Terraform AWS Provider v6.50.0 adds new resources and bug fixes
HashiCorp's Terraform AWS Provider has released version 6.50.0, introducing several new resources including AWS Bedrock Agent Core policy and ECS daemon definitions. This update also enhances existing resources like the Bedrock Agent Gateway Target and includes numerous bug fixes for services such as Secrets Manager and CloudWatch. The release primarily impacts users managing AWS infrastructure with Terraform, offering expanded capabilities and improved stability.
- →New List Resource: aws_bedrockagentcore_policy
- →New List Resource: aws_cloudwatch_log_s3_table_integration_source
- →New List Resource: aws_ecs_daemon
- →New List Resource: aws_ecs_daemon_task_definition
- →New Resource: aws_bedrockagentcore_policy
Features (9) ›
- aws_bedrockagentcore_policy New List Resource: aws_bedrockagentcore_policy
- aws_cloudwatch_log_s3_table_integration_source New List Resource: aws_cloudwatch_log_s3_table_integration_source
- aws_ecs_daemon New List Resource: aws_ecs_daemon
- aws_ecs_daemon_task_definition New List Resource: aws_ecs_daemon_task_definition
- aws_bedrockagentcore_policy New Resource: aws_bedrockagentcore_policy
- aws_cloudwatch_log_s3_table_integration_source New Resource: aws_cloudwatch_log_s3_table_integration_source
- aws_ecs_daemon New Resource: aws_ecs_daemon
- aws_ecs_daemon_task_definition New Resource: aws_ecs_daemon_task_definition
- aws_observabilityadmin_s3_table_integration New Resource: aws_observabilityadmin_s3_table_integration
Enhancements (6) ›
- provider Add Linux s390x support
- aws_bedrockagentcore_agent_runtime Add AGUI as a valid value for protocol_configuration.server_protocol
- aws_bedrockagentcore_gateway Add policy_engine_configuration configuration block
- aws_bedrockagentcore_gateway_target Add listing_mode argument to the target_configuration.mcp.mcp_server configuration block
- aws_bedrockagentcore_gateway_target Add private_endpoint argument to support private connectivity to VPC-hosted MCP servers via Amazon VPC Lattice
- aws_bedrockagentcore_memory Add indexed_key and stream_delivery_resources arguments
Fixes (13) ›
- aws_secretsmanager_secret_version Fix eventual consistency issues that could result in couldn't find resource errors when reading a version immediately after creation
- aws_cloudwatch_log_subscription_filter
Retry ValidationException: Make sure you have given CloudWatch Logs permission to assume the provided role IAM eventual consistency errors on Create and Update
- aws_datazone_project Fix import separator to match the expected format
- aws_default_route_table Fix perpetual drift on route.gateway_id when route.odb_network_arn is configured
- aws_ecs_express_gateway_service
Fix "inconsistent result after apply" error for network_configuration[0].security_groups when using network_configuration. ec2:DescribeSecurityGroups IAM permission is newly required
- aws_ecs_express_gateway_service Fix Resource Already Exists error when recreating a service after deletion
- aws_elasticsearch_domain Fix unexpected state error during engine version upgrade
- aws_kinesis_firehose_delivery_stream
Fix InvalidArgumentException errors when creating or updating extended_s3_configuration in AWS partitions that do not support the custom_time_zone and file_extension attributes
- aws_route Fix perpetual drift on gateway_id when odb_network_arn is configured
- aws_route_table Fix perpetual drift on route.gateway_id when route.odb_network_arn is configured
- aws_secretsmanager_secret_version
Fix Provider produced inconsistent final plan errors when secret_string or secret_string_wo_version references a resource being created or replaced in the same apply
- aws_secretsmanager_secret_version Fix eventual consistency issues on resource creation that could result in version_stages being empty in state
- aws_secretsmanager_secret_version
Fix unnecessary resource replacement when switching between secret_string and secret_string_wo (or vice versa) without changing the secret value
Notes (1) ›
- aws_bedrockagentcore_gateway_target Because we cannot easily test the behavior of private_endpoint, it is best effort and we ask for community help in testing
https://github.com/hashicorp/terraform-provider-aws/releases/tag/v6.50.0