aws-sdk-bedrockagentcorecontrol 1.13.0 → 1.15.0

checksums.yaml

@@ -1,7 +1,7 @@
 ---
 SHA256:
-  metadata.gz: 2a0209ac8921a6957e03f29ca82d46b5e08c3297ab5bf9b04ccbfe7b2608092a
-  data.tar.gz: 6ce02e3096c35376499187a8e3a31693c4cb20ce1854d9fb62f0be757d81e6c7
+  metadata.gz: 3c2b42916b4c3f1f0d7583d96941910bfbf219d88550116548cc7e7ea2a375f9
+  data.tar.gz: ed0b344ca09f8fc2c815c4e713b3525bd1987fee68b2d68fbda9ca5e1645b94b
 SHA512:
-  metadata.gz: 1eeb30929c8f2f70b2fb5ae66e55ff1867266e67ae2aff06648a7400303d9821e62893272a4822d518ca16f71e0170f43f4179fbe4a88c9021ffe75732b802bd
-  data.tar.gz: e367b803c6e037128846f40a7abf1a3e750e9df457f04a53c492a86ba9c67fd942e89a14b572383652d20845e75a98f3916c744bfc7d04fad81d094755734273
+  metadata.gz: e2d099c110256650d24d6586aecac3dfaf4f9e62a8b1c55a582adcde0cb912d7cde55121ba8a12c05845e413ae2a67e40c9fc6a026fed4ae14e28a30763026e2
+  data.tar.gz: a5f789b15f95b501e788767d30525883d99a4bed6d591100b80e73490c3dc8824a6125c793ac2b0e003839a394760ac24d76c9e52f7753c4b2bf7d979ba98311

data/CHANGELOG.md

@@ -1,6 +1,16 @@
 Unreleased Changes
 ------------------
 
+1.15.0 (2025-11-21)
+------------------
+
+* Feature - Support for agentcore gateway interceptor configurations and NONE authorizer type
+
+1.14.0 (2025-11-03)
+------------------
+
+* Feature - Adds support for direct code deploy with CreateAgentRuntime and UpdateAgentRuntime
+
 1.13.0 (2025-10-30)
 ------------------
 

