cdk-iam-floyd 0.778.0 → 0.779.0

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.
Files changed (10) hide show
  1. package/README.md +3 -3
  2. package/lib/generated/policy-statements/bedrockagentcore.d.ts +102 -0
  3. package/lib/generated/policy-statements/bedrockagentcore.js +125 -1
  4. package/lib/generated/policy-statements/kinesisdatastreams.d.ts +7 -3
  5. package/lib/generated/policy-statements/kinesisdatastreams.js +8 -4
  6. package/lib/generated/policy-statements/location.d.ts +38 -0
  7. package/lib/generated/policy-statements/location.js +51 -1
  8. package/lib/generated/policy-statements/marketplace.d.ts +186 -38
  9. package/lib/generated/policy-statements/marketplace.js +187 -39
  10. package/package.json +1 -1
package/README.md CHANGED
@@ -16,9 +16,9 @@
16
16
  Support for:
17
17
 
18
18
  - 447 Services
19
- - 20656 Actions
20
- - 2199 Resource Types
21
- - 2333 Condition keys
19
+ - 20666 Actions
20
+ - 2200 Resource Types
21
+ - 2334 Condition keys
22
22
  <!-- /stats -->
23
23
 
24
24
  ![EXPERIMENTAL](https://img.shields.io/badge/stability-experimantal-orange?style=for-the-badge)**<br>This is an early version of the package. The API will change while I implement new features. Therefore make sure you use an exact version in your `package.json` before it reaches 1.0.0.**
package/lib/generated/policy-statements/bedrockagentcore.d.ts CHANGED
@@ -96,6 +96,7 @@ export declare class BedrockAgentcore extends PolicyStatement {
96
96
  * - .ifAwsTagKeys()
97
97
  * - .ifSubnets()
98
98
  * - .ifSecurityGroups()
99
+ * - .ifRuntimeAuthorizerType()
99
100
  *
100
101
  * Dependent actions:
101
102
  * - iam:PassRole
@@ -215,6 +216,23 @@ export declare class BedrockAgentcore extends PolicyStatement {
215
216
  * https://docs.aws.amazon.com/bedrock-agentcore-control/latest/APIReference/API_CreateGatewayTarget.html
216
217
  */
217
218
  toCreateGatewayTarget(): this;
219
+ /**
220
+ * Grants permission to create a new harness
221
+ *
222
+ * Access Level: Write
223
+ *
224
+ * Possible conditions:
225
+ * - .ifAwsRequestTag()
226
+ * - .ifAwsTagKeys()
227
+ *
228
+ * Dependent actions:
229
+ * - bedrock-agentcore:CreateAgentRuntime
230
+ * - bedrock-agentcore:GetAgentRuntime
231
+ * - iam:PassRole
232
+ *
233
+ * https://docs.aws.amazon.com/bedrock-agentcore-control/latest/APIReference/API_CreateHarness.html
234
+ */
235
+ toCreateHarness(): this;
218
236
  /**
219
237
  * Grants permission to create a Memory resource
220
238
  *
@@ -387,6 +405,19 @@ export declare class BedrockAgentcore extends PolicyStatement {
387
405
  * https://docs.aws.amazon.com/bedrock-agentcore-control/latest/APIReference/API_DeleteGatewayTarget.html
388
406
  */
389
407
  toDeleteGatewayTarget(): this;
408
+ /**
409
+ * Grants permission to delete a harness
410
+ *
411
+ * Access Level: Write
412
+ *
413
+ * Dependent actions:
414
+ * - bedrock-agentcore:DeleteAgentRuntime
415
+ * - bedrock-agentcore:GetAgentRuntime
416
+ * - iam:PassRole
417
+ *
418
+ * https://docs.aws.amazon.com/bedrock-agentcore-control/latest/APIReference/API_DeleteHarness.html
419
+ */
420
+ toDeleteHarness(): this;
390
421
  /**
391
422
