iamdata 0.1.202509101__py3-none-any.whl → 0.1.202511241__py3-none-any.whl

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Potentially problematic release.

This version of iamdata might be problematic. Click here for more details.

Files changed (179) hide show
  1. iamdata/data/actions/access-analyzer.json +4 -1
  2. iamdata/data/actions/action-recommendations.json +10 -0
  3. iamdata/data/actions/aiops.json +159 -0
  4. iamdata/data/actions/airflow-serverless.json +225 -0
  5. iamdata/data/actions/amplify.json +1 -8
  6. iamdata/data/actions/application-signals.json +48 -0
  7. iamdata/data/actions/appstream.json +120 -36
  8. iamdata/data/actions/aps.json +190 -0
  9. iamdata/data/actions/athena.json +88 -1
  10. iamdata/data/actions/autoscaling.json +42 -3
  11. iamdata/data/actions/backup.json +170 -2
  12. iamdata/data/actions/batch.json +28 -18
  13. iamdata/data/actions/bedrock-agentcore.json +453 -12
  14. iamdata/data/actions/bedrock.json +61 -2
  15. iamdata/data/actions/billing.json +72 -5
  16. iamdata/data/actions/braket.json +62 -0
  17. iamdata/data/actions/cloudformation.json +43 -0
  18. iamdata/data/actions/cloudfront.json +71 -88
  19. iamdata/data/actions/cloudtrail.json +35 -8
  20. iamdata/data/actions/cognito-idp.json +75 -0
  21. iamdata/data/actions/connect.json +129 -1
  22. iamdata/data/actions/cost-optimization-hub.json +8 -0
  23. iamdata/data/actions/datazone.json +224 -3
  24. iamdata/data/actions/dms.json +132 -0
  25. iamdata/data/actions/dsql.json +46 -8
  26. iamdata/data/actions/ec2.json +219 -33
  27. iamdata/data/actions/ecs.json +137 -2
  28. iamdata/data/actions/eks-mcp.json +26 -0
  29. iamdata/data/actions/eks.json +22 -2
  30. iamdata/data/actions/elasticloadbalancing.json +9 -0
  31. iamdata/data/actions/emr-containers.json +15 -0
  32. iamdata/data/actions/es.json +60 -0
  33. iamdata/data/actions/evs.json +30 -0
  34. iamdata/data/actions/fsx.json +15 -6
  35. iamdata/data/actions/glacier.json +1 -4
  36. iamdata/data/actions/glue.json +92 -16
  37. iamdata/data/actions/groundstation.json +15 -0
  38. iamdata/data/actions/guardduty.json +47 -1
  39. iamdata/data/actions/healthlake.json +225 -0
  40. iamdata/data/actions/iam.json +158 -5
  41. iamdata/data/actions/identitystore.json +158 -37
  42. iamdata/data/actions/imagebuilder.json +50 -6
  43. iamdata/data/actions/invoicing.json +84 -2
  44. iamdata/data/actions/iotmanagedintegrations.json +15 -0
  45. iamdata/data/actions/kafka.json +71 -0
  46. iamdata/data/actions/kinesis.json +63 -0
  47. iamdata/data/actions/kinesisvideo.json +30 -0
  48. iamdata/data/actions/kms.json +124 -1
  49. iamdata/data/actions/lakeformation.json +16 -0
  50. iamdata/data/actions/lambda.json +4 -2
  51. iamdata/data/actions/license-manager.json +217 -3
  52. iamdata/data/actions/logs.json +98 -0
  53. iamdata/data/actions/mediaconnect.json +83 -10
  54. iamdata/data/actions/medialive.json +24 -0
  55. iamdata/data/actions/mgn.json +54 -1
  56. iamdata/data/actions/notifications-contacts.json +2 -1
  57. iamdata/data/actions/observabilityadmin.json +136 -2
  58. iamdata/data/actions/odb.json +37 -0
  59. iamdata/data/actions/one.json +8 -0
  60. iamdata/data/actions/organizations.json +124 -3
  61. iamdata/data/actions/osis.json +111 -0
  62. iamdata/data/actions/partnercentral.json +307 -3
  63. iamdata/data/actions/pcs.json +26 -0
  64. iamdata/data/actions/pi.json +6 -0
  65. iamdata/data/actions/pricingplanmanager.json +66 -0
  66. iamdata/data/actions/profile.json +405 -1
