chore(deps): update hashicorp/aws requirement from ~> 5.30.0 to ~> 5.38.0

[dependabot]

Updates the requirements on hashicorp/aws to permit the latest version.

Release notes

Sourced from hashicorp/aws's releases.

v5.38.0

FEATURES:

• New Data Source: aws_batch_job_definition (#34663)
• New Data Source: aws_cognito_user_group (#34046)
• New Data Source: aws_cognito_user_groups (#34046)

ENHANCEMENTS:

• data-source/aws_alb_target_group: Add load_balancer_arns attribute (#34364)
• data-source/aws_ec2_instance_type: Add maximum_network_cards attribute (#35840)
• data-source/aws_elasticache_subnet_group: Add vpc_id attribute (#35887)
• data-source/aws_lb_target_group: Add load_balancer_arns attribute (#34364)
• provider: Add token_bucket_rate_limiter_capacity parameter (#35926)
• resource/aws_alb_target_group: Add load_balancer_arns attribute (#34364)
• resource/aws_codedeploy_deployment_config: Add arn attribute (#35888)
• resource/aws_codepipeline: Add execution_mode argument (#35875)
• resource/aws_config_configuration_recorder: Add recording_mode configuration block (#35527)
• resource/aws_db_instance: Add plan-time validation of performance_insights_retention_period (#35870)
• resource/aws_elasticache_subnet_group: Add vpc_id attribute (#35887)
• resource/aws_lb_target_group: Add load_balancer_arns attribute (#34364)
• resource/aws_redshiftserverless_workgroup: Add max_capacity argument (#35720)
• resource/aws_transfer_server: Add TransferSecurityPolicy-2024-01 and TransferSecurityPolicy-FIPS-2024-01 as valid values for security_policy_name (#35879)

BUG FIXES:

• data-source/aws_caller_identity: Fix authentication signature error when alternate sts_region is specified (#35860)
• data-source/aws_eks_access_entry: Fix cluster_name plan-time validation, allowing single-character names (#35874)
• data-source/aws_eks_addon: Fix cluster_name plan-time validation, allowing single-character names (#35874)
• data-source/aws_eks_cluster: Fix name plan-time validation, allowing single-character names (#35874)
• resource/aws_cloudsearch_domain: Prevent panic when reading nil index_field options response values (#35900)
• resource/aws_eks_access_entry: Fix cluster_name plan-time validation, allowing single-character names (#35874)
• resource/aws_eks_access_policy_association: Fix cluster_name plan-time validation, allowing single-character names (#35874)
• resource/aws_eks_addon: Fix cluster_name plan-time validation, allowing single-character names (#35874)
• resource/aws_eks_cluster: Fix name plan-time validation, allowing single-character names (#35874)
• resource/aws_eks_fargate_profile: Fix cluster_name plan-time validation, allowing single-character names (#35874)
• resource/aws_eks_node_group: Fix cluster_name plan-time validation, allowing single-character names (#35874)
• resource/aws_prometheus_scraper: Fixes invalid result after apply error. (#35844)
• resource/aws_sqs_queue_policy: Retry IAM eventual consistency errors (#35861)

Changelog

Sourced from hashicorp/aws's changelog.

5.38.0 (February 22, 2024)

FEATURES:

• New Data Source: aws_batch_job_definition (#34663)
• New Data Source: aws_cognito_user_group (#34046)
• New Data Source: aws_cognito_user_groups (#34046)

ENHANCEMENTS:

• data-source/aws_alb_target_group: Add load_balancer_arns attribute (#34364)
• data-source/aws_ec2_instance_type: Add maximum_network_cards attribute (#35840)
• data-source/aws_elasticache_subnet_group: Add vpc_id attribute (#35887)
• data-source/aws_lb_target_group: Add load_balancer_arns attribute (#34364)
• provider: Add token_bucket_rate_limiter_capacity parameter (#35926)
• resource/aws_alb_target_group: Add load_balancer_arns attribute (#34364)
• resource/aws_codedeploy_deployment_config: Add arn attribute (#35888)
• resource/aws_codepipeline: Add execution_mode argument (#35875)
• resource/aws_config_configuration_recorder: Add recording_mode configuration block (#35527)
• resource/aws_db_instance: Add plan-time validation of performance_insights_retention_period (#35870)
• resource/aws_elasticache_subnet_group: Add vpc_id attribute (#35887)
• resource/aws_lb_target_group: Add load_balancer_arns attribute (#34364)
• resource/aws_redshiftserverless_workgroup: Add max_capacity argument (#35720)
• resource/aws_transfer_server: Add TransferSecurityPolicy-2024-01 and TransferSecurityPolicy-FIPS-2024-01 as valid values for security_policy_name (#35879)

