AWS CloudFormation (cloudformation)

2024-02-10

11 new actions, 2 new resources

Additions

    Actions
  • CreateGeneratedTemplate
    • Description:  Grants permission to create a template from existing resources that are not already managed with CloudFormation
    • Access:  Write
  • DeleteGeneratedTemplate
    • Description:  Grants permission to delete a generated template
    • Access:  Write
  • DescribeGeneratedTemplate
    • Description:  Grants permission to describe a generated template. The output includes details about the progress of the creation of a generated template
    • Access:  Read
  • DescribeResourceScan
    • Description:  Grants permission to describe details of a resource scan
    • Access:  Read
  • GetGeneratedTemplate
    • Description:  Grants permission to retrieve a generated template
    • Access:  Read
  • ListGeneratedTemplates
    • Description:  Grants permission to list your generated templates in this Region
    • Access:  List
  • ListResourceScanRelatedResources
    • Description:  Grants permission to list the related resources for a list of resources from a resource scan. The response indicates whether each returned resource is already managed by CloudFormation
    • Access:  List
  • ListResourceScanResources
    • Description:  Grants permission to list the resources from a resource scan. The results can be filtered by resource identifier, resource type prefix, tag key, and tag value
    • Access:  List
  • ListResourceScans
    • Description:  Grants permission to list the resource scans from newest to oldest. By default it will return up to 10 resource scans
    • Access:  List
  • StartResourceScan
    • Description:  Grants permission to start a scan of the resources in this account in this Region
    • Access:  Write
  • UpdateGeneratedTemplate
    • Description:  Grants permission to update a generated template. This can be used to change the name, add and remove resources, refresh resources, and change the DeletionPolicy and UpdateReplacePolicy settings
    • Access:  Write
    Resources
  • generatedtemplate
    • Arn:  arn:${Partition}:cloudformation:${Region}:${Account}:generatedTemplate/${Id}
  • resourcescan
    • Arn:  arn:${Partition}:cloudformation:${Region}:${Account}:resourceScan/${Id}