi-Node Parallel Jobs. * api-change:``bedrock``: [``botocore``] Add support for contextual grounding check for Guardrails for Amazon Bedrock. * api-change:``bedrock-agent``: [``botocore``] Introduces new data sources and chunking strategies for Knowledge bases, advanced parsing logic using FMs, session summary generation, and code interpretation (preview) for Claude V3 Sonnet and Haiku models. Also introduces Prompt Flows (preview) to link prompts, foundational models, and resources. * api-change:``bedrock-agent-runtime``: [``botocore``] Introduces query decomposition, enhanced Agents integration with Knowledge bases, session summary generation, and code interpretation (preview) for Claude V3 Sonnet and Haiku models. Also introduces Prompt Flows (preview) to link prompts, foundational models, and resources for end-to-end solutions. * api-change:``bedrock-runtime``: [``botocore``] Add support for contextual grounding check and ApplyGuardrail API for Guardrails for Amazon Bedrock. * api-change:``ec2``: [``botocore``] Add parameters to enable provisioning IPAM BYOIPv4 space at a Local Zone Network Border Group level * api-change:``glue``: [``botocore``] Add recipe step support for recipe node * api-change:``groundstation``: [``botocore``] Documentation update specifying OEM ephemeris units of measurement * api-change:``license-manager-linux-subscriptions``: [``botocore``] Add support for third party subscription providers, starting with RHEL subscriptions through Red Hat Subscription Manager (RHSM). Additionally, add support for tagging subscription provider resources, and detect when an instance has more than one Linux subscription and notify the customer. * api-change:``mediaconnect``: [``botocore``] AWS Elemental MediaConnect introduces the ability to disable outputs. Disabling an output allows you to keep the output attached to the flow, but stop streaming to the output destination. A disabled output does not incur data transfer costs. - from version 1.34.142 * api-change:``datazone``: [``botocore``] This release deprecates dataProductItem field from SearchInventoryResultItem, along with some unused DataProduct shapes * api-change:``fsx``: [``botocore``] Adds support for FSx for NetApp ONTAP 2nd Generation file systems, and FSx for OpenZFS Single AZ HA file systems. * api-change:``opensearch``: [``botocore``] This release adds support for enabling or disabling Natural Language Query Processing feature for Amazon OpenSearch Service domains, and provides visibility into the current state of the setup or tear-down. * api-change:``sagemaker``: [``botocore``] This release 1/ enables optimization jobs that allows customers to perform Ahead-of-time compilation and quantization. 2/ allows customers to control access to Amazon Q integration in SageMaker Studio. 3/ enables AdditionalModelDataSources for CreateModel action. - from version 1.34.141 * api-change:``codedeploy``: [``botocore``] Add v2 smoke tests and smithy smokeTests trait for SDK testing. * api-change:``devicefarm``: [``botocore``] Add v2 smoke tests and smithy smokeTests trait for SDK testing. * api-change:``dms``: [``botocore``] Add v2 smoke tests and smithy smokeTests trait for SDK testing. * api-change:``elasticbeanstalk``: [``botocore``] Add v2 smoke tests and smithy smokeTests trait for SDK testing. * api-change:``es``: [``botocore``] Add v2 smoke tests and smithy smokeTests trait for SDK testing. * api-change:``firehose``: [``botocore``] Add v2 smoke tests and smithy smokeTests trait for SDK testing. * api-change:``gamelift``: [``botocore``] Add v2 smoke tests and smithy smokeTests trait for SDK testing. * api-change:``qapps``: [``botocore``] This is a general availability (GA) release of Amazon Q Apps, a capability of Amazon Q Business. Q Apps leverages data sources your company has provided to enable users to build, share, and customize apps within your organization. * api-change:``route53resolver``: [``botocore``] Add v2 smoke tests and smithy smokeTests trait for SDK testing. * api-change:``ses``: [``botocore``] Add v2 smoke tests and smithy smokeTests trait for SDK testing. - from version 1.34.140 * api-change:``acm``: [``botocore``] Documentation updates, including fixes for xml formatting, broken links, and ListCertificates description. * api-change:``ecr``: [``botocore``] This release for Amazon ECR makes change to bring the SDK into sync with the API. * api-change:``payment-cryptography-data``: [``botocore``] Added further restrictions on logging of potentially sensitive inputs and outputs. * api-change:``qbusiness``: [``botocore``] Add personalization to Q Applications. Customers can enable or disable personalization when creating or updating a Q application with the personalization configuration. - from version 1.34.139 * api-change:``application-autoscaling``: [``botocore``] Doc only update for Application Auto Scaling that fixes resource name. * api-change:``directconnect``: [``botocore``] This update includes documentation for support of new native 400 GBps ports for Direct Connect. * api-change:``organizations``: [``botocore``] Added a new reason under ConstraintViolationException in RegisterDelegatedAdministrator API to prevent registering suspended accounts as delegated administrator of a service. * api-change:``rekognition``: [``botocore``] This release adds support for tagging projects and datasets with the CreateProject and CreateDataset APIs. * api-change:``workspaces``: [``botocore``] Fix create workspace bundle RootStorage/UserStorage to accept non null values - Update BuildRequires and Requires from setup.py - Update to 1.34.138 * api-change:``ec2``: [``botocore``] Documentation updates for Elastic Compute Cloud (EC2). * api-change:``fms``: [``botocore``] Increases Customer API's ManagedServiceData length * api-change:``s3``: [``botocore``] Added response overrides to Head Object requests. - from version 1.34.137 * api-change:``apigateway``: [``botocore``] Add v2 smoke tests and smithy smokeTests trait for SDK testing. * api-change:``cognito-identity``: [``botocore``] Add v2 smoke tests and smithy smokeTests trait for SDK testing. * api-change:``connect``: [``botocore``] Authentication profiles are Amazon Connect resources (in gated preview) that allow you to configure authentication settings for users in your contact center. This release adds support for new ListAuthenticationProfiles, DescribeAuthenticationProfile and UpdateAuthenticationProfile APIs. * api-change:``docdb``: [``botocore``] Add v2 smoke tests and smithy smokeTests trait for SDK testing. * api-change:``eks``: [``botocore``] Updates EKS managed node groups to support EC2 Capacity Blocks for ML * api-change:``payment-cryptography``: [``botocore``] Added further restrictions on logging of potentially sensitive inputs and outputs. * api-change:``payment-cryptography-data``: [``botocore``] Adding support for dynamic keys for encrypt, decrypt, re-encrypt and translate pin functions. With this change, customers can use one-time TR-31 keys directly in dataplane operations without the need to first import them into the service. * api-change:``stepfunctions``: [``botocore``] Add v2 smoke tests and smithy smokeTests trait for SDK testing. * api-change:``swf``: [``botocore``] Add v2 smoke tests and smithy smokeTests trait for SDK testing. * api-change:``wafv2``: [``botocore``] JSON body inspection: Update documentation to clarify that JSON parsing doesn't include full validation. - from version 1.34.136 * api-change:``acm-pca``: [``botocore``] Added CCPC_LEVEL_1_OR_HIGHER KeyStorageSecurityStandard and SM2 KeyAlgorithm and SM3WITHSM2 SigningAlgorithm for China regions. * api-change:``cloudhsmv2``: [``botocore``] Added 3 new APIs to support backup sharing: GetResourcePolicy, PutResourcePolicy, and DeleteResourcePolicy. Added BackupArn to the output of the DescribeBackups API. Added support for BackupArn in the CreateCluster API. * api-change:``connect``: [``botocore``] This release supports showing PreferredAgentRouting step via DescribeContact API. * api-change:``emr``: [``botocore``] This release provides the support for new allocation strategies i.e. CAPACITY_OPTIMIZED_PRIORITIZED for Spot and PRIORITIZED for On-Demand by taking input of priority value for each instance type for instance fleet clusters. * api-change:``glue``: [``botocore``] Added AttributesToGet parameter to Glue GetDatabases, allowing caller to limit output to include only the database name. * api-change:``kinesisanalyticsv2``: [``botocore``] Support for Flink 1.19 in Managed Service for Apache Flink * api-change:``opensearch``: [``botocore``] This release removes support for enabling or disabling Natural Language Query Processing feature for Amazon OpenSearch Service domains. * api-change:``pi``: [``botocore``] Noting that the filter db.sql.db_id isn't available for RDS for SQL Server DB instances. * api-change:``workspaces``: [``botocore``] Added support for Red Hat Enterprise Linux 8 on Amazon WorkSpaces Personal. - from version 1.34.135 * api-change:``application-autoscaling``: [``botocore``] Amazon WorkSpaces customers can now use Application Auto Scaling to automatically scale the number of virtual desktops in a WorkSpaces pool. * api-change:``chime-sdk-media-pipelines``: [``botocore``] Added Amazon Transcribe multi language identification to Chime SDK call analytics. Enabling customers sending single stream audio to generate call recordings using Chime SDK call analytics * api-change:``cloudfront``: [``botocore``] Doc only update for CloudFront that fixes customer-reported issue * api-change:``datazone``: [``botocore``] This release supports the data lineage feature of business data catalog in Amazon DataZone. * api-change:``elasticache``: [``botocore``] Add v2 smoke tests and smithy smokeTests trait for SDK testing. * api-change:``mq``: [``botocore``] This release makes the EngineVersion field optional for both broker and configuration and uses the latest available version by default. The AutoMinorVersionUpgrade field is also now optional for broker creation and defaults to 'true'. * api-change:``qconnect``: [``botocore``] Adds CreateContentAssociation, ListContentAssociations, GetContentAssociation, and DeleteContentAssociation APIs. * api-change:``quicksight``: [``botocore``] Adding support for Repeating Sections, Nested Filters * api-change:``rds``: [``botocore``] Updates Amazon RDS documentation for TAZ export to S3. * api-change:``sagemaker``: [``botocore``] Add capability for Admins to customize Studio experience for the user by showing or hiding Apps and MLTools. * api-change:``workspaces``: [``botocore``] Added support for WorkSpaces Pools. - from version 1.34.134 * api-change:``controltower``: [``botocore``] Added ListLandingZoneOperations API. * api-change:``eks``: [``botocore``] Added support for disabling unmanaged addons during cluster creation. * api-change:``ivs-realtime``: [``botocore``] IVS Real-Time now offers customers the ability to upload public keys for customer vended participant tokens. * api-change:``kinesisanalyticsv2``: [``botocore``] This release adds support for new ListApplicationOperations and DescribeApplicationOperation APIs. It adds a new configuration to enable system rollbacks, adds field ApplicationVersionCreateTimestamp for clarity and improves support for pagination for APIs. * api-change:``opensearch``: [``botocore``] This release adds support for enabling or disabling Natural Language Query Processing feature for Amazon OpenSearch Service domains, and provides visibility into the current state of the setup or tear-down. - from version 1.34.133 * api-change:``autoscaling``: [``botocore``] Doc only update for Auto Scaling's TargetTrackingMetricDataQuery * api-change:``ec2``: [``botocore``] This release is for the launch of the new u7ib-12tb.224xlarge, R8g, c7gn.metal and mac2-m1ultra.metal instance types * api-change:``networkmanager``: [``botocore``] This is model changes & documentation update for the Asynchronous Error Reporting feature for AWS Cloud WAN. This feature allows customers to view errors that occur while their resources are being provisioned, enabling customers to fix their resources without needing external support. * api-change:``workspaces-thin-client``: [``botocore``] This release adds the deviceCreationTags field to CreateEnvironment API input, UpdateEnvironment API input and GetEnvironment API output. - from version 1.34.132 * api-change:``bedrock-runtime``: [``botocore``] Increases Converse API's document name length * api-change:``customer-profiles``: [``botocore``] This release includes changes to ProfileObjectType APIs, adds functionality top set and get capacity for profile object types. * api-change:``ec2``: [``botocore``] Fix EC2 multi-protocol info in models. * api-change:``qbusiness``: [``botocore``] Allow enable/disable Q Apps when creating/updating a Q application; Return the Q Apps enablement information when getting a Q application. * api-change:``ssm``: [``botocore``] Add sensitive trait to SSM IPAddress property for CloudTrail redaction * api-change:``workspaces-web``: [``botocore``] Added ability to enable DeepLinking functionality on a Portal via UserSettings as well as added support for IdentityProvider resource tagging. - from version 1.34.131 * api-change:``bedrock-runtime``: [``botocore``] This release adds document support to Converse and ConverseStream APIs * api-change:``codeartifact``: [``botocore``] Add support for the Cargo package format. * api-change:``compute-optimizer``: [``botocore``] This release enables AWS Compute Optimizer to analyze and generate optimization recommendations for Amazon RDS MySQL and RDS PostgreSQL. * api-change:``cost-optimization-hub``: [``botocore``] This release enables AWS Cost Optimization Hub to show cost optimization recommendations for Amazon RDS MySQL and RDS PostgreSQL. * api-change:``dynamodb``: [``botocore``] Doc-only update for DynamoDB. Fixed Important note in 6 Global table APIs - CreateGlobalTable, DescribeGlobalTable, DescribeGlobalTableSettings, ListGlobalTables, UpdateGlobalTable, and UpdateGlobalTableSettings. * api-change:``glue``: [``botocore``] Fix Glue paginators for Jobs, JobRuns, Triggers, Blueprints and Workflows. * api-change:``ivs-realtime``: [``botocore``] IVS Real-Time now offers customers the ability to record individual stage participants to S3. * api-change:``sagemaker``: [``botocore``] Adds support for model references in Hub service, and adds support for cross-account access of Hubs * api-change:``securityhub``: [``botocore``] Documentation updates for Security Hub - from version 1.34.130 * api-change:``artifact``: [``botocore``] This release adds an acceptanceType field to the ReportSummary structure (used in the ListReports API response). * api-change:``athena``: [``botocore``] Add v2 smoke tests and smithy smokeTests trait for SDK testing. * api-change:``cur``: [``botocore``] Add v2 smoke tests and smithy smokeTests trait for SDK testing. * api-change:``directconnect``: [``botocore``] Add v2 smoke tests and smithy smokeTests trait for SDK testing. * api-change:``elastictranscoder``: [``botocore``] Add v2 smoke tests and smithy smokeTests trait for SDK testing. * api-change:``opensearch``: [``botocore``] This release enables customers to use JSON Web Tokens (JWT) for authentication on their Amazon OpenSearch Service domains. - from version 1.34.129 * api-change:``bedrock-runtime``: [``botocore``] This release adds support for using Guardrails with the Converse and ConverseStream APIs. * api-change:``cloudtrail``: [``botocore``] Add v2 smoke tests and smithy smokeTests trait for SDK testing. * api-change:``config``: [``botocore``] Add v2 smoke tests and smithy smokeTests trait for SDK testing. * api-change:``eks``: [``botocore``] This release adds support to surface async fargate customer errors from async path to customer through describe-fargate-profile API response. * api-change:``lightsail``: [``botocore``] Add v2 smoke tests and smithy smokeTests trait for SDK testing. * api-change:``polly``: [``botocore``] Add v2 smoke tests and smithy smokeTests trait for SDK testing. * api-change:``rekognition``: [``botocore``] Add v2 smoke tests and smithy smokeTests trait for SDK testing. * api-change:``sagemaker``: [``botocore``] Launched a new feature in SageMaker to provide managed MLflow Tracking Servers for customers to track ML experiments. This release also adds a new capability of attaching additional storage to SageMaker HyperPod cluster instances. * api-change:``shield``: [``botocore``] Add v2 smoke tests and smithy smokeTests trait for SDK testing. * api-change:``snowball``: [``botocore``] Add v2 smoke tests and smithy smokeTests trait for SDK testing. - from version 1.34.128 * api-change:``acm-pca``: [``botocore``] Doc-only update that adds name constraints as an allowed extension for ImportCertificateAuthorityCertificate. * api-change:``batch``: [``botocore``] Add v2 smoke tests and smithy smokeTests trait for SDK testing. * api-change:``codebuild``: [``botocore``] AWS CodeBuild now supports global and organization GitHub webhooks * api-change:``cognito-idp``: [``botocore``] Add v2 smoke tests and smithy smokeTests trait for SDK testing. * api-change:``ds``: [``botocore``] Add v2 smoke tests and smithy smokeTests trait for SDK testing. * api-change:``efs``: [``botocore``] Add v2 smoke tests and smithy smokeTests trait for SDK testing. * api-change:``glue``: [``botocore``] This release introduces a new feature, Usage profiles. Usage profiles allow the AWS Glue admin to create different profiles for various classes of users within the account, enforcing limits and defaults for jobs and sessions. * api-change:``mediaconvert``: [``botocore``] This release includes support for creating I-frame only video segments for DASH trick play. * api-change:``secretsmanager``: [``botocore``] Doc only update for Secrets Manager * api-change:``waf``: [``botocore``] Add v2 smoke tests and smithy smokeTests trait for SDK testing. - from version 1.34.127 * api-change:``datazone``: [``botocore``] This release introduces a new default service blueprint for custom environment creation. * api-change:``ec2``: [``botocore``] Documentation updates for Amazon EC2. * api-change:``macie2``: [``botocore``] This release adds support for managing the status of automated sensitive data discovery for individual accounts in an organization, and determining whether individual S3 buckets are included in the scope of the analyses. * api-change:``mediaconvert``: [``botocore``] This release adds the ability to search for historical job records within the management console using a search box and/or via the SDK/CLI with partial string matching search on input file name. * api-change:``route53domains``: [``botocore``] Add v2 smoke tests and smithy smokeTests trait for SDK testing. - from version 1.34.126 * api-change:``cloudhsmv2``: [``botocore``] Added support for hsm type hsm2m.medium. Added supported for creating a cluster in FIPS or NON_FIPS mode. * api-change:``glue``: [``botocore``] This release adds support for configuration of evaluation method for composite rules in Glue Data Quality rulesets. * api-change:``iotwireless``: [``botocore``] Add RoamingDeviceSNR and RoamingDeviceRSSI to Customer Metrics. * api-change:``kms``: [``botocore``] This feature allows customers to use their keys stored in KMS to derive a shared secret which can then be used to establish a secured channel for communication, provide proof of possession, or establish trust with other parties. * api-change:``mediapackagev2``: [``botocore``] This release adds support for CMAF ingest (DASH-IF live media ingest protocol interface 1) - from version 1.34.125 * api-change:``apptest``: [``botocore``] AWS Mainframe Modernization Application Testing is an AWS Mainframe Modernization service feature that automates functional equivalence testing for mainframe application modernization and migration to AWS, and regression testing. * api-change:``backupstorage``: [``botocore``] The backupstorage client has been removed following the deprecation of the service. * api-change:``ec2``: [``botocore``] Tagging support for Traffic Mirroring FilterRule resource * api-change:``osis``: [``botocore``] SDK changes for self-managed vpc endpoint to OpenSearch ingestion pipelines. * api-change:``redshift``: [``botocore``] Updates to remove DC1 and DS2 node types. * api-change:``secretsmanager``: [``botocore``] Introducing RotationToken parameter for PutSecretValue API * api-change:``securitylake``: [``botocore``] This release updates request validation regex to account for non-commercial aws partitions. * api-change:``sesv2``: [``botocore``] This release adds support for Amazon EventBridge as an email sending events destination. - from version 1.34.124 * api-change:``accessanalyzer``: [``botocore``] IAM Access Analyzer now provides policy recommendations to help resolve unused permissions for IAM roles and users. Additionally, IAM Access Analyzer now extends its custom policy checks to detect when IAM policies grant public access or access to critical resources ahead of deployments. * api-change:``guardduty``: [``botocore``] Added API support for GuardDuty Malware Protection for S3. * api-change:``networkmanager``: [``botocore``] This is model changes & documentation update for Service Insertion feature for AWS Cloud WAN. This feature allows insertion of AWS/3rd party security services on Cloud WAN. This allows to steer inter/intra segment traffic via security appliances and provide visibility to the route updates. * api-change:``pca-connector-scep``: [``botocore``] Connector for SCEP allows you to use a managed, cloud CA to enroll mobile devices and networking gear. SCEP is a widely-adopted protocol used by mobile device management (MDM) solutions for enrolling mobile devices. With the connector, you can use AWS Private CA with popular MDM solutions. * api-change:``sagemaker``: [``botocore``] Introduced Scope and AuthenticationRequestExtraParams to SageMaker Workforce OIDC configuration; this allows customers to modify these options for their private Workforce IdP integration. Model Registry Cross-account model package groups are discoverable. - from version 1.34.123 * api-change:``application-signals``: [``botocore``] This is the initial SDK release for Amazon CloudWatch Application Signals. Amazon CloudWatch Application Signals provides curated application performance monitoring for developers to monitor and troubleshoot application health using pre-built dashboards and Service Level Objectives. * api-change:``ecs``: [``botocore``] This release introduces a new cluster configuration to support the customer-managed keys for ECS managed storage encryption. * api-change:``imagebuilder``: [``botocore``] This release updates the regex pattern for Image Builder ARNs. - Update BuildRequires and Requires from setup.py - Update to 1.34.122 * api-change:``auditmanager``: [``botocore``] New feature: common controls. When creating custom controls, you can now use pre-grouped AWS data sources based on common compliance themes. Also, the awsServices parameter is deprecated because we now manage services in scope for you. If used, the input is ignored and an empty list is returned. * api-change:``b2bi``: [``botocore``] Added exceptions to B2Bi List operations and ConflictException to B2Bi StartTransformerJob operation. Also made capabilities field explicitly required when creating a Partnership. * api-change:``codepipeline``: [``botocore``] CodePipeline now supports overriding S3 Source Object Key during StartPipelineExecution, as part of Source Overrides. * api-change:``sagemaker``: [``botocore``] This release introduces a new optional parameter: InferenceAmiVersion, in ProductionVariant. * api-change:``verifiedpermissions``: [``botocore``] This release adds OpenIdConnect (OIDC) configuration support for IdentitySources, allowing for external IDPs to be used in authorization requests. - from version 1.34.121 * api-change:``account``: [``botocore``] This release adds 3 new APIs (AcceptPrimaryEmailUpdate, GetPrimaryEmail, and StartPrimaryEmailUpdate) used to centrally manage the root user email address of member accounts within an AWS organization. * api-change:``alexaforbusiness``: [``botocore``] The alexaforbusiness client has been removed following the deprecation of the service. * api-change:``firehose``: [``botocore``] Adds integration with Secrets Manager for Redshift, Splunk, HttpEndpoint, and Snowflake destinations * api-change:``fsx``: [``botocore``] This release adds support to increase metadata performance on FSx for Lustre file systems beyond the default level provisioned when a file system is created. This can be done by specifying MetadataConfiguration during the creation of Persistent_2 file systems or by updating it on demand. * api-change:``glue``: [``botocore``] This release adds support for creating and updating Glue Data Catalog Views. * api-change:``honeycode``: [``botocore``] The honeycode client has been removed following the deprecation of the service. * api-change:``iotwireless``: [``botocore``] Adds support for wireless device to be in Conflict FUOTA Device Status due to a FUOTA Task, so it couldn't be attached to a new one. * api-change:``location``: [``botocore``] Added two new APIs, VerifyDevicePosition and ForecastGeofenceEvents. Added support for putting larger geofences up to 100,000 vertices with Geobuf fields. * api-change:``sns``: [``botocore``] Doc-only update for SNS. These changes include customer-reported issues and TXC3 updates. * api-change:``sqs``: [``botocore``] Doc only updates for SQS. These updates include customer-reported issues and TCX3 modifications. * api-change:``storagegateway``: [``botocore``] Adds SoftwareUpdatePreferences to DescribeMaintenanceStartTime and UpdateMaintenanceStartTime, a structure which contains AutomaticUpdatePolicy. * enhancement:AWSCRT: [``botocore``] Update awscrt version to 0.20.11 - from version 1.34.120 * api-change:``globalaccelerator``: [``botocore``] This release contains a new optional ip-addresses input field for the update accelerator and update custom routing accelerator apis. This input enables consumers to replace IPv4 addresses on existing accelerators with addresses provided in the input. * api-change:``glue``: [``botocore``] AWS Glue now supports native SaaS connectivity: Salesforce connector available now * api-change:``s3``: [``botocore``] Added new params copySource and key to copyObject API for supporting S3 Access Grants plugin. These changes will not change any of the existing S3 API functionality. - from version 1.34.119 * api-change:``ec2``: [``botocore``] U7i instances with up to 32 TiB of DDR5 memory and 896 vCPUs are now available. C7i-flex instances are launched and are lower-priced variants of the Amazon EC2 C7i instances that offer a baseline level of CPU performance with the ability to scale up to the full compute performance 95% of the time. * api-change:``pipes``: [``botocore``] This release adds Timestream for LiveAnalytics as a supported target in EventBridge Pipes * api-change:``sagemaker``: [``botocore``] Extend DescribeClusterNode response with private DNS hostname and IP address, and placement information about availability zone and availability zone ID. * api-change:``taxsettings``: [``botocore``] Initial release of AWS Tax Settings API - from version 1.34.118 * api-change:``amplify``: [``botocore``] This doc-only update identifies fields that are specific to Gen 1 and Gen 2 applications. * api-change:``batch``: [``botocore``] This release adds support for the AWS Batch GetJobQueueSnapshot API operation. * api-change:``eks``: [``botocore``] Adds support for EKS add-ons pod identity associations integration * api-change:``iottwinmaker``: [``botocore``] Support RESET_VALUE UpdateType for PropertyUpdates to reset property value to default or null - from version 1.34.117 * api-change:``codebuild``: [``botocore``] AWS CodeBuild now supports Self-hosted GitHub Actions runners for Github Enterprise * api-change:``codeguru-security``: [``botocore``] This release includes minor model updates and documentation updates. * api-change:``elasticache``: [``botocore``] Update to attributes of TestFailover and minor revisions. * api-change:``launch-wizard``: [``botocore``] This release adds support for describing workload deployment specifications, deploying additional workload types, and managing tags for Launch Wizard resources with API operations. - from version 1.34.116 * api-change:``acm``: [``botocore``] add v2 smoke tests and smithy smokeTests trait for SDK testing. * api-change:``bedrock-agent``: [``botocore``] With this release, Knowledge bases for Bedrock adds support for Titan Text Embedding v2. * api-change:``bedrock-runtime``: [``botocore``] This release adds Converse and ConverseStream APIs to Bedrock Runtime * api-change:``cloudtrail``: [``botocore``] CloudTrail Lake returns PartitionKeys in the GetEventDataStore API response. Events are grouped into partitions based on these keys for better query performance. For example, the calendarday key groups events by day, while combining the calendarday key with the hour key groups them by day and hour. * api-change:``connect``: [``botocore``] Adding associatedQueueIds as a SearchCriteria and response field to the SearchRoutingProfiles API * api-change:``emr-serverless``: [``botocore``] The release adds support for spark structured streaming. * api-change:``rds``: [``botocore``] Updates Amazon RDS documentation for Aurora Postgres DBname. * api-change:``sagemaker``: [``botocore``] Adds Model Card information as a new component to Model Package. Autopilot launches algorithm selection for TimeSeries modality to generate AutoML candidates per algorithm. - from version 1.34.115 * api-change:``athena``: [``botocore``] Throwing validation errors on CreateNotebook with Name containing `/`,`:`,`\` * api-change:``codebuild``: [``botocore``] AWS CodeBuild now supports manually creating GitHub webhooks * api-change:``connect``: [``botocore``] This release includes changes to DescribeContact API's response by including ConnectedToSystemTimestamp, RoutingCriteria, Customer, Campaign, AnsweringMachineDetectionStatus, CustomerVoiceActivity, QualityMetrics, DisconnectDetails, and SegmentAttributes information from a contact in Amazon Connect. * api-change:``glue``: [``botocore``] Add optional field JobMode to CreateJob and UpdateJob APIs. * api-change:``securityhub``: [``botocore``] Add ROOT type for TargetType model - from version 1.34.114 * api-change:``dynamodb``: [``botocore``] Doc-only update for DynamoDB. Specified the IAM actions needed to authorize a user to create a table with a resource-based policy. * api-change:``ec2``: [``botocore``] Providing support to accept BgpAsnExtended attribute * api-change:``kafka``: [``botocore``] Adds ControllerNodeInfo in ListNodes response to support Raft mode for MSK * api-change:``swf``: [``botocore``] This release adds new APIs for deleting activity type and workflow type resources. - from version 1.34.113 * api-change:``dynamodb``: [``botocore``] Documentation only updates for DynamoDB. * api-change:``iotfleetwise``: [``botocore``] AWS IoT FleetWise now supports listing vehicles with attributes filter, ListVehicles API is updated to support additional attributes filter. * api-change:``managedblockchain``: [``botocore``] This is a minor documentation update to address the impact of the shut down of the Goerli and Polygon networks. - from version 1.34.112 * api-change:``emr-serverless``: [``botocore``] This release adds the capability to run interactive workloads using Apache Livy Endpoint. * api-change:``opsworks``: [``botocore``] Documentation-only update for OpsWorks Stacks. - from version 1.34.111 * api-change:``chatbot``: [``botocore``] This change adds support for tagging Chatbot configurations. * api-change:``cloudformation``: [``botocore``] Added DeletionMode FORCE_DELETE_STACK for deleting a stack that is stuck in DELETE_FAILED state due to resource deletion failure. * api-change:``kms``: [``botocore``] This release includes feature to import customer's asymmetric (RSA, ECC and SM2) and HMAC keys into KMS in China. * api-change:``opensearch``: [``botocore``] This release adds support for enabling or disabling a data source configured as part of Zero-ETL integration with Amazon S3, by setting its status. * api-change:``wafv2``: [``botocore``] You can now use Security Lake to collect web ACL traffic data. - from version 1.34.110 * api-change:``cloudfront``: [``botocore``] Model update; no change to SDK functionality. * api-change:``glue``: [``botocore``] Add Maintenance window to CreateJob and UpdateJob APIs and JobRun response. Add a new Job Run State for EXPIRED. * api-change:``lightsail``: [``botocore``] This release adds support for Amazon Lightsail instances to switch between dual-stack or IPv4 only and IPv6-only public IP address types. * api-change:``mailmanager``: [``botocore``] This release includes a new Amazon SES feature called Mail Manager, which is a set of email gateway capabilities designed to help customers strengthen their organization's email infrastructure, simplify email workflow management, and streamline email compliance control. * api-change:``pi``: [``botocore``] Performance Insights added a new input parameter called AuthorizedActions to support the fine-grained access feature. Performance Insights also restricted the acceptable input characters. * api-change:``rds``: [``botocore``] Updates Amazon RDS documentation for Db2 license through AWS Marketplace. * api-change:``storagegateway``: [``botocore``] Added new SMBSecurityStrategy enum named MandatoryEncryptionNoAes128, new mode enforces encryption and disables AES 128-bit algorithums. - from version 1.34.109 * api-change:``bedrock-agent``: [``botocore``] This release adds support for using Guardrails with Bedrock Agents. * api-change:``bedrock-agent-runtime``: [``botocore``] This release adds support for using Guardrails with Bedrock Agents. * api-change:``controltower``: [``botocore``] Added ListControlOperations API and filtering support for ListEnabledControls API. Updates also includes added metadata for enabled controls and control operations. * api-change:``osis``: [``botocore``] Add support for creating an OpenSearch Ingestion pipeline that is attached to a provided VPC. Add information about the destinations of an OpenSearch Ingestion pipeline to the GetPipeline and ListPipelines APIs. * api-change:``rds``: [``botocore``] This release adds support for EngineLifecycleSupport on DBInstances, DBClusters, and GlobalClusters. * api-change:``secretsmanager``: [``botocore``] add v2 smoke tests and smithy smokeTests trait for SDK testing - from version 1.34.108 * api-change:``application-autoscaling``: [``botocore``] add v2 smoke tests and smithy smokeTests trait for SDK testing. * api-change:``codebuild``: [``botocore``] Aws CodeBuild now supports 36 hours build timeout * api-change:``elbv2``: [``botocore``] This release adds dualstack-without-public-ipv4 IP address type for ALB. * api-change:``lakeformation``: [``botocore``] Introduces a new API, GetDataLakePrincipal, that returns the identity of the invoking principal * api-change:``transfer``: [``botocore``] Enable use of CloudFormation traits in Smithy model to improve generated CloudFormation schema from the Smithy API model. - from version 1.34.107 * api-change:``acm-pca``: [``botocore``] This release adds support for waiters to fail on AccessDeniedException when having insufficient permissions * api-change:``connect``: [``botocore``] Adding Contact Flow metrics to the GetMetricDataV2 API * api-change:``kafka``: [``botocore``] AWS MSK support for Broker Removal. * api-change:``mwaa``: [``botocore``] Amazon MWAA now supports Airflow web server auto scaling to automatically handle increased demand from REST APIs, Command Line Interface (CLI), or more Airflow User Interface (UI) users. Customers can specify maximum and minimum web server instances during environment creation and update workflow. * api-change:``quicksight``: [``botocore``] This release adds DescribeKeyRegistration and UpdateKeyRegistration APIs to manage QuickSight Customer Managed Keys (CMK). * api-change:``sagemaker``: [``botocore``] Introduced WorkerAccessConfiguration to SageMaker Workteam. This allows customers to configure resource access for workers in a workteam. * api-change:``secretsmanager``: [``botocore``] Documentation updates for AWS Secrets Manager * bugfix:retries: [``botocore``] Fix backoff calculation for truncated binary exponential backoff (`#3178 <https://github.com/boto/botocore/issues/3178>`__) - from version 1.34.106 * api-change:``bedrock-agent-runtime``: [``botocore``] Updating Bedrock Knowledge Base Metadata & Filters feature with two new filters listContains and stringContains * api-change:``codebuild``: [``botocore``] CodeBuild Reserved Capacity VPC Support * api-change:``datasync``: [``botocore``] Task executions now display a CANCELLING status when an execution is in the process of being cancelled. * api-change:``grafana``: [``botocore``] This release adds new ServiceAccount and ServiceAccountToken APIs. * api-change:``medical-imaging``: [``botocore``] Added support for importing medical imaging data from Amazon S3 buckets across accounts and regions. * api-change:``securityhub``: [``botocore``] Documentation-only update for AWS Security Hub - Update BuildRequires and Requires from setup.py - Update to 1.34.105 * api-change:``connect``: [``botocore``] Amazon Connect provides enhanced search capabilities for flows & flow modules on the Connect admin website and programmatically using APIs. You can search for flows and flow modules by name, description, type, status, and tags, to filter and identify a specific flow in your Connect instances. * api-change:``s3``: [``botocore``] Updated a few x-id in the http uri traits - from version 1.34.104 * api-change:``events``: [``botocore``] Amazon EventBridge introduces KMS customer-managed key (CMK) encryption support for custom and partner events published on EventBridge Event Bus (including default bus) and UpdateEventBus API. * api-change:``vpc-lattice``: [``botocore``] This release adds TLS Passthrough support. It also increases max number of target group per rule to 10. - from version 1.34.103 * api-change:``discovery``: [``botocore``] add v2 smoke tests and smithy smokeTests trait for SDK testing * api-change:``greengrassv2``: [``botocore``] Mark ComponentVersion in ComponentDeploymentSpecification as required. * api-change:``sagemaker``: [``botocore``] Introduced support for G6 instance types on Sagemaker Notebook Instances and on SageMaker Studio for JupyterLab and CodeEditor applications. * api-change:``sso-oidc``: [``botocore``] Updated request parameters for PKCE support. - from version 1.34.102 * api-change:``bedrock-agent-runtime``: [``botocore``] This release adds support to provide guardrail configuration and modify inference parameters that are then used in RetrieveAndGenerate API in Agents for Amazon Bedrock. * api-change:``pinpoint``: [``botocore``] This release adds support for specifying email message headers for Email Templates, Campaigns, Journeys and Send Messages. * api-change:``route53resolver``: [``botocore``] Update the DNS Firewall settings to correct a spelling issue. * api-change:``ssm-sap``: [``botocore``] Added support for application-aware start/stop of SAP applications running on EC2 instances, with SSM for SAP * api-change:``verifiedpermissions``: [``botocore``] Adds policy effect and actions fields to Policy API's. - from version 1.34.101 * api-change:``cognito-idp``: [``botocore``] Add EXTERNAL_PROVIDER enum value to UserStatusType. * api-change:``ec2``: [``botocore``] Adding Precision Hardware Clock (PHC) to public API DescribeInstanceTypes * api-change:``ecr``: [``botocore``] This release adds pull through cache rules support for GitLab container registry in Amazon ECR. * api-change:``fms``: [``botocore``] The policy scope resource tag is always a string value, either a non-empty string or an empty string. * api-change:``polly``: [``botocore``] Add new engine - generative - that builds the most expressive conversational voices. * api-change:``sqs``: [``botocore``] This release adds MessageSystemAttributeNames to ReceiveMessageRequest to replace AttributeNames. - from version 1.34.100 * api-change:``b2bi``: [``botocore``] Documentation update to clarify the MappingTemplate definition. * api-change:``budgets``: [``botocore``] This release adds tag support for budgets and budget actions. * api-change:``resiliencehub``: [``botocore``] AWS Resilience Hub has expanded its drift detection capabilities by introducing a new type of drift detection - application resource drift. This new enhancement detects changes, such as the addition or deletion of resources within the application's input sources. * api-change:``route53profiles``: [``botocore``] Doc only update for Route 53 profiles that fixes some link issues - from version 1.34.99 * api-change:``medialive``: [``botocore``] AWS Elemental MediaLive now supports configuring how SCTE 35 passthrough triggers segment breaks in HLS and MediaPackage output groups. Previously, messages triggered breaks in all these output groups. The new option is to trigger segment breaks only in groups that have SCTE 35 passthrough enabled. - from version 1.34.98 * api-change:``bedrock-agent``: [``botocore``] This release adds support for using Provisioned Throughput with Bedrock Agents. * api-change:``connect``: [``botocore``] This release adds 5 new APIs for managing attachments: StartAttachedFileUpload, CompleteAttachedFileUpload, GetAttachedFile, BatchGetAttachedFileMetadata, DeleteAttachedFile. These APIs can be used to programmatically upload and download attachments to Connect resources, like cases. * api-change:``connectcases``: [``botocore``] This feature supports the release of Files related items * api-change:``datasync``: [``botocore``] Updated guidance on using private or self-signed certificate authorities (CAs) with AWS DataSync object storage locations. * api-change:``inspector2``: [``botocore``] This release adds CSV format to GetCisScanReport for Inspector v2 * api-change:``sagemaker``: [``botocore``] Amazon SageMaker Inference now supports m6i, c6i, r6i, m7i, c7i, r7i and g5 instance types for Batch Transform Jobs * api-change:``sesv2``: [``botocore``] Adds support for specifying replacement headers per BulkEmailEntry in SendBulkEmail in SESv2. - from version 1.34.97 * api-change:``dynamodb``: [``botocore``] This release adds support to specify an optional, maximum OnDemandThroughput for DynamoDB tables and global secondary indexes in the CreateTable or UpdateTable APIs. You can also override the OnDemandThroughput settings by calling the ImportTable, RestoreFromPointInTime, or RestoreFromBackup APIs. * api-change:``ec2``: [``botocore``] This release includes a new API for retrieving the public endorsement key of the EC2 instance's Nitro Trusted Platform Module (NitroTPM). * api-change:``personalize``: [``botocore``] This releases ability to delete users and their data, including their metadata and interactions data, from a dataset group. * api-change:``redshift-serverless``: [``botocore``] Update Redshift Serverless List Scheduled Actions Output Response to include Namespace Name. - from version 1.34.96 * api-change:``bedrock-agent``: [``botocore``] This release adds support for using MongoDB Atlas as a vector store when creating a knowledge base. * api-change:``ec2``: [``botocore``] Documentation updates for Amazon EC2. * api-change:``personalize-runtime``: [``botocore``] This release adds support for a Reason attribute for predicted items generated by User-Personalization-v2. * api-change:``securityhub``: [``botocore``] Updated CreateMembers API request with limits. * api-change:``sesv2``: [``botocore``] Fixes ListContacts and ListImportJobs APIs to use POST instead of GET. - from version 1.34.95 * api-change:``chime-sdk-voice``: [``botocore``] Due to changes made by the Amazon Alexa service, GetSipMediaApplicationAlexaSkillConfiguration and PutSipMediaApplicationAlexaSkillConfiguration APIs are no longer available for use. For more information, refer to the Alexa Smart Properties page. * api-change:``codeartifact``: [``botocore``] Add support for the Ruby package format. * api-change:``fms``: [``botocore``] AWS Firewall Manager now supports the network firewall service stream exception policy feature for accounts within your organization. * api-change:``omics``: [``botocore``] Add support for workflow sharing and dynamic run storage * api-change:``opensearch``: [``botocore``] This release enables customers to create Route53 A and AAAA alias record types to point custom endpoint domain to OpenSearch domain's dualstack search endpoint. * api-change:``pinpoint-sms-voice-v2``: [``botocore``] Amazon Pinpoint has added two new features Multimedia services (MMS) and protect configurations. Use the three new MMS APIs to send media messages to a mobile phone which includes image, audio, text, or video files. Use the ten new protect configurations APIs to block messages to specific countries. * api-change:``qbusiness``: [``botocore``] This is a general availability (GA) release of Amazon Q Business. Q Business enables employees in an enterprise to get comprehensive answers to complex questions and take actions through a unified, intuitive web-based chat experience - using an enterprise's existing content, data, and systems. * api-change:``quicksight``: [``botocore``] New Q embedding supporting Generative Q&A * api-change:``route53resolver``: [``botocore``] Release of FirewallDomainRedirectionAction parameter on the Route 53 DNS Firewall Rule. This allows customers to configure a DNS Firewall rule to inspect all the domains in the DNS redirection chain (default) , such as CNAME, ALIAS, DNAME, etc., or just the first domain and trust the rest. * api-change:``sagemaker``: [``botocore``] Amazon SageMaker Training now supports the use of attribute-based access control (ABAC) roles for training job execution roles. Amazon SageMaker Inference now supports G6 instance types. * api-change:``signer``: [``botocore``] Documentation updates for AWS Signer. Adds cross-account signing constraint and definitions for cross-account actions. - from version 1.34.94 * api-change:``amplify``: [``botocore``] Updating max results limit for listing any resources (Job, Artifacts, Branch, BackendResources, DomainAssociation) to 50 with the exception of list apps that where max results can be up to 100. * api-change:``connectcases``: [``botocore``] This feature releases DeleteField, DeletedLayout, and DeleteTemplate API's * api-change:``inspector2``: [``botocore``] Update Inspector2 to include new Agentless API parameters. * api-change:``timestream-query``: [``botocore``] This change allows users to update and describe account settings associated with their accounts. * api-change:``transcribe``: [``botocore``] This update provides error messaging for generative call summarization in Transcribe Call Analytics * api-change:``trustedadvisor``: [``botocore``] This release adds the BatchUpdateRecommendationResourceExclusion API to support batch updates of Recommendation Resource exclusion statuses and introduces a new exclusion status filter to the ListRecommendationResources and ListOrganizationRecommendationResources APIs. - from version 1.34.93 * api-change:``codepipeline``: [``botocore``] Add ability to manually and automatically roll back a pipeline stage to a previously successful execution. * api-change:``cognito-idp``: [``botocore``] Add LimitExceededException to SignUp errors * api-change:``connectcampaigns``: [``botocore``] This release adds support for specifying if Answering Machine should wait for prompt sound. * api-change:``marketplace-entitlement``: [``botocore``] Releasing minor endpoint updates. * api-change:``oam``: [``botocore``] This release introduces support for Source Accounts to define which Metrics and Logs to share with the Monitoring Account * api-change:``rds``: [``botocore``] SupportsLimitlessDatabase field added to describe-db-engine-versions to indicate whether the DB engine version supports Aurora Limitless Database. * api-change:``support``: [``botocore``] Releasing minor endpoint updates. - from version 1.34.92 * api-change:``appsync``: [``botocore``] UpdateGraphQLAPI documentation update and datasource introspection secret arn update * api-change:``fms``: [``botocore``] AWS Firewall Manager adds support for network ACL policies to manage Amazon Virtual Private Cloud (VPC) network access control lists (ACLs) for accounts in your organization. * api-change:``ivs``: [``botocore``] Bug Fix: IVS does not support arns with the `svs` prefix * api-change:``ivs-realtime``: [``botocore``] Bug Fix: IVS Real Time does not support ARNs using the `svs` prefix. * api-change:``rds``: [``botocore``] Updates Amazon RDS documentation for setting local time zones for RDS for Db2 DB instances. * api-change:``stepfunctions``: [``botocore``] Add new ValidateStateMachineDefinition operation, which performs syntax checking on the definition of a Amazon States Language (ASL) state machine. - from version 1.34.91 * api-change:``datasync``: [``botocore``] This change allows users to disable and enable the schedules associated with their tasks. * api-change:``ec2``: [``botocore``] Launching capability for customers to enable or disable automatic assignment of public IPv4 addresses to their network interface * api-change:``emr-containers``: [``botocore``] EMRonEKS Service support for SecurityConfiguration enforcement for Spark Jobs. * api-change:``entityresolution``: [``botocore``] Support Batch Unique IDs Deletion. * api-change:``gamelift``: [``botocore``] Amazon GameLift releases container fleets support for public preview. Deploy Linux-based containerized game server software for hosting on Amazon GameLift. * api-change:``ssm``: [``botocore``] Add SSM DescribeInstanceProperties API to public AWS SDK. - from version 1.34.90 * api-change:``bedrock``: [``botocore``] This release introduces Model Evaluation and Guardrails for Amazon Bedrock. * api-change:``bedrock-agent``: [``botocore``] Introducing the ability to create multiple data sources per knowledge base, specify S3 buckets as data sources from external accounts, and exposing levers to define the deletion behavior of the underlying vector store data. * api-change:``bedrock-agent-runtime``: [``botocore``] This release introduces zero-setup file upload support for the RetrieveAndGenerate API. This allows you to chat with your data without setting up a Knowledge Base. * api-change:``bedrock-runtime``: [``botocore``] This release introduces Guardrails for Amazon Bedrock. * api-change:``ce``: [``botocore``] Added additional metadata that might be applicable to your reservation recommendations. * api-change:``ec2``: [``botocore``] This release introduces EC2 AMI Deregistration Protection, a new AMI property that can be enabled by customers to protect an AMI against an unintended deregistration. This release also enables the AMI owners to view the AMI 'LastLaunchedTime' in DescribeImages API. * api-change:``pi``: [``botocore``] Clarifies how aggregation works for GetResourceMetrics in the Performance Insights API. * api-change:``rds``: [``botocore``] Fix the example ARN for ModifyActivityStreamRequest * api-change:``sqs``: [``botocore``] This release enables customers to call SQS using AWS JSON-1.0 protocol * api-change:``workspaces-web``: [``botocore``] Added InstanceType and MaxConcurrentSessions parameters on CreatePortal and UpdatePortal Operations as well as the ability to read Customer Managed Key & Additional Encryption Context parameters on supported resources (Portal, BrowserSettings, UserSettings, IPAccessSettings) - from version 1.34.89 * api-change:``bedrock-agent``: [``botocore``] Releasing the support for simplified configuration and return of control * api-change:``bedrock-agent-runtime``: [``botocore``] Releasing the support for simplified configuration and return of control * api-change:``payment-cryptography``: [``botocore``] Adding support to TR-31/TR-34 exports for optional headers, allowing customers to add additional metadata (such as key version and KSN) when exporting keys from the service. * api-change:``redshift-serverless``: [``botocore``] Updates description of schedule field for scheduled actions. * api-change:``route53profiles``: [``botocore``] Route 53 Profiles allows you to apply a central DNS configuration across many VPCs regardless of account. * api-change:``sagemaker``: [``botocore``] This release adds support for Real-Time Collaboration and Shared Space for JupyterLab App on SageMaker Studio. * api-change:``servicediscovery``: [``botocore``] This release adds examples to several Cloud Map actions. * api-change:``transfer``: [``botocore``] Adding new API to support remote directory listing using SFTP connector - from version 1.34.88 * api-change:``glue``: [``botocore``] Adding RowFilter in the response for GetUnfilteredTableMetadata API * api-change:``internetmonitor``: [``botocore``] This update introduces the GetInternetEvent and ListInternetEvents APIs, which provide access to internet events displayed on the Amazon CloudWatch Internet Weather Map. * api-change:``personalize``: [``botocore``] This releases auto training capability while creating a solution and automatically syncing latest solution versions when creating/updating a campaign - from version 1.34.87 * api-change:``drs``: [``botocore``] Outpost ARN added to Source Server and Recovery Instance * api-change:``emr-serverless``: [``botocore``] This release adds the capability to publish detailed Spark engine metrics to Amazon Managed Service for Prometheus (AMP) for enhanced monitoring for Spark jobs. * api-change:``guardduty``: [``botocore``] Added IPv6Address fields for local and remote IP addresses * api-change:``quicksight``: [``botocore``] This release adds support for the Cross Sheet Filter and Control features, and support for warnings in asset imports for any permitted errors encountered during execution * api-change:``rolesanywhere``: [``botocore``] This release introduces the PutAttributeMapping and DeleteAttributeMapping APIs. IAM Roles Anywhere now provides the capability to define a set of mapping rules, allowing customers to specify which data is extracted from their X.509 end-entity certificates. * api-change:``sagemaker``: [``botocore``] Removed deprecated enum values and updated API documentation. * api-change:``workspaces``: [``botocore``] Adds new APIs for managing and sharing WorkSpaces BYOL configuration across accounts. - from version 1.34.86 * api-change:``ec2``: [``botocore``] Documentation updates for Elastic Compute Cloud (EC2). * api-change:``qbusiness``: [``botocore``] This release adds support for IAM Identity Center (IDC) as the identity gateway for Q Business. It also allows users to provide an explicit intent for Q Business to identify how the Chat request should be handled. - from version 1.34.85 * api-change:``bedrock-agent``: [``botocore``] For Create Agent API, the agentResourceRoleArn parameter is no longer required. * api-change:``emr-serverless``: [``botocore``] This release adds support for shuffle optimized disks that allow larger disk sizes and higher IOPS to efficiently run shuffle heavy workloads. * api-change:``entityresolution``: [``botocore``] Cross Account Resource Support . * api-change:``iotwireless``: [``botocore``] Add PublicGateways in the GetWirelessStatistics call response, indicating the LoRaWAN public network accessed by the device. * api-change:``lakeformation``: [``botocore``] This release adds Lake Formation managed RAM support for the 4 APIs - "DescribeLakeFormationIdentityCenterConfiguration", "CreateLakeFormationIdentityCenterConfiguration", "DescribeLakeFormationIdentityCenterConfiguration", and "DeleteLakeFormationIdentityCenterConfiguration" * api-change:``m2``: [``botocore``] Adding new ListBatchJobRestartPoints API and support for restart batch job. * api-change:``mediapackagev2``: [``botocore``] Dash v2 is a MediaPackage V2 feature to support egressing on DASH manifest format. * api-change:``outposts``: [``botocore``] This release adds new APIs to allow customers to configure their Outpost capacity at order-time. * api-change:``wellarchitected``: [``botocore``] AWS Well-Architected now has a Connector for Jira to allow customers to efficiently track workload risks and improvement efforts and create closed-loop mechanisms. * enhancement:AWSCRT: [``botocore``] Update awscrt version to 0.20.9 - from version 1.34.84 * api-change:``cloudformation``: [``botocore``] Adding support for the new parameter "IncludePropertyValues" in the CloudFormation DescribeChangeSet API. When this parameter is included, the DescribeChangeSet response will include more detailed information such as before and after values for the resource properties that will change. * api-change:``config``: [``botocore``] Updates documentation for AWS Config * api-change:``glue``: [``botocore``] Modifying request for GetUnfilteredTableMetadata for view-related fields. * api-change:``healthlake``: [``botocore``] Added new CREATE_FAILED status for data stores. Added new errorCause to DescribeFHIRDatastore API and ListFHIRDatastores API response for additional insights into data store creation and deletion workflows. * api-change:``iotfleethub``: [``botocore``] Documentation updates for AWS IoT Fleet Hub to clarify that Fleet Hub supports organization instance of IAM Identity Center. * api-change:``kms``: [``botocore``] This feature supports the ability to specify a custom rotation period for automatic key rotations, the ability to perform on-demand key rotations, and visibility into your key material rotations. * api-change:``mediatailor``: [``botocore``] Added InsertionMode to PlaybackConfigurations. This setting controls whether players can use stitched or guided ad insertion. The default for players that do not specify an insertion mode is stitched. * api-change:``neptune-graph``: [``botocore``] Update to API documentation to resolve customer reported issues. * api-change:``outposts``: [``botocore``] This release adds EXPEDITORS as a valid shipment carrier. * api-change:``redshift``: [``botocore``] Adds support for Amazon Redshift DescribeClusterSnapshots API to include Snapshot ARN response field. * api-change:``transfer``: [``botocore``] This change releases support for importing self signed certificates to the Transfer Family for sending outbound file transfers over TLS/HTTPS. - from version 1.34.83 * api-change:``batch``: [``botocore``] This release adds the task properties field to attempt details and the name field on EKS container detail. * api-change:``cloudfront``: [``botocore``] CloudFront origin access control extends support to AWS Lambda function URLs and AWS Elemental MediaPackage v2 origins. * api-change:``cloudwatch``: [``botocore``] This release adds support for Metric Characteristics for CloudWatch Anomaly Detection. Anomaly Detector now takes Metric Characteristics object with Periodic Spikes boolean field that tells Anomaly Detection that spikes that repeat at the same time every week are part of the expected pattern. * api-change:``codebuild``: [``botocore``] Support access tokens for Bitbucket sources * api-change:``iam``: [``botocore``] For CreateOpenIDConnectProvider API, the ThumbprintList parameter is no longer required. * api-change:``medialive``: [``botocore``] AWS Elemental MediaLive introduces workflow monitor, a new feature that enables the visualization and monitoring of your media workflows. Create signal maps of your existing workflows and monitor them by creating notification and monitoring template groups. * api-change:``omics``: [``botocore``] This release adds support for retrieval of S3 direct access metadata on sequence stores and read sets, and adds support for SHA256up and SHA512up HealthOmics ETags. * api-change:``pipes``: [``botocore``] LogConfiguration ARN validation fixes * api-change:``rds``: [``botocore``] Updates Amazon RDS documentation for Standard Edition 2 support in RDS Custom for Oracle. * api-change:``s3control``: [``botocore``] Documentation updates for Amazon S3-control. - from version 1.34.82 * api-change:``cleanrooms``: [``botocore``] AWS Clean Rooms Differential Privacy is now fully available. Differential privacy protects against user-identification attempts. * api-change:``connect``: [``botocore``] This release adds new Submit Auto Evaluation Action for Amazon Connect Rules. * api-change:``networkmonitor``: [``botocore``] Examples were added to CloudWatch Network Monitor commands. * api-change:``qconnect``: [``botocore``] This release adds a new QiC public API updateSession and updates an existing QiC public API createSession * api-change:``rekognition``: [``botocore``] Added support for ContentType to content moderation detections. * api-change:``supplychain``: [``botocore``] This release includes API SendDataIntegrationEvent for AWS Supply Chain * api-change:``workspaces-thin-client``: [``botocore``] Adding tags field to SoftwareSet. Removing tags fields from Summary objects. Changing the list of exceptions in tagging APIs. Fixing an issue where the SDK returns empty tags in Get APIs. - from version 1.34.81 * api-change:``codebuild``: [``botocore``] Add new webhook filter types for GitHub webhooks * api-change:``mediaconvert``: [``botocore``] This release includes support for bringing your own fonts to use for burn-in or DVB-Sub captioning workflows. * api-change:``pinpoint``: [``botocore``] The OrchestrationSendingRoleArn has been added to the email channel and is used to send emails from campaigns or journeys. * api-change:``rds``: [``botocore``] This release adds support for specifying the CA certificate to use for the new db instance when restoring from db snapshot, restoring from s3, restoring to point in time, and creating a db instance read replica. - from version 1.34.80 * api-change:``controlcatalog``: [``botocore``] This is the initial SDK release for AWS Control Catalog, a central catalog for AWS managed controls. This release includes 3 new APIs - ListDomains, ListObjectives, and ListCommonControls - that vend high-level data to categorize controls across the AWS platform. * api-change:``mgn``: [``botocore``] Added USE_SOURCE as default option to LaunchConfigurationTemplate bootMode parameter. * api-change:``networkmonitor``: [``botocore``] Updated the allowed monitorName length for CloudWatch Network Monitor. - from version 1.34.79 * api-change:``quicksight``: [``botocore``] Adding IAMIdentityCenterInstanceArn parameter to CreateAccountSubscription * api-change:``resource-groups``: [``botocore``] Added a new QueryErrorCode RESOURCE_TYPE_NOT_SUPPORTED that is returned by the ListGroupResources operation if the group query contains unsupported resource types. * api-change:``verifiedpermissions``: [``botocore``] Adding BatchIsAuthorizedWithToken API which supports multiple authorization requests against a PolicyStore given a bearer token. - from version 1.34.78 * api-change:``b2bi``: [``botocore``] Adding support for X12 5010 HIPAA EDI version and associated transaction sets. * api-change:``cleanrooms``: [``botocore``] Feature: New schemaStatusDetails field to the existing Schema object that displays a status on Schema API responses to show whether a schema is queryable or not. New BatchGetSchemaAnalysisRule API to retrieve multiple schemaAnalysisRules using a single API call. * api-change:``ec2``: [``botocore``] Amazon EC2 G6 instances powered by NVIDIA L4 Tensor Core GPUs can be used for a wide range of graphics-intensive and machine learning use cases. Gr6 instances also feature NVIDIA L4 GPUs and can be used for graphics workloads with higher memory requirements. * api-change:``emr-containers``: [``botocore``] This release adds support for integration with EKS AccessEntry APIs to enable automatic Cluster Access for EMR on EKS. * api-change:``ivs``: [``botocore``] API update to include an SRT ingest endpoint and passphrase for all channels. * api-change:``verifiedpermissions``: [``botocore``] Adds GroupConfiguration field to Identity Source API's - from version 1.34.77 * api-change:``cleanroomsml``: [``botocore``] The release includes a public SDK for AWS Clean Rooms ML APIs, making them globally available to developers worldwide. * api-change:``cloudformation``: [``botocore``] This release would return a new field - PolicyAction in cloudformation's existed DescribeChangeSetResponse, showing actions we are going to apply on the physical resource (e.g., Delete, Retain) according to the user's template * api-change:``datazone``: [``botocore``] This release supports the feature of dataQuality to enrich asset with dataQualityResult in Amazon DataZone. * api-change:``docdb``: [``botocore``] This release adds Global Cluster Switchover capability which enables you to change your global cluster's primary AWS Region, the region that serves writes, while preserving the replication between all regions in the global cluster. * api-change:``groundstation``: [``botocore``] This release adds visibilityStartTime and visibilityEndTime to DescribeContact and ListContacts responses. * api-change:``lambda``: [``botocore``] Add Ruby 3.3 (ruby3.3) support to AWS Lambda * api-change:``medialive``: [``botocore``] Cmaf Ingest outputs are now supported in Media Live * api-change:``medical-imaging``: [``botocore``] SearchImageSets API now supports following enhancements - Additional support for searching on UpdatedAt and SeriesInstanceUID - Support for searching existing filters between dates/times - Support for sorting the search result by Ascending/Descending - Additional parameters returned in the response * api-change:``transfer``: [``botocore``] Add ability to specify Security Policies for SFTP Connectors - from version 1.34.76 * api-change:``ecs``: [``botocore``] Documentation only update for Amazon ECS. * api-change:``glue``: [``botocore``] Adding View related fields to responses of read-only Table APIs. * api-change:``ivschat``: [``botocore``] Doc-only update. Changed "Resources" to "Key Concepts" in docs and updated text. * api-change:``rolesanywhere``: [``botocore``] This release increases the limit on the roleArns request parameter for the *Profile APIs that support it. This parameter can now take up to 250 role ARNs. * api-change:``securityhub``: [``botocore``] Documentation updates for AWS Security Hub - from version 1.34.75 * api-change:``cloudwatch``: [``botocore``] This release adds support for CloudWatch Anomaly Detection on cross-account metrics. SingleMetricAnomalyDetector and MetricDataQuery inputs to Anomaly Detection APIs now take an optional AccountId field. * api-change:``datazone``: [``botocore``] This release supports the feature of AI recommendations for descriptions to enrich the business data catalog in Amazon DataZone. * api-change:``deadline``: [``botocore``] AWS Deadline Cloud is a new fully managed service that helps customers set up, deploy, and scale rendering projects in minutes, so they can improve the efficiency of their rendering pipelines and take on more projects. * api-change:``emr``: [``botocore``] This release fixes a broken link in the documentation. * api-change:``lightsail``: [``botocore``] This release adds support to upgrade the TLS version of the distribution. - from version 1.34.74 * api-change:``b2bi``: [``botocore``] Supporting new EDI X12 transaction sets for X12 versions 4010, 4030, and 5010. * api-change:``codebuild``: [``botocore``] Add new fleet status code for Reserved Capacity. * api-change:``codeconnections``: [``botocore``] Duplicating the CodeStar Connections service into the new, rebranded AWS CodeConnections service. * api-change:``internetmonitor``: [``botocore``] This release adds support to allow customers to track cross account monitors through ListMonitor, GetMonitor, ListHealthEvents, GetHealthEvent, StartQuery APIs. * api-change:``iotwireless``: [``botocore``] Add support for retrieving key historical and live metrics for LoRaWAN devices and gateways * api-change:``marketplace-catalog``: [``botocore``] This release enhances the ListEntities API to support ResaleAuthorizationId filter and sort for OfferEntity in the request and the addition of a ResaleAuthorizationId field in the response of OfferSummary. * api-change:``neptune-graph``: [``botocore``] Add the new API Start-Import-Task for Amazon Neptune Analytics. * api-change:``sagemaker``: [``botocore``] This release adds support for custom images for the CodeEditor App on SageMaker Studio - from version 1.34.73 * api-change:``codecatalyst``: [``botocore``] This release adds support for understanding pending changes to subscriptions by including two new response parameters for the GetSubscription API for Amazon CodeCatalyst. * api-change:``compute-optimizer``: [``botocore``] This release enables AWS Compute Optimizer to analyze and generate recommendations with a new customization preference, Memory Utilization. * api-change:``ec2``: [``botocore``] Amazon EC2 C7gd, M7gd and R7gd metal instances with up to 3.8 TB of local NVMe-based SSD block-level storage have up to 45% improved real-time NVMe storage performance than comparable Graviton2-based instances. * api-change:``eks``: [``botocore``] Add multiple customer error code to handle customer caused failure when managing EKS node groups * api-change:``guardduty``: [``botocore``] Add EC2 support for GuardDuty Runtime Monitoring auto management. * api-change:``neptune-graph``: [``botocore``] Update ImportTaskCancelled waiter to evaluate task state correctly and minor documentation changes. * api-change:``oam``: [``botocore``] This release adds support for sharing AWS::InternetMonitor::Monitor resources. * api-change:``quicksight``: [``botocore``] Amazon QuickSight: Adds support for setting up VPC Endpoint restrictions for accessing QuickSight Website. - from version 1.34.72 * api-change:``batch``: [``botocore``] This feature allows AWS Batch to support configuration of imagePullSecrets and allowPrivilegeEscalation for jobs running on EKS * api-change:``bedrock-agent``: [``botocore``] This changes introduces metadata documents statistics and also updates the documentation for bedrock agent. * api-change:``bedrock-agent-runtime``: [``botocore``] This release introduces filtering support on Retrieve and RetrieveAndGenerate APIs. * api-change:``elasticache``: [``botocore``] Added minimum capacity to Amazon ElastiCache Serverless. This feature allows customer to ensure minimum capacity even without current load * api-change:``secretsmanager``: [``botocore``] Documentation updates for Secrets Manager - from version 1.34.71 * api-change:``bedrock-agent-runtime``: [``botocore``] This release adds support to customize prompts sent through the RetrieveAndGenerate API in Agents for Amazon Bedrock. * api-change:``ce``: [``botocore``] Adds support for backfill of cost allocation tags, with new StartCostAllocationTagBackfill and ListCostAllocationTagBackfillHistory API. * api-change:``ec2``: [``botocore``] Documentation updates for Elastic Compute Cloud (EC2). * api-change:``ecs``: [``botocore``] This is a documentation update for Amazon ECS. * api-change:``finspace``: [``botocore``] Add new operation delete-kx-cluster-node and add status parameter to list-kx-cluster-node operation. - from version 1.34.70 * api-change:``codebuild``: [``botocore``] Supporting GitLab and GitLab Self Managed as source types in AWS CodeBuild. * api-change:``ec2``: [``botocore``] Added support for ModifyInstanceMetadataDefaults and GetInstanceMetadataDefaults to set Instance Metadata Service account defaults * api-change:``ecs``: [``botocore``] Documentation only update for Amazon ECS. * api-change:``emr-containers``: [``botocore``] This release increases the number of supported job template parameters from 20 to 100. * api-change:``globalaccelerator``: [``botocore``] AWS Global Accelerator now supports cross-account sharing for bring your own IP addresses. * api-change:``medialive``: [``botocore``] Exposing TileMedia H265 options * api-change:``sagemaker``: [``botocore``] Introduced support for the following new instance types on SageMaker Studio for JupyterLab and CodeEditor applications: m6i, m6id, m7i, c6i, c6id, c7i, r6i, r6id, r7i, and p5 - from version 1.34.69 * api-change:``firehose``: [``botocore``] Updates Amazon Firehose documentation for message regarding Enforcing Tags IAM Policy. * api-change:``kendra``: [``botocore``] Documentation update, March 2024. Corrects some docs for Amazon Kendra. * api-change:``pricing``: [``botocore``] Add ResourceNotFoundException to ListPriceLists and GetPriceListFileUrl APIs * api-change:``rolesanywhere``: [``botocore``] This release relaxes constraints on the durationSeconds request parameter for the *Profile APIs that support it. This parameter can now take on values that go up to 43200. * api-change:``securityhub``: [``botocore``] Added new resource detail object to ASFF, including resource for LastKnownExploitAt - from version 1.34.68 * api-change:``codeartifact``: [``botocore``] This release adds Package groups to CodeArtifact so you can more conveniently configure package origin controls for multiple packages. - from version 1.34.67 * api-change:``accessanalyzer``: [``botocore``] This release adds support for policy validation and external access findings for DynamoDB tables and streams. IAM Access Analyzer helps you author functional and secure resource-based policies and identify cross-account access. Updated service API, documentation, and paginators. * api-change:``codebuild``: [``botocore``] This release adds support for new webhook events (RELEASED and PRERELEASED) and filter types (TAG_NAME and RELEASE_NAME). * api-change:``connect``: [``botocore``] This release updates the *InstanceStorageConfig APIs to support a new ResourceType: REAL_TIME_CONTACT_ANALYSIS_CHAT_SEGMENTS. Use this resource type to enable streaming for real-time analysis of chat contacts and to associate a Kinesis stream where real-time analysis chat segments will be published. * api-change:``dynamodb``: [``botocore``] This release introduces 3 new APIs ('GetResourcePolicy', 'PutResourcePolicy' and 'DeleteResourcePolicy') and modifies the existing 'CreateTable' API for the resource-based policy support. It also modifies several APIs to accept a 'TableArn' for the 'TableName' parameter. * api-change:``managedblockchain-query``: [``botocore``] AMB Query: update GetTransaction to include transactionId as input * api-change:``savingsplans``: [``botocore``] Introducing the Savings Plans Return feature enabling customers to return their Savings Plans within 7 days of purchase. - from version 1.34.66 * api-change:``cloudformation``: [``botocore``] Documentation update, March 2024. Corrects some formatting. * api-change:``ec2``: [``botocore``] This release adds the new DescribeMacHosts API operation for getting information about EC2 Mac Dedicated Hosts. Users can now see the latest macOS versions that their underlying Apple Mac can support without needing to be updated. * api-change:``finspace``: [``botocore``] Adding new attributes readWrite and onDemand to dataview models for Database Maintenance operations. * api-change:``logs``: [``botocore``] Update LogSamples field in Anomaly model to be a list of LogEvent * api-change:``managedblockchain-query``: [``botocore``] Introduces a new API for Amazon Managed Blockchain Query: ListFilteredTransactionEvents. - from version 1.34.65 * api-change:``cloudformation``: [``botocore``] This release supports for a new API ListStackSetAutoDeploymentTargets, which provider auto-deployment configuration as a describable resource. Customers can now view the specific combinations of regions and OUs that are being auto-deployed. * api-change:``kms``: [``botocore``] Adds the ability to use the default policy name by omitting the policyName parameter in calls to PutKeyPolicy and GetKeyPolicy * api-change:``mediatailor``: [``botocore``] This release adds support to allow customers to show different content within a channel depending on metadata associated with the viewer. * api-change:``rds``: [``botocore``] This release launches the ModifyIntegration API and support for data filtering for zero-ETL Integrations. * api-change:``s3``: [``botocore``] Fix two issues with response root node names. * api-change:``timestream-query``: [``botocore``] Documentation updates, March 2024 - from version 1.34.64 * api-change:``backup``: [``botocore``] This release introduces a boolean attribute ManagedByAWSBackupOnly as part of ListRecoveryPointsByResource api to filter the recovery points based on ownership. This attribute can be used to filter out the recovery points protected by AWSBackup. * api-change:``codebuild``: [``botocore``] AWS CodeBuild now supports overflow behavior on Reserved Capacity. * api-change:``connect``: [``botocore``] This release adds Hierarchy based Access Control fields to Security Profile public APIs and adds support for UserAttributeFilter to SearchUsers API. * api-change:``ec2``: [``botocore``] Add media accelerator and neuron device information on the describe instance types API. * api-change:``kinesisanalyticsv2``: [``botocore``] Support for Flink 1.18 in Managed Service for Apache Flink * api-change:``s3``: [``botocore``] Documentation updates for Amazon S3. * api-change:``sagemaker``: [``botocore``] Adds m6i, m6id, m7i, c6i, c6id, c7i, r6i r6id, r7i, p5 instance type support to Sagemaker Notebook Instances and miscellaneous wording fixes for previous Sagemaker documentation. * api-change:``workspaces-thin-client``: [``botocore``] Removed unused parameter kmsKeyArn from UpdateDeviceRequest - from version 1.34.63 * api-change:``amplify``: [``botocore``] Documentation updates for Amplify. Identifies the APIs available only to apps created using Amplify Gen 1. * api-change:``ec2-instance-connect``: [``botocore``] This release includes a new exception type "SerialConsoleSessionUnsupportedException" for SendSerialConsoleSSHPublicKey API. * api-change:``elbv2``: [``botocore``] This release allows you to configure HTTP client keep-alive duration for communication between clients and Application Load Balancers. * api-change:``fis``: [``botocore``] This release adds support for previewing target resources before running a FIS experiment. It also adds resource ARNs for actions, experiments, and experiment templates to API responses. * api-change:``iot-roborunner``: [``botocore``] The iot-roborunner client has been removed following the deprecation of the service. * api-change:``rds``: [``botocore``] Updates Amazon RDS documentation for EBCDIC collation for RDS for Db2. * api-change:``secretsmanager``: [``botocore``] Doc only update for Secrets Manager * api-change:``timestream-influxdb``: [``botocore``] This is the initial SDK release for Amazon Timestream for InfluxDB. Amazon Timestream for InfluxDB is a new time-series database engine that makes it easy for application developers and DevOps teams to run InfluxDB databases on AWS for near real-time time-series applications using open source APIs. * enhancement:``urllib3``: [``botocore``] Added support for urllib3 2.2.1+ in Python 3.10+ - from version 1.34.62 * api-change:``ivs-realtime``: [``botocore``] adds support for multiple new composition layout configuration options (grid, pip) * api-change:``kinesisanalyticsv2``: [``botocore``] Support new RuntimeEnvironmentUpdate parameter within UpdateApplication API allowing callers to change the Flink version upon which their application runs. * api-change:``s3``: [``botocore``] This release makes the default option for S3 on Outposts request signing to use the SigV4A algorithm when using AWS Common Runtime (CRT). - from version 1.34.61 * api-change:``cloudformation``: [``botocore``] CloudFormation documentation update for March, 2024 * api-change:``connect``: [``botocore``] This release increases MaxResults limit to 500 in request for SearchUsers, SearchQueues and SearchRoutingProfiles APIs of Amazon Connect. * api-change:``ec2``: [``botocore``] Documentation updates for Amazon EC2. * api-change:``kafka``: [``botocore``] Added support for specifying the starting position of topic replication in MSK-Replicator. * api-change:``ssm``: [``botocore``] March 2024 doc-only updates for Systems Manager. - from version 1.34.60 * api-change:``codestar-connections``: [``botocore``] Added a sync configuration enum to disable publishing of deployment status to source providers (PublishDeploymentStatus). Added a sync configuration enum (TriggerStackUpdateOn) to only trigger changes. * api-change:``elasticache``: [``botocore``] Revisions to API text that are now to be carried over to SDK text, changing usages of "SFO" in code examples to "us-west-1", and some other typos. * api-change:``mediapackagev2``: [``botocore``] This release enables customers to safely update their MediaPackage v2 channel groups, channels and origin endpoints using entity tags. - from version 1.34.59 * api-change:``batch``: [``botocore``] This release adds JobStateTimeLimitActions setting to the Job Queue API. It allows you to configure an action Batch can take for a blocking job in front of the queue after the defined period of time. The new parameter applies for ECS, EKS, and FARGATE Job Queues. * api-change:``bedrock-agent-runtime``: [``botocore``] Documentation update for Bedrock Runtime Agent * api-change:``cloudtrail``: [``botocore``] Added exceptions to CreateTrail, DescribeTrails, and ListImportFailures APIs. * api-change:``codebuild``: [``botocore``] This release adds support for a new webhook event: PULL_REQUEST_CLOSED. * api-change:``cognito-idp``: [``botocore``] Add ConcurrentModificationException to SetUserPoolMfaConfig * api-change:``guardduty``: [``botocore``] Add RDS Provisioned and Serverless Usage types * api-change:``transfer``: [``botocore``] Added DES_EDE3_CBC to the list of supported encryption algorithms for messages sent with an AS2 connector. - from version 1.34.58 * api-change:``appconfig``: [``botocore``] AWS AppConfig now supports dynamic parameters, which enhance the functionality of AppConfig Extensions by allowing you to provide parameter values to your Extensions at the time you deploy your configuration. * api-change:``ec2``: [``botocore``] This release adds an optional parameter to RegisterImage and CopyImage APIs to support tagging AMIs at the time of creation. * api-change:``grafana``: [``botocore``] Adds support for the new GrafanaToken as part of the Amazon Managed Grafana Enterprise plugins upgrade to associate your AWS account with a Grafana Labs account. * api-change:``lambda``: [``botocore``] Documentation updates for AWS Lambda * api-change:``payment-cryptography-data``: [``botocore``] AWS Payment Cryptography EMV Decrypt Feature Release * api-change:``rds``: [``botocore``] Updates Amazon RDS documentation for io2 storage for Multi-AZ DB clusters * api-change:``snowball``: [``botocore``] Doc-only update for change to EKS-Anywhere ordering. * api-change:``wafv2``: [``botocore``] You can increase the max request body inspection size for some regional resources. The size setting is in the web ACL association config. Also, the AWSManagedRulesBotControlRuleSet EnableMachineLearning setting now takes a Boolean instead of a primitive boolean type, for languages like Java. * api-change:``workspaces``: [``botocore``] Added note for user decoupling - from version 1.34.57 * api-change:``dynamodb``: [``botocore``] Doc only updates for DynamoDB documentation * api-change:``imagebuilder``: [``botocore``] Add PENDING status to Lifecycle Execution resource status. Add StartTime and EndTime to ListLifecycleExecutionResource API response. * api-change:``mwaa``: [``botocore``] Amazon MWAA adds support for Apache Airflow v2.8.1. * api-change:``rds``: [``botocore``] Updated the input of CreateDBCluster and ModifyDBCluster to support setting CA certificates. Updated the output of DescribeDBCluster to show current CA certificate setting value. * api-change:``redshift``: [``botocore``] Update for documentation only. Covers port ranges, definition updates for data sharing, and definition updates to cluster-snapshot documentation. * api-change:``verifiedpermissions``: [``botocore``] Deprecating details in favor of configuration for GetIdentitySource and ListIdentitySources APIs. - from version 1.34.56 * api-change:``apigateway``: [``botocore``] Documentation updates for Amazon API Gateway * api-change:``chatbot``: [``botocore``] Minor update to documentation. * api-change:``organizations``: [``botocore``] This release contains an endpoint addition * api-change:``sesv2``: [``botocore``] Adds support for providing custom headers within SendEmail and SendBulkEmail for SESv2. - Update BuildRequires and Requires from setup.py - Update to 1.34.55 * api-change:``docdb-elastic``: Launched Elastic Clusters Readable Secondaries, Start/Stop, Configurable Shard Instance count, Automatic Backups and Snapshot Copying * api-change:``quicksight``: TooltipTarget for Combo chart visuals; ColumnConfiguration limit increase to 2000; Documentation Update * api-change:``amplifyuibuilder``: We have added the ability to tag resources after they are created * api-change:``internetmonitor``: This release adds IPv4 prefixes to health events * api-change:``iotevents``: Increase the maximum length of descriptions for Inputs, Detector Models, and Alarm Models * api-change:``lambda``: Add .NET 8 (dotnet8) Runtime support to AWS Lambda. * api-change:``chatbot``: This release adds support for AWS Chatbot. You can now monitor, operate, and troubleshoot your AWS resources with interactive ChatOps using the AWS SDK. * api-change:``sns``: This release marks phone numbers as sensitive inputs. * api-change:``artifact``: This is the initial SDK release for AWS Artifact. AWS Artifact provides on-demand access to compliance and third-party compliance reports. This release includes access to List and Get reports, along with their metadata. This release also includes access to AWS Artifact notifications settings. * api-change:``guardduty``: Marked fields IpAddressV4, PrivateIpAddress, Email as Sensitive. * api-change:``polly``: Amazon Polly adds 1 new voice - Burcu (tr-TR) * bugfix:ContainerProvider: Properly refreshes token from file from EKS in ContainerProvider * api-change:``resource-explorer-2``: Resource Explorer now uses newly supported IPv4 'amazonaws.com' endpoints by default. * api-change:``pricing``: Add Throttling Exception to all APIs. * api-change:``mediaconvert``: This release includes support for broadcast-mixed audio description tracks. * api-change:``glue``: Update page size limits for GetJobRuns and GetTriggers APIs. * Many more changes, see CHANGELOG.rst Changes in python-botocore: - Double physicalmemory for python-botocore:test in _constraints - Update to 1.34.144 * api-change:``acm-pca``: Minor refactoring of C2J model for AWS Private CA * api-change:``arc-zonal-shift``: Adds the option to subscribe to get notifications when a zonal autoshift occurs in a region. * api-change:``globalaccelerator``: This feature adds exceptions to the Customer API to avoid throwing Internal Service errors * api-change:``pinpoint``: Add v2 smoke tests and smithy smokeTests trait for SDK testing. * api-change:``quicksight``: Vega ally control options and Support for Reviewed Answers in Topics - from version 1.34.143 * api-change:``batch``: This feature allows AWS Batch Jobs with EKS container orchestration type to be run as Multi-Node Parallel Jobs. * api-change:``bedrock``: Add support for contextual grounding check for Guardrails for Amazon Bedrock. * api-change:``bedrock-agent``: Introduces new data sources and chunking strategies for Knowledge bases, advanced parsing logic using FMs, session summary generation, and code interpretation (preview) for Claude V3 Sonnet and Haiku models. Also introduces Prompt Flows (preview) to link prompts, foundational models, and resources. * api-change:``bedrock-agent-runtime``: Introduces query decomposition, enhanced Agents integration with Knowledge bases, session summary generation, and code interpretation (preview) for Claude V3 Sonnet and Haiku models. Also introduces Prompt Flows (preview) to link prompts, foundational models, and resources for end-to-end solutions. * api-change:``bedrock-runtime``: Add support for contextual grounding check and ApplyGuardrail API for Guardrails for Amazon Bedrock. * api-change:``ec2``: Add parameters to enable provisioning IPAM BYOIPv4 space at a Local Zone Network Border Group level * api-change:``glue``: Add recipe step support for recipe node * api-change:``groundstation``: Documentation update specifying OEM ephemeris units of measurement * api-change:``license-manager-linux-subscriptions``: Add support for third party subscription providers, starting with RHEL subscriptions through Red Hat Subscription Manager (RHSM). Additionally, add support for tagging subscription provider resources, and detect when an instance has more than one Linux subscription and notify the customer. * api-change:``mediaconnect``: AWS Elemental MediaConnect introduces the ability to disable outputs. Disabling an output allows you to keep the output attached to the flow, but stop streaming to the output destination. A disabled output does not incur data transfer costs. - from version 1.34.142 * api-change:``datazone``: This release deprecates dataProductItem field from SearchInventoryResultItem, along with some unused DataProduct shapes * api-change:``fsx``: Adds support for FSx for NetApp ONTAP 2nd Generation file systems, and FSx for OpenZFS Single AZ HA file systems. * api-change:``opensearch``: This release adds support for enabling or disabling Natural Language Query Processing feature for Amazon OpenSearch Service domains, and provides visibility into the current state of the setup or tear-down. * api-change:``sagemaker``: This release 1/ enables optimization jobs that allows customers to perform Ahead-of-time compilation and quantization. 2/ allows customers to control access to Amazon Q integration in SageMaker Studio. 3/ enables AdditionalModelDataSources for CreateModel action. - from version 1.34.141 * api-change:``codedeploy``: Add v2 smoke tests and smithy smokeTests trait for SDK testing. * api-change:``devicefarm``: Add v2 smoke tests and smithy smokeTests trait for SDK testing. * api-change:``dms``: Add v2 smoke tests and smithy smokeTests trait for SDK testing. * api-change:``elasticbeanstalk``: Add v2 smoke tests and smithy smokeTests trait for SDK testing. * api-change:``es``: Add v2 smoke tests and smithy smokeTests trait for SDK testing. * api-change:``firehose``: Add v2 smoke tests and smithy smokeTests trait for SDK testing. * api-change:``gamelift``: Add v2 smoke tests and smithy smokeTests trait for SDK testing. * api-change:``qapps``: This is a general availability (GA) release of Amazon Q Apps, a capability of Amazon Q Business. Q Apps leverages data sources your company has provided to enable users to build, share, and customize apps within your organization. * api-change:``route53resolver``: Add v2 smoke tests and smithy smokeTests trait for SDK testing. * api-change:``ses``: Add v2 smoke tests and smithy smokeTests trait for SDK testing. - from version 1.34.140 * api-change:``acm``: Documentation updates, including fixes for xml formatting, broken links, and ListCertificates description. * api-change:``ecr``: This release for Amazon ECR makes change to bring the SDK into sync with the API. * api-change:``payment-cryptography-data``: Added further restrictions on logging of potentially sensitive inputs and outputs. * api-change:``qbusiness``: Add personalization to Q Applications. Customers can enable or disable personalization when creating or updating a Q application with the personalization configuration. - from version 1.34.139 * api-change:``application-autoscaling``: Doc only update for Application Auto Scaling that fixes resource name. * api-change:``directconnect``: This update includes documentation for support of new native 400 GBps ports for Direct Connect. * api-change:``organizations``: Added a new reason under ConstraintViolationException in RegisterDelegatedAdministrator API to prevent registering suspended accounts as delegated administrator of a service. * api-change:``rekognition``: This release adds support for tagging projects and datasets with the CreateProject and CreateDataset APIs. * api-change:``workspaces``: Fix create workspace bundle RootStorage/UserStorage to accept non null values - Update to 1.34.138 * api-change:``ec2``: Documentation updates for Elastic Compute Cloud (EC2). * api-change:``fms``: Increases Customer API's ManagedServiceData length * api-change:``s3``: Added response overrides to Head Object requests. - from version 1.34.137 * api-change:``apigateway``: Add v2 smoke tests and smithy smokeTests trait for SDK testing. * api-change:``cognito-identity``: Add v2 smoke tests and smithy smokeTests trait for SDK testing. * api-change:``connect``: Authentication profiles are Amazon Connect resources (in gated preview) that allow you to configure authentication settings for users in your contact center. This release adds support for new ListAuthenticationProfiles, DescribeAuthenticationProfile and UpdateAuthenticationProfile APIs. * api-change:``docdb``: Add v2 smoke tests and smithy smokeTests trait for SDK testing. * api-change:``eks``: Updates EKS managed node groups to support EC2 Capacity Blocks for ML * api-change:``payment-cryptography``: Added further restrictions on logging of potentially sensitive inputs and outputs. * api-change:``payment-cryptography-data``: Adding support for dynamic keys for encrypt, decrypt, re-encrypt and translate pin functions. With this change, customers can use one-time TR-31 keys directly in dataplane operations without the need to first import them into the service. * api-change:``stepfunctions``: Add v2 smoke tests and smithy smokeTests trait for SDK testing. * api-change:``swf``: Add v2 smoke tests and smithy smokeTests trait for SDK testing. * api-change:``wafv2``: JSON body inspection: Update documentation to clarify that JSON parsing doesn't include full validation. - from version 1.34.136 * api-change:``acm-pca``: Added CCPC_LEVEL_1_OR_HIGHER KeyStorageSecurityStandard and SM2 KeyAlgorithm and SM3WITHSM2 SigningAlgorithm for China regions. * api-change:``cloudhsmv2``: Added 3 new APIs to support backup sharing: GetResourcePolicy, PutResourcePolicy, and DeleteResourcePolicy. Added BackupArn to the output of the DescribeBackups API. Added support for BackupArn in the CreateCluster API. * api-change:``connect``: This release supports showing PreferredAgentRouting step via DescribeContact API. * api-change:``emr``: This release provides the support for new allocation strategies i.e. CAPACITY_OPTIMIZED_PRIORITIZED for Spot and PRIORITIZED for On-Demand by taking input of priority value for each instance type for instance fleet clusters. * api-change:``glue``: Added AttributesToGet parameter to Glue GetDatabases, allowing caller to limit output to include only the database name. * api-change:``kinesisanalyticsv2``: Support for Flink 1.19 in Managed Service for Apache Flink * api-change:``opensearch``: This release removes support for enabling or disabling Natural Language Query Processing feature for Amazon OpenSearch Service domains. * api-change:``pi``: Noting that the filter db.sql.db_id isn't available for RDS for SQL Server DB instances. * api-change:``workspaces``: Added support for Red Hat Enterprise Linux 8 on Amazon WorkSpaces Personal. - from version 1.34.135 * api-change:``application-autoscaling``: Amazon WorkSpaces customers can now use Application Auto Scaling to automatically scale the number of virtual desktops in a WorkSpaces pool. * api-change:``chime-sdk-media-pipelines``: Added Amazon Transcribe multi language identification to Chime SDK call analytics. Enabling customers sending single stream audio to generate call recordings using Chime SDK call analytics * api-change:``cloudfront``: Doc only update for CloudFront that fixes customer-reported issue * api-change:``datazone``: This release supports the data lineage feature of business data catalog in Amazon DataZone. * api-change:``elasticache``: Add v2 smoke tests and smithy smokeTests trait for SDK testing. * api-change:``mq``: This release makes the EngineVersion field optional for both broker and configuration and uses the latest available version by default. The AutoMinorVersionUpgrade field is also now optional for broker creation and defaults to 'true'. * api-change:``qconnect``: Adds CreateContentAssociation, ListContentAssociations, GetContentAssociation, and DeleteContentAssociation APIs. * api-change:``quicksight``: Adding support for Repeating Sections, Nested Filters * api-change:``rds``: Updates Amazon RDS documentation for TAZ export to S3. * api-change:``sagemaker``: Add capability for Admins to customize Studio experience for the user by showing or hiding Apps and MLTools. * api-change:``workspaces``: Added support for WorkSpaces Pools. - from version 1.34.134 * api-change:``controltower``: Added ListLandingZoneOperations API. * api-change:``eks``: Added support for disabling unmanaged addons during cluster creation. * api-change:``ivs-realtime``: IVS Real-Time now offers customers the ability to upload public keys for customer vended participant tokens. * api-change:``kinesisanalyticsv2``: This release adds support for new ListApplicationOperations and DescribeApplicationOperation APIs. It adds a new configuration to enable system rollbacks, adds field ApplicationVersionCreateTimestamp for clarity and improves support for pagination for APIs. * api-change:``opensearch``: This release adds support for enabling or disabling Natural Language Query Processing feature for Amazon OpenSearch Service domains, and provides visibility into the current state of the setup or tear-down. - from version 1.34.133 * api-change:``autoscaling``: Doc only update for Auto Scaling's TargetTrackingMetricDataQuery * api-change:``ec2``: This release is for the launch of the new u7ib-12tb.224xlarge, R8g, c7gn.metal and mac2-m1ultra.metal instance types * api-change:``networkmanager``: This is model changes & documentation update for the Asynchronous Error Reporting feature for AWS Cloud WAN. This feature allows customers to view errors that occur while their resources are being provisioned, enabling customers to fix their resources without needing external support. * api-change:``workspaces-thin-client``: This release adds the deviceCreationTags field to CreateEnvironment API input, UpdateEnvironment API input and GetEnvironment API output. - from version 1.34.132 * api-change:``bedrock-runtime``: Increases Converse API's document name length * api-change:``customer-profiles``: This release includes changes to ProfileObjectType APIs, adds functionality top set and get capacity for profile object types. * api-change:``ec2``: Fix EC2 multi-protocol info in models. * api-change:``qbusiness``: Allow enable/disable Q Apps when creating/updating a Q application; Return the Q Apps enablement information when getting a Q application. * api-change:``ssm``: Add sensitive trait to SSM IPAddress property for CloudTrail redaction * api-change:``workspaces-web``: Added ability to enable DeepLinking functionality on a Portal via UserSettings as well as added support for IdentityProvider resource tagging. - from version 1.34.131 * api-change:``bedrock-runtime``: This release adds document support to Converse and ConverseStream APIs * api-change:``codeartifact``: Add support for the Cargo package format. * api-change:``compute-optimizer``: This release enables AWS Compute Optimizer to analyze and generate optimization recommendations for Amazon RDS MySQL and RDS PostgreSQL. * api-change:``cost-optimization-hub``: This release enables AWS Cost Optimization Hub to show cost optimization recommendations for Amazon RDS MySQL and RDS PostgreSQL. * api-change:``dynamodb``: Doc-only update for DynamoDB. Fixed Important note in 6 Global table APIs - CreateGlobalTable, DescribeGlobalTable, DescribeGlobalTableSettings, ListGlobalTables, UpdateGlobalTable, and UpdateGlobalTableSettings. * api-change:``glue``: Fix Glue paginators for Jobs, JobRuns, Triggers, Blueprints and Workflows. * api-change:``ivs-realtime``: IVS Real-Time now offers customers the ability to record individual stage participants to S3. * api-change:``sagemaker``: Adds support for model references in Hub service, and adds support for cross-account access of Hubs * api-change:``securityhub``: Documentation updates for Security Hub - from version 1.34.130 * api-change:``artifact``: This release adds an acceptanceType field to the ReportSummary structure (used in the ListReports API response). * api-change:``athena``: Add v2 smoke tests and smithy smokeTests trait for SDK testing. * api-change:``cur``: Add v2 smoke tests and smithy smokeTests trait for SDK testing. * api-change:``directconnect``: Add v2 smoke tests and smithy smokeTests trait for SDK testing. * api-change:``elastictranscoder``: Add v2 smoke tests and smithy smokeTests trait for SDK testing. * api-change:``opensearch``: This release enables customers to use JSON Web Tokens (JWT) for authentication on their Amazon OpenSearch Service domains. - from version 1.34.129 * api-change:``bedrock-runtime``: This release adds support for using Guardrails with the Converse and ConverseStream APIs. * api-change:``cloudtrail``: Add v2 smoke tests and smithy smokeTests trait for SDK testing. * api-change:``config``: Add v2 smoke tests and smithy smokeTests trait for SDK testing. * api-change:``eks``: This release adds support to surface async fargate customer errors from async path to customer through describe-fargate-profile API response. * api-change:``lightsail``: Add v2 smoke tests and smithy smokeTests trait for SDK testing. * api-change:``polly``: Add v2 smoke tests and smithy smokeTests trait for SDK testing. * api-change:``rekognition``: Add v2 smoke tests and smithy smokeTests trait for SDK testing. * api-change:``sagemaker``: Launched a new feature in SageMaker to provide managed MLflow Tracking Servers for customers to track ML experiments. This release also adds a new capability of attaching additional storage to SageMaker HyperPod cluster instances. * api-change:``shield``: Add v2 smoke tests and smithy smokeTests trait for SDK testing. * api-change:``snowball``: Add v2 smoke tests and smithy smokeTests trait for SDK testing. - from version 1.34.128 * api-change:``acm-pca``: Doc-only update that adds name constraints as an allowed extension for ImportCertificateAuthorityCertificate. * api-change:``batch``: Add v2 smoke tests and smithy smokeTests trait for SDK testing. * api-change:``codebuild``: AWS CodeBuild now supports global and organization GitHub webhooks * api-change:``cognito-idp``: Add v2 smoke tests and smithy smokeTests trait for SDK testing. * api-change:``ds``: Add v2 smoke tests and smithy smokeTests trait for SDK testing. * api-change:``efs``: Add v2 smoke tests and smithy smokeTests trait for SDK testing. * api-change:``glue``: This release introduces a new feature, Usage profiles. Usage profiles allow the AWS Glue admin to create different profiles for various classes of users within the account, enforcing limits and defaults for jobs and sessions. * api-change:``mediaconvert``: This release includes support for creating I-frame only video segments for DASH trick play. * api-change:``secretsmanager``: Doc only update for Secrets Manager * api-change:``waf``: Add v2 smoke tests and smithy smokeTests trait for SDK testing. - from version 1.34.127 * api-change:``datazone``: This release introduces a new default service blueprint for custom environment creation. * api-change:``ec2``: Documentation updates for Amazon EC2. * api-change:``macie2``: This release adds support for managing the status of automated sensitive data discovery for individual accounts in an organization, and determining whether individual S3 buckets are included in the scope of the analyses. * api-change:``mediaconvert``: This release adds the ability to search for historical job records within the management console using a search box and/or via the SDK/CLI with partial string matching search on input file name. * api-change:``route53domains``: Add v2 smoke tests and smithy smokeTests trait for SDK testing. - from version 1.34.126 * api-change:``cloudhsmv2``: Added support for hsm type hsm2m.medium. Added supported for creating a cluster in FIPS or NON_FIPS mode. * api-change:``glue``: This release adds support for configuration of evaluation method for composite rules in Glue Data Quality rulesets. * api-change:``iotwireless``: Add RoamingDeviceSNR and RoamingDeviceRSSI to Customer Metrics. * api-change:``kms``: This feature allows customers to use their keys stored in KMS to derive a shared secret which can then be used to establish a secured channel for communication, provide proof of possession, or establish trust with other parties. * api-change:``mediapackagev2``: This release adds support for CMAF ingest (DASH-IF live media ingest protocol interface 1) - from version 1.34.125 * api-change:``apptest``: AWS Mainframe Modernization Application Testing is an AWS Mainframe Modernization service feature that automates functional equivalence testing for mainframe application modernization and migration to AWS, and regression testing. * api-change:``backupstorage``: The backupstorage client has been removed following the deprecation of the service. * api-change:``ec2``: Tagging support for Traffic Mirroring FilterRule resource * api-change:``osis``: SDK changes for self-managed vpc endpoint to OpenSearch ingestion pipelines. * api-change:``redshift``: Updates to remove DC1 and DS2 node types. * api-change:``secretsmanager``: Introducing RotationToken parameter for PutSecretValue API * api-change:``securitylake``: This release updates request validation regex to account for non-commercial aws partitions. * api-change:``sesv2``: This release adds support for Amazon EventBridge as an email sending events destination. - from version 1.34.124 * api-change:``accessanalyzer``: IAM Access Analyzer now provides policy recommendations to help resolve unused permissions for IAM roles and users. Additionally, IAM Access Analyzer now extends its custom policy checks to detect when IAM policies grant public access or access to critical resources ahead of deployments. * api-change:``guardduty``: Added API support for GuardDuty Malware Protection for S3. * api-change:``networkmanager``: This is model changes & documentation update for Service Insertion feature for AWS Cloud WAN. This feature allows insertion of AWS/3rd party security services on Cloud WAN. This allows to steer inter/intra segment traffic via security appliances and provide visibility to the route updates. * api-change:``pca-connector-scep``: Connector for SCEP allows you to use a managed, cloud CA to enroll mobile devices and networking gear. SCEP is a widely-adopted protocol used by mobile device management (MDM) solutions for enrolling mobile devices. With the connector, you can use AWS Private CA with popular MDM solutions. * api-change:``sagemaker``: Introduced Scope and AuthenticationRequestExtraParams to SageMaker Workforce OIDC configuration; this allows customers to modify these options for their private Workforce IdP integration. Model Registry Cross-account model package groups are discoverable. - from version 1.34.123 * api-change:``application-signals``: This is the initial SDK release for Amazon CloudWatch Application Signals. Amazon CloudWatch Application Signals provides curated application performance monitoring for developers to monitor and troubleshoot application health using pre-built dashboards and Service Level Objectives. * api-change:``ecs``: This release introduces a new cluster configuration to support the customer-managed keys for ECS managed storage encryption. * api-change:``imagebuilder``: This release updates the regex pattern for Image Builder ARNs. - Update to 1.34.122 * api-change:``auditmanager``: New feature: common controls. When creating custom controls, you can now use pre-grouped AWS data sources based on common compliance themes. Also, the awsServices parameter is deprecated because we now manage services in scope for you. If used, the input is ignored and an empty list is returned. * api-change:``b2bi``: Added exceptions to B2Bi List operations and ConflictException to B2Bi StartTransformerJob operation. Also made capabilities field explicitly required when creating a Partnership. * api-change:``codepipeline``: CodePipeline now supports overriding S3 Source Object Key during StartPipelineExecution, as part of Source Overrides. * api-change:``sagemaker``: This release introduces a new optional parameter: InferenceAmiVersion, in ProductionVariant. * api-change:``verifiedpermissions``: This release adds OpenIdConnect (OIDC) configuration support for IdentitySources, allowing for external IDPs to be used in authorization requests. - from version 1.34.121 * api-change:``account``: This release adds 3 new APIs (AcceptPrimaryEmailUpdate, GetPrimaryEmail, and StartPrimaryEmailUpdate) used to centrally manage the root user email address of member accounts within an AWS organization. * api-change:``alexaforbusiness``: The alexaforbusiness client has been removed following the deprecation of the service. * api-change:``firehose``: Adds integration with Secrets Manager for Redshift, Splunk, HttpEndpoint, and Snowflake destinations * api-change:``fsx``: This release adds support to increase metadata performance on FSx for Lustre file systems beyond the default level provisioned when a file system is created. This can be done by specifying MetadataConfiguration during the creation of Persistent_2 file systems or by updating it on demand. * api-change:``glue``: This release adds support for creating and updating Glue Data Catalog Views. * api-change:``honeycode``: The honeycode client has been removed following the deprecation of the service. * api-change:``iotwireless``: Adds support for wireless device to be in Conflict FUOTA Device Status due to a FUOTA Task, so it couldn't be attached to a new one. * api-change:``location``: Added two new APIs, VerifyDevicePosition and ForecastGeofenceEvents. Added support for putting larger geofences up to 100,000 vertices with Geobuf fields. * api-change:``sns``: Doc-only update for SNS. These changes include customer-reported issues and TXC3 updates. * api-change:``sqs``: Doc only updates for SQS. These updates include customer-reported issues and TCX3 modifications. * api-change:``storagegateway``: Adds SoftwareUpdatePreferences to DescribeMaintenanceStartTime and UpdateMaintenanceStartTime, a structure which contains AutomaticUpdatePolicy. * enhancement:AWSCRT: Update awscrt version to 0.20.11 - from version 1.34.120 * api-change:``globalaccelerator``: This release contains a new optional ip-addresses input field for the update accelerator and update custom routing accelerator apis. This input enables consumers to replace IPv4 addresses on existing accelerators with addresses provided in the input. * api-change:``glue``: AWS Glue now supports native SaaS connectivity: Salesforce connector available now * api-change:``s3``: Added new params copySource and key to copyObject API for supporting S3 Access Grants plugin. These changes will not change any of the existing S3 API functionality. - from version 1.34.119 * api-change:``ec2``: U7i instances with up to 32 TiB of DDR5 memory and 896 vCPUs are now available. C7i-flex instances are launched and are lower-priced variants of the Amazon EC2 C7i instances that offer a baseline level of CPU performance with the ability to scale up to the full compute performance 95% of the time. * api-change:``pipes``: This release adds Timestream for LiveAnalytics as a supported target in EventBridge Pipes * api-change:``sagemaker``: Extend DescribeClusterNode response with private DNS hostname and IP address, and placement information about availability zone and availability zone ID. * api-change:``taxsettings``: Initial release of AWS Tax Settings API - from version 1.34.118 * api-change:``amplify``: This doc-only update identifies fields that are specific to Gen 1 and Gen 2 applications. * api-change:``batch``: This release adds support for the AWS Batch GetJobQueueSnapshot API operation. * api-change:``eks``: Adds support for EKS add-ons pod identity associations integration * api-change:``iottwinmaker``: Support RESET_VALUE UpdateType for PropertyUpdates to reset property value to default or null - from version 1.34.117 * api-change:``codebuild``: AWS CodeBuild now supports Self-hosted GitHub Actions runners for Github Enterprise * api-change:``codeguru-security``: This release includes minor model updates and documentation updates. * api-change:``elasticache``: Update to attributes of TestFailover and minor revisions. * api-change:``launch-wizard``: This release adds support for describing workload deployment specifications, deploying additional workload types, and managing tags for Launch Wizard resources with API operations. - from version 1.34.116 * api-change:``acm``: add v2 smoke tests and smithy smokeTests trait for SDK testing. * api-change:``bedrock-agent``: With this release, Knowledge bases for Bedrock adds support for Titan Text Embedding v2. * api-change:``bedrock-runtime``: This release adds Converse and ConverseStream APIs to Bedrock Runtime * api-change:``cloudtrail``: CloudTrail Lake returns PartitionKeys in the GetEventDataStore API response. Events are grouped into partitions based on these keys for better query performance. For example, the calendarday key groups events by day, while combining the calendarday key with the hour key groups them by day and hour. * api-change:``connect``: Adding associatedQueueIds as a SearchCriteria and response field to the SearchRoutingProfiles API * api-change:``emr-serverless``: The release adds support for spark structured streaming. * api-change:``rds``: Updates Amazon RDS documentation for Aurora Postgres DBname. * api-change:``sagemaker``: Adds Model Card information as a new component to Model Package. Autopilot launches algorithm selection for TimeSeries modality to generate AutoML candidates per algorithm. - from version 1.34.115 * api-change:``athena``: Throwing validation errors on CreateNotebook with Name containing `/`,`:`,`\` * api-change:``codebuild``: AWS CodeBuild now supports manually creating GitHub webhooks * api-change:``connect``: This release includes changes to DescribeContact API's response by including ConnectedToSystemTimestamp, RoutingCriteria, Customer, Campaign, AnsweringMachineDetectionStatus, CustomerVoiceActivity, QualityMetrics, DisconnectDetails, and SegmentAttributes information from a contact in Amazon Connect. * api-change:``glue``: Add optional field JobMode to CreateJob and UpdateJob APIs. * api-change:``securityhub``: Add ROOT type for TargetType model - from version 1.34.114 * api-change:``dynamodb``: Doc-only update for DynamoDB. Specified the IAM actions needed to authorize a user to create a table with a resource-based policy. * api-change:``ec2``: Providing support to accept BgpAsnExtended attribute * api-change:``kafka``: Adds ControllerNodeInfo in ListNodes response to support Raft mode for MSK * api-change:``swf``: This release adds new APIs for deleting activity type and workflow type resources. - from version 1.34.113 * api-change:``dynamodb``: Documentation only updates for DynamoDB. * api-change:``iotfleetwise``: AWS IoT FleetWise now supports listing vehicles with attributes filter, ListVehicles API is updated to support additional attributes filter. * api-change:``managedblockchain``: This is a minor documentation update to address the impact of the shut down of the Goerli and Polygon networks. - from version 1.34.112 * api-change:``emr-serverless``: This release adds the capability to run interactive workloads using Apache Livy Endpoint. * api-change:``opsworks``: Documentation-only update for OpsWorks Stacks. - from version 1.34.111 * api-change:``chatbot``: This change adds support for tagging Chatbot configurations. * api-change:``cloudformation``: Added DeletionMode FORCE_DELETE_STACK for deleting a stack that is stuck in DELETE_FAILED state due to resource deletion failure. * api-change:``kms``: This release includes feature to import customer's asymmetric (RSA, ECC and SM2) and HMAC keys into KMS in China. * api-change:``opensearch``: This release adds support for enabling or disabling a data source configured as part of Zero-ETL integration with Amazon S3, by setting its status. * api-change:``wafv2``: You can now use Security Lake to collect web ACL traffic data. - from version 1.34.110 * api-change:``cloudfront``: Model update; no change to SDK functionality. * api-change:``glue``: Add Maintenance window to CreateJob and UpdateJob APIs and JobRun response. Add a new Job Run State for EXPIRED. * api-change:``lightsail``: This release adds support for Amazon Lightsail instances to switch between dual-stack or IPv4 only and IPv6-only public IP address types. * api-change:``mailmanager``: This release includes a new Amazon SES feature called Mail Manager, which is a set of email gateway capabilities designed to help customers strengthen their organization's email infrastructure, simplify email workflow management, and streamline email compliance control. * api-change:``pi``: Performance Insights added a new input parameter called AuthorizedActions to support the fine-grained access feature. Performance Insights also restricted the acceptable input characters. * api-change:``rds``: Updates Amazon RDS documentation for Db2 license through AWS Marketplace. * api-change:``storagegateway``: Added new SMBSecurityStrategy enum named MandatoryEncryptionNoAes128, new mode enforces encryption and disables AES 128-bit algorithums. - from version 1.34.109 * api-change:``bedrock-agent``: This release adds support for using Guardrails with Bedrock Agents. * api-change:``bedrock-agent-runtime``: This release adds support for using Guardrails with Bedrock Agents. * api-change:``controltower``: Added ListControlOperations API and filtering support for ListEnabledControls API. Updates also includes added metadata for enabled controls and control operations. * api-change:``osis``: Add support for creating an OpenSearch Ingestion pipeline that is attached to a provided VPC. Add information about the destinations of an OpenSearch Ingestion pipeline to the GetPipeline and ListPipelines APIs. * api-change:``rds``: This release adds support for EngineLifecycleSupport on DBInstances, DBClusters, and GlobalClusters. * api-change:``secretsmanager``: add v2 smoke tests and smithy smokeTests trait for SDK testing - from version 1.34.108 * api-change:``application-autoscaling``: add v2 smoke tests and smithy smokeTests trait for SDK testing. * api-change:``codebuild``: Aws CodeBuild now supports 36 hours build timeout * api-change:``elbv2``: This release adds dualstack-without-public-ipv4 IP address type for ALB. * api-change:``lakeformation``: Introduces a new API, GetDataLakePrincipal, that returns the identity of the invoking principal * api-change:``transfer``: Enable use of CloudFormation traits in Smithy model to improve generated CloudFormation schema from the Smithy API model. - from version 1.34.107 * api-change:``acm-pca``: This release adds support for waiters to fail on AccessDeniedException when having insufficient permissions * api-change:``connect``: Adding Contact Flow metrics to the GetMetricDataV2 API * api-change:``kafka``: AWS MSK support for Broker Removal. * api-change:``mwaa``: Amazon MWAA now supports Airflow web server auto scaling to automatically handle increased demand from REST APIs, Command Line Interface (CLI), or more Airflow User Interface (UI) users. Customers can specify maximum and minimum web server instances during environment creation and update workflow. * api-change:``quicksight``: This release adds DescribeKeyRegistration and UpdateKeyRegistration APIs to manage QuickSight Customer Managed Keys (CMK). * api-change:``sagemaker``: Introduced WorkerAccessConfiguration to SageMaker Workteam. This allows customers to configure resource access for workers in a workteam. * api-change:``secretsmanager``: Documentation updates for AWS Secrets Manager * bugfix:retries: Fix backoff calculation for truncated binary exponential backoff (`#3178 <https://github.com/boto/botocore/issues/3178>`__) - from version 1.34.106 * api-change:``bedrock-agent-runtime``: Updating Bedrock Knowledge Base Metadata & Filters feature with two new filters listContains and stringContains * api-change:``codebuild``: CodeBuild Reserved Capacity VPC Support * api-change:``datasync``: Task executions now display a CANCELLING status when an execution is in the process of being cancelled. * api-change:``grafana``: This release adds new ServiceAccount and ServiceAccountToken APIs. * api-change:``medical-imaging``: Added support for importing medical imaging data from Amazon S3 buckets across accounts and regions. * api-change:``securityhub``: Documentation-only update for AWS Security Hub - Update to 1.34.105 * api-change:``connect``: Amazon Connect provides enhanced search capabilities for flows & flow modules on the Connect admin website and programmatically using APIs. You can search for flows and flow modules by name, description, type, status, and tags, to filter and identify a specific flow in your Connect instances. * api-change:``s3``: Updated a few x-id in the http uri traits - from version 1.34.104 * api-change:``events``: Amazon EventBridge introduces KMS customer-managed key (CMK) encryption support for custom and partner events published on EventBridge Event Bus (including default bus) and UpdateEventBus API. * api-change:``vpc-lattice``: This release adds TLS Passthrough support. It also increases max number of target group per rule to 10. - from version 1.34.103 * api-change:``discovery``: add v2 smoke tests and smithy smokeTests trait for SDK testing * api-change:``greengrassv2``: Mark ComponentVersion in ComponentDeploymentSpecification as required. * api-change:``sagemaker``: Introduced support for G6 instance types on Sagemaker Notebook Instances and on SageMaker Studio for JupyterLab and CodeEditor applications. * api-change:``sso-oidc``: Updated request parameters for PKCE support. - from version 1.34.102 * api-change:``bedrock-agent-runtime``: This release adds support to provide guardrail configuration and modify inference parameters that are then used in RetrieveAndGenerate API in Agents for Amazon Bedrock. * api-change:``pinpoint``: This release adds support for specifying email message headers for Email Templates, Campaigns, Journeys and Send Messages. * api-change:``route53resolver``: Update the DNS Firewall settings to correct a spelling issue. * api-change:``ssm-sap``: Added support for application-aware start/stop of SAP applications running on EC2 instances, with SSM for SAP * api-change:``verifiedpermissions``: Adds policy effect and actions fields to Policy API's. - from version 1.34.101 * api-change:``cognito-idp``: Add EXTERNAL_PROVIDER enum value to UserStatusType. * api-change:``ec2``: Adding Precision Hardware Clock (PHC) to public API DescribeInstanceTypes * api-change:``ecr``: This release adds pull through cache rules support for GitLab container registry in Amazon ECR. * api-change:``fms``: The policy scope resource tag is always a string value, either a non-empty string or an empty string. * api-change:``polly``: Add new engine - generative - that builds the most expressive conversational voices. * api-change:``sqs``: This release adds MessageSystemAttributeNames to ReceiveMessageRequest to replace AttributeNames. - from version 1.34.100 * api-change:``b2bi``: Documentation update to clarify the MappingTemplate definition. * api-change:``budgets``: This release adds tag support for budgets and budget actions. * api-change:``resiliencehub``: AWS Resilience Hub has expanded its drift detection capabilities by introducing a new type of drift detection - application resource drift. This new enhancement detects changes, such as the addition or deletion of resources within the application's input sources. * api-change:``route53profiles``: Doc only update for Route 53 profiles that fixes some link issues - from version 1.34.99 * api-change:``medialive``: AWS Elemental MediaLive now supports configuring how SCTE 35 passthrough triggers segment breaks in HLS and MediaPackage output groups. Previously, messages triggered breaks in all these output groups. The new option is to trigger segment breaks only in groups that have SCTE 35 passthrough enabled. - from version 1.34.98 * api-change:``bedrock-agent``: This release adds support for using Provisioned Throughput with Bedrock Agents. * api-change:``connect``: This release adds 5 new APIs for managing attachments: StartAttachedFileUpload, CompleteAttachedFileUpload, GetAttachedFile, BatchGetAttachedFileMetadata, DeleteAttachedFile. These APIs can be used to programmatically upload and download attachments to Connect resources, like cases. * api-change:``connectcases``: This feature supports the release of Files related items * api-change:``datasync``: Updated guidance on using private or self-signed certificate authorities (CAs) with AWS DataSync object storage locations. * api-change:``inspector2``: This release adds CSV format to GetCisScanReport for Inspector v2 * api-change:``sagemaker``: Amazon SageMaker Inference now supports m6i, c6i, r6i, m7i, c7i, r7i and g5 instance types for Batch Transform Jobs * api-change:``sesv2``: Adds support for specifying replacement headers per BulkEmailEntry in SendBulkEmail in SESv2. - from version 1.34.97 * api-change:``dynamodb``: This release adds support to specify an optional, maximum OnDemandThroughput for DynamoDB tables and global secondary indexes in the CreateTable or UpdateTable APIs. You can also override the OnDemandThroughput settings by calling the ImportTable, RestoreFromPointInTime, or RestoreFromBackup APIs. * api-change:``ec2``: This release includes a new API for retrieving the public endorsement key of the EC2 instance's Nitro Trusted Platform Module (NitroTPM). * api-change:``personalize``: This releases ability to delete users and their data, including their metadata and interactions data, from a dataset group. * api-change:``redshift-serverless``: Update Redshift Serverless List Scheduled Actions Output Response to include Namespace Name. - from version 1.34.96 * api-change:``bedrock-agent``: This release adds support for using MongoDB Atlas as a vector store when creating a knowledge base. * api-change:``ec2``: Documentation updates for Amazon EC2. * api-change:``personalize-runtime``: This release adds support for a Reason attribute for predicted items generated by User-Personalization-v2. * api-change:``securityhub``: Updated CreateMembers API request with limits. * api-change:``sesv2``: Fixes ListContacts and ListImportJobs APIs to use POST instead of GET. - from version 1.34.95 * api-change:``chime-sdk-voice``: Due to changes made by the Amazon Alexa service, GetSipMediaApplicationAlexaSkillConfiguration and PutSipMediaApplicationAlexaSkillConfiguration APIs are no longer available for use. For more information, refer to the Alexa Smart Properties page. * api-change:``codeartifact``: Add support for the Ruby package format. * api-change:``fms``: AWS Firewall Manager now supports the network firewall service stream exception policy feature for accounts within your organization. * api-change:``omics``: Add support for workflow sharing and dynamic run storage * api-change:``opensearch``: This release enables customers to create Route53 A and AAAA alias record types to point custom endpoint domain to OpenSearch domain's dualstack search endpoint. * api-change:``pinpoint-sms-voice-v2``: Amazon Pinpoint has added two new features Multimedia services (MMS) and protect configurations. Use the three new MMS APIs to send media messages to a mobile phone which includes image, audio, text, or video files. Use the ten new protect configurations APIs to block messages to specific countries. * api-change:``qbusiness``: This is a general availability (GA) release of Amazon Q Business. Q Business enables employees in an enterprise to get comprehensive answers to complex questions and take actions through a unified, intuitive web-based chat experience - using an enterprise's existing content, data, and systems. * api-change:``quicksight``: New Q embedding supporting Generative Q&A * api-change:``route53resolver``: Release of FirewallDomainRedirectionAction parameter on the Route 53 DNS Firewall Rule. This allows customers to configure a DNS Firewall rule to inspect all the domains in the DNS redirection chain (default) , such as CNAME, ALIAS, DNAME, etc., or just the first domain and trust the rest. * api-change:``sagemaker``: Amazon SageMaker Training now supports the use of attribute-based access control (ABAC) roles for training job execution roles. Amazon SageMaker Inference now supports G6 instance types. * api-change:``signer``: Documentation updates for AWS Signer. Adds cross-account signing constraint and definitions for cross-account actions. - from version 1.34.94 * api-change:``amplify``: Updating max results limit for listing any resources (Job, Artifacts, Branch, BackendResources, DomainAssociation) to 50 with the exception of list apps that where max results can be up to 100. * api-change:``connectcases``: This feature releases DeleteField, DeletedLayout, and DeleteTemplate API's * api-change:``inspector2``: Update Inspector2 to include new Agentless API parameters. * api-change:``timestream-query``: This change allows users to update and describe account settings associated with their accounts. * api-change:``transcribe``: This update provides error messaging for generative call summarization in Transcribe Call Analytics * api-change:``trustedadvisor``: This release adds the BatchUpdateRecommendationResourceExclusion API to support batch updates of Recommendation Resource exclusion statuses and introduces a new exclusion status filter to the ListRecommendationResources and ListOrganizationRecommendationResources APIs. - from version 1.34.93 * api-change:``codepipeline``: Add ability to manually and automatically roll back a pipeline stage to a previously successful execution. * api-change:``cognito-idp``: Add LimitExceededException to SignUp errors * api-change:``connectcampaigns``: This release adds support for specifying if Answering Machine should wait for prompt sound. * api-change:``marketplace-entitlement``: Releasing minor endpoint updates. * api-change:``oam``: This release introduces support for Source Accounts to define which Metrics and Logs to share with the Monitoring Account * api-change:``rds``: SupportsLimitlessDatabase field added to describe-db-engine-versions to indicate whether the DB engine version supports Aurora Limitless Database. * api-change:``support``: Releasing minor endpoint updates. - from version 1.34.92 * api-change:``appsync``: UpdateGraphQLAPI documentation update and datasource introspection secret arn update * api-change:``fms``: AWS Firewall Manager adds support for network ACL policies to manage Amazon Virtual Private Cloud (VPC) network access control lists (ACLs) for accounts in your organization. * api-change:``ivs``: Bug Fix: IVS does not support arns with the `svs` prefix * api-change:``ivs-realtime``: Bug Fix: IVS Real Time does not support ARNs using the `svs` prefix. * api-change:``rds``: Updates Amazon RDS documentation for setting local time zones for RDS for Db2 DB instances. * api-change:``stepfunctions``: Add new ValidateStateMachineDefinition operation, which performs syntax checking on the definition of a Amazon States Language (ASL) state machine. - from version 1.34.91 * api-change:``datasync``: This change allows users to disable and enable the schedules associated with their tasks. * api-change:``ec2``: Launching capability for customers to enable or disable automatic assignment of public IPv4 addresses to their network interface * api-change:``emr-containers``: EMRonEKS Service support for SecurityConfiguration enforcement for Spark Jobs. * api-change:``entityresolution``: Support Batch Unique IDs Deletion. * api-change:``gamelift``: Amazon GameLift releases container fleets support for public preview. Deploy Linux-based containerized game server software for hosting on Amazon GameLift. * api-change:``ssm``: Add SSM DescribeInstanceProperties API to public AWS SDK. - from version 1.34.90 * api-change:``bedrock``: This release introduces Model Evaluation and Guardrails for Amazon Bedrock. * api-change:``bedrock-agent``: Introducing the ability to create multiple data sources per knowledge base, specify S3 buckets as data sources from external accounts, and exposing levers to define the deletion behavior of the underlying vector store data. * api-change:``bedrock-agent-runtime``: This release introduces zero-setup file upload support for the RetrieveAndGenerate API. This allows you to chat with your data without setting up a Knowledge Base. * api-change:``bedrock-runtime``: This release introduces Guardrails for Amazon Bedrock. * api-change:``ce``: Added additional metadata that might be applicable to your reservation recommendations. * api-change:``ec2``: This release introduces EC2 AMI Deregistration Protection, a new AMI property that can be enabled by customers to protect an AMI against an unintended deregistration. This release also enables the AMI owners to view the AMI 'LastLaunchedTime' in DescribeImages API. * api-change:``pi``: Clarifies how aggregation works for GetResourceMetrics in the Performance Insights API. * api-change:``rds``: Fix the example ARN for ModifyActivityStreamRequest * api-change:``sqs``: This release enables customers to call SQS using AWS JSON-1.0 protocol * api-change:``workspaces-web``: Added InstanceType and MaxConcurrentSessions parameters on CreatePortal and UpdatePortal Operations as well as the ability to read Customer Managed Key & Additional Encryption Context parameters on supported resources (Portal, BrowserSettings, UserSettings, IPAccessSettings) - from version 1.34.89 * api-change:``bedrock-agent``: Releasing the support for simplified configuration and return of control * api-change:``bedrock-agent-runtime``: Releasing the support for simplified configuration and return of control * api-change:``payment-cryptography``: Adding support to TR-31/TR-34 exports for optional headers, allowing customers to add additional metadata (such as key version and KSN) when exporting keys from the service. * api-change:``redshift-serverless``: Updates description of schedule field for scheduled actions. * api-change:``route53profiles``: Route 53 Profiles allows you to apply a central DNS configuration across many VPCs regardless of account. * api-change:``sagemaker``: This release adds support for Real-Time Collaboration and Shared Space for JupyterLab App on SageMaker Studio. * api-change:``servicediscovery``: This release adds examples to several Cloud Map actions. * api-change:``transfer``: Adding new API to support remote directory listing using SFTP connector - from version 1.34.88 * api-change:``glue``: Adding RowFilter in the response for GetUnfilteredTableMetadata API * api-change:``internetmonitor``: This update introduces the GetInternetEvent and ListInternetEvents APIs, which provide access to internet events displayed on the Amazon CloudWatch Internet Weather Map. * api-change:``personalize``: This releases auto training capability while creating a solution and automatically syncing latest solution versions when creating/updating a campaign - from version 1.34.87 * api-change:``drs``: Outpost ARN added to Source Server and Recovery Instance * api-change:``emr-serverless``: This release adds the capability to publish detailed Spark engine metrics to Amazon Managed Service for Prometheus (AMP) for enhanced monitoring for Spark jobs. * api-change:``guardduty``: Added IPv6Address fields for local and remote IP addresses * api-change:``quicksight``: This release adds support for the Cross Sheet Filter and Control features, and support for warnings in asset imports for any permitted errors encountered during execution * api-change:``rolesanywhere``: This release introduces the PutAttributeMapping and DeleteAttributeMapping APIs. IAM Roles Anywhere now provides the capability to define a set of mapping rules, allowing customers to specify which data is extracted from their X.509 end-entity certificates. * api-change:``sagemaker``: Removed deprecated enum values and updated API documentation. * api-change:``workspaces``: Adds new APIs for managing and sharing WorkSpaces BYOL configuration across accounts. - from version 1.34.86 * api-change:``ec2``: Documentation updates for Elastic Compute Cloud (EC2). * api-change:``qbusiness``: This release adds support for IAM Identity Center (IDC) as the identity gateway for Q Business. It also allows users to provide an explicit intent for Q Business to identify how the Chat request should be handled. - from version 1.34.85 * api-change:``bedrock-agent``: For Create Agent API, the agentResourceRoleArn parameter is no longer required. * api-change:``emr-serverless``: This release adds support for shuffle optimized disks that allow larger disk sizes and higher IOPS to efficiently run shuffle heavy workloads. * api-change:``entityresolution``: Cross Account Resource Support . * api-change:``iotwireless``: Add PublicGateways in the GetWirelessStatistics call response, indicating the LoRaWAN public network accessed by the device. * api-change:``lakeformation``: This release adds Lake Formation managed RAM support for the 4 APIs - "DescribeLakeFormationIdentityCenterConfiguration", "CreateLakeFormationIdentityCenterConfiguration", "DescribeLakeFormationIdentityCenterConfiguration", and "DeleteLakeFormationIdentityCenterConfiguration" * api-change:``m2``: Adding new ListBatchJobRestartPoints API and support for restart batch job. * api-change:``mediapackagev2``: Dash v2 is a MediaPackage V2 feature to support egressing on DASH manifest format. * api-change:``outposts``: This release adds new APIs to allow customers to configure their Outpost capacity at order-time. * api-change:``wellarchitected``: AWS Well-Architected now has a Connector for Jira to allow customers to efficiently track workload risks and improvement efforts and create closed-loop mechanisms. * enhancement:AWSCRT: Update awscrt version to 0.20.9 - from version 1.34.84 * api-change:``cloudformation``: Adding support for the new parameter "IncludePropertyValues" in the CloudFormation DescribeChangeSet API. When this parameter is included, the DescribeChangeSet response will include more detailed information such as before and after values for the resource properties that will change. * api-change:``config``: Updates documentation for AWS Config * api-change:``glue``: Modifying request for GetUnfilteredTableMetadata for view-related fields. * api-change:``healthlake``: Added new CREATE_FAILED status for data stores. Added new errorCause to DescribeFHIRDatastore API and ListFHIRDatastores API response for additional insights into data store creation and deletion workflows. * api-change:``iotfleethub``: Documentation updates for AWS IoT Fleet Hub to clarify that Fleet Hub supports organization instance of IAM Identity Center. * api-change:``kms``: This feature supports the ability to specify a custom rotation period for automatic key rotations, the ability to perform on-demand key rotations, and visibility into your key material rotations. * api-change:``mediatailor``: Added InsertionMode to PlaybackConfigurations. This setting controls whether players can use stitched or guided ad insertion. The default for players that do not specify an insertion mode is stitched. * api-change:``neptune-graph``: Update to API documentation to resolve customer reported issues. * api-change:``outposts``: This release adds EXPEDITORS as a valid shipment carrier. * api-change:``redshift``: Adds support for Amazon Redshift DescribeClusterSnapshots API to include Snapshot ARN response field. * api-change:``transfer``: This change releases support for importing self signed certificates to the Transfer Family for sending outbound file transfers over TLS/HTTPS. - from version 1.34.83 * api-change:``batch``: This release adds the task properties field to attempt details and the name field on EKS container detail. * api-change:``cloudfront``: CloudFront origin access control extends support to AWS Lambda function URLs and AWS Elemental MediaPackage v2 origins. * api-change:``cloudwatch``: This release adds support for Metric Characteristics for CloudWatch Anomaly Detection. Anomaly Detector now takes Metric Characteristics object with Periodic Spikes boolean field that tells Anomaly Detection that spikes that repeat at the same time every week are part of the expected pattern. * api-change:``codebuild``: Support access tokens for Bitbucket sources * api-change:``iam``: For CreateOpenIDConnectProvider API, the ThumbprintList parameter is no longer required. * api-change:``medialive``: AWS Elemental MediaLive introduces workflow monitor, a new feature that enables the visualization and monitoring of your media workflows. Create signal maps of your existing workflows and monitor them by creating notification and monitoring template groups. * api-change:``omics``: This release adds support for retrieval of S3 direct access metadata on sequence stores and read sets, and adds support for SHA256up and SHA512up HealthOmics ETags. * api-change:``pipes``: LogConfiguration ARN validation fixes * api-change:``rds``: Updates Amazon RDS documentation for Standard Edition 2 support in RDS Custom for Oracle. * api-change:``s3control``: Documentation updates for Amazon S3-control. - from version 1.34.82 * api-change:``cleanrooms``: AWS Clean Rooms Differential Privacy is now fully available. Differential privacy protects against user-identification attempts. * api-change:``connect``: This release adds new Submit Auto Evaluation Action for Amazon Connect Rules. * api-change:``networkmonitor``: Examples were added to CloudWatch Network Monitor commands. * api-change:``qconnect``: This release adds a new QiC public API updateSession and updates an existing QiC public API createSession * api-change:``rekognition``: Added support for ContentType to content moderation detections. * api-change:``supplychain``: This release includes API SendDataIntegrationEvent for AWS Supply Chain * api-change:``workspaces-thin-client``: Adding tags field to SoftwareSet. Removing tags fields from Summary objects. Changing the list of exceptions in tagging APIs. Fixing an issue where the SDK returns empty tags in Get APIs. - from version 1.34.81 * api-change:``codebuild``: Add new webhook filter types for GitHub webhooks * api-change:``mediaconvert``: This release includes support for bringing your own fonts to use for burn-in or DVB-Sub captioning workflows. * api-change:``pinpoint``: The OrchestrationSendingRoleArn has been added to the email channel and is used to send emails from campaigns or journeys. * api-change:``rds``: This release adds support for specifying the CA certificate to use for the new db instance when restoring from db snapshot, restoring from s3, restoring to point in time, and creating a db instance read replica. - from version 1.34.80 * api-change:``controlcatalog``: This is the initial SDK release for AWS Control Catalog, a central catalog for AWS managed controls. This release includes 3 new APIs - ListDomains, ListObjectives, and ListCommonControls - that vend high-level data to categorize controls across the AWS platform. * api-change:``mgn``: Added USE_SOURCE as default option to LaunchConfigurationTemplate bootMode parameter. * api-change:``networkmonitor``: Updated the allowed monitorName length for CloudWatch Network Monitor. - from version 1.34.79 * api-change:``quicksight``: Adding IAMIdentityCenterInstanceArn parameter to CreateAccountSubscription * api-change:``resource-groups``: Added a new QueryErrorCode RESOURCE_TYPE_NOT_SUPPORTED that is returned by the ListGroupResources operation if the group query contains unsupported resource types. * api-change:``verifiedpermissions``: Adding BatchIsAuthorizedWithToken API which supports multiple authorization requests against a PolicyStore given a bearer token. - from version 1.34.78 * api-change:``b2bi``: Adding support for X12 5010 HIPAA EDI version and associated transaction sets. * api-change:``cleanrooms``: Feature: New schemaStatusDetails field to the existing Schema object that displays a status on Schema API responses to show whether a schema is queryable or not. New BatchGetSchemaAnalysisRule API to retrieve multiple schemaAnalysisRules using a single API call. * api-change:``ec2``: Amazon EC2 G6 instances powered by NVIDIA L4 Tensor Core GPUs can be used for a wide range of graphics-intensive and machine learning use cases. Gr6 instances also feature NVIDIA L4 GPUs and can be used for graphics workloads with higher memory requirements. * api-change:``emr-containers``: This release adds support for integration with EKS AccessEntry APIs to enable automatic Cluster Access for EMR on EKS. * api-change:``ivs``: API update to include an SRT ingest endpoint and passphrase for all channels. * api-change:``verifiedpermissions``: Adds GroupConfiguration field to Identity Source API's - from version 1.34.77 * api-change:``cleanroomsml``: The release includes a public SDK for AWS Clean Rooms ML APIs, making them globally available to developers worldwide. * api-change:``cloudformation``: This release would return a new field - PolicyAction in cloudformation's existed DescribeChangeSetResponse, showing actions we are going to apply on the physical resource (e.g., Delete, Retain) according to the user's template * api-change:``datazone``: This release supports the feature of dataQuality to enrich asset with dataQualityResult in Amazon DataZone. * api-change:``docdb``: This release adds Global Cluster Switchover capability which enables you to change your global cluster's primary AWS Region, the region that serves writes, while preserving the replication between all regions in the global cluster. * api-change:``groundstation``: This release adds visibilityStartTime and visibilityEndTime to DescribeContact and ListContacts responses. * api-change:``lambda``: Add Ruby 3.3 (ruby3.3) support to AWS Lambda * api-change:``medialive``: Cmaf Ingest outputs are now supported in Media Live * api-change:``medical-imaging``: SearchImageSets API now supports following enhancements - Additional support for searching on UpdatedAt and SeriesInstanceUID - Support for searching existing filters between dates/times - Support for sorting the search result by Ascending/Descending - Additional parameters returned in the response * api-change:``transfer``: Add ability to specify Security Policies for SFTP Connectors - from version 1.34.76 * api-change:``ecs``: Documentation only update for Amazon ECS. * api-change:``glue``: Adding View related fields to responses of read-only Table APIs. * api-change:``ivschat``: Doc-only update. Changed "Resources" to "Key Concepts" in docs and updated text. * api-change:``rolesanywhere``: This release increases the limit on the roleArns request parameter for the *Profile APIs that support it. This parameter can now take up to 250 role ARNs. * api-change:``securityhub``: Documentation updates for AWS Security Hub - from version 1.34.75 * api-change:``cloudwatch``: This release adds support for CloudWatch Anomaly Detection on cross-account metrics. SingleMetricAnomalyDetector and MetricDataQuery inputs to Anomaly Detection APIs now take an optional AccountId field. * api-change:``datazone``: This release supports the feature of AI recommendations for descriptions to enrich the business data catalog in Amazon DataZone. * api-change:``deadline``: AWS Deadline Cloud is a new fully managed service that helps customers set up, deploy, and scale rendering projects in minutes, so they can improve the efficiency of their rendering pipelines and take on more projects. * api-change:``emr``: This release fixes a broken link in the documentation. * api-change:``lightsail``: This release adds support to upgrade the TLS version of the distribution. - from version 1.34.74 * api-change:``b2bi``: Supporting new EDI X12 transaction sets for X12 versions 4010, 4030, and 5010. * api-change:``codebuild``: Add new fleet status code for Reserved Capacity. * api-change:``codeconnections``: Duplicating the CodeStar Connections service into the new, rebranded AWS CodeConnections service. * api-change:``internetmonitor``: This release adds support to allow customers to track cross account monitors through ListMonitor, GetMonitor, ListHealthEvents, GetHealthEvent, StartQuery APIs. * api-change:``iotwireless``: Add support for retrieving key historical and live metrics for LoRaWAN devices and gateways * api-change:``marketplace-catalog``: This release enhances the ListEntities API to support ResaleAuthorizationId filter and sort for OfferEntity in the request and the addition of a ResaleAuthorizationId field in the response of OfferSummary. * api-change:``neptune-graph``: Add the new API Start-Import-Task for Amazon Neptune Analytics. * api-change:``sagemaker``: This release adds support for custom images for the CodeEditor App on SageMaker Studio - from version 1.34.73 * api-change:``codecatalyst``: This release adds support for understanding pending changes to subscriptions by including two new response parameters for the GetSubscription API for Amazon CodeCatalyst. * api-change:``compute-optimizer``: This release enables AWS Compute Optimizer to analyze and generate recommendations with a new customization preference, Memory Utilization. * api-change:``ec2``: Amazon EC2 C7gd, M7gd and R7gd metal instances with up to 3.8 TB of local NVMe-based SSD block-level storage have up to 45% improved real-time NVMe storage performance than comparable Graviton2-based instances. * api-change:``eks``: Add multiple customer error code to handle customer caused failure when managing EKS node groups * api-change:``guardduty``: Add EC2 support for GuardDuty Runtime Monitoring auto management. * api-change:``neptune-graph``: Update ImportTaskCancelled waiter to evaluate task state correctly and minor documentation changes. * api-change:``oam``: This release adds support for sharing AWS::InternetMonitor::Monitor resources. * api-change:``quicksight``: Amazon QuickSight: Adds support for setting up VPC Endpoint restrictions for accessing QuickSight Website. - from version 1.34.72 * api-change:``batch``: This feature allows AWS Batch to support configuration of imagePullSecrets and allowPrivilegeEscalation for jobs running on EKS * api-change:``bedrock-agent``: This changes introduces metadata documents statistics and also updates the documentation for bedrock agent. * api-change:``bedrock-agent-runtime``: This release introduces filtering support on Retrieve and RetrieveAndGenerate APIs. * api-change:``elasticache``: Added minimum capacity to Amazon ElastiCache Serverless. This feature allows customer to ensure minimum capacity even without current load * api-change:``secretsmanager``: Documentation updates for Secrets Manager - from version 1.34.71 * api-change:``bedrock-agent-runtime``: This release adds support to customize prompts sent through the RetrieveAndGenerate API in Agents for Amazon Bedrock. * api-change:``ce``: Adds support for backfill of cost allocation tags, with new StartCostAllocationTagBackfill and ListCostAllocationTagBackfillHistory API. * api-change:``ec2``: Documentation updates for Elastic Compute Cloud (EC2). * api-change:``ecs``: This is a documentation update for Amazon ECS. * api-change:``finspace``: Add new operation delete-kx-cluster-node and add status parameter to list-kx-cluster-node operation. - from version 1.34.70 * api-change:``codebuild``: Supporting GitLab and GitLab Self Managed as source types in AWS CodeBuild. * api-change:``ec2``: Added support for ModifyInstanceMetadataDefaults and GetInstanceMetadataDefaults to set Instance Metadata Service account defaults * api-change:``ecs``: Documentation only update for Amazon ECS. * api-change:``emr-containers``: This release increases the number of supported job template parameters from 20 to 100. * api-change:``globalaccelerator``: AWS Global Accelerator now supports cross-account sharing for bring your own IP addresses. * api-change:``medialive``: Exposing TileMedia H265 options * api-change:``sagemaker``: Introduced support for the following new instance types on SageMaker Studio for JupyterLab and CodeEditor applications: m6i, m6id, m7i, c6i, c6id, c7i, r6i, r6id, r7i, and p5 - from version 1.34.69 * api-change:``firehose``: Updates Amazon Firehose documentation for message regarding Enforcing Tags IAM Policy. * api-change:``kendra``: Documentation update, March 2024. Corrects some docs for Amazon Kendra. * api-change:``pricing``: Add ResourceNotFoundException to ListPriceLists and GetPriceListFileUrl APIs * api-change:``rolesanywhere``: This release relaxes constraints on the durationSeconds request parameter for the *Profile APIs that support it. This parameter can now take on values that go up to 43200. * api-change:``securityhub``: Added new resource detail object to ASFF, including resource for LastKnownExploitAt - from version 1.34.68 * api-change:``codeartifact``: This release adds Package groups to CodeArtifact so you can more conveniently configure package origin controls for multiple packages. - from version 1.34.67 * api-change:``accessanalyzer``: This release adds support for policy validation and external access findings for DynamoDB tables and streams. IAM Access Analyzer helps you author functional and secure resource-based policies and identify cross-account access. Updated service API, documentation, and paginators. * api-change:``codebuild``: This release adds support for new webhook events (RELEASED and PRERELEASED) and filter types (TAG_NAME and RELEASE_NAME). * api-change:``connect``: This release updates the *InstanceStorageConfig APIs to support a new ResourceType: REAL_TIME_CONTACT_ANALYSIS_CHAT_SEGMENTS. Use this resource type to enable streaming for real-time analysis of chat contacts and to associate a Kinesis stream where real-time analysis chat segments will be published. * api-change:``dynamodb``: This release introduces 3 new APIs ('GetResourcePolicy', 'PutResourcePolicy' and 'DeleteResourcePolicy') and modifies the existing 'CreateTable' API for the resource-based policy support. It also modifies several APIs to accept a 'TableArn' for the 'TableName' parameter. * api-change:``managedblockchain-query``: AMB Query: update GetTransaction to include transactionId as input * api-change:``savingsplans``: Introducing the Savings Plans Return feature enabling customers to return their Savings Plans within 7 days of purchase. - from version 1.34.66 * api-change:``cloudformation``: Documentation update, March 2024. Corrects some formatting. * api-change:``ec2``: This release adds the new DescribeMacHosts API operation for getting information about EC2 Mac Dedicated Hosts. Users can now see the latest macOS versions that their underlying Apple Mac can support without needing to be updated. * api-change:``finspace``: Adding new attributes readWrite and onDemand to dataview models for Database Maintenance operations. * api-change:``logs``: Update LogSamples field in Anomaly model to be a list of LogEvent * api-change:``managedblockchain-query``: Introduces a new API for Amazon Managed Blockchain Query: ListFilteredTransactionEvents. - from version 1.34.65 * api-change:``cloudformation``: This release supports for a new API ListStackSetAutoDeploymentTargets, which provider auto-deployment configuration as a describable resource. Customers can now view the specific combinations of regions and OUs that are being auto-deployed. * api-change:``kms``: Adds the ability to use the default policy name by omitting the policyName parameter in calls to PutKeyPolicy and GetKeyPolicy * api-change:``mediatailor``: This release adds support to allow customers to show different content within a channel depending on metadata associated with the viewer. * api-change:``rds``: This release launches the ModifyIntegration API and support for data filtering for zero-ETL Integrations. * api-change:``s3``: Fix two issues with response root node names. * api-change:``timestream-query``: Documentation updates, March 2024 - from version 1.34.64 * api-change:``backup``: This release introduces a boolean attribute ManagedByAWSBackupOnly as part of ListRecoveryPointsByResource api to filter the recovery points based on ownership. This attribute can be used to filter out the recovery points protected by AWSBackup. * api-change:``codebuild``: AWS CodeBuild now supports overflow behavior on Reserved Capacity. * api-change:``connect``: This release adds Hierarchy based Access Control fields to Security Profile public APIs and adds support for UserAttributeFilter to SearchUsers API. * api-change:``ec2``: Add media accelerator and neuron device information on the describe instance types API. * api-change:``kinesisanalyticsv2``: Support for Flink 1.18 in Managed Service for Apache Flink * api-change:``s3``: Documentation updates for Amazon S3. * api-change:``sagemaker``: Adds m6i, m6id, m7i, c6i, c6id, c7i, r6i r6id, r7i, p5 instance type support to Sagemaker Notebook Instances and miscellaneous wording fixes for previous Sagemaker documentation. * api-change:``workspaces-thin-client``: Removed unused parameter kmsKeyArn from UpdateDeviceRequest - from version 1.34.63 * api-change:``amplify``: Documentation updates for Amplify. Identifies the APIs available only to apps created using Amplify Gen 1. * api-change:``ec2-instance-connect``: This release includes a new exception type "SerialConsoleSessionUnsupportedException" for SendSerialConsoleSSHPublicKey API. * api-change:``elbv2``: This release allows you to configure HTTP client keep-alive duration for communication between clients and Application Load Balancers. * api-change:``fis``: This release adds support for previewing target resources before running a FIS experiment. It also adds resource ARNs for actions, experiments, and experiment templates to API responses. * api-change:``iot-roborunner``: The iot-roborunner client has been removed following the deprecation of the service. * api-change:``rds``: Updates Amazon RDS documentation for EBCDIC collation for RDS for Db2. * api-change:``secretsmanager``: Doc only update for Secrets Manager * api-change:``timestream-influxdb``: This is the initial SDK release for Amazon Timestream for InfluxDB. Amazon Timestream for InfluxDB is a new time-series database engine that makes it easy for application developers and DevOps teams to run InfluxDB databases on AWS for near real-time time-series applications using open source APIs. * enhancement:``urllib3``: Added support for urllib3 2.2.1+ in Python 3.10+ - from version 1.34.62 * api-change:``ivs-realtime``: adds support for multiple new composition layout configuration options (grid, pip) * api-change:``kinesisanalyticsv2``: Support new RuntimeEnvironmentUpdate parameter within UpdateApplication API allowing callers to change the Flink version upon which their application runs. * api-change:``s3``: This release makes the default option for S3 on Outposts request signing to use the SigV4A algorithm when using AWS Common Runtime (CRT). - from version 1.34.61 * api-change:``cloudformation``: CloudFormation documentation update for March, 2024 * api-change:``connect``: This release increases MaxResults limit to 500 in request for SearchUsers, SearchQueues and SearchRoutingProfiles APIs of Amazon Connect. * api-change:``ec2``: Documentation updates for Amazon EC2. * api-change:``kafka``: Added support for specifying the starting position of topic replication in MSK-Replicator. * api-change:``ssm``: March 2024 doc-only updates for Systems Manager. - from version 1.34.60 * api-change:``codestar-connections``: Added a sync configuration enum to disable publishing of deployment status to source providers (PublishDeploymentStatus). Added a sync configuration enum (TriggerStackUpdateOn) to only trigger changes. * api-change:``elasticache``: Revisions to API text that are now to be carried over to SDK text, changing usages of "SFO" in code examples to "us-west-1", and some other typos. * api-change:``mediapackagev2``: This release enables customers to safely update their MediaPackage v2 channel groups, channels and origin endpoints using entity tags. - from version 1.34.59 * api-change:``batch``: This release adds JobStateTimeLimitActions setting to the Job Queue API. It allows you to configure an action Batch can take for a blocking job in front of the queue after the defined period of time. The new parameter applies for ECS, EKS, and FARGATE Job Queues. * api-change:``bedrock-agent-runtime``: Documentation update for Bedrock Runtime Agent * api-change:``cloudtrail``: Added exceptions to CreateTrail, DescribeTrails, and ListImportFailures APIs. * api-change:``codebuild``: This release adds support for a new webhook event: PULL_REQUEST_CLOSED. * api-change:``cognito-idp``: Add ConcurrentModificationException to SetUserPoolMfaConfig * api-change:``guardduty``: Add RDS Provisioned and Serverless Usage types * api-change:``transfer``: Added DES_EDE3_CBC to the list of supported encryption algorithms for messages sent with an AS2 connector. - from version 1.34.58 * api-change:``appconfig``: AWS AppConfig now supports dynamic parameters, which enhance the functionality of AppConfig Extensions by allowing you to provide parameter values to your Extensions at the time you deploy your configuration. * api-change:``ec2``: This release adds an optional parameter to RegisterImage and CopyImage APIs to support tagging AMIs at the time of creation. * api-change:``grafana``: Adds support for the new GrafanaToken as part of the Amazon Managed Grafana Enterprise plugins upgrade to associate your AWS account with a Grafana Labs account. * api-change:``lambda``: Documentation updates for AWS Lambda * api-change:``payment-cryptography-data``: AWS Payment Cryptography EMV Decrypt Feature Release * api-change:``rds``: Updates Amazon RDS documentation for io2 storage for Multi-AZ DB clusters * api-change:``snowball``: Doc-only update for change to EKS-Anywhere ordering. * api-change:``wafv2``: You can increase the max request body inspection size for some regional resources. The size setting is in the web ACL association config. Also, the AWSManagedRulesBotControlRuleSet EnableMachineLearning setting now takes a Boolean instead of a primitive boolean type, for languages like Java. * api-change:``workspaces``: Added note for user decoupling - from version 1.34.57 * api-change:``dynamodb``: Doc only updates for DynamoDB documentation * api-change:``imagebuilder``: Add PENDING status to Lifecycle Execution resource status. Add StartTime and EndTime to ListLifecycleExecutionResource API response. * api-change:``mwaa``: Amazon MWAA adds support for Apache Airflow v2.8.1. * api-change:``rds``: Updated the input of CreateDBCluster and ModifyDBCluster to support setting CA certificates. Updated the output of DescribeDBCluster to show current CA certificate setting value. * api-change:``redshift``: Update for documentation only. Covers port ranges, definition updates for data sharing, and definition updates to cluster-snapshot documentation. * api-change:``verifiedpermissions``: Deprecating details in favor of configuration for GetIdentitySource and ListIdentitySources APIs. - from version 1.34.56 * api-change:``apigateway``: Documentation updates for Amazon API Gateway * api-change:``chatbot``: Minor update to documentation. * api-change:``organizations``: This release contains an endpoint addition * api-change:``sesv2``: Adds support for providing custom headers within SendEmail and SendBulkEmail for SESv2. - Update to 1.34.55 * api-change:``docdb-elastic``: Launched Elastic Clusters Readable Secondaries, Start/Stop, Configurable Shard Instance count, Automatic Backups and Snapshot Copying * api-change:``quicksight``: TooltipTarget for Combo chart visuals; ColumnConfiguration limit increase to 2000; Documentation Update * api-change:``amplifyuibuilder``: We have added the ability to tag resources after they are created * api-change:``internetmonitor``: This release adds IPv4 prefixes to health events * api-change:``iotevents``: Increase the maximum length of descriptions for Inputs, Detector Models, and Alarm Models * api-change:``lambda``: Add .NET 8 (dotnet8) Runtime support to AWS Lambda. * api-change:``chatbot``: This release adds support for AWS Chatbot. You can now monitor, operate, and troubleshoot your AWS resources with interactive ChatOps using the AWS SDK. * api-change:``sns``: This release marks phone numbers as sensitive inputs. * api-change:``artifact``: This is the initial SDK release for AWS Artifact. AWS Artifact provides on-demand access to compliance and third-party compliance reports. This release includes access to List and Get reports, along with their metadata. This release also includes access to AWS Artifact notifications settings. * api-change:``guardduty``: Marked fields IpAddressV4, PrivateIpAddress, Email as Sensitive. * api-change:``polly``: Amazon Polly adds 1 new voice - Burcu (tr-TR) * bugfix:ContainerProvider: Properly refreshes token from file from EKS in ContainerProvider * api-change:``resource-explorer-2``: Resource Explorer now uses newly supported IPv4 'amazonaws.com' endpoints by default. * api-change:``pricing``: Add Throttling Exception to all APIs. * api-change:``mediaconvert``: This release includes support for broadcast-mixed audio description tracks. * api-change:``glue``: Update page size limits for GetJobRuns and GetTriggers APIs. * Many more changes, see CHANGELOG.rst Changes in python-coverage: - update to 7.6.10: * Fix: some descriptions of missing branches in HTML and LCOV reports were incorrect when multi-line statements were involved (issue 1874 and issue 1875). These are now fixed. * Fix: Python 3.14 defers evaluation of annotations by moving them into separate code objects. That code is rarely executed, so coverage.py would mark them as missing, as reported in issue 1908. Now they are ignored by coverage automatically. * Fixed an obscure and mysterious problem on PyPy 3.10 seemingly involving mocks, imports, and trace functions: issue 1902. To be honest, I don't understand the problem or the solution, but git bisect helped find it, and now it's fixed. * Docs: re-wrote the :ref:`subprocess` page to put multiprocessing first and to highlight the correct use of :class:`multiprocessing.Pool <python:multiprocessing.pool.Pool>`. * Fix: Tomas Uribe fixed a performance problem in the XML report. Large code bases should produce XML reports much faster now. * Fix: the LCOV report code assumed that a branch line that took no branches meant that the entire line was unexecuted. This isn't true in a few cases: the line might always raise an exception, or might have been optimized away. Fixes issue 1896. * Fix: similarly, the HTML report will now explain that a line that jumps to none of its expected destinations must have always raised an exception. Previously, it would say something nonsensical like, "line 4 didn't jump to line 5 because line 4 was never true, and it didn't jump to line 7 because line 4 was always true." This was also shown in issue 1896. * Fix: ugh, the other assert from 7.6.5 can also be encountered in the wild, so it's been restored to a conditional. Sorry for the churn. * One of the new asserts from 7.6.5 caused problems in real projects, as reported in issue 1891. The assert has been removed. * Fix: fine-tuned the exact Python version (3.12.6) when exiting from with statements changed how they traced. This affected whether people saw the fix for `issue 1880`_. * Fix: isolate our code more from mocking in the os module that in rare cases can cause bizarre behavior. * Refactor: some code unreachable code paths in parser.py were changed to asserts. If you encounter any of these, please let me know! - update to 7.6.4: * fix: multi-line with statements could cause contained branches to be incorrectly marked as missing (issue 1880). This is now fixed. * Fix: nested context managers could incorrectly be analyzed to flag a missing branch on the last context manager, as described in issue 1876. This is now fixed. * Fix: the missing branch message about not exiting a module had an extra "didn't," as described in issue 1873. This is now fixed. * Dropped support for Python 3.8 and PyPy 3.8. * Fix: a final wildcard match/case clause assigning to a name (case _ as value) was incorrectly marked as a missing branch. This is now fixed, closing issue 1860. * Fewer things are considered branches now. Lambdas, comprehensions, and generator expressions are no longer marked as missing branches if they don't complete execution. Closes issue 1852. * Fix: the HTML report didn't properly show multi-line f-strings that end with a backslash continuation. This is now fixed, closing issue 1836, thanks to LiuYinCarl and Marco Ricci. * Fix: the LCOV report now has correct line numbers (fixing issue 1846) and better branch descriptions for BRDA records (fixing issue 1850). There are other changes to lcov also, including a new configuration option :ref:`line_checksums <config_lcov_line_checksums>` to control whether line checksums are included in the lcov report. The default is false. To keep checksums set it to true. All this work is thanks to Zack Weinberg (pull 1849 and pull 1851). * Fixed the docs for multi-line regex exclusions, closing issue 1863. * Fixed a potential crash in the C tracer, closing issue 1835, thanks to Jan Kühle. - update to 7.6.1: * Fix: coverage used to fail when measuring code using :func:`runpy.run_path <python:runpy.run_path>` with a :class:`Path <python:pathlib.Path>` argument. This is now fixed, thanks to Ask Hjorth Larsen. * Fix: backslashes preceding a multi-line backslashed string could confuse the HTML report. This is now fixed, thanks to LiuYinCarl. * Now we publish wheels for Python 3.13, both regular and free- threaded. * Exclusion patterns can now be multi-line, thanks to Daniel Diniz. This enables many interesting exclusion use-cases, including those requested in issues 118 (entire files), 996 (multiple lines only when appearing together), 1741 (remainder of a function), and 1803 (arbitrary sequence of marked lines). See the :ref:`multi_line_exclude` section of the docs for more details and examples. * The JSON report now includes per-function and per-class coverage information. Thanks to Daniel Diniz for getting the work started. This closes issue 1793 and issue 1532. * Fixed an incorrect calculation of "(no class)" lines in the HTML classes report. * Python 3.13.0b3 is supported. * If you attempt to combine statement coverage data with branch coverage data, coverage.py used to fail with the message "Can't combine arc data with line data" or its reverse, "Can't combine line data with arc data." These messages used internal terminology, making it hard for people to understand the problem. They are now changed to mention "branch coverage data" and "statement coverage data." * Fixed a minor branch coverage problem with wildcard match/case cases using names or guard clauses. * Started testing on 3.13 free-threading (nogil) builds of Python. I'm not claiming full support yet. Closes issue 1799. - update to 7.5.3: * Performance improvements for combining data files, especially when measuring line coverage. A few different quadratic behaviors were eliminated. In one extreme case of combining 700+ data files, the time dropped from more than three hours to seven minutes. Thanks for Kraken Tech for funding the fix. * Performance improvements for generating HTML reports, with a side benefit of reducing memory use, closing issue 1791. Thanks to Daniel Diniz for helping to diagnose the problem. * Fix: nested matches of exclude patterns could exclude too much code, as reported in issue 1779. This is now fixed. * Changed: previously, coverage.py would consider a module docstring to be an executable statement if it appeared after line 1 in the file, but not executable if it was the first line. Now module docstrings are never counted as executable statements. This can change coverage.py's count of the number of statements in a file, which can slightly change the coverage percentage reported. * In the HTML report, the filter term and "hide covered" checkbox settings are remembered between viewings, thanks to Daniel Diniz. * Python 3.13.0b1 is supported. * Fix: parsing error handling is improved to ensure bizarre source files are handled gracefully, and to unblock oss-fuzz fuzzing, thanks to Liam DeVoe. Closes issue 1787. - Update to 7.5.1: * Fix: a pragma comment on the continuation lines of a multi-line statement now excludes the statement and its body, the same as if the pragma is on the first line. * Fix: very complex source files could cause a maximum recursion error when creating an HTML report. * HTML report improvements: + Support files (JavaScript and CSS) referenced by the HTML report now have hashes added to their names to ensure updated files are used instead of stale cached copies. + Missing branch coverage explanations that said "the condition was never false" now read "the condition was always true" because it's easier to understand. + Column sort order is remembered better as you move between the index pages. * Added initial support for function and class reporting in the HTML report. * Other HTML report improvements: + There is now a "hide covered" checkbox to filter out 100% files. + The index page is always sorted by one of its columns, with clearer indications of the sorting. + The "previous file" shortcut key didn't work on the index page, but now it does. * The debug output showing which configuration files were tried now shows absolute paths to help diagnose problems where settings aren't taking effect, and is renamed from "attempted_config_files" to the more logical "config_files_attempted." * Fix: in some cases, even with [run] relative_files=True, a data file could be created with absolute path names. When combined with other relative data files, it was random whether the absolute file names would be made relative or not. If they weren't, then a file would be listed twice in reports. * Fix: the last case of a match/case statement had an incorrect message if the branch was missed. It said the pattern never matched, when actually the branch is missed if the last case always matched. * Fix: clicking a line number in the HTML report now positions more accurately. * Fix: the report:format setting was defined as a boolean, but should be a string. * Fix: in some cases, coverage could fail with a RuntimeError: "Set changed size during iteration." * Fix: setting COVERAGE_CORE=sysmon no longer errors on 3.11 and lower. * Fix: the JSON report now includes an explicit format version number. * Fix: the change for multi-line signature exclusions in 7.3.3 broke other forms of nested clauses being excluded properly. * Fix: in the HTML report, selecting code for copying won't select the line numbers also. Thanks, `Robert Harris <pull 1717_>`_. * Fix: function definitions with multi-line signatures can now be excluded by matching any of the lines. * Fix: XML reports could fail with a TypeError if files had numeric components that were duplicates except for leading zeroes, like file1.py and file001.py. * The coverage annotate command used to announce that it would be removed in a future version. Enough people got in touch to say that they use it, so it will stay. Don't expect it to keep up with other new features though. - Set COVERAGE_CORE, so we no longer need to skip the ctrace tests, it will be handled for us. - Skip two tests that assert PYTHONPATH is empty, which it can't be. - update to 7.3.2: * The ``coverage lcov`` command ignored the ``[report] exclude_lines`` and ``[report] exclude_also`` settings * Sometimes SQLite will create journal files alongside the coverage.py database files. These are ephemeral, but could be mistakenly included when combining data files. * On Python 3.12+, we now disable SQLite writing journal files, which should be a little faster. * The new 3.12 soft keyword ``type`` is properly bolded in HTML reports. * Removed the "fullcoverage" feature used by CPython to measure the coverage of early-imported standard library modules. - update to 7.3.1: * The semantics of stars in file patterns has been clarified in the docs. A leading or trailing star matches any number of path components, like a double star would. This is different than the behavior of a star in the middle of a pattern. - specfile * fix build on Leap 15 by moving sle15_python_module_pythons macro to the top - specfile: * require python 3.8 - update to version 7.3.0: * Added a Coverage.collect() context manager to start and stop coverage data collection. * Dropped support for Python 3.7. * Fix: in unusual circumstances, SQLite cannot be set to asynchronous mode. Coverage.py would fail with the error Safety level may not be changed inside a transaction. This is now avoided, closing issue 1646. Thanks to Michael Bell for the detailed bug report. * Docs: examples of configuration files now include separate examples for the different syntaxes: .coveragerc, pyproject.toml, setup.cfg, and tox.ini. * Fix: added nosemgrep comments to our JavaScript code so that semgrep-based SAST security checks won’t raise false alarms about security problems that aren’t problems. * Added a CITATION.cff file, thanks to Ken Schackart. - specfile: * removed upstream patch - update to version 7.2.7: * Fix: reverted a change from 6.4.3 that helped Cython, but also increased the size of data files when using dynamic contexts, as described in the now-fixed issue 1586. The problem is now avoided due to a recent change (issue 1538). Thanks to Anders Kaseorg and David Szotten for persisting with problem reports and detailed diagnoses. * Wheels are now provided for CPython 3.12. - changes from version 7.2.6: * Fix: the lcov command could raise an IndexError exception if a file is translated to Python but then executed under its own name. Jinja2 does this when rendering templates. Fixes issue 1553. * Python 3.12 beta 1 now inlines comprehensions. Previously they were compiled as invisible functions and coverage.py would warn you if they weren’t completely executed. This no longer happens under Python 3.12. * Fix: the coverage debug sys command includes some environment variables in its output. This could have included sensitive data. Those values are now hidden with asterisks, closing issue 1628. since 6.4.3. - Handle cases where python2 is disabled - add LICENSE.txt - python3 package added - minor spec improvement (files section) Changes in python-flaky: - Update to 3.8.1: * Support pytest >= 8.1.1, and Python >= 3.12. - Drop patches, included upstream. - Switch to pyproject macros. - Add patch to remove dependency on the external genty package (gh#box/flaky!197). - Clean up the SPEC file Changes in python-pluggy: - Update to 1.5.0: * Features + Add support for deprecating specific hook parameters, or more generally, for issuing a warning whenever a hook implementation requests certain parameters. + A warning ~pluggy.PluggyTeardownRaisedWarning is now issued when an old-style hookwrapper raises an exception during teardown. + Add PluginManager.unblock <pluggy.PluginManager.unblock> method to unblock a plugin by plugin name. * Bug Fixes + PluginManager.get_plugins() no longer returns None for blocked plugins. + Fix ~pluggy.HookCaller.call_extra() extra methods getting ordered before everything else in some circumstances. Regressed in pluggy 1.1.0. + Fix plugins registering other plugins in a hook when the other plugins implement the same hook itself. Regressed in pluggy 1.1.0. - Switch to pyproject macros. - Revert to 1.3.0 * Pytest 7 is not compatible with pluggy 1.4 but many packages are not compatible with pytest 8 yet - update to 1.4.0: * A warning :class:`~pluggy.PluggyTeardownRaisedWarning` is now issued when an old-style hookwrapper raises an exception during teardown. See the warning documentation for more details. * Add :func:`PluginManager.unblock <pluggy.PluginManager.unblock>` method to unblock a plugin by plugin name. * Fix :func:`~pluggy.HookCaller.call_extra()` extra methods getting ordered before everything else in some circumstances. Regressed in pluggy 1.1.0. * Fix plugins registering other plugins in a hook when the other plugins implement the same hook itself. Regressed in pluggy 1.1.0. - update to 1.3.0: * Python 3.7 is no longer supported. * Pluggy now exposes its typings to static type checkers. * Some fields and classes are marked ``Final`` and ``@final``. * The :ref:`api-reference` is updated to clearly delineate pluggy's public API. Compatibility aliases are put in place for the renamed types. Please note that pluggy is currently unable to provide strong typing for hook calls, e.g. ``pm.hook.my_hook(...)``, nor to statically check that a hook implementation matches the hook specification's type. * The new-style hook wrappers, added in the yanked 1.1.0 release, now require an explicit ``wrapper=True`` designation in the ``@hookimpl()`` decorator. Deprecations and Removals The deprecation was announced in release 0.7.0. deprecation was announced in release 0.7.0. deprecation was announced in release 0.6.0. * fix issue #4: specific HookCallError exception for when a hook call Changes in python-pytest-cov: - Update to 6.2.1: * Added a version requirement for pytest's pluggy dependency. * Removed deprecated license classifier (packaging). * The plugin now adds 3 rules in the filter warnings configuration to prevent common coverage warnings being raised as obscure errors. * Fixed breakage that occurs when ``--cov-context`` and the ``no_cover`` marker are used together. * Change terminal output to use full width lines for the coverage header. * Removed unnecessary CovFailUnderWarning. * Fixed the term report not using the precision specified via ``--cov-precision``. * Changed fail under checks to use the precision set in the coverage configuration. * Added a ``--cov-precision`` cli option that can override the value set in your coverage configuration. * Dropped support for now EOL Python 3.8. - Switch to pytest macro. - Add patch to support changes in coverage 7.5. - update to 5.0.0: * Removed support for xdist rsync (now deprecated). * Switched docs theme to Furo. * Various legacy Python cleanup and CI improvements. Contributed by Christian Clauss and Hugo van Kemenade in #630, #631, #632 and #633. * Added a pyproject.toml example in the docs. Contributed by Dawn James in #626. * Modernized project's pre-commit hooks to use ruff. Initial POC contributed by Christian Clauss in #584. * Support coverage >= 6.2 - Inject multibuild to avoid build cycles. - Skip 6 test cases that are causing problems with Python 3.8 (when combining coverage data from parallel mode). * Added the --cov-append command line options. coverage-4.0 (automatically activated if there’s a * Changed --cov-report=term to automatically upgrade to --cov-report=term-missing if there’s * Changed --cov so it can be used with no path argument (in wich case the source settings from .coveragerc will * Fixed .pth installation to work in all cases * Data file suffixing changed to use coverage’s * Avoid warning about missing coverage data * Fixed a race condition when running with xdist (all the workers tried to combine the files). It’s possible that this issue is not present in Changes in python-pytest-html: - refresh node modules * update pbkdf2 to 3.1.3 CVE-2025-6545, CVE-2025-6547, bsc#1245288. bsc#1245289 - refresh node modules * update brace-expansion to 1.1.12 and 2.0.2 CVE-2025-5889, gh#juliangruber/brace-expansion#65, bsc#1244343 - refresh node modules * update cross-spawn module to 7.0.6 - CVE-2024-21538 (bsc#1233852) - Update packages-lock.json to fix CVE-2024-48948, update elliptic js dependency to 6.6.0. bsc#1231688 - Update packages-lock.json to fix CVE-2024-48949, update elliptic js dependency. bsc#1231562 - Replace node_modules.tar.gz vendoring with obs-service-node_modules - Update to 4.1.1: * fix: Latest eslint is broken (#769) @BeyondEvil * fix: original sort order (#768) @BeyondEvil * [pre-commit.ci] pre-commit autoupdate (#763) @pre-commit-ci - 4.1.0: * Release v4.1.0 (#761) @BeyondEvil * fix: Escaping HTML in log (#757) @BeyondEvil * test: Add UTF8 test (#760) @BeyondEvil * [pre-commit.ci] pre-commit autoupdate (#563) @pre-commit-ci * fix: Only run npm when building from source (#758) @BeyondEvil * Fix results table modification documentation (#749) @michalkaptur * fix: Add collections errors to report (#756) @BeyondEvil * fix: Revert report generation to full run (#754) @BeyondEvil * fix: Broken duration (#753) @BeyondEvil * Pytest html fix reload button typo (#738) @jeffwright13 - 4.0.2: * Fix: Use absolute path for the report (#735) @adrien-berchet - 4.0.1: * fix: Incorrect label for xfailed (#733) @BeyondEvil - Refresh patches and node_modules.tar.gz - Update to 4.0.0: * Feat: Add duration format hook (#724) @BeyondEvil * Chore: Drop support for python 3.7 (#723) @BeyondEvil * Add expander to log output (#721) @drRedflint * Fix: Broken sorting for custom columns (#715) @BeyondEvil * Chore: Stop running scheduled tests on forks (#720) @BeyondEvil * Chore: Fix tox (#718) @BeyondEvil * use max height instead of fixed height (#706) @drRedflint * if only one item in gallery, remove navigation (#705) @drRedflint * Chore: Support legacy pytest-metadata (#714) @BeyondEvil * Feature: Untemplate table header (#713) @BeyondEvil * Fix: Borken HTML in jinja template (#712) @BeyondEvil * Feature: Update json-data-blob (#704) @BeyondEvil * Fix: Collapsed state between redraws (#703) @BeyondEvil * Feature: Only one collapsed state (#701) @BeyondEvil * Chore: General JS cleanup (#700) @BeyondEvil * Feature: Template test and duration summary (#698) @BeyondEvil * Feature: Template result filters (#697) @BeyondEvil * Feature: Template table header (#696) @BeyondEvil * Fix: visible query param (#695) @BeyondEvil * Fix: Handle legacy py html (#694) @BeyondEvil * Fix: Environment table toggle bug (#693) @BeyondEvil * Feature: Add initial sort column as ini (#692) @BeyondEvil * Fix: Duration sorting (#691) @BeyondEvil * Fix: Logging issues with teardown (#690) @BeyondEvil * Chore: Simplify results table hooks (#688) @BeyondEvil * Enable variable expansion for CSS addons. (#676) @BeyondEvil * Fix: results table html hook (#669) @BeyondEvil * fix for #671 - Sort icons inverted in next-gen branch (#672) @harmin-parra * Docs: Update ReadTheDocs to v2 (#673) @BeyondEvil * Feature: Add 'session' to results summary hook (#660) @BeyondEvil * Chore: Fix npm building (#658) @BeyondEvil * Feature: Add hide-able Environment Table (#638) @BeyondEvil * Feature: Make entire row collapsible (#656) @BeyondEvil * Chore: Disambiguate collapsed (#657) @BeyondEvil * Chore: Assorted fixes around pytest entry points (#655) @BeyondEvil * Chore: Add eslint (#651) @BeyondEvil * Chore: Decouple ReportData (#650) @BeyondEvil * Chore: Add npm build hooks (#649) @BeyondEvil * Docs: Fix deprecations page title [skip ci] (#645) @BeyondEvil * Fix: Renamed report-data class to avoid confusion (#642) @BeyondEvil * Chore: Temporary imports for backwards compat (#643) @BeyondEvil * Docs: Add Deprecations docs (#640) @BeyondEvil * Fix: Support cells.pop() (#641) @BeyondEvil * Fix: Order and layout of outcome summary (#629) @BeyondEvil * Fix: Sorting of custom table columns (#634) @BeyondEvil * Chore: Allow concurrency on default branch (#639) @BeyondEvil * Fix: Initial sort and query param (#637) @BeyondEvil * Fix: Add skip marker results to report (#636) @BeyondEvil * Fix: Deprecate use of 'True' in render_collapsed (#635) @BeyondEvil * Fix: Color E(xecption) lines in the log red (#631) @BeyondEvil * Fix: Handle appends on table hooks (#630) @BeyondEvil * Fix: Handle assignment on table hooks (#628) @BeyondEvil * Docs: Update contrib docs (#627) @BeyondEvil * Fix issue with report.extra attribute (#626) @BeyondEvil * chore: It's , 120 is fine (#625) @BeyondEvil * Next gen (#621) @BeyondEvil * chore: Migrate from Poetry to Hatch (#617) @BeyondEvil * docs: Update to current (#616) @BeyondEvil * fix: Broken sorting due to typo in jinja template (#614) @BeyondEvil * fix: Use the same duration formatting as for the tests (#613) @BeyondEvil * fix: Replacing log HTML (#611) @BeyondEvil * fix: Incorrect precedence render collapsed (#610) @BeyondEvil * chore: Better directory and class structure (#609) @BeyondEvil * fix: Deprecate the Cells.pop function (#608) @BeyondEvil * fix: Collapsed should support All and none (#605) @BeyondEvil * tests: Add tests for stdout and sterr capture (#604) @BeyondEvil * fix: Missing logging in report (#603) @BeyondEvil * chore: Add code coverage for JS (#600) @BeyondEvil * Fix: Table row hook (#599) @BeyondEvil * fix: Report fails to render with pytest-xdist (#598) @BeyondEvil * fix: Add config to report object (#588) @BeyondEvil * update: duration_format renders deprecation warning (#589) @BeyondEvil * chore: Add unit test file (#590) @BeyondEvil * refactor: stop overwriting pytest data (#597) @BeyondEvil * Combined fe and be (#479) @BeyondEvil * Revert "Rename master branch to main" (#562) @BeyondEvil * Switch to setuptools-scm >= 7.0.0 (#567) @dvzrv - Add patch to remove assertpy dependency - Add patch to vendor npm build requirements - Update to 4.0.0rc5, compatible with python-pytest-metadata 3.0.0 (gh#pytest-dev/pytest-html#683) - No release notes upstream - add sle15_python_module_pythons - Remove python_module macro definition - Add python-py dependency - Update to 3.2.0 * Explicitly add py.xml dependency. Thanks to @smartEBL for the PR * Implement the visible URL query parameter to control visibility of test results on page load. (#399) Thanks to @TheCorp for reporting and @gnikonorov for the fix * Make the report tab title reflect the report name. (#412) Thanks to @gnikonorov for the PR * Implement environment_table_redact_list to allow for redaction of environment table values. (#233) Thanks to @fenchu for reporting and @gnikonorov for the PR Changes in python-pytest-metadata: - update to 3.1.1: * Add environment variables for AWS CodeBuild CI - update to 3.1.0: * Support Pytest 8.0 - update to 3.0.0: * Group CLI options * Switch to Hatch * Use `pytest.stash` internally instead of `_metadata` * Simplify code - add sle15_python_module_pythons - Remove python_module macro definition - Update to 2.0.4: * Fix deprecated pytest.mark.optionalhook marker. - 2.0.3: * Remove py dependency. Thanks to @Czaki for reporting. - 2.0.2: * Allow all python versions above 3.7 - 2.0.1: * Fix issues with switching to pyproject.toml Thanks to @dvzrv and @eltrufas for raising issues and providing fixes. - 2.0.0: * Drop support for python 2.7 and 3.6 * Add support for python 3.9 and 3.10 * Introduce pyproject.toml * Provide metadata via JSON file Thanks to @digitalorder for the PR - 1.11.0: * Provide a session fixture to include metadata in Junit XMLs as property tags. Thanks to @sanga for the PR Changes in python-pytest-mock: - Drop python-py requirement, no longer required. - update to 3.14.0: * #415: MockType and AsyncMockType can be imported from pytest_mock for type annotation purposes. * #420: Fixed a regression which would cause patch to not being properly cleared between tests. * #417: spy now has spy_return_list, which is a list containing all the values returned by the spied function. * pytest-mock now requires pytest>=6.2.5. * #410: pytest-mock's setup.py file is removed. If you relied on this file, e.g. to install pytest using setup.py install, please see Why you shouldn't invoke setup.py directly for alternatives. - Fix tests with python 3.11.7 - Add patch to fix tests python3117. - update to 3.12.0: * Added support for Python 3.12. * Dropped support for EOL Python 3.7. * ``mocker.resetall()`` now also resets mocks created by ``mocker.create_autospec`` (`#390`_). - add upstream patch to test with pytest5. Changes in python-pytest: - Update to 8.3.5 * Bug fixes - #11777: Fixed issue where sequences were still being shortened even with -vv verbosity. - #12888: Fixed broken input when using Python 3.13+ and a libedit build of Python, such as on macOS or with uv-managed Python binaries from the python-build- standalone project. This could manifest e.g. by a broken prompt when using Pdb, or seeing empty inputs with manual usage of input() and suspended capturing. - #13026: Fixed AttributeError{.interpreted-text role="class"} crash when using --import-mode=importlib when top-level directory same name as another module of the standard library. - #13053: Fixed a regression in pytest 8.3.4 where, when using --import-mode=importlib, a directory containing py file with the same name would cause an ImportError - #13083: Fixed issue where pytest could crash if one of the collected directories got removed during collection. * Improved documentation - #12842: Added dedicated page about using types with pytest. See types{.interpreted-text role="ref"} for detailed usage. * Contributor-facing changes - #13112: Fixed selftest failures in test_terminal.py with Pygments >= 2.19.0 - #13256: Support for Towncrier versions released in 2024 has been re-enabled when building Sphinx docs -- by webknjaz{.interpreted-text role="user"}. - Add upstream patch to fix compatibility with new Pygments - update to 8.3.4: * #12592: Fixed :class:`KeyError` crash when using --import- mode=importlib in a directory layout where a directory contains a child directory with the same name. * #12818: Assertion rewriting now preserves the source ranges of the original instructions, making it play well with tools that deal with the AST, like executing. * #12849: ANSI escape codes for colored output now handled correctly in :func:`pytest.fail` with pytrace=False. * #9353: :func:`pytest.approx` now uses strict equality when given booleans. * #10558: Fix ambiguous docstring of :func:`pytest.Config.getoption`. * #10829: Improve documentation on the current handling of the --basetemp option and its lack of retention functionality (:ref:`temporary directory location and retention`). * #12866: Improved cross-references concerning the :fixture:`recwarn` fixture. * #12966: Clarify :ref:`filterwarnings` docs on filter precedence/order when using multiple :ref:`@pytest.mark.filterwarnings <pytest.mark.filterwarnings ref>` marks. * #12497: Fixed two failing pdb-related tests on Python 3.13. - update to 8.3.3: * #12446: Avoid calling @property (and other instance descriptors) during fixture discovery -- by :user:`asottile` * #12659: Fixed the issue of not displaying assertion failure differences when using the parameter --import-mode=importlib in pytest>=8.1. * #12667: Fixed a regression where type change in ExceptionInfo.errisinstance caused mypy to fail. * #12744: Fixed typing compatibility with Python 3.9 or less -- replaced typing.Self with typing_extensions.Self -- by :user:`Avasam` * #12745: Fixed an issue with backslashes being incorrectly converted in nodeid paths on Windows, ensuring consistent path handling across environments. * #6682: Fixed bug where the verbosity levels where not being respected when printing the "msg" part of failed assertion (as in assert condition, msg). * #9422: Fix bug where disabling the terminal plugin via -p no:terminal would cause crashes related to missing the verbose option. -- by :user:`GTowers1` * #12663: Clarify that the pytest_deselected hook should be called from pytest_collection_modifyitems hook implementations when items are deselected. * #12678: Remove erroneous quotes from tmp_path_retention_policy example in docs. * #12769: Fix typos discovered by codespell and add codespell to pre-commit hooks. - update to 8.3.2: * Resolve regression where `conda` environments where no longer being automatically detected - Update to 8.3.1: * New features + Added `--xfail-tb` flag, which turns on traceback output for XFAIL results. + Added support for keyword matching in marker expressions. + Added ``--no-fold-skipped`` command line option. * Improvements + The console output now uses the "third-party plugins" terminology. + Python virtual environment detection was improved by checking for a pyvenv.cfg file + Do not truncate arguments to functions in output when running with -vvv. + The readability of assertion introspection of bound methods has been enhanced. + Added timezone information to the testsuite timestamp in the JUnit XML report. * Bug Fixes + Fixed reporting of teardown errors in higher-scoped fixtures when using `--maxfail` or `--stepwise`. + pytest.approx now correctly handles Sequence-like objects. + Fixed a regression in pytest 8.0 where tracebacks get longer and longer when multiple tests fail due to a shared higher-scope fixture which raised + Fixed collection error upon encountering an abstract class, including abstract unittest.TestCase subclasses. + Fixed a regression in pytest 8.0.0 where package-scoped parameterized items were not correctly reordered to minimize setups/teardowns in some cases. + Fixed crash with `assert testcase is not None` assertion failure when re-running unittest tests using plugins like pytest-rerunfailures. + Fixed a crash when returning category ``"error"`` or ``"failed"`` with a custom test status from :hook:`pytest_report_teststatus` hook. + Improved handling of invalid regex patterns in pytest.raises(match=r'...') by providing a clear error message. + Parametrization parameters are now compared using == instead of is (is is still used as a fallback if the parameter does not support ==). + Fixed progress percentages sometimes not aligning correctly when running with pytest-xdist -n. * Fix regression in 8.2.2 that did not allow test case reruns. - Update to 8.2.2 * Support for Python 3.13 (beta1 at the time of writing). * Fix `PermissionError` crashes arising from directories which are not selected on the command-line. * Keyboard interrupts and system exits are now properly handled during the test collection. * Fixed handling of 'Function not implemented' error under squashfuse_ll, which is a different way to say that the mountpoint is read-only. * Fix a regression in pytest 8.2.0 where the permissions of automatically-created .pytest_cache directories became rwx------ instead of the expected rwxr-xr-x. * Fix possible catastrophic performance slowdown on a certain parametrization pattern involving many higher-scoped parameters. * Fix a regression in pytest 8.2.0 where unittest class instances were not released promptly on test teardown but only on session teardown. * Fix possible “Directory not empty” crashes arising from concurent cache dir (.pytest_cache) creation. Regressed in pytest 8.2.0. - Update to 8.2.0: * A deprecation warning is now raised when implementations of one of the following hooks request a deprecated py.path.local parameter. * Added support for reading command line arguments from a file using the prefix character @. * Fixed a regression in pytest 8.0.0 where test classes containing setup_method and tests using @staticmethod or @classmethod would crash with AttributeError. * pluggy>=1.5.0 is now required. * Added PYTEST_VERSION environment variable which is defined at the start of the pytest session and undefined afterwards. * Improved namespace packages detection when consider_namespace_packages is enabled. * pytest.importorskip will now issue a warning if the module could be found, but raised ImportError. * Fixed error in pytest.approx when used with numpy arrays and comparing with other types. * Added the new consider_namespace_packages configuration option, defaulting to False. * Added the new verbosity_test_cases configuration option for fine-grained control of test execution verbosity. * --import-mode=importlib <import-mode-importlib> now tries to import modules using the standard import mechanism. * Added support for sys.last_exc for post-mortem debugging on Python>=3.12. * Fixed a regression in pytest 8.0.0 that would cause test collection to fail due to permission errors when using --pyargs. * Fix the stacklevel used when warning about marks used on fixtures. * Fix an edge case where ExceptionInfo._stringify_exception could crash. * Fix an IndexError crash raising from getstatementrange_ast. * PytestRemovedIn8Warning deprecation warnings are now errors by default. * Dropped support for Python 3.7. * Files and directories are now collected in alphabetical order jointly. * Sanitized the handling of the default parameter when defining configuration options. * Avoid microsecond exceeds 1_000_000 when using log-date-format with %f specifier. - Switch to pyproject macros. - Add python version constraints to Requires & BuildRequires - update to 7.4.4: * Fix non-string constants at the top of file being detected as docstrings on Python>=3.8. * Handle an edge case where :data:`sys.stderr` and :data:`sys.__stderr__` might already be closed when :ref:`faulthandler` is tearing down. * Fixed tracebacks from collection errors not getting pruned. * Removed unhelpful error message from assertion rewrite mechanism when exceptions are raised in ``__iter__`` methods. Now they are treated un-iterable instead. - update to 7.4.3: * Markers are now considered in the reverse mro order to ensure base class markers are considered first -- this resolves a regression. * Fixed ``:=`` in asserts impacting unrelated test cases. * Handled an edge case where :data:`sys.stderr` might already be closed when :ref:`faulthandler` is tearing down. python-boto3-1.34.138-150400.27.7.1.src.rpm python-botocore-1.34.144-150400.41.7.1.src.rpm python-coverage-7.6.10-150400.12.6.1.src.rpm python-pluggy-1.5.0-150400.14.10.1.src.rpm python-pytest-8.3.5-150400.3.9.1.src.rpm python-pytest-cov-6.2.1-150400.12.6.1.src.rpm python-pytest-mock-3.14.0-150400.13.6.1.src.rpm python311-boto3-1.34.138-150400.27.7.1.noarch.rpm python311-botocore-1.34.144-150400.41.7.1.noarch.rpm python311-coverage-7.6.10-150400.12.6.1.x86_64.rpm python311-pluggy-1.5.0-150400.14.10.1.noarch.rpm python311-pytest-8.3.5-150400.3.9.1.noarch.rpm python311-pytest-cov-6.2.1-150400.12.6.1.noarch.rpm python311-pytest-mock-3.14.0-150400.13.6.1.noarch.rpm SUSE-SLE-Module-Python3-15-SP7-2025-3625 important SUSE Updates SLE-Module-Python3 15-SP7 x86 64 This update for pgadmin4 fixes the following issues: - CVE-2025-9636: Fixed cross-origin opener policy (COOP) vulnerability (bsc#1249151). pgadmin4-8.5-150600.3.15.1.noarch.rpm pgadmin4-8.5-150600.3.15.1.src.rpm pgadmin4-doc-8.5-150600.3.15.1.noarch.rpm system-user-pgadmin-8.5-150600.3.15.1.noarch.rpm SUSE-SLE-Module-Python3-15-SP7-2025-3780 moderate SUSE Updates SLE-Module-Python3 15-SP7 x86 64 This update for python-python-socketio fixes the following issues: - CVE-2025-61765: fixed by using json, rather than pickle for serialization (bsc#1251193) python-python-socketio-5.7.2-150600.3.3.1.src.rpm python311-python-socketio-5.7.2-150600.3.3.1.noarch.rpm SUSE-SLE-Module-Python3-15-SP7-2025-3754 important SUSE Updates SLE-Module-Python3 15-SP7 x86 64 This update for python-Authlib fixes the following issues: - CVE-2025-61920: limited the size of the header to prevent DoS (bsc#1251921). python-Authlib-1.3.1-150600.3.6.1.src.rpm python311-Authlib-1.3.1-150600.3.6.1.noarch.rpm SUSE-SLE-Module-Python3-15-SP7-2025-3847 critical SUSE Updates SLE-Module-Python3 15-SP7 x86 64 This update for python-kiwi, appx-util, python-docopt, python-xmltodict, libsolv fixes the following issues: python-kiwi: - Switch to Python 3.11 based python-kiwi (jsc#PED-13168) - Fixed system booting to Emergency Mode on first reboot using qcow2 (bsc#1250754) - Fixed get_partition_node_name (bsc#1245190) - Added new eficsm type attribute (bsc#1243381) - Included support for older schemas - New binary packages: * kiwi-bash-completion * kiwi-systemdeps-containers-wsl appx-util: - Implementation as dependency required by kiwi-systemdeps-containers-wsl python-docopt, python-xmltodict, libsolv: - Implementation of Python 3.11 flavours required by python311-kiwi (no source changes) libsolv-0.7.35-150700.11.5.2.src.rpm True python-docopt-0.6.2-150600.18.5.2.src.rpm True python-xmltodict-0.13.0-150600.3.7.2.src.rpm True python311-docopt-0.6.2-150600.18.5.2.noarch.rpm True python311-solv-0.7.35-150700.11.5.2.x86_64.rpm True python311-xmltodict-0.13.0-150600.3.7.2.noarch.rpm True SUSE-SLE-Module-Python3-15-SP7-2025-3850 moderate SUSE Updates SLE-Module-Python3 15-SP7 x86 64 This update for python-atomicwrites, python-croniter, python-pytest-django, python-suds, python-sysv_ipc, python-whitenoise fixes the following issues: Add new python packages: - python-atomicwrites - python-croniter - python-pytest-django - python-suds - python-sysv_ipc - python-whitenoise python-atomicwrites-1.4.1-150600.14.4.1.src.rpm python-atomicwrites-doc-1.4.1-150600.14.4.1.src.rpm python-croniter-6.0.0-150600.13.3.1.src.rpm python-suds-1.2.0-150600.13.3.1.src.rpm python-sysv_ipc-1.1.0-150600.13.3.1.src.rpm python-whitenoise-6.11.0-150600.13.3.1.src.rpm python3-sysv_ipc-1.1.0-150600.13.3.1.x86_64.rpm python311-atomicwrites-1.4.1-150600.14.4.1.noarch.rpm python311-atomicwrites-doc-1.4.1-150600.14.4.1.noarch.rpm python311-croniter-6.0.0-150600.13.3.1.noarch.rpm python311-suds-1.2.0-150600.13.3.1.noarch.rpm python311-sysv_ipc-1.1.0-150600.13.3.1.x86_64.rpm python311-whitenoise-6.11.0-150600.13.3.1.noarch.rpm SUSE-SLE-Module-Python3-15-SP7-2025-3877 important SUSE Updates SLE-Module-Python3 15-SP7 x86 64 This update for libselinux fixes the following issues: - Ship license file (bsc#1252160) libselinux-bindings-3.5-150600.3.3.1.src.rpm python311-selinux-3.5-150600.3.3.1.x86_64.rpm SUSE-SLE-Module-Python3-15-SP7-2025-3860 low SUSE Updates SLE-Module-Python3 15-SP7 x86 64 This update for firewalld-legacy fixes the following issues: - Provide v1.3.4 as installable option due to slow firewall rule generation introduced in the 2.x.x series (jsc#PED-13314). firewalld-1.3.4-150600.13.3.1.src.rpm python311-firewall-1.3.4-150600.13.3.1.noarch.rpm SUSE-SLE-Module-Python3-15-SP7-2025-3842 moderate SUSE Updates SLE-Module-Python3 15-SP7 x86 64 This update for python-Authlib fixes the following issues: - CVE-2025-62706: fixed a denial of service condition (bsc#1252504, gh#authlib/authlib@e0863d512931) python-Authlib-1.3.1-150600.3.9.1.src.rpm python311-Authlib-1.3.1-150600.3.9.1.noarch.rpm SUSE-SLE-Module-Python3-15-SP7-2025-4361 moderate SUSE Updates SLE-Module-Python3 15-SP7 x86 64 This update for python-kiwi fixes the following issues: - Switch to Python 3.11 based python-kiwi (jsc#PED-13168) * Requires Python 3 Module to be activated. If not already active, please activate it using SUSEConnect. - Fixed get_partition_node_name (bsc#1245190) - Added new eficsm type attribute (bsc#1243381) - Dependencies rebuilt with no source changes: * python-cssselect * python-docopt * python-simplejson * python-xmltodict * pv python-cssselect-1.2.0-150400.12.6.2.src.rpm python-simplejson-3.19.1-150400.6.10.2.src.rpm python311-cssselect-1.2.0-150400.12.6.2.noarch.rpm python311-simplejson-3.19.1-150400.6.10.2.x86_64.rpm SUSE-SLE-Module-Python3-15-SP7-2025-4297 low SUSE Updates SLE-Module-Python3 15-SP7 x86 64 This update for python311 fixes the following issues: Update to 3.11.14: - CVE-2025-6075: Fixed simple quadratic complexity vulnerabilities of os.path.expandvars() (bsc#1252974) - CVE-2025-8291: Fixed validity of the ZIP64 End of Central Directory (EOCD) not checked by the 'zipfile' module (bsc#1251305) python311-3.11.14-150600.3.38.1.src.rpm python311-3.11.14-150600.3.38.1.x86_64.rpm python311-core-3.11.14-150600.3.38.1.src.rpm python311-curses-3.11.14-150600.3.38.1.x86_64.rpm python311-dbm-3.11.14-150600.3.38.1.x86_64.rpm python311-devel-3.11.14-150600.3.38.1.x86_64.rpm python311-idle-3.11.14-150600.3.38.1.x86_64.rpm python311-tk-3.11.14-150600.3.38.1.x86_64.rpm python311-tools-3.11.14-150600.3.38.1.x86_64.rpm SUSE-SLE-Module-Python3-15-SP7-2025-4277 low SUSE Updates SLE-Module-Python3 15-SP7 x86 64 This update for python313 fixes the following issues: Update to 3.13.9: - CVE-2025-6075: Fixed simple quadratic complexity vulnerabilities of os.path.expandvars() (bsc#1252974) - CVE-2025-8291: Fixed validity of the ZIP64 End of Central Directory (EOCD) not checked by the 'zipfile' module (bsc#1251305) Other fixes: - Fix readline history truncation when length is reduced - Fixing reproducible build for python-nogil (bsc#1244680) libpython3_13-1_0-3.13.9-150700.4.26.1.x86_64.rpm python313-3.13.9-150700.4.26.1.src.rpm python313-3.13.9-150700.4.26.1.x86_64.rpm python313-base-3.13.9-150700.4.26.1.x86_64.rpm python313-core-3.13.9-150700.4.26.1.src.rpm python313-curses-3.13.9-150700.4.26.1.x86_64.rpm python313-dbm-3.13.9-150700.4.26.1.x86_64.rpm python313-devel-3.13.9-150700.4.26.1.x86_64.rpm python313-idle-3.13.9-150700.4.26.1.x86_64.rpm python313-tk-3.13.9-150700.4.26.1.x86_64.rpm python313-tools-3.13.9-150700.4.26.1.x86_64.rpm SUSE-SLE-Module-Python3-15-SP7-2025-4340 moderate SUSE Updates SLE-Module-Python3 15-SP7 x86 64 This update for python313 fixes the following issues: - Remove unneeded files libpython3_13-1_0-3.13.9-150700.4.33.1.x86_64.rpm python313-3.13.9-150700.4.33.1.src.rpm python313-3.13.9-150700.4.33.1.x86_64.rpm python313-base-3.13.9-150700.4.33.1.x86_64.rpm python313-core-3.13.9-150700.4.33.1.src.rpm python313-curses-3.13.9-150700.4.33.1.x86_64.rpm python313-dbm-3.13.9-150700.4.33.1.x86_64.rpm python313-devel-3.13.9-150700.4.33.1.x86_64.rpm python313-idle-3.13.9-150700.4.33.1.x86_64.rpm python313-tk-3.13.9-150700.4.33.1.x86_64.rpm python313-tools-3.13.9-150700.4.33.1.x86_64.rpm SUSE-SLE-Module-Python3-15-SP7-2025-4392 important SUSE Updates SLE-Module-Python3 15-SP7 x86 64 This update for aws-cli, python-boto3, python-botocore, python-s3transfer fixes the following issues: Changes in python-botocore: - Update to 1.40.50 * api-change:``bedrock-agentcore``: Bedrock AgentCore release for Runtime, and Memory. * api-change:``bedrock-agentcore-control``: Bedrock AgentCore release for Gateway, and Memory including Self-Managed Strategies support for Memory. * api-change:``cloudfront``: Added new viewer security policy, TLSv1.2_2025, for CloudFront. * api-change:``glue``: Addition of AuditContext in GetTable/GetTables Request * api-change:``lambda``: Add InvokedViaFunctionUrl context key to limit invocations to only FURL invokes. * api-change:``odb``: This release adds APIs that allow you to specify CIDR ranges in your ODB peering connection. * api-change:``rds``: Updated the text in the Important section of the ModifyDBClusterParameterGroup page. - Update to 1.40.49 * api-change:``quicksight``: This release adds support for ActionConnector and Flow, which are new resources associated with Amazon Quick Suite. Additional updates include expanded Data Source options, further branding customization, and new capabilities that can be restricted by Admins. * api-change:``wafv2``: This release adds the ability to throw WafLimitsExceededException when the maximum number of Application Load Balancer (ALB) associations per AWS WAF v2 WebACL is exceeded. - from version 1.40.48 * api-change:``bedrock-agentcore-control``: Adding support for authorizer type AWS_IAM to AgentCore Control Gateway. * api-change:``license-manager-user-subscriptions``: Released support for IPv6 and dual-stack active directories * api-change:``outposts``: This release adds the new StartOutpostDecommission API, which starts the decommission process to return Outposts racks or servers. * api-change:``service-quotas``: introduces Service Quotas Automatic Management. Users can opt-in to monitoring and managing service quotas, receive notifications when quota usage reaches thresholds, configure notification channels, subscribe to EventBridge events for automation, and view notifications in the AWS Health dashboard. - from version 1.40.47 * api-change:``proton``: Deprecating APIs in AWS Proton namespace. - from version 1.40.46 * api-change:``backup``: Adds optional MaxScheduledRunsPreview input to GetBackupPlan API to provide a preview of up to 10 next scheduled backup plan runs in the GetBackupPlan response. * api-change:``bedrock-agentcore``: Add support for batch memory management, agent card retrieval and session termination * api-change:``bedrock-agentcore-control``: Add support for VM lifecycle configuration parameters and A2A protocol * api-change:``glue``: Adds labeling for DataQualityRuleResult for GetDataQualityResult and PublishDataQualityResult APIs * api-change:``mediaconnect``: Enabling Tag-on-Create for AWS Elemental MediaConnect flow-based resource types * api-change:``memorydb``: Support for DescribeMultiRegionParameterGroups and DescribeMultiRegionParameters API. * api-change:``quicksight``: Documentation improvements for QuickSight API documentation to clarify that delete operation APIs are global. * api-change:``rds``: Documentation updates to the CreateDBClusterMessage$PubliclyAccessible and CreateDBInstanceMessage$PubliclyAccessible properties. * api-change:``resource-explorer-2``: Add new AWS Resource Explorer APIs - from version 1.40.45 * api-change:``cleanrooms``: Added support for reading data sources across regions, and results delivery to allowedlisted regions. * api-change:``medialive``: AWS Elemental MediaLive enables Mediapackage V2 users to configure ID3, KLV, Nielsen ID3, and Segment Length related parameters through the Mediapackage output group. * api-change:``payment-cryptography-data``: Added a new API - translateKeyMaterial; allows keys wrapped by ECDH derived keys to be rewrapped under a static AES keyblock without first importing the key into the service. * api-change:``qconnect``: Updated Amazon Q in Connect APIs to support Email Contact Recommendations. - from version 1.40.44 * api-change:``cloudformation``: Add new warning type 'EXCLUDED_RESOURCES' * api-change:``connectcases``: New Search All Related Items API enables searching related items across cases * api-change:``dynamodb``: Add support for dual-stack account endpoint generation * api-change:``endpoint-rules``: Update endpoint-rules client to latest version * api-change:``guardduty``: Updated descriptions for the Location parameter in CreateTrustedEntitySet and CreateThreatEntitySet. * api-change:``synthetics``: Adds support to configure canaries with pre-configured blueprint code on supported runtime versions. This behavior can be controlled via the new BlueprintTypes property exposed in the CreateCanary and UpdateCanary APIs. - from version 1.40.43 * api-change:``chime-sdk-meetings``: Add support to receive dual stack MediaPlacement URLs in Chime Meetings SDK * api-change:``cleanrooms``: This release introduces data access budgets to control how many times a table can be used for queries and jobs in a collaboration. * api-change:``cleanroomsml``: This release introduces data access budgets to view how many times an input channel can be used for ML jobs in a collaboration. * api-change:``dms``: This is a doc-only update, revising text for kms-key-arns. * api-change:``ecs``: This is a documentation only Amazon ECS release that adds additional information for health checks. * api-change:``pcs``: Added the UpdateCluster API action to modify cluster configurations, and Slurm custom settings for queues. - from version 1.40.42 * api-change:``application-signals``: Amazon CloudWatch Application Signals is introducing the Application Map to give users a more comprehensive view of their service health. Users will now be able to group services, track their latest deployments, and view automated audit findings concerning service performance. * api-change:``bedrock-agentcore-control``: Tagging support for AgentCore Gateway * api-change:``chime-sdk-voice``: Added support for IPv4-only and dual-stack network configurations for VoiceConnector and CreateVoiceConnector API. * api-change:``connectcases``: This release adds support for two new related item types: ConnectCase for linking Amazon Connect cases and Custom for user-defined related items with configurable fields. * api-change:``customer-profiles``: This release introduces ListProfileHistoryRecords and GetProfileHistoryRecord APIs for comprehensive profile history tracking with complete audit trails of creation, updates, merges, deletions, and data ingestion events. * api-change:``datasync``: Added support for FIPS VPC endpoints in FIPS-enabled AWS Regions. * api-change:``datazone``: This release adds support for creation of EMR on EKS Connections in Amazon DataZone. * api-change:``ds``: AWS Directory service now supports IPv6-native and dual-stack configurations for AWS Managed Microsoft AD, AD Connector, and Simple AD (dual-stack only). Additionally, AWS Managed Microsoft AD Standard Edition directories can be upgraded to Enterprise Edition directories through a single API call. * api-change:``ecs``: This release adds support for Managed Instances on Amazon ECS. * api-change:``fsx``: Add Dual-Stack support for Amazon FSx for NetApp ONTAP and Windows File Server * api-change:``mediatailor``: Adding TPS Traffic Shaping to Prefetch Schedules * api-change:``quicksight``: added warnings to a few CLI pages * api-change:``rds``: Enhanced RDS error handling: Added DBProxyEndpointNotFoundFault, DBShardGroupNotFoundFault, KMSKeyNotAccessibleFault for snapshots/restores/backups, NetworkTypeNotSupported, StorageTypeNotSupportedFault for restores, and granular state validation faults. Changed DBInstanceNotReadyFault to HTTP 400. * api-change:``transfer``: Add support for updating server identity provider type - from version 1.40.41 * api-change:``bedrock``: Release for fixing GetFoundationModel API behavior. Imported and custom models have their own exclusive API and GetFM should not accept those ARNS as input * api-change:``bedrock-runtime``: New stop reason for Converse and ConverseStream * api-change:``imagebuilder``: This release introduces several new features and improvements to enhance pipeline management, logging, and resource configuration. * api-change:``vpc-lattice``: Adds support for specifying the number of IPv4 addresses in each ENI for the resource gateway for VPC Lattice. - from version 1.40.40 * api-change:``bedrock-agent-runtime``: This release enhances the information provided through Flow Traces. New information includes source/next node tracking, execution chains for complex nodes, dependency action (operation) details, and dependency traces. * api-change:``bedrock-data-automation``: Added support for configurable Speaker Labeling and Channel Labeling features for Audio modality. * api-change:``billing``: Add ability to combine custom billing views to create new consolidated views. * api-change:``ce``: Support for payer account dimension and billing view health status. * api-change:``connect``: Adds supports for manual contact picking (WorkList) operations on Routing Profiles, Agent Management and SearchContacts APIs. * api-change:``dynamodbstreams``: Added support for IPv6 compatible endpoints for DynamoDB Streams. * api-change:``ec2``: This release includes documentation updates for Amazon EBS General Purpose SSD (gp3) volumes with larger size and higher IOPS and throughput. * api-change:``endpoint-rules``: Update endpoint-rules client to latest version * api-change:``redshift``: Support tagging and tag propagation to IAM Identity Center for Redshift Idc Applications - from version 1.40.39 * api-change:``glue``: Update GetConnection(s) API to return KmsKeyArn & Add 63 missing connection types * api-change:``lightsail``: Attribute HTTP binding update for Get/Delete operations * api-change:``network-firewall``: Network Firewall now introduces Reject and Alert action support for stateful domain list rule groups, providing customers with more granular control over their network traffic. - from version 1.40.38 * api-change:``appstream``: G6f instance support for AppStream 2.0 * api-change:``cloudwatch``: Fix default dualstack FIPS endpoints in AWS GovCloud(US) regions * api-change:``dax``: This release adds support for IPv6-only, DUAL_STACK DAX instances * api-change:``endpoint-rules``: Update endpoint-rules client to latest version * api-change:``kms``: Documentation only updates for KMS. * api-change:``neptune``: Doc-only update to address customer use. - from version 1.40.37 * api-change:``cleanrooms``: Added support for running incremental ID mapping for rule-based workflows. * api-change:``ec2``: Add Amazon EC2 R8gn instance types * api-change:``entityresolution``: Support incremental id mapping workflow for AWS Entity Resolution * api-change:``ssm``: Added Dualstack support to GetDeployablePatchSnapshotForInstance * api-change:``sso-admin``: Add support for encryption at rest with Customer Managed KMS Key in AWS IAM Identity Center * api-change:``sso-oidc``: This release includes exception definition and documentation updates. - from version 1.40.36 * api-change:``batch``: Starting in JAN 2026, AWS Batch will change the default AMI for new Amazon ECS compute environments from Amazon Linux 2 to Amazon Linux 2023. We recommend migrating AWS Batch Amazon ECS compute environments to Amazon Linux 2023 to maintain optimal performance and security. * api-change:``eks``: Adds support for RepairConfig overrides and configurations in EKS Managed Node Groups. * api-change:``imagebuilder``: Version ARNs are no longer required for the EC2 Image Builder list-image-build-version, list-component-build-version, and list-workflow-build-version APIs. Calling these APIs without the ARN returns all build versions for the given resource type in the requesting account. - from version 1.40.35 * api-change:``bedrock-agentcore-control``: Add tagging and VPC support to AgentCore Runtime, Code Interpreter, and Browser resources. Add support for configuring request headers in Runtime. Fix AgentCore Runtime shape names. * api-change:``config``: Add UNKNOWN state to RemediationExecutionState and add IN_PROGRESS/EXITED/UNKNOWN states to RemediationExecutionStepState. * api-change:``connect``: This release adds a persistent connection field to UserPhoneConfig that maintains agent's softphone media connection for faster call connections. * api-change:``kendra-ranking``: Model whitespace change - no client difference * api-change:``license-manager-user-subscriptions``: Added support for cross-account Active Directories. * api-change:``medialive``: Add MinBitrate for QVBR mode under H264/H265/AV1 output codec. Add GopBReference, GopNumBFrames, SubGopLength fields under H265 output codec. * api-change:``sms-voice``: Updated the ``sms-voice`` client to the latest version. Note: this client is maintained only for backwards compatibility and should not be used for new development. We recommend using the ``pinpoint-sms-voice`` client for full support and ongoing updates. * api-change:``sqs``: Update invalid character handling documentation for SQS SendMessage API - from version 1.40.34 * api-change:``bedrock``: Release includes an increase to the maximum policy build document size, an update to DeleteAutomatedReasoningPolicyBuildWorkflow to add ResourceInUseException, and corrections to UpdateAutomatedReasoningPolicyTestCaseRequest. * api-change:``budgets``: Added BillingViewHealthStatus Exception which is thrown when a Budget is created or updated with a Billing View that is not in the HEALTHY status * api-change:``chime-sdk-messaging``: Amazon Chime SDK Messaging GetMessagingSessionEndpoint API now returns dual-stack WebSocket endpoints supporting IPv4/IPv6. * api-change:``ec2``: Allowed AMIs adds support for four new parameters - marketplaceProductCodes, deprecationTimeCondition, creationDateCondition and imageNames - from version 1.40.33 * api-change:``ec2``: Add mac-m4.metal and mac-m4pro.metal instance types. * api-change:``network-firewall``: Network Firewall now prevents TLS handshakes with the target server until after the Server Name Indication (SNI) has been seen and verified. The monitoring dashboard now provides deeper insights into PrivateLink endpoint candidates and offers filters based on IP addresses and protocol. * api-change:``pcs``: Add support for Amazon EC2 Capacity Blocks for ML - Update to 1.40.32 * api-change:``budgets``: [``botocore``] Add support for custom time periods in budget configuration * api-change:``ivs-realtime``: [``botocore``] IVS now offers customers the ability to control the positioning of participants in both grid and PiP layouts based on custom attribute values in participant tokens. * api-change:``logs``: [``botocore``] Cloudwatch Logs added support for 2 new API parameters in metric and subscription filter APIs to filter log events based on system field values and emit system field values as dimensions and send them to customer destination as additional metadata. * api-change:``osis``: [``botocore``] Adds support for cross-account ingestion for push-based sources. This includes resource policies for sharing pipelines across accounts and features for managing pipeline endpoints which enable accessing pipelines across different VPCs, including VPCs in other accounts. - Update to 1.40.31 * api-change:``ce``: Added endpoint support for eusc-de-east-1 region. * api-change:``medical-imaging``: Added support for OpenID Connect (OIDC) custom authorizer * api-change:``observabilityadmin``: CloudWatch Observability Admin adds the ability to enable telemetry centralization in customers' Organizations. The release introduces new APIs to manage centralization rules, which define settings to replicate telemetry data to a central destination in the customers' Organization. * api-change:``s3control``: Introduce three new encryption filters: EncryptionType (SSE-S3, SSE-KMS, DSSE-KMS, SSE-C, NOT-SSE), KmsKeyArn (for SSE-KMS and DSSE-KMS), and BucketKeyEnabled (for SSE-KMS). * api-change:``sms``: The sms client has been removed following the deprecation of the service. - from version 1.40.30 * api-change:``payment-cryptography``: Add support for certificates to be signed by 3rd party certificate authorities. New API GetCertificateSigningRequest API and support for providing certificates at run-time for tr-34 import/export - from version 1.40.29 * api-change:``amp``: Add Vended Logs APIs for Amazon Prometheus Managed Collector * api-change:``datazone``: adding IAM principal id to IAM user profile details * api-change:``ecs``: This release supports hook details for Amazon ECS lifecycle hooks. * api-change:``emr-containers``: Added nodeLabel support in container provider to aid hardware isolation support for virtual cluster and security configuration. * api-change:``evs``: CreateEnvironment API now supports parameters (isHcxPublic & hcxNetworkAclId) for HCX migration via public internet, adding flexibility for migration scenarios. New APIs have been added for associating (AssociateEipToVlan) & disassociating (DisassociateEipFromVlan) Elastic IP (EIP) addresses. * api-change:``guardduty``: Updated Java SDK implementation of entity set status in GuardDuty API. * api-change:``medialive``: AWS Elemental MediaLive adds a new feature in MediaPackage output group that enables MediaPackage V2 users to control HLS-related parameters directly in MediaLive. These parameter settings are then reflected in MediaPackage outputs, providing more streamlined control over HLS configurations. * api-change:``quicksight``: This release adds support for Account level custom permissions, additional Dashboard Options, and Null support for Q&A. * api-change:``rds``: Adds support for end-to-end IAM authentication in RDS Proxy for MySQL, MariaDB, and PostgreSQL engines. - from version 1.40.28 * api-change:``networkflowmonitor``: Added new enum value (AWS::Region) for type field under MonitorLocalResource and MonitorRemoteResource. Workload Insights and Monitor top contributors queries now support a new DestinationCategory (INTER_REGION). * api-change:``payment-cryptography``: AWS Payment Cryptography Service now supports Multi-Region key replication. Customers can choose to automatically distribute keys across AWS Regions. - from version 1.40.27 * api-change:``autoscaling``: Added WaitForTransitioningInstances parameter to the CancelInstanceRefresh API, allowing the caller to cancel an instance refresh without waiting for on-going launches and terminations. * api-change:``cloudwatch``: Added a new API - DescribeAlarmContributors API, to retrieve alarm contributors in ALARM state. Added support in DescribeAlarmHistory API to query alarm contributor history * api-change:``connect``: SDK release for user defined predefined attributes. * api-change:``datazone``: Adds support for custom blueprints * api-change:``mediapackagev2``: Added CUE tag SCTE output to MediaPackageV2 HLS and LL-HLS manifests. * api-change:``organizations``: Documentation updates for AWS Organizations APIs. * api-change:``sagemaker``: Released IPv6 support with dual-stack domain options on SageMaker Studio and introduced support for p6-b200.48xlarge instance type on SageMaker Studio for JupyterLab and CodeEditor applications. - from version 1.40.26 * api-change:``iotsitewise``: Add ComputationModelVersion support in IoT SiteWise APIs * api-change:``s3``: This release includes backward compatibility work on the "Expires" parameter. * api-change:``securityhub``: This release adds the RESOURCE_NOT_FOUND error code as a possible value in responses to the following operations: BatchGetStandardsControlAssociations, BatchUpdateStandardsControlAssociations, and BatchGetSecurityControls. - Update to 1.40.25 * api-change:``ecs``: This is a documentation only release that adds additional information for Amazon ECS Availability Zone rebalancing. * api-change:``pcs``: Documentation-only update to add AccountingStorageEnforce to SlurmCustomSetting. * api-change:``sagemaker``: Release IPv6 support with dualstack in SageMaker Notebooks, Tiered Storage Checkpointing Support in SageMaker HyperPod and P5.4xlarge instance type for SageMaker Hosting. - from version 1.40.24 * api-change:``cleanrooms``: Add support for configurable compute sizes for PySpark jobs. * api-change:``cloudformation``: ListHookResults API now supports retrieving invocation results for all CloudFormation Hooks (previously limited to create change set and Cloud Control operations) with new optional parameters for filtering by Hook status and ARN. * api-change:``ec2``: Add m8i, m8i-flex and i8ge instance types. * api-change:``opensearchserverless``: Add support for Federal Information Processing Standards (FIPS) and Federal Risk and Authorization Management Program (FedRAMP) compliance * api-change:``rds``: Added new EndpointNetworkType and TargetConnectionNetworkType fields in Proxy APIs to support IPv6 * api-change:``verifiedpermissions``: Amazon Verified Permissions / Features : Adds support for datetime and duration attribute values. - from version 1.40.23 * api-change:``cleanrooms``: Added support for adding new data provider members to an existing collaboration. * api-change:``cleanroomsml``: AWS Clean Rooms ML adds log sanitization for privacy-enhanced error summaries, supports new instance types for custom models providing better performance and lower costs, and deprecates P3-series instances. * api-change:``cloudfront``: Adding an optional field IpAddressType in CustomOriginConfig * api-change:``mq``: Add CONFIG_MANAGED as a supported AuthenticationStrategy for Amazon MQ for RabbitMQ brokers. Make username and password optional on broker creation for CONFIG_MANAGED brokers. * api-change:``rds``: This release adds support for MasterUserAuthenticationType parameter on CreateDBInstance, ModifyDBInstance, CreateDBCluster, and ModifyDBCluster operations. * api-change:``route53``: Amazon Route 53 now supports the Asia Pacific (New Zealand) Region (ap-southeast-6) for latency records, geoproximity records, and private DNS for Amazon VPCs in that region. * api-change:``route53domains``: Added new ExtraParams AU_ELIGIBILITY_TYPE, AU_POLICY_REASON, and AU_REGISTRANT_NAME - from version 1.40.22 * api-change:``ec2``: MaximumEbsAttachments and AttachmentLimitType fields added to DescribeInstanceTypesResponse. G6f, Gr6f, R8i, R8i-flex and p5.4xlarge instance types added to InstanceTypes enum. * api-change:``neptune``: Removed the deprecated marker from publiclyAccessible parameter from DbInstance, CreateDbInstance and ModifyDbInstance and added relevant usage information for the parameter. * api-change:``notifications``: Added Org support for notifications: - `ListMemberAccounts` gets member accounts list, `AssociateOrganizationalUnit` links OU to notification configuration, `DisassociateOrganizationalUnit` removes OU from notification configuration, `ListOrganizationalUnits` shows OUs configured for notifications. * api-change:``workmail``: Make RoleArn an optional parameter for the PutEmailMonitoringConfiguration API, and add UnsupportedOperationException to RegisterToWorkMail. - from version 1.40.21 * api-change:``bedrock-runtime``: Fixed stop sequence limit for converse API. * api-change:``ec2``: Release shows new route types such as filtered and advertisement. * api-change:``xray``: AWS X-Ray Features: Support Sampling Rate Boost On Anomaly - from version 1.40.20 * api-change:``applicationcostprofiler``: Remove incorrect endpoint tests * api-change:``apprunner``: Doc only updates for APIs and and datatypes related to IPAddressType and Subnets for IPv6 dualstack support. * api-change:``autoscaling-plans``: Remove incorrect endpoint tests * api-change:``cloud9``: Remove incorrect endpoint tests * api-change:``cloudhsmv2``: Remove incorrect endpoint tests * api-change:``cloudsearchdomain``: Remove incorrect endpoint tests * api-change:``codedeploy``: Remove incorrect endpoint tests * api-change:``codeguru-reviewer``: Remove incorrect endpoint tests * api-change:``connect``: AgentStatusDrillDown feature in GetCurrentMetricData API. Adding AGENT_STATUS as filter and grouping in GetCurrentMetricData API * api-change:``databrew``: Remove incorrect endpoint tests * api-change:``dynamodb``: Remove incorrect endpoint tests * api-change:``ec2``: This release adds support for copying Amazon EBS snapshot and AMIs to and from Local Zones. * api-change:``ec2-instance-connect``: Remove incorrect endpoint tests * api-change:``endpoint-rules``: Update endpoint-rules client to latest version * api-change:``fis``: Remove incorrect endpoint tests * api-change:``fms``: Remove incorrect endpoint tests * api-change:``geo-maps``: Remove incorrect endpoint tests * api-change:``glue``: Adding support to fetch TargetDatabase field during GetDatabases with AttributesToGet * api-change:``healthlake``: Add ValidationLevel parameter to StartFHIRImportJob API, allowing users to specify a FHIR validation level for their asynchronous import jobs. * api-change:``machinelearning``: Remove incorrect endpoint tests * api-change:``mediastore-data``: Remove incorrect endpoint tests * api-change:``mturk``: Remove incorrect endpoint tests * api-change:``omics``: Adds Amazon ECR pull through cache support to AWS HealthOmics, so you can more easily use container images from external sources. * api-change:``osis``: Remove incorrect endpoint tests * api-change:``pinpoint-sms-voice``: Remove incorrect endpoint tests * api-change:``rds``: Added RDS HTTP Endpoint feature support flag to DescribeOrderableDBInstanceOptions API * api-change:``route53domains``: Remove incorrect endpoint tests * api-change:``savingsplans``: Remove incorrect endpoint tests * api-change:``scheduler``: Remove incorrect endpoint tests * api-change:``ses``: Remove incorrect endpoint tests * api-change:``ssm-sap``: Added support for Configuration Checks on SAP HANA Applications. * api-change:``sso``: Remove incorrect endpoint tests * api-change:``timestream-query``: Remove incorrect endpoint tests * api-change:``waf``: Remove incorrect endpoint tests * api-change:``workmailmessageflow``: Remove incorrect endpoint tests * api-change:``xray``: Remove incorrect endpoint tests - from version 1.40.19 * api-change:``amplifybackend``: Remove incorrect endpoint tests * api-change:``application-insights``: Remove incorrect endpoint tests * api-change:``batch``: Added ECS_AL2023_NVIDIA as an option for Ec2Configuration.imageType. * api-change:``chime``: Remove incorrect endpoint tests * api-change:``chime-sdk-identity``: Remove incorrect endpoint tests * api-change:``chime-sdk-meetings``: Remove incorrect endpoint tests * api-change:``chime-sdk-voice``: Remove incorrect endpoint tests * api-change:``codeguruprofiler``: Remove incorrect endpoint tests * api-change:``datapipeline``: Remove incorrect endpoint tests * api-change:``discovery``: Remove incorrect endpoint tests * api-change:``ds``: Add APIs for CA AutoEnrollment support: DescribeCAEnrollmentPolicy, EnableCAEnrollmentPolicy and DisableCAEnrollmentPolicy. * api-change:``eks``: Add support for on-demand refresh of EKS cluster insights * api-change:``elasticache``: Remove incorrect endpoint tests * api-change:``endpoint-rules``: Update endpoint-rules client to latest version * api-change:``evidently``: Remove incorrect endpoint tests * api-change:``frauddetector``: Remove incorrect endpoint tests * api-change:``inspector``: Remove incorrect endpoint tests * api-change:``kinesisvideo``: Remove incorrect endpoint tests * api-change:``kinesis-video-media``: Remove incorrect endpoint tests * api-change:``lakeformation``: Remove incorrect endpoint tests * api-change:``lex-models``: Remove incorrect endpoint tests * api-change:``migrationhub-config``: Remove incorrect endpoint tests * api-change:``neptune-graph``: Add StartGraph and StopGraph operations to Neptune Analytics * api-change:``opsworks``: The opsworks client has been removed following the deprecation of the service. * api-change:``opsworkscm``: The opsworkscm client has been removed following the deprecation of the service. * api-change:``personalize``: Remove incorrect endpoint tests * api-change:``pi``: Remove incorrect endpoint tests * api-change:``qldb-session``: Remove incorrect endpoint tests * api-change:``redshift``: Remove incorrect endpoint tests * api-change:``robomaker``: Remove incorrect endpoint tests * api-change:``sagemaker``: This release adds support for AutoScaling on SageMaker HyperPod. * api-change:``schemas``: Remove incorrect endpoint tests * api-change:``snow-device-management``: Remove incorrect endpoint tests * api-change:``timestream-write``: Remove incorrect endpoint tests * api-change:``voice-id``: Remove incorrect endpoint tests * api-change:``workdocs``: Remove incorrect endpoint tests * api-change:``workmail``: Remove incorrect endpoint tests - from version 1.40.18 * api-change:``apprunner``: Remove incorrect endpoint tests * api-change:``arc-zonal-shift``: This release adds new API options to enable allowed windows and multiple alarms for practice runs. * api-change:``codecommit``: Remove incorrect endpoint tests * api-change:``codestar-connections``: Remove incorrect endpoint tests * api-change:``comprehendmedical``: Remove incorrect endpoint tests * api-change:``connectparticipant``: Amazon Connect Participant Service: Remove unused fields from WebRTCConnection * api-change:``dlm``: Remove incorrect endpoint tests * api-change:``ec2``: Add new APIs for viewing how your shared AMIs are used by other accounts, and identify resources in your account that are dependent on particular AMIs * api-change:``elastictranscoder``: Remove incorrect endpoint tests * api-change:``endpoint-rules``: Update endpoint-rules client to latest version * api-change:``finspace``: Remove incorrect endpoint tests * api-change:``geo-routes``: Added RouteFerryNotice PotentialViolatedVehicleRestrictionUsage value for CalculateRoutes. This value indicates when the Route is potentially forbidden for the given vehicle profile. * api-change:``glacier``: Remove incorrect endpoint tests * api-change:``globalaccelerator``: Remove incorrect endpoint tests * api-change:``greengrass``: Remove incorrect endpoint tests * api-change:``identitystore``: Remove incorrect endpoint tests * api-change:``imagebuilder``: Remove incorrect endpoint tests * api-change:``iotsecuretunneling``: Remove incorrect endpoint tests * api-change:``kafka``: Remove incorrect endpoint tests * api-change:``lookoutvision``: Remove incorrect endpoint tests * api-change:``mgh``: Remove incorrect endpoint tests * api-change:``migration-hub-refactor-spaces``: Remove incorrect endpoint tests * api-change:``mq``: Remove incorrect endpoint tests * api-change:``personalize-events``: Remove incorrect endpoint tests * api-change:``pinpoint``: Remove incorrect endpoint tests * api-change:``ram``: Remove incorrect endpoint tests * api-change:``rbin``: Remove incorrect endpoint tests * api-change:``route53-recovery-cluster``: Remove incorrect endpoint tests * api-change:``sagemaker-geospatial``: Remove incorrect endpoint tests * api-change:``servicecatalog-appregistry``: Remove incorrect endpoint tests * api-change:``signer``: Remove incorrect endpoint tests * api-change:``waf-regional``: Remove incorrect endpoint tests - from version 1.40.17 * api-change:``appflow``: Remove incorrect endpoint tests * api-change:``b2bi``: Updated APIs to support custom validation rules. * api-change:``chime-sdk-media-pipelines``: Remove incorrect endpoint tests * api-change:``chime-sdk-messaging``: Remove incorrect endpoint tests * api-change:``cloudsearch``: Remove incorrect endpoint tests * api-change:``cloudtrail-data``: Remove incorrect endpoint tests * api-change:``codeartifact``: Remove incorrect endpoint tests * api-change:``codeguru-security``: Documentation update to notify users of the discontinuation of Amazon CodeGuru Security. * api-change:``codestar-notifications``: Remove incorrect endpoint tests * api-change:``cur``: Remove incorrect endpoint tests * api-change:``datazone``: Releasing the following features - Asset classification that lets users use restricted terms for classifying assets if they have the right permissions. Also adding a new enum value "Moving" to project status. * api-change:``dax``: Remove incorrect endpoint tests * api-change:``devops-guru``: Remove incorrect endpoint tests * api-change:``ec2``: Added IPv6 support for AWS Client VPN. * api-change:``emr-containers``: Remove incorrect endpoint tests * api-change:``endpoint-rules``: Update endpoint-rules client to latest version * api-change:``finspace-data``: Remove incorrect endpoint tests * api-change:``forecast``: Remove incorrect endpoint tests * api-change:``iotfleethub``: Remove incorrect endpoint tests * api-change:``kendra``: Remove incorrect endpoint tests * api-change:``kinesisanalytics``: Remove incorrect endpoint tests * api-change:``kinesis-video-archived-media``: Remove incorrect endpoint tests * api-change:``lex-runtime``: Remove incorrect endpoint tests * api-change:``lookoutequipment``: Remove incorrect endpoint tests * api-change:``mediaconvert``: This release adds support for input rendition selection for HLS input, adds new Share API to enable sharing jobs with AWS Support for support investigations, and adds INCLUDE_AS_TS to iFrameOnlyManifest setting for HLS outputs. * api-change:``mediapackage-vod``: Remove incorrect endpoint tests * api-change:``mediastore``: Remove incorrect endpoint tests * api-change:``personalize-runtime``: Remove incorrect endpoint tests * api-change:``qbusiness``: The Amazon Q Business GetDocumentContent operation now supports retrieval of the extracted text content in JSON format. * api-change:``resourcegroupstaggingapi``: Remove incorrect endpoint tests * api-change:``sagemaker-edge``: Remove incorrect endpoint tests * api-change:``sagemaker-featurestore-runtime``: Remove incorrect endpoint tests * api-change:``sagemaker-runtime``: Remove incorrect endpoint tests * api-change:``serverlessrepo``: Remove incorrect endpoint tests * api-change:``shield``: Remove incorrect endpoint tests * api-change:``snowball``: Remove incorrect endpoint tests * api-change:``sqs``: Documentation update for Amazon SQS Supports Large Payload Message feature * api-change:``support``: Remove incorrect endpoint tests * api-change:``support-app``: Remove incorrect endpoint tests * api-change:``timestream-influxdb``: Add MAINTENANCE status for DbInstance and DbCluster * api-change:``translate``: Remove incorrect endpoint tests * api-change:``wellarchitected``: Remove incorrect endpoint tests - from version 1.40.16 * api-change:``clouddirectory``: Remove incorrect endpoint tests * api-change:``cognito-sync``: Remove incorrect endpoint tests * api-change:``docdb``: Remove incorrect endpoint tests * api-change:``elb``: Remove incorrect endpoint tests * api-change:``endpoint-rules``: Update endpoint-rules client to latest version * api-change:``healthlake``: Remove incorrect endpoint tests * api-change:``iotanalytics``: Remove incorrect endpoint tests * api-change:``macie2``: Remove incorrect endpoint tests * api-change:``marketplacecommerceanalytics``: Remove incorrect endpoint tests * api-change:``medialive``: AWS Elemental MediaLive now has a field called "SubtitleRows" for controlling subtitle row count for DVB-Sub and Burn-In captions outputs * api-change:``memorydb``: Remove incorrect endpoint tests * api-change:``proton``: Remove incorrect endpoint tests * api-change:``qconnect``: Releasing model ID support for UpdateAIPrompt * api-change:``qldb``: Remove incorrect endpoint tests * api-change:``rds``: Updates Amazon RDS documentation for Db2 read-only replicas. * api-change:``route53-recovery-readiness``: Remove incorrect endpoint tests * api-change:``sagemaker``: Launch SageMaker Notebook Instances support for AL2023 along with P6-B200 instance type and Rootless Docker support for SageMaker Studio. * api-change:``sagemaker-a2i-runtime``: Remove incorrect endpoint tests * api-change:``simspaceweaver``: Remove incorrect endpoint tests * api-change:``synthetics``: Added multi browser support for synthetics canaries, Increased ephemeral storage limit from 5GB to 10GB * api-change:``wafv2``: test and verified, safe to release - from version 1.40.15 * api-change:``apigatewaymanagementapi``: Remove incorrect endpoint tests * api-change:``appfabric``: Remove incorrect endpoint tests * api-change:``backup-gateway``: Remove incorrect endpoint tests * api-change:``cloudhsm``: Remove incorrect endpoint tests * api-change:``cognito-identity``: Remove incorrect endpoint tests * api-change:``comprehend``: Remove incorrect endpoint tests * api-change:``ebs``: Remove incorrect endpoint tests * api-change:``ecr-public``: Remove incorrect endpoint tests * api-change:``ecs``: This is a documentation only release that adds additional information for the update-service request parameters. * api-change:``elasticbeanstalk``: Remove incorrect endpoint tests * api-change:``endpoint-rules``: Update endpoint-rules client to latest version * api-change:``es``: Remove incorrect endpoint tests * api-change:``forecastquery``: Remove incorrect endpoint tests * api-change:``gameliftstreams``: The default application in a stream group can now be changed at any time using UpdateStreamGroup to update the DefaultApplicationIdentifier. * api-change:``glue``: Added support for preprocessing queries in Data Quality operations through new DataQualityGlueTable structure. * api-change:``greengrassv2``: Remove incorrect endpoint tests * api-change:``guardduty``: Remove Pattern trait from email field * api-change:``iotdeviceadvisor``: Remove incorrect endpoint tests * api-change:``iotevents``: Remove incorrect endpoint tests * api-change:``iotevents-data``: Remove incorrect endpoint tests * api-change:``iotthingsgraph``: Remove incorrect endpoint tests * api-change:``kinesis-video-signaling``: Remove incorrect endpoint tests * api-change:``lexv2-runtime``: Remove incorrect endpoint tests * api-change:``lookoutmetrics``: Remove incorrect endpoint tests * api-change:``managedblockchain``: Remove incorrect endpoint tests * api-change:``mediapackage``: Remove incorrect endpoint tests * api-change:``panorama``: Remove incorrect endpoint tests * api-change:``pinpoint-email``: Remove incorrect endpoint tests * api-change:``resource-groups``: Remove incorrect endpoint tests * api-change:``s3outposts``: Remove incorrect endpoint tests * api-change:``ssm-contacts``: Doc-only updates for Incident Manager Contacts August 2025 - from version 1.40.14 * api-change:``bedrock-runtime``: Launch CountTokens API to allow token counting * api-change:``billing``: Clarify IPv4 and IPv6 endpoints * api-change:``cognito-idp``: This release adds support for the new Terms APIs which allow displaying Terms of Use and Privacy Policy on the Managed Login user-registration page. * api-change:``datazone``: This release supports policy grant identifier for cloud formation integration * api-change:``detective``: Remove incorrect endpoint tests * api-change:``dynamodb``: Remove incorrect endpoint tests * api-change:``eks``: EKS Add-ons Custom Namespace Support * api-change:``endpoint-rules``: Update endpoint-rules client to latest version * api-change:``kinesisanalyticsv2``: Adds Key Management Service (KMS) support allowing customer-managed key (CMK) encryption for Flink application data. * api-change:``pinpoint-sms-voice-v2``: This change added InternationalSendingEnbaled as part of describe/Update/Request phone number API response, and as part of update/Request phone number API request * api-change:``route53-recovery-control-config``: Remove incorrect endpoint tests * api-change:``sagemaker``: This release adds 1/ Launch ml.p5.4xlarge instance in Processing jobs, Training jobs and Training Plan 2/ Makes S3Uri to be required for S3FileSystem and S3FileSystemConfig. - from version 1.40.13 * api-change:``cleanrooms``: Support error message configuration for analysis templates * api-change:``ec2``: Add support for "warning" volume status. * api-change:``polly``: Added support for new output format - Opus. - from version 1.40.12 * api-change:``batch``: Added default_x86_64 and default_arm64 as values to the instanceTypes field. * api-change:``bcm-dashboards``: Billing and Cost Management Dashboards enables users to create dashboards that combine multiple visualizations of cost and usage data. Users can create, manage, and share dashboards. Tags are also available for dashboards. * api-change:``connect``: Amazon Connect Service Feature: Add support to enable multi-user in-app, web, and video calling. * api-change:``connectparticipant``: Amazon Connect Service Feature: Add support to enable multi-user in-app, web, and video calling. * api-change:``endpoint-rules``: Update endpoint-rules client to latest version * api-change:``s3control``: Adds support for Compute checksum functionality in Amazon S3 Batch Operations. You can now calculate checksums for a list of objects using supported algorithms in Amazon S3, without requiring a restore or download * api-change:``sagemaker``: Customer managed keys now available for volume encryption of SageMaker HyperPod clusters. * enhancement:AWSCRT: Update awscrt version to 0.27.6 - from version 1.40.11 * api-change:``amp``: Add Resource-based Policy APIs for Amazon Prometheus * api-change:``bedrock-agent``: This release adds support for saving Bedrock Flows while node configuration is still in progress, even if the Flow is not yet able to be invoked * api-change:``glue``: AWS Glue Zero ETL now supports On-demand snapshot load - from version 1.40.10 * api-change:``arc-region-switch``: Endpoint rule test and documentation update. * api-change:``bcm-recommended-actions``: Initial SDK release for AWS Billing and Cost Management Recommended Actions. * api-change:``directconnect``: Added pagination support for DescribeHostedConnections, DescribeVirtualInterfaces, DescribeConnections, DescribeInterconnects, DescribeLags. Added asnLong support for BGP peer operations which supports a large range. * api-change:``dynamodb``: This release 1/ Adds support for throttled keys mode for CloudWatch Contributor Insights, 2/ Adds throttling reasons to exceptions across dataplane APIs. 3/ Explicitly models ThrottlingException as a class in statically typed languages. Refer to the launch day blog post for more details. * api-change:``ec2``: This release adds ModifyInstanceConnectEndpoint API to update configurations on existing EC2 Instance Connect Endpoints and improves IPv6 support through dualstack DNS names for EC2 Instance Connect Endpoints. * api-change:``endpoint-rules``: Update endpoint-rules client to latest version * api-change:``fsx``: Amazon FSx for NetApp ONTAP 2nd generation file systems now support decreasing SSD storage capacity. * api-change:``glue``: AWS Glue now supports Trusted Identity Propagation. * api-change:``guardduty``: Added support for entity lists. * api-change:``medialive``: CMAF Ingest output groups in MediaLive can now accept one additional destination url for single pipeline channels and up to two additional destination urls for standard channels. * api-change:``pcs``: Updated the regex pattern and description of iamInstanceProfileArn in the CreateComputeNodeGroup and UpdateComputeNodeGroup API actions. Name and path requirements apply to the ARN of the IAM role associated with the instance profile and not the ARN of the instance profile. * api-change:``qapps``: Documentation update for Amazon Q Apps API Reference * api-change:``servicediscovery``: Added support for cross account through Id parameter overloading with ARN and allow owner account for some APIs instead of ARN * api-change:``workspaces``: New APIs introduced to import WorkSpaces BYOL image using a new process that leveraged EC2 Image Builder. WorkSpaces tests and fixes your image's compatibility issues and supports customized VM images. - from version 1.40.9 * api-change:``braket``: Add support for Braket program sets. * api-change:``datazone``: Adds support for account pools and project profile account decoupling * api-change:``fsx``: Add Dual-Stack support for Amazon FSx for OpenZFS file systems * api-change:``partnercentral-selling``: Add Tagging Support for Opportunity resources * api-change:``sagemaker``: This release introduces compute quota for GPU, Trainium accelerators, vCPU, and vCPU memory utilization across teams in HyperPod clusters * api-change:``security-ir``: Added support for Organizational Unit-level Membership configuration and the ability to resume a cancelled membership. - from version 1.40.8 * api-change:``backupsearch``: Using recommended smithy trait to generate regional endpoints for Backup Search * api-change:``codebuild``: AWS CodeBuild now supports PullRequestBuildPolicy in webhook object. * api-change:``ec2``: Release to allow route table association with a PublicIpv4Pool. * api-change:``organizations``: This release introduces 2 new APIs in Organizations: 1. ListAccountsWithInvalidEffectivePolicy 2. ListEffectivePolicyValidationErrors * api-change:``sagemaker``: IAM Identity Center trusted identity propagation is now supported in SageMaker Studio. * api-change:``transcribe``: AWS HealthScribe now supports specifying preferred patient pronouns through the MedicalScribeContext parameter for use in the generated clinical notes. - from version 1.40.7 * api-change:``bedrock``: This release includes model updates and enhanced SDK documentation for union fields in automated reasoning policy components. Added docs cover policy definitions, mutations (add/update for rules/types/variables), build assets, workflow sources, test results, and tag exception handling. * api-change:``cognito-idp``: Remove SigV4 auth requirement for GetTokensFromRefreshToken * api-change:``connect``: Updating SearchUserHierarchyGroups API * api-change:``deadline``: Adds support for Wait and Save feature in service-managed fleets * api-change:``ec2``: This release adds AvailabilityZoneId support for CreateVolume, DescribeVolume, LaunchTemplates, RunInstances, DescribeInstances, CreateDefaultSubnet, SpotInstances, and CreateDefaultSubnet APIs. * api-change:``evs``: Update for general availability of Amazon Elastic VMware Service (EVS). * api-change:``lambda``: Doc-only update for Lambda that updates the maximum payload size for response streaming invocations to 200 MB. * api-change:``quicksight``: Add RowAxisDisplayOptions and ColumnAxisDisplayOptions to HeatMapConfiguration, add Actions to PluginVisual, increase limit for CalculatedFields list * api-change:``sso-admin``: Added support for managing user background session for applications - from version 1.40.6 * api-change:``connect``: This release adds a new API GetContactMetrics for Amazon Connect. * api-change:``inspector2``: Add CVSSV4 to Vulnerability Search API and update enable/disable account id list length to 5 * api-change:``iot-data``: Adding DeleteConnection API to IoT Data Plane * api-change:``sagemaker``: Adds support for GB200 UltraServers in Amazon SageMaker training jobs, training plans, and HyperPod clusters * api-change:``transcribe``: Update documentation to use key ARN only in OutputEncryptionKMSKeyId request parameter * bugfix:stub: Fixes a bug which causes the stubber to begin failing for DynamoDB when SSO or AssumeRole credentials fail to load - from version 1.40.5 * api-change:``batch``: This feature allows customers to use AWS Batch with Linux with ARM64 CPU Architecture with Fargate Spot compute support. * api-change:``cloudfront``: Added new viewer security policy, TLSv1.3_2025, for CloudFront. * api-change:``codebuild``: AWS CodeBuild now supports comment-based pull request control. * api-change:``gameliftstreams``: Adds Proton 9.0-2 to the list of runtime environment options available when creating an Amazon GameLift Streams application * api-change:``glue``: AWS Glue Data Catalog now supports Iceberg Optimization settings at the Catalog level, and supports new options to control the optimization job run rate. * api-change:``guardduty``: Added support for VPC owner account ID associated with DNS request in the GuardDuty finding. - from version 1.40.4 * api-change:``appstream``: Added support for G6 instances * api-change:``budgets``: Adds support for billing views. Billing views let you control access to cost and usage data through an AWS resource, streamlining the process of sharing cost and usage data across account boundaries. With this release, you can now create and view budgets based on billing views. * api-change:``ec2``: Mark Elastic Inference Accelerators and Elastic Graphics Processor parameters as deprecated on the RunInstances and LaunchTemplate APIs. * api-change:``opensearchserverless``: Features: add Index APIs in OpenSearchServerless to support managed semantic enrichment * api-change:``qbusiness``: Amazon Q Business now supports the GetDocumentContent() API that enables customers to securely access the source documents through clickable citation links at query time - from version 1.40.3 * api-change:``bedrock``: This release introduces Automated Reasoning checks for Amazon Bedrock Guardrails. The feature adds new APIs for policy building, refinement, version management, and testing. Guardrail APIs now support Automated Reasoning policy configuration and validation output. * api-change:``bedrock-runtime``: This release adds support for Automated Reasoning checks output models for the Amazon Bedrock Guardrails ApplyGuardrail API. * api-change:``eks``: Add support for deletion protection on EKS clusters * api-change:``rds``: Adds a new Aurora Serverless v2 attribute to the DBCluster resource to expose the platform version. Also updates the attribute to be part of both the engine version and platform version descriptions. * api-change:``sagemaker``: Add support for SageMaker Hyperpod continuous scaling and custom AMI; Introduce new APIs: ListClusterEvents, DescribeClusterEvent, BatchAddClusterNodes - from version 1.40.2 * api-change:``bedrock-agentcore``: Remove superfluous field from API * api-change:``codeconnections``: New integration with Azure DevOps provider type. * api-change:``evs``: TagResource API now throws ServiceQuotaExceededException when the number of tags on the Amazon EVS resource exceeds the maximum allowed. TooManyTagsException is deprecated. * api-change:``iotsitewise``: Support Interface for IoT SiteWise Asset Modeling * api-change:``sagemaker``: This release adds the ability for customers to attach and detach their EBS volumes to EKS-orchestrated HyperPod cluster nodes. - from version 1.40.1 * api-change:``acm-pca``: Doc-only update to add more information to GetCertificate action. * api-change:``aiops``: This release includes fix for InvestigationGroup timestamp conversion issue. * api-change:``arc-region-switch``: This is the initial SDK release for Region switch * api-change:``auditmanager``: Added a note to Framework APIs (CreateAssessmentFramework, GetAssessmentFramework, UpdateAssessmentFramework) clarifying that the Controls object returns a partial response when called through Framework APIs. Added documentation that the Framework's controlSources parameter is no longer supported. * api-change:``lightsail``: This release adds support for the Asia Pacific (Jakarta) (ap-southeast-3) Region. * api-change:``observabilityadmin``: CloudWatch Observability Admin adds the ability to enable telemetry on AWS resources such as Amazon VPCs (Flow Logs) in customers AWS Accounts and Organizations. The release introduces new APIs to manage telemetry rules, which define telemetry settings to be applied on AWS resources. * api-change:``pcs``: Add support for IPv6 Networking for Clusters. * api-change:``securityhub``: Release new resource detail type CodeRepository * api-change:``sns``: Amazon SNS support for Amazon SQS fair queues - from version 1.40.0 * api-change:``customer-profiles``: The release updates standard profile with 2 new fields that supports account-level engagement. Updated APIs include CreateProfile, UpdateProfile, MergeProfiles, SearchProfiles, BatchGetProfile, GetSegmentMembership, CreateSegmentDefinition, CreateSegmentEstimate. * api-change:``ec2``: Added support for the force option for the EC2 instance terminate command. This feature enables customers to recover resources associated with an instance stuck in the shutting-down state as a result of rare issues caused by a frozen operating system or an underlying hardware problem. * api-change:``elbv2``: This release enables secondary IP addresses for Network Load Balancers. * api-change:``entityresolution``: Add support for creating advanced rule-based matching workflows in AWS Entity Resolution. * api-change:``glue``: Added support for Route node, S3 Iceberg sources/targets, catalog Iceberg sources, DynamoDB ELT connector, AutoDataQuality evaluation, enhanced PII detection with redaction, Kinesis fan-out support, and new R-series worker types. * api-change:``inspector2``: Extend usage to include agentless hours and add CODE_REPOSITORY to aggregation resource type * api-change:``iot``: This release allows AWS IoT Core users to use their own AWS KMS keys for data protection * api-change:``opensearch``: Granular access control support for NEO-SAML with IAMFederation for AOS data source * api-change:``quicksight``: Added Impala connector support * api-change:``s3control``: Add Tags field to CreateAccessPoint * api-change:``sesv2``: This release introduces support for Multi-tenant management * api-change:``workspaces-web``: Added ability to log session activity on a portal to an S3 bucket. * feature:``sts``: Updated the default sts service endpoint from ``legacy`` to ``regional``. This behavior can be overridden using the ``sts_regional_endpoints`` setting in the shared AWS config file or the ``AWS_STS_REGIONAL_ENDPOINTS`` environment variable. - from version 1.39.17 * api-change:``cloudfront``: This release adds new origin timeout options: 1) ResponseCompletionTimeout and 2) OriginReadTimeout (for S3 origins) * api-change:``docdb``: Add support for setting Serverless Scaling Configuration on clusters. * api-change:``ds``: This release adds support for AWS Managed Microsoft AD Hybrid Edition, introducing new operations: StartADAssessment, DescribeADAssessment, ListADAssessments, DeleteADAssessment, CreateHybridAD, UpdateHybridAD, and DescribeHybridADUpdate; and updated existing operation: DescribeDirectories. * api-change:``ec2``: Release to show the next hop IP address for routes propagated by VPC Route Server into VPC route tables. * api-change:``iotwireless``: Added TxPowerIndexMin, TxPowerIndexMax, NbTransMin and NbTransMax params to ServiceProfile. - from version 1.39.16 * api-change:``batch``: AWS Batch for SageMaker Training jobs feature support. Includes new APIs for service job submission (e.g., SubmitServiceJob) and managing service environments (e.g., CreateServiceEnvironment) that enable queueing SageMaker Training jobs. * api-change:``cleanrooms``: This feature provides the ability to update the table reference and allowed columns on an existing configured table. * api-change:``deadline``: Adds support for tag management on monitors. * api-change:``location``: This release 1) adds support for multi-polygon geofences with disconnected territories, and 2) enables polygon exclusion zones within geofences for more accurate representation of real-world boundaries. * api-change:``opensearchserverless``: This is to support Granular access control support for SAML with IAMFedraton in AOSS - from version 1.39.15 * api-change:``directconnect``: Enable MACSec support and features on Interconnects. * api-change:``iotsitewise``: Add support for native anomaly detection in IoT SiteWise using new Computation Model APIs * api-change:``osis``: Add Pipeline Role Arn as an optional parameter to the create / update pipeline APIs as an alternative to passing in the pipeline configuration body * enhancement:``sso``: Updates legacy token auth flow to check if cached legacy tokens are expired according to the local clock. If expired, it will raise an ``UnauthorizedSSOTokenError`` instead of sending an expired token to Identity Center's ``GetRoleCredentials`` API. - from version 1.39.14 * api-change:``appintegrations``: Amazon AppIntegrations introduces new configuration capabilities to enable customers to manage iframe permissions, control application refresh behavior (per contact or per browser/cross-contact), and run background applications (service). * api-change:``budgets``: Adds IPv6 and PrivateLink support for AWS Budgets in IAD. * api-change:``config``: Documentation improvements have been made to the EvaluationModel and DescribeConfigurationRecorders APIs. * api-change:``ec2``: Transit Gateway native integration with AWS Network Firewall. Adding new enum value for the new Transit Gateway Attachment type. * api-change:``kms``: Doc only update: fixed grammatical errors. * api-change:``mediapackagev2``: This release adds support for specifying a preferred input for channels using CMAF ingest. * api-change:``socialmessaging``: This release introduces new WhatsApp template management APIs that enable customers to programmatically create and submit templates for approval, monitor approval status, and manage the complete template lifecycle * api-change:``sqs``: Documentation updates for Amazon SQS fair queues feature. - from version 1.39.13 * api-change:``datazone``: This release adds support for 1) highlighting relevant text in returned results for Search and SearchListings APIs and 2) returning aggregated counts of values for specified attributes for SearchListings API. * api-change:``omics``: Add Git integration and README support for HealthOmics workflows - from version 1.39.12 * api-change:``ec2``: Added support for skip-os-shutdown option for the EC2 instance stop and terminate operations. This feature enables customers to bypass the graceful OS shutdown, supporting faster state transitions when instance data preservation isn't critical. * api-change:``glue``: AWS Glue now supports dynamic session policies for job executions. This feature allows you to specify custom, fine-grained permissions for each job run without creating multiple IAM roles. * api-change:``workspaces-thin-client``: Added the lastUserId parameter to the ListDevices and GetDevice API. * bugfix:``bedrock``: Fixes an issue where bearer authentication was incorrectly applied to all services with the ``bedrock`` signing name. Bearer auth is now only applied if the service model also includes the ``smithy.api#httpBearerAuth`` trait. - from version 1.39.11 * api-change:``ecr``: Add support for Image Tag Mutability Exception feature, allowing repositories to define wildcard-based patterns that override the default image tag mutability settings. * api-change:``emr``: This release adds new parameter 'ExtendedSupport' in AWS EMR RunJobFlow, ModifyCluster and DescribeCluster API. * api-change:``lambda``: This release migrated the model to Smithy keeping all features unchanged. * api-change:``neptunedata``: This release updates the supported regions for Neptune API to include current AWS regions. - from version 1.39.10 * api-change:``cloudfront``: Add dualstack endpoint support * api-change:``deadline``: Add support for VPC resource endpoints in Service Managed Fleets * api-change:``ec2``: This release adds support for C8gn, F2 and P6e-GB200 Instance types * api-change:``sagemaker``: This release adds 1/ Support for S3FileSystem in CustomFileSystems 2/ The ability for a customer to select their preferred IpAddressType for use with private Workforces 3/ Support for p4de instance type in SageMaker Training Plans * api-change:``timestream-influxdb``: Timestream for InfluxDB adds support for db.influx.24xlarge instance type. This enhancement enables higher compute capacity for demanding workloads through CreateDbInstance, CreateDbCluster, UpdateDbInstance, and UpdateDbCluster APIs. - from version 1.39.9 * api-change:``auditmanager``: Updated error handling for RegisterOrganizationAdminAccount API to properly translate TooManyExceptions to HTTP 429 status code. This enhancement improves error handling consistency and provides clearer feedback when request limits are exceeded. * api-change:``logs``: CloudWatchLogs launches GetLogObject API with streaming support for efficient log data retrieval. Logs added support for new AccountPolicy type METRIC_EXTRACTION_POLICY. For more information, see CloudWatch Logs API documentation * api-change:``mediaconvert``: This release adds support for TAMS server integration with MediaConvert inputs. * api-change:``outposts``: Add AWS Outposts API to surface customer billing information * api-change:``sesv2``: Added IP Visibility support for managed dedicated pools. Enhanced GetDedicatedIp and GetDedicatedIps APIs to return managed IP addresses. * api-change:``ssm``: July 2025 doc-only updates for Systems Manager. * enhancement:Python: Added provisional support for the upcoming Python 3.14 release - from version 1.39.8 * api-change:``cleanroomsml``: This release introduces Parquet result format support for ML Input Channel models in AWS Clean Rooms ML. * api-change:``cloudfront``: Doc only update for CloudFront that fixes some customer-reported issues * api-change:``ec2``: AWS Free Tier Version2 Support * api-change:``keyspacesstreams``: Doc only update for the Amazon Keyspaces Streams API. * api-change:``mailmanager``: Allow underscores in the local part of the input of the "Email recipients rewrite" action in rule sets. * api-change:``mediaconvert``: This release expands the range of supported audio outputs to include xHE, 192khz FLAC and the deprecation of dual mono for AC3. * api-change:``stepfunctions``: Align input with style guidelines. * api-change:``synthetics``: This feature allows AWS Synthetics customers to provide code dependencies using lambda layer while creating a canary - from version 1.39.7 * api-change:``bedrock``: This release adds support for on-demand custom model inference through CustomModelDeployment APIs for Amazon Bedrock. * api-change:``bedrock-agentcore``: Initial release of Amazon Bedrock AgentCore SDK including Runtime, Built-In Tools, Memory, Gateway and Identity. * api-change:``bedrock-agentcore-control``: Initial release of Amazon Bedrock AgentCore SDK including Runtime, Built-In Tools, Memory, Gateway and Identity. * api-change:``bedrock-runtime``: document update to support on demand custom model. * api-change:``datasync``: AWS DataSync now supports IPv6 address inputs and outputs in create, update, and describe operations for NFS, SMB, and Object Storage locations * api-change:``glue``: AWS Glue now supports schema, partition and sort management of Apache Iceberg tables using Glue SDK * api-change:``guardduty``: Add expectedBucketOwner parameter to ThreatIntel and IPSet APIs. * api-change:``iotwireless``: FuotaTaskId is not a valid IdentifierType for EventConfiguration and is being removed from possible IdentifierType values. * api-change:``logs``: CloudWatch Logs updates: Added X-Ray tracing for Amazon Bedrock Agent resources. Logs introduced Log Group level resource policies (managed through Put/Delete/Describe Resource Policy APIs). For more information, see CloudWatch Logs API documentation. * api-change:``mediapackagev2``: This release adds support for CDN Authentication using Static Headers in MediaPackage v2. * api-change:``networkflowmonitor``: Introducing 2 new scope status types - DEACTIVATING and DEACTIVATED. * api-change:``payment-cryptography-data``: Expand length of message data field for Mac generation and validation to 8192 characters. * api-change:``stepfunctions``: Doc-only update to introduction, and edits to clarify input parameter and the set of control characters. - from version 1.39.6 * api-change:``ecs``: This release removes hookDetails for the Amazon ECS native blue/green deployments. - from version 1.39.5 * api-change:``bedrock-agent``: Add support for S3 Vectors as a vector store. * api-change:``datazone``: Removing restriction of environment profile identifier as required field, S3 feature release * api-change:``dynamodbstreams``: Added support for optional shard filter parameter in DescribeStream api that allows customers to fetch child shards of a read_only parent shard. * api-change:``ec2``: This release adds support for volume initialization status, which enables you to monitor when the initialization process for an EBS volume is completed. This release also adds IPv6 support to EC2 Instance Connect Endpoints, allowing you to connect to your EC2 Instance via a private IPv6 address. * api-change:``ecs``: Amazon ECS supports native blue/green deployments, allowing you to validate new service revisions before directing production traffic to them. * api-change:``events``: Add customer-facing logging for the EventBridge Event Bus, enabling customers to better observe their events and extract insights about their EventBridge usage. * api-change:``opensearch``: AWS Opensearch adds support for enabling s3 vector engine options. After enabling this option, customers will be able to create indices with s3 vector engine. * api-change:``pricing``: This release adds support for new filter types in GetProducts API, including EQUALS, CONTAINS, ANY_OF, and NONE_OF. * api-change:``quicksight``: Introduced custom instructions for topics. * api-change:``repostspace``: This release introduces Channels functionality with CreateChannel, GetChannel, ListChannels, and UpdateChannel operations. Channels provide dedicated collaboration spaces where teams can organize discussions and knowledge by projects, business units, or areas of responsibility. * api-change:``s3``: Amazon S3 Metadata live inventory tables provide a queryable inventory of all the objects in your general purpose bucket so that you can determine the latest state of your data. To help minimize your storage costs, use journal table record expiration to set a retention period for your records. * api-change:``s3tables``: Adds table bucket type to ListTableBucket and GetTableBucket API operations * api-change:``s3vectors``: Amazon S3 Vectors provides cost-effective, elastic, and durable vector storage for queries based on semantic meaning and similarity. * api-change:``sagemaker``: This release adds support for a new Restricted instance group type to enable a specialized environment for running Nova customization jobs on SageMaker HyperPod clusters. This release also adds support for SageMaker pipeline versioning. - from version 1.39.4 * api-change:``ec2``: Adds support to Capacity Blocks for ML for purchasing EC2 P6e-GB200 UltraServers. Customers can now purchase u-p6e-gb200x72 and u-p6e-gb200x36 UltraServers. Adds new DescribeCapacityBlocks andDescribeCapacityBlockStatus APIs. Adds support for CapacityBlockId to DescribeInstanceTopology. * api-change:``freetier``: This release introduces four new APIs: GetAccountPlanState and UpgradeAccountPlan for AWS account plan management; ListAccountActivities and GetAccountActivity that provide activity tracking capabilities. * api-change:``opsworkscm``: Removing content that refers to an S3 bucket that is no longer in use. - from version 1.39.3 * api-change:``customer-profiles``: This release introduces capability of create Segments via importing a CSV file directly. This consumes the CSV file and creates/updates corresponding profiles for the particular domain. * api-change:``deadline``: Added fields for output manifest reporting and task chunking parameters * api-change:``ec2``: This release adds GroupOwnerId as a response member to the DescribeSecurityGroupVpcAssociations API and also adds waiters for SecurityGroupVpcAssociations (SecurityGroupVpcAssociationAssociated and SecurityGroupVpcAssociationDisassociated). * api-change:``mediapackagev2``: This release adds support for Microsoft Smooth Streaming (MSS) and allows users to exclude DRM segment Metadata in MediaPackage v2 Origin Endpoints * api-change:``route53``: Amazon Route 53 now supports the iso-e regions for private DNS Amazon VPCs and cloudwatch healthchecks. * api-change:``sagemaker``: Changes include new StartSession API for SageMaker Studio spaces and CreateHubContentPresignedUrls API for SageMaker JumpStart. - from version 1.39.2 * api-change:``connectcases``: This release adds DeleteCase and DeleteRelatedItem APIs, which enable deleting cases and comments, undoing contact association, and removing service level agreements (SLAs) from cases. Contact center admins can use these APIs to delete cases when requested by customers and correct agent errors. * api-change:``ec2``: AWS Site-to-Site VPN now supports IPv6 addresses on outer tunnel IPs, making it easier for customers to build or transition to IPv6-only networks. * api-change:``s3``: Added support for directory bucket creation with tags and bucket ARN retrieval in CreateBucket, ListDirectoryBuckets, and HeadBucket operations * api-change:``s3control``: Added TagResource, UntagResource, and ListTagsForResource support for directory bucket - Update to 1.39.1 * api-change:``cleanroomsml``: This release introduces support for incremental training and distributed training for custom models in AWS Clean Rooms ML. * api-change:``datazone``: Add support for the new optional domain-unit-id parameter in the UpdateProject API. * api-change:``ec2``: Add Context to GetInstanceTypesFromInstanceRequirements API * api-change:``odb``: This release adds API operations for Oracle Database@AWS. You can use the APIs to create Exadata infrastructure, ODB networks, and Exadata and Autonomous VM clusters inside AWS data centers. The infrastructure is managed by OCI. You can integrate these resources with AWS services. * api-change:``qbusiness``: New ChatResponseConfiguration to Customize Q Business chat responses for specific use cases and communication needs. Updated Boosting capability allowing admins to provide preference on date attributes for recency and/or provide a preferred data source. * api-change:``rds``: Amazon RDS Custom for Oracle now supports multi-AZ database instances. * api-change:``sagemaker``: Updated field validation requirements for InstanceGroups. - from version 1.39.0 * api-change:``arc-zonal-shift``: Added support for on-demand practice runs and balanced capacity checks in ARC autoshift practice. * api-change:``b2bi``: Updated APIs to support inbound EDI split capabilities and additional Partnership-level configurations of generated EDI files' contents and format. * api-change:``bedrock``: Add support for API Keys, Re-Ranker, implicit filter for RAG / KB evaluation for Bedrock APIs. * api-change:``bedrock-runtime``: Add API Key and document citations support for Bedrock Runtime APIs * api-change:``cloudformation``: Added support for UNKNOWN drift status. * api-change:``config``: Updated ResourceType enum with new resource types onboarded by AWS Config as of June 2025 * api-change:``connect``: This release introduces ChatMetrics to the model, providing comprehensive analytics insights for Amazon Connect chat conversations. Users can access these detailed metrics through the AWS Connect API by using the DescribeContact operation with their specific instance and contact IDs * api-change:``dataexchange``: This release updates resource Id with alphanumeric constraint, including Asset id, Revision id, Data Set id, Job id, and Event Action id. * api-change:``dynamodb``: This change adds support for witnesses in global tables. It also adds a new table status, REPLICATION_NOT_AUTHORIZED. This status will indicate scenarios where global replicas table can't be utilized for data plane operations. * api-change:``events``: Added support for EventBridge Dualstack endpoints in AWS GovCloud (US) regions (us-gov-east-1 and us-gov-west-1). The dualstack endpoints are identical for both FIPS and non-FIPS configurations, following the format: events.