PyPI - iamdata - Versions diffs - 0.1.202504261__py3-none-any.whl → 0.1.202511181__py3-none-any.whl - Mend

iamdata 0.1.202504261py3-none-any.whl → 0.1.202511181py3-none-any.whl

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (315) hide show

iamdata/data/actions/access-analyzer.json +4 -1
iamdata/data/actions/acm.json +23 -3
iamdata/data/actions/action-recommendations.json +10 -0
iamdata/data/actions/aiops.json +189 -1
iamdata/data/actions/airflow-serverless.json +225 -0
iamdata/data/actions/amplify.json +2 -12
iamdata/data/actions/aoss.json +36 -4
iamdata/data/actions/apigateway.json +104 -0
iamdata/data/actions/app-integrations.json +108 -0
iamdata/data/actions/application-signals.json +40 -0
iamdata/data/actions/appstream.json +138 -103
iamdata/data/actions/appsync.json +1 -1
iamdata/data/actions/aps.json +309 -0
iamdata/data/actions/arc-region-switch.json +334 -0
iamdata/data/actions/arc-zonal-shift.json +53 -1
iamdata/data/actions/artifact.json +0 -36
iamdata/data/actions/athena.json +88 -1
iamdata/data/actions/auditmanager.json +60 -7
iamdata/data/actions/autoscaling.json +26 -3
iamdata/data/actions/aws-marketplace.json +0 -32
iamdata/data/actions/backup-search.json +1 -0
iamdata/data/actions/backup.json +80 -0
iamdata/data/actions/batch.json +183 -17
iamdata/data/actions/bcm-dashboards.json +79 -0
iamdata/data/actions/bcm-recommended-actions.json +10 -0
iamdata/data/actions/bedrock-agentcore.json +1801 -0
iamdata/data/actions/bedrock.json +814 -23
iamdata/data/actions/billing.json +88 -5
iamdata/data/actions/braket.json +2 -9
iamdata/data/actions/budgets.json +6 -2
iamdata/data/actions/cases.json +22 -2
iamdata/data/actions/cassandra.json +67 -2
iamdata/data/actions/ce.json +34 -0
iamdata/data/actions/chatbot.json +87 -20
iamdata/data/actions/cleanrooms-ml.json +11 -0
iamdata/data/actions/cleanrooms.json +93 -0
iamdata/data/actions/cloud9.json +4 -10
iamdata/data/actions/cloudformation.json +22 -0
iamdata/data/actions/cloudfront.json +457 -85
iamdata/data/actions/cloudtrail.json +33 -0
iamdata/data/actions/cloudwatch.json +8 -0
iamdata/data/actions/codebuild.json +367 -12
iamdata/data/actions/codepipeline.json +15 -0
iamdata/data/actions/cognito-idp.json +83 -0
iamdata/data/actions/connect-campaigns.json +16 -0
iamdata/data/actions/connect.json +160 -2
iamdata/data/actions/controlcatalog.json +8 -0
iamdata/data/actions/cur.json +5 -1
iamdata/data/actions/databrew.json +14 -7
iamdata/data/actions/dataexchange.json +61 -9
iamdata/data/actions/datazone.json +300 -6
iamdata/data/actions/deadline.json +71 -16
iamdata/data/actions/dms.json +40 -311
iamdata/data/actions/ds.json +170 -0
iamdata/data/actions/dsql.json +226 -22
iamdata/data/actions/dynamodb.json +32 -0
iamdata/data/actions/ec2.json +1466 -146
iamdata/data/actions/ecs.json +59 -9
iamdata/data/actions/eks-mcp.json +26 -0
iamdata/data/actions/eks.json +100 -2
iamdata/data/actions/elasticloadbalancing.json +9 -0
iamdata/data/actions/elasticmapreduce.json +15 -0
iamdata/data/actions/emr-containers.json +34 -1
iamdata/data/actions/emr-serverless.json +16 -0
iamdata/data/actions/entityresolution.json +16 -8
iamdata/data/actions/es.json +60 -0
iamdata/data/actions/events.json +40 -0
iamdata/data/actions/evs.json +193 -0
iamdata/data/actions/freetier.json +32 -0
iamdata/data/actions/fsx.json +59 -6
iamdata/data/actions/glacier.json +1 -4
iamdata/data/actions/glue.json +228 -54
iamdata/data/actions/groundstation.json +15 -0
iamdata/data/actions/guardduty.json +199 -1
iamdata/data/actions/healthlake.json +225 -0
iamdata/data/actions/iam.json +13 -4
iamdata/data/actions/identitystore.json +91 -19
iamdata/data/actions/imagebuilder.json +198 -241
iamdata/data/actions/inspector2.json +208 -12
iamdata/data/actions/invoicing.json +28 -3
iamdata/data/actions/iot.json +37 -5
iamdata/data/actions/iotfleetwise.json +6 -63
iamdata/data/actions/iotmanagedintegrations.json +507 -75
iamdata/data/actions/iotsitewise.json +271 -0
iamdata/data/actions/ivs.json +48 -0
iamdata/data/actions/kafka.json +15 -0
iamdata/data/actions/kinesis.json +163 -5
iamdata/data/actions/kms.json +125 -2
iamdata/data/actions/lambda.json +4 -2
iamdata/data/actions/lex.json +42 -0
iamdata/data/actions/license-manager.json +70 -8
iamdata/data/actions/logs.json +8 -0
iamdata/data/actions/mediaconnect.json +85 -26
iamdata/data/actions/mediaconvert.json +15 -0
iamdata/data/actions/medialive.json +26 -2
iamdata/data/actions/medical-imaging.json +105 -0
iamdata/data/actions/memorydb.json +18 -0
iamdata/data/actions/mgn.json +20 -2
iamdata/data/actions/mpa.json +313 -0
iamdata/data/actions/mq.json +16 -0
iamdata/data/actions/neptune-graph.json +37 -0
iamdata/data/actions/network-firewall.json +236 -3
iamdata/data/actions/network-security-director.json +74 -0
iamdata/data/actions/notifications.json +62 -2
iamdata/data/actions/observabilityadmin.json +330 -0
iamdata/data/actions/odb.json +811 -0
iamdata/data/actions/one.json +8 -0
iamdata/data/actions/opensearch.json +1 -1
iamdata/data/actions/organizations.json +39 -8
iamdata/data/actions/osis.json +111 -0
iamdata/data/actions/outposts.json +41 -3
iamdata/data/actions/partnercentral.json +96 -32
iamdata/data/actions/payment-cryptography.json +154 -11
iamdata/data/actions/pcs.json +27 -1
iamdata/data/actions/pi.json +6 -0
iamdata/data/actions/profile.json +670 -20
iamdata/data/actions/q.json +37 -0
iamdata/data/actions/qapps.json +0 -78
iamdata/data/actions/qbusiness.json +177 -46
iamdata/data/actions/quicksight.json +484 -7
iamdata/data/actions/rds.json +102 -45
iamdata/data/actions/redshift-serverless.json +2 -2
iamdata/data/actions/redshift.json +0 -6
iamdata/data/actions/rekognition.json +1 -8
iamdata/data/actions/repostspace.json +90 -0
iamdata/data/actions/resiliencehub.json +19 -5
iamdata/data/actions/resource-explorer-2.json +84 -2
iamdata/data/actions/route53resolver.json +14 -2
iamdata/data/actions/rtbfabric.json +481 -0
iamdata/data/actions/s3.json +340 -143
iamdata/data/actions/s3express.json +110 -6
iamdata/data/actions/s3tables.json +85 -2
iamdata/data/actions/s3vectors.json +242 -0
iamdata/data/actions/sagemaker-mlflow.json +135 -0
iamdata/data/actions/sagemaker-unified-studio-mcp.json +26 -0
iamdata/data/actions/sagemaker.json +312 -11
iamdata/data/actions/scn.json +151 -4
iamdata/data/actions/security-ir.json +23 -8
iamdata/data/actions/securityhub.json +360 -4
iamdata/data/actions/securitylake.json +1 -0
iamdata/data/actions/servicediscovery.json +140 -14
iamdata/data/actions/servicequotas.json +40 -0
iamdata/data/actions/ses.json +286 -2
iamdata/data/actions/shield.json +47 -0
iamdata/data/actions/snow-device-management.json +1 -0
iamdata/data/actions/social-messaging.json +120 -0
iamdata/data/actions/ssm-guiconnect.json +24 -0
iamdata/data/actions/ssm-sap.json +51 -3
iamdata/data/actions/ssm.json +63 -2
iamdata/data/actions/sso-directory.json +108 -36
iamdata/data/actions/sso-oauth.json +40 -2
iamdata/data/actions/sso.json +369 -157
iamdata/data/actions/sts.json +40 -0
iamdata/data/actions/support-console.json +119 -0
iamdata/data/actions/support.json +58 -0
iamdata/data/actions/synthetics.json +18 -0
iamdata/data/actions/tax.json +48 -0
iamdata/data/actions/thinclient.json +1 -0
iamdata/data/actions/transcribe.json +12 -0
iamdata/data/actions/transfer.json +30 -14
iamdata/data/actions/transform.json +185 -0
iamdata/data/actions/user-subscriptions.json +8 -0
iamdata/data/actions/uxc.json +26 -0
iamdata/data/actions/verifiedpermissions.json +58 -2
iamdata/data/actions/vpc-lattice-svcs.json +2 -0
iamdata/data/actions/vpc-lattice.json +90 -0
iamdata/data/actions/wisdom.json +31 -214
iamdata/data/actions/workspaces-instances.json +186 -0
iamdata/data/actions/workspaces-web.json +136 -8
iamdata/data/actions/workspaces.json +98 -0
iamdata/data/actions/xray.json +15 -5
iamdata/data/conditionKeys/acm.json +5 -0
iamdata/data/conditionKeys/airflow-serverless.json +17 -0
iamdata/data/conditionKeys/apigateway.json +30 -0
iamdata/data/conditionKeys/arc-region-switch.json +17 -0
