chore(deps): update hashicorp/aws requirement from ~> 5.30.0 to ~> 5.40.0

[dependabot]

Updates the requirements on hashicorp/aws to permit the latest version.

Release notes

Sourced from hashicorp/aws's releases.

v5.40.0

FEATURES:

• New Function: arn_build (#34952)
• New Function: arn_parse (#34952)
• New Resource: aws_account_region (#35739)
• New Resource: aws_securitylake_subscriber (#35981)

ENHANCEMENTS:

• data-source/aws_rds_engine_version: Add has_major_target and has_minor_target optional arguments and valid_major_targets and valid_minor_targets attributes (#36246)
• resource/aws_batch_job_queue: added parameter compute_environment_order which conflicts with compute_environments but aligns with AWS API. compute_environments has been deprecated. (#34750)
• resource/aws_cloudfront_distribution: Remove the upper limit on origin.custom_origin_config.origin_read_timeout (#36088)
• resource/aws_db_instance: Add io2 as a valid value for storage_type (#36252)
• resource/aws_elasticache_serverless_cache: Add plan-time validation of cache_usage_limits.ecpu_per_second.maximum (#35927)
• resource/aws_iot_policy: Add tagging support (#36102)
• resource/aws_iot_role_alias: Add tagging support (#36255)
• resource/aws_opensearch_domain: Add use_off_peak_window argument to the auto_tune_options configuration block (#36067)
• resource/aws_rds_cluster: Add io2 as a valid value for storage_type (#36252)
• resource/aws_s3_bucket_object: Adds attribute arn. (#35710)
• resource/aws_s3_object: Adds attribute arn. (#35710)
• resource/aws_s3_object_copy: Adds attribute arn. (#35710)
• resource/aws_wafv2_rule_group: Add evaluation_window_sec argument to the rate_based_statement configuration block (#36045)
• resource/aws_wafv2_web_acl: Add evaluation_window_sec argument to the rate_based_statement configuration block (#36045)

BUG FIXES:

• data-source/aws_rds_engine_version: Fix bugs that could limit engine version to a default version even when not appropriate (#36246)
• resource/aws_db_instance: Correctly sets parameter_group_name when replicate_source_db is in different region. (#36080)
• resource/aws_elastic_beanstalk_environment: Fix InvalidParameterValue: Environment named ... is in an invalid state for this operation. Must be Ready errors when tags are updated along with other attributes (#36074)
• resource/aws_elasticache_serverless_cache: Change cache_usage_limits.data_storage.maximum and cache_usage_limits.ecpu_per_second.maximum to ForceNew (#35927)
• resource/aws_medialive_channel: Fix handling of optional encoder_settings.audio_descriptions arguments (#36097)
• resource/aws_rds_global_cluster: Fix bugs and delays that could occur when performing major or minor version upgrades (#36246)
• resource/aws_s3_bucket: Tags with empty values no longer remove all tags. (#35710)
• resource/aws_s3_bucket_object: Tags with empty values no longer remove all tags. (#35710)
• resource/aws_s3_object: Tags with empty values no longer remove all tags. (#35710)
• resource/aws_s3_object_copy: Tags with empty values no longer remove all tags. (#35710)
• resource/aws_vpclattice_listener_rule: Remove action.forward.target_groups maximum item limit (#36095)

Changelog

Sourced from hashicorp/aws's changelog.

5.40.0 (March 7, 2024)

FEATURES:

• New Function: arn_build (#34952)
• New Function: arn_parse (#34952)
• New Resource: aws_account_region (#35739)
• New Resource: aws_securitylake_subscriber (#35981)

ENHANCEMENTS:

