Thanks to visit codestin.com
Credit goes to github.com

Skip to content

[Enhancement] aws lambda function: Add source_kms_key_arn argument to encrypt deployment package with custom KMS key #44080

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Merged
merged 8 commits into from
Aug 29, 2025
Merged

[Enhancement] aws lambda function: Add source_kms_key_arn argument to encrypt deployment package with custom KMS key #44080

merged 8 commits into from
Aug 29, 2025

Conversation

tabito-hara
Copy link
Contributor

@tabito-hara tabito-hara commented Aug 29, 2025
edited
Loading

Rollback Plan

If a change needs to be reverted, we will publish an updated version of the library.

Changes to Security Controls

Are there any changes to security controls (access controls, encryption, logging) in this pull request? If so, explain.

Description

  • Add source_kms_key_arn argument to allow users to provide their own KMS key for encrypting Lambda function source code.
  • The new attribute is available in both the resource and data source.

Relations

Closes #43055
Closes #40276

References

https://docs.aws.amazon.com/lambda/latest/api/API_CreateFunction.html
https://docs.aws.amazon.com/lambda/latest/api/API_UpdateFunction.html
https://docs.aws.amazon.com/lambda/latest/api/API_GetFunction.html

Output from Acceptance Testing

$ make testacc TESTS=TestAccLambdaFunction_ PKG=lambda 
make: Verifying source code with gofmt...
==> Checking that code complies with gofmt requirements...
TF_ACC=1 go1.24.6 test ./internal/service/lambda/... -v -count 1 -parallel 20 -run='TestAccLambdaFunction_'  -timeout 360m -vet=off
2025/08/29 14:28:00 Creating Terraform AWS Provider (SDKv2-style)...
2025/08/29 14:28:00 Initializing Terraform AWS Provider (SDKv2-style)...
=== RUN   TestAccLambdaFunction_Identity_Basic
=== PAUSE TestAccLambdaFunction_Identity_Basic
=== RUN   TestAccLambdaFunction_Identity_RegionOverride
=== PAUSE TestAccLambdaFunction_Identity_RegionOverride
=== RUN   TestAccLambdaFunction_Identity_ExistingResource
=== PAUSE TestAccLambdaFunction_Identity_ExistingResource
=== RUN   TestAccLambdaFunction_tags
=== PAUSE TestAccLambdaFunction_tags
=== RUN   TestAccLambdaFunction_tags_null
=== PAUSE TestAccLambdaFunction_tags_null
=== RUN   TestAccLambdaFunction_tags_EmptyMap
=== PAUSE TestAccLambdaFunction_tags_EmptyMap
=== RUN   TestAccLambdaFunction_tags_AddOnUpdate
=== PAUSE TestAccLambdaFunction_tags_AddOnUpdate
=== RUN   TestAccLambdaFunction_tags_EmptyTag_OnCreate
=== PAUSE TestAccLambdaFunction_tags_EmptyTag_OnCreate
=== RUN   TestAccLambdaFunction_tags_EmptyTag_OnUpdate_Add
=== PAUSE TestAccLambdaFunction_tags_EmptyTag_OnUpdate_Add
=== RUN   TestAccLambdaFunction_tags_EmptyTag_OnUpdate_Replace
=== PAUSE TestAccLambdaFunction_tags_EmptyTag_OnUpdate_Replace
=== RUN   TestAccLambdaFunction_tags_DefaultTags_providerOnly
=== PAUSE TestAccLambdaFunction_tags_DefaultTags_providerOnly
=== RUN   TestAccLambdaFunction_tags_DefaultTags_nonOverlapping
=== PAUSE TestAccLambdaFunction_tags_DefaultTags_nonOverlapping
=== RUN   TestAccLambdaFunction_tags_DefaultTags_overlapping
=== PAUSE TestAccLambdaFunction_tags_DefaultTags_overlapping
=== RUN   TestAccLambdaFunction_tags_DefaultTags_updateToProviderOnly
=== PAUSE TestAccLambdaFunction_tags_DefaultTags_updateToProviderOnly
=== RUN   TestAccLambdaFunction_tags_DefaultTags_updateToResourceOnly
=== PAUSE TestAccLambdaFunction_tags_DefaultTags_updateToResourceOnly
=== RUN   TestAccLambdaFunction_tags_DefaultTags_emptyResourceTag
=== PAUSE TestAccLambdaFunction_tags_DefaultTags_emptyResourceTag
=== RUN   TestAccLambdaFunction_tags_DefaultTags_emptyProviderOnlyTag
