@cloud-copilot/iam-data 0.15.202510281 → 0.15.202511081

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.
Files changed (44) hide show
  1. package/data/actions/aps.json +190 -0
  2. package/data/actions/autoscaling.json +25 -3
  3. package/data/actions/batch.json +28 -18
  4. package/data/actions/bedrock-agentcore.json +8 -17
  5. package/data/actions/bedrock.json +15 -0
  6. package/data/actions/cloudfront.json +71 -88
  7. package/data/actions/cognito-idp.json +75 -0
  8. package/data/actions/connect.json +48 -0
  9. package/data/actions/ec2.json +219 -33
  10. package/data/actions/elasticloadbalancing.json +9 -0
  11. package/data/actions/emr-containers.json +15 -0
  12. package/data/actions/guardduty.json +23 -1
  13. package/data/actions/iotmanagedintegrations.json +15 -0
  14. package/data/actions/kinesis.json +50 -0
  15. package/data/actions/kms.json +4 -1
  16. package/data/actions/lambda.json +2 -1
  17. package/data/actions/mediaconnect.json +83 -10
  18. package/data/actions/profile.json +368 -0
  19. package/data/actions/redshift-serverless.json +2 -2
  20. package/data/actions/rtbfabric.json +116 -12
  21. package/data/actions/s3tables.json +85 -2
  22. package/data/actions/sts.json +34 -0
  23. package/data/actions/support-console.json +18 -0
  24. package/data/actions/support.json +8 -0
  25. package/data/actions/user-subscriptions.json +8 -0
  26. package/data/actions/vpc-lattice.json +81 -0
  27. package/data/conditionKeys/bedrock-agentcore.json +0 -10
  28. package/data/conditionKeys/ec2.json +15 -15
  29. package/data/conditionKeys/lambda.json +5 -0
  30. package/data/conditionKeys/mediaconnect.json +17 -1
  31. package/data/conditionKeys/s3tables.json +20 -0
  32. package/data/conditionKeys/sts.json +10 -0
  33. package/data/conditionKeys/vpc-lattice.json +15 -0
  34. package/data/conditionPatterns.json +3 -0
  35. package/data/resourceTypes/aps.json +9 -0
  36. package/data/resourceTypes/bedrock.json +4 -0
  37. package/data/resourceTypes/ec2.json +19 -5
  38. package/data/resourceTypes/guardduty.json +4 -1
  39. package/data/resourceTypes/mediaconnect.json +16 -4
  40. package/data/resourceTypes/profile.json +14 -0
  41. package/data/resourceTypes/rtbfabric.json +5 -0
  42. package/data/resourceTypes/s3tables.json +7 -1
  43. package/data/resourceTypes/vpc-lattice.json +12 -0
  44. package/package.json +2 -2
package/data/actions/cloudfront.json CHANGED
@@ -83,14 +83,7 @@
83
83
  "name": "CreateAnycastIpList",
84
84
  "description": "Grants permission to create an Anycast static IP list",
85
85
  "accessLevel": "Write",
86
- "resourceTypes": [
87
- {
88
- "name": "anycast-ip-list",
89
- "required": true,
90
- "conditionKeys": [],
91
- "dependentActions": []
92
- }
93
- ],
86
+ "resourceTypes": [],
94
87
  "conditionKeys": [
95
88
  "aws:RequestTag/${TagKey}",
96
89
  "aws:TagKeys"
@@ -101,14 +94,7 @@
101
94
  "name": "CreateCachePolicy",
102
95
  "description": "Grants permission to add a new cache policy to CloudFront",
103
96
  "accessLevel": "Write",
104
- "resourceTypes": [
105
- {
106
- "name": "cache-policy",
107
- "required": true,
108
- "conditionKeys": [],
109
- "dependentActions": []
110
- }
111
- ],
97
+ "resourceTypes": [],
112
98
  "conditionKeys": [],
113
99
  "dependentActions": []
114
100
  },
@@ -116,14 +102,7 @@
116
102
  "name": "CreateCloudFrontOriginAccessIdentity",
117
103
  "description": "Grants permission to create a new CloudFront origin access identity",
118
104
  "accessLevel": "Write",
119
- "resourceTypes": [
120
- {
121
- "name": "origin-access-identity",
122
- "required": true,
123
- "conditionKeys": [],
124
- "dependentActions": []
125
- }
126
- ],
105
+ "resourceTypes": [],
127
106
  "conditionKeys": [],
128
107
  "dependentActions": []
129
108
  },
@@ -142,14 +121,7 @@
142
121
  "name": "CreateContinuousDeploymentPolicy",
143
122
  "description": "Grants permission to add a new continuous-deployment policy to CloudFront",
144
123