  67. iamdata/data/actions/quicksight.json +491 -1
  68. iamdata/data/actions/rds.json +19 -8
  69. iamdata/data/actions/redshift-serverless.json +2 -2
  70. iamdata/data/actions/resource-explorer-2.json +82 -0
  71. iamdata/data/actions/rtbfabric.json +481 -0
  72. iamdata/data/actions/s3.json +68 -5
  73. iamdata/data/actions/s3tables.json +85 -2
  74. iamdata/data/actions/sagemaker-unified-studio-mcp.json +26 -0
  75. iamdata/data/actions/sagemaker.json +40 -8
  76. iamdata/data/actions/scn.json +17 -5
  77. iamdata/data/actions/secretsmanager.json +42 -20
  78. iamdata/data/actions/securityhub.json +30 -0
  79. iamdata/data/actions/servicequotas.json +32 -0
  80. iamdata/data/actions/signin.json +16 -0
  81. iamdata/data/actions/social-messaging.json +64 -8
  82. iamdata/data/actions/sso-directory.json +108 -36
  83. iamdata/data/actions/sso-oauth.json +40 -2
  84. iamdata/data/actions/sso.json +338 -110
  85. iamdata/data/actions/sts.json +34 -0
  86. iamdata/data/actions/support-console.json +18 -0
  87. iamdata/data/actions/support.json +35 -1
  88. iamdata/data/actions/tag.json +8 -0
  89. iamdata/data/actions/tax.json +48 -0
  90. iamdata/data/actions/transfer.json +30 -14
  91. iamdata/data/actions/transform.json +101 -2
  92. iamdata/data/actions/user-subscriptions.json +8 -0
  93. iamdata/data/actions/vpc-lattice-svcs.json +2 -0
  94. iamdata/data/actions/vpc-lattice.json +81 -0
  95. iamdata/data/actions/wisdom.json +15 -0
  96. iamdata/data/actions/workspaces-web.json +25 -9
  97. iamdata/data/actions/workspaces.json +0 -16
  98. iamdata/data/actions/xray.json +6 -2
  99. iamdata/data/conditionKeys/airflow-serverless.json +17 -0
  100. iamdata/data/conditionKeys/autoscaling.json +5 -0
  101. iamdata/data/conditionKeys/bedrock-agentcore.json +55 -0
  102. iamdata/data/conditionKeys/bedrock.json +5 -0
  103. iamdata/data/conditionKeys/cloudformation.json +5 -0
  104. iamdata/data/conditionKeys/connect.json +5 -0
  105. iamdata/data/conditionKeys/dynamodb.json +21 -1
  106. iamdata/data/conditionKeys/ec2.json +15 -15
  107. iamdata/data/conditionKeys/eks.json +5 -0
  108. iamdata/data/conditionKeys/events.json +1 -1
  109. iamdata/data/conditionKeys/glacier.json +0 -10
  110. iamdata/data/conditionKeys/glue.json +5 -0
  111. iamdata/data/conditionKeys/iam.json +20 -0
  112. iamdata/data/conditionKeys/identitystore.json +26 -1
  113. iamdata/data/conditionKeys/kinesis.json +15 -0
  114. iamdata/data/conditionKeys/kms.json +127 -7
  115. iamdata/data/conditionKeys/lambda.json +5 -0
  116. iamdata/data/conditionKeys/mediaconnect.json +17 -1
  117. iamdata/data/conditionKeys/observabilityadmin.json +15 -0
  118. iamdata/data/conditionKeys/organizations.json +10 -0
  119. iamdata/data/conditionKeys/partnercentral.json +7 -2
  120. iamdata/data/conditionKeys/pricingplanmanager.json +1 -0
  121. iamdata/data/conditionKeys/rtbfabric.json +47 -0
  122. iamdata/data/conditionKeys/s3.json +5 -0
  123. iamdata/data/conditionKeys/s3tables.json +20 -0
  124. iamdata/data/conditionKeys/sagemaker-unified-studio-mcp.json +1 -0
  125. iamdata/data/conditionKeys/sagemaker.json +15 -0
  126. iamdata/data/conditionKeys/secretsmanager.json +15 -0
  127. iamdata/data/conditionKeys/sso.json +10 -0
  128. iamdata/data/conditionKeys/sts.json +10 -0
  129. iamdata/data/conditionKeys/transfer.json +20 -0
  130. iamdata/data/conditionKeys/transform.json +12 -1
  131. iamdata/data/conditionKeys/vpc-lattice-svcs.json +5 -0
  132. iamdata/data/conditionKeys/vpc-lattice.json +15 -0
  133. iamdata/data/conditionKeys/xray.json +5 -0