iamdata/data/conditionKeys/autoscaling.json +5 -0
iamdata/data/conditionKeys/backup.json +6 -1
iamdata/data/conditionKeys/bcm-dashboards.json +12 -0
iamdata/data/conditionKeys/bedrock-agentcore.json +72 -0
iamdata/data/conditionKeys/bedrock.json +10 -0
iamdata/data/conditionKeys/chatbot.json +17 -1
iamdata/data/conditionKeys/cloudformation.json +5 -0
iamdata/data/conditionKeys/codebuild.json +550 -0
iamdata/data/conditionKeys/connect.json +15 -0
iamdata/data/conditionKeys/deadline.json +5 -0
iamdata/data/conditionKeys/dsql.json +12 -2
iamdata/data/conditionKeys/ebs.json +2 -2
iamdata/data/conditionKeys/ec2.json +30 -15
iamdata/data/conditionKeys/eks.json +5 -0
iamdata/data/conditionKeys/events.json +1 -1
iamdata/data/conditionKeys/evs.json +17 -0
iamdata/data/conditionKeys/glacier.json +0 -10
iamdata/data/conditionKeys/glue.json +10 -0
iamdata/data/conditionKeys/iam.json +10 -0
iamdata/data/conditionKeys/imagebuilder.json +2 -2
iamdata/data/conditionKeys/iotmanagedintegrations.json +27 -1
iamdata/data/conditionKeys/kinesis.json +15 -0
iamdata/data/conditionKeys/kms.json +127 -7
iamdata/data/conditionKeys/lambda.json +5 -0
iamdata/data/conditionKeys/license-manager.json +5 -0
iamdata/data/conditionKeys/mediaconnect.json +17 -1
iamdata/data/conditionKeys/mpa.json +27 -0
iamdata/data/conditionKeys/observabilityadmin.json +32 -1
iamdata/data/conditionKeys/odb.json +17 -0
iamdata/data/conditionKeys/quicksight.json +0 -5
iamdata/data/conditionKeys/rds.json +5 -0
iamdata/data/conditionKeys/route53.json +1 -1
iamdata/data/conditionKeys/rtbfabric.json +47 -0
iamdata/data/conditionKeys/s3.json +15 -0
iamdata/data/conditionKeys/s3express.json +26 -1
iamdata/data/conditionKeys/s3tables.json +20 -0
iamdata/data/conditionKeys/s3vectors.json +12 -0
iamdata/data/conditionKeys/sagemaker.json +25 -0
iamdata/data/conditionKeys/savingsplans.json +1 -1
iamdata/data/conditionKeys/secretsmanager.json +1 -1
iamdata/data/conditionKeys/securityhub.json +5 -0
iamdata/data/conditionKeys/servicediscovery.json +5 -0
iamdata/data/conditionKeys/ses.json +5 -0
iamdata/data/conditionKeys/ssm.json +15 -0
iamdata/data/conditionKeys/sso.json +11 -1
iamdata/data/conditionKeys/sts.json +10 -0
iamdata/data/conditionKeys/transcribe.json +1 -1
iamdata/data/conditionKeys/transfer.json +20 -0
iamdata/data/conditionKeys/transform.json +12 -0
iamdata/data/conditionKeys/uxc.json +1 -0
iamdata/data/conditionKeys/verifiedpermissions.json +17 -1
iamdata/data/conditionKeys/vpc-lattice-svcs.json +5 -0
iamdata/data/conditionKeys/vpc-lattice.json +15 -0
iamdata/data/conditionKeys/workspaces-instances.json +17 -0
iamdata/data/conditionKeys/xray.json +15 -0
iamdata/data/conditionPatterns.json +141 -0
iamdata/data/metadata.json +2 -2
iamdata/data/resourceTypes/action-recommendations.json +1 -0
iamdata/data/resourceTypes/airflow-serverless.json +9 -0
iamdata/data/resourceTypes/apigateway.json +12 -0
iamdata/data/resourceTypes/aps.json +9 -0
iamdata/data/resourceTypes/arc-region-switch.json +9 -0
iamdata/data/resourceTypes/artifact.json +5 -5
iamdata/data/resourceTypes/athena.json +7 -0
iamdata/data/resourceTypes/auditmanager.json +8 -2
iamdata/data/resourceTypes/backup-gateway.json +3 -3
iamdata/data/resourceTypes/batch.json +14 -0
iamdata/data/resourceTypes/bcm-dashboards.json +1 -0
iamdata/data/resourceTypes/bcm-recommended-actions.json +1 -0
iamdata/data/resourceTypes/bedrock-agentcore.json +87 -0
iamdata/data/resourceTypes/bedrock.json +45 -3
iamdata/data/resourceTypes/cassandra.json +7 -0
iamdata/data/resourceTypes/chatbot.json +8 -2
iamdata/data/resourceTypes/cloudformation.json +4 -0
iamdata/data/resourceTypes/cloudfront.json +14 -0
iamdata/data/resourceTypes/dataexchange.json +4 -1
iamdata/data/resourceTypes/deadline.json +5 -1
iamdata/data/resourceTypes/ec2.json +125 -6
iamdata/data/resourceTypes/eks-mcp.json +1 -0
iamdata/data/resourceTypes/eks.json +7 -0
iamdata/data/resourceTypes/emr-containers.json +0 -4
iamdata/data/resourceTypes/events.json +8 -0
iamdata/data/resourceTypes/evs.json +9 -0
iamdata/data/resourceTypes/guardduty.json +18 -1
iamdata/data/resourceTypes/imagebuilder.json +12 -18
iamdata/data/resourceTypes/inspector2.json +14 -0
iamdata/data/resourceTypes/iotmanagedintegrations.json +31 -12
iamdata/data/resourceTypes/iotsitewise.json +7 -0
iamdata/data/resourceTypes/kinesis.json +4 -1
iamdata/data/resourceTypes/license-manager.json +10 -2
iamdata/data/resourceTypes/mediaconnect.json +16 -4
iamdata/data/resourceTypes/mpa.json +23 -0
iamdata/data/resourceTypes/network-firewall.json +7 -0
iamdata/data/resourceTypes/network-security-director.json +1 -0
iamdata/data/resourceTypes/observabilityadmin.json +23 -1
iamdata/data/resourceTypes/odb.json +44 -0
iamdata/data/resourceTypes/osis.json +7 -0
iamdata/data/resourceTypes/partnercentral.json +8 -2
iamdata/data/resourceTypes/pi.json +4 -1
iamdata/data/resourceTypes/profile.json +21 -0
iamdata/data/resourceTypes/qbusiness.json +7 -4
iamdata/data/resourceTypes/quicksight.json +26 -1
iamdata/data/resourceTypes/rds.json +4 -1
iamdata/data/resourceTypes/redshift.json +1 -4
iamdata/data/resourceTypes/route53resolver.json +7 -0
iamdata/data/resourceTypes/rtbfabric.json +46 -0
iamdata/data/resourceTypes/s3.json +19 -1
iamdata/data/resourceTypes/s3express.json +10 -2
iamdata/data/resourceTypes/s3tables.json +7 -1
iamdata/data/resourceTypes/s3vectors.json +10 -0
iamdata/data/resourceTypes/sagemaker-unified-studio-mcp.json +1 -0
iamdata/data/resourceTypes/sagemaker.json +18 -3
iamdata/data/resourceTypes/scn.json +19 -3
iamdata/data/resourceTypes/securityhub.json +36 -2
iamdata/data/resourceTypes/ses.json +11 -0
iamdata/data/resourceTypes/sts.json +8 -0
iamdata/data/resourceTypes/support-console.json +1 -0
iamdata/data/resourceTypes/transform.json +10 -0
iamdata/data/resourceTypes/uxc.json +1 -0
iamdata/data/resourceTypes/verifiedpermissions.json +4 -1
iamdata/data/resourceTypes/vpc-lattice.json +12 -0
iamdata/data/resourceTypes/workspaces-instances.json +16 -0
iamdata/data/resourceTypes/workspaces-web.json +7 -0
iamdata/data/resourceTypes/workspaces.json +4 -0
iamdata/data/serviceNames.json +23 -8
iamdata/data/services.json +18 -3
iamdata/data/unassociatedConditions.json +23 -0
{iamdata-0.1.202504261.dist-info → iamdata-0.1.202511181.dist-info}/METADATA +1 -1
{iamdata-0.1.202504261.dist-info → iamdata-0.1.202511181.dist-info}/RECORD +312 -265
iamdata/data/actions/application-cost-profiler.json +0 -50
iamdata/data/actions/sagemaker-groundtruth-synthetic.json +0 -110
iamdata/data/actions/supportrecommendations.json +0 -20
/iamdata/data/conditionKeys/{application-cost-profiler.json → action-recommendations.json} +0 -0
/iamdata/data/conditionKeys/{sagemaker-groundtruth-synthetic.json → bcm-recommended-actions.json} +0 -0
/iamdata/data/conditionKeys/{supportrecommendations.json → eks-mcp.json} +0 -0
/iamdata/data/{resourceTypes/application-cost-profiler.json → conditionKeys/network-security-director.json} +0 -0
/iamdata/data/{resourceTypes/sagemaker-groundtruth-synthetic.json → conditionKeys/sagemaker-unified-studio-mcp.json} +0 -0
/iamdata/data/{resourceTypes/supportrecommendations.json → conditionKeys/support-console.json} +0 -0
{iamdata-0.1.202504261.dist-info → iamdata-0.1.202511181.dist-info}/WHEEL +0 -0
{iamdata-0.1.202504261.dist-info → iamdata-0.1.202511181.dist-info}/licenses/LICENSE.txt +0 -0

iamdata/data/actions/bedrock-agentcore.json ADDED Viewed

@@ -0,0 +1,1801 @@
+{
+  "allowvendedlogdeliveryforresource": {
+    "name": "AllowVendedLogDeliveryForResource",
+    "isPermissionOnly": true,
+    "description": "Grants permission to configure vended telemetry for a resource",
+    "accessLevel": "Permissions management",
+    "resourceTypes": [
+      {
+        "name": "memory",
+        "required": true,
+        "conditionKeys": [],
+        "dependentActions": []
+      }
+    ],
+    "conditionKeys": [],
+    "dependentActions": []
+  },
+  "batchcreatememoryrecords": {
+    "name": "BatchCreateMemoryRecords",
