iam-floyd 0.797.0 → 0.799.0
This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.
- package/README.md +4 -4
- package/lib/generated/aws-managed-policies/cdk-iam-floyd.d.ts +14 -0
- package/lib/generated/aws-managed-policies/cdk-iam-floyd.js +29 -1
- package/lib/generated/aws-managed-policies/iam-floyd.d.ts +14 -0
- package/lib/generated/aws-managed-policies/iam-floyd.js +15 -1
- package/lib/generated/index.d.ts +1 -0
- package/lib/generated/index.js +7 -5
- package/lib/generated/policy-statements/bedrockagentcore.d.ts +8 -0
- package/lib/generated/policy-statements/bedrockagentcore.js +12 -1
- package/lib/generated/policy-statements/cognitouserpools.d.ts +32 -0
- package/lib/generated/policy-statements/cognitouserpools.js +45 -1
- package/lib/generated/policy-statements/connecthealth.d.ts +16 -0
- package/lib/generated/policy-statements/connecthealth.js +23 -1
- package/lib/generated/policy-statements/devopsagentservice.d.ts +104 -0
- package/lib/generated/policy-statements/devopsagentservice.js +144 -1
- package/lib/generated/policy-statements/finopsagent.d.ts +385 -0
- package/lib/generated/policy-statements/finopsagent.js +536 -0
- package/lib/generated/policy-statements/glue.d.ts +20 -0
- package/lib/generated/policy-statements/glue.js +24 -1
- package/lib/generated/policy-statements/interactivevideoservice.d.ts +8 -0
- package/lib/generated/policy-statements/interactivevideoservice.js +12 -1
- package/lib/generated/policy-statements/iot.d.ts +7 -4
- package/lib/generated/policy-statements/iot.js +9 -6
- package/lib/generated/policy-statements/marketplacecatalog.d.ts +101 -0
- package/lib/generated/policy-statements/marketplacecatalog.js +129 -3
- package/lib/generated/policy-statements/quicksight.d.ts +196 -1
- package/lib/generated/policy-statements/quicksight.js +242 -2
- package/lib/generated/policy-statements/securityagent.d.ts +177 -0
- package/lib/generated/policy-statements/securityagent.js +227 -2
- package/lib/generated/policy-statements/transformcustom.d.ts +407 -0
- package/lib/generated/policy-statements/transformcustom.js +507 -3
- package/package.json +1 -1
|
@@ -896,6 +896,10 @@ export declare class AwsManagedPolicy {
|
|
|
896
896
|
static AmazonSageMakerHyperPodServiceRolePolicy: string;
|
|
897
897
|
/** This policy provides administrative permissions required to set up the SageMaker HyperPod training operator. It enables access to Amazon SageMaker HyperPod and EKS add-ons. The policy includes permissions to describe the SageMaker HyperPod resources in your account. */
|
|
898
898
|
static AmazonSageMakerHyperPodTrainingOperatorAccess: string;
|
|
899
|
+
/** Provides permissions for Amazon SageMaker job execution roles to access data in Amazon S3, invoke agents through Amazon Bedrock AgentCore, track experiments with MLflow, publish model packages, write logs to Amazon CloudWatch, invoke AWS Lambda functions, and manage Amazon VPC network interfaces. */
|
|
900
|
+
static AmazonSageMakerJobFullAccess: string;
|
|
901
|
+
/** Provides permissions for agent runtimes to invoke the Amazon SageMaker job runtime APIs used during model customization for sample generation, trajectory completion, and reward submission. */
|
|
902
|
+
static AmazonSageMakerJobRuntimeAccess: string;
|
|
899
903
|
/** Provides access to create Amazon Augmented AI FlowDefinition resources against any Workteam. */
|
|
900
904
|
static AmazonSageMakerMechanicalTurkAccess: string;
|
|
901
905
|
/** Grants permissions for SageMaker model customization workflows including serverless training, custom reward function for reinforcement learning, model evaluation, and deployment to SageMaker or Bedrock endpoints. */
|
|