{region}.api.aws * api-change:``glue``: releasing source processing properties to support source properties for ODB integrations * api-change:``iam``: Updated IAM ServiceSpecificCredential support to include expiration, API Key output format instead of username and password for services that will support API keys, and the ability to list credentials for all users in the account for a given service configuration. * api-change:``logs``: Increase minimum length of queryId parameter to 1 character. * api-change:``medical-imaging``: Added new fields to support the concept of primary image sets within the storage hierarchy. * api-change:``networkflowmonitor``: Add ConflictExceptions to UpdateScope and DeleteScope operations for scopes being mutated. * api-change:``outposts``: Make ContactName and ContactPhoneNumber required fields when creating and updating Outpost Site Addresses. * api-change:``pcs``: Fixed the validation pattern for an instance profile Amazon Resource Name (ARN) in AWS PCS. * api-change:``quicksight``: Introduced custom permission capabilities for reporting content. Added menu option in exploration to preserve configuration data when textbox menu option is used. Added support for Athena trusted identity propagation. * api-change:``ssm``: Introduces AccessType, a new filter value for the DescribeSessions API. * api-change:``transfer``: Added support for dual-stack (IPv4 and IPv6) endpoints for SFTP public endpoints and VPC-internal endpoints (SFTP, FTPS, FTP, and AS2), enabling customers to configure new servers with IPv4 or dual-stack mode, convert existing servers to dual-stack, and use IPv6 with service APIs. * feature:``bedrock``: Add support for retrieving a Bearer token from environment variables to enable bearer authentication with Bedrock services. - from version 1.38.46 * api-change:``config``: Added important considerations to the PutConformancePack and PutOrganizationConformancPack APIs. * api-change:``connect``: This release adds the following value to an InitiateAs enum: COMPLETED * api-change:``glue``: AWS Glue now supports schema, partition and sort management of Apache Iceberg tables using Glue SDK * api-change:``guardduty``: Update JSON target for Kubernetes workload resource type. * api-change:``qconnect``: Adding UnauthorizedException to public SDK * api-change:``rds``: StartDBCluster and StopDBCluster can now throw InvalidDBShardGroupStateFault. * api-change:``sesv2``: Added support for new SES regions - from version 1.38.45 * api-change:``deadline``: Added fields to track cumulative task retry attempts for steps and jobs * api-change:``ec2``: This release adds support for OdbNetworkArn as a target in VPC Route Tables * api-change:``iot-managed-integrations``: Adding managed integrations APIs for IoT Device Management to onboard and control devices across different manufacturers, connectivity protocols and third party vendor clouds. APIs include managed thing operations, provisioning profile management, and cloud connector operations. * api-change:``keyspaces``: This release provides change data capture (CDC) streams support through updates to the Amazon Keyspaces API. * api-change:``keyspacesstreams``: This release adds change data capture (CDC) streams support through the new Amazon Keyspaces Streams API. * api-change:``kms``: This release updates AWS CLI examples for KMS APIs. * api-change:``qbusiness``: Added support for App level authentication for QBusiness DataAccessor using AWS IAM Identity center Trusted Token issuer * api-change:``workspaces``: Updated modifyStreamingProperties to support PrivateLink VPC endpoints for directories - from version 1.38.44 * api-change:``ecs``: Updates for change to Amazon ECS default log driver mode from blocking to non-blocking * api-change:``fsx``: Add support for the ability to create Amazon S3 Access Points for Amazon FSx for OpenZFS file systems. * api-change:``s3``: Adds support for additional server-side encryption mode and storage class values for accessing Amazon FSx data from Amazon S3 using S3 Access Points * api-change:``s3control``: Add support for the ability to use Amazon S3 Access Points with Amazon FSx for OpenZFS file systems. * api-change:``storagegateway``: This release adds IPv6 support to the Storage Gateway APIs. APIs that previously only accept or return IPv4 address will now accept or return both IPv4 and IPv6 addresses. * api-change:``textract``: Add RotationAngle field to Geometry of WORD blocks for Textract AnalyzeDocument API * api-change:``workspaces-thin-client``: Remove Tags field from Get API responses - from version 1.38.43 * api-change:``aiops``: Adds support for cross account investigations for CloudWatch investigations AI Operations (AIOps). * api-change:``batch``: Add userdataType to LaunchTemplateSpecification and LaunchTemplateSpecificationOverride. * api-change:``bedrock``: We are making ListFoundationModelAgreementOffers, DeleteFoundationModelAgreement, CreateFoundationModelAgreement, GetFoundationModelAvailability, PutUseCaseForModelAccess and GetUseCaseForModelAccess APIs public, previously they were console. * api-change:``ec2``: This release allows you to create and register AMIs while maintaining their underlying EBS snapshots within Local Zones. * api-change:``elbv2``: Add Paginator for DescribeAccountLimits, and fix Paginators for DescribeTrustStoreAssociations, DescribeTrustStoreRevocations, and DescribeTrustStores * api-change:``gamelift``: Add support for UDP ping beacons to ListLocations API, including new PingBeacon and UDPEndpoint data types within its Locations return value. Use UDP ping beacon endpoints to help measure real-time network latency for multiplayer games. * api-change:``license-manager``: AWS License Manager now supports license type conversions for AWS Marketplace products. Customers can provide Marketplace codes in the source license context or destination license context in the CreateLicenseConversionTaskForResource requests. * api-change:``rds``: Adding support for RDS on Dedicated Local Zones, including local backup target, snapshot availability zone and snapshot target * api-change:``route53resolver``: Add support for iterative DNS queries through the new INBOUND_DELEGATION endpoint. Add delegation support through the Outbound Endpoints with DELEGATE rules. * api-change:``transcribe``: This Feature Adds Support for the "et-EE" Locale for Batch Operations - from version 1.38.42 * api-change:``glue``: AWS Glue now supports sort and z-order strategy for managed automated compaction for Iceberg tables in addition to binpack. * api-change:``s3tables``: S3 Tables now supports sort and z-order compaction strategies for Iceberg tables in addition to binpack. * api-change:``workspaces-instances``: Added support for Amazon WorkSpaces Instances API - from version 1.38.41 * api-change:``bedrock``: Add support for tiers in Content Filters and Denied Topics for Amazon Bedrock Guardrails. * api-change:``ecs``: Add ECS support for Windows Server 2025 * api-change:``geo-places``: Geocode, ReverseGeocode, and GetPlace APIs added Intersections and SecondaryAddresses. To use, add to the AdditionalFeatures list in your request. This provides info about nearby intersections and secondary addresses that are associated with a main address. Also added MainAddress and ParsedQuery. * api-change:``glue``: AWS Glue Data Quality now provides aggregated metrics in evaluation results when publishAggregatedMetrics with row-level results are enabled. These metrics include summary statistics showing total counts of processed, passed, and failed rows and rules in a single view. * api-change:``mediaconvert``: This release adds a new SPECIFIED_OPTIMAL option for handling DDS when using DVB-Sub with high resolution video. - from version 1.38.40 * api-change:``bedrock``: This release of the SDK has the API and documentation for the createcustommodel API. This feature lets you copy a trained model into Amazon Bedrock for inference. * api-change:``emr-serverless``: This release adds the capability to enable IAM IdentityCenter Trusted Identity Propagation for users running Interactive Sessions on EMR Serverless Applications. * api-change:``lambda``: Support Schema Registry feature for Kafka Event Source Mapping. Customers can now configure a Schema Registry to enable schema validation and filtering for Avro, Protobuf, and JSON-formatted events in Lambda for Kafka Event Source. * api-change:``payment-cryptography``: Additional support for managing HMAC keys that adheres to changes documented in X9.143-2021 and provides better interoperability for key import/export * api-change:``payment-cryptography-data``: Additional support for managing HMAC keys that adheres to changes documented in X9.143-2021 and provides better interoperability for key import/export * api-change:``sagemaker``: This release introduces alternative support for utilizing CFN templates from S3 for SageMaker Projects. - from version 1.38.39 * api-change:``aiops``: This is the initial SDK release for Amazon AI Operations (AIOps). AIOps is a generative AI-powered assistant that helps you respond to incidents in your system by scanning your system's telemetry and quickly surface suggestions that might be related to your issue. * api-change:``autoscaling``: Add IncludeInstances parameter to DescribeAutoScalingGroups API * api-change:``imagebuilder``: Added paginators for ``imagebuilder``. * api-change:``logs``: Added CloudWatch Logs Transformer support for converting CloudTrail, VPC Flow, EKS Audit, AWS WAF and Route53 Resolver logs to OCSF v1.1 format. * api-change:``s3``: Added support for renaming objects within the same bucket using the new RenameObject API. * api-change:``sagemaker``: Add support for p6-b200 instance type for SageMaker Hyperpod - from version 1.38.38 * api-change:``accessanalyzer``: We are launching a new analyzer type, internal access analyzer. The new analyzer will generate internal access findings, which help customers understand who within their AWS organization or AWS Account has access to their critical AWS resources. * api-change:``acm``: Adds support for Exportable Public Certificates * api-change:``backup``: AWS Backup is adding support for integration of its logically air-gapped vaults with the AWS Organizations Multi-party approval capability. * api-change:``bedrock``: This release of the SDK has the API and documentation for the createcustommodel API. This feature lets you copy a trained model into Amazon Bedrock for inference. * api-change:``dms``: Add "Virtual" field to Data Provider as well as "S3Path" and "S3AccessRoleArn" fields to DataProvider settings * api-change:``guardduty``: Adding support for extended threat detection for EKS Audit Logs and EKS Runtime Monitoring. * api-change:``inspector2``: Add Code Repository Scanning as part of AWS InspectorV2 * api-change:``mpa``: This release enables customers to create Multi-party approval teams and approval requests to protect supported operations. * api-change:``network-firewall``: Release of Active Threat Defense in Network Firewall * api-change:``organizations``: Add support for policy operations on the SECURITYHUB_POLICY policy type. * api-change:``securityhub``: Adds operations, structures, and exceptions required for public preview release of Security Hub V2. * api-change:``sts``: The AWS Security Token Service APIs AssumeRoleWithSAML and AssumeRoleWithWebIdentity can now be invoked without pre-configured AWS credentials in the SDK configuration. * api-change:``wafv2``: AWS WAF can now suggest protection packs for you based on the application information you provide when you create a webACL. - from version 1.38.37 * api-change:``bedrock``: This release of the SDK has the API and documentation for the createcustommodel API. This feature lets you copy a Amazon SageMaker trained Amazon Nova model into Amazon Bedrock for inference. * api-change:``ecr``: The `DescribeImageScanning` API now includes `lastInUseAt` and `InUseCount` fields that can be used to prioritize vulnerability remediation for images that are actively being used. * api-change:``network-firewall``: You can now create firewalls using a Transit Gateway instead of a VPC, resulting in a TGW attachment. * api-change:``sagemaker``: This release 1) adds a new S3DataType Converse for SageMaker training 2)adds C8g R7gd M8g C6in P6 P6e instance type for SageMaker endpoint 3) adds m7i, r7i, c7i instance type for SageMaker Training and Processing. - from version 1.38.36 * api-change:``apigateway``: Documentation updates for Amazon API Gateway * api-change:``apigatewayv2``: Documentation updates for Amazon API Gateway * api-change:``connectcampaignsv2``: Added PutInstanceCommunicationLimits and GetInstanceCommunicationLimits APIs * api-change:``ecs``: This Amazon ECS release supports updating the capacityProviderStrategy parameter in update-service. * api-change:``emr-serverless``: This release adds support for retrieval of the optional executionIamPolicy field in the GetJobRun API response. * api-change:``iotfleetwise``: Add new status READY_FOR_CHECKIN used for vehicle synchronisation * api-change:``kms``: AWS KMS announces the support of ML-DSA key pairs that creates post-quantum safe digital signatures. * api-change:``pcs``: Fixed regex patterns for ARN fields. - from version 1.38.35 * api-change:``controlcatalog``: Introduced ListControlMappings API that retrieves control mappings. Added control aliases and governed resources fields in GetControl and ListControls APIs. New filtering capability in ListControls API, with implementation identifiers and implementation types. * api-change:``eks``: Release for EKS Pod Identity Cross Account feature and disableSessionTags flag. * api-change:``lexv2-models``: Add support for the Assisted NLU feature to improve bot performance * api-change:``networkmanager``: Add support for public DNS hostname resolution to private IP addresses across Cloud WAN-managed VPCs. Add support for security group referencing across Cloud WAN-managed VPCs. * api-change:``rds``: Updates Amazon RDS documentation for Amazon RDS for Db2 cross-Region replicas in standby mode. * api-change:``wafv2``: WAF now provides two DDoS protection options: resource-level monitoring for Application Load Balancers and the AWSManagedRulesAntiDDoSRuleSet managed rule group for CloudFront distributions. * bugfix:Serialization: Fixes a bug where instances of decimal.Decimal were unable to be passed into JSON serialization - from version 1.38.34 * api-change:``gameliftstreams``: Documentation updates for Amazon GameLift Streams to address formatting errors, correct resource ID examples, and update links to other guides - from version 1.38.33 * api-change:``appsync``: Deprecate `atRestEncryptionEnabled` and `transitEncryptionEnabled` attributes in `CreateApiCache` action. Encryption is always enabled for new caches. * api-change:``ce``: Support dual-stack endpoints for ce api * api-change:``customer-profiles``: This release introduces capability of Profile Explorer, using correct ingestion timestamp & using historical data for computing calculated attributes, and new standard objects for T&H as part of Amazon Connect Customer Profiles service. * api-change:``ec2``: Release to support Elastic VMware Service (Amazon EVS) Subnet and Amazon EVS Network Interface Types. * api-change:``efs``: Added support for Internet Protocol Version 6 (IPv6) on EFS Service APIs and mount targets. * api-change:``marketplace-catalog``: The ListEntities API now supports the EntityID, LastModifiedDate, ProductTitle, and Visibility filters for machine learning products. You can also sort using all of those filters. * api-change:``workspaces-thin-client``: Add ConflictException to UpdateEnvironment API - from version 1.38.32 * api-change:``bedrock-agent-runtime``: This release introduces the `PromptCreationConfigurations` input parameter, which includes fields to control prompt population for `InvokeAgent` or `InvokeInlineAgent` requests. * api-change:``kms``: Remove unpopulated KeyMaterialId from Encrypt Response * api-change:``rds``: Include Global Cluster Identifier in DBCluster if the DBCluster is a Global Cluster Member. * api-change:``rekognition``: Adds support for defining an ordered preference list of different Rekognition Face Liveness challenge types when calling CreateFaceLivenessSession. * api-change:``route53``: Amazon Route 53 now supports the Asia Pacific (Taipei) Region (ap-east-2) for latency records, geoproximity records, and private DNS for Amazon VPCs in that region. * api-change:``s3tables``: S3 Tables now supports getting details about a table via its table ARN. - from version 1.38.31 * api-change:``bcm-pricing-calculator``: Updating the minimum for List APIs to be 1 (instead of 0) * api-change:``cloudformation``: Add new warning type 'EXCLUDED_PROPERTIES' * api-change:``kms``: AWS KMS announces the support for on-demand rotation of symmetric-encryption KMS keys with imported key material (EXTERNAL origin). * api-change:``wafv2``: AWS WAF adds support for ASN-based traffic filtering and support for ASN-based rate limiting. - from version 1.38.30 * api-change:``amplify``: Update documentation for cacheConfig in CreateApp API * api-change:``evs``: Amazon Elastic VMware Service (Amazon EVS) allows you to run VMware Cloud Foundation (VCF) directly within your Amazon VPC including simplified self-managed migration experience with guided workflow in AWS console or via AWS CLI, get full access to their VCF deployment and VCF license portability. * api-change:``invoicing``: Added new Invoicing ListInvoiceSummaries API Operation * api-change:``mediaconnect``: This release updates the DescribeFlow API to show peer IP addresses. You can now identify the peer IP addresses of devices connected to your sources and outputs. This helps you to verify and troubleshoot your flow's active connections. * api-change:``mediaconvert``: This release includes support for embedding and signing C2PA content credentials in MP4 outputs. * api-change:``network-firewall``: You can now monitor flow and alert log metrics from the Network Firewall console. * api-change:``sagemaker``: Added support for p6-b200 instance type in SageMaker Training Jobs and Training Plans. * api-change:``transcribe``: AWS Healthscribe now supports new templates for the clinical note summary: BIRP, SIRP, DAP, BEHAVIORAL_SOAP, and PHYSICAL_SOAP - from version 1.38.29 * api-change:``apigateway``: Adds support to set the routing mode for a custom domain name. * api-change:``apigatewayv2``: Adds support to create routing rules and set the routing mode for a custom domain name. * api-change:``emr-serverless``: AWS EMR Serverless: Adds a new option in the CancelJobRun API in EMR 7.9.0+, to cancel a job with grace period. This feature is enabled by default with a 120-second grace period for streaming jobs and is not enabled by default for batch jobs. - from version 1.38.28 * api-change:``athena``: Add support for the managed query result in the workgroup APIs. The managed query result configuration enables users to store query results to Athena owned storage. * api-change:``backup``: You can now subscribe to Amazon SNS notifications and Amazon EventBridge events for backup indexing. You can now receive notifications when a backup index is created, deleted, or fails to create, enhancing your ability to monitor and track your backup operations. * api-change:``bedrock-agent``: This release adds the Agent Lifecycle Paused State feature to Amazon Bedrock agents. By using an agent's alias, you can temporarily suspend agent operations during maintenance, updates, or other situations. * api-change:``compute-optimizer``: This release enables AWS Compute Optimizer to analyze Amazon Aurora database clusters and generate Aurora I/O-Optimized recommendations. * api-change:``cost-optimization-hub``: Support recommendations for Aurora instance and Aurora cluster storage. * api-change:``ecs``: Updates Amazon ECS documentation to include note for upcoming default log driver mode change. * api-change:``eks``: Add support for filtering ListInsights API calls on MISCONFIGURATION insight category * api-change:``entityresolution``: Add support for generating match IDs in near real-time. * api-change:``pcs``: Introduces SUSPENDING and SUSPENDED states for clusters, compute node groups, and queues. * api-change:``synthetics``: Support for Java runtime handler pattern. - from version 1.38.27 * api-change:``emr-serverless``: This release adds the capability for users to specify an optional Execution IAM policy in the StartJobRun action. The resulting permissions assumed by the job run is the intersection of the permissions in the Execution Role and the specified Execution IAM Policy. * api-change:``sagemaker``: Release new parameter CapacityReservationConfig in ProductionVariant - from version 1.38.26 * api-change:``amplify``: Add support for customizable build instance sizes. CreateApp and UpdateApp operations now accept a new JobConfig parameter composed of BuildComputeType. * api-change:``autoscaling``: Add support for "apple" CpuManufacturer in ABIS * api-change:``bcm-pricing-calculator``: Add AFTER_DISCOUNTS_AND_COMMITMENTS to Workload Estimate Rate Type. Set ListWorkLoadEstimateUsage maxResults range to minimum of 0 and maximum of 300. * api-change:``cloudtrail``: CloudTrail Feature Release: Support for Enriched Events with Configurable Context for Event Data Store * api-change:``connect``: Amazon Connect Service Feature: Email Recipient Limit Increase * api-change:``dataexchange``: This release adds Tag support for Event Action resource, through which customers can create event actions with Tags and retrieve event actions with Tags. * api-change:``datasync``: AgentArns field is made optional for Object Storage and Azure Blob location create requests. Location credentials are now managed via Secrets Manager, and may be encrypted with service managed or customer managed keys. Authentication is now optional for Azure Blob locations. * api-change:``fsx``: FSx API changes to support the public launch of new Intelligent Tiering storage class on Amazon FSx for Lustre * api-change:``ivs-realtime``: IVS Real-Time now offers customers the participant replication that allow customers to copy a participant from one stage to another. * api-change:``mwaa``: Amazon MWAA now lets you choose a worker replacement strategy when updating an environment. This release adds two worker replacement strategies: FORCED (default), which stops workers immediately, and GRACEFUL, which allows workers to finish current tasks before shutting down. * api-change:``s3``: Adding checksum support for S3 PutBucketOwnershipControls API. * api-change:``sagemaker``: Add maintenance status field to DescribeMlflowTrackingServer API response - from version 1.38.25 * api-change:``cost-optimization-hub``: This release allows customers to modify their preferred commitment term and payment options. * api-change:``ec2``: Enable the option to automatically delete underlying Amazon EBS snapshots when deregistering Amazon Machine Images (AMIs) * api-change:``events``: Allow for more than 2 characters for location codes in EventBridge ARNs * api-change:``network-firewall``: You can now use VPC endpoint associations to create multiple firewall endpoints for a single firewall. * api-change:``synthetics``: Add support to change ephemeral storage. Add a new field "TestResult" under CanaryRunStatus. - from version 1.38.24 * api-change:``ce``: This release introduces Cost Comparison feature (GetCostAndUsageComparisons, GetCostComparisonDrivers) allowing you find cost variations across multiple dimensions and identify key drivers of spending changes. * api-change:``deadline``: AWS Deadline Cloud service-managed fleets now support storage profiles. With storage profiles, you can map file paths between a workstation and the worker hosts running the job. * api-change:``ec2``: This release adds three features - option to store AWS Site-to-Site VPN pre-shared keys in AWS Secrets Manager, GetActiveVpnTunnelStatus API to check the in-use VPN algorithms, and SampleType option in GetVpnConnectionDeviceSampleConfiguration API to get recommended sample configs for VPN devices. - Update to 1.38.23 * api-change:``ec2``: This release adds support for the C7i-flex, M7i-flex, I7i, I7ie, I8g, P6-b200, Trn2, C8gd, M8gd and R8gd instances * api-change:``security-ir``: Update PrincipalId pattern documentation to reflect what user should receive back from the API call - from version 1.38.22 * api-change:``amp``: Add QueryLoggingConfiguration APIs for Amazon Managed Prometheus * api-change:``auditmanager``: With this release, the AssessmentControl description field has been deprecated, as of May 19, 2025. Additionally, the UpdateAssessment API can now return a ServiceQuotaExceededException when applicable service quotas are exceeded. * api-change:``dsql``: Features: support for customer managed encryption keys * api-change:``glue``: This release supports additional ConversionSpec parameter as part of IntegrationPartition Structure in CreateIntegrationTableProperty API. This parameter is referred to apply appropriate column transformation for columns that are used for timestamp based partitioning - from version 1.38.21 * api-change:``application-autoscaling``: Doc only update that addresses a customer reported issue. * api-change:``bedrock-agent-runtime``: Amazon Bedrock introduces asynchronous flows (in preview), which let you run flows for longer durations and yield control so that your application can perform other tasks and you don't have to actively monitor the flow's progress. * api-change:``cloudwatch``: Adds support for setting up Contributor Insight rules on logs transformed via Logs Transformation feature. * api-change:``ec2``: Release of Dualstack and Ipv6-only EC2 Public DNS hostnames * api-change:``partnercentral-selling``: Modified validation to allow expectedCustomerSpend array with zero elements in Partner Opportunity operations. - from version 1.38.20 * api-change:``datasync``: Remove Discovery APIs from the DataSync service * api-change:``ec2``: This release expands the ModifyInstanceMaintenanceOptions API to enable or disable instance migration during customer-initiated reboots for EC2 Scheduled Reboot Events. * api-change:``glue``: Enhanced AWS Glue ListConnectionTypes API Model with additional metadata fields. * api-change:``inspector2``: This release adds GetClustersForImage API and filter updates as part of the mapping of container images to running containers feature. * api-change:``oam``: Add IncludeTags field to GetLink, GetSink and UpdateLink API * api-change:``privatenetworks``: The privatenetworks client has been removed following the deprecation of the service. * api-change:``rds``: This release introduces the new DescribeDBMajorEngineVersions API for describing the properties of specific major versions of database engines. - from version 1.38.19 * api-change:``dsql``: CreateMultiRegionCluster and DeleteMultiRegionCluster APIs removed * api-change:``ec2``: This release includes new APIs for System Integrity Protection (SIP) configuration and automated root volume ownership delegation for EC2 Mac instances. * api-change:``mediapackagev2``: This release adds support for DVB-DASH, EBU-TT-D subtitle format, and non-compacted manifests for DASH in MediaPackage v2 Origin Endpoints. - from version 1.38.18 * api-change:``bedrock-data-automation``: Add support for VIDEO modality to BlueprintType enum. * api-change:``bedrock-data-automation-runtime``: Add AssetProcessingConfiguration for video segment to InputConfiguration * api-change:``codepipeline``: CodePipeline now supports new API ListDeployActionExecutionTargets that lists the deployment target details for deploy action executions. * api-change:``ecs``: This is an Amazon ECs documentation only release to support the change of the container exit "reason" field from 255 characters to 1024 characters. * api-change:``emr``: Added APIs for managing Application UIs: Access Persistent (serverless) UIs via CreatePersistentAppUI DescribePersistentAppUI & GetPersistentAppUIPresignedURL, and Cluster-based UIs through GetOnClusterAppUIPresignedURL. Supports Yarn, Spark History, and TEZ interfaces. * api-change:``glue``: Changes include (1) Excel as S3 Source type and XML and Tableau's Hyper as S3 Sink types, (2) targeted number of partitions parameter in S3 sinks and (3) new compression types in CSV/JSON and Parquet S3 sinks. * api-change:``neptune``: This release adds Global Cluster Switchover capability which enables you to change your global cluster's primary AWS Region, the region that serves writes, while preserving the replication between all regions in the global cluster. * api-change:``service-quotas``: This release introduces CreateSupportCase operation to SDK. - from version 1.38.17 * api-change:``bedrock-agent``: Amazon Bedrock Flows introduces DoWhile loops nodes, parallel node executions, and enhancements to knowledge base nodes. * api-change:``codebuild``: AWS CodeBuild now supports Docker Server capability * api-change:``controltower``: Updated the descriptions for the AWS Control Tower Baseline APIs to make them more intuitive. * api-change:``dms``: Introduces Data Resync feature to describe-table-statistics and IAM database authentication for MariaDB, MySQL, and PostgreSQL. * api-change:``pcs``: This release adds support for Slurm accounting. For more information, see the Slurm accounting topic in the AWS PCS User Guide. Slurm accounting is supported for Slurm 24.11 and later. This release also adds 24.11 as a valid value for the version parameter of the Scheduler data type. * api-change:``workspaces``: Added the new AlwaysOn running mode for WorkSpaces Pools. Customers can now choose between AlwaysOn (for instant access, with hourly usage billing regardless of connection status), or AutoStop (to optimize cost, with a brief startup delay) for their pools. - from version 1.38.16 * api-change:``cognito-idp``: Add exceptions to WebAuthn operations. * api-change:``firehose``: This release adds catalogARN support for s3 tables multi-catalog catalogARNs. * api-change:``logs``: This release adds a new API "ListLogGroups" and an improvement in API "DescribeLogGroups" * api-change:``mediaconvert``: This update enables cropping for video overlays and adds a new STL to Teletext upconversion toggle to preserve styling. - from version 1.38.15 * api-change:``bedrock``: Enable cross-Region inference for Amazon Bedrock Guardrails by using the crossRegionConfig parameter when calling the CreateGuardrail or UpdateGuardrail operation. * api-change:``bedrock-agent-runtime``: Changes for enhanced metadata in trace * api-change:``controltower``: AWS Control Tower now reports the inheritance drift status for EnabledBaselines through the GetEnabledBaseline and ListEnabledBaselines APIs. You can now filter EnabledBaselines by their enablement and drift status using the ListEnabledBaselines API to view accounts and OUs that require attention. * api-change:``dsql``: CreateMultiRegionClusters and DeleteMultiRegionClusters APIs marked as deprecated. Introduced new multi-Region clusters creation experience through multiRegionProperties parameter in CreateCluster API. * api-change:``ecs``: This release extends functionality for Amazon EBS volumes attached to Amazon ECS tasks by adding support for the new EBS volumeInitializationRate parameter in ECS RunTask/StartTask/CreateService/UpdateService APIs. * api-change:``license-manager``: Add Tagging feature to resources in the Managed Entitlements service. License and Grant resources can now be tagged. - from version 1.38.14 * api-change:``deadline``: AWS Deadline Cloud service-managed fleets now support configuration scripts. Configuration scripts make it easy to install additional software, like plugins and packages, onto a worker. * api-change:``ec2``: EC2 - Adding support for AvailabilityZoneId * api-change:``iam``: Updating the endpoint list for the Identity and access management (IAM) service * api-change:``medialive``: Add support to the AV1 rate control mode * api-change:``mediatailor``: Documenting that EnabledLoggingStrategies is always present in responses of PlaybackConfiguration read operations. * api-change:``s3control``: Updates to support S3 Express zonal endpoints for directory buckets in AWS CLI * api-change:``sagemaker``: No API changes from previous release. This release migrated the model to Smithy keeping all features unchanged. * api-change:``supplychain``: Launch new AWS Supply Chain public APIs for DataIntegrationEvent, DataIntegrationFlowExecution and DatasetNamespace. Also add more capabilities to existing public APIs to support direct dataset event publish, data deduplication in DataIntegrationFlow, partition specification of custom datasets. - from version 1.38.13 * api-change:``athena``: Minor API documentation updates * api-change:``logs``: We are pleased to announce limit increases to our grok processor logs transformation feature. Now you can define 20 Grok patterns in their configurations, with an expanded total pattern matching limit of 512 characters. * api-change:``synthetics``: Add support to retry a canary automatically after schedule run failures. Users can enable this feature by configuring the RetryConfig field when calling the CreateCanary or UpdateCanary API. Also includes changes in GetCanary and GetCanaryRuns to support retrieving retry configurations. * api-change:``workspaces``: Remove parameter EnableWorkDocs from WorkSpacesServiceModel due to end of support of Amazon WorkDocs service. - from version 1.38.12 * api-change:``cloudfront``: Doc-only update for CloudFront. These changes include customer-reported issues. * api-change:``codepipeline``: Add support for Secrets Manager and Plaintext environment variable types in Commands action * api-change:``ec2``: Launching the feature to support ENA queues offering flexibility to support multiple queues per Enhanced Network Interface (ENI) * api-change:``glue``: This new release supports customizable RefreshInterval for all Saas ZETL integrations from 15 minutes to 6 days. * api-change:``guardduty``: Updated description of a data structure. * api-change:``sso-admin``: Update PutPermissionBoundaryToPermissionSet API's managedPolicyArn pattern to allow valid ARN only. Update ApplicationName to allow white spaces. - from version 1.38.11 * api-change:``ec2``: This release adds API support for Path Component Exclusion (Filter Out ARN) for Reachability Analyzer * api-change:``imagebuilder``: Updated the CreateImageRecipeRequest ParentImage description to include all valid values as updated with the SSM Parameters project. * api-change:``medialive``: Enables Updating Anywhere Settings on a MediaLive Anywhere Channel. * api-change:``sagemaker``: SageMaker AI Studio users can now migrate to SageMaker Unified Studio, which offers a unified web-based development experience that integrates AWS data, analytics, artificial intelligence (AI), and machine learning (ML) services, as well as additional tools and resource * api-change:``synthetics``: Add support to test a canary update by invoking a dry run of a canary. This behavior can be used via the new StartCanaryDryRun API along with new fields in UpdateCanary to apply dry run changes. Also includes changes in GetCanary and GetCanaryRuns to support retrieving dry run configurations. - from version 1.38.10 * api-change:``ec2``: This release adds support for Amazon EBS Provisioned Rate for Volume Initialization, which lets you specify a volume initialization rate to ensure that your EBS volumes are initialized in a predictable amount of time. * api-change:``servicecatalog``: ServiceCatalog's APIs (DeleteServiceAction, DisassociateServiceActionFromProvisioningArtifact, AssociateServiceActionWithProvisioningArtifact) now throw InvalidParametersException when IdempotencyToken is invalid. * api-change:``timestream-query``: Add dualstack endpoints support and correct us-gov-west-1 FIPS endpoint. * api-change:``timestream-write``: Add dualstack endpoints support. - from version 1.38.9 * api-change:``datazone``: This release adds a new authorization policy to control the usage of custom AssetType when creating an Asset. Customer can now add new grant(s) of policyType USE_ASSET_TYPE for custom AssetTypes to apply authorization policy to projects members and domain unit owners. * api-change:``devicefarm``: Add an optional parameter to the GetDevicePoolCompatibility API to pass in project information to check device pool compatibility. * api-change:``ec2``: This update introduces API operations to manage and create local gateway VIF and VIF groups. It also includes API operations to describe Outpost LAGs and service link VIFs. * api-change:``ecs``: Add support to roll back an In_Progress ECS Service Deployment * api-change:``mediaconvert``: This release adds an optional sidecar per-frame video quality metrics report and an ALL_PCM option for audio selectors. It also changes the data type for Probe API response fields related to video and audio bitrate from integer to double. - from version 1.38.8 * api-change:``bedrock-data-automation``: Added support for Custom output and blueprints for AUDIO data types. * api-change:``ds``: Doc only update - fixed typos. * api-change:``kinesis``: Marking ResourceARN as required for Amazon Kinesis Data Streams APIs TagResource, UntagResource, and ListTagsForResource. - from version 1.38.7 * api-change:``appconfig``: Adding waiter support for deployments and environments; documentation updates * api-change:``connect``: This release adds the following fields to DescribeContact: DisconnectReason, AgentInitiatedHoldDuration, AfterContactWorkStartTimestamp, AfterContactWorkEndTimestamp, AfterContactWorkDuration, StateTransitions, Recordings, ContactDetails, ContactEvaluations, Attributes * api-change:``sagemaker``: Feature - Adding support for Scheduled and Rolling Update Software in Sagemaker Hyperpod. * api-change:``verifiedpermissions``: Amazon Verified Permissions / Features : Adds support for tagging policy stores. - from version 1.38.6 * api-change:``bedrock``: You can now specify a cross region inference profile as a teacher model for the CreateModelCustomizationJob API. Additionally, the GetModelCustomizationJob API has been enhanced to return the sub-task statuses of a customization job within the StatusDetails response field. * api-change:``bedrock-agent``: Features: Add inline code node to prompt flow * api-change:``bedrock-agent-runtime``: Support for Custom Orchestration within InlineAgents * api-change:``cleanrooms``: This release adds support for ProtectedQuery results to be delivered to more than one collaboration member via the new distribute output configuration in StartProtectedQuery. * api-change:``deadline``: Adds support for tag management on workers and tag inheritance from fleets to their associated workers. * api-change:``ec2``: Launch of cost distribution feature for IPAM owners to distribute costs to internal teams. * api-change:``ecr``: Adds dualstack support for Amazon Elastic Container Registry (Amazon ECR). * api-change:``ecr-public``: Adds dualstack support for Amazon Elastic Container Registry Public (Amazon ECR Public). * api-change:``logs``: CloudWatch Logs supports "DELIVERY" log class. This log class is used only for delivering AWS Lambda logs to Amazon S3 or Amazon Data Firehose. * api-change:``mailmanager``: Introducing new RuleSet rule PublishToSns action, which allows customers to publish email notifications to an Amazon SNS topic. New PublishToSns action enables customers to easily integrate their email workflows via Amazon SNS, allowing them to notify other systems about important email events. - from version 1.38.5 * api-change:``connectcases``: Introduces CustomEntity as part of the UserUnion data type. This field is used to indicate the entity who is performing the API action. * api-change:``kinesis``: Amazon KDS now supports tagging and attribute-based access control (ABAC) for enhanced fan-out consumers. * api-change:``pinpoint-sms-voice-v2``: AWS End User Messaging has added MONITOR and FILTER functionality to SMS Protect. * api-change:``qbusiness``: Add support for anonymous user access for Q Business applications * api-change:``sagemaker``: Introduced support for P5en instance types on SageMaker Studio for JupyterLab and CodeEditor applications. * api-change:``sagemaker-metrics``: SageMaker Metrics Service now supports FIPS endpoint in all US and Canada Commercial regions. * api-change:``ssm``: This release adds support for just-In-time node access in AWS Systems Manager. Just-in-time node access enables customers to move towards zero standing privileges by requiring operators to request access and obtain approval before remotely connecting to nodes managed by the SSM Agent. * api-change:``ssm-guiconnect``: This release adds API support for the connection recording GUI Connect feature of AWS Systems Manager - from version 1.38.4 * api-change:``acm``: Add support for file-based HTTP domain control validation, available through Amazon CloudFront. * api-change:``bedrock-runtime``: This release adds native h2 support for the bedrock runtime API, the support is only limited to SDKs that support h2 requests natively. * api-change:``cloudfront``: Add distribution tenant, connection group, and multi-tenant distribution APIs to the CloudFront SDK. * api-change:``dynamodb``: Doc only update for GSI descriptions. * api-change:``imagebuilder``: Add integration with SSM Parameter Store to Image Builder. - from version 1.38.3 * api-change:``bedrock-runtime``: You can now reference images and documents stored in Amazon S3 when using InvokeModel and Converse APIs with Amazon Nova Lite and Nova Pro. This enables direct integration of S3-stored multimedia assets in your model requests without manual downloading or base64 encoding. * api-change:``ecs``: Documentation only release for Amazon ECS. * api-change:``marketplace-deployment``: Doc only update for the AWS Marketplace Deployment Service that fixes several customer-reported issues. - from version 1.38.2 * api-change:``apprunner``: AWS App Runner adds Node.js 22 runtime. * api-change:``appsync``: Add data source support to Event APIs * api-change:``bedrock-data-automation``: Added support for modality routing and modality enablement on CreateDataAutomationProject and UpdateDataAutomationProject APIs * api-change:``codebuild``: Remove redundant validation check. * api-change:``dynamodb``: Add support for ARN-sourced account endpoint generation for TransactWriteItems. This will generate account endpoints for DynamoDB TransactWriteItems requests using ARN-sourced account ID when available. * api-change:``ecs``: Documentation only release for Amazon ECS * api-change:``pcs``: Documentation-only update: added valid values for the version property of the Scheduler and SchedulerRequest data types. * api-change:``rds``: This Amazon RDS release adds support for managed master user passwords for Oracle CDBs. - Update to 1.38.1 * api-change:``codebuild``: Add support for custom instance type for reserved capacity fleets * api-change:``ecs``: Add support to roll back an In_Progress ECS Service Deployment * api-change:``imagebuilder``: Add all ``imagebuilder`` modeled paginators that are currently supported by botocore. * api-change:``resource-explorer-2``: Documentation-only update for CreateView option correction - from version 1.38.0 * api-change:``account``: AWS Account Management now supports account name update via IAM principals. * api-change:``cognito-idp``: This release adds refresh token rotation. * api-change:``ec2``: Added support for ClientRouteEnforcementOptions flag in CreateClientVpnEndpoint and ModifyClientVpnEndpoint requests and DescribeClientVpnEndpoints responses * api-change:``entityresolution``: To expand support for matching records using digital identifiers with TransUnion * api-change:``mq``: You can now delete Amazon MQ broker configurations using the DeleteConfiguration API. For more information, see Configurations in the Amazon MQ API Reference. * api-change:``redshift-serverless``: Provides new and updated API members to support the Redshift Serverless reservations feature. * api-change:``s3control``: Fix endpoint resolution test cases * feature:Python: End of support for Python 3.8 - from version 1.37.38 * api-change:``arc-zonal-shift``: Updates to documentation and exception types for Zonal Autoshift * api-change:``budgets``: Releasing the new Budget FilterExpression and Metrics fields to support more granular filtering options. These new fields are intended to replace CostFilters and CostTypes, which are deprecated as of 2025/18/04. * api-change:``firehose``: Documentation update regarding the number of streams you can create using the CreateDeliveryStream API. * api-change:``mediatailor``: Added support for Recurring Prefetch and Traffic Shaping on both Single and Recurring Prefetch. ListPrefetchSchedules now return single prefetchs by default and can be provided scheduleType of SINGLE, RECURRING, AND ALL. * api-change:``qbusiness``: The CheckDocumentAccess API for Amazon Q Business is a self-service debugging API that allows administrators to verify document access permissions and review Access Control List (ACL) configurations. - from version 1.37.37 * api-change:``qconnect``: This release adds support for the following capabilities: Chunking generative answer replies from Amazon Q in Connect. Integration support for the use of additional LLM models with Amazon Q in Connect. * api-change:``sagemaker``: This release adds a new Neuron driver option in InferenceAmiVersion parameter for ProductionVariant. Additionally, it adds support for fetching model lifecycle status in the ListModelPackages API. Users can now use this API to view the lifecycle stage of models that have been shared with them. * api-change:``service-quotas``: Add new optional SupportCaseAllowed query parameter to the RequestServiceQuotaIncrease API - from version 1.37.36 * api-change:``accessanalyzer``: Added new resource types to evaluate for public access in resource policies and added support for S3 directory bucket access points. * api-change:``amp``: Add Workspace Configuration APIs for Amazon Prometheus * api-change:``autoscaling``: Doc only update for EC2 Auto Scaling. * api-change:``bedrock``: With this release, Bedrock Evaluation will now support custom metrics for evaluation. * api-change:``connect``: This release adds following capabilities to Contact Lens Rules APIs 1/ 'ASSIGN_SLA' action and '$.Case.TemplateId' comparison value for 'OnCaseCreate' and 'OnCaseUpdate' event sources 2/ 'OnSlaBreach' Cases event source which supports '$.RelatedItem.SlaConfiguration.Name' comparison value * api-change:``ecs``: Adds a new AccountSetting - defaultLogDriverMode for ECS. * api-change:``iotfleetwise``: We've added stricter parameter validations to AWS IoT FleetWise signal catalog, model manifest, and decoder manifest APIs. * api-change:``memorydb``: Added support for IPv6 and dual stack for Valkey and Redis clusters. Customers can now launch new Valkey and Redis clusters with IPv6 and dual stack networking support. * api-change:``omics``: Add versioning for HealthOmics workflows - from version 1.37.35 * api-change:``connectcases``: This feature provides capabilities to help track and meet service level agreements (SLAs) on cases programmatically. It allows configuring a new related item of type `Sla` on a case using CreateRelatedItem API and provides the ability to search for this new related item using SearchRelatedItems API. * api-change:``dsql``: Added GetClusterEndpointService API. The new API allows retrieving endpoint service name specific to a cluster. * api-change:``eks``: Added support for new AL2023 ARM64 NVIDIA AMIs to the supported AMITypes. * api-change:``events``: Adding support for KmsKeyIdentifer in CreateConnection, UpdateConnection and DescribeConnection APIs * api-change:``resource-groups``: Resource Groups: TagSyncTasks can be created with ResourceQuery * api-change:``s3tables``: S3 Tables now supports setting encryption configurations on table buckets and tables. Encryption configurations can use server side encryption using AES256 or KMS customer-managed keys. * api-change:``servicecatalog``: Updated default value for the access-level-filter in SearchProvisionedProducts API to Account. For access to userLevel or roleLevel, the user must provide access-level-filter parameter. - from version 1.37.34 * api-change:``entityresolution``: This is to add new metrics to our GetIdMappingJob API and also update uniqueId naming for batchDeleteUniqueIds API to be more accurate * api-change:``taxsettings``: Indonesia SOR Tax Registration Launch - from version 1.37.33 * api-change:``connect-contact-lens``: Making sentiment optional for ListRealtimeContactAnalysisSegments Response depending on conversational analytics configuration * api-change:``datazone``: Raise hard limit of authorized principals per SubscriptionTarget from 10 to 20. * api-change:``detective``: Add support for Detective DualStack endpoints * api-change:``dynamodb``: Doc only update for API descriptions. * api-change:``marketplace-entitlement``: Add support for Marketplace Entitlement Service dual-stack endpoints for CN and GOV regions * api-change:``meteringmarketplace``: Add support for Marketplace Metering Service dual-stack endpoints for CN regions * api-change:``pcs``: Changed the minimum length of clusterIdentifier, computeNodeGroupIdentifier, and queueIdentifier to 3. * api-change:``verifiedpermissions``: Adds deletion protection support to policy stores. Deletion protection is disabled by default, can be enabled via the CreatePolicyStore or UpdatePolicyStore APIs, and is visible in GetPolicyStore. - from version 1.37.32 * api-change:``application-autoscaling``: Application Auto Scaling now supports horizontal scaling for Elasticache Memcached self-designed clusters using target tracking scaling policies and scheduled scaling. * api-change:``elasticache``: AWS ElastiCache SDK now supports using MemcachedUpgradeConfig parameter with ModifyCacheCluster API to enable updating Memcached cache node types. Please refer to updated AWS ElastiCache public documentation for detailed information on API usage and implementation. * api-change:``m2``: Introduce three new APIs: CreateDataSetExportTask, GetDataSetExportTask and ListDataSetExportHistory. Add support for batch restart for Blu Age applications. * api-change:``medialive``: AWS Elemental MediaLive / Features : Add support for CMAF Ingest CaptionLanguageMappings, TimedMetadataId3 settings, and Link InputResolution. * api-change:``qbusiness``: Adds functionality to enable/disable a new Q Business Hallucination Reduction feature. If enabled, Q Business will detect and attempt to remove Hallucinations from certain Chat requests. * api-change:``quicksight``: Add support to analysis and sheet level highlighting in QuickSight. - from version 1.37.31 * api-change:``controlcatalog``: The GetControl API now surfaces a control's Severity, CreateTime, and Identifier for a control's Implementation. The ListControls API now surfaces a control's Behavior, Severity, CreateTime, and Identifier for a control's Implementation. * api-change:``dynamodb``: Documentation update for secondary indexes and Create_Table. * api-change:``glue``: The TableOptimizer APIs in AWS Glue now return the DpuHours field in each TableOptimizerRun, providing clients visibility to the DPU-hours used for billing in managed Apache Iceberg table compaction optimization. * api-change:``groundstation``: Support tagging Agents and adjust input field validations * api-change:``transfer``: This launch includes 2 enhancements to SFTP connectors user-experience: 1) Customers can self-serve concurrent connections setting for their connectors, and 2) Customers can discover the public host key of remote servers using their SFTP connectors. - from version 1.37.30 * api-change:``bedrock-runtime``: This release introduces our latest bedrock runtime API, InvokeModelWithBidirectionalStream. The API supports both input and output streams and is supported by only HTTP2.0. * api-change:``ce``: This release supports Pagination traits on Cost Anomaly Detection APIs. * api-change:``cost-optimization-hub``: This release adds resource type "MemoryDbReservedInstances" and resource type "DynamoDbReservedCapacity" to the GetRecommendation, ListRecommendations, and ListRecommendationSummaries APIs to support new MemoryDB and DynamoDB RI recommendations. * api-change:``iotfleetwise``: This release adds the option to update the strategy of state templates already associated to a vehicle, without the need to remove and re-add them. * api-change:``securityhub``: Documentation updates for AWS Security Hub. * api-change:``storagegateway``: Added new ActiveDirectoryStatus value, ListCacheReports paginator, and support for longer pagination tokens. * api-change:``taxsettings``: Uzbekistan Launch on TaxSettings Page - Update to 1.37.29 * api-change:``bedrock``: New options for how to handle harmful content detected by Amazon Bedrock Guardrails. * api-change:``bedrock-runtime``: New options for how to handle harmful content detected by Amazon Bedrock Guardrails. * api-change:``codebuild``: AWS CodeBuild now offers an enhanced debugging experience. * api-change:``glue``: Add input validations for multiple Glue APIs * api-change:``medialive``: AWS Elemental MediaLive now supports SDI inputs to MediaLive Anywhere Channels in workflows that use AWS SDKs. * api-change:``personalize``: Add support for eventsConfig for CreateSolution, UpdateSolution, DescribeSolution, DescribeSolutionVersion. Add support for GetSolutionMetrics to return weighted NDCG metrics when eventsConfig is enabled for the solution. * api-change:``transfer``: This launch enables customers to manage contents of their remote directories, by deleting old files or moving files to archive folders in remote servers once they have been retrieved. Customers will be able to automate the process using event-driven architecture. - from version 1.37.28 * api-change:``ds-data``: Doc only update - fixed broken links. * api-change:``ec2``: Doc-only updates for Amazon EC2 * api-change:``events``: Amazon EventBridge adds support for customer-managed keys on Archives and validations for two fields: eventSourceArn and kmsKeyIdentifier. * api-change:``s3control``: Updated max size of Prefixes parameter of Scope data type. - from version 1.37.27 * api-change:``bedrock-agent``: Added optional "customMetadataField" for Amazon Aurora knowledge bases, allowing single-column metadata. Also added optional "textIndexName" for MongoDB Atlas knowledge bases, enabling hybrid search support. * api-change:``chime-sdk-voice``: Added FOC date as an attribute of PhoneNumberOrder, added AccessDeniedException as a possible return type of ValidateE911Address * api-change:``mailmanager``: Add support for Dual_Stack and PrivateLink types of IngressPoint. For configuration requests, SES Mail Manager will now accept both IPv4/IPv6 dual-stack endpoints and AWS PrivateLink VPC endpoints for email receiving. * api-change:``opensearch``: Improve descriptions for various API commands and data types. * api-change:``route53``: Added us-gov-east-1 and us-gov-west-1 as valid Latency Based Routing regions for change-resource-record-sets. * api-change:``sagemaker``: Adds support for i3en, m7i, r7i instance types for SageMaker Hyperpod * api-change:``sesv2``: This release enables customers to provide attachments in the SESv2 SendEmail and SendBulkEmail APIs. * api-change:``transcribe``: This Feature Adds Support for the "zh-HK" Locale for Batch Operations * enhancement:Eventstream: The event streams maximum payload size is now required to be 24Mb or less. - from version 1.37.26 * api-change:``application-signals``: Application Signals now supports creating Service Level Objectives on service dependencies. Users can now create or update SLOs on discovered service dependencies to monitor their standard application metrics. * api-change:``codebuild``: This release adds support for environment type WINDOWS_SERVER_2022_CONTAINER in ProjectEnvironment * api-change:``ecr``: Fix for customer issues related to AWS account ID and size limitation for token. * api-change:``ecs``: This is an Amazon ECS documentation only update to address various tickets. * api-change:``lexv2-models``: Release feature of errorlogging for lex bot, customer can config this feature in bot version to generate log for error exception which helps debug * api-change:``medialive``: Added support for SMPTE 2110 inputs when running a channel in a MediaLive Anywhere cluster. This feature enables ingestion of SMPTE 2110-compliant video, audio, and ancillary streams by reading SDP files that AWS Elemental MediaLive can retrieve from a network source. - from version 1.37.25 * api-change:``cleanrooms``: This release adds support for updating the analytics engine of a collaboration. * api-change:``sagemaker``: Added tagging support for SageMaker notebook instance lifecycle configurations - from version 1.37.24 * api-change:``bedrock-runtime``: Add Prompt Caching support to Converse and ConverseStream APIs * api-change:``deadline``: With this release you can use a new field to specify the search term match type. Search term match types currently support fuzzy and contains matching. * api-change:``ec2``: Release VPC Route Server, a new feature allowing dynamic routing in VPCs. * api-change:``eks``: Add support for updating RemoteNetworkConfig for hybrid nodes on EKS UpdateClusterConfig API * api-change:``marketplace-entitlement``: Add support for Marketplace Entitlement Service dual-stack endpoints. * api-change:``outposts``: Enabling Asset Level Capacity Management feature, which allows customers to create a Capacity Task for a single Asset on their active Outpost. * api-change:``s3``: Amazon S3 adds support for S3 Access Points for directory buckets in AWS Dedicated Local Zones * api-change:``s3control``: Amazon S3 adds support for S3 Access Points for directory buckets in AWS Dedicated Local Zones * api-change:``sesv2``: Add dual-stack support to global endpoints. * api-change:``transfer``: Add WebAppEndpointPolicy support for WebApps - from version 1.37.23 * api-change:``apigateway``: Adds support for setting the IP address type to allow dual-stack or IPv4 address types to invoke your APIs or domain names. * api-change:``apigatewayv2``: Adds support for setting the IP address type to allow dual-stack or IPv4 address types to invoke your APIs or domain names. * api-change:``bedrock-runtime``: Launching Multi-modality Content Filter for Amazon Bedrock Guardrails. * api-change:``codebuild``: This release adds support for cacheNamespace in ProjectCache * api-change:``ecs``: This is an Amazon ECS documentation only release that addresses tickets. * api-change:``meteringmarketplace``: Add support for Marketplace Metering Service dual-stack endpoints. * api-change:``networkmanager``: Add support for NetworkManager Dualstack endpoints. * api-change:``payment-cryptography``: The service adds support for transferring AES-256 and other keys between the service and other service providers and HSMs. This feature uses ECDH to derive a one-time key transport key to enable these secure key exchanges. * api-change:``quicksight``: RLS permission dataset with userAs: RLS_RULES flag, Q in QuickSight/Threshold Alerts/Schedules/Snapshots in QS embedding, toggle dataset refresh email alerts via API, transposed table with options: column width, type and index, toggle Q&A on dashboards, Oracle Service Name when creating data source. * api-change:``sagemaker``: TransformAmiVersion for Batch Transform and SageMaker Search Service Aggregate Search API Extension - from version 1.37.22 * api-change:``batch``: This release will enable two features: Firelens log driver, and Execute Command on Batch jobs on ECS. Both features will be passed through to ECS. * api-change:``bcm-pricing-calculator``: Added standaloneAccountRateTypeSelections for GetPreferences and UpdatePreferences APIs. Added STALE enum value to status attribute in GetBillScenario and UpdateBillScenario APIs. * api-change:``bedrock-agent-runtime``: bedrock flow now support node action trace. * api-change:``cloudformation``: Adding support for the new parameter "ScanFilters" in the CloudFormation StartResourceScan API. When this parameter is included, the StartResourceScan API will initiate a scan limited to the resource types specified by the parameter. * api-change:``datazone``: This release adds new action type of Create Listing Changeset for the Metadata Enforcement Rule feature. * api-change:``eks``: Added support for BOTTLEROCKET FIPS AMIs to AMI types in US regions. * api-change:``gamelift``: Amazon GameLift Servers add support for additional instance types. * api-change:``iam``: Update IAM dual-stack endpoints for BJS, IAD and PDT partitions * api-change:``sagemaker``: add: recovery mode for SageMaker Studio apps * api-change:``sso-oidc``: This release adds AwsAdditionalDetails in the CreateTokenWithIAM API response. - from version 1.37.21 * api-change:``arc-zonal-shift``: Add new shiftType field for ARC zonal shifts. * api-change:``directconnect``: With this release, AWS Direct Connect allows you to tag your Direct Connect gateways. Tags are metadata that you can create and use to manage your Direct Connect gateways. For more information about tagging, see AWS Tagging Strategies. * api-change:``mediaconvert``: This release adds a configurable Quality Level setting for the top rendition of Auto ABR jobs * api-change:``mediatailor``: Add support for log filtering which allow customers to filter out selected event types from logs. * api-change:``polly``: Added support for the new voice - Jihye (ko-KR). Jihye is available as a Neural voice only. * api-change:``rds``: Add note about the Availability Zone where RDS restores the DB cluster for the RestoreDBClusterToPointInTime operation. * api-change:``wafv2``: This release adds the ability to associate an AWS WAF v2 web ACL with an AWS Amplify App. - from version 1.37.20 * api-change:``bedrock-agent``: Adding support for Amazon OpenSearch Managed clusters as a vector database in Knowledge Bases for Amazon Bedrock * api-change:``eks``: Added support to override upgrade-blocking readiness checks via force flag when updating a cluster. * api-change:``gameliftstreams``: Minor updates to improve developer experience. * api-change:``keyspaces``: Removing replication region limitation for Amazon Keyspaces Multi-Region Replication APIs. * api-change:``marketplace-entitlement``: This release enhances the GetEntitlements API to support new filter CUSTOMER_AWS_ACCOUNT_ID in request and CustomerAWSAccountId field in response. * api-change:``meteringmarketplace``: This release enhances the BatchMeterUsage API to support new field CustomerAWSAccountId in request and response and making CustomerIdentifier optional. CustomerAWSAccountId or CustomerIdentifier must be provided in request but not both. * api-change:``sagemaker``: This release adds support for customer-managed KMS keys in Amazon SageMaker Partner AI Apps * api-change:``workspaces-thin-client``: Deprecate tags field in Get API responses - from version 1.37.19 * api-change:``iotwireless``: Mark EutranCid under LteNmr optional. * api-change:``pcs``: ClusterName/ClusterIdentifier, ComputeNodeGroupName/ComputeNodeGroupIdentifier, and QueueName/QueueIdentifier can now have 10 characters, and a minimum of 3 characters. The TagResource API action can now return ServiceQuotaExceededException. * api-change:``qconnect``: Provides the correct value for supported model ID. * api-change:``ssm``: This release adds the AvailableSecurityUpdatesComplianceStatus field to patch baseline operations, as well as the AvailableSecurityUpdateCount and InstancesWithAvailableSecurityUpdates to patch state operations. Applies to Windows Server managed nodes only. - from version 1.37.18 * api-change:``bedrock``: A CustomModelUnit(CMU) is an abstract view of the hardware utilization that Bedrock needs to host a a single copy of your custom imported model. Bedrock determines the number of CMUs that a model copy needs when you import the custom model. You can use CMUs to estimate the cost of Inference's. * api-change:``datazone``: Add support for overriding selection of default AWS IAM Identity Center instance as part of Amazon DataZone domain APIs. * api-change:``route53-recovery-control-config``: Adds dual-stack (IPv4 and IPv6) endpoint support for route53-recovery-control-config operations, opt-in dual-stack addresses for cluster endpoints, and UpdateCluster API to update the network-type of clusters between IPv4 and dual-stack. * api-change:``sagemaker``: This release does the following: 1.) Adds DurationHours as a required field to the SearchTrainingPlanOfferings action in the SageMaker AI API; 2.) Adds support for G6e instance types for SageMaker AI inference optimization jobs. - from version 1.37.17 * api-change:``amplify``: Added appId field to Webhook responses * api-change:``bedrock``: With this release, Bedrock Evaluation will now support bring your own inference responses. * api-change:``controlcatalog``: Add ExemptAssumeRoot parameter to adapt for new AWS AssumeRoot capability. * api-change:``mailmanager``: Amazon SES Mail Manager. Extended rule string and boolean expressions to support analysis in condition evaluation. Extended ingress point string expression to support analysis in condition evaluation * api-change:``network-firewall``: You can now use flow operations to either flush or capture traffic monitored in your firewall's flow table. - from version 1.37.16 * api-change:``bedrock``: Support custom prompt routers for evaluation jobs * api-change:``ec2``: Doc-only updates for EC2 for March 2025. * api-change:``lambda``: Add Ruby 3.4 (ruby3.4) support to AWS Lambda. * api-change:``mediaconnect``: This release adds support for NDI flow outputs in AWS Elemental MediaConnect. You can now send content from your MediaConnect transport streams directly to your NDI environment using the new NDI output type. * api-change:``neptune-graph``: Update IAM Role ARN Validation to Support Role Paths * api-change:``sagemaker``: Added support for g6, g6e, m6i, c6i instance types in SageMaker Processing Jobs. - from version 1.37.15 * api-change:``appsync``: Providing Tagging support for DomainName in AppSync * api-change:``cleanrooms``: This release adds support for PySpark jobs. Customers can now analyze data by running jobs using approved PySpark analysis templates. * api-change:``mediaconvert``: This release adds support for AVC passthrough, the ability to specify PTS offset without padding, and an A/V segment matching feature. * api-change:``route53``: Amazon Route 53 now supports the iso-f regions for private DNS Amazon VPCs and cloudwatch healthchecks. - from version 1.37.14 * api-change:``application-signals``: This release adds support for adding, removing, and listing SLO time exclusion windows with the BatchUpdateExclusionWindows and ListServiceLevelObjectiveExclusionWindows APIs. * api-change:``geo-maps``: Provide support for vector map styles in the GetStaticMap operation. * api-change:``rum``: CloudWatch RUM now supports unminification of JS error stack traces. * api-change:``taxsettings``: Adjust Vietnam PaymentVoucherNumber regex and minor API change. * api-change:``wafv2``: AWS WAF now lets you inspect fragments of request URIs. You can specify the scope of the URI to inspect and narrow the set of URI fragments. - from version 1.37.13 * api-change:``cognito-identity``: Updated API model build artifacts for identity pools * api-change:``cognito-idp``: Minor description updates to API parameters * api-change:``glue``: This release added AllowFullTableExternalDataAccess to glue catalog resource. * api-change:``lakeformation``: This release added "condition" to LakeFormation OptIn APIs, also added WithPrivilegedAccess flag to RegisterResource and DescribeResource. - from version 1.37.12 * api-change:``acm-pca``: Private Certificate Authority service now supports P521 and RSA3072 key algorithms. * api-change:``amplify``: Introduced support for Skew Protection. Added enableSkewProtection field to createBranch and updateBranch API. * api-change:``codebuild``: AWS CodeBuild now supports webhook filtering by organization name * api-change:``datazone``: This release adds support to update projects and environments * api-change:``dynamodb``: Generate account endpoints for DynamoDB requests using ARN-sourced account ID when available * api-change:``ec2``: This release changes the CreateLaunchTemplate, CreateLaunchTemplateVersion, ModifyLaunchTemplate CLI and SDKs such that if you do not specify a client token, a randomly generated token is used for the request to ensure idempotency. * api-change:``ivs-realtime``: IVS Real-Time now offers customers the ability to adjust the participant & composition recording segment duration * api-change:``logs``: Updated CreateLogAnomalyDetector to accept only kms key arn * api-change:``mediapackagev2``: This release adds the ResetChannelState and ResetOriginEndpointState operation to reset MediaPackage V2 channel and origin endpoint. This release also adds a new field, UrlEncodeChildManifest, for HLS/LL-HLS to allow URL-encoding child manifest query string based on the requirements of AWS SigV4. * api-change:``s3control``: Updating GetDataAccess response for S3 Access Grants to include the matched Grantee for the requested prefix - Update to 1.37.11 * api-change:``ec2``: This release adds the GroupLongName field to the response of the DescribeAvailabilityZones API. * api-change:``ecr``: This release adds Amazon ECR to Amazon ECR pull through cache rules support. * api-change:``ecs``: This is a documentation only update for Amazon ECS to address various tickets. * api-change:``inspector2``: Adding componentArn to network reachability details * api-change:``medialive``: Add an enum option DISABLED for Output Locking Mode under Global Configuration. - from version 1.37.10 * api-change:``bedrock-agent``: Add support for computer use tools * api-change:``bedrock-agent-runtime``: Add support for computer use tools * api-change:``ce``: Releasing minor partition endpoint updates. * api-change:``connect``: Add support for contact transfers in external voice systems. * api-change:``medialive``: Adds defaultFontSize and defaultLineHeight as options in the EbuTtDDestinationSettings within the caption descriptions for an output stream. * api-change:``pca-connector-ad``: PrivateCA Connector for Active Directory now supports dual stack endpoints. This release adds the IpAddressType option to the VpcInformation on a Connector which determines whether the endpoint supports IPv4 only or IPv4 and IPv6 traffic. * api-change:``securityhub``: This release adds new StandardsControlsUpdatable field to the StandardsSubscription resource * api-change:``timestream-influxdb``: This release updates the default value of pprof-disabled from false to true. - from version 1.37.9 * api-change:``bedrock-agent``: Introduces support for Neptune Analytics as a vector data store and adds Context Enrichment Configurations, enabling use cases such as GraphRAG. * api-change:``bedrock-agent-runtime``: Support Multi Agent Collaboration within Inline Agents * api-change:``cloudfront``: Documentation updates for Amazon CloudFront. * api-change:``ec2``: Add serviceManaged field to DescribeAddresses API response. * api-change:``elbv2``: This release adds support for assigning IP addresses to Application Load Balancers from VPC IP Address Manager pools. * api-change:``neptune-graph``: Several small updates to resolve customer requests. - from version 1.37.8 * api-change:``bedrock``: This releases adds support for Custom Prompt Router * api-change:``cloudtrail``: Doc-only update for CloudTrail. * api-change:``ivs-realtime``: IVS Real-Time now offers customers the ability to merge fragmented recordings in the event of a participant disconnect. * api-change:``networkflowmonitor``: This release contains 2 changes. 1: DeleteScope/GetScope/UpdateScope operations now return 404 instead of 500 when the resource does not exist. 2: Expected string format for clientToken fields of CreateMonitorInput/CreateScopeInput/UpdateMonitorInput have been updated to be an UUID based string. * api-change:``redshift-data``: This release adds support for ListStatements API to filter statements by ClusterIdentifier, WorkgroupName, and Database. * api-change:``wafv2``: You can now perform an exact match or rate limit aggregation against the web request's JA4 fingerprint. * api-change:``workspaces``: Added a new ModifyEndpointEncryptionMode API for managing endpoint encryption settings. - from version 1.37.7 * api-change:``bedrock-runtime``: This releases adds support for Custom Prompt Router ARN * api-change:``datasync``: AWS DataSync now supports modifying ServerHostname while updating locations SMB, NFS, and ObjectStorage. * api-change:``gameliftstreams``: New Service: Amazon GameLift Streams delivers low-latency game streaming from AWS global infrastructure to virtually any device with a browser at up to 1080p resolution and 60 fps. * api-change:``iotfleetwise``: This release adds floating point support for CAN/OBD signals and adds support for signed OBD signals. * api-change:``workspaces``: Added DeviceTypeWorkSpacesThinClient type to allow users to access their WorkSpaces through a WorkSpaces Thin Client. - from version 1.37.6 * api-change:``elasticache``: Doc only update, listing 'valkey7' and 'valkey8' as engine options for parameter groups. * api-change:``iot-managed-integrations``: Adding managed integrations APIs for IoT Device Management to setup and control devices across different manufacturers and connectivity protocols. APIs include managedthing operations, credential and provisioning profile management, notification configuration, and OTA update. * api-change:``iotsitewise``: AWS IoT SiteWise now supports MQTT-enabled, V3 gateways. Configure data destinations for real-time ingestion into AWS IoT SiteWise or buffered ingestion using Amazon S3 storage. You can also use path filters for precise data collection from specific MQTT topics. * api-change:``rds``: Note support for Database Insights for Amazon RDS. - from version 1.37.5 * api-change:``cognito-idp``: Added the capacity to return available challenges in admin authentication and to set version 3 of the pre token generation event for M2M ATC. * api-change:``ec2``: Update the DescribeVpcs response * api-change:``qbusiness``: Adds support for the ingestion of audio and video files by Q Business, which can be configured with the mediaExtractionConfiguration parameter. * api-change:``rum``: Add support for PutResourcePolicy, GetResourcePolicy and DeleteResourcePolicy to support resource based policies for AWS CloudWatch RUM * api-change:``sagemaker``: Add DomainId to CreateDomainResponse * api-change:``transcribe``: Updating documentation for post call analytics job queueing. * enhancement:configuration: Add support for disabling host prefix injection via the ``AWS_DISABLE_HOST_PREFIX_INJECTION`` environment variable or the ``disable_host_prefix_injection`` parameter in the shared aws configuration file. - from version 1.37.4 * api-change:``bedrock-agent``: This release lets Amazon Bedrock Flows support newer models by increasing the maximum length of output in a prompt configuration. This release also increases the maximum number of prompt variables to 20 and the maximum number of node inputs to 20. * api-change:``bedrock-data-automation``: Renamed and added new StandardConfiguration enums. Added support to update EncryptionConfiguration in UpdateBlueprint and UpdateDataAutomation APIs. Changed HttpStatus code for DeleteBlueprint and DeleteDataAutomationProject APIs to 200 from 204. Added APIs to support tagging. * api-change:``bedrock-data-automation-runtime``: Added a mandatory parameter DataAutomationProfileArn to support for cross region inference for InvokeDataAutomationAsync API. Renamed DataAutomationArn to DataAutomationProjectArn. Added APIs to support tagging. * api-change:``dms``: Add skipped status to the Result Statistics of an Assessment Run * api-change:``eks``: Adding licenses to EKS Anywhere Subscription operations response. * api-change:``mediaconvert``: The AWS MediaConvert Probe API allows you to analyze media files and retrieve detailed metadata about their content, format, and structure. * api-change:``pricing``: Update GetProducts and DescribeServices API request input validations. * api-change:``ssm``: Systems Manager doc-only updates for Feb. 2025. * enhancement:useragent: Update user agent string to include client feature use. - from version 1.37.3 * api-change:``bedrock-agent-runtime``: Introduces Sessions (preview) to enable stateful conversations in GenAI applications. * api-change:``emr``: Definition update for EbsConfiguration. * api-change:``qbusiness``: This release supports deleting attachments from conversations. * api-change:``redshift-serverless``: Add track support for Redshift Serverless workgroup. * api-change:``sagemaker``: SageMaker HubService is introducing support for creating Training Jobs in Curated Hub (Private Hub). Additionally, it is introducing two new APIs: UpdateHubContent and UpdateHubContentReference. * api-change:``storagegateway``: This release adds support to invoke a process that cleans the specified file share's cache of file entries that are failing upload to Amazon S3. - from version 1.37.2 * api-change:``application-signals``: This release adds API support for reading Service Level Objectives and Services from monitoring accounts, from SLO and Service-scoped operations, including ListServices and ListServiceLevelObjectives. * api-change:``batch``: AWS Batch: Resource Aware Scheduling feature support * api-change:``chime``: Removes the Amazon Chime SDK APIs from the "chime" namespace. Amazon Chime SDK APIs continue to be available in the AWS SDK via the dedicated Amazon Chime SDK namespaces: chime-sdk-identity, chime-sdk-mediapipelines, chime-sdk-meetings, chime-sdk-messaging, and chime-sdk-voice. * api-change:``cloudfront``: Documentation update for VPC origin config. * api-change:``ec2``: Amazon EC2 Fleet customers can now override the Block Device Mapping specified in the Launch Template when creating a new Fleet request, saving the effort of creating and associating new Launch Templates to customize the Block Device Mapping. * api-change:``iotfleetwise``: This release adds an optional listResponseScope request parameter in certain list API requests to limit the response to metadata only. * api-change:``oam``: This release adds support for sharing AWS::ApplicationSignals::Service and AWS::ApplicationSignals::ServiceLevelObjective resources. * api-change:``sagemaker``: AWS SageMaker InferenceComponents now support rolling update deployments for Inference Components. * enhancement:``Protocol``: Adds support for the smithy-rpc-v2-cbor protocol. If a service supports smithy-rpc-v2-cbor, this protocol will automatically be used. For more information, see https://smithy.io/2.0/additional-specs/protocols/smithy-rpc-v2.html - from version 1.37.1 * api-change:``codebuild``: Adding "reportArns" field in output of BatchGetBuildBatches API. "reportArns" is an array that contains the ARNs of reports created by merging reports from builds associated with the batch build. * api-change:``devicefarm``: Add an optional configuration to the ScheduleRun and CreateRemoteAccessSession API to set a device level http/s proxy. * api-change:``ec2``: Adds support for time-based EBS-backed AMI copy operations. Time-based copy ensures that EBS-backed AMIs are copied within and across Regions in a specified timeframe. * api-change:``iot``: AWS IoT - AWS IoT Device Defender adds support for a new Device Defender Audit Check that monitors device certificate age and custom threshold configurations for both the new device certificate age check and existing device certificate expiry check. * api-change:``taxsettings``: PutTaxRegistration API changes for Egypt, Greece, Vietnam countries - from version 1.37.0 * api-change:``bedrock-agent``: This release improves support for newer models in Amazon Bedrock Flows. * api-change:``bedrock-agent-runtime``: Adding support for ReasoningContent fields in Pre-Processing, Post-Processing and Orchestration Trace outputs. * api-change:``bedrock-runtime``: This release adds Reasoning Content support to Converse and ConverseStream APIs * api-change:``elasticache``: Documentation update, adding clarity and rephrasing. * api-change:``elastic-inference``: The elastic-inference client has been removed following the deprecation of the service. * feature:Endpoints: Generate and use AWS-account-based endpoints for compatible services when the account ID is available. At launch, DynamoDB is the first and only compatible service. The new endpoint URL pattern will be ``https://<account-id>.ddb.<region>.amazonaws.com``. Additional services may be added in the future. See the documentation for details: https://docs.aws.amazon.com/sdkref/latest/guide/feature-account-endpoints.html - from version 1.36.26 * api-change:``appstream``: Added support for Certificate-Based Authentication on AppStream 2.0 multi-session fleets. * api-change:``bedrock-agent``: Introduce a new parameter which represents the user-agent header value used by the Bedrock Knowledge Base Web Connector. - from version 1.36.25 * api-change:``codebuild``: Add webhook status and status message to AWS CodeBuild webhooks * api-change:``guardduty``: Reduce the minimum number of required attack sequence signals from 2 to 1 * api-change:``license-manager-user-subscriptions``: Updates entity to include Microsoft RDS SAL as a valid type of user subscription. * api-change:``rds``: CloudWatch Database Insights now supports Amazon RDS. * api-change:``sagemaker``: Added new capability in the UpdateCluster operation to remove instance groups from your SageMaker HyperPod cluster. * api-change:``workspaces-web``: Add support for toolbar configuration under user settings. - from version 1.36.24 * api-change:``codepipeline``: Add environment variables to codepipeline action declaration. * api-change:``ecs``: This is a documentation only release for Amazon ECS that supports the CPU task limit increase. * api-change:``lightsail``: Documentation updates for Amazon Lightsail. * api-change:``location``: Adds support for larger property maps for tracking and geofence positions changes. It increases the maximum number of items from 3 to 4, and the maximum value length from 40 to 150. * api-change:``mailmanager``: This release adds additional metadata fields in Mail Manager archive searches to show email source and details about emails that were archived when being sent with SES. * api-change:``network-firewall``: This release introduces Network Firewall's Automated Domain List feature. New APIs include UpdateFirewallAnalysisSettings, StartAnalysisReport, GetAnalysisReportResults, and ListAnalysisReports. These allow customers to enable analysis on firewalls to identify and report frequently accessed domain. * api-change:``sagemaker``: Adds r8g instance type support to SageMaker Realtime Endpoints * api-change:``sesv2``: This release adds the ability for outbound email sent with SES to preserve emails to a Mail Manager archive. - from version 1.36.23 * api-change:``batch``: This documentation-only update corrects some typos. * api-change:``emr-containers``: EMR on EKS StartJobRun Api will be supporting the configuration of log storage in AWS by using "managedLogs" under "MonitoringConfiguration". * api-change:``medialive``: Adds support for creating CloudWatchAlarmTemplates for AWS Elemental MediaTailor Playback Configuration resources. - from version 1.36.22 * api-change:``amplify``: Add ComputeRoleArn to CreateApp, UpdateApp, CreateBranch, and UpdateBranch, allowing caller to specify a role to be assumed by Amplify Hosting for server-side rendered applications. * api-change:``dms``: Support replicationConfigArn in DMS DescribeApplicableIndividualAssessments API. * api-change:``timestream-influxdb``: This release introduces APIs to manage DbClusters and adds support for read replicas * enhancement:Parsers: Minor Parser updates to support the new smithy-generated protocol tests. See `boto/botocore#3247 <https://github.com/boto/botocore/pull/3247>`__ for more details. - from version 1.36.21 * api-change:``codebuild``: Added test suite names to test case metadata * api-change:``connect``: Release Notes: 1) Analytics API enhancements: Added new ListAnalyticsDataLakeDataSets API. 2) Onboarding API Idempotency: Adds ClientToken to instance creation and management APIs to support idempotency. * api-change:``dms``: Introduces premigration assessment feature to DMS Serverless API for start-replication and describe-replications * api-change:``rds-data``: Add support for Stop DB feature. * api-change:``s3``: Added support for Content-Range header in HeadObject response. * api-change:``wafv2``: The WAFv2 API now supports configuring data protection in webACLs. * api-change:``workspaces-thin-client``: Update Environment and Device name field definitions - from version 1.36.20 * api-change:``accessanalyzer``: This release introduces the getFindingsStatistics API, enabling users to retrieve aggregated finding statistics for IAM Access Analyzer's external access and unused access analysis features. Updated service API and documentation. * api-change:``acm-pca``: Private Certificate Authority (PCA) documentation updates * api-change:``ecs``: This is a documentation only release to support migrating Amazon ECS service ARNs to the long ARN format. * api-change:``fis``: Adds auto-pagination for the following operations: ListActions, ListExperimentTemplates, ListTargetAccountConfigurations, ListExperiments, ListExperimentResolvedTargets, ListTargetResourceTypes. Reduces length constraints of prefixes for logConfiguration and experimentReportConfiguration. * api-change:``sagemaker``: Adds additional values to the InferenceAmiVersion parameter in the ProductionVariant data type. * api-change:``storagegateway``: This release adds support for generating cache reports on S3 File Gateways for files that fail to upload. - from version 1.36.19 * api-change:``b2bi``: Allow spaces in the following fields in the Partnership resource: ISA 06 - Sender ID, ISA 08 - Receiver ID, GS 02 - Application Sender Code, GS 03 - Application Receiver Code * api-change:``bedrock-agent``: This releases adds the additionalModelRequestFields field to the CreateAgent and UpdateAgent operations. Use additionalModelRequestFields to specify additional inference parameters for a model beyond the base inference parameters. * api-change:``bedrock-agent-runtime``: This releases adds the additionalModelRequestFields field to the InvokeInlineAgent operation. Use additionalModelRequestFields to specify additional inference parameters for a model beyond the base inference parameters. * api-change:``codebuild``: Add note for the RUNNER_BUILDKITE_BUILD buildType. * api-change:``fsx``: Support for in-place Lustre version upgrades * api-change:``medialive``: Adds a RequestId parameter to all MediaLive Workflow Monitor create operations. The RequestId parameter allows idempotent operations. * api-change:``opensearchserverless``: Custom OpenSearchServerless Entity ID for SAML Config. * api-change:``polly``: Added support for the new voice - Jasmine (en-SG). Jasmine is available as a Neural voice only. * enhancement:Protocols: Added support for multiple protocols within a service based on performance priority. - from version 1.36.18 * api-change:``acm-pca``: Private Certificate Authority service now supports Partitioned CRL as a revocation configuration option. * api-change:``appsync``: Add support for operation level caching * api-change:``ec2``: Adding support for the new fullSnapshotSizeInBytes field in the response of the EC2 EBS DescribeSnapshots API. This field represents the size of all the blocks that were written to the source volume at the time the snapshot was created. * api-change:``pi``: Documentation only update for RDS Performance Insights dimensions for execution plans and locking analysis. - from version 1.36.17 * api-change:``apigatewayv2``: Documentation updates for Amazon API Gateway * api-change:``cloudfront``: Doc-only update that adds defaults for CloudFront VpcOriginEndpointConfig values. * api-change:``connect``: Updated the CreateContact API documentation to indicate that it only applies to EMAIL contacts. * api-change:``dms``: New vendors for DMS Data Providers: DB2 LUW and DB2 for z/OS - from version 1.36.16 * api-change:``ecr``: Adds support to handle the new basic scanning daily quota. * api-change:``eks``: Introduce versionStatus field to take place of status field in EKS DescribeClusterVersions API * api-change:``mediaconvert``: This release adds support for Animated GIF output, forced chroma sample positioning metadata, and Extensible Wave Container format * api-change:``pi``: Adds documentation for dimension groups and dimensions to analyze locks for Database Insights. * api-change:``transcribe``: This release adds support for the Clinical Note Template Customization feature for the AWS HealthScribe APIs within Amazon Transcribe. - from version 1.36.15 * api-change:``cloudformation``: We added 5 new stack refactoring APIs: CreateStackRefactor, ExecuteStackRefactor, ListStackRefactors, DescribeStackRefactor, ListStackRefactorActions. * api-change:``connectcases``: This release adds the ability to conditionally require fields on a template. Check public documentation for more information. * api-change:``cost-optimization-hub``: This release enables AWS Cost Optimization Hub to show cost optimization recommendations for Amazon Auto Scaling Groups, including those with single and mixed instance types. * api-change:``s3``: Updated list of the valid AWS Region values for the LocationConstraint parameter for general purpose buckets. * enhancement:Eventsteam: The SDK no longer validates payload size for eventstreams. This is to facilitate varying payload requirements across AWS services. - from version 1.36.14 * api-change:``rds``: Documentation updates to clarify the description for the parameter AllocatedStorage for the DB cluster data type, the description for the parameter DeleteAutomatedBackups for the DeleteDBCluster API operation, and removing an outdated note for the CreateDBParameterGroup API operation. - from version 1.36.13 * api-change:``datasync``: Doc-only update to provide more information on using Kerberos authentication with SMB locations. * api-change:``dms``: Introduces TargetDataSettings with the TablePreparationMode option available for data migrations. * api-change:``iam``: This release adds support for accepting encrypted SAML assertions. Customers can now configure their identity provider to encrypt the SAML assertions it sends to IAM. * api-change:``neptune-graph``: Added argument to `list-export` to filter by graph ID * api-change:``qbusiness``: Adds functionality to enable/disable a new Q Business Chat orchestration feature. If enabled, Q Business can orchestrate over datasources and plugins without the need for customers to select specific chat modes. * api-change:``sagemaker``: IPv6 support for Hyperpod clusters - from version 1.36.12 * api-change:``mediatailor``: Add support for CloudWatch Vended Logs which allows for delivery of customer logs to CloudWatch Logs, S3, or Firehose. - Update to 1.36.11 * api-change:``amp``: Add support for sending metrics to cross account and CMCK AMP workspaces through RoleConfiguration on Create/Update Scraper. * api-change:``bedrock-agent-runtime``: This change is to deprecate the existing citation field under RetrieveAndGenerateStream API response in lieu of GeneratedResponsePart and RetrievedReferences * api-change:``codebuild``: Added support for CodeBuild self-hosted Buildkite runner builds * api-change:``geo-routes``: The OptimizeWaypoints API now supports 50 waypoints per request (20 with constraints like AccessHours or AppointmentTime). It adds waypoint clustering via Clustering and ClusteringIndex for better optimization. Also, total distance validation is removed for greater flexibility. * api-change:``rds``: Updates to Aurora MySQL and Aurora PostgreSQL API pages with instance log type in the create and modify DB Cluster. * api-change:``sagemaker``: This release introduces a new valid value in InstanceType parameter: p5en.48xlarge, in ProductionVariant. - from version 1.36.10 * api-change:``appstream``: Add support for managing admin consent requirement on selected domains for OneDrive Storage Connectors in AppStream2.0. * api-change:``bedrock-agent-runtime``: Add a 'reason' field to InternalServerException * api-change:``ecr``: Temporarily updating dualstack endpoint support * api-change:``ecr-public``: Temporarily updating dualstack endpoint support * api-change:``mediatailor``: Adds options for configuring how MediaTailor conditions ads before inserting them into the content stream. Based on the new settings, MediaTailor will either transcode ads to match the content stream as it has in the past, or it will insert ads without first transcoding them. * api-change:``qbusiness``: Added APIs to manage QBusiness user subscriptions * api-change:``s3tables``: You can now use the CreateTable API operation to create tables with schemas by adding an optional metadata argument. * api-change:``verifiedpermissions``: Adds Cedar JSON format support for entities and context data in authorization requests * enhancement:AWSCRT: Update awscrt version to 0.23.8 - from version 1.36.9 * api-change:``bcm-pricing-calculator``: Added ConflictException error type in DeleteBillScenario, BatchDeleteBillScenarioCommitmentModification, BatchDeleteBillScenarioUsageModification, BatchUpdateBillScenarioUsageModification, and BatchUpdateBillScenarioCommitmentModification API operations. * api-change:``ecr``: Add support for Dualstack and Dualstack-with-FIPS Endpoints * api-change:``ecr-public``: Add support for Dualstack Endpoints * api-change:``mailmanager``: This release includes a new feature for Amazon SES Mail Manager which allows customers to specify known addresses and domains and make use of those in traffic policies and rules actions to distinguish between known and unknown entries. * api-change:``s3``: Change the type of MpuObjectSize in CompleteMultipartUploadRequest from int to long. - from version 1.36.8 * api-change:``appsync``: Add stash and outErrors to EvaluateCode/EvaluateMappingTemplate response * api-change:``datasync``: AWS DataSync now supports the Kerberos authentication protocol for SMB locations. * api-change:``deadline``: feature: Deadline: Add support for limiting the concurrent usage of external resources, like floating licenses, using limits and the ability to constrain the maximum number of workers that work on a job * api-change:``ec2``: This release changes the CreateFleet CLI and SDK's such that if you do not specify a client token, a randomly generated token is used for the request to ensure idempotency. * api-change:``firehose``: For AppendOnly streams, Firehose will automatically scale to match your throughput. * api-change:``timestream-influxdb``: Adds 'allocatedStorage' parameter to UpdateDbInstance API that allows increasing the database instance storage size and 'dbStorageType' parameter to UpdateDbInstance API that allows changing the storage type of the database instance - from version 1.36.7 * api-change:``bedrock-agent``: Add support for the prompt caching feature for Bedrock Prompt Management * api-change:``iot``: Raised the documentParameters size limit to 30 KB for AWS IoT Device Management - Jobs. * api-change:``mediaconvert``: This release adds support for dynamic audio configuration and the ability to disable the deblocking filter for h265 encodes. * api-change:``s3control``: Minor fix to ARN validation for Lambda functions passed to S3 Batch Operations * bugfix:Signing: No longer sign transfer-encoding header for SigV4 - from version 1.36.6 * api-change:``cloudtrail``: This release introduces the SearchSampleQueries API that allows users to search for CloudTrail Lake sample queries. * api-change:``eks``: Adds support for UpdateStrategies in EKS Managed Node Groups. * api-change:``healthlake``: Added new authorization strategy value 'SMART_ON_FHIR' for CreateFHIRDatastore API to support Smart App 2.0 * api-change:``ssm``: Systems Manager doc-only update for January, 2025. * api-change:``sso-oidc``: Fixed typos in the descriptions. * api-change:``transfer``: Added CustomDirectories as a new directory option for storing inbound AS2 messages, MDN files and Status files. - from version 1.36.5 * api-change:``ec2``: Added "future" allocation type for future dated capacity reservation - from version 1.36.4 * api-change:``bedrock-agent-runtime``: Adds multi-turn input support for an Agent node in an Amazon Bedrock Flow * api-change:``glue``: Docs Update for timeout changes * api-change:``medialive``: AWS Elemental MediaLive adds a new feature, ID3 segment tagging, in CMAF Ingest output groups. It allows customers to insert ID3 tags into every output segment, controlled by a newly added channel schedule action Id3SegmentTagging. * api-change:``workspaces-thin-client``: Rename WorkSpaces Web to WorkSpaces Secure Browser - from version 1.36.3 * api-change:``batch``: Documentation-only update: clarified the description of the shareDecaySeconds parameter of the FairsharePolicy data type, clarified the description of the priority parameter of the JobQueueDetail data type. * api-change:``cognito-idp``: corrects the dual-stack endpoint configuration for cognitoidp * api-change:``connect``: Added DeleteContactFlowVersion API and the CAMPAIGN flow type * api-change:``emr-serverless``: Increasing entryPoint in SparkSubmit to accept longer script paths. New limit is 4kb. * api-change:``iotsitewise``: AWS IoT SiteWise now supports ingestion and querying of Null (all data types) and NaN (double type) values of bad or uncertain data quality. New partial error handling prevents data loss during ingestion. Enabled by default for new customers; existing customers can opt-in. * api-change:``logs``: Documentation-only update to address doc errors * api-change:``quicksight``: Added `DigitGroupingStyle` in ThousandsSeparator to allow grouping by `LAKH`( Indian Grouping system ) currency. Support LAKH and `CRORE` currency types in Column Formatting. * api-change:``sns``: This release adds support for the topic attribute FifoThroughputScope for SNS FIFO topics. For details, see the documentation history in the Amazon Simple Notification Service Developer Guide. - Update to 1.36.0 * api-change:``bedrock-runtime``: Allow hyphens in tool name for Converse and ConverseStream APIs * api-change:``detective``: Doc only update for Detective documentation. * api-change:``ec2``: Release u7i-6tb.112xlarge, u7i-8tb.112xlarge, u7inh-32tb.480xlarge, p5e.48xlarge, p5en.48xlarge, f2.12xlarge, f2.48xlarge, trn2.48xlarge instance types. * api-change:``notifications``: Added support for Managed Notifications, integration with AWS Organization and added aggregation summaries for Aggregate Notifications * api-change:``sagemaker``: Correction of docs for "Added support for ml.trn1.32xlarge instance type in Reserved Capacity Offering" - from version 1.36.1 * api-change:``ecs``: The release addresses Amazon ECS documentation tickets. * api-change:``sagemaker``: Added support for ml.trn1.32xlarge instance type in Reserved Capacity Offering - from version 1.36.0 * api-change:``apigateway``: Documentation updates for Amazon API Gateway * api-change:``bedrock-agent-runtime``: Now supports streaming for inline agents. * api-change:``cognito-identity``: corrects the dual-stack endpoint configuration * api-change:``partnercentral-selling``: Add Tagging support for ResourceSnapshotJob resources * api-change:``s3``: This change enhances integrity protections for new SDK requests to S3. S3 SDKs now support the CRC64NVME checksum algorithm, full object checksums for multipart S3 objects, and new default integrity protections for S3 requests. * api-change:``security-ir``: Increase minimum length of Threat Actor IP 'userAgent' to 1. * api-change:``sesv2``: This release introduces a new recommendation in Virtual Deliverability Manager Advisor, which detects elevated complaint rates for customer sending identities. * api-change:``workspaces``: Added GeneralPurpose.4xlarge & GeneralPurpose.8xlarge ComputeTypes. * api-change:``workspaces-thin-client``: Mark type in MaintenanceWindow as required. * enhancement:AWSCRT: Update awscrt version to 0.23.4 * feature:``s3``: The S3 client attempts to validate response checksums for all S3 API operations that support checksums. However, if the SDK has not implemented the specified checksum algorithm then this validation is skipped. Checksum validation behavior can be configured using the ``when_supported`` and ``when_required`` options - in code using the ``response_checksum_validation`` parameter for ``botocore.config.Config``, in the shared AWS config file using ``response_checksum_validation``, or as an env variable using ``AWS_RESPONSE_CHECKSUM_VALIDATION``. * feature:``s3``: Added support for the CRC64NVME checksum algorithm in the S3 client through the optional AWS CRT (``awscrt``) dependency. * feature:``s3``: S3 client behavior is updated to always calculate a CRC32 checksum by default for operations that support it (such as PutObject or UploadPart), or require it (such as DeleteObjects). Checksum behavior can be configured using ``when_supported`` and ``when_required`` options - in code using the ``request_checksum_calculation`` parameter for ``botocore.config.Config``, in the shared AWS config file using ``request_checksum_calculation``, or as an env variable using ``AWS_REQUEST_CHECKSUM_CALCULATION``. Note: Botocore will no longer automatically compute and populate the Content-MD5 header. - from version 1.35.99 * api-change:``gamelift``: Amazon GameLift releases a new game session placement feature: PriorityConfigurationOverride. You can now override how a game session queue prioritizes placement locations for a single StartGameSessionPlacement request. * api-change:``route53``: Amazon Route 53 now supports the Mexico (Central) Region (mx-central-1) for latency records, geoproximity records, and private DNS for Amazon VPCs in that region - from version 1.35.98 * api-change:``artifact``: Support resolving regional API calls to partition's leader region endpoint. * api-change:``bedrock``: With this release, Bedrock Evaluation will now support latency-optimized inference for foundation models. * api-change:``ec2``: Add support for DisconnectOnSessionTimeout flag in CreateClientVpnEndpoint and ModifyClientVpnEndpoint requests and DescribeClientVpnEndpoints responses * api-change:``kafkaconnect``: Support updating connector configuration via UpdateConnector API. Release Operations API to monitor the status of the connector operation. * api-change:``transcribe``: This update provides tagging support for Transcribe's Call Analytics Jobs and Call Analytics Categories. - from version 1.35.97 * api-change:``redshift``: Additions to the PubliclyAccessible and Encrypted parameters clarifying what the defaults are. * api-change:``securitylake``: Doc only update for ServiceName that fixes several customer-reported issues * api-change:``sts``: Fixed typos in the descriptions. - from version 1.35.96 * api-change:``codebuild``: AWS CodeBuild Now Supports BuildBatch in Reserved Capacity and Lambda * api-change:``compute-optimizer``: This release expands AWS Compute Optimizer rightsizing recommendation support for Amazon EC2 Auto Scaling groups to include those with scaling policies and multiple instance types. * api-change:``fms``: AWS Firewall Manager now lets you combine multiple resource tags using the logical AND operator or the logical OR operator. - from version 1.35.95 * api-change:``rds``: Updates Amazon RDS documentation to clarify the RestoreDBClusterToPointInTime description. * api-change:``route53``: Amazon Route 53 now supports the Asia Pacific (Thailand) Region (ap-southeast-7) for latency records, geoproximity records, and private DNS for Amazon VPCs in that region * api-change:``sagemaker``: Adds support for IPv6 for SageMaker HyperPod cluster nodes. - from version 1.35.94 * api-change:``cloudhsmv2``: Adds support to ModifyCluster for modifying a Cluster's Hsm Type. * api-change:``dynamodb``: This release makes Amazon DynamoDB point-in-time-recovery (PITR) to be configurable. You can set PITR recovery period for each table individually to between 1 and 35 days. * api-change:``imagebuilder``: This release adds support for importing images from ISO disk files. Added new ImportDiskImage API operation. - from version 1.35.93 * api-change:``iotsecuretunneling``: Adds dualstack endpoint support for IoT Secure Tunneling * api-change:``supplychain``: Allow vanity DNS domain when creating a new ASC instance - from version 1.35.92 * api-change:``ecs``: Adding SDK reference examples for Amazon ECS operations. * api-change:``route53domains``: Doc only update for Route 53 Domains that fixes several customer-reported issues * api-change:``s3``: This change is only for updating the model regexp of CopySource which is not for validation but only for documentation and user guide change. - from version 1.35.91 * api-change:``appsync``: Modify UpdateGraphQLAPI operation and flag authenticationType as required. * api-change:``gamelift``: Amazon GameLift releases a new game session shutdown feature. Use the Amazon GameLift console or AWS CLI to terminate an in-progress game session that's entered a bad state or is no longer needed. * api-change:``mediaconnect``: AWS Elemental MediaConnect now supports Content Quality Analysis for enhanced source stream monitoring. This enables you to track specific audio and video metrics in transport stream source flows, ensuring your content meets quality standards. * api-change:``mediaconvert``: This release adds support for the AVC3 codec and fixes an alignment issue with Japanese vertical captions. * api-change:``organizations``: Added ALL_FEATURES_MIGRATION_ORGANIZATION_SIZE_LIMIT_EXCEEDED to ConstraintViolationException for the EnableAllFeatures operation. * api-change:``sagemaker``: Adding ETag information with Model Artifacts for Model Registry * api-change:``sqs``: In-flight message typo fix from 20k to 120k. - from version 1.35.90 * api-change:``ecr``: Restoring custom endpoint functionality for ECR * api-change:``ecr-public``: Restoring custom endpoint functionality for ECR Public - from version 1.35.89 * api-change:``rds``: Updates Amazon RDS documentation to correct various descriptions. - from version 1.35.88 * api-change:``bcm-pricing-calculator``: Added ConflictException to DeleteBillEstimate. * api-change:``ecr``: Add support for Dualstack Endpoints * api-change:``network-firewall``: Dual-stack endpoints are now supported. * api-change:``securityhub``: Documentation updates for AWS Security Hub - from version 1.35.87 * api-change:``ecr``: Documentation update for ECR GetAccountSetting and PutAccountSetting APIs. * api-change:``ecr-public``: Add support for Dualstack endpoints * api-change:``eks``: This release adds support for DescribeClusterVersions API that provides important information about Kubernetes versions along with end of support dates * api-change:``glue``: Add IncludeRoot parameters to GetCatalogs API to return root catalog. - from version 1.35.86 * api-change:``bedrock-agent``: Support for custom user agent and max web pages crawled for web connector. Support app only credentials for SharePoint connector. Increase agents memory duration limit to 365 days. Support to specify max number of session summaries to include in agent invocation context. * api-change:``bedrock-agent-runtime``: bedrock agents now supports long term memory and performance configs. Invokeflow supports performance configs. RetrieveAndGenerate performance configs * api-change:``bedrock-data-automation``: Documentation update for Amazon Bedrock Data Automation * api-change:``bedrock-data-automation-runtime``: Documentation update for Amazon Bedrock Data Automation Runtime * api-change:``billing``: Added new API's for defining and fetching Billing Views. * api-change:``ce``: Support for retrieving cost, usage, and forecast for billing view. * api-change:``connect``: This release supports adding NotAttributeCondition and Range to the RoutingCriteria object. * api-change:``docdb``: Support AWS Secret Manager managed password for AWS DocumentDB instance-based cluster. * api-change:``eks``: This release expands the catalog of upgrade insight checks * api-change:``macie2``: This release adds support for identifying S3 general purpose buckets that exceed the Amazon Macie quota for preventative control monitoring. * api-change:``outposts``: Add CS8365C as a supported power connector for Outpost sites. * api-change:``sagemaker``: This release adds support for c6i, m6i and r6i instance on SageMaker Hyperpod and trn1 instances in batch - from version 1.35.85 * api-change:``appstream``: Added support for Rocky Linux 8 on Amazon AppStream 2.0 * api-change:``mediaconvert``: This release adds support for inserting timecode tracks into MP4 container outputs. * api-change:``medialive``: MediaLive is releasing ListVersions api * api-change:``qconnect``: Amazon Q in Connect enables agents to ask Q for assistance in multiple languages and Q will provide answers and recommended step-by-step guides in those languages. Qs default language is English (United States) and you can switch this by setting the locale configuration on the AI Agent. * api-change:``ssm-sap``: AWS Systems Manager for SAP added support for registration and discovery of distributed ABAP applications * api-change:``workspaces``: Added AWS Global Accelerator (AGA) support for WorkSpaces Personal. - from version 1.35.84 * api-change:``amplify``: Added WAF Configuration to Amplify Apps * api-change:``budgets``: Releasing minor partition endpoint updates * api-change:``connect``: This release adds support for the UpdateParticipantAuthentication API used for customer authentication within Amazon Connect chats. * api-change:``connectparticipant``: This release adds support for the GetAuthenticationUrl and CancelParticipantAuthentication APIs used for customer authentication within Amazon Connect chats. There are also minor updates to the GetAttachment API. * api-change:``datasync``: AWS DataSync introduces the ability to update attributes for in-cloud locations. * api-change:``iot``: Release connectivity status query API which is a dedicated high throughput(TPS) API to query a specific device's most recent connectivity state and metadata. * api-change:``mwaa``: Added support for Apache Airflow version 2.10.3 to MWAA. * api-change:``quicksight``: Add support for PerformanceConfiguration attribute to Dataset entity. Allow PerformanceConfiguration specification in CreateDataset and UpdateDataset APIs. * api-change:``resiliencehub``: AWS Resilience Hub now automatically detects already configured CloudWatch alarms and FIS experiments as part of the assessment process and returns the discovered resources in the corresponding list API responses. It also allows you to include or exclude test recommendations for an AppComponent. * api-change:``transfer``: Added AS2 agreement configurations to control filename preservation and message signing enforcement. Added AS2 connector configuration to preserve content type from S3 objects. - from version 1.35.83 * api-change:``account``: Update endpoint configuration. * api-change:``backup``: Add Support for Backup Indexing * api-change:``backupsearch``: Add support for searching backups * api-change:``batch``: This feature allows AWS Batch on Amazon EKS to support configuration of Pod Annotations, overriding Namespace on which the Batch job's Pod runs on, and allows Subpath and Persistent Volume claim to be set for AWS Batch on Amazon EKS jobs. * api-change:``cleanroomsml``: Add support for SQL compute configuration for StartAudienceGenerationJob API. * api-change:``cloudfront``: Adds support for OriginReadTimeout and OriginKeepaliveTimeout to create CloudFront Distributions with VPC Origins. * api-change:``codepipeline``: AWS CodePipeline V2 type pipelines now support Managed Compute Rule. * api-change:``ecs``: Added support for enableFaultInjection task definition parameter which can be used to enable Fault Injection feature on ECS tasks. * api-change:``m2``: This release adds support for AWS Mainframe Modernization(M2) Service to allow specifying network type(ipv4, dual) for the environment instances. For dual network type, m2 environment applications will serve both IPv4 and IPv6 requests, whereas for ipv4 it will serve only IPv4 requests. * api-change:``synthetics``: Add support to toggle outbound IPv6 traffic on canaries connected to dualstack subnets. This behavior can be controlled via the new Ipv6AllowedForDualStack parameter of the VpcConfig input object in CreateCanary and UpdateCanary APIs. - from version 1.35.82 * api-change:``cloud9``: Added information about Ubuntu 18.04 will be removed from the available imageIds for Cloud9 because Ubuntu 18.04 has ended standard support on May 31, 2023. * api-change:``dlm``: This release adds support for Local Zones in Amazon Data Lifecycle Manager EBS snapshot lifecycle policies. * api-change:``ec2``: This release adds support for EBS local snapshots in AWS Dedicated Local Zones, which allows you to store snapshots of EBS volumes locally in Dedicated Local Zones. * api-change:``greengrassv2``: Add support for runtime in GetCoreDevice and ListCoreDevices APIs. * api-change:``medialive``: AWS Elemental MediaLive adds three new features: MediaPackage v2 endpoint support for live stream delivery, KLV metadata passthrough in CMAF Ingest output groups, and Metadata Name Modifier in CMAF Ingest output groups for customizing metadata track names in output streams. * api-change:``rds``: This release adds support for the "MYSQL_CACHING_SHA2_PASSWORD" enum value for RDS Proxy ClientPasswordAuthType. - from version 1.35.81 * api-change:``cloudhsmv2``: Add support for Dual-Stack hsm2m.medium clusters. The customers will now be able to create hsm2m.medium clusters having both IPv4 and IPv6 connection capabilities by specifying a new param called NetworkType=DUALSTACK during cluster creation. * api-change:``ec2``: This release adds GroupId to the response for DeleteSecurityGroup. * api-change:``eks``: Add NodeRepairConfig in CreateNodegroupRequest and UpdateNodegroupConfigRequest * api-change:``logs``: Limit PutIntegration IntegrationName and ListIntegrations IntegrationNamePrefix parameters to 50 characters * api-change:``mediaconnect``: AWS Elemental MediaConnect Gateway now supports Source Specific Multicast (SSM) for ingress bridges. This enables you to specify a source IP address in addition to a multicast IP when creating or updating an ingress bridge source. * api-change:``networkmanager``: There was a sentence fragment in UpdateDirectConnectGatewayAttachment that was causing customer confusion as to whether it's an incomplete sentence or if it was a typo. Removed the fragment. * api-change:``servicediscovery``: AWS Cloud Map now supports service-level attributes, allowing you to associate custom metadata directly with services. These attributes can be retrieved, updated, and deleted using the new GetServiceAttributes, UpdateServiceAttributes, and DeleteServiceAttributes API calls. - from version 1.35.80 * api-change:``connect``: Configure holidays and other overrides to hours of operation in advance. During contact handling, Amazon Connect automatically checks for overrides and provides customers with an appropriate flow path. After an override period passes call center automatically reverts to standard hours of operation. * api-change:``dms``: Add parameters to support for kerberos authentication. Add parameter for disabling the Unicode source filter with PostgreSQL settings. Add parameter to use large integer value with Kinesis/Kafka settings. * api-change:``glue``: To support customer-managed encryption in Data Quality to allow customers encrypt data with their own KMS key, we will add a DataQualityEncryption field to the SecurityConfiguration API where customers can provide their KMS keys. * api-change:``guardduty``: Improved descriptions for certain APIs. * api-change:``route53domains``: This release includes the following API updates: added the enumeration type RESTORE_DOMAIN to the OperationType; constrained the Price attribute to non-negative values; updated the LangCode to allow 2 or 3 alphabetical characters. - from version 1.35.79 * api-change:``artifact``: Add support for listing active customer agreements for the calling AWS Account. * api-change:``cloudtrail``: Doc-only updates for CloudTrail. * api-change:``cognito-idp``: Updated descriptions for some API operations and parameters, corrected some errors in Cognito user pools * api-change:``controlcatalog``: Minor documentation updates to the content of ImplementationDetails object part of the Control Catalog GetControl API * api-change:``emr-serverless``: This release adds support for accessing system profile logs in Lake Formation-enabled jobs. * api-change:``mgh``: API and documentation updates for AWS MigrationHub related to adding support for listing migration task updates and associating, disassociating and listing source resources * api-change:``sesv2``: Introduces support for multi-region endpoint. * api-change:``timestream-influxdb``: Adds networkType parameter to CreateDbInstance API which allows IPv6 support to the InfluxDB endpoint - from version 1.35.78 * api-change:``application-autoscaling``: Doc only update for AAS Predictive Scaling policy configuration API. * api-change:``bcm-pricing-calculator``: Updated condition key inference from Workload Estimate, Bill Scenario, and Bill Estimate resources. Updated documentation links. * api-change:``connect``: Add support for Push Notifications for Amazon Connect chat. With Push Notifications enabled an alert could be sent to customers about new messages even when they aren't actively using the mobile application. * api-change:``finspace``: Update KxCommandLineArgument value parameter regex to allow for spaces and semicolons * api-change:``ivs-realtime``: IVS Real-Time now offers customers the ability to customize thumbnails recording mode and interval for both Individual Participant Recording (IPR) and Server-Side Compositions (SSC). * api-change:``sesv2``: Introduces support for creating DEED (Deterministic Easy-DKIM) identities. - Update to 1.35.77 * api-change:``appsync``: Provides description of new Amazon Bedrock runtime datasource. * api-change:``cognito-idp``: Change `CustomDomainConfig` from a required to an optional parameter for the `UpdateUserPoolDomain` operation. * api-change:``ec2``: This release includes a new API for modifying instance network-performance-options after launch. * api-change:``ecs``: This is a documentation only update to address various tickets for Amazon ECS. * api-change:``keyspaces``: Amazon Keyspaces: adding the list of IAM actions required by the UpdateKeyspace API. * api-change:``medialive``: H265 outputs now support disabling the deblocking filter. * api-change:``workspaces``: Added text to clarify case-sensitivity - from version 1.35.76 * api-change:``partnercentral-selling``: Introducing the preview of new partner central selling APIs designed to transform how AWS partners collaborate and co-sell with multiple partners. This enables multiple partners to seamlessly engage and jointly pursue customer opportunities, fostering a new era of collaborative selling. * api-change:``qbusiness``: This release removes the deprecated UserId and UserGroups fields from SearchRelevantContent api's request parameters. - from version 1.35.75 * api-change:``bedrock``: Introduced two APIs ListPromptRouters and GetPromptRouter for Intelligent Prompt Router feature. Add support for Bedrock Guardrails image content filter. New Bedrock Marketplace feature enabling a wider range of bedrock compatible models with self-hosted capability. * api-change:``bedrock-agent``: This release introduces the ability to generate SQL using natural language, through a new GenerateQuery API (with native integration into Knowledge Bases); ability to ingest and retrieve images through Bedrock Data Automation; and ability to create a Knowledge Base backed by Kendra GenAI Index. * api-change:``bedrock-agent-runtime``: This release introduces the ability to generate SQL using natural language, through a new GenerateQuery API (with native integration into Knowledge Bases); ability to ingest and retrieve images through Bedrock Data Automation; and ability to create a Knowledge Base backed by Kendra GenAI Index. * api-change:``bedrock-data-automation``: Release Bedrock Data Automation SDK * api-change:``bedrock-data-automation-runtime``: Release Bedrock Data Automation Runtime SDK * api-change:``bedrock-runtime``: Added support for Intelligent Prompt Router in Invoke, InvokeStream, Converse and ConverseStream. Add support for Bedrock Guardrails image content filter. New Bedrock Marketplace feature enabling a wider range of bedrock compatible models with self-hosted capability. * api-change:``kendra``: This release adds GenAI Index in Amazon Kendra for Retrieval Augmented Generation (RAG) and intelligent search. With the Kendra GenAI Index, customers get high retrieval accuracy powered by the latest information retrieval technologies and semantic models. * api-change:``sagemaker``: Amazon SageMaker HyperPod launched task governance to help customers maximize accelerator utilization for model development and flexible training plans to meet training timelines and budget while reducing weeks of training time. AI apps from AWS partner is now available in SageMaker. - from version 1.35.74 * api-change:``athena``: Add FEDERATED type to CreateDataCatalog. This creates Athena Data Catalog, AWS Lambda connector, and AWS Glue connection. Create/DeleteDataCatalog returns DataCatalog. Add Status, ConnectionType, and Error to DataCatalog and DataCatalogSummary. Add DeleteCatalogOnly to delete Athena Catalog only. * api-change:``bedrock``: Tagging support for Async Invoke resources. Added support for Distillation in CreateModelCustomizationJob API. Support for videoDataDeliveryEnabled flag in invocation logging. * api-change:``bedrock-agent``: Releasing SDK for Multi-Agent Collaboration. * api-change:``bedrock-agent-runtime``: Releasing SDK for multi agent collaboration * api-change:``bedrock-runtime``: Added support for Async Invoke Operations Start, List and Get. Support for invocation logs with `requestMetadata` field in Converse, ConverseStream, Invoke and InvokeStream. Video content blocks in Converse/ConverseStream accept raw bytes or S3 URI. * api-change:``cloudwatch``: Support for configuring AiOps investigation as alarm action * api-change:``datazone``: Adds support for Connections, ProjectProfiles, and JobRuns APIs. Supports the new Lineage feature at GA. Adjusts optionality of a parameter for DataSource and SubscriptionTarget APIs which may adjust types in some clients. * api-change:``dsql``: Add new API operations for Amazon Aurora DSQL. Amazon Aurora DSQL is a serverless, distributed SQL database with virtually unlimited scale, highest availability, and zero infrastructure management. * api-change:``dynamodb``: This change adds support for global tables with multi-Region strong consistency (in preview). The UpdateTable API now supports a new attribute MultiRegionConsistency to set consistency when creating global tables. The DescribeTable output now optionally includes the MultiRegionConsistency attribute. * api-change:``glue``: This release includes(1)Zero-ETL integration to ingest data from 3P SaaS and DynamoDB to Redshift/Redlake (2)new properties on Connections to enable reuse; new connection APIs for retrieve/preview metadata (3)support of CRUD operations for Multi-catalog (4)support of automatic statistics collections * api-change:``lakeformation``: This release added two new LakeFormation Permissions (CREATE_CATALOG, SUPER_USER) and added Id field for CatalogResource. It also added new conditon and expression field. * api-change:``qapps``: Add support for 11 new plugins as action cards to help automate repetitive tasks and improve productivity. * api-change:``qbusiness``: Amazon Q Business now supports customization options for your web experience, 11 new Plugins, and QuickSight support. Amazon Q index allows software providers to enrich their native generative AI experiences with their customer's enterprise knowledge and user context spanning multiple applications. * api-change:``quicksight``: This release includes API needed to support for Unstructured Data in Q in QuickSight Q&A (IDC). * api-change:``redshift``: Adds support for Amazon Redshift RegisterNamespace and DeregisterNamespace APIs to share data to AWS Glue Data Catalog. * api-change:``redshift-serverless``: Adds support for the ListManagedWorkgroups API to get an overview of existing managed workgroups. * api-change:``s3``: Amazon S3 Metadata stores object metadata in read-only, fully managed Apache Iceberg metadata tables that you can query. You can create metadata table configurations for S3 general purpose buckets. * api-change:``s3tables``: Amazon S3 Tables deliver the first cloud object store with built-in open table format support, and the easiest way to store tabular data at scale. - from version 1.35.73 * api-change:``bedrock-runtime``: Add an API parameter that allows customers to set performance configuration for invoking a model. * api-change:``s3control``: It allows customers to pass CRC64NVME as a header in S3 Batch Operations copy requests * api-change:``socialmessaging``: Added support for passing role arn corresponding to the supported event destination - from version 1.35.72 * api-change:``bedrock``: Add support for Knowledge Base Evaluations & LLM as a judge * api-change:``bedrock-agent``: This release introduces APIs to upload documents directly into a Knowledge Base * api-change:``bedrock-agent-runtime``: This release introduces a new Rerank API to leverage reranking models (with integration into Knowledge Bases); APIs to upload documents directly into Knowledge Base; RetrieveAndGenerateStream API for streaming response; Guardrails on Retrieve API; and ability to automatically generate filters * api-change:``chime-sdk-voice``: This release adds supports for enterprises to integrate Amazon Connect with other voice systems. It supports directly transferring voice calls and metadata without using the public telephone network. It also supports real-time and post-call analytics. * api-change:``cleanrooms``: This release allows customers and their partners to easily collaborate with data stored in Snowflake and Amazon Athena, without having to move or share their underlying data among collaborators. * api-change:``connect``: Adds support for WhatsApp Business messaging, IVR call recording, enabling Contact Lens for existing on-premise contact centers and telephony platforms, and enabling telephony and IVR migration to Amazon Connect independent of their contact center agents. * api-change:``connectcampaignsv2``: Amazon Connect Outbound Campaigns V2 / Features : Adds support for Event-Triggered Campaigns. * api-change:``customer-profiles``: This release introduces Event Trigger APIs as part of Amazon Connect Customer Profiles service. * api-change:``ec2``: Adds support for declarative policies that allow you to enforce desired configuration across an AWS organization through configuring account attributes. Adds support for Allowed AMIs that allows you to limit the use of AMIs in AWS accounts. Adds support for connectivity over non-HTTP protocols. * api-change:``ecs``: This release adds support for Container Insights with Enhanced Observability for Amazon ECS. * api-change:``eks``: Added support for Auto Mode Clusters, Hybrid Nodes, and specifying computeTypes in the DescribeAddonVersions API. * api-change:``events``: Call private APIs by configuring Connections with VPC connectivity through PrivateLink and VPC Lattice * api-change:``fsx``: FSx API changes to support the public launch of the Amazon FSx Intelligent Tiering for OpenZFS storage class. * api-change:``guardduty``: Add new Multi Domain Correlation findings. * api-change:``imagebuilder``: Added support for EC2 Image Builder's integration with AWS Marketplace for Marketplace components. * api-change:``invoicing``: AWS Invoice Configuration allows you to receive separate AWS invoices based on your organizational needs. You can use the AWS SDKs to manage Invoice Units and programmatically fetch the information of the invoice receiver. * api-change:``logs``: Adds PutIntegration, GetIntegration, ListIntegrations and DeleteIntegration APIs. Adds QueryLanguage support to StartQuery, GetQueryResults, DescribeQueries, DescribeQueryDefinitions, and PutQueryDefinition APIs. * api-change:``memorydb``: Amazon MemoryDB SDK now supports all APIs for Multi-Region. Please refer to the updated Amazon MemoryDB public documentation for detailed information on API usage. * api-change:``networkflowmonitor``: This release adds documentation for a new feature in Amazon CloudWatch called Network Flow Monitor. You can use Network Flow Monitor to get near real-time metrics, including retransmissions and data transferred, for your actual workloads. * api-change:``opensearch``: This feature introduces support for CRUDL APIs, enabling the creation and management of Connected data sources. * api-change:``organizations``: Add support for policy operations on the DECLARATIVE_POLICY_EC2 policy type. * api-change:``qbusiness``: Amazon Q Business now supports capabilities to extract insights and answer questions from visual elements embedded within documents, a browser extension for Google Chrome, Mozilla Firefox, and Microsoft Edge, and attachments across conversations. * api-change:``qconnect``: This release adds following capabilities: Configuring safeguards via AIGuardrails for Q in Connect inferencing, and APIs to support Q&A self-service use cases * api-change:``rds``: Amazon RDS supports CloudWatch Database Insights. You can use the SDK to create, modify, and describe the DatabaseInsightsMode for your DB instances and clusters. * api-change:``s3``: Amazon S3 introduces support for AWS Dedicated Local Zones * api-change:``s3control``: Amazon S3 introduces support for AWS Dedicated Local Zones * api-change:``securityhub``: Add new Multi Domain Correlation findings. * api-change:``security-ir``: AWS Security Incident Response is a purpose-built security incident solution designed to help customers prepare for, respond to, and recover from security incidents. * api-change:``transfer``: AWS Transfer Family now offers Web apps that enables simple and secure access to data stored in Amazon S3. * api-change:``vpc-lattice``: Lattice APIs that allow sharing and access of VPC resources across accounts. - from version 1.35.71 * api-change:``bedrock-agent``: Add support for specifying embeddingDataType, either FLOAT32 or BINARY * api-change:``config``: AWS Config adds support for service-linked recorders, a new type of Config recorder managed by AWS services to record specific subsets of resource configuration data and functioning independently from customer managed AWS Config recorders. * api-change:``fsx``: This release adds EFA support to increase FSx for Lustre file systems' throughput performance to a single client instance. This can be done by specifying EfaEnabled=true at the time of creation of Persistent_2 file systems. * api-change:``observabilityadmin``: Amazon CloudWatch Observability Admin adds the ability to audit telemetry configuration for AWS resources in customers AWS Accounts and Organizations. The release introduces new APIs to turn on/off the new experience, which supports discovering supported AWS resources and their state of telemetry. - from version 1.35.70 * api-change:``bedrock-agent``: Custom Orchestration API release for AWSBedrockAgents. * api-change:``bedrock-agent-runtime``: Custom Orchestration and Streaming configurations API release for AWSBedrockAgents. * api-change:``connect``: Enables access to ValueMap and ValueInteger types for SegmentAttributes and fixes deserialization bug for DescribeContactFlow in AmazonConnect Public API * api-change:``ec2``: Adds support for Time-based Copy for EBS Snapshots and Cross Region PrivateLink. Time-based Copy ensures that EBS Snapshots are copied within and across AWS Regions in a specified timeframe. Cross Region PrivateLink enables customers to connect to VPC endpoint services hosted in other AWS Regions. * api-change:``qapps``: Private sharing, file upload and data collection feature support for Q Apps - from version 1.35.69 * api-change:``directconnect``: Update DescribeDirectConnectGatewayAssociations API to return associated core network information if a Direct Connect gateway is attached to a Cloud WAN core network. * api-change:``networkmanager``: This release adds native Direct Connect integration on Cloud WAN enabling customers to directly attach their Direct Connect gateways to Cloud WAN without the need for an intermediate Transit Gateway. * api-change:``s3``: Amazon Simple Storage Service / Features: Add support for ETag based conditional writes in PutObject and CompleteMultiPartUpload APIs to prevent unintended object modifications. - from version 1.35.68 * api-change:``autoscaling``: Now, Amazon EC2 Auto Scaling customers can enable target tracking policies to take quicker scaling decisions, enhancing their application performance and EC2 utilization. To get started, specify target tracking to monitor a metric that is available on Amazon CloudWatch at seconds-level interval. * api-change:``bcm-pricing-calculator``: Initial release of the AWS Billing and Cost Management Pricing Calculator API. * api-change:``bedrock-agent-runtime``: InvokeInlineAgent API release to help invoke runtime agents without any dependency on preconfigured agents. * api-change:``ce``: This release adds the Impact field(contains Contribution field) to the GetAnomalies API response under RootCause * api-change:``chatbot``: Adds support for programmatic management of custom actions and aliases which can be associated with channel configurations. * api-change:``codepipeline``: AWS CodePipeline V2 type pipelines now support ECRBuildAndPublish and InspectorScan actions. * api-change:``cognito-idp``: Add support for users to sign up and sign in without passwords, using email and SMS OTPs and Passkeys. Add support for Passkeys based on WebAuthn. Add support for enhanced branding customization for hosted authentication pages with Amazon Cognito Managed Login. Add feature tiers with new pricing. * api-change:``connect``: Amazon Connect Service Feature: Add APIs for Amazon Connect Email Channel * api-change:``elbv2``: This release adds support for advertising trusted CA certificate names in associated trust stores. * api-change:``emr``: Advanced Scaling in Amazon EMR Managed Scaling * api-change:``inspector2``: Extend inspector2 service model to include ServiceQuotaExceededException. * api-change:``lambda``: Add ProvisionedPollerConfig to Lambda event-source-mapping API. * api-change:``mailmanager``: Added new "DeliverToQBusiness" rule action to MailManager RulesSet for ingesting email data into Amazon Q Business customer applications * api-change:``neptune-graph``: Add 4 new APIs to support new Export features, allowing Parquet and CSV formats. Add new arguments in Import APIs to support Parquet import. Add a new query "neptune.read" to run algorithms without loading data into database * api-change:``omics``: This release adds support for resource policy based cross account S3 access to sequence store read sets. * api-change:``quicksight``: This release includes: Update APIs to support Image, Layer Map, font customization, and Plugin Visual. Add Identity center related information in ListNamsespace API. Update API for restrictedFolder support in topics and add API for SearchTopics, Describe/Update DashboardsQA Configration. * api-change:``sagemaker``: This release adds APIs for new features for SageMaker endpoint to scale down to zero instances, native support for multi-adapter inference, and endpoint scaling improvements. * api-change:``ses``: This release adds support for starting email contacts in your Amazon Connect instance as an email receiving action. * api-change:``sns``: ArchivePolicy attribute added to Archive and Replay feature * api-change:``stepfunctions``: Add support for variables and JSONata in TestState, GetExecutionHistory, DescribeStateMachine, and DescribeStateMachineForExecution * api-change:``workspaces``: While integrating WSP-DCV rebrand, a few mentions were erroneously renamed from WSP to DCV. This release reverts those mentions back to WSP. - from version 1.35.67 * api-change:``apigateway``: Added support for custom domain names for private APIs. * api-change:``application-autoscaling``: Application Auto Scaling now supports Predictive Scaling to proactively increase the desired capacity ahead of predicted demand, ensuring improved availability and responsiveness for customers' applications. This feature is currently only made available for Amazon ECS Service scalable targets. * api-change:``appsync``: Add support for the Amazon Bedrock Runtime. * api-change:``ce``: This release introduces three new APIs that enable you to estimate the cost, coverage, and utilization impact of Savings Plans you plan to purchase. The three APIs are StartCommitmentPurchaseAnalysis, GetCommitmentPurchaseAnalysis, and ListCommitmentPurchaseAnalyses. * api-change:``cloudfront``: Adds support for Origin Selection between EMPv2 origins based on media quality score. * api-change:``cloudtrail``: This release introduces new APIs for creating and managing CloudTrail Lake dashboards. It also adds support for resource-based policies on CloudTrail EventDataStore and Dashboard resource. * api-change:``ec2``: Adds support for requesting future-dated Capacity Reservations with a minimum commitment duration, enabling IPAM for organizational units within AWS Organizations, reserving EC2 Capacity Blocks that start in 30 minutes, and extending the end date of existing Capacity Blocks. * api-change:``elasticache``: Added support to modify the engine type for existing ElastiCache Users and User Groups. Customers can now modify the engine type from redis to valkey. * api-change:``elbv2``: This feature adds support for enabling zonal shift on cross-zone enabled Application Load Balancer, as well as modifying HTTP request and response headers. * api-change:``health``: Adds metadata property to an AffectedEntity. * api-change:``iot``: General Availability (GA) release of AWS IoT Device Management - Commands, to trigger light-weight remote actions on targeted devices * api-change:``iotfleetwise``: AWS IoT FleetWise now includes campaign parameters to store and forward data, configure MQTT topic as a data destination, and collect diagnostic trouble code data. It includes APIs for network agnostic data collection using custom decoding interfaces, and monitoring the last known state of vehicles. * api-change:``iot-jobs-data``: General Availability (GA) release of AWS IoT Device Management - Commands, to trigger light-weight remote actions on targeted devices * api-change:``lambda``: Adds support for metrics for event source mappings for AWS Lambda * api-change:``logs``: Adds "Create field indexes to improve query performance and reduce scan volume" and "Transform logs during ingestion". Updates documentation for "PutLogEvents with Entity". * api-change:``notifications``: This release adds support for AWS User Notifications. You can now configure and view notifications from AWS services in a central location using the AWS SDK. * api-change:``notificationscontacts``: This release adds support for AWS User Notifications Contacts. You can now configure and view email contacts for AWS User Notifications using the AWS SDK. * api-change:``resiliencehub``: AWS Resilience Hub's new summary view visually represents applications' resilience through charts, enabling efficient resilience management. It provides a consolidated view of the app portfolio's resilience state and allows data export for custom stakeholder reporting. * api-change:``s3``: Add support for conditional deletes for the S3 DeleteObject and DeleteObjects APIs. Add support for write offset bytes option used to append to objects with the S3 PutObject API. * api-change:``ssm``: Added support for providing high-level overviews of managed nodes and previewing the potential impact of a runbook execution. * api-change:``ssm-quicksetup``: Add methods that retrieve details about deployed configurations: ListConfigurations, GetConfiguration * api-change:``xray``: AWS X-Ray introduces Transaction Search APIs, enabling span ingestion into CloudWatch Logs for high-scale trace data indexing. These APIs support span-level queries, trace graph generation, and metric correlation for deeper application insights. - from version 1.35.66 * api-change:``autoscaling``: With this release, customers can prioritize launching instances into ODCRs using targets from ASGs or Launch Templates. Customers can express their baseline instances' CPU-performance in attribute-based Instance Requirements configuration by referencing an instance family that meets their needs. * api-change:``bedrock-agent-runtime``: Releasing new Prompt Optimization to enhance your prompts for improved performance * api-change:``cloudfront``: Add support for gRPC, VPC origins, and Anycast IP Lists. Allow LoggingConfig IncludeCookies to be set regardless of whether the LoggingConfig is enabled. * api-change:``compute-optimizer``: This release enables AWS Compute Optimizer to analyze and generate optimization recommendations for Amazon Aurora database instances. It also enables Compute Optimizer to identify idle Amazon EC2 instances, Amazon EBS volumes, Amazon ECS services running on Fargate, and Amazon RDS databases. * api-change:``controltower``: Adds support for child enabled baselines which allow you to see the enabled baseline status for individual accounts. * api-change:``cost-optimization-hub``: This release adds action type "Delete" to the GetRecommendation, ListRecommendations and ListRecommendationSummaries APIs to support new EBS and ECS recommendations with action type "Delete". * api-change:``datazone``: This release supports Metadata Enforcement Rule feature for Create Subscription Request action. * api-change:``discovery``: Add support to import data from commercially available discovery tools without file manipulation. * api-change:``ec2``: With this release, customers can express their desire to launch instances only in an ODCR or ODCR group rather than OnDemand capacity. Customers can express their baseline instances' CPU-performance in attribute-based Instance Requirements configuration by referencing an instance family. * api-change:``ecs``: This release adds support for the Availability Zone rebalancing feature on Amazon ECS. * api-change:``elbv2``: This release adds support for configuring Load balancer Capacity Unit reservations * api-change:``lambda``: Add Node 22.x (node22.x) support to AWS Lambda * api-change:``mediaconvert``: This release adds the ability to reconfigure concurrent job settings for existing queues and create queues with custom concurrent job settings. * api-change:``mediapackagev2``: MediaPackage v2 now supports the Media Quality Confidence Score (MQCS) published from MediaLive. Customers can control input switching based on the MQCS and publishing HTTP Headers for the MQCS via the API. * api-change:``omics``: Enabling call caching feature that allows customers to reuse previously computed results from a set of completed tasks in a new workflow run. * api-change:``rbin``: This release adds support for exclusion tags for Recycle Bin, which allows you to identify resources that are to be excluded, or ignored, by a Region-level retention rule. * api-change:``rds``: This release adds support for scale storage on the DB instance using a Blue/Green Deployment. * api-change:``timestream-query``: This release adds support for Provisioning Timestream Compute Units (TCUs), a new feature that allows provisioning dedicated compute resources for your queries, providing predictable and cost-effective query performance. * api-change:``workspaces``: Added support for Rocky Linux 8 on Amazon WorkSpaces Personal. * api-change:``workspaces-web``: Added data protection settings with support for inline data redaction. - from version 1.35.65 * api-change:``b2bi``: Add new X12 transactions sets and versions * api-change:``ec2``: This release adds VPC Block Public Access (VPC BPA), a new declarative control which blocks resources in VPCs and subnets that you own in a Region from reaching or being reached from the internet through internet gateways and egress-only internet gateways. * api-change:``ecs``: This release introduces support for configuring the version consistency feature for individual containers defined within a task definition. The configuration allows to specify whether ECS should resolve the container image tag specified in the container definition to an image digest. * api-change:``efs``: Add support for the new parameters in EFS replication APIs * api-change:``glue``: AWS Glue Data Catalog now enhances managed table optimizations of Apache Iceberg tables that can be accessed only from a specific Amazon Virtual Private Cloud (VPC) environment. * api-change:``keyspaces``: Amazon Keyspaces Multi-Region Replication: Adds support to add new regions to multi and single-region keyspaces. * api-change:``mwaa``: Amazon MWAA now supports a new environment class, mw1.micro, ideal for workloads requiring fewer resources than mw1.small. This class supports a single instance of each Airflow component: Scheduler, Worker, and Webserver. * api-change:``taxsettings``: Release Tax Inheritance APIs, Tax Exemption APIs, and functionality update for some existing Tax Registration APIs * api-change:``workspaces``: Releasing new ErrorCodes for Image Validation failure during CreateWorkspaceImage process - from version 1.35.64 * api-change:``appconfig``: AWS AppConfig has added a new extension action point, AT_DEPLOYMENT_TICK, to support third-party monitors to trigger an automatic rollback during a deployment. * api-change:``autoscaling``: Amazon EC2 Auto Scaling now supports Amazon Application Recovery Controller (ARC) zonal shift and zonal autoshift to help you quickly recover an impaired application from failures in an Availability Zone (AZ). * api-change:``cloudformation``: This release adds a new API, ListHookResults, that allows retrieving CloudFormation Hooks invocation results for hooks invoked during a create change set operation or Cloud Control API operation * api-change:``connect``: Adds CreateContactFlowVersion and ListContactFlowVersions APIs to create and view the versions of a contact flow. * api-change:``customer-profiles``: This release introduces Segmentation APIs and new Calculated Attribute Event Filters as part of Amazon Connect Customer Profiles service. * api-change:``ec2``: Adding request and response elements for managed resources. * api-change:``ecs``: This release adds support for adding VPC Lattice configurations in ECS CreateService/UpdateService APIs. The configuration allows for associating VPC Lattice target groups with ECS Services. * api-change:``iotsitewise``: The release introduces a generative AI Assistant in AWS IoT SiteWise. It includes: 1) InvokeAssistant API - Invoke the Assistant to get alarm summaries and ask questions. 