{"id":13432452,"url":"https://github.com/pulumi/pulumi-aws","last_synced_at":"2026-04-06T18:19:07.865Z","repository":{"id":37580126,"uuid":"97484940","full_name":"pulumi/pulumi-aws","owner":"pulumi","description":"An Amazon Web Services (AWS) Pulumi resource package, providing multi-language access to AWS","archived":false,"fork":false,"pushed_at":"2026-04-03T22:54:45.000Z","size":1106679,"stargazers_count":573,"open_issues_count":376,"forks_count":183,"subscribers_count":28,"default_branch":"master","last_synced_at":"2026-04-04T03:05:13.295Z","etag":null,"topics":["aws","cloud","cloud-computing","csharp","dotnet","fsharp","go","golang","infrastructure","infrastructure-as-code","javascript","lambda","pulumi","python","typescript"],"latest_commit_sha":null,"homepage":"","language":"Go","has_issues":true,"has_wiki":null,"has_pages":null,"mirror_url":null,"source_name":null,"license":"apache-2.0","status":null,"scm":"git","pull_requests_enabled":true,"icon_url":"https://github.com/pulumi.png","metadata":{"files":{"readme":"README.md","changelog":"CHANGELOG_OLD.md","contributing":"CONTRIBUTING.md","funding":null,"license":"LICENSE","code_of_conduct":"CODE-OF-CONDUCT.md","threat_model":null,"audit":null,"citation":null,"codeowners":null,"security":null,"support":null,"governance":null,"roadmap":null,"authors":null,"dei":null,"publiccode":null,"codemeta":null,"zenodo":null,"notice":null,"maintainers":null,"copyright":"COPYRIGHT","agents":"AGENTS.md","dco":null,"cla":null}},"created_at":"2017-07-17T14:20:33.000Z","updated_at":"2026-04-03T20:33:08.000Z","dependencies_parsed_at":"2023-10-14T17:34:47.122Z","dependency_job_id":"2fc1c304-b1fc-4a4c-a13f-849d8fc4f4e8","html_url":"https://github.com/pulumi/pulumi-aws","commit_stats":{"total_commits":2332,"total_committers":108,"mean_commits":21.59259259259259,"dds":0.7079759862778731,"last_synced_commit":"855caa5d2c44673dce9294194cc651af43bfa673"},"previous_names":["pulumi/aws"],"tags_count":912,"template":false,"template_full_name":null,"purl":"pkg:github/pulumi/pulumi-aws","repository_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/pulumi%2Fpulumi-aws","tags_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/pulumi%2Fpulumi-aws/tags","releases_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/pulumi%2Fpulumi-aws/releases","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/pulumi%2Fpulumi-aws/manifests","owner_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/owners/pulumi","download_url":"https://codeload.github.com/pulumi/pulumi-aws/tar.gz/refs/heads/master","sbom_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/pulumi%2Fpulumi-aws/sbom","scorecard":{"id":749403,"data":{"date":"2025-08-11","repo":{"name":"github.com/pulumi/pulumi-aws","commit":"0d4df00ba4d0211ddf79e947c8244d2baa4769c1"},"scorecard":{"version":"v5.2.1-40-gf6ed084d","commit":"f6ed084d17c9236477efd66e5b258b9d4cc7b389"},"score":6.1,"checks":[{"name":"Maintained","score":10,"reason":"30 commit(s) and 5 issue activity found in the last 90 days -- score normalized to 10","details":null,"documentation":{"short":"Determines if the project is \"actively maintained\".","url":"https://github.com/ossf/scorecard/blob/f6ed084d17c9236477efd66e5b258b9d4cc7b389/docs/checks.md#maintained"}},{"name":"Code-Review","score":10,"reason":"all changesets reviewed","details":null,"documentation":{"short":"Determines if the project requires human code review before pull requests (aka merge requests) are merged.","url":"https://github.com/ossf/scorecard/blob/f6ed084d17c9236477efd66e5b258b9d4cc7b389/docs/checks.md#code-review"}},{"name":"CII-Best-Practices","score":0,"reason":"no