+    "description": "Grants permission to create one or more memory records",
+    "accessLevel": "Write",
+    "resourceTypes": [
+      {
+        "name": "memory",
+        "required": true,
+        "conditionKeys": [],
+        "dependentActions": []
+      }
+    ],
+    "conditionKeys": [
+      "bedrock-agentcore:namespace"
+    ],
+    "dependentActions": []
+  },
+  "batchdeletememoryrecords": {
+    "name": "BatchDeleteMemoryRecords",
+    "description": "Grants permission to delete one or more memory records",
+    "accessLevel": "Write",
+    "resourceTypes": [
+      {
+        "name": "memory",
+        "required": true,
+        "conditionKeys": [],
+        "dependentActions": []
+      }
+    ],
+    "conditionKeys": [],
+    "dependentActions": []
+  },
+  "batchupdatememoryrecords": {
+    "name": "BatchUpdateMemoryRecords",
+    "description": "Grants permission to update one or more memory records",
+    "accessLevel": "Write",
+    "resourceTypes": [
+      {
+        "name": "memory",
+        "required": true,
+        "conditionKeys": [],
+        "dependentActions": []
+      }
+    ],
+    "conditionKeys": [
+      "bedrock-agentcore:namespace"
+    ],
+    "dependentActions": []
+  },
+  "completeresourcetokenauth": {
+    "name": "CompleteResourceTokenAuth",
+    "description": "Grants permission to retrieve access token with OAuth2 for 3LO flow to access external resource",
+    "accessLevel": "Read",
+    "resourceTypes": [
+      {
+        "name": "oauth2credentialprovider",
+        "required": true,
+        "conditionKeys": [],
+        "dependentActions": []
+      },
+      {
+        "name": "token-vault",
+        "required": true,
+        "conditionKeys": [],
+        "dependentActions": []
+      },
+      {
+        "name": "workload-identity",
+        "required": true,
+        "conditionKeys": [],
+        "dependentActions": []
+      },
+      {
+        "name": "workload-identity-directory",
+        "required": true,
+        "conditionKeys": [],
+        "dependentActions": []
+      }
+    ],
+    "conditionKeys": [
+      "bedrock-agentcore:InboundJwtClaim/iss",
+      "bedrock-agentcore:InboundJwtClaim/sub",
+      "bedrock-agentcore:InboundJwtClaim/aud",
+      "bedrock-agentcore:InboundJwtClaim/scope",
+      "bedrock-agentcore:InboundJwtClaim/client_id",
+      "bedrock-agentcore:userid"
+    ],
+    "dependentActions": []
+  },
+  "connectbrowserautomationstream": {
+    "name": "ConnectBrowserAutomationStream",
+    "description": "Grants permission to connect to a browser automation stream",
+    "accessLevel": "Read",
+    "resourceTypes": [],
+    "conditionKeys": [],
+    "dependentActions": []
+  },
+  "connectbrowserliveviewstream": {
+    "name": "ConnectBrowserLiveViewStream",
+    "description": "Grants permission to connect to a browser live view stream",
+    "accessLevel": "Read",
+    "resourceTypes": [],
+    "conditionKeys": [],
+    "dependentActions": []
+  },
+  "createagentruntime": {
+    "name": "CreateAgentRuntime",
+    "description": "Grants permission to create a new agent runtime",
+    "accessLevel": "Write",
+    "resourceTypes": [],
+    "conditionKeys": [
+      "aws:RequestTag/${TagKey}",
+      "aws:TagKeys"
+    ],
+    "dependentActions": [
+      "iam:PassRole"
+    ]
+  },
+  "createagentruntimeendpoint": {
+    "name": "CreateAgentRuntimeEndpoint",
+    "description": "Grants permission to create a new agent runtime endpoint",
+    "accessLevel": "Write",
+    "resourceTypes": [
+      {
+        "name": "runtime",
+        "required": true,
+        "conditionKeys": [],
+        "dependentActions": []
+      }
+    ],
+    "conditionKeys": [
+      "aws:RequestTag/${TagKey}",
+      "aws:TagKeys"
+    ],
+    "dependentActions": []
+  },
+  "createapikeycredentialprovider": {
+    "name": "CreateApiKeyCredentialProvider",
+    "description": "Grants permission to create a new API Key Credential Provider",
+    "accessLevel": "Write",
+    "resourceTypes": [
+      {
+        "name": "apikeycredentialprovider",
+        "required": true,
+        "conditionKeys": [],
+        "dependentActions": []
+      },
+      {
+        "name": "token-vault",
+        "required": true,
+        "conditionKeys": [],
+        "dependentActions": []
+      }
+    ],
+    "conditionKeys": [
+      "aws:RequestTag/${TagKey}",
+      "aws:TagKeys"
+    ],
+    "dependentActions": []
+  },
+  "createbrowser": {
+    "name": "CreateBrowser",
+    "description": "Grants permission to create a new custom browser",
+    "accessLevel": "Write",
+    "resourceTypes": [],
+    "conditionKeys": [
+      "aws:RequestTag/${TagKey}",
+      "aws:TagKeys"
+    ],
+    "dependentActions": []
+  },
+  "createcodeinterpreter": {
+    "name": "CreateCodeInterpreter",
+    "description": "Grants permission to create a new custom code interpreter",
+    "accessLevel": "Write",
+    "resourceTypes": [],
+    "conditionKeys": [
+      "aws:RequestTag/${TagKey}",
+      "aws:TagKeys"
+    ],
+    "dependentActions": []
+  },
+  "createevent": {
+    "name": "CreateEvent",
+    "description": "Grants permission to create an Event",
+    "accessLevel": "Write",
+    "resourceTypes": [
+      {
+        "name": "memory",
+        "required": true,
+        "conditionKeys": [],
+        "dependentActions": []
+      }
+    ],
+    "conditionKeys": [
+      "bedrock-agentcore:sessionId",
+      "bedrock-agentcore:actorId"
+    ],
+    "dependentActions": []
+  },
+  "creategateway": {
+    "name": "CreateGateway",
+    "description": "Grants permission to create a new gateway",
+    "accessLevel": "Write",
+    "resourceTypes": [],
+    "conditionKeys": [
+      "aws:RequestTag/${TagKey}",
+      "aws:TagKeys"
+    ],
+    "dependentActions": [
+      "iam:PassRole"
+    ]
+  },
+  "creategatewaytarget": {
+    "name": "CreateGatewayTarget",
+    "description": "Grants permission to create a new target in an existing gateway",
+    "accessLevel": "Write",
+    "resourceTypes": [
+      {
+        "name": "gateway",
+        "required": true,
+        "conditionKeys": [],
+        "dependentActions": []
+      }
+    ],
+    "conditionKeys": [],
+    "dependentActions": []
+  },
+  "creatememory": {
+    "name": "CreateMemory",
+    "description": "Grants permission to create a Memory resource",
+    "accessLevel": "Write",
+    "resourceTypes": [],
+    "conditionKeys": [
+      "aws:RequestTag/${TagKey}",
+      "aws:TagKeys"
+    ],
+    "dependentActions": [
+      "iam:PassRole"
+    ]
+  },
+  "createoauth2credentialprovider": {
+    "name": "CreateOauth2CredentialProvider",
+    "description": "Grants permission to create a new Credential Provider to access external resources with OAuth2 protocol",
+    "accessLevel": "Write",
+    "resourceTypes": [
+      {
+        "name": "oauth2credentialprovider",
+        "required": true,
+        "conditionKeys": [],
+        "dependentActions": []
+      },
+      {
+        "name": "token-vault",
+        "required": true,
+        "conditionKeys": [],
+        "dependentActions": []
+      }
+    ],
+    "conditionKeys": [
+      "aws:RequestTag/${TagKey}",
+      "aws:TagKeys"
+    ],
+    "dependentActions": []
+  },
+  "createworkloadidentity": {
+    "name": "CreateWorkloadIdentity",
+    "description": "Grants permission to create a new Workload Identity",
+    "accessLevel": "Write",
+    "resourceTypes": [
+      {
+        "name": "workload-identity",
+        "required": true,
+        "conditionKeys": [],
+        "dependentActions": []
+      },
+      {
+        "name": "workload-identity-directory",
+        "required": true,
+        "conditionKeys": [],
+        "dependentActions": []
+      }
+    ],
+    "conditionKeys": [
+      "aws:RequestTag/${TagKey}",
+      "aws:TagKeys"
+    ],
+    "dependentActions": []
+  },
+  "deleteagentruntime": {
+    "name": "DeleteAgentRuntime",