2) Dataset APIs - Manage knowledge base configuration for the Assistant. 3) Portal APIs enhancement - Manage AI-aware dashboards. * api-change:``qconnect``: This release introduces MessageTemplate as a resource in Amazon Q in Connect, along with APIs to create, read, search, update, and delete MessageTemplate resources. * api-change:``rds``: Add support for the automatic pause/resume feature of Aurora Serverless v2. * api-change:``rds-data``: Add support for the automatic pause/resume feature of Aurora Serverless v2. - from version 1.35.63 * api-change:``cloudwatch``: Adds support for adding related Entity information to metrics ingested through PutMetricData. * api-change:``connectcampaignsv2``: Added Amazon Connect Outbound Campaigns V2 SDK. * api-change:``datasync``: Doc-only updates and enhancements related to creating DataSync tasks and describing task executions. * api-change:``ec2``: Remove non-functional enum variants for FleetCapacityReservationUsageStrategy * api-change:``iot``: This release allows AWS IoT Core users to enrich MQTT messages with propagating attributes, to associate a thing to a connection, and to enable Online Certificate Status Protocol (OCSP) stapling for TLS X.509 server certificates through private endpoints. * api-change:``outposts``: You can now purchase AWS Outposts rack or server capacity for a 5-year term with one of the following payment options: All Upfront, Partial Upfront, and No Upfront. * api-change:``pinpoint-sms-voice-v2``: Use rule overrides to always allow or always block messages to specific phone numbers. Use message feedback to monitor if a customer interacts with your message. * api-change:``route53resolver``: Route 53 Resolver DNS Firewall Advanced Rules allows you to monitor and block suspicious DNS traffic based on anomalies detected in the queries, such as DNS tunneling and Domain Generation Algorithms (DGAs). - from version 1.35.62 * api-change:``partnercentral-selling``: Announcing AWS Partner Central API for Selling: This service launch Introduces new APIs for co-selling opportunity management and related functions. Key features include notifications, a dynamic sandbox for testing, and streamlined validations. - from version 1.35.61 * api-change:``accessanalyzer``: Expand analyzer configuration capabilities for unused access analyzers. Unused access analyzer configurations now support the ability to exclude accounts and resource tags from analysis providing more granular control over the scope of analysis. * api-change:``cloudcontrol``: Added support for CloudFormation Hooks with Cloud Control API. The GetResourceRequestStatus API response now includes an optional HooksProgressEvent and HooksRequestToken parameter for Hooks Invocation Progress as part of resource operation with Cloud Control. * api-change:``deadline``: Adds support for select GPU accelerated instance types when creating new service-managed fleets. * api-change:``iam``: This release includes support for five new APIs and changes to existing APIs that give AWS Organizations customers the ability to use temporary root credentials, targeted to member accounts in the organization. * api-change:``iotwireless``: New FuotaTask resource type to enable logging for your FUOTA tasks. A ParticipatingGatewaysforMulticast parameter to choose the list of gateways to receive the multicast downlink message and the transmission interval between them. Descriptor field which will be sent to devices during FUOTA transfer. * api-change:``ivs``: IVS now offers customers the ability to stream multitrack video to Channels. * api-change:``license-manager-user-subscriptions``: New and updated API operations to support License Included User-based Subscription of Microsoft Remote Desktop Services (RDS). * api-change:``partnercentral-selling``: Announcing AWS Partner Central API for Selling: This service launch Introduces new APIs for co-selling opportunity management and related functions. Key features include notifications, a dynamic sandbox for testing, and streamlined validations. * api-change:``quicksight``: This release adds APIs for Custom Permissions management in QuickSight, and APIs to support QuickSight Branding. * api-change:``redshift``: Adds support for Amazon Redshift S3AccessGrants * api-change:``s3``: This release updates the ListBuckets API Reference documentation in support of the new 10,000 general purpose bucket default quota on all AWS accounts. To increase your bucket quota from 10,000 to up to 1 million buckets, simply request a quota increase via Service Quotas. * api-change:``sagemaker``: Add support for Neuron instance types [ trn1/trn1n/inf2 ] on SageMaker Notebook Instances Platform. * api-change:``sts``: This release introduces the new API 'AssumeRoot', which returns short-term credentials that you can use to perform privileged tasks. - Update to 1.35.60 * api-change:``accessanalyzer``: This release adds support for policy validation and external access findings for resource control policies (RCP). IAM Access Analyzer helps you author functional and secure RCPs and awareness that a RCP may restrict external access. Updated service API, documentation, and paginators. * api-change:``application-signals``: Amazon CloudWatch Application Signals now supports creating Service Level Objectives with burn rates. Users can now create or update SLOs with burn rate configurations to meet their specific business requirements. * api-change:``b2bi``: This release adds a GenerateMapping API to allow generation of JSONata or XSLT transformer code based on input and output samples. * api-change:``billing``: Today, AWS announces the general availability of ListBillingViews API in the AWS SDKs, to enable AWS Billing Conductor (ABC) users to create proforma Cost and Usage Reports (CUR) programmatically. * api-change:``cloudtrail``: This release adds a new API GenerateQuery that generates a query from a natural language prompt about the event data in your event data store. This operation uses generative artificial intelligence (generative AI) to produce a ready-to-use SQL query from the prompt. * api-change:``dynamodb``: This release includes supports the new WarmThroughput feature for DynamoDB. You can now provide an optional WarmThroughput attribute for CreateTable or UpdateTable APIs to pre-warm your table or global secondary index. You can also use DescribeTable to see the latest WarmThroughput value. * api-change:``ec2``: This release adds the source AMI details in DescribeImages API * api-change:``internetmonitor``: Add new query type Routing_Suggestions regarding querying interface * api-change:``mediaconvert``: This release adds support for ARN inputs in the Kantar credentials secrets name field and the MSPR field to the manifests for PlayReady DRM protected outputs. * api-change:``organizations``: Add support for policy operations on the Resource Control Polices. - from version 1.35.59 * api-change:``codebuild``: AWS CodeBuild now supports non-containerized Linux and Windows builds on Reserved Capacity. * api-change:``controltower``: Added ResetEnabledControl API. * api-change:``fis``: This release adds support for generating experiment reports with the experiment report configuration * api-change:``gamelift``: Amazon GameLift releases container fleets support for general availability. Deploy Linux-based containerized game server software for hosting on Amazon GameLift. * api-change:``payment-cryptography``: Updated ListAliases API with KeyArn filter. * api-change:``rds``: Updates Amazon RDS documentation for Amazon RDS Extended Support for Amazon Aurora MySQL. - from version 1.35.58 * api-change:``cloudfront``: No API changes from previous release. This release migrated the model to Smithy keeping all features unchanged. * api-change:``inspector2``: Adds support for filePath filter. * api-change:``lambda``: Add Python 3.13 (python3.13) support to AWS Lambda * api-change:``opensearch``: Adds Support for new AssociatePackages and DissociatePackages API in Amazon OpenSearch Service that allows association and dissociation operations to be carried out on multiple packages at the same time. * api-change:``outposts``: This release updates StartCapacityTask to allow an active Outpost to be modified. It also adds a new API to list all running EC2 instances on the Outpost. - from version 1.35.57 * api-change:``batch``: This feature allows override LaunchTemplates to be specified in an AWS Batch Compute Environment. * api-change:``bedrock-agent-runtime``: This release adds trace functionality to Bedrock Prompt Flows * api-change:``chime-sdk-media-pipelines``: Added support for Media Capture Pipeline and Media Concatenation Pipeline for customer managed server side encryption. Now Media Capture Pipeline can use IAM sink role to get access to KMS key and encrypt/decrypt recorded artifacts. KMS key ID can also be supplied with encryption context. * api-change:``controlcatalog``: AWS Control Catalog GetControl public API returns additional data in output, including Implementation and Parameters * api-change:``eks``: Adds new error code `Ec2InstanceTypeDoesNotExist` for Amazon EKS managed node groups * api-change:``firehose``: Amazon Data Firehose / Features : Adds support for a new DeliveryStreamType, DatabaseAsSource. DatabaseAsSource hoses allow customers to stream CDC events from their RDS and Amazon EC2 hosted databases, running MySQL and PostgreSQL database engines, to Iceberg Table destinations. * api-change:``lambda``: This release adds support for using AWS KMS customer managed keys to encrypt AWS Lambda .zip deployment packages. * api-change:``pinpoint-sms-voice-v2``: Added the RequiresAuthenticationTimestamp field to the RegistrationVersionStatusHistory data type. * api-change:``qbusiness``: Adds S3 path option to pass group member list for PutGroup API. - from version 1.35.56 * api-change:``autoscaling``: Auto Scaling groups now support the ability to strictly balance instances across Availability Zones by configuring the AvailabilityZoneDistribution parameter. If balanced-only is configured for a group, launches will always be attempted in the under scaled Availability Zone even if it is unhealthy. * api-change:``bedrock-agent``: Add prompt support for chat template configuration and agent generative AI resource. Add support for configuring an optional guardrail in Prompt and Knowledge Base nodes in Prompt Flows. Add API to validate flow definition * api-change:``bedrock-runtime``: Add Prompt management support to Bedrock runtime APIs: Converse, ConverseStream, InvokeModel, InvokeModelWithStreamingResponse * api-change:``cleanrooms``: This release introduces support for Custom Models in AWS Clean Rooms ML. * api-change:``cleanroomsml``: This release introduces support for Custom Models in AWS Clean Rooms ML. * api-change:``quicksight``: Add Client Credentials based OAuth support for Snowflake and Starburst * api-change:``resource-explorer-2``: Add GetManagedView, ListManagedViews APIs. * api-change:``synthetics``: Add support to toggle if a canary will automatically delete provisioned canary resources such as Lambda functions and layers when a canary is deleted. This behavior can be controlled via the new ProvisionedResourceCleanup property exposed in the CreateCanary and UpdateCanary APIs. - from version 1.35.55 * api-change:``codebuild``: AWS CodeBuild now adds additional compute types for reserved capacity fleet. * api-change:``guardduty``: GuardDuty RDS Protection expands support for Amazon Aurora PostgreSQL Limitless Databases. * api-change:``lakeformation``: API changes for new named tag expressions feature. * api-change:``qapps``: Introduces category apis in AmazonQApps. Web experience users use Categories to tag and filter library items. * api-change:``s3control``: Fix ListStorageLensConfigurations and ListStorageLensGroups deserialization for Smithy SDKs. * api-change:``verifiedpermissions``: Adding BatchGetPolicy API which supports the retrieval of multiple policies across multiple policy stores within a single request. * enhancement:protocol: Added support for header enabling service migration off the AWS Query protocol. - from version 1.35.54 * api-change:``bedrock-agent``: Amazon Bedrock Knowledge Bases now supports using application inference profiles to increase throughput and improve resilience. * api-change:``docdb-elastic``: Amazon DocumentDB Elastic Clusters adds support for pending maintenance actions feature with APIs GetPendingMaintenanceAction, ListPendingMaintenanceActions and ApplyPendingMaintenanceAction * api-change:``logs``: This release introduces an improvement in PutLogEvents * api-change:``taxsettings``: Add support for supplemental tax registrations via these new APIs: PutSupplementalTaxRegistration, ListSupplementalTaxRegistrations, and DeleteSupplementalTaxRegistration. - from version 1.35.53 * api-change:``amp``: Added support for UpdateScraper API, to enable updating collector configuration in-place * api-change:``autoscaling``: Adds bake time for Auto Scaling group Instance Refresh * api-change:``batch``: Add `podNamespace` to `EksAttemptDetail` and `containerID` to `EksAttemptContainerDetail`. * api-change:``elbv2``: Add UDP support for AWS PrivateLink and dual-stack Network Load Balancers * api-change:``glue``: Add schedule support for AWS Glue column statistics * api-change:``sagemaker``: SageMaker HyperPod adds scale-down at instance level via BatchDeleteClusterNodes API and group level via UpdateCluster API. SageMaker Training exposes secondary job status in TrainingJobSummary from ListTrainingJobs API. SageMaker now supports G6, G6e, P5e instances for HyperPod and Training. * api-change:``sesv2``: This release enables customers to provide the email template content in the SESv2 SendEmail and SendBulkEmail APIs instead of the name or the ARN of a stored email template. - from version 1.35.52 * api-change:``appsync``: This release adds support for AppSync Event APIs. * api-change:``connect``: Updated the public documentation for the UserIdentityInfo object to accurately reflect the character limits for the FirstName and LastName fields, which were previously listed as 1-100 characters. * api-change:``datasync``: AWS DataSync now supports Enhanced mode tasks. This task mode supports transfer of virtually unlimited numbers of objects with enhanced metrics, more detailed logs, and higher performance than Basic mode. This mode currently supports transfers between Amazon S3 locations. * api-change:``ec2``: This release adds two new capabilities to VPC Security Groups: Security Group VPC Associations and Shared Security Groups. * api-change:``ecs``: This release supports service deployments and service revisions which provide a comprehensive view of your Amazon ECS service history. * api-change:``geo-maps``: Release of Amazon Location Maps API. Maps enables you to build digital maps that showcase your locations, visualize your data, and unlock insights to drive your business * api-change:``geo-places``: Release of Amazon Location Places API. Places enables you to quickly search, display, and filter places, businesses, and locations based on proximity, category, and name * api-change:``geo-routes``: Release of Amazon Location Routes API. Routes enables you to plan efficient routes and streamline deliveries by leveraging real-time traffic, vehicle restrictions, and turn-by-turn directions. * api-change:``keyspaces``: Adds support for interacting with user-defined types (UDTs) through the following new operations: Create-Type, Delete-Type, List-Types, Get-Type. * api-change:``network-firewall``: AWS Network Firewall now supports configuring TCP idle timeout * api-change:``opensearch``: This release introduces the new OpenSearch user interface (Dashboards), a new web-based application that can be associated with multiple data sources across OpenSearch managed clusters, serverless collections, and Amazon S3, so that users can gain a comprehensive insights in an unified interface. * api-change:``opensearchserverless``: Neo Integration via IAM Identity Center (IdC) * api-change:``redshift``: This release launches S3 event integrations to create and manage integrations from an Amazon S3 source into an Amazon Redshift database. * api-change:``redshift-serverless``: Adds and updates API members for the Redshift Serverless AI-driven scaling and optimization feature using the price-performance target setting. * api-change:``route53``: This release adds support for TLSA, SSHFP, SVCB, and HTTPS record types. * api-change:``sagemaker``: Added support for Model Registry Staging construct. Users can define series of stages that models can progress through for model workflows and lifecycle. This simplifies tracking and managing models as they transition through development, testing, and production stages. * api-change:``workmail``: This release adds support for Multi-Factor Authentication (MFA) and Personal Access Tokens through integration with AWS IAM Identity Center. - from version 1.35.51 * api-change:``bedrock``: Update Application Inference Profile * api-change:``bedrock-runtime``: Update Application Inference Profile * api-change:``cleanrooms``: This release adds the option for customers to configure analytics engine when creating a collaboration, and introduces the new SPARK analytics engine type in addition to maintaining the legacy CLEAN_ROOMS_SQL engine type. * api-change:``iotfleetwise``: Updated BatchCreateVehicle and BatchUpdateVehicle APIs: LimitExceededException has been added and the maximum number of vehicles in a batch has been set to 10 explicitly * api-change:``logs``: Added support for new optional baseline parameter in the UpdateAnomaly API. For UpdateAnomaly requests with baseline set to True, The anomaly behavior is then treated as baseline behavior. However, more severe occurrences of this behavior will still be reported as anomalies. * api-change:``redshift-data``: Adding a new API GetStatementResultV2 that supports CSV formatted results from ExecuteStatement and BatchExecuteStatement calls. * api-change:``sagemaker``: Adding `notebook-al2-v3` as allowed value to SageMaker NotebookInstance PlatformIdentifier attribute - from version 1.35.50 * api-change:``mediapackagev2``: MediaPackage V2 Live to VOD Harvester is a MediaPackage V2 feature, which is used to export content from an origin endpoint to a S3 bucket. * api-change:``opensearch``: Adds support for provisioning dedicated coordinator nodes. Coordinator nodes can be specified using the new NodeOptions parameter in ClusterConfig. * api-change:``rds``: This release adds support for Enhanced Monitoring and Performance Insights when restoring Aurora Limitless Database DB clusters. It also adds support for the os-upgrade pending maintenance action. * api-change:``storagegateway``: Documentation update: Amazon FSx File Gateway will no longer be available to new customers. - from version 1.35.49 * api-change:``bedrock-agent``: Add support of new model types for Bedrock Agents, Adding inference profile support for Flows and Prompt Management, Adding new field to configure additional inference configurations for Flows and Prompt Management * api-change:``codebuild``: AWS CodeBuild now supports automatically retrying failed builds * api-change:``lambda``: Add TagsError field in Lambda GetFunctionResponse. The TagsError field contains details related to errors retrieving tags. * api-change:``logs``: Adding inferred token name for dynamic tokens in Anomalies. * api-change:``supplychain``: API doc updates, and also support showing error message on a failed instance - from version 1.35.48 * api-change:``appconfig``: This release improves deployment safety by granting customers the ability to REVERT completed deployments, to the last known good state.In the StopDeployment API revert case the status of a COMPLETE deployment will be REVERTED. AppConfig only allows a revert within 72 hours of deployment completion. * api-change:``ec2``: This release includes a new API to describe some details of the Amazon Machine Images (AMIs) that were used to launch EC2 instances, even if those AMIs are no longer available for use. * api-change:``ecs``: This release adds support for EBS volumes attached to Amazon ECS Windows tasks running on EC2 instances. * api-change:``nimble``: The nimble client has been removed following the deprecation of the service. * api-change:``pcs``: Documentation update: added the default value of the Slurm configuration parameter scaleDownIdleTimeInSeconds to its description. * api-change:``qbusiness``: Add a new field in chat response. This field can be used to support nested schemas in array fields - Update to 1.35.47 * api-change:``bedrock``: Doc updates for supporting converse * api-change:``connect``: Amazon Connect Service Feature: Add support to start screen sharing for a web calling contact. * api-change:``ec2``: Amazon EC2 X8g, C8g and M8g instances are powered by AWS Graviton4 processors. X8g provide the lowest cost per GiB of memory among Graviton4 instances. C8g provide the best price performance for compute-intensive workloads. M8g provide the best price performance in for general purpose workloads. * api-change:``mwaa``: Introducing InvokeRestApi which allows users to invoke the Apache Airflow REST API on the webserver with the specified inputs. * api-change:``payment-cryptography``: Add support for ECC P-256 and P-384 Keys. * api-change:``payment-cryptography-data``: Add ECDH support on PIN operations. * bugfix:``s3``: Fix S3 200 Error handling to address bugs introduced in payload operations. - from version 1.35.46 * api-change:``bedrock-runtime``: Updating invoke regex to support imported models for converse API * api-change:``imagebuilder``: Add macOS platform and instance placement options * api-change:``m2``: Add AuthSecretsManagerArn optional parameter to batch job APIs, expand batch parameter limits, and introduce clientToken constraints. * api-change:``rds``: Global clusters now expose the Endpoint attribute as one of its fields. It is a Read/Write endpoint for the global cluster which resolves to the Global Cluster writer instance. * api-change:``repostspace``: Adds the BatchAddRole and BatchRemoveRole APIs. * api-change:``timestream-query``: This release adds support for Query Insights, a feature that provides details of query execution, enabling users to identify areas for improvement to optimize their queries, resulting in improved query performance and lower query costs. * bugfix:``s3``: Fixed SelectObjectContent regression from `#3284 <https://github.com/boto/botocore/issues/3284>`__. - from version 1.35.45 * api-change:``application-insights``: This feature enables customers to specify SNS Topic ARN. CloudWatch Application Insights (CWAI) will utilize this ARN to send problem notifications. * api-change:``autoscaling``: Adds support for removing the PlacementGroup setting on an Auto Scaling Group through the UpdateAutoScalingGroup API. * api-change:``bedrock-agent-runtime``: Knowledge Bases for Amazon Bedrock now supports custom prompts and model parameters in the orchestrationConfiguration of the RetrieveAndGenerate API. The modelArn field accepts Custom Models and Imported Models ARNs. * api-change:``dms``: Added support for tagging in StartReplicationTaskAssessmentRun API and introduced IsLatestTaskAssessmentRun and ResultStatistic fields for enhanced tracking and assessment result statistics. * api-change:``ec2``: Amazon EC2 now allows you to create network interfaces with just the EFA driver and no ENA driver by specifying the network interface type as efa-only. * api-change:``eks``: This release adds support for Amazon Application Recovery Controller (ARC) zonal shift and zonal autoshift with EKS that enhances the resiliency of multi-AZ cluster environments * api-change:``fms``: Update AWS WAF policy - add the option to retrofit existing web ACLs instead of creating all new web ACLs. * api-change:``payment-cryptography-data``: Adding new API to generate authenticated scripts for EMV pin change use cases. * api-change:``wafv2``: Add a property to WebACL to indicate whether it's been retrofitted by Firewall Manager. * enhancement:``s3``: Handle HTTP 200 responses with error information for all supported s3 operations. - from version 1.35.44 * api-change:``athena``: Removing FEDERATED from Create/List/Delete/GetDataCatalog API * api-change:``bedrock``: Adding converse support to CMI API's * api-change:``bedrock-runtime``: Added converse support for custom imported models * api-change:``datazone``: Adding the following project member designations: PROJECT_CATALOG_VIEWER, PROJECT_CATALOG_CONSUMER and PROJECT_CATALOG_STEWARD in the CreateProjectMembership API and PROJECT_CATALOG_STEWARD designation in the AddPolicyGrant API. * api-change:``ec2``: RequestSpotInstances and RequestSpotFleet feature release. - Update to 1.35.43 * enhancement:Python: Added provisional Python 3.13 support to Botocore * enhancement:AWSCRT: Update awscrt version to 0.22.0 * bugfix:Config: Fixed sigv4a_signing_region_set resolution when set in environment or config file. * Many API changes in various plugins, see https://github.com/boto/botocore/blob/develop/CHANGELOG.rst - Update to 1.35.21 * api-change:``codebuild``: GitLab Enhancements - Add support for Self-Hosted GitLab runners in CodeBuild. Add group webhooks * api-change:``ecr``: The `DescribeImageScanning` API now includes `fixAvailable`, `exploitAvailable`, and `fixedInVersion` fields to provide more detailed information about the availability of fixes, exploits, and fixed versions for identified image vulnerabilities. * api-change:``ecs``: This is a documentation only release to address various tickets. * api-change:``lambda``: Support for JSON resource-based policies and block public access * api-change:``rds``: Updates Amazon RDS documentation with configuration information about the BYOL model for RDS for Db2. * api-change:``ssm``: Support for additional levels of cross-account, cross-Region organizational units in Automation. Various documentation updates. - from version 1.35.20 * api-change:``bedrock``: This feature adds cross account s3 bucket and VPC support to ModelInvocation jobs. To use a cross account bucket, pass in the accountId of the bucket to s3BucketOwner in the ModelInvocationJobInputDataConfig or ModelInvocationJobOutputDataConfig. * api-change:``iot``: This release adds additional enhancements to AWS IoT Device Management Software Package Catalog and Jobs. It also adds SBOM support in Software Package Version. * api-change:``medialive``: Removing the ON_PREMISE enum from the input settings field. * api-change:``organizations``: Doc only update for AWS Organizations that fixes several customer-reported issues * api-change:``pca-connector-scep``: This is a general availability (GA) release of Connector for SCEP, a feature of AWS Private CA. Connector for SCEP links your SCEP-enabled and mobile device management systems to AWS Private CA for digital signature installation and certificate management. * api-change:``rds``: Launching Global Cluster tagging. - from version 1.35.19 * api-change:``amplify``: Doc only update to Amplify to explain platform setting for Next.js 14 SSG only applications * api-change:``ivs``: Updates to all tags descriptions. * api-change:``ivschat``: Updates to all tags descriptions. - from version 1.35.18 * api-change:``cognito-idp``: Added email MFA option to user pools with advanced security features. * api-change:``elbv2``: Correct incorrectly mapped error in ELBv2 waiters * api-change:``emr``: Update APIs to allow modification of ODCR options, allocation strategy, and InstanceTypeConfigs on running InstanceFleet clusters. * api-change:``glue``: AWS Glue is introducing two new optimizers for Apache Iceberg tables: snapshot retention and orphan file deletion. Customers can enable these optimizers and customize their configurations to perform daily maintenance tasks on their Iceberg tables based on their specific requirements. * api-change:``mediaconvert``: This release includes support for dynamic video overlay workflows, including picture-in-picture and squeezeback * api-change:``rds``: This release adds support for the os-upgrade pending maintenance action for Amazon Aurora DB clusters. * api-change:``storagegateway``: The S3 File Gateway now supports DSSE-KMS encryption. A new parameter EncryptionType is added to these APIs: CreateSmbFileShare, CreateNfsFileShare, UpdateSmbFileShare, UpdateNfsFileShare, DescribeSmbFileShares, DescribeNfsFileShares. Also, in favor of EncryptionType, KmsEncrypted is deprecated. * api-change:``synthetics``: This release introduces two features. The first is tag replication, which allows for the propagation of canary tags onto Synthetics related resources, such as Lambda functions. The second is a limit increase in canary name length, which has now been increased from 21 to 255 characters. - from version 1.35.17 * api-change:``bedrock-agent``: Amazon Bedrock Knowledge Bases now supports using inference profiles to increase throughput and improve resilience. * api-change:``bedrock-agent-runtime``: Amazon Bedrock Knowledge Bases now supports using inference profiles to increase throughput and improve resilience. * api-change:``ecr``: Added KMS_DSSE to EncryptionType * api-change:``guardduty``: Add support for new statistic types in GetFindingsStatistics. * api-change:``lexv2-models``: Support new Polly voice engines in VoiceSettings: long-form and generative * api-change:``medialive``: Adds AV1 Codec support, SRT ouputs, and MediaLive Anywhere support. - from version 1.35.16 * api-change:``chime-sdk-voice``: Documentation-only update that clarifies the ValidateE911Address action of the Amazon Chime SDK Voice APIs. * api-change:``cognito-identity``: This release adds sensitive trait to some required shapes. * api-change:``pipes``: This release adds support for customer managed KMS keys in Amazon EventBridge Pipe * api-change:``securityhub``: Documentation update for Security Hub * enhancement:AWSCRT: Update awscrt version to 0.21.5 * enhancement:``s3``: Adds logic to gracefully handle invalid timestamps returned in the Expires header. - from version 1.35.15 * api-change:``dynamodb``: Doc-only update for DynamoDB. Added information about async behavior for TagResource and UntagResource APIs and updated the description of ResourceInUseException. * api-change:``elbv2``: Add paginators for the ELBv2 DescribeListenerCertificates and DescribeRules APIs. Fix broken waiter for the ELBv2 DescribeLoadBalancers API. * api-change:``ivs-realtime``: IVS Real-Time now offers customers the ability to broadcast to Stages using RTMP(S). * api-change:``kafka``: Amazon MSK Replicator can now replicate data to identically named topics between MSK clusters within the same AWS Region or across different AWS Regions. * api-change:``sagemaker``: Amazon Sagemaker supports orchestrating SageMaker HyperPod clusters with Amazon EKS * api-change:``sagemaker-runtime``: AWS SageMaker Runtime feature: Add sticky routing to support stateful inference models. - from version 1.35.14 * api-change:``qapps``: Adds UpdateLibraryItemMetadata api to change status of app for admin verification feature and returns isVerified field in any api returning the app or library item. - from version 1.35.13 * api-change:``application-signals``: Amazon CloudWatch Application Signals now supports creating Service Level Objectives using a new calculation type. Users can now create SLOs which are configured with request-based SLIs to help meet their specific business requirements. * api-change:``codepipeline``: Updates to add recent notes to APIs and to replace example S3 bucket names globally. * api-change:``connect``: Amazon Connect Custom Vocabulary now supports Catalan (Spain), Danish (Denmark), Dutch (Netherlands), Finnish (Finland), Indonesian (Indonesia), Malay (Malaysia), Norwegian Bokmal (Norway), Polish (Poland), Swedish (Sweden), and Tagalog/Filipino (Philippines). * api-change:``gamelift``: Amazon GameLift provides additional events for tracking the fleet creation process. * api-change:``kinesisanalyticsv2``: Support for Flink 1.20 in Managed Service for Apache Flink * api-change:``sagemaker``: Amazon SageMaker now supports idle shutdown of JupyterLab and CodeEditor applications on SageMaker Studio. - from version 1.35.12 * api-change:``appsync``: Adds new logging levels (INFO and DEBUG) for additional log output control * api-change:``bedrock-agent``: Add support for user metadata inside PromptVariant. * api-change:``finspace``: Updates Finspace documentation for smaller instances. * api-change:``fis``: This release adds safety levers, a new mechanism to stop all running experiments and prevent new experiments from starting. * api-change:``logs``: Update to support new APIs for delivery of logs from AWS services. * api-change:``s3control``: Amazon Simple Storage Service /S3 Access Grants / Features : This release launches new Access Grants API - ListCallerAccessGrants. - from version 1.35.11 * api-change:``connect``: Release ReplicaConfiguration as part of DescribeInstance * api-change:``datazone``: Add support to let data publisher specify a subset of the data asset that a subscriber will have access to based on the asset filters provided, when accepting a subscription request. * api-change:``elbv2``: This release adds support for configuring TCP idle timeout on NLB and GWLB listeners. * api-change:``mediaconnect``: AWS Elemental MediaConnect introduces thumbnails for Flow source monitoring. Thumbnails provide still image previews of the live content feeding your MediaConnect Flow allowing you to easily verify that your source is operating as expected. * api-change:``medialive``: Added MinQP as a Rate Control option for H264 and H265 encodes. * api-change:``sagemaker``: Amazon SageMaker now supports automatic mounting of a user's home folder in the Amazon Elastic File System (EFS) associated with the SageMaker Studio domain to their Studio Spaces to enable users to share data between their own private spaces. * api-change:``timestream-influxdb``: Timestream for InfluxDB now supports compute scaling and deployment type conversion. This release adds the DbInstanceType and DeploymentType parameters to the UpdateDbInstance API. - Update to 1.35.10 * api-change:``backup``: The latest update introduces two new attributes, VaultType and VaultState, to the DescribeBackupVault and ListBackupVaults APIs. The VaultState attribute reflects the current status of the vault, while the VaultType attribute indicates the specific category of the vault. * api-change:``datazone``: Amazon DataZone now adds new governance capabilities of Domain Units for organization within your Data Domains, and Authorization Policies for tighter controls. * api-change:``logs``: This release introduces a new optional parameter: Entity, in PutLogEvents request * api-change:``redshift-data``: The release include the new Redshift DataAPI feature for session use, customer execute query with --session-keep-alive-seconds parameter and can submit follow-up queries to same sessions with returned`session-id` - from version 1.35.9 * api-change:``bedrock-agent-runtime``: Lifting the maximum length on Bedrock KnowledgeBase RetrievalFilter array * api-change:``bedrock-runtime``: Add support for imported-model in invokeModel and InvokeModelWithResponseStream. * api-change:``personalize``: This releases ability to update automatic training scheduler for customer solutions * api-change:``quicksight``: Increased Character Limit for Dataset Calculation Field expressions * api-change:``stepfunctions``: This release adds support for static analysis to ValidateStateMachineDefinition API, which can now return optional WARNING diagnostics for semantic errors on the definition of an Amazon States Language (ASL) state machine. * api-change:``wafv2``: The minimum request rate for a rate-based rule is now 10. Before this, it was 100. - from version 1.35.8 * api-change:``appconfig``: This release adds support for deletion protection, which is a safety guardrail to prevent the unintentional deletion of a recently used AWS AppConfig Configuration Profile or Environment. This also includes a change to increase the maximum length of the Name parameter in UpdateConfigurationProfile. * api-change:``datazone``: Update regex to include dot character to be consistent with IAM role creation in the authorized principal field for create and update subscription target. * api-change:``devicefarm``: This release removed support for Calabash, UI Automation, Built-in Explorer, remote access record, remote access replay, and web performance profile framework in ScheduleRun API. * api-change:``ec2``: Amazon VPC IP Address Manager (IPAM) now allows customers to provision IPv4 CIDR blocks and allocate Elastic IP Addresses directly from IPAM pools with public IPv4 space * api-change:``internetmonitor``: Adds new querying types to show overall traffic suggestion information for monitors * api-change:``pcs``: Introducing AWS Parallel Computing Service (AWS PCS), a new service makes it easy to setup and manage high performance computing (HPC) clusters, and build scientific and engineering models at virtually any scale on AWS. * api-change:``workspaces``: Documentation-only update that clarifies the StartWorkspaces and StopWorkspaces actions, and a few other minor edits. - from version 1.35.7 * api-change:``bedrock``: Amazon Bedrock SDK updates for Inference Profile. * api-change:``bedrock-runtime``: Amazon Bedrock SDK updates for Inference Profile. * api-change:``chatbot``: Update documentation to be consistent with the API docs * api-change:``omics``: Adds data provenance to import jobs from read sets and references * api-change:``polly``: Amazon Polly adds 2 new voices: Jitka (cs-CZ) and Sabrina (de-CH). - from version 1.35.6 * api-change:``iotsitewise``: AWS IoT SiteWise now supports versioning for asset models. It enables users to retrieve active version of their asset model and perform asset model writes with optimistic lock. * api-change:``workspaces``: This release adds support for creating and managing directories that use AWS IAM Identity Center as user identity source. Such directories can be used to create non-Active Directory domain joined WorkSpaces Personal.Updated RegisterWorkspaceDirectory and DescribeWorkspaceDirectories APIs. - from version 1.35.5 * api-change:``bedrock-agent``: Releasing the support for Action User Confirmation. * api-change:``bedrock-agent-runtime``: Releasing the support for Action User Confirmation. * api-change:``codebuild``: Added support for the MAC_ARM environment type for CodeBuild fleets. * api-change:``organizations``: Releasing minor partitional endpoint updates. * api-change:``qbusiness``: Amazon QBusiness: Enable support for SAML and OIDC federation through AWS IAM Identity Provider integration. * api-change:``supplychain``: Update API documentation to clarify the event SLA as well as the data model expectations - from version 1.35.4 * api-change:``autoscaling``: Amazon EC2 Auto Scaling now provides EBS health check to manage EC2 instance replacement * api-change:``bedrock``: Amazon Bedrock Evaluation BatchDeleteEvaluationJob API allows customers to delete evaluation jobs under terminated evaluation job statuses - Stopped, Failed, or Completed. Customers can submit a batch of 25 evaluation jobs to be deleted at once. * api-change:``emr-containers``: Correct endpoint for FIPS is configured for US Gov Regions. * api-change:``inspector2``: Add enums for Agentless scan statuses and EC2 enablement error states * api-change:``quicksight``: Explicit query for authors and dashboard viewing sharing for embedded users * api-change:``route53``: Amazon Route 53 now supports the Asia Pacific (Malaysia) Region (ap-southeast-5) for latency records, geoproximity records, and private DNS for Amazon VPCs in that region. - from version 1.35.3 * api-change:``codestar``: The codestar client has been removed following the deprecation of the service on July 31, 2024. * api-change:``ec2``: DescribeInstanceStatus now returns health information on EBS volumes attached to Nitro instances * api-change:``entityresolution``: Increase the mapping attributes in Schema to 35. * api-change:``glue``: Add optional field JobRunQueuingEnabled to CreateJob and UpdateJob APIs. * api-change:``lambda``: Release FilterCriteria encryption for Lambda EventSourceMapping, enabling customers to encrypt their filter criteria using a customer-owned KMS key. * api-change:``securityhub``: Security Hub documentation and definition updates * api-change:``ses``: Enable email receiving customers to provide SES with access to their S3 buckets via an IAM role for "Deliver to S3 Action" - from version 1.35.2 * api-change:``ecs``: Documentation only release to address various tickets * api-change:``opensearchserverless``: Added FailureCode and FailureMessage to BatchGetCollectionResponse for BatchGetVPCEResponse for non-Active Collection and VPCE. * api-change:``s3``: Amazon Simple Storage Service / Features : Add support for conditional writes for PutObject and CompleteMultipartUpload APIs. - from version 1.35.1 * api-change:``bedrock``: Amazon Bedrock Batch Inference/ Model Invocation is a feature which allows customers to asynchronously run inference on a large set of records/files stored in S3. * api-change:``codebuild``: AWS CodeBuild now supports creating fleets with macOS platform for running builds. * api-change:``deadline``: This release adds additional search fields and provides sorting by multiple fields. * api-change:``lambda``: Release Lambda FunctionRecursiveConfig, enabling customers to turn recursive loop detection on or off on individual functions. This release adds two new APIs, GetFunctionRecursionConfig and PutFunctionRecursionConfig. * api-change:``ssm-sap``: Add new attributes to the outputs of GetApplication and GetDatabase APIs. - from version 1.35.0 * api-change:``batch``: Improvements of integration between AWS Batch and EC2. * api-change:``inspector2``: Update the correct format of key and values for resource tags * api-change:``quicksight``: Amazon QuickSight launches Customer Managed Key (CMK) encryption for Data Source metadata * api-change:``sagemaker``: Introduce Endpoint and EndpointConfig Arns in sagemaker:ListPipelineExecutionSteps API response * api-change:``sesv2``: Marking use case description field of account details as deprecated. * feature:signing: Adds internal support for the new 'auth' trait to allow a priority list of auth types for a service or operation. - from version 1.34.162 * api-change:``docdb``: This release adds Global Cluster Failover capability which enables you to change your global cluster's primary AWS region, the region that serves writes, during a regional outage. Performing a failover action preserves your Global Cluster setup. * api-change:``ecs``: This release introduces a new ContainerDefinition configuration to support the customer-managed keys for ECS container restart feature. * api-change:``iam``: Make the LastUsedDate field in the GetAccessKeyLastUsed response optional. This may break customers who only call the API for access keys with a valid LastUsedDate. This fixes a deserialization issue for access keys without a LastUsedDate, because the field was marked as required but could be null. * api-change:``s3``: Amazon Simple Storage Service / Features : Adds support for pagination in the S3 ListBuckets API. - from version 1.34.161 * api-change:``codebuild``: AWS CodeBuild now supports using Secrets Manager to store git credentials and using multiple source credentials in a single project. - from version 1.34.160 * api-change:``amplify``: Add a new field "cacheConfig" that enables users to configure the CDN cache settings for an App * api-change:``appstream``: This release includes following new APIs: CreateThemeForStack, DescribeThemeForStack, UpdateThemeForStack, DeleteThemeForStack to support custom branding programmatically. * api-change:``fis``: This release adds support for additional error information on experiment failure. It adds the error code, location, and account id on relevant failures to the GetExperiment and ListExperiment API responses. * api-change:``glue``: Add AttributesToGet parameter support for Glue GetTables * api-change:``neptune-graph``: Amazon Neptune Analytics provides a new option for customers to load data into a graph using the RDF (Resource Description Framework) NTRIPLES format. When loading NTRIPLES files, use the value `convertToIri` for the `blankNodeHandling` parameter. - from version 1.34.159 * api-change:``compute-optimizer``: Doc only update for Compute Optimizer that fixes several customer-reported issues relating to ECS finding classifications * api-change:``config``: Documentation update for the OrganizationConfigRuleName regex pattern. * api-change:``ec2``: This release adds new capabilities to manage On-Demand Capacity Reservations including the ability to split your reservation, move capacity between reservations, and modify the instance eligibility of your reservation. * api-change:``eks``: Added support for new AL2023 GPU AMIs to the supported AMITypes. * api-change:``groundstation``: Updating documentation for OEMEphemeris to link to AWS Ground Station User Guide * api-change:``medialive``: AWS Elemental MediaLive now supports now supports editing the PID values for a Multiplex. * api-change:``sagemaker``: Releasing large data support as part of CreateAutoMLJobV2 in SageMaker Autopilot and CreateDomain API for SageMaker Canvas. - from version 1.34.158 * api-change:``cognito-idp``: Fixed a description of AdvancedSecurityAdditionalFlows in Amazon Cognito user pool configuration. * api-change:``connect``: This release supports adding RoutingCriteria via UpdateContactRoutingData public API. * api-change:``ssm``: Systems Manager doc-only updates for August 2024. - from version 1.34.157 * api-change:``cognito-idp``: Added support for threat protection for custom authentication in Amazon Cognito user pools. * api-change:``connect``: This release fixes a regression in number of access control tags that are allowed to be added to a security profile in Amazon Connect. You can now add up to four access control tags on a single security profile. * api-change:``ec2``: Launch of private IPv6 addressing for VPCs and Subnets. VPC IPAM supports the planning and monitoring of private IPv6 usage. * api-change:``glue``: This release adds support to retrieve the validation status when creating or updating Glue Data Catalog Views. Also added is support for BasicCatalogTarget partition keys. - from version 1.34.156 * api-change:``appintegrations``: Updated CreateDataIntegration and CreateDataIntegrationAssociation API to support bulk data export from Amazon Connect Customer Profiles to the customer S3 bucket. * api-change:``glue``: Introducing AWS Glue Data Quality anomaly detection, a new functionality that uses ML-based solutions to detect data anomalies users have not explicitly defined rules for. - from version 1.34.155 * api-change:``bedrock-agent-runtime``: Introduce model invocation output traces for orchestration traces, which contain the model's raw response and usage. * api-change:``cognito-idp``: Advanced security feature updates to include password history and log export for Cognito user pools. * api-change:``cost-optimization-hub``: This release adds savings percentage support to the ListRecommendationSummaries API. * api-change:``workspaces``: Added support for BYOL_GRAPHICS_G4DN_WSP IngestionProcess * enhancement:AWSCRT: Update awscrt version to 0.21.2 - from version 1.34.154 * api-change:``datazone``: This releases Data Product feature. Data Products allow grouping data assets into cohesive, self-contained units for ease of publishing for data producers, and ease of finding and accessing for data consumers. * api-change:``ecr``: Released two new APIs along with documentation updates. The GetAccountSetting API is used to view the current basic scan type version setting for your registry, while the PutAccountSetting API is used to update the basic scan type version for your registry. * api-change:``kinesis-video-webrtc-storage``: Add JoinStorageSessionAsViewer API * api-change:``pi``: Added a description for the Dimension db.sql.tokenized_id on the DimensionGroup data type page. - from version 1.34.153 * api-change:``cloudwatch``: Add v2 smoke tests and smithy smokeTests trait for SDK testing. * api-change:``kinesis``: Add v2 smoke tests and smithy smokeTests trait for SDK testing. * api-change:``resiliencehub``: Customers are presented with the grouping recommendations and can determine if the recommendations are accurate and apply to their case. This feature simplifies onboarding by organizing resources into appropriate AppComponents. * api-change:``route53``: Add v2 smoke tests and smithy smokeTests trait for SDK testing. * api-change:``waf-regional``: Add v2 smoke tests and smithy smokeTests trait for SDK testing. - from version 1.34.152 * api-change:``bedrock``: API and Documentation for Bedrock Model Copy feature. This feature lets you share and copy a custom model from one region to another or one account to another. * api-change:``controlcatalog``: AWS Control Tower provides two new public APIs controlcatalog:ListControls and controlcatalog:GetControl under controlcatalog service namespace, which enable customers to programmatically retrieve control metadata of available controls. * api-change:``controltower``: Updated Control Tower service documentation for controlcatalog control ARN support with existing Control Tower public APIs * api-change:``iam``: Add v2 smoke tests and smithy smokeTests trait for SDK testing. * api-change:``memorydb``: Doc only update for changes to deletion API. * api-change:``rds``: This release adds support for specifying optional MinACU parameter in CreateDBShardGroup and ModifyDBShardGroup API. DBShardGroup response will contain MinACU if specified. * api-change:``sagemaker``: This release adds support for Amazon EMR Serverless applications in SageMaker Studio for running data processing jobs. * api-change:``ssm-quicksetup``: This release adds API support for the QuickSetup feature of AWS Systems Manager * api-change:``support``: Doc only updates to CaseDetails - from version 1.34.151 * api-change:``appstream``: Added support for Red Hat Enterprise Linux 8 on Amazon AppStream 2.0 * api-change:``autoscaling``: Increase the length limit for VPCZoneIdentifier from 2047 to 5000 * api-change:``codepipeline``: AWS CodePipeline V2 type pipelines now support stage level conditions to enable development teams to safely release changes that meet quality and compliance requirements. * api-change:``elasticache``: Doc only update for changes to deletion API. * api-change:``elb``: Add v2 smoke tests and smithy smokeTests trait for SDK testing. * api-change:``events``: Add v2 smoke tests and smithy smokeTests trait for SDK testing. * api-change:``lexv2-models``: This release adds new capabilities to the AMAZON.QnAIntent: Custom prompting, Guardrails integration and ExactResponse support for Bedrock Knowledge Base. * api-change:``logs``: Add v2 smoke tests and smithy smokeTests trait for SDK testing. * api-change:``rolesanywhere``: IAM RolesAnywhere now supports custom role session name on the CreateSession. This release adds the acceptRoleSessionName option to a profile to control whether a role session name will be accepted in a session request with a given profile. * api-change:``tnb``: This release adds Network Service Update, through which customers will be able to update their instantiated networks to a new network package. See the documentation for limitations. The release also enhances the Get network operation API to return parameter overrides used during the operation. * api-change:``workspaces``: Removing multi-session as it isn't supported for pools - from version 1.34.150 * api-change:``elasticache``: Renaming full service name as it appears in developer documentation. * api-change:``memorydb``: Renaming full service name as it appears in developer documentation. - Update to 1.34.149 * api-change:``application-autoscaling``: Application Auto Scaling is now more responsive to the changes in demand of your SageMaker Inference endpoints. To get started, create or update a Target Tracking policy based on High Resolution CloudWatch metrics. * api-change:``application-signals``: CloudWatch Application Signals now supports application logs correlation with traces and operational health metrics of applications running on EC2 instances. Users can view the most relevant telemetry to troubleshoot application health anomalies such as spikes in latency, errors, and availability. * api-change:``bedrock-runtime``: Provides ServiceUnavailableException error message * api-change:``codecommit``: CreateRepository API now throws OperationNotAllowedException when the account has been restricted from creating a repository. * api-change:``datazone``: Introduces GetEnvironmentCredentials operation to SDK * api-change:``ec2``: EC2 Fleet now supports using custom identifiers to reference Amazon Machine Images (AMI) in launch requests that are configured to choose from a diversified list of instance types. * api-change:``ecr``: API and documentation updates for Amazon ECR, adding support for creating, updating, describing and deleting ECR Repository Creation Template. * api-change:``eks``: This release adds support for EKS cluster to manage extended support. * api-change:``elbv2``: This release adds support for sharing trust stores across accounts and organizations through integration with AWS Resource Access Manager. * api-change:``network-firewall``: You can now log events that are related to TLS inspection, in addition to the existing alert and flow logging. * api-change:``outposts``: Adding default vCPU information to GetOutpostSupportedInstanceTypes and GetOutpostInstanceTypes responses * api-change:``stepfunctions``: This release adds support to customer managed KMS key encryption in AWS Step Functions. - from version 1.34.148 * api-change:``cleanrooms``: Three enhancements to the AWS Clean Rooms: Disallowed Output Columns, Flexible Result Receivers, SQL as a Seed * api-change:``dynamodb``: DynamoDB doc only update for July * api-change:``iotsitewise``: Adds support for creating SiteWise Edge gateways that run on a Siemens Industrial Edge Device. * api-change:``mediapackagev2``: This release adds support for Irdeto DRM encryption in DASH manifests. * api-change:``medical-imaging``: CopyImageSet API adds copying selected instances between image sets, and overriding inconsistent metadata with a force parameter. UpdateImageSetMetadata API enables reverting to prior versions; updates to Study, Series, and SOP Instance UIDs; and updates to private elements, with a force parameter. * api-change:``pinpoint-sms-voice-v2``: Update for rebrand to AWS End User Messaging SMS and Voice. - from version 1.34.147 * api-change:``appsync``: Adding support for paginators in AppSync list APIs * api-change:``cleanrooms``: This release adds AWS Entity Resolution integration to associate ID namespaces & ID mapping workflow resources as part of ID namespace association and ID mapping table in AWS Clean Rooms. It also introduces a new ID_MAPPING_TABLE analysis rule to manage the protection on ID mapping table. * api-change:``cleanroomsml``: Adds SQL query as the source of seed audience for audience generation job. * api-change:``connect``: Added PostContactSummary segment type on ListRealTimeContactAnalysisSegmentsV2 API * api-change:``connect-contact-lens``: Added PostContactSummary segment type on ListRealTimeContactAnalysisSegments API * api-change:``datazone``: This release removes the deprecated dataProductItem field from Search API output. * api-change:``entityresolution``: Support First Party ID Mapping - from version 1.34.146 * api-change:``datazone``: This release adds 1/ support of register S3 locations of assets in AWS Lake Formation hybrid access mode for DefaultDataLake blueprint. 2/ support of CRUD operations for Asset Filters. * api-change:``ivs``: Documentation update for IVS Low Latency API Reference. * api-change:``mobile``: The mobile client has been removed following the deprecation of the service. * api-change:``neptune-graph``: Amazon Neptune Analytics provides new options for customers to start with smaller graphs at a lower cost. CreateGraph, CreaateGraphImportTask, UpdateGraph and StartImportTask APIs will now allow 32 and 64 for `provisioned-memory` * api-change:``redshift-serverless``: Adds dualstack support for Redshift Serverless workgroup. - from version 1.34.145 * api-change:``acm-pca``: Fix broken waiters for the acm-pca client. Waiters broke in version 1.13.144 of the Boto3 SDK. * api-change:``connect``: Amazon Connect expands search API coverage for additional resources. Search for hierarchy groups by name, ID, tag, or other criteria (new endpoint). Search for agent statuses by name, ID, tag, or other criteria (new endpoint). Search for users by their assigned proficiencies (enhanced endpoint) * api-change:``ec2``: Amazon VPC IP Address Manager (IPAM) now supports Bring-Your-Own-IP (BYOIP) for IP addresses registered with any Internet Registry. This feature uses DNS TXT records to validate ownership of a public IP address range. * api-change:``firehose``: This release 1) Add configurable buffering hints for Snowflake as destination. 2) Add ReadFromTimestamp for MSK As Source. Firehose will start reading data from MSK Cluster using offset associated with this timestamp. 3) Gated public beta release to add Apache Iceberg tables as destination. * api-change:``ivschat``: Documentation update for IVS Chat API Reference. * api-change:``medialive``: AWS Elemental MediaLive now supports the SRT protocol via the new SRT Caller input type. * api-change:``rds``: Updates Amazon RDS documentation to specify an eventual consistency model for DescribePendingMaintenanceActions. * api-change:``sagemaker``: SageMaker Training supports R5, T3 and R5D instances family. And SageMaker Processing supports G5 and R5D instances family. * api-change:``secretsmanager``: Doc only update for Secrets Manager * api-change:``taxsettings``: Set default endpoint for aws partition. Requests from all regions in aws partition will be forward to us-east-1 endpoint. * api-change:``timestream-query``: Doc-only update for TimestreamQuery. Added guidance about the accepted valid value for the QueryPricingModel parameter. * api-change:``workspaces-thin-client``: Documentation update for WorkSpaces Thin Client. * bugfix:Waiter: Update waiters to handle expected boolean values when matching errors (`boto/botocore#3220 <https://github.com/boto/botocore/issues/3220>`__) Changes in python-boto3: - Update to 1.40.50 * api-change:``bedrock-agentcore``: [``botocore``] Bedrock AgentCore release for Runtime, and Memory. * api-change:``bedrock-agentcore-control``: [``botocore``] Bedrock AgentCore release for Gateway, and Memory including Self-Managed Strategies support for Memory. * api-change:``cloudfront``: [``botocore``] Added new viewer security policy, TLSv1.2_2025, for CloudFront. * api-change:``glue``: [``botocore``] Addition of AuditContext in GetTable/GetTables Request * api-change:``lambda``: [``botocore``] Add InvokedViaFunctionUrl context key to limit invocations to only FURL invokes. * api-change:``odb``: [``botocore``] This release adds APIs that allow you to specify CIDR ranges in your ODB peering connection. * api-change:``rds``: [``botocore``] Updated the text in the Important section of the ModifyDBClusterParameterGroup page. - Update BuildRequires and Requires from setup.py - Update to 1.40.49 * api-change:``quicksight``: [``botocore``] This release adds support for ActionConnector and Flow, which are new resources associated with Amazon Quick Suite. Additional updates include expanded Data Source options, further branding customization, and new capabilities that can be restricted by Admins. * api-change:``wafv2``: [``botocore``] This release adds the ability to throw WafLimitsExceededException when the maximum number of Application Load Balancer (ALB) associations per AWS WAF v2 WebACL is exceeded. - from version 1.40.48 * api-change:``bedrock-agentcore-control``: [``botocore``] Adding support for authorizer type AWS_IAM to AgentCore Control Gateway. * api-change:``license-manager-user-subscriptions``: [``botocore``] Released support for IPv6 and dual-stack active directories * api-change:``outposts``: [``botocore``] This release adds the new StartOutpostDecommission API, which starts the decommission process to return Outposts racks or servers. * api-change:``service-quotas``: [``botocore``] introduces Service Quotas Automatic Management. Users can opt-in to monitoring and managing service quotas, receive notifications when quota usage reaches thresholds, configure notification channels, subscribe to EventBridge events for automation, and view notifications in the AWS Health dashboard. - from version 1.40.47 * api-change:``proton``: [``botocore``] Deprecating APIs in AWS Proton namespace. - from version 1.40.46 * api-change:``backup``: [``botocore``] Adds optional MaxScheduledRunsPreview input to GetBackupPlan API to provide a preview of up to 10 next scheduled backup plan runs in the GetBackupPlan response. * api-change:``bedrock-agentcore``: [``botocore``] Add support for batch memory management, agent card retrieval and session termination * api-change:``bedrock-agentcore-control``: [``botocore``] Add support for VM lifecycle configuration parameters and A2A protocol * api-change:``glue``: [``botocore``] Adds labeling for DataQualityRuleResult for GetDataQualityResult and PublishDataQualityResult APIs * api-change:``mediaconnect``: [``botocore``] Enabling Tag-on-Create for AWS Elemental MediaConnect flow-based resource types * api-change:``memorydb``: [``botocore``] Support for DescribeMultiRegionParameterGroups and DescribeMultiRegionParameters API. * api-change:``quicksight``: [``botocore``] Documentation improvements for QuickSight API documentation to clarify that delete operation APIs are global. * api-change:``rds``: [``botocore``] Documentation updates to the CreateDBClusterMessage$PubliclyAccessible and CreateDBInstanceMessage$PubliclyAccessible properties. * api-change:``resource-explorer-2``: [``botocore``] Add new AWS Resource Explorer APIs - from version 1.40.45 * api-change:``cleanrooms``: [``botocore``] Added support for reading data sources across regions, and results delivery to allowedlisted regions. * api-change:``medialive``: [``botocore``] AWS Elemental MediaLive enables Mediapackage V2 users to configure ID3, KLV, Nielsen ID3, and Segment Length related parameters through the Mediapackage output group. * api-change:``payment-cryptography-data``: [``botocore``] Added a new API - translateKeyMaterial; allows keys wrapped by ECDH derived keys to be rewrapped under a static AES keyblock without first importing the key into the service. * api-change:``qconnect``: [``botocore``] Updated Amazon Q in Connect APIs to support Email Contact Recommendations. - from version 1.40.44 * api-change:``cloudformation``: [``botocore``] Add new warning type 'EXCLUDED_RESOURCES' * api-change:``connectcases``: [``botocore``] New Search All Related Items API enables searching related items across cases * api-change:``dynamodb``: [``botocore``] Add support for dual-stack account endpoint generation * api-change:``endpoint-rules``: [``botocore``] Update endpoint-rules client to latest version * api-change:``guardduty``: [``botocore``] Updated descriptions for the Location parameter in CreateTrustedEntitySet and CreateThreatEntitySet. * api-change:``synthetics``: [``botocore``] Adds support to configure canaries with pre-configured blueprint code on supported runtime versions. This behavior can be controlled via the new BlueprintTypes property exposed in the CreateCanary and UpdateCanary APIs. - from version 1.40.43 * api-change:``chime-sdk-meetings``: [``botocore``] Add support to receive dual stack MediaPlacement URLs in Chime Meetings SDK * api-change:``cleanrooms``: [``botocore``] This release introduces data access budgets to control how many times a table can be used for queries and jobs in a collaboration. * api-change:``cleanroomsml``: [``botocore``] This release introduces data access budgets to view how many times an input channel can be used for ML jobs in a collaboration. * api-change:``dms``: [``botocore``] This is a doc-only update, revising text for kms-key-arns. * api-change:``ecs``: [``botocore``] This is a documentation only Amazon ECS release that adds additional information for health checks. * api-change:``pcs``: [``botocore``] Added the UpdateCluster API action to modify cluster configurations, and Slurm custom settings for queues. - from version 1.40.42 * api-change:``application-signals``: [``botocore``] Amazon CloudWatch Application Signals is introducing the Application Map to give users a more comprehensive view of their service health. Users will now be able to group services, track their latest deployments, and view automated audit findings concerning service performance. * api-change:``bedrock-agentcore-control``: [``botocore``] Tagging support for AgentCore Gateway * api-change:``chime-sdk-voice``: [``botocore``] Added support for IPv4-only and dual-stack network configurations for VoiceConnector and CreateVoiceConnector API. * api-change:``connectcases``: [``botocore``] This release adds support for two new related item types: ConnectCase for linking Amazon Connect cases and Custom for user-defined related items with configurable fields. * api-change:``customer-profiles``: [``botocore``] This release introduces ListProfileHistoryRecords and GetProfileHistoryRecord APIs for comprehensive profile history tracking with complete audit trails of creation, updates, merges, deletions, and data ingestion events. * api-change:``datasync``: [``botocore``] Added support for FIPS VPC endpoints in FIPS-enabled AWS Regions. * api-change:``datazone``: [``botocore``] This release adds support for creation of EMR on EKS Connections in Amazon DataZone. * api-change:``ds``: [``botocore``] AWS Directory service now supports IPv6-native and dual-stack configurations for AWS Managed Microsoft AD, AD Connector, and Simple AD (dual-stack only). Additionally, AWS Managed Microsoft AD Standard Edition directories can be upgraded to Enterprise Edition directories through a single API call. * api-change:``ecs``: [``botocore``] This release adds support for Managed Instances on Amazon ECS. * api-change:``fsx``: [``botocore``] Add Dual-Stack support for Amazon FSx for NetApp ONTAP and Windows File Server * api-change:``mediatailor``: [``botocore``] Adding TPS Traffic Shaping to Prefetch Schedules * api-change:``quicksight``: [``botocore``] added warnings to a few CLI pages * api-change:``rds``: [``botocore``] Enhanced RDS error handling: Added DBProxyEndpointNotFoundFault, DBShardGroupNotFoundFault, KMSKeyNotAccessibleFault for snapshots/restores/backups, NetworkTypeNotSupported, StorageTypeNotSupportedFault for restores, and granular state validation faults. Changed DBInstanceNotReadyFault to HTTP 400. * api-change:``transfer``: [``botocore``] Add support for updating server identity provider type - from version 1.40.41 * api-change:``bedrock``: [``botocore``] Release for fixing GetFoundationModel API behavior. Imported and custom models have their own exclusive API and GetFM should not accept those ARNS as input * api-change:``bedrock-runtime``: [``botocore``] New stop reason for Converse and ConverseStream * api-change:``imagebuilder``: [``botocore``] This release introduces several new features and improvements to enhance pipeline management, logging, and resource configuration. * api-change:``vpc-lattice``: [``botocore``] Adds support for specifying the number of IPv4 addresses in each ENI for the resource gateway for VPC Lattice. - from version 1.40.40 * api-change:``bedrock-agent-runtime``: [``botocore``] This release enhances the information provided through Flow Traces. New information includes source/next node tracking, execution chains for complex nodes, dependency action (operation) details, and dependency traces. * api-change:``bedrock-data-automation``: [``botocore``] Added support for configurable Speaker Labeling and Channel Labeling features for Audio modality. * api-change:``billing``: [``botocore``] Add ability to combine custom billing views to create new consolidated views. * api-change:``ce``: [``botocore``] Support for payer account dimension and billing view health status. * api-change:``connect``: [``botocore``] Adds supports for manual contact picking (WorkList) operations on Routing Profiles, Agent Management and SearchContacts APIs. * api-change:``dynamodbstreams``: [``botocore``] Added support for IPv6 compatible endpoints for DynamoDB Streams. * api-change:``ec2``: [``botocore``] This release includes documentation updates for Amazon EBS General Purpose SSD (gp3) volumes with larger size and higher IOPS and throughput. * api-change:``endpoint-rules``: [``botocore``] Update endpoint-rules client to latest version * api-change:``redshift``: [``botocore``] Support tagging and tag propagation to IAM Identity Center for Redshift Idc Applications - from version 1.40.39 * api-change:``glue``: [``botocore``] Update GetConnection(s) API to return KmsKeyArn & Add 63 missing connection types * api-change:``lightsail``: [``botocore``] Attribute HTTP binding update for Get/Delete operations * api-change:``network-firewall``: [``botocore``] Network Firewall now introduces Reject and Alert action support for stateful domain list rule groups, providing customers with more granular control over their network traffic. - from version 1.40.38 * api-change:``appstream``: [``botocore``] G6f instance support for AppStream 2.0 * api-change:``cloudwatch``: [``botocore``] Fix default dualstack FIPS endpoints in AWS GovCloud(US) regions * api-change:``dax``: [``botocore``] This release adds support for IPv6-only, DUAL_STACK DAX instances * api-change:``endpoint-rules``: [``botocore``] Update endpoint-rules client to latest version * api-change:``kms``: [``botocore``] Documentation only updates for KMS. * api-change:``neptune``: [``botocore``] Doc-only update to address customer use. - from version 1.40.37 * api-change:``cleanrooms``: [``botocore``] Added support for running incremental ID mapping for rule-based workflows. * api-change:``ec2``: [``botocore``] Add Amazon EC2 R8gn instance types * api-change:``entityresolution``: [``botocore``] Support incremental id mapping workflow for AWS Entity Resolution * api-change:``ssm``: [``botocore``] Added Dualstack support to GetDeployablePatchSnapshotForInstance * api-change:``sso-admin``: [``botocore``] Add support for encryption at rest with Customer Managed KMS Key in AWS IAM Identity Center * api-change:``sso-oidc``: [``botocore``] This release includes exception definition and documentation updates. - from version 1.40.36 * api-change:``batch``: [``botocore``] Starting in JAN 2026, AWS Batch will change the default AMI for new Amazon ECS compute environments from Amazon Linux 2 to Amazon Linux 2023. We recommend migrating AWS Batch Amazon ECS compute environments to Amazon Linux 2023 to maintain optimal performance and security. * api-change:``eks``: [``botocore``] Adds support for RepairConfig overrides and configurations in EKS Managed Node Groups. * api-change:``imagebuilder``: [``botocore``] Version ARNs are no longer required for the EC2 Image Builder list-image-build-version, list-component-build-version, and list-workflow-build-version APIs. Calling these APIs without the ARN returns all build versions for the given resource type in the requesting account. - from version 1.40.35 * api-change:``bedrock-agentcore-control``: [``botocore``] Add tagging and VPC support to AgentCore Runtime, Code Interpreter, and Browser resources. Add support for configuring request headers in Runtime. Fix AgentCore Runtime shape names. * api-change:``config``: [``botocore``] Add UNKNOWN state to RemediationExecutionState and add IN_PROGRESS/EXITED/UNKNOWN states to RemediationExecutionStepState. * api-change:``connect``: [``botocore``] This release adds a persistent connection field to UserPhoneConfig that maintains agent's softphone media connection for faster call connections. * api-change:``kendra-ranking``: [``botocore``] Model whitespace change - no client difference * api-change:``license-manager-user-subscriptions``: [``botocore``] Added support for cross-account Active Directories. * api-change:``medialive``: [``botocore``] Add MinBitrate for QVBR mode under H264/H265/AV1 output codec. Add GopBReference, GopNumBFrames, SubGopLength fields under H265 output codec. * api-change:``sms-voice``: [``botocore``] Updated the ``sms-voice`` client to the latest version. Note: this client is maintained only for backwards compatibility and should not be used for new development. We recommend using the ``pinpoint-sms-voice`` client for full support and ongoing updates. * api-change:``sqs``: [``botocore``] Update invalid character handling documentation for SQS SendMessage API - from version 1.40.34 * api-change:``bedrock``: [``botocore``] Release includes an increase to the maximum policy build document size, an update to DeleteAutomatedReasoningPolicyBuildWorkflow to add ResourceInUseException, and corrections to UpdateAutomatedReasoningPolicyTestCaseRequest. * api-change:``budgets``: [``botocore``] Added BillingViewHealthStatus Exception which is thrown when a Budget is created or updated with a Billing View that is not in the HEALTHY status * api-change:``chime-sdk-messaging``: [``botocore``] Amazon Chime SDK Messaging GetMessagingSessionEndpoint API now returns dual-stack WebSocket endpoints supporting IPv4/IPv6. * api-change:``ec2``: [``botocore``] Allowed AMIs adds support for four new parameters - marketplaceProductCodes, deprecationTimeCondition, creationDateCondition and imageNames - from version 1.40.33 * api-change:``ec2``: [``botocore``] Add mac-m4.metal and mac-m4pro.metal instance types. * api-change:``network-firewall``: [``botocore``] Network Firewall now prevents TLS handshakes with the target server until after the Server Name Indication (SNI) has been seen and verified. The monitoring dashboard now provides deeper insights into PrivateLink endpoint candidates and offers filters based on IP addresses and protocol. * api-change:``pcs``: [``botocore``] Add support for Amazon EC2 Capacity Blocks for ML - Update BuildRequires and Requires from setup.py - UPdate to 1.40.32 * api-change:``budgets``: [``botocore``] Add support for custom time periods in budget configuration * api-change:``ivs-realtime``: [``botocore``] IVS now offers customers the ability to control the positioning of participants in both grid and PiP layouts based on custom attribute values in participant tokens. * api-change:``logs``: [``botocore``] Cloudwatch Logs added support for 2 new API parameters in metric and subscription filter APIs to filter log events based on system field values and emit system field values as dimensions and send them to customer destination as additional metadata. * api-change:``osis``: [``botocore``] Adds support for cross-account ingestion for push-based sources. This includes resource policies for sharing pipelines across accounts and features for managing pipeline endpoints which enable accessing pipelines across different VPCs, including VPCs in other accounts. - Update to 1.40.31 * api-change:``ce``: [``botocore``] Added endpoint support for eusc-de-east-1 region. * api-change:``medical-imaging``: [``botocore``] Added support for OpenID Connect (OIDC) custom authorizer * api-change:``observabilityadmin``: [``botocore``] CloudWatch Observability Admin adds the ability to enable telemetry centralization in customers' Organizations. The release introduces new APIs to manage centralization rules, which define settings to replicate telemetry data to a central destination in the customers' Organization. * api-change:``s3control``: [``botocore``] Introduce three new encryption filters: EncryptionType (SSE-S3, SSE-KMS, DSSE-KMS, SSE-C, NOT-SSE), KmsKeyArn (for SSE-KMS and DSSE-KMS), and BucketKeyEnabled (for SSE-KMS). * api-change:``sms``: [``botocore``] The sms client has been removed following the deprecation of the service. - from version 1.40.30 * api-change:``payment-cryptography``: [``botocore``] Add support for certificates to be signed by 3rd party certificate authorities. New API GetCertificateSigningRequest API and support for providing certificates at run-time for tr-34 import/export - from version 1.40.29 * api-change:``amp``: [``botocore``] Add Vended Logs APIs for Amazon Prometheus Managed Collector * api-change:``datazone``: [``botocore``] adding IAM principal id to IAM user profile details * api-change:``ecs``: [``botocore``] This release supports hook details for Amazon ECS lifecycle hooks. * api-change:``emr-containers``: [``botocore``] Added nodeLabel support in container provider to aid hardware isolation support for virtual cluster and security configuration. * api-change:``evs``: [``botocore``] CreateEnvironment API now supports parameters (isHcxPublic & hcxNetworkAclId) for HCX migration via public internet, adding flexibility for migration scenarios. New APIs have been added for associating (AssociateEipToVlan) & disassociating (DisassociateEipFromVlan) Elastic IP (EIP) addresses. * api-change:``guardduty``: [``botocore``] Updated Java SDK implementation of entity set status in GuardDuty API. * api-change:``medialive``: [``botocore``] AWS Elemental MediaLive adds a new feature in MediaPackage output group that enables MediaPackage V2 users to control HLS-related parameters directly in MediaLive. These parameter settings are then reflected in MediaPackage outputs, providing more streamlined control over HLS configurations. * api-change:``quicksight``: [``botocore``] This release adds support for Account level custom permissions, additional Dashboard Options, and Null support for Q&A. * api-change:``rds``: [``botocore``] Adds support for end-to-end IAM authentication in RDS Proxy for MySQL, MariaDB, and PostgreSQL engines. - from version 1.40.28 * api-change:``networkflowmonitor``: [``botocore``] Added new enum value (AWS::Region) for type field under MonitorLocalResource and MonitorRemoteResource. Workload Insights and Monitor top contributors queries now support a new DestinationCategory (INTER_REGION). * api-change:``payment-cryptography``: [``botocore``] AWS Payment Cryptography Service now supports Multi-Region key replication. Customers can choose to automatically distribute keys across AWS Regions. - from version 1.40.27 * api-change:``autoscaling``: [``botocore``] Added WaitForTransitioningInstances parameter to the CancelInstanceRefresh API, allowing the caller to cancel an instance refresh without waiting for on-going launches and terminations. * api-change:``cloudwatch``: [``botocore``] Added a new API - DescribeAlarmContributors API, to retrieve alarm contributors in ALARM state. Added support in DescribeAlarmHistory API to query alarm contributor history * api-change:``connect``: [``botocore``] SDK release for user defined predefined attributes. * api-change:``datazone``: [``botocore``] Adds support for custom blueprints * api-change:``mediapackagev2``: [``botocore``] Added CUE tag SCTE output to MediaPackageV2 HLS and LL-HLS manifests. * api-change:``organizations``: [``botocore``] Documentation updates for AWS Organizations APIs. * api-change:``sagemaker``: [``botocore``] Released IPv6 support with dual-stack domain options on SageMaker Studio and introduced support for p6-b200.48xlarge instance type on SageMaker Studio for JupyterLab and CodeEditor applications. - from version 1.40.26 * api-change:``iotsitewise``: [``botocore``] Add ComputationModelVersion support in IoT SiteWise APIs * api-change:``s3``: [``botocore``] This release includes backward compatibility work on the "Expires" parameter. * api-change:``securityhub``: [``botocore``] This release adds the RESOURCE_NOT_FOUND error code as a possible value in responses to the following operations: BatchGetStandardsControlAssociations, BatchUpdateStandardsControlAssociations, and BatchGetSecurityControls. - Update BuildRequires and Requires from setup.py - Update to 1.40.25 * api-change:``ecs``: [``botocore``] This is a documentation only release that adds additional information for Amazon ECS Availability Zone rebalancing. * api-change:``pcs``: [``botocore``] Documentation-only update to add AccountingStorageEnforce to SlurmCustomSetting. * api-change:``sagemaker``: [``botocore``] Release IPv6 support with dualstack in SageMaker Notebooks, Tiered Storage Checkpointing Support in SageMaker HyperPod and P5.4xlarge instance type for SageMaker Hosting. - from version 1.40.24 * api-change:``cleanrooms``: [``botocore``] Add support for configurable compute sizes for PySpark jobs. * api-change:``cloudformation``: [``botocore``] ListHookResults API now supports retrieving invocation results for all CloudFormation Hooks (previously limited to create change set and Cloud Control operations) with new optional parameters for filtering by Hook status and ARN. * api-change:``ec2``: [``botocore``] Add m8i, m8i-flex and i8ge instance types. * api-change:``opensearchserverless``: [``botocore``] Add support for Federal Information Processing Standards (FIPS) and Federal Risk and Authorization Management Program (FedRAMP) compliance * api-change:``rds``: [``botocore``] Added new EndpointNetworkType and TargetConnectionNetworkType fields in Proxy APIs to support IPv6 * api-change:``verifiedpermissions``: [``botocore``] Amazon Verified Permissions / Features : Adds support for datetime and duration attribute values. - from version 1.40.23 * api-change:``cleanrooms``: [``botocore``] Added support for adding new data provider members to an existing collaboration. * api-change:``cleanroomsml``: [``botocore``] AWS Clean Rooms ML adds log sanitization for privacy-enhanced error summaries, supports new instance types for custom models providing better performance and lower costs, and deprecates P3-series instances. * api-change:``cloudfront``: [``botocore``] Adding an optional field IpAddressType in CustomOriginConfig * api-change:``mq``: [``botocore``] Add CONFIG_MANAGED as a supported AuthenticationStrategy for Amazon MQ for RabbitMQ brokers. Make username and password optional on broker creation for CONFIG_MANAGED brokers. * api-change:``rds``: [``botocore``] This release adds support for MasterUserAuthenticationType parameter on CreateDBInstance, ModifyDBInstance, CreateDBCluster, and ModifyDBCluster operations. * api-change:``route53``: [``botocore``] Amazon Route 53 now supports the Asia Pacific (New Zealand) Region (ap-southeast-6) for latency records, geoproximity records, and private DNS for Amazon VPCs in that region. * api-change:``route53domains``: [``botocore``] Added new ExtraParams AU_ELIGIBILITY_TYPE, AU_POLICY_REASON, and AU_REGISTRANT_NAME - from version 1.40.22 * api-change:``ec2``: [``botocore``] MaximumEbsAttachments and AttachmentLimitType fields added to DescribeInstanceTypesResponse. G6f, Gr6f, R8i, R8i-flex and p5.4xlarge instance types added to InstanceTypes enum. * api-change:``neptune``: [``botocore``] Removed the deprecated marker from publiclyAccessible parameter from DbInstance, CreateDbInstance and ModifyDbInstance and added relevant usage information for the parameter. * api-change:``notifications``: [``botocore``] Added Org support for notifications: - `ListMemberAccounts` gets member accounts list, `AssociateOrganizationalUnit` links OU to notification configuration, `DisassociateOrganizationalUnit` removes OU from notification configuration, `ListOrganizationalUnits` shows OUs configured for notifications. * api-change:``workmail``: [``botocore``] Make RoleArn an optional parameter for the PutEmailMonitoringConfiguration API, and add UnsupportedOperationException to RegisterToWorkMail. - from version 1.40.21 * api-change:``bedrock-runtime``: [``botocore``] Fixed stop sequence limit for converse API. * api-change:``ec2``: [``botocore``] Release shows new route types such as filtered and advertisement. * api-change:``xray``: [``botocore``] AWS X-Ray Features: Support Sampling Rate Boost On Anomaly - from version 1.40.20 * api-change:``applicationcostprofiler``: [``botocore``] Remove incorrect endpoint tests * api-change:``apprunner``: [``botocore``] Doc only updates for APIs and and datatypes related to IPAddressType and Subnets for IPv6 dualstack support. * api-change:``autoscaling-plans``: [``botocore``] Remove incorrect endpoint tests * api-change:``cloud9``: [``botocore``] Remove incorrect endpoint tests * api-change:``cloudhsmv2``: [``botocore``] Remove incorrect endpoint tests * api-change:``cloudsearchdomain``: [``botocore``] Remove incorrect endpoint tests * api-change:``codedeploy``: [``botocore``] Remove incorrect endpoint tests * api-change:``codeguru-reviewer``: [``botocore``] Remove incorrect endpoint tests * api-change:``connect``: [``botocore``] AgentStatusDrillDown feature in GetCurrentMetricData API. Adding AGENT_STATUS as filter and grouping in GetCurrentMetricData API * api-change:``databrew``: [``botocore``] Remove incorrect endpoint tests * api-change:``dynamodb``: [``botocore``] Remove incorrect endpoint tests * api-change:``ec2``: [``botocore``] This release adds support for copying Amazon EBS snapshot and AMIs to and from Local Zones. * api-change:``ec2-instance-connect``: [``botocore``] Remove incorrect endpoint tests * api-change:``endpoint-rules``: [``botocore``] Update endpoint-rules client to latest version * api-change:``fis``: [``botocore``] Remove incorrect endpoint tests * api-change:``fms``: [``botocore``] Remove incorrect endpoint tests * api-change:``geo-maps``: [``botocore``] Remove incorrect endpoint tests * api-change:``glue``: [``botocore``] Adding support to fetch TargetDatabase field during GetDatabases with AttributesToGet * api-change:``healthlake``: [``botocore``] Add ValidationLevel parameter to StartFHIRImportJob API, allowing users to specify a FHIR validation level for their asynchronous import jobs. * api-change:``machinelearning``: [``botocore``] Remove incorrect endpoint tests * api-change:``mediastore-data``: [``botocore``] Remove incorrect endpoint tests * api-change:``mturk``: [``botocore``] Remove incorrect endpoint tests * api-change:``omics``: [``botocore``] Adds Amazon ECR pull through cache support to AWS HealthOmics, so you can more easily use container images from external sources. * api-change:``osis``: [``botocore``] Remove incorrect endpoint tests * api-change:``pinpoint-sms-voice``: [``botocore``] Remove incorrect endpoint tests * api-change:``rds``: [``botocore``] Added RDS HTTP Endpoint feature support flag to DescribeOrderableDBInstanceOptions API * api-change:``route53domains``: [``botocore``] Remove incorrect endpoint tests * api-change:``savingsplans``: [``botocore``] Remove incorrect endpoint tests * api-change:``scheduler``: [``botocore``] Remove incorrect endpoint tests * api-change:``ses``: [``botocore``] Remove incorrect endpoint tests * api-change:``ssm-sap``: [``botocore``] Added support for Configuration Checks on SAP HANA Applications. * api-change:``sso``: [``botocore``] Remove incorrect endpoint tests * api-change:``timestream-query``: [``botocore``] Remove incorrect endpoint tests * api-change:``waf``: [``botocore``] Remove incorrect endpoint tests * api-change:``workmailmessageflow``: [``botocore``] Remove incorrect endpoint tests * api-change:``xray``: [``botocore``] Remove incorrect endpoint tests - from version 1.40.19 * api-change:``amplifybackend``: [``botocore``] Remove incorrect endpoint tests * api-change:``application-insights``: [``botocore``] Remove incorrect endpoint tests * api-change:``batch``: [``botocore``] Added ECS_AL2023_NVIDIA as an option for Ec2Configuration.imageType. * api-change:``chime``: [``botocore``] Remove incorrect endpoint tests * api-change:``chime-sdk-identity``: [``botocore``] Remove incorrect endpoint tests * api-change:``chime-sdk-meetings``: [``botocore``] Remove incorrect endpoint tests * api-change:``chime-sdk-voice``: [``botocore``] Remove incorrect endpoint tests * api-change:``codeguruprofiler``: [``botocore``] Remove incorrect endpoint tests * api-change:``datapipeline``: [``botocore``] Remove incorrect endpoint tests * api-change:``discovery``: [``botocore``] Remove incorrect endpoint tests * api-change:``ds``: [``botocore``] Add APIs for CA AutoEnrollment support: DescribeCAEnrollmentPolicy, EnableCAEnrollmentPolicy and DisableCAEnrollmentPolicy. * api-change:``eks``: [``botocore``] Add support for on-demand refresh of EKS cluster insights * api-change:``elasticache``: [``botocore``] Remove incorrect endpoint tests * api-change:``endpoint-rules``: [``botocore``] Update endpoint-rules client to latest version * api-change:``evidently``: [``botocore``] Remove incorrect endpoint tests * api-change:``frauddetector``: [``botocore``] Remove incorrect endpoint tests * api-change:``inspector``: [``botocore``] Remove incorrect endpoint tests * api-change:``kinesisvideo``: [``botocore``] Remove incorrect endpoint tests * api-change:``kinesis-video-media``: [``botocore``] Remove incorrect endpoint tests * api-change:``lakeformation``: [``botocore``] Remove incorrect endpoint tests * api-change:``lex-models``: [``botocore``] Remove incorrect endpoint tests * api-change:``migrationhub-config``: [``botocore``] Remove incorrect endpoint tests * api-change:``neptune-graph``: [``botocore``] Add StartGraph and StopGraph operations to Neptune Analytics * api-change:``opsworks``: [``botocore``] The opsworks client has been removed following the deprecation of the service. * api-change:``opsworkscm``: [``botocore``] The opsworkscm client has been removed following the deprecation of the service. * api-change:``personalize``: [``botocore``] Remove incorrect endpoint tests * api-change:``pi``: [``botocore``] Remove incorrect endpoint tests * api-change:``qldb-session``: [``botocore``] Remove incorrect endpoint tests * api-change:``redshift``: [``botocore``] Remove incorrect endpoint tests * api-change:``robomaker``: [``botocore``] Remove incorrect endpoint tests * api-change:``sagemaker``: [``botocore``] This release adds support for AutoScaling on SageMaker HyperPod. * api-change:``schemas``: [``botocore``] Remove incorrect endpoint tests * api-change:``snow-device-management``: [``botocore``] Remove incorrect endpoint tests * api-change:``timestream-write``: [``botocore``] Remove incorrect endpoint tests * api-change:``voice-id``: [``botocore``] Remove incorrect endpoint tests * api-change:``workdocs``: [``botocore``] Remove incorrect endpoint tests * api-change:``workmail``: [``botocore``] Remove incorrect endpoint tests - from version 1.40.18 * api-change:``apprunner``: [``botocore``] Remove incorrect endpoint tests * api-change:``arc-zonal-shift``: [``botocore``] This release adds new API options to enable allowed windows and multiple alarms for practice runs. * api-change:``codecommit``: [``botocore``] Remove incorrect endpoint tests * api-change:``codestar-connections``: [``botocore``] Remove incorrect endpoint tests * api-change:``comprehendmedical``: [``botocore``] Remove incorrect endpoint tests * api-change:``connectparticipant``: [``botocore``] Amazon Connect Participant Service: Remove unused fields from WebRTCConnection * api-change:``dlm``: [``botocore``] Remove incorrect endpoint tests * api-change:``ec2``: [``botocore``] Add new APIs for viewing how your shared AMIs are used by other accounts, and identify resources in your account that are dependent on particular AMIs * api-change:``elastictranscoder``: [``botocore``] Remove incorrect endpoint tests * api-change:``endpoint-rules``: [``botocore``] Update endpoint-rules client to latest version * api-change:``finspace``: [``botocore``] Remove incorrect endpoint tests * api-change:``geo-routes``: [``botocore``] Added RouteFerryNotice PotentialViolatedVehicleRestrictionUsage value for CalculateRoutes. This value indicates when the Route is potentially forbidden for the given vehicle profile. * api-change:``glacier``: [``botocore``] Remove incorrect endpoint tests * api-change:``globalaccelerator``: [``botocore``] Remove incorrect endpoint tests * api-change:``greengrass``: [``botocore``] Remove incorrect endpoint tests * api-change:``identitystore``: [``botocore``] Remove incorrect endpoint tests * api-change:``imagebuilder``: [``botocore``] Remove incorrect endpoint tests * api-change:``iotsecuretunneling``: [``botocore``] Remove incorrect endpoint tests * api-change:``kafka``: [``botocore``] Remove incorrect endpoint tests * api-change:``lookoutvision``: [``botocore``] Remove incorrect endpoint tests * api-change:``mgh``: [``botocore``] Remove incorrect endpoint tests * api-change:``migration-hub-refactor-spaces``: [``botocore``] Remove incorrect endpoint tests * api-change:``mq``: [``botocore``] Remove incorrect endpoint tests * api-change:``personalize-events``: [``botocore``] Remove incorrect endpoint tests * api-change:``pinpoint``: [``botocore``] Remove incorrect endpoint tests * api-change:``ram``: [``botocore``] Remove incorrect endpoint tests * api-change:``rbin``: [``botocore``] Remove incorrect endpoint tests * api-change:``route53-recovery-cluster``: [``botocore``] Remove incorrect endpoint tests * api-change:``sagemaker-geospatial``: [``botocore``] Remove incorrect endpoint tests * api-change:``servicecatalog-appregistry``: [``botocore``] Remove incorrect endpoint tests * api-change:``signer``: [``botocore``] Remove incorrect endpoint tests * api-change:``waf-regional``: [``botocore``] Remove incorrect endpoint tests - from version 1.40.17 * api-change:``appflow``: [``botocore``] Remove incorrect endpoint tests * api-change:``b2bi``: [``botocore``] Updated APIs to support custom validation rules. * api-change:``chime-sdk-media-pipelines``: [``botocore``] Remove incorrect endpoint tests * api-change:``chime-sdk-messaging``: [``botocore``] Remove incorrect endpoint tests * api-change:``cloudsearch``: [``botocore``] Remove incorrect endpoint tests * api-change:``cloudtrail-data``: [``botocore``] Remove incorrect endpoint tests * api-change:``codeartifact``: [``botocore``] Remove incorrect endpoint tests * api-change:``codeguru-security``: [``botocore``] Documentation update to notify users of the discontinuation of Amazon CodeGuru Security. * api-change:``codestar-notifications``: [``botocore``] Remove incorrect endpoint tests * api-change:``cur``: [``botocore``] Remove incorrect endpoint tests * api-change:``datazone``: [``botocore``] Releasing the following features - Asset classification that lets users use restricted terms for classifying assets if they have the right permissions. Also adding a new enum value "Moving" to project status. * api-change:``dax``: [``botocore``] Remove incorrect endpoint tests * api-change:``devops-guru``: [``botocore``] Remove incorrect endpoint tests * api-change:``ec2``: [``botocore``] Added IPv6 support for AWS Client VPN. * api-change:``emr-containers``: [``botocore``] Remove incorrect endpoint tests * api-change:``endpoint-rules``: [``botocore``] Update endpoint-rules client to latest version * api-change:``finspace-data``: [``botocore``] Remove incorrect endpoint tests * api-change:``forecast``: [``botocore``] Remove incorrect endpoint tests * api-change:``iotfleethub``: [``botocore``] Remove incorrect endpoint tests * api-change:``kendra``: [``botocore``] Remove incorrect endpoint tests * api-change:``kinesisanalytics``: [``botocore``] Remove incorrect endpoint tests * api-change:``kinesis-video-archived-media``: [``botocore``] Remove incorrect endpoint tests * api-change:``lex-runtime``: [``botocore``] Remove incorrect endpoint tests * api-change:``lookoutequipment``: [``botocore``] Remove incorrect endpoint tests * api-change:``mediaconvert``: [``botocore``] This release adds support for input rendition selection for HLS input, adds new Share API to enable sharing jobs with AWS Support for support investigations, and adds INCLUDE_AS_TS to iFrameOnlyManifest setting for HLS outputs. * api-change:``mediapackage-vod``: [``botocore``] Remove incorrect endpoint tests * api-change:``mediastore``: [``botocore``] Remove incorrect endpoint tests * api-change:``personalize-runtime``: [``botocore``] Remove incorrect endpoint tests * api-change:``qbusiness``: [``botocore``] The Amazon Q Business GetDocumentContent operation now supports retrieval of the extracted text content in JSON format. * api-change:``resourcegroupstaggingapi``: [``botocore``] Remove incorrect endpoint tests * api-change:``sagemaker-edge``: [``botocore``] Remove incorrect endpoint tests * api-change:``sagemaker-featurestore-runtime``: [``botocore``] Remove incorrect endpoint tests * api-change:``sagemaker-runtime``: [``botocore``] Remove incorrect endpoint tests * api-change:``serverlessrepo``: [``botocore``] Remove incorrect endpoint tests * api-change:``shield``: [``botocore``] Remove incorrect endpoint tests * api-change:``snowball``: [``botocore``] Remove incorrect endpoint tests * api-change:``sqs``: [``botocore``] Documentation update for Amazon SQS Supports Large Payload Message feature * api-change:``support``: [``botocore``] Remove incorrect endpoint tests * api-change:``support-app``: [``botocore``] Remove incorrect endpoint tests * api-change:``timestream-influxdb``: [``botocore``] Add MAINTENANCE status for DbInstance and DbCluster * api-change:``translate``: [``botocore``] Remove incorrect endpoint tests * api-change:``wellarchitected``: [``botocore``] Remove incorrect endpoint tests - from version 1.40.16 * api-change:``clouddirectory``: [``botocore``] Remove incorrect endpoint tests * api-change:``cognito-sync``: [``botocore``] Remove incorrect endpoint tests * api-change:``docdb``: [``botocore``] Remove incorrect endpoint tests * api-change:``elb``: [``botocore``] Remove incorrect endpoint tests * api-change:``endpoint-rules``: [``botocore``] Update endpoint-rules client to latest version * api-change:``healthlake``: [``botocore``] Remove incorrect endpoint tests * api-change:``iotanalytics``: [``botocore``] Remove incorrect endpoint tests * api-change:``macie2``: [``botocore``] Remove incorrect endpoint tests * api-change:``marketplacecommerceanalytics``: [``botocore``] Remove incorrect endpoint tests * api-change:``medialive``: [``botocore``] AWS Elemental MediaLive now has a field called "SubtitleRows" for controlling subtitle row count for DVB-Sub and Burn-In captions outputs * api-change:``memorydb``: [``botocore``] Remove incorrect endpoint tests * api-change:``proton``: [``botocore``] Remove incorrect endpoint tests * api-change:``qconnect``: [``botocore``] Releasing model ID support for UpdateAIPrompt * api-change:``qldb``: [``botocore``] Remove incorrect endpoint tests * api-change:``rds``: [``botocore``] Updates Amazon RDS documentation for Db2 read-only replicas. * api-change:``route53-recovery-readiness``: [``botocore``] Remove incorrect endpoint tests * api-change:``sagemaker``: [``botocore``] Launch SageMaker Notebook Instances support for AL2023 along with P6-B200 instance type and Rootless Docker support for SageMaker Studio. * api-change:``sagemaker-a2i-runtime``: [``botocore``] Remove incorrect endpoint tests * api-change:``simspaceweaver``: [``botocore``] Remove incorrect endpoint tests * api-change:``synthetics``: [``botocore``] Added multi browser support for synthetics canaries, Increased ephemeral storage limit from 5GB to 10GB * api-change:``wafv2``: [``botocore``] test and verified, safe to release - from version 1.40.15 * api-change:``apigatewaymanagementapi``: [``botocore``] Remove incorrect endpoint tests * api-change:``appfabric``: [``botocore``] Remove incorrect endpoint tests * api-change:``backup-gateway``: [``botocore``] Remove incorrect endpoint tests * api-change:``cloudhsm``: [``botocore``] Remove incorrect endpoint tests * api-change:``cognito-identity``: [``botocore``] Remove incorrect endpoint tests * api-change:``comprehend``: [``botocore``] Remove incorrect endpoint tests * api-change:``ebs``: [``botocore``] Remove incorrect endpoint tests * api-change:``ecr-public``: [``botocore``] Remove incorrect endpoint tests * api-change:``ecs``: [``botocore``] This is a documentation only release that adds additional information for the update-service request parameters. * api-change:``elasticbeanstalk``: [``botocore``] Remove incorrect endpoint tests * api-change:``endpoint-rules``: [``botocore``] Update endpoint-rules client to latest version * api-change:``es``: [``botocore``] Remove incorrect endpoint tests * api-change:``forecastquery``: [``botocore``] Remove incorrect endpoint tests * api-change:``gameliftstreams``: [``botocore``] The default application in a stream group can now be changed at any time using UpdateStreamGroup to update the DefaultApplicationIdentifier. * api-change:``glue``: [``botocore``] Added support for preprocessing queries in Data Quality operations through new DataQualityGlueTable structure. * api-change:``greengrassv2``: [``botocore``] Remove incorrect endpoint tests * api-change:``guardduty``: [``botocore``] Remove Pattern trait from email field * api-change:``iotdeviceadvisor``: [``botocore``] Remove incorrect endpoint tests * api-change:``iotevents``: [``botocore``] Remove incorrect endpoint tests * api-change:``iotevents-data``: [``botocore``] Remove incorrect endpoint tests * api-change:``iotthingsgraph``: [``botocore``] Remove incorrect endpoint tests * api-change:``kinesis-video-signaling``: [``botocore``] Remove incorrect endpoint tests * api-change:``lexv2-runtime``: [``botocore``] Remove incorrect endpoint tests * api-change:``lookoutmetrics``: [``botocore``] Remove incorrect endpoint tests * api-change:``managedblockchain``: [``botocore``] Remove incorrect endpoint tests * api-change:``mediapackage``: [``botocore``] Remove incorrect endpoint tests * api-change:``panorama``: [``botocore``] Remove incorrect endpoint tests * api-change:``pinpoint-email``: [``botocore``] Remove incorrect endpoint tests * api-change:``resource-groups``: [``botocore``] Remove incorrect endpoint tests * api-change:``s3outposts``: [``botocore``] Remove incorrect endpoint tests * api-change:``ssm-contacts``: [``botocore``] Doc-only updates for Incident Manager Contacts August 2025 - from version 1.40.14 * api-change:``bedrock-runtime``: [``botocore``] Launch CountTokens API to allow token counting * api-change:``billing``: [``botocore``] Clarify IPv4 and IPv6 endpoints * api-change:``cognito-idp``: [``botocore``] This release adds support for the new Terms APIs which allow displaying Terms of Use and Privacy Policy on the Managed Login user-registration page. * api-change:``datazone``: [``botocore``] This release supports policy grant identifier for cloud formation integration * api-change:``detective``: [``botocore``] Remove incorrect endpoint tests * api-change:``dynamodb``: [``botocore``] Remove incorrect endpoint tests * api-change:``eks``: [``botocore``] EKS Add-ons Custom Namespace Support * api-change:``endpoint-rules``: [``botocore``] Update endpoint-rules client to latest version * api-change:``kinesisanalyticsv2``: [``botocore``] Adds Key Management Service (KMS) support allowing customer-managed key (CMK) encryption for Flink application data. * api-change:``pinpoint-sms-voice-v2``: [``botocore``] This change added InternationalSendingEnbaled as part of describe/Update/Request phone number API response, and as part of update/Request phone number API request * api-change:``route53-recovery-control-config``: [``botocore``] Remove incorrect endpoint tests * api-change:``sagemaker``: [``botocore``] This release adds 1/ Launch ml.p5.4xlarge instance in Processing jobs, Training jobs and Training Plan 2/ Makes S3Uri to be required for S3FileSystem and S3FileSystemConfig. - from version 1.40.13 * api-change:``cleanrooms``: [``botocore``] Support error message configuration for analysis templates * api-change:``ec2``: [``botocore``] Add support for "warning" volume status. * api-change:``polly``: [``botocore``] Added support for new output format - Opus. - from version 1.40.12 * api-change:``batch``: [``botocore``] Added default_x86_64 and default_arm64 as values to the instanceTypes field. * api-change:``bcm-dashboards``: [``botocore``] Billing and Cost Management Dashboards enables users to create dashboards that combine multiple visualizations of cost and usage data. Users can create, manage, and share dashboards. Tags are also available for dashboards. * api-change:``connect``: [``botocore``] Amazon Connect Service Feature: Add support to enable multi-user in-app, web, and video calling. * api-change:``connectparticipant``: [``botocore``] Amazon Connect Service Feature: Add support to enable multi-user in-app, web, and video calling. * api-change:``endpoint-rules``: [``botocore``] Update endpoint-rules client to latest version * api-change:``s3control``: [``botocore``] Adds support for Compute checksum functionality in Amazon S3 Batch Operations. You can now calculate checksums for a list of objects using supported algorithms in Amazon S3, without requiring a restore or download * api-change:``sagemaker``: [``botocore``] Customer managed keys now available for volume encryption of SageMaker HyperPod clusters. * enhancement:AWSCRT: [``botocore``] Update awscrt version to 0.27.6 - from version 1.40.11 * api-change:``amp``: [``botocore``] Add Resource-based Policy APIs for Amazon Prometheus * api-change:``bedrock-agent``: [``botocore``] This release adds support for saving Bedrock Flows while node configuration is still in progress, even if the Flow is not yet able to be invoked * api-change:``glue``: [``botocore``] AWS Glue Zero ETL now supports On-demand snapshot load - from version 1.40.10 * api-change:``arc-region-switch``: [``botocore``] Endpoint rule test and documentation update. * api-change:``bcm-recommended-actions``: [``botocore``] Initial SDK release for AWS Billing and Cost Management Recommended Actions. * api-change:``directconnect``: [``botocore``] Added pagination support for DescribeHostedConnections, DescribeVirtualInterfaces, DescribeConnections, DescribeInterconnects, DescribeLags. Added asnLong support for BGP peer operations which supports a large range. * api-change:``dynamodb``: [``botocore``] This release 1/ Adds support for throttled keys mode for CloudWatch Contributor Insights, 2/ Adds throttling reasons to exceptions across dataplane APIs. 3/ Explicitly models ThrottlingException as a class in statically typed languages. Refer to the launch day blog post for more details. * api-change:``ec2``: [``botocore``] This release adds ModifyInstanceConnectEndpoint API to update configurations on existing EC2 Instance Connect Endpoints and improves IPv6 support through dualstack DNS names for EC2 Instance Connect Endpoints. * api-change:``endpoint-rules``: [``botocore``] Update endpoint-rules client to latest version * api-change:``fsx``: [``botocore``] Amazon FSx for NetApp ONTAP 2nd generation file systems now support decreasing SSD storage capacity. * api-change:``glue``: [``botocore``] AWS Glue now supports Trusted Identity Propagation. * api-change:``guardduty``: [``botocore``] Added support for entity lists. * api-change:``medialive``: [``botocore``] CMAF Ingest output groups in MediaLive can now accept one additional destination url for single pipeline channels and up to two additional destination urls for standard channels. * api-change:``pcs``: [``botocore``] Updated the regex pattern and description of iamInstanceProfileArn in the CreateComputeNodeGroup and UpdateComputeNodeGroup API actions. Name and path requirements apply to the ARN of the IAM role associated with the instance profile and not the ARN of the instance profile. * api-change:``qapps``: [``botocore``] Documentation update for Amazon Q Apps API Reference * api-change:``servicediscovery``: [``botocore``] Added support for cross account through Id parameter overloading with ARN and allow owner account for some APIs instead of ARN * api-change:``workspaces``: [``botocore``] New APIs introduced to import WorkSpaces BYOL image using a new process that leveraged EC2 Image Builder. WorkSpaces tests and fixes your image's compatibility issues and supports customized VM images. - from version 1.40.9 * api-change:``braket``: [``botocore``] Add support for Braket program sets. * api-change:``datazone``: [``botocore``] Adds support for account pools and project profile account decoupling * api-change:``fsx``: [``botocore``] Add Dual-Stack support for Amazon FSx for OpenZFS file systems * api-change:``partnercentral-selling``: [``botocore``] Add Tagging Support for Opportunity resources * api-change:``sagemaker``: [``botocore``] This release introduces compute quota for GPU, Trainium accelerators, vCPU, and vCPU memory utilization across teams in HyperPod clusters * api-change:``security-ir``: [``botocore``] Added support for Organizational Unit-level Membership configuration and the ability to resume a cancelled membership. - from version 1.40.8 * api-change:``backupsearch``: [``botocore``] Using recommended smithy trait to generate regional endpoints for Backup Search * api-change:``codebuild``: [``botocore``] AWS CodeBuild now supports PullRequestBuildPolicy in webhook object. * api-change:``ec2``: [``botocore``] Release to allow route table association with a PublicIpv4Pool. * api-change:``organizations``: [``botocore``] This release introduces 2 new APIs in Organizations: 1. ListAccountsWithInvalidEffectivePolicy 2. ListEffectivePolicyValidationErrors * api-change:``sagemaker``: [``botocore``] IAM Identity Center trusted identity propagation is now supported in SageMaker Studio. * api-change:``transcribe``: [``botocore``] AWS HealthScribe now supports specifying preferred patient pronouns through the MedicalScribeContext parameter for use in the generated clinical notes. - from version 1.40.7 * api-change:``bedrock``: [``botocore``] This release includes model updates and enhanced SDK documentation for union fields in automated reasoning policy components. Added docs cover policy definitions, mutations (add/update for rules/types/variables), build assets, workflow sources, test results, and tag exception handling. * api-change:``cognito-idp``: [``botocore``] Remove SigV4 auth requirement for GetTokensFromRefreshToken * api-change:``connect``: [``botocore``] Updating SearchUserHierarchyGroups API * api-change:``deadline``: [``botocore``] Adds support for Wait and Save feature in service-managed fleets * api-change:``ec2``: [``botocore``] This release adds AvailabilityZoneId support for CreateVolume, DescribeVolume, LaunchTemplates, RunInstances, DescribeInstances, CreateDefaultSubnet, SpotInstances, and CreateDefaultSubnet APIs. * api-change:``evs``: [``botocore``] Update for general availability of Amazon Elastic VMware Service (EVS). * api-change:``lambda``: [``botocore``] Doc-only update for Lambda that updates the maximum payload size for response streaming invocations to 200 MB. * api-change:``quicksight``: [``botocore``] Add RowAxisDisplayOptions and ColumnAxisDisplayOptions to HeatMapConfiguration, add Actions to PluginVisual, increase limit for CalculatedFields list * api-change:``sso-admin``: [``botocore``] Added support for managing user background session for applications - from version 1.40.6 * api-change:``connect``: [``botocore``] This release adds a new API GetContactMetrics for Amazon Connect. * api-change:``inspector2``: [``botocore``] Add CVSSV4 to Vulnerability Search API and update enable/disable account id list length to 5 * api-change:``iot-data``: [``botocore``] Adding DeleteConnection API to IoT Data Plane * api-change:``sagemaker``: [``botocore``] Adds support for GB200 UltraServers in Amazon SageMaker training jobs, training plans, and HyperPod clusters * api-change:``transcribe``: [``botocore``] Update documentation to use key ARN only in OutputEncryptionKMSKeyId request parameter * bugfix:stub: [``botocore``] Fixes a bug which causes the stubber to begin failing for DynamoDB when SSO or AssumeRole credentials fail to load - from version 1.40.5 * api-change:``batch``: [``botocore``] This feature allows customers to use AWS Batch with Linux with ARM64 CPU Architecture with Fargate Spot compute support. * api-change:``cloudfront``: [``botocore``] Added new viewer security policy, TLSv1.3_2025, for CloudFront. * api-change:``codebuild``: [``botocore``] AWS CodeBuild now supports comment-based pull request control. * api-change:``gameliftstreams``: [``botocore``] Adds Proton 9.0-2 to the list of runtime environment options available when creating an Amazon GameLift Streams application * api-change:``glue``: [``botocore``] AWS Glue Data Catalog now supports Iceberg Optimization settings at the Catalog level, and supports new options to control the optimization job run rate. * api-change:``guardduty``: [``botocore``] Added support for VPC owner account ID associated with DNS request in the GuardDuty finding. - from version 1.40.4 * api-change:``appstream``: [``botocore``] Added support for G6 instances * api-change:``budgets``: [``botocore``] Adds support for billing views. Billing views let you control access to cost and usage data through an AWS resource, streamlining the process of sharing cost and usage data across account boundaries. With this release, you can now create and view budgets based on billing views. * api-change:``ec2``: [``botocore``] Mark Elastic Inference Accelerators and Elastic Graphics Processor parameters as deprecated on the RunInstances and LaunchTemplate APIs. * api-change:``opensearchserverless``: [``botocore``] Features: add Index APIs in OpenSearchServerless to support managed semantic enrichment * api-change:``qbusiness``: [``botocore``] Amazon Q Business now supports the GetDocumentContent() API that enables customers to securely access the source documents through clickable citation links at query time - from version 1.40.3 * api-change:``bedrock``: [``botocore``] This release introduces Automated Reasoning checks for Amazon Bedrock Guardrails. The feature adds new APIs for policy building, refinement, version management, and testing. Guardrail APIs now support Automated Reasoning policy configuration and validation output. * api-change:``bedrock-runtime``: [``botocore``] This release adds support for Automated Reasoning checks output models for the Amazon Bedrock Guardrails ApplyGuardrail API. * api-change:``eks``: [``botocore``] Add support for deletion protection on EKS clusters * api-change:``rds``: [``botocore``] Adds a new Aurora Serverless v2 attribute to the DBCluster resource to expose the platform version. Also updates the attribute to be part of both the engine version and platform version descriptions. * api-change:``sagemaker``: [``botocore``] Add support for SageMaker Hyperpod continuous scaling and custom AMI; Introduce new APIs: ListClusterEvents, DescribeClusterEvent, BatchAddClusterNodes - from version 1.40.2 * api-change:``bedrock-agentcore``: [``botocore``] Remove superfluous field from API * api-change:``codeconnections``: [``botocore``] New integration with Azure DevOps provider type. * api-change:``evs``: [``botocore``] TagResource API now throws ServiceQuotaExceededException when the number of tags on the Amazon EVS resource exceeds the maximum allowed. TooManyTagsException is deprecated. * api-change:``iotsitewise``: [``botocore``] Support Interface for IoT SiteWise Asset Modeling * api-change:``sagemaker``: [``botocore``] This release adds the ability for customers to attach and detach their EBS volumes to EKS-orchestrated HyperPod cluster nodes. - from version 1.40.1 * api-change:``acm-pca``: [``botocore``] Doc-only update to add more information to GetCertificate action. * api-change:``aiops``: [``botocore``] This release includes fix for InvestigationGroup timestamp conversion issue. * api-change:``arc-region-switch``: [``botocore``] This is the initial SDK release for Region switch * api-change:``auditmanager``: [``botocore``] Added a note to Framework APIs (CreateAssessmentFramework, GetAssessmentFramework, UpdateAssessmentFramework) clarifying that the Controls object returns a partial response when called through Framework APIs. Added documentation that the Framework's controlSources parameter is no longer supported. * api-change:``lightsail``: [``botocore``] This release adds support for the Asia Pacific (Jakarta) (ap-southeast-3) Region. * api-change:``observabilityadmin``: [``botocore``] CloudWatch Observability Admin adds the ability to enable telemetry on AWS resources such as Amazon VPCs (Flow Logs) in customers AWS Accounts and Organizations. The release introduces new APIs to manage telemetry rules, which define telemetry settings to be applied on AWS resources. * api-change:``pcs``: [``botocore``] Add support for IPv6 Networking for Clusters. * api-change:``securityhub``: [``botocore``] Release new resource detail type CodeRepository * api-change:``sns``: [``botocore``] Amazon SNS support for Amazon SQS fair queues - from version 1.40.0 * api-change:``customer-profiles``: [``botocore``] The release updates standard profile with 2 new fields that supports account-level engagement. Updated APIs include CreateProfile, UpdateProfile, MergeProfiles, SearchProfiles, BatchGetProfile, GetSegmentMembership, CreateSegmentDefinition, CreateSegmentEstimate. * api-change:``ec2``: [``botocore``] Added support for the force option for the EC2 instance terminate command. This feature enables customers to recover resources associated with an instance stuck in the shutting-down state as a result of rare issues caused by a frozen operating system or an underlying hardware problem. * api-change:``elbv2``: [``botocore``] This release enables secondary IP addresses for Network Load Balancers. * api-change:``entityresolution``: [``botocore``] Add support for creating advanced rule-based matching workflows in AWS Entity Resolution. * api-change:``glue``: [``botocore``] Added support for Route node, S3 Iceberg sources/targets, catalog Iceberg sources, DynamoDB ELT connector, AutoDataQuality evaluation, enhanced PII detection with redaction, Kinesis fan-out support, and new R-series worker types. * api-change:``inspector2``: [``botocore``] Extend usage to include agentless hours and add CODE_REPOSITORY to aggregation resource type * api-change:``iot``: [``botocore``] This release allows AWS IoT Core users to use their own AWS KMS keys for data protection * api-change:``opensearch``: [``botocore``] Granular access control support for NEO-SAML with IAMFederation for AOS data source * api-change:``quicksight``: [``botocore``] Added Impala connector support * api-change:``s3control``: [``botocore``] Add Tags field to CreateAccessPoint * api-change:``sesv2``: [``botocore``] This release introduces support for Multi-tenant management * api-change:``workspaces-web``: [``botocore``] Added ability to log session activity on a portal to an S3 bucket. * feature:``sts``: [``botocore``] Updated the default sts service endpoint from ``legacy`` to ``regional``. This behavior can be overridden using the ``sts_regional_endpoints`` setting in the shared AWS config file or the ``AWS_STS_REGIONAL_ENDPOINTS`` environment variable. - from version 1.39.17 * api-change:``cloudfront``: [``botocore``] This release adds new origin timeout options: 1) ResponseCompletionTimeout and 2) OriginReadTimeout (for S3 origins) * api-change:``docdb``: [``botocore``] Add support for setting Serverless Scaling Configuration on clusters. * api-change:``ds``: [``botocore``] This release adds support for AWS Managed Microsoft AD Hybrid Edition, introducing new operations: StartADAssessment, DescribeADAssessment, ListADAssessments, DeleteADAssessment, CreateHybridAD, UpdateHybridAD, and DescribeHybridADUpdate; and updated existing operation: DescribeDirectories. * api-change:``ec2``: [``botocore``] Release to show the next hop IP address for routes propagated by VPC Route Server into VPC route tables. * api-change:``iotwireless``: [``botocore``] Added TxPowerIndexMin, TxPowerIndexMax, NbTransMin and NbTransMax params to ServiceProfile. - from version 1.39.16 * api-change:``batch``: [``botocore``] AWS Batch for SageMaker Training jobs feature support. Includes new APIs for service job submission (e.g., SubmitServiceJob) and managing service environments (e.g., CreateServiceEnvironment) that enable queueing SageMaker Training jobs. * api-change:``cleanrooms``: [``botocore``] This feature provides the ability to update the table reference and allowed columns on an existing configured table. * api-change:``deadline``: [``botocore``] Adds support for tag management on monitors. * api-change:``location``: [``botocore``] This release 1) adds support for multi-polygon geofences with disconnected territories, and 2) enables polygon exclusion zones within geofences for more accurate representation of real-world boundaries. * api-change:``opensearchserverless``: [``botocore``] This is to support Granular access control support for SAML with IAMFedraton in AOSS - from version 1.39.15 * api-change:``directconnect``: [``botocore``] Enable MACSec support and features on Interconnects. * api-change:``iotsitewise``: [``botocore``] Add support for native anomaly detection in IoT SiteWise using new Computation Model APIs * api-change:``osis``: [``botocore``] Add Pipeline Role Arn as an optional parameter to the create / update pipeline APIs as an alternative to passing in the pipeline configuration body * enhancement:``sso``: [``botocore``] Updates legacy token auth flow to check if cached legacy tokens are expired according to the local clock. If expired, it will raise an ``UnauthorizedSSOTokenError`` instead of sending an expired token to Identity Center's ``GetRoleCredentials`` API. - from version 1.39.14 * api-change:``appintegrations``: [``botocore``] Amazon AppIntegrations introduces new configuration capabilities to enable customers to manage iframe permissions, control application refresh behavior (per contact or per browser/cross-contact), and run background applications (service). * api-change:``budgets``: [``botocore``] Adds IPv6 and PrivateLink support for AWS Budgets in IAD. * api-change:``config``: [``botocore``] Documentation improvements have been made to the EvaluationModel and DescribeConfigurationRecorders APIs. * api-change:``ec2``: [``botocore``] Transit Gateway native integration with AWS Network Firewall. Adding new enum value for the new Transit Gateway Attachment type. * api-change:``kms``: [``botocore``] Doc only update: fixed grammatical errors. * api-change:``mediapackagev2``: [``botocore``] This release adds support for specifying a preferred input for channels using CMAF ingest. * api-change:``socialmessaging``: [``botocore``] This release introduces new WhatsApp template management APIs that enable customers to programmatically create and submit templates for approval, monitor approval status, and manage the complete template lifecycle * api-change:``sqs``: [``botocore``] Documentation updates for Amazon SQS fair queues feature. - from version 1.39.13 * api-change:``datazone``: [``botocore``] This release adds support for 1) highlighting relevant text in returned results for Search and SearchListings APIs and 2) returning aggregated counts of values for specified attributes for SearchListings API. * api-change:``omics``: [``botocore``] Add Git integration and README support for HealthOmics workflows - from version 1.39.12 * api-change:``ec2``: [``botocore``] Added support for skip-os-shutdown option for the EC2 instance stop and terminate operations. This feature enables customers to bypass the graceful OS shutdown, supporting faster state transitions when instance data preservation isn't critical. * api-change:``glue``: [``botocore``] AWS Glue now supports dynamic session policies for job executions. This feature allows you to specify custom, fine-grained permissions for each job run without creating multiple IAM roles. * api-change:``workspaces-thin-client``: [``botocore``] Added the lastUserId parameter to the ListDevices and GetDevice API. * bugfix:``bedrock``: [``botocore``] Fixes an issue where bearer authentication was incorrectly applied to all services with the ``bedrock`` signing name. Bearer auth is now only applied if the service model also includes the ``smithy.api#httpBearerAuth`` trait. - from version 1.39.11 * api-change:``ecr``: [``botocore``] Add support for Image Tag Mutability Exception feature, allowing repositories to define wildcard-based patterns that override the default image tag mutability settings. * api-change:``emr``: [``botocore``] This release adds new parameter 'ExtendedSupport' in AWS EMR RunJobFlow, ModifyCluster and DescribeCluster API. * api-change:``lambda``: [``botocore``] This release migrated the model to Smithy keeping all features unchanged. * api-change:``neptunedata``: [``botocore``] This release updates the supported regions for Neptune API to include current AWS regions. - from version 1.39.10 * api-change:``cloudfront``: [``botocore``] Add dualstack endpoint support * api-change:``deadline``: [``botocore``] Add support for VPC resource endpoints in Service Managed Fleets * api-change:``ec2``: [``botocore``] This release adds support for C8gn, F2 and P6e-GB200 Instance types * api-change:``sagemaker``: [``botocore``] This release adds 1/ Support for S3FileSystem in CustomFileSystems 2/ The ability for a customer to select their preferred IpAddressType for use with private Workforces 3/ Support for p4de instance type in SageMaker Training Plans * api-change:``timestream-influxdb``: [``botocore``] Timestream for InfluxDB adds support for db.influx.24xlarge instance type. This enhancement enables higher compute capacity for demanding workloads through CreateDbInstance, CreateDbCluster, UpdateDbInstance, and UpdateDbCluster APIs. - from version 1.39.9 * api-change:``auditmanager``: [``botocore``] Updated error handling for RegisterOrganizationAdminAccount API to properly translate TooManyExceptions to HTTP 429 status code. This enhancement improves error handling consistency and provides clearer feedback when request limits are exceeded. * api-change:``logs``: [``botocore``] CloudWatchLogs launches GetLogObject API with streaming support for efficient log data retrieval. Logs added support for new AccountPolicy type METRIC_EXTRACTION_POLICY. For more information, see CloudWatch Logs API documentation * api-change:``mediaconvert``: [``botocore``] This release adds support for TAMS server integration with MediaConvert inputs. * api-change:``outposts``: [``botocore``] Add AWS Outposts API to surface customer billing information * api-change:``sesv2``: [``botocore``] Added IP Visibility support for managed dedicated pools. Enhanced GetDedicatedIp and GetDedicatedIps APIs to return managed IP addresses. * api-change:``ssm``: [``botocore``] July 2025 doc-only updates for Systems Manager. * enhancement:Python: Added provisional support for the upcoming Python 3.14 release * enhancement:Python: [``botocore``] Added provisional support for the upcoming Python 3.14 release - from version 1.39.8 * api-change:``cleanroomsml``: [``botocore``] This release introduces Parquet result format support for ML Input Channel models in AWS Clean Rooms ML. * api-change:``cloudfront``: [``botocore``] Doc only update for CloudFront that fixes some customer-reported issues * api-change:``ec2``: [``botocore``] AWS Free Tier Version2 Support * api-change:``keyspacesstreams``: [``botocore``] Doc only update for the Amazon Keyspaces Streams API. * api-change:``mailmanager``: [``botocore``] Allow underscores in the local part of the input of the "Email recipients rewrite" action in rule sets. * api-change:``mediaconvert``: [``botocore``] This release expands the range of supported audio outputs to include xHE, 192khz FLAC and the deprecation of dual mono for AC3. * api-change:``stepfunctions``: [``botocore``] Align input with style guidelines. * api-change:``synthetics``: [``botocore``] This feature allows AWS Synthetics customers to provide code dependencies using lambda layer while creating a canary - from version 1.39.7 * api-change:``bedrock``: [``botocore``] This release adds support for on-demand custom model inference through CustomModelDeployment APIs for Amazon Bedrock. * api-change:``bedrock-agentcore``: [``botocore``] Initial release of Amazon Bedrock AgentCore SDK including Runtime, Built-In Tools, Memory, Gateway and Identity. * api-change:``bedrock-agentcore-control``: [``botocore``] Initial release of Amazon Bedrock AgentCore SDK including Runtime, Built-In Tools, Memory, Gateway and Identity. * api-change:``bedrock-runtime``: [``botocore``] document update to support on demand custom model. * api-change:``datasync``: [``botocore``] AWS DataSync now supports IPv6 address inputs and outputs in create, update, and describe operations for NFS, SMB, and Object Storage locations * api-change:``glue``: [``botocore``] AWS Glue now supports schema, partition and sort management of Apache Iceberg tables using Glue SDK * api-change:``guardduty``: [``botocore``] Add expectedBucketOwner parameter to ThreatIntel and IPSet APIs. * api-change:``iotwireless``: [``botocore``] FuotaTaskId is not a valid IdentifierType for EventConfiguration and is being removed from possible IdentifierType values. * api-change:``logs``: [``botocore``] CloudWatch Logs updates: Added X-Ray tracing for Amazon Bedrock Agent resources. Logs introduced Log Group level resource policies (managed through Put/Delete/Describe Resource Policy APIs). For more information, see CloudWatch Logs API documentation. * api-change:``mediapackagev2``: [``botocore``] This release adds support for CDN Authentication using Static Headers in MediaPackage v2. * api-change:``networkflowmonitor``: [``botocore``] Introducing 2 new scope status types - DEACTIVATING and DEACTIVATED. * api-change:``payment-cryptography-data``: [``botocore``] Expand length of message data field for Mac generation and validation to 8192 characters. * api-change:``stepfunctions``: [``botocore``] Doc-only update to introduction, and edits to clarify input parameter and the set of control characters. - from version 1.39.6 * api-change:``ecs``: [``botocore``] This release removes hookDetails for the Amazon ECS native blue/green deployments. - from version 1.39.5 * api-change:``bedrock-agent``: [``botocore``] Add support for S3 Vectors as a vector store. * api-change:``datazone``: [``botocore``] Removing restriction of environment profile identifier as required field, S3 feature release * api-change:``dynamodbstreams``: [``botocore``] Added support for optional shard filter parameter in DescribeStream api that allows customers to fetch child shards of a read_only parent shard. * api-change:``ec2``: [``botocore``] This release adds support for volume initialization status, which enables you to monitor when the initialization process for an EBS volume is completed. This release also adds IPv6 support to EC2 Instance Connect Endpoints, allowing you to connect to your EC2 Instance via a private IPv6 address. * api-change:``ecs``: [``botocore``] Amazon ECS supports native blue/green deployments, allowing you to validate new service revisions before directing production traffic to them. * api-change:``events``: [``botocore``] Add customer-facing logging for the EventBridge Event Bus, enabling customers to better observe their events and extract insights about their EventBridge usage. * api-change:``opensearch``: [``botocore``] AWS Opensearch adds support for enabling s3 vector engine options. After enabling this option, customers will be able to create indices with s3 vector engine. * api-change:``pricing``: [``botocore``] This release adds support for new filter types in GetProducts API, including EQUALS, CONTAINS, ANY_OF, and NONE_OF. * api-change:``quicksight``: [``botocore``] Introduced custom instructions for topics. * api-change:``repostspace``: [``botocore``] This release introduces Channels functionality with CreateChannel, GetChannel, ListChannels, and UpdateChannel operations. Channels provide dedicated collaboration spaces where teams can organize discussions and knowledge by projects, business units, or areas of responsibility. * api-change:``s3``: [``botocore``] Amazon S3 Metadata live inventory tables provide a queryable inventory of all the objects in your general purpose bucket so that you can determine the latest state of your data. To help minimize your storage costs, use journal table record expiration to set a retention period for your records. * api-change:``s3tables``: [``botocore``] Adds table bucket type to ListTableBucket and GetTableBucket API operations * api-change:``s3vectors``: [``botocore``] Amazon S3 Vectors provides cost-effective, elastic, and durable vector storage for queries based on semantic meaning and similarity. * api-change:``sagemaker``: [``botocore``] This release adds support for a new Restricted instance group type to enable a specialized environment for running Nova customization jobs on SageMaker HyperPod clusters. This release also adds support for SageMaker pipeline versioning. - from version 1.39.4 * api-change:``ec2``: [``botocore``] Adds support to Capacity Blocks for ML for purchasing EC2 P6e-GB200 UltraServers. Customers can now purchase u-p6e-gb200x72 and u-p6e-gb200x36 UltraServers. Adds new DescribeCapacityBlocks andDescribeCapacityBlockStatus APIs. Adds support for CapacityBlockId to DescribeInstanceTopology. * api-change:``freetier``: [``botocore``] This release introduces four new APIs: GetAccountPlanState and UpgradeAccountPlan for AWS account plan management; ListAccountActivities and GetAccountActivity that provide activity tracking capabilities. * api-change:``opsworkscm``: [``botocore``] Removing content that refers to an S3 bucket that is no longer in use. - from version 1.39.3 * api-change:``customer-profiles``: [``botocore``] This release introduces capability of create Segments via importing a CSV file directly. This consumes the CSV file and creates/updates corresponding profiles for the particular domain. * api-change:``deadline``: [``botocore``] Added fields for output manifest reporting and task chunking parameters * api-change:``ec2``: [``botocore``] This release adds GroupOwnerId as a response member to the DescribeSecurityGroupVpcAssociations API and also adds waiters for SecurityGroupVpcAssociations (SecurityGroupVpcAssociationAssociated and SecurityGroupVpcAssociationDisassociated). * api-change:``mediapackagev2``: [``botocore``] This release adds support for Microsoft Smooth Streaming (MSS) and allows users to exclude DRM segment Metadata in MediaPackage v2 Origin Endpoints * api-change:``route53``: [``botocore``] Amazon Route 53 now supports the iso-e regions for private DNS Amazon VPCs and cloudwatch healthchecks. * api-change:``sagemaker``: [``botocore``] Changes include new StartSession API for SageMaker Studio spaces and CreateHubContentPresignedUrls API for SageMaker JumpStart. - from version 1.39.2 * api-change:``connectcases``: [``botocore``] This release adds DeleteCase and DeleteRelatedItem APIs, which enable deleting cases and comments, undoing contact association, and removing service level agreements (SLAs) from cases. Contact center admins can use these APIs to delete cases when requested by customers and correct agent errors. * api-change:``ec2``: [``botocore``] AWS Site-to-Site VPN now supports IPv6 addresses on outer tunnel IPs, making it easier for customers to build or transition to IPv6-only networks. * api-change:``s3``: [``botocore``] Added support for directory bucket creation with tags and bucket ARN retrieval in CreateBucket, ListDirectoryBuckets, and HeadBucket operations * api-change:``s3control``: [``botocore``] Added TagResource, UntagResource, and ListTagsForResource support for directory bucket - Update BuildRequires and Requires from setup.py - Update to 1.39.1 * api-change:``cleanroomsml``: [``botocore``] This release introduces support for incremental training and distributed training for custom models in AWS Clean Rooms ML. * api-change:``datazone``: [``botocore``] Add support for the new optional domain-unit-id parameter in the UpdateProject API. * api-change:``ec2``: [``botocore``] Add Context to GetInstanceTypesFromInstanceRequirements API * api-change:``odb``: [``botocore``] This release adds API operations for Oracle Database@AWS. You can use the APIs to create Exadata infrastructure, ODB networks, and Exadata and Autonomous VM clusters inside AWS data centers. The infrastructure is managed by OCI. You can integrate these resources with AWS services. * api-change:``qbusiness``: [``botocore``] New ChatResponseConfiguration to Customize Q Business chat responses for specific use cases and communication needs. Updated Boosting capability allowing admins to provide preference on date attributes for recency and/or provide a preferred data source. * api-change:``rds``: [``botocore``] Amazon RDS Custom for Oracle now supports multi-AZ database instances. * api-change:``sagemaker``: [``botocore``] Updated field validation requirements for InstanceGroups. - from version 1.39.0 * api-change:``arc-zonal-shift``: [``botocore``] Added support for on-demand practice runs and balanced capacity checks in ARC autoshift practice. * api-change:``b2bi``: [``botocore``] Updated APIs to support inbound EDI split capabilities and additional Partnership-level configurations of generated EDI files' contents and format. * api-change:``bedrock``: [``botocore``] Add support for API Keys, Re-Ranker, implicit filter for RAG / KB evaluation for Bedrock APIs. * api-change:``bedrock-runtime``: [``botocore``] Add API Key and document citations support for Bedrock Runtime APIs * api-change:``cloudformation``: [``botocore``] Added support for UNKNOWN drift status. * api-change:``config``: [``botocore``] Updated ResourceType enum with new resource types onboarded by AWS Config as of June 2025 * api-change:``connect``: [``botocore``] This release introduces ChatMetrics to the model, providing comprehensive analytics insights for Amazon Connect chat conversations. Users can access these detailed metrics through the AWS Connect API by using the DescribeContact operation with their specific instance and contact IDs * api-change:``dataexchange``: [``botocore``] This release updates resource Id with alphanumeric constraint, including Asset id, Revision id, Data Set id, Job id, and Event Action id. * api-change:``dynamodb``: [``botocore``] This change adds support for witnesses in global tables. It also adds a new table status, REPLICATION_NOT_AUTHORIZED. This status will indicate scenarios where global replicas table can't be utilized for data plane operations. * api-change:``events``: [``botocore``] Added support for EventBridge Dualstack endpoints in AWS GovCloud (US) regions (us-gov-east-1 and us-gov-west-1). The dualstack endpoints are identical for both FIPS and non-FIPS configurations, following the format: events.