effort to earn an OpenSSF best practices badge detected","details":null,"documentation":{"short":"Determines if the project has an OpenSSF (formerly CII) Best Practices Badge.","url":"https://github.com/ossf/scorecard/blob/f6ed084d17c9236477efd66e5b258b9d4cc7b389/docs/checks.md#cii-best-practices"}},{"name":"Packaging","score":-1,"reason":"packaging workflow not detected","details":["Warn: no GitHub/GitLab publishing workflow detected."],"documentation":{"short":"Determines if the project is published as a package that others can easily download, install, easily update, and uninstall.","url":"https://github.com/ossf/scorecard/blob/f6ed084d17c9236477efd66e5b258b9d4cc7b389/docs/checks.md#packaging"}},{"name":"License","score":10,"reason":"license file detected","details":["Info: project has a license file: LICENSE:0","Info: FSF or OSI recognized license: Apache License 2.0: LICENSE:0"],"documentation":{"short":"Determines if the project has defined a license.","url":"https://github.com/ossf/scorecard/blob/f6ed084d17c9236477efd66e5b258b9d4cc7b389/docs/checks.md#license"}},{"name":"Dangerous-Workflow","score":10,"reason":"no dangerous workflow patterns detected","details":null,"documentation":{"short":"Determines if the project's GitHub Action workflows avoid dangerous patterns.","url":"https://github.com/ossf/scorecard/blob/f6ed084d17c9236477efd66e5b258b9d4cc7b389/docs/checks.md#dangerous-workflow"}},{"name":"Token-Permissions","score":0,"reason":"detected GitHub workflow tokens with excessive permissions","details":["Warn: jobLevel 'contents' permission set to 'write': .github/workflows/master.yml:54","Info: jobLevel 'contents' permission set to 'read': .github/workflows/master.yml:94","Info: jobLevel 'contents' permission set to 'read': .github/workflows/master.yml:14","Info: jobLevel 'contents' permission set to 'read': .github/workflows/nightly-test.yml:45","Info: jobLevel 'contents' permission set to 'read': .github/workflows/nightly-test.yml:14","Warn: jobLevel 'contents' permission set to 'write': .github/workflows/prerelease.yml:47","Info: jobLevel 'contents' permission set to 'read': .github/workflows/prerelease.yml:67","Info: jobLevel 'contents' permission set to 'read': .github/workflows/prerelease.yml:15","Info: jobLevel 'contents' permission set to 'read': .github/workflows/prerequisites.yml:36","Warn: jobLevel 'contents' permission set to 'write': .github/workflows/publish.yml:230","Info: jobLevel 'contents' permission set to 'read': .github/workflows/release.yml:20","Warn: jobLevel 'contents' permission set to 'write': .github/workflows/release.yml:52","Info: jobLevel 'contents' permission set to 'read': .github/workflows/release.yml:73","Warn: jobLevel 'statuses' permission set to 'write': .github/workflows/run-acceptance-tests.yml:88","Info: jobLevel 'contents' permission set to 'read': .github/workflows/run-acceptance-tests.yml:117","Info: jobLevel 'contents' permission set to 'read': .github/workflows/run-acceptance-tests.yml:33","Info: jobLevel 'contents' permission set to 'read': .github/workflows/test.yml:26","Info: jobLevel 'contents' permission set to 'read': .github/workflows/verify-release.yml:56","Warn: no topLevel permission defined: .github/workflows/aws-upstream-tests.yml:1","Warn: no topLevel permission defined: .github/workflows/build_provider.yml:1","Warn: no topLevel permission defined: .github/workflows/build_sdk.yml:1","Warn: no topLevel permission defined: .github/workflows/command-dispatch.yml:1","Warn: no topLevel permission defined: .github/workflows/comment-on-stale-issues.yml:1","Warn: no topLevel permission defined: .github/workflows/community-moderation.yml:1","Warn: no topLevel permission defined: .github/workflows/license.yml:1","Warn: no topLevel permission defined: .github/workflows/lint.yml:1","Warn: no topLevel permission defined: .github/workflows/main-post-build.yml:1","Warn: no topLevel permission defined: .github/workflows/master.yml:1","Warn: no topLevel permission defined: .github/workflows/nightly-test.yml:1","Warn: no topLevel permission defined: .github/workflows/prerelease.yml:1","Warn: no topLevel permission defined: .github/workflows/prerequisites.yml:1","Warn: no topLevel permission defined: .github/workflows/publish.yml:1","Warn: no topLevel permission defined: .github/workflows/pull-request.yml:1","Warn: no topLevel permission defined: .github/workflows/release.yml:1","Warn: no topLevel permission defined: .github/workflows/release_command.yml:1","Warn: no topLevel permission defined: .github/workflows/run-acceptance-tests.yml:1","Warn: no topLevel permission defined: .github/workflows/test.yml:1","Warn: topLevel 'contents' permission set to 'write': .github/workflows/upgrade-bridge.yml:59","Warn: topLevel 'contents' permission set to 'write': .github/workflows/upgrade-java.yml:21","Warn: topLevel 'contents' permission set to 'write': .github/workflows/upgrade-provider.yml:26","Warn: no topLevel permission defined: .github/workflows/verify-release.yml:1"],"documentation":{"short":"Determines if the project's workflows follow the principle of least privilege.","url":"https://github.com/ossf/scorecard/blob/f6ed084d17c9236477efd66e5b258b9d4cc7b389/docs/checks.md#token-permissions"}},{"name":"Signed-Releases","score":0,"reason":"Project has not signed or included provenance with any releases.","details":["Warn: release artifact v7.4.0 not signed: https://api.github.com/repos/pulumi/pulumi-aws/releases/239769663","Warn: release artifact v7.3.1 not signed: https://api.github.com/repos/pulumi/pulumi-aws/releases/238060799","Warn: release artifact v7.3.0 not signed: https://api.github.com/repos/pulumi/pulumi-aws/releases/237774118","Warn: release artifact v7.2.0 not signed: https://api.github.com/repos/pulumi/pulumi-aws/releases/236727387","Warn: release artifact v7.1.0 not signed: https://api.github.com/repos/pulumi/pulumi-aws/releases/234062555","Warn: release artifact v7.4.0 does not have provenance: https://api.github.com/repos/pulumi/pulumi-aws/releases/239769663","Warn: release artifact v7.3.1 does not have provenance: https://api.github.com/repos/pulumi/pulumi-aws/releases/238060799","Warn: release artifact v7.3.0 does not have provenance: https://api.github.com/repos/pulumi/pulumi-aws/releases/237774118","Warn: release artifact v7.2.0 does not have provenance: https://api.github.com/repos/pulumi/pulumi-aws/releases/236727387","Warn: release artifact v7.1.0 does not have provenance: https://api.github.com/repos/pulumi/pulumi-aws/releases/234062555"],"documentation":{"short":"Determines if the project cryptographically signs release artifacts.","url":"https://github.com/ossf/scorecard/blob/f6ed084d17c9236477efd66e5b258b9d4cc7b389/docs/checks.md#signed-releases"}},{"name":"Security-Policy","score":10,"reason":"security policy file detected","details":["Info: security policy file detected: github.com/pulumi/.github/SECURITY.md:1","Info: Found linked content: github.com/pulumi/.github/SECURITY.md:1","Info: Found disclosure, vulnerability, and/or timelines in security policy: github.com/pulumi/.github/SECURITY.md:1","Info: Found text in security policy: github.com/pulumi/.github/SECURITY.md:1"],"documentation":{"short":"Determines