Merge remote-tracking branch 'origin/master'

Author: L-Applin

.changes/2.33.10.json

@@ -0,0 +1,42 @@
+{
+    "version": "2.33.10",
+    "date": "2025-09-15",
+    "entries": [
+        {
+            "type": "bugfix",
+            "category": "Amazon S3",
+            "contributor": "",
+            "description": "Added additional validations for multipart download operations in the Java multipart S3 client"
+        },
+        {
+            "type": "feature",
+            "category": "AWS Cost Explorer Service",
+            "contributor": "",
+            "description": "Added endpoint support for eusc-de-east-1 region."
+        },
+        {
+            "type": "feature",
+            "category": "AWS Health Imaging",
+            "contributor": "",
+            "description": "Added support for OpenID Connect (OIDC) custom authorizer"
+        },
+        {
+            "type": "feature",
+            "category": "AWS S3 Control",
+            "contributor": "",
+            "description": "Introduce three new encryption filters: EncryptionType (SSE-S3, SSE-KMS, DSSE-KMS, SSE-C, NOT-SSE), KmsKeyArn (for SSE-KMS and DSSE-KMS), and BucketKeyEnabled (for SSE-KMS)."
+        },
+        {
+            "type": "feature",
+            "category": "CloudWatch Observability Admin Service",
+            "contributor": "",
+            "description": "CloudWatch Observability Admin adds the ability to enable telemetry centralization in customers' Organizations. The release introduces new APIs to manage centralization rules, which define settings to replicate telemetry data to a central destination in the customers' Organization."
+        },
+        {
+            "type": "feature",
+            "category": "AWS SDK for Java v2",
+            "contributor": "",
+            "description": "Updated endpoint and partition metadata."
+        }
+    ]
+}

.changes/2.33.7.json

@@ -0,0 +1,36 @@
+{
+    "version": "2.33.7",
+    "date": "2025-09-10",
+    "entries": [
+        {
+            "type": "bugfix",
+            "category": "AWS SDK for Java v2",
+            "contributor": "",
+            "description": "Ensure that file modification exceptions in AsyncRequestBody#fromFile are propagated correctly."
+        },
+        {
+            "type": "bugfix",
+            "category": "AWS SDK for Java v2",
+            "contributor": "",
+            "description": "Revert recent AutoGeneratedTimestampRecordExtension change released in `2.33.4` that may break users with manually configured table schema. See [#6410](https://github.com/aws/aws-sdk-java-v2/issues/6410)"
+        },
+        {
+            "type": "feature",
+            "category": "Network Flow Monitor",
+            "contributor": "",
+            "description": "Added new enum value (AWS::Region) for type field under MonitorLocalResource and MonitorRemoteResource. Workload Insights and Monitor top contributors queries now support a new DestinationCategory (INTER_REGION)."
+        },
+        {
+            "type": "feature",
+            "category": "Payment Cryptography Control Plane",
+            "contributor": "",
+            "description": "AWS Payment Cryptography Service now supports Multi-Region key replication. Customers can choose to automatically distribute keys across AWS Regions."
+        },
+        {
+            "type": "feature",
+            "category": "AWS SDK for Java v2",
+            "contributor": "",
+            "description": "Updated endpoint and partition metadata."
+        }
+    ]
+}