{region}.api.aws * api-change:``glue``: [``botocore``] releasing source processing properties to support source properties for ODB integrations * api-change:``iam``: [``botocore``] Updated IAM ServiceSpecificCredential support to include expiration, API Key output format instead of username and password for services that will support API keys, and the ability to list credentials for all users in the account for a given service configuration. * api-change:``logs``: [``botocore``] Increase minimum length of queryId parameter to 1 character. * api-change:``medical-imaging``: [``botocore``] Added new fields to support the concept of primary image sets within the storage hierarchy. * api-change:``networkflowmonitor``: [``botocore``] Add ConflictExceptions to UpdateScope and DeleteScope operations for scopes being mutated. * api-change:``outposts``: [``botocore``] Make ContactName and ContactPhoneNumber required fields when creating and updating Outpost Site Addresses. * api-change:``pcs``: [``botocore``] Fixed the validation pattern for an instance profile Amazon Resource Name (ARN) in AWS PCS. * api-change:``quicksight``: [``botocore``] Introduced custom permission capabilities for reporting content. Added menu option in exploration to preserve configuration data when textbox menu option is used. Added support for Athena trusted identity propagation. * api-change:``ssm``: [``botocore``] Introduces AccessType, a new filter value for the DescribeSessions API. * api-change:``transfer``: [``botocore``] Added support for dual-stack (IPv4 and IPv6) endpoints for SFTP public endpoints and VPC-internal endpoints (SFTP, FTPS, FTP, and AS2), enabling customers to configure new servers with IPv4 or dual-stack mode, convert existing servers to dual-stack, and use IPv6 with service APIs. * feature:``bedrock``: [``botocore``] Add support for retrieving a Bearer token from environment variables to enable bearer authentication with Bedrock services. - from version 1.38.46 * api-change:``config``: [``botocore``] Added important considerations to the PutConformancePack and PutOrganizationConformancPack APIs. * api-change:``connect``: [``botocore``] This release adds the following value to an InitiateAs enum: COMPLETED * api-change:``glue``: [``botocore``] AWS Glue now supports schema, partition and sort management of Apache Iceberg tables using Glue SDK * api-change:``guardduty``: [``botocore``] Update JSON target for Kubernetes workload resource type. * api-change:``qconnect``: [``botocore``] Adding UnauthorizedException to public SDK * api-change:``rds``: [``botocore``] StartDBCluster and StopDBCluster can now throw InvalidDBShardGroupStateFault. * api-change:``sesv2``: [``botocore``] Added support for new SES regions - from version 1.38.45 * api-change:``deadline``: [``botocore``] Added fields to track cumulative task retry attempts for steps and jobs * api-change:``ec2``: [``botocore``] This release adds support for OdbNetworkArn as a target in VPC Route Tables * api-change:``iot-managed-integrations``: [``botocore``] Adding managed integrations APIs for IoT Device Management to onboard and control devices across different manufacturers, connectivity protocols and third party vendor clouds. APIs include managed thing operations, provisioning profile management, and cloud connector operations. * api-change:``keyspaces``: [``botocore``] This release provides change data capture (CDC) streams support through updates to the Amazon Keyspaces API. * api-change:``keyspacesstreams``: [``botocore``] This release adds change data capture (CDC) streams support through the new Amazon Keyspaces Streams API. * api-change:``kms``: [``botocore``] This release updates AWS CLI examples for KMS APIs. * api-change:``qbusiness``: [``botocore``] Added support for App level authentication for QBusiness DataAccessor using AWS IAM Identity center Trusted Token issuer * api-change:``workspaces``: [``botocore``] Updated modifyStreamingProperties to support PrivateLink VPC endpoints for directories - from version 1.38.44 * api-change:``ecs``: [``botocore``] Updates for change to Amazon ECS default log driver mode from blocking to non-blocking * api-change:``fsx``: [``botocore``] Add support for the ability to create Amazon S3 Access Points for Amazon FSx for OpenZFS file systems. * api-change:``s3``: [``botocore``] Adds support for additional server-side encryption mode and storage class values for accessing Amazon FSx data from Amazon S3 using S3 Access Points * api-change:``s3control``: [``botocore``] Add support for the ability to use Amazon S3 Access Points with Amazon FSx for OpenZFS file systems. * api-change:``storagegateway``: [``botocore``] This release adds IPv6 support to the Storage Gateway APIs. APIs that previously only accept or return IPv4 address will now accept or return both IPv4 and IPv6 addresses. * api-change:``textract``: [``botocore``] Add RotationAngle field to Geometry of WORD blocks for Textract AnalyzeDocument API * api-change:``workspaces-thin-client``: [``botocore``] Remove Tags field from Get API responses - from version 1.38.43 * api-change:``aiops``: [``botocore``] Adds support for cross account investigations for CloudWatch investigations AI Operations (AIOps). * api-change:``batch``: [``botocore``] Add userdataType to LaunchTemplateSpecification and LaunchTemplateSpecificationOverride. * api-change:``bedrock``: [``botocore``] We are making ListFoundationModelAgreementOffers, DeleteFoundationModelAgreement, CreateFoundationModelAgreement, GetFoundationModelAvailability, PutUseCaseForModelAccess and GetUseCaseForModelAccess APIs public, previously they were console. * api-change:``ec2``: [``botocore``] This release allows you to create and register AMIs while maintaining their underlying EBS snapshots within Local Zones. * api-change:``elbv2``: [``botocore``] Add Paginator for DescribeAccountLimits, and fix Paginators for DescribeTrustStoreAssociations, DescribeTrustStoreRevocations, and DescribeTrustStores * api-change:``gamelift``: [``botocore``] Add support for UDP ping beacons to ListLocations API, including new PingBeacon and UDPEndpoint data types within its Locations return value. Use UDP ping beacon endpoints to help measure real-time network latency for multiplayer games. * api-change:``license-manager``: [``botocore``] AWS License Manager now supports license type conversions for AWS Marketplace products. Customers can provide Marketplace codes in the source license context or destination license context in the CreateLicenseConversionTaskForResource requests. * api-change:``rds``: [``botocore``] Adding support for RDS on Dedicated Local Zones, including local backup target, snapshot availability zone and snapshot target * api-change:``route53resolver``: [``botocore``] Add support for iterative DNS queries through the new INBOUND_DELEGATION endpoint. Add delegation support through the Outbound Endpoints with DELEGATE rules. * api-change:``transcribe``: [``botocore``] This Feature Adds Support for the "et-EE" Locale for Batch Operations - from version 1.38.42 * api-change:``glue``: [``botocore``] AWS Glue now supports sort and z-order strategy for managed automated compaction for Iceberg tables in addition to binpack. * api-change:``s3tables``: [``botocore``] S3 Tables now supports sort and z-order compaction strategies for Iceberg tables in addition to binpack. * api-change:``workspaces-instances``: [``botocore``] Added support for Amazon WorkSpaces Instances API - from version 1.38.41 * api-change:``bedrock``: [``botocore``] Add support for tiers in Content Filters and Denied Topics for Amazon Bedrock Guardrails. * api-change:``ecs``: [``botocore``] Add ECS support for Windows Server 2025 * api-change:``geo-places``: [``botocore``] Geocode, ReverseGeocode, and GetPlace APIs added Intersections and SecondaryAddresses. To use, add to the AdditionalFeatures list in your request. This provides info about nearby intersections and secondary addresses that are associated with a main address. Also added MainAddress and ParsedQuery. * api-change:``glue``: [``botocore``] AWS Glue Data Quality now provides aggregated metrics in evaluation results when publishAggregatedMetrics with row-level results are enabled. These metrics include summary statistics showing total counts of processed, passed, and failed rows and rules in a single view. * api-change:``mediaconvert``: [``botocore``] This release adds a new SPECIFIED_OPTIMAL option for handling DDS when using DVB-Sub with high resolution video. - from version 1.38.40 * api-change:``bedrock``: [``botocore``] This release of the SDK has the API and documentation for the createcustommodel API. This feature lets you copy a trained model into Amazon Bedrock for inference. * api-change:``emr-serverless``: [``botocore``] This release adds the capability to enable IAM IdentityCenter Trusted Identity Propagation for users running Interactive Sessions on EMR Serverless Applications. * api-change:``lambda``: [``botocore``] Support Schema Registry feature for Kafka Event Source Mapping. Customers can now configure a Schema Registry to enable schema validation and filtering for Avro, Protobuf, and JSON-formatted events in Lambda for Kafka Event Source. * api-change:``payment-cryptography``: [``botocore``] Additional support for managing HMAC keys that adheres to changes documented in X9.143-2021 and provides better interoperability for key import/export * api-change:``payment-cryptography-data``: [``botocore``] Additional support for managing HMAC keys that adheres to changes documented in X9.143-2021 and provides better interoperability for key import/export * api-change:``sagemaker``: [``botocore``] This release introduces alternative support for utilizing CFN templates from S3 for SageMaker Projects. - from version 1.38.39 * api-change:``aiops``: [``botocore``] This is the initial SDK release for Amazon AI Operations (AIOps). AIOps is a generative AI-powered assistant that helps you respond to incidents in your system by scanning your system's telemetry and quickly surface suggestions that might be related to your issue. * api-change:``autoscaling``: [``botocore``] Add IncludeInstances parameter to DescribeAutoScalingGroups API * api-change:``imagebuilder``: [``botocore``] Added paginators for ``imagebuilder``. * api-change:``logs``: [``botocore``] Added CloudWatch Logs Transformer support for converting CloudTrail, VPC Flow, EKS Audit, AWS WAF and Route53 Resolver logs to OCSF v1.1 format. * api-change:``s3``: [``botocore``] Added support for renaming objects within the same bucket using the new RenameObject API. * api-change:``sagemaker``: [``botocore``] Add support for p6-b200 instance type for SageMaker Hyperpod - from version 1.38.38 * api-change:``accessanalyzer``: [``botocore``] We are launching a new analyzer type, internal access analyzer. The new analyzer will generate internal access findings, which help customers understand who within their AWS organization or AWS Account has access to their critical AWS resources. * api-change:``acm``: [``botocore``] Adds support for Exportable Public Certificates * api-change:``backup``: [``botocore``] AWS Backup is adding support for integration of its logically air-gapped vaults with the AWS Organizations Multi-party approval capability. * api-change:``bedrock``: [``botocore``] This release of the SDK has the API and documentation for the createcustommodel API. This feature lets you copy a trained model into Amazon Bedrock for inference. * api-change:``dms``: [``botocore``] Add "Virtual" field to Data Provider as well as "S3Path" and "S3AccessRoleArn" fields to DataProvider settings * api-change:``guardduty``: [``botocore``] Adding support for extended threat detection for EKS Audit Logs and EKS Runtime Monitoring. * api-change:``inspector2``: [``botocore``] Add Code Repository Scanning as part of AWS InspectorV2 * api-change:``mpa``: [``botocore``] This release enables customers to create Multi-party approval teams and approval requests to protect supported operations. * api-change:``network-firewall``: [``botocore``] Release of Active Threat Defense in Network Firewall * api-change:``organizations``: [``botocore``] Add support for policy operations on the SECURITYHUB_POLICY policy type. * api-change:``securityhub``: [``botocore``] Adds operations, structures, and exceptions required for public preview release of Security Hub V2. * api-change:``sts``: [``botocore``] The AWS Security Token Service APIs AssumeRoleWithSAML and AssumeRoleWithWebIdentity can now be invoked without pre-configured AWS credentials in the SDK configuration. * api-change:``wafv2``: [``botocore``] AWS WAF can now suggest protection packs for you based on the application information you provide when you create a webACL. - from version 1.38.37 * api-change:``bedrock``: [``botocore``] This release of the SDK has the API and documentation for the createcustommodel API. This feature lets you copy a Amazon SageMaker trained Amazon Nova model into Amazon Bedrock for inference. * api-change:``ecr``: [``botocore``] The `DescribeImageScanning` API now includes `lastInUseAt` and `InUseCount` fields that can be used to prioritize vulnerability remediation for images that are actively being used. * api-change:``network-firewall``: [``botocore``] You can now create firewalls using a Transit Gateway instead of a VPC, resulting in a TGW attachment. * api-change:``sagemaker``: [``botocore``] This release 1) adds a new S3DataType Converse for SageMaker training 2)adds C8g R7gd M8g C6in P6 P6e instance type for SageMaker endpoint 3) adds m7i, r7i, c7i instance type for SageMaker Training and Processing. - from version 1.38.36 * api-change:``apigateway``: [``botocore``] Documentation updates for Amazon API Gateway * api-change:``apigatewayv2``: [``botocore``] Documentation updates for Amazon API Gateway * api-change:``connectcampaignsv2``: [``botocore``] Added PutInstanceCommunicationLimits and GetInstanceCommunicationLimits APIs * api-change:``ecs``: [``botocore``] This Amazon ECS release supports updating the capacityProviderStrategy parameter in update-service. * api-change:``emr-serverless``: [``botocore``] This release adds support for retrieval of the optional executionIamPolicy field in the GetJobRun API response. * api-change:``iotfleetwise``: [``botocore``] Add new status READY_FOR_CHECKIN used for vehicle synchronisation * api-change:``kms``: [``botocore``] AWS KMS announces the support of ML-DSA key pairs that creates post-quantum safe digital signatures. * api-change:``pcs``: [``botocore``] Fixed regex patterns for ARN fields. - from version 1.38.35 * api-change:``controlcatalog``: [``botocore``] Introduced ListControlMappings API that retrieves control mappings. Added control aliases and governed resources fields in GetControl and ListControls APIs. New filtering capability in ListControls API, with implementation identifiers and implementation types. * api-change:``eks``: [``botocore``] Release for EKS Pod Identity Cross Account feature and disableSessionTags flag. * api-change:``lexv2-models``: [``botocore``] Add support for the Assisted NLU feature to improve bot performance * api-change:``networkmanager``: [``botocore``] Add support for public DNS hostname resolution to private IP addresses across Cloud WAN-managed VPCs. Add support for security group referencing across Cloud WAN-managed VPCs. * api-change:``rds``: [``botocore``] Updates Amazon RDS documentation for Amazon RDS for Db2 cross-Region replicas in standby mode. * api-change:``wafv2``: [``botocore``] WAF now provides two DDoS protection options: resource-level monitoring for Application Load Balancers and the AWSManagedRulesAntiDDoSRuleSet managed rule group for CloudFront distributions. * bugfix:Serialization: [``botocore``] Fixes a bug where instances of decimal.Decimal were unable to be passed into JSON serialization - from version 1.38.34 * api-change:``gameliftstreams``: [``botocore``] Documentation updates for Amazon GameLift Streams to address formatting errors, correct resource ID examples, and update links to other guides - from version 1.38.33 * api-change:``appsync``: [``botocore``] Deprecate `atRestEncryptionEnabled` and `transitEncryptionEnabled` attributes in `CreateApiCache` action. Encryption is always enabled for new caches. * api-change:``ce``: [``botocore``] Support dual-stack endpoints for ce api * api-change:``customer-profiles``: [``botocore``] This release introduces capability of Profile Explorer, using correct ingestion timestamp & using historical data for computing calculated attributes, and new standard objects for T&H as part of Amazon Connect Customer Profiles service. * api-change:``ec2``: [``botocore``] Release to support Elastic VMware Service (Amazon EVS) Subnet and Amazon EVS Network Interface Types. * api-change:``efs``: [``botocore``] Added support for Internet Protocol Version 6 (IPv6) on EFS Service APIs and mount targets. * api-change:``marketplace-catalog``: [``botocore``] The ListEntities API now supports the EntityID, LastModifiedDate, ProductTitle, and Visibility filters for machine learning products. You can also sort using all of those filters. * api-change:``workspaces-thin-client``: [``botocore``] Add ConflictException to UpdateEnvironment API - from version 1.38.32 * api-change:``bedrock-agent-runtime``: [``botocore``] This release introduces the `PromptCreationConfigurations` input parameter, which includes fields to control prompt population for `InvokeAgent` or `InvokeInlineAgent` requests. * api-change:``kms``: [``botocore``] Remove unpopulated KeyMaterialId from Encrypt Response * api-change:``rds``: [``botocore``] Include Global Cluster Identifier in DBCluster if the DBCluster is a Global Cluster Member. * api-change:``rekognition``: [``botocore``] Adds support for defining an ordered preference list of different Rekognition Face Liveness challenge types when calling CreateFaceLivenessSession. * api-change:``route53``: [``botocore``] Amazon Route 53 now supports the Asia Pacific (Taipei) Region (ap-east-2) for latency records, geoproximity records, and private DNS for Amazon VPCs in that region. * api-change:``s3tables``: [``botocore``] S3 Tables now supports getting details about a table via its table ARN. - from version 1.38.31 * api-change:``bcm-pricing-calculator``: [``botocore``] Updating the minimum for List APIs to be 1 (instead of 0) * api-change:``cloudformation``: [``botocore``] Add new warning type 'EXCLUDED_PROPERTIES' * api-change:``kms``: [``botocore``] AWS KMS announces the support for on-demand rotation of symmetric-encryption KMS keys with imported key material (EXTERNAL origin). * api-change:``wafv2``: [``botocore``] AWS WAF adds support for ASN-based traffic filtering and support for ASN-based rate limiting. - from version 1.38.30 * api-change:``amplify``: [``botocore``] Update documentation for cacheConfig in CreateApp API * api-change:``evs``: [``botocore``] Amazon Elastic VMware Service (Amazon EVS) allows you to run VMware Cloud Foundation (VCF) directly within your Amazon VPC including simplified self-managed migration experience with guided workflow in AWS console or via AWS CLI, get full access to their VCF deployment and VCF license portability. * api-change:``invoicing``: [``botocore``] Added new Invoicing ListInvoiceSummaries API Operation * api-change:``mediaconnect``: [``botocore``] This release updates the DescribeFlow API to show peer IP addresses. You can now identify the peer IP addresses of devices connected to your sources and outputs. This helps you to verify and troubleshoot your flow's active connections. * api-change:``mediaconvert``: [``botocore``] This release includes support for embedding and signing C2PA content credentials in MP4 outputs. * api-change:``network-firewall``: [``botocore``] You can now monitor flow and alert log metrics from the Network Firewall console. * api-change:``sagemaker``: [``botocore``] Added support for p6-b200 instance type in SageMaker Training Jobs and Training Plans. * api-change:``transcribe``: [``botocore``] AWS Healthscribe now supports new templates for the clinical note summary: BIRP, SIRP, DAP, BEHAVIORAL_SOAP, and PHYSICAL_SOAP - from version 1.38.29 * api-change:``apigateway``: [``botocore``] Adds support to set the routing mode for a custom domain name. * api-change:``apigatewayv2``: [``botocore``] Adds support to create routing rules and set the routing mode for a custom domain name. * api-change:``emr-serverless``: [``botocore``] AWS EMR Serverless: Adds a new option in the CancelJobRun API in EMR 7.9.0+, to cancel a job with grace period. This feature is enabled by default with a 120-second grace period for streaming jobs and is not enabled by default for batch jobs. - from version 1.38.28 * api-change:``athena``: [``botocore``] Add support for the managed query result in the workgroup APIs. The managed query result configuration enables users to store query results to Athena owned storage. * api-change:``backup``: [``botocore``] You can now subscribe to Amazon SNS notifications and Amazon EventBridge events for backup indexing. You can now receive notifications when a backup index is created, deleted, or fails to create, enhancing your ability to monitor and track your backup operations. * api-change:``bedrock-agent``: [``botocore``] This release adds the Agent Lifecycle Paused State feature to Amazon Bedrock agents. By using an agent's alias, you can temporarily suspend agent operations during maintenance, updates, or other situations. * api-change:``compute-optimizer``: [``botocore``] This release enables AWS Compute Optimizer to analyze Amazon Aurora database clusters and generate Aurora I/O-Optimized recommendations. * api-change:``cost-optimization-hub``: [``botocore``] Support recommendations for Aurora instance and Aurora cluster storage. * api-change:``ecs``: [``botocore``] Updates Amazon ECS documentation to include note for upcoming default log driver mode change. * api-change:``eks``: [``botocore``] Add support for filtering ListInsights API calls on MISCONFIGURATION insight category * api-change:``entityresolution``: [``botocore``] Add support for generating match IDs in near real-time. * api-change:``pcs``: [``botocore``] Introduces SUSPENDING and SUSPENDED states for clusters, compute node groups, and queues. * api-change:``synthetics``: [``botocore``] Support for Java runtime handler pattern. - from version 1.38.27 * api-change:``emr-serverless``: [``botocore``] This release adds the capability for users to specify an optional Execution IAM policy in the StartJobRun action. The resulting permissions assumed by the job run is the intersection of the permissions in the Execution Role and the specified Execution IAM Policy. * api-change:``sagemaker``: [``botocore``] Release new parameter CapacityReservationConfig in ProductionVariant - from version 1.38.26 * api-change:``amplify``: [``botocore``] Add support for customizable build instance sizes. CreateApp and UpdateApp operations now accept a new JobConfig parameter composed of BuildComputeType. * api-change:``autoscaling``: [``botocore``] Add support for "apple" CpuManufacturer in ABIS * api-change:``bcm-pricing-calculator``: [``botocore``] Add AFTER_DISCOUNTS_AND_COMMITMENTS to Workload Estimate Rate Type. Set ListWorkLoadEstimateUsage maxResults range to minimum of 0 and maximum of 300. * api-change:``cloudtrail``: [``botocore``] CloudTrail Feature Release: Support for Enriched Events with Configurable Context for Event Data Store * api-change:``connect``: [``botocore``] Amazon Connect Service Feature: Email Recipient Limit Increase * api-change:``dataexchange``: [``botocore``] This release adds Tag support for Event Action resource, through which customers can create event actions with Tags and retrieve event actions with Tags. * api-change:``datasync``: [``botocore``] AgentArns field is made optional for Object Storage and Azure Blob location create requests. Location credentials are now managed via Secrets Manager, and may be encrypted with service managed or customer managed keys. Authentication is now optional for Azure Blob locations. * api-change:``fsx``: [``botocore``] FSx API changes to support the public launch of new Intelligent Tiering storage class on Amazon FSx for Lustre * api-change:``ivs-realtime``: [``botocore``] IVS Real-Time now offers customers the participant replication that allow customers to copy a participant from one stage to another. * api-change:``mwaa``: [``botocore``] Amazon MWAA now lets you choose a worker replacement strategy when updating an environment. This release adds two worker replacement strategies: FORCED (default), which stops workers immediately, and GRACEFUL, which allows workers to finish current tasks before shutting down. * api-change:``s3``: [``botocore``] Adding checksum support for S3 PutBucketOwnershipControls API. * api-change:``sagemaker``: [``botocore``] Add maintenance status field to DescribeMlflowTrackingServer API response - from version 1.38.25 * api-change:``cost-optimization-hub``: [``botocore``] This release allows customers to modify their preferred commitment term and payment options. * api-change:``ec2``: [``botocore``] Enable the option to automatically delete underlying Amazon EBS snapshots when deregistering Amazon Machine Images (AMIs) * api-change:``events``: [``botocore``] Allow for more than 2 characters for location codes in EventBridge ARNs * api-change:``network-firewall``: [``botocore``] You can now use VPC endpoint associations to create multiple firewall endpoints for a single firewall. * api-change:``synthetics``: [``botocore``] Add support to change ephemeral storage. Add a new field "TestResult" under CanaryRunStatus. - from version 1.38.24 * api-change:``ce``: [``botocore``] This release introduces Cost Comparison feature (GetCostAndUsageComparisons, GetCostComparisonDrivers) allowing you find cost variations across multiple dimensions and identify key drivers of spending changes. * api-change:``deadline``: [``botocore``] AWS Deadline Cloud service-managed fleets now support storage profiles. With storage profiles, you can map file paths between a workstation and the worker hosts running the job. * api-change:``ec2``: [``botocore``] This release adds three features - option to store AWS Site-to-Site VPN pre-shared keys in AWS Secrets Manager, GetActiveVpnTunnelStatus API to check the in-use VPN algorithms, and SampleType option in GetVpnConnectionDeviceSampleConfiguration API to get recommended sample configs for VPN devices. - Update BuildRequires and Requires from setup.py - phase out %jobs macro (bsc#1237231) - Update to 1.38.23 * api-change:``ec2``: [``botocore``] This release adds support for the C7i-flex, M7i-flex, I7i, I7ie, I8g, P6-b200, Trn2, C8gd, M8gd and R8gd instances * api-change:``security-ir``: [``botocore``] Update PrincipalId pattern documentation to reflect what user should receive back from the API call - from version 1.38.22 * api-change:``amp``: [``botocore``] Add QueryLoggingConfiguration APIs for Amazon Managed Prometheus * api-change:``auditmanager``: [``botocore``] With this release, the AssessmentControl description field has been deprecated, as of May 19, 2025. Additionally, the UpdateAssessment API can now return a ServiceQuotaExceededException when applicable service quotas are exceeded. * api-change:``dsql``: [``botocore``] Features: support for customer managed encryption keys * api-change:``glue``: [``botocore``] This release supports additional ConversionSpec parameter as part of IntegrationPartition Structure in CreateIntegrationTableProperty API. This parameter is referred to apply appropriate column transformation for columns that are used for timestamp based partitioning - from version 1.38.21 * api-change:``application-autoscaling``: [``botocore``] Doc only update that addresses a customer reported issue. * api-change:``bedrock-agent-runtime``: [``botocore``] Amazon Bedrock introduces asynchronous flows (in preview), which let you run flows for longer durations and yield control so that your application can perform other tasks and you don't have to actively monitor the flow's progress. * api-change:``cloudwatch``: [``botocore``] Adds support for setting up Contributor Insight rules on logs transformed via Logs Transformation feature. * api-change:``ec2``: [``botocore``] Release of Dualstack and Ipv6-only EC2 Public DNS hostnames * api-change:``partnercentral-selling``: [``botocore``] Modified validation to allow expectedCustomerSpend array with zero elements in Partner Opportunity operations. - from version 1.38.20 * api-change:``datasync``: [``botocore``] Remove Discovery APIs from the DataSync service * api-change:``ec2``: [``botocore``] This release expands the ModifyInstanceMaintenanceOptions API to enable or disable instance migration during customer-initiated reboots for EC2 Scheduled Reboot Events. * api-change:``glue``: [``botocore``] Enhanced AWS Glue ListConnectionTypes API Model with additional metadata fields. * api-change:``inspector2``: [``botocore``] This release adds GetClustersForImage API and filter updates as part of the mapping of container images to running containers feature. * api-change:``oam``: [``botocore``] Add IncludeTags field to GetLink, GetSink and UpdateLink API * api-change:``privatenetworks``: [``botocore``] The privatenetworks client has been removed following the deprecation of the service. * api-change:``rds``: [``botocore``] This release introduces the new DescribeDBMajorEngineVersions API for describing the properties of specific major versions of database engines. - from version 1.38.19 * api-change:``dsql``: [``botocore``] CreateMultiRegionCluster and DeleteMultiRegionCluster APIs removed * api-change:``ec2``: [``botocore``] This release includes new APIs for System Integrity Protection (SIP) configuration and automated root volume ownership delegation for EC2 Mac instances. * api-change:``mediapackagev2``: [``botocore``] This release adds support for DVB-DASH, EBU-TT-D subtitle format, and non-compacted manifests for DASH in MediaPackage v2 Origin Endpoints. - from version 1.38.18 * api-change:``bedrock-data-automation``: [``botocore``] Add support for VIDEO modality to BlueprintType enum. * api-change:``bedrock-data-automation-runtime``: [``botocore``] Add AssetProcessingConfiguration for video segment to InputConfiguration * api-change:``codepipeline``: [``botocore``] CodePipeline now supports new API ListDeployActionExecutionTargets that lists the deployment target details for deploy action executions. * api-change:``ecs``: [``botocore``] This is an Amazon ECs documentation only release to support the change of the container exit "reason" field from 255 characters to 1024 characters. * api-change:``emr``: [``botocore``] Added APIs for managing Application UIs: Access Persistent (serverless) UIs via CreatePersistentAppUI DescribePersistentAppUI & GetPersistentAppUIPresignedURL, and Cluster-based UIs through GetOnClusterAppUIPresignedURL. Supports Yarn, Spark History, and TEZ interfaces. * api-change:``glue``: [``botocore``] Changes include (1) Excel as S3 Source type and XML and Tableau's Hyper as S3 Sink types, (2) targeted number of partitions parameter in S3 sinks and (3) new compression types in CSV/JSON and Parquet S3 sinks. * api-change:``neptune``: [``botocore``] This release adds Global Cluster Switchover capability which enables you to change your global cluster's primary AWS Region, the region that serves writes, while preserving the replication between all regions in the global cluster. * api-change:``service-quotas``: [``botocore``] This release introduces CreateSupportCase operation to SDK. - from version 1.38.17 * api-change:``bedrock-agent``: [``botocore``] Amazon Bedrock Flows introduces DoWhile loops nodes, parallel node executions, and enhancements to knowledge base nodes. * api-change:``codebuild``: [``botocore``] AWS CodeBuild now supports Docker Server capability * api-change:``controltower``: [``botocore``] Updated the descriptions for the AWS Control Tower Baseline APIs to make them more intuitive. * api-change:``dms``: [``botocore``] Introduces Data Resync feature to describe-table-statistics and IAM database authentication for MariaDB, MySQL, and PostgreSQL. * api-change:``pcs``: [``botocore``] This release adds support for Slurm accounting. For more information, see the Slurm accounting topic in the AWS PCS User Guide. Slurm accounting is supported for Slurm 24.11 and later. This release also adds 24.11 as a valid value for the version parameter of the Scheduler data type. * api-change:``workspaces``: [``botocore``] Added the new AlwaysOn running mode for WorkSpaces Pools. Customers can now choose between AlwaysOn (for instant access, with hourly usage billing regardless of connection status), or AutoStop (to optimize cost, with a brief startup delay) for their pools. - from version 1.38.16 * api-change:``cognito-idp``: [``botocore``] Add exceptions to WebAuthn operations. * api-change:``firehose``: [``botocore``] This release adds catalogARN support for s3 tables multi-catalog catalogARNs. * api-change:``logs``: [``botocore``] This release adds a new API "ListLogGroups" and an improvement in API "DescribeLogGroups" * api-change:``mediaconvert``: [``botocore``] This update enables cropping for video overlays and adds a new STL to Teletext upconversion toggle to preserve styling. - from version 1.38.15 * api-change:``bedrock``: [``botocore``] Enable cross-Region inference for Amazon Bedrock Guardrails by using the crossRegionConfig parameter when calling the CreateGuardrail or UpdateGuardrail operation. * api-change:``bedrock-agent-runtime``: [``botocore``] Changes for enhanced metadata in trace * api-change:``controltower``: [``botocore``] AWS Control Tower now reports the inheritance drift status for EnabledBaselines through the GetEnabledBaseline and ListEnabledBaselines APIs. You can now filter EnabledBaselines by their enablement and drift status using the ListEnabledBaselines API to view accounts and OUs that require attention. * api-change:``dsql``: [``botocore``] CreateMultiRegionClusters and DeleteMultiRegionClusters APIs marked as deprecated. Introduced new multi-Region clusters creation experience through multiRegionProperties parameter in CreateCluster API. * api-change:``ecs``: [``botocore``] This release extends functionality for Amazon EBS volumes attached to Amazon ECS tasks by adding support for the new EBS volumeInitializationRate parameter in ECS RunTask/StartTask/CreateService/UpdateService APIs. * api-change:``license-manager``: [``botocore``] Add Tagging feature to resources in the Managed Entitlements service. License and Grant resources can now be tagged. - from version 1.38.14 * api-change:``deadline``: [``botocore``] AWS Deadline Cloud service-managed fleets now support configuration scripts. Configuration scripts make it easy to install additional software, like plugins and packages, onto a worker. * api-change:``ec2``: [``botocore``] EC2 - Adding support for AvailabilityZoneId * api-change:``iam``: [``botocore``] Updating the endpoint list for the Identity and access management (IAM) service * api-change:``medialive``: [``botocore``] Add support to the AV1 rate control mode * api-change:``mediatailor``: [``botocore``] Documenting that EnabledLoggingStrategies is always present in responses of PlaybackConfiguration read operations. * api-change:``s3control``: [``botocore``] Updates to support S3 Express zonal endpoints for directory buckets in AWS CLI * api-change:``sagemaker``: [``botocore``] No API changes from previous release. This release migrated the model to Smithy keeping all features unchanged. * api-change:``supplychain``: [``botocore``] Launch new AWS Supply Chain public APIs for DataIntegrationEvent, DataIntegrationFlowExecution and DatasetNamespace. Also add more capabilities to existing public APIs to support direct dataset event publish, data deduplication in DataIntegrationFlow, partition specification of custom datasets. - from version 1.38.13 * api-change:``athena``: [``botocore``] Minor API documentation updates * api-change:``logs``: [``botocore``] We are pleased to announce limit increases to our grok processor logs transformation feature. Now you can define 20 Grok patterns in their configurations, with an expanded total pattern matching limit of 512 characters. * api-change:``synthetics``: [``botocore``] Add support to retry a canary automatically after schedule run failures. Users can enable this feature by configuring the RetryConfig field when calling the CreateCanary or UpdateCanary API. Also includes changes in GetCanary and GetCanaryRuns to support retrieving retry configurations. * api-change:``workspaces``: [``botocore``] Remove parameter EnableWorkDocs from WorkSpacesServiceModel due to end of support of Amazon WorkDocs service. - from version 1.38.12 * api-change:``cloudfront``: [``botocore``] Doc-only update for CloudFront. These changes include customer-reported issues. * api-change:``codepipeline``: [``botocore``] Add support for Secrets Manager and Plaintext environment variable types in Commands action * api-change:``ec2``: [``botocore``] Launching the feature to support ENA queues offering flexibility to support multiple queues per Enhanced Network Interface (ENI) * api-change:``glue``: [``botocore``] This new release supports customizable RefreshInterval for all Saas ZETL integrations from 15 minutes to 6 days. * api-change:``guardduty``: [``botocore``] Updated description of a data structure. * api-change:``sso-admin``: [``botocore``] Update PutPermissionBoundaryToPermissionSet API's managedPolicyArn pattern to allow valid ARN only. Update ApplicationName to allow white spaces. - from version 1.38.11 * api-change:``ec2``: [``botocore``] This release adds API support for Path Component Exclusion (Filter Out ARN) for Reachability Analyzer * api-change:``imagebuilder``: [``botocore``] Updated the CreateImageRecipeRequest ParentImage description to include all valid values as updated with the SSM Parameters project. * api-change:``medialive``: [``botocore``] Enables Updating Anywhere Settings on a MediaLive Anywhere Channel. * api-change:``sagemaker``: [``botocore``] SageMaker AI Studio users can now migrate to SageMaker Unified Studio, which offers a unified web-based development experience that integrates AWS data, analytics, artificial intelligence (AI), and machine learning (ML) services, as well as additional tools and resource * api-change:``synthetics``: [``botocore``] Add support to test a canary update by invoking a dry run of a canary. This behavior can be used via the new StartCanaryDryRun API along with new fields in UpdateCanary to apply dry run changes. Also includes changes in GetCanary and GetCanaryRuns to support retrieving dry run configurations. - from version 1.38.10 * api-change:``ec2``: [``botocore``] This release adds support for Amazon EBS Provisioned Rate for Volume Initialization, which lets you specify a volume initialization rate to ensure that your EBS volumes are initialized in a predictable amount of time. * api-change:``servicecatalog``: [``botocore``] ServiceCatalog's APIs (DeleteServiceAction, DisassociateServiceActionFromProvisioningArtifact, AssociateServiceActionWithProvisioningArtifact) now throw InvalidParametersException when IdempotencyToken is invalid. * api-change:``timestream-query``: [``botocore``] Add dualstack endpoints support and correct us-gov-west-1 FIPS endpoint. * api-change:``timestream-write``: [``botocore``] Add dualstack endpoints support. - from version 1.38.9 * api-change:``datazone``: [``botocore``] This release adds a new authorization policy to control the usage of custom AssetType when creating an Asset. Customer can now add new grant(s) of policyType USE_ASSET_TYPE for custom AssetTypes to apply authorization policy to projects members and domain unit owners. * api-change:``devicefarm``: [``botocore``] Add an optional parameter to the GetDevicePoolCompatibility API to pass in project information to check device pool compatibility. * api-change:``ec2``: [``botocore``] This update introduces API operations to manage and create local gateway VIF and VIF groups. It also includes API operations to describe Outpost LAGs and service link VIFs. * api-change:``ecs``: [``botocore``] Add support to roll back an In_Progress ECS Service Deployment * api-change:``mediaconvert``: [``botocore``] This release adds an optional sidecar per-frame video quality metrics report and an ALL_PCM option for audio selectors. It also changes the data type for Probe API response fields related to video and audio bitrate from integer to double. - from version 1.38.8 * api-change:``bedrock-data-automation``: [``botocore``] Added support for Custom output and blueprints for AUDIO data types. * api-change:``ds``: [``botocore``] Doc only update - fixed typos. * api-change:``kinesis``: [``botocore``] Marking ResourceARN as required for Amazon Kinesis Data Streams APIs TagResource, UntagResource, and ListTagsForResource. - from version 1.38.7 * api-change:``appconfig``: [``botocore``] Adding waiter support for deployments and environments; documentation updates * api-change:``connect``: [``botocore``] This release adds the following fields to DescribeContact: DisconnectReason, AgentInitiatedHoldDuration, AfterContactWorkStartTimestamp, AfterContactWorkEndTimestamp, AfterContactWorkDuration, StateTransitions, Recordings, ContactDetails, ContactEvaluations, Attributes * api-change:``sagemaker``: [``botocore``] Feature - Adding support for Scheduled and Rolling Update Software in Sagemaker Hyperpod. * api-change:``verifiedpermissions``: [``botocore``] Amazon Verified Permissions / Features : Adds support for tagging policy stores. - from version 1.38.6 * api-change:``bedrock``: [``botocore``] You can now specify a cross region inference profile as a teacher model for the CreateModelCustomizationJob API. Additionally, the GetModelCustomizationJob API has been enhanced to return the sub-task statuses of a customization job within the StatusDetails response field. * api-change:``bedrock-agent``: [``botocore``] Features: Add inline code node to prompt flow * api-change:``bedrock-agent-runtime``: [``botocore``] Support for Custom Orchestration within InlineAgents * api-change:``cleanrooms``: [``botocore``] This release adds support for ProtectedQuery results to be delivered to more than one collaboration member via the new distribute output configuration in StartProtectedQuery. * api-change:``deadline``: [``botocore``] Adds support for tag management on workers and tag inheritance from fleets to their associated workers. * api-change:``ec2``: [``botocore``] Launch of cost distribution feature for IPAM owners to distribute costs to internal teams. * api-change:``ecr``: [``botocore``] Adds dualstack support for Amazon Elastic Container Registry (Amazon ECR). * api-change:``ecr-public``: [``botocore``] Adds dualstack support for Amazon Elastic Container Registry Public (Amazon ECR Public). * api-change:``logs``: [``botocore``] CloudWatch Logs supports "DELIVERY" log class. This log class is used only for delivering AWS Lambda logs to Amazon S3 or Amazon Data Firehose. * api-change:``mailmanager``: [``botocore``] Introducing new RuleSet rule PublishToSns action, which allows customers to publish email notifications to an Amazon SNS topic. New PublishToSns action enables customers to easily integrate their email workflows via Amazon SNS, allowing them to notify other systems about important email events. - from version 1.38.5 * api-change:``connectcases``: [``botocore``] Introduces CustomEntity as part of the UserUnion data type. This field is used to indicate the entity who is performing the API action. * api-change:``kinesis``: [``botocore``] Amazon KDS now supports tagging and attribute-based access control (ABAC) for enhanced fan-out consumers. * api-change:``pinpoint-sms-voice-v2``: [``botocore``] AWS End User Messaging has added MONITOR and FILTER functionality to SMS Protect. * api-change:``qbusiness``: [``botocore``] Add support for anonymous user access for Q Business applications * api-change:``sagemaker``: [``botocore``] Introduced support for P5en instance types on SageMaker Studio for JupyterLab and CodeEditor applications. * api-change:``sagemaker-metrics``: [``botocore``] SageMaker Metrics Service now supports FIPS endpoint in all US and Canada Commercial regions. * api-change:``ssm``: [``botocore``] This release adds support for just-In-time node access in AWS Systems Manager. Just-in-time node access enables customers to move towards zero standing privileges by requiring operators to request access and obtain approval before remotely connecting to nodes managed by the SSM Agent. * api-change:``ssm-guiconnect``: [``botocore``] This release adds API support for the connection recording GUI Connect feature of AWS Systems Manager - from version 1.38.4 * api-change:``acm``: [``botocore``] Add support for file-based HTTP domain control validation, available through Amazon CloudFront. * api-change:``bedrock-runtime``: [``botocore``] This release adds native h2 support for the bedrock runtime API, the support is only limited to SDKs that support h2 requests natively. * api-change:``cloudfront``: [``botocore``] Add distribution tenant, connection group, and multi-tenant distribution APIs to the CloudFront SDK. * api-change:``dynamodb``: [``botocore``] Doc only update for GSI descriptions. * api-change:``imagebuilder``: [``botocore``] Add integration with SSM Parameter Store to Image Builder. - from version 1.38.3 * api-change:``bedrock-runtime``: [``botocore``] You can now reference images and documents stored in Amazon S3 when using InvokeModel and Converse APIs with Amazon Nova Lite and Nova Pro. This enables direct integration of S3-stored multimedia assets in your model requests without manual downloading or base64 encoding. * api-change:``ecs``: [``botocore``] Documentation only release for Amazon ECS. * api-change:``marketplace-deployment``: [``botocore``] Doc only update for the AWS Marketplace Deployment Service that fixes several customer-reported issues. - from version 1.38.2 * api-change:``apprunner``: [``botocore``] AWS App Runner adds Node.js 22 runtime. * api-change:``appsync``: [``botocore``] Add data source support to Event APIs * api-change:``bedrock-data-automation``: [``botocore``] Added support for modality routing and modality enablement on CreateDataAutomationProject and UpdateDataAutomationProject APIs * api-change:``codebuild``: [``botocore``] Remove redundant validation check. * api-change:``dynamodb``: [``botocore``] Add support for ARN-sourced account endpoint generation for TransactWriteItems. This will generate account endpoints for DynamoDB TransactWriteItems requests using ARN-sourced account ID when available. * api-change:``ecs``: [``botocore``] Documentation only release for Amazon ECS * api-change:``pcs``: [``botocore``] Documentation-only update: added valid values for the version property of the Scheduler and SchedulerRequest data types. * api-change:``rds``: [``botocore``] This Amazon RDS release adds support for managed master user passwords for Oracle CDBs. - Update BuildRequires and Requires from setup.py - Update to 1.38.1 * api-change:``codebuild``: [``botocore``] Add support for custom instance type for reserved capacity fleets * api-change:``ecs``: [``botocore``] Add support to roll back an In_Progress ECS Service Deployment * api-change:``imagebuilder``: [``botocore``] Add all ``imagebuilder`` modeled paginators that are currently supported by botocore. * api-change:``resource-explorer-2``: [``botocore``] Documentation-only update for CreateView option correction - from version 1.38.0 * api-change:``account``: [``botocore``] AWS Account Management now supports account name update via IAM principals. * api-change:``cognito-idp``: [``botocore``] This release adds refresh token rotation. * api-change:``ec2``: [``botocore``] Added support for ClientRouteEnforcementOptions flag in CreateClientVpnEndpoint and ModifyClientVpnEndpoint requests and DescribeClientVpnEndpoints responses * api-change:``entityresolution``: [``botocore``] To expand support for matching records using digital identifiers with TransUnion * api-change:``mq``: [``botocore``] You can now delete Amazon MQ broker configurations using the DeleteConfiguration API. For more information, see Configurations in the Amazon MQ API Reference. * api-change:``redshift-serverless``: [``botocore``] Provides new and updated API members to support the Redshift Serverless reservations feature. * api-change:``s3control``: [``botocore``] Fix endpoint resolution test cases * feature:Python: [``botocore``] End of support for Python 3.8 * feature:Python: End of support for Python 3.8 - from version 1.37.38 * api-change:``arc-zonal-shift``: [``botocore``] Updates to documentation and exception types for Zonal Autoshift * api-change:``budgets``: [``botocore``] Releasing the new Budget FilterExpression and Metrics fields to support more granular filtering options. These new fields are intended to replace CostFilters and CostTypes, which are deprecated as of 2025/18/04. * api-change:``firehose``: [``botocore``] Documentation update regarding the number of streams you can create using the CreateDeliveryStream API. * api-change:``mediatailor``: [``botocore``] Added support for Recurring Prefetch and Traffic Shaping on both Single and Recurring Prefetch. ListPrefetchSchedules now return single prefetchs by default and can be provided scheduleType of SINGLE, RECURRING, AND ALL. * api-change:``qbusiness``: [``botocore``] The CheckDocumentAccess API for Amazon Q Business is a self-service debugging API that allows administrators to verify document access permissions and review Access Control List (ACL) configurations. - from version 1.37.37 * api-change:``qconnect``: [``botocore``] This release adds support for the following capabilities: Chunking generative answer replies from Amazon Q in Connect. Integration support for the use of additional LLM models with Amazon Q in Connect. * api-change:``sagemaker``: [``botocore``] This release adds a new Neuron driver option in InferenceAmiVersion parameter for ProductionVariant. Additionally, it adds support for fetching model lifecycle status in the ListModelPackages API. Users can now use this API to view the lifecycle stage of models that have been shared with them. * api-change:``service-quotas``: [``botocore``] Add new optional SupportCaseAllowed query parameter to the RequestServiceQuotaIncrease API - from version 1.37.36 * api-change:``accessanalyzer``: [``botocore``] Added new resource types to evaluate for public access in resource policies and added support for S3 directory bucket access points. * api-change:``amp``: [``botocore``] Add Workspace Configuration APIs for Amazon Prometheus * api-change:``autoscaling``: [``botocore``] Doc only update for EC2 Auto Scaling. * api-change:``bedrock``: [``botocore``] With this release, Bedrock Evaluation will now support custom metrics for evaluation. * api-change:``connect``: [``botocore``] This release adds following capabilities to Contact Lens Rules APIs 1/ 'ASSIGN_SLA' action and '$.Case.TemplateId' comparison value for 'OnCaseCreate' and 'OnCaseUpdate' event sources 2/ 'OnSlaBreach' Cases event source which supports '$.RelatedItem.SlaConfiguration.Name' comparison value * api-change:``ecs``: [``botocore``] Adds a new AccountSetting - defaultLogDriverMode for ECS. * api-change:``iotfleetwise``: [``botocore``] We've added stricter parameter validations to AWS IoT FleetWise signal catalog, model manifest, and decoder manifest APIs. * api-change:``memorydb``: [``botocore``] Added support for IPv6 and dual stack for Valkey and Redis clusters. Customers can now launch new Valkey and Redis clusters with IPv6 and dual stack networking support. * api-change:``omics``: [``botocore``] Add versioning for HealthOmics workflows - from version 1.37.35 * api-change:``connectcases``: [``botocore``] This feature provides capabilities to help track and meet service level agreements (SLAs) on cases programmatically. It allows configuring a new related item of type `Sla` on a case using CreateRelatedItem API and provides the ability to search for this new related item using SearchRelatedItems API. * api-change:``dsql``: [``botocore``] Added GetClusterEndpointService API. The new API allows retrieving endpoint service name specific to a cluster. * api-change:``eks``: [``botocore``] Added support for new AL2023 ARM64 NVIDIA AMIs to the supported AMITypes. * api-change:``events``: [``botocore``] Adding support for KmsKeyIdentifer in CreateConnection, UpdateConnection and DescribeConnection APIs * api-change:``resource-groups``: [``botocore``] Resource Groups: TagSyncTasks can be created with ResourceQuery * api-change:``s3tables``: [``botocore``] S3 Tables now supports setting encryption configurations on table buckets and tables. Encryption configurations can use server side encryption using AES256 or KMS customer-managed keys. * api-change:``servicecatalog``: [``botocore``] Updated default value for the access-level-filter in SearchProvisionedProducts API to Account. For access to userLevel or roleLevel, the user must provide access-level-filter parameter. - from version 1.37.34 * api-change:``entityresolution``: [``botocore``] This is to add new metrics to our GetIdMappingJob API and also update uniqueId naming for batchDeleteUniqueIds API to be more accurate * api-change:``taxsettings``: [``botocore``] Indonesia SOR Tax Registration Launch - from version 1.37.33 * api-change:``connect-contact-lens``: [``botocore``] Making sentiment optional for ListRealtimeContactAnalysisSegments Response depending on conversational analytics configuration * api-change:``datazone``: [``botocore``] Raise hard limit of authorized principals per SubscriptionTarget from 10 to 20. * api-change:``detective``: [``botocore``] Add support for Detective DualStack endpoints * api-change:``dynamodb``: [``botocore``] Doc only update for API descriptions. * api-change:``marketplace-entitlement``: [``botocore``] Add support for Marketplace Entitlement Service dual-stack endpoints for CN and GOV regions * api-change:``meteringmarketplace``: [``botocore``] Add support for Marketplace Metering Service dual-stack endpoints for CN regions * api-change:``pcs``: [``botocore``] Changed the minimum length of clusterIdentifier, computeNodeGroupIdentifier, and queueIdentifier to 3. * api-change:``verifiedpermissions``: [``botocore``] Adds deletion protection support to policy stores. Deletion protection is disabled by default, can be enabled via the CreatePolicyStore or UpdatePolicyStore APIs, and is visible in GetPolicyStore. * bugfix:``download_fileobj``: Fileobj provided in append mode will no longer allow concurrent writes to preserve data integrity. - from version 1.37.32 * api-change:``application-autoscaling``: [``botocore``] Application Auto Scaling now supports horizontal scaling for Elasticache Memcached self-designed clusters using target tracking scaling policies and scheduled scaling. * api-change:``elasticache``: [``botocore``] AWS ElastiCache SDK now supports using MemcachedUpgradeConfig parameter with ModifyCacheCluster API to enable updating Memcached cache node types. Please refer to updated AWS ElastiCache public documentation for detailed information on API usage and implementation. * api-change:``m2``: [``botocore``] Introduce three new APIs: CreateDataSetExportTask, GetDataSetExportTask and ListDataSetExportHistory. Add support for batch restart for Blu Age applications. * api-change:``medialive``: [``botocore``] AWS Elemental MediaLive / Features : Add support for CMAF Ingest CaptionLanguageMappings, TimedMetadataId3 settings, and Link InputResolution. * api-change:``qbusiness``: [``botocore``] Adds functionality to enable/disable a new Q Business Hallucination Reduction feature. If enabled, Q Business will detect and attempt to remove Hallucinations from certain Chat requests. * api-change:``quicksight``: [``botocore``] Add support to analysis and sheet level highlighting in QuickSight. - from version 1.37.31 * api-change:``controlcatalog``: [``botocore``] The GetControl API now surfaces a control's Severity, CreateTime, and Identifier for a control's Implementation. The ListControls API now surfaces a control's Behavior, Severity, CreateTime, and Identifier for a control's Implementation. * api-change:``dynamodb``: [``botocore``] Documentation update for secondary indexes and Create_Table. * api-change:``glue``: [``botocore``] The TableOptimizer APIs in AWS Glue now return the DpuHours field in each TableOptimizerRun, providing clients visibility to the DPU-hours used for billing in managed Apache Iceberg table compaction optimization. * api-change:``groundstation``: [``botocore``] Support tagging Agents and adjust input field validations * api-change:``transfer``: [``botocore``] This launch includes 2 enhancements to SFTP connectors user-experience: 1) Customers can self-serve concurrent connections setting for their connectors, and 2) Customers can discover the public host key of remote servers using their SFTP connectors. - from version 1.37.30 * api-change:``bedrock-runtime``: [``botocore``] This release introduces our latest bedrock runtime API, InvokeModelWithBidirectionalStream. The API supports both input and output streams and is supported by only HTTP2.0. * api-change:``ce``: [``botocore``] This release supports Pagination traits on Cost Anomaly Detection APIs. * api-change:``cost-optimization-hub``: [``botocore``] This release adds resource type "MemoryDbReservedInstances" and resource type "DynamoDbReservedCapacity" to the GetRecommendation, ListRecommendations, and ListRecommendationSummaries APIs to support new MemoryDB and DynamoDB RI recommendations. * api-change:``iotfleetwise``: [``botocore``] This release adds the option to update the strategy of state templates already associated to a vehicle, without the need to remove and re-add them. * api-change:``securityhub``: [``botocore``] Documentation updates for AWS Security Hub. * api-change:``storagegateway``: [``botocore``] Added new ActiveDirectoryStatus value, ListCacheReports paginator, and support for longer pagination tokens. * api-change:``taxsettings``: [``botocore``] Uzbekistan Launch on TaxSettings Page - Update BuildRequires and Requires from setup.py - Update to 1.37.29 * api-change:``bedrock``: [``botocore``] New options for how to handle harmful content detected by Amazon Bedrock Guardrails. * api-change:``bedrock-runtime``: [``botocore``] New options for how to handle harmful content detected by Amazon Bedrock Guardrails. * api-change:``codebuild``: [``botocore``] AWS CodeBuild now offers an enhanced debugging experience. * api-change:``glue``: [``botocore``] Add input validations for multiple Glue APIs * api-change:``medialive``: [``botocore``] AWS Elemental MediaLive now supports SDI inputs to MediaLive Anywhere Channels in workflows that use AWS SDKs. * api-change:``personalize``: [``botocore``] Add support for eventsConfig for CreateSolution, UpdateSolution, DescribeSolution, DescribeSolutionVersion. Add support for GetSolutionMetrics to return weighted NDCG metrics when eventsConfig is enabled for the solution. * api-change:``transfer``: [``botocore``] This launch enables customers to manage contents of their remote directories, by deleting old files or moving files to archive folders in remote servers once they have been retrieved. Customers will be able to automate the process using event-driven architecture. - from version 1.37.28 * api-change:``ds-data``: [``botocore``] Doc only update - fixed broken links. * api-change:``ec2``: [``botocore``] Doc-only updates for Amazon EC2 * api-change:``events``: [``botocore``] Amazon EventBridge adds support for customer-managed keys on Archives and validations for two fields: eventSourceArn and kmsKeyIdentifier. * api-change:``s3control``: [``botocore``] Updated max size of Prefixes parameter of Scope data type. - from version 1.37.27 * api-change:``bedrock-agent``: [``botocore``] Added optional "customMetadataField" for Amazon Aurora knowledge bases, allowing single-column metadata. Also added optional "textIndexName" for MongoDB Atlas knowledge bases, enabling hybrid search support. * api-change:``chime-sdk-voice``: [``botocore``] Added FOC date as an attribute of PhoneNumberOrder, added AccessDeniedException as a possible return type of ValidateE911Address * api-change:``mailmanager``: [``botocore``] Add support for Dual_Stack and PrivateLink types of IngressPoint. For configuration requests, SES Mail Manager will now accept both IPv4/IPv6 dual-stack endpoints and AWS PrivateLink VPC endpoints for email receiving. * api-change:``opensearch``: [``botocore``] Improve descriptions for various API commands and data types. * api-change:``route53``: [``botocore``] Added us-gov-east-1 and us-gov-west-1 as valid Latency Based Routing regions for change-resource-record-sets. * api-change:``sagemaker``: [``botocore``] Adds support for i3en, m7i, r7i instance types for SageMaker Hyperpod * api-change:``sesv2``: [``botocore``] This release enables customers to provide attachments in the SESv2 SendEmail and SendBulkEmail APIs. * api-change:``transcribe``: [``botocore``] This Feature Adds Support for the "zh-HK" Locale for Batch Operations * enhancement:Eventstream: [``botocore``] The event streams maximum payload size is now required to be 24Mb or less. - from version 1.37.26 * api-change:``application-signals``: [``botocore``] Application Signals now supports creating Service Level Objectives on service dependencies. Users can now create or update SLOs on discovered service dependencies to monitor their standard application metrics. * api-change:``codebuild``: [``botocore``] This release adds support for environment type WINDOWS_SERVER_2022_CONTAINER in ProjectEnvironment * api-change:``ecr``: [``botocore``] Fix for customer issues related to AWS account ID and size limitation for token. * api-change:``ecs``: [``botocore``] This is an Amazon ECS documentation only update to address various tickets. * api-change:``lexv2-models``: [``botocore``] Release feature of errorlogging for lex bot, customer can config this feature in bot version to generate log for error exception which helps debug * api-change:``medialive``: [``botocore``] Added support for SMPTE 2110 inputs when running a channel in a MediaLive Anywhere cluster. This feature enables ingestion of SMPTE 2110-compliant video, audio, and ancillary streams by reading SDP files that AWS Elemental MediaLive can retrieve from a network source. - from version 1.37.25 * api-change:``cleanrooms``: [``botocore``] This release adds support for updating the analytics engine of a collaboration. * api-change:``sagemaker``: [``botocore``] Added tagging support for SageMaker notebook instance lifecycle configurations - from version 1.37.24 * api-change:``bedrock-runtime``: [``botocore``] Add Prompt Caching support to Converse and ConverseStream APIs * api-change:``deadline``: [``botocore``] With this release you can use a new field to specify the search term match type. Search term match types currently support fuzzy and contains matching. * api-change:``ec2``: [``botocore``] Release VPC Route Server, a new feature allowing dynamic routing in VPCs. * api-change:``eks``: [``botocore``] Add support for updating RemoteNetworkConfig for hybrid nodes on EKS UpdateClusterConfig API * api-change:``marketplace-entitlement``: [``botocore``] Add support for Marketplace Entitlement Service dual-stack endpoints. * api-change:``outposts``: [``botocore``] Enabling Asset Level Capacity Management feature, which allows customers to create a Capacity Task for a single Asset on their active Outpost. * api-change:``s3``: [``botocore``] Amazon S3 adds support for S3 Access Points for directory buckets in AWS Dedicated Local Zones * api-change:``s3control``: [``botocore``] Amazon S3 adds support for S3 Access Points for directory buckets in AWS Dedicated Local Zones * api-change:``sesv2``: [``botocore``] Add dual-stack support to global endpoints. * api-change:``transfer``: [``botocore``] Add WebAppEndpointPolicy support for WebApps - from version 1.37.23 * api-change:``apigateway``: [``botocore``] Adds support for setting the IP address type to allow dual-stack or IPv4 address types to invoke your APIs or domain names. * api-change:``apigatewayv2``: [``botocore``] Adds support for setting the IP address type to allow dual-stack or IPv4 address types to invoke your APIs or domain names. * api-change:``bedrock-runtime``: [``botocore``] Launching Multi-modality Content Filter for Amazon Bedrock Guardrails. * api-change:``codebuild``: [``botocore``] This release adds support for cacheNamespace in ProjectCache * api-change:``ecs``: [``botocore``] This is an Amazon ECS documentation only release that addresses tickets. * api-change:``meteringmarketplace``: [``botocore``] Add support for Marketplace Metering Service dual-stack endpoints. * api-change:``networkmanager``: [``botocore``] Add support for NetworkManager Dualstack endpoints. * api-change:``payment-cryptography``: [``botocore``] The service adds support for transferring AES-256 and other keys between the service and other service providers and HSMs. This feature uses ECDH to derive a one-time key transport key to enable these secure key exchanges. * api-change:``quicksight``: [``botocore``] RLS permission dataset with userAs: RLS_RULES flag, Q in QuickSight/Threshold Alerts/Schedules/Snapshots in QS embedding, toggle dataset refresh email alerts via API, transposed table with options: column width, type and index, toggle Q&A on dashboards, Oracle Service Name when creating data source. * api-change:``sagemaker``: [``botocore``] TransformAmiVersion for Batch Transform and SageMaker Search Service Aggregate Search API Extension - from version 1.37.22 * api-change:``batch``: [``botocore``] This release will enable two features: Firelens log driver, and Execute Command on Batch jobs on ECS. Both features will be passed through to ECS. * api-change:``bcm-pricing-calculator``: [``botocore``] Added standaloneAccountRateTypeSelections for GetPreferences and UpdatePreferences APIs. Added STALE enum value to status attribute in GetBillScenario and UpdateBillScenario APIs. * api-change:``bedrock-agent-runtime``: [``botocore``] bedrock flow now support node action trace. * api-change:``cloudformation``: [``botocore``] Adding support for the new parameter "ScanFilters" in the CloudFormation StartResourceScan API. When this parameter is included, the StartResourceScan API will initiate a scan limited to the resource types specified by the parameter. * api-change:``datazone``: [``botocore``] This release adds new action type of Create Listing Changeset for the Metadata Enforcement Rule feature. * api-change:``eks``: [``botocore``] Added support for BOTTLEROCKET FIPS AMIs to AMI types in US regions. * api-change:``gamelift``: [``botocore``] Amazon GameLift Servers add support for additional instance types. * api-change:``iam``: [``botocore``] Update IAM dual-stack endpoints for BJS, IAD and PDT partitions * api-change:``sagemaker``: [``botocore``] add: recovery mode for SageMaker Studio apps * api-change:``sso-oidc``: [``botocore``] This release adds AwsAdditionalDetails in the CreateTokenWithIAM API response. - from version 1.37.21 * api-change:``arc-zonal-shift``: [``botocore``] Add new shiftType field for ARC zonal shifts. * api-change:``directconnect``: [``botocore``] With this release, AWS Direct Connect allows you to tag your Direct Connect gateways. Tags are metadata that you can create and use to manage your Direct Connect gateways. For more information about tagging, see AWS Tagging Strategies. * api-change:``mediaconvert``: [``botocore``] This release adds a configurable Quality Level setting for the top rendition of Auto ABR jobs * api-change:``mediatailor``: [``botocore``] Add support for log filtering which allow customers to filter out selected event types from logs. * api-change:``polly``: [``botocore``] Added support for the new voice - Jihye (ko-KR). Jihye is available as a Neural voice only. * api-change:``rds``: [``botocore``] Add note about the Availability Zone where RDS restores the DB cluster for the RestoreDBClusterToPointInTime operation. * api-change:``wafv2``: [``botocore``] This release adds the ability to associate an AWS WAF v2 web ACL with an AWS Amplify App. - from version 1.37.20 * api-change:``bedrock-agent``: [``botocore``] Adding support for Amazon OpenSearch Managed clusters as a vector database in Knowledge Bases for Amazon Bedrock * api-change:``eks``: [``botocore``] Added support to override upgrade-blocking readiness checks via force flag when updating a cluster. * api-change:``gameliftstreams``: [``botocore``] Minor updates to improve developer experience. * api-change:``keyspaces``: [``botocore``] Removing replication region limitation for Amazon Keyspaces Multi-Region Replication APIs. * api-change:``marketplace-entitlement``: [``botocore``] This release enhances the GetEntitlements API to support new filter CUSTOMER_AWS_ACCOUNT_ID in request and CustomerAWSAccountId field in response. * api-change:``meteringmarketplace``: [``botocore``] This release enhances the BatchMeterUsage API to support new field CustomerAWSAccountId in request and response and making CustomerIdentifier optional. CustomerAWSAccountId or CustomerIdentifier must be provided in request but not both. * api-change:``sagemaker``: [``botocore``] This release adds support for customer-managed KMS keys in Amazon SageMaker Partner AI Apps * api-change:``workspaces-thin-client``: [``botocore``] Deprecate tags field in Get API responses - from version 1.37.19 * api-change:``iotwireless``: [``botocore``] Mark EutranCid under LteNmr optional. * api-change:``pcs``: [``botocore``] ClusterName/ClusterIdentifier, ComputeNodeGroupName/ComputeNodeGroupIdentifier, and QueueName/QueueIdentifier can now have 10 characters, and a minimum of 3 characters. The TagResource API action can now return ServiceQuotaExceededException. * api-change:``qconnect``: [``botocore``] Provides the correct value for supported model ID. * api-change:``ssm``: [``botocore``] This release adds the AvailableSecurityUpdatesComplianceStatus field to patch baseline operations, as well as the AvailableSecurityUpdateCount and InstancesWithAvailableSecurityUpdates to patch state operations. Applies to Windows Server managed nodes only. - from version 1.37.18 * api-change:``bedrock``: [``botocore``] A CustomModelUnit(CMU) is an abstract view of the hardware utilization that Bedrock needs to host a a single copy of your custom imported model. Bedrock determines the number of CMUs that a model copy needs when you import the custom model. You can use CMUs to estimate the cost of Inference's. * api-change:``datazone``: [``botocore``] Add support for overriding selection of default AWS IAM Identity Center instance as part of Amazon DataZone domain APIs. * api-change:``route53-recovery-control-config``: [``botocore``] Adds dual-stack (IPv4 and IPv6) endpoint support for route53-recovery-control-config operations, opt-in dual-stack addresses for cluster endpoints, and UpdateCluster API to update the network-type of clusters between IPv4 and dual-stack. * api-change:``sagemaker``: [``botocore``] This release does the following: 1.) Adds DurationHours as a required field to the SearchTrainingPlanOfferings action in the SageMaker AI API; 2.) Adds support for G6e instance types for SageMaker AI inference optimization jobs. - from version 1.37.17 * api-change:``amplify``: [``botocore``] Added appId field to Webhook responses * api-change:``bedrock``: [``botocore``] With this release, Bedrock Evaluation will now support bring your own inference responses. * api-change:``controlcatalog``: [``botocore``] Add ExemptAssumeRoot parameter to adapt for new AWS AssumeRoot capability. * api-change:``mailmanager``: [``botocore``] Amazon SES Mail Manager. Extended rule string and boolean expressions to support analysis in condition evaluation. Extended ingress point string expression to support analysis in condition evaluation * api-change:``network-firewall``: [``botocore``] You can now use flow operations to either flush or capture traffic monitored in your firewall's flow table. - from version 1.37.16 * api-change:``bedrock``: [``botocore``] Support custom prompt routers for evaluation jobs * api-change:``ec2``: [``botocore``] Doc-only updates for EC2 for March 2025. * api-change:``lambda``: [``botocore``] Add Ruby 3.4 (ruby3.4) support to AWS Lambda. * api-change:``mediaconnect``: [``botocore``] This release adds support for NDI flow outputs in AWS Elemental MediaConnect. You can now send content from your MediaConnect transport streams directly to your NDI environment using the new NDI output type. * api-change:``neptune-graph``: [``botocore``] Update IAM Role ARN Validation to Support Role Paths * api-change:``sagemaker``: [``botocore``] Added support for g6, g6e, m6i, c6i instance types in SageMaker Processing Jobs. - from version 1.37.15 * api-change:``appsync``: [``botocore``] Providing Tagging support for DomainName in AppSync * api-change:``cleanrooms``: [``botocore``] This release adds support for PySpark jobs. Customers can now analyze data by running jobs using approved PySpark analysis templates. * api-change:``mediaconvert``: [``botocore``] This release adds support for AVC passthrough, the ability to specify PTS offset without padding, and an A/V segment matching feature. * api-change:``route53``: [``botocore``] Amazon Route 53 now supports the iso-f regions for private DNS Amazon VPCs and cloudwatch healthchecks. - from version 1.37.14 * api-change:``application-signals``: [``botocore``] This release adds support for adding, removing, and listing SLO time exclusion windows with the BatchUpdateExclusionWindows and ListServiceLevelObjectiveExclusionWindows APIs. * api-change:``geo-maps``: [``botocore``] Provide support for vector map styles in the GetStaticMap operation. * api-change:``rum``: [``botocore``] CloudWatch RUM now supports unminification of JS error stack traces. * api-change:``taxsettings``: [``botocore``] Adjust Vietnam PaymentVoucherNumber regex and minor API change. * api-change:``wafv2``: [``botocore``] AWS WAF now lets you inspect fragments of request URIs. You can specify the scope of the URI to inspect and narrow the set of URI fragments. - from version 1.37.13 * api-change:``cognito-identity``: [``botocore``] Updated API model build artifacts for identity pools * api-change:``cognito-idp``: [``botocore``] Minor description updates to API parameters * api-change:``glue``: [``botocore``] This release added AllowFullTableExternalDataAccess to glue catalog resource. * api-change:``lakeformation``: [``botocore``] This release added "condition" to LakeFormation OptIn APIs, also added WithPrivilegedAccess flag to RegisterResource and DescribeResource. - from version 1.37.12 * api-change:``acm-pca``: [``botocore``] Private Certificate Authority service now supports P521 and RSA3072 key algorithms. * api-change:``amplify``: [``botocore``] Introduced support for Skew Protection. Added enableSkewProtection field to createBranch and updateBranch API. * api-change:``codebuild``: [``botocore``] AWS CodeBuild now supports webhook filtering by organization name * api-change:``datazone``: [``botocore``] This release adds support to update projects and environments * api-change:``dynamodb``: [``botocore``] Generate account endpoints for DynamoDB requests using ARN-sourced account ID when available * api-change:``ec2``: [``botocore``] This release changes the CreateLaunchTemplate, CreateLaunchTemplateVersion, ModifyLaunchTemplate CLI and SDKs such that if you do not specify a client token, a randomly generated token is used for the request to ensure idempotency. * api-change:``ivs-realtime``: [``botocore``] IVS Real-Time now offers customers the ability to adjust the participant & composition recording segment duration * api-change:``logs``: [``botocore``] Updated CreateLogAnomalyDetector to accept only kms key arn * api-change:``mediapackagev2``: [``botocore``] This release adds the ResetChannelState and ResetOriginEndpointState operation to reset MediaPackage V2 channel and origin endpoint. This release also adds a new field, UrlEncodeChildManifest, for HLS/LL-HLS to allow URL-encoding child manifest query string based on the requirements of AWS SigV4. * api-change:``s3control``: [``botocore``] Updating GetDataAccess response for S3 Access Grants to include the matched Grantee for the requested prefix - Update BuildRequires and Requires from setup.py - Update to 1.37.11 * api-change:``ec2``: [``botocore``] This release adds the GroupLongName field to the response of the DescribeAvailabilityZones API. * api-change:``ecr``: [``botocore``] This release adds Amazon ECR to Amazon ECR pull through cache rules support. * api-change:``ecs``: [``botocore``] This is a documentation only update for Amazon ECS to address various tickets. * api-change:``inspector2``: [``botocore``] Adding componentArn to network reachability details * api-change:``medialive``: [``botocore``] Add an enum option DISABLED for Output Locking Mode under Global Configuration. - from version 1.37.10 * api-change:``bedrock-agent``: [``botocore``] Add support for computer use tools * api-change:``bedrock-agent-runtime``: [``botocore``] Add support for computer use tools * api-change:``ce``: [``botocore``] Releasing minor partition endpoint updates. * api-change:``connect``: [``botocore``] Add support for contact transfers in external voice systems. * api-change:``medialive``: [``botocore``] Adds defaultFontSize and defaultLineHeight as options in the EbuTtDDestinationSettings within the caption descriptions for an output stream. * api-change:``pca-connector-ad``: [``botocore``] PrivateCA Connector for Active Directory now supports dual stack endpoints. This release adds the IpAddressType option to the VpcInformation on a Connector which determines whether the endpoint supports IPv4 only or IPv4 and IPv6 traffic. * api-change:``securityhub``: [``botocore``] This release adds new StandardsControlsUpdatable field to the StandardsSubscription resource * api-change:``timestream-influxdb``: [``botocore``] This release updates the default value of pprof-disabled from false to true. - from version 1.37.9 * api-change:``bedrock-agent``: [``botocore``] Introduces support for Neptune Analytics as a vector data store and adds Context Enrichment Configurations, enabling use cases such as GraphRAG. * api-change:``bedrock-agent-runtime``: [``botocore``] Support Multi Agent Collaboration within Inline Agents * api-change:``cloudfront``: [``botocore``] Documentation updates for Amazon CloudFront. * api-change:``ec2``: [``botocore``] Add serviceManaged field to DescribeAddresses API response. * api-change:``elbv2``: [``botocore``] This release adds support for assigning IP addresses to Application Load Balancers from VPC IP Address Manager pools. * api-change:``neptune-graph``: [``botocore``] Several small updates to resolve customer requests. - from version 1.37.8 * api-change:``bedrock``: [``botocore``] This releases adds support for Custom Prompt Router * api-change:``cloudtrail``: [``botocore``] Doc-only update for CloudTrail. * api-change:``ivs-realtime``: [``botocore``] IVS Real-Time now offers customers the ability to merge fragmented recordings in the event of a participant disconnect. * api-change:``networkflowmonitor``: [``botocore``] This release contains 2 changes. 1: DeleteScope/GetScope/UpdateScope operations now return 404 instead of 500 when the resource does not exist. 2: Expected string format for clientToken fields of CreateMonitorInput/CreateScopeInput/UpdateMonitorInput have been updated to be an UUID based string. * api-change:``redshift-data``: [``botocore``] This release adds support for ListStatements API to filter statements by ClusterIdentifier, WorkgroupName, and Database. * api-change:``wafv2``: [``botocore``] You can now perform an exact match or rate limit aggregation against the web request's JA4 fingerprint. * api-change:``workspaces``: [``botocore``] Added a new ModifyEndpointEncryptionMode API for managing endpoint encryption settings. - from version 1.37.7 * api-change:``bedrock-runtime``: [``botocore``] This releases adds support for Custom Prompt Router ARN * api-change:``datasync``: [``botocore``] AWS DataSync now supports modifying ServerHostname while updating locations SMB, NFS, and ObjectStorage. * api-change:``gameliftstreams``: [``botocore``] New Service: Amazon GameLift Streams delivers low-latency game streaming from AWS global infrastructure to virtually any device with a browser at up to 1080p resolution and 60 fps. * api-change:``iotfleetwise``: [``botocore``] This release adds floating point support for CAN/OBD signals and adds support for signed OBD signals. * api-change:``workspaces``: [``botocore``] Added DeviceTypeWorkSpacesThinClient type to allow users to access their WorkSpaces through a WorkSpaces Thin Client. - from version 1.37.6 * api-change:``elasticache``: [``botocore``] Doc only update, listing 'valkey7' and 'valkey8' as engine options for parameter groups. * api-change:``iot-managed-integrations``: [``botocore``] Adding managed integrations APIs for IoT Device Management to setup and control devices across different manufacturers and connectivity protocols. APIs include managedthing operations, credential and provisioning profile management, notification configuration, and OTA update. * api-change:``iotsitewise``: [``botocore``] AWS IoT SiteWise now supports MQTT-enabled, V3 gateways. Configure data destinations for real-time ingestion into AWS IoT SiteWise or buffered ingestion using Amazon S3 storage. You can also use path filters for precise data collection from specific MQTT topics. * api-change:``rds``: [``botocore``] Note support for Database Insights for Amazon RDS. - from version 1.37.5 * api-change:``cognito-idp``: [``botocore``] Added the capacity to return available challenges in admin authentication and to set version 3 of the pre token generation event for M2M ATC. * api-change:``ec2``: [``botocore``] Update the DescribeVpcs response * api-change:``qbusiness``: [``botocore``] Adds support for the ingestion of audio and video files by Q Business, which can be configured with the mediaExtractionConfiguration parameter. * api-change:``rum``: [``botocore``] Add support for PutResourcePolicy, GetResourcePolicy and DeleteResourcePolicy to support resource based policies for AWS CloudWatch RUM * api-change:``sagemaker``: [``botocore``] Add DomainId to CreateDomainResponse * api-change:``transcribe``: [``botocore``] Updating documentation for post call analytics job queueing. * enhancement:configuration: [``botocore``] Add support for disabling host prefix injection via the ``AWS_DISABLE_HOST_PREFIX_INJECTION`` environment variable or the ``disable_host_prefix_injection`` parameter in the shared aws configuration file. - from version 1.37.4 * api-change:``bedrock-agent``: [``botocore``] This release lets Amazon Bedrock Flows support newer models by increasing the maximum length of output in a prompt configuration. This release also increases the maximum number of prompt variables to 20 and the maximum number of node inputs to 20. * api-change:``bedrock-data-automation``: [``botocore``] Renamed and added new StandardConfiguration enums. Added support to update EncryptionConfiguration in UpdateBlueprint and UpdateDataAutomation APIs. Changed HttpStatus code for DeleteBlueprint and DeleteDataAutomationProject APIs to 200 from 204. Added APIs to support tagging. * api-change:``bedrock-data-automation-runtime``: [``botocore``] Added a mandatory parameter DataAutomationProfileArn to support for cross region inference for InvokeDataAutomationAsync API. Renamed DataAutomationArn to DataAutomationProjectArn. Added APIs to support tagging. * api-change:``dms``: [``botocore``] Add skipped status to the Result Statistics of an Assessment Run * api-change:``eks``: [``botocore``] Adding licenses to EKS Anywhere Subscription operations response. * api-change:``mediaconvert``: [``botocore``] The AWS MediaConvert Probe API allows you to analyze media files and retrieve detailed metadata about their content, format, and structure. * api-change:``pricing``: [``botocore``] Update GetProducts and DescribeServices API request input validations. * api-change:``ssm``: [``botocore``] Systems Manager doc-only updates for Feb. 2025. * enhancement:useragent: [``botocore``] Update user agent string to include client feature use. - from version 1.37.3 * api-change:``bedrock-agent-runtime``: [``botocore``] Introduces Sessions (preview) to enable stateful conversations in GenAI applications. * api-change:``emr``: [``botocore``] Definition update for EbsConfiguration. * api-change:``qbusiness``: [``botocore``] This release supports deleting attachments from conversations. * api-change:``redshift-serverless``: [``botocore``] Add track support for Redshift Serverless workgroup. * api-change:``sagemaker``: [``botocore``] SageMaker HubService is introducing support for creating Training Jobs in Curated Hub (Private Hub). Additionally, it is introducing two new APIs: UpdateHubContent and UpdateHubContentReference. * api-change:``storagegateway``: [``botocore``] This release adds support to invoke a process that cleans the specified file share's cache of file entries that are failing upload to Amazon S3. - from version 1.37.2 * api-change:``application-signals``: [``botocore``] This release adds API support for reading Service Level Objectives and Services from monitoring accounts, from SLO and Service-scoped operations, including ListServices and ListServiceLevelObjectives. * api-change:``batch``: [``botocore``] AWS Batch: Resource Aware Scheduling feature support * api-change:``chime``: [``botocore``] Removes the Amazon Chime SDK APIs from the "chime" namespace. Amazon Chime SDK APIs continue to be available in the AWS SDK via the dedicated Amazon Chime SDK namespaces: chime-sdk-identity, chime-sdk-mediapipelines, chime-sdk-meetings, chime-sdk-messaging, and chime-sdk-voice. * api-change:``cloudfront``: [``botocore``] Documentation update for VPC origin config. * api-change:``ec2``: [``botocore``] Amazon EC2 Fleet customers can now override the Block Device Mapping specified in the Launch Template when creating a new Fleet request, saving the effort of creating and associating new Launch Templates to customize the Block Device Mapping. * api-change:``iotfleetwise``: [``botocore``] This release adds an optional listResponseScope request parameter in certain list API requests to limit the response to metadata only. * api-change:``oam``: [``botocore``] This release adds support for sharing AWS::ApplicationSignals::Service and AWS::ApplicationSignals::ServiceLevelObjective resources. * api-change:``sagemaker``: [``botocore``] AWS SageMaker InferenceComponents now support rolling update deployments for Inference Components. * enhancement:``Protocol``: [``botocore``] Adds support for the smithy-rpc-v2-cbor protocol. If a service supports smithy-rpc-v2-cbor, this protocol will automatically be used. For more information, see https://smithy.io/2.0/additional-specs/protocols/smithy-rpc-v2.html - from version 1.37.1 * api-change:``codebuild``: [``botocore``] Adding "reportArns" field in output of BatchGetBuildBatches API. "reportArns" is an array that contains the ARNs of reports created by merging reports from builds associated with the batch build. * api-change:``devicefarm``: [``botocore``] Add an optional configuration to the ScheduleRun and CreateRemoteAccessSession API to set a device level http/s proxy. * api-change:``ec2``: [``botocore``] Adds support for time-based EBS-backed AMI copy operations. Time-based copy ensures that EBS-backed AMIs are copied within and across Regions in a specified timeframe. * api-change:``iot``: [``botocore``] AWS IoT - AWS IoT Device Defender adds support for a new Device Defender Audit Check that monitors device certificate age and custom threshold configurations for both the new device certificate age check and existing device certificate expiry check. * api-change:``taxsettings``: [``botocore``] PutTaxRegistration API changes for Egypt, Greece, Vietnam countries - from version 1.37.0 * api-change:``bedrock-agent``: [``botocore``] This release improves support for newer models in Amazon Bedrock Flows. * api-change:``bedrock-agent-runtime``: [``botocore``] Adding support for ReasoningContent fields in Pre-Processing, Post-Processing and Orchestration Trace outputs. * api-change:``bedrock-runtime``: [``botocore``] This release adds Reasoning Content support to Converse and ConverseStream APIs * api-change:``elasticache``: [``botocore``] Documentation update, adding clarity and rephrasing. * api-change:``elastic-inference``: [``botocore``] The elastic-inference client has been removed following the deprecation of the service. * feature:Endpoints: [``botocore``] Generate and use AWS-account-based endpoints for compatible services when the account ID is available. At launch, DynamoDB is the first and only compatible service. The new endpoint URL pattern will be ``https://<account-id>.ddb.<region>.amazonaws.com``. Additional services may be added in the future. See the documentation for details: https://docs.aws.amazon.com/sdkref/latest/guide/feature-account-endpoints.html - from version 1.36.26 * api-change:``appstream``: [``botocore``] Added support for Certificate-Based Authentication on AppStream 2.0 multi-session fleets. * api-change:``bedrock-agent``: [``botocore``] Introduce a new parameter which represents the user-agent header value used by the Bedrock Knowledge Base Web Connector. - from version 1.36.25 * api-change:``codebuild``: [``botocore``] Add webhook status and status message to AWS CodeBuild webhooks * api-change:``guardduty``: [``botocore``] Reduce the minimum number of required attack sequence signals from 2 to 1 * api-change:``license-manager-user-subscriptions``: [``botocore``] Updates entity to include Microsoft RDS SAL as a valid type of user subscription. * api-change:``rds``: [``botocore``] CloudWatch Database Insights now supports Amazon RDS. * api-change:``sagemaker``: [``botocore``] Added new capability in the UpdateCluster operation to remove instance groups from your SageMaker HyperPod cluster. * api-change:``workspaces-web``: [``botocore``] Add support for toolbar configuration under user settings. - from version 1.36.24 * api-change:``codepipeline``: [``botocore``] Add environment variables to codepipeline action declaration. * api-change:``ecs``: [``botocore``] This is a documentation only release for Amazon ECS that supports the CPU task limit increase. * api-change:``lightsail``: [``botocore``] Documentation updates for Amazon Lightsail. * api-change:``location``: [``botocore``] Adds support for larger property maps for tracking and geofence positions changes. It increases the maximum number of items from 3 to 4, and the maximum value length from 40 to 150. * api-change:``mailmanager``: [``botocore``] This release adds additional metadata fields in Mail Manager archive searches to show email source and details about emails that were archived when being sent with SES. * api-change:``network-firewall``: [``botocore``] This release introduces Network Firewall's Automated Domain List feature. New APIs include UpdateFirewallAnalysisSettings, StartAnalysisReport, GetAnalysisReportResults, and ListAnalysisReports. These allow customers to enable analysis on firewalls to identify and report frequently accessed domain. * api-change:``sagemaker``: [``botocore``] Adds r8g instance type support to SageMaker Realtime Endpoints * api-change:``sesv2``: [``botocore``] This release adds the ability for outbound email sent with SES to preserve emails to a Mail Manager archive. - from version 1.36.23 * api-change:``batch``: [``botocore``] This documentation-only update corrects some typos. * api-change:``emr-containers``: [``botocore``] EMR on EKS StartJobRun Api will be supporting the configuration of log storage in AWS by using "managedLogs" under "MonitoringConfiguration". * api-change:``medialive``: [``botocore``] Adds support for creating CloudWatchAlarmTemplates for AWS Elemental MediaTailor Playback Configuration resources. - from version 1.36.22 * api-change:``amplify``: [``botocore``] Add ComputeRoleArn to CreateApp, UpdateApp, CreateBranch, and UpdateBranch, allowing caller to specify a role to be assumed by Amplify Hosting for server-side rendered applications. * api-change:``dms``: [``botocore``] Support replicationConfigArn in DMS DescribeApplicableIndividualAssessments API. * api-change:``timestream-influxdb``: [``botocore``] This release introduces APIs to manage DbClusters and adds support for read replicas * enhancement:Parsers: [``botocore``] Minor Parser updates to support the new smithy-generated protocol tests. See `boto/botocore#3247 <https://github.com/boto/botocore/pull/3247>`__ for more details. - from version 1.36.21 * api-change:``codebuild``: [``botocore``] Added test suite names to test case metadata * api-change:``connect``: [``botocore``] Release Notes: 1) Analytics API enhancements: Added new ListAnalyticsDataLakeDataSets API. 2) Onboarding API Idempotency: Adds ClientToken to instance creation and management APIs to support idempotency. * api-change:``dms``: [``botocore``] Introduces premigration assessment feature to DMS Serverless API for start-replication and describe-replications * api-change:``rds-data``: [``botocore``] Add support for Stop DB feature. * api-change:``s3``: [``botocore``] Added support for Content-Range header in HeadObject response. * api-change:``wafv2``: [``botocore``] The WAFv2 API now supports configuring data protection in webACLs. * api-change:``workspaces-thin-client``: [``botocore``] Update Environment and Device name field definitions - from version 1.36.20 * api-change:``accessanalyzer``: [``botocore``] This release introduces the getFindingsStatistics API, enabling users to retrieve aggregated finding statistics for IAM Access Analyzer's external access and unused access analysis features. Updated service API and documentation. * api-change:``acm-pca``: [``botocore``] Private Certificate Authority (PCA) documentation updates * api-change:``ecs``: [``botocore``] This is a documentation only release to support migrating Amazon ECS service ARNs to the long ARN format. * api-change:``fis``: [``botocore``] Adds auto-pagination for the following operations: ListActions, ListExperimentTemplates, ListTargetAccountConfigurations, ListExperiments, ListExperimentResolvedTargets, ListTargetResourceTypes. Reduces length constraints of prefixes for logConfiguration and experimentReportConfiguration. * api-change:``sagemaker``: [``botocore``] Adds additional values to the InferenceAmiVersion parameter in the ProductionVariant data type. * api-change:``storagegateway``: [``botocore``] This release adds support for generating cache reports on S3 File Gateways for files that fail to upload. - from version 1.36.19 * api-change:``b2bi``: [``botocore``] Allow spaces in the following fields in the Partnership resource: ISA 06 - Sender ID, ISA 08 - Receiver ID, GS 02 - Application Sender Code, GS 03 - Application Receiver Code * api-change:``bedrock-agent``: [``botocore``] This releases adds the additionalModelRequestFields field to the CreateAgent and UpdateAgent operations. Use additionalModelRequestFields to specify additional inference parameters for a model beyond the base inference parameters. * api-change:``bedrock-agent-runtime``: [``botocore``] This releases adds the additionalModelRequestFields field to the InvokeInlineAgent operation. Use additionalModelRequestFields to specify additional inference parameters for a model beyond the base inference parameters. * api-change:``codebuild``: [``botocore``] Add note for the RUNNER_BUILDKITE_BUILD buildType. * api-change:``fsx``: [``botocore``] Support for in-place Lustre version upgrades * api-change:``medialive``: [``botocore``] Adds a RequestId parameter to all MediaLive Workflow Monitor create operations. The RequestId parameter allows idempotent operations. * api-change:``opensearchserverless``: [``botocore``] Custom OpenSearchServerless Entity ID for SAML Config. * api-change:``polly``: [``botocore``] Added support for the new voice - Jasmine (en-SG). Jasmine is available as a Neural voice only. * enhancement:Protocols: [``botocore``] Added support for multiple protocols within a service based on performance priority. - from version 1.36.18 * api-change:``acm-pca``: [``botocore``] Private Certificate Authority service now supports Partitioned CRL as a revocation configuration option. * api-change:``appsync``: [``botocore``] Add support for operation level caching * api-change:``ec2``: [``botocore``] Adding support for the new fullSnapshotSizeInBytes field in the response of the EC2 EBS DescribeSnapshots API. This field represents the size of all the blocks that were written to the source volume at the time the snapshot was created. * api-change:``pi``: [``botocore``] Documentation only update for RDS Performance Insights dimensions for execution plans and locking analysis. - from version 1.36.17 * api-change:``apigatewayv2``: [``botocore``] Documentation updates for Amazon API Gateway * api-change:``cloudfront``: [``botocore``] Doc-only update that adds defaults for CloudFront VpcOriginEndpointConfig values. * api-change:``connect``: [``botocore``] Updated the CreateContact API documentation to indicate that it only applies to EMAIL contacts. * api-change:``dms``: [``botocore``] New vendors for DMS Data Providers: DB2 LUW and DB2 for z/OS - from version 1.36.16 * api-change:``ecr``: [``botocore``] Adds support to handle the new basic scanning daily quota. * api-change:``eks``: [``botocore``] Introduce versionStatus field to take place of status field in EKS DescribeClusterVersions API * api-change:``mediaconvert``: [``botocore``] This release adds support for Animated GIF output, forced chroma sample positioning metadata, and Extensible Wave Container format * api-change:``pi``: [``botocore``] Adds documentation for dimension groups and dimensions to analyze locks for Database Insights. * api-change:``transcribe``: [``botocore``] This release adds support for the Clinical Note Template Customization feature for the AWS HealthScribe APIs within Amazon Transcribe. - from version 1.36.15 * api-change:``cloudformation``: [``botocore``] We added 5 new stack refactoring APIs: CreateStackRefactor, ExecuteStackRefactor, ListStackRefactors, DescribeStackRefactor, ListStackRefactorActions. * api-change:``connectcases``: [``botocore``] This release adds the ability to conditionally require fields on a template. Check public documentation for more information. * api-change:``cost-optimization-hub``: [``botocore``] This release enables AWS Cost Optimization Hub to show cost optimization recommendations for Amazon Auto Scaling Groups, including those with single and mixed instance types. * api-change:``s3``: [``botocore``] Updated list of the valid AWS Region values for the LocationConstraint parameter for general purpose buckets. * enhancement:Eventsteam: [``botocore``] The SDK no longer validates payload size for eventstreams. This is to facilitate varying payload requirements across AWS services. - from version 1.36.14 * api-change:``rds``: [``botocore``] Documentation updates to clarify the description for the parameter AllocatedStorage for the DB cluster data type, the description for the parameter DeleteAutomatedBackups for the DeleteDBCluster API operation, and removing an outdated note for the CreateDBParameterGroup API operation. - from version 1.36.13 * api-change:``datasync``: [``botocore``] Doc-only update to provide more information on using Kerberos authentication with SMB locations. * api-change:``dms``: [``botocore``] Introduces TargetDataSettings with the TablePreparationMode option available for data migrations. * api-change:``iam``: [``botocore``] This release adds support for accepting encrypted SAML assertions. Customers can now configure their identity provider to encrypt the SAML assertions it sends to IAM. * api-change:``neptune-graph``: [``botocore``] Added argument to `list-export` to filter by graph ID * api-change:``qbusiness``: [``botocore``] Adds functionality to enable/disable a new Q Business Chat orchestration feature. If enabled, Q Business can orchestrate over datasources and plugins without the need for customers to select specific chat modes. * api-change:``sagemaker``: [``botocore``] IPv6 support for Hyperpod clusters - from version 1.36.12 * api-change:``mediatailor``: [``botocore``] Add support for CloudWatch Vended Logs which allows for delivery of customer logs to CloudWatch Logs, S3, or Firehose. - Update BuildRequires and Requires from setup.py - Update to 1.36.11 * api-change:``amp``: [``botocore``] Add support for sending metrics to cross account and CMCK AMP workspaces through RoleConfiguration on Create/Update Scraper. * api-change:``bedrock-agent-runtime``: [``botocore``] This change is to deprecate the existing citation field under RetrieveAndGenerateStream API response in lieu of GeneratedResponsePart and RetrievedReferences * api-change:``codebuild``: [``botocore``] Added support for CodeBuild self-hosted Buildkite runner builds * api-change:``geo-routes``: [``botocore``] The OptimizeWaypoints API now supports 50 waypoints per request (20 with constraints like AccessHours or AppointmentTime). It adds waypoint clustering via Clustering and ClusteringIndex for better optimization. Also, total distance validation is removed for greater flexibility. * api-change:``rds``: [``botocore``] Updates to Aurora MySQL and Aurora PostgreSQL API pages with instance log type in the create and modify DB Cluster. * api-change:``sagemaker``: [``botocore``] This release introduces a new valid value in InstanceType parameter: p5en.48xlarge, in ProductionVariant. - from version 1.36.10 * api-change:``appstream``: [``botocore``] Add support for managing admin consent requirement on selected domains for OneDrive Storage Connectors in AppStream2.0. * api-change:``bedrock-agent-runtime``: [``botocore``] Add a 'reason' field to InternalServerException * api-change:``ecr``: [``botocore``] Temporarily updating dualstack endpoint support * api-change:``ecr-public``: [``botocore``] Temporarily updating dualstack endpoint support * api-change:``mediatailor``: [``botocore``] Adds options for configuring how MediaTailor conditions ads before inserting them into the content stream. Based on the new settings, MediaTailor will either transcode ads to match the content stream as it has in the past, or it will insert ads without first transcoding them. * api-change:``qbusiness``: [``botocore``] Added APIs to manage QBusiness user subscriptions * api-change:``s3tables``: [``botocore``] You can now use the CreateTable API operation to create tables with schemas by adding an optional metadata argument. * api-change:``verifiedpermissions``: [``botocore``] Adds Cedar JSON format support for entities and context data in authorization requests * enhancement:AWSCRT: [``botocore``] Update awscrt version to 0.23.8 - from version 1.36.9 * api-change:``bcm-pricing-calculator``: [``botocore``] Added ConflictException error type in DeleteBillScenario, BatchDeleteBillScenarioCommitmentModification, BatchDeleteBillScenarioUsageModification, BatchUpdateBillScenarioUsageModification, and BatchUpdateBillScenarioCommitmentModification API operations. * api-change:``ecr``: [``botocore``] Add support for Dualstack and Dualstack-with-FIPS Endpoints * api-change:``ecr-public``: [``botocore``] Add support for Dualstack Endpoints * api-change:``mailmanager``: [``botocore``] This release includes a new feature for Amazon SES Mail Manager which allows customers to specify known addresses and domains and make use of those in traffic policies and rules actions to distinguish between known and unknown entries. * api-change:``s3``: [``botocore``] Change the type of MpuObjectSize in CompleteMultipartUploadRequest from int to long. - from version 1.36.8 * api-change:``appsync``: [``botocore``] Add stash and outErrors to EvaluateCode/EvaluateMappingTemplate response * api-change:``datasync``: [``botocore``] AWS DataSync now supports the Kerberos authentication protocol for SMB locations. * api-change:``deadline``: [``botocore``] feature: Deadline: Add support for limiting the concurrent usage of external resources, like floating licenses, using limits and the ability to constrain the maximum number of workers that work on a job * api-change:``ec2``: [``botocore``] This release changes the CreateFleet CLI and SDK's such that if you do not specify a client token, a randomly generated token is used for the request to ensure idempotency. * api-change:``firehose``: [``botocore``] For AppendOnly streams, Firehose will automatically scale to match your throughput. * api-change:``timestream-influxdb``: [``botocore``] Adds 'allocatedStorage' parameter to UpdateDbInstance API that allows increasing the database instance storage size and 'dbStorageType' parameter to UpdateDbInstance API that allows changing the storage type of the database instance - from version 1.36.7 * api-change:``bedrock-agent``: [``botocore``] Add support for the prompt caching feature for Bedrock Prompt Management * api-change:``iot``: [``botocore``] Raised the documentParameters size limit to 30 KB for AWS IoT Device Management - Jobs. * api-change:``mediaconvert``: [``botocore``] This release adds support for dynamic audio configuration and the ability to disable the deblocking filter for h265 encodes. * api-change:``s3control``: [``botocore``] Minor fix to ARN validation for Lambda functions passed to S3 Batch Operations * bugfix:Signing: [``botocore``] No longer sign transfer-encoding header for SigV4 - from version 1.36.6 * api-change:``cloudtrail``: [``botocore``] This release introduces the SearchSampleQueries API that allows users to search for CloudTrail Lake sample queries. * api-change:``eks``: [``botocore``] Adds support for UpdateStrategies in EKS Managed Node Groups. * api-change:``healthlake``: [``botocore``] Added new authorization strategy value 'SMART_ON_FHIR' for CreateFHIRDatastore API to support Smart App 2.0 * api-change:``ssm``: [``botocore``] Systems Manager doc-only update for January, 2025. * api-change:``sso-oidc``: [``botocore``] Fixed typos in the descriptions. * api-change:``transfer``: [``botocore``] Added CustomDirectories as a new directory option for storing inbound AS2 messages, MDN files and Status files. - from version 1.36.5 * api-change:``ec2``: [``botocore``] Added "future" allocation type for future dated capacity reservation - from version 1.36.4 * api-change:``bedrock-agent-runtime``: [``botocore``] Adds multi-turn input support for an Agent node in an Amazon Bedrock Flow * api-change:``glue``: [``botocore``] Docs Update for timeout changes * api-change:``medialive``: [``botocore``] AWS Elemental MediaLive adds a new feature, ID3 segment tagging, in CMAF Ingest output groups. It allows customers to insert ID3 tags into every output segment, controlled by a newly added channel schedule action Id3SegmentTagging. * api-change:``workspaces-thin-client``: [``botocore``] Rename WorkSpaces Web to WorkSpaces Secure Browser - from version 1.36.3 * api-change:``batch``: [``botocore``] Documentation-only update: clarified the description of the shareDecaySeconds parameter of the FairsharePolicy data type, clarified the description of the priority parameter of the JobQueueDetail data type. * api-change:``cognito-idp``: [``botocore``] corrects the dual-stack endpoint configuration for cognitoidp * api-change:``connect``: [``botocore``] Added DeleteContactFlowVersion API and the CAMPAIGN flow type * api-change:``emr-serverless``: [``botocore``] Increasing entryPoint in SparkSubmit to accept longer script paths. New limit is 4kb. * api-change:``iotsitewise``: [``botocore``] AWS IoT SiteWise now supports ingestion and querying of Null (all data types) and NaN (double type) values of bad or uncertain data quality. New partial error handling prevents data loss during ingestion. Enabled by default for new customers; existing customers can opt-in. * api-change:``logs``: [``botocore``] Documentation-only update to address doc errors * api-change:``quicksight``: [``botocore``] Added `DigitGroupingStyle` in ThousandsSeparator to allow grouping by `LAKH`( Indian Grouping system ) currency. Support LAKH and `CRORE` currency types in Column Formatting. * api-change:``sns``: [``botocore``] This release adds support for the topic attribute FifoThroughputScope for SNS FIFO topics. For details, see the documentation history in the Amazon Simple Notification Service Developer Guide. - Update BuildRequires and Requires from setup.py - Update to 1.36.2 * api-change:``bedrock-runtime``: [``botocore``] Allow hyphens in tool name for Converse and ConverseStream APIs * api-change:``detective``: [``botocore``] Doc only update for Detective documentation. * api-change:``ec2``: [``botocore``] Release u7i-6tb.112xlarge, u7i-8tb.112xlarge, u7inh-32tb.480xlarge, p5e.48xlarge, p5en.48xlarge, f2.12xlarge, f2.48xlarge, trn2.48xlarge instance types. * api-change:``notifications``: [``botocore``] Added support for Managed Notifications, integration with AWS Organization and added aggregation summaries for Aggregate Notifications * api-change:``sagemaker``: [``botocore``] Correction of docs for "Added support for ml.trn1.32xlarge instance type in Reserved Capacity Offering" - from version 1.36.1 * api-change:``ecs``: [``botocore``] The release addresses Amazon ECS documentation tickets. * api-change:``sagemaker``: [``botocore``] Added support for ml.trn1.32xlarge instance type in Reserved Capacity Offering - from version 1.36.0 * api-change:``apigateway``: [``botocore``] Documentation updates for Amazon API Gateway * api-change:``bedrock-agent-runtime``: [``botocore``] Now supports streaming for inline agents. * api-change:``cognito-identity``: [``botocore``] corrects the dual-stack endpoint configuration * api-change:``partnercentral-selling``: [``botocore``] Add Tagging support for ResourceSnapshotJob resources * api-change:``s3``: [``botocore``] This change enhances integrity protections for new SDK requests to S3. S3 SDKs now support the CRC64NVME checksum algorithm, full object checksums for multipart S3 objects, and new default integrity protections for S3 requests. * api-change:``security-ir``: [``botocore``] Increase minimum length of Threat Actor IP 'userAgent' to 1. * api-change:``sesv2``: [``botocore``] This release introduces a new recommendation in Virtual Deliverability Manager Advisor, which detects elevated complaint rates for customer sending identities. * api-change:``workspaces``: [``botocore``] Added GeneralPurpose.4xlarge & GeneralPurpose.8xlarge ComputeTypes. * api-change:``workspaces-thin-client``: [``botocore``] Mark type in MaintenanceWindow as required. * enhancement:AWSCRT: [``botocore``] Update awscrt version to 0.23.4 * feature:``s3``: [``botocore``] The S3 client attempts to validate response checksums for all S3 API operations that support checksums. However, if the SDK has not implemented the specified checksum algorithm then this validation is skipped. Checksum validation behavior can be configured using the ``when_supported`` and ``when_required`` options - in code using the ``response_checksum_validation`` parameter for ``botocore.config.Config``, in the shared AWS config file using ``response_checksum_validation``, or as an env variable using ``AWS_RESPONSE_CHECKSUM_VALIDATION``. * feature:``s3``: [``botocore``] Added support for the CRC64NVME checksum algorithm in the S3 client through the optional AWS CRT (``awscrt``) dependency. * feature:``s3``: [``botocore``] S3 client behavior is updated to always calculate a CRC32 checksum by default for operations that support it (such as PutObject or UploadPart), or require it (such as DeleteObjects). Checksum behavior can be configured using ``when_supported`` and ``when_required`` options - in code using the ``request_checksum_calculation`` parameter for ``botocore.config.Config``, in the shared AWS config file using ``request_checksum_calculation``, or as an env variable using ``AWS_REQUEST_CHECKSUM_CALCULATION``. Note: Botocore will no longer automatically compute and populate the Content-MD5 header. - from version 1.35.99 * api-change:``gamelift``: [``botocore``] Amazon GameLift releases a new game session placement feature: PriorityConfigurationOverride. You can now override how a game session queue prioritizes placement locations for a single StartGameSessionPlacement request. * api-change:``route53``: [``botocore``] Amazon Route 53 now supports the Mexico (Central) Region (mx-central-1) for latency records, geoproximity records, and private DNS for Amazon VPCs in that region - from version 1.35.98 * api-change:``artifact``: [``botocore``] Support resolving regional API calls to partition's leader region endpoint. * api-change:``bedrock``: [``botocore``] With this release, Bedrock Evaluation will now support latency-optimized inference for foundation models. * api-change:``ec2``: [``botocore``] Add support for DisconnectOnSessionTimeout flag in CreateClientVpnEndpoint and ModifyClientVpnEndpoint requests and DescribeClientVpnEndpoints responses * api-change:``kafkaconnect``: [``botocore``] Support updating connector configuration via UpdateConnector API. Release Operations API to monitor the status of the connector operation. * api-change:``transcribe``: [``botocore``] This update provides tagging support for Transcribe's Call Analytics Jobs and Call Analytics Categories. - from version 1.35.97 * api-change:``redshift``: [``botocore``] Additions to the PubliclyAccessible and Encrypted parameters clarifying what the defaults are. * api-change:``securitylake``: [``botocore``] Doc only update for ServiceName that fixes several customer-reported issues * api-change:``sts``: [``botocore``] Fixed typos in the descriptions. - from version 1.35.96 * api-change:``codebuild``: [``botocore``] AWS CodeBuild Now Supports BuildBatch in Reserved Capacity and Lambda * api-change:``compute-optimizer``: [``botocore``] This release expands AWS Compute Optimizer rightsizing recommendation support for Amazon EC2 Auto Scaling groups to include those with scaling policies and multiple instance types. * api-change:``fms``: [``botocore``] AWS Firewall Manager now lets you combine multiple resource tags using the logical AND operator or the logical OR operator. - from version 1.35.95 * api-change:``rds``: [``botocore``] Updates Amazon RDS documentation to clarify the RestoreDBClusterToPointInTime description. * api-change:``route53``: [``botocore``] Amazon Route 53 now supports the Asia Pacific (Thailand) Region (ap-southeast-7) for latency records, geoproximity records, and private DNS for Amazon VPCs in that region * api-change:``sagemaker``: [``botocore``] Adds support for IPv6 for SageMaker HyperPod cluster nodes. - from version 1.35.94 * api-change:``cloudhsmv2``: [``botocore``] Adds support to ModifyCluster for modifying a Cluster's Hsm Type. * api-change:``dynamodb``: [``botocore``] This release makes Amazon DynamoDB point-in-time-recovery (PITR) to be configurable. You can set PITR recovery period for each table individually to between 1 and 35 days. * api-change:``imagebuilder``: [``botocore``] This release adds support for importing images from ISO disk files. Added new ImportDiskImage API operation. - from version 1.35.93 * api-change:``iotsecuretunneling``: [``botocore``] Adds dualstack endpoint support for IoT Secure Tunneling * api-change:``supplychain``: [``botocore``] Allow vanity DNS domain when creating a new ASC instance - from version 1.35.92 * api-change:``ecs``: [``botocore``] Adding SDK reference examples for Amazon ECS operations. * api-change:``route53domains``: [``botocore``] Doc only update for Route 53 Domains that fixes several customer-reported issues * api-change:``s3``: [``botocore``] This change is only for updating the model regexp of CopySource which is not for validation but only for documentation and user guide change. - from version 1.35.91 * api-change:``appsync``: [``botocore``] Modify UpdateGraphQLAPI operation and flag authenticationType as required. * api-change:``gamelift``: [``botocore``] Amazon GameLift releases a new game session shutdown feature. Use the Amazon GameLift console or AWS CLI to terminate an in-progress game session that's entered a bad state or is no longer needed. * api-change:``mediaconnect``: [``botocore``] AWS Elemental MediaConnect now supports Content Quality Analysis for enhanced source stream monitoring. This enables you to track specific audio and video metrics in transport stream source flows, ensuring your content meets quality standards. * api-change:``mediaconvert``: [``botocore``] This release adds support for the AVC3 codec and fixes an alignment issue with Japanese vertical captions. * api-change:``organizations``: [``botocore``] Added ALL_FEATURES_MIGRATION_ORGANIZATION_SIZE_LIMIT_EXCEEDED to ConstraintViolationException for the EnableAllFeatures operation. * api-change:``sagemaker``: [``botocore``] Adding ETag information with Model Artifacts for Model Registry * api-change:``sqs``: [``botocore``] In-flight message typo fix from 20k to 120k. - from version 1.35.90 * api-change:``ecr``: [``botocore``] Restoring custom endpoint functionality for ECR * api-change:``ecr-public``: [``botocore``] Restoring custom endpoint functionality for ECR Public - from version 1.35.89 * api-change:``rds``: [``botocore``] Updates Amazon RDS documentation to correct various descriptions. - from version 1.35.88 * api-change:``bcm-pricing-calculator``: [``botocore``] Added ConflictException to DeleteBillEstimate. * api-change:``ecr``: [``botocore``] Add support for Dualstack Endpoints * api-change:``network-firewall``: [``botocore``] Dual-stack endpoints are now supported. * api-change:``securityhub``: [``botocore``] Documentation updates for AWS Security Hub - from version 1.35.87 * api-change:``ecr``: [``botocore``] Documentation update for ECR GetAccountSetting and PutAccountSetting APIs. * api-change:``ecr-public``: [``botocore``] Add support for Dualstack endpoints * api-change:``eks``: [``botocore``] This release adds support for DescribeClusterVersions API that provides important information about Kubernetes versions along with end of support dates * api-change:``glue``: [``botocore``] Add IncludeRoot parameters to GetCatalogs API to return root catalog. - from version 1.35.86 * api-change:``bedrock-agent``: [``botocore``] Support for custom user agent and max web pages crawled for web connector. Support app only credentials for SharePoint connector. Increase agents memory duration limit to 365 days. Support to specify max number of session summaries to include in agent invocation context. * api-change:``bedrock-agent-runtime``: [``botocore``] bedrock agents now supports long term memory and performance configs. Invokeflow supports performance configs. RetrieveAndGenerate performance configs * api-change:``bedrock-data-automation``: [``botocore``] Documentation update for Amazon Bedrock Data Automation * api-change:``bedrock-data-automation-runtime``: [``botocore``] Documentation update for Amazon Bedrock Data Automation Runtime * api-change:``billing``: [``botocore``] Added new API's for defining and fetching Billing Views. * api-change:``ce``: [``botocore``] Support for retrieving cost, usage, and forecast for billing view. * api-change:``connect``: [``botocore``] This release supports adding NotAttributeCondition and Range to the RoutingCriteria object. * api-change:``docdb``: [``botocore``] Support AWS Secret Manager managed password for AWS DocumentDB instance-based cluster. * api-change:``eks``: [``botocore``] This release expands the catalog of upgrade insight checks * api-change:``macie2``: [``botocore``] This release adds support for identifying S3 general purpose buckets that exceed the Amazon Macie quota for preventative control monitoring. * api-change:``outposts``: [``botocore``] Add CS8365C as a supported power connector for Outpost sites. * api-change:``sagemaker``: [``botocore``] This release adds support for c6i, m6i and r6i instance on SageMaker Hyperpod and trn1 instances in batch - from version 1.35.85 * api-change:``appstream``: [``botocore``] Added support for Rocky Linux 8 on Amazon AppStream 2.0 * api-change:``mediaconvert``: [``botocore``] This release adds support for inserting timecode tracks into MP4 container outputs. * api-change:``medialive``: [``botocore``] MediaLive is releasing ListVersions api * api-change:``qconnect``: [``botocore``] Amazon Q in Connect enables agents to ask Q for assistance in multiple languages and Q will provide answers and recommended step-by-step guides in those languages. Qs default language is English (United States) and you can switch this by setting the locale configuration on the AI Agent. * api-change:``ssm-sap``: [``botocore``] AWS Systems Manager for SAP added support for registration and discovery of distributed ABAP applications * api-change:``workspaces``: [``botocore``] Added AWS Global Accelerator (AGA) support for WorkSpaces Personal. - from version 1.35.84 * api-change:``amplify``: [``botocore``] Added WAF Configuration to Amplify Apps * api-change:``budgets``: [``botocore``] Releasing minor partition endpoint updates * api-change:``connect``: [``botocore``] This release adds support for the UpdateParticipantAuthentication API used for customer authentication within Amazon Connect chats. * api-change:``connectparticipant``: [``botocore``] This release adds support for the GetAuthenticationUrl and CancelParticipantAuthentication APIs used for customer authentication within Amazon Connect chats. There are also minor updates to the GetAttachment API. * api-change:``datasync``: [``botocore``] AWS DataSync introduces the ability to update attributes for in-cloud locations. * api-change:``iot``: [``botocore``] Release connectivity status query API which is a dedicated high throughput(TPS) API to query a specific device's most recent connectivity state and metadata. * api-change:``mwaa``: [``botocore``] Added support for Apache Airflow version 2.10.3 to MWAA. * api-change:``quicksight``: [``botocore``] Add support for PerformanceConfiguration attribute to Dataset entity. Allow PerformanceConfiguration specification in CreateDataset and UpdateDataset APIs. * api-change:``resiliencehub``: [``botocore``] AWS Resilience Hub now automatically detects already configured CloudWatch alarms and FIS experiments as part of the assessment process and returns the discovered resources in the corresponding list API responses. It also allows you to include or exclude test recommendations for an AppComponent. * api-change:``transfer``: [``botocore``] Added AS2 agreement configurations to control filename preservation and message signing enforcement. Added AS2 connector configuration to preserve content type from S3 objects. - from version 1.35.83 * api-change:``account``: [``botocore``] Update endpoint configuration. * api-change:``backup``: [``botocore``] Add Support for Backup Indexing * api-change:``backupsearch``: [``botocore``] Add support for searching backups * api-change:``batch``: [``botocore``] This feature allows AWS Batch on Amazon EKS to support configuration of Pod Annotations, overriding Namespace on which the Batch job's Pod runs on, and allows Subpath and Persistent Volume claim to be set for AWS Batch on Amazon EKS jobs. * api-change:``cleanroomsml``: [``botocore``] Add support for SQL compute configuration for StartAudienceGenerationJob API. * api-change:``cloudfront``: [``botocore``] Adds support for OriginReadTimeout and OriginKeepaliveTimeout to create CloudFront Distributions with VPC Origins. * api-change:``codepipeline``: [``botocore``] AWS CodePipeline V2 type pipelines now support Managed Compute Rule. * api-change:``ecs``: [``botocore``] Added support for enableFaultInjection task definition parameter which can be used to enable Fault Injection feature on ECS tasks. * api-change:``m2``: [``botocore``] This release adds support for AWS Mainframe Modernization(M2) Service to allow specifying network type(ipv4, dual) for the environment instances. For dual network type, m2 environment applications will serve both IPv4 and IPv6 requests, whereas for ipv4 it will serve only IPv4 requests. * api-change:``synthetics``: [``botocore``] Add support to toggle outbound IPv6 traffic on canaries connected to dualstack subnets. This behavior can be controlled via the new Ipv6AllowedForDualStack parameter of the VpcConfig input object in CreateCanary and UpdateCanary APIs. - from version 1.35.82 * api-change:``cloud9``: [``botocore``] Added information about Ubuntu 18.04 will be removed from the available imageIds for Cloud9 because Ubuntu 18.04 has ended standard support on May 31, 2023. * api-change:``dlm``: [``botocore``] This release adds support for Local Zones in Amazon Data Lifecycle Manager EBS snapshot lifecycle policies. * api-change:``ec2``: [``botocore``] This release adds support for EBS local snapshots in AWS Dedicated Local Zones, which allows you to store snapshots of EBS volumes locally in Dedicated Local Zones. * api-change:``greengrassv2``: [``botocore``] Add support for runtime in GetCoreDevice and ListCoreDevices APIs. * api-change:``medialive``: [``botocore``] AWS Elemental MediaLive adds three new features: MediaPackage v2 endpoint support for live stream delivery, KLV metadata passthrough in CMAF Ingest output groups, and Metadata Name Modifier in CMAF Ingest output groups for customizing metadata track names in output streams. * api-change:``rds``: [``botocore``] This release adds support for the "MYSQL_CACHING_SHA2_PASSWORD" enum value for RDS Proxy ClientPasswordAuthType. - from version 1.35.81 * api-change:``cloudhsmv2``: [``botocore``] Add support for Dual-Stack hsm2m.medium clusters. The customers will now be able to create hsm2m.medium clusters having both IPv4 and IPv6 connection capabilities by specifying a new param called NetworkType=DUALSTACK during cluster creation. * api-change:``ec2``: [``botocore``] This release adds GroupId to the response for DeleteSecurityGroup. * api-change:``eks``: [``botocore``] Add NodeRepairConfig in CreateNodegroupRequest and UpdateNodegroupConfigRequest * api-change:``logs``: [``botocore``] Limit PutIntegration IntegrationName and ListIntegrations IntegrationNamePrefix parameters to 50 characters * api-change:``mediaconnect``: [``botocore``] AWS Elemental MediaConnect Gateway now supports Source Specific Multicast (SSM) for ingress bridges. This enables you to specify a source IP address in addition to a multicast IP when creating or updating an ingress bridge source. * api-change:``networkmanager``: [``botocore``] There was a sentence fragment in UpdateDirectConnectGatewayAttachment that was causing customer confusion as to whether it's an incomplete sentence or if it was a typo. Removed the fragment. * api-change:``servicediscovery``: [``botocore``] AWS Cloud Map now supports service-level attributes, allowing you to associate custom metadata directly with services. These attributes can be retrieved, updated, and deleted using the new GetServiceAttributes, UpdateServiceAttributes, and DeleteServiceAttributes API calls. - from version 1.35.80 * api-change:``connect``: [``botocore``] Configure holidays and other overrides to hours of operation in advance. During contact handling, Amazon Connect automatically checks for overrides and provides customers with an appropriate flow path. After an override period passes call center automatically reverts to standard hours of operation. * api-change:``dms``: [``botocore``] Add parameters to support for kerberos authentication. Add parameter for disabling the Unicode source filter with PostgreSQL settings. Add parameter to use large integer value with Kinesis/Kafka settings. * api-change:``glue``: [``botocore``] To support customer-managed encryption in Data Quality to allow customers encrypt data with their own KMS key, we will add a DataQualityEncryption field to the SecurityConfiguration API where customers can provide their KMS keys. * api-change:``guardduty``: [``botocore``] Improved descriptions for certain APIs. * api-change:``route53domains``: [``botocore``] This release includes the following API updates: added the enumeration type RESTORE_DOMAIN to the OperationType; constrained the Price attribute to non-negative values; updated the LangCode to allow 2 or 3 alphabetical characters. - from version 1.35.79 * api-change:``artifact``: [``botocore``] Add support for listing active customer agreements for the calling AWS Account. * api-change:``cloudtrail``: [``botocore``] Doc-only updates for CloudTrail. * api-change:``cognito-idp``: [``botocore``] Updated descriptions for some API operations and parameters, corrected some errors in Cognito user pools * api-change:``controlcatalog``: [``botocore``] Minor documentation updates to the content of ImplementationDetails object part of the Control Catalog GetControl API * api-change:``emr-serverless``: [``botocore``] This release adds support for accessing system profile logs in Lake Formation-enabled jobs. * api-change:``mgh``: [``botocore``] API and documentation updates for AWS MigrationHub related to adding support for listing migration task updates and associating, disassociating and listing source resources * api-change:``sesv2``: [``botocore``] Introduces support for multi-region endpoint. * api-change:``timestream-influxdb``: [``botocore``] Adds networkType parameter to CreateDbInstance API which allows IPv6 support to the InfluxDB endpoint - from version 1.35.78 * api-change:``application-autoscaling``: [``botocore``] Doc only update for AAS Predictive Scaling policy configuration API. * api-change:``bcm-pricing-calculator``: [``botocore``] Updated condition key inference from Workload Estimate, Bill Scenario, and Bill Estimate resources. Updated documentation links. * api-change:``connect``: [``botocore``] Add support for Push Notifications for Amazon Connect chat. With Push Notifications enabled an alert could be sent to customers about new messages even when they aren't actively using the mobile application. * api-change:``finspace``: [``botocore``] Update KxCommandLineArgument value parameter regex to allow for spaces and semicolons * api-change:``ivs-realtime``: [``botocore``] IVS Real-Time now offers customers the ability to customize thumbnails recording mode and interval for both Individual Participant Recording (IPR) and Server-Side Compositions (SSC). * api-change:``sesv2``: [``botocore``] Introduces support for creating DEED (Deterministic Easy-DKIM) identities. - Update BuildRequires and Requires from setup.py - Update to 1.35.77 * api-change:``appsync``: [``botocore``] Provides description of new Amazon Bedrock runtime datasource. * api-change:``cognito-idp``: [``botocore``] Change `CustomDomainConfig` from a required to an optional parameter for the `UpdateUserPoolDomain` operation. * api-change:``ec2``: [``botocore``] This release includes a new API for modifying instance network-performance-options after launch. * api-change:``ecs``: [``botocore``] This is a documentation only update to address various tickets for Amazon ECS. * api-change:``keyspaces``: [``botocore``] Amazon Keyspaces: adding the list of IAM actions required by the UpdateKeyspace API. * api-change:``medialive``: [``botocore``] H265 outputs now support disabling the deblocking filter. * api-change:``workspaces``: [``botocore``] Added text to clarify case-sensitivity - from version 1.35.76 * api-change:``partnercentral-selling``: [``botocore``] Introducing the preview of new partner central selling APIs designed to transform how AWS partners collaborate and co-sell with multiple partners. This enables multiple partners to seamlessly engage and jointly pursue customer opportunities, fostering a new era of collaborative selling. * api-change:``qbusiness``: [``botocore``] This release removes the deprecated UserId and UserGroups fields from SearchRelevantContent api's request parameters. - from version 1.35.75 * api-change:``bedrock``: [``botocore``] Introduced two APIs ListPromptRouters and GetPromptRouter for Intelligent Prompt Router feature. Add support for Bedrock Guardrails image content filter. New Bedrock Marketplace feature enabling a wider range of bedrock compatible models with self-hosted capability. * api-change:``bedrock-agent``: [``botocore``] This release introduces the ability to generate SQL using natural language, through a new GenerateQuery API (with native integration into Knowledge Bases); ability to ingest and retrieve images through Bedrock Data Automation; and ability to create a Knowledge Base backed by Kendra GenAI Index. * api-change:``bedrock-agent-runtime``: [``botocore``] This release introduces the ability to generate SQL using natural language, through a new GenerateQuery API (with native integration into Knowledge Bases); ability to ingest and retrieve images through Bedrock Data Automation; and ability to create a Knowledge Base backed by Kendra GenAI Index. * api-change:``bedrock-data-automation``: [``botocore``] Release Bedrock Data Automation SDK * api-change:``bedrock-data-automation-runtime``: [``botocore``] Release Bedrock Data Automation Runtime SDK * api-change:``bedrock-runtime``: [``botocore``] Added support for Intelligent Prompt Router in Invoke, InvokeStream, Converse and ConverseStream. Add support for Bedrock Guardrails image content filter. New Bedrock Marketplace feature enabling a wider range of bedrock compatible models with self-hosted capability. * api-change:``kendra``: [``botocore``] This release adds GenAI Index in Amazon Kendra for Retrieval Augmented Generation (RAG) and intelligent search. With the Kendra GenAI Index, customers get high retrieval accuracy powered by the latest information retrieval technologies and semantic models. * api-change:``sagemaker``: [``botocore``] Amazon SageMaker HyperPod launched task governance to help customers maximize accelerator utilization for model development and flexible training plans to meet training timelines and budget while reducing weeks of training time. AI apps from AWS partner is now available in SageMaker. - from version 1.35.74 * api-change:``athena``: [``botocore``] Add FEDERATED type to CreateDataCatalog. This creates Athena Data Catalog, AWS Lambda connector, and AWS Glue connection. Create/DeleteDataCatalog returns DataCatalog. Add Status, ConnectionType, and Error to DataCatalog and DataCatalogSummary. Add DeleteCatalogOnly to delete Athena Catalog only. * api-change:``bedrock``: [``botocore``] Tagging support for Async Invoke resources. Added support for Distillation in CreateModelCustomizationJob API. Support for videoDataDeliveryEnabled flag in invocation logging. * api-change:``bedrock-agent``: [``botocore``] Releasing SDK for Multi-Agent Collaboration. * api-change:``bedrock-agent-runtime``: [``botocore``] Releasing SDK for multi agent collaboration * api-change:``bedrock-runtime``: [``botocore``] Added support for Async Invoke Operations Start, List and Get. Support for invocation logs with `requestMetadata` field in Converse, ConverseStream, Invoke and InvokeStream. Video content blocks in Converse/ConverseStream accept raw bytes or S3 URI. * api-change:``cloudwatch``: [``botocore``] Support for configuring AiOps investigation as alarm action * api-change:``datazone``: [``botocore``] Adds support for Connections, ProjectProfiles, and JobRuns APIs. Supports the new Lineage feature at GA. Adjusts optionality of a parameter for DataSource and SubscriptionTarget APIs which may adjust types in some clients. * api-change:``dsql``: [``botocore``] Add new API operations for Amazon Aurora DSQL. Amazon Aurora DSQL is a serverless, distributed SQL database with virtually unlimited scale, highest availability, and zero infrastructure management. * api-change:``dynamodb``: [``botocore``] This change adds support for global tables with multi-Region strong consistency (in preview). The UpdateTable API now supports a new attribute MultiRegionConsistency to set consistency when creating global tables. The DescribeTable output now optionally includes the MultiRegionConsistency attribute. * api-change:``glue``: [``botocore``] This release includes(1)Zero-ETL integration to ingest data from 3P SaaS and DynamoDB to Redshift/Redlake (2)new properties on Connections to enable reuse; new connection APIs for retrieve/preview metadata (3)support of CRUD operations for Multi-catalog (4)support of automatic statistics collections * api-change:``lakeformation``: [``botocore``] This release added two new LakeFormation Permissions (CREATE_CATALOG, SUPER_USER) and added Id field for CatalogResource. It also added new conditon and expression field. * api-change:``qapps``: [``botocore``] Add support for 11 new plugins as action cards to help automate repetitive tasks and improve productivity. * api-change:``qbusiness``: [``botocore``] Amazon Q Business now supports customization options for your web experience, 11 new Plugins, and QuickSight support. Amazon Q index allows software providers to enrich their native generative AI experiences with their customer's enterprise knowledge and user context spanning multiple applications. * api-change:``quicksight``: [``botocore``] This release includes API needed to support for Unstructured Data in Q in QuickSight Q&A (IDC). * api-change:``redshift``: [``botocore``] Adds support for Amazon Redshift RegisterNamespace and DeregisterNamespace APIs to share data to AWS Glue Data Catalog. * api-change:``redshift-serverless``: [``botocore``] Adds support for the ListManagedWorkgroups API to get an overview of existing managed workgroups. * api-change:``s3``: [``botocore``] Amazon S3 Metadata stores object metadata in read-only, fully managed Apache Iceberg metadata tables that you can query. You can create metadata table configurations for S3 general purpose buckets. * api-change:``s3tables``: [``botocore``] Amazon S3 Tables deliver the first cloud object store with built-in open table format support, and the easiest way to store tabular data at scale. - from version 1.35.73 * api-change:``bedrock-runtime``: [``botocore``] Add an API parameter that allows customers to set performance configuration for invoking a model. * api-change:``s3control``: [``botocore``] It allows customers to pass CRC64NVME as a header in S3 Batch Operations copy requests * api-change:``socialmessaging``: [``botocore``] Added support for passing role arn corresponding to the supported event destination - from version 1.35.72 * api-change:``bedrock``: [``botocore``] Add support for Knowledge Base Evaluations & LLM as a judge * api-change:``bedrock-agent``: [``botocore``] This release introduces APIs to upload documents directly into a Knowledge Base * api-change:``bedrock-agent-runtime``: [``botocore``] This release introduces a new Rerank API to leverage reranking models (with integration into Knowledge Bases); APIs to upload documents directly into Knowledge Base; RetrieveAndGenerateStream API for streaming response; Guardrails on Retrieve API; and ability to automatically generate filters * api-change:``chime-sdk-voice``: [``botocore``] This release adds supports for enterprises to integrate Amazon Connect with other voice systems. It supports directly transferring voice calls and metadata without using the public telephone network. It also supports real-time and post-call analytics. * api-change:``cleanrooms``: [``botocore``] This release allows customers and their partners to easily collaborate with data stored in Snowflake and Amazon Athena, without having to move or share their underlying data among collaborators. * api-change:``connect``: [``botocore``] Adds support for WhatsApp Business messaging, IVR call recording, enabling Contact Lens for existing on-premise contact centers and telephony platforms, and enabling telephony and IVR migration to Amazon Connect independent of their contact center agents. * api-change:``connectcampaignsv2``: [``botocore``] Amazon Connect Outbound Campaigns V2 / Features : Adds support for Event-Triggered Campaigns. * api-change:``customer-profiles``: [``botocore``] This release introduces Event Trigger APIs as part of Amazon Connect Customer Profiles service. * api-change:``ec2``: [``botocore``] Adds support for declarative policies that allow you to enforce desired configuration across an AWS organization through configuring account attributes. Adds support for Allowed AMIs that allows you to limit the use of AMIs in AWS accounts. Adds support for connectivity over non-HTTP protocols. * api-change:``ecs``: [``botocore``] This release adds support for Container Insights with Enhanced Observability for Amazon ECS. * api-change:``eks``: [``botocore``] Added support for Auto Mode Clusters, Hybrid Nodes, and specifying computeTypes in the DescribeAddonVersions API. * api-change:``events``: [``botocore``] Call private APIs by configuring Connections with VPC connectivity through PrivateLink and VPC Lattice * api-change:``fsx``: [``botocore``] FSx API changes to support the public launch of the Amazon FSx Intelligent Tiering for OpenZFS storage class. * api-change:``guardduty``: [``botocore``] Add new Multi Domain Correlation findings. * api-change:``imagebuilder``: [``botocore``] Added support for EC2 Image Builder's integration with AWS Marketplace for Marketplace components. * api-change:``invoicing``: [``botocore``] AWS Invoice Configuration allows you to receive separate AWS invoices based on your organizational needs. You can use the AWS SDKs to manage Invoice Units and programmatically fetch the information of the invoice receiver. * api-change:``logs``: [``botocore``] Adds PutIntegration, GetIntegration, ListIntegrations and DeleteIntegration APIs. Adds QueryLanguage support to StartQuery, GetQueryResults, DescribeQueries, DescribeQueryDefinitions, and PutQueryDefinition APIs. * api-change:``memorydb``: [``botocore``] Amazon MemoryDB SDK now supports all APIs for Multi-Region. Please refer to the updated Amazon MemoryDB public documentation for detailed information on API usage. * api-change:``networkflowmonitor``: [``botocore``] This release adds documentation for a new feature in Amazon CloudWatch called Network Flow Monitor. You can use Network Flow Monitor to get near real-time metrics, including retransmissions and data transferred, for your actual workloads. * api-change:``opensearch``: [``botocore``] This feature introduces support for CRUDL APIs, enabling the creation and management of Connected data sources. * api-change:``organizations``: [``botocore``] Add support for policy operations on the DECLARATIVE_POLICY_EC2 policy type. * api-change:``qbusiness``: [``botocore``] Amazon Q Business now supports capabilities to extract insights and answer questions from visual elements embedded within documents, a browser extension for Google Chrome, Mozilla Firefox, and Microsoft Edge, and attachments across conversations. * api-change:``qconnect``: [``botocore``] This release adds following capabilities: Configuring safeguards via AIGuardrails for Q in Connect inferencing, and APIs to support Q&A self-service use cases * api-change:``rds``: [``botocore``] Amazon RDS supports CloudWatch Database Insights. You can use the SDK to create, modify, and describe the DatabaseInsightsMode for your DB instances and clusters. * api-change:``s3``: [``botocore``] Amazon S3 introduces support for AWS Dedicated Local Zones * api-change:``s3control``: [``botocore``] Amazon S3 introduces support for AWS Dedicated Local Zones * api-change:``securityhub``: [``botocore``] Add new Multi Domain Correlation findings. * api-change:``security-ir``: [``botocore``] AWS Security Incident Response is a purpose-built security incident solution designed to help customers prepare for, respond to, and recover from security incidents. * api-change:``transfer``: [``botocore``] AWS Transfer Family now offers Web apps that enables simple and secure access to data stored in Amazon S3. * api-change:``vpc-lattice``: [``botocore``] Lattice APIs that allow sharing and access of VPC resources across accounts. - from version 1.35.71 * api-change:``bedrock-agent``: [``botocore``] Add support for specifying embeddingDataType, either FLOAT32 or BINARY * api-change:``config``: [``botocore``] AWS Config adds support for service-linked recorders, a new type of Config recorder managed by AWS services to record specific subsets of resource configuration data and functioning independently from customer managed AWS Config recorders. * api-change:``fsx``: [``botocore``] This release adds EFA support to increase FSx for Lustre file systems' throughput performance to a single client instance. This can be done by specifying EfaEnabled=true at the time of creation of Persistent_2 file systems. * api-change:``observabilityadmin``: [``botocore``] Amazon CloudWatch Observability Admin adds the ability to audit telemetry configuration for AWS resources in customers AWS Accounts and Organizations. The release introduces new APIs to turn on/off the new experience, which supports discovering supported AWS resources and their state of telemetry. - from version 1.35.70 * api-change:``bedrock-agent``: [``botocore``] Custom Orchestration API release for AWSBedrockAgents. * api-change:``bedrock-agent-runtime``: [``botocore``] Custom Orchestration and Streaming configurations API release for AWSBedrockAgents. * api-change:``connect``: [``botocore``] Enables access to ValueMap and ValueInteger types for SegmentAttributes and fixes deserialization bug for DescribeContactFlow in AmazonConnect Public API * api-change:``ec2``: [``botocore``] Adds support for Time-based Copy for EBS Snapshots and Cross Region PrivateLink. Time-based Copy ensures that EBS Snapshots are copied within and across AWS Regions in a specified timeframe. Cross Region PrivateLink enables customers to connect to VPC endpoint services hosted in other AWS Regions. * api-change:``qapps``: [``botocore``] Private sharing, file upload and data collection feature support for Q Apps - from version 1.35.69 * api-change:``directconnect``: [``botocore``] Update DescribeDirectConnectGatewayAssociations API to return associated core network information if a Direct Connect gateway is attached to a Cloud WAN core network. * api-change:``networkmanager``: [``botocore``] This release adds native Direct Connect integration on Cloud WAN enabling customers to directly attach their Direct Connect gateways to Cloud WAN without the need for an intermediate Transit Gateway. * api-change:``s3``: [``botocore``] Amazon Simple Storage Service / Features: Add support for ETag based conditional writes in PutObject and CompleteMultiPartUpload APIs to prevent unintended object modifications. - from version 1.35.68 * api-change:``autoscaling``: [``botocore``] Now, Amazon EC2 Auto Scaling customers can enable target tracking policies to take quicker scaling decisions, enhancing their application performance and EC2 utilization. To get started, specify target tracking to monitor a metric that is available on Amazon CloudWatch at seconds-level interval. * api-change:``bcm-pricing-calculator``: [``botocore``] Initial release of the AWS Billing and Cost Management Pricing Calculator API. * api-change:``bedrock-agent-runtime``: [``botocore``] InvokeInlineAgent API release to help invoke runtime agents without any dependency on preconfigured agents. * api-change:``ce``: [``botocore``] This release adds the Impact field(contains Contribution field) to the GetAnomalies API response under RootCause * api-change:``chatbot``: [``botocore``] Adds support for programmatic management of custom actions and aliases which can be associated with channel configurations. * api-change:``codepipeline``: [``botocore``] AWS CodePipeline V2 type pipelines now support ECRBuildAndPublish and InspectorScan actions. * api-change:``cognito-idp``: [``botocore``] Add support for users to sign up and sign in without passwords, using email and SMS OTPs and Passkeys. Add support for Passkeys based on WebAuthn. Add support for enhanced branding customization for hosted authentication pages with Amazon Cognito Managed Login. Add feature tiers with new pricing. * api-change:``connect``: [``botocore``] Amazon Connect Service Feature: Add APIs for Amazon Connect Email Channel * api-change:``elbv2``: [``botocore``] This release adds support for advertising trusted CA certificate names in associated trust stores. * api-change:``emr``: [``botocore``] Advanced Scaling in Amazon EMR Managed Scaling * api-change:``inspector2``: [``botocore``] Extend inspector2 service model to include ServiceQuotaExceededException. * api-change:``lambda``: [``botocore``] Add ProvisionedPollerConfig to Lambda event-source-mapping API. * api-change:``mailmanager``: [``botocore``] Added new "DeliverToQBusiness" rule action to MailManager RulesSet for ingesting email data into Amazon Q Business customer applications * api-change:``neptune-graph``: [``botocore``] Add 4 new APIs to support new Export features, allowing Parquet and CSV formats. Add new arguments in Import APIs to support Parquet import. Add a new query "neptune.read" to run algorithms without loading data into database * api-change:``omics``: [``botocore``] This release adds support for resource policy based cross account S3 access to sequence store read sets. * api-change:``quicksight``: [``botocore``] This release includes: Update APIs to support Image, Layer Map, font customization, and Plugin Visual. Add Identity center related information in ListNamsespace API. Update API for restrictedFolder support in topics and add API for SearchTopics, Describe/Update DashboardsQA Configration. * api-change:``sagemaker``: [``botocore``] This release adds APIs for new features for SageMaker endpoint to scale down to zero instances, native support for multi-adapter inference, and endpoint scaling improvements. * api-change:``ses``: [``botocore``] This release adds support for starting email contacts in your Amazon Connect instance as an email receiving action. * api-change:``sns``: [``botocore``] ArchivePolicy attribute added to Archive and Replay feature * api-change:``stepfunctions``: [``botocore``] Add support for variables and JSONata in TestState, GetExecutionHistory, DescribeStateMachine, and DescribeStateMachineForExecution * api-change:``workspaces``: [``botocore``] While integrating WSP-DCV rebrand, a few mentions were erroneously renamed from WSP to DCV. This release reverts those mentions back to WSP. - from version 1.35.67 * api-change:``apigateway``: [``botocore``] Added support for custom domain names for private APIs. * api-change:``application-autoscaling``: [``botocore``] Application Auto Scaling now supports Predictive Scaling to proactively increase the desired capacity ahead of predicted demand, ensuring improved availability and responsiveness for customers' applications. This feature is currently only made available for Amazon ECS Service scalable targets. * api-change:``appsync``: [``botocore``] Add support for the Amazon Bedrock Runtime. * api-change:``ce``: [``botocore``] This release introduces three new APIs that enable you to estimate the cost, coverage, and utilization impact of Savings Plans you plan to purchase. The three APIs are StartCommitmentPurchaseAnalysis, GetCommitmentPurchaseAnalysis, and ListCommitmentPurchaseAnalyses. * api-change:``cloudfront``: [``botocore``] Adds support for Origin Selection between EMPv2 origins based on media quality score. * api-change:``cloudtrail``: [``botocore``] This release introduces new APIs for creating and managing CloudTrail Lake dashboards. It also adds support for resource-based policies on CloudTrail EventDataStore and Dashboard resource. * api-change:``ec2``: [``botocore``] Adds support for requesting future-dated Capacity Reservations with a minimum commitment duration, enabling IPAM for organizational units within AWS Organizations, reserving EC2 Capacity Blocks that start in 30 minutes, and extending the end date of existing Capacity Blocks. * api-change:``elasticache``: [``botocore``] Added support to modify the engine type for existing ElastiCache Users and User Groups. Customers can now modify the engine type from redis to valkey. * api-change:``elbv2``: [``botocore``] This feature adds support for enabling zonal shift on cross-zone enabled Application Load Balancer, as well as modifying HTTP request and response headers. * api-change:``health``: [``botocore``] Adds metadata property to an AffectedEntity. * api-change:``iot``: [``botocore``] General Availability (GA) release of AWS IoT Device Management - Commands, to trigger light-weight remote actions on targeted devices * api-change:``iotfleetwise``: [``botocore``] AWS IoT FleetWise now includes campaign parameters to store and forward data, configure MQTT topic as a data destination, and collect diagnostic trouble code data. It includes APIs for network agnostic data collection using custom decoding interfaces, and monitoring the last known state of vehicles. * api-change:``iot-jobs-data``: [``botocore``] General Availability (GA) release of AWS IoT Device Management - Commands, to trigger light-weight remote actions on targeted devices * api-change:``lambda``: [``botocore``] Adds support for metrics for event source mappings for AWS Lambda * api-change:``logs``: [``botocore``] Adds "Create field indexes to improve query performance and reduce scan volume" and "Transform logs during ingestion". Updates documentation for "PutLogEvents with Entity". * api-change:``notifications``: [``botocore``] This release adds support for AWS User Notifications. You can now configure and view notifications from AWS services in a central location using the AWS SDK. * api-change:``notificationscontacts``: [``botocore``] This release adds support for AWS User Notifications Contacts. You can now configure and view email contacts for AWS User Notifications using the AWS SDK. * api-change:``resiliencehub``: [``botocore``] AWS Resilience Hub's new summary view visually represents applications' resilience through charts, enabling efficient resilience management. It provides a consolidated view of the app portfolio's resilience state and allows data export for custom stakeholder reporting. * api-change:``s3``: [``botocore``] Add support for conditional deletes for the S3 DeleteObject and DeleteObjects APIs. Add support for write offset bytes option used to append to objects with the S3 PutObject API. * api-change:``ssm``: [``botocore``] Added support for providing high-level overviews of managed nodes and previewing the potential impact of a runbook execution. * api-change:``ssm-quicksetup``: [``botocore``] Add methods that retrieve details about deployed configurations: ListConfigurations, GetConfiguration * api-change:``xray``: [``botocore``] AWS X-Ray introduces Transaction Search APIs, enabling span ingestion into CloudWatch Logs for high-scale trace data indexing. These APIs support span-level queries, trace graph generation, and metric correlation for deeper application insights. - from version 1.35.66 * api-change:``autoscaling``: [``botocore``] With this release, customers can prioritize launching instances into ODCRs using targets from ASGs or Launch Templates. Customers can express their baseline instances' CPU-performance in attribute-based Instance Requirements configuration by referencing an instance family that meets their needs. * api-change:``bedrock-agent-runtime``: [``botocore``] Releasing new Prompt Optimization to enhance your prompts for improved performance * api-change:``cloudfront``: [``botocore``] Add support for gRPC, VPC origins, and Anycast IP Lists. Allow LoggingConfig IncludeCookies to be set regardless of whether the LoggingConfig is enabled. * api-change:``compute-optimizer``: [``botocore``] This release enables AWS Compute Optimizer to analyze and generate optimization recommendations for Amazon Aurora database instances. It also enables Compute Optimizer to identify idle Amazon EC2 instances, Amazon EBS volumes, Amazon ECS services running on Fargate, and Amazon RDS databases. * api-change:``controltower``: [``botocore``] Adds support for child enabled baselines which allow you to see the enabled baseline status for individual accounts. * api-change:``cost-optimization-hub``: [``botocore``] This release adds action type "Delete" to the GetRecommendation, ListRecommendations and ListRecommendationSummaries APIs to support new EBS and ECS recommendations with action type "Delete". * api-change:``datazone``: [``botocore``] This release supports Metadata Enforcement Rule feature for Create Subscription Request action. * api-change:``discovery``: [``botocore``] Add support to import data from commercially available discovery tools without file manipulation. * api-change:``ec2``: [``botocore``] With this release, customers can express their desire to launch instances only in an ODCR or ODCR group rather than OnDemand capacity. Customers can express their baseline instances' CPU-performance in attribute-based Instance Requirements configuration by referencing an instance family. * api-change:``ecs``: [``botocore``] This release adds support for the Availability Zone rebalancing feature on Amazon ECS. * api-change:``elbv2``: [``botocore``] This release adds support for configuring Load balancer Capacity Unit reservations * api-change:``lambda``: [``botocore``] Add Node 22.x (node22.x) support to AWS Lambda * api-change:``mediaconvert``: [``botocore``] This release adds the ability to reconfigure concurrent job settings for existing queues and create queues with custom concurrent job settings. * api-change:``mediapackagev2``: [``botocore``] MediaPackage v2 now supports the Media Quality Confidence Score (MQCS) published from MediaLive. Customers can control input switching based on the MQCS and publishing HTTP Headers for the MQCS via the API. * api-change:``omics``: [``botocore``] Enabling call caching feature that allows customers to reuse previously computed results from a set of completed tasks in a new workflow run. * api-change:``rbin``: [``botocore``] This release adds support for exclusion tags for Recycle Bin, which allows you to identify resources that are to be excluded, or ignored, by a Region-level retention rule. * api-change:``rds``: [``botocore``] This release adds support for scale storage on the DB instance using a Blue/Green Deployment. * api-change:``timestream-query``: [``botocore``] This release adds support for Provisioning Timestream Compute Units (TCUs), a new feature that allows provisioning dedicated compute resources for your queries, providing predictable and cost-effective query performance. * api-change:``workspaces``: [``botocore``] Added support for Rocky Linux 8 on Amazon WorkSpaces Personal. * api-change:``workspaces-web``: [``botocore``] Added data protection settings with support for inline data redaction. - from version 1.35.65 * api-change:``b2bi``: [``botocore``] Add new X12 transactions sets and versions * api-change:``ec2``: [``botocore``] This release adds VPC Block Public Access (VPC BPA), a new declarative control which blocks resources in VPCs and subnets that you own in a Region from reaching or being reached from the internet through internet gateways and egress-only internet gateways. * api-change:``ecs``: [``botocore``] This release introduces support for configuring the version consistency feature for individual containers defined within a task definition. The configuration allows to specify whether ECS should resolve the container image tag specified in the container definition to an image digest. * api-change:``efs``: [``botocore``] Add support for the new parameters in EFS replication APIs * api-change:``glue``: [``botocore``] AWS Glue Data Catalog now enhances managed table optimizations of Apache Iceberg tables that can be accessed only from a specific Amazon Virtual Private Cloud (VPC) environment. * api-change:``keyspaces``: [``botocore``] Amazon Keyspaces Multi-Region Replication: Adds support to add new regions to multi and single-region keyspaces. * api-change:``mwaa``: [``botocore``] Amazon MWAA now supports a new environment class, mw1.micro, ideal for workloads requiring fewer resources than mw1.small. This class supports a single instance of each Airflow component: Scheduler, Worker, and Webserver. * api-change:``taxsettings``: [``botocore``] Release Tax Inheritance APIs, Tax Exemption APIs, and functionality update for some existing Tax Registration APIs * api-change:``workspaces``: [``botocore``] Releasing new ErrorCodes for Image Validation failure during CreateWorkspaceImage process - from version 1.35.64 * api-change:``appconfig``: [``botocore``] AWS AppConfig has added a new extension action point, AT_DEPLOYMENT_TICK, to support third-party monitors to trigger an automatic rollback during a deployment. * api-change:``autoscaling``: [``botocore``] Amazon EC2 Auto Scaling now supports Amazon Application Recovery Controller (ARC) zonal shift and zonal autoshift to help you quickly recover an impaired application from failures in an Availability Zone (AZ). * api-change:``cloudformation``: [``botocore``] This release adds a new API, ListHookResults, that allows retrieving CloudFormation Hooks invocation results for hooks invoked during a create change set operation or Cloud Control API operation * api-change:``connect``: [``botocore``] Adds CreateContactFlowVersion and ListContactFlowVersions APIs to create and view the versions of a contact flow. * api-change:``customer-profiles``: [``botocore``] This release introduces Segmentation APIs and new Calculated Attribute Event Filters as part of Amazon Connect Customer Profiles service. * api-change:``ec2``: [``botocore``] Adding request and response elements for managed resources. * api-change:``ecs``: [``botocore``] This release adds support for adding VPC Lattice configurations in ECS CreateService/UpdateService APIs. The configuration allows for associating VPC Lattice target groups with ECS Services. * api-change:``iotsitewise``: [``botocore``] The release introduces a generative AI Assistant in AWS IoT SiteWise. It includes: 1) InvokeAssistant API - Invoke the Assistant to get alarm summaries and ask questions. 