=== PAUSE TestAccLambdaFunction_tags_DefaultTags_emptyProviderOnlyTag
=== RUN   TestAccLambdaFunction_tags_DefaultTags_nullOverlappingResourceTag
=== PAUSE TestAccLambdaFunction_tags_DefaultTags_nullOverlappingResourceTag
=== RUN   TestAccLambdaFunction_tags_DefaultTags_nullNonOverlappingResourceTag
=== PAUSE TestAccLambdaFunction_tags_DefaultTags_nullNonOverlappingResourceTag
=== RUN   TestAccLambdaFunction_tags_ComputedTag_OnCreate
=== PAUSE TestAccLambdaFunction_tags_ComputedTag_OnCreate
=== RUN   TestAccLambdaFunction_tags_ComputedTag_OnUpdate_Add
=== PAUSE TestAccLambdaFunction_tags_ComputedTag_OnUpdate_Add
=== RUN   TestAccLambdaFunction_tags_ComputedTag_OnUpdate_Replace
=== PAUSE TestAccLambdaFunction_tags_ComputedTag_OnUpdate_Replace
=== RUN   TestAccLambdaFunction_tags_IgnoreTags_Overlap_DefaultTag
=== PAUSE TestAccLambdaFunction_tags_IgnoreTags_Overlap_DefaultTag
=== RUN   TestAccLambdaFunction_tags_IgnoreTags_Overlap_ResourceTag
=== PAUSE TestAccLambdaFunction_tags_IgnoreTags_Overlap_ResourceTag
=== RUN   TestAccLambdaFunction_basic
=== PAUSE TestAccLambdaFunction_basic
=== RUN   TestAccLambdaFunction_disappears
=== PAUSE TestAccLambdaFunction_disappears
=== RUN   TestAccLambdaFunction_unpublishedCodeUpdate
=== PAUSE TestAccLambdaFunction_unpublishedCodeUpdate
=== RUN   TestAccLambdaFunction_codeSigning
=== PAUSE TestAccLambdaFunction_codeSigning
=== RUN   TestAccLambdaFunction_concurrency
=== PAUSE TestAccLambdaFunction_concurrency
=== RUN   TestAccLambdaFunction_concurrencyCycle
=== PAUSE TestAccLambdaFunction_concurrencyCycle
=== RUN   TestAccLambdaFunction_expectFilenameAndS3Attributes
=== PAUSE TestAccLambdaFunction_expectFilenameAndS3Attributes
=== RUN   TestAccLambdaFunction_envVariables
=== PAUSE TestAccLambdaFunction_envVariables
=== RUN   TestAccLambdaFunction_EnvironmentVariables_noValue
=== PAUSE TestAccLambdaFunction_EnvironmentVariables_noValue
=== RUN   TestAccLambdaFunction_encryptedEnvVariables
=== PAUSE TestAccLambdaFunction_encryptedEnvVariables
=== RUN   TestAccLambdaFunction_nameValidation
=== PAUSE TestAccLambdaFunction_nameValidation
=== RUN   TestAccLambdaFunction_versioned
=== PAUSE TestAccLambdaFunction_versioned
=== RUN   TestAccLambdaFunction_versionedUpdate
=== PAUSE TestAccLambdaFunction_versionedUpdate
=== RUN   TestAccLambdaFunction_enablePublish
=== PAUSE TestAccLambdaFunction_enablePublish
=== RUN   TestAccLambdaFunction_disablePublish
=== PAUSE TestAccLambdaFunction_disablePublish
=== RUN   TestAccLambdaFunction_deadLetter
=== PAUSE TestAccLambdaFunction_deadLetter
=== RUN   TestAccLambdaFunction_deadLetterUpdated
=== PAUSE TestAccLambdaFunction_deadLetterUpdated
=== RUN   TestAccLambdaFunction_nilDeadLetter
=== PAUSE TestAccLambdaFunction_nilDeadLetter
=== RUN   TestAccLambdaFunction_fileSystem
=== PAUSE TestAccLambdaFunction_fileSystem
=== RUN   TestAccLambdaFunction_image
    function_test.go:903: Environment variable AWS_LAMBDA_IMAGE_LATEST_ID is not set
--- SKIP: TestAccLambdaFunction_image (0.00s)
=== RUN   TestAccLambdaFunction_architectures
=== PAUSE TestAccLambdaFunction_architectures
=== RUN   TestAccLambdaFunction_architecturesUpdate
=== PAUSE TestAccLambdaFunction_architecturesUpdate
=== RUN   TestAccLambdaFunction_architecturesWithLayer
=== PAUSE TestAccLambdaFunction_architecturesWithLayer
=== RUN   TestAccLambdaFunction_ephemeralStorage
=== PAUSE TestAccLambdaFunction_ephemeralStorage
=== RUN   TestAccLambdaFunction_loggingConfig
=== PAUSE TestAccLambdaFunction_loggingConfig
=== RUN   TestAccLambdaFunction_loggingConfigWithPublish
=== PAUSE TestAccLambdaFunction_loggingConfigWithPublish
=== RUN   TestAccLambdaFunction_tracing
=== PAUSE TestAccLambdaFunction_tracing
