Sourced from aws-cdk-lib's releases.

v2.200.0

Features

• update L1 CloudFormation resource definitions (#34594) (1e37ee7)
• custom-resources: throw ValidationError instead of untyped Errors (#33392) (1dacaa3), closes #32569
• ec2: implement IPeer to PrefixList to be usable as a connection peer (#33617) (c277419), closes #33607
• iam: introduce OidcProviderNative construct utilizing the native CloudFormation resource (#28634) (d8e6c09), closes #21197
• iam: throw ValidationErrors instead of untyped errors (#34579) (bd5caba), closes #32569
• lambda: allow propagating function tags to loggroup (#34556) (f556fd1)
• lambda: throw ValidationErrors instead of untyped errors (#34577) (6ccdd81), closes #32569
• region-info: throw ValidationError instead of untyped Errors (#33384) (303daf2), closes #32569
• s3: add grantReplicationPermission for IAM Role permissions (#34138) (bfa6490), closes #34119
• secretsmanager: throw ValidationErrors instead of untyped errors (#34580) (4d591ef), closes #32569
• servicecatalog: throw ValidationErrors instead of untyped errors (#34581) (3895d76), closes #32569
• sns-subscriptions: support Amazon Data Firehose subscription (#33811) (632179c), closes #14391
• stepfunctions: add grant API for RedriveExecution (#34554) (e03939d), closes #33578

Bug Fixes

• ec2: validate throughput property on EC2 instance block devices (#34571) (b31580a), closes #34033
• elasticloadbalancingv2: fix incorrect max for minimumCapacityUnit (#34586) (8f19b26), closes #34582

---

Alpha modules (2.200.0-alpha.0)

Features

• msk: support Kafka 4.0 (#34501) (aa40e38)

v2.199.0

⚠ BREAKING CHANGES TO EXPERIMENTAL FEATURES

• cloudformation: Some L1 resources experienced breaking changes due to updated CloudFormation resources. Please check the notes for each specific module for more information.
• vpc-lattice: the name and resourceConfigurationType property in CfnResourceConfigurationProps has changed from optional to required. Also, the name, subnetIds and vpcIdentifier properties in CfnResourceGatewayProps have changed from optional to mandatory.

Features

• appconfig: deletion protection check for configuration profile (#34418) (ce88c76)
• cloudformation: update L1 CloudFormation resource definitions (#34555) (64662b2)
• ecs-patterns: add minHealthyPercent and maxHealthyPercent props to NetworkMultipleTargetGroupsFargateService (#34516) (a434aed), closes #34368
• eks: Addon support configurationValues (#34061) (b420033), closes #34001
• events-targets: enable opt-in to use an IAM role for SnsTopic target (#34259) (a3a0cf0)
• stepfunctions-tasks: bedrock createModelCustomizationJob integration (#31913) (0c653d3), closes #29042

Bug Fixes

• elasticloadbalancingv2: add validation on application listeners for certificates on HTTP protocol (#34233) (ca065bb)
• rds: fix incorrect import/export combination check in AuroraMysqlEngineVersion.of() (#33564) (9e41154), closes #33562 #33562

---

Alpha modules (2.199.0-alpha.0)

... (truncated)

Sourced from aws-cdk-lib's changelog.

Changelog

All notable changes to this project will be documented in this file. See standard-version for commit guidelines.

2.200.0-alpha.0 (2025-06-02)

Features

• msk: support Kafka 4.0 (#34501) (aa40e38)

2.199.0-alpha.0 (2025-05-27)

2.198.0-alpha.0 (2025-05-22)

⚠ BREAKING CHANGES TO EXPERIMENTAL FEATURES

• amplify: A compute role is created when platform is Platform.WEB_COMPUTE or Platform.WEB_DYNAMIC.

Features

• amplify: add compute role support for Amplify app (#33962) (7490b92), closes #33882
• ec2: add i7i instance class (#34453) (3fe8ab4)

2.197.0-alpha.0 (2025-05-20)

2.196.1-alpha.0 (2025-05-19)

2.196.0-alpha.0 (2025-05-15)

Features

• msk: support Kafka versions 3.9.x and 3.9.x Kraft (#34213) (a1226db)
• pipes-targets: add SNS (#34159) (2f846b3)
• s3tables: server-side encryption by customer managed KMS key (#34229) (488f0db)

Bug Fixes

• ec2: dual-stack vpc without private subnets creates EgressOnlyInternetGateway (under feature flag) (#34437) (35e818b), closes #30981
• ec2-alpha: fix resource id references and tags for migration behind feature flag (#34377) (aa73534)

2.195.0-alpha.0 (2025-05-07)

⚠ BREAKING CHANGES TO EXPERIMENTAL FEATURES

• iot: By default, deviceDertificateAgeCheck is automatically enabled.

... (truncated)

• 83c2e82 chore: update analytics metadata blueprints
• 1e37ee7 feat: update L1 CloudFormation resource definitions (#34594)
• e03939d feat(stepfunctions): add grant API for RedriveExecution (#34554)
• 632179c feat(sns-subscriptions): support Amazon Data Firehose subscription (#33811)
• e27cd2c revert(ec2): support Firehose IDeliveryStream as flow log destination (#34592)
• b31580a fix(ec2): validate throughput property on EC2 instance block devices (#34571)
• 802f130 chore(ec2): update PrefixList.fromLookup() to expect the result from CcApi ...
• 703a379 chore(rds): add support for 8.0.mysql_aurora.3.09.0 (#34508)
• 303daf2 feat(region-info): throw ValidationError instead of untyped Errors (#33384)
• 9c68ec2 chore(rds): add MySQL version 5.7.44-rds.20250508 (#34576)
• Additional commits viewable in compare view

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
• @dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
• @dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
• @dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
• @dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
• @dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions