aws-iam-data 0.0.463 → 0.0.464

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.
Files changed (5) hide show
  1. package/dist/data/json/changelog.json +14 -0
  2. package/dist/data/json/iam.json +98 -10
  3. package/dist/data/json/metadata.json +12 -5
  4. package/dist/data/json/reports.json +2 -2
  5. package/package.json +1 -1
package/dist/data/json/changelog.json CHANGED
@@ -1,4 +1,18 @@
1
1
  [
2
+ {
3
+ "dateOfChange": "2025-10-16",
4
+ "addedServices": [],
5
+ "removedServices": [],
6
+ "addedActions": {
7
+ "Amazon Elastic Kubernetes Service": [
8
+ "eks:MutateViaKubernetesApi"
9
+ ],
10
+ "Amazon Kinesis Data Streams": [
11
+ "kinesis:InjectApiError"
12
+ ]
13
+ },
14
+ "removedActions": {}
15
+ },
2
16
  {
3
17
  "dateOfChange": "2025-10-15",
4
18
  "addedServices": [],
package/dist/data/json/iam.json CHANGED
@@ -35304,7 +35304,9 @@
35304
35304
  "required": false,
35305
35305
  "conditionKeys": [
35306
35306
  "aws:RequestTag/${TagKey}",
35307
- "aws:TagKeys"
35307
+ "aws:TagKeys",
35308
+ "bedrock-agentcore:subnets",
35309
+ "bedrock-agentcore:securityGroups"
35308
35310
  ],
35309
35311
  "dependentActions": [
35310
35312
  "iam:PassRole"
@@ -35378,7 +35380,9 @@
35378
35380
  "required": false,
35379
35381
  "conditionKeys": [
35380
35382
  "aws:RequestTag/${TagKey}",
35381
- "aws:TagKeys"
35383
+ "aws:TagKeys",
35384
+ "bedrock-agentcore:subnets",
35385
+ "bedrock-agentcore:securityGroups"
35382
35386
  ],
35383
35387
  "dependentActions": []
35384
35388
  }
@@ -35396,7 +35400,9 @@
35396
35400
  "required": false,
35397
35401
  "conditionKeys": [
35398
35402
  "aws:RequestTag/${TagKey}",
35399
- "aws:TagKeys"
35403
+ "aws:TagKeys",
35404
+ "bedrock-agentcore:subnets",
35405
+ "bedrock-agentcore:securityGroups"
35400
35406
  ],
35401
35407
  "dependentActions": []
35402
35408
  }
@@ -36992,6 +36998,15 @@
36992
36998
  "dependentActions": [
36993
36999
  "iam:PassRole"
36994
37000
  ]
37001
+ },
37002
+ {
37003
+ "resourceType": "",
37004
+ "required": false,
37005
+ "conditionKeys": [
37006
+ "bedrock-agentcore:subnets",
37007
+ "bedrock-agentcore:securityGroups"
37008
+ ],
37009
+ "dependentActions": []
36995
37010
  }
36996
37011
  ]
36997
37012
  },
@@ -37319,6 +37334,12 @@
37319
37334
  "description": "Filters access by namespace",
37320
37335
  "type": "String"
37321
37336
  },
37337
+ {
37338
+ "name": "bedrock-agentcore:securityGroups",
37339
+ "apiReferenceUrl": "https://docs.aws.amazon.com/bedrock-agentcore/latest/devguide/security-vpc-condition.html",
37340
+ "description": "Filters access by the ID of security groups configured for the AgentCore runtime",
37341
+ "type": "ArrayOfString"
37342
+ },
37322
37343
  {
37323
37344
  "name": "bedrock-agentcore:sessionId",
37324
37345
  "apiReferenceUrl": "https://docs.aws.amazon.com/bedrock-agentcore/latest/APIReference/#condition-keys-sessionId",
@@ -37331,6 +37352,12 @@
37331
37352
  "description": "Filters access by Memory Strategy Id",
37332
37353
  "type": "String"
37333
37354
  },
37355
+ {
37356
+ "name": "bedrock-agentcore:subnets",
37357
+ "apiReferenceUrl": "https://docs.aws.amazon.com/bedrock-agentcore/latest/devguide/security-vpc-condition.html",
37358
+ "description": "Filters access by the ID of subnets configured for the AgentCore runtime",
37359
+ "type": "ArrayOfString"
37360
+ },
37334
37361
  {
37335
37362
  "name": "bedrock-agentcore:userid",