BUG FIXES:

• data-source/aws_caller_identity: Fix authentication signature error when alternate sts_region is specified (#35860)
• data-source/aws_eks_access_entry: Fix cluster_name plan-time validation, allowing single-character names (#35874)
• data-source/aws_eks_addon: Fix cluster_name plan-time validation, allowing single-character names (#35874)
• data-source/aws_eks_cluster: Fix name plan-time validation, allowing single-character names (#35874)
• resource/aws_cloudsearch_domain: Prevent panic when reading nil index_field options response values (#35900)
• resource/aws_eks_access_entry: Fix cluster_name plan-time validation, allowing single-character names (#35874)
• resource/aws_eks_access_policy_association: Fix cluster_name plan-time validation, allowing single-character names (#35874)
• resource/aws_eks_addon: Fix cluster_name plan-time validation, allowing single-character names (#35874)
• resource/aws_eks_cluster: Fix name plan-time validation, allowing single-character names (#35874)
• resource/aws_eks_fargate_profile: Fix cluster_name plan-time validation, allowing single-character names (#35874)
• resource/aws_eks_node_group: Fix cluster_name plan-time validation, allowing single-character names (#35874)
• resource/aws_prometheus_scraper: Fixes invalid result after apply error. (#35844)
• resource/aws_sqs_queue_policy: Retry IAM eventual consistency errors (#35861)

5.37.0 (February 15, 2024)

NOTES:

• provider: Updates to Go 1.21 (used by Terraform starting with v1.6.0), which, for Windows, requires at least Windows 10 or Windows Server 2016--support for previous versions has been discontinued--and, for macOS, requires macOS 10.15 Catalina or later--support for previous versions has been discontinued. (#35832)
• resource/aws_bedrock_provisioned_model_throughput: Because we cannot easily test this functionality, it is best effort and we ask for community help in testing (#35689)

FEATURES:

... (truncated)

Commits

• 712c4c2 Update CHANGELOG.md for #35943
• 1afa933 Merge pull request #35943 from hashicorp/ewbankkit-patch-1
• 4c8745f Update 34046.txt
• a672b65 Merge pull request #34046 from danquack/34024
• 885fe1b d/aws_cognitoidp_user_group[s]: use standard error message, prefer comma deli...
• 22a76bc d/aws_cognitoidp_user_group[s]: rm migrated from sdk setting, use id attribute
• a69db53 d/aws_cognitoidp_user_groups: tidy descriptions, remove tip comment
• f860b04 d/aws_cognitoidp_user_groups: add name to resource annotation
• ca2a99a d/aws_cognitoidp_user_groups: adjust PreCheck
• 3645bd0 Merge pull request #35938 from hashicorp/f-make-gover
• Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
• @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)

[github-actions]

Terraform plan in .

Plan: 5 to add, 2 to change, 3 to destroy.

Terraform used the selected providers to generate the following execution
plan. Resource actions are indicated with the following symbols:
+   create
!~  update in-place
-/+ destroy and then create replacement

Terraform will perform the following actions:

  # aws_ecs_service.service will be updated in-place
!~  resource "aws_ecs_service" "service" {
        id                                 = "arn:aws:ecs:us-east-1:950012193416:service/co-boomi-atom-cluster/co-boomi-atom-service"
        name                               = "co-boomi-atom-service"
        tags                               = {}
!~      task_definition                    = "arn:aws:ecs:us-east-1:950012193416:task-definition/co-boomi-atom:10" -> (known after apply)
#        (15 unchanged attributes hidden)

