Skip to content

Releases: terraform-aws-modules/terraform-aws-ecs

v6.0.6

18 Jul 18:51
@antonbabenko antonbabenko
v6.0.6
086afd9
Compare
Choose a tag to compare
v6.0.6 Latest
Latest

6.0.6 (2025-07-18)

Bug Fixes

  • Allow optional initProcessEnabled when enable_execute_command is true (#319) (99f8edd)
Assets 2
Loading

v6.0.5

11 Jul 20:13
@antonbabenko antonbabenko
v6.0.5
f0e0140
Compare
Choose a tag to compare
v6.0.5

6.0.5 (2025-07-11)

Bug Fixes

  • Correct IAM statement condition variable type (#315) (27e9114)
Loading

v6.0.4

11 Jul 12:16
@antonbabenko antonbabenko
v6.0.4
076da0f
Compare
Choose a tag to compare
v6.0.4

6.0.4 (2025-07-11)

Bug Fixes

  • Remove non-functional container_definition_defaults (#312) (dcc5ae5)
Loading

v6.0.3

10 Jul 12:28
@antonbabenko antonbabenko
v6.0.3
51f2341
Compare
Choose a tag to compare
v6.0.3

6.0.3 (2025-07-10)

Bug Fixes

  • Correct variable attribute for step_adjustment (#310) (542616d)
Loading

v6.0.2

09 Jul 15:14
@antonbabenko antonbabenko
v6.0.2
a2ef65c
Compare
Choose a tag to compare
v6.0.2

6.0.2 (2025-07-09)

Bug Fixes

  • Remove coalesce() to ensure value precedence is honored (#307) (da354d9)
Loading

v6.0.1

07 Jul 16:46
@antonbabenko antonbabenko
v6.0.1
00173cb
Compare
Choose a tag to compare
v6.0.1

6.0.1 (2025-07-07)

Bug Fixes

  • Pass missing versionConsistency argument, correct conditions to condition (#303) (e90f761)
Loading

v6.0.0

07 Jul 12:25
@antonbabenko antonbabenko
v6.0.0
cfd967a
Compare
Choose a tag to compare
v6.0.0

6.0.0 (2025-07-07)

⚠ BREAKING CHANGES

  • Upgrade AWS provider and min required Terraform version to 6.0 and 1.5.7 respectively (#217)

List of backwards incompatible changes

See the docs/UPGRADE-6.0.md guide for further details

  • Terraform v1.5.7 is now minimum supported version
  • AWS provider v6.0.0 is now minimum supported version
  • The attributes used to construct the container definition(s) have been changed from HCL's norm of snake_case to camelCase to match the AWS API. There currently isn't a resource nor data source for the container definition, so one is constructed entirely from HCL in the container-definition sub-module. This definition is then rendered as JSON when presented to the task definition (or task set) APIs. Previously, the variable names used were snake_case and then internally converted to camelCase. However, this does not allow for using the container-definition sub-module on its own due to the mismatch between casing. Its probably going to trip a few folks up, but hopefully we'll remove this for a data source in the future.
  • security_group_rules has been split into security_group_ingress_rules and security_group_egress_rules to better match the AWS API and allow for more flexibility in defining security group rules.
  • Default permissive permissions for SSM parameter ARNs and Secrets Manager secret ARNs have been removed throughout. While this made it easier for users since it "just worked", it was not secure and could lead to unexpected access to resources. Users should now explicitly define the permissions they need in their IAM policies.
  • The "hack" put in place to track the task definition version when updating outside of the module has been removed. Instead, users should rely on the track_latest variable to ensure that the latest task definition is used when updating the service. Any issues with tracking the task definition version should be reported to the ECS service team as it is a limitation of the AWS ECS service/API and not the module itself.
  • The inline policy for the Tasks role of the service sub-module has been replaced with a standalone IAM policy. In some organizations, inline policies are not allowed.
  • The default for the container-definition user has been changed from 0 to null.