• data-source/aws_rds_engine_version: Add has_major_target and has_minor_target optional arguments and valid_major_targets and valid_minor_targets attributes (#36246)
• resource/aws_batch_job_queue: added parameter compute_environment_order which conflicts with compute_environments but aligns with AWS API. compute_environments has been deprecated. (#34750)
• resource/aws_cloudfront_distribution: Remove the upper limit on origin.custom_origin_config.origin_read_timeout (#36088)
• resource/aws_db_instance: Add io2 as a valid value for storage_type (#36252)
• resource/aws_elasticache_serverless_cache: Add plan-time validation of cache_usage_limits.ecpu_per_second.maximum (#35927)
• resource/aws_iot_policy: Add tagging support (#36102)
• resource/aws_iot_role_alias: Add tagging support (#36255)
• resource/aws_opensearch_domain: Add use_off_peak_window argument to the auto_tune_options configuration block (#36067)
• resource/aws_rds_cluster: Add io2 as a valid value for storage_type (#36252)
• resource/aws_s3_bucket_object: Adds attribute arn. (#35710)
• resource/aws_s3_object: Adds attribute arn. (#35710)
• resource/aws_s3_object_copy: Adds attribute arn. (#35710)
• resource/aws_wafv2_rule_group: Add evaluation_window_sec argument to the rate_based_statement configuration block (#36045)
• resource/aws_wafv2_web_acl: Add evaluation_window_sec argument to the rate_based_statement configuration block (#36045)

BUG FIXES:

• data-source/aws_rds_engine_version: Fix bugs that could limit engine version to a default version even when not appropriate (#36246)
• resource/aws_db_instance: Correctly sets parameter_group_name when replicate_source_db is in different region. (#36080)
• resource/aws_elastic_beanstalk_environment: Fix InvalidParameterValue: Environment named ... is in an invalid state for this operation. Must be Ready errors when tags are updated along with other attributes (#36074)
• resource/aws_elasticache_serverless_cache: Change cache_usage_limits.data_storage.maximum and cache_usage_limits.ecpu_per_second.maximum to ForceNew (#35927)
• resource/aws_medialive_channel: Fix handling of optional encoder_settings.audio_descriptions arguments (#36097)
• resource/aws_rds_global_cluster: Fix bugs and delays that could occur when performing major or minor version upgrades (#36246)
• resource/aws_s3_bucket: Tags with empty values no longer remove all tags. (#35710)
• resource/aws_s3_bucket_object: Tags with empty values no longer remove all tags. (#35710)
• resource/aws_s3_object: Tags with empty values no longer remove all tags. (#35710)
• resource/aws_s3_object_copy: Tags with empty values no longer remove all tags. (#35710)
• resource/aws_vpclattice_listener_rule: Remove action.forward.target_groups maximum item limit (#36095)

5.39.1 (March 1, 2024)

BUG FIXES:

• data-source/aws_instance: Fix panic: Invalid address to set related to root_block_device.0.tags_all (#36054)

5.39.0 (February 29, 2024)

FEATURES:

... (truncated)

Commits

• e3b903a Merge pull request #35905 from hashicorp/td-generate-tagtests-xray
• 0dce113 Update CHANGELOG.md for #34952
• 4c30b74 Merge pull request #34952 from hashicorp/f-arn_parse
• cd693db tools: temporarily switch to jar-b/terrafmt
• c8cabe3 Merge pull request #36255 from fatbasstard/aws_iot_role_alias_tagging
• b540468 Merge pull request #36252 from relu/feature-rds-io2-storage-type
• b4cecbf build(deps): bump the aws-sdk-go group with 6 updates (#36248)
• b50e666 build(deps): bump github.com/aws/aws-sdk-go in /.ci/providerlint (#36247)
• de872b5 Update 36252.txt
• 86320d5 Add Changelog
• Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
• @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)

[github-actions]

Terraform plan in .

Plan: 5 to add, 2 to change, 3 to destroy.

Terraform used the selected providers to generate the following execution
plan. Resource actions are indicated with the following symbols:
+   create
!~  update in-place
-/+ destroy and then create replacement

Terraform will perform the following actions:

  # aws_ecs_service.service will be updated in-place
!~  resource "aws_ecs_service" "service" {
        id                                 = "arn:aws:ecs:us-east-1:950012193416:service/co-boomi-atom-cluster/co-boomi-atom-service"
        name                               = "co-boomi-atom-service"
        tags                               = {}
!~      task_definition                    = "arn:aws:ecs:us-east-1:950012193416:task-definition/co-boomi-atom:10" -> (known after apply)
#        (15 unchanged attributes hidden)