+    "description": "Grants permission to delete an agent runtime",
+    "accessLevel": "Write",
+    "resourceTypes": [
+      {
+        "name": "runtime",
+        "required": true,
+        "conditionKeys": [],
+        "dependentActions": []
+      }
+    ],
+    "conditionKeys": [],
+    "dependentActions": []
+  },
+  "deleteagentruntimeendpoint": {
+    "name": "DeleteAgentRuntimeEndpoint",
+    "description": "Grants permission to delete an agent runtime endpoint",
+    "accessLevel": "Write",
+    "resourceTypes": [
+      {
+        "name": "runtime",
+        "required": true,
+        "conditionKeys": [],
+        "dependentActions": []
+      },
+      {
+        "name": "runtime-endpoint",
+        "required": true,
+        "conditionKeys": [],
+        "dependentActions": []
+      }
+    ],
+    "conditionKeys": [],
+    "dependentActions": []
+  },
+  "deleteapikeycredentialprovider": {
+    "name": "DeleteApiKeyCredentialProvider",
+    "description": "Grants permission to delete a registered API Key Credential Provider",
+    "accessLevel": "Write",
+    "resourceTypes": [
+      {
+        "name": "apikeycredentialprovider",
+        "required": true,
+        "conditionKeys": [],
+        "dependentActions": []
+      },
+      {
+        "name": "token-vault",
+        "required": true,
+        "conditionKeys": [],
+        "dependentActions": []
+      }
+    ],
+    "conditionKeys": [],
+    "dependentActions": []
+  },
+  "deletebrowser": {
+    "name": "DeleteBrowser",
+    "description": "Grants permission to delete a custom browser",
+    "accessLevel": "Write",
+    "resourceTypes": [
+      {
+        "name": "browser-custom",
+        "required": true,
+        "conditionKeys": [],
+        "dependentActions": []
+      }
+    ],
+    "conditionKeys": [],
+    "dependentActions": []
+  },
+  "deletecodeinterpreter": {
+    "name": "DeleteCodeInterpreter",
+    "description": "Grants permission to delete a custom code interpreter",
+    "accessLevel": "Write",
+    "resourceTypes": [
+      {
+        "name": "code-interpreter-custom",
+        "required": true,
+        "conditionKeys": [],
+        "dependentActions": []
+      }
+    ],
+    "conditionKeys": [],
+    "dependentActions": []
+  },
+  "deleteevent": {
+    "name": "DeleteEvent",
+    "description": "Grants permission to delete an Event",
+    "accessLevel": "Write",
+    "resourceTypes": [
+      {
+        "name": "memory",
+        "required": true,
+        "conditionKeys": [],
+        "dependentActions": []
+      }
+    ],
+    "conditionKeys": [
+      "bedrock-agentcore:sessionId",
+      "bedrock-agentcore:actorId"
+    ],
+    "dependentActions": []
+  },
+  "deletegateway": {
+    "name": "DeleteGateway",
+    "description": "Grants permission to delete an existing gateway",
+    "accessLevel": "Write",
+    "resourceTypes": [
+      {
+        "name": "gateway",
+        "required": true,
+        "conditionKeys": [],
+        "dependentActions": []
+      }
+    ],
+    "conditionKeys": [],
+    "dependentActions": []
+  },
+  "deletegatewaytarget": {
+    "name": "DeleteGatewayTarget",
+    "description": "Grants permission to delete an existing gateway target",
+    "accessLevel": "Write",
+    "resourceTypes": [
+      {
+        "name": "gateway",
+        "required": true,
+        "conditionKeys": [],
+        "dependentActions": []
+      }
+    ],
+    "conditionKeys": [],
+    "dependentActions": []
+  },
+  "deletememory": {
+    "name": "DeleteMemory",
+    "description": "Grants permission to delete a Memory resource",
+    "accessLevel": "Write",
+    "resourceTypes": [
+      {
+        "name": "memory",
+        "required": true,
+        "conditionKeys": [],
+        "dependentActions": []
+      }
+    ],
+    "conditionKeys": [],
+    "dependentActions": []
+  },
+  "deletememoryrecord": {
+    "name": "DeleteMemoryRecord",
+    "description": "Grants permission to delete a Memory Record",
+    "accessLevel": "Write",
+    "resourceTypes": [
+      {
+        "name": "memory",
+        "required": true,
+        "conditionKeys": [],
+        "dependentActions": []
+      }
+    ],
+    "conditionKeys": [],
+    "dependentActions": []
+  },
+  "deleteoauth2credentialprovider": {
+    "name": "DeleteOauth2CredentialProvider",
+    "description": "Grants permission to delete a registered OAuth2 Credential Provider",
+    "accessLevel": "Write",
+    "resourceTypes": [
+      {
+        "name": "oauth2credentialprovider",
+        "required": true,
+        "conditionKeys": [],
+        "dependentActions": []
+      },
+      {
+        "name": "token-vault",
+        "required": true,
+        "conditionKeys": [],
+        "dependentActions": []
+      }
+    ],
+    "conditionKeys": [],
+    "dependentActions": []
+  },
+  "deleteworkloadidentity": {
+    "name": "DeleteWorkloadIdentity",
+    "description": "Grants permission to delete a registered Workload Identity",
+    "accessLevel": "Write",
+    "resourceTypes": [
+      {
+        "name": "workload-identity",
+        "required": true,
+        "conditionKeys": [],
+        "dependentActions": []
+      },
+      {
+        "name": "workload-identity-directory",
+        "required": true,
+        "conditionKeys": [],
+        "dependentActions": []
+      }
+    ],
+    "conditionKeys": [],
+    "dependentActions": []
+  },
+  "getagentcard": {
+    "name": "GetAgentCard",
+    "description": "Grants permission to retrieve an agent card for A2A",
+    "accessLevel": "Read",
+    "resourceTypes": [
+      {
+        "name": "runtime",
+        "required": true,
+        "conditionKeys": [],
+        "dependentActions": []
+      },
+      {
+        "name": "runtime-endpoint",
+        "required": true,
+        "conditionKeys": [],
+        "dependentActions": []
+      }
+    ],
+    "conditionKeys": [],
+    "dependentActions": []
+  },
+  "getagentruntime": {
+    "name": "GetAgentRuntime",
+    "description": "Grants permission to get details of an agent runtime",
+    "accessLevel": "Read",
+    "resourceTypes": [
+      {
+        "name": "runtime",
+        "required": true,
+        "conditionKeys": [],
+        "dependentActions": []
+      }
+    ],
+    "conditionKeys": [],
+    "dependentActions": []
+  },
+  "getagentruntimeendpoint": {
+    "name": "GetAgentRuntimeEndpoint",
+    "description": "Grants permission to get details of an agent runtime endpoint",
+    "accessLevel": "Read",
+    "resourceTypes": [
+      {
+        "name": "runtime",
+        "required": true,
+        "conditionKeys": [],
+        "dependentActions": []
+      },
+      {
+        "name": "runtime-endpoint",
+        "required": true,
+        "conditionKeys": [],
+        "dependentActions": []
+      }
+    ],
+    "conditionKeys": [],
+    "dependentActions": []
+  },
+  "getapikeycredentialprovider": {
+    "name": "GetApiKeyCredentialProvider",
+    "description": "Grants permission to fetch a registered API Key Credential Provider by its name",
+    "accessLevel": "Read",
+    "resourceTypes": [
+      {
+        "name": "apikeycredentialprovider",
+        "required": true,
+        "conditionKeys": [],
+        "dependentActions": []
+      },
+      {
+        "name": "token-vault",
+        "required": true,
+        "conditionKeys": [],
+        "dependentActions": []
+      }
+    ],
+    "conditionKeys": [],
+    "dependentActions": []
+  },
+  "getbrowser": {
+    "name": "GetBrowser",
+    "description": "Grants permission to get details of a browser",
+    "accessLevel": "Read",
+    "resourceTypes": [
+      {
+        "name": "browser-custom",
+        "required": true,
+        "conditionKeys": [],
+        "dependentActions": []
+      }
+    ],
+    "conditionKeys": [],
+    "dependentActions": []
+  },
+  "getbrowsersession": {
+    "name": "GetBrowserSession",
+    "description": "Grants permission to get details of a browser session",