Additional changes

Added

Modified

  • Variable definitions now contain detailed object types in place of the previously used any type.

Variable and output changes

  1. Removed variables:

    • default_capacity_provider_use_fargate

    • fargate_capacity_providers

    • cluster sub-module

      • fargate_capacity_providers; part of default_capacity_provider_strategy now
      • default_capacity_provider_use_fargate

    • container-definition sub-module

      • None

    • service sub-module

      • inference_accelerator

  2. Renamed variables:

    • cluster_settings -> cluster_setting

    • cluster sub-module

      • cluster_configuration - configuration
      • cluster_settings - setting
      • cluster_service_connect_defaults - service_connect_defaults

    • container-definition sub-module

      • dependencies - dependsOn
      • disable_networking - disableNetworking
      • dns_search_domains - dnsSearchDomains
      • dns_servers - dnsServers
      • docker_labels - dockerLabels
      • docker_security_options - dockerSecurityOptions
      • environment_files - environmentFiles
      • extra_hosts - extraHosts
      • firelens_configuration - firelensConfiguration
      • health_check - healthCheck
      • linux_parameters - linuxParameters
      • log_configuration - logConfiguration
      • memory_reservation - memoryReservation
      • mount_points - mountPoints
      • port_mappings - portMappings
      • psuedo_terminal - pseudoTerminal
      • readonly_root_filesystem - readonlyRootFilesystem
      • repository_credentials - repositoryCredentials
      • start_timeout - startTimeout
      • system_controls - systemControls
      • volumes_from - volumesFrom
      • working_directory - workingDirectory

    • service sub-module

      • None

  3. Added variables:

    • cloudwatch_log_group_class

    • default_capacity_provider_strategy

    • cluster sub-module

      • cloudwatch_log_group_class
      • default_capacity_provider_strategy - replaces fargate_capacity_providers and default_capacity_provider_use_fargate functionality

    • container-definition sub-module

    • service sub-module

      • availability_zone_rebalancing
      • volume_configuration
      • vpc_lattice_configurations
      • enable_fault_injection
      • track_latest
      • create_infrastructure_iam_role
      • infrastructure_iam_role_arn
      • infrastructure_iam_role_name
      • infrastructure_iam_role_use_name_prefix
      • infrastructure_iam_role_path
      • infrastructure_iam_role_description
      • infrastructure_iam_role_permissions_boundary
      • infrastructure_iam_role_tags

  4. Removed outputs:

    • cluster sub-module
      • None
    • container-definition sub-module
      • None
    • service sub-module
      • task_definition_family_revision

  5. Renamed outputs:

    • cluster sub-module
      • None
    • container-definition sub-module
      • None
    • service sub-module
      • None

  6. Added outputs:

    • cluster sub-module
      • None
    • container-definition sub-module
      • None
    • service sub-module
      • infrastructure_iam_role_arn
      • infrastructure_iam_role_name
Loading

v5.12.1

18 Apr 23:28
@antonbabenko antonbabenko
v5.12.1
3bc8d1d
Compare
Choose a tag to compare
v5.12.1

5.12.1 (2025-04-18)

Bug Fixes

  • Ensure both ECS service definitions use the same settings/configurations (#277) (6f4feab)
Loading

v5.12.0

29 Nov 20:38
@antonbabenko antonbabenko
v5.12.0
a1049c0
Compare
Choose a tag to compare
v5.12.0

5.12.0 (2024-11-29)

Features

  • Allow task exec IAM policy to have an IAM path (#243) (c9dc889)

Bug Fixes

  • Update CI workflow versions to latest (#236) (fd0f0ec)
Loading

v5.11.4

07 Aug 23:52
@antonbabenko antonbabenko
v5.11.4
3b70e1e
Compare
Choose a tag to compare
v5.11.4

5.11.4 (2024-08-07)

Bug Fixes

  • Local cluster_name error when var.cluster_arn is empty (#218) (42f11fe)
Loading