=== RUN   TestAccLambdaFunction_KMSKeyARN_noEnvironmentVariables
=== PAUSE TestAccLambdaFunction_KMSKeyARN_noEnvironmentVariables
=== RUN   TestAccLambdaFunction_layers
=== PAUSE TestAccLambdaFunction_layers
=== RUN   TestAccLambdaFunction_layersUpdate
=== PAUSE TestAccLambdaFunction_layersUpdate
=== RUN   TestAccLambdaFunction_vpc
=== PAUSE TestAccLambdaFunction_vpc
=== RUN   TestAccLambdaFunction_vpcRemoval
=== PAUSE TestAccLambdaFunction_vpcRemoval
=== RUN   TestAccLambdaFunction_vpcUpdate
=== PAUSE TestAccLambdaFunction_vpcUpdate
=== RUN   TestAccLambdaFunction_VPC_withInvocation
=== PAUSE TestAccLambdaFunction_VPC_withInvocation
=== RUN   TestAccLambdaFunction_VPCPublishNo_changes
=== PAUSE TestAccLambdaFunction_VPCPublishNo_changes
=== RUN   TestAccLambdaFunction_VPCPublishHas_changes
=== PAUSE TestAccLambdaFunction_VPCPublishHas_changes
=== RUN   TestAccLambdaFunction_VPC_properIAMDependencies
=== PAUSE TestAccLambdaFunction_VPC_properIAMDependencies
=== RUN   TestAccLambdaFunction_VPC_replaceSGWithDefault
=== PAUSE TestAccLambdaFunction_VPC_replaceSGWithDefault
=== RUN   TestAccLambdaFunction_VPC_replaceSGWithCustom
=== PAUSE TestAccLambdaFunction_VPC_replaceSGWithCustom
=== RUN   TestAccLambdaFunction_emptyVPC
=== PAUSE TestAccLambdaFunction_emptyVPC
=== RUN   TestAccLambdaFunction_s3
=== PAUSE TestAccLambdaFunction_s3
=== RUN   TestAccLambdaFunction_localUpdate
=== PAUSE TestAccLambdaFunction_localUpdate
=== RUN   TestAccLambdaFunction_LocalUpdate_nameOnly
=== PAUSE TestAccLambdaFunction_LocalUpdate_nameOnly
=== RUN   TestAccLambdaFunction_LocalUpdate_publish
=== PAUSE TestAccLambdaFunction_LocalUpdate_publish
=== RUN   TestAccLambdaFunction_S3Update_basic
=== PAUSE TestAccLambdaFunction_S3Update_basic
=== RUN   TestAccLambdaFunction_S3Update_unversioned
=== PAUSE TestAccLambdaFunction_S3Update_unversioned
=== RUN   TestAccLambdaFunction_snapStart
=== PAUSE TestAccLambdaFunction_snapStart
=== RUN   TestAccLambdaFunction_runtimes
=== PAUSE TestAccLambdaFunction_runtimes
=== RUN   TestAccLambdaFunction_Zip_validation
=== PAUSE TestAccLambdaFunction_Zip_validation
=== RUN   TestAccLambdaFunction_ipv6AllowedForDualStack
=== PAUSE TestAccLambdaFunction_ipv6AllowedForDualStack
=== RUN   TestAccLambdaFunction_sourceKMSKeyARN
=== PAUSE TestAccLambdaFunction_sourceKMSKeyARN
=== RUN   TestAccLambdaFunction_skipDestroy
=== PAUSE TestAccLambdaFunction_skipDestroy
=== CONT  TestAccLambdaFunction_Identity_Basic
=== CONT  TestAccLambdaFunction_disablePublish
=== CONT  TestAccLambdaFunction_tags_DefaultTags_nullNonOverlappingResourceTag
=== CONT  TestAccLambdaFunction_tags_EmptyTag_OnUpdate_Replace
=== CONT  TestAccLambdaFunction_tags_EmptyMap
=== CONT  TestAccLambdaFunction_enablePublish
=== CONT  TestAccLambdaFunction_versionedUpdate
=== CONT  TestAccLambdaFunction_nameValidation
=== CONT  TestAccLambdaFunction_versioned
=== CONT  TestAccLambdaFunction_tags_DefaultTags_providerOnly
=== CONT  TestAccLambdaFunction_EnvironmentVariables_noValue
=== CONT  TestAccLambdaFunction_encryptedEnvVariables
=== CONT  TestAccLambdaFunction_envVariables
=== CONT  TestAccLambdaFunction_skipDestroy
=== CONT  TestAccLambdaFunction_expectFilenameAndS3Attributes
=== CONT  TestAccLambdaFunction_sourceKMSKeyARN
=== CONT  TestAccLambdaFunction_tags_ComputedTag_OnCreate
=== CONT  TestAccLambdaFunction_concurrencyCycle
=== CONT  TestAccLambdaFunction_concurrency
=== CONT  TestAccLambdaFunction_ipv6AllowedForDualStack
--- PASS: TestAccLambdaFunction_nameValidation (7.24s)
=== CONT  TestAccLambdaFunction_Zip_validation
--- PASS: TestAccLambdaFunction_expectFilenameAndS3Attributes (7.39s)
=== CONT  TestAccLambdaFunction_codeSigning
--- PASS: TestAccLambdaFunction_Zip_validation (8.66s)