  134. iamdata/data/conditionPatterns.json +8 -0
  135. iamdata/data/metadata.json +2 -2
  136. iamdata/data/resourceTypes/action-recommendations.json +1 -0
  137. iamdata/data/resourceTypes/airflow-serverless.json +9 -0
  138. iamdata/data/resourceTypes/aps.json +9 -0
  139. iamdata/data/resourceTypes/athena.json +7 -0
  140. iamdata/data/resourceTypes/backup.json +7 -0
  141. iamdata/data/resourceTypes/bedrock-agentcore.json +44 -11
  142. iamdata/data/resourceTypes/bedrock.json +4 -0
  143. iamdata/data/resourceTypes/braket.json +7 -0
  144. iamdata/data/resourceTypes/cloudformation.json +4 -0
  145. iamdata/data/resourceTypes/ec2.json +19 -5
  146. iamdata/data/resourceTypes/eks-mcp.json +1 -0
  147. iamdata/data/resourceTypes/guardduty.json +4 -1
  148. iamdata/data/resourceTypes/iam.json +7 -0
  149. iamdata/data/resourceTypes/invoicing.json +7 -0
  150. iamdata/data/resourceTypes/license-manager.json +14 -0
  151. iamdata/data/resourceTypes/logs.json +7 -0
  152. iamdata/data/resourceTypes/mediaconnect.json +16 -4
  153. iamdata/data/resourceTypes/observabilityadmin.json +9 -2
  154. iamdata/data/resourceTypes/organizations.json +7 -0
  155. iamdata/data/resourceTypes/osis.json +7 -0
  156. iamdata/data/resourceTypes/partnercentral.json +21 -0
  157. iamdata/data/resourceTypes/pi.json +4 -1
  158. iamdata/data/resourceTypes/pricingplanmanager.json +6 -0
  159. iamdata/data/resourceTypes/profile.json +14 -0
  160. iamdata/data/resourceTypes/quicksight.json +26 -1
  161. iamdata/data/resourceTypes/rtbfabric.json +46 -0
  162. iamdata/data/resourceTypes/s3.json +11 -2
  163. iamdata/data/resourceTypes/s3tables.json +7 -1
  164. iamdata/data/resourceTypes/sagemaker-unified-studio-mcp.json +1 -0
  165. iamdata/data/resourceTypes/sagemaker.json +8 -1
  166. iamdata/data/resourceTypes/scn.json +16 -4
  167. iamdata/data/resourceTypes/secretsmanager.json +2 -1
  168. iamdata/data/resourceTypes/transform.json +4 -0
  169. iamdata/data/resourceTypes/vpc-lattice.json +12 -0
  170. iamdata/data/serviceNames.json +7 -2
  171. iamdata/data/services.json +6 -1
  172. iamdata/data/unassociatedConditions.json +3 -0
  173. {iamdata-0.1.202509101.dist-info → iamdata-0.1.202511241.dist-info}/METADATA +1 -1
  174. {iamdata-0.1.202509101.dist-info → iamdata-0.1.202511241.dist-info}/RECORD +178 -163
  175. iamdata/data/actions/application-cost-profiler.json +0 -50
  176. /iamdata/data/conditionKeys/{application-cost-profiler.json → action-recommendations.json} +0 -0
  177. /iamdata/data/{resourceTypes/application-cost-profiler.json → conditionKeys/eks-mcp.json} +0 -0
  178. {iamdata-0.1.202509101.dist-info → iamdata-0.1.202511241.dist-info}/WHEEL +0 -0
  179. {iamdata-0.1.202509101.dist-info → iamdata-0.1.202511241.dist-info}/licenses/LICENSE.txt +0 -0
iamdata/data/actions/bedrock-agentcore.json CHANGED
@@ -15,6 +15,95 @@
15
15
  "conditionKeys": [],
16
16
  "dependentActions": []
17
17
  },
18
+ "batchcreatememoryrecords": {
19
+ "name": "BatchCreateMemoryRecords",
20
+ "description": "Grants permission to create one or more memory records",
21
+ "accessLevel": "Write",
22
+ "resourceTypes": [
23
+ {
24
+ "name": "memory",
25
+ "required": true,
26
+ "conditionKeys": [],
27
+ "dependentActions": []
28
+ }
29
+ ],
30
+ "conditionKeys": [
31
+ "bedrock-agentcore:namespace"
32
+ ],
33
+ "dependentActions": []
34
+ },
35
+ "batchdeletememoryrecords": {
36
+ "name": "BatchDeleteMemoryRecords",
37
+ "description": "Grants permission to delete one or more memory records",