if the project has published a security policy.","url":"https://github.com/ossf/scorecard/blob/f6ed084d17c9236477efd66e5b258b9d4cc7b389/docs/checks.md#security-policy"}},{"name":"Fuzzing","score":0,"reason":"project is not fuzzed","details":["Warn: no fuzzer integrations found"],"documentation":{"short":"Determines if the project uses fuzzing.","url":"https://github.com/ossf/scorecard/blob/f6ed084d17c9236477efd66e5b258b9d4cc7b389/docs/checks.md#fuzzing"}},{"name":"Branch-Protection","score":-1,"reason":"internal error: error during branchesHandler.setup: internal error: githubv4.Query: Resource not accessible by integration","details":null,"documentation":{"short":"Determines if the default and release branches are protected with GitHub's branch protection settings.","url":"https://github.com/ossf/scorecard/blob/f6ed084d17c9236477efd66e5b258b9d4cc7b389/docs/checks.md#branch-protection"}},{"name":"Binary-Artifacts","score":10,"reason":"no binaries found in the repo","details":null,"documentation":{"short":"Determines if the project has generated executable (binary) artifacts in the source repository.","url":"https://github.com/ossf/scorecard/blob/f6ed084d17c9236477efd66e5b258b9d4cc7b389/docs/checks.md#binary-artifacts"}},{"name":"Pinned-Dependencies","score":7,"reason":"dependency not pinned by hash detected -- score normalized to 7","details":["Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/aws-upstream-tests.yml:62: update your workflow using https://app.stepsecurity.io/secureworkflow/pulumi/pulumi-aws/aws-upstream-tests.yml/master?enable=pin","Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/aws-upstream-tests.yml:69: update your workflow using https://app.stepsecurity.io/secureworkflow/pulumi/pulumi-aws/aws-upstream-tests.yml/master?enable=pin","Warn: third-party GitHubAction not pinned by hash: .github/workflows/aws-upstream-tests.yml:75: update your workflow using https://app.stepsecurity.io/secureworkflow/pulumi/pulumi-aws/aws-upstream-tests.yml/master?enable=pin","Warn: third-party GitHubAction not pinned by hash: .github/workflows/build_provider.yml:52: update your workflow using https://app.stepsecurity.io/secureworkflow/pulumi/pulumi-aws/build_provider.yml/master?enable=pin","Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/build_provider.yml:73: update your workflow using https://app.stepsecurity.io/secureworkflow/pulumi/pulumi-aws/build_provider.yml/master?enable=pin","Warn: third-party GitHubAction not pinned by hash: .github/workflows/build_sdk.yml:74: update your workflow using https://app.stepsecurity.io/secureworkflow/pulumi/pulumi-aws/build_sdk.yml/master?enable=pin","Warn: third-party GitHubAction not pinned by hash: .github/workflows/license.yml:36: update your workflow using https://app.stepsecurity.io/secureworkflow/pulumi/pulumi-aws/license.yml/master?enable=pin","Warn: third-party GitHubAction not pinned by hash: .github/workflows/master.yml:76: update your workflow using https://app.stepsecurity.io/secureworkflow/pulumi/pulumi-aws/master.yml/master?enable=pin","Warn: third-party GitHubAction not pinned by hash: .github/workflows/publish.yml:164: update your workflow using https://app.stepsecurity.io/secureworkflow/pulumi/pulumi-aws/publish.yml/master?enable=pin","Warn: third-party GitHubAction not pinned by hash: .github/workflows/publish.yml:218: update your workflow using https://app.stepsecurity.io/secureworkflow/pulumi/pulumi-aws/publish.yml/master?enable=pin","Warn: third-party GitHubAction not pinned by hash: .github/workflows/release_command.yml:18: update your workflow using