+    "accessLevel": "Read",
+    "resourceTypes": [
+      {
+        "name": "browser",
+        "required": true,
+        "conditionKeys": [],
+        "dependentActions": []
+      },
+      {
+        "name": "browser-custom",
+        "required": true,
+        "conditionKeys": [],
+        "dependentActions": []
+      }
+    ],
+    "conditionKeys": [],
+    "dependentActions": []
+  },
+  "getcodeinterpreter": {
+    "name": "GetCodeInterpreter",
+    "description": "Grants permission to get details of a code interpreter",
+    "accessLevel": "Read",
+    "resourceTypes": [
+      {
+        "name": "code-interpreter-custom",
+        "required": true,
+        "conditionKeys": [],
+        "dependentActions": []
+      }
+    ],
+    "conditionKeys": [],
+    "dependentActions": []
+  },
+  "getcodeinterpretersession": {
+    "name": "GetCodeInterpreterSession",
+    "description": "Grants permission to get details of a code interpreter session",
+    "accessLevel": "Read",
+    "resourceTypes": [
+      {
+        "name": "code-interpreter",
+        "required": true,
+        "conditionKeys": [],
+        "dependentActions": []
+      },
+      {
+        "name": "code-interpreter-custom",
+        "required": true,
+        "conditionKeys": [],
+        "dependentActions": []
+      }
+    ],
+    "conditionKeys": [],
+    "dependentActions": []
+  },
+  "getevent": {
+    "name": "GetEvent",
+    "description": "Grants permission to fetch an Event",
+    "accessLevel": "Read",
+    "resourceTypes": [
+      {
+        "name": "memory",
+        "required": true,
+        "conditionKeys": [],
+        "dependentActions": []
+      }
+    ],
+    "conditionKeys": [
+      "bedrock-agentcore:sessionId",
+      "bedrock-agentcore:actorId"
+    ],
+    "dependentActions": []
+  },
+  "getgateway": {
+    "name": "GetGateway",
+    "description": "Grants permission to retrieve an existing gateway",
+    "accessLevel": "Read",
+    "resourceTypes": [
+      {
+        "name": "gateway",
+        "required": true,
+        "conditionKeys": [],
+        "dependentActions": []
+      }
+    ],
+    "conditionKeys": [],
+    "dependentActions": []
+  },
+  "getgatewaytarget": {
+    "name": "GetGatewayTarget",
+    "description": "Grants permission to retrieve an existing gateway target",
+    "accessLevel": "Read",
+    "resourceTypes": [
+      {
+        "name": "gateway",
+        "required": true,
+        "conditionKeys": [],
+        "dependentActions": []
+      }
+    ],
+    "conditionKeys": [],
+    "dependentActions": []
+  },
+  "getmemory": {
+    "name": "GetMemory",
+    "description": "Grants permission to fetch details for a Memory resource",
+    "accessLevel": "Read",
+    "resourceTypes": [
+      {
+        "name": "memory",
+        "required": true,
+        "conditionKeys": [],
+        "dependentActions": []
+      }
+    ],
+    "conditionKeys": [],
+    "dependentActions": []
+  },
+  "getmemoryrecord": {
+    "name": "GetMemoryRecord",
+    "description": "Grants permission to fetch a Memory Record",
+    "accessLevel": "Read",
+    "resourceTypes": [
+      {
+        "name": "memory",
+        "required": true,
+        "conditionKeys": [],
+        "dependentActions": []
+      }
+    ],
+    "conditionKeys": [],
+    "dependentActions": []
+  },
+  "getoauth2credentialprovider": {
+    "name": "GetOauth2CredentialProvider",
+    "description": "Grants permission to fetch a registered OAuth2 Credential Provider by its name",
+    "accessLevel": "Read",
+    "resourceTypes": [
+      {
+        "name": "oauth2credentialprovider",
+        "required": true,
+        "conditionKeys": [],
+        "dependentActions": []
+      },
+      {
+        "name": "token-vault",
+        "required": true,
+        "conditionKeys": [],
+        "dependentActions": []
+      }
+    ],
+    "conditionKeys": [],
+    "dependentActions": []
+  },
+  "getresourceapikey": {
+    "name": "GetResourceApiKey",
+    "description": "Grants permission to retrieve an API Key associated with an Api Key Credential Provider",
+    "accessLevel": "Read",
+    "resourceTypes": [
+      {
+        "name": "apikeycredentialprovider",
+        "required": true,
+        "conditionKeys": [],
+        "dependentActions": []
+      },
+      {
+        "name": "token-vault",
+        "required": true,
+        "conditionKeys": [],
+        "dependentActions": []
+      },
+      {
+        "name": "workload-identity",
+        "required": true,
+        "conditionKeys": [],
+        "dependentActions": []
+      },
+      {
+        "name": "workload-identity-directory",
+        "required": true,
+        "conditionKeys": [],
+        "dependentActions": []
+      }
+    ],
+    "conditionKeys": [],
+    "dependentActions": []
+  },
+  "getresourceoauth2token": {
+    "name": "GetResourceOauth2Token",
+    "description": "Grants permission to retrieve access token with OAuth2 2LO or 3LO flow to access external resource",
+    "accessLevel": "Read",
+    "resourceTypes": [
+      {
+        "name": "oauth2credentialprovider",
+        "required": true,
+        "conditionKeys": [],
+        "dependentActions": []
+      },
+      {
+        "name": "token-vault",
+        "required": true,
+        "conditionKeys": [],
+        "dependentActions": []
+      },
+      {
+        "name": "workload-identity",
+        "required": true,
+        "conditionKeys": [],
+        "dependentActions": []
+      },
+      {
+        "name": "workload-identity-directory",
+        "required": true,
+        "conditionKeys": [],
+        "dependentActions": []
+      }
+    ],
+    "conditionKeys": [],
+    "dependentActions": []
+  },
+  "gettokenvault": {
+    "name": "GetTokenVault",
+    "description": "Grants permission to fetch the current configuration of the TokenVault, including encryption settings",
+    "accessLevel": "Read",
+    "resourceTypes": [
+      {
+        "name": "token-vault",
+        "required": true,
+        "conditionKeys": [],
+        "dependentActions": []
+      }
+    ],
+    "conditionKeys": [],
+    "dependentActions": []
+  },
+  "getworkloadaccesstoken": {
+    "name": "GetWorkloadAccessToken",
+    "description": "Grants permission to retrieve an Workload access token for agentic workloads not acting on behalf of a user",
+    "accessLevel": "Write",
+    "resourceTypes": [
+      {
+        "name": "workload-identity",
+        "required": true,
+        "conditionKeys": [],
+        "dependentActions": []
+      },
+      {
+        "name": "workload-identity-directory",
+        "required": true,
+        "conditionKeys": [],
+        "dependentActions": []
+      }
+    ],
+    "conditionKeys": [],
+    "dependentActions": []
+  },
+  "getworkloadaccesstokenforjwt": {
+    "name": "GetWorkloadAccessTokenForJWT",
+    "description": "Grants permission to retrieve an Workload access token for agentic workloads acting on behalf of user with JWT token",
+    "accessLevel": "Write",
+    "resourceTypes": [
+      {
+        "name": "workload-identity",
+        "required": true,
+        "conditionKeys": [],
+        "dependentActions": []
+      },
+      {
+        "name": "workload-identity-directory",
+        "required": true,
+        "conditionKeys": [],
+        "dependentActions": []
+      }
+    ],
+    "conditionKeys": [
+      "bedrock-agentcore:InboundJwtClaim/iss",
+      "bedrock-agentcore:InboundJwtClaim/sub",
+      "bedrock-agentcore:InboundJwtClaim/aud",
+      "bedrock-agentcore:InboundJwtClaim/scope",
+      "bedrock-agentcore:InboundJwtClaim/client_id"
+    ],
+    "dependentActions": []
+  },
+  "getworkloadaccesstokenforuserid": {
+    "name": "GetWorkloadAccessTokenForUserId",
+    "description": "Grants permission to retrieve an Workload access token for agentic workloads acting on behalf of user with User Id",
+    "accessLevel": "Write",
+    "resourceTypes": [
+      {