@@ -2146,8 +2150,12 @@ export declare class AwsManagedPolicy {
|
|
|
2146
2150
|
static AWSQuickSetupPatchPolicyBaselineAccess: string;
|
|
2147
2151
|
/** Provides permissions that allow Quick Setup to create resources associated with a patch policy configuration. */
|
|
2148
2152
|
static AWSQuickSetupPatchPolicyDeploymentRolePolicy: string;
|
|
2153
|
+
/** Grants permissions to manage State Manager associations for automated cleanup operations when Quick Setup configurations are deleted. */
|
|
2154
|
+
static AWSQuickSetupPatchPolicyLambdaExecutionPolicy: string;
|
|
2149
2155
|
/** QuickSetup creates IAM roles which enable it to configure the Systems Manager Patch Manager feature on your behalf, and uses this policy when creating such roles to define the boundary of their permissions. */
|
|
2150
2156
|
static AWSQuickSetupPatchPolicyPermissionsBoundary: string;
|
|
2157
|
+
/** Grants permissions to track which instances are managed by Quick Setup patch policy configurations through automated tagging and inventory collection. */
|
|
2158
|
+
static AWSQuickSetupPatchPolicyTagManagementExecutionPolicy: string;
|
|
2151
2159
|
/** The AWSQuickSetupSchedulerPermissionsBoundary policy defines the list of permissions that are permitted in an IAM role created by Quick Setup. Quick Setup uses a role created with this policy to enable and configure scheduled operations on Amazon EC2 instances and other resources. */
|
|
2152
2160
|
static AWSQuickSetupSchedulerPermissionsBoundary: string;
|
|
2153
2161
|
/** This policy grants administrative permssions that allow Quick Setup to create resources that are used during the Systems Manager onboarding process. */
|
|
@@ -2666,6 +2674,8 @@ export declare class AwsManagedPolicy {
|
|
|
2666
2674
|
static EC2FleetTimeShiftableServiceRolePolicy: string;
|
|
2667
2675
|
/** Permissions need by EC2 Image Builder to perform a cross account distribution. */
|
|
2668
2676
|
static Ec2ImageBuilderCrossAccountDistributionAccess: string;
|
|
2677
|
+
/** Grants permissions that allow EC2 Image Builder to call AWS services on your behalf */
|
|
2678
|
+
static EC2ImageBuilderExecutionPolicy: string;
|
|
2669
2679
|
/** The EC2ImageBuilderLifecycleExecutionPolicy policy grants permissions for Image Builder to perform actions such as deprecate or delete Image Builder image resources and their underlying resources (AMIs, snapshots) to support automated rules for image lifecycle management tasks. */
|
|
2670
2680
|
static EC2ImageBuilderLifecycleExecutionPolicy: string;
|
|
2671
2681
|
/** Allows customers to call EC2 Instance Connect to publish ephemeral keys to their EC2 instances and connect via ssh or the EC2 Instance Connect CLI. */
|
|
@@ -2702,6 +2712,10 @@ export declare class AwsManagedPolicy {
|
|
|
2702
2712
|
static ElementalSupportCenterFullAccess: string;
|
|
2703
2713
|
/** This policy grants read-only permissions that allow the WAL service for Amazon EMR to find and return the status of a cluster */
|
|
2704
2714
|
static EMRDescribeClusterPolicyForEMRWAL: string;
|
|
2715
|
+
/** Provides permissions required by the AWS FinOps Agent to perform cost analysis and spot cost saving opportunity on customer AWS resources. */
|
|
2716
|
+
static FinOpsAgentAgentPolicy: string;
|
|
2717
|
+
/** Provides access to use the AWS FinOps Agent web app for an Agent. */
|
|
2718
|
+
static FinOpsAgentOperatorPolicy: string;
|
|
2705
2719
|
/** Access policy to allow FM service linked role to perform FM-related actions on FM-managed resources within a customer AWS Organization account. */
|
|
2706
2720
|
static FMSServiceRolePolicy: string;
|
|
2707
2721
|
/** Allows Amazon FSx to delete its Service Linked Roles for Amazon S3 access */
|