=== CONT  TestAccLambdaFunction_runtimes
--- PASS: TestAccLambdaFunction_skipDestroy (60.79s)
=== CONT  TestAccLambdaFunction_unpublishedCodeUpdate
--- PASS: TestAccLambdaFunction_Identity_Basic (60.85s)
=== CONT  TestAccLambdaFunction_snapStart
--- PASS: TestAccLambdaFunction_versioned (71.13s)
=== CONT  TestAccLambdaFunction_disappears
--- PASS: TestAccLambdaFunction_EnvironmentVariables_noValue (84.50s)
=== CONT  TestAccLambdaFunction_S3Update_unversioned
--- PASS: TestAccLambdaFunction_enablePublish (116.12s)
=== CONT  TestAccLambdaFunction_S3Update_basic
--- PASS: TestAccLambdaFunction_tags_EmptyTag_OnUpdate_Replace (130.82s)
=== CONT  TestAccLambdaFunction_basic
--- PASS: TestAccLambdaFunction_concurrency (133.60s)
=== CONT  TestAccLambdaFunction_LocalUpdate_publish
--- PASS: TestAccLambdaFunction_concurrencyCycle (136.25s)
=== CONT  TestAccLambdaFunction_tags_IgnoreTags_Overlap_ResourceTag
--- PASS: TestAccLambdaFunction_disablePublish (140.91s)
=== CONT  TestAccLambdaFunction_LocalUpdate_nameOnly
--- PASS: TestAccLambdaFunction_tags_DefaultTags_nullNonOverlappingResourceTag (141.58s)
=== CONT  TestAccLambdaFunction_tags_IgnoreTags_Overlap_DefaultTag
--- PASS: TestAccLambdaFunction_tags_EmptyMap (159.13s)
=== CONT  TestAccLambdaFunction_localUpdate
--- PASS: TestAccLambdaFunction_tags_ComputedTag_OnCreate (163.02s)
=== CONT  TestAccLambdaFunction_tags_ComputedTag_OnUpdate_Replace
--- PASS: TestAccLambdaFunction_S3Update_unversioned (80.96s)
=== CONT  TestAccLambdaFunction_tags_ComputedTag_OnUpdate_Add
--- PASS: TestAccLambdaFunction_envVariables (190.67s)
=== CONT  TestAccLambdaFunction_s3
--- PASS: TestAccLambdaFunction_S3Update_basic (84.44s)
=== CONT  TestAccLambdaFunction_emptyVPC
--- PASS: TestAccLambdaFunction_codeSigning (196.49s)
=== CONT  TestAccLambdaFunction_tags_EmptyTag_OnCreate
--- PASS: TestAccLambdaFunction_tags_DefaultTags_providerOnly (216.21s)
=== CONT  TestAccLambdaFunction_VPC_replaceSGWithCustom
--- PASS: TestAccLambdaFunction_encryptedEnvVariables (229.26s)
=== CONT  TestAccLambdaFunction_tags_EmptyTag_OnUpdate_Add
--- PASS: TestAccLambdaFunction_s3 (55.11s)
=== CONT  TestAccLambdaFunction_VPC_replaceSGWithDefault
--- PASS: TestAccLambdaFunction_disappears (319.28s)
=== CONT  TestAccLambdaFunction_tags_AddOnUpdate
--- PASS: TestAccLambdaFunction_versionedUpdate (399.86s)
=== CONT  TestAccLambdaFunction_VPC_properIAMDependencies
--- PASS: TestAccLambdaFunction_basic (269.75s)
=== CONT  TestAccLambdaFunction_VPCPublishHas_changes
--- PASS: TestAccLambdaFunction_snapStart (346.95s)
=== CONT  TestAccLambdaFunction_tags
--- PASS: TestAccLambdaFunction_tags_IgnoreTags_Overlap_ResourceTag (315.66s)
=== CONT  TestAccLambdaFunction_VPCPublishNo_changes
--- PASS: TestAccLambdaFunction_sourceKMSKeyARN (452.31s)
=== CONT  TestAccLambdaFunction_tags_null
--- PASS: TestAccLambdaFunction_tags_IgnoreTags_Overlap_DefaultTag (318.83s)
=== CONT  TestAccLambdaFunction_Identity_ExistingResource
--- PASS: TestAccLambdaFunction_tags_ComputedTag_OnUpdate_Replace (305.43s)
=== CONT  TestAccLambdaFunction_Identity_RegionOverride
--- PASS: TestAccLambdaFunction_emptyVPC (267.93s)
=== CONT  TestAccLambdaFunction_tags_DefaultTags_updateToResourceOnly
--- PASS: TestAccLambdaFunction_tags_ComputedTag_OnUpdate_Add (309.41s)
=== CONT  TestAccLambdaFunction_VPC_withInvocation
--- PASS: TestAccLambdaFunction_tags_EmptyTag_OnCreate (300.27s)
=== CONT  TestAccLambdaFunction_tags_DefaultTags_nullOverlappingResourceTag
--- PASS: TestAccLambdaFunction_Identity_ExistingResource (94.29s)
=== CONT  TestAccLambdaFunction_ephemeralStorage
--- PASS: TestAccLambdaFunction_tags_EmptyTag_OnUpdate_Add (465.07s)