+        "name": "workload-identity",
+        "required": true,
+        "conditionKeys": [],
+        "dependentActions": []
+      },
+      {
+        "name": "workload-identity-directory",
+        "required": true,
+        "conditionKeys": [],
+        "dependentActions": []
+      }
+    ],
+    "conditionKeys": [
+      "bedrock-agentcore:userid"
+    ],
+    "dependentActions": []
+  },
+  "getworkloadidentity": {
+    "name": "GetWorkloadIdentity",
+    "description": "Grants permission to fetch details for a specific Workload identity, including its name and allowed OAuth2 return URLs",
+    "accessLevel": "Read",
+    "resourceTypes": [
+      {
+        "name": "workload-identity",
+        "required": true,
+        "conditionKeys": [],
+        "dependentActions": []
+      },
+      {
+        "name": "workload-identity-directory",
+        "required": true,
+        "conditionKeys": [],
+        "dependentActions": []
+      }
+    ],
+    "conditionKeys": [],
+    "dependentActions": []
+  },
+  "invokeagentruntime": {
+    "name": "InvokeAgentRuntime",
+    "description": "Grants permission to invoke an agent runtime endpoint",
+    "accessLevel": "Write",
+    "resourceTypes": [
+      {
+        "name": "runtime",
+        "required": true,
+        "conditionKeys": [],
+        "dependentActions": []
+      },
+      {
+        "name": "runtime-endpoint",
+        "required": true,
+        "conditionKeys": [],
+        "dependentActions": []
+      }
+    ],
+    "conditionKeys": [],
+    "dependentActions": []
+  },
+  "invokeagentruntimeforuser": {
+    "name": "InvokeAgentRuntimeForUser",
+    "description": "Grants permission to invoke an agent runtime endpoint with X-Amzn-Bedrock-AgentCore-Runtime-User-Id header",
+    "accessLevel": "Write",
+    "resourceTypes": [
+      {
+        "name": "runtime",
+        "required": true,
+        "conditionKeys": [],
+        "dependentActions": []
+      },
+      {
+        "name": "runtime-endpoint",
+        "required": true,
+        "conditionKeys": [],
+        "dependentActions": []
+      }
+    ],
+    "conditionKeys": [],
+    "dependentActions": []
+  },
+  "invokecodeinterpreter": {
+    "name": "InvokeCodeInterpreter",
+    "description": "Grants permission to invoke a code interpreter session",
+    "accessLevel": "Write",
+    "resourceTypes": [
+      {
+        "name": "code-interpreter",
+        "required": true,
+        "conditionKeys": [],
+        "dependentActions": []
+      },
+      {
+        "name": "code-interpreter-custom",
+        "required": true,
+        "conditionKeys": [],
+        "dependentActions": []
+      }
+    ],
+    "conditionKeys": [],
+    "dependentActions": []
+  },
+  "invokegateway": {
+    "name": "InvokeGateway",
+    "isPermissionOnly": true,
+    "description": "Grants permission to invoke a gateway",
+    "accessLevel": "Permissions management",
+    "resourceTypes": [
+      {
+        "name": "gateway",
+        "required": true,
+        "conditionKeys": [],
+        "dependentActions": []
+      }
+    ],
+    "conditionKeys": [],
+    "dependentActions": []
+  },
+  "listactors": {
+    "name": "ListActors",
+    "description": "Grants permission to list Actors",
+    "accessLevel": "List",
+    "resourceTypes": [
+      {
+        "name": "memory",
+        "required": true,
+        "conditionKeys": [],
+        "dependentActions": []
+      }
+    ],
+    "conditionKeys": [],
+    "dependentActions": []
+  },
+  "listagentruntimeendpoints": {
+    "name": "ListAgentRuntimeEndpoints",
+    "description": "Grants permission to list agent runtime endpoints",
+    "accessLevel": "List",
+    "resourceTypes": [],
+    "conditionKeys": [],
+    "dependentActions": []
+  },
+  "listagentruntimeversions": {
+    "name": "ListAgentRuntimeVersions",
+    "description": "Grants permission to list agent runtime versions",
+    "accessLevel": "List",
+    "resourceTypes": [],
+    "conditionKeys": [],
+    "dependentActions": []
+  },
+  "listagentruntimes": {
+    "name": "ListAgentRuntimes",
+    "description": "Grants permission to list agent runtimes",
+    "accessLevel": "List",
+    "resourceTypes": [],
+    "conditionKeys": [],
+    "dependentActions": []
+  },
+  "listapikeycredentialproviders": {
+    "name": "ListApiKeyCredentialProviders",
+    "description": "Grants permission to list all API Key Credential Providers in the Token Vault",
+    "accessLevel": "Read",
+    "resourceTypes": [
+      {
+        "name": "apikeycredentialprovider",
+        "required": true,
+        "conditionKeys": [],
+        "dependentActions": []
+      },
+      {
+        "name": "token-vault",
+        "required": true,
+        "conditionKeys": [],
+        "dependentActions": []
+      }
+    ],
+    "conditionKeys": [],
+    "dependentActions": []
+  },
+  "listbrowsersessions": {
+    "name": "ListBrowserSessions",
+    "description": "Grants permission to list browser sessions",
+    "accessLevel": "List",
+    "resourceTypes": [],
+    "conditionKeys": [],
+    "dependentActions": []
+  },
+  "listbrowsers": {
+    "name": "ListBrowsers",
+    "description": "Grants permission to list browsers",
+    "accessLevel": "List",
+    "resourceTypes": [],
+    "conditionKeys": [],
+    "dependentActions": []
+  },
+  "listcodeinterpretersessions": {
+    "name": "ListCodeInterpreterSessions",
+    "description": "Grants permission to list code interpreter sessions",
+    "accessLevel": "List",
+    "resourceTypes": [
+      {
+        "name": "code-interpreter",
+        "required": true,
+        "conditionKeys": [],
+        "dependentActions": []
+      },
+      {
+        "name": "code-interpreter-custom",
+        "required": true,
+        "conditionKeys": [],
+        "dependentActions": []
+      }
+    ],
+    "conditionKeys": [],
+    "dependentActions": []
+  },
+  "listcodeinterpreters": {
+    "name": "ListCodeInterpreters",
+    "description": "Grants permission to list code interpreters",
+    "accessLevel": "List",
+    "resourceTypes": [],
+    "conditionKeys": [],
+    "dependentActions": []
+  },
+  "listevents": {
+    "name": "ListEvents",
+    "description": "Grants permission to list events",
+    "accessLevel": "List",
+    "resourceTypes": [
+      {
+        "name": "memory",
+        "required": true,
+        "conditionKeys": [],
+        "dependentActions": []
+      }
+    ],
+    "conditionKeys": [
+      "bedrock-agentcore:sessionId",
+      "bedrock-agentcore:actorId"
+    ],
+    "dependentActions": []
+  },
+  "listgatewaytargets": {
+    "name": "ListGatewayTargets",
+    "description": "Grants permission to list existing gateway targets",
+    "accessLevel": "List",
+    "resourceTypes": [
+      {
+        "name": "gateway",
+        "required": true,
+        "conditionKeys": [],
+        "dependentActions": []
+      }
+    ],
+    "conditionKeys": [],
+    "dependentActions": []
+  },
+  "listgateways": {
+    "name": "ListGateways",
+    "description": "Grants permission to list existing gateways",
+    "accessLevel": "List",
+    "resourceTypes": [],
+    "conditionKeys": [],
+    "dependentActions": []
+  },
+  "listmemories": {
+    "name": "ListMemories",
+    "description": "Grants permission to list memory resources",
+    "accessLevel": "List",
+    "resourceTypes": [],
+    "conditionKeys": [],
+    "dependentActions": []
+  },
+  "listmemoryrecords": {
+    "name": "ListMemoryRecords",
+    "description": "Grants permission to list memory records",
+    "accessLevel": "List",
+    "resourceTypes": [
+      {
+        "name": "memory",
+        "required": true,
+        "conditionKeys": [],
+        "dependentActions": []
+      }
+    ],
+    "conditionKeys": [
+      "bedrock-agentcore:namespace",
+      "bedrock-agentcore:strategyId"
+    ],
+    "dependentActions": []
+  },
+  "listoauth2credentialproviders": {
+    "name": "ListOauth2CredentialProviders",