https://app.stepsecurity.io/secureworkflow/pulumi/pulumi-aws/release_command.yml/master?enable=pin","Warn: containerImage not pinned by hash: .devcontainer/Dockerfile:1: pin your Docker image by updating jetpackio/devbox:latest to jetpackio/devbox:latest@sha256:94af6bf95bce50e8160cd9d668ee6e73e70317e9460c4013de744ae9440bc65f","Warn: containerImage not pinned by hash: examples/ecr-image/app/Dockerfile:1: pin your Docker image by updating public.ecr.aws/nginx/nginx to public.ecr.aws/nginx/nginx@sha256:808de9b7b768592906f8473b1a21959c7c9d58480b96deb5c4b0d4b2e3785a81","Warn: containerImage not pinned by hash: examples/lambda-container-image/app/Dockerfile:1: pin your Docker image by updating amazon/aws-lambda-nodejs:12 to amazon/aws-lambda-nodejs:12@sha256:1296174701453f63a24c1157c22289b236d92f379d478cc93b00dda2873c2ed4","Warn: pipCommand not pinned by hash: .github/workflows/publish.yml:182","Warn: pipCommand not pinned by hash: .github/workflows/test.yml:84","Warn: pipCommand not pinned by hash: .github/workflows/test.yml:85","Info:  25 out of  28 GitHub-owned GitHubAction dependencies pinned","Info:  38 out of  46 third-party GitHubAction dependencies pinned","Info:   0 out of   3 containerImage dependencies pinned","Info:   0 out of   3 pipCommand dependencies pinned"],"documentation":{"short":"Determines if the project has declared and pinned the dependencies of its build process.","url":"https://github.com/ossf/scorecard/blob/f6ed084d17c9236477efd66e5b258b9d4cc7b389/docs/checks.md#pinned-dependencies"}},{"name":"SAST","score":0,"reason":"SAST tool is not run on all commits -- score normalized to 0","details":["Warn: 0 commits out of 30 are checked with a SAST tool"],"documentation":{"short":"Determines if the project uses static code analysis.","url":"https://github.com/ossf/scorecard/blob/f6ed084d17c9236477efd66e5b258b9d4cc7b389/docs/checks.md#sast"}},{"name":"Vulnerabilities","score":7,"reason":"3 existing vulnerabilities detected","details":["Warn: Project is vulnerable to: GO-2022-0635","Warn: Project is vulnerable to: GO-2022-0646","Warn: Project is vulnerable to: GO-2025-3754 / GHSA-2x5j-vhc8-9cwm"],"documentation":{"short":"Determines if the project has open, known unfixed vulnerabilities.","url":"https://github.com/ossf/scorecard/blob/f6ed084d17c9236477efd66e5b258b9d4cc7b389/docs/checks.md#vulnerabilities"}}]},"last_synced_at":"2025-08-22T19:48:54.642Z","repository_id":37580126,"created_at":"2025-08-22T19:48:54.642Z","updated_at":"2025-08-22T19:48:54.642Z"},"host":{"name":"GitHub","url":"https://github.com","kind":"github","repositories_count":286080680,"owners_count":31484065,"icon_url":"https://github.com/github.png","version":null,"created_at":"2022-05-30T11:31:42.601Z","updated_at":"2026-04-06T17:22:55.647Z","status":"ssl_error","status_checked_at":"2026-04-06T17:22:54.741Z","response_time":112,"last_error":"SSL_read: unexpected eof while reading","robots_txt_status":"success","robots_txt_updated_at":"2025-07-24T06:49:26.215Z","robots_txt_url":"https://github.com/robots.txt","online":false,"can_crawl_api":true,"host_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub","repositories_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories","repository_names_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repository_names","owners_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/owners"}},"keywords":["aws","cloud","cloud-computing","csharp","dotnet","fsharp","go","golang","infrastructure","infrastructure-as-code","javascript","lambda","pulumi","python","typescript"],"created_at":"2024-07-31T02:01:11.804Z","updated_at":"2026-04-06T18:19:07.840Z","avatar_url":"https://github.com/pulumi.png","language":"Go","funding_links":[],"categories":["Go","Serverless"],"sub_categories":[],"readme":"\u003cp align=\"center\"\u003e\n  \u003ca href=\"https://www.pulumi.com?utm_campaign=pulumi-pulumi-aws-github-repo\u0026utm_source=github.com\u0026utm_medium=top-logo\" title=\"Pulumi AWS Provider - Build and Deploy Infrastructure as Code Solutions on Any Cloud\"\u003e\n    \u003cimg src=\"https://www.pulumi.com/images/logo/logo-on-white-box.svg?