data/VERSION

@@ -1 +1 @@
-1.13.0
+1.15.0

data/lib/aws-sdk-bedrockagentcorecontrol/client.rb

@@ -539,6 +539,17 @@ module Aws::BedrockAgentCoreControl
     #       container_configuration: {
     #         container_uri: "RuntimeContainerUri", # required
     #       },
+    #       code_configuration: {
+    #         code: { # required
+    #           s3: {
+    #             bucket: "S3LocationBucketString", # required
+    #             prefix: "S3LocationPrefixString", # required
+    #             version_id: "S3LocationVersionIdString",
+    #           },
+    #         },
+    #         runtime: "PYTHON_3_10", # required, accepts PYTHON_3_10, PYTHON_3_11, PYTHON_3_12, PYTHON_3_13
+    #         entry_point: ["entryPoint"], # required
+    #       },
     #     },
     #     role_arn: "RoleArn", # required
     #     network_configuration: { # required
@@ -772,6 +783,7 @@ module Aws::BedrockAgentCoreControl
     #       s3_location: {
     #         bucket: "S3LocationBucketString", # required
     #         prefix: "S3LocationPrefixString", # required
+    #         version_id: "S3LocationVersionIdString",
     #       },
     #     },
     #     browser_signing: {
@@ -917,6 +929,8 @@ module Aws::BedrockAgentCoreControl
     #
     #   * `AWS_IAM` - Authorize with your Amazon Web Services IAM credentials.
     #
+    #   * `NONE` - No authorization
+    #
     # @option params [Types::AuthorizerConfiguration] :authorizer_configuration
     #   The authorizer configuration for the gateway. Required if
     #   `authorizerType` is `CUSTOM_JWT`.
@@ -925,6 +939,11 @@ module Aws::BedrockAgentCoreControl
     #   The Amazon Resource Name (ARN) of the KMS key used to encrypt data
     #   associated with the gateway.
     #
+    # @option params [Array<Types::GatewayInterceptorConfiguration>] :interceptor_configurations
+    #   A list of configuration settings for a gateway interceptor. Gateway
+    #   interceptors allow custom code to be invoked during gateway
+    #   invocations.
+    #
     # @option params [String] :exception_level
     #   The level of detail in error messages returned when invoking the
     #   gateway.
@@ -956,6 +975,7 @@ module Aws::BedrockAgentCoreControl
     #   * {Types::CreateGatewayResponse#authorizer_type #authorizer_type} => String
     #   * {Types::CreateGatewayResponse#authorizer_configuration #authorizer_configuration} => Types::AuthorizerConfiguration
     #   * {Types::CreateGatewayResponse#kms_key_arn #kms_key_arn} => String
+    #   * {Types::CreateGatewayResponse#interceptor_configurations #interceptor_configurations} => Array&lt;Types::GatewayInterceptorConfiguration&gt;
     #   * {Types::CreateGatewayResponse#workload_identity_details #workload_identity_details} => Types::WorkloadIdentityDetails
     #   * {Types::CreateGatewayResponse#exception_level #exception_level} => String
     #
@@ -974,7 +994,7 @@ module Aws::BedrockAgentCoreControl
     #         search_type: "SEMANTIC", # accepts SEMANTIC
     #       },
     #     },
-    #     authorizer_type: "CUSTOM_JWT", # required, accepts CUSTOM_JWT, AWS_IAM
+    #     authorizer_type: "CUSTOM_JWT", # required, accepts CUSTOM_JWT, AWS_IAM, NONE
     #     authorizer_configuration: {
     #       custom_jwt_authorizer: {
     #         discovery_url: "DiscoveryUrl", # required
@@ -983,6 +1003,19 @@ module Aws::BedrockAgentCoreControl
     #       },
     #     },
     #     kms_key_arn: "KmsKeyArn",
+    #     interceptor_configurations: [
+    #       {
+    #         interceptor: { # required
+    #           lambda: {
+    #             arn: "LambdaFunctionArn", # required
+    #           },
+    #         },
+    #         interception_points: ["REQUEST"], # required, accepts REQUEST, RESPONSE
+    #         input_configuration: {
+    #           pass_request_headers: false, # required
+    #         },
+    #       },
+    #     ],
     #     exception_level: "DEBUG", # accepts DEBUG
     #     tags: {
     #       "TagKey" => "TagValue",
@@ -1007,13 +1040,18 @@ module Aws::BedrockAgentCoreControl
     #   resp.protocol_configuration.mcp.supported_versions[0] #=> String
     #   resp.protocol_configuration.mcp.instructions #=> String
     #   resp.protocol_configuration.mcp.search_type #=> String, one of "SEMANTIC"
-    #   resp.authorizer_type #=> String, one of "CUSTOM_JWT", "AWS_IAM"
+    #   resp.authorizer_type #=> String, one of "CUSTOM_JWT", "AWS_IAM", "NONE"
     #   resp.authorizer_configuration.custom_jwt_authorizer.discovery_url #=> String
     #   resp.authorizer_configuration.custom_jwt_authorizer.allowed_audience #=> Array
     #   resp.authorizer_configuration.custom_jwt_authorizer.allowed_audience[0] #=> String
     #   resp.authorizer_configuration.custom_jwt_authorizer.allowed_clients #=> Array
     #   resp.authorizer_configuration.custom_jwt_authorizer.allowed_clients[0] #=> String
     #   resp.kms_key_arn #=> String
+    #   resp.interceptor_configurations #=> Array
+    #   resp.interceptor_configurations[0].interceptor.lambda.arn #=> String
+    #   resp.interceptor_configurations[0].interception_points #=> Array
+    #   resp.interceptor_configurations[0].interception_points[0] #=> String, one of "REQUEST", "RESPONSE"
+    #   resp.interceptor_configurations[0].input_configuration.pass_request_headers #=> Boolean
     #   resp.workload_identity_details.workload_identity_arn #=> String
     #   resp.exception_level #=> String, one of "DEBUG"
     #
@@ -1644,6 +1682,14 @@ module Aws::BedrockAgentCoreControl
     # @option params [required, String] :agent_runtime_id
     #   The unique identifier of the AgentCore Runtime to delete.
     #
+    # @option params [String] :client_token
+    #   A unique, case-sensitive identifier to ensure that the operation
+    #   completes no more than one time. If this token matches a previous
+    #   request, the service ignores the request but does not return an error.
+    #
+    #   **A suitable default value is auto-generated.** You should normally
+    #   not need to pass this option.**
+    #
     # @return [Types::DeleteAgentRuntimeResponse] Returns a {Seahorse::Client::Response response} object which responds to the following methods:
     #
     #   * {Types::DeleteAgentRuntimeResponse#status #status} => String
@@ -1653,6 +1699,7 @@ module Aws::BedrockAgentCoreControl
     #
     #   resp = client.delete_agent_runtime({
     #     agent_runtime_id: "AgentRuntimeId", # required
+    #     client_token: "ClientToken",
     #   })
     #
     # @example Response structure
@@ -2026,6 +2073,12 @@ module Aws::BedrockAgentCoreControl
     #   resp.description #=> String
     #   resp.workload_identity_details.workload_identity_arn #=> String
     #   resp.agent_runtime_artifact.container_configuration.container_uri #=> String
+    #   resp.agent_runtime_artifact.code_configuration.code.s3.bucket #=> String
+    #   resp.agent_runtime_artifact.code_configuration.code.s3.prefix #=> String
+    #   resp.agent_runtime_artifact.code_configuration.code.s3.version_id #=> String
+    #   resp.agent_runtime_artifact.code_configuration.runtime #=> String, one of "PYTHON_3_10", "PYTHON_3_11", "PYTHON_3_12", "PYTHON_3_13"
+    #   resp.agent_runtime_artifact.code_configuration.entry_point #=> Array
+    #   resp.agent_runtime_artifact.code_configuration.entry_point[0] #=> String
     #   resp.protocol_configuration.server_protocol #=> String, one of "MCP", "HTTP", "A2A"
     #   resp.environment_variables #=> Hash
     #   resp.environment_variables["EnvironmentVariableKey"] #=> String
@@ -2176,6 +2229,7 @@ module Aws::BedrockAgentCoreControl
     #   resp.recording.enabled #=> Boolean
     #   resp.recording.s3_location.bucket #=> String
     #   resp.recording.s3_location.prefix #=> String
+    #   resp.recording.s3_location.version_id #=> String
     #   resp.browser_signing.enabled #=> Boolean
     #   resp.status #=> String, one of "CREATING", "CREATE_FAILED", "READY", "DELETING", "DELETE_FAILED", "DELETED"
     #   resp.failure_reason #=> String
@@ -2263,6 +2317,7 @@ module Aws::BedrockAgentCoreControl
     #   * {Types::GetGatewayResponse#authorizer_type #authorizer_type} => String
     #   * {Types::GetGatewayResponse#authorizer_configuration #authorizer_configuration} => Types::AuthorizerConfiguration
     #   * {Types::GetGatewayResponse#kms_key_arn #kms_key_arn} => String
+    #   * {Types::GetGatewayResponse#interceptor_configurations #interceptor_configurations} => Array&lt;Types::GatewayInterceptorConfiguration&gt;
     #   * {Types::GetGatewayResponse#workload_identity_details #workload_identity_details} => Types::WorkloadIdentityDetails
     #   * {Types::GetGatewayResponse#exception_level #exception_level} => String
     #
@@ -2290,13 +2345,18 @@ module Aws::BedrockAgentCoreControl
     #   resp.protocol_configuration.mcp.supported_versions[0] #=> String
     #   resp.protocol_configuration.mcp.instructions #=> String
     #   resp.protocol_configuration.mcp.search_type #=> String, one of "SEMANTIC"
-    #   resp.authorizer_type #=> String, one of "CUSTOM_JWT", "AWS_IAM"
+    #   resp.authorizer_type #=> String, one of "CUSTOM_JWT", "AWS_IAM", "NONE"
     #   resp.authorizer_configuration.custom_jwt_authorizer.discovery_url #=> String
     #   resp.authorizer_configuration.custom_jwt_authorizer.allowed_audience #=> Array
     #   resp.authorizer_configuration.custom_jwt_authorizer.allowed_audience[0] #=> String
     #   resp.authorizer_configuration.custom_jwt_authorizer.allowed_clients #=> Array
     #   resp.authorizer_configuration.custom_jwt_authorizer.allowed_clients[0] #=> String
     #   resp.kms_key_arn #=> String
+    #   resp.interceptor_configurations #=> Array
+    #   resp.interceptor_configurations[0].interceptor.lambda.arn #=> String
+    #   resp.interceptor_configurations[0].interception_points #=> Array
+    #   resp.interceptor_configurations[0].interception_points[0] #=> String, one of "REQUEST", "RESPONSE"
+    #   resp.interceptor_configurations[0].input_configuration.pass_request_headers #=> Boolean
     #   resp.workload_identity_details.workload_identity_arn #=> String
     #   resp.exception_level #=> String, one of "DEBUG"
     #
@@ -3028,7 +3088,7 @@ module Aws::BedrockAgentCoreControl
     #   resp.items[0].description #=> String
     #   resp.items[0].created_at #=> Time
     #   resp.items[0].updated_at #=> Time
-    #   resp.items[0].authorizer_type #=> String, one of "CUSTOM_JWT", "AWS_IAM"
+    #   resp.items[0].authorizer_type #=> String, one of "CUSTOM_JWT", "AWS_IAM", "NONE"
     #   resp.items[0].protocol_type #=> String, one of "MCP"
     #   resp.next_token #=> String
     #
@@ -3449,6 +3509,17 @@ module Aws::BedrockAgentCoreControl
     #       container_configuration: {
     #         container_uri: "RuntimeContainerUri", # required
     #       },
+    #       code_configuration: {
+    #         code: { # required
+    #           s3: {
+    #             bucket: "S3LocationBucketString", # required
+    #             prefix: "S3LocationPrefixString", # required
+    #             version_id: "S3LocationVersionIdString",
+    #           },
+    #         },
+    #         runtime: "PYTHON_3_10", # required, accepts PYTHON_3_10, PYTHON_3_11, PYTHON_3_12, PYTHON_3_13
+    #         entry_point: ["entryPoint"], # required
+    #       },
     #     },
     #     role_arn: "RoleArn", # required
     #     network_configuration: { # required
@@ -3634,6 +3705,9 @@ module Aws::BedrockAgentCoreControl
     # @option params [String] :kms_key_arn
     #   The updated ARN of the KMS key used to encrypt the gateway.
     #
+    # @option params [Array<Types::GatewayInterceptorConfiguration>] :interceptor_configurations
+    #   The updated interceptor configurations for the gateway.
+    #
     # @option params [String] :exception_level
     #   The level of detail in error messages returned when invoking the
     #   gateway.
@@ -3661,6 +3735,7 @@ module Aws::BedrockAgentCoreControl
     #   * {Types::UpdateGatewayResponse#authorizer_type #authorizer_type} => String
     #   * {Types::UpdateGatewayResponse#authorizer_configuration #authorizer_configuration} => Types::AuthorizerConfiguration
     #   * {Types::UpdateGatewayResponse#kms_key_arn #kms_key_arn} => String
+    #   * {Types::UpdateGatewayResponse#interceptor_configurations #interceptor_configurations} => Array&lt;Types::GatewayInterceptorConfiguration&gt;
     #   * {Types::UpdateGatewayResponse#workload_identity_details #workload_identity_details} => Types::WorkloadIdentityDetails
     #   * {Types::UpdateGatewayResponse#exception_level #exception_level} => String
     #
@@ -3679,7 +3754,7 @@ module Aws::BedrockAgentCoreControl
     #         search_type: "SEMANTIC", # accepts SEMANTIC
     #       },
     #     },
-    #     authorizer_type: "CUSTOM_JWT", # required, accepts CUSTOM_JWT, AWS_IAM
+    #     authorizer_type: "CUSTOM_JWT", # required, accepts CUSTOM_JWT, AWS_IAM, NONE
     #     authorizer_configuration: {
     #       custom_jwt_authorizer: {
     #         discovery_url: "DiscoveryUrl", # required
@@ -3688,6 +3763,19 @@ module Aws::BedrockAgentCoreControl
     #       },
     #     },
     #     kms_key_arn: "KmsKeyArn",
+    #     interceptor_configurations: [
+    #       {
+    #         interceptor: { # required
+    #           lambda: {
+    #             arn: "LambdaFunctionArn", # required
+    #           },
+    #         },
+    #         interception_points: ["REQUEST"], # required, accepts REQUEST, RESPONSE
+    #         input_configuration: {
+    #           pass_request_headers: false, # required
+    #         },
+    #       },
+    #     ],
     #     exception_level: "DEBUG", # accepts DEBUG
     #   })
     #
@@ -3709,13 +3797,18 @@ module Aws::BedrockAgentCoreControl
     #   resp.protocol_configuration.mcp.supported_versions[0] #=> String
     #   resp.protocol_configuration.mcp.instructions #=> String
     #   resp.protocol_configuration.mcp.search_type #=> String, one of "SEMANTIC"
-    #   resp.authorizer_type #=> String, one of "CUSTOM_JWT", "AWS_IAM"
+    #   resp.authorizer_type #=> String, one of "CUSTOM_JWT", "AWS_IAM", "NONE"
     #   resp.authorizer_configuration.custom_jwt_authorizer.discovery_url #=> String
     #   resp.authorizer_configuration.custom_jwt_authorizer.allowed_audience #=> Array
     #   resp.authorizer_configuration.custom_jwt_authorizer.allowed_audience[0] #=> String
     #   resp.authorizer_configuration.custom_jwt_authorizer.allowed_clients #=> Array
     #   resp.authorizer_configuration.custom_jwt_authorizer.allowed_clients[0] #=> String
     #   resp.kms_key_arn #=> String
+    #   resp.interceptor_configurations #=> Array
+    #   resp.interceptor_configurations[0].interceptor.lambda.arn #=> String
+    #   resp.interceptor_configurations[0].interception_points #=> Array
+    #   resp.interceptor_configurations[0].interception_points[0] #=> String, one of "REQUEST", "RESPONSE"
+    #   resp.interceptor_configurations[0].input_configuration.pass_request_headers #=> Boolean
     #   resp.workload_identity_details.workload_identity_arn #=> String
     #   resp.exception_level #=> String, one of "DEBUG"
     #
@@ -4383,7 +4476,7 @@ module Aws::BedrockAgentCoreControl
         tracer: tracer
       )
       context[:gem_name] = 'aws-sdk-bedrockagentcorecontrol'
-      context[:gem_version] = '1.13.0'
+      context[:gem_version] = '1.15.0'
       Seahorse::Client::Request.new(handlers, context)
     end
 