2) Dataset APIs - Manage knowledge base configuration for the Assistant. 3) Portal APIs enhancement - Manage AI-aware dashboards. * api-change:``qconnect``: [``botocore``] This release introduces MessageTemplate as a resource in Amazon Q in Connect, along with APIs to create, read, search, update, and delete MessageTemplate resources. * api-change:``rds``: [``botocore``] Add support for the automatic pause/resume feature of Aurora Serverless v2. * api-change:``rds-data``: [``botocore``] Add support for the automatic pause/resume feature of Aurora Serverless v2. - from version 1.35.63 * api-change:``cloudwatch``: [``botocore``] Adds support for adding related Entity information to metrics ingested through PutMetricData. * api-change:``connectcampaignsv2``: [``botocore``] Added Amazon Connect Outbound Campaigns V2 SDK. * api-change:``datasync``: [``botocore``] Doc-only updates and enhancements related to creating DataSync tasks and describing task executions. * api-change:``ec2``: [``botocore``] Remove non-functional enum variants for FleetCapacityReservationUsageStrategy * api-change:``iot``: [``botocore``] This release allows AWS IoT Core users to enrich MQTT messages with propagating attributes, to associate a thing to a connection, and to enable Online Certificate Status Protocol (OCSP) stapling for TLS X.509 server certificates through private endpoints. * api-change:``outposts``: [``botocore``] You can now purchase AWS Outposts rack or server capacity for a 5-year term with one of the following payment options: All Upfront, Partial Upfront, and No Upfront. * api-change:``pinpoint-sms-voice-v2``: [``botocore``] Use rule overrides to always allow or always block messages to specific phone numbers. Use message feedback to monitor if a customer interacts with your message. * api-change:``route53resolver``: [``botocore``] Route 53 Resolver DNS Firewall Advanced Rules allows you to monitor and block suspicious DNS traffic based on anomalies detected in the queries, such as DNS tunneling and Domain Generation Algorithms (DGAs). - from version 1.35.62 * api-change:``partnercentral-selling``: [``botocore``] Announcing AWS Partner Central API for Selling: This service launch Introduces new APIs for co-selling opportunity management and related functions. Key features include notifications, a dynamic sandbox for testing, and streamlined validations. - from version 1.35.61 * api-change:``accessanalyzer``: [``botocore``] Expand analyzer configuration capabilities for unused access analyzers. Unused access analyzer configurations now support the ability to exclude accounts and resource tags from analysis providing more granular control over the scope of analysis. * api-change:``cloudcontrol``: [``botocore``] Added support for CloudFormation Hooks with Cloud Control API. The GetResourceRequestStatus API response now includes an optional HooksProgressEvent and HooksRequestToken parameter for Hooks Invocation Progress as part of resource operation with Cloud Control. * api-change:``deadline``: [``botocore``] Adds support for select GPU accelerated instance types when creating new service-managed fleets. * api-change:``iam``: [``botocore``] This release includes support for five new APIs and changes to existing APIs that give AWS Organizations customers the ability to use temporary root credentials, targeted to member accounts in the organization. * api-change:``iotwireless``: [``botocore``] New FuotaTask resource type to enable logging for your FUOTA tasks. A ParticipatingGatewaysforMulticast parameter to choose the list of gateways to receive the multicast downlink message and the transmission interval between them. Descriptor field which will be sent to devices during FUOTA transfer. * api-change:``ivs``: [``botocore``] IVS now offers customers the ability to stream multitrack video to Channels. * api-change:``license-manager-user-subscriptions``: [``botocore``] New and updated API operations to support License Included User-based Subscription of Microsoft Remote Desktop Services (RDS). * api-change:``partnercentral-selling``: [``botocore``] Announcing AWS Partner Central API for Selling: This service launch Introduces new APIs for co-selling opportunity management and related functions. Key features include notifications, a dynamic sandbox for testing, and streamlined validations. * api-change:``quicksight``: [``botocore``] This release adds APIs for Custom Permissions management in QuickSight, and APIs to support QuickSight Branding. * api-change:``redshift``: [``botocore``] Adds support for Amazon Redshift S3AccessGrants * api-change:``s3``: [``botocore``] This release updates the ListBuckets API Reference documentation in support of the new 10,000 general purpose bucket default quota on all AWS accounts. To increase your bucket quota from 10,000 to up to 1 million buckets, simply request a quota increase via Service Quotas. * api-change:``sagemaker``: [``botocore``] Add support for Neuron instance types [ trn1/trn1n/inf2 ] on SageMaker Notebook Instances Platform. * api-change:``sts``: [``botocore``] This release introduces the new API 'AssumeRoot', which returns short-term credentials that you can use to perform privileged tasks. - Update BuildRequires and Requires from setup.py - Update to 1.35.60 * api-change:``accessanalyzer``: This release adds support for policy validation and external access findings for resource control policies (RCP). IAM Access Analyzer helps you author functional and secure RCPs and awareness that a RCP may restrict external access. Updated service API, documentation, and paginators. * api-change:``application-signals``: Amazon CloudWatch Application Signals now supports creating Service Level Objectives with burn rates. Users can now create or update SLOs with burn rate configurations to meet their specific business requirements. * api-change:``b2bi``: This release adds a GenerateMapping API to allow generation of JSONata or XSLT transformer code based on input and output samples. * api-change:``billing``: Today, AWS announces the general availability of ListBillingViews API in the AWS SDKs, to enable AWS Billing Conductor (ABC) users to create proforma Cost and Usage Reports (CUR) programmatically. * api-change:``cloudtrail``: This release adds a new API GenerateQuery that generates a query from a natural language prompt about the event data in your event data store. This operation uses generative artificial intelligence (generative AI) to produce a ready-to-use SQL query from the prompt. * api-change:``dynamodb``: This release includes supports the new WarmThroughput feature for DynamoDB. You can now provide an optional WarmThroughput attribute for CreateTable or UpdateTable APIs to pre-warm your table or global secondary index. You can also use DescribeTable to see the latest WarmThroughput value. * api-change:``ec2``: This release adds the source AMI details in DescribeImages API * api-change:``internetmonitor``: Add new query type Routing_Suggestions regarding querying interface * api-change:``mediaconvert``: This release adds support for ARN inputs in the Kantar credentials secrets name field and the MSPR field to the manifests for PlayReady DRM protected outputs. * api-change:``organizations``: Add support for policy operations on the Resource Control Polices. - from version 1.35.59 * api-change:``codebuild``: AWS CodeBuild now supports non-containerized Linux and Windows builds on Reserved Capacity. * api-change:``controltower``: Added ResetEnabledControl API. * api-change:``fis``: This release adds support for generating experiment reports with the experiment report configuration * api-change:``gamelift``: Amazon GameLift releases container fleets support for general availability. Deploy Linux-based containerized game server software for hosting on Amazon GameLift. * api-change:``payment-cryptography``: Updated ListAliases API with KeyArn filter. * api-change:``rds``: Updates Amazon RDS documentation for Amazon RDS Extended Support for Amazon Aurora MySQL. - from version 1.35.58 * api-change:``cloudfront``: No API changes from previous release. This release migrated the model to Smithy keeping all features unchanged. * api-change:``inspector2``: Adds support for filePath filter. * api-change:``lambda``: Add Python 3.13 (python3.13) support to AWS Lambda * api-change:``opensearch``: Adds Support for new AssociatePackages and DissociatePackages API in Amazon OpenSearch Service that allows association and dissociation operations to be carried out on multiple packages at the same time. * api-change:``outposts``: This release updates StartCapacityTask to allow an active Outpost to be modified. It also adds a new API to list all running EC2 instances on the Outpost. - from version 1.35.57 * api-change:``batch``: This feature allows override LaunchTemplates to be specified in an AWS Batch Compute Environment. * api-change:``bedrock-agent-runtime``: This release adds trace functionality to Bedrock Prompt Flows * api-change:``chime-sdk-media-pipelines``: Added support for Media Capture Pipeline and Media Concatenation Pipeline for customer managed server side encryption. Now Media Capture Pipeline can use IAM sink role to get access to KMS key and encrypt/decrypt recorded artifacts. KMS key ID can also be supplied with encryption context. * api-change:``controlcatalog``: AWS Control Catalog GetControl public API returns additional data in output, including Implementation and Parameters * api-change:``eks``: Adds new error code `Ec2InstanceTypeDoesNotExist` for Amazon EKS managed node groups * api-change:``firehose``: Amazon Data Firehose / Features : Adds support for a new DeliveryStreamType, DatabaseAsSource. DatabaseAsSource hoses allow customers to stream CDC events from their RDS and Amazon EC2 hosted databases, running MySQL and PostgreSQL database engines, to Iceberg Table destinations. * api-change:``lambda``: This release adds support for using AWS KMS customer managed keys to encrypt AWS Lambda .zip deployment packages. * api-change:``pinpoint-sms-voice-v2``: Added the RequiresAuthenticationTimestamp field to the RegistrationVersionStatusHistory data type. * api-change:``qbusiness``: Adds S3 path option to pass group member list for PutGroup API. - from version 1.35.56 * api-change:``autoscaling``: Auto Scaling groups now support the ability to strictly balance instances across Availability Zones by configuring the AvailabilityZoneDistribution parameter. If balanced-only is configured for a group, launches will always be attempted in the under scaled Availability Zone even if it is unhealthy. * api-change:``bedrock-agent``: Add prompt support for chat template configuration and agent generative AI resource. Add support for configuring an optional guardrail in Prompt and Knowledge Base nodes in Prompt Flows. Add API to validate flow definition * api-change:``bedrock-runtime``: Add Prompt management support to Bedrock runtime APIs: Converse, ConverseStream, InvokeModel, InvokeModelWithStreamingResponse * api-change:``cleanrooms``: This release introduces support for Custom Models in AWS Clean Rooms ML. * api-change:``cleanroomsml``: This release introduces support for Custom Models in AWS Clean Rooms ML. * api-change:``quicksight``: Add Client Credentials based OAuth support for Snowflake and Starburst * api-change:``resource-explorer-2``: Add GetManagedView, ListManagedViews APIs. * api-change:``synthetics``: Add support to toggle if a canary will automatically delete provisioned canary resources such as Lambda functions and layers when a canary is deleted. This behavior can be controlled via the new ProvisionedResourceCleanup property exposed in the CreateCanary and UpdateCanary APIs. - from version 1.35.55 * api-change:``codebuild``: AWS CodeBuild now adds additional compute types for reserved capacity fleet. * api-change:``guardduty``: GuardDuty RDS Protection expands support for Amazon Aurora PostgreSQL Limitless Databases. * api-change:``lakeformation``: API changes for new named tag expressions feature. * api-change:``qapps``: Introduces category apis in AmazonQApps. Web experience users use Categories to tag and filter library items. * api-change:``s3control``: Fix ListStorageLensConfigurations and ListStorageLensGroups deserialization for Smithy SDKs. * api-change:``verifiedpermissions``: Adding BatchGetPolicy API which supports the retrieval of multiple policies across multiple policy stores within a single request. * enhancement:protocol: Added support for header enabling service migration off the AWS Query protocol. - from version 1.35.54 * api-change:``bedrock-agent``: Amazon Bedrock Knowledge Bases now supports using application inference profiles to increase throughput and improve resilience. * api-change:``docdb-elastic``: Amazon DocumentDB Elastic Clusters adds support for pending maintenance actions feature with APIs GetPendingMaintenanceAction, ListPendingMaintenanceActions and ApplyPendingMaintenanceAction * api-change:``logs``: This release introduces an improvement in PutLogEvents * api-change:``taxsettings``: Add support for supplemental tax registrations via these new APIs: PutSupplementalTaxRegistration, ListSupplementalTaxRegistrations, and DeleteSupplementalTaxRegistration. - from version 1.35.53 * api-change:``amp``: Added support for UpdateScraper API, to enable updating collector configuration in-place * api-change:``autoscaling``: Adds bake time for Auto Scaling group Instance Refresh * api-change:``batch``: Add `podNamespace` to `EksAttemptDetail` and `containerID` to `EksAttemptContainerDetail`. * api-change:``elbv2``: Add UDP support for AWS PrivateLink and dual-stack Network Load Balancers * api-change:``glue``: Add schedule support for AWS Glue column statistics * api-change:``sagemaker``: SageMaker HyperPod adds scale-down at instance level via BatchDeleteClusterNodes API and group level via UpdateCluster API. SageMaker Training exposes secondary job status in TrainingJobSummary from ListTrainingJobs API. SageMaker now supports G6, G6e, P5e instances for HyperPod and Training. * api-change:``sesv2``: This release enables customers to provide the email template content in the SESv2 SendEmail and SendBulkEmail APIs instead of the name or the ARN of a stored email template. - from version 1.35.52 * api-change:``appsync``: This release adds support for AppSync Event APIs. * api-change:``connect``: Updated the public documentation for the UserIdentityInfo object to accurately reflect the character limits for the FirstName and LastName fields, which were previously listed as 1-100 characters. * api-change:``datasync``: AWS DataSync now supports Enhanced mode tasks. This task mode supports transfer of virtually unlimited numbers of objects with enhanced metrics, more detailed logs, and higher performance than Basic mode. This mode currently supports transfers between Amazon S3 locations. * api-change:``ec2``: This release adds two new capabilities to VPC Security Groups: Security Group VPC Associations and Shared Security Groups. * api-change:``ecs``: This release supports service deployments and service revisions which provide a comprehensive view of your Amazon ECS service history. * api-change:``geo-maps``: Release of Amazon Location Maps API. Maps enables you to build digital maps that showcase your locations, visualize your data, and unlock insights to drive your business * api-change:``geo-places``: Release of Amazon Location Places API. Places enables you to quickly search, display, and filter places, businesses, and locations based on proximity, category, and name * api-change:``geo-routes``: Release of Amazon Location Routes API. Routes enables you to plan efficient routes and streamline deliveries by leveraging real-time traffic, vehicle restrictions, and turn-by-turn directions. * api-change:``keyspaces``: Adds support for interacting with user-defined types (UDTs) through the following new operations: Create-Type, Delete-Type, List-Types, Get-Type. * api-change:``network-firewall``: AWS Network Firewall now supports configuring TCP idle timeout * api-change:``opensearch``: This release introduces the new OpenSearch user interface (Dashboards), a new web-based application that can be associated with multiple data sources across OpenSearch managed clusters, serverless collections, and Amazon S3, so that users can gain a comprehensive insights in an unified interface. * api-change:``opensearchserverless``: Neo Integration via IAM Identity Center (IdC) * api-change:``redshift``: This release launches S3 event integrations to create and manage integrations from an Amazon S3 source into an Amazon Redshift database. * api-change:``redshift-serverless``: Adds and updates API members for the Redshift Serverless AI-driven scaling and optimization feature using the price-performance target setting. * api-change:``route53``: This release adds support for TLSA, SSHFP, SVCB, and HTTPS record types. * api-change:``sagemaker``: Added support for Model Registry Staging construct. Users can define series of stages that models can progress through for model workflows and lifecycle. This simplifies tracking and managing models as they transition through development, testing, and production stages. * api-change:``workmail``: This release adds support for Multi-Factor Authentication (MFA) and Personal Access Tokens through integration with AWS IAM Identity Center. - from version 1.35.51 * api-change:``bedrock``: Update Application Inference Profile * api-change:``bedrock-runtime``: Update Application Inference Profile * api-change:``cleanrooms``: This release adds the option for customers to configure analytics engine when creating a collaboration, and introduces the new SPARK analytics engine type in addition to maintaining the legacy CLEAN_ROOMS_SQL engine type. * api-change:``iotfleetwise``: Updated BatchCreateVehicle and BatchUpdateVehicle APIs: LimitExceededException has been added and the maximum number of vehicles in a batch has been set to 10 explicitly * api-change:``logs``: Added support for new optional baseline parameter in the UpdateAnomaly API. For UpdateAnomaly requests with baseline set to True, The anomaly behavior is then treated as baseline behavior. However, more severe occurrences of this behavior will still be reported as anomalies. * api-change:``redshift-data``: Adding a new API GetStatementResultV2 that supports CSV formatted results from ExecuteStatement and BatchExecuteStatement calls. * api-change:``sagemaker``: Adding `notebook-al2-v3` as allowed value to SageMaker NotebookInstance PlatformIdentifier attribute - from version 1.35.50 * api-change:``mediapackagev2``: MediaPackage V2 Live to VOD Harvester is a MediaPackage V2 feature, which is used to export content from an origin endpoint to a S3 bucket. * api-change:``opensearch``: Adds support for provisioning dedicated coordinator nodes. Coordinator nodes can be specified using the new NodeOptions parameter in ClusterConfig. * api-change:``rds``: This release adds support for Enhanced Monitoring and Performance Insights when restoring Aurora Limitless Database DB clusters. It also adds support for the os-upgrade pending maintenance action. * api-change:``storagegateway``: Documentation update: Amazon FSx File Gateway will no longer be available to new customers. - from version 1.35.49 * api-change:``bedrock-agent``: Add support of new model types for Bedrock Agents, Adding inference profile support for Flows and Prompt Management, Adding new field to configure additional inference configurations for Flows and Prompt Management * api-change:``codebuild``: AWS CodeBuild now supports automatically retrying failed builds * api-change:``lambda``: Add TagsError field in Lambda GetFunctionResponse. The TagsError field contains details related to errors retrieving tags. * api-change:``logs``: Adding inferred token name for dynamic tokens in Anomalies. * api-change:``supplychain``: API doc updates, and also support showing error message on a failed instance - from version 1.35.48 * api-change:``appconfig``: This release improves deployment safety by granting customers the ability to REVERT completed deployments, to the last known good state.In the StopDeployment API revert case the status of a COMPLETE deployment will be REVERTED. AppConfig only allows a revert within 72 hours of deployment completion. * api-change:``ec2``: This release includes a new API to describe some details of the Amazon Machine Images (AMIs) that were used to launch EC2 instances, even if those AMIs are no longer available for use. * api-change:``ecs``: This release adds support for EBS volumes attached to Amazon ECS Windows tasks running on EC2 instances. * api-change:``nimble``: The nimble client has been removed following the deprecation of the service. * api-change:``pcs``: Documentation update: added the default value of the Slurm configuration parameter scaleDownIdleTimeInSeconds to its description. * api-change:``qbusiness``: Add a new field in chat response. This field can be used to support nested schemas in array fields - Update BuildRequires and Requires from setup.py - Update to 1.35.47 * api-change:``bedrock``: [``botocore``] Doc updates for supporting converse * api-change:``connect``: [``botocore``] Amazon Connect Service Feature: Add support to start screen sharing for a web calling contact. * api-change:``ec2``: [``botocore``] Amazon EC2 X8g, C8g and M8g instances are powered by AWS Graviton4 processors. X8g provide the lowest cost per GiB of memory among Graviton4 instances. C8g provide the best price performance for compute-intensive workloads. M8g provide the best price performance in for general purpose workloads. * api-change:``mwaa``: [``botocore``] Introducing InvokeRestApi which allows users to invoke the Apache Airflow REST API on the webserver with the specified inputs. * api-change:``payment-cryptography``: [``botocore``] Add support for ECC P-256 and P-384 Keys. * api-change:``payment-cryptography-data``: [``botocore``] Add ECDH support on PIN operations. * bugfix:``s3``: [``botocore``] Fix S3 200 Error handling to address bugs introduced in payload operations. - from version 1.35.46 * api-change:``bedrock-runtime``: [``botocore``] Updating invoke regex to support imported models for converse API * api-change:``imagebuilder``: [``botocore``] Add macOS platform and instance placement options * api-change:``m2``: [``botocore``] Add AuthSecretsManagerArn optional parameter to batch job APIs, expand batch parameter limits, and introduce clientToken constraints. * api-change:``rds``: [``botocore``] Global clusters now expose the Endpoint attribute as one of its fields. It is a Read/Write endpoint for the global cluster which resolves to the Global Cluster writer instance. * api-change:``repostspace``: [``botocore``] Adds the BatchAddRole and BatchRemoveRole APIs. * api-change:``timestream-query``: [``botocore``] This release adds support for Query Insights, a feature that provides details of query execution, enabling users to identify areas for improvement to optimize their queries, resulting in improved query performance and lower query costs. * bugfix:``s3``: [``botocore``] Fixed SelectObjectContent regression from `#3284 <https://github.com/boto/botocore/issues/3284>`__. - from version 1.35.45 * api-change:``application-insights``: [``botocore``] This feature enables customers to specify SNS Topic ARN. CloudWatch Application Insights (CWAI) will utilize this ARN to send problem notifications. * api-change:``autoscaling``: [``botocore``] Adds support for removing the PlacementGroup setting on an Auto Scaling Group through the UpdateAutoScalingGroup API. * api-change:``bedrock-agent-runtime``: [``botocore``] Knowledge Bases for Amazon Bedrock now supports custom prompts and model parameters in the orchestrationConfiguration of the RetrieveAndGenerate API. The modelArn field accepts Custom Models and Imported Models ARNs. * api-change:``dms``: [``botocore``] Added support for tagging in StartReplicationTaskAssessmentRun API and introduced IsLatestTaskAssessmentRun and ResultStatistic fields for enhanced tracking and assessment result statistics. * api-change:``ec2``: [``botocore``] Amazon EC2 now allows you to create network interfaces with just the EFA driver and no ENA driver by specifying the network interface type as efa-only. * api-change:``eks``: [``botocore``] This release adds support for Amazon Application Recovery Controller (ARC) zonal shift and zonal autoshift with EKS that enhances the resiliency of multi-AZ cluster environments * api-change:``fms``: [``botocore``] Update AWS WAF policy - add the option to retrofit existing web ACLs instead of creating all new web ACLs. * api-change:``payment-cryptography-data``: [``botocore``] Adding new API to generate authenticated scripts for EMV pin change use cases. * api-change:``wafv2``: [``botocore``] Add a property to WebACL to indicate whether it's been retrofitted by Firewall Manager. * enhancement:``s3``: [``botocore``] Handle HTTP 200 responses with error information for all supported s3 operations. - from version 1.35.44 * api-change:``athena``: [``botocore``] Removing FEDERATED from Create/List/Delete/GetDataCatalog API * api-change:``bedrock``: [``botocore``] Adding converse support to CMI API's * api-change:``bedrock-runtime``: [``botocore``] Added converse support for custom imported models * api-change:``datazone``: [``botocore``] Adding the following project member designations: PROJECT_CATALOG_VIEWER, PROJECT_CATALOG_CONSUMER and PROJECT_CATALOG_STEWARD in the CreateProjectMembership API and PROJECT_CATALOG_STEWARD designation in the AddPolicyGrant API. * api-change:``ec2``: [``botocore``] RequestSpotInstances and RequestSpotFleet feature release. - from version 1.35.43 * api-change:``bedrock-agent``: [``botocore``] Removing support for topK property in PromptModelInferenceConfiguration object, Making PromptTemplateConfiguration property as required, Limiting the maximum PromptVariant to 1 * api-change:``dataexchange``: [``botocore``] This release adds Data Grant support, through which customers can programmatically create data grants to share with other AWS accounts and accept data grants from other AWS accounts. * api-change:``ecs``: [``botocore``] This is an Amazon ECS documentation only update to address tickets. * api-change:``pinpoint-sms-voice-v2``: [``botocore``] Added the registrations status of REQUIRES_AUTHENTICATION * api-change:``pipes``: [``botocore``] This release adds validation to require specifying a SecurityGroup and Subnets in the Vpc object under PipesSourceSelfManagedKafkaParameters. It also adds support for iso-e, iso-f, and other non-commercial partitions in ARN parameters. * api-change:``quicksight``: [``botocore``] Add StartDashboardSnapshotJobSchedule API. RestoreAnalysis now supports restoring analysis to folders. * api-change:``rds``: [``botocore``] Updates Amazon RDS documentation for TAZ IAM support * api-change:``workspaces``: [``botocore``] Updated the DomainName pattern for Active Directory - from version 1.35.42 * api-change:``s3``: [``botocore``] Add support for the new optional bucket-region and prefix query parameters in the ListBuckets API. For ListBuckets requests that express pagination, Amazon S3 will now return both the bucket names and associated AWS regions in the response. * bugfix:Config: [``botocore``] Fixed sigv4a_signing_region_set resolution when set in environment or config file. - from version 1.35.41 * api-change:``amplify``: [``botocore``] Added sourceUrlType field to StartDeployment request * api-change:``cloudformation``: [``botocore``] Documentation update for AWS CloudFormation API Reference. * api-change:``codebuild``: [``botocore``] Enable proxy for reserved capacity fleet. * api-change:``ivs``: [``botocore``] On a channel that you own, you can now replace an ongoing stream with a new stream by streaming up with the priority parameter appended to the stream key. * api-change:``qbusiness``: [``botocore``] Amazon Q Business now supports embedding the Amazon Q Business web experience on third-party websites. * api-change:``redshift``: [``botocore``] This release launches the CreateIntegration, DeleteIntegration, DescribeIntegrations and ModifyIntegration APIs to create and manage Amazon Redshift Zero-ETL Integrations. * api-change:``resiliencehub``: [``botocore``] AWS Resilience Hub now integrates with the myApplications platform, enabling customers to easily assess the resilience of applications defined in myApplications. The new Resiliency widget provides visibility into application resilience and actionable recommendations for improvement. * api-change:``sesv2``: [``botocore``] This release adds support for email maximum delivery seconds that allows senders to control the time within which their emails are attempted for delivery. - from version 1.35.40 * api-change:``codepipeline``: [``botocore``] AWS CodePipeline V2 type pipelines now support automatically retrying failed stages and skipping stage for failed entry conditions. * api-change:``mailmanager``: [``botocore``] Mail Manager support for viewing and exporting metadata of archived messages. * api-change:``securitylake``: [``botocore``] This release updates request validation regex for resource ARNs. * api-change:``supplychain``: [``botocore``] This release adds AWS Supply Chain instance management functionality. Specifically adding CreateInstance, DeleteInstance, GetInstance, ListInstances, and UpdateInstance APIs. * api-change:``transfer``: [``botocore``] This release enables customers using SFTP connectors to query the transfer status of their files to meet their monitoring needs as well as orchestrate post transfer actions. - from version 1.35.39 * api-change:``appflow``: [``botocore``] Doc only updates for clarification around OAuth2GrantType for Salesforce. * api-change:``elbv2``: [``botocore``] Add zonal_shift.config.enabled attribute. Add new AdministrativeOverride construct in the describe-target-health API response to include information about the override status applied to a target. * api-change:``emr``: [``botocore``] This release provides new parameter "Context" in instance fleet clusters. * api-change:``guardduty``: [``botocore``] Added a new field for network connection details. * api-change:``robomaker``: [``botocore``] Documentation update: added support notices to each API action. - from version 1.35.38 * api-change:``acm-pca``: [``botocore``] Documentation updates for AWS Private CA. * api-change:``dms``: [``botocore``] Introduces DescribeDataMigrations, CreateDataMigration, ModifyDataMigration, DeleteDataMigration, StartDataMigration, StopDataMigration operations to SDK. Provides FailedDependencyFault error message. * api-change:``ec2``: [``botocore``] This release adds support for assigning the billing of shared Amazon EC2 On-Demand Capacity Reservations. * api-change:``ecs``: [``botocore``] This is a documentation only release that updates to documentation to let customers know that Amazon Elastic Inference is no longer available. * api-change:``elastic-inference``: [``botocore``] Elastic Inference - Documentation update to add service shutdown notice. * api-change:``iotfleetwise``: [``botocore``] Refine campaign related API validations * api-change:``neptune-graph``: [``botocore``] Support for 16 m-NCU graphs available through account allowlisting * api-change:``outposts``: [``botocore``] Adding new "DELIVERED" enum value for Outposts Order status * api-change:``route53resolver``: [``botocore``] Route 53 Resolver Forwarding Rules can now include a server name indication (SNI) in the target address for rules that use the DNS-over-HTTPS (DoH) protocol. When a DoH-enabled Outbound Resolver Endpoint forwards a request to a DoH server, it will provide the SNI in the TLS handshake. * api-change:``socialmessaging``: [``botocore``] This release for AWS End User Messaging includes a public SDK, providing a suite of APIs that enable sending WhatsApp messages to end users. * api-change:``timestream-influxdb``: [``botocore``] This release updates our regex based validation rules in regards to valid DbInstance and DbParameterGroup name. - from version 1.35.37 * api-change:``codepipeline``: [``botocore``] AWS CodePipeline introduces a Compute category - from version 1.35.36 * api-change:``elasticache``: [``botocore``] AWS ElastiCache SDK now supports using APIs with newly launched Valkey engine. Please refer to updated AWS ElastiCache public documentation for detailed information on API usage. * api-change:``memorydb``: [``botocore``] Amazon MemoryDB SDK now supports all APIs for newly launched Valkey engine. Please refer to the updated Amazon MemoryDB public documentation for detailed information on API usage. * enhancement:Python: [``botocore``] Added provisional Python 3.13 support to Botocore * enhancement:Python: Added provisional Python 3.13 support to Boto3 - from version 1.35.35 * api-change:``deadline``: [``botocore``] Add support for using the template from a previous job during job creation and listing parameter definitions for a job. * api-change:``marketplace-reporting``: [``botocore``] Documentation-only update for AWS Marketplace Reporting API. * api-change:``qconnect``: [``botocore``] This release adds support for the following capabilities: Configuration of the Gen AI system via AIAgent and AIPrompts. Integration support for Bedrock Knowledge Base. * api-change:``redshift``: [``botocore``] Add validation pattern to S3KeyPrefix on the EnableLogging API - from version 1.35.34 * api-change:``ec2``: [``botocore``] Documentation updates for Amazon EC2. * api-change:``iot-data``: [``botocore``] Add v2 smoke tests and smithy smokeTests trait for SDK testing. - from version 1.35.33 * api-change:``codepipeline``: [``botocore``] AWS CodePipeline introduces Commands action that enables you to easily run shell commands as part of your pipeline execution. * api-change:``connect``: [``botocore``] Public GetMetricDataV2 Grouping increase from 3 to 4 * api-change:``ec2``: [``botocore``] This release includes a new API for modifying instance cpu-options after launch. * api-change:``iot``: [``botocore``] This release adds support for Custom Authentication with X.509 Client Certificates, support for Custom Client Certificate validation, and support for selecting application protocol and authentication type without requiring TLS ALPN for customer's AWS IoT Domain Configurations. * api-change:``marketplace-reporting``: [``botocore``] The AWS Marketplace Reporting service introduces the GetBuyerDashboard API. This API returns a dashboard that provides visibility into your organization's AWS Marketplace agreements and associated spend across the AWS accounts in your organization. * api-change:``mediapackagev2``: [``botocore``] Added support for ClipStartTime on the FilterConfiguration object on OriginEndpoint manifest settings objects. Added support for EXT-X-START tags on produced HLS child playlists. * api-change:``quicksight``: [``botocore``] QuickSight: Add support for exporting and importing folders in AssetBundle APIs * enhancement:AWSCRT: [``botocore``] Update awscrt version to 0.22.0 - from version 1.35.32 * api-change:``appstream``: [``botocore``] Added support for Automatic Time Zone Redirection on Amazon AppStream 2.0 * api-change:``b2bi``: [``botocore``] Added and updated APIs to support outbound EDI transformations * api-change:``bedrock-agent-runtime``: [``botocore``] Added raw model response and usage metrics to PreProcessing and PostProcessing Trace * api-change:``bedrock-runtime``: [``botocore``] Added new fields to Amazon Bedrock Guardrails trace * api-change:``iotdeviceadvisor``: [``botocore``] Add clientToken attribute and implement idempotency for CreateSuiteDefinition. * api-change:``ivs-realtime``: [``botocore``] Adds new Stage Health EventErrorCodes applicable to RTMP(S) broadcasts. Bug Fix: Enforces that EncoderConfiguration Video height and width must be even-number values. * api-change:``s3``: [``botocore``] This release introduces a header representing the minimum object size limit for Lifecycle transitions. * api-change:``sagemaker``: [``botocore``] releasing builtinlcc to public * api-change:``workspaces``: [``botocore``] WSP is being rebranded to become DCV. - from version 1.35.31 * api-change:``bedrock-agent``: [``botocore``] This release adds support to stop an ongoing ingestion job using the StopIngestionJob API in Agents for Amazon Bedrock. * api-change:``codeartifact``: [``botocore``] Add support for the dual stack endpoints. * api-change:``rds``: [``botocore``] This release provides additional support for enabling Aurora Limitless Database DB clusters. - from version 1.35.30 * api-change:``bedrock``: [``botocore``] Add support for custom models via provisioned throughput for Bedrock Model Evaluation * api-change:``clouddirectory``: [``botocore``] Add examples for API operations in model. * api-change:``connect``: [``botocore``] Amazon Connect introduces StartOutboundChatContact API allowing customers to initiate outbound chat contacts * api-change:``pricing``: [``botocore``] Add examples for API operations in model. * api-change:``resource-groups``: [``botocore``] This update includes new APIs to support application groups and to allow users to manage resource tag-sync tasks in applications. * api-change:``supplychain``: [``botocore``] Release DataLakeDataset, DataIntegrationFlow and ResourceTagging APIs for AWS Supply Chain * api-change:``timestream-influxdb``: [``botocore``] Timestream for InfluxDB now supports port configuration and additional customer-modifiable InfluxDB v2 parameters. This release adds Port to the CreateDbInstance and UpdateDbInstance API, and additional InfluxDB v2 parameters to the CreateDbParameterGroup API. * api-change:``verifiedpermissions``: [``botocore``] Add examples for API operations in model. - from version 1.35.29 * api-change:``customer-profiles``: [``botocore``] Introduces optional RoleArn parameter for PutIntegration request and includes RoleArn in the response of PutIntegration, GetIntegration and ListIntegrations * api-change:``quicksight``: [``botocore``] Adding personalization in QuickSight data stories. Admins can enable or disable personalization through QuickSight settings. * api-change:``securityhub``: [``botocore``] Documentation updates for AWS Security Hub * api-change:``sesv2``: [``botocore``] This release adds support for engagement tracking over Https using custom domains. - from version 1.35.28 * api-change:``chatbot``: [``botocore``] Return State and StateReason fields for Chatbot Channel Configurations. * api-change:``lambda``: [``botocore``] Reverting Lambda resource-based policy and block public access APIs. * api-change:``organizations``: [``botocore``] Add support for policy operations on the CHATBOT_POLICY policy type. * api-change:``pcs``: [``botocore``] AWS PCS API documentation - Edited the description of the iamInstanceProfileArn parameter of the CreateComputeNodeGroup and UpdateComputeNodeGroup actions; edited the description of the SlurmCustomSetting data type to list the supported parameters for clusters and compute node groups. * api-change:``rds-data``: [``botocore``] Documentation update for RDS Data API to reflect support for Aurora MySQL Serverless v2 and Provisioned DB clusters. * api-change:``sagemaker``: [``botocore``] Adding `TagPropagation` attribute to Sagemaker API - from version 1.35.27 * api-change:``cloudtrail``: [``botocore``] Doc-only update for CloudTrail network activity events release (in preview) * api-change:``ec2``: [``botocore``] Updates to documentation for the transit gateway security group referencing feature. * api-change:``fsx``: [``botocore``] Doc-only update to address Lustre S3 hard-coded names. * api-change:``worklink``: [``botocore``] The worklink client has been removed following the deprecation of the service. - from version 1.35.26 * api-change:``bedrock``: [``botocore``] Add support for Cross Region Inference in Bedrock Model Evaluations. * api-change:``budgets``: [``botocore``] Releasing minor partitional endpoint updates * api-change:``kinesis``: [``botocore``] This release includes support to add tags when creating a stream * api-change:``pinpoint-sms-voice-v2``: [``botocore``] AWS End User Messaging SMS-Voice V2 has added support for resource policies. Use the three new APIs to create, view, edit, and delete resource policies. * api-change:``sagemaker``: [``botocore``] Adding `HiddenInstanceTypes` and `HiddenSageMakerImageVersionAliases` attribute to SageMaker API - from version 1.35.25 * api-change:``apigateway``: [``botocore``] Documentation updates for Amazon API Gateway * api-change:``athena``: [``botocore``] List/Get/Update/Delete/CreateDataCatalog now integrate with AWS Glue connections. Users can create a Glue connection through Athena or use a Glue connection to define their Athena federated parameters. * api-change:``bedrock-agent``: [``botocore``] Amazon Bedrock Prompt Flows and Prompt Management now supports using inference profiles to increase throughput and improve resilience. * api-change:``ec2``: [``botocore``] Amazon EC2 G6e instances powered by NVIDIA L40S Tensor Core GPUs are the most cost-efficient GPU instances for deploying generative AI models and the highest performance GPU instances for spatial computing workloads. * api-change:``emr-serverless``: [``botocore``] This release adds support for job concurrency and queuing configuration at Application level. * api-change:``glue``: [``botocore``] Added AthenaProperties parameter to Glue Connections, allowing Athena to store service specific properties on Glue Connections. * api-change:``rds``: [``botocore``] Support ComputeRedundancy parameter in ModifyDBShardGroup API. Add DBShardGroupArn in DBShardGroup API response. Remove InvalidMaxAcuFault from CreateDBShardGroup and ModifyDBShardGroup API. Both API will throw InvalidParameterValueException for invalid ACU configuration. * api-change:``resource-explorer-2``: [``botocore``] AWS Resource Explorer released ListResources feature which allows customers to list all indexed AWS resources within a view. - from version 1.35.24 * api-change:``dynamodb``: [``botocore``] Generate account endpoint for DynamoDB requests when the account ID is available * api-change:``neptune``: [``botocore``] Add v2 smoke tests and smithy smokeTests trait for SDK testing. * api-change:``sagemaker``: [``botocore``] Amazon SageMaker now supports using manifest files to specify the location of uncompressed model artifacts within Model Packages * api-change:``sagemaker-metrics``: [``botocore``] This release introduces support for the SageMaker Metrics BatchGetMetrics API. * api-change:``workspaces``: [``botocore``] Releasing new ErrorCodes for SysPrep failures during ImageImport and CreateImage process - from version 1.35.23 * api-change:``codeconnections``: [``botocore``] This release adds the PullRequestComment field to CreateSyncConfiguration API input, UpdateSyncConfiguration API input, GetSyncConfiguration API output and ListSyncConfiguration API output * api-change:``glue``: [``botocore``] This change is for releasing TestConnection api SDK model * api-change:``lambda``: [``botocore``] Tagging support for Lambda event source mapping, and code signing configuration resources. * api-change:``mediaconvert``: [``botocore``] This release provides support for additional DRM configurations per SPEKE Version 2.0. * api-change:``medialive``: [``botocore``] Adds Bandwidth Reduction Filtering for HD AVC and HEVC encodes, multiplex container settings. * api-change:``quicksight``: [``botocore``] QuickSight: 1. Add new API - ListFoldersForResource. 2. Commit mode adds visibility configuration of Apply button on multi-select controls for authors. * api-change:``sagemaker``: [``botocore``] Introduced support for G6e instance types on SageMaker Studio for JupyterLab and CodeEditor applications. * api-change:``workspaces-web``: [``botocore``] WorkSpaces Secure Browser now enables Administrators to view and manage end-user browsing sessions via Session Management APIs. - from version 1.35.22 * api-change:``ce``: [``botocore``] This release extends the GetReservationPurchaseRecommendation API to support recommendations for Amazon DynamoDB reservations. * api-change:``ds``: [``botocore``] Added new APIs for enabling, disabling, and describing access to the AWS Directory Service Data API * api-change:``ds-data``: [``botocore``] Added new AWS Directory Service Data API, enabling you to manage data stored in AWS Directory Service directories. This includes APIs for creating, reading, updating, and deleting directory users, groups, and group memberships. * api-change:``guardduty``: [``botocore``] Add `launchType` and `sourceIPs` fields to GuardDuty findings. * api-change:``mailmanager``: [``botocore``] Introduce a new RuleSet condition evaluation, where customers can set up a StringExpression with a MimeHeader condition. This condition will perform the necessary validation based on the X-header provided by customers. * api-change:``rds``: [``botocore``] Updates Amazon RDS documentation with information upgrading snapshots with unsupported engine versions for RDS for MySQL and RDS for PostgreSQL. * api-change:``s3``: [``botocore``] Added SSE-KMS support for directory buckets. - Update BuildRequires and Requires from setup.py - Update to 1.35.21 * api-change:``codebuild``: [``botocore``] GitLab Enhancements - Add support for Self-Hosted GitLab runners in CodeBuild. Add group webhooks * api-change:``ecr``: [``botocore``] The `DescribeImageScanning` API now includes `fixAvailable`, `exploitAvailable`, and `fixedInVersion` fields to provide more detailed information about the availability of fixes, exploits, and fixed versions for identified image vulnerabilities. * api-change:``ecs``: [``botocore``] This is a documentation only release to address various tickets. * api-change:``lambda``: [``botocore``] Support for JSON resource-based policies and block public access * api-change:``rds``: [``botocore``] Updates Amazon RDS documentation with configuration information about the BYOL model for RDS for Db2. * api-change:``ssm``: [``botocore``] Support for additional levels of cross-account, cross-Region organizational units in Automation. Various documentation updates. - from version 1.35.20 * api-change:``bedrock``: [``botocore``] This feature adds cross account s3 bucket and VPC support to ModelInvocation jobs. To use a cross account bucket, pass in the accountId of the bucket to s3BucketOwner in the ModelInvocationJobInputDataConfig or ModelInvocationJobOutputDataConfig. * api-change:``iot``: [``botocore``] This release adds additional enhancements to AWS IoT Device Management Software Package Catalog and Jobs. It also adds SBOM support in Software Package Version. * api-change:``medialive``: [``botocore``] Removing the ON_PREMISE enum from the input settings field. * api-change:``organizations``: [``botocore``] Doc only update for AWS Organizations that fixes several customer-reported issues * api-change:``pca-connector-scep``: [``botocore``] This is a general availability (GA) release of Connector for SCEP, a feature of AWS Private CA. Connector for SCEP links your SCEP-enabled and mobile device management systems to AWS Private CA for digital signature installation and certificate management. * api-change:``rds``: [``botocore``] Launching Global Cluster tagging. - from version 1.35.19 * api-change:``amplify``: [``botocore``] Doc only update to Amplify to explain platform setting for Next.js 14 SSG only applications * api-change:``ivs``: [``botocore``] Updates to all tags descriptions. * api-change:``ivschat``: [``botocore``] Updates to all tags descriptions. - from version 1.35.18 * api-change:``cognito-idp``: [``botocore``] Added email MFA option to user pools with advanced security features. * api-change:``elbv2``: [``botocore``] Correct incorrectly mapped error in ELBv2 waiters * api-change:``emr``: [``botocore``] Update APIs to allow modification of ODCR options, allocation strategy, and InstanceTypeConfigs on running InstanceFleet clusters. * api-change:``glue``: [``botocore``] AWS Glue is introducing two new optimizers for Apache Iceberg tables: snapshot retention and orphan file deletion. Customers can enable these optimizers and customize their configurations to perform daily maintenance tasks on their Iceberg tables based on their specific requirements. * api-change:``mediaconvert``: [``botocore``] This release includes support for dynamic video overlay workflows, including picture-in-picture and squeezeback * api-change:``rds``: [``botocore``] This release adds support for the os-upgrade pending maintenance action for Amazon Aurora DB clusters. * api-change:``storagegateway``: [``botocore``] The S3 File Gateway now supports DSSE-KMS encryption. A new parameter EncryptionType is added to these APIs: CreateSmbFileShare, CreateNfsFileShare, UpdateSmbFileShare, UpdateNfsFileShare, DescribeSmbFileShares, DescribeNfsFileShares. Also, in favor of EncryptionType, KmsEncrypted is deprecated. * api-change:``synthetics``: [``botocore``] This release introduces two features. The first is tag replication, which allows for the propagation of canary tags onto Synthetics related resources, such as Lambda functions. The second is a limit increase in canary name length, which has now been increased from 21 to 255 characters. - from version 1.35.17 * api-change:``bedrock-agent``: [``botocore``] Amazon Bedrock Knowledge Bases now supports using inference profiles to increase throughput and improve resilience. * api-change:``bedrock-agent-runtime``: [``botocore``] Amazon Bedrock Knowledge Bases now supports using inference profiles to increase throughput and improve resilience. * api-change:``ecr``: [``botocore``] Added KMS_DSSE to EncryptionType * api-change:``guardduty``: [``botocore``] Add support for new statistic types in GetFindingsStatistics. * api-change:``lexv2-models``: [``botocore``] Support new Polly voice engines in VoiceSettings: long-form and generative * api-change:``medialive``: [``botocore``] Adds AV1 Codec support, SRT ouputs, and MediaLive Anywhere support. - from version 1.35.16 * api-change:``chime-sdk-voice``: [``botocore``] Documentation-only update that clarifies the ValidateE911Address action of the Amazon Chime SDK Voice APIs. * api-change:``cognito-identity``: [``botocore``] This release adds sensitive trait to some required shapes. * api-change:``pipes``: [``botocore``] This release adds support for customer managed KMS keys in Amazon EventBridge Pipe * api-change:``securityhub``: [``botocore``] Documentation update for Security Hub * enhancement:AWSCRT: [``botocore``] Update awscrt version to 0.21.5 * enhancement:``s3``: [``botocore``] Adds logic to gracefully handle invalid timestamps returned in the Expires header. - from version 1.35.15 * api-change:``dynamodb``: [``botocore``] Doc-only update for DynamoDB. Added information about async behavior for TagResource and UntagResource APIs and updated the description of ResourceInUseException. * api-change:``elbv2``: [``botocore``] Add paginators for the ELBv2 DescribeListenerCertificates and DescribeRules APIs. Fix broken waiter for the ELBv2 DescribeLoadBalancers API. * api-change:``ivs-realtime``: [``botocore``] IVS Real-Time now offers customers the ability to broadcast to Stages using RTMP(S). * api-change:``kafka``: [``botocore``] Amazon MSK Replicator can now replicate data to identically named topics between MSK clusters within the same AWS Region or across different AWS Regions. * api-change:``sagemaker``: [``botocore``] Amazon Sagemaker supports orchestrating SageMaker HyperPod clusters with Amazon EKS * api-change:``sagemaker-runtime``: [``botocore``] AWS SageMaker Runtime feature: Add sticky routing to support stateful inference models. - from version 1.35.14 * api-change:``qapps``: [``botocore``] Adds UpdateLibraryItemMetadata api to change status of app for admin verification feature and returns isVerified field in any api returning the app or library item. - from version 1.35.13 * api-change:``application-signals``: [``botocore``] Amazon CloudWatch Application Signals now supports creating Service Level Objectives using a new calculation type. Users can now create SLOs which are configured with request-based SLIs to help meet their specific business requirements. * api-change:``codepipeline``: [``botocore``] Updates to add recent notes to APIs and to replace example S3 bucket names globally. * api-change:``connect``: [``botocore``] Amazon Connect Custom Vocabulary now supports Catalan (Spain), Danish (Denmark), Dutch (Netherlands), Finnish (Finland), Indonesian (Indonesia), Malay (Malaysia), Norwegian Bokmal (Norway), Polish (Poland), Swedish (Sweden), and Tagalog/Filipino (Philippines). * api-change:``gamelift``: [``botocore``] Amazon GameLift provides additional events for tracking the fleet creation process. * api-change:``kinesisanalyticsv2``: [``botocore``] Support for Flink 1.20 in Managed Service for Apache Flink * api-change:``sagemaker``: [``botocore``] Amazon SageMaker now supports idle shutdown of JupyterLab and CodeEditor applications on SageMaker Studio. - from version 1.35.12 * api-change:``appsync``: [``botocore``] Adds new logging levels (INFO and DEBUG) for additional log output control * api-change:``bedrock-agent``: [``botocore``] Add support for user metadata inside PromptVariant. * api-change:``finspace``: [``botocore``] Updates Finspace documentation for smaller instances. * api-change:``fis``: [``botocore``] This release adds safety levers, a new mechanism to stop all running experiments and prevent new experiments from starting. * api-change:``logs``: [``botocore``] Update to support new APIs for delivery of logs from AWS services. * api-change:``s3control``: [``botocore``] Amazon Simple Storage Service /S3 Access Grants / Features : This release launches new Access Grants API - ListCallerAccessGrants. - from version 1.35.11 * api-change:``connect``: [``botocore``] Release ReplicaConfiguration as part of DescribeInstance * api-change:``datazone``: [``botocore``] Add support to let data publisher specify a subset of the data asset that a subscriber will have access to based on the asset filters provided, when accepting a subscription request. * api-change:``elbv2``: [``botocore``] This release adds support for configuring TCP idle timeout on NLB and GWLB listeners. * api-change:``mediaconnect``: [``botocore``] AWS Elemental MediaConnect introduces thumbnails for Flow source monitoring. Thumbnails provide still image previews of the live content feeding your MediaConnect Flow allowing you to easily verify that your source is operating as expected. * api-change:``medialive``: [``botocore``] Added MinQP as a Rate Control option for H264 and H265 encodes. * api-change:``sagemaker``: [``botocore``] Amazon SageMaker now supports automatic mounting of a user's home folder in the Amazon Elastic File System (EFS) associated with the SageMaker Studio domain to their Studio Spaces to enable users to share data between their own private spaces. * api-change:``timestream-influxdb``: [``botocore``] Timestream for InfluxDB now supports compute scaling and deployment type conversion. This release adds the DbInstanceType and DeploymentType parameters to the UpdateDbInstance API. - Update to 1.35.10 * api-change:``backup``: [``botocore``] The latest update introduces two new attributes, VaultType and VaultState, to the DescribeBackupVault and ListBackupVaults APIs. The VaultState attribute reflects the current status of the vault, while the VaultType attribute indicates the specific category of the vault. * api-change:``datazone``: [``botocore``] Amazon DataZone now adds new governance capabilities of Domain Units for organization within your Data Domains, and Authorization Policies for tighter controls. * api-change:``logs``: [``botocore``] This release introduces a new optional parameter: Entity, in PutLogEvents request * api-change:``redshift-data``: [``botocore``] The release include the new Redshift DataAPI feature for session use, customer execute query with --session-keep-alive-seconds parameter and can submit follow-up queries to same sessions with returned`session-id` - from version 1.35.9 * api-change:``bedrock-agent-runtime``: [``botocore``] Lifting the maximum length on Bedrock KnowledgeBase RetrievalFilter array * api-change:``bedrock-runtime``: [``botocore``] Add support for imported-model in invokeModel and InvokeModelWithResponseStream. * api-change:``personalize``: [``botocore``] This releases ability to update automatic training scheduler for customer solutions * api-change:``quicksight``: [``botocore``] Increased Character Limit for Dataset Calculation Field expressions * api-change:``stepfunctions``: [``botocore``] This release adds support for static analysis to ValidateStateMachineDefinition API, which can now return optional WARNING diagnostics for semantic errors on the definition of an Amazon States Language (ASL) state machine. * api-change:``wafv2``: [``botocore``] The minimum request rate for a rate-based rule is now 10. Before this, it was 100. - from version 1.35.8 * api-change:``appconfig``: [``botocore``] This release adds support for deletion protection, which is a safety guardrail to prevent the unintentional deletion of a recently used AWS AppConfig Configuration Profile or Environment. This also includes a change to increase the maximum length of the Name parameter in UpdateConfigurationProfile. * api-change:``datazone``: [``botocore``] Update regex to include dot character to be consistent with IAM role creation in the authorized principal field for create and update subscription target. * api-change:``devicefarm``: [``botocore``] This release removed support for Calabash, UI Automation, Built-in Explorer, remote access record, remote access replay, and web performance profile framework in ScheduleRun API. * api-change:``ec2``: [``botocore``] Amazon VPC IP Address Manager (IPAM) now allows customers to provision IPv4 CIDR blocks and allocate Elastic IP Addresses directly from IPAM pools with public IPv4 space * api-change:``internetmonitor``: [``botocore``] Adds new querying types to show overall traffic suggestion information for monitors * api-change:``pcs``: [``botocore``] Introducing AWS Parallel Computing Service (AWS PCS), a new service makes it easy to setup and manage high performance computing (HPC) clusters, and build scientific and engineering models at virtually any scale on AWS. * api-change:``workspaces``: [``botocore``] Documentation-only update that clarifies the StartWorkspaces and StopWorkspaces actions, and a few other minor edits. - from version 1.35.7 * api-change:``bedrock``: [``botocore``] Amazon Bedrock SDK updates for Inference Profile. * api-change:``bedrock-runtime``: [``botocore``] Amazon Bedrock SDK updates for Inference Profile. * api-change:``chatbot``: [``botocore``] Update documentation to be consistent with the API docs * api-change:``omics``: [``botocore``] Adds data provenance to import jobs from read sets and references * api-change:``polly``: [``botocore``] Amazon Polly adds 2 new voices: Jitka (cs-CZ) and Sabrina (de-CH). - from version 1.35.6 * api-change:``iotsitewise``: [``botocore``] AWS IoT SiteWise now supports versioning for asset models. It enables users to retrieve active version of their asset model and perform asset model writes with optimistic lock. * api-change:``workspaces``: [``botocore``] This release adds support for creating and managing directories that use AWS IAM Identity Center as user identity source. Such directories can be used to create non-Active Directory domain joined WorkSpaces Personal.Updated RegisterWorkspaceDirectory and DescribeWorkspaceDirectories APIs. - from version 1.35.5 * api-change:``bedrock-agent``: [``botocore``] Releasing the support for Action User Confirmation. * api-change:``bedrock-agent-runtime``: [``botocore``] Releasing the support for Action User Confirmation. * api-change:``codebuild``: [``botocore``] Added support for the MAC_ARM environment type for CodeBuild fleets. * api-change:``organizations``: [``botocore``] Releasing minor partitional endpoint updates. * api-change:``qbusiness``: [``botocore``] Amazon QBusiness: Enable support for SAML and OIDC federation through AWS IAM Identity Provider integration. * api-change:``supplychain``: [``botocore``] Update API documentation to clarify the event SLA as well as the data model expectations - from version 1.35.4 * api-change:``autoscaling``: [``botocore``] Amazon EC2 Auto Scaling now provides EBS health check to manage EC2 instance replacement * api-change:``bedrock``: [``botocore``] Amazon Bedrock Evaluation BatchDeleteEvaluationJob API allows customers to delete evaluation jobs under terminated evaluation job statuses - Stopped, Failed, or Completed. Customers can submit a batch of 25 evaluation jobs to be deleted at once. * api-change:``emr-containers``: [``botocore``] Correct endpoint for FIPS is configured for US Gov Regions. * api-change:``inspector2``: [``botocore``] Add enums for Agentless scan statuses and EC2 enablement error states * api-change:``quicksight``: [``botocore``] Explicit query for authors and dashboard viewing sharing for embedded users * api-change:``route53``: [``botocore``] Amazon Route 53 now supports the Asia Pacific (Malaysia) Region (ap-southeast-5) for latency records, geoproximity records, and private DNS for Amazon VPCs in that region. - from version 1.35.3 * api-change:``codestar``: [``botocore``] The codestar client has been removed following the deprecation of the service on July 31, 2024. * api-change:``ec2``: [``botocore``] DescribeInstanceStatus now returns health information on EBS volumes attached to Nitro instances * api-change:``entityresolution``: [``botocore``] Increase the mapping attributes in Schema to 35. * api-change:``glue``: [``botocore``] Add optional field JobRunQueuingEnabled to CreateJob and UpdateJob APIs. * api-change:``lambda``: [``botocore``] Release FilterCriteria encryption for Lambda EventSourceMapping, enabling customers to encrypt their filter criteria using a customer-owned KMS key. * api-change:``securityhub``: [``botocore``] Security Hub documentation and definition updates * api-change:``ses``: [``botocore``] Enable email receiving customers to provide SES with access to their S3 buckets via an IAM role for "Deliver to S3 Action" - from version 1.35.2 * api-change:``ecs``: [``botocore``] Documentation only release to address various tickets * api-change:``opensearchserverless``: [``botocore``] Added FailureCode and FailureMessage to BatchGetCollectionResponse for BatchGetVPCEResponse for non-Active Collection and VPCE. * api-change:``s3``: [``botocore``] Amazon Simple Storage Service / Features : Add support for conditional writes for PutObject and CompleteMultipartUpload APIs. - from version 1.35.1 * api-change:``bedrock``: [``botocore``] Amazon Bedrock Batch Inference/ Model Invocation is a feature which allows customers to asynchronously run inference on a large set of records/files stored in S3. * api-change:``codebuild``: [``botocore``] AWS CodeBuild now supports creating fleets with macOS platform for running builds. * api-change:``deadline``: [``botocore``] This release adds additional search fields and provides sorting by multiple fields. * api-change:``lambda``: [``botocore``] Release Lambda FunctionRecursiveConfig, enabling customers to turn recursive loop detection on or off on individual functions. This release adds two new APIs, GetFunctionRecursionConfig and PutFunctionRecursionConfig. * api-change:``ssm-sap``: [``botocore``] Add new attributes to the outputs of GetApplication and GetDatabase APIs. - from version 1.35.0 * api-change:``batch``: [``botocore``] Improvements of integration between AWS Batch and EC2. * api-change:``inspector2``: [``botocore``] Update the correct format of key and values for resource tags * api-change:``quicksight``: [``botocore``] Amazon QuickSight launches Customer Managed Key (CMK) encryption for Data Source metadata * api-change:``sagemaker``: [``botocore``] Introduce Endpoint and EndpointConfig Arns in sagemaker:ListPipelineExecutionSteps API response * api-change:``sesv2``: [``botocore``] Marking use case description field of account details as deprecated. * feature:signing: [``botocore``] Adds internal support for the new 'auth' trait to allow a priority list of auth types for a service or operation. - from version 1.34.162 * api-change:``docdb``: [``botocore``] This release adds Global Cluster Failover capability which enables you to change your global cluster's primary AWS region, the region that serves writes, during a regional outage. Performing a failover action preserves your Global Cluster setup. * api-change:``ecs``: [``botocore``] This release introduces a new ContainerDefinition configuration to support the customer-managed keys for ECS container restart feature. * api-change:``iam``: [``botocore``] Make the LastUsedDate field in the GetAccessKeyLastUsed response optional. This may break customers who only call the API for access keys with a valid LastUsedDate. This fixes a deserialization issue for access keys without a LastUsedDate, because the field was marked as required but could be null. * api-change:``s3``: [``botocore``] Amazon Simple Storage Service / Features : Adds support for pagination in the S3 ListBuckets API. - from version 1.34.161 * api-change:``codebuild``: [``botocore``] AWS CodeBuild now supports using Secrets Manager to store git credentials and using multiple source credentials in a single project. - from version 1.34.160 * api-change:``amplify``: [``botocore``] Add a new field "cacheConfig" that enables users to configure the CDN cache settings for an App * api-change:``appstream``: [``botocore``] This release includes following new APIs: CreateThemeForStack, DescribeThemeForStack, UpdateThemeForStack, DeleteThemeForStack to support custom branding programmatically. * api-change:``fis``: [``botocore``] This release adds support for additional error information on experiment failure. It adds the error code, location, and account id on relevant failures to the GetExperiment and ListExperiment API responses. * api-change:``glue``: [``botocore``] Add AttributesToGet parameter support for Glue GetTables * api-change:``neptune-graph``: [``botocore``] Amazon Neptune Analytics provides a new option for customers to load data into a graph using the RDF (Resource Description Framework) NTRIPLES format. When loading NTRIPLES files, use the value `convertToIri` for the `blankNodeHandling` parameter. - from version 1.34.159 * api-change:``compute-optimizer``: [``botocore``] Doc only update for Compute Optimizer that fixes several customer-reported issues relating to ECS finding classifications * api-change:``config``: [``botocore``] Documentation update for the OrganizationConfigRuleName regex pattern. * api-change:``ec2``: [``botocore``] This release adds new capabilities to manage On-Demand Capacity Reservations including the ability to split your reservation, move capacity between reservations, and modify the instance eligibility of your reservation. * api-change:``eks``: [``botocore``] Added support for new AL2023 GPU AMIs to the supported AMITypes. * api-change:``groundstation``: [``botocore``] Updating documentation for OEMEphemeris to link to AWS Ground Station User Guide * api-change:``medialive``: [``botocore``] AWS Elemental MediaLive now supports now supports editing the PID values for a Multiplex. * api-change:``sagemaker``: [``botocore``] Releasing large data support as part of CreateAutoMLJobV2 in SageMaker Autopilot and CreateDomain API for SageMaker Canvas. - from version 1.34.158 * api-change:``cognito-idp``: [``botocore``] Fixed a description of AdvancedSecurityAdditionalFlows in Amazon Cognito user pool configuration. * api-change:``connect``: [``botocore``] This release supports adding RoutingCriteria via UpdateContactRoutingData public API. * api-change:``ssm``: [``botocore``] Systems Manager doc-only updates for August 2024. - from version 1.34.157 * api-change:``cognito-idp``: [``botocore``] Added support for threat protection for custom authentication in Amazon Cognito user pools. * api-change:``connect``: [``botocore``] This release fixes a regression in number of access control tags that are allowed to be added to a security profile in Amazon Connect. You can now add up to four access control tags on a single security profile. * api-change:``ec2``: [``botocore``] Launch of private IPv6 addressing for VPCs and Subnets. VPC IPAM supports the planning and monitoring of private IPv6 usage. * api-change:``glue``: [``botocore``] This release adds support to retrieve the validation status when creating or updating Glue Data Catalog Views. Also added is support for BasicCatalogTarget partition keys. - from version 1.34.156 * api-change:``appintegrations``: [``botocore``] Updated CreateDataIntegration and CreateDataIntegrationAssociation API to support bulk data export from Amazon Connect Customer Profiles to the customer S3 bucket. * api-change:``glue``: [``botocore``] Introducing AWS Glue Data Quality anomaly detection, a new functionality that uses ML-based solutions to detect data anomalies users have not explicitly defined rules for. - from version 1.34.155 * api-change:``bedrock-agent-runtime``: [``botocore``] Introduce model invocation output traces for orchestration traces, which contain the model's raw response and usage. * api-change:``cognito-idp``: [``botocore``] Advanced security feature updates to include password history and log export for Cognito user pools. * api-change:``cost-optimization-hub``: [``botocore``] This release adds savings percentage support to the ListRecommendationSummaries API. * api-change:``workspaces``: [``botocore``] Added support for BYOL_GRAPHICS_G4DN_WSP IngestionProcess * enhancement:AWSCRT: [``botocore``] Update awscrt version to 0.21.2 - from version 1.34.154 * api-change:``datazone``: [``botocore``] This releases Data Product feature. Data Products allow grouping data assets into cohesive, self-contained units for ease of publishing for data producers, and ease of finding and accessing for data consumers. * api-change:``ecr``: [``botocore``] Released two new APIs along with documentation updates. The GetAccountSetting API is used to view the current basic scan type version setting for your registry, while the PutAccountSetting API is used to update the basic scan type version for your registry. * api-change:``kinesis-video-webrtc-storage``: [``botocore``] Add JoinStorageSessionAsViewer API * api-change:``pi``: [``botocore``] Added a description for the Dimension db.sql.tokenized_id on the DimensionGroup data type page. - from version 1.34.153 * api-change:``cloudwatch``: [``botocore``] Add v2 smoke tests and smithy smokeTests trait for SDK testing. * api-change:``kinesis``: [``botocore``] Add v2 smoke tests and smithy smokeTests trait for SDK testing. * api-change:``resiliencehub``: [``botocore``] Customers are presented with the grouping recommendations and can determine if the recommendations are accurate and apply to their case. This feature simplifies onboarding by organizing resources into appropriate AppComponents. * api-change:``route53``: [``botocore``] Add v2 smoke tests and smithy smokeTests trait for SDK testing. * api-change:``waf-regional``: [``botocore``] Add v2 smoke tests and smithy smokeTests trait for SDK testing. - from version 1.34.152 * api-change:``bedrock``: [``botocore``] API and Documentation for Bedrock Model Copy feature. This feature lets you share and copy a custom model from one region to another or one account to another. * api-change:``controlcatalog``: [``botocore``] AWS Control Tower provides two new public APIs controlcatalog:ListControls and controlcatalog:GetControl under controlcatalog service namespace, which enable customers to programmatically retrieve control metadata of available controls. * api-change:``controltower``: [``botocore``] Updated Control Tower service documentation for controlcatalog control ARN support with existing Control Tower public APIs * api-change:``iam``: [``botocore``] Add v2 smoke tests and smithy smokeTests trait for SDK testing. * api-change:``memorydb``: [``botocore``] Doc only update for changes to deletion API. * api-change:``rds``: [``botocore``] This release adds support for specifying optional MinACU parameter in CreateDBShardGroup and ModifyDBShardGroup API. DBShardGroup response will contain MinACU if specified. * api-change:``sagemaker``: [``botocore``] This release adds support for Amazon EMR Serverless applications in SageMaker Studio for running data processing jobs. * api-change:``ssm-quicksetup``: [``botocore``] This release adds API support for the QuickSetup feature of AWS Systems Manager * api-change:``support``: [``botocore``] Doc only updates to CaseDetails - from version 1.34.151 * api-change:``appstream``: [``botocore``] Added support for Red Hat Enterprise Linux 8 on Amazon AppStream 2.0 * api-change:``autoscaling``: [``botocore``] Increase the length limit for VPCZoneIdentifier from 2047 to 5000 * api-change:``codepipeline``: [``botocore``] AWS CodePipeline V2 type pipelines now support stage level conditions to enable development teams to safely release changes that meet quality and compliance requirements. * api-change:``elasticache``: [``botocore``] Doc only update for changes to deletion API. * api-change:``elb``: [``botocore``] Add v2 smoke tests and smithy smokeTests trait for SDK testing. * api-change:``events``: [``botocore``] Add v2 smoke tests and smithy smokeTests trait for SDK testing. * api-change:``lexv2-models``: [``botocore``] This release adds new capabilities to the AMAZON.QnAIntent: Custom prompting, Guardrails integration and ExactResponse support for Bedrock Knowledge Base. * api-change:``logs``: [``botocore``] Add v2 smoke tests and smithy smokeTests trait for SDK testing. * api-change:``rolesanywhere``: [``botocore``] IAM RolesAnywhere now supports custom role session name on the CreateSession. This release adds the acceptRoleSessionName option to a profile to control whether a role session name will be accepted in a session request with a given profile. * api-change:``tnb``: [``botocore``] This release adds Network Service Update, through which customers will be able to update their instantiated networks to a new network package. See the documentation for limitations. The release also enhances the Get network operation API to return parameter overrides used during the operation. * api-change:``workspaces``: [``botocore``] Removing multi-session as it isn't supported for pools - from version 1.34.150 * api-change:``elasticache``: [``botocore``] Renaming full service name as it appears in developer documentation. * api-change:``memorydb``: [``botocore``] Renaming full service name as it appears in developer documentation. - Update BuildRequires and Requires from setup.py - Update to 1.34.149 * api-change:``application-autoscaling``: Application Auto Scaling is now more responsive to the changes in demand of your SageMaker Inference endpoints. To get started, create or update a Target Tracking policy based on High Resolution CloudWatch metrics. * api-change:``application-signals``: CloudWatch Application Signals now supports application logs correlation with traces and operational health metrics of applications running on EC2 instances. Users can view the most relevant telemetry to troubleshoot application health anomalies such as spikes in latency, errors, and availability. * api-change:``bedrock-runtime``: Provides ServiceUnavailableException error message * api-change:``codecommit``: CreateRepository API now throws OperationNotAllowedException when the account has been restricted from creating a repository. * api-change:``datazone``: Introduces GetEnvironmentCredentials operation to SDK * api-change:``ec2``: EC2 Fleet now supports using custom identifiers to reference Amazon Machine Images (AMI) in launch requests that are configured to choose from a diversified list of instance types. * api-change:``ecr``: API and documentation updates for Amazon ECR, adding support for creating, updating, describing and deleting ECR Repository Creation Template. * api-change:``eks``: This release adds support for EKS cluster to manage extended support. * api-change:``elbv2``: This release adds support for sharing trust stores across accounts and organizations through integration with AWS Resource Access Manager. * api-change:``network-firewall``: You can now log events that are related to TLS inspection, in addition to the existing alert and flow logging. * api-change:``outposts``: Adding default vCPU information to GetOutpostSupportedInstanceTypes and GetOutpostInstanceTypes responses * api-change:``stepfunctions``: This release adds support to customer managed KMS key encryption in AWS Step Functions. - from version 1.34.148 * api-change:``cleanrooms``: Three enhancements to the AWS Clean Rooms: Disallowed Output Columns, Flexible Result Receivers, SQL as a Seed * api-change:``dynamodb``: DynamoDB doc only update for July * api-change:``iotsitewise``: Adds support for creating SiteWise Edge gateways that run on a Siemens Industrial Edge Device. * api-change:``mediapackagev2``: This release adds support for Irdeto DRM encryption in DASH manifests. * api-change:``medical-imaging``: CopyImageSet API adds copying selected instances between image sets, and overriding inconsistent metadata with a force parameter. UpdateImageSetMetadata API enables reverting to prior versions; updates to Study, Series, and SOP Instance UIDs; and updates to private elements, with a force parameter. * api-change:``pinpoint-sms-voice-v2``: Update for rebrand to AWS End User Messaging SMS and Voice. - from version 1.34.147 * api-change:``appsync``: Adding support for paginators in AppSync list APIs * api-change:``cleanrooms``: This release adds AWS Entity Resolution integration to associate ID namespaces & ID mapping workflow resources as part of ID namespace association and ID mapping table in AWS Clean Rooms. It also introduces a new ID_MAPPING_TABLE analysis rule to manage the protection on ID mapping table. * api-change:``cleanroomsml``: Adds SQL query as the source of seed audience for audience generation job. * api-change:``connect``: Added PostContactSummary segment type on ListRealTimeContactAnalysisSegmentsV2 API * api-change:``connect-contact-lens``: Added PostContactSummary segment type on ListRealTimeContactAnalysisSegments API * api-change:``datazone``: This release removes the deprecated dataProductItem field from Search API output. * api-change:``entityresolution``: Support First Party ID Mapping - from version 1.34.146 * api-change:``datazone``: This release adds 1/ support of register S3 locations of assets in AWS Lake Formation hybrid access mode for DefaultDataLake blueprint. 2/ support of CRUD operations for Asset Filters. * api-change:``ivs``: Documentation update for IVS Low Latency API Reference. * api-change:``mobile``: The mobile client has been removed following the deprecation of the service. * api-change:``neptune-graph``: Amazon Neptune Analytics provides new options for customers to start with smaller graphs at a lower cost. CreateGraph, CreaateGraphImportTask, UpdateGraph and StartImportTask APIs will now allow 32 and 64 for `provisioned-memory` * api-change:``redshift-serverless``: Adds dualstack support for Redshift Serverless workgroup. - from version 1.34.145 * api-change:``acm-pca``: Fix broken waiters for the acm-pca client. Waiters broke in version 1.13.144 of the Boto3 SDK. * api-change:``connect``: Amazon Connect expands search API coverage for additional resources. Search for hierarchy groups by name, ID, tag, or other criteria (new endpoint). Search for agent statuses by name, ID, tag, or other criteria (new endpoint). Search for users by their assigned proficiencies (enhanced endpoint) * api-change:``ec2``: Amazon VPC IP Address Manager (IPAM) now supports Bring-Your-Own-IP (BYOIP) for IP addresses registered with any Internet Registry. This feature uses DNS TXT records to validate ownership of a public IP address range. * api-change:``firehose``: This release 1) Add configurable buffering hints for Snowflake as destination. 2) Add ReadFromTimestamp for MSK As Source. Firehose will start reading data from MSK Cluster using offset associated with this timestamp. 3) Gated public beta release to add Apache Iceberg tables as destination. * api-change:``ivschat``: Documentation update for IVS Chat API Reference. * api-change:``medialive``: AWS Elemental MediaLive now supports the SRT protocol via the new SRT Caller input type. * api-change:``rds``: Updates Amazon RDS documentation to specify an eventual consistency model for DescribePendingMaintenanceActions. * api-change:``sagemaker``: SageMaker Training supports R5, T3 and R5D instances family. And SageMaker Processing supports G5 and R5D instances family. * api-change:``secretsmanager``: Doc only update for Secrets Manager * api-change:``taxsettings``: Set default endpoint for aws partition. Requests from all regions in aws partition will be forward to us-east-1 endpoint. * api-change:``timestream-query``: Doc-only update for TimestreamQuery. Added guidance about the accepted valid value for the QueryPricingModel parameter. * api-change:``workspaces-thin-client``: Documentation update for WorkSpaces Thin Client. * bugfix:Waiter: Update waiters to handle expected boolean values when matching errors (`boto/botocore#3220 <https://github.com/boto/botocore/issues/3220>`__) - Update BuildRequires and Requires from setup.py Changes in python-s3transfer: - Update to version 0.14.0 * feature:download: Validate requested range matches content range in response for multipart downloads - Update to version 0.13.1 * enhancement:Python: Added provisional support for the upcoming Python 3.14 release - Update to version 0.13.0 * feature:``GetObjectTask``: Validate ETag of stored object during multipart downloads - Update to version 0.12.0 * feature:Python: End of support for Python 3.8 - Update to version 0.11.4 * enhancement:Dependencies: Update the floor version of botocore to 1.37.4 to match imports. * enhancement:Tasks: Pass Botocore context from parent to child threads. - from version 0.11.3 * bugfix:``awscrt``: Fix urlencoding issues for request signing with the awscrt. - Update BuildRequires and Requires from setup.py - Update to version 0.11.2 * bugfix:upload: Only set a default checksum if the ``request_checksum_calculation`` config is set to ``when_supported``. Fixes (boto/s3transfer#327). - Update to version 0.11.1 * bugfix:Dependencies: Update the floor version of botocore to 1.36.0 to match imports. - from version 0.11.0 * feature:manager: Use CRC32 by default and support user provided full-object checksums. - Update to version 0.10.4 * enhancement:``s3``: Added Multi-Region Access Points support to CRT transfers - Update to version 0.10.3 * enhancement:Python: Added provisional Python 3.13 support to s3transfer - Update to version 0.10.2 * bugfix:``awscrt``: Pass operation name to awscrt.s3 to improve error handling - Update to version 0.10.1 * bugfix:``urllib3``: Fixed retry handling for IncompleteRead exception raised by urllib3 2.x during data transfer Changes in aws-cli: - Update to 1.42.50 * api-change:``bedrock-agentcore``: Bedrock AgentCore release for Runtime, and Memory. * api-change:``bedrock-agentcore-control``: Bedrock AgentCore release for Gateway, and Memory including Self-Managed Strategies support for Memory. * api-change:``cloudfront``: Added new viewer security policy, TLSv1.2_2025, for CloudFront. * api-change:``glue``: Addition of AuditContext in GetTable/GetTables Request * api-change:``lambda``: Add InvokedViaFunctionUrl context key to limit invocations to only FURL invokes. * api-change:``odb``: This release adds APIs that allow you to specify CIDR ranges in your ODB peering connection. * api-change:``rds``: Updated the text in the Important section of the ModifyDBClusterParameterGroup page. - Refresh patches for new version - Update Requires from setup.py - Update to 1.42.49 * api-change:``quicksight``: This release adds support for ActionConnector and Flow, which are new resources associated with Amazon Quick Suite. Additional updates include expanded Data Source options, further branding customization, and new capabilities that can be restricted by Admins. * api-change:``wafv2``: This release adds the ability to throw WafLimitsExceededException when the maximum number of Application Load Balancer (ALB) associations per AWS WAF v2 WebACL is exceeded. - from version 1.42.48 * api-change:``bedrock-agentcore-control``: Adding support for authorizer type AWS_IAM to AgentCore Control Gateway. * api-change:``license-manager-user-subscriptions``: Released support for IPv6 and dual-stack active directories * api-change:``outposts``: This release adds the new StartOutpostDecommission API, which starts the decommission process to return Outposts racks or servers. * api-change:``service-quotas``: introduces Service Quotas Automatic Management. Users can opt-in to monitoring and managing service quotas, receive notifications when quota usage reaches thresholds, configure notification channels, subscribe to EventBridge events for automation, and view notifications in the AWS Health dashboard. - from version 1.42.47 * api-change:``proton``: Deprecating APIs in AWS Proton namespace. - from version 1.42.46 * api-change:``backup``: Adds optional MaxScheduledRunsPreview input to GetBackupPlan API to provide a preview of up to 10 next scheduled backup plan runs in the GetBackupPlan response. * api-change:``bedrock-agentcore``: Add support for batch memory management, agent card retrieval and session termination * api-change:``bedrock-agentcore-control``: Add support for VM lifecycle configuration parameters and A2A protocol * api-change:``glue``: Adds labeling for DataQualityRuleResult for GetDataQualityResult and PublishDataQualityResult APIs * api-change:``mediaconnect``: Enabling Tag-on-Create for AWS Elemental MediaConnect flow-based resource types * api-change:``memorydb``: Support for DescribeMultiRegionParameterGroups and DescribeMultiRegionParameters API. * api-change:``quicksight``: Documentation improvements for QuickSight API documentation to clarify that delete operation APIs are global. * api-change:``rds``: Documentation updates to the CreateDBClusterMessage$PubliclyAccessible and CreateDBInstanceMessage$PubliclyAccessible properties. * api-change:``resource-explorer-2``: Add new AWS Resource Explorer APIs - from version 1.42.45 * api-change:``cleanrooms``: Added support for reading data sources across regions, and results delivery to allowedlisted regions. * api-change:``medialive``: AWS Elemental MediaLive enables Mediapackage V2 users to configure ID3, KLV, Nielsen ID3, and Segment Length related parameters through the Mediapackage output group. * api-change:``payment-cryptography-data``: Added a new API - translateKeyMaterial; allows keys wrapped by ECDH derived keys to be rewrapped under a static AES keyblock without first importing the key into the service. * api-change:``qconnect``: Updated Amazon Q in Connect APIs to support Email Contact Recommendations. - from version 1.42.44 * api-change:``cloudformation``: Add new warning type 'EXCLUDED_RESOURCES' * api-change:``connectcases``: New Search All Related Items API enables searching related items across cases * api-change:``dynamodb``: Add support for dual-stack account endpoint generation * api-change:``endpoint-rules``: Update endpoint-rules command to latest version * api-change:``guardduty``: Updated descriptions for the Location parameter in CreateTrustedEntitySet and CreateThreatEntitySet. * api-change:``synthetics``: Adds support to configure canaries with pre-configured blueprint code on supported runtime versions. This behavior can be controlled via the new BlueprintTypes property exposed in the CreateCanary and UpdateCanary APIs. - from version 1.42.43 * api-change:``chime-sdk-meetings``: Add support to receive dual stack MediaPlacement URLs in Chime Meetings SDK * api-change:``cleanrooms``: This release introduces data access budgets to control how many times a table can be used for queries and jobs in a collaboration. * api-change:``cleanroomsml``: This release introduces data access budgets to view how many times an input channel can be used for ML jobs in a collaboration. * api-change:``dms``: This is a doc-only update, revising text for kms-key-arns. * api-change:``ecs``: This is a documentation only Amazon ECS release that adds additional information for health checks. * api-change:``pcs``: Added the UpdateCluster API action to modify cluster configurations, and Slurm custom settings for queues. - from version 1.42.42 * api-change:``application-signals``: Amazon CloudWatch Application Signals is introducing the Application Map to give users a more comprehensive view of their service health. Users will now be able to group services, track their latest deployments, and view automated audit findings concerning service performance. * api-change:``bedrock-agentcore-control``: Tagging support for AgentCore Gateway * api-change:``chime-sdk-voice``: Added support for IPv4-only and dual-stack network configurations for VoiceConnector and CreateVoiceConnector API. * api-change:``connectcases``: This release adds support for two new related item types: ConnectCase for linking Amazon Connect cases and Custom for user-defined related items with configurable fields. * api-change:``customer-profiles``: This release introduces ListProfileHistoryRecords and GetProfileHistoryRecord APIs for comprehensive profile history tracking with complete audit trails of creation, updates, merges, deletions, and data ingestion events. * api-change:``datasync``: Added support for FIPS VPC endpoints in FIPS-enabled AWS Regions. * api-change:``datazone``: This release adds support for creation of EMR on EKS Connections in Amazon DataZone. * api-change:``ds``: AWS Directory service now supports IPv6-native and dual-stack configurations for AWS Managed Microsoft AD, AD Connector, and Simple AD (dual-stack only). Additionally, AWS Managed Microsoft AD Standard Edition directories can be upgraded to Enterprise Edition directories through a single API call. * api-change:``ecs``: This release adds support for Managed Instances on Amazon ECS. * api-change:``fsx``: Add Dual-Stack support for Amazon FSx for NetApp ONTAP and Windows File Server * api-change:``mediatailor``: Adding TPS Traffic Shaping to Prefetch Schedules * api-change:``quicksight``: added warnings to a few CLI pages * api-change:``rds``: Enhanced RDS error handling: Added DBProxyEndpointNotFoundFault, DBShardGroupNotFoundFault, KMSKeyNotAccessibleFault for snapshots/restores/backups, NetworkTypeNotSupported, StorageTypeNotSupportedFault for restores, and granular state validation faults. Changed DBInstanceNotReadyFault to HTTP 400. * api-change:``transfer``: Add support for updating server identity provider type * enhancement:``eks``: Add ``proxy-url`` to ``aws eks update-kubeconfig``. - from version 1.42.41 * api-change:``bedrock``: Release for fixing GetFoundationModel API behavior. Imported and custom models have their own exclusive API and GetFM should not accept those ARNS as input * api-change:``bedrock-runtime``: New stop reason for Converse and ConverseStream * api-change:``imagebuilder``: This release introduces several new features and improvements to enhance pipeline management, logging, and resource configuration. * api-change:``vpc-lattice``: Adds support for specifying the number of IPv4 addresses in each ENI for the resource gateway for VPC Lattice. - from version 1.42.40 * api-change:``bedrock-agent-runtime``: This release enhances the information provided through Flow Traces. New information includes source/next node tracking, execution chains for complex nodes, dependency action (operation) details, and dependency traces. * api-change:``bedrock-data-automation``: Added support for configurable Speaker Labeling and Channel Labeling features for Audio modality. * api-change:``billing``: Add ability to combine custom billing views to create new consolidated views. * api-change:``ce``: Support for payer account dimension and billing view health status. * api-change:``connect``: Adds supports for manual contact picking (WorkList) operations on Routing Profiles, Agent Management and SearchContacts APIs. * api-change:``dynamodbstreams``: Added support for IPv6 compatible endpoints for DynamoDB Streams. * api-change:``ec2``: This release includes documentation updates for Amazon EBS General Purpose SSD (gp3) volumes with larger size and higher IOPS and throughput. * api-change:``endpoint-rules``: Update endpoint-rules command to latest version * api-change:``redshift``: Support tagging and tag propagation to IAM Identity Center for Redshift Idc Applications - from version 1.42.39 * api-change:``glue``: Update GetConnection(s) API to return KmsKeyArn & Add 63 missing connection types * api-change:``lightsail``: Attribute HTTP binding update for Get/Delete operations * api-change:``network-firewall``: Network Firewall now introduces Reject and Alert action support for stateful domain list rule groups, providing customers with more granular control over their network traffic. - from version 1.42.38 * api-change:``appstream``: G6f instance support for AppStream 2.0 * api-change:``cloudwatch``: Fix default dualstack FIPS endpoints in AWS GovCloud(US) regions * api-change:``dax``: This release adds support for IPv6-only, DUAL_STACK DAX instances * api-change:``endpoint-rules``: Update endpoint-rules command to latest version * api-change:``kms``: Documentation only updates for KMS. * api-change:``neptune``: Doc-only update to address customer use. - from version 1.42.37 * api-change:``cleanrooms``: Added support for running incremental ID mapping for rule-based workflows. * api-change:``ec2``: Add Amazon EC2 R8gn instance types * api-change:``entityresolution``: Support incremental id mapping workflow for AWS Entity Resolution * api-change:``ssm``: Added Dualstack support to GetDeployablePatchSnapshotForInstance * api-change:``sso-admin``: Add support for encryption at rest with Customer Managed KMS Key in AWS IAM Identity Center * api-change:``sso-oidc``: This release includes exception definition and documentation updates. - from version 1.42.36 * api-change:``batch``: Starting in JAN 2026, AWS Batch will change the default AMI for new Amazon ECS compute environments from Amazon Linux 2 to Amazon Linux 2023. We recommend migrating AWS Batch Amazon ECS compute environments to Amazon Linux 2023 to maintain optimal performance and security. * api-change:``eks``: Adds support for RepairConfig overrides and configurations in EKS Managed Node Groups. * api-change:``imagebuilder``: Version ARNs are no longer required for the EC2 Image Builder list-image-build-version, list-component-build-version, and list-workflow-build-version APIs. Calling these APIs without the ARN returns all build versions for the given resource type in the requesting account. - from version 1.42.35 * api-change:``bedrock-agentcore-control``: Add tagging and VPC support to AgentCore Runtime, Code Interpreter, and Browser resources. Add support for configuring request headers in Runtime. Fix AgentCore Runtime shape names. * api-change:``config``: Add UNKNOWN state to RemediationExecutionState and add IN_PROGRESS/EXITED/UNKNOWN states to RemediationExecutionStepState. * api-change:``connect``: This release adds a persistent connection field to UserPhoneConfig that maintains agent's softphone media connection for faster call connections. * api-change:``kendra-ranking``: Model whitespace change - no client difference * api-change:``license-manager-user-subscriptions``: Added support for cross-account Active Directories. * api-change:``medialive``: Add MinBitrate for QVBR mode under H264/H265/AV1 output codec. Add GopBReference, GopNumBFrames, SubGopLength fields under H265 output codec. * api-change:``sqs``: Update invalid character handling documentation for SQS SendMessage API - from version 1.42.34 * api-change:``bedrock``: Release includes an increase to the maximum policy build document size, an update to DeleteAutomatedReasoningPolicyBuildWorkflow to add ResourceInUseException, and corrections to UpdateAutomatedReasoningPolicyTestCaseRequest. * api-change:``budgets``: Added BillingViewHealthStatus Exception which is thrown when a Budget is created or updated with a Billing View that is not in the HEALTHY status * api-change:``chime-sdk-messaging``: Amazon Chime SDK Messaging GetMessagingSessionEndpoint API now returns dual-stack WebSocket endpoints supporting IPv4/IPv6. * api-change:``ec2``: Allowed AMIs adds support for four new parameters - marketplaceProductCodes, deprecationTimeCondition, creationDateCondition and imageNames - from version 1.42.33 * api-change:``ec2``: Add mac-m4.metal and mac-m4pro.metal instance types. * api-change:``network-firewall``: Network Firewall now prevents TLS handshakes with the target server until after the Server Name Indication (SNI) has been seen and verified. The monitoring dashboard now provides deeper insights into PrivateLink endpoint candidates and offers filters based on IP addresses and protocol. * api-change:``pcs``: Add support for Amazon EC2 Capacity Blocks for ML - from version 1.42.32 * api-change:``budgets``: Add support for custom time periods in budget configuration * api-change:``ivs-realtime``: IVS now offers customers the ability to control the positioning of participants in both grid and PiP layouts based on custom attribute values in participant tokens. * api-change:``logs``: Cloudwatch Logs added support for 2 new API parameters in metric and subscription filter APIs to filter log events based on system field values and emit system field values as dimensions and send them to customer destination as additional metadata. * api-change:``osis``: Adds support for cross-account ingestion for push-based sources. This includes resource policies for sharing pipelines across accounts and features for managing pipeline endpoints which enable accessing pipelines across different VPCs, including VPCs in other accounts. - Refresh patches for new version - Update Requires from setup.py - Update to 1.42.31 * api-change:``ce``: Added endpoint support for eusc-de-east-1 region. * api-change:``medical-imaging``: Added support for OpenID Connect (OIDC) custom authorizer * api-change:``observabilityadmin``: CloudWatch Observability Admin adds the ability to enable telemetry centralization in customers' Organizations. The release introduces new APIs to manage centralization rules, which define settings to replicate telemetry data to a central destination in the customers' Organization. * api-change:``s3control``: Introduce three new encryption filters: EncryptionType (SSE-S3, SSE-KMS, DSSE-KMS, SSE-C, NOT-SSE), KmsKeyArn (for SSE-KMS and DSSE-KMS), and BucketKeyEnabled (for SSE-KMS). - from version 1.42.30 * api-change:``payment-cryptography``: Add support for certificates to be signed by 3rd party certificate authorities. New API GetCertificateSigningRequest API and support for providing certificates at run-time for tr-34 import/export - from version 1.42.29 * api-change:``amp``: Add Vended Logs APIs for Amazon Prometheus Managed Collector * api-change:``datazone``: adding IAM principal id to IAM user profile details * api-change:``ecs``: This release supports hook details for Amazon ECS lifecycle hooks. * api-change:``emr-containers``: Added nodeLabel support in container provider to aid hardware isolation support for virtual cluster and security configuration. * api-change:``evs``: CreateEnvironment API now supports parameters (isHcxPublic & hcxNetworkAclId) for HCX migration via public internet, adding flexibility for migration scenarios. New APIs have been added for associating (AssociateEipToVlan) & disassociating (DisassociateEipFromVlan) Elastic IP (EIP) addresses. * api-change:``guardduty``: Updated Java SDK implementation of entity set status in GuardDuty API. * api-change:``medialive``: AWS Elemental MediaLive adds a new feature in MediaPackage output group that enables MediaPackage V2 users to control HLS-related parameters directly in MediaLive. These parameter settings are then reflected in MediaPackage outputs, providing more streamlined control over HLS configurations. * api-change:``quicksight``: This release adds support for Account level custom permissions, additional Dashboard Options, and Null support for Q&A. * api-change:``rds``: Adds support for end-to-end IAM authentication in RDS Proxy for MySQL, MariaDB, and PostgreSQL engines. - from version 1.42.28 * api-change:``networkflowmonitor``: Added new enum value (AWS::Region) for type field under MonitorLocalResource and MonitorRemoteResource. Workload Insights and Monitor top contributors queries now support a new DestinationCategory (INTER_REGION). * api-change:``payment-cryptography``: AWS Payment Cryptography Service now supports Multi-Region key replication. Customers can choose to automatically distribute keys across AWS Regions. - from version 1.42.27 * api-change:``autoscaling``: Added WaitForTransitioningInstances parameter to the CancelInstanceRefresh API, allowing the caller to cancel an instance refresh without waiting for on-going launches and terminations. * api-change:``cloudwatch``: Added a new API - DescribeAlarmContributors API, to retrieve alarm contributors in ALARM state. Added support in DescribeAlarmHistory API to query alarm contributor history * api-change:``connect``: SDK release for user defined predefined attributes. * api-change:``datazone``: Adds support for custom blueprints * api-change:``mediapackagev2``: Added CUE tag SCTE output to MediaPackageV2 HLS and LL-HLS manifests. * api-change:``organizations``: Documentation updates for AWS Organizations APIs. * api-change:``sagemaker``: Released IPv6 support with dual-stack domain options on SageMaker Studio and introduced support for p6-b200.48xlarge instance type on SageMaker Studio for JupyterLab and CodeEditor applications. - from version 1.42.26 * api-change:``iotsitewise``: Add ComputationModelVersion support in IoT SiteWise APIs * api-change:``s3``: This release includes backward compatibility work on the "Expires" parameter. * api-change:``securityhub``: This release adds the RESOURCE_NOT_FOUND error code as a possible value in responses to the following operations: BatchGetStandardsControlAssociations, BatchUpdateStandardsControlAssociations, and BatchGetSecurityControls. - from version 1.42.25 * api-change:``ecs``: This is a documentation only release that adds additional information for Amazon ECS Availability Zone rebalancing. * api-change:``pcs``: Documentation-only update to add AccountingStorageEnforce to SlurmCustomSetting. * api-change:``sagemaker``: Release IPv6 support with dualstack in SageMaker Notebooks, Tiered Storage Checkpointing Support in SageMaker HyperPod and P5.4xlarge instance type for SageMaker Hosting. - from version 1.42.24 * api-change:``cleanrooms``: Add support for configurable compute sizes for PySpark jobs. * api-change:``cloudformation``: ListHookResults API now supports retrieving invocation results for all CloudFormation Hooks (previously limited to create change set and Cloud Control operations) with new optional parameters for filtering by Hook status and ARN. * api-change:``ec2``: Add m8i, m8i-flex and i8ge instance types. * api-change:``opensearchserverless``: Add support for Federal Information Processing Standards (FIPS) and Federal Risk and Authorization Management Program (FedRAMP) compliance * api-change:``rds``: Added new EndpointNetworkType and TargetConnectionNetworkType fields in Proxy APIs to support IPv6 * api-change:``verifiedpermissions``: Amazon Verified Permissions / Features : Adds support for datetime and duration attribute values. - from version 1.42.23 * api-change:``cleanrooms``: Added support for adding new data provider members to an existing collaboration. * api-change:``cleanroomsml``: AWS Clean Rooms ML adds log sanitization for privacy-enhanced error summaries, supports new instance types for custom models providing better performance and lower costs, and deprecates P3-series instances. * api-change:``cloudfront``: Adding an optional field IpAddressType in CustomOriginConfig * api-change:``mq``: Add CONFIG_MANAGED as a supported AuthenticationStrategy for Amazon MQ for RabbitMQ brokers. Make username and password optional on broker creation for CONFIG_MANAGED brokers. * api-change:``rds``: This release adds support for MasterUserAuthenticationType parameter on CreateDBInstance, ModifyDBInstance, CreateDBCluster, and ModifyDBCluster operations. * api-change:``route53``: Amazon Route 53 now supports the Asia Pacific (New Zealand) Region (ap-southeast-6) for latency records, geoproximity records, and private DNS for Amazon VPCs in that region. * api-change:``route53domains``: Added new ExtraParams AU_ELIGIBILITY_TYPE, AU_POLICY_REASON, and AU_REGISTRANT_NAME - from version 1.42.22 * api-change:``ec2``: MaximumEbsAttachments and AttachmentLimitType fields added to DescribeInstanceTypesResponse. G6f, Gr6f, R8i, R8i-flex and p5.4xlarge instance types added to InstanceTypes enum. * api-change:``neptune``: Removed the deprecated marker from publiclyAccessible parameter from DbInstance, CreateDbInstance and ModifyDbInstance and added relevant usage information for the parameter. * api-change:``notifications``: Added Org support for notifications: - `ListMemberAccounts` gets member accounts list, `AssociateOrganizationalUnit` links OU to notification configuration, `DisassociateOrganizationalUnit` removes OU from notification configuration, `ListOrganizationalUnits` shows OUs configured for notifications. * api-change:``workmail``: Make RoleArn an optional parameter for the PutEmailMonitoringConfiguration API, and add UnsupportedOperationException to RegisterToWorkMail. - from version 1.42.21 * api-change:``bedrock-runtime``: Fixed stop sequence limit for converse API. * api-change:``ec2``: Release shows new route types such as filtered and advertisement. * api-change:``xray``: AWS X-Ray Features: Support Sampling Rate Boost On Anomaly - from version 1.42.20 * api-change:``applicationcostprofiler``: Remove incorrect endpoint tests * api-change:``apprunner``: Doc only updates for APIs and and datatypes related to IPAddressType and Subnets for IPv6 dualstack support. * api-change:``autoscaling-plans``: Remove incorrect endpoint tests * api-change:``cloud9``: Remove incorrect endpoint tests * api-change:``cloudhsmv2``: Remove incorrect endpoint tests * api-change:``cloudsearchdomain``: Remove incorrect endpoint tests * api-change:``codedeploy``: Remove incorrect endpoint tests * api-change:``codeguru-reviewer``: Remove incorrect endpoint tests * api-change:``connect``: AgentStatusDrillDown feature in GetCurrentMetricData API. Adding AGENT_STATUS as filter and grouping in GetCurrentMetricData API * api-change:``databrew``: Remove incorrect endpoint tests * api-change:``dynamodb``: Remove incorrect endpoint tests * api-change:``ec2``: This release adds support for copying Amazon EBS snapshot and AMIs to and from Local Zones. * api-change:``ec2-instance-connect``: Remove incorrect endpoint tests * api-change:``endpoint-rules``: Update endpoint-rules command to latest version * api-change:``fis``: Remove incorrect endpoint tests * api-change:``fms``: Remove incorrect endpoint tests * api-change:``geo-maps``: Remove incorrect endpoint tests * api-change:``glue``: Adding support to fetch TargetDatabase field during GetDatabases with AttributesToGet * api-change:``healthlake``: Add ValidationLevel parameter to StartFHIRImportJob API, allowing users to specify a FHIR validation level for their asynchronous import jobs. * api-change:``machinelearning``: Remove incorrect endpoint tests * api-change:``mediastore-data``: Remove incorrect endpoint tests * api-change:``mturk``: Remove incorrect endpoint tests * api-change:``omics``: Adds Amazon ECR pull through cache support to AWS HealthOmics, so you can more easily use container images from external sources. * api-change:``osis``: Remove incorrect endpoint tests * api-change:``pinpoint-sms-voice``: Remove incorrect endpoint tests * api-change:``rds``: Added RDS HTTP Endpoint feature support flag to DescribeOrderableDBInstanceOptions API * api-change:``route53domains``: Remove incorrect endpoint tests * api-change:``savingsplans``: Remove incorrect endpoint tests * api-change:``scheduler``: Remove incorrect endpoint tests * api-change:``ses``: Remove incorrect endpoint tests * api-change:``ssm-sap``: Added support for Configuration Checks on SAP HANA Applications. * api-change:``sso``: Remove incorrect endpoint tests * api-change:``timestream-query``: Remove incorrect endpoint tests * api-change:``waf``: Remove incorrect endpoint tests * api-change:``workmailmessageflow``: Remove incorrect endpoint tests * api-change:``xray``: Remove incorrect endpoint tests - from version 1.42.19 * api-change:``amplifybackend``: Remove incorrect endpoint tests * api-change:``application-insights``: Remove incorrect endpoint tests * api-change:``batch``: Added ECS_AL2023_NVIDIA as an option for Ec2Configuration.imageType. * api-change:``chime``: Remove incorrect endpoint tests * api-change:``chime-sdk-identity``: Remove incorrect endpoint tests * api-change:``chime-sdk-meetings``: Remove incorrect endpoint tests * api-change:``chime-sdk-voice``: Remove incorrect endpoint tests * api-change:``codeguruprofiler``: Remove incorrect endpoint tests * api-change:``datapipeline``: Remove incorrect endpoint tests * api-change:``discovery``: Remove incorrect endpoint tests * api-change:``ds``: Add APIs for CA AutoEnrollment support: DescribeCAEnrollmentPolicy, EnableCAEnrollmentPolicy and DisableCAEnrollmentPolicy. * api-change:``eks``: Add support for on-demand refresh of EKS cluster insights * api-change:``elasticache``: Remove incorrect endpoint tests * api-change:``endpoint-rules``: Update endpoint-rules command to latest version * api-change:``evidently``: Remove incorrect endpoint tests * api-change:``frauddetector``: Remove incorrect endpoint tests * api-change:``inspector``: Remove incorrect endpoint tests * api-change:``kinesisvideo``: Remove incorrect endpoint tests * api-change:``kinesis-video-media``: Remove incorrect endpoint tests * api-change:``lakeformation``: Remove incorrect endpoint tests * api-change:``lex-models``: Remove incorrect endpoint tests * api-change:``migrationhub-config``: Remove incorrect endpoint tests * api-change:``neptune-graph``: Add StartGraph and StopGraph operations to Neptune Analytics * api-change:``personalize``: Remove incorrect endpoint tests * api-change:``pi``: Remove incorrect endpoint tests * api-change:``qldb-session``: Remove incorrect endpoint tests * api-change:``redshift``: Remove incorrect endpoint tests * api-change:``robomaker``: Remove incorrect endpoint tests * api-change:``sagemaker``: This release adds support for AutoScaling on SageMaker HyperPod. * api-change:``schemas``: Remove incorrect endpoint tests * api-change:``snow-device-management``: Remove incorrect endpoint tests * api-change:``timestream-write``: Remove incorrect endpoint tests * api-change:``voice-id``: Remove incorrect endpoint tests * api-change:``workdocs``: Remove incorrect endpoint tests * api-change:``workmail``: Remove incorrect endpoint tests - from version 1.42.18 * api-change:``apprunner``: Remove incorrect endpoint tests * api-change:``arc-zonal-shift``: This release adds new API options to enable allowed windows and multiple alarms for practice runs. * api-change:``codecommit``: Remove incorrect endpoint tests * api-change:``codestar-connections``: Remove incorrect endpoint tests * api-change:``comprehendmedical``: Remove incorrect endpoint tests * api-change:``connectparticipant``: Amazon Connect Participant Service: Remove unused fields from WebRTCConnection * api-change:``dlm``: Remove incorrect endpoint tests * api-change:``ec2``: Add new APIs for viewing how your shared AMIs are used by other accounts, and identify resources in your account that are dependent on particular AMIs * api-change:``elastictranscoder``: Remove incorrect endpoint tests * api-change:``endpoint-rules``: Update endpoint-rules command to latest version * api-change:``finspace``: Remove incorrect endpoint tests * api-change:``geo-routes``: Added RouteFerryNotice PotentialViolatedVehicleRestrictionUsage value for CalculateRoutes. This value indicates when the Route is potentially forbidden for the given vehicle profile. * api-change:``glacier``: Remove incorrect endpoint tests * api-change:``globalaccelerator``: Remove incorrect endpoint tests * api-change:``greengrass``: Remove incorrect endpoint tests * api-change:``identitystore``: Remove incorrect endpoint tests * api-change:``imagebuilder``: Remove incorrect endpoint tests * api-change:``iotsecuretunneling``: Remove incorrect endpoint tests * api-change:``kafka``: Remove incorrect endpoint tests * api-change:``lookoutvision``: Remove incorrect endpoint tests * api-change:``mgh``: Remove incorrect endpoint tests * api-change:``migration-hub-refactor-spaces``: Remove incorrect endpoint tests * api-change:``mq``: Remove incorrect endpoint tests * api-change:``personalize-events``: Remove incorrect endpoint tests * api-change:``pinpoint``: Remove incorrect endpoint tests * api-change:``ram``: Remove incorrect endpoint tests * api-change:``rbin``: Remove incorrect endpoint tests * api-change:``route53-recovery-cluster``: Remove incorrect endpoint tests * api-change:``sagemaker-geospatial``: Remove incorrect endpoint tests * api-change:``servicecatalog-appregistry``: Remove incorrect endpoint tests * api-change:``signer``: Remove incorrect endpoint tests * api-change:``waf-regional``: Remove incorrect endpoint tests - from version 1.42.17 * api-change:``appflow``: Remove incorrect endpoint tests * api-change:``b2bi``: Updated APIs to support custom validation rules. * api-change:``chime-sdk-media-pipelines``: Remove incorrect endpoint tests * api-change:``chime-sdk-messaging``: Remove incorrect endpoint tests * api-change:``cloudsearch``: Remove incorrect endpoint tests * api-change:``cloudtrail-data``: Remove incorrect endpoint tests * api-change:``codeartifact``: Remove incorrect endpoint tests * api-change:``codeguru-security``: Documentation update to notify users of the discontinuation of Amazon CodeGuru Security. * api-change:``codestar-notifications``: Remove incorrect endpoint tests * api-change:``cur``: Remove incorrect endpoint tests * api-change:``datazone``: Releasing the following features - Asset classification that lets users use restricted terms for classifying assets if they have the right permissions. Also adding a new enum value "Moving" to project status. * api-change:``dax``: Remove incorrect endpoint tests * api-change:``devops-guru``: Remove incorrect endpoint tests * api-change:``ec2``: Added IPv6 support for AWS Client VPN. * api-change:``emr-containers``: Remove incorrect endpoint tests * api-change:``endpoint-rules``: Update endpoint-rules command to latest version * api-change:``finspace-data``: Remove incorrect endpoint tests * api-change:``forecast``: Remove incorrect endpoint tests * api-change:``iotfleethub``: Remove incorrect endpoint tests * api-change:``kendra``: Remove incorrect endpoint tests * api-change:``kinesisanalytics``: Remove incorrect endpoint tests * api-change:``kinesis-video-archived-media``: Remove incorrect endpoint tests * api-change:``lex-runtime``: Remove incorrect endpoint tests * api-change:``lookoutequipment``: Remove incorrect endpoint tests * api-change:``mediaconvert``: This release adds support for input rendition selection for HLS input, adds new Share API to enable sharing jobs with AWS Support for support investigations, and adds INCLUDE_AS_TS to iFrameOnlyManifest setting for HLS outputs. * api-change:``mediapackage-vod``: Remove incorrect endpoint tests * api-change:``mediastore``: Remove incorrect endpoint tests * api-change:``personalize-runtime``: Remove incorrect endpoint tests * api-change:``qbusiness``: The Amazon Q Business GetDocumentContent operation now supports retrieval of the extracted text content in JSON format. * api-change:``resourcegroupstaggingapi``: Remove incorrect endpoint tests * api-change:``sagemaker-edge``: Remove incorrect endpoint tests * api-change:``sagemaker-featurestore-runtime``: Remove incorrect endpoint tests * api-change:``sagemaker-runtime``: Remove incorrect endpoint tests * api-change:``serverlessrepo``: Remove incorrect endpoint tests * api-change:``shield``: Remove incorrect endpoint tests * api-change:``snowball``: Remove incorrect endpoint tests * api-change:``sqs``: Documentation update for Amazon SQS Supports Large Payload Message feature * api-change:``support``: Remove incorrect endpoint tests * api-change:``support-app``: Remove incorrect endpoint tests * api-change:``timestream-influxdb``: Add MAINTENANCE status for DbInstance and DbCluster * api-change:``translate``: Remove incorrect endpoint tests * api-change:``wellarchitected``: Remove incorrect endpoint tests - from version 1.42.16 * api-change:``clouddirectory``: Remove incorrect endpoint tests * api-change:``cognito-sync``: Remove incorrect endpoint tests * api-change:``docdb``: Remove incorrect endpoint tests * api-change:``elb``: Remove incorrect endpoint tests * api-change:``endpoint-rules``: Update endpoint-rules command to latest version * api-change:``healthlake``: Remove incorrect endpoint tests * api-change:``iotanalytics``: Remove incorrect endpoint tests * api-change:``macie2``: Remove incorrect endpoint tests * api-change:``marketplacecommerceanalytics``: Remove incorrect endpoint tests * api-change:``medialive``: AWS Elemental MediaLive now has a field called "SubtitleRows" for controlling subtitle row count for DVB-Sub and Burn-In captions outputs * api-change:``memorydb``: Remove incorrect endpoint tests * api-change:``proton``: Remove incorrect endpoint tests * api-change:``qconnect``: Releasing model ID support for UpdateAIPrompt * api-change:``qldb``: Remove incorrect endpoint tests * api-change:``rds``: Updates Amazon RDS documentation for Db2 read-only replicas. * api-change:``route53-recovery-readiness``: Remove incorrect endpoint tests * api-change:``sagemaker``: Launch SageMaker Notebook Instances support for AL2023 along with P6-B200 instance type and Rootless Docker support for SageMaker Studio. * api-change:``sagemaker-a2i-runtime``: Remove incorrect endpoint tests * api-change:``simspaceweaver``: Remove incorrect endpoint tests * api-change:``synthetics``: Added multi browser support for synthetics canaries, Increased ephemeral storage limit from 5GB to 10GB * api-change:``wafv2``: test and verified, safe to release - from version 1.42.15 * api-change:``apigatewaymanagementapi``: Remove incorrect endpoint tests * api-change:``appfabric``: Remove incorrect endpoint tests * api-change:``backup-gateway``: Remove incorrect endpoint tests * api-change:``cloudhsm``: Remove incorrect endpoint tests * api-change:``cognito-identity``: Remove incorrect endpoint tests * api-change:``comprehend``: Remove incorrect endpoint tests * api-change:``ebs``: Remove incorrect endpoint tests * api-change:``ecr-public``: Remove incorrect endpoint tests * api-change:``ecs``: This is a documentation only release that adds additional information for the update-service request parameters. * api-change:``elasticbeanstalk``: Remove incorrect endpoint tests * api-change:``endpoint-rules``: Update endpoint-rules command to latest version * api-change:``es``: Remove incorrect endpoint tests * api-change:``forecastquery``: Remove incorrect endpoint tests * api-change:``gameliftstreams``: The default application in a stream group can now be changed at any time using UpdateStreamGroup to update the DefaultApplicationIdentifier. * api-change:``glue``: Added support for preprocessing queries in Data Quality operations through new DataQualityGlueTable structure. * api-change:``greengrassv2``: Remove incorrect endpoint tests * api-change:``guardduty``: Remove Pattern trait from email field * api-change:``iotdeviceadvisor``: Remove incorrect endpoint tests * api-change:``iotevents``: Remove incorrect endpoint tests * api-change:``iotevents-data``: Remove incorrect endpoint tests * api-change:``iotthingsgraph``: Remove incorrect endpoint tests * api-change:``kinesis-video-signaling``: Remove incorrect endpoint tests * api-change:``lexv2-runtime``: Remove incorrect endpoint tests * api-change:``lookoutmetrics``: Remove incorrect endpoint tests * api-change:``managedblockchain``: Remove incorrect endpoint tests * api-change:``mediapackage``: Remove incorrect endpoint tests * api-change:``panorama``: Remove incorrect endpoint tests * api-change:``pinpoint-email``: Remove incorrect endpoint tests * api-change:``resource-groups``: Remove incorrect endpoint tests * api-change:``s3outposts``: Remove incorrect endpoint tests * api-change:``ssm-contacts``: Doc-only updates for Incident Manager Contacts August 2025 - from version 1.42.14 * api-change:``bedrock-runtime``: Launch CountTokens API to allow token counting * api-change:``billing``: Clarify IPv4 and IPv6 endpoints * api-change:``cognito-idp``: This release adds support for the new Terms APIs which allow displaying Terms of Use and Privacy Policy on the Managed Login user-registration page. * api-change:``datazone``: This release supports policy grant identifier for cloud formation integration * api-change:``detective``: Remove incorrect endpoint tests * api-change:``dynamodb``: Remove incorrect endpoint tests * api-change:``eks``: EKS Add-ons Custom Namespace Support * api-change:``endpoint-rules``: Update endpoint-rules command to latest version * api-change:``kinesisanalyticsv2``: Adds Key Management Service (KMS) support allowing customer-managed key (CMK) encryption for Flink application data. * api-change:``pinpoint-sms-voice-v2``: This change added InternationalSendingEnbaled as part of describe/Update/Request phone number API response, and as part of update/Request phone number API request * api-change:``route53-recovery-control-config``: Remove incorrect endpoint tests * api-change:``sagemaker``: This release adds 1/ Launch ml.p5.4xlarge instance in Processing jobs, Training jobs and Training Plan 2/ Makes S3Uri to be required for S3FileSystem and S3FileSystemConfig. - from version 1.42.13 * api-change:``cleanrooms``: Support error message configuration for analysis templates * api-change:``ec2``: Add support for "warning" volume status. * api-change:``polly``: Added support for new output format - Opus. - from version 1.42.12 * api-change:``batch``: Added default_x86_64 and default_arm64 as values to the instanceTypes field. * api-change:``bcm-dashboards``: Billing and Cost Management Dashboards enables users to create dashboards that combine multiple visualizations of cost and usage data. Users can create, manage, and share dashboards. Tags are also available for dashboards. * api-change:``connect``: Amazon Connect Service Feature: Add support to enable multi-user in-app, web, and video calling. * api-change:``connectparticipant``: Amazon Connect Service Feature: Add support to enable multi-user in-app, web, and video calling. * api-change:``endpoint-rules``: Update endpoint-rules command to latest version * api-change:``s3control``: Adds support for Compute checksum functionality in Amazon S3 Batch Operations. You can now calculate checksums for a list of objects using supported algorithms in Amazon S3, without requiring a restore or download * api-change:``sagemaker``: Customer managed keys now available for volume encryption of SageMaker HyperPod clusters. - from version 1.42.11 * api-change:``amp``: Add Resource-based Policy APIs for Amazon Prometheus * api-change:``bedrock-agent``: This release adds support for saving Bedrock Flows while node configuration is still in progress, even if the Flow is not yet able to be invoked * api-change:``glue``: AWS Glue Zero ETL now supports On-demand snapshot load - from version 1.42.10 * api-change:``arc-region-switch``: Endpoint rule test and documentation update. * api-change:``bcm-recommended-actions``: Initial SDK release for AWS Billing and Cost Management Recommended Actions. * api-change:``directconnect``: Added pagination support for DescribeHostedConnections, DescribeVirtualInterfaces, DescribeConnections, DescribeInterconnects, DescribeLags. Added asnLong support for BGP peer operations which supports a large range. * api-change:``dynamodb``: This release 1/ Adds support for throttled keys mode for CloudWatch Contributor Insights, 2/ Adds throttling reasons to exceptions across dataplane APIs. 3/ Explicitly models ThrottlingException as a class in statically typed languages. Refer to the launch day blog post for more details. * api-change:``ec2``: This release adds ModifyInstanceConnectEndpoint API to update configurations on existing EC2 Instance Connect Endpoints and improves IPv6 support through dualstack DNS names for EC2 Instance Connect Endpoints. * api-change:``endpoint-rules``: Update endpoint-rules command to latest version * api-change:``fsx``: Amazon FSx for NetApp ONTAP 2nd generation file systems now support decreasing SSD storage capacity. * api-change:``glue``: AWS Glue now supports Trusted Identity Propagation. * api-change:``guardduty``: Added support for entity lists. * api-change:``medialive``: CMAF Ingest output groups in MediaLive can now accept one additional destination url for single pipeline channels and up to two additional destination urls for standard channels. * api-change:``pcs``: Updated the regex pattern and description of iamInstanceProfileArn in the CreateComputeNodeGroup and UpdateComputeNodeGroup API actions. Name and path requirements apply to the ARN of the IAM role associated with the instance profile and not the ARN of the instance profile. * api-change:``qapps``: Documentation update for Amazon Q Apps API Reference * api-change:``servicediscovery``: Added support for cross account through Id parameter overloading with ARN and allow owner account for some APIs instead of ARN * api-change:``workspaces``: New APIs introduced to import WorkSpaces BYOL image using a new process that leveraged EC2 Image Builder. WorkSpaces tests and