38
+ "accessLevel": "Write",
39
+ "resourceTypes": [
40
+ {
41
+ "name": "memory",
42
+ "required": true,
43
+ "conditionKeys": [],
44
+ "dependentActions": []
45
+ }
46
+ ],
47
+ "conditionKeys": [],
48
+ "dependentActions": []
49
+ },
50
+ "batchupdatememoryrecords": {
51
+ "name": "BatchUpdateMemoryRecords",
52
+ "description": "Grants permission to update one or more memory records",
53
+ "accessLevel": "Write",
54
+ "resourceTypes": [
55
+ {
56
+ "name": "memory",
57
+ "required": true,
58
+ "conditionKeys": [],
59
+ "dependentActions": []
60
+ }
61
+ ],
62
+ "conditionKeys": [
63
+ "bedrock-agentcore:namespace"
64
+ ],
65
+ "dependentActions": []
66
+ },
67
+ "completeresourcetokenauth": {
68
+ "name": "CompleteResourceTokenAuth",
69
+ "description": "Grants permission to retrieve access token with OAuth2 for 3LO flow to access external resource",
70
+ "accessLevel": "Read",
71
+ "resourceTypes": [
72
+ {
73
+ "name": "oauth2credentialprovider",
74
+ "required": true,
75
+ "conditionKeys": [],
76
+ "dependentActions": []
77
+ },
78
+ {
79
+ "name": "token-vault",
80
+ "required": true,
81
+ "conditionKeys": [],
82
+ "dependentActions": []
83
+ },
84
+ {
85
+ "name": "workload-identity",
86
+ "required": true,
87
+ "conditionKeys": [],
88
+ "dependentActions": []
89
+ },
90
+ {
91
+ "name": "workload-identity-directory",
92
+ "required": true,
93
+ "conditionKeys": [],
94
+ "dependentActions": []
95
+ }
96
+ ],
97
+ "conditionKeys": [
98
+ "bedrock-agentcore:InboundJwtClaim/iss",
99
+ "bedrock-agentcore:InboundJwtClaim/sub",
100
+ "bedrock-agentcore:InboundJwtClaim/aud",
101
+ "bedrock-agentcore:InboundJwtClaim/scope",
102
+ "bedrock-agentcore:InboundJwtClaim/client_id",
103
+ "bedrock-agentcore:userid"
104
+ ],
105
+ "dependentActions": []
106
+ },
18
107
  "connectbrowserautomationstream": {
19
108
  "name": "ConnectBrowserAutomationStream",
20
109
  "description": "Grants permission to connect to a browser automation stream",
@@ -36,7 +125,10 @@
36
125
  "description": "Grants permission to create a new agent runtime",
37
126
  "accessLevel": "Write",
38
127
  "resourceTypes": [],
39
- "conditionKeys": [],
128
+ "conditionKeys": [
129
+ "aws:RequestTag/${TagKey}",
130
+ "aws:TagKeys"
131
+ ],
40
132
  "dependentActions": [
41
133
  "iam:PassRole"
42
134
  ]
@@ -45,8 +137,18 @@
45
137
  "name": "CreateAgentRuntimeEndpoint",
46
138
  "description": "Grants permission to create a new agent runtime endpoint",
47
139
  "accessLevel": "Write",
48
- "resourceTypes": [],
49
- "conditionKeys": [],
140
+ "resourceTypes": [
141
+ {
142
+ "name": "runtime",
143
+ "required": true,
144
+ "conditionKeys": [],
145
+ "dependentActions": []
146
+ }
147
+ ],
148
+ "conditionKeys": [
149
+ "aws:RequestTag/${TagKey}",
150
+ "aws:TagKeys"
151
+ ],
50
152
  "dependentActions": []
51
153
  },
52
154
  "createapikeycredentialprovider": {
@@ -67,7 +169,10 @@
67
169
  "dependentActions": []
68
170
  }
69
171
  ],
70
- "conditionKeys": [],
172
+ "conditionKeys": [
173
+ "aws:RequestTag/${TagKey}",
174
+ "aws:TagKeys"
175
+ ],
71
176
  "dependentActions": []
72
177
  },
73
178
  "createbrowser": {
@@ -75,7 +180,10 @@
75
180
  "description": "Grants permission to create a new custom browser",
76
181
  "accessLevel": "Write",
77
182
  "resourceTypes": [],
78
- "conditionKeys": [],
183
+ "conditionKeys": [
184
+ "aws:RequestTag/${TagKey}",
185
+ "aws:TagKeys"
186
+ ],
79
187
  "dependentActions": []
80
188
  },
81
189
  "createcodeinterpreter": {
@@ -83,7 +191,10 @@
83
191