data/lib/aws-sdk-bedrockagentcorecontrol/client_api.rb

@@ -16,6 +16,7 @@ module Aws::BedrockAgentCoreControl
 
     AccessDeniedException = Shapes::StructureShape.new(name: 'AccessDeniedException')
     AgentEndpointDescription = Shapes::StringShape.new(name: 'AgentEndpointDescription')
+    AgentManagedRuntimeType = Shapes::StringShape.new(name: 'AgentManagedRuntimeType')
     AgentRuntime = Shapes::StructureShape.new(name: 'AgentRuntime')
     AgentRuntimeArn = Shapes::StringShape.new(name: 'AgentRuntimeArn')
     AgentRuntimeArtifact = Shapes::UnionShape.new(name: 'AgentRuntimeArtifact')
@@ -63,6 +64,9 @@ module Aws::BedrockAgentCoreControl
     ClientIdType = Shapes::StringShape.new(name: 'ClientIdType')
     ClientSecretType = Shapes::StringShape.new(name: 'ClientSecretType')
     ClientToken = Shapes::StringShape.new(name: 'ClientToken')
+    Code = Shapes::UnionShape.new(name: 'Code')
+    CodeConfiguration = Shapes::StructureShape.new(name: 'CodeConfiguration')
+    CodeConfigurationEntryPointList = Shapes::ListShape.new(name: 'CodeConfigurationEntryPointList')
     CodeInterpreterArn = Shapes::StringShape.new(name: 'CodeInterpreterArn')
     CodeInterpreterId = Shapes::StringShape.new(name: 'CodeInterpreterId')
     CodeInterpreterNetworkConfiguration = Shapes::StructureShape.new(name: 'CodeInterpreterNetworkConfiguration')
@@ -151,6 +155,10 @@ module Aws::BedrockAgentCoreControl
     GatewayDescription = Shapes::StringShape.new(name: 'GatewayDescription')
     GatewayId = Shapes::StringShape.new(name: 'GatewayId')
     GatewayIdentifier = Shapes::StringShape.new(name: 'GatewayIdentifier')
+    GatewayInterceptionPoint = Shapes::StringShape.new(name: 'GatewayInterceptionPoint')
+    GatewayInterceptionPoints = Shapes::ListShape.new(name: 'GatewayInterceptionPoints')
+    GatewayInterceptorConfiguration = Shapes::StructureShape.new(name: 'GatewayInterceptorConfiguration')
+    GatewayInterceptorConfigurations = Shapes::ListShape.new(name: 'GatewayInterceptorConfigurations')
     GatewayMaxResults = Shapes::IntegerShape.new(name: 'GatewayMaxResults')
     GatewayName = Shapes::StringShape.new(name: 'GatewayName')
     GatewayNextToken = Shapes::StringShape.new(name: 'GatewayNextToken')
@@ -193,6 +201,8 @@ module Aws::BedrockAgentCoreControl
     IncludedOauth2ProviderConfigOutput = Shapes::StructureShape.new(name: 'IncludedOauth2ProviderConfigOutput')
     InlinePayload = Shapes::StringShape.new(name: 'InlinePayload')
     Integer = Shapes::IntegerShape.new(name: 'Integer')
+    InterceptorConfiguration = Shapes::UnionShape.new(name: 'InterceptorConfiguration')
+    InterceptorInputConfiguration = Shapes::StructureShape.new(name: 'InterceptorInputConfiguration')
     InternalServerException = Shapes::StructureShape.new(name: 'InternalServerException')
     InvocationConfiguration = Shapes::StructureShape.new(name: 'InvocationConfiguration')
     InvocationConfigurationInput = Shapes::StructureShape.new(name: 'InvocationConfigurationInput')
@@ -202,6 +212,7 @@ module Aws::BedrockAgentCoreControl
     KmsConfiguration = Shapes::StructureShape.new(name: 'KmsConfiguration')
     KmsKeyArn = Shapes::StringShape.new(name: 'KmsKeyArn')
     LambdaFunctionArn = Shapes::StringShape.new(name: 'LambdaFunctionArn')
+    LambdaInterceptorConfiguration = Shapes::StructureShape.new(name: 'LambdaInterceptorConfiguration')
     LifecycleConfiguration = Shapes::StructureShape.new(name: 'LifecycleConfiguration')
     LifecycleConfigurationIdleRuntimeSessionTimeoutInteger = Shapes::IntegerShape.new(name: 'LifecycleConfigurationIdleRuntimeSessionTimeoutInteger')
     LifecycleConfigurationMaxLifetimeInteger = Shapes::IntegerShape.new(name: 'LifecycleConfigurationMaxLifetimeInteger')
@@ -313,6 +324,7 @@ module Aws::BedrockAgentCoreControl
     S3Location = Shapes::StructureShape.new(name: 'S3Location')
     S3LocationBucketString = Shapes::StringShape.new(name: 'S3LocationBucketString')
     S3LocationPrefixString = Shapes::StringShape.new(name: 'S3LocationPrefixString')
+    S3LocationVersionIdString = Shapes::StringShape.new(name: 'S3LocationVersionIdString')
     SalesforceOauth2ProviderConfigInput = Shapes::StructureShape.new(name: 'SalesforceOauth2ProviderConfigInput')
     SalesforceOauth2ProviderConfigOutput = Shapes::StructureShape.new(name: 'SalesforceOauth2ProviderConfigOutput')
     SandboxName = Shapes::StringShape.new(name: 'SandboxName')
@@ -428,6 +440,7 @@ module Aws::BedrockAgentCoreControl
     WorkloadIdentityList = Shapes::ListShape.new(name: 'WorkloadIdentityList')
     WorkloadIdentityNameType = Shapes::StringShape.new(name: 'WorkloadIdentityNameType')
     WorkloadIdentityType = Shapes::StructureShape.new(name: 'WorkloadIdentityType')
+    entryPoint = Shapes::StringShape.new(name: 'entryPoint')
 
     AccessDeniedException.add_member(:message, Shapes::ShapeRef.new(shape: NonBlankString, location_name: "message"))
     AccessDeniedException.struct_class = Types::AccessDeniedException
@@ -442,8 +455,10 @@ module Aws::BedrockAgentCoreControl
     AgentRuntime.struct_class = Types::AgentRuntime
 
     AgentRuntimeArtifact.add_member(:container_configuration, Shapes::ShapeRef.new(shape: ContainerConfiguration, location_name: "containerConfiguration"))
+    AgentRuntimeArtifact.add_member(:code_configuration, Shapes::ShapeRef.new(shape: CodeConfiguration, location_name: "codeConfiguration"))
     AgentRuntimeArtifact.add_member(:unknown, Shapes::ShapeRef.new(shape: nil, location_name: 'unknown'))
     AgentRuntimeArtifact.add_member_subclass(:container_configuration, Types::AgentRuntimeArtifact::ContainerConfiguration)
+    AgentRuntimeArtifact.add_member_subclass(:code_configuration, Types::AgentRuntimeArtifact::CodeConfiguration)
     AgentRuntimeArtifact.add_member_subclass(:unknown, Types::AgentRuntimeArtifact::Unknown)
     AgentRuntimeArtifact.struct_class = Types::AgentRuntimeArtifact
 
