Skip to content

Instantly share code, notes, and snippets.

@denniswon

denniswon/diff-v2.txt

Created January 7, 2026 02:06
Show Gist options

  • Select an option

    Learn more about clone URLs
  • Save denniswon/ac20ec356562a1e782dd74ff61175e4f to your computer and use it in GitHub Desktop.

Select an option

Learn more about clone URLs
Save denniswon/ac20ec356562a1e782dd74ff61175e4f to your computer and use it in GitHub Desktop.
Download ZIP
make diff-v2
Raw
diff-v2.txt
dennis.won@magic ~/projects/deploy (cdk-v2-test ✭ ✗) » make diff-v2
Stack NewtonAVS-Sepolia-Stagef-Network
Security Group Changes
┌───┬──────────────────────────────────────┬─────┬────────────┬──────────────────────────────────────┐
│ │ Group │ Dir │ Protocol │ Peer │
├───┼──────────────────────────────────────┼─────┼────────────┼──────────────────────────────────────┤
│ + │ ${ALBSecurityGroup.GroupId} │ In │ TCP 80 │ Everyone (IPv4) │
│ + │ ${ALBSecurityGroup.GroupId} │ In │ TCP 443 │ Everyone (IPv4) │
│ + │ ${ALBSecurityGroup.GroupId} │ Out │ Everything │ Everyone (IPv4) │
├───┼──────────────────────────────────────┼─────┼────────────┼──────────────────────────────────────┤
│ + │ ${ChallengerSecurityGroup.GroupId} │ Out │ Everything │ Everyone (IPv4) │
├───┼──────────────────────────────────────┼─────┼────────────┼──────────────────────────────────────┤
│ + │ ${GatewaySecurityGroup.GroupId} │ In │ TCP 8080 │ ${ALBSecurityGroup.GroupId} │
│ + │ ${GatewaySecurityGroup.GroupId} │ In │ TCP 8080 │ ${OperatorSecurityGroup.GroupId} │
│ + │ ${GatewaySecurityGroup.GroupId} │ In │ Everything │ ${GatewaySecurityGroup.GroupId} │
│ + │ ${GatewaySecurityGroup.GroupId} │ Out │ Everything │ Everyone (IPv4) │
├───┼──────────────────────────────────────┼─────┼────────────┼──────────────────────────────────────┤
│ + │ ${Operator1ALBSecurityGroup.GroupId} │ In │ TCP 80 │ Everyone (IPv4) │
│ + │ ${Operator1ALBSecurityGroup.GroupId} │ In │ TCP 443 │ Everyone (IPv4) │
│ + │ ${Operator1ALBSecurityGroup.GroupId} │ Out │ Everything │ Everyone (IPv4) │
├───┼──────────────────────────────────────┼─────┼────────────┼──────────────────────────────────────┤
│ + │ ${Operator2ALBSecurityGroup.GroupId} │ In │ TCP 80 │ Everyone (IPv4) │
│ + │ ${Operator2ALBSecurityGroup.GroupId} │ In │ TCP 443 │ Everyone (IPv4) │
│ + │ ${Operator2ALBSecurityGroup.GroupId} │ Out │ Everything │ Everyone (IPv4) │
├───┼──────────────────────────────────────┼─────┼────────────┼──────────────────────────────────────┤
│ + │ ${OperatorSecurityGroup.GroupId} │ In │ TCP 9003 │ ${Operator1ALBSecurityGroup.GroupId} │
│ + │ ${OperatorSecurityGroup.GroupId} │ In │ TCP 9004 │ ${Operator2ALBSecurityGroup.GroupId} │
│ + │ ${OperatorSecurityGroup.GroupId} │ In │ TCP 9003 │ ${GatewaySecurityGroup.GroupId} │
│ + │ ${OperatorSecurityGroup.GroupId} │ In │ Everything │ ${OperatorSecurityGroup.GroupId} │
│ + │ ${OperatorSecurityGroup.GroupId} │ Out │ Everything │ Everyone (IPv4) │
└───┴──────────────────────────────────────┴─────┴────────────┴──────────────────────────────────────┘
(NOTE: There may be security-related changes not in this list. See https://github.com/aws/aws-cdk/issues/1299)
Parameters