37336
37363
  "apiReferenceUrl": "https://docs.aws.amazon.com/bedrock-agentcore/latest/APIReference/#condition-keys-userid",
@@ -155856,7 +155883,7 @@
155856
155883
  },
155857
155884
  {
155858
155885
  "name": "PutSystemLogEvents",
155859
- "apiReferenceUrl": "https://docs.aws.amazon.com/AmazonECS/latest/APIReference/API_PutSystemLogEvents.html",
155886
+ "apiReferenceUrl": "https://docs.aws.amazon.com/AmazonECS/latest/developerguide/logging-using-cloudtrail.html#cloudtrail-data-events",
155860
155887
  "permissionOnly": false,
155861
155888
  "description": "Grants permission to collect system logs from the container instances",
155862
155889
  "accessLevel": "Write",
@@ -160251,6 +160278,21 @@
160251
160278
  }
160252
160279
  ]
160253
160280
  },
160281
+ {
160282
+ "name": "MutateViaKubernetesApi",
160283
+ "apiReferenceUrl": "https://docs.aws.amazon.com/eks/latest/userguide/mutate-workloads.html",
160284
+ "permissionOnly": true,
160285
+ "description": "Grants permission to modify Kubernetes objects via AWS console",
160286
+ "accessLevel": "Write",
160287
+ "resourceTypes": [
160288
+ {
160289
+ "resourceType": "cluster",
160290
+ "required": true,
160291
+ "conditionKeys": [],
160292
+ "dependentActions": []
160293
+ }
160294
+ ]
160295
+ },
160254
160296
  {
160255
160297
  "name": "RegisterCluster",
160256
160298
  "apiReferenceUrl": "https://docs.aws.amazon.com/eks/latest/APIReference/API_RegisterCluster.html",
@@ -188812,7 +188854,10 @@
188812
188854
  {
188813
188855
  "resourceType": "association",
188814
188856
  "required": true,
188815
- "conditionKeys": [],
188857
+ "conditionKeys": [
188858
+ "fsx:NfsDataRepositoryAuthenticationEnabled",
188859
+ "fsx:NfsDataRepositoryEncryptionInTransitEnabled"
188860
+ ],
188816
188861
  "dependentActions": [
188817
188862
  "fsx:TagResource"
188818
188863
  ]
@@ -189206,7 +189251,7 @@
189206
189251
  "name": "DeleteResourcePolicy",
189207
189252
  "apiReferenceUrl": "https://docs.aws.amazon.com/fsx/latest/OpenZFSGuide/on-demand-replication.html",
189208
189253
  "permissionOnly": true,
189209
- "description": "Required to manage cross-account sharing of FSx volumes through AWS Resource Access Manager (RAM). PutResourcePolicy and GetResourcePolicy are also required",
189254
+ "description": "Grants permission to manage cross-account sharing of FSx volumes through AWS Resource Access Manager (RAM). PutResourcePolicy and GetResourcePolicy are also required",
189210
189255
  "accessLevel": "Permissions management",
189211
189256
  "resourceTypes": [
189212
189257
  {
@@ -189512,7 +189557,7 @@
189512
189557
  "name": "GetResourcePolicy",
189513
189558
  "apiReferenceUrl": "https://docs.aws.amazon.com/fsx/latest/OpenZFSGuide/on-demand-replication.html",
189514
189559
  "permissionOnly": true,
189515
- "description": "Required to manage cross-account sharing of FSx volumes through AWS Resource Access Manager (RAM). PutResourcePolicy and DeleteResourcePolicy are also required",
189560
+ "description": "Grants permission to manage cross-account sharing of FSx volumes through AWS Resource Access Manager (RAM). PutResourcePolicy and DeleteResourcePolicy are also required",
189516
189561
  "accessLevel": "Permissions management",
189517
189562
  "resourceTypes": [
189518
189563
  {
@@ -189599,7 +189644,7 @@
189599
189644
  "name": "PutResourcePolicy",
189600