.changes/2.33.8.json

@@ -0,0 +1,66 @@
+{
+    "version": "2.33.8",
+    "date": "2025-09-11",
+    "entries": [
+        {
+            "type": "feature",
+            "category": "AWS Elemental MediaLive",
+            "contributor": "",
+            "description": "AWS Elemental MediaLive adds a new feature in MediaPackage output group that enables MediaPackage V2 users to control HLS-related parameters directly in MediaLive. These parameter settings are then reflected in MediaPackage outputs, providing more streamlined control over HLS configurations."
+        },
+        {
+            "type": "feature",
+            "category": "Amazon DataZone",
+            "contributor": "",
+            "description": "adding IAM principal id to IAM user profile details"
+        },
+        {
+            "type": "feature",
+            "category": "Amazon EC2 Container Service",
+            "contributor": "",
+            "description": "This release supports hook details for Amazon ECS lifecycle hooks."
+        },
+        {
+            "type": "feature",
+            "category": "Amazon EMR Containers",
+            "contributor": "",
+            "description": "Added nodeLabel support in container provider to aid hardware isolation support for virtual cluster and security configuration."
+        },
+        {
+            "type": "feature",
+            "category": "Amazon Elastic VMware Service",
+            "contributor": "",
+            "description": "CreateEnvironment API now supports parameters (isHcxPublic & hcxNetworkAclId) for HCX migration via public internet, adding flexibility for migration scenarios. New APIs have been added for associating (AssociateEipToVlan) & disassociating (DisassociateEipFromVlan) Elastic IP (EIP) addresses."
+        },
+        {
+            "type": "feature",
+            "category": "Amazon GuardDuty",
+            "contributor": "",
+            "description": "Updated Java SDK implementation of entity set status in GuardDuty API."
+        },
+        {
+            "type": "feature",
+            "category": "Amazon Prometheus Service",
+            "contributor": "",
+            "description": "Add Vended Logs APIs for Amazon Prometheus Managed Collector"
+        },
+        {
+            "type": "feature",
+            "category": "Amazon QuickSight",
+            "contributor": "",
+            "description": "This release adds support for Account level custom permissions, additional Dashboard Options, and Null support for Q&A."
+        },
+        {
+            "type": "feature",
+            "category": "Amazon Relational Database Service",
+            "contributor": "",
+            "description": "Adds support for end-to-end IAM authentication in RDS Proxy for MySQL, MariaDB, and PostgreSQL engines."
+        },
+        {
+            "type": "feature",
+            "category": "AWS SDK for Java v2",
+            "contributor": "",
+            "description": "Updated endpoint and partition metadata."
+        }
+    ]
+}

.changes/2.33.9.json

@@ -0,0 +1,18 @@
+{
+    "version": "2.33.9",
+    "date": "2025-09-12",
+    "entries": [
+        {
+            "type": "feature",
+            "category": "AWS SDK for Java v2",
+            "contributor": "",
+            "description": "Update Jackson and Jackson jr to 2.19.0"
+        },
+        {
+            "type": "feature",
+            "category": "Payment Cryptography Control Plane",
+            "contributor": "",
+            "description": "Add support for certificates to be signed by 3rd party certificate authorities. New API GetCertificateSigningRequest API and support for providing certificates at run-time for tr-34 import/export"
+        }
+    ]
+}

.changes/next-release/bugfix-AWSSDKforJavav2-08c895c.json

@@ -0,0 +1,6 @@
+{
+    "type": "bugfix",
+    "category": "AWS SDK for Java v2",
+    "contributor": "",
+    "description": "Preserve the initial content-length when calling mark in SdkLengthAwareInputStream."
+}

.changes/next-release/bugfix-AWSSDKforJavav2-4bab915.json

@@ -21,7 +21,7 @@ jobs:
         if: ${{ !contains(github.event.pull_request.labels.*.name, 'no-api-surface-area-change') }}
         run: |
           git fetch origin ${{ github.base_ref }} --depth 1
-          FILES=$( git diff remotes/origin/${{ github.base_ref }} --name-only | grep "\.java$" | grep -v -E "(^|/)(internal|test|codegen|v2-migration|it)/"  || true)
+          FILES=$( git diff remotes/origin/${{ github.base_ref }} --name-only | grep "\.java$" | grep -v -E "(^|/)(internal|test|codegen|codegen-lite|v2-migration|it|release-scripts|scripts)/"  || true)
           if [ -n "$FILES" ]; then
             echo "::error::Changes around protected/public APIs found:"
             echo "$FILES" | while read file; do