  "accessLevel": "Write",
145
- "resourceTypes": [
146
- {
147
- "name": "continuous-deployment-policy",
148
- "required": true,
149
- "conditionKeys": [],
150
- "dependentActions": []
151
- }
152
- ],
124
+ "resourceTypes": [],
153
125
  "conditionKeys": [],
154
126
  "dependentActions": []
155
127
  },
@@ -157,14 +129,7 @@
157
129
  "name": "CreateDistribution",
158
130
  "description": "Grants permission to create a new web distribution",
159
131
  "accessLevel": "Write",
160
- "resourceTypes": [
161
- {
162
- "name": "distribution",
163
- "required": true,
164
- "conditionKeys": [],
165
- "dependentActions": []
166
- }
167
- ],
132
+ "resourceTypes": [],
168
133
  "conditionKeys": [],
169
134
  "dependentActions": [
170
135
  "cloudfront:CreateConnectionGroup"
@@ -201,14 +166,7 @@
201
166
  "name": "CreateFunction",
202
167
  "description": "Grants permission to create a CloudFront function",
203
168
  "accessLevel": "Write",
204
- "resourceTypes": [
205
- {
206
- "name": "function",
207
- "required": true,
208
- "conditionKeys": [],
209
- "dependentActions": []
210
- }
211
- ],
169
+ "resourceTypes": [],
212
170
  "conditionKeys": [],
213
171
  "dependentActions": []
214
172
  },
@@ -285,14 +243,7 @@
285
243
  "name": "CreateOriginRequestPolicy",
286
244
  "description": "Grants permission to add a new origin request policy to CloudFront",
287
245
  "accessLevel": "Write",
288
- "resourceTypes": [
289
- {
290
- "name": "origin-request-policy",
291
- "required": true,
292
- "conditionKeys": [],
293
- "dependentActions": []
294
- }
295
- ],
246
+ "resourceTypes": [],
296
247
  "conditionKeys": [],
297
248
  "dependentActions": []
298
249
  },
@@ -308,14 +259,7 @@
308
259
  "name": "CreateRealtimeLogConfig",
309
260
  "description": "Grants permission to create a real-time log configuration",
310
261
  "accessLevel": "Write",
311
- "resourceTypes": [
312
- {
313
- "name": "realtime-log-config",
314
- "required": true,
315
- "conditionKeys": [],
316
- "dependentActions": []
317
- }
318
- ],
262
+ "resourceTypes": [],
319
263
  "conditionKeys": [],
320
264
  "dependentActions": []
321
265
  },
@@ -323,14 +267,7 @@
323
267
  "name": "CreateResponseHeadersPolicy",
324
268
  "description": "Grants permission to add a new response headers policy to CloudFront",
325
269
  "accessLevel": "Write",
326
- "resourceTypes": [
327
- {
328
- "name": "response-headers-policy",
329
- "required": true,
330
- "conditionKeys": [],
331
- "dependentActions": []
332
- }
333
- ],
270
+ "resourceTypes": [],
334
271
  "conditionKeys": [],
335
272
  "dependentActions": []
336
273
  },
@@ -347,14 +284,7 @@
347
284
  "name": "CreateStreamingDistribution",
348
285
  "description": "Grants permission to create a new RTMP distribution",
349
286
  "accessLevel": "Write",
350
- "resourceTypes": [
351
- {
352
- "name": "streaming-distribution",
353
- "required": true,
354
- "conditionKeys": [],
355
- "dependentActions": []
356
- }
357
- ],
287
+ "resourceTypes": [],
358
288
  "conditionKeys": [],
359
289
  "dependentActions": []
360
290
  },
@@ -362,14 +292,7 @@
362
292
  "name": "CreateStreamingDistributionWithTags",
363
293
  "description": "Grants permission to create a new RTMP distribution with tags",
364
294
  "accessLevel": "Write",
365
- "resourceTypes": [
366
- {
367
- "name": "streaming-distribution",
368
- "required": true,
369
- "conditionKeys": [],
370
- "dependentActions": []
371
- }
372
- ],
295
+ "resourceTypes": [],
373
296
  "conditionKeys": [
374
297
  "aws:RequestTag/${TagKey}",
375
298
  "aws:TagKeys"
@@ -621,6 +544,21 @@
621
544
  "conditionKeys": [],
622
545
  "dependentActions": []
623
546
  },
547
+ "deleteresourcepolicy": {
548
+ "name": "DeleteResourcePolicy",
549
+ "description": "Grants permission to delete a resource's policy document",
550
+ "accessLevel": "Write",
551
+ "resourceTypes": [
552
+ {
553
+ "name": "vpcorigin",
554
+ "required": false,
555
+ "conditionKeys": [],
556
+ "dependentActions": []