  * Grants permission to delete a Memory resource
392
423
  *
@@ -583,6 +614,14 @@ export declare class BedrockAgentcore extends PolicyStatement {
583
614
  * https://docs.aws.amazon.com/bedrock-agentcore-control/latest/APIReference/API_GetGatewayTarget.html
584
615
  */
585
616
  toGetGatewayTarget(): this;
617
+ /**
618
+ * Grants permission to get details of a harness
619
+ *
620
+ * Access Level: Read
621
+ *
622
+ * https://docs.aws.amazon.com/bedrock-agentcore-control/latest/APIReference/API_GetHarness.html
623
+ */
624
+ toGetHarness(): this;
586
625
  /**
587
626
  * Grants permission to fetch details for a Memory resource
588
627
  *
@@ -785,6 +824,17 @@ export declare class BedrockAgentcore extends PolicyStatement {
785
824
  * https://docs.aws.amazon.com/bedrock-agentcore/latest/APIReference/welcome.html
786
825
  */
787
826
  toInvokeGateway(): this;
827
+ /**
828
+ * Grants permission to invoke a harness
829
+ *
830
+ * Access Level: Write
831
+ *
832
+ * Dependent actions:
833
+ * - bedrock-agentcore:InvokeAgentRuntime
834
+ *
835
+ * https://docs.aws.amazon.com/bedrock-agentcore/latest/APIReference/API_InvokeHarness.html
836
+ */
837
+ toInvokeHarness(): this;
788
838
  /**
789
839
  * Grants permission to invoke an MCP operation against an existing registry
790
840
  *
@@ -909,6 +959,14 @@ export declare class BedrockAgentcore extends PolicyStatement {
909
959
  * https://docs.aws.amazon.com/bedrock-agentcore-control/latest/APIReference/API_ListGateways.html
910
960
  */
911
961
  toListGateways(): this;
962
+ /**
963
+ * Grants permission to list harnesses
964
+ *
965
+ * Access Level: List
966
+ *
967
+ * https://docs.aws.amazon.com/bedrock-agentcore-control/latest/APIReference/API_ListHarnesses.html
968
+ */
969
+ toListHarnesses(): this;
912
970
  /**
913
971
  * Grants permission to list memory resources
914
972
  *
@@ -1204,6 +1262,7 @@ export declare class BedrockAgentcore extends PolicyStatement {
1204
1262
  * Possible conditions:
1205
1263
  * - .ifSubnets()
1206
1264
  * - .ifSecurityGroups()
1265
+ * - .ifRuntimeAuthorizerType()
1207
1266
  *
1208
1267
  * Dependent actions:
1209
1268
  * - iam:PassRole
@@ -1262,6 +1321,19 @@ export declare class BedrockAgentcore extends PolicyStatement {
1262
1321
  * https://docs.aws.amazon.com/bedrock-agentcore-control/latest/APIReference/API_UpdateGatewayTarget.html
1263
1322
  */
1264
1323
  toUpdateGatewayTarget(): this;
1324
+ /**
1325
+ * Grants permission to update a harness
1326
+ *
1327
+ * Access Level: Write
1328
+ *
1329
+ * Dependent actions:
1330
+ * - bedrock-agentcore:GetAgentRuntime
1331
+ * - bedrock-agentcore:UpdateAgentRuntime
1332
+ * - iam:PassRole
1333
+ *
1334
+ * https://docs.aws.amazon.com/bedrock-agentcore-control/latest/APIReference/API_UpdateHarness.html
1335
+ */
1336
+ toUpdateHarness(): this;
1265
1337
  /**
1266
1338
  * Grants permission to update a Memory resource
1267
1339
  *
@@ -1619,6 +1691,20 @@ export declare class BedrockAgentcore extends PolicyStatement {
1619
1691
  * @param partition - Partition of the AWS account [aws, aws-cn, aws-us-gov]; defaults to `aws`, unless using the CDK, where the default is the current Stack's partition.