fixes your image's compatibility issues and supports customized VM images. - from version 1.42.9 * api-change:``braket``: Add support for Braket program sets. * api-change:``datazone``: Adds support for account pools and project profile account decoupling * api-change:``fsx``: Add Dual-Stack support for Amazon FSx for OpenZFS file systems * api-change:``partnercentral-selling``: Add Tagging Support for Opportunity resources * api-change:``sagemaker``: This release introduces compute quota for GPU, Trainium accelerators, vCPU, and vCPU memory utilization across teams in HyperPod clusters * api-change:``security-ir``: Added support for Organizational Unit-level Membership configuration and the ability to resume a cancelled membership. * bugfix:``dynamodb``: Correct Scan and Scanned Count values when resuming a scan or query with a ``--starting-token`` - from version 1.42.8 * api-change:``backupsearch``: Using recommended smithy trait to generate regional endpoints for Backup Search * api-change:``codebuild``: AWS CodeBuild now supports PullRequestBuildPolicy in webhook object. * api-change:``ec2``: Release to allow route table association with a PublicIpv4Pool. * api-change:``organizations``: This release introduces 2 new APIs in Organizations: 1. ListAccountsWithInvalidEffectivePolicy 2. ListEffectivePolicyValidationErrors * api-change:``sagemaker``: IAM Identity Center trusted identity propagation is now supported in SageMaker Studio. * api-change:``transcribe``: AWS HealthScribe now supports specifying preferred patient pronouns through the MedicalScribeContext parameter for use in the generated clinical notes. - from version 1.42.7 * api-change:``bedrock``: This release includes model updates and enhanced SDK documentation for union fields in automated reasoning policy components. Added docs cover policy definitions, mutations (add/update for rules/types/variables), build assets, workflow sources, test results, and tag exception handling. * api-change:``cognito-idp``: Remove SigV4 auth requirement for GetTokensFromRefreshToken * api-change:``connect``: Updating SearchUserHierarchyGroups API * api-change:``deadline``: Adds support for Wait and Save feature in service-managed fleets * api-change:``ec2``: This release adds AvailabilityZoneId support for CreateVolume, DescribeVolume, LaunchTemplates, RunInstances, DescribeInstances, CreateDefaultSubnet, SpotInstances, and CreateDefaultSubnet APIs. * api-change:``evs``: Update for general availability of Amazon Elastic VMware Service (EVS). * api-change:``lambda``: Doc-only update for Lambda that updates the maximum payload size for response streaming invocations to 200 MB. * api-change:``quicksight``: Add RowAxisDisplayOptions and ColumnAxisDisplayOptions to HeatMapConfiguration, add Actions to PluginVisual, increase limit for CalculatedFields list * api-change:``sso-admin``: Added support for managing user background session for applications - from version 1.42.6 * api-change:``connect``: This release adds a new API GetContactMetrics for Amazon Connect. * api-change:``inspector2``: Add CVSSV4 to Vulnerability Search API and update enable/disable account id list length to 5 * api-change:``iot-data``: Adding DeleteConnection API to IoT Data Plane * api-change:``sagemaker``: Adds support for GB200 UltraServers in Amazon SageMaker training jobs, training plans, and HyperPod clusters * api-change:``transcribe``: Update documentation to use key ARN only in OutputEncryptionKMSKeyId request parameter - from version 1.42.5 * api-change:``batch``: This feature allows customers to use AWS Batch with Linux with ARM64 CPU Architecture with Fargate Spot compute support. * api-change:``cloudfront``: Added new viewer security policy, TLSv1.3_2025, for CloudFront. * api-change:``codebuild``: AWS CodeBuild now supports comment-based pull request control. * api-change:``gameliftstreams``: Adds Proton 9.0-2 to the list of runtime environment options available when creating an Amazon GameLift Streams application * api-change:``glue``: AWS Glue Data Catalog now supports Iceberg Optimization settings at the Catalog level, and supports new options to control the optimization job run rate. * api-change:``guardduty``: Added support for VPC owner account ID associated with DNS request in the GuardDuty finding. - from version 1.42.4 * api-change:``appstream``: Added support for G6 instances * api-change:``budgets``: Adds support for billing views. Billing views let you control access to cost and usage data through an AWS resource, streamlining the process of sharing cost and usage data across account boundaries. With this release, you can now create and view budgets based on billing views. * api-change:``ec2``: Mark Elastic Inference Accelerators and Elastic Graphics Processor parameters as deprecated on the RunInstances and LaunchTemplate APIs. * api-change:``opensearchserverless``: Features: add Index APIs in OpenSearchServerless to support managed semantic enrichment * api-change:``qbusiness``: Amazon Q Business now supports the GetDocumentContent() API that enables customers to securely access the source documents through clickable citation links at query time - from version 1.42.3 * api-change:``bedrock``: This release introduces Automated Reasoning checks for Amazon Bedrock Guardrails. The feature adds new APIs for policy building, refinement, version management, and testing. Guardrail APIs now support Automated Reasoning policy configuration and validation output. * api-change:``bedrock-runtime``: This release adds support for Automated Reasoning checks output models for the Amazon Bedrock Guardrails ApplyGuardrail API. * api-change:``eks``: Add support for deletion protection on EKS clusters * api-change:``rds``: Adds a new Aurora Serverless v2 attribute to the DBCluster resource to expose the platform version. Also updates the attribute to be part of both the engine version and platform version descriptions. * api-change:``sagemaker``: Add support for SageMaker Hyperpod continuous scaling and custom AMI; Introduce new APIs: ListClusterEvents, DescribeClusterEvent, BatchAddClusterNodes - from version 1.42.2 * api-change:``bedrock-agentcore``: Remove superfluous field from API * api-change:``codeconnections``: New integration with Azure DevOps provider type. * api-change:``evs``: TagResource API now throws ServiceQuotaExceededException when the number of tags on the Amazon EVS resource exceeds the maximum allowed. TooManyTagsException is deprecated. * api-change:``iotsitewise``: Support Interface for IoT SiteWise Asset Modeling * api-change:``sagemaker``: This release adds the ability for customers to attach and detach their EBS volumes to EKS-orchestrated HyperPod cluster nodes. - from version 1.42.1 * api-change:``acm-pca``: Doc-only update to add more information to GetCertificate action. * api-change:``aiops``: This release includes fix for InvestigationGroup timestamp conversion issue. * api-change:``arc-region-switch``: This is the initial SDK release for Region switch * api-change:``auditmanager``: Added a note to Framework APIs (CreateAssessmentFramework, GetAssessmentFramework, UpdateAssessmentFramework) clarifying that the Controls object returns a partial response when called through Framework APIs. Added documentation that the Framework's controlSources parameter is no longer supported. * api-change:``lightsail``: This release adds support for the Asia Pacific (Jakarta) (ap-southeast-3) Region. * api-change:``observabilityadmin``: CloudWatch Observability Admin adds the ability to enable telemetry on AWS resources such as Amazon VPCs (Flow Logs) in customers AWS Accounts and Organizations. The release introduces new APIs to manage telemetry rules, which define telemetry settings to be applied on AWS resources. * api-change:``pcs``: Add support for IPv6 Networking for Clusters. * api-change:``securityhub``: Release new resource detail type CodeRepository * api-change:``sns``: Amazon SNS support for Amazon SQS fair queues - from version 1.42.0 * api-change:``customer-profiles``: The release updates standard profile with 2 new fields that supports account-level engagement. Updated APIs include CreateProfile, UpdateProfile, MergeProfiles, SearchProfiles, BatchGetProfile, GetSegmentMembership, CreateSegmentDefinition, CreateSegmentEstimate. * api-change:``ec2``: Added support for the force option for the EC2 instance terminate command. This feature enables customers to recover resources associated with an instance stuck in the shutting-down state as a result of rare issues caused by a frozen operating system or an underlying hardware problem. * api-change:``elbv2``: This release enables secondary IP addresses for Network Load Balancers. * api-change:``entityresolution``: Add support for creating advanced rule-based matching workflows in AWS Entity Resolution. * api-change:``glue``: Added support for Route node, S3 Iceberg sources/targets, catalog Iceberg sources, DynamoDB ELT connector, AutoDataQuality evaluation, enhanced PII detection with redaction, Kinesis fan-out support, and new R-series worker types. * api-change:``inspector2``: Extend usage to include agentless hours and add CODE_REPOSITORY to aggregation resource type * api-change:``iot``: This release allows AWS IoT Core users to use their own AWS KMS keys for data protection * api-change:``opensearch``: Granular access control support for NEO-SAML with IAMFederation for AOS data source * api-change:``quicksight``: Added Impala connector support * api-change:``s3control``: Add Tags field to CreateAccessPoint * api-change:``sesv2``: This release introduces support for Multi-tenant management * api-change:``workspaces-web``: Added ability to log session activity on a portal to an S3 bucket. * feature:``sts``: Updated the default sts service endpoint from ``legacy`` to ``regional``. This behavior can be overridden using the ``sts_regional_endpoints`` setting in the shared AWS config file or the ``AWS_STS_REGIONAL_ENDPOINTS`` environment variable. - from version 1.41.17 * api-change:``cloudfront``: This release adds new origin timeout options: 1) ResponseCompletionTimeout and 2) OriginReadTimeout (for S3 origins) * api-change:``docdb``: Add support for setting Serverless Scaling Configuration on clusters. * api-change:``ds``: This release adds support for AWS Managed Microsoft AD Hybrid Edition, introducing new operations: StartADAssessment, DescribeADAssessment, ListADAssessments, DeleteADAssessment, CreateHybridAD, UpdateHybridAD, and DescribeHybridADUpdate; and updated existing operation: DescribeDirectories. * api-change:``ec2``: Release to show the next hop IP address for routes propagated by VPC Route Server into VPC route tables. * api-change:``iotwireless``: Added TxPowerIndexMin, TxPowerIndexMax, NbTransMin and NbTransMax params to ServiceProfile. - from version 1.41.16 * api-change:``batch``: AWS Batch for SageMaker Training jobs feature support. Includes new APIs for service job submission (e.g., SubmitServiceJob) and managing service environments (e.g., CreateServiceEnvironment) that enable queueing SageMaker Training jobs. * api-change:``cleanrooms``: This feature provides the ability to update the table reference and allowed columns on an existing configured table. * api-change:``deadline``: Adds support for tag management on monitors. * api-change:``location``: This release 1) adds support for multi-polygon geofences with disconnected territories, and 2) enables polygon exclusion zones within geofences for more accurate representation of real-world boundaries. * api-change:``opensearchserverless``: This is to support Granular access control support for SAML with IAMFedraton in AOSS - from version 1.41.15 * api-change:``directconnect``: Enable MACSec support and features on Interconnects. * api-change:``iotsitewise``: Add support for native anomaly detection in IoT SiteWise using new Computation Model APIs * api-change:``osis``: Add Pipeline Role Arn as an optional parameter to the create / update pipeline APIs as an alternative to passing in the pipeline configuration body - from version 1.41.14 * api-change:``appintegrations``: Amazon AppIntegrations introduces new configuration capabilities to enable customers to manage iframe permissions, control application refresh behavior (per contact or per browser/cross-contact), and run background applications (service). * api-change:``budgets``: Adds IPv6 and PrivateLink support for AWS Budgets in IAD. * api-change:``config``: Documentation improvements have been made to the EvaluationModel and DescribeConfigurationRecorders APIs. * api-change:``ec2``: Transit Gateway native integration with AWS Network Firewall. Adding new enum value for the new Transit Gateway Attachment type. * api-change:``kms``: Doc only update: fixed grammatical errors. * api-change:``mediapackagev2``: This release adds support for specifying a preferred input for channels using CMAF ingest. * api-change:``socialmessaging``: This release introduces new WhatsApp template management APIs that enable customers to programmatically create and submit templates for approval, monitor approval status, and manage the complete template lifecycle * api-change:``sqs``: Documentation updates for Amazon SQS fair queues feature. - from version 1.41.13 * api-change:``datazone``: This release adds support for 1) highlighting relevant text in returned results for Search and SearchListings APIs and 2) returning aggregated counts of values for specified attributes for SearchListings API. * api-change:``omics``: Add Git integration and README support for HealthOmics workflows - from version 1.41.12 * api-change:``ec2``: Added support for skip-os-shutdown option for the EC2 instance stop and terminate operations. This feature enables customers to bypass the graceful OS shutdown, supporting faster state transitions when instance data preservation isn't critical. * api-change:``glue``: AWS Glue now supports dynamic session policies for job executions. This feature allows you to specify custom, fine-grained permissions for each job run without creating multiple IAM roles. * api-change:``workspaces-thin-client``: Added the lastUserId parameter to the ListDevices and GetDevice API. - from version 1.41.11 * api-change:``ecr``: Add support for Image Tag Mutability Exception feature, allowing repositories to define wildcard-based patterns that override the default image tag mutability settings. * api-change:``emr``: This release adds new parameter 'ExtendedSupport' in AWS EMR RunJobFlow, ModifyCluster and DescribeCluster API. * api-change:``lambda``: This release migrated the model to Smithy keeping all features unchanged. * api-change:``neptunedata``: This release updates the supported regions for Neptune API to include current AWS regions. * enhancement:EMR: Updated create-cluster and describe-cluster commands to support --extended-support and --no-extended-support arguments - from version 1.41.10 * api-change:``cloudfront``: Add dualstack endpoint support * api-change:``deadline``: Add support for VPC resource endpoints in Service Managed Fleets * api-change:``ec2``: This release adds support for C8gn, F2 and P6e-GB200 Instance types * api-change:``sagemaker``: This release adds 1/ Support for S3FileSystem in CustomFileSystems 2/ The ability for a customer to select their preferred IpAddressType for use with private Workforces 3/ Support for p4de instance type in SageMaker Training Plans * api-change:``timestream-influxdb``: Timestream for InfluxDB adds support for db.influx.24xlarge instance type. This enhancement enables higher compute capacity for demanding workloads through CreateDbInstance, CreateDbCluster, UpdateDbInstance, and UpdateDbCluster APIs. * enhancement:cloudfront: This release adds automatic pagination to the list-origin-access-controls command. To disable this behavior, please use the --no-paginate flag. - from version 1.41.9 * api-change:``auditmanager``: Updated error handling for RegisterOrganizationAdminAccount API to properly translate TooManyExceptions to HTTP 429 status code. This enhancement improves error handling consistency and provides clearer feedback when request limits are exceeded. * api-change:``logs``: CloudWatchLogs launches GetLogObject API with streaming support for efficient log data retrieval. Logs added support for new AccountPolicy type METRIC_EXTRACTION_POLICY. For more information, see CloudWatch Logs API documentation * api-change:``mediaconvert``: This release adds support for TAMS server integration with MediaConvert inputs. * api-change:``outposts``: Add AWS Outposts API to surface customer billing information * api-change:``sesv2``: Added IP Visibility support for managed dedicated pools. Enhanced GetDedicatedIp and GetDedicatedIps APIs to return managed IP addresses. * api-change:``ssm``: July 2025 doc-only updates for Systems Manager. - from version 1.41.8 * api-change:``cleanroomsml``: This release introduces Parquet result format support for ML Input Channel models in AWS Clean Rooms ML. * api-change:``cloudfront``: Doc only update for CloudFront that fixes some customer-reported issues * api-change:``ec2``: AWS Free Tier Version2 Support * api-change:``keyspacesstreams``: Doc only update for the Amazon Keyspaces Streams API. * api-change:``mailmanager``: Allow underscores in the local part of the input of the "Email recipients rewrite" action in rule sets. * api-change:``mediaconvert``: This release expands the range of supported audio outputs to include xHE, 192khz FLAC and the deprecation of dual mono for AC3. * api-change:``stepfunctions``: Align input with style guidelines. * api-change:``synthetics``: This feature allows AWS Synthetics customers to provide code dependencies using lambda layer while creating a canary - from version 1.41.7 * api-change:``bedrock``: This release adds support for on-demand custom model inference through CustomModelDeployment APIs for Amazon Bedrock. * api-change:``bedrock-agentcore``: Initial release of Amazon Bedrock AgentCore SDK including Runtime, Built-In Tools, Memory, Gateway and Identity. * api-change:``bedrock-agentcore-control``: Initial release of Amazon Bedrock AgentCore SDK including Runtime, Built-In Tools, Memory, Gateway and Identity. * api-change:``bedrock-runtime``: document update to support on demand custom model. * api-change:``datasync``: AWS DataSync now supports IPv6 address inputs and outputs in create, update, and describe operations for NFS, SMB, and Object Storage locations * api-change:``glue``: AWS Glue now supports schema, partition and sort management of Apache Iceberg tables using Glue SDK * api-change:``guardduty``: Add expectedBucketOwner parameter to ThreatIntel and IPSet APIs. * api-change:``iotwireless``: FuotaTaskId is not a valid IdentifierType for EventConfiguration and is being removed from possible IdentifierType values. * api-change:``logs``: CloudWatch Logs updates: Added X-Ray tracing for Amazon Bedrock Agent resources. Logs introduced Log Group level resource policies (managed through Put/Delete/Describe Resource Policy APIs). For more information, see CloudWatch Logs API documentation. * api-change:``mediapackagev2``: This release adds support for CDN Authentication using Static Headers in MediaPackage v2. * api-change:``networkflowmonitor``: Introducing 2 new scope status types - DEACTIVATING and DEACTIVATED. * api-change:``payment-cryptography-data``: Expand length of message data field for Mac generation and validation to 8192 characters. * api-change:``stepfunctions``: Doc-only update to introduction, and edits to clarify input parameter and the set of control characters. - from version 1.41.6 * api-change:``ecs``: This release removes hookDetails for the Amazon ECS native blue/green deployments. - from version 1.41.5 * api-change:``bedrock-agent``: Add support for S3 Vectors as a vector store. * api-change:``datazone``: Removing restriction of environment profile identifier as required field, S3 feature release * api-change:``dynamodbstreams``: Added support for optional shard filter parameter in DescribeStream api that allows customers to fetch child shards of a read_only parent shard. * api-change:``ec2``: This release adds support for volume initialization status, which enables you to monitor when the initialization process for an EBS volume is completed. This release also adds IPv6 support to EC2 Instance Connect Endpoints, allowing you to connect to your EC2 Instance via a private IPv6 address. * api-change:``ecs``: Amazon ECS supports native blue/green deployments, allowing you to validate new service revisions before directing production traffic to them. * api-change:``events``: Add customer-facing logging for the EventBridge Event Bus, enabling customers to better observe their events and extract insights about their EventBridge usage. * api-change:``opensearch``: AWS Opensearch adds support for enabling s3 vector engine options. After enabling this option, customers will be able to create indices with s3 vector engine. * api-change:``pricing``: This release adds support for new filter types in GetProducts API, including EQUALS, CONTAINS, ANY_OF, and NONE_OF. * api-change:``quicksight``: Introduced custom instructions for topics. * api-change:``repostspace``: This release introduces Channels functionality with CreateChannel, GetChannel, ListChannels, and UpdateChannel operations. Channels provide dedicated collaboration spaces where teams can organize discussions and knowledge by projects, business units, or areas of responsibility. * api-change:``s3``: Amazon S3 Metadata live inventory tables provide a queryable inventory of all the objects in your general purpose bucket so that you can determine the latest state of your data. To help minimize your storage costs, use journal table record expiration to set a retention period for your records. * api-change:``s3tables``: Adds table bucket type to ListTableBucket and GetTableBucket API operations * api-change:``s3vectors``: Amazon S3 Vectors provides cost-effective, elastic, and durable vector storage for queries based on semantic meaning and similarity. * api-change:``sagemaker``: This release adds support for a new Restricted instance group type to enable a specialized environment for running Nova customization jobs on SageMaker HyperPod clusters. This release also adds support for SageMaker pipeline versioning. - from version 1.41.4 * api-change:``ec2``: Adds support to Capacity Blocks for ML for purchasing EC2 P6e-GB200 UltraServers. Customers can now purchase u-p6e-gb200x72 and u-p6e-gb200x36 UltraServers. Adds new DescribeCapacityBlocks andDescribeCapacityBlockStatus APIs. Adds support for CapacityBlockId to DescribeInstanceTopology. * api-change:``freetier``: This release introduces four new APIs: GetAccountPlanState and UpgradeAccountPlan for AWS account plan management; ListAccountActivities and GetAccountActivity that provide activity tracking capabilities. * api-change:``opsworkscm``: Removing content that refers to an S3 bucket that is no longer in use. - from version 1.41.3 * api-change:``customer-profiles``: This release introduces capability of create Segments via importing a CSV file directly. This consumes the CSV file and creates/updates corresponding profiles for the particular domain. * api-change:``deadline``: Added fields for output manifest reporting and task chunking parameters * api-change:``ec2``: This release adds GroupOwnerId as a response member to the DescribeSecurityGroupVpcAssociations API and also adds waiters for SecurityGroupVpcAssociations (SecurityGroupVpcAssociationAssociated and SecurityGroupVpcAssociationDisassociated). * api-change:``mediapackagev2``: This release adds support for Microsoft Smooth Streaming (MSS) and allows users to exclude DRM segment Metadata in MediaPackage v2 Origin Endpoints * api-change:``route53``: Amazon Route 53 now supports the iso-e regions for private DNS Amazon VPCs and cloudwatch healthchecks. * api-change:``sagemaker``: Changes include new StartSession API for SageMaker Studio spaces and CreateHubContentPresignedUrls API for SageMaker JumpStart. - from version 1.41.2 * api-change:``connectcases``: This release adds DeleteCase and DeleteRelatedItem APIs, which enable deleting cases and comments, undoing contact association, and removing service level agreements (SLAs) from cases. Contact center admins can use these APIs to delete cases when requested by customers and correct agent errors. * api-change:``ec2``: AWS Site-to-Site VPN now supports IPv6 addresses on outer tunnel IPs, making it easier for customers to build or transition to IPv6-only networks. * api-change:``s3``: Added support for directory bucket creation with tags and bucket ARN retrieval in CreateBucket, ListDirectoryBuckets, and HeadBucket operations * api-change:``s3control``: Added TagResource, UntagResource, and ListTagsForResource support for directory bucket - from version 1.41.1 * api-change:``cleanroomsml``: This release introduces support for incremental training and distributed training for custom models in AWS Clean Rooms ML. * api-change:``datazone``: Add support for the new optional domain-unit-id parameter in the UpdateProject API. * api-change:``ec2``: Add Context to GetInstanceTypesFromInstanceRequirements API * api-change:``odb``: This release adds API operations for Oracle Database@AWS. You can use the APIs to create Exadata infrastructure, ODB networks, and Exadata and Autonomous VM clusters inside AWS data centers. The infrastructure is managed by OCI. You can integrate these resources with AWS services. * api-change:``qbusiness``: New ChatResponseConfiguration to Customize Q Business chat responses for specific use cases and communication needs. Updated Boosting capability allowing admins to provide preference on date attributes for recency and/or provide a preferred data source. * api-change:``rds``: Amazon RDS Custom for Oracle now supports multi-AZ database instances. * api-change:``sagemaker``: Updated field validation requirements for InstanceGroups. - from version 1.41.0 * api-change:``arc-zonal-shift``: Added support for on-demand practice runs and balanced capacity checks in ARC autoshift practice. * api-change:``b2bi``: Updated APIs to support inbound EDI split capabilities and additional Partnership-level configurations of generated EDI files' contents and format. * api-change:``bedrock``: Add support for API Keys, Re-Ranker, implicit filter for RAG / KB evaluation for Bedrock APIs. * api-change:``bedrock-runtime``: Add API Key and document citations support for Bedrock Runtime APIs * api-change:``cloudformation``: Added support for UNKNOWN drift status. * api-change:``config``: Updated ResourceType enum with new resource types onboarded by AWS Config as of June 2025 * api-change:``connect``: This release introduces ChatMetrics to the model, providing comprehensive analytics insights for Amazon Connect chat conversations. Users can access these detailed metrics through the AWS Connect API by using the DescribeContact operation with their specific instance and contact IDs * api-change:``dataexchange``: This release updates resource Id with alphanumeric constraint, including Asset id, Revision id, Data Set id, Job id, and Event Action id. * api-change:``dynamodb``: This change adds support for witnesses in global tables. It also adds a new table status, REPLICATION_NOT_AUTHORIZED. This status will indicate scenarios where global replicas table can't be utilized for data plane operations. * api-change:``events``: Added support for EventBridge Dualstack endpoints in AWS GovCloud (US) regions (us-gov-east-1 and us-gov-west-1). The dualstack endpoints are identical for both FIPS and non-FIPS configurations, following the format: events.{region}.api.aws * api-change:``glue``: releasing source processing properties to support source properties for ODB integrations * api-change:``iam``: Updated IAM ServiceSpecificCredential support to include expiration, API Key output format instead of username and password for services that will support API keys, and the ability to list credentials for all users in the account for a given service configuration. * api-change:``logs``: Increase minimum length of queryId parameter to 1 character. * api-change:``medical-imaging``: Added new fields to support the concept of primary image sets within the storage hierarchy. * api-change:``networkflowmonitor``: Add ConflictExceptions to UpdateScope and DeleteScope operations for scopes being mutated. * api-change:``outposts``: Make ContactName and ContactPhoneNumber required fields when creating and updating Outpost Site Addresses. * api-change:``pcs``: Fixed the validation pattern for an instance profile Amazon Resource Name (ARN) in AWS PCS. * api-change:``quicksight``: Introduced custom permission capabilities for reporting content. Added menu option in exploration to preserve configuration data when textbox menu option is used. Added support for Athena trusted identity propagation. * api-change:``ssm``: Introduces AccessType, a new filter value for the DescribeSessions API. * api-change:``transfer``: Added support for dual-stack (IPv4 and IPv6) endpoints for SFTP public endpoints and VPC-internal endpoints (SFTP, FTPS, FTP, and AS2), enabling customers to configure new servers with IPv4 or dual-stack mode, convert existing servers to dual-stack, and use IPv6 with service APIs. * feature:``bedrock``: Add support for retrieving a Bearer token from environment variables to enable bearer authentication with Bedrock services. - from version 1.40.45 * api-change:``config``: Added important considerations to the PutConformancePack and PutOrganizationConformancPack APIs. * api-change:``connect``: This release adds the following value to an InitiateAs enum: COMPLETED * api-change:``glue``: AWS Glue now supports schema, partition and sort management of Apache Iceberg tables using Glue SDK * api-change:``guardduty``: Update JSON target for Kubernetes workload resource type. * api-change:``qconnect``: Adding UnauthorizedException to public SDK * api-change:``rds``: StartDBCluster and StopDBCluster can now throw InvalidDBShardGroupStateFault. * api-change:``sesv2``: Added support for new SES regions - from version 1.40.44 * api-change:``deadline``: Added fields to track cumulative task retry attempts for steps and jobs * api-change:``ec2``: This release adds support for OdbNetworkArn as a target in VPC Route Tables * api-change:``iot-managed-integrations``: Adding managed integrations APIs for IoT Device Management to onboard and control devices across different manufacturers, connectivity protocols and third party vendor clouds. APIs include managed thing operations, provisioning profile management, and cloud connector operations. * api-change:``keyspaces``: This release provides change data capture (CDC) streams support through updates to the Amazon Keyspaces API. * api-change:``keyspacesstreams``: This release adds change data capture (CDC) streams support through the new Amazon Keyspaces Streams API. * api-change:``kms``: This release updates AWS CLI examples for KMS APIs. * api-change:``qbusiness``: Added support for App level authentication for QBusiness DataAccessor using AWS IAM Identity center Trusted Token issuer * api-change:``workspaces``: Updated modifyStreamingProperties to support PrivateLink VPC endpoints for directories - from version 1.40.43 * api-change:``ecs``: Updates for change to Amazon ECS default log driver mode from blocking to non-blocking * api-change:``fsx``: Add support for the ability to create Amazon S3 Access Points for Amazon FSx for OpenZFS file systems. * api-change:``s3``: Adds support for additional server-side encryption mode and storage class values for accessing Amazon FSx data from Amazon S3 using S3 Access Points * api-change:``s3control``: Add support for the ability to use Amazon S3 Access Points with Amazon FSx for OpenZFS file systems. * api-change:``storagegateway``: This release adds IPv6 support to the Storage Gateway APIs. APIs that previously only accept or return IPv4 address will now accept or return both IPv4 and IPv6 addresses. * api-change:``textract``: Add RotationAngle field to Geometry of WORD blocks for Textract AnalyzeDocument API * api-change:``workspaces-thin-client``: Remove Tags field from Get API responses - from version 1.40.42 * api-change:``aiops``: Adds support for cross account investigations for CloudWatch investigations AI Operations (AIOps). * api-change:``batch``: Add userdataType to LaunchTemplateSpecification and LaunchTemplateSpecificationOverride. * api-change:``bedrock``: We are making ListFoundationModelAgreementOffers, DeleteFoundationModelAgreement, CreateFoundationModelAgreement, GetFoundationModelAvailability, PutUseCaseForModelAccess and GetUseCaseForModelAccess APIs public, previously they were console. * api-change:``ec2``: This release allows you to create and register AMIs while maintaining their underlying EBS snapshots within Local Zones. * api-change:``elbv2``: Add Paginator for DescribeAccountLimits, and fix Paginators for DescribeTrustStoreAssociations, DescribeTrustStoreRevocations, and DescribeTrustStores * api-change:``gamelift``: Add support for UDP ping beacons to ListLocations API, including new PingBeacon and UDPEndpoint data types within its Locations return value. Use UDP ping beacon endpoints to help measure real-time network latency for multiplayer games. * api-change:``license-manager``: AWS License Manager now supports license type conversions for AWS Marketplace products. Customers can provide Marketplace codes in the source license context or destination license context in the CreateLicenseConversionTaskForResource requests. * api-change:``rds``: Adding support for RDS on Dedicated Local Zones, including local backup target, snapshot availability zone and snapshot target * api-change:``route53resolver``: Add support for iterative DNS queries through the new INBOUND_DELEGATION endpoint. Add delegation support through the Outbound Endpoints with DELEGATE rules. * api-change:``transcribe``: This Feature Adds Support for the "et-EE" Locale for Batch Operations - from version 1.40.41 * api-change:``glue``: AWS Glue now supports sort and z-order strategy for managed automated compaction for Iceberg tables in addition to binpack. * api-change:``s3tables``: S3 Tables now supports sort and z-order compaction strategies for Iceberg tables in addition to binpack. * api-change:``workspaces-instances``: Added support for Amazon WorkSpaces Instances API - from version 1.40.40 * api-change:``bedrock``: Add support for tiers in Content Filters and Denied Topics for Amazon Bedrock Guardrails. * api-change:``ecs``: Add ECS support for Windows Server 2025 * api-change:``geo-places``: Geocode, ReverseGeocode, and GetPlace APIs added Intersections and SecondaryAddresses. To use, add to the AdditionalFeatures list in your request. This provides info about nearby intersections and secondary addresses that are associated with a main address. Also added MainAddress and ParsedQuery. * api-change:``glue``: AWS Glue Data Quality now provides aggregated metrics in evaluation results when publishAggregatedMetrics with row-level results are enabled. These metrics include summary statistics showing total counts of processed, passed, and failed rows and rules in a single view. * api-change:``mediaconvert``: This release adds a new SPECIFIED_OPTIMAL option for handling DDS when using DVB-Sub with high resolution video. - from version 1.40.39 * api-change:``bedrock``: This release of the SDK has the API and documentation for the createcustommodel API. This feature lets you copy a trained model into Amazon Bedrock for inference. * api-change:``emr-serverless``: This release adds the capability to enable IAM IdentityCenter Trusted Identity Propagation for users running Interactive Sessions on EMR Serverless Applications. * api-change:``lambda``: Support Schema Registry feature for Kafka Event Source Mapping. Customers can now configure a Schema Registry to enable schema validation and filtering for Avro, Protobuf, and JSON-formatted events in Lambda for Kafka Event Source. * api-change:``payment-cryptography``: Additional support for managing HMAC keys that adheres to changes documented in X9.143-2021 and provides better interoperability for key import/export * api-change:``payment-cryptography-data``: Additional support for managing HMAC keys that adheres to changes documented in X9.143-2021 and provides better interoperability for key import/export * api-change:``sagemaker``: This release introduces alternative support for utilizing CFN templates from S3 for SageMaker Projects. - from version 1.40.38 * api-change:``aiops``: This is the initial SDK release for Amazon AI Operations (AIOps). AIOps is a generative AI-powered assistant that helps you respond to incidents in your system by scanning your system's telemetry and quickly surface suggestions that might be related to your issue. * api-change:``autoscaling``: Add IncludeInstances parameter to DescribeAutoScalingGroups API * api-change:``imagebuilder``: Added paginators for ``imagebuilder``. * api-change:``logs``: Added CloudWatch Logs Transformer support for converting CloudTrail, VPC Flow, EKS Audit, AWS WAF and Route53 Resolver logs to OCSF v1.1 format. * api-change:``s3``: Added support for renaming objects within the same bucket using the new RenameObject API. * api-change:``sagemaker``: Add support for p6-b200 instance type for SageMaker Hyperpod - from version 1.40.37 * api-change:``accessanalyzer``: We are launching a new analyzer type, internal access analyzer. The new analyzer will generate internal access findings, which help customers understand who within their AWS organization or AWS Account has access to their critical AWS resources. * api-change:``acm``: Adds support for Exportable Public Certificates * api-change:``backup``: AWS Backup is adding support for integration of its logically air-gapped vaults with the AWS Organizations Multi-party approval capability. * api-change:``bedrock``: This release of the SDK has the API and documentation for the createcustommodel API. This feature lets you copy a trained model into Amazon Bedrock for inference. * api-change:``dms``: Add "Virtual" field to Data Provider as well as "S3Path" and "S3AccessRoleArn" fields to DataProvider settings * api-change:``guardduty``: Adding support for extended threat detection for EKS Audit Logs and EKS Runtime Monitoring. * api-change:``inspector2``: Add Code Repository Scanning as part of AWS InspectorV2 * api-change:``mpa``: This release enables customers to create Multi-party approval teams and approval requests to protect supported operations. * api-change:``network-firewall``: Release of Active Threat Defense in Network Firewall * api-change:``organizations``: Add support for policy operations on the SECURITYHUB_POLICY policy type. * api-change:``securityhub``: Adds operations, structures, and exceptions required for public preview release of Security Hub V2. * api-change:``sts``: The AWS Security Token Service APIs AssumeRoleWithSAML and AssumeRoleWithWebIdentity can now be invoked without pre-configured AWS credentials in the SDK configuration. * api-change:``wafv2``: AWS WAF can now suggest protection packs for you based on the application information you provide when you create a webACL. - from version 1.40.36 * api-change:``bedrock``: This release of the SDK has the API and documentation for the createcustommodel API. This feature lets you copy a Amazon SageMaker trained Amazon Nova model into Amazon Bedrock for inference. * api-change:``ecr``: The `DescribeImageScanning` API now includes `lastInUseAt` and `InUseCount` fields that can be used to prioritize vulnerability remediation for images that are actively being used. * api-change:``network-firewall``: You can now create firewalls using a Transit Gateway instead of a VPC, resulting in a TGW attachment. * api-change:``sagemaker``: This release 1) adds a new S3DataType Converse for SageMaker training 2)adds C8g R7gd M8g C6in P6 P6e instance type for SageMaker endpoint 3) adds m7i, r7i, c7i instance type for SageMaker Training and Processing. - from version 1.40.35 * api-change:``apigateway``: Documentation updates for Amazon API Gateway * api-change:``apigatewayv2``: Documentation updates for Amazon API Gateway * api-change:``connectcampaignsv2``: Added PutInstanceCommunicationLimits and GetInstanceCommunicationLimits APIs * api-change:``ecs``: This Amazon ECS release supports updating the capacityProviderStrategy parameter in update-service. * api-change:``emr-serverless``: This release adds support for retrieval of the optional executionIamPolicy field in the GetJobRun API response. * api-change:``iotfleetwise``: Add new status READY_FOR_CHECKIN used for vehicle synchronisation * api-change:``kms``: AWS KMS announces the support of ML-DSA key pairs that creates post-quantum safe digital signatures. * api-change:``pcs``: Fixed regex patterns for ARN fields. - from version 1.40.34 * api-change:``controlcatalog``: Introduced ListControlMappings API that retrieves control mappings. Added control aliases and governed resources fields in GetControl and ListControls APIs. New filtering capability in ListControls API, with implementation identifiers and implementation types. * api-change:``eks``: Release for EKS Pod Identity Cross Account feature and disableSessionTags flag. * api-change:``lexv2-models``: Add support for the Assisted NLU feature to improve bot performance * api-change:``networkmanager``: Add support for public DNS hostname resolution to private IP addresses across Cloud WAN-managed VPCs. Add support for security group referencing across Cloud WAN-managed VPCs. * api-change:``rds``: Updates Amazon RDS documentation for Amazon RDS for Db2 cross-Region replicas in standby mode. * api-change:``wafv2``: WAF now provides two DDoS protection options: resource-level monitoring for Application Load Balancers and the AWSManagedRulesAntiDDoSRuleSet managed rule group for CloudFront distributions. - from version 1.40.33 * api-change:``gameliftstreams``: Documentation updates for Amazon GameLift Streams to address formatting errors, correct resource ID examples, and update links to other guides - from version 1.40.32 * api-change:``appsync``: Deprecate `atRestEncryptionEnabled` and `transitEncryptionEnabled` attributes in `CreateApiCache` action. Encryption is always enabled for new caches. * api-change:``ce``: Support dual-stack endpoints for ce api * api-change:``customer-profiles``: This release introduces capability of Profile Explorer, using correct ingestion timestamp & using historical data for computing calculated attributes, and new standard objects for T&H as part of Amazon Connect Customer Profiles service. * api-change:``ec2``: Release to support Elastic VMware Service (Amazon EVS) Subnet and Amazon EVS Network Interface Types. * api-change:``efs``: Added support for Internet Protocol Version 6 (IPv6) on EFS Service APIs and mount targets. * api-change:``marketplace-catalog``: The ListEntities API now supports the EntityID, LastModifiedDate, ProductTitle, and Visibility filters for machine learning products. You can also sort using all of those filters. * api-change:``workspaces-thin-client``: Add ConflictException to UpdateEnvironment API * enhancement:``cloudformation``: High-level Cloudformation commands such as ``deploy`` and ``package`` will now fallback to SHA256 for checksumming if MD5 isn't present on the host - from version 1.40.31 * api-change:``bedrock-agent-runtime``: This release introduces the `PromptCreationConfigurations` input parameter, which includes fields to control prompt population for `InvokeAgent` or `InvokeInlineAgent` requests. * api-change:``kms``: Remove unpopulated KeyMaterialId from Encrypt Response * api-change:``rds``: Include Global Cluster Identifier in DBCluster if the DBCluster is a Global Cluster Member. * api-change:``rekognition``: Adds support for defining an ordered preference list of different Rekognition Face Liveness challenge types when calling CreateFaceLivenessSession. * api-change:``route53``: Amazon Route 53 now supports the Asia Pacific (Taipei) Region (ap-east-2) for latency records, geoproximity records, and private DNS for Amazon VPCs in that region. * api-change:``s3tables``: S3 Tables now supports getting details about a table via its table ARN. - from version 1.40.30 * api-change:``bcm-pricing-calculator``: Updating the minimum for List APIs to be 1 (instead of 0) * api-change:``cloudformation``: Add new warning type 'EXCLUDED_PROPERTIES' * api-change:``kms``: AWS KMS announces the support for on-demand rotation of symmetric-encryption KMS keys with imported key material (EXTERNAL origin). * api-change:``wafv2``: AWS WAF adds support for ASN-based traffic filtering and support for ASN-based rate limiting. - from version 1.40.29 * api-change:``amplify``: Update documentation for cacheConfig in CreateApp API * api-change:``evs``: Amazon Elastic VMware Service (Amazon EVS) allows you to run VMware Cloud Foundation (VCF) directly within your Amazon VPC including simplified self-managed migration experience with guided workflow in AWS console or via AWS CLI, get full access to their VCF deployment and VCF license portability. * api-change:``invoicing``: Added new Invoicing ListInvoiceSummaries API Operation * api-change:``mediaconnect``: This release updates the DescribeFlow API to show peer IP addresses. You can now identify the peer IP addresses of devices connected to your sources and outputs. This helps you to verify and troubleshoot your flow's active connections. * api-change:``mediaconvert``: This release includes support for embedding and signing C2PA content credentials in MP4 outputs. * api-change:``network-firewall``: You can now monitor flow and alert log metrics from the Network Firewall console. * api-change:``sagemaker``: Added support for p6-b200 instance type in SageMaker Training Jobs and Training Plans. * api-change:``transcribe``: AWS Healthscribe now supports new templates for the clinical note summary: BIRP, SIRP, DAP, BEHAVIORAL_SOAP, and PHYSICAL_SOAP - from version 1.40.28 * api-change:``apigateway``: Adds support to set the routing mode for a custom domain name. * api-change:``apigatewayv2``: Adds support to create routing rules and set the routing mode for a custom domain name. * api-change:``emr-serverless``: AWS EMR Serverless: Adds a new option in the CancelJobRun API in EMR 7.9.0+, to cancel a job with grace period. This feature is enabled by default with a 120-second grace period for streaming jobs and is not enabled by default for batch jobs. - from version 1.40.27 * api-change:``athena``: Add support for the managed query result in the workgroup APIs. The managed query result configuration enables users to store query results to Athena owned storage. * api-change:``backup``: You can now subscribe to Amazon SNS notifications and Amazon EventBridge events for backup indexing. You can now receive notifications when a backup index is created, deleted, or fails to create, enhancing your ability to monitor and track your backup operations. * api-change:``bedrock-agent``: This release adds the Agent Lifecycle Paused State feature to Amazon Bedrock agents. By using an agent's alias, you can temporarily suspend agent operations during maintenance, updates, or other situations. * api-change:``compute-optimizer``: This release enables AWS Compute Optimizer to analyze Amazon Aurora database clusters and generate Aurora I/O-Optimized recommendations. * api-change:``cost-optimization-hub``: Support recommendations for Aurora instance and Aurora cluster storage. * api-change:``ecs``: Updates Amazon ECS documentation to include note for upcoming default log driver mode change. * api-change:``eks``: Add support for filtering ListInsights API calls on MISCONFIGURATION insight category * api-change:``entityresolution``: Add support for generating match IDs in near real-time. * api-change:``pcs``: Introduces SUSPENDING and SUSPENDED states for clusters, compute node groups, and queues. * api-change:``synthetics``: Support for Java runtime handler pattern. - from version 1.40.26 * api-change:``emr-serverless``: This release adds the capability for users to specify an optional Execution IAM policy in the StartJobRun action. The resulting permissions assumed by the job run is the intersection of the permissions in the Execution Role and the specified Execution IAM Policy. * api-change:``sagemaker``: Release new parameter CapacityReservationConfig in ProductionVariant - from version 1.40.25 * api-change:``amplify``: Add support for customizable build instance sizes. CreateApp and UpdateApp operations now accept a new JobConfig parameter composed of BuildComputeType. * api-change:``autoscaling``: Add support for "apple" CpuManufacturer in ABIS * api-change:``bcm-pricing-calculator``: Add AFTER_DISCOUNTS_AND_COMMITMENTS to Workload Estimate Rate Type. Set ListWorkLoadEstimateUsage maxResults range to minimum of 0 and maximum of 300. * api-change:``cloudtrail``: CloudTrail Feature Release: Support for Enriched Events with Configurable Context for Event Data Store * api-change:``connect``: Amazon Connect Service Feature: Email Recipient Limit Increase * api-change:``dataexchange``: This release adds Tag support for Event Action resource, through which customers can create event actions with Tags and retrieve event actions with Tags. * api-change:``datasync``: AgentArns field is made optional for Object Storage and Azure Blob location create requests. Location credentials are now managed via Secrets Manager, and may be encrypted with service managed or customer managed keys. Authentication is now optional for Azure Blob locations. * api-change:``fsx``: FSx API changes to support the public launch of new Intelligent Tiering storage class on Amazon FSx for Lustre * api-change:``ivs-realtime``: IVS Real-Time now offers customers the participant replication that allow customers to copy a participant from one stage to another. * api-change:``mwaa``: Amazon MWAA now lets you choose a worker replacement strategy when updating an environment. This release adds two worker replacement strategies: FORCED (default), which stops workers immediately, and GRACEFUL, which allows workers to finish current tasks before shutting down. * api-change:``s3``: Adding checksum support for S3 PutBucketOwnershipControls API. * api-change:``sagemaker``: Add maintenance status field to DescribeMlflowTrackingServer API response - from version 1.40.24 * api-change:``cost-optimization-hub``: This release allows customers to modify their preferred commitment term and payment options. * api-change:``ec2``: Enable the option to automatically delete underlying Amazon EBS snapshots when deregistering Amazon Machine Images (AMIs) * api-change:``events``: Allow for more than 2 characters for location codes in EventBridge ARNs * api-change:``network-firewall``: You can now use VPC endpoint associations to create multiple firewall endpoints for a single firewall. * api-change:``synthetics``: Add support to change ephemeral storage. Add a new field "TestResult" under CanaryRunStatus. - from version 1.40.23 * api-change:``ce``: This release introduces Cost Comparison feature (GetCostAndUsageComparisons, GetCostComparisonDrivers) allowing you find cost variations across multiple dimensions and identify key drivers of spending changes. * api-change:``deadline``: AWS Deadline Cloud service-managed fleets now support storage profiles. With storage profiles, you can map file paths between a workstation and the worker hosts running the job. * api-change:``ec2``: This release adds three features - option to store AWS Site-to-Site VPN pre-shared keys in AWS Secrets Manager, GetActiveVpnTunnelStatus API to check the in-use VPN algorithms, and SampleType option in GetVpnConnectionDeviceSampleConfiguration API to get recommended sample configs for VPN devices. - Refresh patches for new version - Update Requires from setup.py - Update to 1.40.22 * api-change:``ec2``: This release adds support for the C7i-flex, M7i-flex, I7i, I7ie, I8g, P6-b200, Trn2, C8gd, M8gd and R8gd instances * api-change:``security-ir``: Update PrincipalId pattern documentation to reflect what user should receive back from the API call - from version 1.40.21 * api-change:``amp``: Add QueryLoggingConfiguration APIs for Amazon Managed Prometheus * api-change:``auditmanager``: With this release, the AssessmentControl description field has been deprecated, as of May 19, 2025. Additionally, the UpdateAssessment API can now return a ServiceQuotaExceededException when applicable service quotas are exceeded. * api-change:``dsql``: Features: support for customer managed encryption keys * api-change:``glue``: This release supports additional ConversionSpec parameter as part of IntegrationPartition Structure in CreateIntegrationTableProperty API. This parameter is referred to apply appropriate column transformation for columns that are used for timestamp based partitioning - from version 1.40.20 * api-change:``application-autoscaling``: Doc only update that addresses a customer reported issue. * api-change:``bedrock-agent-runtime``: Amazon Bedrock introduces asynchronous flows (in preview), which let you run flows for longer durations and yield control so that your application can perform other tasks and you don't have to actively monitor the flow's progress. * api-change:``cloudwatch``: Adds support for setting up Contributor Insight rules on logs transformed via Logs Transformation feature. * api-change:``ec2``: Release of Dualstack and Ipv6-only EC2 Public DNS hostnames * api-change:``partnercentral-selling``: Modified validation to allow expectedCustomerSpend array with zero elements in Partner Opportunity operations. - from version 1.40.19 * api-change:``datasync``: Remove Discovery APIs from the DataSync service * api-change:``ec2``: This release expands the ModifyInstanceMaintenanceOptions API to enable or disable instance migration during customer-initiated reboots for EC2 Scheduled Reboot Events. * api-change:``glue``: Enhanced AWS Glue ListConnectionTypes API Model with additional metadata fields. * api-change:``inspector2``: This release adds GetClustersForImage API and filter updates as part of the mapping of container images to running containers feature. * api-change:``oam``: Add IncludeTags field to GetLink, GetSink and UpdateLink API * api-change:``rds``: This release introduces the new DescribeDBMajorEngineVersions API for describing the properties of specific major versions of database engines. - from version 1.40.18 * api-change:``dsql``: CreateMultiRegionCluster and DeleteMultiRegionCluster APIs removed * api-change:``ec2``: This release includes new APIs for System Integrity Protection (SIP) configuration and automated root volume ownership delegation for EC2 Mac instances. * api-change:``mediapackagev2``: This release adds support for DVB-DASH, EBU-TT-D subtitle format, and non-compacted manifests for DASH in MediaPackage v2 Origin Endpoints. - from version 1.40.17 * api-change:``bedrock-data-automation``: Add support for VIDEO modality to BlueprintType enum. * api-change:``bedrock-data-automation-runtime``: Add AssetProcessingConfiguration for video segment to InputConfiguration * api-change:``codepipeline``: CodePipeline now supports new API ListDeployActionExecutionTargets that lists the deployment target details for deploy action executions. * api-change:``ecs``: This is an Amazon ECs documentation only release to support the change of the container exit "reason" field from 255 characters to 1024 characters. * api-change:``emr``: Added APIs for managing Application UIs: Access Persistent (serverless) UIs via CreatePersistentAppUI DescribePersistentAppUI & GetPersistentAppUIPresignedURL, and Cluster-based UIs through GetOnClusterAppUIPresignedURL. Supports Yarn, Spark History, and TEZ interfaces. * api-change:``glue``: Changes include (1) Excel as S3 Source type and XML and Tableau's Hyper as S3 Sink types, (2) targeted number of partitions parameter in S3 sinks and (3) new compression types in CSV/JSON and Parquet S3 sinks. * api-change:``neptune``: This release adds Global Cluster Switchover capability which enables you to change your global cluster's primary AWS Region, the region that serves writes, while preserving the replication between all regions in the global cluster. * api-change:``service-quotas``: This release introduces CreateSupportCase operation to SDK. - from version 1.40.16 * api-change:``bedrock-agent``: Amazon Bedrock Flows introduces DoWhile loops nodes, parallel node executions, and enhancements to knowledge base nodes. * api-change:``codebuild``: AWS CodeBuild now supports Docker Server capability * api-change:``controltower``: Updated the descriptions for the AWS Control Tower Baseline APIs to make them more intuitive. * api-change:``dms``: Introduces Data Resync feature to describe-table-statistics and IAM database authentication for MariaDB, MySQL, and PostgreSQL. * api-change:``pcs``: This release adds support for Slurm accounting. For more information, see the Slurm accounting topic in the AWS PCS User Guide. Slurm accounting is supported for Slurm 24.11 and later. This release also adds 24.11 as a valid value for the version parameter of the Scheduler data type. * api-change:``workspaces``: Added the new AlwaysOn running mode for WorkSpaces Pools. Customers can now choose between AlwaysOn (for instant access, with hourly usage billing regardless of connection status), or AutoStop (to optimize cost, with a brief startup delay) for their pools. - from version 1.40.15 * api-change:``cognito-idp``: Add exceptions to WebAuthn operations. * api-change:``firehose``: This release adds catalogARN support for s3 tables multi-catalog catalogARNs. * api-change:``logs``: This release adds a new API "ListLogGroups" and an improvement in API "DescribeLogGroups" * api-change:``mediaconvert``: This update enables cropping for video overlays and adds a new STL to Teletext upconversion toggle to preserve styling. - from version 1.40.14 * api-change:``bedrock``: Enable cross-Region inference for Amazon Bedrock Guardrails by using the crossRegionConfig parameter when calling the CreateGuardrail or UpdateGuardrail operation. * api-change:``bedrock-agent-runtime``: Changes for enhanced metadata in trace * api-change:``controltower``: AWS Control Tower now reports the inheritance drift status for EnabledBaselines through the GetEnabledBaseline and ListEnabledBaselines APIs. You can now filter EnabledBaselines by their enablement and drift status using the ListEnabledBaselines API to view accounts and OUs that require attention. * api-change:``dsql``: CreateMultiRegionClusters and DeleteMultiRegionClusters APIs marked as deprecated. Introduced new multi-Region clusters creation experience through multiRegionProperties parameter in CreateCluster API. * api-change:``ecs``: This release extends functionality for Amazon EBS volumes attached to Amazon ECS tasks by adding support for the new EBS volumeInitializationRate parameter in ECS RunTask/StartTask/CreateService/UpdateService APIs. * api-change:``license-manager``: Add Tagging feature to resources in the Managed Entitlements service. License and Grant resources can now be tagged. - from version 1.40.13 * api-change:``deadline``: AWS Deadline Cloud service-managed fleets now support configuration scripts. Configuration scripts make it easy to install additional software, like plugins and packages, onto a worker. * api-change:``ec2``: EC2 - Adding support for AvailabilityZoneId * api-change:``iam``: Updating the endpoint list for the Identity and access management (IAM) service * api-change:``medialive``: Add support to the AV1 rate control mode * api-change:``mediatailor``: Documenting that EnabledLoggingStrategies is always present in responses of PlaybackConfiguration read operations. * api-change:``s3control``: Updates to support S3 Express zonal endpoints for directory buckets in AWS CLI * api-change:``sagemaker``: No API changes from previous release. This release migrated the model to Smithy keeping all features unchanged. * api-change:``supplychain``: Launch new AWS Supply Chain public APIs for DataIntegrationEvent, DataIntegrationFlowExecution and DatasetNamespace. Also add more capabilities to existing public APIs to support direct dataset event publish, data deduplication in DataIntegrationFlow, partition specification of custom datasets. - from version 1.40.12 * api-change:``athena``: Minor API documentation updates * api-change:``logs``: We are pleased to announce limit increases to our grok processor logs transformation feature. Now you can define 20 Grok patterns in their configurations, with an expanded total pattern matching limit of 512 characters. * api-change:``synthetics``: Add support to retry a canary automatically after schedule run failures. Users can enable this feature by configuring the RetryConfig field when calling the CreateCanary or UpdateCanary API. Also includes changes in GetCanary and GetCanaryRuns to support retrieving retry configurations. * api-change:``workspaces``: Remove parameter EnableWorkDocs from WorkSpacesServiceModel due to end of support of Amazon WorkDocs service. - from version 1.40.11 * api-change:``cloudfront``: Doc-only update for CloudFront. These changes include customer-reported issues. * api-change:``codepipeline``: Add support for Secrets Manager and Plaintext environment variable types in Commands action * api-change:``ec2``: Launching the feature to support ENA queues offering flexibility to support multiple queues per Enhanced Network Interface (ENI) * api-change:``glue``: This new release supports customizable RefreshInterval for all Saas ZETL integrations from 15 minutes to 6 days. * api-change:``guardduty``: Updated description of a data structure. * api-change:``sso-admin``: Update PutPermissionBoundaryToPermissionSet API's managedPolicyArn pattern to allow valid ARN only. Update ApplicationName to allow white spaces. - from version 1.40.10 * api-change:``ec2``: This release adds API support for Path Component Exclusion (Filter Out ARN) for Reachability Analyzer * api-change:``imagebuilder``: Updated the CreateImageRecipeRequest ParentImage description to include all valid values as updated with the SSM Parameters project. * api-change:``medialive``: Enables Updating Anywhere Settings on a MediaLive Anywhere Channel. * api-change:``sagemaker``: SageMaker AI Studio users can now migrate to SageMaker Unified Studio, which offers a unified web-based development experience that integrates AWS data, analytics, artificial intelligence (AI), and machine learning (ML) services, as well as additional tools and resource * api-change:``synthetics``: Add support to test a canary update by invoking a dry run of a canary. This behavior can be used via the new StartCanaryDryRun API along with new fields in UpdateCanary to apply dry run changes. Also includes changes in GetCanary and GetCanaryRuns to support retrieving dry run configurations. - from version 1.40.9 * api-change:``ec2``: This release adds support for Amazon EBS Provisioned Rate for Volume Initialization, which lets you specify a volume initialization rate to ensure that your EBS volumes are initialized in a predictable amount of time. * api-change:``servicecatalog``: ServiceCatalog's APIs (DeleteServiceAction, DisassociateServiceActionFromProvisioningArtifact, AssociateServiceActionWithProvisioningArtifact) now throw InvalidParametersException when IdempotencyToken is invalid. * api-change:``timestream-query``: Add dualstack endpoints support and correct us-gov-west-1 FIPS endpoint. * api-change:``timestream-write``: Add dualstack endpoints support. - from version 1.40.8 * api-change:``datazone``: This release adds a new authorization policy to control the usage of custom AssetType when creating an Asset. Customer can now add new grant(s) of policyType USE_ASSET_TYPE for custom AssetTypes to apply authorization policy to projects members and domain unit owners. * api-change:``devicefarm``: Add an optional parameter to the GetDevicePoolCompatibility API to pass in project information to check device pool compatibility. * api-change:``ec2``: This update introduces API operations to manage and create local gateway VIF and VIF groups. It also includes API operations to describe Outpost LAGs and service link VIFs. * api-change:``ecs``: Add support to roll back an In_Progress ECS Service Deployment * api-change:``mediaconvert``: This release adds an optional sidecar per-frame video quality metrics report and an ALL_PCM option for audio selectors. It also changes the data type for Probe API response fields related to video and audio bitrate from integer to double. - from version 1.40.7 * api-change:``bedrock-data-automation``: Added support for Custom output and blueprints for AUDIO data types. * api-change:``ds``: Doc only update - fixed typos. * api-change:``kinesis``: Marking ResourceARN as required for Amazon Kinesis Data Streams APIs TagResource, UntagResource, and ListTagsForResource. - from version 1.40.6 * api-change:``appconfig``: Adding waiter support for deployments and environments; documentation updates * api-change:``connect``: This release adds the following fields to DescribeContact: DisconnectReason, AgentInitiatedHoldDuration, AfterContactWorkStartTimestamp, AfterContactWorkEndTimestamp, AfterContactWorkDuration, StateTransitions, Recordings, ContactDetails, ContactEvaluations, Attributes * api-change:``sagemaker``: Feature - Adding support for Scheduled and Rolling Update Software in Sagemaker Hyperpod. * api-change:``verifiedpermissions``: Amazon Verified Permissions / Features : Adds support for tagging policy stores. - from version 1.40.5 * api-change:``bedrock``: You can now specify a cross region inference profile as a teacher model for the CreateModelCustomizationJob API. Additionally, the GetModelCustomizationJob API has been enhanced to return the sub-task statuses of a customization job within the StatusDetails response field. * api-change:``bedrock-agent``: Features: Add inline code node to prompt flow * api-change:``bedrock-agent-runtime``: Support for Custom Orchestration within InlineAgents * api-change:``cleanrooms``: This release adds support for ProtectedQuery results to be delivered to more than one collaboration member via the new distribute output configuration in StartProtectedQuery. * api-change:``deadline``: Adds support for tag management on workers and tag inheritance from fleets to their associated workers. * api-change:``ec2``: Launch of cost distribution feature for IPAM owners to distribute costs to internal teams. * api-change:``ecr``: Adds dualstack support for Amazon Elastic Container Registry (Amazon ECR). * api-change:``ecr-public``: Adds dualstack support for Amazon Elastic Container Registry Public (Amazon ECR Public). * api-change:``logs``: CloudWatch Logs supports "DELIVERY" log class. This log class is used only for delivering AWS Lambda logs to Amazon S3 or Amazon Data Firehose. * api-change:``mailmanager``: Introducing new RuleSet rule PublishToSns action, which allows customers to publish email notifications to an Amazon SNS topic. New PublishToSns action enables customers to easily integrate their email workflows via Amazon SNS, allowing them to notify other systems about important email events. - from version 1.40.4 * api-change:``connectcases``: Introduces CustomEntity as part of the UserUnion data type. This field is used to indicate the entity who is performing the API action. * api-change:``kinesis``: Amazon KDS now supports tagging and attribute-based access control (ABAC) for enhanced fan-out consumers. * api-change:``pinpoint-sms-voice-v2``: AWS End User Messaging has added MONITOR and FILTER functionality to SMS Protect. * api-change:``qbusiness``: Add support for anonymous user access for Q Business applications * api-change:``sagemaker``: Introduced support for P5en instance types on SageMaker Studio for JupyterLab and CodeEditor applications. * api-change:``sagemaker-metrics``: SageMaker Metrics Service now supports FIPS endpoint in all US and Canada Commercial regions. * api-change:``ssm``: This release adds support for just-In-time node access in AWS Systems Manager. Just-in-time node access enables customers to move towards zero standing privileges by requiring operators to request access and obtain approval before remotely connecting to nodes managed by the SSM Agent. * api-change:``ssm-guiconnect``: This release adds API support for the connection recording GUI Connect feature of AWS Systems Manager * bugfix:bundled-installer: Fix installing setup dependencies on newer versions of pip - from version 1.40.3 * api-change:``acm``: Add support for file-based HTTP domain control validation, available through Amazon CloudFront. * api-change:``bedrock-runtime``: This release adds native h2 support for the bedrock runtime API, the support is only limited to SDKs that support h2 requests natively. * api-change:``cloudfront``: Add distribution tenant, connection group, and multi-tenant distribution APIs to the CloudFront SDK. * api-change:``dynamodb``: Doc only update for GSI descriptions. * api-change:``imagebuilder``: Add integration with SSM Parameter Store to Image Builder. - from version 1.40.2 * api-change:``bedrock-runtime``: You can now reference images and documents stored in Amazon S3 when using InvokeModel and Converse APIs with Amazon Nova Lite and Nova Pro. This enables direct integration of S3-stored multimedia assets in your model requests without manual downloading or base64 encoding. * api-change:``ecs``: Documentation only release for Amazon ECS. * api-change:``marketplace-deployment``: Doc only update for the AWS Marketplace Deployment Service that fixes several customer-reported issues. - from version 1.40.1 * api-change:``apprunner``: AWS App Runner adds Node.js 22 runtime. * api-change:``appsync``: Add data source support to Event APIs * api-change:``bedrock-data-automation``: Added support for modality routing and modality enablement on CreateDataAutomationProject and UpdateDataAutomationProject APIs * api-change:``codebuild``: Remove redundant validation check. * api-change:``dynamodb``: Add support for ARN-sourced account endpoint generation for TransactWriteItems. This will generate account endpoints for DynamoDB TransactWriteItems requests using ARN-sourced account ID when available. * api-change:``ecs``: Documentation only release for Amazon ECS * api-change:``pcs``: Documentation-only update: added valid values for the version property of the Scheduler and SchedulerRequest data types. * api-change:``rds``: This Amazon RDS release adds support for managed master user passwords for Oracle CDBs. - Refresh patches for new version - Update Requires from setup.py - Update to 1.40.0 * api-change:``codebuild``: Add support for custom instance type for reserved capacity fleets * api-change:``ecs``: Add support to roll back an In_Progress ECS Service Deployment * api-change:``resource-explorer-2``: Documentation-only update for CreateView option correction * feature:``eks``: Add assume-role-arn option to update-kubeconfig command for cross-account access - from version 1.39.0 * api-change:``account``: AWS Account Management now supports account name update via IAM principals. * api-change:``cognito-idp``: This release adds refresh token rotation. * api-change:``ec2``: Added support for ClientRouteEnforcementOptions flag in CreateClientVpnEndpoint and ModifyClientVpnEndpoint requests and DescribeClientVpnEndpoints responses * api-change:``entityresolution``: To expand support for matching records using digital identifiers with TransUnion * api-change:``mq``: You can now delete Amazon MQ broker configurations using the DeleteConfiguration API. For more information, see Configurations in the Amazon MQ API Reference. * api-change:``redshift-serverless``: Provides new and updated API members to support the Redshift Serverless reservations feature. * api-change:``s3control``: Fix endpoint resolution test cases * feature:Python: End of support for Python 3.8 * feature:Python: End of support for Python 3.8 - from version 1.38.38 * api-change:``arc-zonal-shift``: Updates to documentation and exception types for Zonal Autoshift * api-change:``budgets``: Releasing the new Budget FilterExpression and Metrics fields to support more granular filtering options. These new fields are intended to replace CostFilters and CostTypes, which are deprecated as of 2025/18/04. * api-change:``firehose``: Documentation update regarding the number of streams you can create using the CreateDeliveryStream API. * api-change:``mediatailor``: Added support for Recurring Prefetch and Traffic Shaping on both Single and Recurring Prefetch. ListPrefetchSchedules now return single prefetchs by default and can be provided scheduleType of SINGLE, RECURRING, AND ALL. * api-change:``qbusiness``: The CheckDocumentAccess API for Amazon Q Business is a self-service debugging API that allows administrators to verify document access permissions and review Access Control List (ACL) configurations. - from version 1.38.37 * api-change:``qconnect``: This release adds support for the following capabilities: Chunking generative answer replies from Amazon Q in Connect. Integration support for the use of additional LLM models with Amazon Q in Connect. * api-change:``sagemaker``: This release adds a new Neuron driver option in InferenceAmiVersion parameter for ProductionVariant. Additionally, it adds support for fetching model lifecycle status in the ListModelPackages API. Users can now use this API to view the lifecycle stage of models that have been shared with them. * api-change:``service-quotas``: Add new optional SupportCaseAllowed query parameter to the RequestServiceQuotaIncrease API - from version 1.38.36 * api-change:``accessanalyzer``: Added new resource types to evaluate for public access in resource policies and added support for S3 directory bucket access points. * api-change:``amp``: Add Workspace Configuration APIs for Amazon Prometheus * api-change:``autoscaling``: Doc only update for EC2 Auto Scaling. * api-change:``bedrock``: With this release, Bedrock Evaluation will now support custom metrics for evaluation. * api-change:``connect``: This release adds following capabilities to Contact Lens Rules APIs 1/ 'ASSIGN_SLA' action and '$.Case.TemplateId' comparison value for 'OnCaseCreate' and 'OnCaseUpdate' event sources 2/ 'OnSlaBreach' Cases event source which supports '$.RelatedItem.SlaConfiguration.Name' comparison value * api-change:``ecs``: Adds a new AccountSetting - defaultLogDriverMode for ECS. * api-change:``iotfleetwise``: We've added stricter parameter validations to AWS IoT FleetWise signal catalog, model manifest, and decoder manifest APIs. * api-change:``memorydb``: Added support for IPv6 and dual stack for Valkey and Redis clusters. Customers can now launch new Valkey and Redis clusters with IPv6 and dual stack networking support. * api-change:``omics``: Add versioning for HealthOmics workflows - from version 1.38.35 * api-change:``connectcases``: This feature provides capabilities to help track and meet service level agreements (SLAs) on cases programmatically. It allows configuring a new related item of type `Sla` on a case using CreateRelatedItem API and provides the ability to search for this new related item using SearchRelatedItems API. * api-change:``dsql``: Added GetClusterEndpointService API. The new API allows retrieving endpoint service name specific to a cluster. * api-change:``eks``: Added support for new AL2023 ARM64 NVIDIA AMIs to the supported AMITypes. * api-change:``events``: Adding support for KmsKeyIdentifer in CreateConnection, UpdateConnection and DescribeConnection APIs * api-change:``resource-groups``: Resource Groups: TagSyncTasks can be created with ResourceQuery * api-change:``s3tables``: S3 Tables now supports setting encryption configurations on table buckets and tables. Encryption configurations can use server side encryption using AES256 or KMS customer-managed keys. * api-change:``servicecatalog``: Updated default value for the access-level-filter in SearchProvisionedProducts API to Account. For access to userLevel or roleLevel, the user must provide access-level-filter parameter. * bugfix:Formatter: Update JSON formatter to encode raw bytes as UTF-8. - from version 1.38.34 * api-change:``entityresolution``: This is to add new metrics to our GetIdMappingJob API and also update uniqueId naming for batchDeleteUniqueIds API to be more accurate * api-change:``taxsettings``: Indonesia SOR Tax Registration Launch - from version 1.38.33 * api-change:``connect-contact-lens``: Making sentiment optional for ListRealtimeContactAnalysisSegments Response depending on conversational analytics configuration * api-change:``datazone``: Raise hard limit of authorized principals per SubscriptionTarget from 10 to 20. * api-change:``detective``: Add support for Detective DualStack endpoints * api-change:``dynamodb``: Doc only update for API descriptions. * api-change:``marketplace-entitlement``: Add support for Marketplace Entitlement Service dual-stack endpoints for CN and GOV regions * api-change:``meteringmarketplace``: Add support for Marketplace Metering Service dual-stack endpoints for CN regions * api-change:``pcs``: Changed the minimum length of clusterIdentifier, computeNodeGroupIdentifier, and queueIdentifier to 3. * api-change:``verifiedpermissions``: Adds deletion protection support to policy stores. Deletion protection is disabled by default, can be enabled via the CreatePolicyStore or UpdatePolicyStore APIs, and is visible in GetPolicyStore. - from version 1.38.32 * api-change:``application-autoscaling``: Application Auto Scaling now supports horizontal scaling for Elasticache Memcached self-designed clusters using target tracking scaling policies and scheduled scaling. * api-change:``elasticache``: AWS ElastiCache SDK now supports using MemcachedUpgradeConfig parameter with ModifyCacheCluster API to enable updating Memcached cache node types. Please refer to updated AWS ElastiCache public documentation for detailed information on API usage and implementation. * api-change:``m2``: Introduce three new APIs: CreateDataSetExportTask, GetDataSetExportTask and ListDataSetExportHistory. Add support for batch restart for Blu Age applications. * api-change:``medialive``: AWS Elemental MediaLive / Features : Add support for CMAF Ingest CaptionLanguageMappings, TimedMetadataId3 settings, and Link InputResolution. * api-change:``qbusiness``: Adds functionality to enable/disable a new Q Business Hallucination Reduction feature. If enabled, Q Business will detect and attempt to remove Hallucinations from certain Chat requests. * api-change:``quicksight``: Add support to analysis and sheet level highlighting in QuickSight. - from version 1.38.31 * api-change:``controlcatalog``: The GetControl API now surfaces a control's Severity, CreateTime, and Identifier for a control's Implementation. The ListControls API now surfaces a control's Behavior, Severity, CreateTime, and Identifier for a control's Implementation. * api-change:``dynamodb``: Documentation update for secondary indexes and Create_Table. * api-change:``glue``: The TableOptimizer APIs in AWS Glue now return the DpuHours field in each TableOptimizerRun, providing clients visibility to the DPU-hours used for billing in managed Apache Iceberg table compaction optimization. * api-change:``groundstation``: Support tagging Agents and adjust input field validations * api-change:``transfer``: This launch includes 2 enhancements to SFTP connectors user-experience: 1) Customers can self-serve concurrent connections setting for their connectors, and 2) Customers can discover the public host key of remote servers using their SFTP connectors. - from version 1.38.30 * api-change:``bedrock-runtime``: This release introduces our latest bedrock runtime API, InvokeModelWithBidirectionalStream. The API supports both input and output streams and is supported by only HTTP2.0. * api-change:``ce``: This release supports Pagination traits on Cost Anomaly Detection APIs. * api-change:``cost-optimization-hub``: This release adds resource type "MemoryDbReservedInstances" and resource type "DynamoDbReservedCapacity" to the GetRecommendation, ListRecommendations, and ListRecommendationSummaries APIs to support new MemoryDB and DynamoDB RI recommendations. * api-change:``iotfleetwise``: This release adds the option to update the strategy of state templates already associated to a vehicle, without the need to remove and re-add them. * api-change:``securityhub``: Documentation updates for AWS Security Hub. * api-change:``storagegateway``: Added new ActiveDirectoryStatus value, ListCacheReports paginator, and support for longer pagination tokens. * api-change:``taxsettings``: Uzbekistan Launch on TaxSettings Page - from version 1.38.29 * api-change:``bedrock``: New options for how to handle harmful content detected by Amazon Bedrock Guardrails. * api-change:``bedrock-runtime``: New options for how to handle harmful content detected by Amazon Bedrock Guardrails. * api-change:``codebuild``: AWS CodeBuild now offers an enhanced debugging experience. * api-change:``glue``: Add input validations for multiple Glue APIs * api-change:``medialive``: AWS Elemental MediaLive now supports SDI inputs to MediaLive Anywhere Channels in workflows that use AWS SDKs. * api-change:``personalize``: Add support for eventsConfig for CreateSolution, UpdateSolution, DescribeSolution, DescribeSolutionVersion. Add support for GetSolutionMetrics to return weighted NDCG metrics when eventsConfig is enabled for the solution. * api-change:``transfer``: This launch enables customers to manage contents of their remote directories, by deleting old files or moving files to archive folders in remote servers once they have been retrieved. Customers will be able to automate the process using event-driven architecture. - from version 1.38.28 * api-change:``ds-data``: Doc only update - fixed broken links. * api-change:``ec2``: Doc-only updates for Amazon EC2 * api-change:``events``: Amazon EventBridge adds support for customer-managed keys on Archives and validations for two fields: eventSourceArn and kmsKeyIdentifier. * api-change:``s3control``: Updated max size of Prefixes parameter of Scope data type. - from version 1.38.27 * api-change:``bedrock-agent``: Added optional "customMetadataField" for Amazon Aurora knowledge bases, allowing single-column metadata. Also added optional "textIndexName" for MongoDB Atlas knowledge bases, enabling hybrid search support. * api-change:``chime-sdk-voice``: Added FOC date as an attribute of PhoneNumberOrder, added AccessDeniedException as a possible return type of ValidateE911Address * api-change:``mailmanager``: Add support for Dual_Stack and PrivateLink types of IngressPoint. For configuration requests, SES Mail Manager will now accept both IPv4/IPv6 dual-stack endpoints and AWS PrivateLink VPC endpoints for email receiving. * api-change:``opensearch``: Improve descriptions for various API commands and data types. * api-change:``route53``: Added us-gov-east-1 and us-gov-west-1 as valid Latency Based Routing regions for change-resource-record-sets. * api-change:``sagemaker``: Adds support for i3en, m7i, r7i instance types for SageMaker Hyperpod * api-change:``sesv2``: This release enables customers to provide attachments in the SESv2 SendEmail and SendBulkEmail APIs. * api-change:``transcribe``: This Feature Adds Support for the "zh-HK" Locale for Batch Operations - from version 1.38.26 * api-change:``application-signals``: Application Signals now supports creating Service Level Objectives on service dependencies. Users can now create or update SLOs on discovered service dependencies to monitor their standard application metrics. * api-change:``codebuild``: This release adds support for environment type WINDOWS_SERVER_2022_CONTAINER in ProjectEnvironment * api-change:``ecr``: Fix for customer issues related to AWS account ID and size limitation for token. * api-change:``ecs``: This is an Amazon ECS documentation only update to address various tickets. * api-change:``lexv2-models``: Release feature of errorlogging for lex bot, customer can config this feature in bot version to generate log for error exception which helps debug * api-change:``medialive``: Added support for SMPTE 2110 inputs when running a channel in a MediaLive Anywhere cluster. This feature enables ingestion of SMPTE 2110-compliant video, audio, and ancillary streams by reading SDP files that AWS Elemental MediaLive can retrieve from a network source. - from version 1.38.25 * api-change:``cleanrooms``: This release adds support for updating the analytics engine of a collaboration. * api-change:``sagemaker``: Added tagging support for SageMaker notebook instance lifecycle configurations - from version 1.38.24 * api-change:``bedrock-runtime``: Add Prompt Caching support to Converse and ConverseStream APIs * api-change:``deadline``: With this release you can use a new field to specify the search term match type. Search term match types currently support fuzzy and contains matching. * api-change:``ec2``: Release VPC Route Server, a new feature allowing dynamic routing in VPCs. * api-change:``eks``: Add support for updating RemoteNetworkConfig for hybrid nodes on EKS UpdateClusterConfig API * api-change:``marketplace-entitlement``: Add support for Marketplace Entitlement Service dual-stack endpoints. * api-change:``outposts``: Enabling Asset Level Capacity Management feature, which allows customers to create a Capacity Task for a single Asset on their active Outpost. * api-change:``s3``: Amazon S3 adds support for S3 Access Points for directory buckets in AWS Dedicated Local Zones * api-change:``s3control``: Amazon S3 adds support for S3 Access Points for directory buckets in AWS Dedicated Local Zones * api-change:``sesv2``: Add dual-stack support to global endpoints. * api-change:``transfer``: Add WebAppEndpointPolicy support for WebApps - from version 1.38.23 * api-change:``apigateway``: Adds support for setting the IP address type to allow dual-stack or IPv4 address types to invoke your APIs or domain names. * api-change:``apigatewayv2``: Adds support for setting the IP address type to allow dual-stack or IPv4 address types to invoke your APIs or domain names. * api-change:``bedrock-runtime``: Launching Multi-modality Content Filter for Amazon Bedrock Guardrails. * api-change:``codebuild``: This release adds support for cacheNamespace in ProjectCache * api-change:``ecs``: This is an Amazon ECS documentation only release that addresses tickets. * api-change:``meteringmarketplace``: Add support for Marketplace Metering Service dual-stack endpoints. * api-change:``networkmanager``: Add support for NetworkManager Dualstack endpoints. * api-change:``payment-cryptography``: The service adds support for transferring AES-256 and other keys between the service and other service providers and HSMs. This feature uses ECDH to derive a one-time key transport key to enable these secure key exchanges. * api-change:``quicksight``: RLS permission dataset with userAs: RLS_RULES flag, Q in QuickSight/Threshold Alerts/Schedules/Snapshots in QS embedding, toggle dataset refresh email alerts via API, transposed table with options: column width, type and index, toggle Q&A on dashboards, Oracle Service Name when creating data source. * api-change:``sagemaker``: TransformAmiVersion for Batch Transform and SageMaker Search Service Aggregate Search API Extension - from version 1.38.22 * api-change:``batch``: This release will enable two features: Firelens log driver, and Execute Command on Batch jobs on ECS. Both features will be passed through to ECS. * api-change:``bcm-pricing-calculator``: Added standaloneAccountRateTypeSelections for GetPreferences and UpdatePreferences APIs. Added STALE enum value to status attribute in GetBillScenario and UpdateBillScenario APIs. * api-change:``bedrock-agent-runtime``: bedrock flow now support node action trace. * api-change:``cloudformation``: Adding support for the new parameter "ScanFilters" in the CloudFormation StartResourceScan API. When this parameter is included, the StartResourceScan API will initiate a scan limited to the resource types specified by the parameter. * api-change:``datazone``: This release adds new action type of Create Listing Changeset for the Metadata Enforcement Rule feature. * api-change:``eks``: Added support for BOTTLEROCKET FIPS AMIs to AMI types in US regions. * api-change:``gamelift``: Amazon GameLift Servers add support for additional instance types. * api-change:``iam``: Update IAM dual-stack endpoints for BJS, IAD and PDT partitions * api-change:``sagemaker``: add: recovery mode for SageMaker Studio apps * api-change:``sso-oidc``: This release adds AwsAdditionalDetails in the CreateTokenWithIAM API response. - from version 1.38.21 * api-change:``arc-zonal-shift``: Add new shiftType field for ARC zonal shifts. * api-change:``directconnect``: With this release, AWS Direct Connect allows you to tag your Direct Connect gateways. Tags are metadata that you can create and use to manage your Direct Connect gateways. For more information about tagging, see AWS Tagging Strategies. * api-change:``mediaconvert``: This release adds a configurable Quality Level setting for the top rendition of Auto ABR jobs * api-change:``mediatailor``: Add support for log filtering which allow customers to filter out selected event types from logs. * api-change:``polly``: Added support for the new voice - Jihye (ko-KR). Jihye is available as a Neural voice only. * api-change:``rds``: Add note about the Availability Zone where RDS restores the DB cluster for the RestoreDBClusterToPointInTime operation. * api-change:``wafv2``: This release adds the ability to associate an AWS WAF v2 web ACL with an AWS Amplify App. - from version 1.38.20 * api-change:``bedrock-agent``: Adding support for Amazon OpenSearch Managed clusters as a vector database in Knowledge Bases for Amazon Bedrock * api-change:``eks``: Added support to override upgrade-blocking readiness checks via force flag when updating a cluster. * api-change:``gameliftstreams``: Minor updates to improve developer experience. * api-change:``keyspaces``: Removing replication region limitation for Amazon Keyspaces Multi-Region Replication APIs. * api-change:``marketplace-entitlement``: This release enhances the GetEntitlements API to support new filter CUSTOMER_AWS_ACCOUNT_ID in request and CustomerAWSAccountId field in response. * api-change:``meteringmarketplace``: This release enhances the BatchMeterUsage API to support new field CustomerAWSAccountId in request and response and making CustomerIdentifier optional. CustomerAWSAccountId or CustomerIdentifier must be provided in request but not both. * api-change:``sagemaker``: This release adds support for customer-managed KMS keys in Amazon SageMaker Partner AI Apps * api-change:``workspaces-thin-client``: Deprecate tags field in Get API responses - from version 1.38.19 * api-change:``iotwireless``: Mark EutranCid under LteNmr optional. * api-change:``pcs``: ClusterName/ClusterIdentifier, ComputeNodeGroupName/ComputeNodeGroupIdentifier, and QueueName/QueueIdentifier can now have 10 characters, and a minimum of 3 characters. The TagResource API action can now return ServiceQuotaExceededException. * api-change:``qconnect``: Provides the correct value for supported model ID. * api-change:``ssm``: This release adds the AvailableSecurityUpdatesComplianceStatus field to patch baseline operations, as well as the AvailableSecurityUpdateCount and InstancesWithAvailableSecurityUpdates to patch state operations. Applies to Windows Server managed nodes only. - from version 1.38.18 * api-change:``bedrock``: A CustomModelUnit(CMU) is an abstract view of the hardware utilization that Bedrock needs to host a a single copy of your custom imported model. Bedrock determines the number of CMUs that a model copy needs when you import the custom model. You can use CMUs to estimate the cost of Inference's. * api-change:``datazone``: Add support for overriding selection of default AWS IAM Identity Center instance as part of Amazon DataZone domain APIs. * api-change:``route53-recovery-control-config``: Adds dual-stack (IPv4 and IPv6) endpoint support for route53-recovery-control-config operations, opt-in dual-stack addresses for cluster endpoints, and UpdateCluster API to update the network-type of clusters between IPv4 and dual-stack. * api-change:``sagemaker``: This release does the following: 1.) Adds DurationHours as a required field to the SearchTrainingPlanOfferings action in the SageMaker AI API; 2.) Adds support for G6e instance types for SageMaker AI inference optimization jobs. - from version 1.38.17 * api-change:``amplify``: Added appId field to Webhook responses * api-change:``bedrock``: With this release, Bedrock Evaluation will now support bring your own inference responses. * api-change:``controlcatalog``: Add ExemptAssumeRoot parameter to adapt for new AWS AssumeRoot capability. * api-change:``mailmanager``: Amazon SES Mail Manager. Extended rule string and boolean expressions to support analysis in condition evaluation. Extended ingress point string expression to support analysis in condition evaluation * api-change:``network-firewall``: You can now use flow operations to either flush or capture traffic monitored in your firewall's flow table. - from version 1.38.16 * api-change:``bedrock``: Support custom prompt routers for evaluation jobs * api-change:``ec2``: Doc-only updates for EC2 for March 2025. * api-change:``lambda``: Add Ruby 3.4 (ruby3.4) support to AWS Lambda. * api-change:``mediaconnect``: This release adds support for NDI flow outputs in AWS Elemental MediaConnect. You can now send content from your MediaConnect transport streams directly to your NDI environment using the new NDI output type. * api-change:``neptune-graph``: Update IAM Role ARN Validation to Support Role Paths * api-change:``sagemaker``: Added support for g6, g6e, m6i, c6i instance types in SageMaker Processing Jobs. - from version 1.38.15 * api-change:``appsync``: Providing Tagging support for DomainName in AppSync * api-change:``cleanrooms``: This release adds support for PySpark jobs. Customers can now analyze data by running jobs using approved PySpark analysis templates. * api-change:``mediaconvert``: This release adds support for AVC passthrough, the ability to specify PTS offset without padding, and an A/V segment matching feature. * api-change:``route53``: Amazon Route 53 now supports the iso-f regions for private DNS Amazon VPCs and cloudwatch healthchecks. - from version 1.38.14 * api-change:``application-signals``: This release adds support for adding, removing, and listing SLO time exclusion windows with the BatchUpdateExclusionWindows and ListServiceLevelObjectiveExclusionWindows APIs. * api-change:``geo-maps``: Provide support for vector map styles in the GetStaticMap operation. * api-change:``rum``: CloudWatch RUM now supports unminification of JS error stack traces. * api-change:``taxsettings``: Adjust Vietnam PaymentVoucherNumber regex and minor API change. * api-change:``wafv2``: AWS WAF now lets you inspect fragments of request URIs. You can specify the scope of the URI to inspect and narrow the set of URI fragments. - from version 1.38.13 * api-change:``cognito-identity``: Updated API model build artifacts for identity pools * api-change:``cognito-idp``: Minor description updates to API parameters * api-change:``glue``: This release added AllowFullTableExternalDataAccess to glue catalog resource. * api-change:``lakeformation``: This release added "condition" to LakeFormation OptIn APIs, also added WithPrivilegedAccess flag to RegisterResource and DescribeResource. - from version 1.38.12 * api-change:``acm-pca``: Private Certificate Authority service now supports P521 and RSA3072 key algorithms. * api-change:``amplify``: Introduced support for Skew Protection. Added enableSkewProtection field to createBranch and updateBranch API. * api-change:``codebuild``: AWS CodeBuild now supports webhook filtering by organization name * api-change:``datazone``: This release adds support to update projects and environments * api-change:``dynamodb``: Generate account endpoints for DynamoDB requests using ARN-sourced account ID when available * api-change:``ec2``: This release changes the CreateLaunchTemplate, CreateLaunchTemplateVersion, ModifyLaunchTemplate CLI and SDKs such that if you do not specify a client token, a randomly generated token is used for the request to ensure idempotency. * api-change:``ivs-realtime``: IVS Real-Time now offers customers the ability to adjust the participant & composition recording segment duration * api-change:``logs``: Updated CreateLogAnomalyDetector to accept only kms key arn * api-change:``mediapackagev2``: This release adds the ResetChannelState and ResetOriginEndpointState operation to reset MediaPackage V2 channel and origin endpoint. This release also adds a new field, UrlEncodeChildManifest, for HLS/LL-HLS to allow URL-encoding child manifest query string based on the requirements of AWS SigV4. * api-change:``s3control``: Updating GetDataAccess response for S3 Access Grants to include the matched Grantee for the requested prefix - from version 1.38.11 * api-change:``ec2``: This release adds the GroupLongName field to the response of the DescribeAvailabilityZones API. * api-change:``ecr``: This release adds Amazon ECR to Amazon ECR pull through cache rules support. * api-change:``ecs``: This is a documentation only update for Amazon ECS to address various tickets. * api-change:``inspector2``: Adding componentArn to network reachability details * api-change:``medialive``: Add an enum option DISABLED for Output Locking Mode under Global Configuration. - from version 1.38.10 * api-change:``bedrock-agent``: Add support for computer use tools * api-change:``bedrock-agent-runtime``: Add support for computer use tools * api-change:``ce``: Releasing minor partition endpoint updates. * api-change:``connect``: Add support for contact transfers in external voice systems. * api-change:``medialive``: Adds defaultFontSize and defaultLineHeight as options in the EbuTtDDestinationSettings within the caption descriptions for an output stream. * api-change:``pca-connector-ad``: PrivateCA Connector for Active Directory now supports dual stack endpoints. This release adds the IpAddressType option to the VpcInformation on a Connector which determines whether the endpoint supports IPv4 only or IPv4 and IPv6 traffic. * api-change:``securityhub``: This release adds new StandardsControlsUpdatable field to the StandardsSubscription resource * api-change:``timestream-influxdb``: This release updates the default value of pprof-disabled from false to true. - from version 1.38.9 * api-change:``bedrock-agent``: Introduces support for Neptune Analytics as a vector data store and adds Context Enrichment Configurations, enabling use cases such as GraphRAG. * api-change:``bedrock-agent-runtime``: Support Multi Agent Collaboration within Inline Agents * api-change:``cloudfront``: Documentation updates for Amazon CloudFront. * api-change:``ec2``: Add serviceManaged field to DescribeAddresses API response. * api-change:``elbv2``: This release adds support for assigning IP addresses to Application Load Balancers from VPC IP Address Manager pools. * api-change:``neptune-graph``: Several small updates to resolve customer requests. - from version 1.38.8 * api-change:``bedrock``: This releases adds support for Custom Prompt Router * api-change:``cloudtrail``: Doc-only update for CloudTrail. * api-change:``ivs-realtime``: IVS Real-Time now offers customers the ability to merge fragmented recordings in the event of a participant disconnect. * api-change:``networkflowmonitor``: This release contains 2 changes. 1: DeleteScope/GetScope/UpdateScope operations now return 404 instead of 500 when the resource does not exist. 2: Expected string format for clientToken fields of CreateMonitorInput/CreateScopeInput/UpdateMonitorInput have been updated to be an UUID based string. * api-change:``redshift-data``: This release adds support for ListStatements API to filter statements by ClusterIdentifier, WorkgroupName, and Database. * api-change:``wafv2``: You can now perform an exact match or rate limit aggregation against the web request's JA4 fingerprint. * api-change:``workspaces``: Added a new ModifyEndpointEncryptionMode API for managing endpoint encryption settings. - from version 1.38.7 * api-change:``bedrock-runtime``: This releases adds support for Custom Prompt Router ARN * api-change:``datasync``: AWS DataSync now supports modifying ServerHostname while updating locations SMB, NFS, and ObjectStorage. * api-change:``gameliftstreams``: New Service: Amazon GameLift Streams delivers low-latency game streaming from AWS global infrastructure to virtually any device with a browser at up to 1080p resolution and 60 fps. * api-change:``iotfleetwise``: This release adds floating point support for CAN/OBD signals and adds support for signed OBD signals. * api-change:``workspaces``: Added DeviceTypeWorkSpacesThinClient type to allow users to access their WorkSpaces through a WorkSpaces Thin Client. - from version 1.38.6 * api-change:``elasticache``: Doc only update, listing 'valkey7' and 'valkey8' as engine options for parameter groups. * api-change:``iot-managed-integrations``: Adding managed integrations APIs for IoT Device Management to setup and control devices across different manufacturers and connectivity protocols. APIs include managedthing operations, credential and provisioning profile management, notification configuration, and OTA update. * api-change:``iotsitewise``: AWS IoT SiteWise now supports MQTT-enabled, V3 gateways. Configure data destinations for real-time ingestion into AWS IoT SiteWise or buffered ingestion using Amazon S3 storage. You can also use path filters for precise data collection from specific MQTT topics. * api-change:``rds``: Note support for Database Insights for Amazon RDS. - from version 1.38.5 * api-change:``cognito-idp``: Added the capacity to return available challenges in admin authentication and to set version 3 of the pre token generation event for M2M ATC. * api-change:``ec2``: Update the DescribeVpcs response * api-change:``qbusiness``: Adds support for the ingestion of audio and video files by Q Business, which can be configured with the mediaExtractionConfiguration parameter. * api-change:``rum``: Add support for PutResourcePolicy, GetResourcePolicy and DeleteResourcePolicy to support resource based policies for AWS CloudWatch RUM * api-change:``sagemaker``: Add DomainId to CreateDomainResponse * api-change:``transcribe``: Updating documentation for post call analytics job queueing. - from version 1.38.4 * api-change:``bedrock-agent``: This release lets Amazon Bedrock Flows support newer models by increasing the maximum length of output in a prompt configuration. This release also increases the maximum number of prompt variables to 20 and the maximum number of node inputs to 20. * api-change:``bedrock-data-automation``: Renamed and added new StandardConfiguration enums. Added support to update EncryptionConfiguration in UpdateBlueprint and UpdateDataAutomation APIs. Changed HttpStatus code for DeleteBlueprint and DeleteDataAutomationProject APIs to 200 from 204. Added APIs to support tagging. * api-change:``bedrock-data-automation-runtime``: Added a mandatory parameter DataAutomationProfileArn to support for cross region inference for InvokeDataAutomationAsync API. Renamed DataAutomationArn to DataAutomationProjectArn. Added APIs to support tagging. * api-change:``dms``: Add skipped status to the Result Statistics of an Assessment Run * api-change:``eks``: Adding licenses to EKS Anywhere Subscription operations response. * api-change:``mediaconvert``: The AWS MediaConvert Probe API allows you to analyze media files and retrieve detailed metadata about their content, format, and structure. * api-change:``pricing``: Update GetProducts and DescribeServices API request input validations. * api-change:``ssm``: Systems Manager doc-only updates for Feb. 2025. - from version 1.38.3 * api-change:``bedrock-agent-runtime``: Introduces Sessions (preview) to enable stateful conversations in GenAI applications. * api-change:``emr``: Definition update for EbsConfiguration. * api-change:``qbusiness``: This release supports deleting attachments from conversations. * api-change:``redshift-serverless``: Add track support for Redshift Serverless workgroup. * api-change:``sagemaker``: SageMaker HubService is introducing support for creating Training Jobs in Curated Hub (Private Hub). Additionally, it is introducing two new APIs: UpdateHubContent and UpdateHubContentReference. * api-change:``storagegateway``: This release adds support to invoke a process that cleans the specified file share's cache of file entries that are failing upload to Amazon S3. - from version 1.38.2 * api-change:``application-signals``: This release adds API support for reading Service Level Objectives and Services from monitoring accounts, from SLO and Service-scoped operations, including ListServices and ListServiceLevelObjectives. * api-change:``batch``: AWS Batch: Resource Aware Scheduling feature support * api-change:``chime``: Removes the Amazon Chime SDK APIs from the "chime" namespace. Amazon Chime SDK APIs continue to be available in the AWS SDK via the dedicated Amazon Chime SDK namespaces: chime-sdk-identity, chime-sdk-mediapipelines, chime-sdk-meetings, chime-sdk-messaging, and chime-sdk-voice. * api-change:``cloudfront``: Documentation update for VPC origin config. * api-change:``ec2``: Amazon EC2 Fleet customers can now override the Block Device Mapping specified in the Launch Template when creating a new Fleet request, saving the effort of creating and associating new Launch Templates to customize the Block Device Mapping. * api-change:``iotfleetwise``: This release adds an optional listResponseScope request parameter in certain list API requests to limit the response to metadata only. * api-change:``oam``: This release adds support for sharing AWS::ApplicationSignals::Service and AWS::ApplicationSignals::ServiceLevelObjective resources. * api-change:``sagemaker``: AWS SageMaker InferenceComponents now support rolling update deployments for Inference Components. - from version 1.38.1 * api-change:``codebuild``: Adding "reportArns" field in output of BatchGetBuildBatches API. "reportArns" is an array that contains the ARNs of reports created by merging reports from builds associated with the batch build. * api-change:``devicefarm``: Add an optional configuration to the ScheduleRun and CreateRemoteAccessSession API to set a device level http/s proxy. * api-change:``ec2``: Adds support for time-based EBS-backed AMI copy operations. Time-based copy ensures that EBS-backed AMIs are copied within and across Regions in a specified timeframe. * api-change:``iot``: AWS IoT - AWS IoT Device Defender adds support for a new Device Defender Audit Check that monitors device certificate age and custom threshold configurations for both the new device certificate age check and existing device certificate expiry check. * api-change:``taxsettings``: PutTaxRegistration API changes for Egypt, Greece, Vietnam countries - from version 1.38.0 * api-change:``bedrock-agent``: This release improves support for newer models in Amazon Bedrock Flows. * api-change:``bedrock-agent-runtime``: Adding support for ReasoningContent fields in Pre-Processing, Post-Processing and Orchestration Trace outputs. * api-change:``bedrock-runtime``: This release adds Reasoning Content support to Converse and ConverseStream APIs * api-change:``elasticache``: Documentation update, adding clarity and rephrasing. * feature:Endpoints: Generate and use AWS-account-based endpoints for compatible services when the account ID is available. At launch, DynamoDB is the first and only compatible service. The new endpoint URL pattern will be ``https://<account-id>.ddb.<region>.amazonaws.com``. Additional services may be added in the future. See the documentation for details: https://docs.aws.amazon.com/sdkref/latest/guide/feature-account-endpoints.html - from version 1.37.26 * api-change:``appstream``: Added support for Certificate-Based Authentication on AppStream 2.0 multi-session fleets. * api-change:``bedrock-agent``: Introduce a new parameter which represents the user-agent header value used by the Bedrock Knowledge Base Web Connector. - from version 1.37.25 * api-change:``codebuild``: Add webhook status and status message to AWS CodeBuild webhooks * api-change:``guardduty``: Reduce the minimum number of required attack sequence signals from 2 to 1 * api-change:``license-manager-user-subscriptions``: Updates entity to include Microsoft RDS SAL as a valid type of user subscription. * api-change:``rds``: CloudWatch Database Insights now supports Amazon RDS. * api-change:``sagemaker``: Added new capability in the UpdateCluster operation to remove instance groups from your SageMaker HyperPod cluster. * api-change:``workspaces-web``: Add support for toolbar configuration under user settings. - from version 1.37.24 * api-change:``codepipeline``: Add environment variables to codepipeline action declaration. * api-change:``ecs``: This is a documentation only release for Amazon ECS that supports the CPU task limit increase. * api-change:``lightsail``: Documentation updates for Amazon Lightsail. * api-change:``location``: Adds support for larger property maps for tracking and geofence positions changes. It increases the maximum number of items from 3 to 4, and the maximum value length from 40 to 150. * api-change:``mailmanager``: This release adds additional metadata fields in Mail Manager archive searches to show email source and details about emails that were archived when being sent with SES. * api-change:``network-firewall``: This release introduces Network Firewall's Automated Domain List feature. New APIs include UpdateFirewallAnalysisSettings, StartAnalysisReport, GetAnalysisReportResults, and ListAnalysisReports. These allow customers to enable analysis on firewalls to identify and report frequently accessed domain. * api-change:``sagemaker``: Adds r8g instance type support to SageMaker Realtime Endpoints * api-change:``sesv2``: This release adds the ability for outbound email sent with SES to preserve emails to a Mail Manager archive. - from version 1.37.23 * api-change:``batch``: This documentation-only update corrects some typos. * api-change:``emr-containers``: EMR on EKS StartJobRun Api will be supporting the configuration of log storage in AWS by using "managedLogs" under "MonitoringConfiguration". * api-change:``medialive``: Adds support for creating CloudWatchAlarmTemplates for AWS Elemental MediaTailor Playback Configuration resources. - from version 1.37.22 * api-change:``amplify``: Add ComputeRoleArn to CreateApp, UpdateApp, CreateBranch, and UpdateBranch, allowing caller to specify a role to be assumed by Amplify Hosting for server-side rendered applications. * api-change:``dms``: Support replicationConfigArn in DMS DescribeApplicableIndividualAssessments API. * api-change:``timestream-influxdb``: This release introduces APIs to manage DbClusters and adds support for read replicas - from version 1.37.21 * api-change:``codebuild``: Added test suite names to test case metadata * api-change:``connect``: Release Notes: 1) Analytics API enhancements: Added new ListAnalyticsDataLakeDataSets API. 2) Onboarding API Idempotency: Adds ClientToken to instance creation and management APIs to support idempotency. * api-change:``dms``: Introduces premigration assessment feature to DMS Serverless API for start-replication and describe-replications * api-change:``rds-data``: Add support for Stop DB feature. * api-change:``s3``: Added support for Content-Range header in HeadObject response. * api-change:``wafv2``: The WAFv2 API now supports configuring data protection in webACLs. * api-change:``workspaces-thin-client``: Update Environment and Device name field definitions - from version 1.37.20 * api-change:``accessanalyzer``: This release introduces the getFindingsStatistics API, enabling users to retrieve aggregated finding statistics for IAM Access Analyzer's external access and unused access analysis features. Updated service API and documentation. * api-change:``acm-pca``: Private Certificate Authority (PCA) documentation updates * api-change:``ecs``: This is a documentation only release to support migrating Amazon ECS service ARNs to the long ARN format. * api-change:``fis``: Adds auto-pagination for the following operations: ListActions, ListExperimentTemplates, ListTargetAccountConfigurations, ListExperiments, ListExperimentResolvedTargets, ListTargetResourceTypes. Reduces length constraints of prefixes for logConfiguration and experimentReportConfiguration. * api-change:``sagemaker``: Adds additional values to the InferenceAmiVersion parameter in the ProductionVariant data type. * api-change:``storagegateway``: This release adds support for generating cache reports on S3 File Gateways for files that fail to upload. - from version 1.37.19 * api-change:``b2bi``: Allow spaces in the following fields in the Partnership resource: ISA 06 - Sender ID, ISA 08 - Receiver ID, GS 02 - Application Sender Code, GS 03 - Application Receiver Code * api-change:``bedrock-agent``: This releases adds the additionalModelRequestFields field to the CreateAgent and UpdateAgent operations. Use additionalModelRequestFields to specify additional inference parameters for a model beyond the base inference parameters. * api-change:``bedrock-agent-runtime``: This releases adds the additionalModelRequestFields field to the InvokeInlineAgent operation. Use additionalModelRequestFields to specify additional inference parameters for a model beyond the base inference parameters. * api-change:``codebuild``: Add note for the RUNNER_BUILDKITE_BUILD buildType. * api-change:``fsx``: Support for in-place Lustre version upgrades * api-change:``medialive``: Adds a RequestId parameter to all MediaLive Workflow Monitor create operations. The RequestId parameter allows idempotent operations. * api-change:``opensearchserverless``: Custom OpenSearchServerless Entity ID for SAML Config. * api-change:``polly``: Added support for the new voice - Jasmine (en-SG). Jasmine is available as a Neural voice only. - from version 1.37.18 * api-change:``acm-pca``: Private Certificate Authority service now supports Partitioned CRL as a revocation configuration option. * api-change:``appsync``: Add support for operation level caching * api-change:``ec2``: Adding support for the new fullSnapshotSizeInBytes field in the response of the EC2 EBS DescribeSnapshots API. This field represents the size of all the blocks that were written to the source volume at the time the snapshot was created. * api-change:``pi``: Documentation only update for RDS Performance Insights dimensions for execution plans and locking analysis. - from version 1.37.17 * api-change:``apigatewayv2``: Documentation updates for Amazon API Gateway * api-change:``cloudfront``: Doc-only update that adds defaults for CloudFront VpcOriginEndpointConfig values. * api-change:``connect``: Updated the CreateContact API documentation to indicate that it only applies to EMAIL contacts. * api-change:``dms``: New vendors for DMS Data Providers: DB2 LUW and DB2 for z/OS - from version 1.37.16 * api-change:``ecr``: Adds support to handle the new basic scanning daily quota. * api-change:``eks``: Introduce versionStatus field to take place of status field in EKS DescribeClusterVersions API * api-change:``mediaconvert``: This release adds support for Animated GIF output, forced chroma sample positioning metadata, and Extensible Wave Container format * api-change:``pi``: Adds documentation for dimension groups and dimensions to analyze locks for Database Insights. * api-change:``transcribe``: This release adds support for the Clinical Note Template Customization feature for the AWS HealthScribe APIs within Amazon Transcribe. - from version 1.37.15 * api-change:``cloudformation``: We added 5 new stack refactoring APIs: CreateStackRefactor, ExecuteStackRefactor, ListStackRefactors, DescribeStackRefactor, ListStackRefactorActions. * api-change:``connectcases``: This release adds the ability to conditionally require fields on a template. Check public documentation for more information. * api-change:``cost-optimization-hub``: This release enables AWS Cost Optimization Hub to show cost optimization recommendations for Amazon Auto Scaling Groups, including those with single and mixed instance types. * api-change:``s3``: Updated list of the valid AWS Region values for the LocationConstraint parameter for general purpose buckets. - from version 1.37.14 * api-change:``rds``: Documentation updates to clarify the description for the parameter AllocatedStorage for the DB cluster data type, the description for the parameter DeleteAutomatedBackups for the DeleteDBCluster API operation, and removing an outdated note for the CreateDBParameterGroup API operation. - from version 1.37.13 * api-change:``datasync``: Doc-only update to provide more information on using Kerberos authentication with SMB locations. * api-change:``dms``: Introduces TargetDataSettings with the TablePreparationMode option available for data migrations. * api-change:``iam``: This release adds support for accepting encrypted SAML assertions. Customers can now configure their identity provider to encrypt the SAML assertions it sends to IAM. * api-change:``neptune-graph``: Added argument to `list-export` to filter by graph ID * api-change:``qbusiness``: Adds functionality to enable/disable a new Q Business Chat orchestration feature. If enabled, Q Business can orchestrate over datasources and plugins without the need for customers to select specific chat modes. * api-change:``sagemaker``: IPv6 support for Hyperpod clusters - from version 1.37.12 * api-change:``mediatailor``: Add support for CloudWatch Vended Logs which allows for delivery of customer logs to CloudWatch Logs, S3, or Firehose. - from version 1.37.11 * api-change:``amp``: Add support for sending metrics to cross account and CMCK AMP workspaces through RoleConfiguration on Create/Update Scraper. * api-change:``bedrock-agent-runtime``: This change is to deprecate the existing citation field under RetrieveAndGenerateStream API response in lieu of GeneratedResponsePart and RetrievedReferences * api-change:``codebuild``: Added support for CodeBuild self-hosted Buildkite runner builds * api-change:``geo-routes``: The OptimizeWaypoints API now supports 50 waypoints per request (20 with constraints like AccessHours or AppointmentTime). It adds waypoint clustering via Clustering and ClusteringIndex for better optimization. Also, total distance validation is removed for greater flexibility. * api-change:``rds``: Updates to Aurora MySQL and Aurora PostgreSQL API pages with instance log type in the create and modify DB Cluster. * api-change:``sagemaker``: This release introduces a new valid value in InstanceType parameter: p5en.48xlarge, in ProductionVariant. - from version 1.37.10 * api-change:``appstream``: Add support for managing admin consent requirement on selected domains for OneDrive Storage Connectors in AppStream2.0. * api-change:``bedrock-agent-runtime``: Add a 'reason' field to InternalServerException * api-change:``ecr``: Temporarily updating dualstack endpoint support * api-change:``ecr-public``: Temporarily updating dualstack endpoint support * api-change:``mediatailor``: Adds options for configuring how MediaTailor conditions ads before inserting them into the content stream. Based on the new settings, MediaTailor will either transcode ads to match the content stream as it has in the past, or it will insert ads without first transcoding them. * api-change:``qbusiness``: Added APIs to manage QBusiness user subscriptions * api-change:``s3tables``: You can now use the CreateTable API operation to create tables with schemas by adding an optional metadata argument. * api-change:``verifiedpermissions``: Adds Cedar JSON format support for entities and context data in authorization requests - from version 1.37.9 * api-change:``bcm-pricing-calculator``: Added ConflictException error type in DeleteBillScenario, BatchDeleteBillScenarioCommitmentModification, BatchDeleteBillScenarioUsageModification, BatchUpdateBillScenarioUsageModification, and BatchUpdateBillScenarioCommitmentModification API operations. * api-change:``ecr``: Add support for Dualstack and Dualstack-with-FIPS Endpoints * api-change:``ecr-public``: Add support for Dualstack Endpoints * api-change:``mailmanager``: This release includes a new feature for Amazon SES Mail Manager which allows customers to specify known addresses and domains and make use of those in traffic policies and rules actions to distinguish between known and unknown entries. * api-change:``s3``: Change the type of MpuObjectSize in CompleteMultipartUploadRequest from int to long. - from version 1.37.8 * api-change:``appsync``: Add stash and outErrors to EvaluateCode/EvaluateMappingTemplate response * api-change:``datasync``: AWS DataSync now supports the Kerberos authentication protocol for SMB locations. * api-change:``deadline``: feature: Deadline: Add support for limiting the concurrent usage of external resources, like floating licenses, using limits and the ability to constrain the maximum number of workers that work on a job * api-change:``ec2``: This release changes the CreateFleet CLI and SDK's such that if you do not specify a client token, a randomly generated token is used for the request to ensure idempotency. * api-change:``firehose``: For AppendOnly streams, Firehose will automatically scale to match your throughput. * api-change:``timestream-influxdb``: Adds 'allocatedStorage' parameter to UpdateDbInstance API that allows increasing the database instance storage size and 'dbStorageType' parameter to UpdateDbInstance API that allows changing the storage type of the database instance - from version 1.37.7 * api-change:``bedrock-agent``: Add support for the prompt caching feature for Bedrock Prompt Management * api-change:``iot``: Raised the documentParameters size limit to 30 KB for AWS IoT Device Management - Jobs. * api-change:``mediaconvert``: This release adds support for dynamic audio configuration and the ability to disable the deblocking filter for h265 encodes. * api-change:``s3control``: Minor fix to ARN validation for Lambda functions passed to S3 Batch Operations - from version 1.37.6 * api-change:``cloudtrail``: This release introduces the SearchSampleQueries API that allows users to search for CloudTrail Lake sample queries. * api-change:``eks``: Adds support for UpdateStrategies in EKS Managed Node Groups. * api-change:``healthlake``: Added new authorization strategy value 'SMART_ON_FHIR' for CreateFHIRDatastore API to support Smart App 2.0 * api-change:``ssm``: Systems Manager doc-only update for January, 2025. * api-change:``sso-oidc``: Fixed typos in the descriptions. * api-change:``transfer``: Added CustomDirectories as a new directory option for storing inbound AS2 messages, MDN files and Status files. - from version 1.37.5 * api-change:``ec2``: Added "future" allocation type for future dated capacity reservation - from version 1.37.4 * api-change:``bedrock-agent-runtime``: Adds multi-turn input support for an Agent node in an Amazon Bedrock Flow * api-change:``glue``: Docs Update for timeout changes * api-change:``medialive``: AWS Elemental MediaLive adds a new feature, ID3 segment tagging, in CMAF Ingest output groups. It allows customers to insert ID3 tags into every output segment, controlled by a newly added channel schedule action Id3SegmentTagging. * api-change:``workspaces-thin-client``: Rename WorkSpaces Web to WorkSpaces Secure Browser - from version 1.37.3 * api-change:``batch``: Documentation-only update: clarified the description of the shareDecaySeconds parameter of the FairsharePolicy data type, clarified the description of the priority parameter of the JobQueueDetail data type. * api-change:``cognito-idp``: corrects the dual-stack endpoint configuration for cognitoidp * api-change:``connect``: Added DeleteContactFlowVersion API and the CAMPAIGN flow type * api-change:``emr-serverless``: Increasing entryPoint in SparkSubmit to accept longer script paths. New limit is 4kb. * api-change:``iotsitewise``: AWS IoT SiteWise now supports ingestion and querying of Null (all data types) and NaN (double type) values of bad or uncertain data quality. New partial error handling prevents data loss during ingestion. Enabled by default for new customers; existing customers can opt-in. * api-change:``logs``: Documentation-only update to address doc errors * api-change:``quicksight``: Added `DigitGroupingStyle` in ThousandsSeparator to allow grouping by `LAKH`( Indian Grouping system ) currency. Support LAKH and `CRORE` currency types in Column Formatting. * api-change:``sns``: This release adds support for the topic attribute FifoThroughputScope for SNS FIFO topics. For details, see the documentation history in the Amazon Simple Notification Service Developer Guide. - Refresh patches for new version - Update Requires from setup.py - Update to 1.37.2 * api-change:``bedrock-runtime``: Allow hyphens in tool name for Converse and ConverseStream APIs * api-change:``detective``: Doc only update for Detective documentation. * api-change:``ec2``: Release u7i-6tb.112xlarge, u7i-8tb.112xlarge, u7inh-32tb.480xlarge, p5e.48xlarge, p5en.48xlarge, f2.12xlarge, f2.48xlarge, trn2.48xlarge instance types. * api-change:``notifications``: Added support for Managed Notifications, integration with AWS Organization and added aggregation summaries for Aggregate Notifications * api-change:``sagemaker``: Correction of docs for "Added support for ml.trn1.32xlarge instance type in Reserved Capacity Offering" - from version 1.37.1 * api-change:``ecs``: The release addresses Amazon ECS documentation tickets. * api-change:``sagemaker``: Added support for ml.trn1.32xlarge instance type in Reserved Capacity Offering - from version 1.37.0 * api-change:``apigateway``: Documentation updates for Amazon API Gateway * api-change:``bedrock-agent-runtime``: Now supports streaming for inline agents. * api-change:``cognito-identity``: corrects the dual-stack endpoint configuration * api-change:``partnercentral-selling``: Add Tagging support for ResourceSnapshotJob resources * api-change:``s3``: This change enhances integrity protections for new SDK requests to S3. S3 SDKs now support the CRC64NVME checksum algorithm, full object checksums for multipart S3 objects, and new default integrity protections for S3 requests. * api-change:``security-ir``: Increase minimum length of Threat Actor IP 'userAgent' to 1. * api-change:``sesv2``: This release introduces a new recommendation in Virtual Deliverability Manager Advisor, which detects elevated complaint rates for customer sending identities. * api-change:``workspaces``: Added GeneralPurpose.4xlarge & GeneralPurpose.8xlarge ComputeTypes. * api-change:``workspaces-thin-client``: Mark type in MaintenanceWindow as required. * feature:``s3``: The S3 client attempts to validate response checksums for all S3 API operations that support checksums. However, if the SDK has not implemented the specified checksum algorithm then this validation is skipped. Checksum validation behavior can be configured using the ``when_supported`` and ``when_required`` options - in code using the ``response_checksum_validation`` parameter for ``botocore.config.Config``, in the shared AWS config file using ``response_checksum_validation``, or as an env variable using ``AWS_RESPONSE_CHECKSUM_VALIDATION``. * feature:``s3``: Added support for the CRC64NVME checksum algorithm in the S3 client through the optional AWS CRT (``awscrt``) dependency. * feature:``s3``: S3 client behavior is updated to always calculate a CRC32 checksum by default for operations that support it (such as PutObject or UploadPart), or require it (such as DeleteObjects). Checksum behavior can be configured using ``when_supported`` and ``when_required`` options - in code using the ``request_checksum_calculation`` parameter for ``botocore.config.Config``, in the shared AWS config file using ``request_checksum_calculation``, or as an env variable using ``AWS_REQUEST_CHECKSUM_CALCULATION``. Note: Botocore will no longer automatically compute and populate the Content-MD5 header. - from version 1.36.40 * api-change:``gamelift``: Amazon GameLift releases a new game session placement feature: PriorityConfigurationOverride. You can now override how a game session queue prioritizes placement locations for a single StartGameSessionPlacement request. * api-change:``route53``: Amazon Route 53 now supports the Mexico (Central) Region (mx-central-1) for latency records, geoproximity records, and private DNS for Amazon VPCs in that region - from version 1.36.39 * api-change:``artifact``: Support resolving regional API calls to partition's leader region endpoint. * api-change:``bedrock``: With this release, Bedrock Evaluation will now support latency-optimized inference for foundation models. * api-change:``ec2``: Add support for DisconnectOnSessionTimeout flag in CreateClientVpnEndpoint and ModifyClientVpnEndpoint requests and DescribeClientVpnEndpoints responses * api-change:``kafkaconnect``: Support updating connector configuration via UpdateConnector API. Release Operations API to monitor the status of the connector operation. * api-change:``transcribe``: This update provides tagging support for Transcribe's Call Analytics Jobs and Call Analytics Categories. - from version 1.36.38 * api-change:``redshift``: Additions to the PubliclyAccessible and Encrypted parameters clarifying what the defaults are. * api-change:``securitylake``: Doc only update for ServiceName that fixes several customer-reported issues * api-change:``sts``: Fixed typos in the descriptions. - from version 1.36.37 * api-change:``codebuild``: AWS CodeBuild Now Supports BuildBatch in Reserved Capacity and Lambda * api-change:``compute-optimizer``: This release expands AWS Compute Optimizer rightsizing recommendation support for Amazon EC2 Auto Scaling groups to include those with scaling policies and multiple instance types. * api-change:``fms``: AWS Firewall Manager now lets you combine multiple resource tags using the logical AND operator or the logical OR operator. - from version 1.36.36 * api-change:``rds``: Updates Amazon RDS documentation to clarify the RestoreDBClusterToPointInTime description. * api-change:``route53``: Amazon Route 53 now supports the Asia Pacific (Thailand) Region (ap-southeast-7) for latency records, geoproximity records, and private DNS for Amazon VPCs in that region * api-change:``sagemaker``: Adds support for IPv6 for SageMaker HyperPod cluster nodes. - from version 1.36.35 * api-change:``cloudhsmv2``: Adds support to ModifyCluster for modifying a Cluster's Hsm Type. * api-change:``dynamodb``: This release makes Amazon DynamoDB point-in-time-recovery (PITR) to be configurable. You can set PITR recovery period for each table individually to between 1 and 35 days. * api-change:``imagebuilder``: This release adds support for importing images from ISO disk files. Added new ImportDiskImage API operation. * enhancement:``s3 ls``: Expose low-level ``ListBuckets` parameters ``Prefix`` and ``BucketRegion`` to high-level ``s3 ls`` command as ``--bucket-name-prefix`` and ``--bucket-region``. - from version 1.36.34 * api-change:``iotsecuretunneling``: Adds dualstack endpoint support for IoT Secure Tunneling * api-change:``supplychain``: Allow vanity DNS domain when creating a new ASC instance - from version 1.36.33 * api-change:``ecs``: Adding SDK reference examples for Amazon ECS operations. * api-change:``route53domains``: Doc only update for Route 53 Domains that fixes several customer-reported issues * api-change:``s3``: This change is only for updating the model regexp of CopySource which is not for validation but only for documentation and user guide change. - from version 1.36.32 * api-change:``appsync``: Modify UpdateGraphQLAPI operation and flag authenticationType as required. * api-change:``gamelift``: Amazon GameLift releases a new game session shutdown feature. Use the Amazon GameLift console or AWS CLI to terminate an in-progress game session that's entered a bad state or is no longer needed. * api-change:``mediaconnect``: AWS Elemental MediaConnect now supports Content Quality Analysis for enhanced source stream monitoring. This enables you to track specific audio and video metrics in transport stream source flows, ensuring your content meets quality standards. * api-change:``mediaconvert``: This release adds support for the AVC3 codec and fixes an alignment issue with Japanese vertical captions. * api-change:``organizations``: Added ALL_FEATURES_MIGRATION_ORGANIZATION_SIZE_LIMIT_EXCEEDED to ConstraintViolationException for the EnableAllFeatures operation. * api-change:``sagemaker``: Adding ETag information with Model Artifacts for Model Registry * api-change:``sqs``: In-flight message typo fix from 20k to 120k. - from version 1.36.31 * api-change:``ecr``: Restoring custom endpoint functionality for ECR * api-change:``ecr-public``: Restoring custom endpoint functionality for ECR Public - from version 1.36.30 * api-change:``rds``: Updates Amazon RDS documentation to correct various descriptions. - from version 1.36.29 * api-change:``bcm-pricing-calculator``: Added ConflictException to DeleteBillEstimate. * api-change:``ecr``: Add support for Dualstack Endpoints * api-change:``network-firewall``: Dual-stack endpoints are now supported. * api-change:``securityhub``: Documentation updates for AWS Security Hub - from version 1.36.28 * api-change:``ecr``: Documentation update for ECR GetAccountSetting and PutAccountSetting APIs. * api-change:``ecr-public``: Add support for Dualstack endpoints * api-change:``eks``: This release adds support for DescribeClusterVersions API that provides important information about Kubernetes versions along with end of support dates * api-change:``glue``: Add IncludeRoot parameters to GetCatalogs API to return root catalog. - from version 1.36.27 * api-change:``bedrock-agent``: Support for custom user agent and max web pages crawled for web connector. Support app only credentials for SharePoint connector. Increase agents memory duration limit to 365 days. Support to specify max number of session summaries to include in agent invocation context. * api-change:``bedrock-agent-runtime``: bedrock agents now supports long term memory and performance configs. Invokeflow supports performance configs. RetrieveAndGenerate performance configs * api-change:``bedrock-data-automation``: Documentation update for Amazon Bedrock Data Automation * api-change:``bedrock-data-automation-runtime``: Documentation update for Amazon Bedrock Data Automation Runtime * api-change:``billing``: Added new API's for defining and fetching Billing Views. * api-change:``ce``: Support for retrieving cost, usage, and forecast for billing view. * api-change:``connect``: This release supports adding NotAttributeCondition and Range to the RoutingCriteria object. * api-change:``docdb``: Support AWS Secret Manager managed password for AWS DocumentDB instance-based cluster. * api-change:``eks``: This release expands the catalog of upgrade insight checks * api-change:``macie2``: This release adds support for identifying S3 general purpose buckets that exceed the Amazon Macie quota for preventative control monitoring. * api-change:``outposts``: Add CS8365C as a supported power connector for Outpost sites. * api-change:``sagemaker``: This release adds support for c6i, m6i and r6i instance on SageMaker Hyperpod and trn1 instances in batch - from version 1.36.26 * api-change:``appstream``: Added support for Rocky Linux 8 on Amazon AppStream 2.0 * api-change:``mediaconvert``: This release adds support for inserting timecode tracks into MP4 container outputs. * api-change:``medialive``: MediaLive is releasing ListVersions api * api-change:``qconnect``: Amazon Q in Connect enables agents to ask Q for assistance in multiple languages and Q will provide answers and recommended step-by-step guides in those languages. Qs default language is English (United States) and you can switch this by setting the locale configuration on the AI Agent. * api-change:``ssm-sap``: AWS Systems Manager for SAP added support for registration and discovery of distributed ABAP applications * api-change:``workspaces``: Added AWS Global Accelerator (AGA) support for WorkSpaces Personal. - from version 1.36.25 * api-change:``amplify``: Added WAF Configuration to Amplify Apps * api-change:``budgets``: Releasing minor partition endpoint updates * api-change:``connect``: This release adds support for the UpdateParticipantAuthentication API used for customer authentication within Amazon Connect chats. * api-change:``connectparticipant``: This release adds support for the GetAuthenticationUrl and CancelParticipantAuthentication APIs used for customer authentication within Amazon Connect chats. There are also minor updates to the GetAttachment API. * api-change:``datasync``: AWS DataSync introduces the ability to update attributes for in-cloud locations. * api-change:``iot``: Release connectivity status query API which is a dedicated high throughput(TPS) API to query a specific device's most recent connectivity state and metadata. * api-change:``mwaa``: Added support for Apache Airflow version 2.10.3 to MWAA. * api-change:``quicksight``: Add support for PerformanceConfiguration attribute to Dataset entity. Allow PerformanceConfiguration specification in CreateDataset and UpdateDataset APIs. * api-change:``resiliencehub``: AWS Resilience Hub now automatically detects already configured CloudWatch alarms and FIS experiments as part of the assessment process and returns the discovered resources in the corresponding list API responses. It also allows you to include or exclude test recommendations for an AppComponent. * api-change:``transfer``: Added AS2 agreement configurations to control filename preservation and message signing enforcement. Added AS2 connector configuration to preserve content type from S3 objects. - from version 1.36.24 * api-change:``account``: Update endpoint configuration. * api-change:``backup``: Add Support for Backup Indexing * api-change:``backupsearch``: Add support for searching backups * api-change:``batch``: This feature allows AWS Batch on Amazon EKS to support configuration of Pod Annotations, overriding Namespace on which the Batch job's Pod runs on, and allows Subpath and Persistent Volume claim to be set for AWS Batch on Amazon EKS jobs. * api-change:``cleanroomsml``: Add support for SQL compute configuration for StartAudienceGenerationJob API. * api-change:``cloudfront``: Adds support for OriginReadTimeout and OriginKeepaliveTimeout to create CloudFront Distributions with VPC Origins. * api-change:``codepipeline``: AWS CodePipeline V2 type pipelines now support Managed Compute Rule. * api-change:``ecs``: Added support for enableFaultInjection task definition parameter which can be used to enable Fault Injection feature on ECS tasks. * api-change:``m2``: This release adds support for AWS Mainframe Modernization(M2) Service to allow specifying network type(ipv4, dual) for the environment instances. For dual network type, m2 environment applications will serve both IPv4 and IPv6 requests, whereas for ipv4 it will serve only IPv4 requests. * api-change:``synthetics``: Add support to toggle outbound IPv6 traffic on canaries connected to dualstack subnets. This behavior can be controlled via the new Ipv6AllowedForDualStack parameter of the VpcConfig input object in CreateCanary and UpdateCanary APIs. - from version 1.36.23 * api-change:``cloud9``: Added information about Ubuntu 18.04 will be removed from the available imageIds for Cloud9 because Ubuntu 18.04 has ended standard support on May 31, 2023. * api-change:``dlm``: This release adds support for Local Zones in Amazon Data Lifecycle Manager EBS snapshot lifecycle policies. * api-change:``ec2``: This release adds support for EBS local snapshots in AWS Dedicated Local Zones, which allows you to store snapshots of EBS volumes locally in Dedicated Local Zones. * api-change:``greengrassv2``: Add support for runtime in GetCoreDevice and ListCoreDevices APIs. * api-change:``medialive``: AWS Elemental MediaLive adds three new features: MediaPackage v2 endpoint support for live stream delivery, KLV metadata passthrough in CMAF Ingest output groups, and Metadata Name Modifier in CMAF Ingest output groups for customizing metadata track names in output streams. * api-change:``rds``: This release adds support for the "MYSQL_CACHING_SHA2_PASSWORD" enum value for RDS Proxy ClientPasswordAuthType. - from version 1.36.22 * api-change:``cloudhsmv2``: Add support for Dual-Stack hsm2m.medium clusters. The customers will now be able to create hsm2m.medium clusters having both IPv4 and IPv6 connection capabilities by specifying a new param called NetworkType=DUALSTACK during cluster creation. * api-change:``ec2``: This release adds GroupId to the response for DeleteSecurityGroup. * api-change:``eks``: Add NodeRepairConfig in CreateNodegroupRequest and UpdateNodegroupConfigRequest * api-change:``logs``: Limit PutIntegration IntegrationName and ListIntegrations IntegrationNamePrefix parameters to 50 characters * api-change:``mediaconnect``: AWS Elemental MediaConnect Gateway now supports Source Specific Multicast (SSM) for ingress bridges. This enables you to specify a source IP address in addition to a multicast IP when creating or updating an ingress bridge source. * api-change:``networkmanager``: There was a sentence fragment in UpdateDirectConnectGatewayAttachment that was causing customer confusion as to whether it's an incomplete sentence or if it was a typo. Removed the fragment. * api-change:``servicediscovery``: AWS Cloud Map now supports service-level attributes, allowing you to associate custom metadata directly with services. These attributes can be retrieved, updated, and deleted using the new GetServiceAttributes, UpdateServiceAttributes, and DeleteServiceAttributes API calls. - from version 1.36.21 * api-change:``connect``: Configure holidays and other overrides to hours of operation in advance. During contact handling, Amazon Connect automatically checks for overrides and provides customers with an appropriate flow path. After an override period passes call center automatically reverts to standard hours of operation. * api-change:``dms``: Add parameters to support for kerberos authentication. Add parameter for disabling the Unicode source filter with PostgreSQL settings. Add parameter to use large integer value with Kinesis/Kafka