557
+ }
558
+ ],
559
+ "conditionKeys": [],
560
+ "dependentActions": []
561
+ },
624
562
  "deleteresponseheaderspolicy": {
625
563
  "name": "DeleteResponseHeadersPolicy",
626
564
  "description": "Grants permission to delete a response headers policy",
@@ -1156,6 +1094,21 @@
1156
1094
  "conditionKeys": [],
1157
1095
  "dependentActions": []
1158
1096
  },
1097
+ "getresourcepolicy": {
1098
+ "name": "GetResourcePolicy",
1099
+ "description": "Grants permission to get the information about a resource's policy document",
1100
+ "accessLevel": "Read",
1101
+ "resourceTypes": [
1102
+ {
1103
+ "name": "vpcorigin",
1104
+ "required": false,
1105
+ "conditionKeys": [],
1106
+ "dependentActions": []
1107
+ }
1108
+ ],
1109
+ "conditionKeys": [],
1110
+ "dependentActions": []
1111
+ },
1159
1112
  "getresponseheaderspolicy": {
1160
1113
  "name": "GetResponseHeadersPolicy",
1161
1114
  "description": "Grants permission to get the response headers policy",
@@ -1628,6 +1581,21 @@
1628
1581
  "conditionKeys": [],
1629
1582
  "dependentActions": []
1630
1583
  },
1584
+ "putresourcepolicy": {
1585
+ "name": "PutResourcePolicy",
1586
+ "description": "Grants permission to update or create a resource's policy document",
1587
+ "accessLevel": "Write",
1588
+ "resourceTypes": [
1589
+ {
1590
+ "name": "vpcorigin",
1591
+ "required": false,
1592
+ "conditionKeys": [],
1593
+ "dependentActions": []
1594
+ }
1595
+ ],
1596
+ "conditionKeys": [],
1597
+ "dependentActions": []
1598
+ },
1631
1599
  "tagresource": {
1632
1600
  "name": "TagResource",
1633
1601
  "description": "Grants permission to add tags to a CloudFront resource",
@@ -1738,6 +1706,21 @@
1738
1706
  ],
1739
1707
  "dependentActions": []
1740
1708
  },
1709
+ "updateanycastiplist": {
1710
+ "name": "UpdateAnycastIpList",
1711
+ "description": "Grants permission to update an Anycast static IP list",
1712
+ "accessLevel": "Write",
1713
+ "resourceTypes": [
1714
+ {
1715
+ "name": "anycast-ip-list",
1716
+ "required": true,
1717
+ "conditionKeys": [],
1718
+ "dependentActions": []
1719
+ }
1720
+ ],
1721
+ "conditionKeys": [],
1722
+ "dependentActions": []
1723
+ },
1741
1724
  "updatecachepolicy": {
1742
1725
  "name": "UpdateCachePolicy",
1743
1726
  "description": "Grants permission to update a cache policy",
package/data/actions/cognito-idp.json CHANGED
@@ -526,6 +526,21 @@
526
526
  "conditionKeys": [],
527
527
  "dependentActions": []
528
528
  },
529
+ "createterms": {
530
+ "name": "CreateTerms",
531
+ "description": "Grants permission to create terms and associate it with an app client",
532
+ "accessLevel": "Write",
533
+ "resourceTypes": [
534
+ {
535
+ "name": "userpool",
536
+ "required": true,
537
+ "conditionKeys": [],
538
+ "dependentActions": []
539
+ }
540
+ ],
541
+ "conditionKeys": [],
542
+ "dependentActions": []
543
+ },
529
544
  "createuserimportjob": {
530
545
  "name": "CreateUserImportJob",
531
546
  "description": "Grants permission to create user CSV import jobs",
@@ -643,6 +658,21 @@
643
658
  "conditionKeys": [],
644
659
  "dependentActions": []
645
660
  },
661
+ "deleteterms": {
662
+ "name": "DeleteTerms",
663
+ "description": "Grants permission to delete terms for an app client",
664
+ "accessLevel": "Write",
665
+ "resourceTypes": [
666
+ {
667
+ "name": "userpool",
668
+ "required": true,
669
+ "conditionKeys": [],
670
+ "dependentActions": []
671
+ }
672
+ ],
673
+ "conditionKeys": [],
674
+ "dependentActions": []
675
+ },
646
676
  "deleteuser": {
647
677
  "name": "DeleteUser",
648
678
  "description": "Grants permission to allow a user to delete one's self",
@@ -779,6 +809,21 @@
779
809
  "conditionKeys": [],
780
810
  "dependentActions": []
781
811
  },
812
+ "describeterms": {
813
+ "name": "DescribeTerms",
814
+ "description": "Grants permission to get the detailed information about terms for an app client",
815
+ "accessLevel": "Read",
816
+ "resourceTypes": [
817
+ {
818
+ "name": "userpool",
819