@@ -524,6 +539,19 @@ module Aws::BedrockAgentCoreControl
     BrowserSummary.add_member(:last_updated_at, Shapes::ShapeRef.new(shape: DateTimestamp, location_name: "lastUpdatedAt"))
     BrowserSummary.struct_class = Types::BrowserSummary
 
+    Code.add_member(:s3, Shapes::ShapeRef.new(shape: S3Location, location_name: "s3"))
+    Code.add_member(:unknown, Shapes::ShapeRef.new(shape: nil, location_name: 'unknown'))
+    Code.add_member_subclass(:s3, Types::Code::S3)
+    Code.add_member_subclass(:unknown, Types::Code::Unknown)
+    Code.struct_class = Types::Code
+
+    CodeConfiguration.add_member(:code, Shapes::ShapeRef.new(shape: Code, required: true, location_name: "code"))
+    CodeConfiguration.add_member(:runtime, Shapes::ShapeRef.new(shape: AgentManagedRuntimeType, required: true, location_name: "runtime"))
+    CodeConfiguration.add_member(:entry_point, Shapes::ShapeRef.new(shape: CodeConfigurationEntryPointList, required: true, location_name: "entryPoint"))
+    CodeConfiguration.struct_class = Types::CodeConfiguration
+
+    CodeConfigurationEntryPointList.member = Shapes::ShapeRef.new(shape: entryPoint)
+
     CodeInterpreterNetworkConfiguration.add_member(:network_mode, Shapes::ShapeRef.new(shape: CodeInterpreterNetworkMode, required: true, location_name: "networkMode"))
     CodeInterpreterNetworkConfiguration.add_member(:vpc_config, Shapes::ShapeRef.new(shape: VpcConfig, location_name: "vpcConfig"))
     CodeInterpreterNetworkConfiguration.struct_class = Types::CodeInterpreterNetworkConfiguration
@@ -642,6 +670,7 @@ module Aws::BedrockAgentCoreControl
     CreateGatewayRequest.add_member(:authorizer_type, Shapes::ShapeRef.new(shape: AuthorizerType, required: true, location_name: "authorizerType"))
     CreateGatewayRequest.add_member(:authorizer_configuration, Shapes::ShapeRef.new(shape: AuthorizerConfiguration, location_name: "authorizerConfiguration"))
     CreateGatewayRequest.add_member(:kms_key_arn, Shapes::ShapeRef.new(shape: KmsKeyArn, location_name: "kmsKeyArn"))
+    CreateGatewayRequest.add_member(:interceptor_configurations, Shapes::ShapeRef.new(shape: GatewayInterceptorConfigurations, location_name: "interceptorConfigurations"))
     CreateGatewayRequest.add_member(:exception_level, Shapes::ShapeRef.new(shape: ExceptionLevel, location_name: "exceptionLevel"))
     CreateGatewayRequest.add_member(:tags, Shapes::ShapeRef.new(shape: TagsMap, location_name: "tags"))
     CreateGatewayRequest.struct_class = Types::CreateGatewayRequest
@@ -661,6 +690,7 @@ module Aws::BedrockAgentCoreControl
     CreateGatewayResponse.add_member(:authorizer_type, Shapes::ShapeRef.new(shape: AuthorizerType, required: true, location_name: "authorizerType"))
     CreateGatewayResponse.add_member(:authorizer_configuration, Shapes::ShapeRef.new(shape: AuthorizerConfiguration, location_name: "authorizerConfiguration"))
     CreateGatewayResponse.add_member(:kms_key_arn, Shapes::ShapeRef.new(shape: KmsKeyArn, location_name: "kmsKeyArn"))
+    CreateGatewayResponse.add_member(:interceptor_configurations, Shapes::ShapeRef.new(shape: GatewayInterceptorConfigurations, location_name: "interceptorConfigurations"))
     CreateGatewayResponse.add_member(:workload_identity_details, Shapes::ShapeRef.new(shape: WorkloadIdentityDetails, location_name: "workloadIdentityDetails"))
     CreateGatewayResponse.add_member(:exception_level, Shapes::ShapeRef.new(shape: ExceptionLevel, location_name: "exceptionLevel"))
     CreateGatewayResponse.struct_class = Types::CreateGatewayResponse
@@ -818,6 +848,7 @@ module Aws::BedrockAgentCoreControl
     DeleteAgentRuntimeEndpointResponse.struct_class = Types::DeleteAgentRuntimeEndpointResponse
 
     DeleteAgentRuntimeRequest.add_member(:agent_runtime_id, Shapes::ShapeRef.new(shape: AgentRuntimeId, required: true, location: "uri", location_name: "agentRuntimeId"))
+    DeleteAgentRuntimeRequest.add_member(:client_token, Shapes::ShapeRef.new(shape: ClientToken, location: "querystring", location_name: "clientToken", metadata: {"idempotencyToken" => true}))
     DeleteAgentRuntimeRequest.struct_class = Types::DeleteAgentRuntimeRequest
 
     DeleteAgentRuntimeResponse.add_member(:status, Shapes::ShapeRef.new(shape: AgentRuntimeStatus, required: true, location_name: "status"))
@@ -900,6 +931,15 @@ module Aws::BedrockAgentCoreControl
     ExtractionConfiguration.add_member_subclass(:unknown, Types::ExtractionConfiguration::Unknown)
     ExtractionConfiguration.struct_class = Types::ExtractionConfiguration
 
+    GatewayInterceptionPoints.member = Shapes::ShapeRef.new(shape: GatewayInterceptionPoint)
+
+    GatewayInterceptorConfiguration.add_member(:interceptor, Shapes::ShapeRef.new(shape: InterceptorConfiguration, required: true, location_name: "interceptor"))
+    GatewayInterceptorConfiguration.add_member(:interception_points, Shapes::ShapeRef.new(shape: GatewayInterceptionPoints, required: true, location_name: "interceptionPoints"))
+    GatewayInterceptorConfiguration.add_member(:input_configuration, Shapes::ShapeRef.new(shape: InterceptorInputConfiguration, location_name: "inputConfiguration"))
+    GatewayInterceptorConfiguration.struct_class = Types::GatewayInterceptorConfiguration
+
+    GatewayInterceptorConfigurations.member = Shapes::ShapeRef.new(shape: GatewayInterceptorConfiguration)
+
     GatewayProtocolConfiguration.add_member(:mcp, Shapes::ShapeRef.new(shape: MCPGatewayConfiguration, location_name: "mcp"))
     GatewayProtocolConfiguration.add_member(:unknown, Shapes::ShapeRef.new(shape: nil, location_name: 'unknown'))
     GatewayProtocolConfiguration.add_member_subclass(:mcp, Types::GatewayProtocolConfiguration::Mcp)
@@ -1033,6 +1073,7 @@ module Aws::BedrockAgentCoreControl
     GetGatewayResponse.add_member(:authorizer_type, Shapes::ShapeRef.new(shape: AuthorizerType, required: true, location_name: "authorizerType"))
     GetGatewayResponse.add_member(:authorizer_configuration, Shapes::ShapeRef.new(shape: AuthorizerConfiguration, location_name: "authorizerConfiguration"))
     GetGatewayResponse.add_member(:kms_key_arn, Shapes::ShapeRef.new(shape: KmsKeyArn, location_name: "kmsKeyArn"))
+    GetGatewayResponse.add_member(:interceptor_configurations, Shapes::ShapeRef.new(shape: GatewayInterceptorConfigurations, location_name: "interceptorConfigurations"))
     GetGatewayResponse.add_member(:workload_identity_details, Shapes::ShapeRef.new(shape: WorkloadIdentityDetails, location_name: "workloadIdentityDetails"))
     GetGatewayResponse.add_member(:exception_level, Shapes::ShapeRef.new(shape: ExceptionLevel, location_name: "exceptionLevel"))
     GetGatewayResponse.struct_class = Types::GetGatewayResponse
@@ -1118,6 +1159,15 @@ module Aws::BedrockAgentCoreControl
     IncludedOauth2ProviderConfigOutput.add_member(:client_id, Shapes::ShapeRef.new(shape: ClientIdType, location_name: "clientId"))
     IncludedOauth2ProviderConfigOutput.struct_class = Types::IncludedOauth2ProviderConfigOutput
 