1620
1692
  */
1621
1693
  onRegistryRecord(registryId: string, recordId: string, account?: string, region?: string, partition?: string): this;
1694
+ /**
1695
+ * Adds a resource of type harness to the statement
1696
+ *
1697
+ * https://docs.aws.amazon.com/bedrock-agentcore/latest/APIReference/harness.html
1698
+ *
1699
+ * @param harnessId - Identifier for the harnessId.
1700
+ * @param account - Account of the resource; defaults to `*`, unless using the CDK, where the default is the current Stack's account.
1701
+ * @param region - Region of the resource; defaults to `*`, unless using the CDK, where the default is the current Stack's region.
1702
+ * @param partition - Partition of the AWS account [aws, aws-cn, aws-us-gov]; defaults to `aws`, unless using the CDK, where the default is the current Stack's partition.
1703
+ *
1704
+ * Possible conditions:
1705
+ * - .ifAwsResourceTag()
1706
+ */
1707
+ onHarness(harnessId: string, account?: string, region?: string, partition?: string): this;
1622
1708
  /**
1623
1709
  * Filters access by creating requests based on the allowed set of values for each of the mandatory tags
1624
1710
  *
@@ -1633,6 +1719,7 @@ export declare class BedrockAgentcore extends PolicyStatement {
1633
1719
  * - .toCreateCodeInterpreter()
1634
1720
  * - .toCreateEvaluator()
1635
1721
  * - .toCreateGateway()
1722
+ * - .toCreateHarness()
1636
1723
  * - .toCreateMemory()
1637
1724
  * - .toCreateOauth2CredentialProvider()
1638
1725
  * - .toCreateOnlineEvaluationConfig()
@@ -1668,6 +1755,7 @@ export declare class BedrockAgentcore extends PolicyStatement {
1668
1755
  * - browser-profile
1669
1756
  * - workload-identity-directory
1670
1757
  * - token-vault
1758
+ * - harness
1671
1759
  *
1672
1760
  * @param tagKey The tag key to check
1673
1761
  * @param value The value(s) to check
@@ -1688,6 +1776,7 @@ export declare class BedrockAgentcore extends PolicyStatement {
1688
1776
  * - .toCreateCodeInterpreter()
1689
1777
  * - .toCreateEvaluator()
1690
1778
  * - .toCreateGateway()
1779
+ * - .toCreateHarness()
1691
1780
  * - .toCreateMemory()
1692
1781
  * - .toCreateOauth2CredentialProvider()
1693
1782
  * - .toCreateOnlineEvaluationConfig()
@@ -1785,6 +1874,19 @@ export declare class BedrockAgentcore extends PolicyStatement {
1785
1874
  * @param operator Works with [string operators](https://docs.aws.amazon.com/IAM/latest/UserGuide/reference_policies_elements_condition_operators.html#Conditions_String). **Default:** `StringLike`
1786
1875
  */
1787
1876
  ifKmsKeyArn(value: string | string[], operator?: Operator | string): this;
1877
+ /**
1878
+ * Filters access by the authorizer type configured for the AgentCore runtime
1879
+ *
1880
+ * https://docs.aws.amazon.com/bedrock-agentcore/latest/devguide/runtime-authorizer-type-condition-key.html
1881
+ *
1882
+ * Applies to actions:
1883
+ * - .toCreateAgentRuntime()
1884
+ * - .toUpdateAgentRuntime()
1885
+ *
1886
+ * @param value The value(s) to check
1887
+ * @param operator Works with [string operators](https://docs.aws.amazon.com/IAM/latest/UserGuide/reference_policies_elements_condition_operators.html#Conditions_String). **Default:** `StringLike`
1888
+ */
1889
+ ifRuntimeAuthorizerType(value: string | string[], operator?: Operator | string): this;
1788
1890
  /**
1789
1891
  * Filters access by Actor Id
1790
1892
  *