+    "description": "Grants permission to list all OAuth2 Credential Providers in the Token Vault",
+    "accessLevel": "Read",
+    "resourceTypes": [
+      {
+        "name": "oauth2credentialprovider",
+        "required": true,
+        "conditionKeys": [],
+        "dependentActions": []
+      },
+      {
+        "name": "token-vault",
+        "required": true,
+        "conditionKeys": [],
+        "dependentActions": []
+      }
+    ],
+    "conditionKeys": [],
+    "dependentActions": []
+  },
+  "listsessions": {
+    "name": "ListSessions",
+    "description": "Grants permission to list sessions",
+    "accessLevel": "List",
+    "resourceTypes": [
+      {
+        "name": "memory",
+        "required": true,
+        "conditionKeys": [],
+        "dependentActions": []
+      }
+    ],
+    "conditionKeys": [
+      "bedrock-agentcore:actorId"
+    ],
+    "dependentActions": []
+  },
+  "listtagsforresource": {
+    "name": "ListTagsForResource",
+    "description": "Grants permission to list tags for a Bedrock-AgentCore resource",
+    "accessLevel": "List",
+    "resourceTypes": [
+      {
+        "name": "apikeycredentialprovider",
+        "required": false,
+        "conditionKeys": [],
+        "dependentActions": []
+      },
+      {
+        "name": "browser-custom",
+        "required": false,
+        "conditionKeys": [],
+        "dependentActions": []
+      },
+      {
+        "name": "code-interpreter-custom",
+        "required": false,
+        "conditionKeys": [],
+        "dependentActions": []
+      },
+      {
+        "name": "gateway",
+        "required": false,
+        "conditionKeys": [],
+        "dependentActions": []
+      },
+      {
+        "name": "memory",
+        "required": false,
+        "conditionKeys": [],
+        "dependentActions": []
+      },
+      {
+        "name": "oauth2credentialprovider",
+        "required": false,
+        "conditionKeys": [],
+        "dependentActions": []
+      },
+      {
+        "name": "runtime",
+        "required": false,
+        "conditionKeys": [],
+        "dependentActions": []
+      },
+      {
+        "name": "runtime-endpoint",
+        "required": false,
+        "conditionKeys": [],
+        "dependentActions": []
+      },
+      {
+        "name": "token-vault",
+        "required": false,
+        "conditionKeys": [],
+        "dependentActions": []
+      },
+      {
+        "name": "workload-identity",
+        "required": false,
+        "conditionKeys": [],
+        "dependentActions": []
+      },
+      {
+        "name": "workload-identity-directory",
+        "required": false,
+        "conditionKeys": [],
+        "dependentActions": []
+      }
+    ],
+    "conditionKeys": [],
+    "dependentActions": []
+  },
+  "listworkloadidentities": {
+    "name": "ListWorkloadIdentities",
+    "description": "Grants permission to list all Workload Identities in the caller's AWS account",
+    "accessLevel": "Read",
+    "resourceTypes": [
+      {
+        "name": "workload-identity",
+        "required": true,
+        "conditionKeys": [],
+        "dependentActions": []
+      },
+      {
+        "name": "workload-identity-directory",
+        "required": true,
+        "conditionKeys": [],
+        "dependentActions": []
+      }
+    ],
+    "conditionKeys": [],
+    "dependentActions": []
+  },
+  "retrievememoryrecords": {
+    "name": "RetrieveMemoryRecords",
+    "description": "Grants permission to retrieve memory records through sematic query",
+    "accessLevel": "List",
+    "resourceTypes": [
+      {
+        "name": "memory",
+        "required": true,
+        "conditionKeys": [],
+        "dependentActions": []
+      }
+    ],
+    "conditionKeys": [
+      "bedrock-agentcore:namespace",
+      "bedrock-agentcore:strategyId"
+    ],
+    "dependentActions": []
+  },
+  "settokenvaultcmk": {
+    "name": "SetTokenVaultCMK",
+    "description": "Grants permission to associate a Customer Managed Key (CMK) or a Service Managed Key with a specific TokenVault",
+    "accessLevel": "Read",
+    "resourceTypes": [
+      {
+        "name": "token-vault",
+        "required": true,
+        "conditionKeys": [],
+        "dependentActions": []
+      }
+    ],
+    "conditionKeys": [],
+    "dependentActions": []
+  },
+  "startbrowsersession": {
+    "name": "StartBrowserSession",
+    "description": "Grants permission to starts a new browser session",
+    "accessLevel": "Write",
+    "resourceTypes": [
+      {
+        "name": "browser",
+        "required": true,
+        "conditionKeys": [],
+        "dependentActions": []
+      },
+      {
+        "name": "browser-custom",
+        "required": true,
+        "conditionKeys": [],
+        "dependentActions": []
+      }
+    ],
+    "conditionKeys": [],
+    "dependentActions": []
+  },
+  "startcodeinterpretersession": {
+    "name": "StartCodeInterpreterSession",
+    "description": "Grants permission to start a new code interpreter session",
+    "accessLevel": "Write",
+    "resourceTypes": [
+      {
+        "name": "code-interpreter",
+        "required": true,
+        "conditionKeys": [],
+        "dependentActions": []
+      },
+      {
+        "name": "code-interpreter-custom",
+        "required": true,
+        "conditionKeys": [],
+        "dependentActions": []
+      }
+    ],
+    "conditionKeys": [],
+    "dependentActions": []
+  },
+  "stopbrowsersession": {
+    "name": "StopBrowserSession",
+    "description": "Grants permission to stop a browser session",
+    "accessLevel": "Write",
+    "resourceTypes": [
+      {
+        "name": "browser",
+        "required": true,
+        "conditionKeys": [],
+        "dependentActions": []
+      },
+      {
+        "name": "browser-custom",
+        "required": true,
+        "conditionKeys": [],
+        "dependentActions": []
+      }
+    ],
+    "conditionKeys": [],
+    "dependentActions": []
+  },
+  "stopcodeinterpretersession": {
+    "name": "StopCodeInterpreterSession",
+    "description": "Grants permission to stop a code interpreter session",
+    "accessLevel": "Write",
+    "resourceTypes": [
+      {
+        "name": "code-interpreter",
+        "required": true,
+        "conditionKeys": [],
+        "dependentActions": []
+      },
+      {
+        "name": "code-interpreter-custom",
+        "required": true,
+        "conditionKeys": [],
+        "dependentActions": []
+      }
+    ],
+    "conditionKeys": [],
+    "dependentActions": []
+  },
+  "stopruntimesession": {
+    "name": "StopRuntimeSession",
+    "description": "Grants permission to stop a runtime session",
+    "accessLevel": "Write",
+    "resourceTypes": [
+      {
+        "name": "runtime",
+        "required": true,
+        "conditionKeys": [],
+        "dependentActions": []
+      },
+      {
+        "name": "runtime-endpoint",
+        "required": true,
+        "conditionKeys": [],
+        "dependentActions": []
+      }
+    ],
+    "conditionKeys": [],
+    "dependentActions": []
+  },
+  "synchronizegatewaytargets": {
+    "name": "SynchronizeGatewayTargets",
+    "isPermissionOnly": true,
+    "description": "Grants permission to enable search on gateways",
+    "accessLevel": "Permissions management",
+    "resourceTypes": [
+      {
+        "name": "gateway",
+        "required": true,
+        "conditionKeys": [],
+        "dependentActions": []
+      }
+    ],
+    "conditionKeys": [],
+    "dependentActions": []
+  },
+  "tagresource": {
+    "name": "TagResource",
+    "description": "Grants permission to Tag a Bedrock-AgentCore resource",
+    "accessLevel": "Tagging",
+    "resourceTypes": [
+      {
+        "name": "apikeycredentialprovider",
+        "required": false,
+        "conditionKeys": [],
+        "dependentActions": []
+      },
+      {
+        "name": "browser-custom",
+        "required": false,
+        "conditionKeys": [],
+        "dependentActions": []