+    InterceptorConfiguration.add_member(:lambda, Shapes::ShapeRef.new(shape: LambdaInterceptorConfiguration, location_name: "lambda"))
+    InterceptorConfiguration.add_member(:unknown, Shapes::ShapeRef.new(shape: nil, location_name: 'unknown'))
+    InterceptorConfiguration.add_member_subclass(:lambda, Types::InterceptorConfiguration::Lambda)
+    InterceptorConfiguration.add_member_subclass(:unknown, Types::InterceptorConfiguration::Unknown)
+    InterceptorConfiguration.struct_class = Types::InterceptorConfiguration
+
+    InterceptorInputConfiguration.add_member(:pass_request_headers, Shapes::ShapeRef.new(shape: Boolean, required: true, location_name: "passRequestHeaders"))
+    InterceptorInputConfiguration.struct_class = Types::InterceptorInputConfiguration
+
     InternalServerException.add_member(:message, Shapes::ShapeRef.new(shape: NonBlankString, location_name: "message"))
     InternalServerException.struct_class = Types::InternalServerException
 
@@ -1133,6 +1183,9 @@ module Aws::BedrockAgentCoreControl
     KmsConfiguration.add_member(:kms_key_arn, Shapes::ShapeRef.new(shape: KmsKeyArn, location_name: "kmsKeyArn"))
     KmsConfiguration.struct_class = Types::KmsConfiguration
 
+    LambdaInterceptorConfiguration.add_member(:arn, Shapes::ShapeRef.new(shape: LambdaFunctionArn, required: true, location_name: "arn"))
+    LambdaInterceptorConfiguration.struct_class = Types::LambdaInterceptorConfiguration
+
     LifecycleConfiguration.add_member(:idle_runtime_session_timeout, Shapes::ShapeRef.new(shape: LifecycleConfigurationIdleRuntimeSessionTimeoutInteger, location_name: "idleRuntimeSessionTimeout"))
     LifecycleConfiguration.add_member(:max_lifetime, Shapes::ShapeRef.new(shape: LifecycleConfigurationMaxLifetimeInteger, location_name: "maxLifetime"))
     LifecycleConfiguration.struct_class = Types::LifecycleConfiguration
@@ -1491,6 +1544,7 @@ module Aws::BedrockAgentCoreControl
 
     S3Location.add_member(:bucket, Shapes::ShapeRef.new(shape: S3LocationBucketString, required: true, location_name: "bucket"))
     S3Location.add_member(:prefix, Shapes::ShapeRef.new(shape: S3LocationPrefixString, required: true, location_name: "prefix"))
+    S3Location.add_member(:version_id, Shapes::ShapeRef.new(shape: S3LocationVersionIdString, location_name: "versionId"))
     S3Location.struct_class = Types::S3Location
 
     SalesforceOauth2ProviderConfigInput.add_member(:client_id, Shapes::ShapeRef.new(shape: ClientIdType, required: true, location_name: "clientId"))
@@ -1763,6 +1817,7 @@ module Aws::BedrockAgentCoreControl
     UpdateGatewayRequest.add_member(:authorizer_type, Shapes::ShapeRef.new(shape: AuthorizerType, required: true, location_name: "authorizerType"))
     UpdateGatewayRequest.add_member(:authorizer_configuration, Shapes::ShapeRef.new(shape: AuthorizerConfiguration, location_name: "authorizerConfiguration"))
     UpdateGatewayRequest.add_member(:kms_key_arn, Shapes::ShapeRef.new(shape: KmsKeyArn, location_name: "kmsKeyArn"))
+    UpdateGatewayRequest.add_member(:interceptor_configurations, Shapes::ShapeRef.new(shape: GatewayInterceptorConfigurations, location_name: "interceptorConfigurations"))
     UpdateGatewayRequest.add_member(:exception_level, Shapes::ShapeRef.new(shape: ExceptionLevel, location_name: "exceptionLevel"))
     UpdateGatewayRequest.struct_class = Types::UpdateGatewayRequest
 
@@ -1781,6 +1836,7 @@ module Aws::BedrockAgentCoreControl
     UpdateGatewayResponse.add_member(:authorizer_type, Shapes::ShapeRef.new(shape: AuthorizerType, required: true, location_name: "authorizerType"))
     UpdateGatewayResponse.add_member(:authorizer_configuration, Shapes::ShapeRef.new(shape: AuthorizerConfiguration, location_name: "authorizerConfiguration"))
     UpdateGatewayResponse.add_member(:kms_key_arn, Shapes::ShapeRef.new(shape: KmsKeyArn, location_name: "kmsKeyArn"))
+    UpdateGatewayResponse.add_member(:interceptor_configurations, Shapes::ShapeRef.new(shape: GatewayInterceptorConfigurations, location_name: "interceptorConfigurations"))
     UpdateGatewayResponse.add_member(:workload_identity_details, Shapes::ShapeRef.new(shape: WorkloadIdentityDetails, location_name: "workloadIdentityDetails"))
     UpdateGatewayResponse.add_member(:exception_level, Shapes::ShapeRef.new(shape: ExceptionLevel, location_name: "exceptionLevel"))
     UpdateGatewayResponse.struct_class = Types::UpdateGatewayResponse

data/lib/aws-sdk-bedrockagentcorecontrol/types.rb

@@ -79,16 +79,23 @@ module Aws::BedrockAgentCoreControl
     #   The container configuration for the agent artifact.
     #   @return [Types::ContainerConfiguration]
     #
+    # @!attribute [rw] code_configuration
+    #   The code configuration for the agent runtime artifact, including the
+    #   source code location and execution settings.
+    #   @return [Types::CodeConfiguration]
+    #
     # @see http://docs.aws.amazon.com/goto/WebAPI/bedrock-agentcore-control-2023-06-05/AgentRuntimeArtifact AWS API Documentation
     #
     class AgentRuntimeArtifact < Struct.new(
       :container_configuration,
+      :code_configuration,
       :unknown)
       SENSITIVE = []
       include Aws::Structure
       include Aws::Structure::Union
 
       class ContainerConfiguration < AgentRuntimeArtifact; end
+      class CodeConfiguration < AgentRuntimeArtifact; end
       class Unknown < AgentRuntimeArtifact; end
     end
 
@@ -419,6 +426,59 @@ module Aws::BedrockAgentCoreControl
       include Aws::Structure
     end
 