\" width=\"350\"\u003e\n  \u003c/a\u003e\n\u003c/p\u003e\n\n[![Actions Status](https://github.com/pulumi/pulumi-aws/workflows/master/badge.svg)](https://github.com/pulumi/pulumi-aws/actions)\n[![Slack](http://www.pulumi.com/images/docs/badges/slack.svg)](https://slack.pulumi.com)\n[![NPM version](https://badge.fury.io/js/%40pulumi%2Faws.svg)](https://www.npmjs.com/package/@pulumi/aws)\n[![Python version](https://badge.fury.io/py/pulumi-aws.svg)](https://pypi.org/project/pulumi-aws)\n[![NuGet version](https://badge.fury.io/nu/pulumi.aws.svg)](https://badge.fury.io/nu/pulumi.aws)\n[![PkgGoDev](https://pkg.go.dev/badge/github.com/pulumi/pulumi-aws/sdk/v6/go)](https://pkg.go.dev/github.com/pulumi/pulumi-aws/sdk/v6/go)\n[![License](https://img.shields.io/github/license/pulumi/pulumi-aws)](https://github.com/pulumi/pulumi-aws/blob/master/LICENSE)\n\n# Amazon Web Services (AWS) provider\n\nThe Amazon Web Services (AWS) resource provider for Pulumi lets you use AWS resources in your cloud programs. To use\nthis package, [install the Pulumi CLI](https://www.pulumi.com/docs/get-started/install/). For a streamlined Pulumi walkthrough, including language runtime installation and AWS configuration, select \"Get Started\" below.\n\n\u003cdiv\u003e\n    \u003ca href=\"https://www.pulumi.com/docs/get-started/aws/?utm_campaign=pulumi-pulumi-aws-github-repo\u0026utm_source=github.com\u0026utm_medium=get-started\" title=\"Get Started\"\u003e\n       \u003cimg src=\"https://www.pulumi.com/images/get-started.svg?\" width=\"120\"\u003e\n    \u003c/a\u003e\n\u003c/div\u003e\n\n## Installing\n\nThis package is available in many languages in the standard packaging formats.\n\n### Node.js (Java/TypeScript)\n\nTo use from JavaScript or TypeScript in Node.js, install using either `npm`:\n\n    $ npm install @pulumi/aws\n\nor `yarn`:\n\n    $ yarn add @pulumi/aws\n\n### Python\n\nTo use from Python, install using `pip`:\n\n    $ pip install pulumi_aws\n\n### Go\n\nTo use from Go, use `go get` to grab the latest version of the library\n\n    $ go get github.com/pulumi/pulumi-aws/sdk/v6\n\n### .NET\n\nTo use from .NET, install using `dotnet add package`:\n\n    $ dotnet add package Pulumi.Aws\n\n## Concepts\n\nThe `@pulumi/aws` package provides a strongly-typed means to create cloud applications that create and interact closely\nwith AWS resources.  Resources are exposed for the entirety of AWS resources and their properties, including (but not\nlimited to), 'apigateway', 'cloudformation', 'EC2', 'ECS', 'iam', 'lambda', etc.  Many convenience APIs have also been\nadded to make development easier and to help avoid common mistakes, and to get stronger typing.\n\n### Serverless Functions\n\nThe `aws.lambda.CallbackFunction` class allows you to create an AWS lambda function directly out of a JavaScript/TypeScript\nfunction object of the right signature. This allows a Pulumi program to simply define a lambda using a simple lambda in\nthe language of choice, while having Pulumi itself do the appropriate transformation into the final AWS Lambda resource.