+      },
+      {
+        "name": "code-interpreter-custom",
+        "required": false,
+        "conditionKeys": [],
+        "dependentActions": []
+      },
+      {
+        "name": "gateway",
+        "required": false,
+        "conditionKeys": [],
+        "dependentActions": []
+      },
+      {
+        "name": "memory",
+        "required": false,
+        "conditionKeys": [],
+        "dependentActions": []
+      },
+      {
+        "name": "oauth2credentialprovider",
+        "required": false,
+        "conditionKeys": [],
+        "dependentActions": []
+      },
+      {
+        "name": "runtime",
+        "required": false,
+        "conditionKeys": [],
+        "dependentActions": []
+      },
+      {
+        "name": "runtime-endpoint",
+        "required": false,
+        "conditionKeys": [],
+        "dependentActions": []
+      },
+      {
+        "name": "token-vault",
+        "required": false,
+        "conditionKeys": [],
+        "dependentActions": []
+      },
+      {
+        "name": "workload-identity",
+        "required": false,
+        "conditionKeys": [],
+        "dependentActions": []
+      },
+      {
+        "name": "workload-identity-directory",
+        "required": false,
+        "conditionKeys": [],
+        "dependentActions": []
+      }
+    ],
+    "conditionKeys": [
+      "aws:TagKeys",
+      "aws:RequestTag/${TagKey}"
+    ],
+    "dependentActions": []
+  },
+  "untagresource": {
+    "name": "UntagResource",
+    "description": "Grants permission to Untag a Bedrock-AgentCore resource",
+    "accessLevel": "Tagging",
+    "resourceTypes": [
+      {
+        "name": "apikeycredentialprovider",
+        "required": false,
+        "conditionKeys": [],
+        "dependentActions": []
+      },
+      {
+        "name": "browser-custom",
+        "required": false,
+        "conditionKeys": [],
+        "dependentActions": []
+      },
+      {
+        "name": "code-interpreter-custom",
+        "required": false,
+        "conditionKeys": [],
+        "dependentActions": []
+      },
+      {
+        "name": "gateway",
+        "required": false,
+        "conditionKeys": [],
+        "dependentActions": []
+      },
+      {
+        "name": "memory",
+        "required": false,
+        "conditionKeys": [],
+        "dependentActions": []
+      },
+      {
+        "name": "oauth2credentialprovider",
+        "required": false,
+        "conditionKeys": [],
+        "dependentActions": []
+      },
+      {
+        "name": "runtime",
+        "required": false,
+        "conditionKeys": [],
+        "dependentActions": []
+      },
+      {
+        "name": "runtime-endpoint",
+        "required": false,
+        "conditionKeys": [],
+        "dependentActions": []
+      },
+      {
+        "name": "token-vault",
+        "required": false,
+        "conditionKeys": [],
+        "dependentActions": []
+      },
+      {
+        "name": "workload-identity",
+        "required": false,
+        "conditionKeys": [],
+        "dependentActions": []
+      },
+      {
+        "name": "workload-identity-directory",
+        "required": false,
+        "conditionKeys": [],
+        "dependentActions": []
+      }
+    ],
+    "conditionKeys": [
+      "aws:TagKeys"
+    ],
+    "dependentActions": []
+  },
+  "updateagentruntime": {
+    "name": "UpdateAgentRuntime",
+    "description": "Grants permission to update an agent runtime",
+    "accessLevel": "Write",
+    "resourceTypes": [
+      {
+        "name": "runtime",
+        "required": true,
+        "conditionKeys": [],
+        "dependentActions": []
+      }
+    ],
+    "conditionKeys": [],
+    "dependentActions": [
+      "iam:PassRole"
+    ]
+  },
+  "updateagentruntimeendpoint": {
+    "name": "UpdateAgentRuntimeEndpoint",
+    "description": "Grants permission to update an agent runtime endpoint",
+    "accessLevel": "Write",
+    "resourceTypes": [
+      {
+        "name": "runtime",
+        "required": true,
+        "conditionKeys": [],
+        "dependentActions": []
+      },
+      {
+        "name": "runtime-endpoint",
+        "required": true,
+        "conditionKeys": [],
+        "dependentActions": []
+      }
+    ],
+    "conditionKeys": [],
+    "dependentActions": []
+  },
+  "updateapikeycredentialprovider": {
+    "name": "UpdateApiKeyCredentialProvider",
+    "description": "Grants permission to update an existing API Key Credential Provider",
+    "accessLevel": "Write",
+    "resourceTypes": [
+      {
+        "name": "apikeycredentialprovider",
+        "required": true,
+        "conditionKeys": [],
+        "dependentActions": []
+      },
+      {
+        "name": "token-vault",
+        "required": true,
+        "conditionKeys": [],
+        "dependentActions": []
+      }
+    ],
+    "conditionKeys": [],
+    "dependentActions": []
+  },
+  "updatebrowserstream": {
+    "name": "UpdateBrowserStream",
+    "description": "Grants permission to update the status of browser session stream",
+    "accessLevel": "Write",
+    "resourceTypes": [
+      {
+        "name": "browser",
+        "required": true,
+        "conditionKeys": [],
+        "dependentActions": []
+      },
+      {
+        "name": "browser-custom",
+        "required": true,
+        "conditionKeys": [],
+        "dependentActions": []
+      }
+    ],
+    "conditionKeys": [],
+    "dependentActions": []
+  },
+  "updategateway": {
+    "name": "UpdateGateway",
+    "description": "Grants permission to update an existing gateway",
+    "accessLevel": "Write",
+    "resourceTypes": [
+      {
+        "name": "gateway",
+        "required": true,
+        "conditionKeys": [],
+        "dependentActions": []
+      }
+    ],
+    "conditionKeys": [],
+    "dependentActions": [
+      "iam:PassRole"
+    ]
+  },
+  "updategatewaytarget": {
+    "name": "UpdateGatewayTarget",
+    "description": "Grants permission to update an existing gateway target",
+    "accessLevel": "Write",
+    "resourceTypes": [
+      {
+        "name": "gateway",
+        "required": true,
+        "conditionKeys": [],
+        "dependentActions": []
+      }
+    ],
+    "conditionKeys": [],
+    "dependentActions": []
+  },
+  "updatememory": {
+    "name": "UpdateMemory",
+    "description": "Grants permission to update a Memory resource",
+    "accessLevel": "Write",
+    "resourceTypes": [
+      {
+        "name": "memory",
+        "required": true,
+        "conditionKeys": [],
+        "dependentActions": []
+      }
+    ],
+    "conditionKeys": [],
+    "dependentActions": [
+      "iam:PassRole"
+    ]
+  },
+  "updateoauth2credentialprovider": {
+    "name": "UpdateOauth2CredentialProvider",
+    "description": "Grants permission to update an existing OAuth2 Credential Provider",
+    "accessLevel": "Write",
+    "resourceTypes": [
+      {
+        "name": "oauth2credentialprovider",
+        "required": true,
+        "conditionKeys": [],
+        "dependentActions": []
+      },
+      {
+        "name": "token-vault",
+        "required": true,
+        "conditionKeys": [],
+        "dependentActions": []
+      }
+    ],
+    "conditionKeys": [],
+    "dependentActions": []
+  },
+  "updateworkloadidentity": {
+    "name": "UpdateWorkloadIdentity",
+    "description": "Grants permission to update the metadata of an existing Workload Identity",
+    "accessLevel": "Write",
+    "resourceTypes": [
+      {
+        "name": "workload-identity",
+        "required": true,
+        "conditionKeys": [],
+        "dependentActions": []
+      },
+      {
+        "name": "workload-identity-directory",
+        "required": true,
+        "conditionKeys": [],
+        "dependentActions": []
+      }
+    ],
+    "conditionKeys": [],
+    "dependentActions": []
+  }
+}

iamdata 0.1.202504261__py3-none-any.whl → 0.1.202511181__py3-none-any.whl

iamdata 0.1.202504261py3-none-any.whl → 0.1.202511181py3-none-any.whl