+    # The source code configuration that specifies the location and details
+    # of the code to be executed.
+    #
+    # @note Code is a union - when making an API calls you must set exactly one of the members.
+    #
+    # @note Code is a union - when returned from an API call exactly one value will be set and the returned type will be a subclass of Code corresponding to the set member.
+    #
+    # @!attribute [rw] s3
+    #   The Amazon Amazon S3 object that contains the source code for the
+    #   agent runtime.
+    #   @return [Types::S3Location]
+    #
+    # @see http://docs.aws.amazon.com/goto/WebAPI/bedrock-agentcore-control-2023-06-05/Code AWS API Documentation
+    #
+    class Code < Struct.new(
+      :s3,
+      :unknown)
+      SENSITIVE = []
+      include Aws::Structure
+      include Aws::Structure::Union
+
+      class S3 < Code; end
+      class Unknown < Code; end
+    end
+
+    # The configuration for the source code that defines how the agent
+    # runtime code should be executed, including the code location, runtime
+    # environment, and entry point.
+    #
+    # @!attribute [rw] code
+    #   The source code location and configuration details.
+    #   @return [Types::Code]
+    #
+    # @!attribute [rw] runtime
+    #   The runtime environment for executing the code (for example, Python
+    #   3.9 or Node.js 18).
+    #   @return [String]
+    #
+    # @!attribute [rw] entry_point
+    #   The entry point for the code execution, specifying the function or
+    #   method that should be invoked when the code runs.
+    #   @return [Array<String>]
+    #
+    # @see http://docs.aws.amazon.com/goto/WebAPI/bedrock-agentcore-control-2023-06-05/CodeConfiguration AWS API Documentation
+    #
+    class CodeConfiguration < Struct.new(
+      :code,
+      :runtime,
+      :entry_point)
+      SENSITIVE = []
+      include Aws::Structure
+    end
+
     # The network configuration for a code interpreter. This structure
     # defines how the code interpreter connects to the network.
     #
@@ -1008,6 +1068,8 @@ module Aws::BedrockAgentCoreControl
     #
     #   * `AWS_IAM` - Authorize with your Amazon Web Services IAM
     #     credentials.
+    #
+    #   * `NONE` - No authorization
     #   @return [String]
     #
     # @!attribute [rw] authorizer_configuration
@@ -1020,6 +1082,12 @@ module Aws::BedrockAgentCoreControl
     #   associated with the gateway.
     #   @return [String]
     #
+    # @!attribute [rw] interceptor_configurations
+    #   A list of configuration settings for a gateway interceptor. Gateway
+    #   interceptors allow custom code to be invoked during gateway
+    #   invocations.
+    #   @return [Array<Types::GatewayInterceptorConfiguration>]
+    #
     # @!attribute [rw] exception_level
     #   The level of detail in error messages returned when invoking the
     #   gateway.
@@ -1048,6 +1116,7 @@ module Aws::BedrockAgentCoreControl
       :authorizer_type,
       :authorizer_configuration,
       :kms_key_arn,
+      :interceptor_configurations,
       :exception_level,
       :tags)
       SENSITIVE = [:name, :description]
@@ -1116,6 +1185,10 @@ module Aws::BedrockAgentCoreControl
     #   associated with the gateway.
     #   @return [String]
     #
+    # @!attribute [rw] interceptor_configurations
+    #   The list of interceptor configurations for the created gateway.
+    #   @return [Array<Types::GatewayInterceptorConfiguration>]
+    #
     # @!attribute [rw] workload_identity_details
     #   The workload identity details for the created gateway.
     #   @return [Types::WorkloadIdentityDetails]
@@ -1149,6 +1222,7 @@ module Aws::BedrockAgentCoreControl
       :authorizer_type,
       :authorizer_configuration,
       :kms_key_arn,
+      :interceptor_configurations,
       :workload_identity_details,
       :exception_level)
       SENSITIVE = [:name, :description]
@@ -1839,10 +1913,21 @@ module Aws::BedrockAgentCoreControl
     #   The unique identifier of the AgentCore Runtime to delete.
     #   @return [String]
     #
+    # @!attribute [rw] client_token
+    #   A unique, case-sensitive identifier to ensure that the operation
+    #   completes no more than one time. If this token matches a previous
+    #   request, the service ignores the request but does not return an
+    #   error.
+    #
+    #   **A suitable default value is auto-generated.** You should normally
+    #   not need to pass this option.
+    #   @return [String]
+    #
     # @see http://docs.aws.amazon.com/goto/WebAPI/bedrock-agentcore-control-2023-06-05/DeleteAgentRuntimeRequest AWS API Documentation
     #
     class DeleteAgentRuntimeRequest < Struct.new(
-      :agent_runtime_id)
+      :agent_runtime_id,
+      :client_token)
       SENSITIVE = []
       include Aws::Structure
     end
@@ -2163,6 +2248,35 @@ module Aws::BedrockAgentCoreControl
       class Unknown < ExtractionConfiguration; end
     end
 
+    # The configuration for an interceptor on a gateway. This structure
+    # defines settings for an interceptor that will be invoked during the
+    # invocation of the gateway.
+    #
+    # @!attribute [rw] interceptor
+    #   The infrastructure settings of an interceptor configuration. This
+    #   structure defines how the interceptor can be invoked.
+    #   @return [Types::InterceptorConfiguration]
+    #
+    # @!attribute [rw] interception_points
+    #   The supported points of interception. This field specifies which
+    #   points during the gateway invocation to invoke the interceptor
+    #   @return [Array<String>]
+    #
+    # @!attribute [rw] input_configuration
+    #   The configuration for the input of the interceptor. This field
+    #   specifies how the input to the interceptor is constructed
+    #   @return [Types::InterceptorInputConfiguration]
+    #
+    # @see http://docs.aws.amazon.com/goto/WebAPI/bedrock-agentcore-control-2023-06-05/GatewayInterceptorConfiguration AWS API Documentation
+    #
+    class GatewayInterceptorConfiguration < Struct.new(
+      :interceptor,
+      :interception_points,
+      :input_configuration)
+      SENSITIVE = []
+      include Aws::Structure
+    end
+
     # The configuration for a gateway protocol. This structure defines how
     # the gateway communicates with external services.
     #
@@ -2768,6 +2882,10 @@ module Aws::BedrockAgentCoreControl
     #   gateway.
     #   @return [String]
     #
+    # @!attribute [rw] interceptor_configurations
+    #   The interceptors configured on the gateway.
+    #   @return [Array<Types::GatewayInterceptorConfiguration>]
+    #
     # @!attribute [rw] workload_identity_details
     #   The workload identity details for the gateway.
     #   @return [Types::WorkloadIdentityDetails]
@@ -2801,6 +2919,7 @@ module Aws::BedrockAgentCoreControl
       :authorizer_type,
       :authorizer_configuration,
       :kms_key_arn,
+      :interceptor_configurations,
       :workload_identity_details,
       :exception_level)
       SENSITIVE = [:name, :description]
@@ -3192,6 +3311,44 @@ module Aws::BedrockAgentCoreControl
       include Aws::Structure
     end
 
+    # The interceptor configuration.
+    #
+    # @note InterceptorConfiguration is a union - when making an API calls you must set exactly one of the members.
+    #
+    # @note InterceptorConfiguration is a union - when returned from an API call exactly one value will be set and the returned type will be a subclass of InterceptorConfiguration corresponding to the set member.
+    #
+    # @!attribute [rw] lambda
+    #   The details of the lambda function used for the interceptor.
+    #   @return [Types::LambdaInterceptorConfiguration]
+    #
+    # @see http://docs.aws.amazon.com/goto/WebAPI/bedrock-agentcore-control-2023-06-05/InterceptorConfiguration AWS API Documentation
+    #
+    class InterceptorConfiguration < Struct.new(
+      :lambda,
+      :unknown)
+      SENSITIVE = []
+      include Aws::Structure
+      include Aws::Structure::Union
+
+      class Lambda < InterceptorConfiguration; end
+      class Unknown < InterceptorConfiguration; end
+    end
+
+    # The input configuration of the interceptor.
+    #
+    # @!attribute [rw] pass_request_headers
+    #   Indicates whether to pass request headers as input into the
+    #   interceptor. When set to true, request headers will be passed.
+    #   @return [Boolean]
+    #
+    # @see http://docs.aws.amazon.com/goto/WebAPI/bedrock-agentcore-control-2023-06-05/InterceptorInputConfiguration AWS API Documentation
+    #
+    class InterceptorInputConfiguration < Struct.new(
+      :pass_request_headers)
+      SENSITIVE = []
+      include Aws::Structure
+    end
+
     # This exception is thrown if there was an unexpected error during
     # processing of request
     #
@@ -3265,6 +3422,20 @@ module Aws::BedrockAgentCoreControl
       include Aws::Structure
     end
 
+    # The lambda configuration for the interceptor
+    #
+    # @!attribute [rw] arn
+    #   The arn of the lambda function to be invoked for the interceptor.
+    #   @return [String]
+    #
+    # @see http://docs.aws.amazon.com/goto/WebAPI/bedrock-agentcore-control-2023-06-05/LambdaInterceptorConfiguration AWS API Documentation
+    #
+    class LambdaInterceptorConfiguration < Struct.new(
+      :arn)
+      SENSITIVE = []
+      include Aws::Structure
+    end
+
     # LifecycleConfiguration lets you manage the lifecycle of runtime
     # sessions and resources in AgentCore Runtime. This configuration helps
     # optimize resource utilization by automatically cleaning up idle
@@ -4747,11 +4918,17 @@ module Aws::BedrockAgentCoreControl
     #   to the object keys to organize the data.
     #   @return [String]
     #
+    # @!attribute [rw] version_id
+    #   The version ID of the Amazon Amazon S3 object. If not specified, the
+    #   latest version of the object is used.
+    #   @return [String]
+    #
     # @see http://docs.aws.amazon.com/goto/WebAPI/bedrock-agentcore-control-2023-06-05/S3Location AWS API Documentation
     #
     class S3Location < Struct.new(
       :bucket,
-      :prefix)
+      :prefix,
+      :version_id)
       SENSITIVE = []
       include Aws::Structure
     end
@@ -5876,6 +6053,10 @@ module Aws::BedrockAgentCoreControl
     #   The updated ARN of the KMS key used to encrypt the gateway.
     #   @return [String]
     #
+    # @!attribute [rw] interceptor_configurations
+    #   The updated interceptor configurations for the gateway.
+    #   @return [Array<Types::GatewayInterceptorConfiguration>]
+    #
     # @!attribute [rw] exception_level
     #   The level of detail in error messages returned when invoking the
     #   gateway.
@@ -5899,6 +6080,7 @@ module Aws::BedrockAgentCoreControl
       :authorizer_type,
       :authorizer_configuration,
       :kms_key_arn,
+      :interceptor_configurations,
       :exception_level)
       SENSITIVE = [:name, :description]
       include Aws::Structure
@@ -5965,6 +6147,10 @@ module Aws::BedrockAgentCoreControl
     #   The updated ARN of the KMS key used to encrypt the gateway.
     #   @return [String]
     #
+    # @!attribute [rw] interceptor_configurations
+    #   The updated interceptor configurations for the gateway.
+    #   @return [Array<Types::GatewayInterceptorConfiguration>]
+    #
     # @!attribute [rw] workload_identity_details
     #   The workload identity details for the updated gateway.
     #   @return [Types::WorkloadIdentityDetails]
@@ -5998,6 +6184,7 @@ module Aws::BedrockAgentCoreControl
       :authorizer_type,
       :authorizer_configuration,
       :kms_key_arn,
+      :interceptor_configurations,
       :workload_identity_details,
       :exception_level)
       SENSITIVE = [:name, :description]