  "description": "Grants permission to create a new custom code interpreter",
84
192
  "accessLevel": "Write",
85
193
  "resourceTypes": [],
86
- "conditionKeys": [],
194
+ "conditionKeys": [
195
+ "aws:RequestTag/${TagKey}",
196
+ "aws:TagKeys"
197
+ ],
87
198
  "dependentActions": []
88
199
  },
89
200
  "createevent": {
@@ -109,7 +220,10 @@
109
220
  "description": "Grants permission to create a new gateway",
110
221
  "accessLevel": "Write",
111
222
  "resourceTypes": [],
112
- "conditionKeys": [],
223
+ "conditionKeys": [
224
+ "aws:RequestTag/${TagKey}",
225
+ "aws:TagKeys"
226
+ ],
113
227
  "dependentActions": [
114
228
  "iam:PassRole"
115
229
  ]
@@ -134,7 +248,11 @@
134
248
  "description": "Grants permission to create a Memory resource",
135
249
  "accessLevel": "Write",
136
250
  "resourceTypes": [],
137
- "conditionKeys": [],
251
+ "conditionKeys": [
252
+ "aws:RequestTag/${TagKey}",
253
+ "aws:TagKeys",
254
+ "bedrock-agentcore:KmsKeyArn"
255
+ ],
138
256
  "dependentActions": [
139
257
  "iam:PassRole"
140
258
  ]
@@ -157,7 +275,10 @@
157
275
  "dependentActions": []
158
276
  }
159
277
  ],
160
- "conditionKeys": [],
278
+ "conditionKeys": [
279
+ "aws:RequestTag/${TagKey}",
280
+ "aws:TagKeys"
281
+ ],
161
282
  "dependentActions": []
162
283
  },
163
284
  "createworkloadidentity": {
@@ -178,7 +299,10 @@
178
299
  "dependentActions": []
179
300
  }
180
301
  ],
181
- "conditionKeys": [],
302
+ "conditionKeys": [
303
+ "aws:RequestTag/${TagKey}",
304
+ "aws:TagKeys"
305
+ ],
182
306
  "dependentActions": []
183
307
  },
184
308
  "deleteagentruntime": {
@@ -388,6 +512,27 @@
388
512
  "conditionKeys": [],
389
513
  "dependentActions": []
390
514
  },
515
+ "getagentcard": {
516
+ "name": "GetAgentCard",
517
+ "description": "Grants permission to retrieve an agent card for A2A",
518
+ "accessLevel": "Read",
519
+ "resourceTypes": [
520
+ {
521
+ "name": "runtime",
522
+ "required": true,
523
+ "conditionKeys": [],
524
+ "dependentActions": []
525
+ },
526
+ {
527
+ "name": "runtime-endpoint",
528
+ "required": true,
529
+ "conditionKeys": [],
530
+ "dependentActions": []
531
+ }
532
+ ],
533
+ "conditionKeys": [],
534
+ "dependentActions": []
535
+ },
391
536
  "getagentruntime": {
392
537
  "name": "GetAgentRuntime",
393
538
  "description": "Grants permission to get details of an agent runtime",
@@ -736,7 +881,13 @@
736
881
  "dependentActions": []
737
882
  }
738
883
  ],
739
- "conditionKeys": [],
884
+ "conditionKeys": [
885
+ "bedrock-agentcore:InboundJwtClaim/iss",
886
+ "bedrock-agentcore:InboundJwtClaim/sub",
887
+ "bedrock-agentcore:InboundJwtClaim/aud",
888
+ "bedrock-agentcore:InboundJwtClaim/scope",
889
+ "bedrock-agentcore:InboundJwtClaim/client_id"
890
+ ],
740
891
  "dependentActions": []
741
892
  },
742
893
  "getworkloadaccesstokenforuserid": {
@@ -757,7 +908,9 @@
757
908
  "dependentActions": []
758
909
  }
759
910
  ],
760
- "conditionKeys": [],
911
+ "conditionKeys": [
912
+ "bedrock-agentcore:userid"
913
+ ],
761
914
  "dependentActions": []
762
915
  },
763
916
  "getworkloadidentity": {
@@ -802,6 +955,27 @@
802
955
  "conditionKeys": [],
803
956
  "dependentActions": []
804
957
  },
958
+ "invokeagentruntimeforuser": {
959
+ "name": "InvokeAgentRuntimeForUser",
960
+ "description": "Grants permission to invoke an agent runtime endpoint with X-Amzn-Bedrock-AgentCore-Runtime-User-Id header",
961
+ "accessLevel": "Write",
962
+ "resourceTypes": [
963
+ {
964
+ "name": "runtime",
965
+ "required": true,
966
+ "conditionKeys": [],
967
+ "dependentActions": []