=== CONT  TestAccLambdaFunction_tags_DefaultTags_emptyProviderOnlyTag
--- PASS: TestAccLambdaFunction_runtimes (716.09s)
=== CONT  TestAccLambdaFunction_architecturesWithLayer
--- PASS: TestAccLambdaFunction_ipv6AllowedForDualStack (839.21s)
=== CONT  TestAccLambdaFunction_tags_DefaultTags_emptyResourceTag
--- PASS: TestAccLambdaFunction_unpublishedCodeUpdate (789.75s)
=== CONT  TestAccLambdaFunction_loggingConfig
--- PASS: TestAccLambdaFunction_tags_AddOnUpdate (481.25s)
=== CONT  TestAccLambdaFunction_architecturesUpdate
--- PASS: TestAccLambdaFunction_VPC_replaceSGWithCustom (691.29s)
=== CONT  TestAccLambdaFunction_vpcUpdate
--- PASS: TestAccLambdaFunction_LocalUpdate_publish (805.97s)
=== CONT  TestAccLambdaFunction_nilDeadLetter
--- PASS: TestAccLambdaFunction_VPC_replaceSGWithDefault (844.18s)
=== CONT  TestAccLambdaFunction_deadLetterUpdated
--- PASS: TestAccLambdaFunction_LocalUpdate_nameOnly (1006.05s)
=== CONT  TestAccLambdaFunction_architectures
--- PASS: TestAccLambdaFunction_VPC_properIAMDependencies (758.38s)
=== CONT  TestAccLambdaFunction_deadLetter
--- PASS: TestAccLambdaFunction_tags (792.50s)
=== CONT  TestAccLambdaFunction_fileSystem
--- PASS: TestAccLambdaFunction_localUpdate (1178.54s)
=== CONT  TestAccLambdaFunction_layers
--- PASS: TestAccLambdaFunction_tags_null (908.15s)
=== CONT  TestAccLambdaFunction_tracing
--- PASS: TestAccLambdaFunction_Identity_RegionOverride (897.76s)
=== CONT  TestAccLambdaFunction_vpc
--- PASS: TestAccLambdaFunction_tags_DefaultTags_updateToResourceOnly (908.92s)
=== CONT  TestAccLambdaFunction_KMSKeyARN_noEnvironmentVariables
--- PASS: TestAccLambdaFunction_tags_DefaultTags_nullOverlappingResourceTag (1048.53s)
=== CONT  TestAccLambdaFunction_layersUpdate
--- PASS: TestAccLambdaFunction_VPCPublishHas_changes (1158.91s)
=== CONT  TestAccLambdaFunction_loggingConfigWithPublish
--- PASS: TestAccLambdaFunction_tags_DefaultTags_emptyProviderOnlyTag (1055.73s)
=== CONT  TestAccLambdaFunction_tags_DefaultTags_overlapping
--- PASS: TestAccLambdaFunction_tags_DefaultTags_emptyResourceTag (924.76s)
=== CONT  TestAccLambdaFunction_tags_DefaultTags_updateToProviderOnly
--- PASS: TestAccLambdaFunction_ephemeralStorage (1211.00s)
=== CONT  TestAccLambdaFunction_tags_DefaultTags_nonOverlapping
--- PASS: TestAccLambdaFunction_loggingConfig (975.80s)
=== CONT  TestAccLambdaFunction_vpcRemoval
--- PASS: TestAccLambdaFunction_VPCPublishNo_changes (1473.40s)
--- PASS: TestAccLambdaFunction_nilDeadLetter (1010.92s)
--- PASS: TestAccLambdaFunction_architectures (846.86s)
--- PASS: TestAccLambdaFunction_deadLetterUpdated (904.69s)
--- PASS: TestAccLambdaFunction_deadLetter (851.24s)
--- PASS: TestAccLambdaFunction_layers (840.10s)
--- PASS: TestAccLambdaFunction_KMSKeyARN_noEnvironmentVariables (814.38s)
--- PASS: TestAccLambdaFunction_tracing (843.95s)
--- PASS: TestAccLambdaFunction_architecturesWithLayer (1665.60s)
--- PASS: TestAccLambdaFunction_layersUpdate (856.73s)
--- PASS: TestAccLambdaFunction_architecturesUpdate (1546.32s)
--- PASS: TestAccLambdaFunction_tags_DefaultTags_updateToProviderOnly (660.59s)
--- PASS: TestAccLambdaFunction_tags_DefaultTags_overlapping (685.93s)
--- PASS: TestAccLambdaFunction_tags_DefaultTags_nonOverlapping (689.54s)
--- PASS: TestAccLambdaFunction_vpcUpdate (1562.12s)
--- PASS: TestAccLambdaFunction_loggingConfigWithPublish (966.78s)
--- PASS: TestAccLambdaFunction_fileSystem (1338.07s)
--- PASS: TestAccLambdaFunction_vpc (1217.90s)
--- PASS: TestAccLambdaFunction_vpcRemoval (1150.19s)
--- PASS: TestAccLambdaFunction_VPC_withInvocation (2660.90s)
PASS
ok      github.com/hashicorp/terraform-provider-aws/internal/service/lambda     3140.106s