[+] Parameter BootstrapVersion BootstrapVersion: {"Type":"AWS::SSM::Parameter::Value<String>","Default":"/cdk-bootstrap/hnb659fds/version","Description":"Version of the CDK Bootstrap resources in this environment, automatically retrieved from SSM Parameter Store. [cdk:skip]"}
Resources
[+] AWS::ServiceDiscovery::PrivateDnsNamespace ServiceDiscoveryNamespace ServiceDiscoveryNamespace8AEF4AC1
[+] AWS::EC2::SecurityGroup ALBSecurityGroup ALBSecurityGroup29A3BDEF
[+] AWS::EC2::SecurityGroup GatewaySecurityGroup GatewaySecurityGroup1F862DCA
[+] AWS::EC2::SecurityGroupIngress GatewaySecurityGroup/from NewtonAVSSepoliaStagefNetworkALBSecurityGroupF7045FBE:8080 GatewaySecurityGroupfromNewtonAVSSepoliaStagefNetworkALBSecurityGroupF7045FBE80802FDF9ABA
[+] AWS::EC2::SecurityGroupIngress GatewaySecurityGroup/from NewtonAVSSepoliaStagefNetworkOperatorSecurityGroup5F5FAC49:8080 GatewaySecurityGroupfromNewtonAVSSepoliaStagefNetworkOperatorSecurityGroup5F5FAC49808026865F66
[+] AWS::EC2::SecurityGroupIngress GatewaySecurityGroup/from NewtonAVSSepoliaStagefNetworkGatewaySecurityGroup4A4F003D:ALL TRAFFIC GatewaySecurityGroupfromNewtonAVSSepoliaStagefNetworkGatewaySecurityGroup4A4F003DALLTRAFFIC6B720EF2
[+] AWS::EC2::SecurityGroup OperatorSecurityGroup OperatorSecurityGroup0FBF5129
[+] AWS::EC2::SecurityGroupIngress OperatorSecurityGroup/from NewtonAVSSepoliaStagefNetworkOperator1ALBSecurityGroupF0CFB1F0:9003 OperatorSecurityGroupfromNewtonAVSSepoliaStagefNetworkOperator1ALBSecurityGroupF0CFB1F09003855F3936
[+] AWS::EC2::SecurityGroupIngress OperatorSecurityGroup/from NewtonAVSSepoliaStagefNetworkOperator2ALBSecurityGroup271BCF9C:9004 OperatorSecurityGroupfromNewtonAVSSepoliaStagefNetworkOperator2ALBSecurityGroup271BCF9C900432FB3C22
[+] AWS::EC2::SecurityGroupIngress OperatorSecurityGroup/from NewtonAVSSepoliaStagefNetworkGatewaySecurityGroup4A4F003D:9003 OperatorSecurityGroupfromNewtonAVSSepoliaStagefNetworkGatewaySecurityGroup4A4F003D9003A026C011
[+] AWS::EC2::SecurityGroupIngress OperatorSecurityGroup/from NewtonAVSSepoliaStagefNetworkOperatorSecurityGroup5F5FAC49:ALL TRAFFIC OperatorSecurityGroupfromNewtonAVSSepoliaStagefNetworkOperatorSecurityGroup5F5FAC49ALLTRAFFICC2DD35E4
[+] AWS::EC2::SecurityGroup ChallengerSecurityGroup ChallengerSecurityGroupCB1DBAE3
[+] AWS::EC2::SecurityGroup Operator1ALBSecurityGroup Operator1ALBSecurityGroupEE3248EF
[+] AWS::EC2::SecurityGroup Operator2ALBSecurityGroup Operator2ALBSecurityGroupE81D3DA8
Outputs
[+] Output VpcId VpcId: {"Description":"VPC ID","Value":"vpc-025f09e347c1f7a67","Export":{"Name":"NewtonAVS-Sepolia-Stagef-VpcId"}}
[+] Output NamespaceArn NamespaceArn: {"Description":"Service Discovery Namespace ARN","Value":{"Fn::GetAtt":["ServiceDiscoveryNamespace8AEF4AC1","Arn"]},"Export":{"Name":"NewtonAVS-Sepolia-Stagef-NamespaceArn"}}
[+] Output GatewaySecurityGroupId GatewaySecurityGroupId: {"Description":"Gateway Security Group ID","Value":{"Fn::GetAtt":["GatewaySecurityGroup1F862DCA","GroupId"]},"Export":{"Name":"NewtonAVS-Sepolia-Stagef-GatewaySGId"}}
[+] Output OperatorSecurityGroupId OperatorSecurityGroupId: {"Description":"Operator Security Group ID","Value":{"Fn::GetAtt":["OperatorSecurityGroup0FBF5129","GroupId"]},"Export":{"Name":"NewtonAVS-Sepolia-Stagef-OperatorSGId"}}