\n\nThis makes many APIs easier to use, such as defining a Lambda to execute when an S3 Bucket is manipulated,\nor a CloudWatch timer is fired. To see some examples of this in action, please refer to the `examples/` directory.\n\n## Configuration\n\nThe following configuration points are available:\n\n- `aws:region` - (Required) This is the AWS region.\n\n- `aws:accessKey` - (Optional) This is the AWS access key. It can also be sourced from the\n  `AWS_ACCESS_KEY_ID` environment variable, or via a shared credentials file if `aws:profile` is specified.\n- `aws:secretKey` - (Optional) This is the AWS secret key. It can also be sourced from the\n  `AWS_SECRET_ACCESS_KEY` environment variable, or via a shared credentials file if `aws:profile` is specified.\n- `aws:profile` - (Optional) This is the AWS profile name as set in the shared credentials file.\n- `aws:sharedCredentialsFiles` - (Optional) List of paths to the shared credentials file. If not set and a profile\n  is used, the default value is [~/.aws/credentials]. A single value can also be set with the\n  `AWS_SHARED_CREDENTIALS_FILE` environment variable.\n- `aws:token` - (Optional) Session token for validating temporary credentials. Typically provided after successful\n  identity federation or Multi-Factor Authentication (MFA) login. With MFA login, this is the session token provided\n  afterward, not the 6 digit MFA code used to get temporary credentials. It can also be sourced from the\n  `AWS_SESSION_TOKEN` environment variable.\n- `aws:maxRetries` - (Optional) This is the maximum number of times an API call is retried, in the case where requests\n  are being throttled or experiencing transient failures. The delay between the subsequent API calls increases\n  exponentially. If omitted, the default value is `25`.\n- `aws:allowedAccountIds` - (Optional)  List of allowed AWS account IDs to prevent you from mistakenly using an incorrect\n  one. Conflicts with `aws:forbiddenAccountIds`.\n- `aws:endpoints` - (Optional) Configuration block for customizing service endpoints. See the Custom Service Endpoints Guide for more information about connecting to alternate AWS endpoints or AWS compatible solutions. See also `aws:useFipsEndpoint`.\n- `aws:forbiddenAccountIds` - (Optional) List of forbidden AWS account IDs to prevent you from mistakenly using the wrong\n  one. Conflicts with `aws:allowedAccountIds`.\n- `aws:assumeRole` - (Optional) Supports the following (optional) arguments:\n  `durationSections`: Number of seconds to restrict the assume role session duration.\n  `externalId`: External identifier to use when assuming the role.\n  `policy`: IAM Policy JSON describing further restricting permissions for the IAM Role being assumed.\n  `policyArns`: Set of Amazon Resource Names (ARNs) of IAM Policies describing further restricting permissions for the role.\n  `roleArn`: Amazon Resource Name (ARN) of the IAM Role to assume.\n  `sessionName`: Session name to use when assuming the role.\n  `tags`: Map of assume role session tags.\n- `aws:insecure` - (Optional) Explicitly allow the provider to perform \"insecure\" SSL requests. If omitted, the default value is `false`.\n- `aws:skipCredentialsValidation` - (Optional) Skip the credentials validation via the STS API. Useful for AWS API implementations that do not have STS available or implemented. Default value is `false`. Can be set via the environment variable `AWS_SKIP_CREDENTIALS_VALIDATION`.\n- `aws:skipRegionValidation` - (Optional) Skip validation of provided region name. Useful for AWS-like implementations that use their own region names or to bypass the validation for regions that aren't publicly available yet. Default value is `true`.