data/lib/aws-sdk-bedrockagentcorecontrol.rb

@@ -55,7 +55,7 @@ module Aws::BedrockAgentCoreControl
   autoload :EndpointProvider, 'aws-sdk-bedrockagentcorecontrol/endpoint_provider'
   autoload :Endpoints, 'aws-sdk-bedrockagentcorecontrol/endpoints'
 
-  GEM_VERSION = '1.13.0'
+  GEM_VERSION = '1.15.0'
 
 end
 

data/sig/client.rbs

@@ -93,6 +93,17 @@ module Aws
                                   agent_runtime_artifact: {
                                     container_configuration: {
                                       container_uri: ::String
+                                    }?,
+                                    code_configuration: {
+                                      code: {
+                                        s3: {
+                                          bucket: ::String,
+                                          prefix: ::String,
+                                          version_id: ::String?
+                                        }?
+                                      },
+                                      runtime: ("PYTHON_3_10" | "PYTHON_3_11" | "PYTHON_3_12" | "PYTHON_3_13"),
+                                      entry_point: Array[::String]
                                     }?
                                   },
                                   role_arn: ::String,
@@ -185,7 +196,8 @@ module Aws
                               enabled: bool?,
                               s3_location: {
                                 bucket: ::String,
-                                prefix: ::String
+                                prefix: ::String,
+                                version_id: ::String?
                               }?
                             },
                             ?browser_signing: {
@@ -234,9 +246,10 @@ module Aws
         def role_arn: () -> ::String
         def protocol_type: () -> ("MCP")
         def protocol_configuration: () -> Types::GatewayProtocolConfiguration
-        def authorizer_type: () -> ("CUSTOM_JWT" | "AWS_IAM")
+        def authorizer_type: () -> ("CUSTOM_JWT" | "AWS_IAM" | "NONE")
         def authorizer_configuration: () -> Types::AuthorizerConfiguration
         def kms_key_arn: () -> ::String
+        def interceptor_configurations: () -> ::Array[Types::GatewayInterceptorConfiguration]
         def workload_identity_details: () -> Types::WorkloadIdentityDetails
         def exception_level: () -> ("DEBUG")
       end
@@ -254,7 +267,7 @@ module Aws
                                 search_type: ("SEMANTIC")?
                               }?
                             },
-                            authorizer_type: ("CUSTOM_JWT" | "AWS_IAM"),
+                            authorizer_type: ("CUSTOM_JWT" | "AWS_IAM" | "NONE"),
                             ?authorizer_configuration: {
                               custom_jwt_authorizer: {
                                 discovery_url: ::String,
@@ -263,6 +276,19 @@ module Aws
                               }?
                             },
                             ?kms_key_arn: ::String,
+                            ?interceptor_configurations: Array[
+                              {
+                                interceptor: {
+                                  lambda: {
+                                    arn: ::String
+                                  }?
+                                },
+                                interception_points: Array[("REQUEST" | "RESPONSE")],
+                                input_configuration: {
+                                  pass_request_headers: bool
+                                }?
+                              },
+                            ],
                             ?exception_level: ("DEBUG"),
                             ?tags: Hash[::String, ::String]
                           ) -> _CreateGatewayResponseSuccess
@@ -536,7 +562,8 @@ module Aws
       end
       # https://docs.aws.amazon.com/sdk-for-ruby/v3/api/Aws/BedrockAgentCoreControl/Client.html#delete_agent_runtime-instance_method
       def delete_agent_runtime: (
-                                  agent_runtime_id: ::String
+                                  agent_runtime_id: ::String,
+                                  ?client_token: ::String
                                 ) -> _DeleteAgentRuntimeResponseSuccess
                               | (Hash[Symbol, untyped] params, ?Hash[Symbol, untyped] options) -> _DeleteAgentRuntimeResponseSuccess
 
@@ -761,9 +788,10 @@ module Aws
         def role_arn: () -> ::String
         def protocol_type: () -> ("MCP")
         def protocol_configuration: () -> Types::GatewayProtocolConfiguration
-        def authorizer_type: () -> ("CUSTOM_JWT" | "AWS_IAM")
+        def authorizer_type: () -> ("CUSTOM_JWT" | "AWS_IAM" | "NONE")
         def authorizer_configuration: () -> Types::AuthorizerConfiguration
         def kms_key_arn: () -> ::String
+        def interceptor_configurations: () -> ::Array[Types::GatewayInterceptorConfiguration]
         def workload_identity_details: () -> Types::WorkloadIdentityDetails
         def exception_level: () -> ("DEBUG")
       end
@@ -1057,6 +1085,17 @@ module Aws
                                   agent_runtime_artifact: {
                                     container_configuration: {
                                       container_uri: ::String
+                                    }?,
+                                    code_configuration: {
+                                      code: {
+                                        s3: {
+                                          bucket: ::String,
+                                          prefix: ::String,
+                                          version_id: ::String?
+                                        }?
+                                      },
+                                      runtime: ("PYTHON_3_10" | "PYTHON_3_11" | "PYTHON_3_12" | "PYTHON_3_13"),
+                                      entry_point: Array[::String]
                                     }?
                                   },
                                   role_arn: ::String,
@@ -1139,9 +1178,10 @@ module Aws
         def role_arn: () -> ::String
         def protocol_type: () -> ("MCP")
         def protocol_configuration: () -> Types::GatewayProtocolConfiguration
-        def authorizer_type: () -> ("CUSTOM_JWT" | "AWS_IAM")
+        def authorizer_type: () -> ("CUSTOM_JWT" | "AWS_IAM" | "NONE")
         def authorizer_configuration: () -> Types::AuthorizerConfiguration
         def kms_key_arn: () -> ::String
+        def interceptor_configurations: () -> ::Array[Types::GatewayInterceptorConfiguration]
         def workload_identity_details: () -> Types::WorkloadIdentityDetails
         def exception_level: () -> ("DEBUG")
       end
@@ -1159,7 +1199,7 @@ module Aws
                                 search_type: ("SEMANTIC")?
                               }?
                             },
-                            authorizer_type: ("CUSTOM_JWT" | "AWS_IAM"),
+                            authorizer_type: ("CUSTOM_JWT" | "AWS_IAM" | "NONE"),
                             ?authorizer_configuration: {
                               custom_jwt_authorizer: {
                                 discovery_url: ::String,
@@ -1168,6 +1208,19 @@ module Aws
                               }?
                             },
                             ?kms_key_arn: ::String,
+                            ?interceptor_configurations: Array[
+                              {
+                                interceptor: {
+                                  lambda: {
+                                    arn: ::String
+                                  }?
+                                },
+                                interception_points: Array[("REQUEST" | "RESPONSE")],
+                                input_configuration: {
+                                  pass_request_headers: bool
+                                }?
+                              },
+                            ],
                             ?exception_level: ("DEBUG")
                           ) -> _UpdateGatewayResponseSuccess
                         | (Hash[Symbol, untyped] params, ?Hash[Symbol, untyped] options) -> _UpdateGatewayResponseSuccess

data/sig/types.rbs

@@ -26,11 +26,14 @@ module Aws::BedrockAgentCoreControl
 
     class AgentRuntimeArtifact
       attr_accessor container_configuration: Types::ContainerConfiguration
+      attr_accessor code_configuration: Types::CodeConfiguration
       attr_accessor unknown: untyped
       SENSITIVE: []
 
       class ContainerConfiguration < AgentRuntimeArtifact
       end
+      class CodeConfiguration < AgentRuntimeArtifact
+      end
       class Unknown < AgentRuntimeArtifact
       end
     end
@@ -129,6 +132,24 @@ module Aws::BedrockAgentCoreControl
       SENSITIVE: [:description]
     end
 