@github-actions GitHub Actions
Copy link
Contributor

Community Guidelines

This comment is added to every new Pull Request to provide quick reference to how the Terraform AWS Provider is maintained. Please review the information below, and thank you for contributing to the community that keeps the provider thriving! 🚀

Voting for Prioritization

  • Please vote on this Pull Request by adding a 👍 reaction to the original post to help the community and maintainers prioritize it.
  • Please see our prioritization guide for additional information on how the maintainers handle prioritization.
  • Please do not leave +1 or other comments that do not add relevant new information or questions; they generate extra noise for others following the Pull Request and do not help prioritize the request.

Pull Request Authors

  • Review the contribution guide relating to the type of change you are making to ensure all of the necessary steps have been taken.
  • Whether or not the branch has been rebased will not impact prioritization, but doing so is always a welcome surprise.

@github-actions github-actions bot added needs-triage Waiting for first response or review from a maintainer. documentation Introduces or discusses updates to documentation. tests PRs: expanded test coverage. Issues: expanded coverage, enhancements to test infrastructure. service/lambda Issues and PRs that pertain to the lambda service. size/M Managed by automation to categorize the size of a PR. labels Aug 29, 2025
@tabito-hara tabito-hara marked this pull request as ready for review August 29, 2025 07:40
@tabito-hara tabito-hara requested a review from a team as a code owner August 29, 2025 07:40
@ewbankkit ewbankkit added enhancement Requests to existing resources that expand the functionality or scope. and removed needs-triage Waiting for first response or review from a maintainer. labels Aug 29, 2025
@ewbankkit ewbankkit self-assigned this Aug 29, 2025
@github-actions github-actions bot added the prioritized Part of the maintainer teams immediate focus. To be addressed within the current quarter. label Aug 29, 2025
ewbankkit
ewbankkit approved these changes Aug 29, 2025
View reviewed changes
Copy link
Contributor

@ewbankkit ewbankkit left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

LGTM 🚀.