settings. * api-change:``glue``: To support customer-managed encryption in Data Quality to allow customers encrypt data with their own KMS key, we will add a DataQualityEncryption field to the SecurityConfiguration API where customers can provide their KMS keys. * api-change:``guardduty``: Improved descriptions for certain APIs. * api-change:``route53domains``: This release includes the following API updates: added the enumeration type RESTORE_DOMAIN to the OperationType; constrained the Price attribute to non-negative values; updated the LangCode to allow 2 or 3 alphabetical characters. - from version 1.36.20 * api-change:``artifact``: Add support for listing active customer agreements for the calling AWS Account. * api-change:``cloudtrail``: Doc-only updates for CloudTrail. * api-change:``cognito-idp``: Updated descriptions for some API operations and parameters, corrected some errors in Cognito user pools * api-change:``controlcatalog``: Minor documentation updates to the content of ImplementationDetails object part of the Control Catalog GetControl API * api-change:``emr-serverless``: This release adds support for accessing system profile logs in Lake Formation-enabled jobs. * api-change:``mgh``: API and documentation updates for AWS MigrationHub related to adding support for listing migration task updates and associating, disassociating and listing source resources * api-change:``sesv2``: Introduces support for multi-region endpoint. * api-change:``timestream-influxdb``: Adds networkType parameter to CreateDbInstance API which allows IPv6 support to the InfluxDB endpoint - from version 1.36.19 * api-change:``application-autoscaling``: Doc only update for AAS Predictive Scaling policy configuration API. * api-change:``bcm-pricing-calculator``: Updated condition key inference from Workload Estimate, Bill Scenario, and Bill Estimate resources. Updated documentation links. * api-change:``connect``: Add support for Push Notifications for Amazon Connect chat. With Push Notifications enabled an alert could be sent to customers about new messages even when they aren't actively using the mobile application. * api-change:``finspace``: Update KxCommandLineArgument value parameter regex to allow for spaces and semicolons * api-change:``ivs-realtime``: IVS Real-Time now offers customers the ability to customize thumbnails recording mode and interval for both Individual Participant Recording (IPR) and Server-Side Compositions (SSC). * api-change:``sesv2``: Introduces support for creating DEED (Deterministic Easy-DKIM) identities. - Refresh patches for new version - Update Requires from setup.py - Update to 1.36.18 * api-change:``appsync``: Provides description of new Amazon Bedrock runtime datasource. * api-change:``cognito-idp``: Change `CustomDomainConfig` from a required to an optional parameter for the `UpdateUserPoolDomain` operation. * api-change:``ec2``: This release includes a new API for modifying instance network-performance-options after launch. * api-change:``ecs``: This is a documentation only update to address various tickets for Amazon ECS. * api-change:``keyspaces``: Amazon Keyspaces: adding the list of IAM actions required by the UpdateKeyspace API. * api-change:``medialive``: H265 outputs now support disabling the deblocking filter. * api-change:``workspaces``: Added text to clarify case-sensitivity - from version 1.36.17 * api-change:``partnercentral-selling``: Introducing the preview of new partner central selling APIs designed to transform how AWS partners collaborate and co-sell with multiple partners. This enables multiple partners to seamlessly engage and jointly pursue customer opportunities, fostering a new era of collaborative selling. * api-change:``qbusiness``: This release removes the deprecated UserId and UserGroups fields from SearchRelevantContent api's request parameters. - from version 1.36.16 * api-change:``bedrock``: Introduced two APIs ListPromptRouters and GetPromptRouter for Intelligent Prompt Router feature. Add support for Bedrock Guardrails image content filter. New Bedrock Marketplace feature enabling a wider range of bedrock compatible models with self-hosted capability. * api-change:``bedrock-agent``: This release introduces the ability to generate SQL using natural language, through a new GenerateQuery API (with native integration into Knowledge Bases); ability to ingest and retrieve images through Bedrock Data Automation; and ability to create a Knowledge Base backed by Kendra GenAI Index. * api-change:``bedrock-agent-runtime``: This release introduces the ability to generate SQL using natural language, through a new GenerateQuery API (with native integration into Knowledge Bases); ability to ingest and retrieve images through Bedrock Data Automation; and ability to create a Knowledge Base backed by Kendra GenAI Index. * api-change:``bedrock-data-automation``: Release Bedrock Data Automation SDK * api-change:``bedrock-data-automation-runtime``: Release Bedrock Data Automation Runtime SDK * api-change:``bedrock-runtime``: Added support for Intelligent Prompt Router in Invoke, InvokeStream, Converse and ConverseStream. Add support for Bedrock Guardrails image content filter. New Bedrock Marketplace feature enabling a wider range of bedrock compatible models with self-hosted capability. * api-change:``kendra``: This release adds GenAI Index in Amazon Kendra for Retrieval Augmented Generation (RAG) and intelligent search. With the Kendra GenAI Index, customers get high retrieval accuracy powered by the latest information retrieval technologies and semantic models. * api-change:``sagemaker``: Amazon SageMaker HyperPod launched task governance to help customers maximize accelerator utilization for model development and flexible training plans to meet training timelines and budget while reducing weeks of training time. AI apps from AWS partner is now available in SageMaker. - from version 1.36.15 * api-change:``athena``: Add FEDERATED type to CreateDataCatalog. This creates Athena Data Catalog, AWS Lambda connector, and AWS Glue connection. Create/DeleteDataCatalog returns DataCatalog. Add Status, ConnectionType, and Error to DataCatalog and DataCatalogSummary. Add DeleteCatalogOnly to delete Athena Catalog only. * api-change:``bedrock``: Tagging support for Async Invoke resources. Added support for Distillation in CreateModelCustomizationJob API. Support for videoDataDeliveryEnabled flag in invocation logging. * api-change:``bedrock-agent``: Releasing SDK for Multi-Agent Collaboration. * api-change:``bedrock-agent-runtime``: Releasing SDK for multi agent collaboration * api-change:``bedrock-runtime``: Added support for Async Invoke Operations Start, List and Get. Support for invocation logs with `requestMetadata` field in Converse, ConverseStream, Invoke and InvokeStream. Video content blocks in Converse/ConverseStream accept raw bytes or S3 URI. * api-change:``cloudwatch``: Support for configuring AiOps investigation as alarm action * api-change:``datazone``: Adds support for Connections, ProjectProfiles, and JobRuns APIs. Supports the new Lineage feature at GA. Adjusts optionality of a parameter for DataSource and SubscriptionTarget APIs which may adjust types in some clients. * api-change:``dsql``: Add new API operations for Amazon Aurora DSQL. Amazon Aurora DSQL is a serverless, distributed SQL database with virtually unlimited scale, highest availability, and zero infrastructure management. * api-change:``dynamodb``: This change adds support for global tables with multi-Region strong consistency (in preview). The UpdateTable API now supports a new attribute MultiRegionConsistency to set consistency when creating global tables. The DescribeTable output now optionally includes the MultiRegionConsistency attribute. * api-change:``glue``: This release includes(1)Zero-ETL integration to ingest data from 3P SaaS and DynamoDB to Redshift/Redlake (2)new properties on Connections to enable reuse; new connection APIs for retrieve/preview metadata (3)support of CRUD operations for Multi-catalog (4)support of automatic statistics collections * api-change:``lakeformation``: This release added two new LakeFormation Permissions (CREATE_CATALOG, SUPER_USER) and added Id field for CatalogResource. It also added new conditon and expression field. * api-change:``qapps``: Add support for 11 new plugins as action cards to help automate repetitive tasks and improve productivity. * api-change:``qbusiness``: Amazon Q Business now supports customization options for your web experience, 11 new Plugins, and QuickSight support. Amazon Q index allows software providers to enrich their native generative AI experiences with their customer's enterprise knowledge and user context spanning multiple applications. * api-change:``quicksight``: This release includes API needed to support for Unstructured Data in Q in QuickSight Q&A (IDC). * api-change:``redshift``: Adds support for Amazon Redshift RegisterNamespace and DeregisterNamespace APIs to share data to AWS Glue Data Catalog. * api-change:``redshift-serverless``: Adds support for the ListManagedWorkgroups API to get an overview of existing managed workgroups. * api-change:``s3``: Amazon S3 Metadata stores object metadata in read-only, fully managed Apache Iceberg metadata tables that you can query. You can create metadata table configurations for S3 general purpose buckets. * api-change:``s3tables``: Amazon S3 Tables deliver the first cloud object store with built-in open table format support, and the easiest way to store tabular data at scale. - from version 1.36.14 * api-change:``bedrock-runtime``: Add an API parameter that allows customers to set performance configuration for invoking a model. * api-change:``s3control``: It allows customers to pass CRC64NVME as a header in S3 Batch Operations copy requests * api-change:``socialmessaging``: Added support for passing role arn corresponding to the supported event destination - from version 1.36.13 * api-change:``bedrock``: Add support for Knowledge Base Evaluations & LLM as a judge * api-change:``bedrock-agent``: This release introduces APIs to upload documents directly into a Knowledge Base * api-change:``bedrock-agent-runtime``: This release introduces a new Rerank API to leverage reranking models (with integration into Knowledge Bases); APIs to upload documents directly into Knowledge Base; RetrieveAndGenerateStream API for streaming response; Guardrails on Retrieve API; and ability to automatically generate filters * api-change:``chime-sdk-voice``: This release adds supports for enterprises to integrate Amazon Connect with other voice systems. It supports directly transferring voice calls and metadata without using the public telephone network. It also supports real-time and post-call analytics. * api-change:``cleanrooms``: This release allows customers and their partners to easily collaborate with data stored in Snowflake and Amazon Athena, without having to move or share their underlying data among collaborators. * api-change:``connect``: Adds support for WhatsApp Business messaging, IVR call recording, enabling Contact Lens for existing on-premise contact centers and telephony platforms, and enabling telephony and IVR migration to Amazon Connect independent of their contact center agents. * api-change:``connectcampaignsv2``: Amazon Connect Outbound Campaigns V2 / Features : Adds support for Event-Triggered Campaigns. * api-change:``customer-profiles``: This release introduces Event Trigger APIs as part of Amazon Connect Customer Profiles service. * api-change:``ec2``: Adds support for declarative policies that allow you to enforce desired configuration across an AWS organization through configuring account attributes. Adds support for Allowed AMIs that allows you to limit the use of AMIs in AWS accounts. Adds support for connectivity over non-HTTP protocols. * api-change:``ecs``: This release adds support for Container Insights with Enhanced Observability for Amazon ECS. * api-change:``eks``: Added support for Auto Mode Clusters, Hybrid Nodes, and specifying computeTypes in the DescribeAddonVersions API. * api-change:``events``: Call private APIs by configuring Connections with VPC connectivity through PrivateLink and VPC Lattice * api-change:``fsx``: FSx API changes to support the public launch of the Amazon FSx Intelligent Tiering for OpenZFS storage class. * api-change:``guardduty``: Add new Multi Domain Correlation findings. * api-change:``imagebuilder``: Added support for EC2 Image Builder's integration with AWS Marketplace for Marketplace components. * api-change:``invoicing``: AWS Invoice Configuration allows you to receive separate AWS invoices based on your organizational needs. You can use the AWS SDKs to manage Invoice Units and programmatically fetch the information of the invoice receiver. * api-change:``logs``: Adds PutIntegration, GetIntegration, ListIntegrations and DeleteIntegration APIs. Adds QueryLanguage support to StartQuery, GetQueryResults, DescribeQueries, DescribeQueryDefinitions, and PutQueryDefinition APIs. * api-change:``memorydb``: Amazon MemoryDB SDK now supports all APIs for Multi-Region. Please refer to the updated Amazon MemoryDB public documentation for detailed information on API usage. * api-change:``networkflowmonitor``: This release adds documentation for a new feature in Amazon CloudWatch called Network Flow Monitor. You can use Network Flow Monitor to get near real-time metrics, including retransmissions and data transferred, for your actual workloads. * api-change:``opensearch``: This feature introduces support for CRUDL APIs, enabling the creation and management of Connected data sources. * api-change:``organizations``: Add support for policy operations on the DECLARATIVE_POLICY_EC2 policy type. * api-change:``qbusiness``: Amazon Q Business now supports capabilities to extract insights and answer questions from visual elements embedded within documents, a browser extension for Google Chrome, Mozilla Firefox, and Microsoft Edge, and attachments across conversations. * api-change:``qconnect``: This release adds following capabilities: Configuring safeguards via AIGuardrails for Q in Connect inferencing, and APIs to support Q&A self-service use cases * api-change:``rds``: Amazon RDS supports CloudWatch Database Insights. You can use the SDK to create, modify, and describe the DatabaseInsightsMode for your DB instances and clusters. * api-change:``s3``: Amazon S3 introduces support for AWS Dedicated Local Zones * api-change:``s3control``: Amazon S3 introduces support for AWS Dedicated Local Zones * api-change:``securityhub``: Add new Multi Domain Correlation findings. * api-change:``security-ir``: AWS Security Incident Response is a purpose-built security incident solution designed to help customers prepare for, respond to, and recover from security incidents. * api-change:``transfer``: AWS Transfer Family now offers Web apps that enables simple and secure access to data stored in Amazon S3. * api-change:``vpc-lattice``: Lattice APIs that allow sharing and access of VPC resources across accounts. - from version 1.36.12 * api-change:``bedrock-agent``: Add support for specifying embeddingDataType, either FLOAT32 or BINARY * api-change:``config``: AWS Config adds support for service-linked recorders, a new type of Config recorder managed by AWS services to record specific subsets of resource configuration data and functioning independently from customer managed AWS Config recorders. * api-change:``fsx``: This release adds EFA support to increase FSx for Lustre file systems' throughput performance to a single client instance. This can be done by specifying EfaEnabled=true at the time of creation of Persistent_2 file systems. * api-change:``observabilityadmin``: Amazon CloudWatch Observability Admin adds the ability to audit telemetry configuration for AWS resources in customers AWS Accounts and Organizations. The release introduces new APIs to turn on/off the new experience, which supports discovering supported AWS resources and their state of telemetry. - from version 1.36.11 * api-change:``bedrock-agent``: Custom Orchestration API release for AWSBedrockAgents. * api-change:``bedrock-agent-runtime``: Custom Orchestration and Streaming configurations API release for AWSBedrockAgents. * api-change:``connect``: Enables access to ValueMap and ValueInteger types for SegmentAttributes and fixes deserialization bug for DescribeContactFlow in AmazonConnect Public API * api-change:``ec2``: Adds support for Time-based Copy for EBS Snapshots and Cross Region PrivateLink. Time-based Copy ensures that EBS Snapshots are copied within and across AWS Regions in a specified timeframe. Cross Region PrivateLink enables customers to connect to VPC endpoint services hosted in other AWS Regions. * api-change:``qapps``: Private sharing, file upload and data collection feature support for Q Apps - from version 1.36.10 * api-change:``directconnect``: Update DescribeDirectConnectGatewayAssociations API to return associated core network information if a Direct Connect gateway is attached to a Cloud WAN core network. * api-change:``networkmanager``: This release adds native Direct Connect integration on Cloud WAN enabling customers to directly attach their Direct Connect gateways to Cloud WAN without the need for an intermediate Transit Gateway. * api-change:``s3``: Amazon Simple Storage Service / Features: Add support for ETag based conditional writes in PutObject and CompleteMultiPartUpload APIs to prevent unintended object modifications. - from version 1.36.9 * api-change:``autoscaling``: Now, Amazon EC2 Auto Scaling customers can enable target tracking policies to take quicker scaling decisions, enhancing their application performance and EC2 utilization. To get started, specify target tracking to monitor a metric that is available on Amazon CloudWatch at seconds-level interval. * api-change:``bcm-pricing-calculator``: Initial release of the AWS Billing and Cost Management Pricing Calculator API. * api-change:``bedrock-agent-runtime``: InvokeInlineAgent API release to help invoke runtime agents without any dependency on preconfigured agents. * api-change:``ce``: This release adds the Impact field(contains Contribution field) to the GetAnomalies API response under RootCause * api-change:``chatbot``: Adds support for programmatic management of custom actions and aliases which can be associated with channel configurations. * api-change:``codepipeline``: AWS CodePipeline V2 type pipelines now support ECRBuildAndPublish and InspectorScan actions. * api-change:``cognito-idp``: Add support for users to sign up and sign in without passwords, using email and SMS OTPs and Passkeys. Add support for Passkeys based on WebAuthn. Add support for enhanced branding customization for hosted authentication pages with Amazon Cognito Managed Login. Add feature tiers with new pricing. * api-change:``connect``: Amazon Connect Service Feature: Add APIs for Amazon Connect Email Channel * api-change:``elbv2``: This release adds support for advertising trusted CA certificate names in associated trust stores. * api-change:``emr``: Advanced Scaling in Amazon EMR Managed Scaling * api-change:``inspector2``: Extend inspector2 service model to include ServiceQuotaExceededException. * api-change:``lambda``: Add ProvisionedPollerConfig to Lambda event-source-mapping API. * api-change:``mailmanager``: Added new "DeliverToQBusiness" rule action to MailManager RulesSet for ingesting email data into Amazon Q Business customer applications * api-change:``neptune-graph``: Add 4 new APIs to support new Export features, allowing Parquet and CSV formats. Add new arguments in Import APIs to support Parquet import. Add a new query "neptune.read" to run algorithms without loading data into database * api-change:``omics``: This release adds support for resource policy based cross account S3 access to sequence store read sets. * api-change:``quicksight``: This release includes: Update APIs to support Image, Layer Map, font customization, and Plugin Visual. Add Identity center related information in ListNamsespace API. Update API for restrictedFolder support in topics and add API for SearchTopics, Describe/Update DashboardsQA Configration. * api-change:``sagemaker``: This release adds APIs for new features for SageMaker endpoint to scale down to zero instances, native support for multi-adapter inference, and endpoint scaling improvements. * api-change:``ses``: This release adds support for starting email contacts in your Amazon Connect instance as an email receiving action. * api-change:``sns``: ArchivePolicy attribute added to Archive and Replay feature * api-change:``stepfunctions``: Add support for variables and JSONata in TestState, GetExecutionHistory, DescribeStateMachine, and DescribeStateMachineForExecution * api-change:``workspaces``: While integrating WSP-DCV rebrand, a few mentions were erroneously renamed from WSP to DCV. This release reverts those mentions back to WSP. - from version 1.36.8 * api-change:``apigateway``: Added support for custom domain names for private APIs. * api-change:``application-autoscaling``: Application Auto Scaling now supports Predictive Scaling to proactively increase the desired capacity ahead of predicted demand, ensuring improved availability and responsiveness for customers' applications. This feature is currently only made available for Amazon ECS Service scalable targets. * api-change:``appsync``: Add support for the Amazon Bedrock Runtime. * api-change:``ce``: This release introduces three new APIs that enable you to estimate the cost, coverage, and utilization impact of Savings Plans you plan to purchase. The three APIs are StartCommitmentPurchaseAnalysis, GetCommitmentPurchaseAnalysis, and ListCommitmentPurchaseAnalyses. * api-change:``cloudfront``: Adds support for Origin Selection between EMPv2 origins based on media quality score. * api-change:``cloudtrail``: This release introduces new APIs for creating and managing CloudTrail Lake dashboards. It also adds support for resource-based policies on CloudTrail EventDataStore and Dashboard resource. * api-change:``ec2``: Adds support for requesting future-dated Capacity Reservations with a minimum commitment duration, enabling IPAM for organizational units within AWS Organizations, reserving EC2 Capacity Blocks that start in 30 minutes, and extending the end date of existing Capacity Blocks. * api-change:``elasticache``: Added support to modify the engine type for existing ElastiCache Users and User Groups. Customers can now modify the engine type from redis to valkey. * api-change:``elbv2``: This feature adds support for enabling zonal shift on cross-zone enabled Application Load Balancer, as well as modifying HTTP request and response headers. * api-change:``health``: Adds metadata property to an AffectedEntity. * api-change:``iot``: General Availability (GA) release of AWS IoT Device Management - Commands, to trigger light-weight remote actions on targeted devices * api-change:``iotfleetwise``: AWS IoT FleetWise now includes campaign parameters to store and forward data, configure MQTT topic as a data destination, and collect diagnostic trouble code data. It includes APIs for network agnostic data collection using custom decoding interfaces, and monitoring the last known state of vehicles. * api-change:``iot-jobs-data``: General Availability (GA) release of AWS IoT Device Management - Commands, to trigger light-weight remote actions on targeted devices * api-change:``lambda``: Adds support for metrics for event source mappings for AWS Lambda * api-change:``logs``: Adds "Create field indexes to improve query performance and reduce scan volume" and "Transform logs during ingestion". Updates documentation for "PutLogEvents with Entity". * api-change:``notifications``: This release adds support for AWS User Notifications. You can now configure and view notifications from AWS services in a central location using the AWS SDK. * api-change:``notificationscontacts``: This release adds support for AWS User Notifications Contacts. You can now configure and view email contacts for AWS User Notifications using the AWS SDK. * api-change:``resiliencehub``: AWS Resilience Hub's new summary view visually represents applications' resilience through charts, enabling efficient resilience management. It provides a consolidated view of the app portfolio's resilience state and allows data export for custom stakeholder reporting. * api-change:``s3``: Add support for conditional deletes for the S3 DeleteObject and DeleteObjects APIs. Add support for write offset bytes option used to append to objects with the S3 PutObject API. * api-change:``ssm``: Added support for providing high-level overviews of managed nodes and previewing the potential impact of a runbook execution. * api-change:``ssm-quicksetup``: Add methods that retrieve details about deployed configurations: ListConfigurations, GetConfiguration * api-change:``xray``: AWS X-Ray introduces Transaction Search APIs, enabling span ingestion into CloudWatch Logs for high-scale trace data indexing. These APIs support span-level queries, trace graph generation, and metric correlation for deeper application insights. - from version 1.36.7 * api-change:``autoscaling``: With this release, customers can prioritize launching instances into ODCRs using targets from ASGs or Launch Templates. Customers can express their baseline instances' CPU-performance in attribute-based Instance Requirements configuration by referencing an instance family that meets their needs. * api-change:``bedrock-agent-runtime``: Releasing new Prompt Optimization to enhance your prompts for improved performance * api-change:``cloudfront``: Add support for gRPC, VPC origins, and Anycast IP Lists. Allow LoggingConfig IncludeCookies to be set regardless of whether the LoggingConfig is enabled. * api-change:``compute-optimizer``: This release enables AWS Compute Optimizer to analyze and generate optimization recommendations for Amazon Aurora database instances. It also enables Compute Optimizer to identify idle Amazon EC2 instances, Amazon EBS volumes, Amazon ECS services running on Fargate, and Amazon RDS databases. * api-change:``controltower``: Adds support for child enabled baselines which allow you to see the enabled baseline status for individual accounts. * api-change:``cost-optimization-hub``: This release adds action type "Delete" to the GetRecommendation, ListRecommendations and ListRecommendationSummaries APIs to support new EBS and ECS recommendations with action type "Delete". * api-change:``datazone``: This release supports Metadata Enforcement Rule feature for Create Subscription Request action. * api-change:``discovery``: Add support to import data from commercially available discovery tools without file manipulation. * api-change:``ec2``: With this release, customers can express their desire to launch instances only in an ODCR or ODCR group rather than OnDemand capacity. Customers can express their baseline instances' CPU-performance in attribute-based Instance Requirements configuration by referencing an instance family. * api-change:``ecs``: This release adds support for the Availability Zone rebalancing feature on Amazon ECS. * api-change:``elbv2``: This release adds support for configuring Load balancer Capacity Unit reservations * api-change:``lambda``: Add Node 22.x (node22.x) support to AWS Lambda * api-change:``mediaconvert``: This release adds the ability to reconfigure concurrent job settings for existing queues and create queues with custom concurrent job settings. * api-change:``mediapackagev2``: MediaPackage v2 now supports the Media Quality Confidence Score (MQCS) published from MediaLive. Customers can control input switching based on the MQCS and publishing HTTP Headers for the MQCS via the API. * api-change:``omics``: Enabling call caching feature that allows customers to reuse previously computed results from a set of completed tasks in a new workflow run. * api-change:``rbin``: This release adds support for exclusion tags for Recycle Bin, which allows you to identify resources that are to be excluded, or ignored, by a Region-level retention rule. * api-change:``rds``: This release adds support for scale storage on the DB instance using a Blue/Green Deployment. * api-change:``timestream-query``: This release adds support for Provisioning Timestream Compute Units (TCUs), a new feature that allows provisioning dedicated compute resources for your queries, providing predictable and cost-effective query performance. * api-change:``workspaces``: Added support for Rocky Linux 8 on Amazon WorkSpaces Personal. * api-change:``workspaces-web``: Added data protection settings with support for inline data redaction. - from version 1.36.6 * api-change:``b2bi``: Add new X12 transactions sets and versions * api-change:``ec2``: This release adds VPC Block Public Access (VPC BPA), a new declarative control which blocks resources in VPCs and subnets that you own in a Region from reaching or being reached from the internet through internet gateways and egress-only internet gateways. * api-change:``ecs``: This release introduces support for configuring the version consistency feature for individual containers defined within a task definition. The configuration allows to specify whether ECS should resolve the container image tag specified in the container definition to an image digest. * api-change:``efs``: Add support for the new parameters in EFS replication APIs * api-change:``glue``: AWS Glue Data Catalog now enhances managed table optimizations of Apache Iceberg tables that can be accessed only from a specific Amazon Virtual Private Cloud (VPC) environment. * api-change:``keyspaces``: Amazon Keyspaces Multi-Region Replication: Adds support to add new regions to multi and single-region keyspaces. * api-change:``mwaa``: Amazon MWAA now supports a new environment class, mw1.micro, ideal for workloads requiring fewer resources than mw1.small. This class supports a single instance of each Airflow component: Scheduler, Worker, and Webserver. * api-change:``taxsettings``: Release Tax Inheritance APIs, Tax Exemption APIs, and functionality update for some existing Tax Registration APIs * api-change:``workspaces``: Releasing new ErrorCodes for Image Validation failure during CreateWorkspaceImage process - from version 1.36.5 * api-change:``appconfig``: AWS AppConfig has added a new extension action point, AT_DEPLOYMENT_TICK, to support third-party monitors to trigger an automatic rollback during a deployment. * api-change:``autoscaling``: Amazon EC2 Auto Scaling now supports Amazon Application Recovery Controller (ARC) zonal shift and zonal autoshift to help you quickly recover an impaired application from failures in an Availability Zone (AZ). * api-change:``cloudformation``: This release adds a new API, ListHookResults, that allows retrieving CloudFormation Hooks invocation results for hooks invoked during a create change set operation or Cloud Control API operation * api-change:``connect``: Adds CreateContactFlowVersion and ListContactFlowVersions APIs to create and view the versions of a contact flow. * api-change:``customer-profiles``: This release introduces Segmentation APIs and new Calculated Attribute Event Filters as part of Amazon Connect Customer Profiles service. * api-change:``ec2``: Adding request and response elements for managed resources. * api-change:``ecs``: This release adds support for adding VPC Lattice configurations in ECS CreateService/UpdateService APIs. The configuration allows for associating VPC Lattice target groups with ECS Services. * api-change:``iotsitewise``: The release introduces a generative AI Assistant in AWS IoT SiteWise. It includes: 1) InvokeAssistant API - Invoke the Assistant to get alarm summaries and ask questions. 2) Dataset APIs - Manage knowledge base configuration for the Assistant. 3) Portal APIs enhancement - Manage AI-aware dashboards. * api-change:``qconnect``: This release introduces MessageTemplate as a resource in Amazon Q in Connect, along with APIs to create, read, search, update, and delete MessageTemplate resources. * api-change:``rds``: Add support for the automatic pause/resume feature of Aurora Serverless v2. * api-change:``rds-data``: Add support for the automatic pause/resume feature of Aurora Serverless v2. - from version 1.36.4 * api-change:``cloudwatch``: Adds support for adding related Entity information to metrics ingested through PutMetricData. * api-change:``connectcampaignsv2``: Added Amazon Connect Outbound Campaigns V2 SDK. * api-change:``datasync``: Doc-only updates and enhancements related to creating DataSync tasks and describing task executions. * api-change:``ec2``: Remove non-functional enum variants for FleetCapacityReservationUsageStrategy * api-change:``iot``: This release allows AWS IoT Core users to enrich MQTT messages with propagating attributes, to associate a thing to a connection, and to enable Online Certificate Status Protocol (OCSP) stapling for TLS X.509 server certificates through private endpoints. * api-change:``outposts``: You can now purchase AWS Outposts rack or server capacity for a 5-year term with one of the following payment options: All Upfront, Partial Upfront, and No Upfront. * api-change:``pinpoint-sms-voice-v2``: Use rule overrides to always allow or always block messages to specific phone numbers. Use message feedback to monitor if a customer interacts with your message. * api-change:``route53resolver``: Route 53 Resolver DNS Firewall Advanced Rules allows you to monitor and block suspicious DNS traffic based on anomalies detected in the queries, such as DNS tunneling and Domain Generation Algorithms (DGAs). - from version 1.36.3 * api-change:``partnercentral-selling``: Announcing AWS Partner Central API for Selling: This service launch Introduces new APIs for co-selling opportunity management and related functions. Key features include notifications, a dynamic sandbox for testing, and streamlined validations. - from version 1.36.2 * api-change:``accessanalyzer``: Expand analyzer configuration capabilities for unused access analyzers. Unused access analyzer configurations now support the ability to exclude accounts and resource tags from analysis providing more granular control over the scope of analysis. * api-change:``cloudcontrol``: Added support for CloudFormation Hooks with Cloud Control API. The GetResourceRequestStatus API response now includes an optional HooksProgressEvent and HooksRequestToken parameter for Hooks Invocation Progress as part of resource operation with Cloud Control. * api-change:``deadline``: Adds support for select GPU accelerated instance types when creating new service-managed fleets. * api-change:``iam``: This release includes support for five new APIs and changes to existing APIs that give AWS Organizations customers the ability to use temporary root credentials, targeted to member accounts in the organization. * api-change:``iotwireless``: New FuotaTask resource type to enable logging for your FUOTA tasks. A ParticipatingGatewaysforMulticast parameter to choose the list of gateways to receive the multicast downlink message and the transmission interval between them. Descriptor field which will be sent to devices during FUOTA transfer. * api-change:``ivs``: IVS now offers customers the ability to stream multitrack video to Channels. * api-change:``license-manager-user-subscriptions``: New and updated API operations to support License Included User-based Subscription of Microsoft Remote Desktop Services (RDS). * api-change:``partnercentral-selling``: Announcing AWS Partner Central API for Selling: This service launch Introduces new APIs for co-selling opportunity management and related functions. Key features include notifications, a dynamic sandbox for testing, and streamlined validations. * api-change:``quicksight``: This release adds APIs for Custom Permissions management in QuickSight, and APIs to support QuickSight Branding. * api-change:``redshift``: Adds support for Amazon Redshift S3AccessGrants * api-change:``s3``: This release updates the ListBuckets API Reference documentation in support of the new 10,000 general purpose bucket default quota on all AWS accounts. To increase your bucket quota from 10,000 to up to 1 million buckets, simply request a quota increase via Service Quotas. * api-change:``sagemaker``: Add support for Neuron instance types [ trn1/trn1n/inf2 ] on SageMaker Notebook Instances Platform. * api-change:``sts``: This release introduces the new API 'AssumeRoot', which returns short-term credentials that you can use to perform privileged tasks. - Refresh patches for new version - Update Requires from setup.py - Update to 1.36.1 * api-change:``accessanalyzer``: This release adds support for policy validation and external access findings for resource control policies (RCP). IAM Access Analyzer helps you author functional and secure RCPs and awareness that a RCP may restrict external access. Updated service API, documentation, and paginators. * api-change:``application-signals``: Amazon CloudWatch Application Signals now supports creating Service Level Objectives with burn rates. Users can now create or update SLOs with burn rate configurations to meet their specific business requirements. * api-change:``b2bi``: This release adds a GenerateMapping API to allow generation of JSONata or XSLT transformer code based on input and output samples. * api-change:``billing``: Today, AWS announces the general availability of ListBillingViews API in the AWS SDKs, to enable AWS Billing Conductor (ABC) users to create proforma Cost and Usage Reports (CUR) programmatically. * api-change:``cloudtrail``: This release adds a new API GenerateQuery that generates a query from a natural language prompt about the event data in your event data store. This operation uses generative artificial intelligence (generative AI) to produce a ready-to-use SQL query from the prompt. * api-change:``dynamodb``: This release includes supports the new WarmThroughput feature for DynamoDB. You can now provide an optional WarmThroughput attribute for CreateTable or UpdateTable APIs to pre-warm your table or global secondary index. You can also use DescribeTable to see the latest WarmThroughput value. * api-change:``ec2``: This release adds the source AMI details in DescribeImages API * api-change:``internetmonitor``: Add new query type Routing_Suggestions regarding querying interface * api-change:``mediaconvert``: This release adds support for ARN inputs in the Kantar credentials secrets name field and the MSPR field to the manifests for PlayReady DRM protected outputs. * api-change:``organizations``: Add support for policy operations on the Resource Control Polices. - from version 1.36.0 * api-change:``codebuild``: AWS CodeBuild now supports non-containerized Linux and Windows builds on Reserved Capacity. * api-change:``controltower``: Added ResetEnabledControl API. * api-change:``fis``: This release adds support for generating experiment reports with the experiment report configuration * api-change:``gamelift``: Amazon GameLift releases container fleets support for general availability. Deploy Linux-based containerized game server software for hosting on Amazon GameLift. * api-change:``payment-cryptography``: Updated ListAliases API with KeyArn filter. * api-change:``rds``: Updates Amazon RDS documentation for Amazon RDS Extended Support for Amazon Aurora MySQL. * feature:shorthand: Adds support to shorthand syntax for loading parameters from files via the ``@=`` assignment operator. - from version 1.35.24 * api-change:``cloudfront``: No API changes from previous release. This release migrated the model to Smithy keeping all features unchanged. * api-change:``inspector2``: Adds support for filePath filter. * api-change:``lambda``: Add Python 3.13 (python3.13) support to AWS Lambda * api-change:``opensearch``: Adds Support for new AssociatePackages and DissociatePackages API in Amazon OpenSearch Service that allows association and dissociation operations to be carried out on multiple packages at the same time. * api-change:``outposts``: This release updates StartCapacityTask to allow an active Outpost to be modified. It also adds a new API to list all running EC2 instances on the Outpost. - from version 1.35.23 * api-change:``batch``: This feature allows override LaunchTemplates to be specified in an AWS Batch Compute Environment. * api-change:``bedrock-agent-runtime``: This release adds trace functionality to Bedrock Prompt Flows * api-change:``chime-sdk-media-pipelines``: Added support for Media Capture Pipeline and Media Concatenation Pipeline for customer managed server side encryption. Now Media Capture Pipeline can use IAM sink role to get access to KMS key and encrypt/decrypt recorded artifacts. KMS key ID can also be supplied with encryption context. * api-change:``controlcatalog``: AWS Control Catalog GetControl public API returns additional data in output, including Implementation and Parameters * api-change:``eks``: Adds new error code `Ec2InstanceTypeDoesNotExist` for Amazon EKS managed node groups * api-change:``firehose``: Amazon Data Firehose / Features : Adds support for a new DeliveryStreamType, DatabaseAsSource. DatabaseAsSource hoses allow customers to stream CDC events from their RDS and Amazon EC2 hosted databases, running MySQL and PostgreSQL database engines, to Iceberg Table destinations. * api-change:``lambda``: This release adds support for using AWS KMS customer managed keys to encrypt AWS Lambda .zip deployment packages. * api-change:``pinpoint-sms-voice-v2``: Added the RequiresAuthenticationTimestamp field to the RegistrationVersionStatusHistory data type. * api-change:``qbusiness``: Adds S3 path option to pass group member list for PutGroup API. - from version 1.35.22 * api-change:``autoscaling``: Auto Scaling groups now support the ability to strictly balance instances across Availability Zones by configuring the AvailabilityZoneDistribution parameter. If balanced-only is configured for a group, launches will always be attempted in the under scaled Availability Zone even if it is unhealthy. * api-change:``bedrock-agent``: Add prompt support for chat template configuration and agent generative AI resource. Add support for configuring an optional guardrail in Prompt and Knowledge Base nodes in Prompt Flows. Add API to validate flow definition * api-change:``bedrock-runtime``: Add Prompt management support to Bedrock runtime APIs: Converse, ConverseStream, InvokeModel, InvokeModelWithStreamingResponse * api-change:``cleanrooms``: This release introduces support for Custom Models in AWS Clean Rooms ML. * api-change:``cleanroomsml``: This release introduces support for Custom Models in AWS Clean Rooms ML. * api-change:``quicksight``: Add Client Credentials based OAuth support for Snowflake and Starburst * api-change:``resource-explorer-2``: Add GetManagedView, ListManagedViews APIs. * api-change:``synthetics``: Add support to toggle if a canary will automatically delete provisioned canary resources such as Lambda functions and layers when a canary is deleted. This behavior can be controlled via the new ProvisionedResourceCleanup property exposed in the CreateCanary and UpdateCanary APIs. - from version 1.35.21 * api-change:``codebuild``: AWS CodeBuild now adds additional compute types for reserved capacity fleet. * api-change:``guardduty``: GuardDuty RDS Protection expands support for Amazon Aurora PostgreSQL Limitless Databases. * api-change:``lakeformation``: API changes for new named tag expressions feature. * api-change:``qapps``: Introduces category apis in AmazonQApps. Web experience users use Categories to tag and filter library items. * api-change:``s3control``: Fix ListStorageLensConfigurations and ListStorageLensGroups deserialization for Smithy SDKs. * api-change:``verifiedpermissions``: Adding BatchGetPolicy API which supports the retrieval of multiple policies across multiple policy stores within a single request. - from version 1.35.20 * api-change:``bedrock-agent``: Amazon Bedrock Knowledge Bases now supports using application inference profiles to increase throughput and improve resilience. * api-change:``docdb-elastic``: Amazon DocumentDB Elastic Clusters adds support for pending maintenance actions feature with APIs GetPendingMaintenanceAction, ListPendingMaintenanceActions and ApplyPendingMaintenanceAction * api-change:``logs``: This release introduces an improvement in PutLogEvents * api-change:``taxsettings``: Add support for supplemental tax registrations via these new APIs: PutSupplementalTaxRegistration, ListSupplementalTaxRegistrations, and DeleteSupplementalTaxRegistration. - from version 1.35.19 * api-change:``amp``: Added support for UpdateScraper API, to enable updating collector configuration in-place * api-change:``autoscaling``: Adds bake time for Auto Scaling group Instance Refresh * api-change:``batch``: Add `podNamespace` to `EksAttemptDetail` and `containerID` to `EksAttemptContainerDetail`. * api-change:``elbv2``: Add UDP support for AWS PrivateLink and dual-stack Network Load Balancers * api-change:``glue``: Add schedule support for AWS Glue column statistics * api-change:``sagemaker``: SageMaker HyperPod adds scale-down at instance level via BatchDeleteClusterNodes API and group level via UpdateCluster API. SageMaker Training exposes secondary job status in TrainingJobSummary from ListTrainingJobs API. SageMaker now supports G6, G6e, P5e instances for HyperPod and Training. * api-change:``sesv2``: This release enables customers to provide the email template content in the SESv2 SendEmail and SendBulkEmail APIs instead of the name or the ARN of a stored email template. - from version 1.35.18 * api-change:``appsync``: This release adds support for AppSync Event APIs. * api-change:``connect``: Updated the public documentation for the UserIdentityInfo object to accurately reflect the character limits for the FirstName and LastName fields, which were previously listed as 1-100 characters. * api-change:``datasync``: AWS DataSync now supports Enhanced mode tasks. This task mode supports transfer of virtually unlimited numbers of objects with enhanced metrics, more detailed logs, and higher performance than Basic mode. This mode currently supports transfers between Amazon S3 locations. * api-change:``ec2``: This release adds two new capabilities to VPC Security Groups: Security Group VPC Associations and Shared Security Groups. * api-change:``ecs``: This release supports service deployments and service revisions which provide a comprehensive view of your Amazon ECS service history. * api-change:``geo-maps``: Release of Amazon Location Maps API. Maps enables you to build digital maps that showcase your locations, visualize your data, and unlock insights to drive your business * api-change:``geo-places``: Release of Amazon Location Places API. Places enables you to quickly search, display, and filter places, businesses, and locations based on proximity, category, and name * api-change:``geo-routes``: Release of Amazon Location Routes API. Routes enables you to plan efficient routes and streamline deliveries by leveraging real-time traffic, vehicle restrictions, and turn-by-turn directions. * api-change:``keyspaces``: Adds support for interacting with user-defined types (UDTs) through the following new operations: Create-Type, Delete-Type, List-Types, Get-Type. * api-change:``network-firewall``: AWS Network Firewall now supports configuring TCP idle timeout * api-change:``opensearch``: This release introduces the new OpenSearch user interface (Dashboards), a new web-based application that can be associated with multiple data sources across OpenSearch managed clusters, serverless collections, and Amazon S3, so that users can gain a comprehensive insights in an unified interface. * api-change:``opensearchserverless``: Neo Integration via IAM Identity Center (IdC) * api-change:``redshift``: This release launches S3 event integrations to create and manage integrations from an Amazon S3 source into an Amazon Redshift database. * api-change:``redshift-serverless``: Adds and updates API members for the Redshift Serverless AI-driven scaling and optimization feature using the price-performance target setting. * api-change:``route53``: This release adds support for TLSA, SSHFP, SVCB, and HTTPS record types. * api-change:``sagemaker``: Added support for Model Registry Staging construct. Users can define series of stages that models can progress through for model workflows and lifecycle. This simplifies tracking and managing models as they transition through development, testing, and production stages. * api-change:``workmail``: This release adds support for Multi-Factor Authentication (MFA) and Personal Access Tokens through integration with AWS IAM Identity Center. - from version 1.35.17 * api-change:``bedrock``: Update Application Inference Profile * api-change:``bedrock-runtime``: Update Application Inference Profile * api-change:``cleanrooms``: This release adds the option for customers to configure analytics engine when creating a collaboration, and introduces the new SPARK analytics engine type in addition to maintaining the legacy CLEAN_ROOMS_SQL engine type. * api-change:``iotfleetwise``: Updated BatchCreateVehicle and BatchUpdateVehicle APIs: LimitExceededException has been added and the maximum number of vehicles in a batch has been set to 10 explicitly * api-change:``logs``: Added support for new optional baseline parameter in the UpdateAnomaly API. For UpdateAnomaly requests with baseline set to True, The anomaly behavior is then treated as baseline behavior. However, more severe occurrences of this behavior will still be reported as anomalies. * api-change:``redshift-data``: Adding a new API GetStatementResultV2 that supports CSV formatted results from ExecuteStatement and BatchExecuteStatement calls. * api-change:``sagemaker``: Adding `notebook-al2-v3` as allowed value to SageMaker NotebookInstance PlatformIdentifier attribute - from version 1.35.16 * api-change:``mediapackagev2``: MediaPackage V2 Live to VOD Harvester is a MediaPackage V2 feature, which is used to export content from an origin endpoint to a S3 bucket. * api-change:``opensearch``: Adds support for provisioning dedicated coordinator nodes. Coordinator nodes can be specified using the new NodeOptions parameter in ClusterConfig. * api-change:``rds``: This release adds support for Enhanced Monitoring and Performance Insights when restoring Aurora Limitless Database DB clusters. It also adds support for the os-upgrade pending maintenance action. * api-change:``storagegateway``: Documentation update: Amazon FSx File Gateway will no longer be available to new customers. - from version 1.35.15 * api-change:``bedrock-agent``: Add support of new model types for Bedrock Agents, Adding inference profile support for Flows and Prompt Management, Adding new field to configure additional inference configurations for Flows and Prompt Management * api-change:``codebuild``: AWS CodeBuild now supports automatically retrying failed builds * api-change:``lambda``: Add TagsError field in Lambda GetFunctionResponse. The TagsError field contains details related to errors retrieving tags. * api-change:``logs``: Adding inferred token name for dynamic tokens in Anomalies. * api-change:``supplychain``: API doc updates, and also support showing error message on a failed instance - from version 1.35.14 * api-change:``appconfig``: This release improves deployment safety by granting customers the ability to REVERT completed deployments, to the last known good state.In the StopDeployment API revert case the status of a COMPLETE deployment will be REVERTED. AppConfig only allows a revert within 72 hours of deployment completion. * api-change:``ec2``: This release includes a new API to describe some details of the Amazon Machine Images (AMIs) that were used to launch EC2 instances, even if those AMIs are no longer available for use. * api-change:``ecs``: This release adds support for EBS volumes attached to Amazon ECS Windows tasks running on EC2 instances. * api-change:``pcs``: Documentation update: added the default value of the Slurm configuration parameter scaleDownIdleTimeInSeconds to its description. * api-change:``qbusiness``: Add a new field in chat response. This field can be used to support nested schemas in array fields * bugfix:shorthand: Improve performance when parsing invalid shorthand syntax. - Refresh patches for new version - Relax upper version dependency for python-docutils in Requires - Update Requires from setup.py - Update to 1.35.13 * api-change:``bedrock``: Doc updates for supporting converse * api-change:``connect``: Amazon Connect Service Feature: Add support to start screen sharing for a web calling contact. * api-change:``ec2``: Amazon EC2 X8g, C8g and M8g instances are powered by AWS Graviton4 processors. X8g provide the lowest cost per GiB of memory among Graviton4 instances. C8g provide the best price performance for compute-intensive workloads. M8g provide the best price performance in for general purpose workloads. * api-change:``mwaa``: Introducing InvokeRestApi which allows users to invoke the Apache Airflow REST API on the webserver with the specified inputs. * api-change:``payment-cryptography``: Add support for ECC P-256 and P-384 Keys. * api-change:``payment-cryptography-data``: Add ECDH support on PIN operations. - from version 1.35.12 * api-change:``bedrock-runtime``: Updating invoke regex to support imported models for converse API * api-change:``imagebuilder``: Add macOS platform and instance placement options * api-change:``m2``: Add AuthSecretsManagerArn optional parameter to batch job APIs, expand batch parameter limits, and introduce clientToken constraints. * api-change:``rds``: Global clusters now expose the Endpoint attribute as one of its fields. It is a Read/Write endpoint for the global cluster which resolves to the Global Cluster writer instance. * api-change:``repostspace``: Adds the BatchAddRole and BatchRemoveRole APIs. * api-change:``timestream-query``: This release adds support for Query Insights, a feature that provides details of query execution, enabling users to identify areas for improvement to optimize their queries, resulting in improved query performance and lower query costs. - from version 1.35.11 * api-change:``application-insights``: This feature enables customers to specify SNS Topic ARN. CloudWatch Application Insights (CWAI) will utilize this ARN to send problem notifications. * api-change:``autoscaling``: Adds support for removing the PlacementGroup setting on an Auto Scaling Group through the UpdateAutoScalingGroup API. * api-change:``bedrock-agent-runtime``: Knowledge Bases for Amazon Bedrock now supports custom prompts and model parameters in the orchestrationConfiguration of the RetrieveAndGenerate API. The modelArn field accepts Custom Models and Imported Models ARNs. * api-change:``dms``: Added support for tagging in StartReplicationTaskAssessmentRun API and introduced IsLatestTaskAssessmentRun and ResultStatistic fields for enhanced tracking and assessment result statistics. * api-change:``ec2``: Amazon EC2 now allows you to create network interfaces with just the EFA driver and no ENA driver by specifying the network interface type as efa-only. * api-change:``eks``: This release adds support for Amazon Application Recovery Controller (ARC) zonal shift and zonal autoshift with EKS that enhances the resiliency of multi-AZ cluster environments * api-change:``fms``: Update AWS WAF policy - add the option to retrofit existing web ACLs instead of creating all new web ACLs. * api-change:``payment-cryptography-data``: Adding new API to generate authenticated scripts for EMV pin change use cases. * api-change:``wafv2``: Add a property to WebACL to indicate whether it's been retrofitted by Firewall Manager. - from version 1.35.10 * api-change:``athena``: Removing FEDERATED from Create/List/Delete/GetDataCatalog API * api-change:``bedrock``: Adding converse support to CMI API's * api-change:``bedrock-runtime``: Added converse support for custom imported models * api-change:``datazone``: Adding the following project member designations: PROJECT_CATALOG_VIEWER, PROJECT_CATALOG_CONSUMER and PROJECT_CATALOG_STEWARD in the CreateProjectMembership API and PROJECT_CATALOG_STEWARD designation in the AddPolicyGrant API. * api-change:``ec2``: RequestSpotInstances and RequestSpotFleet feature release. - from version 1.35.9 * api-change:``bedrock-agent``: Removing support for topK property in PromptModelInferenceConfiguration object, Making PromptTemplateConfiguration property as required, Limiting the maximum PromptVariant to 1 * api-change:``dataexchange``: This release adds Data Grant support, through which customers can programmatically create data grants to share with other AWS accounts and accept data grants from other AWS accounts. * api-change:``ecs``: This is an Amazon ECS documentation only update to address tickets. * api-change:``pinpoint-sms-voice-v2``: Added the registrations status of REQUIRES_AUTHENTICATION * api-change:``pipes``: This release adds validation to require specifying a SecurityGroup and Subnets in the Vpc object under PipesSourceSelfManagedKafkaParameters. It also adds support for iso-e, iso-f, and other non-commercial partitions in ARN parameters. * api-change:``quicksight``: Add StartDashboardSnapshotJobSchedule API. RestoreAnalysis now supports restoring analysis to folders. * api-change:``rds``: Updates Amazon RDS documentation for TAZ IAM support * api-change:``workspaces``: Updated the DomainName pattern for Active Directory - from version 1.35.8 * api-change:``s3``: Add support for the new optional bucket-region and prefix query parameters in the ListBuckets API. For ListBuckets requests that express pagination, Amazon S3 will now return both the bucket names and associated AWS regions in the response. - from version 1.35.7 * api-change:``amplify``: Added sourceUrlType field to StartDeployment request * api-change:``cloudformation``: Documentation update for AWS CloudFormation API Reference. * api-change:``codebuild``: Enable proxy for reserved capacity fleet. * api-change:``ivs``: On a channel that you own, you can now replace an ongoing stream with a new stream by streaming up with the priority parameter appended to the stream key. * api-change:``qbusiness``: Amazon Q Business now supports embedding the Amazon Q Business web experience on third-party websites. * api-change:``redshift``: This release launches the CreateIntegration, DeleteIntegration, DescribeIntegrations and ModifyIntegration APIs to create and manage Amazon Redshift Zero-ETL Integrations. * api-change:``resiliencehub``: AWS Resilience Hub now integrates with the myApplications platform, enabling customers to easily assess the resilience of applications defined in myApplications. The new Resiliency widget provides visibility into application resilience and actionable recommendations for improvement. * api-change:``sesv2``: This release adds support for email maximum delivery seconds that allows senders to control the time within which their emails are attempted for delivery. - from version 1.35.6 * api-change:``codepipeline``: AWS CodePipeline V2 type pipelines now support automatically retrying failed stages and skipping stage for failed entry conditions. * api-change:``mailmanager``: Mail Manager support for viewing and exporting metadata of archived messages. * api-change:``securitylake``: This release updates request validation regex for resource ARNs. * api-change:``supplychain``: This release adds AWS Supply Chain instance management functionality. Specifically adding CreateInstance, DeleteInstance, GetInstance, ListInstances, and UpdateInstance APIs. * api-change:``transfer``: This release enables customers using SFTP connectors to query the transfer status of their files to meet their monitoring needs as well as orchestrate post transfer actions. - from version 1.35.5 * api-change:``appflow``: Doc only updates for clarification around OAuth2GrantType for Salesforce. * api-change:``elbv2``: Add zonal_shift.config.enabled attribute. Add new AdministrativeOverride construct in the describe-target-health API response to include information about the override status applied to a target. * api-change:``emr``: This release provides new parameter "Context" in instance fleet clusters. * api-change:``guardduty``: Added a new field for network connection details. * api-change:``robomaker``: Documentation update: added support notices to each API action. - from version 1.35.4 * api-change:``acm-pca``: Documentation updates for AWS Private CA. * api-change:``dms``: Introduces DescribeDataMigrations, CreateDataMigration, ModifyDataMigration, DeleteDataMigration, StartDataMigration, StopDataMigration operations to SDK. Provides FailedDependencyFault error message. * api-change:``ec2``: This release adds support for assigning the billing of shared Amazon EC2 On-Demand Capacity Reservations. * api-change:``ecs``: This is a documentation only release that updates to documentation to let customers know that Amazon Elastic Inference is no longer available. * api-change:``elastic-inference``: Elastic Inference - Documentation update to add service shutdown notice. * api-change:``iotfleetwise``: Refine campaign related API validations * api-change:``neptune-graph``: Support for 16 m-NCU graphs available through account allowlisting * api-change:``outposts``: Adding new "DELIVERED" enum value for Outposts Order status * api-change:``route53resolver``: Route 53 Resolver Forwarding Rules can now include a server name indication (SNI) in the target address for rules that use the DNS-over-HTTPS (DoH) protocol. When a DoH-enabled Outbound Resolver Endpoint forwards a request to a DoH server, it will provide the SNI in the TLS handshake. * api-change:``socialmessaging``: This release for AWS End User Messaging includes a public SDK, providing a suite of APIs that enable sending WhatsApp messages to end users. * api-change:``timestream-influxdb``: This release updates our regex based validation rules in regards to valid DbInstance and DbParameterGroup name. - from version 1.35.3 * api-change:``codepipeline``: AWS CodePipeline introduces a Compute category - from version 1.35.2 * api-change:``elasticache``: AWS ElastiCache SDK now supports using APIs with newly launched Valkey engine. Please refer to updated AWS ElastiCache public documentation for detailed information on API usage. * api-change:``memorydb``: Amazon MemoryDB SDK now supports all APIs for newly launched Valkey engine. Please refer to the updated Amazon MemoryDB public documentation for detailed information on API usage. * enhancement:``s3``: Adds logic to gracefully handle invalid timestamps returned in the Expires header. - from version 1.35.1 * api-change:``deadline``: Add support for using the template from a previous job during job creation and listing parameter definitions for a job. * api-change:``marketplace-reporting``: Documentation-only update for AWS Marketplace Reporting API. * api-change:``qconnect``: This release adds support for the following capabilities: Configuration of the Gen AI system via AIAgent and AIPrompts. Integration support for Bedrock Knowledge Base. * api-change:``redshift``: Add validation pattern to S3KeyPrefix on the EnableLogging API - from version 1.35.0 * api-change:``ec2``: Documentation updates for Amazon EC2. * api-change:``iot-data``: Add v2 smoke tests and smithy smokeTests trait for SDK testing. * feature:s3: Adds ``--checksum-mode`` and ``--checksum-algorithm`` parameters to high-level ``s3`` commands. - from version 1.34.33 * api-change:``codepipeline``: AWS CodePipeline introduces Commands action that enables you to easily run shell commands as part of your pipeline execution. * api-change:``connect``: Public GetMetricDataV2 Grouping increase from 3 to 4 * api-change:``ec2``: This release includes a new API for modifying instance cpu-options after launch. * api-change:``iot``: This release adds support for Custom Authentication with X.509 Client Certificates, support for Custom Client Certificate validation, and support for selecting application protocol and authentication type without requiring TLS ALPN for customer's AWS IoT Domain Configurations. * api-change:``marketplace-reporting``: The AWS Marketplace Reporting service introduces the GetBuyerDashboard API. This API returns a dashboard that provides visibility into your organization's AWS Marketplace agreements and associated spend across the AWS accounts in your organization. * api-change:``mediapackagev2``: Added support for ClipStartTime on the FilterConfiguration object on OriginEndpoint manifest settings objects. Added support for EXT-X-START tags on produced HLS child playlists. * api-change:``quicksight``: QuickSight: Add support for exporting and importing folders in AssetBundle APIs - from version 1.34.32 * api-change:``appstream``: Added support for Automatic Time Zone Redirection on Amazon AppStream 2.0 * api-change:``b2bi``: Added and updated APIs to support outbound EDI transformations * api-change:``bedrock-agent-runtime``: Added raw model response and usage metrics to PreProcessing and PostProcessing Trace * api-change:``bedrock-runtime``: Added new fields to Amazon Bedrock Guardrails trace * api-change:``iotdeviceadvisor``: Add clientToken attribute and implement idempotency for CreateSuiteDefinition. * api-change:``ivs-realtime``: Adds new Stage Health EventErrorCodes applicable to RTMP(S) broadcasts. Bug Fix: Enforces that EncoderConfiguration Video height and width must be even-number values. * api-change:``s3``: This release introduces a header representing the minimum object size limit for Lifecycle transitions. * api-change:``sagemaker``: releasing builtinlcc to public * api-change:``workspaces``: WSP is being rebranded to become DCV. - from version 1.34.31 * api-change:``bedrock-agent``: This release adds support to stop an ongoing ingestion job using the StopIngestionJob API in Agents for Amazon Bedrock. * api-change:``codeartifact``: Add support for the dual stack endpoints. * api-change:``rds``: This release provides additional support for enabling Aurora Limitless Database DB clusters. - from version 1.34.30 * api-change:``bedrock``: Add support for custom models via provisioned throughput for Bedrock Model Evaluation * api-change:``clouddirectory``: Add examples for API operations in model. * api-change:``connect``: Amazon Connect introduces StartOutboundChatContact API allowing customers to initiate outbound chat contacts * api-change:``pricing``: Add examples for API operations in model. * api-change:``resource-groups``: This update includes new APIs to support application groups and to allow users to manage resource tag-sync tasks in applications. * api-change:``supplychain``: Release DataLakeDataset, DataIntegrationFlow and ResourceTagging APIs for AWS Supply Chain * api-change:``timestream-influxdb``: Timestream for InfluxDB now supports port configuration and additional customer-modifiable InfluxDB v2 parameters. This release adds Port to the CreateDbInstance and UpdateDbInstance API, and additional InfluxDB v2 parameters to the CreateDbParameterGroup API. * api-change:``verifiedpermissions``: Add examples for API operations in model. - from version 1.34.29 * api-change:``customer-profiles``: Introduces optional RoleArn parameter for PutIntegration request and includes RoleArn in the response of PutIntegration, GetIntegration and ListIntegrations * api-change:``quicksight``: Adding personalization in QuickSight data stories. Admins can enable or disable personalization through QuickSight settings. * api-change:``securityhub``: Documentation updates for AWS Security Hub * api-change:``sesv2``: This release adds support for engagement tracking over Https using custom domains. - from version 1.34.28 * api-change:``chatbot``: Return State and StateReason fields for Chatbot Channel Configurations. * api-change:``lambda``: Reverting Lambda resource-based policy and block public access APIs. * api-change:``organizations``: Add support for policy operations on the CHATBOT_POLICY policy type. * api-change:``pcs``: AWS PCS API documentation - Edited the description of the iamInstanceProfileArn parameter of the CreateComputeNodeGroup and UpdateComputeNodeGroup actions; edited the description of the SlurmCustomSetting data type to list the supported parameters for clusters and compute node groups. * api-change:``rds-data``: Documentation update for RDS Data API to reflect support for Aurora MySQL Serverless v2 and Provisioned DB clusters. * api-change:``sagemaker``: Adding `TagPropagation` attribute to Sagemaker API - from version 1.34.27 * api-change:``cloudtrail``: Doc-only update for CloudTrail network activity events release (in preview) * api-change:``ec2``: Updates to documentation for the transit gateway security group referencing feature. * api-change:``fsx``: Doc-only update to address Lustre S3 hard-coded names. - from version 1.34.26 * api-change:``bedrock``: Add support for Cross Region Inference in Bedrock Model Evaluations. * api-change:``budgets``: Releasing minor partitional endpoint updates * api-change:``kinesis``: This release includes support to add tags when creating a stream * api-change:``pinpoint-sms-voice-v2``: AWS End User Messaging SMS-Voice V2 has added support for resource policies. Use the three new APIs to create, view, edit, and delete resource policies. * api-change:``sagemaker``: Adding `HiddenInstanceTypes` and `HiddenSageMakerImageVersionAliases` attribute to SageMaker API - from version 1.34.25 * api-change:``apigateway``: Documentation updates for Amazon API Gateway * api-change:``athena``: List/Get/Update/Delete/CreateDataCatalog now integrate with AWS Glue connections. Users can create a Glue connection through Athena or use a Glue connection to define their Athena federated parameters. * api-change:``bedrock-agent``: Amazon Bedrock Prompt Flows and Prompt Management now supports using inference profiles to increase throughput and improve resilience. * api-change:``ec2``: Amazon EC2 G6e instances powered by NVIDIA L40S Tensor Core GPUs are the most cost-efficient GPU instances for deploying generative AI models and the highest performance GPU instances for spatial computing workloads. * api-change:``emr-serverless``: This release adds support for job concurrency and queuing configuration at Application level. * api-change:``glue``: Added AthenaProperties parameter to Glue Connections, allowing Athena to store service specific properties on Glue Connections. * api-change:``rds``: Support ComputeRedundancy parameter in ModifyDBShardGroup API. Add DBShardGroupArn in DBShardGroup API response. Remove InvalidMaxAcuFault from CreateDBShardGroup and ModifyDBShardGroup API. Both API will throw InvalidParameterValueException for invalid ACU configuration. * api-change:``resource-explorer-2``: AWS Resource Explorer released ListResources feature which allows customers to list all indexed AWS resources within a view. - from version 1.34.24 * api-change:``dynamodb``: Generate account endpoint for DynamoDB requests when the account ID is available * api-change:``neptune``: Add v2 smoke tests and smithy smokeTests trait for SDK testing. * api-change:``sagemaker``: Amazon SageMaker now supports using manifest files to specify the location of uncompressed model artifacts within Model Packages * api-change:``sagemaker-metrics``: This release introduces support for the SageMaker Metrics BatchGetMetrics API. * api-change:``workspaces``: Releasing new ErrorCodes for SysPrep failures during ImageImport and CreateImage process * enhancement:paginator: Add warning when a non-positive value is provided for the max-items pagination parameter. - from version 1.34.23 * api-change:``codeconnections``: This release adds the PullRequestComment field to CreateSyncConfiguration API input, UpdateSyncConfiguration API input, GetSyncConfiguration API output and ListSyncConfiguration API output * api-change:``glue``: This change is for releasing TestConnection api SDK model * api-change:``lambda``: Tagging support for Lambda event source mapping, and code signing configuration resources. * api-change:``mediaconvert``: This release provides support for additional DRM configurations per SPEKE Version 2.0. * api-change:``medialive``: Adds Bandwidth Reduction Filtering for HD AVC and HEVC encodes, multiplex container settings. * api-change:``quicksight``: QuickSight: 1. Add new API - ListFoldersForResource. 2. Commit mode adds visibility configuration of Apply button on multi-select controls for authors. * api-change:``sagemaker``: Introduced support for G6e instance types on SageMaker Studio for JupyterLab and CodeEditor applications. * api-change:``workspaces-web``: WorkSpaces Secure Browser now enables Administrators to view and manage end-user browsing sessions via Session Management APIs. - from version 1.34.22 * api-change:``ce``: This release extends the GetReservationPurchaseRecommendation API to support recommendations for Amazon DynamoDB reservations. * api-change:``ds``: Added new APIs for enabling, disabling, and describing access to the AWS Directory Service Data API * api-change:``ds-data``: Added new AWS Directory Service Data API, enabling you to manage data stored in AWS Directory Service directories. This includes APIs for creating, reading, updating, and deleting directory users, groups, and group memberships. * api-change:``guardduty``: Add `launchType` and `sourceIPs` fields to GuardDuty findings. * api-change:``mailmanager``: Introduce a new RuleSet condition evaluation, where customers can set up a StringExpression with a MimeHeader condition. This condition will perform the necessary validation based on the X-header provided by customers. * api-change:``rds``: Updates Amazon RDS documentation with information upgrading snapshots with unsupported engine versions for RDS for MySQL and RDS for PostgreSQL. * api-change:``s3``: Added SSE-KMS support for directory buckets. - Refresh patches for new version - Update Requires from setup.py - Update to 1.34.21 * api-change:``codebuild``: GitLab Enhancements - Add support for Self-Hosted GitLab runners in CodeBuild. Add group webhooks * api-change:``ecr``: The `DescribeImageScanning` API now includes `fixAvailable`, `exploitAvailable`, and `fixedInVersion` fields to provide more detailed information about the availability of fixes, exploits, and fixed versions for identified image vulnerabilities. * api-change:``ecs``: This is a documentation only release to address various tickets. * api-change:``lambda``: Support for JSON resource-based policies and block public access * api-change:``rds``: Updates Amazon RDS documentation with configuration information about the BYOL model for RDS for Db2. * api-change:``ssm``: Support for additional levels of cross-account, cross-Region organizational units in Automation. Various documentation updates. - from version 1.34.20 * api-change:``bedrock``: This feature adds cross account s3 bucket and VPC support to ModelInvocation jobs. To use a cross account bucket, pass in the accountId of the bucket to s3BucketOwner in the ModelInvocationJobInputDataConfig or ModelInvocationJobOutputDataConfig. * api-change:``iot``: This release adds additional enhancements to AWS IoT Device Management Software Package Catalog and Jobs. It also adds SBOM support in Software Package Version. * api-change:``medialive``: Removing the ON_PREMISE enum from the input settings field. * api-change:``organizations``: Doc only update for AWS Organizations that fixes several customer-reported issues * api-change:``pca-connector-scep``: This is a general availability (GA) release of Connector for SCEP, a feature of AWS Private CA. Connector for SCEP links your SCEP-enabled and mobile device management systems to AWS Private CA for digital signature installation and certificate management. * api-change:``rds``: Launching Global Cluster tagging. - from version 1.34.19 * api-change:``amplify``: Doc only update to Amplify to explain platform setting for Next.js 14 SSG only applications * api-change:``ivs``: Updates to all tags descriptions. * api-change:``ivschat``: Updates to all tags descriptions. - from version 1.34.18 * api-change:``cognito-idp``: Added email MFA option to user pools with advanced security features. * api-change:``elbv2``: Correct incorrectly mapped error in ELBv2 waiters * api-change:``emr``: Update APIs to allow modification of ODCR options, allocation strategy, and InstanceTypeConfigs on running InstanceFleet clusters. * api-change:``glue``: AWS Glue is introducing two new optimizers for Apache Iceberg tables: snapshot retention and orphan file deletion. Customers can enable these optimizers and customize their configurations to perform daily maintenance tasks on their Iceberg tables based on their specific requirements. * api-change:``mediaconvert``: This release includes support for dynamic video overlay workflows, including picture-in-picture and squeezeback * api-change:``rds``: This release adds support for the os-upgrade pending maintenance action for Amazon Aurora DB clusters. * api-change:``storagegateway``: The S3 File Gateway now supports DSSE-KMS encryption. A new parameter EncryptionType is added to these APIs: CreateSmbFileShare, CreateNfsFileShare, UpdateSmbFileShare, UpdateNfsFileShare, DescribeSmbFileShares, DescribeNfsFileShares. Also, in favor of EncryptionType, KmsEncrypted is deprecated. * api-change:``synthetics``: This release introduces two features. The first is tag replication, which allows for the propagation of canary tags onto Synthetics related resources, such as Lambda functions. The second is a limit increase in canary name length, which has now been increased from 21 to 255 characters. - from version 1.34.17 * api-change:``bedrock-agent``: Amazon Bedrock Knowledge Bases now supports using inference profiles to increase throughput and improve resilience. * api-change:``bedrock-agent-runtime``: Amazon Bedrock Knowledge Bases now supports using inference profiles to increase throughput and improve resilience. * api-change:``ecr``: Added KMS_DSSE to EncryptionType * api-change:``guardduty``: Add support for new statistic types in GetFindingsStatistics. * api-change:``lexv2-models``: Support new Polly voice engines in VoiceSettings: long-form and generative * api-change:``medialive``: Adds AV1 Codec support, SRT ouputs, and MediaLive Anywhere support. - from version 1.34.16 * api-change:``chime-sdk-voice``: Documentation-only update that clarifies the ValidateE911Address action of the Amazon Chime SDK Voice APIs. * api-change:``cognito-identity``: This release adds sensitive trait to some required shapes. * api-change:``pipes``: This release adds support for customer managed KMS keys in Amazon EventBridge Pipe * api-change:``securityhub``: Documentation update for Security Hub - from version 1.34.15 * api-change:``dynamodb``: Doc-only update for DynamoDB. Added information about async behavior for TagResource and UntagResource APIs and updated the description of ResourceInUseException. * api-change:``elbv2``: Add paginators for the ELBv2 DescribeListenerCertificates and DescribeRules APIs. Fix broken waiter for the ELBv2 DescribeLoadBalancers API. * api-change:``ivs-realtime``: IVS Real-Time now offers customers the ability to broadcast to Stages using RTMP(S). * api-change:``kafka``: Amazon MSK Replicator can now replicate data to identically named topics between MSK clusters within the same AWS Region or across different AWS Regions. * api-change:``sagemaker``: Amazon Sagemaker supports orchestrating SageMaker HyperPod clusters with Amazon EKS * api-change:``sagemaker-runtime``: AWS SageMaker Runtime feature: Add sticky routing to support stateful inference models. - from version 1.34.14 * api-change:``qapps``: Adds UpdateLibraryItemMetadata api to change status of app for admin verification feature and returns isVerified field in any api returning the app or library item. - from version 1.34.13 * api-change:``application-signals``: Amazon CloudWatch Application Signals now supports creating Service Level Objectives using a new calculation type. Users can now create SLOs which are configured with request-based SLIs to help meet their specific business requirements. * api-change:``codepipeline``: Updates to add recent notes to APIs and to replace example S3 bucket names globally. * api-change:``connect``: Amazon Connect Custom Vocabulary now supports Catalan (Spain), Danish (Denmark), Dutch (Netherlands), Finnish (Finland), Indonesian (Indonesia), Malay (Malaysia), Norwegian Bokmal (Norway), Polish (Poland), Swedish (Sweden), and Tagalog/Filipino (Philippines). * api-change:``gamelift``: Amazon GameLift provides additional events for tracking the fleet creation process. * api-change:``kinesisanalyticsv2``: Support for Flink 1.20 in Managed Service for Apache Flink * api-change:``sagemaker``: Amazon SageMaker now supports idle shutdown of JupyterLab and CodeEditor applications on SageMaker Studio. - from version 1.34.12 * api-change:``appsync``: Adds new logging levels (INFO and DEBUG) for additional log output control * api-change:``bedrock-agent``: Add support for user metadata inside PromptVariant. * api-change:``finspace``: Updates Finspace documentation for smaller instances. * api-change:``fis``: This release adds safety levers, a new mechanism to stop all running experiments and prevent new experiments from starting. * api-change:``logs``: Update to support new APIs for delivery of logs from AWS services. * api-change:``s3control``: Amazon Simple Storage Service /S3 Access Grants / Features : This release launches new Access Grants API - ListCallerAccessGrants. - from version 1.34.11 * api-change:``connect``: Release ReplicaConfiguration as part of DescribeInstance * api-change:``datazone``: Add support to let data publisher specify a subset of the data asset that a subscriber will have access to based on the asset filters provided, when accepting a subscription request. * api-change:``elbv2``: This release adds support for configuring TCP idle timeout on NLB and GWLB listeners. * api-change:``mediaconnect``: AWS Elemental MediaConnect introduces thumbnails for Flow source monitoring. Thumbnails provide still image previews of the live content feeding your MediaConnect Flow allowing you to easily verify that your source is operating as expected. * api-change:``medialive``: Added MinQP as a Rate Control option for H264 and H265 encodes. * api-change:``sagemaker``: Amazon SageMaker now supports automatic mounting of a user's home folder in the Amazon Elastic File System (EFS) associated with the SageMaker Studio domain to their Studio Spaces to enable users to share data between their own private spaces. * api-change:``timestream-influxdb``: Timestream for InfluxDB now supports compute scaling and deployment type conversion. This release adds the DbInstanceType and DeploymentType parameters to the UpdateDbInstance API. - Refresh patches for new version - Update Requires from setup.py - Update to 1.34.10 * api-change:``backup``: The latest update introduces two new attributes, VaultType and VaultState, to the DescribeBackupVault and ListBackupVaults APIs. The VaultState attribute reflects the current status of the vault, while the VaultType attribute indicates the specific category of the vault. * api-change:``datazone``: Amazon DataZone now adds new governance capabilities of Domain Units for organization within your Data Domains, and Authorization Policies for tighter controls. * api-change:``logs``: This release introduces a new optional parameter: Entity, in PutLogEvents request * api-change:``redshift-data``: The release include the new Redshift DataAPI feature for session use, customer execute query with --session-keep-alive-seconds parameter and can submit follow-up queries to same sessions with returned`session-id` - from version 1.34.9 * api-change:``bedrock-agent-runtime``: Lifting the maximum length on Bedrock KnowledgeBase RetrievalFilter array * api-change:``bedrock-runtime``: Add support for imported-model in invokeModel and InvokeModelWithResponseStream. * api-change:``personalize``: This releases ability to update automatic training scheduler for customer solutions * api-change:``quicksight``: Increased Character Limit for Dataset Calculation Field expressions * api-change:``stepfunctions``: This release adds support for static analysis to ValidateStateMachineDefinition API, which can now return optional WARNING diagnostics for semantic errors on the definition of an Amazon States Language (ASL) state machine. * api-change:``wafv2``: The minimum request rate for a rate-based rule is now 10. Before this, it was 100. - from version 1.34.8 * api-change:``appconfig``: This release adds support for deletion protection, which is a safety guardrail to prevent the unintentional deletion of a recently used AWS AppConfig Configuration Profile or Environment. This also includes a change to increase the maximum length of the Name parameter in UpdateConfigurationProfile. * api-change:``datazone``: Update regex to include dot character to be consistent with IAM role creation in the authorized principal field for create and update subscription target. * api-change:``devicefarm``: This release removed support for Calabash, UI Automation, Built-in Explorer, remote access record, remote access replay, and web performance profile framework in ScheduleRun API. * api-change:``ec2``: Amazon VPC IP Address Manager (IPAM) now allows customers to provision IPv4 CIDR blocks and allocate Elastic IP Addresses directly from IPAM pools with public IPv4 space * api-change:``internetmonitor``: Adds new querying types to show overall traffic suggestion information for monitors * api-change:``pcs``: Introducing AWS Parallel Computing Service (AWS PCS), a new service makes it easy to setup and manage high performance computing (HPC) clusters, and build scientific and engineering models at virtually any scale on AWS. * api-change:``workspaces``: Documentation-only update that clarifies the StartWorkspaces and StopWorkspaces actions, and a few other minor edits. - from version 1.34.7 * api-change:``bedrock``: Amazon Bedrock SDK updates for Inference Profile. * api-change:``bedrock-runtime``: Amazon Bedrock SDK updates for Inference Profile. * api-change:``chatbot``: Update documentation to be consistent with the API docs * api-change:``omics``: Adds data provenance to import jobs from read sets and references * api-change:``polly``: Amazon Polly adds 2 new voices: Jitka (cs-CZ) and Sabrina (de-CH). - from version 1.34.6 * api-change:``iotsitewise``: AWS IoT SiteWise now supports versioning for asset models. It enables users to retrieve active version of their asset model and perform asset model writes with optimistic lock. * api-change:``workspaces``: This release adds support for creating and managing directories that use AWS IAM Identity Center as user identity source. Such directories can be used to create non-Active Directory domain joined WorkSpaces Personal.Updated RegisterWorkspaceDirectory and DescribeWorkspaceDirectories APIs. - from version 1.34.5 * api-change:``bedrock-agent``: Releasing the support for Action User Confirmation. * api-change:``bedrock-agent-runtime``: Releasing the support for Action User Confirmation. * api-change:``codebuild``: Added support for the MAC_ARM environment type for CodeBuild fleets. * api-change:``organizations``: Releasing minor partitional endpoint updates. * api-change:``qbusiness``: Amazon QBusiness: Enable support for SAML and OIDC federation through AWS IAM Identity Provider integration. * api-change:``supplychain``: Update API documentation to clarify the event SLA as well as the data model expectations - from version 1.34.4 * api-change:``autoscaling``: Amazon EC2 Auto Scaling now provides EBS health check to manage EC2 instance replacement * api-change:``bedrock``: Amazon Bedrock Evaluation BatchDeleteEvaluationJob API allows customers to delete evaluation jobs under terminated evaluation job statuses - Stopped, Failed, or Completed. Customers can submit a batch of 25 evaluation jobs to be deleted at once. * api-change:``emr-containers``: Correct endpoint for FIPS is configured for US Gov Regions. * api-change:``inspector2``: Add enums for Agentless scan statuses and EC2 enablement error states * api-change:``quicksight``: Explicit query for authors and dashboard viewing sharing for embedded users * api-change:``route53``: Amazon Route 53 now supports the Asia Pacific (Malaysia) Region (ap-southeast-5) for latency records, geoproximity records, and private DNS for Amazon VPCs in that region. - from version 1.34.3 * api-change:``ec2``: DescribeInstanceStatus now returns health information on EBS volumes attached to Nitro instances * api-change:``entityresolution``: Increase the mapping attributes in Schema to 35. * api-change:``glue``: Add optional field JobRunQueuingEnabled to CreateJob and UpdateJob APIs. * api-change:``lambda``: Release FilterCriteria encryption for Lambda EventSourceMapping, enabling customers to encrypt their filter criteria using a customer-owned KMS key. * api-change:``securityhub``: Security Hub documentation and definition updates * api-change:``ses``: Enable email receiving customers to provide SES with access to their S3 buckets via an IAM role for "Deliver to S3 Action" - from version 1.34.2 * api-change:``ecs``: Documentation only release to address various tickets * api-change:``opensearchserverless``: Added FailureCode and FailureMessage to BatchGetCollectionResponse for BatchGetVPCEResponse for non-Active Collection and VPCE. * api-change:``s3``: Amazon Simple Storage Service / Features : Add support for conditional writes for PutObject and CompleteMultipartUpload APIs. - from version 1.34.1 * api-change:``bedrock``: Amazon Bedrock Batch Inference/ Model Invocation is a feature which allows customers to asynchronously run inference on a large set of records/files stored in S3. * api-change:``codebuild``: AWS CodeBuild now supports creating fleets with macOS platform for running builds. * api-change:``deadline``: This release adds additional search fields and provides sorting by multiple fields. * api-change:``lambda``: Release Lambda FunctionRecursiveConfig, enabling customers to turn recursive loop detection on or off on individual functions. This release adds two new APIs, GetFunctionRecursionConfig and PutFunctionRecursionConfig. * api-change:``ssm-sap``: Add new attributes to the outputs of GetApplication and GetDatabase APIs. - from version 1.34.0 * api-change:``batch``: Improvements of integration between AWS Batch and EC2. * api-change:``inspector2``: Update the correct format of key and values for resource tags * api-change:``quicksight``: Amazon QuickSight launches Customer Managed Key (CMK) encryption for Data Source metadata * api-change:``sagemaker``: Introduce Endpoint and EndpointConfig Arns in sagemaker:ListPipelineExecutionSteps API response * api-change:``sesv2``: Marking use case description field of account details as deprecated. * enhancement:``codeartifact``: Update login command error message. - from version 1.33.44 * api-change:``docdb``: This release adds Global Cluster Failover capability which enables you to change your global cluster's primary AWS region, the region that serves writes, during a regional outage. Performing a failover action preserves your Global Cluster setup. * api-change:``ecs``: This release introduces a new ContainerDefinition configuration to support the customer-managed keys for ECS container restart feature. * api-change:``iam``: Make the LastUsedDate field in the GetAccessKeyLastUsed response optional. This may break customers who only call the API for access keys with a valid LastUsedDate. This fixes a deserialization issue for access keys without a LastUsedDate, because the field was marked as required but could be null. * api-change:``s3``: Amazon Simple Storage Service / Features : Adds support for pagination in the S3 ListBuckets API. - from version 1.33.43 * api-change:``codebuild``: AWS CodeBuild now supports using Secrets Manager to store git credentials and using multiple source credentials in a single project. - from version 1.33.42 * api-change:``amplify``: Add a new field "cacheConfig" that enables users to configure the CDN cache settings for an App * api-change:``appstream``: This release includes following new APIs: CreateThemeForStack, DescribeThemeForStack, UpdateThemeForStack, DeleteThemeForStack to support custom branding programmatically. * api-change:``fis``: This release adds support for additional error information on experiment failure. It adds the error code, location, and account id on relevant failures to the GetExperiment and ListExperiment API responses. * api-change:``glue``: Add AttributesToGet parameter support for Glue GetTables * api-change:``neptune-graph``: Amazon Neptune Analytics provides a new option for customers to load data into a graph using the RDF (Resource Description Framework) NTRIPLES format. When loading NTRIPLES files, use the value `convertToIri` for the `blankNodeHandling` parameter. - from version 1.33.41 * api-change:``compute-optimizer``: Doc only update for Compute Optimizer that fixes several customer-reported issues relating to ECS finding classifications * api-change:``config``: Documentation update for the OrganizationConfigRuleName regex pattern. * api-change:``ec2``: This release adds new capabilities to manage On-Demand Capacity Reservations including the ability to split your reservation, move capacity between reservations, and modify the instance eligibility of your reservation. * api-change:``eks``: Added support for new AL2023 GPU AMIs to the supported AMITypes. * api-change:``groundstation``: Updating documentation for OEMEphemeris to link to AWS Ground Station User Guide * api-change:``medialive``: AWS Elemental MediaLive now supports now supports editing the PID values for a Multiplex. * api-change:``sagemaker``: Releasing large data support as part of CreateAutoMLJobV2 in SageMaker Autopilot and CreateDomain API for SageMaker Canvas. - from version 1.33.40 * api-change:``cognito-idp``: Fixed a description of AdvancedSecurityAdditionalFlows in Amazon Cognito user pool configuration. * api-change:``connect``: This release supports adding RoutingCriteria via UpdateContactRoutingData public API. * api-change:``ssm``: Systems Manager doc-only updates for August 2024. - from version 1.33.39 * api-change:``cognito-idp``: Added support for threat protection for custom authentication in Amazon Cognito user pools. * api-change:``connect``: This release fixes a regression in number of access control tags that are allowed to be added to a security profile in Amazon Connect. You can now add up to four access control tags on a single security profile. * api-change:``ec2``: Launch of private IPv6 addressing for VPCs and Subnets. VPC IPAM supports the planning and monitoring of private IPv6 usage. * api-change:``glue``: This release adds support to retrieve the validation status when creating or updating Glue Data Catalog Views. Also added is support for BasicCatalogTarget partition keys. - from version 1.33.38 * api-change:``appintegrations``: Updated CreateDataIntegration and CreateDataIntegrationAssociation API to support bulk data export from Amazon Connect Customer Profiles to the customer S3 bucket. * api-change:``glue``: Introducing AWS Glue Data Quality anomaly detection, a new functionality that uses ML-based solutions to detect data anomalies users have not explicitly defined rules for. - from version 1.33.37 * api-change:``bedrock-agent-runtime``: Introduce model invocation output traces for orchestration traces, which contain the model's raw response and usage. * api-change:``cognito-idp``: Advanced security feature updates to include password history and log export for Cognito user pools. * api-change:``cost-optimization-hub``: This release adds savings percentage support to the ListRecommendationSummaries API. * api-change:``workspaces``: Added support for BYOL_GRAPHICS_G4DN_WSP IngestionProcess - from version 1.33.36 * api-change:``datazone``: This releases Data Product feature. Data Products allow grouping data assets into cohesive, self-contained units for ease of publishing for data producers, and ease of finding and accessing for data consumers. * api-change:``ecr``: Released two new APIs along with documentation updates. The GetAccountSetting API is used to view the current basic scan type version setting for your registry, while the PutAccountSetting API is used to update the basic scan type version for your registry. * api-change:``kinesis-video-webrtc-storage``: Add JoinStorageSessionAsViewer API * api-change:``pi``: Added a description for the Dimension db.sql.tokenized_id on the DimensionGroup data type page. - from version 1.33.35 * api-change:``cloudwatch``: Add v2 smoke tests and smithy smokeTests trait for SDK testing. * api-change:``kinesis``: Add v2 smoke tests and smithy smokeTests trait for SDK testing. * api-change:``resiliencehub``: Customers are presented with the grouping recommendations and can determine if the recommendations are accurate and apply to their case. This feature simplifies onboarding by organizing resources into appropriate AppComponents. * api-change:``route53``: Add v2 smoke tests and smithy smokeTests trait for SDK testing. * api-change:``waf-regional``: Add v2 smoke tests and smithy smokeTests trait for SDK testing. - from version 1.33.34 * api-change:``bedrock``: API and Documentation for Bedrock Model Copy feature. This feature lets you share and copy a custom model from one region to another or one account to another. * api-change:``controlcatalog``: AWS Control Tower provides two new public APIs controlcatalog:ListControls and controlcatalog:GetControl under controlcatalog service namespace, which enable customers to programmatically retrieve control metadata of available controls. * api-change:``controltower``: Updated Control Tower service documentation for controlcatalog control ARN support with existing Control Tower public APIs * api-change:``iam``: Add v2 smoke tests and smithy smokeTests trait for SDK testing. * api-change:``memorydb``: Doc only update for changes to deletion API. * api-change:``rds``: This release adds support for specifying optional MinACU parameter in CreateDBShardGroup and ModifyDBShardGroup API. DBShardGroup response will contain MinACU if specified. * api-change:``sagemaker``: This release adds support for Amazon EMR Serverless applications in SageMaker Studio for running data processing jobs. * api-change:``ssm-quicksetup``: This release adds API support for the QuickSetup feature of AWS Systems Manager * api-change:``support``: Doc only updates to CaseDetails - from version 1.33.33 * api-change:``appstream``: Added support for Red Hat Enterprise Linux 8 on Amazon AppStream 2.0 * api-change:``autoscaling``: Increase the length limit for VPCZoneIdentifier from 2047 to 5000 * api-change:``codepipeline``: AWS CodePipeline V2 type pipelines now support stage level conditions to enable development teams to safely release changes that meet quality and compliance requirements. * api-change:``elasticache``: Doc only update for changes to deletion API. * api-change:``elb``: Add v2 smoke tests and smithy smokeTests trait for SDK testing. * api-change:``events``: Add v2 smoke tests and smithy smokeTests trait for SDK testing. * api-change:``lexv2-models``: This release adds new capabilities to the AMAZON.QnAIntent: Custom prompting, Guardrails integration and ExactResponse support for Bedrock Knowledge Base. * api-change:``logs``: Add v2 smoke tests and smithy smokeTests trait for SDK testing. * api-change:``rolesanywhere``: IAM RolesAnywhere now supports custom role session name on the CreateSession. This release adds the acceptRoleSessionName option to a profile to control whether a role session name will be accepted in a session request with a given profile. * api-change:``tnb``: This release adds Network Service Update, through which customers will be able to update their instantiated networks to a new network package. See the documentation for limitations. The release also enhances the Get network operation API to return parameter overrides used during the operation. * api-change:``workspaces``: Removing multi-session as it isn't supported for pools * bugfix:``s3``: Disable usage of mb command with S3 Express directory buckets. - from version 1.33.32 * api-change:``elasticache``: Renaming full service name as it appears in developer documentation. * api-change:``memorydb``: Renaming full service name as it appears in developer documentation. - from version 1.33.31 * api-change:``application-autoscaling``: Application Auto Scaling is now more responsive to the changes in demand of your SageMaker Inference endpoints. To get started, create or update a Target Tracking policy based on High Resolution CloudWatch metrics. * api-change:``application-signals``: CloudWatch Application Signals now supports application logs correlation with traces and operational health metrics of applications running on EC2 instances. Users can view the most relevant telemetry to troubleshoot application health anomalies such as spikes in latency, errors, and availability. * api-change:``bedrock-runtime``: Provides ServiceUnavailableException error message * api-change:``codecommit``: CreateRepository API now throws OperationNotAllowedException when the account has been restricted from creating a repository. * api-change:``datazone``: Introduces GetEnvironmentCredentials operation to SDK * api-change:``ec2``: EC2 Fleet now supports using custom identifiers to reference Amazon Machine Images (AMI) in launch requests that are configured to choose from a diversified list of instance types. * api-change:``ecr``: API and documentation updates for Amazon ECR, adding support for creating, updating, describing and deleting ECR Repository Creation Template. * api-change:``eks``: This release adds support for EKS cluster to manage extended support. * api-change:``elbv2``: This release adds support for sharing trust stores across accounts and organizations through integration with AWS Resource Access Manager. * api-change:``network-firewall``: You can now log events that are related to TLS inspection, in addition to the existing alert and flow logging. * api-change:``outposts``: Adding default vCPU information to GetOutpostSupportedInstanceTypes and GetOutpostInstanceTypes responses * api-change:``stepfunctions``: This release adds support to customer managed KMS key encryption in AWS Step Functions. - from version 1.33.30 * api-change:``cleanrooms``: Three enhancements to the AWS Clean Rooms: Disallowed Output Columns, Flexible Result Receivers, SQL as a Seed * api-change:``dynamodb``: DynamoDB doc only update for July * api-change:``iotsitewise``: Adds support for creating SiteWise Edge gateways that run on a Siemens Industrial Edge Device. * api-change:``mediapackagev2``: This release adds support for Irdeto DRM encryption in DASH manifests. * api-change:``medical-imaging``: CopyImageSet API adds copying selected instances between image sets, and overriding inconsistent metadata with a force parameter. UpdateImageSetMetadata API enables reverting to prior versions; updates to Study, Series, and SOP Instance UIDs; and updates to private elements, with a force parameter. * api-change:``pinpoint-sms-voice-v2``: Update for rebrand to AWS End User Messaging SMS and Voice. - from version 1.33.29 * api-change:``appsync``: Adding support for paginators in AppSync list APIs * api-change:``cleanrooms``: This release adds AWS Entity Resolution integration to associate ID namespaces & ID mapping workflow resources as part of ID namespace association and ID mapping table in AWS Clean Rooms. It also introduces a new ID_MAPPING_TABLE analysis rule to manage the protection on ID mapping table. * api-change:``cleanroomsml``: Adds SQL query as the source of seed audience for audience generation job. * api-change:``connect``: Added PostContactSummary segment type on ListRealTimeContactAnalysisSegmentsV2 API * api-change:``connect-contact-lens``: Added PostContactSummary segment type on ListRealTimeContactAnalysisSegments API * api-change:``datazone``: This release removes the deprecated dataProductItem field from Search API output. * api-change:``entityresolution``: Support First Party ID Mapping - from version 1.33.28 * api-change:``datazone``: This release adds 1/ support of register S3 locations of assets in AWS Lake Formation hybrid access mode for DefaultDataLake blueprint. 2/ support of CRUD operations for Asset Filters. * api-change:``ivs``: Documentation update for IVS Low Latency API Reference. * api-change:``neptune-graph``: Amazon Neptune Analytics provides new options for customers to start with smaller graphs at a lower cost. CreateGraph, CreaateGraphImportTask, UpdateGraph and StartImportTask APIs will now allow 32 and 64 for `provisioned-memory` * api-change:``redshift-serverless``: Adds dualstack support for Redshift Serverless workgroup. - from version 1.33.27 * api-change:``acm-pca``: Fix broken waiters for the acm-pca client. Waiters broke in version - from version 1.13.144 of the Boto3 SDK. * api-change:``connect``: Amazon Connect expands search API coverage for additional resources. Search for hierarchy groups by name, ID, tag, or other criteria (new endpoint). Search for agent statuses by name, ID, tag, or other criteria (new endpoint). Search for users by their assigned proficiencies (enhanced endpoint) * api-change:``ec2``: Amazon VPC IP Address Manager (IPAM) now supports Bring-Your-Own-IP (BYOIP) for IP addresses registered with any Internet Registry. This feature uses DNS TXT records to validate ownership of a public IP address range. * api-change:``firehose``: This release 1) Add configurable buffering hints for Snowflake as destination. 2) Add ReadFromTimestamp for MSK As Source. Firehose will start reading data from MSK Cluster using offset associated with this timestamp. 3) Gated public beta release to add Apache Iceberg tables as destination. * api-change:``ivschat``: Documentation update for IVS Chat API Reference. * api-change:``medialive``: AWS Elemental MediaLive now supports the SRT protocol via the new SRT Caller input type. * api-change:``rds``: Updates Amazon RDS documentation to specify an eventual consistency model for DescribePendingMaintenanceActions. * api-change:``sagemaker``: SageMaker Training supports R5, T3 and R5D instances family. And SageMaker Processing supports G5 and R5D instances family. * api-change:``secretsmanager``: Doc only update for Secrets Manager * api-change:``taxsettings``: Set default endpoint for aws partition. Requests from all regions in aws partition will be forward to us-east-1 endpoint. * api-change:``timestream-query``: Doc-only update for TimestreamQuery. Added guidance about the accepted valid value for the QueryPricingModel parameter. * api-change:``workspaces-thin-client``: Documentation update for WorkSpaces Thin Client. - Refresh patches for new version - Update Requires from setup.py python-boto3-1.40.50-150400.27.10.1.src.rpm python-botocore-1.40.50-150400.41.10.1.src.rpm python-s3transfer-0.14.0-150400.13.7.1.src.rpm python311-boto3-1.40.50-150400.27.10.1.noarch.rpm python311-botocore-1.40.50-150400.41.10.1.noarch.rpm python311-s3transfer-0.14.0-150400.13.7.1.noarch.rpm SUSE-SLE-Module-Python3-15-SP7-2026-10 important SUSE Updates SLE-Module-Python3 15-SP7 x86 64 This update for python-tornado6 fixes the following issues: - CVE-2025-67724: unescaped `reason` argument used in HTTP headers and in HTML default error pages can be used by attackers to launch header injection or XSS attacks (bsc#1254903). - CVE-2025-67725: quadratic complexity of string concatenation operations used by the `HTTPHeaders.add` method can lead to DoS when processing a maliciously crafted HTTP request (bsc#1254905). - CVE-2025-67726: quadratic complexity algorithm used in the `_parseparam` function of `httputil.py` can lead to DoS when processing maliciously crafted parameters in a `Content-Disposition` header (bsc#1254904). python-tornado6-6.3.2-150400.9.12.1.src.rpm python311-tornado6-6.3.2-150400.9.12.1.x86_64.rpm SUSE-SLE-Module-Python3-15-SP7-2026-16 important SUSE Updates SLE-Module-Python3 15-SP7 x86 64 This update for pgadmin4 fixes the following issues: - CVE-2025-12765: insufficient checks in the LDAP authentication flow allow a for bypass of TLS certificate validation that can lead to the stealing of bind credentials and the altering of directory responses (bsc#1253478). - CVE-2025-12764: improper validation of characters in a username allows for LDAP injections that force the processing of unusual amounts of data and leads to a DoS (bsc#1253477). pgadmin4-4.30-150300.3.21.1.src.rpm pgadmin4-web-4.30-150300.3.21.1.noarch.rpm SUSE-SLE-Module-Python3-15-SP7-2026-15 important SUSE Updates SLE-Module-Python3 15-SP7 x86 64 This update for pgadmin4 fixes the following issues: - CVE-2025-12765: insufficient checks in the LDAP authentication flow allow a for bypass of TLS certificate validation that can lead to the stealing of bind credentials and the altering of directory responses (bsc#1253478). - CVE-2025-12764: improper validation of characters in a username allows for LDAP injections that force the processing of unusual amounts of data and leads to a DoS (bsc#1253477). pgadmin4-8.5-150600.3.18.1.noarch.rpm pgadmin4-8.5-150600.3.18.1.src.rpm pgadmin4-doc-8.5-150600.3.18.1.noarch.rpm system-user-pgadmin-8.5-150600.3.18.1.noarch.rpm SUSE-SLE-Module-Python3-15-SP7-2026-24 moderate SUSE Updates SLE-Module-Python3 15-SP7 x86 64 This update for python313 fixes the following issues: Update to version 3.13.11. Security issues fixed: - CVE-2025-12084: quadratic complexity when building nested elements using `xml.dom.minidom` methods that depend on `_clear_id_cache()` can lead to availability issues when building excessively nested documents (bsc#1254997). - CVE-2025-13836: use of `Content-Length` by default when reading an HTTP response with no read amount specified can lead to OOM issues and DoS when a client deals with a malicious server (bsc#1254400). - CVE-2025-13837: data read by the plistlib module according to the size specified by the file itself can lead to OOM issues and DoS (bsc#1254401). Other updates and bugfixes: - Version 3.13.11: * Library - gh-140797: Revert changes to the undocumented re.Scanner class. Capturing groups are still allowed for backward compatibility, although using them can lead to incorrect result. They will be forbidden in future Python versions. - gh-142206: The resource tracker in the multiprocessing module now uses the original communication protocol, as in Python 3.14.0 and below, by default. This avoids issues with upgrading Python while it is running. (Note that such ‘in-place’ upgrades are not tested.) The tracker remains compatible with subprocesses that use new protocol (that is, subprocesses using Python 3.13.10, 3.14.1 and 3.15). * Core and Builtins - gh-142218: Fix crash when inserting into a split table dictionary with a non str key that matches an existing key. - Version to 3.13.10: * Security - gh-137836: Add support of the “plaintext” element, RAWTEXT elements “xmp”, “iframe”, “noembed” and “noframes”, and optionally RAWTEXT element “noscript” in html.parser.HTMLParser. - gh-136063: email.message: ensure linear complexity for legacy HTTP parameters parsing. Patch by Bénédikt Tran. * Library - gh-74389: When the stdin being used by a subprocess.Popen instance is closed, this is now ignored in subprocess.Popen.communicate() instead of leaving the class in an inconsistent state. - gh-87512: Fix subprocess.Popen.communicate() timeout handling on Windows when writing large input. Previously, the timeout was ignored during stdin writing, causing the method to block indefinitely if the child process did not consume input quickly. The stdin write is now performed in a background thread, allowing the timeout to be properly enforced. - gh-141473: When subprocess.Popen.communicate() was called with input and a timeout and is called for a second time after a TimeoutExpired exception before the process has died, it should no longer hang. - gh-59000: Fix pdb breakpoint resolution for class methods when the module defining the class is not imported. - gh-141570: Support file-like object raising OSError from fileno() in color detection (_colorize.can_colorize()). This can occur when sys.stdout is redirected. - gh-141659: Fix bad file descriptor errors from _posixsubprocess on AIX. - gh-141497: ipaddress: ensure that the methods IPv4Network.hosts() and IPv6Network.hosts() always return an iterator. - gh-140938: The statistics.stdev() and statistics.pstdev() functions now raise a ValueError when the input contains an infinity or a NaN. - gh-124111: Updated Tcl threading configuration in _tkinter to assume that threads are always available in Tcl 9 and later. - gh-137109: The os.fork and related forking APIs will no longer warn in the common case where Linux or macOS platform APIs return the number of threads in a process and find the answer to be 1 even when a os.register_at_fork() after_in_parent= callback (re)starts a thread. - gh-141314: Fix assertion failure in io.TextIOWrapper.tell() when reading files with standalone carriage return (\r) line endings. - gh-141311: Fix assertion failure in io.BytesIO.readinto() and undefined behavior arising when read position is above capcity in io.BytesIO. - gh-141141: Fix a thread safety issue with base64.b85decode(). Contributed by Benel Tayar. - gh-140911: collections: Ensure that the methods UserString.rindex() and UserString.index() accept collections.UserString instances as the sub argument. - gh-140797: The undocumented re.Scanner class now forbids regular expressions containing capturing groups in its lexicon patterns. Patterns using capturing groups could previously lead to crashes with segmentation fault. Use non-capturing groups (?:…) instead. - gh-140815: faulthandler now detects if a frame or a code object is invalid or freed. Patch by Victor Stinner. - gh-100218: Correctly set errno when socket.if_nametoindex() or socket.if_indextoname() raise an OSError. Patch by Bénédikt Tran. - gh-140875: Fix handling of unclosed character references (named and numerical) followed by the end of file in html.parser.HTMLParser with convert_charrefs=False. - gh-140734: multiprocessing: fix off-by-one error when checking the length of a temporary socket file path. Patch by Bénédikt Tran. - gh-140874: Bump the version of pip bundled in ensurepip to version 25.3 - gh-140691: In urllib.request, when opening a FTP URL fails because a data connection cannot be made, the control connection’s socket is now closed to avoid a ResourceWarning. - gh-103847: Fix hang when cancelling process created by asyncio.create_subprocess_exec() or asyncio.create_subprocess_shell(). Patch by Kumar Aditya. - gh-140590: Fix arguments checking for the functools.partial.__setstate__() that may lead to internal state corruption and crash. Patch by Sergey Miryanov. - gh-140634: Fix a reference counting bug in os.sched_param.__reduce__(). - gh-140633: Ignore AttributeError when setting a module’s __file__ attribute when loading an extension module packaged as Apple Framework. - gh-140593: xml.parsers.expat: Fix a memory leak that could affect users with ElementDeclHandler() set to a custom element declaration handler. Patch by Sebastian Pipping. - gh-140607: Inside io.RawIOBase.read(), validate that the count of bytes returned by io.RawIOBase.readinto() is valid (inside the provided buffer). - gh-138162: Fix logging.LoggerAdapter with merge_extra=True and without the extra argument. - gh-140474: Fix memory leak in array.array when creating arrays from an empty str and the u type code. - gh-140272: Fix memory leak in the clear() method of the dbm.gnu database. - gh-140041: Fix import of ctypes on Android and Cygwin when ABI flags are present. - gh-139905: Add suggestion to error message for typing.Generic subclasses when cls.__parameters__ is missing due to a parent class failing to call super().__init_subclass__() in its __init_subclass__. - gh-139845: Fix to not print KeyboardInterrupt twice in default asyncio REPL. - gh-139783: Fix inspect.getsourcelines() for the case when a decorator is followed by a comment or an empty line. - gh-70765: http.server: fix default handling of HTTP/0.9 requests in BaseHTTPRequestHandler. Previously, BaseHTTPRequestHandler.parse_request() incorrectly waited for headers in the request although those are not supported in HTTP/0.9. Patch by Bénédikt Tran. - gh-139391: Fix an issue when, on non-Windows platforms, it was not possible to gracefully exit a python -m asyncio process suspended by Ctrl+Z and later resumed by fg other than with kill. - gh-101828: Fix 'shift_jisx0213', 'shift_jis_2004', 'euc_jisx0213' and 'euc_jis_2004' codecs truncating null chars as they were treated as part of multi-character sequences. - gh-139246: fix: paste zero-width in default repl width is wrong. - gh-90949: Add SetAllocTrackerActivationThreshold() and SetAllocTrackerMaximumAmplification() to xmlparser objects to prevent use of disproportional amounts of dynamic memory from within an Expat parser. Patch by Bénédikt Tran. - gh-139065: Fix trailing space before a wrapped long word if the line length is exactly width in textwrap. - gh-138993: Dedent credits text. - gh-138859: Fix generic type parameterization raising a TypeError when omitting a ParamSpec that has a default which is not a list of types. - gh-138775: Use of python -m with base64 has been fixed to detect input from a terminal so that it properly notices EOF. - gh-98896: Fix a failure in multiprocessing resource_tracker when SharedMemory names contain colons. Patch by Rani Pinchuk. - gh-75989: tarfile.TarFile.extractall() and tarfile.TarFile.extract() now overwrite symlinks when extracting hardlinks. (Contributed by Alexander Enrique Urieles Nieto in gh-75989.) - gh-83424: Allows creating a ctypes.CDLL without name when passing a handle as an argument. - gh-136234: Fix asyncio.WriteTransport.writelines() to be robust to connection failure, by using the same behavior as write(). - gh-136057: Fixed the bug in pdb and bdb where next and step can’t go over the line if a loop exists in the line. - gh-135307: email: Fix exception in set_content() when encoding text and max_line_length is set to 0 or None (unlimited). - gh-134453: Fixed subprocess.Popen.communicate() input= handling of memoryview instances that were non-byte shaped on POSIX platforms. Those are now properly cast to a byte shaped view instead of truncating the input. Windows platforms did not have this bug. - gh-102431: Clarify constraints for “logical” arguments in methods of decimal.Context. * IDLE - gh-96491: Deduplicate version number in IDLE shell title bar after saving to a file. * Core and Builtins - gh-142048: Fix quadratically increasing garbage collection delays in free-threaded build. - gh-141930: When importing a module, use Python’s regular file object to ensure that writes to .pyc files are complete or an appropriate error is raised. - gh-120158: Fix inconsistent state when enabling or disabling monitoring events too many times. - gh-141579: Fix sys.activate_stack_trampoline() to properly support the perf_jit backend. Patch by Pablo Galindo. - gh-141312: Fix the assertion failure in the __setstate__ method of the range iterator when a non-integer argument is passed. Patch by Sergey Miryanov. - gh-140939: Fix memory leak when bytearray or bytes is formated with the %*b format with a large width that results in %a MemoryError. - gh-140530: Fix a reference leak when raise exc from cause fails. Patch by Bénédikt Tran. - gh-140576: Fixed crash in tokenize.generate_tokens() in case of specific incorrect input. Patch by Mikhail Efimov. - gh-140551: Fixed crash in dict if dict.clear() is called at the lookup stage. Patch by Mikhail Efimov and Inada Naoki. - gh-140471: Fix potential buffer overflow in ast.AST node initialization when encountering malformed _fields containing non-str. - gh-140406: Fix memory leak when an object’s __hash__() method returns an object that isn’t an int. - gh-140306: Fix memory leaks in cross-interpreter channel operations and shared namespace handling. - gh-140301: Fix memory leak of PyConfig in subinterpreters. - gh-140000: Fix potential memory leak when a reference cycle exists between an instance of typing.TypeAliasType, typing.TypeVar, typing.ParamSpec, or typing.TypeVarTuple and its __name__ attribute. Patch by Mikhail Efimov. - gh-139748: Fix reference leaks in error branches of functions accepting path strings or bytes such as compile() and os.system(). Patch by Bénédikt Tran. - gh-139516: Fix lambda colon erroneously start format spec in f-string in tokenizer. - gh-139640: Fix swallowing some syntax warnings in different modules if they accidentally have the same message and are emitted from the same line. Fix duplicated warnings in the finally block. - gh-137400: Fix a crash in the free threading build when disabling profiling or tracing across all threads with PyEval_SetProfileAllThreads() or PyEval_SetTraceAllThreads() or their Python equivalents threading.settrace_all_threads() and threading.setprofile_all_threads(). - gh-133400: Fixed Ctrl+D (^D) behavior in _pyrepl module to match old pre-3.13 REPL behavior. * C API - gh-140042: Removed the sqlite3_shutdown call that could cause closing connections for sqlite when used with multiple sub interpreters. - gh-140487: Fix Py_RETURN_NOTIMPLEMENTED in limited C API 3.11 and older: don’t treat Py_NotImplemented as immortal. Patch by Victor Stinner. libpython3_13-1_0-3.13.11-150700.4.36.1.x86_64.rpm python313-3.13.11-150700.4.36.1.src.rpm python313-3.13.11-150700.4.36.1.x86_64.rpm python313-base-3.13.11-150700.4.36.1.x86_64.rpm python313-core-3.13.11-150700.4.36.1.src.rpm python313-curses-3.13.11-150700.4.36.1.x86_64.rpm python313-dbm-3.13.11-150700.4.36.1.x86_64.rpm python313-devel-3.13.11-150700.4.36.1.x86_64.rpm python313-idle-3.13.11-150700.4.36.1.x86_64.rpm python313-tk-3.13.11-150700.4.36.1.x86_64.rpm python313-tools-3.13.11-150700.4.36.1.x86_64.rpm SUSE-SLE-Module-Python3-15-SP7-2026-220 moderate SUSE Updates SLE-Module-Python3 15-SP7 x86 64 This update for python-filelock fixes the following issues: - CVE-2025-68146: TOCTOU race condition may allow local attackers to corrupt or truncate arbitrary user files (bsc#1255244). - CVE-2026-22701: TOCTOU race condition in the SoftFileLock implementation (bsc#1256457). python-filelock-3.12.2-150400.10.8.1.src.rpm python311-filelock-3.12.2-150400.10.8.1.noarch.rpm SUSE-SLE-Module-Python3-15-SP7-2026-314 moderate SUSE Updates SLE-Module-Python3 15-SP7 x86 64 This update for python311 fixes the following issues: - CVE-2025-12084: prevent quadratic behavior in node ID cache clearing (bsc#1254997). - CVE-2025-13836: prevent reading an HTTP response from a server, if no read amount is specified, with using Content-Length per default as the length (bsc#1254400). - CVE-2025-13837: protect against OOM when loading malicious content (bsc#1254401). python311-3.11.14-150600.3.41.2.src.rpm python311-3.11.14-150600.3.41.2.x86_64.rpm python311-core-3.11.14-150600.3.41.2.src.rpm python311-curses-3.11.14-150600.3.41.2.x86_64.rpm python311-dbm-3.11.14-150600.3.41.2.x86_64.rpm python311-devel-3.11.14-150600.3.41.2.x86_64.rpm python311-idle-3.11.14-150600.3.41.2.x86_64.rpm python311-tk-3.11.14-150600.3.41.2.x86_64.rpm python311-tools-3.11.14-150600.3.41.2.x86_64.rpm SUSE-SLE-Module-Python3-15-SP7-2026-232 important SUSE Updates SLE-Module-Python3 15-SP7 x86 64 This update for pgadmin4 fixes the following issues: - CVE-2025-9636: Fixed Cross-Origin Opener Policy (COOP) vulnerability (bsc#1249151). pgadmin4-4.30-150300.3.24.1.src.rpm pgadmin4-web-4.30-150300.3.24.1.noarch.rpm SUSE-SLE-Module-Python3-15-SP7-2026-255 moderate SUSE Updates SLE-Module-Python3 15-SP7 x86 64 This update for python-urllib3 fixes the following issues: - CVE-2026-21441: Fixed excessive resource consumption during decompression of data in HTTP redirect responses (bsc#1256331) python-urllib3-2.0.7-150400.7.24.1.src.rpm python311-urllib3-2.0.7-150400.7.24.1.noarch.rpm SUSE-SLE-Module-Python3-15-SP7-2026-233 moderate SUSE Updates SLE-Module-Python3 15-SP7 x86 64 This update for python-virtualenv fixes the following issues: - CVE-2026-22702: Fixed local attacker can redirect file operations via TOCTOU race condition (bsc#1256458). python-virtualenv-20.22.0-150400.9.9.1.src.rpm python311-virtualenv-20.22.0-150400.9.9.1.noarch.rpm SUSE-SLE-Module-Python3-15-SP7-2026-271 important SUSE Updates SLE-Module-Python3 15-SP7 x86 64 This update for python-setuptools fixes the following issues: - Implement basic PEP 639 support, (jsc#PED-14457, bsc#1254255) python-setuptools-67.7.2-150400.3.22.1.src.rpm python311-setuptools-67.7.2-150400.3.22.1.noarch.rpm SUSE-SLE-Module-Python3-15-SP7-2026-251 important SUSE Updates SLE-Module-Python3 15-SP7 x86 64 This update for python-Brotli fixes the following issues: - Add max-length-decompression (bsc#1254867, bsc#1256017) python-Brotli-1.1.0-150400.7.8.1.src.rpm python311-Brotli-1.1.0-150400.7.8.1.x86_64.rpm SUSE-SLE-Module-Python3-15-SP7-2026-252 important SUSE Updates SLE-Module-Python3 15-SP7 x86 64 This update for python-pyasn1 fixes the following issues: - CVE-2026-23490: Fixed Denial-of-Service issue that may lead to memory exhaustion from malformed RELATIVE-OID with excessive continuation octets (bsc#1256902) python-pyasn1-0.5.0-150400.12.10.1.src.rpm python311-pyasn1-0.5.0-150400.12.10.1.noarch.rpm SUSE-SLE-Module-Python3-15-SP7-2026-605 moderate SUSE Updates SLE-Module-Python3 15-SP7 x86 64 This update for libxml2 fixes the following issues: - CVE-2026-0990: Fixed a call stack overflow leading to application crash due to infinite recursion in `xmlCatalogXMLResolveURI`. (bsc#1256807, bsc#1256811) - CVE-2026-0992: Fixed an excessive resource consumption when processing XML catalogs due to exponential behavior. (bsc#1256809, bsc#1256812) - CVE-2026-1757: Fixed a memory leak in the `xmllint` interactive shell. (bsc#1257594, bsc#1257595) - CVE-2025-10911: Fixed a use-after-free with key data stored cross-RVT. (bsc#1250553) - CVE-2025-8732: Fixed an infinite recursion in catalog parsing functions when processing malformed SGML catalog files. (bsc#1247858) - CVE-2026-0989: Fixe a call stack exhaustion leading to application crash due to RelaxNG parser not limiting the recursion depth. (bsc#1256805, bsc#1256810) libxml2-python-2.12.10-150700.4.11.1.src.rpm python311-libxml2-2.12.10-150700.4.11.1.x86_64.rpm SUSE-SLE-Module-Python3-15-SP7-2026-367 moderate SUSE Updates SLE-Module-Python3 15-SP7 x86 64 This update for python-urllib3 fixes the following issues: - CVE-2025-66471: excessive resource consumption via decompression of highly compressed data in Streaming API (bsc#1254867). - CVE-2025-66418: resource exhaustion via unbounded number of links in the decompression chain (bsc#1254866). python-urllib3-2.0.7-150400.7.27.1.src.rpm python311-urllib3-2.0.7-150400.7.27.1.noarch.rpm SUSE-SLE-Module-Python3-15-SP7-2026-374 moderate SUSE Updates SLE-Module-Python3 15-SP7 x86 64 This update for protobuf fixes the following issues: - CVE-2026-0994: Fixed google.protobuf.Any recursion depth bypass in Python json_format.ParseDict (bsc#1257173). protobuf-25.1-150600.16.16.1.src.rpm python311-protobuf-4.25.1-150600.16.16.1.x86_64.rpm SUSE-SLE-Module-Python3-15-SP7-2026-635 moderate SUSE Updates SLE-Module-Python3 15-SP7 x86 64 This update for python-urllib3_1 fixes the following issues: - CVE-2025-66471: excessive resource consumption via decompression of highly compressed data in Streaming API (bsc#1254867). - CVE-2025-66418: resource exhaustion via unbounded number of links in the decompression chain (bsc#1254866). - CVE-2026-21441: excessive resource consumption during decompression of data in HTTP redirect responses (bsc#1256331). python-urllib3_1-1.26.18-150600.3.6.1.src.rpm python311-urllib3_1-1.26.18-150600.3.6.1.noarch.rpm SUSE-SLE-Module-Python3-15-SP7-2026-858 important SUSE Updates SLE-Module-Python3 15-SP7 x86 64 This update for python-aiohttp fixes the following issues: - CVE-2025-69228: Fixed denial of service through large payloads (bsc#1256022). - CVE-2025-69226: Fixed brute-force leak of internal static file path components (bsc#1256020). - CVE-2025-69224: Fixed unicode processing of header values could cause parsing discrepancies (bsc#1256018). - CVE-2025-69223: Fixed aiohttp HTTP Parser auto_decompress feature susceptible to zip bomb (bsc#1256017). - CVE-2025-69227: Fixed DoS when bypassing asserts (bsc#1256021). - CVE-2025-69225: Fixed unicode match groups in regexes for ASCII protocol elements (bsc#1256019). - CVE-2025-69229: Fixed DoS through chunked messages (bsc#1256023). python-aiohttp-3.9.3-150400.10.36.1.src.rpm python311-aiohttp-3.9.3-150400.10.36.1.x86_64.rpm SUSE-SLE-Module-Python3-15-SP7-2026-424 important SUSE Updates SLE-Module-Python3 15-SP7 x86 64 This update for python-wheel fixes the following issues: - CVE-2026-24049: Fixed absent path sanitization can cause arbitrary file permission modification (bsc#1257100). python-wheel-0.42.0-150600.3.3.1.src.rpm python311-wheel-0.42.0-150600.3.3.1.noarch.rpm SUSE-SLE-Module-Python3-15-SP7-2026-425 important SUSE Updates SLE-Module-Python3 15-SP7 x86 64 This update for python313-wheel fixes the following issues: - CVE-2026-24049: Fixed absent path sanitization can cause arbitrary file permission modification (bsc#1257100). python313-wheel-0.44.0-150700.3.3.1.noarch.rpm python313-wheel-0.44.0-150700.3.3.1.src.rpm SUSE-SLE-Module-Python3-15-SP7-2026-601 moderate SUSE Updates SLE-Module-Python3 15-SP7 x86 64 This update for aws-cli, python-boto3, python-botocore, python-s3transfer fixes the following issues: This updates the AWS CLI stack to the 2026-Q1 quartlery update. python-boto3-1.42.27-150400.27.13.1.src.rpm python-botocore-1.42.27-150400.41.13.1.src.rpm python-s3transfer-0.16.0-150400.13.10.1.src.rpm python311-boto3-1.42.27-150400.27.13.1.noarch.rpm python311-botocore-1.42.27-150400.41.13.1.noarch.rpm python311-s3transfer-0.16.0-150400.13.10.1.noarch.rpm SUSE-SLE-Module-Python3-15-SP7-2026-805 low SUSE Updates SLE-Module-Python3 15-SP7 x86 64 This update for python-pip fixes the following issues: - CVE-2026-1703: Fixed a potential path traversal in python-pip. (bsc#1257599) python-pip-22.3.1-150400.17.19.1.src.rpm python311-pip-22.3.1-150400.17.19.1.noarch.rpm SUSE-SLE-Module-Python3-15-SP7-2026-799 low SUSE Updates SLE-Module-Python3 15-SP7 x86 64 This update for python-passlib fixes the following issues: - Ship python311-passlib to the s390x architecture, no source changes. (PED-13380) python-passlib-1.7.4-150600.12.2.1.src.rpm python311-passlib-1.7.4-150600.12.2.1.noarch.rpm SUSE-SLE-Module-Python3-15-SP7-2026-642 important SUSE Updates SLE-Module-Python3 15-SP7 x86 64 This update for python313 fixes the following issues: Update to Python 3.13.12 - CVE-2026-0672: Fixed a HTTP header injection via user-controlled cookie values and parameters when using http.cookies.Morsel. (bsc#1257031) - CVE-2026-0865: Fixed a bug where a user-controlled header containing newlines can allow injecting HTTP headers. (bsc#1257042) - CVE-2025-15282: Fixed a bug where a user-controlled data URLs parsed may allow injecting headers. (bsc#1257046) - CVE-2025-11468: Fixed a header injection when folding a long comment in an email header containing exclusively unfoldable characters. (bsc#1257029) - CVE-2026-1299: Fixed header injection when an email is serialized due to improper newline quoting in `BytesGenerator`: Fixed a header injection when folding a long comment in an email header containing exclusively unfoldable characters. (bsc#1257029) libpython3_13-1_0-3.13.12-150700.4.39.1.x86_64.rpm python313-3.13.12-150700.4.39.1.src.rpm python313-3.13.12-150700.4.39.1.x86_64.rpm python313-base-3.13.12-150700.4.39.1.x86_64.rpm python313-core-3.13.12-150700.4.39.1.src.rpm python313-curses-3.13.12-150700.4.39.1.x86_64.rpm python313-dbm-3.13.12-150700.4.39.1.x86_64.rpm python313-devel-3.13.12-150700.4.39.1.x86_64.rpm python313-idle-3.13.12-150700.4.39.1.x86_64.rpm python313-tk-3.13.12-150700.4.39.1.x86_64.rpm python313-tools-3.13.12-150700.4.39.1.x86_64.rpm SUSE-SLE-Module-Python3-15-SP7-2026-828 moderate SUSE Updates SLE-Module-Python3 15-SP7 x86 64 This update for python-Authlib fixes the following issues: - CVE-2025-68158: Fixed 1-click account takeover in applications that use the Authlib library (bsc#1256414) python-Authlib-1.3.1-150600.3.14.1.src.rpm python311-Authlib-1.3.1-150600.3.14.1.noarch.rpm SUSE-SLE-Module-Python3-15-SP7-2026-767 important SUSE Updates SLE-Module-Python3 15-SP7 x86 64 This update for python311 fixes the following issues: - CVE-2025-11468: header injection when folding a long comment in an email header containing exclusively unfoldable characters (bsc#1257029). - CVE-2025-12781: inadequate parameter check can cause data integrity issues (bsc#1257108). - CVE-2025-15282: user-controlled data URLs parsed may allow injecting headers (bsc#1257046). - CVE-2025-15366: user-controlled command can allow additional commands injected using newlines (bsc#1257044). - CVE-2025-15367: control characters may allow the injection of additional commands (bsc#1257041). - CVE-2026-0672: HTTP header injection via user-controlled cookie values and parameters when using http.cookies.Morsel (bsc#1257031). - CVE-2026-0865: user-controlled header containing newlines can allow injecting HTTP headers (bsc#1257042). python311-3.11.14-150600.3.44.1.src.rpm python311-3.11.14-150600.3.44.1.x86_64.rpm python311-core-3.11.14-150600.3.44.1.src.rpm python311-curses-3.11.14-150600.3.44.1.x86_64.rpm python311-dbm-3.11.14-150600.3.44.1.x86_64.rpm python311-devel-3.11.14-150600.3.44.1.x86_64.rpm python311-idle-3.11.14-150600.3.44.1.x86_64.rpm python311-tk-3.11.14-150600.3.44.1.x86_64.rpm python311-tools-3.11.14-150600.3.44.1.x86_64.rpm SUSE-SLE-Module-Python3-15-SP7-2026-849 moderate SUSE Updates SLE-Module-Python3 15-SP7 x86 64 This update for python-Flask fixes the following issue: - CVE-2026-27205: information disclosure due to Flask session not adding the `Vary: Cookie` header (bsc#1258700). python-Flask-2.3.2-150400.3.9.1.src.rpm python311-Flask-2.3.2-150400.3.9.1.noarch.rpm SUSE-SLE-Module-Python3-15-SP7-2026-1559 moderate SUSE Updates SLE-Module-Python3 15-SP7 x86 64 This update for python-apache-libcloud fixes the following issues: python-apache-libcloud: - Deliver the Python 3.11 flavor as python311-apache-libcloud (jsc#PED-14450) - Package version at 3.8.0 python3-apache-libcloud: - Deliver the Python 3.6 flavor as python3-apache-libcloud (jsc#PED-14450) - Source package was renamed from python-apache-libcloud to python3-apache-libcloud to avoid conflicts with the Python 3.11 flavor - Package version at 3.3.1 python-apache-libcloud-3.8.0-150400.6.5.1.src.rpm python311-apache-libcloud-3.8.0-150400.6.5.1.noarch.rpm SUSE-SLE-Module-Python3-15-SP7-2026-1476 low SUSE Updates SLE-Module-Python3 15-SP7 x86 64 This update for python-lib4sbom fixes the following issues: - Add python-lib4sbom to SLES (jsc#PED-15491) python-lib4sbom-0.9.4-150700.15.3.1.src.rpm python311-lib4sbom-0.9.4-150700.15.3.1.noarch.rpm SUSE-SLE-Module-Python3-15-SP7-2026-1421 moderate SUSE Updates SLE-Module-Python3 15-SP7 x86 64 This update for python-CairoSVG fixes the following issue: - CVE-2026-31899: denial of service via recursive <use> element amplification (bsc#1259690). python-CairoSVG-2.7.1-150400.9.6.1.src.rpm python311-CairoSVG-2.7.1-150400.9.6.1.noarch.rpm SUSE-SLE-Module-Python3-15-SP7-2026-1349 important SUSE Updates SLE-Module-Python3 15-SP7 x86 64 This update for python311 fixes the following issues: - Updated to Python 3.11.15 - CVE-2025-6075: If the value passed to os.path.expandvars() is user-controlled a performance degradation is possible when expanding environment variables (bsc#1252974). - CVE-2025-11468: header injection when folding a long comment in an email header containing exclusively unfoldable characters (bsc#1257029). - CVE-2025-12084: cpython: python: cpython: Quadratic algorithm in xml.dom.minidom leads to denial of service (bsc#1254997). - CVE-2025-13462: incorrect parsing of TarInfo header when GNU long name and type AREGTYPE are combined (bsc#1259611). - CVE-2025-13836: When reading an HTTP response from a server, if no read amount is specified, the default behavior will be to use Content-Length (bsc#1254400). - CVE-2025-13837: When loading a plist file, the plistlib module reads data in size specified by the file itself, meaning a malicious file can cause OOM and DoS issues (bsc#1254401). - CVE-2025-15282: user-controlled data URLs parsed may allow injecting headers (bsc#1257046). - CVE-2026-0672: HTTP header injection via user-controlled cookie values and parameters when using http.cookies.Morsel (bsc#1257031). - CVE-2026-0865: user-controlled header containing newlines can allow injecting HTTP headers (bsc#1257042). - CVE-2026-1299: header injection when an email is serialized due to improper newline quoting in `BytesGenerator` (bsc#1257181). - CVE-2026-2297: cpython: incorrectly handled hook in FileLoader can lead to validation bypass (bsc#1259240). - CVE-2026-3479: python: improper resource argument validation can allow path traversal (bsc#1259989). - CVE-2026-3644: incomplete control character validation in http.cookies (bsc#1259734). - CVE-2026-4224: C stack overflow when parsing XML with deeply nested DTD content models (bsc#1259735). - CVE-2026-4519: leading dashes in URLs are accepted by the `webbrowser.open()` API and allow for web browser command line option injection (bsc#1260026). python311-3.11.15-150600.3.53.1.src.rpm python311-3.11.15-150600.3.53.1.x86_64.rpm python311-core-3.11.15-150600.3.53.1.src.rpm python311-curses-3.11.15-150600.3.53.1.x86_64.rpm python311-dbm-3.11.15-150600.3.53.1.x86_64.rpm python311-devel-3.11.15-150600.3.53.1.x86_64.rpm python311-idle-3.11.15-150600.3.53.1.x86_64.rpm python311-tk-3.11.15-150600.3.53.1.x86_64.rpm python311-tools-3.11.15-150600.3.53.1.x86_64.rpm SUSE-SLE-Module-Python3-15-SP7-2026-975 critical SUSE Updates SLE-Module-Python3 15-SP7 x86 64 This update for python-Authlib fixes the following issues: - CVE-2026-27962: JWS `deserialize_compact()` allows for signature bypass by accepting user-controlled embedded JWK as verification key (bsc#1259738). - CVE-2026-28490: cryptographic padding oracle in JWE RSA1_5 key management algorithm (bsc#1259736). - CVE-2026-28498: fail-open in behavior OIDC hash validation allows for bypass mandatory integrity protections (bsc#1259737). python-Authlib-1.3.1-150600.3.17.1.src.rpm python311-Authlib-1.3.1-150600.3.17.1.noarch.rpm SUSE-SLE-Module-Python3-15-SP7-2026-1064 important SUSE Updates SLE-Module-Python3 15-SP7 x86 64 This update for python-tornado6 fixes the following issues: - CVE-2026-31958: parsing large multipart bodies with many parts can cause a denial of service (bsc#1259553). - incomplete validation of cookie attributes allows for injection of user-controlled values in other cookie attributes (bsc#1259630). python-tornado6-6.3.2-150400.9.15.1.src.rpm python311-tornado6-6.3.2-150400.9.15.1.x86_64.rpm SUSE-SLE-Module-Python3-15-SP7-2026-1075 important SUSE Updates SLE-Module-Python3 15-SP7 x86 64 This update for python-pyasn1 fixes the following issues: - CVE-2026-30922: Denial of Service via Unbounded Recursion (bsc#1259803). python-pyasn1-0.5.0-150400.12.13.1.src.rpm python311-pyasn1-0.5.0-150400.12.13.1.noarch.rpm SUSE-SLE-Module-Python3-15-SP7-2026-1389 important SUSE Updates SLE-Module-Python3 15-SP7 x86 64 This update for python-PyJWT fixes the following issues: - CVE-2026-32597: Fixed unknown `crit` header extensions accepts (bsc#1259616). python-PyJWT-2.8.0-150400.8.10.1.src.rpm python311-PyJWT-2.8.0-150400.8.10.1.noarch.rpm SUSE-SLE-Module-Python3-15-SP7-2026-1192 important SUSE Updates SLE-Module-Python3 15-SP7 x86 64 This update for python-pyOpenSSL fixes the following issues: - CVE-2026-27448: unhandled exception can result in connection not being cancelled (bsc#1259804). - CVE-2026-27459: large cookie value can lead to a buffer overflow (bsc#1259808). python-pyOpenSSL-23.2.0-150400.3.13.1.src.rpm python311-pyOpenSSL-23.2.0-150400.3.13.1.noarch.rpm SUSE-SLE-Module-Python3-15-SP7-2026-1647 moderate SUSE Updates SLE-Module-Python3 15-SP7 x86 64 This update for python-requests fixes the following issues: - CVE-2026-25645: `extract_zipped_paths()` uses predictable filenames when extracting files from zip archives and reuses target files that already exist without validation (bsc#1260589). python-requests-2.31.0-150400.6.21.1.src.rpm python311-requests-2.31.0-150400.6.21.1.noarch.rpm SUSE-SLE-Module-Python3-15-SP7-2026-1436 moderate SUSE Updates SLE-Module-Python3 15-SP7 x86 64 This update for python-ecdsa fixes the following issues: - CVE-2026-33936: issue in the low-level DER parsing functions can cause unexpected exceptions to be raised from the public API functions (bsc#1261009). python-ecdsa-0.18.0-150400.12.6.1.src.rpm python311-ecdsa-0.18.0-150400.12.6.1.noarch.rpm SUSE-SLE-Module-Python3-15-SP7-2026-1666 low SUSE Updates SLE-Module-Python3 15-SP7 x86 64 This update for python-Pygments fixes the following issues: - CVE-2026-4539: inefficient regex for GUID and ID pattern matching can lead to archetype lexer ReDoS (bsc#1260796). python-Pygments-2.15.1-150400.7.10.1.src.rpm python311-Pygments-2.15.1-150400.7.10.1.noarch.rpm SUSE-SLE-Module-Python3-15-SP7-2026-1354 important SUSE Updates SLE-Module-Python3 15-SP7 x86 64 This update for python313 fixes the following issues: - Update to v3.13.13 - CVE-2025-13462: incorrect parsing of TarInfo header when GNU long name and type AREGTYPE are combined (bsc#1259611). - CVE-2026-2297: cpython: incorrectly handled hook in FileLoader can lead to validation bypass (bsc#1259240). - CVE-2026-3479: python: improper resource argument validation can allow path traversal (bsc#1259989). - CVE-2026-3644: incomplete control character validation in http.cookies (bsc#1259734). - CVE-2026-4224: C stack overflow when parsing XML with deeply nested DTD content models (bsc#1259735). - CVE-2026-4519: leading dashes in URLs are accepted by the `webbrowser.open()` API and allow for web browser command line option injection (bsc#1260026). libpython3_13-1_0-3.13.13-150700.4.45.1.x86_64.rpm python313-3.13.13-150700.4.45.1.src.rpm python313-3.13.13-150700.4.45.1.x86_64.rpm python313-base-3.13.13-150700.4.45.1.x86_64.rpm python313-core-3.13.13-150700.4.45.1.src.rpm python313-curses-3.13.13-150700.4.45.1.x86_64.rpm python313-dbm-3.13.13-150700.4.45.1.x86_64.rpm python313-devel-3.13.13-150700.4.45.1.x86_64.rpm python313-idle-3.13.13-150700.4.45.1.x86_64.rpm python313-tk-3.13.13-150700.4.45.1.x86_64.rpm python313-tools-3.13.13-150700.4.45.1.x86_64.rpm