\n- `aws:skipRequestionAccountId` - (Optional) Skip requesting the account ID. Useful for AWS API implementations that do not have the IAM, STS API, or metadata API. Default value is `false`. When specified, the use of ARNs is compromised as there is no accountID available to construct the ARN.\n- `aws:skipMetadataApiCheck` - (Optional) Skip the AWS Metadata API check. Useful for AWS API implementations that do not have a metadata API endpoint. This provider from authenticating via the Metadata API by default. You may need to use other authentication methods like static credentials, configuration variables, or environment variables. Can be set via the environment variable `AWS_SKIP_METADATA_API_CHECK`.\n- `aws:s3UsePathStyle` - (Optional) Set this to true to force the request to use path-style addressing, i.e., `http://s3.amazonaws.com/BUCKET/KEY`. By default, the S3 client will use virtual hosted bucket addressing, `http://BUCKET.s3.amazonaws.com/KEY`, when possible. Specific to the Amazon S3 service. Default is `false`.\n- `aws:useFipsEndpoint` - (Optional) Force the provider to resolve endpoints with FIPS capability. Can also be set with the `AWS_USE_FIPS_ENDPOINT` environment variable.\n\n## Reference\n\nFor further information, visit [AWS in the Pulumi Registry](https://www.pulumi.com/registry/packages/aws/?utm_campaign=pulumi-pulumi-aws-github-repo\u0026utm_source=github.com\u0026utm_medium=reference)\nor for detailed API reference documentation, visit [AWS API Docs in the Pulumi Registry](https://www.pulumi.com/registry/packages/aws/api-docs/?utm_campaign=pulumi-pulumi-aws-github-repo\u0026utm_source=github.com\u0026utm_medium=reference).\n\n## Pulumi developer resources\n\nDelve deeper into our project with additional resources:\n\n- [Get Started with Pulumi](https://www.pulumi.com/docs/get-started/?utm_campaign=pulumi-pulumi-aws-github-repo\u0026utm_source=github.com\u0026utm_medium=examples-resources): Deploy a simple application in AWS, Azure, Google Cloud, or Kubernetes using Pulumi.\n- [Documentation](https://www.pulumi.com/docs/?utm_campaign=pulumi-pulumi-aws-github-repo\u0026utm_source=github.com\u0026utm_medium=examples-resources): Learn about Pulumi concepts, follow user guides, and consult the reference documentation.\n- [Pulumi Blog](https://www.pulumi.com/blog/?utm_campaign=pulumi-pulumi-aws-github-repo\u0026utm_source=github.com\u0026utm_medium=examples-resources) - Stay in the loop with our latest tech announcements, insightful articles, and updates.\n- [Registry](https://www.pulumi.com/registry/?utm_campaign=pulumi-pulumi-aws-github-repo\u0026utm_source=github.com\u0026utm_medium=examples-resources): Search for packages and learn about the supported resources you need. Install the package directly into your project, browse the API documentation, and start building.\n- [Try Pulumi AI](https://www.pulumi.com/ai/?utm_campaign=pulumi-pulumi-aws-github-repo\u0026utm_source=github.com\u0026utm_medium=examples-resources) - Use natural-language prompts to generate Pulumi infrastructure-as-code programs in any language.\n\n## Pulumi roadmap\n\nReview the planned work for the upcoming quarter and a selected backlog of issues that are on our mind but not yet scheduled on the [Pulumi Roadmap.](https://github.com/orgs/pulumi/projects/44)","project_url":"https://awesome.ecosyste.ms/api/v1/projects/github.com%2Fpulumi%2Fpulumi-aws","html_url":"https://awesome.ecosyste.ms/projects/github.com%2Fpulumi%2Fpulumi-aws","lists_url":"https://awesome.ecosyste.ms/api/v1/projects/github.com%2Fpulumi%2Fpulumi-aws/lists"}