#        (3 unchanged blocks hidden)
    }

  # aws_ecs_task_definition.task_definition must be replaced
-/+ resource "aws_ecs_task_definition" "task_definition" {
!~      arn                      = "arn:aws:ecs:us-east-1:950012193416:task-definition/co-boomi-atom:10" -> (known after apply)
!~      arn_without_revision     = "arn:aws:ecs:us-east-1:950012193416:task-definition/co-boomi-atom" -> (known after apply)
!~      container_definitions    = (sensitive value) # forces replacement
!~      id                       = "*************" -> (known after apply)
!~      revision                 = 10 -> (known after apply)
-       tags                     = {} -> null
#        (10 unchanged attributes hidden)
    }

  # module.lambda.aws_lambda_function.this[0] will be updated in-place
!~  resource "aws_lambda_function" "this" {
!~      filename                       = "builds/241b1f7ae462f4a8751a57746e74c31eec966a480a4e274ea96d313b1cf5ce53.zip" -> "builds/cecc93ba6768fa683abae0637d9780a40278d84559673e572833e3cf0b2bff16.zip"
        id                             = "co-boomi-atom-secret-install-lambda"
!~      last_modified                  = "2023-12-13T22:49:34.000+0000" -> (known after apply)
!~      qualified_arn                  = "arn:aws:lambda:us-east-1:950012193416:function:co-boomi-atom-secret-install-lambda:26" -> (known after apply)
!~      qualified_invoke_arn           = "arn:aws:apigateway:us-east-1:lambda:path/2015-03-31/functions/arn:aws:lambda:us-east-1:950012193416:function:co-boomi-atom-secret-install-lambda:26/invocations" -> (known after apply)
        tags                           = {}
!~      version                        = "26" -> (known after apply)
#        (18 unchanged attributes hidden)

#        (5 unchanged blocks hidden)
    }

  # module.lambda.aws_lambda_permission.current_version_triggers["secrets"] must be replaced
-/+ resource "aws_lambda_permission" "current_version_triggers" {
!~      id                  = "*******" -> (known after apply)
!~      qualifier           = "26" # forces replacement -> (known after apply) # forces replacement
+       statement_id_prefix = (known after apply)
#        (4 unchanged attributes hidden)
    }

  # module.lambda.local_file.archive_plan[0] will be created
+   resource "local_file" "archive_plan" {
+       content              = jsonencode(
            {
+               artifacts_dir = "builds"
+               build_plan    = [
+                   [
+                       "zip",
+                       "./lambda/rotate_install_token.py",
+                       null,
                    ],
+                   [
+                       "zip",
+                       "./lambda/package/",
+                       null,
                    ],
                ]
+               filename      = "builds/cecc93ba6768fa683abae0637d9780a40278d84559673e572833e3cf0b2bff16.zip"
+               runtime       = "python3.11"
            }
        )
+       content_base64sha256 = (known after apply)
+       content_base64sha512 = (known after apply)
+       content_md5          = (known after apply)
+       content_sha1         = (known after apply)
+       content_sha256       = (known after apply)
+       content_sha512       = (known after apply)
+       directory_permission = "0755"
+       file_permission      = "0644"
+       filename             = "builds/cecc93ba6768fa683abae0637d9780a40278d84559673e572833e3cf0b2bff16.plan.json"
+       id                   = (known after apply)
    }

  # module.lambda.null_resource.archive[0] must be replaced
-/+ resource "null_resource" "archive" {
!~      id       = "*******************" -> (known after apply)
!~      triggers = { # forces replacement
!~          "filename"  = "builds/241b1f7ae462f4a8751a57746e74c31eec966a480a4e274ea96d313b1cf5ce53.zip" -> "builds/cecc93ba6768fa683abae0637d9780a40278d84559673e572833e3cf0b2bff16.zip"
!~          "timestamp" = "1702508765622397800" -> "1708726546332139000"
        }
    }

  # module.secrets_manager.aws_secretsmanager_secret_version.ignore_changes[0] will be created
+   resource "aws_secretsmanager_secret_version" "ignore_changes" {
+       arn            = (known after apply)
+       id             = (known after apply)
+       secret_id      = "***************************************************************************************************"
+       secret_string  = (sensitive value)
+       version_id     = (known after apply)
+       version_stages = (known after apply)
    }

Plan: 5 to add, 2 to change, 3 to destroy.

📝 Plan generated in Create terraform plan #60

[dependabot]

Superseded by #143.