+    class Code
+      attr_accessor s3: Types::S3Location
+      attr_accessor unknown: untyped
+      SENSITIVE: []
+
+      class S3 < Code
+      end
+      class Unknown < Code
+      end
+    end
+
+    class CodeConfiguration
+      attr_accessor code: Types::Code
+      attr_accessor runtime: ("PYTHON_3_10" | "PYTHON_3_11" | "PYTHON_3_12" | "PYTHON_3_13")
+      attr_accessor entry_point: ::Array[::String]
+      SENSITIVE: []
+    end
+
     class CodeInterpreterNetworkConfiguration
       attr_accessor network_mode: ("PUBLIC" | "SANDBOX" | "VPC")
       attr_accessor vpc_config: Types::VpcConfig
@@ -278,9 +299,10 @@ module Aws::BedrockAgentCoreControl
       attr_accessor role_arn: ::String
       attr_accessor protocol_type: ("MCP")
       attr_accessor protocol_configuration: Types::GatewayProtocolConfiguration
-      attr_accessor authorizer_type: ("CUSTOM_JWT" | "AWS_IAM")
+      attr_accessor authorizer_type: ("CUSTOM_JWT" | "AWS_IAM" | "NONE")
       attr_accessor authorizer_configuration: Types::AuthorizerConfiguration
       attr_accessor kms_key_arn: ::String
+      attr_accessor interceptor_configurations: ::Array[Types::GatewayInterceptorConfiguration]
       attr_accessor exception_level: ("DEBUG")
       attr_accessor tags: ::Hash[::String, ::String]
       SENSITIVE: [:name, :description]
@@ -299,9 +321,10 @@ module Aws::BedrockAgentCoreControl
       attr_accessor role_arn: ::String
       attr_accessor protocol_type: ("MCP")
       attr_accessor protocol_configuration: Types::GatewayProtocolConfiguration
-      attr_accessor authorizer_type: ("CUSTOM_JWT" | "AWS_IAM")
+      attr_accessor authorizer_type: ("CUSTOM_JWT" | "AWS_IAM" | "NONE")
       attr_accessor authorizer_configuration: Types::AuthorizerConfiguration
       attr_accessor kms_key_arn: ::String
+      attr_accessor interceptor_configurations: ::Array[Types::GatewayInterceptorConfiguration]
       attr_accessor workload_identity_details: Types::WorkloadIdentityDetails
       attr_accessor exception_level: ("DEBUG")
       SENSITIVE: [:name, :description]
@@ -531,6 +554,7 @@ module Aws::BedrockAgentCoreControl
 
     class DeleteAgentRuntimeRequest
       attr_accessor agent_runtime_id: ::String
+      attr_accessor client_token: ::String
       SENSITIVE: []
     end
 
@@ -649,6 +673,13 @@ module Aws::BedrockAgentCoreControl
       end
     end
 
+    class GatewayInterceptorConfiguration
+      attr_accessor interceptor: Types::InterceptorConfiguration
+      attr_accessor interception_points: ::Array[("REQUEST" | "RESPONSE")]
+      attr_accessor input_configuration: Types::InterceptorInputConfiguration
+      SENSITIVE: []
+    end
+
     class GatewayProtocolConfiguration
       attr_accessor mcp: Types::MCPGatewayConfiguration
       attr_accessor unknown: untyped
@@ -667,7 +698,7 @@ module Aws::BedrockAgentCoreControl
       attr_accessor description: ::String
       attr_accessor created_at: ::Time
       attr_accessor updated_at: ::Time
-      attr_accessor authorizer_type: ("CUSTOM_JWT" | "AWS_IAM")
+      attr_accessor authorizer_type: ("CUSTOM_JWT" | "AWS_IAM" | "NONE")
       attr_accessor protocol_type: ("MCP")
       SENSITIVE: [:name, :description]
     end
@@ -807,9 +838,10 @@ module Aws::BedrockAgentCoreControl
       attr_accessor role_arn: ::String
       attr_accessor protocol_type: ("MCP")
       attr_accessor protocol_configuration: Types::GatewayProtocolConfiguration
-      attr_accessor authorizer_type: ("CUSTOM_JWT" | "AWS_IAM")
+      attr_accessor authorizer_type: ("CUSTOM_JWT" | "AWS_IAM" | "NONE")
       attr_accessor authorizer_configuration: Types::AuthorizerConfiguration
       attr_accessor kms_key_arn: ::String
+      attr_accessor interceptor_configurations: ::Array[Types::GatewayInterceptorConfiguration]
       attr_accessor workload_identity_details: Types::WorkloadIdentityDetails
       attr_accessor exception_level: ("DEBUG")
       SENSITIVE: [:name, :description]
@@ -928,6 +960,22 @@ module Aws::BedrockAgentCoreControl
       SENSITIVE: []
     end
 
+    class InterceptorConfiguration
+      attr_accessor lambda: Types::LambdaInterceptorConfiguration
+      attr_accessor unknown: untyped
+      SENSITIVE: []
+
+      class Lambda < InterceptorConfiguration
+      end
+      class Unknown < InterceptorConfiguration
+      end
+    end
+
+    class InterceptorInputConfiguration
+      attr_accessor pass_request_headers: bool
+      SENSITIVE: []
+    end
+
     class InternalServerException
       attr_accessor message: ::String
       SENSITIVE: []
@@ -951,6 +999,11 @@ module Aws::BedrockAgentCoreControl
       SENSITIVE: []
     end
 
+    class LambdaInterceptorConfiguration
+      attr_accessor arn: ::String
+      SENSITIVE: []
+    end
+
     class LifecycleConfiguration
       attr_accessor idle_runtime_session_timeout: ::Integer
       attr_accessor max_lifetime: ::Integer
@@ -1448,6 +1501,7 @@ module Aws::BedrockAgentCoreControl
     class S3Location
       attr_accessor bucket: ::String
       attr_accessor prefix: ::String
+      attr_accessor version_id: ::String
       SENSITIVE: []
     end
 
@@ -1804,9 +1858,10 @@ module Aws::BedrockAgentCoreControl
       attr_accessor role_arn: ::String
       attr_accessor protocol_type: ("MCP")
       attr_accessor protocol_configuration: Types::GatewayProtocolConfiguration
-      attr_accessor authorizer_type: ("CUSTOM_JWT" | "AWS_IAM")
+      attr_accessor authorizer_type: ("CUSTOM_JWT" | "AWS_IAM" | "NONE")
       attr_accessor authorizer_configuration: Types::AuthorizerConfiguration
       attr_accessor kms_key_arn: ::String
+      attr_accessor interceptor_configurations: ::Array[Types::GatewayInterceptorConfiguration]
       attr_accessor exception_level: ("DEBUG")
       SENSITIVE: [:name, :description]
     end
@@ -1824,9 +1879,10 @@ module Aws::BedrockAgentCoreControl
       attr_accessor role_arn: ::String
       attr_accessor protocol_type: ("MCP")
       attr_accessor protocol_configuration: Types::GatewayProtocolConfiguration
-      attr_accessor authorizer_type: ("CUSTOM_JWT" | "AWS_IAM")
+      attr_accessor authorizer_type: ("CUSTOM_JWT" | "AWS_IAM" | "NONE")
       attr_accessor authorizer_configuration: Types::AuthorizerConfiguration
       attr_accessor kms_key_arn: ::String
+      attr_accessor interceptor_configurations: ::Array[Types::GatewayInterceptorConfiguration]
       attr_accessor workload_identity_details: Types::WorkloadIdentityDetails
       attr_accessor exception_level: ("DEBUG")
       SENSITIVE: [:name, :description]

metadata

@@ -1,7 +1,7 @@
 --- !ruby/object:Gem::Specification
 name: aws-sdk-bedrockagentcorecontrol
 version: !ruby/object:Gem::Version
-  version: 1.13.0
+  version: 1.15.0
 platform: ruby
 authors:
 - Amazon Web Services
@@ -18,7 +18,7 @@ dependencies:
         version: '3'
     - - ">="
       - !ruby/object:Gem::Version
-        version: 3.234.0
+        version: 3.239.1
   type: :runtime
   prerelease: false
   version_requirements: !ruby/object:Gem::Requirement
@@ -28,7 +28,7 @@ dependencies:
         version: '3'
     - - ">="
       - !ruby/object:Gem::Version
-        version: 3.234.0
+        version: 3.239.1
 - !ruby/object:Gem::Dependency
   name: aws-sigv4
   requirement: !ruby/object:Gem::Requirement