968
+ },
969
+ {
970
+ "name": "runtime-endpoint",
971
+ "required": true,
972
+ "conditionKeys": [],
973
+ "dependentActions": []
974
+ }
975
+ ],
976
+ "conditionKeys": [],
977
+ "dependentActions": []
978
+ },
805
979
  "invokecodeinterpreter": {
806
980
  "name": "InvokeCodeInterpreter",
807
981
  "description": "Grants permission to invoke a code interpreter session",
@@ -823,6 +997,22 @@
823
997
  "conditionKeys": [],
824
998
  "dependentActions": []
825
999
  },
1000
+ "invokegateway": {
1001
+ "name": "InvokeGateway",
1002
+ "isPermissionOnly": true,
1003
+ "description": "Grants permission to invoke a gateway",
1004
+ "accessLevel": "Permissions management",
1005
+ "resourceTypes": [
1006
+ {
1007
+ "name": "gateway",
1008
+ "required": true,
1009
+ "conditionKeys": [],
1010
+ "dependentActions": []
1011
+ }
1012
+ ],
1013
+ "conditionKeys": [],
1014
+ "dependentActions": []
1015
+ },
826
1016
  "listactors": {
827
1017
  "name": "ListActors",
828
1018
  "description": "Grants permission to list Actors",
@@ -1033,6 +1223,81 @@
1033
1223
  ],
1034
1224
  "dependentActions": []
1035
1225
  },
1226
+ "listtagsforresource": {
1227
+ "name": "ListTagsForResource",
1228
+ "description": "Grants permission to list tags for a Bedrock-AgentCore resource",
1229
+ "accessLevel": "List",
1230
+ "resourceTypes": [
1231
+ {
1232
+ "name": "apikeycredentialprovider",
1233
+ "required": false,
1234
+ "conditionKeys": [],
1235
+ "dependentActions": []
1236
+ },
1237
+ {
1238
+ "name": "browser-custom",
1239
+ "required": false,
1240
+ "conditionKeys": [],
1241
+ "dependentActions": []
1242
+ },
1243
+ {
1244
+ "name": "code-interpreter-custom",
1245
+ "required": false,
1246
+ "conditionKeys": [],
1247
+ "dependentActions": []
1248
+ },
1249
+ {
1250
+ "name": "gateway",
1251
+ "required": false,
1252
+ "conditionKeys": [],
1253
+ "dependentActions": []
1254
+ },
1255
+ {
1256
+ "name": "memory",
1257
+ "required": false,
1258
+ "conditionKeys": [],
1259
+ "dependentActions": []
1260
+ },
1261
+ {
1262
+ "name": "oauth2credentialprovider",
1263
+ "required": false,
1264
+ "conditionKeys": [],
1265
+ "dependentActions": []
1266
+ },
1267
+ {
1268
+ "name": "runtime",
1269
+ "required": false,
1270
+ "conditionKeys": [],
1271
+ "dependentActions": []
1272
+ },
1273
+ {
1274
+ "name": "runtime-endpoint",
1275
+ "required": false,
1276
+ "conditionKeys": [],
1277
+ "dependentActions": []
1278
+ },
1279
+ {
1280
+ "name": "token-vault",
1281
+ "required": false,
1282
+ "conditionKeys": [],
1283
+ "dependentActions": []
1284
+ },
1285
+ {
1286
+ "name": "workload-identity",
1287
+ "required": false,
1288
+ "conditionKeys": [],
1289
+ "dependentActions": []
1290
+ },
1291
+ {
1292
+ "name": "workload-identity-directory",
1293
+ "required": false,
1294
+ "conditionKeys": [],
1295
+ "dependentActions": []
1296
+ }
1297
+ ],
1298
+ "conditionKeys": [],
1299
+ "dependentActions": []
1300
+ },
1036
1301
  "listworkloadidentities": {
1037
1302
  "name": "ListWorkloadIdentities",
1038
1303
  "description": "Grants permission to list all Workload Identities in the caller's AWS account",
@@ -1171,6 +1436,27 @@
1171
1436
  "conditionKeys": [],
1172
1437
  "dependentActions": []
1173
1438
  },
1439
+ "stopruntimesession": {
1440
+ "name": "StopRuntimeSession",
1441
+ "description": "Grants permission to stop a runtime session",
1442
+ "accessLevel": "Write",
1443
+ "resourceTypes": [
1444
+ {
1445
+ "name": "runtime",
1446
+ "required": true,
1447
+ "conditionKeys": [],
1448
+ "dependentActions": []