189645
  "apiReferenceUrl": "https://docs.aws.amazon.com/fsx/latest/OpenZFSGuide/on-demand-replication.html",
189601
189646
  "permissionOnly": true,
189602
- "description": "Required to manage cross-account sharing of FSx volumes through AWS Resource Access Manager (RAM). DeleteResourcePolicy and GetResourcePolicy are also required",
189647
+ "description": "Grants permission to manage cross-account sharing of FSx volumes through AWS Resource Access Manager (RAM). DeleteResourcePolicy and GetResourcePolicy are also required",
189603
189648
  "accessLevel": "Permissions management",
189604
189649
  "resourceTypes": [
189605
189650
  {
@@ -189671,7 +189716,10 @@
189671
189716
  {
189672
189717
  "resourceType": "association",
189673
189718
  "required": false,
189674
- "conditionKeys": [],
189719
+ "conditionKeys": [
189720
+ "fsx:NfsDataRepositoryAuthenticationEnabled",
189721
+ "fsx:NfsDataRepositoryEncryptionInTransitEnabled"
189722
+ ],
189675
189723
  "dependentActions": []
189676
189724
  },
189677
189725
  {
@@ -189713,7 +189761,10 @@
189713
189761
  {
189714
189762
  "resourceType": "volume",
189715
189763
  "required": false,
189716
- "conditionKeys": [],
189764
+ "conditionKeys": [
189765
+ "fsx:ParentVolumeId",
189766
+ "fsx:StorageVirtualMachineId"
189767
+ ],
189717
189768
  "dependentActions": []
189718
189769
  },
189719
189770
  {
@@ -245644,6 +245695,25 @@
245644
245695
  }
245645
245696
  ]
245646
245697
  },
245698
+ {
245699
+ "name": "InjectApiError",
245700
+ "apiReferenceUrl": "https://docs.aws.amazon.com/fis/latest/userguide/fis-actions-reference.html",
245701
+ "permissionOnly": true,
245702
+ "description": "Grants permission to temporarily inject errors for target API requests",
245703
+ "accessLevel": "Write",
245704
+ "resourceTypes": [
245705
+ {
245706
+ "resourceType": "",
245707
+ "required": false,
245708
+ "conditionKeys": [
245709
+ "kinesis:FisActionId",
245710
+ "kinesis:FisTargetArns",
245711
+ "kinesis:FisInjectPercentage"
245712
+ ],
245713
+ "dependentActions": []
245714
+ }
245715
+ ]
245716
+ },
245647
245717
  {
245648
245718
  "name": "ListShards",
245649
245719
  "apiReferenceUrl": "https://docs.aws.amazon.com/kinesis/latest/APIReference/API_ListShards.html",
@@ -246057,6 +246127,24 @@
246057
246127
  "apiReferenceUrl": "https://docs.aws.amazon.com/IAM/latest/UserGuide/reference_policies_condition-keys.html#condition-keys-tagkeys",
246058
246128
  "description": "Filters access by the presence of tag keys in the request",
246059
246129
  "type": "ArrayOfString"
246130
+ },
246131
+ {
246132
+ "name": "kinesis:FisActionId",
246133
+ "apiReferenceUrl": "https://docs.aws.amazon.com/fis/latest/userguide/fis-actions-reference.html",
246134
+ "description": "Filters access by the ID of an AWS FIS action",
246135
+ "type": "String"
246136
+ },
246137
+ {
246138
+ "name": "kinesis:FisInjectPercentage",
246139
+ "apiReferenceUrl": "https://docs.aws.amazon.com/fis/latest/userguide/fis-actions-reference.html",
246140
+ "description": "Filters access by the percentage of calls being affected by an AWS FIS action",
246141
+ "type": "Numeric"
246142
+ },
246143
+ {
246144
+ "name": "kinesis:FisTargetArns",
246145
+ "apiReferenceUrl": "https://docs.aws.amazon.com/fis/latest/userguide/fis-actions-reference.html",
246146
+ "description": "Filters access by the ARN of an AWS FIS target",
246147