.changes/next-release/bugfix-AWSSDKforJavav2-74d5bc8.json

@@ -129,23 +129,23 @@ jobs:
               fi
               
               # 2. Check if added to tests-coverage-reporting pom.xml
-              if ! grep -q "<dependency>.*$MODULE_NAME</dependency>" test/tests-coverage-reporting/pom.xml 2>/dev/null; then
+              if ! grep -q "<artifactId>$MODULE_NAME</artifactId>" test/tests-coverage-reporting/pom.xml 2>/dev/null; then
                 echo "::error::Module $MODULE_NAME is not added to tests-coverage-reporting pom.xml"
                 HAS_ERRORS=1
               else
                 echo "✅ Module is added to tests-coverage-reporting"
               fi
               
               # 3. Check if added to aws-sdk-java pom.xml
-              if ! grep -q "<dependency>.*$MODULE_NAME</dependency>" aws-sdk-java/pom.xml 2>/dev/null; then
+              if ! grep -q "<artifactId>$MODULE_NAME</artifactId>" aws-sdk-java/pom.xml 2>/dev/null; then
                 echo "::error::Module $MODULE_NAME is not added to aws-sdk-java pom.xml"
                 HAS_ERRORS=1
               else
                 echo "✅ Module is added to aws-sdk-java pom.xml"
               fi
               
               # 4. Check if added to architecture-tests pom.xml
-              if ! grep -q "<dependency>.*$MODULE_NAME</dependency>" test/architecture-tests/pom.xml 2>/dev/null; then
+              if ! grep -q "<artifactId>$MODULE_NAME</artifactId>" test/architecture-tests/pom.xml 2>/dev/null; then
                 echo "::error::Module $MODULE_NAME is not added to architecture-tests pom.xml"
                 HAS_ERRORS=1
               else
@@ -176,6 +176,31 @@ jobs:
               else
                 echo "✅ Package name mapping is added in .brazil.json"
               fi
+              
+              # 8. Maven Central validation - Check for required tags
+              echo "Verifying Maven Central requirements..."
+              
+              if ! grep -q "<name>" "$POM_FILE" 2>/dev/null; then
+                echo "::error::Maven Central validation: <name> tag is missing in $POM_FILE"
+                HAS_ERRORS=1
+              else
+                echo "✅ Maven Central validation: <name> tag is present"
+              fi
+              
+              if ! grep -q "<description>" "$POM_FILE" 2>/dev/null; then
+                echo "::error::Maven Central validation: <description> tag is missing in $POM_FILE"
+                HAS_ERRORS=1
+              else
+                echo "✅ Maven Central validation: <description> tag is present"
+              fi
+              
+              if ! grep -q "<url>" "$POM_FILE" 2>/dev/null; then
+                echo "::error::Maven Central validation: <url> tag is missing in $POM_FILE"
+                HAS_ERRORS=1
+              else
+                echo "✅ Maven Central validation: <url> tag is present"
+              fi
+          
               echo "::endgroup::"
             fi
           done