1449
+ },
1450
+ {
1451
+ "name": "runtime-endpoint",
1452
+ "required": true,
1453
+ "conditionKeys": [],
1454
+ "dependentActions": []
1455
+ }
1456
+ ],
1457
+ "conditionKeys": [],
1458
+ "dependentActions": []
1459
+ },
1174
1460
  "synchronizegatewaytargets": {
1175
1461
  "name": "SynchronizeGatewayTargets",
1176
1462
  "isPermissionOnly": true,
@@ -1187,6 +1473,161 @@
1187
1473
  "conditionKeys": [],
1188
1474
  "dependentActions": []
1189
1475
  },
1476
+ "tagresource": {
1477
+ "name": "TagResource",
1478
+ "description": "Grants permission to Tag a Bedrock-AgentCore resource",
1479
+ "accessLevel": "Tagging",
1480
+ "resourceTypes": [
1481
+ {
1482
+ "name": "apikeycredentialprovider",
1483
+ "required": false,
1484
+ "conditionKeys": [],
1485
+ "dependentActions": []
1486
+ },
1487
+ {
1488
+ "name": "browser-custom",
1489
+ "required": false,
1490
+ "conditionKeys": [],
1491
+ "dependentActions": []
1492
+ },
1493
+ {
1494
+ "name": "code-interpreter-custom",
1495
+ "required": false,
1496
+ "conditionKeys": [],
1497
+ "dependentActions": []
1498
+ },
1499
+ {
1500
+ "name": "gateway",
1501
+ "required": false,
1502
+ "conditionKeys": [],
1503
+ "dependentActions": []
1504
+ },
1505
+ {
1506
+ "name": "memory",
1507
+ "required": false,
1508
+ "conditionKeys": [],
1509
+ "dependentActions": []
1510
+ },
1511
+ {
1512
+ "name": "oauth2credentialprovider",
1513
+ "required": false,
1514
+ "conditionKeys": [],
1515
+ "dependentActions": []
1516
+ },
1517
+ {
1518
+ "name": "runtime",
1519
+ "required": false,
1520
+ "conditionKeys": [],
1521
+ "dependentActions": []
1522
+ },
1523
+ {
1524
+ "name": "runtime-endpoint",
1525
+ "required": false,
1526
+ "conditionKeys": [],
1527
+ "dependentActions": []
1528
+ },
1529
+ {
1530
+ "name": "token-vault",
1531
+ "required": false,
1532
+ "conditionKeys": [],
1533
+ "dependentActions": []
1534
+ },
1535
+ {
1536
+ "name": "workload-identity",
1537
+ "required": false,
1538
+ "conditionKeys": [],
1539
+ "dependentActions": []
1540
+ },
1541
+ {
1542
+ "name": "workload-identity-directory",
1543
+ "required": false,
1544
+ "conditionKeys": [],
1545
+ "dependentActions": []
1546
+ }
1547
+ ],
1548
+ "conditionKeys": [
1549
+ "aws:TagKeys",
1550
+ "aws:RequestTag/${TagKey}"
1551
+ ],
1552
+ "dependentActions": []
1553
+ },
1554
+ "untagresource": {
1555
+ "name": "UntagResource",
1556
+ "description": "Grants permission to Untag a Bedrock-AgentCore resource",
1557
+ "accessLevel": "Tagging",
1558
+ "resourceTypes": [
1559
+ {
1560
+ "name": "apikeycredentialprovider",
1561
+ "required": false,
1562
+ "conditionKeys": [],
1563
+ "dependentActions": []
1564
+ },
1565
+ {
1566
+ "name": "browser-custom",
1567
+ "required": false,
1568
+ "conditionKeys": [],
1569
+ "dependentActions": []
1570
+ },
1571
+ {
1572
+ "name": "code-interpreter-custom",
1573
+ "required": false,
1574
+ "conditionKeys": [],
1575
+ "dependentActions": []
1576
+ },
1577
+ {
1578
+ "name": "gateway",
1579
+ "required": false,
1580
+ "conditionKeys": [],
1581
+ "dependentActions": []
1582
+ },
1583
+ {
1584
+ "name": "memory",
1585
+ "required": false,
1586
+ "conditionKeys": [],
1587
+ "dependentActions": []
1588
+ },
1589
+ {
1590
+ "name": "oauth2credentialprovider",
1591
+ "required": false,
1592
+ "conditionKeys": [],
1593
+ "dependentActions": []
1594
+ },
1595
+ {
1596
+ "name": "runtime",
1597
+ "required": false,
1598
+ "conditionKeys": [],
1599
+ "dependentActions": []
1600
+ },
1601
+ {
1602
+ "name": "runtime-endpoint",
1603
+ "required": false,
1604
+ "conditionKeys": [],
1605
+ "dependentActions": []
1606
+ },
1607
+ {
1608
+ "name": "token-vault",
1609
+ "required": false,
1610
+ "conditionKeys": [],
1611
+ "dependentActions": []
1612
+ },
1613
+ {
1614
+ "name": "workload-identity",
1615
+ "required": false,
1616
+ "conditionKeys": [],
1617
+ "dependentActions": []
1618
+ },
1619
+ {
1620
+ "name": "workload-identity-directory",
1621
+ "required": false,
1622
+ "conditionKeys": [],
1623
+ "dependentActions": []
1624
+ }
1625
+ ],
1626
+ "conditionKeys": [
1627
+ "aws:TagKeys"
1628
+ ],
1629
+ "dependentActions": []
1630
+ },
1190
1631
  "updateagentruntime": {
1191
1632
  "name": "UpdateAgentRuntime",
1192
1633
  "description": "Grants permission to update an agent runtime",
iamdata/data/actions/bedrock.json CHANGED
@@ -121,6 +121,21 @@
121
121
  "conditionKeys": [],
122
122
  "dependentActions": []
123
123
  },
124
+ "counttokens": {
125
+ "name": "CountTokens",
126
+ "description": "Grants permission to count the number of tokens in an input prompt",
127
+ "accessLevel": "Read",
128
+ "resourceTypes": [
129
+ {
130
+ "name": "foundation-model",
131
+ "required": true,
132
+ "conditionKeys": [],
133
+ "dependentActions": []
134
+ }
135
+ ],
136
+ "conditionKeys": [],
137
+ "dependentActions": []
138
+ },
124
139
  "createagent": {
125
140
  "name": "CreateAgent",
126
141
  "description": "Grants permission to create a new agent and a test agent alias pointing to the DRAFT agent version",
@@ -2118,6 +2133,33 @@
2118
2133
  "conditionKeys": [],
2119
2134
  "dependentActions": []
2120
2135
  },
2136
+ "invokedataautomation": {
2137
+ "name": "InvokeDataAutomation",
2138
+ "description": "Grants permission to invoke a call to Sync API of Bedrock data automation",
2139
+ "accessLevel": "Write",
2140
+ "resourceTypes": [
2141
+ {
2142
+ "name": "blueprint",
2143
+ "required": true,
2144
+ "conditionKeys": [],
2145
+ "dependentActions": []
2146
+ },
2147
+ {
2148
+ "name": "data-automation-profile",
2149
+ "required": true,
2150
+ "conditionKeys": [],
2151
+ "dependentActions": []
2152
+ },
2153
+ {
2154
+ "name": "data-automation-project",
2155
+ "required": true,
2156
+ "conditionKeys": [],
2157
+ "dependentActions": []
2158
+ }
2159
+ ],
2160
+ "conditionKeys": [],
2161
+ "dependentActions": []
2162
+ },
2121
2163
  "invokedataautomationasync": {
2122
2164
  "name": "InvokeDataAutomationAsync",
2123
2165
  "description": "Grants permission to invoke a Bedrock data automation job",
@@ -2245,7 +2287,8 @@
2245
2287
  "aws:RequestTag/${TagKey}",
2246
2288
  "aws:TagKeys",
2247
2289
  "bedrock:GuardrailIdentifier",
2248
- "bedrock:BearerTokenType"
2290
+ "bedrock:BearerTokenType",
2291
+ "bedrock:ServiceTier"
2249
2292
  ],
2250
2293
  "dependentActions": []
2251
2294
  },
@@ -2313,8 +2356,24 @@
2313
2356
  "bedrock:InferenceProfileArn",
2314
2357
  "bedrock:PromptRouterArn",
2315
2358
  "bedrock:GuardrailIdentifier",
2316
- "bedrock:BearerTokenType"
2359
+ "bedrock:BearerTokenType",
2360
+ "bedrock:ServiceTier"
2361
+ ],
2362
+ "dependentActions": []
2363
+ },
2364
+ "invoketool": {
2365
+ "name": "InvokeTool",
2366
+ "description": "Grants permission to invoke the specified Bedrock tool to run inference",
2367
+ "accessLevel": "Read",
2368
+ "resourceTypes": [
2369
+ {
2370
+ "name": "system-tool",
2371
+ "required": true,
2372
+ "conditionKeys": [],
2373
+ "dependentActions": []
2374
+ }
2317
2375
  ],
2376
+ "conditionKeys": [],
2318
2377
  "dependentActions": []
2319
2378
  },
2320
2379
  "listagentactiongroups": {