% make testacc TESTARGS='-run=TestAccLambdaFunction_sourceKMSKeyARN\|TestAccLambdaFunction_basic\|TestAccLambdaFunction_code\|TestAccLambdaFunctionDataSource_' PKG=lambda ACCTEST_PARALLELISM=4
make: Verifying source code with gofmt...
==> Checking that code complies with gofmt requirements...
TF_ACC=1 go1.24.6 test ./internal/service/lambda/... -v -count 1 -parallel 4  -run=TestAccLambdaFunction_sourceKMSKeyARN\|TestAccLambdaFunction_basic\|TestAccLambdaFunction_code\|TestAccLambdaFunctionDataSource_ -timeout 360m -vet=off
2025/08/29 11:43:56 Creating Terraform AWS Provider (SDKv2-style)...
2025/08/29 11:43:56 Initializing Terraform AWS Provider (SDKv2-style)...
=== RUN   TestAccLambdaFunctionDataSource_tags
=== PAUSE TestAccLambdaFunctionDataSource_tags
=== RUN   TestAccLambdaFunctionDataSource_tags_NullMap
=== PAUSE TestAccLambdaFunctionDataSource_tags_NullMap
=== RUN   TestAccLambdaFunctionDataSource_tags_EmptyMap
=== PAUSE TestAccLambdaFunctionDataSource_tags_EmptyMap
=== RUN   TestAccLambdaFunctionDataSource_tags_DefaultTags_nonOverlapping
=== PAUSE TestAccLambdaFunctionDataSource_tags_DefaultTags_nonOverlapping
=== RUN   TestAccLambdaFunctionDataSource_tags_IgnoreTags_Overlap_DefaultTag
=== PAUSE TestAccLambdaFunctionDataSource_tags_IgnoreTags_Overlap_DefaultTag
=== RUN   TestAccLambdaFunctionDataSource_tags_IgnoreTags_Overlap_ResourceTag
=== PAUSE TestAccLambdaFunctionDataSource_tags_IgnoreTags_Overlap_ResourceTag
=== RUN   TestAccLambdaFunctionDataSource_basic
=== PAUSE TestAccLambdaFunctionDataSource_basic
=== RUN   TestAccLambdaFunctionDataSource_version
=== PAUSE TestAccLambdaFunctionDataSource_version
=== RUN   TestAccLambdaFunctionDataSource_versionWithReservedConcurrency
=== PAUSE TestAccLambdaFunctionDataSource_versionWithReservedConcurrency
=== RUN   TestAccLambdaFunctionDataSource_latestVersion
=== PAUSE TestAccLambdaFunctionDataSource_latestVersion
=== RUN   TestAccLambdaFunctionDataSource_unpublishedVersion
=== PAUSE TestAccLambdaFunctionDataSource_unpublishedVersion
=== RUN   TestAccLambdaFunctionDataSource_alias
=== PAUSE TestAccLambdaFunctionDataSource_alias
=== RUN   TestAccLambdaFunctionDataSource_layers
=== PAUSE TestAccLambdaFunctionDataSource_layers
=== RUN   TestAccLambdaFunctionDataSource_vpc
=== PAUSE TestAccLambdaFunctionDataSource_vpc
=== RUN   TestAccLambdaFunctionDataSource_environment
=== PAUSE TestAccLambdaFunctionDataSource_environment
=== RUN   TestAccLambdaFunctionDataSource_fileSystem
=== PAUSE TestAccLambdaFunctionDataSource_fileSystem
=== RUN   TestAccLambdaFunctionDataSource_image
=== PAUSE TestAccLambdaFunctionDataSource_image
=== RUN   TestAccLambdaFunctionDataSource_architectures
=== PAUSE TestAccLambdaFunctionDataSource_architectures
=== RUN   TestAccLambdaFunctionDataSource_ephemeralStorage
=== PAUSE TestAccLambdaFunctionDataSource_ephemeralStorage
=== RUN   TestAccLambdaFunctionDataSource_loggingConfig
=== PAUSE TestAccLambdaFunctionDataSource_loggingConfig
=== RUN   TestAccLambdaFunction_basic
=== PAUSE TestAccLambdaFunction_basic
=== RUN   TestAccLambdaFunction_codeSigning
=== PAUSE TestAccLambdaFunction_codeSigning
=== RUN   TestAccLambdaFunction_sourceKMSKeyARN
=== PAUSE TestAccLambdaFunction_sourceKMSKeyARN
=== CONT  TestAccLambdaFunctionDataSource_tags
=== CONT  TestAccLambdaFunctionDataSource_layers
=== CONT  TestAccLambdaFunctionDataSource_basic
=== CONT  TestAccLambdaFunctionDataSource_ephemeralStorage
--- PASS: TestAccLambdaFunctionDataSource_ephemeralStorage (27.69s)
=== CONT  TestAccLambdaFunctionDataSource_tags_DefaultTags_nonOverlapping
--- PASS: TestAccLambdaFunctionDataSource_tags (33.84s)
=== CONT  TestAccLambdaFunctionDataSource_tags_IgnoreTags_Overlap_ResourceTag
--- PASS: TestAccLambdaFunctionDataSource_basic (39.89s)
=== CONT  TestAccLambdaFunctionDataSource_tags_IgnoreTags_Overlap_DefaultTag
--- PASS: TestAccLambdaFunctionDataSource_layers (46.06s)
=== CONT  TestAccLambdaFunctionDataSource_fileSystem
--- PASS: TestAccLambdaFunctionDataSource_tags_DefaultTags_nonOverlapping (25.96s)
=== CONT  TestAccLambdaFunctionDataSource_architectures
--- PASS: TestAccLambdaFunctionDataSource_tags_IgnoreTags_Overlap_ResourceTag (26.39s)
=== CONT  TestAccLambdaFunctionDataSource_image
    function_data_source_test.go:403: AWS_LAMBDA_IMAGE_LATEST_ID env var must be set for Lambda Function Data Source Image Support acceptance tests.
--- SKIP: TestAccLambdaFunctionDataSource_image (0.00s)
=== CONT  TestAccLambdaFunctionDataSource_tags_EmptyMap
--- PASS: TestAccLambdaFunctionDataSource_tags_IgnoreTags_Overlap_DefaultTag (27.09s)
=== CONT  TestAccLambdaFunctionDataSource_environment
--- PASS: TestAccLambdaFunctionDataSource_architectures (27.72s)
=== CONT  TestAccLambdaFunction_codeSigning
--- PASS: TestAccLambdaFunctionDataSource_tags_EmptyMap (27.17s)
=== CONT  TestAccLambdaFunction_sourceKMSKeyARN
--- PASS: TestAccLambdaFunctionDataSource_environment (27.17s)
=== CONT  TestAccLambdaFunctionDataSource_tags_NullMap
--- PASS: TestAccLambdaFunctionDataSource_tags_NullMap (29.40s)
=== CONT  TestAccLambdaFunctionDataSource_vpc
--- PASS: TestAccLambdaFunction_codeSigning (59.56s)
=== CONT  TestAccLambdaFunction_basic
--- PASS: TestAccLambdaFunction_sourceKMSKeyARN (434.26s)
=== CONT  TestAccLambdaFunctionDataSource_versionWithReservedConcurrency
--- PASS: TestAccLambdaFunction_basic (389.96s)
=== CONT  TestAccLambdaFunctionDataSource_alias
--- PASS: TestAccLambdaFunctionDataSource_versionWithReservedConcurrency (27.08s)
=== CONT  TestAccLambdaFunctionDataSource_latestVersion
--- PASS: TestAccLambdaFunctionDataSource_alias (32.91s)
=== CONT  TestAccLambdaFunctionDataSource_version
--- PASS: TestAccLambdaFunctionDataSource_latestVersion (30.22s)
=== CONT  TestAccLambdaFunctionDataSource_loggingConfig
--- PASS: TestAccLambdaFunctionDataSource_version (29.58s)
=== CONT  TestAccLambdaFunctionDataSource_unpublishedVersion
--- PASS: TestAccLambdaFunctionDataSource_unpublishedVersion (29.43s)
--- PASS: TestAccLambdaFunctionDataSource_loggingConfig (44.44s)
--- PASS: TestAccLambdaFunctionDataSource_fileSystem (658.56s)
--- PASS: TestAccLambdaFunctionDataSource_vpc (750.71s)
PASS
ok  	github.com/hashicorp/terraform-provider-aws/internal/service/lambda	879.994s