#        (3 unchanged blocks hidden)
    }

  # aws_ecs_task_definition.task_definition must be replaced
-/+ resource "aws_ecs_task_definition" "task_definition" {
!~      arn                      = "arn:aws:ecs:us-east-1:950012193416:task-definition/co-boomi-atom:10" -> (known after apply)
!~      arn_without_revision     = "arn:aws:ecs:us-east-1:950012193416:task-definition/co-boomi-atom" -> (known after apply)
!~      container_definitions    = (sensitive value) # forces replacement
!~      id                       = "*************" -> (known after apply)
!~      revision                 = 10 -> (known after apply)
-       tags                     = {} -> null
#        (10 unchanged attributes hidden)
    }

  # module.lambda.aws_lambda_function.this[0] will be updated in-place
!~  resource "aws_lambda_function" "this" {
!~      filename                       = "builds/241b1f7ae462f4a8751a57746e74c31eec966a480a4e274ea96d313b1cf5ce53.zip" -> "builds/4af25d4ce3369016ecac7ac43f09bda8e17436ea9641e5cb7990b02c9512e749.zip"
        id                             = "co-boomi-atom-secret-install-lambda"
!~      last_modified                  = "2023-12-13T22:49:34.000+0000" -> (known after apply)
!~      qualified_arn                  = "arn:aws:lambda:us-east-1:950012193416:function:co-boomi-atom-secret-install-lambda:26" -> (known after apply)
!~      qualified_invoke_arn           = "arn:aws:apigateway:us-east-1:lambda:path/2015-03-31/functions/arn:aws:lambda:us-east-1:950012193416:function:co-boomi-atom-secret-install-lambda:26/invocations" -> (known after apply)
        tags                           = {}
!~      version                        = "26" -> (known after apply)
#        (18 unchanged attributes hidden)

#        (5 unchanged blocks hidden)
    }

  # module.lambda.aws_lambda_permission.current_version_triggers["secrets"] must be replaced
-/+ resource "aws_lambda_permission" "current_version_triggers" {
!~      id                  = "*******" -> (known after apply)
!~      qualifier           = "26" # forces replacement -> (known after apply) # forces replacement
+       statement_id_prefix = (known after apply)
#        (4 unchanged attributes hidden)
    }

  # module.lambda.local_file.archive_plan[0] will be created
+   resource "local_file" "archive_plan" {
+       content              = jsonencode(
            {
+               artifacts_dir = "builds"
+               build_plan    = [
+                   [
+                       "zip",
+                       "./lambda/rotate_install_token.py",
+                       null,
                    ],
+                   [
+                       "zip",
+                       "./lambda/package/",
+                       null,
                    ],
                ]
+               filename      = "builds/4af25d4ce3369016ecac7ac43f09bda8e17436ea9641e5cb7990b02c9512e749.zip"
+               runtime       = "python3.11"
            }
        )
+       content_base64sha256 = (known after apply)
+       content_base64sha512 = (known after apply)
+       content_md5          = (known after apply)
+       content_sha1         = (known after apply)
+       content_sha256       = (known after apply)
+       content_sha512       = (known after apply)
+       directory_permission = "0755"
+       file_permission      = "0644"
+       filename             = "builds/4af25d4ce3369016ecac7ac43f09bda8e17436ea9641e5cb7990b02c9512e749.plan.json"
+       id                   = (known after apply)
    }

  # module.lambda.null_resource.archive[0] must be replaced
-/+ resource "null_resource" "archive" {
!~      id       = "*******************" -> (known after apply)
!~      triggers = { # forces replacement
!~          "filename"  = "builds/241b1f7ae462f4a8751a57746e74c31eec966a480a4e274ea96d313b1cf5ce53.zip" -> "builds/4af25d4ce3369016ecac7ac43f09bda8e17436ea9641e5cb7990b02c9512e749.zip"
!~          "timestamp" = "1702508765622397800" -> "1709937113857423000"
        }
    }

  # module.secrets_manager.aws_secretsmanager_secret_version.ignore_changes[0] will be created
+   resource "aws_secretsmanager_secret_version" "ignore_changes" {
+       arn            = (known after apply)
+       id             = (known after apply)
+       secret_id      = "***************************************************************************************************"
+       secret_string  = (sensitive value)
+       version_id     = (known after apply)
+       version_stages = (known after apply)
    }

Plan: 5 to add, 2 to change, 3 to destroy.

📝 Plan generated in Create terraform plan #66

[dependabot]

Superseded by #160.