+ "type": "ArrayOfARN"
246060
246148
  }
246061
246149
  ]
246062
246150
  },
package/dist/data/json/metadata.json CHANGED
@@ -2756,7 +2756,7 @@
2756
2756
  "workload-identity-directory",
2757
2757
  "token-vault"
2758
2758
  ],
2759
- "conditionKeysCount": 14,
2759
+ "conditionKeysCount": 16,
2760
2760
  "conditionKeys": [
2761
2761
  "aws:RequestTag/${TagKey}",
2762
2762
  "aws:ResourceTag/${TagKey}",
@@ -2769,8 +2769,10 @@
2769
2769
  "bedrock-agentcore:InboundJwtClaim/sub",
2770
2770
  "bedrock-agentcore:actorId",
2771
2771
  "bedrock-agentcore:namespace",
2772
+ "bedrock-agentcore:securityGroups",
2772
2773
  "bedrock-agentcore:sessionId",
2773
2774
  "bedrock-agentcore:strategyId",
2775
+ "bedrock-agentcore:subnets",
2774
2776
  "bedrock-agentcore:userid"
2775
2777
  ]
2776
2778
  },
@@ -10831,7 +10833,7 @@
10831
10833
  "name": "Amazon Elastic Kubernetes Service",
10832
10834
  "servicePrefix": "eks",
10833
10835
  "authReferenceUrl": "https://docs.aws.amazon.com/service-authorization/latest/reference/list_amazonelastickubernetesservice.html",
10834
- "actionsCount": 62,
10836
+ "actionsCount": 63,
10835
10837
  "actions": [
10836
10838
  "AccessKubernetesApi",
10837
10839
  "AssociateAccessPolicy",
@@ -10883,6 +10885,7 @@
10883
10885
  "ListPodIdentityAssociations",
10884
10886
  "ListTagsForResource",
10885
10887
  "ListUpdates",
10888
+ "MutateViaKubernetesApi",
10886
10889
  "RegisterCluster",
10887
10890
  "StartInsightsRefresh",
10888
10891
  "TagResource",
@@ -17038,7 +17041,7 @@
17038
17041
  "name": "Amazon Kinesis Data Streams",
17039
17042
  "servicePrefix": "kinesis",
17040
17043
  "authReferenceUrl": "https://docs.aws.amazon.com/service-authorization/latest/reference/list_amazonkinesisdatastreams.html",
17041
- "actionsCount": 35,
17044
+ "actionsCount": 36,
17042
17045
  "actions": [
17043
17046
  "AddTagsToStream",
17044
17047
  "CreateStream",
@@ -17056,6 +17059,7 @@
17056
17059
  "GetResourcePolicy",
17057
17060
  "GetShardIterator",
17058
17061
  "IncreaseStreamRetentionPeriod",
17062
+ "InjectApiError",
17059
17063
  "ListShards",
17060
17064
  "ListStreamConsumers",
17061
17065
  "ListStreams",
@@ -17082,11 +17086,14 @@
17082
17086
  "consumer",
17083
17087
  "kmsKey"
17084
17088
  ],
17085
- "conditionKeysCount": 3,
17089
+ "conditionKeysCount": 6,
17086
17090
  "conditionKeys": [
17087
17091
  "aws:RequestTag/${TagKey}",
17088
17092
  "aws:ResourceTag/${TagKey}",
17089
- "aws:TagKeys"
17093
+ "aws:TagKeys",
17094
+ "kinesis:FisActionId",
17095
+ "kinesis:FisInjectPercentage",
17096
+ "kinesis:FisTargetArns"
17090
17097
  ]
17091
17098
  },
17092
17099
  {
package/dist/data/json/reports.json CHANGED
@@ -2,7 +2,7 @@
2
2
  "Actions by type": [
3
3
  {
4
4
  "key": "Write Actions",
5
- "value": 10633
5
+ "value": 10635
6
6
  },
7
7
  {
8
8
  "key": "Read Actions",
@@ -414,7 +414,7 @@
414
414
  },
415
415
  {
416
416
  "key": "Total number of distinct condition keys",
417
- "value": 1268
417
+ "value": 1273
418
418
  }
419
419
  ]
420
420
  }
package/package.json CHANGED
@@ -1,6 +1,6 @@
1
1
  {
2
2
  "name": "aws-iam-data",
3
- "version": "0.0.463",
3
+ "version": "0.0.464",
4
4
  "description": "Provides AWS IAM data gathered from the official AWS IAM docs as a convenient npm package that can be used in other OSS projects.",
5
5
  "main": "./dist/index.js",
6
6
  "types": "./dist/index.d.ts",