+ "required": true,
820
+ "conditionKeys": [],
821
+ "dependentActions": []
822
+ }
823
+ ],
824
+ "conditionKeys": [],
825
+ "dependentActions": []
826
+ },
782
827
  "describeuserimportjob": {
783
828
  "name": "DescribeUserImportJob",
784
829
  "description": "Grants permission to describe any user import job",
@@ -1117,6 +1162,21 @@
1117
1162
  "conditionKeys": [],
1118
1163
  "dependentActions": []
1119
1164
  },
1165
+ "listterms": {
1166
+ "name": "ListTerms",
1167
+ "description": "Grants permission to list all terms for a user pool",
1168
+ "accessLevel": "List",
1169
+ "resourceTypes": [
1170
+ {
1171
+ "name": "userpool",
1172
+ "required": true,
1173
+ "conditionKeys": [],
1174
+ "dependentActions": []
1175
+ }
1176
+ ],
1177
+ "conditionKeys": [],
1178
+ "dependentActions": []
1179
+ },
1120
1180
  "listuserimportjobs": {
1121
1181
  "name": "ListUserImportJobs",
1122
1182
  "description": "Grants permission to list all user import jobs",
@@ -1441,6 +1501,21 @@
1441
1501
  "conditionKeys": [],
1442
1502
  "dependentActions": []
1443
1503
  },
1504
+ "updateterms": {
1505
+ "name": "UpdateTerms",
1506
+ "description": "Grants permission to update terms for an app client",
1507
+ "accessLevel": "Write",
1508
+ "resourceTypes": [
1509
+ {
1510
+ "name": "userpool",
1511
+ "required": true,
1512
+ "conditionKeys": [],
1513
+ "dependentActions": []
1514
+ }
1515
+ ],
1516
+ "conditionKeys": [],
1517
+ "dependentActions": []
1518
+ },
1444
1519
  "updateuserattributes": {
1445
1520
  "name": "UpdateUserAttributes",
1446
1521
  "description": "Grants permission to allow a user to update a specific attribute (one at a time)",
package/data/actions/connect.json CHANGED
@@ -163,6 +163,24 @@
163
163
  ],
164
164
  "dependentActions": []
165
165
  },
166
+ "associateemailaddressalias": {
167
+ "name": "AssociateEmailAddressAlias",
168
+ "description": "Grants permission to associate an alias with an email address resource in an Amazon Connect instance",
169
+ "accessLevel": "Write",
170
+ "resourceTypes": [
171
+ {
172
+ "name": "email-address",
173
+ "required": true,
174
+ "conditionKeys": [],
175
+ "dependentActions": []
176
+ }
177
+ ],
178
+ "conditionKeys": [
179
+ "aws:ResourceTag/${TagKey}",
180
+ "connect:InstanceId"
181
+ ],
182
+ "dependentActions": []
183
+ },
166
184
  "associateflow": {
167
185
  "name": "AssociateFlow",
168
186
  "description": "Grants permission to associate a resource with a flow in an Amazon Connect instance",
@@ -2393,6 +2411,24 @@
2393
2411
  "iam:GetRolePolicy"
2394
2412
  ]
2395
2413
  },
2414
+ "disassociateemailaddressalias": {
2415
+ "name": "DisassociateEmailAddressAlias",
2416
+ "description": "Grants permission to disassociate an alias from an email address resource in an Amazon Connect instance",
2417
+ "accessLevel": "Write",
2418
+ "resourceTypes": [
2419
+ {
2420
+ "name": "email-address",
2421
+ "required": true,
2422
+ "conditionKeys": [],
2423
+ "dependentActions": []
2424
+ }
2425
+ ],
2426
+ "conditionKeys": [
2427
+ "aws:ResourceTag/${TagKey}",
2428
+ "connect:InstanceId"
2429
+ ],
2430
+ "dependentActions": []
2431
+ },
2396
2432
  "disassociateflow": {
2397
2433
  "name": "DisassociateFlow",
2398
2434
  "description": "Grants permission to disassociate a resource from a flow in an Amazon Connect instance",
@@ -4968,6 +5004,12 @@
4968
5004
  "conditionKeys": [],
4969
5005
  "dependentActions": []
4970
5006
  },
5007
+ {
5008
+ "name": "email-address",
5009
+ "required": false,
5010
+ "conditionKeys": [],
5011
+ "dependentActions": []
5012
+ },
4971
5013
  {
4972
5014
  "name": "evaluation-form",
4973
5015
  "required": false,
@@ -5170,6 +5212,12 @@
5170
5212
  "conditionKeys": [],
5171
5213
  "dependentActions": []
5172
5214
  },
5215
+ {
5216
+ "name": "email-address",
5217
+ "required": false,
5218
+ "conditionKeys": [],
5219
+ "dependentActions": []
5220
+ },
5173
5221
  {
5174
5222
  "name": "evaluation-form",
5175
5223
  "required": false,