@ewbankkit
Copy link
Contributor

@tabito-hara Thanks for the contribution 🎉 👏.

@ewbankkit ewbankkit merged commit 02d64ff into hashicorp:main Aug 29, 2025
50 checks passed
@github-actions GitHub Actions
Copy link
Contributor

Warning

This Issue has been closed, meaning that any additional comments are much easier for the maintainers to miss. Please assume that the maintainers will not see them.

Ongoing conversations amongst community members are welcome, however, the issue will be locked after 30 days. Moving conversations to another venue, such as the AWS Provider forum, is recommended. If you have additional concerns, please open a new issue, referencing this one where needed.

@github-actions github-actions bot added this to the v6.12.0 milestone Aug 29, 2025
@github-actions github-actions bot removed the prioritized Part of the maintainer teams immediate focus. To be addressed within the current quarter. label Sep 4, 2025
@github-actions GitHub Actions
Copy link
Contributor

github-actions bot commented Sep 4, 2025

This functionality has been released in v6.12.0 of the Terraform AWS Provider. Please see the Terraform documentation on provider versioning or reach out if you need any assistance upgrading.

For further feature requests or bug reports with this functionality, please create a new GitHub issue following the template. Thank you!

@tiagovmvieira tiagovmvieira mentioned this pull request Sep 4, 2025
Open
3 tasks
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@ewbankkit ewbankkit ewbankkit approved these changes

Assignees

@ewbankkit ewbankkit

Labels
documentation Introduces or discusses updates to documentation. enhancement Requests to existing resources that expand the functionality or scope. service/lambda Issues and PRs that pertain to the lambda service. size/M Managed by automation to categorize the size of a PR. tests PRs: expanded test coverage. Issues: expanded coverage, enhancements to test infrastructure.
Projects
None yet
Milestone
v6.12.0
Development

Successfully merging this pull request may close these issues.

Add CMK encryption for lambda function zip code artifacts. Lambda CMK encryption for Zip function code artifacts
2 participants
@tabito-hara @ewbankkit