.github/workflows/api-surface-area-review-verification.yml

@@ -1,4 +1,96 @@
  #### 👋 _Looking for changelogs for older versions? You can find them in the [changelogs](./changelogs) directory._
+# __2.33.10__ __2025-09-15__
+## __AWS Cost Explorer Service__
+  - ### Features
+    - Added endpoint support for eusc-de-east-1 region.
+
+## __AWS Health Imaging__
+  - ### Features
+    - Added support for OpenID Connect (OIDC) custom authorizer
+
+## __AWS S3 Control__
+  - ### Features
+    - Introduce three new encryption filters: EncryptionType (SSE-S3, SSE-KMS, DSSE-KMS, SSE-C, NOT-SSE), KmsKeyArn (for SSE-KMS and DSSE-KMS), and BucketKeyEnabled (for SSE-KMS).
+
+## __AWS SDK for Java v2__
+  - ### Features
+    - Updated endpoint and partition metadata.
+
+## __Amazon S3__
+  - ### Bugfixes
+    - Added additional validations for multipart download operations in the Java multipart S3 client
+
+## __CloudWatch Observability Admin Service__
+  - ### Features
+    - CloudWatch Observability Admin adds the ability to enable telemetry centralization in customers' Organizations. The release introduces new APIs to manage centralization rules, which define settings to replicate telemetry data to a central destination in the customers' Organization.
+
+# __2.33.9__ __2025-09-12__
+## __AWS SDK for Java v2__
+  - ### Features
+    - Update Jackson and Jackson jr to 2.19.0
+
+## __Payment Cryptography Control Plane__
+  - ### Features
+    - Add support for certificates to be signed by 3rd party certificate authorities. New API GetCertificateSigningRequest API and support for providing certificates at run-time for tr-34 import/export
+
+# __2.33.8__ __2025-09-11__
+## __AWS Elemental MediaLive__
+  - ### Features
+    - AWS Elemental MediaLive adds a new feature in MediaPackage output group that enables MediaPackage V2 users to control HLS-related parameters directly in MediaLive. These parameter settings are then reflected in MediaPackage outputs, providing more streamlined control over HLS configurations.
+
+## __AWS SDK for Java v2__
+  - ### Features
+    - Updated endpoint and partition metadata.
+
+## __Amazon DataZone__
+  - ### Features
+    - adding IAM principal id to IAM user profile details
+
+## __Amazon EC2 Container Service__
+  - ### Features
+    - This release supports hook details for Amazon ECS lifecycle hooks.
+
+## __Amazon EMR Containers__
+  - ### Features
+    - Added nodeLabel support in container provider to aid hardware isolation support for virtual cluster and security configuration.
+
+## __Amazon Elastic VMware Service__
+  - ### Features
+    - CreateEnvironment API now supports parameters (isHcxPublic & hcxNetworkAclId) for HCX migration via public internet, adding flexibility for migration scenarios. New APIs have been added for associating (AssociateEipToVlan) & disassociating (DisassociateEipFromVlan) Elastic IP (EIP) addresses.
+
+## __Amazon GuardDuty__
+  - ### Features
+    - Updated Java SDK implementation of entity set status in GuardDuty API.
+
+## __Amazon Prometheus Service__
+  - ### Features
+    - Add Vended Logs APIs for Amazon Prometheus Managed Collector
+
+## __Amazon QuickSight__
+  - ### Features
+    - This release adds support for Account level custom permissions, additional Dashboard Options, and Null support for Q&A.
+
+## __Amazon Relational Database Service__
+  - ### Features
+    - Adds support for end-to-end IAM authentication in RDS Proxy for MySQL, MariaDB, and PostgreSQL engines.
+
+# __2.33.7__ __2025-09-10__
+## __AWS SDK for Java v2__
+  - ### Features
+    - Updated endpoint and partition metadata.
+
+  - ### Bugfixes
+    - Ensure that file modification exceptions in AsyncRequestBody#fromFile are propagated correctly.
+    - Revert recent AutoGeneratedTimestampRecordExtension change released in `2.33.4` that may break users with manually configured table schema. See [#6410](https://github.com/aws/aws-sdk-java-v2/issues/6410)
+
+## __Network Flow Monitor__
+  - ### Features
+    - Added new enum value (AWS::Region) for type field under MonitorLocalResource and MonitorRemoteResource. Workload Insights and Monitor top contributors queries now support a new DestinationCategory (INTER_REGION).
+
+## __Payment Cryptography Control Plane__
+  - ### Features
+    - AWS Payment Cryptography Service now supports Multi-Region key replication. Customers can choose to automatically distribute keys across AWS Regions.
+
 # __2.33.6__ __2025-09-09__
 ## __AWS Elemental MediaPackage v2__
   - ### Features