[+] Output Exports/Output{"Fn::GetAtt":["ALBSecurityGroup29A3BDEF","GroupId"]} ExportsOutputFnGetAttALBSecurityGroup29A3BDEFGroupId2A9BC0BF: {"Value":{"Fn::GetAtt":["ALBSecurityGroup29A3BDEF","GroupId"]},"Export":{"Name":"NewtonAVS-Sepolia-Stagef-Network:ExportsOutputFnGetAttALBSecurityGroup29A3BDEFGroupId2A9BC0BF"}}
[+] Output Exports/Output{"Fn::GetAtt":["GatewaySecurityGroup1F862DCA","GroupId"]} ExportsOutputFnGetAttGatewaySecurityGroup1F862DCAGroupIdB3D83707: {"Value":{"Fn::GetAtt":["GatewaySecurityGroup1F862DCA","GroupId"]},"Export":{"Name":"NewtonAVS-Sepolia-Stagef-Network:ExportsOutputFnGetAttGatewaySecurityGroup1F862DCAGroupIdB3D83707"}}
[+] Output Exports/Output{"Fn::GetAtt":["ServiceDiscoveryNamespace8AEF4AC1","Id"]} ExportsOutputFnGetAttServiceDiscoveryNamespace8AEF4AC1Id8B9E67E2: {"Value":{"Fn::GetAtt":["ServiceDiscoveryNamespace8AEF4AC1","Id"]},"Export":{"Name":"NewtonAVS-Sepolia-Stagef-Network:ExportsOutputFnGetAttServiceDiscoveryNamespace8AEF4AC1Id8B9E67E2"}}
[+] Output Exports/Output{"Fn::GetAtt":["Operator1ALBSecurityGroupEE3248EF","GroupId"]} ExportsOutputFnGetAttOperator1ALBSecurityGroupEE3248EFGroupId60F7B4DC: {"Value":{"Fn::GetAtt":["Operator1ALBSecurityGroupEE3248EF","GroupId"]},"Export":{"Name":"NewtonAVS-Sepolia-Stagef-Network:ExportsOutputFnGetAttOperator1ALBSecurityGroupEE3248EFGroupId60F7B4DC"}}
[+] Output Exports/Output{"Fn::GetAtt":["OperatorSecurityGroup0FBF5129","GroupId"]} ExportsOutputFnGetAttOperatorSecurityGroup0FBF5129GroupId02437E2E: {"Value":{"Fn::GetAtt":["OperatorSecurityGroup0FBF5129","GroupId"]},"Export":{"Name":"NewtonAVS-Sepolia-Stagef-Network:ExportsOutputFnGetAttOperatorSecurityGroup0FBF5129GroupId02437E2E"}}
[+] Output Exports/Output{"Fn::GetAtt":["Operator2ALBSecurityGroupE81D3DA8","GroupId"]} ExportsOutputFnGetAttOperator2ALBSecurityGroupE81D3DA8GroupId92533D13: {"Value":{"Fn::GetAtt":["Operator2ALBSecurityGroupE81D3DA8","GroupId"]},"Export":{"Name":"NewtonAVS-Sepolia-Stagef-Network:ExportsOutputFnGetAttOperator2ALBSecurityGroupE81D3DA8GroupId92533D13"}}
[+] Output Exports/Output{"Fn::GetAtt":["ChallengerSecurityGroupCB1DBAE3","GroupId"]} ExportsOutputFnGetAttChallengerSecurityGroupCB1DBAE3GroupId84BF9729: {"Value":{"Fn::GetAtt":["ChallengerSecurityGroupCB1DBAE3","GroupId"]},"Export":{"Name":"NewtonAVS-Sepolia-Stagef-Network:ExportsOutputFnGetAttChallengerSecurityGroupCB1DBAE3GroupId84BF9729"}}
Stack NewtonAVS-Sepolia-Stagef-Secrets
Parameters
[+] Parameter BootstrapVersion BootstrapVersion: {"Type":"AWS::SSM::Parameter::Value<String>","Default":"/cdk-bootstrap/hnb659fds/version","Description":"Version of the CDK Bootstrap resources in this environment, automatically retrieved from SSM Parameter Store. [cdk:skip]"}
Outputs
[+] Output AVSSecretsArn AVSSecretsArn: {"Description":"AVS Secrets ARN","Value":{"Fn::Join":["",["arn:",{"Ref":"AWS::Partition"},":secretsmanager:us-west-2:701849097212:secret:newton-prover-avs-secrets"]]},"Export":{"Name":"NewtonAVS-Sepolia-Stagef-AVSSecretsArn"}}
[+] Output DatadogSecretArn DatadogSecretArn: {"Description":"Datadog Secret ARN","Value":{"Fn::Join":["",["arn:",{"Ref":"AWS::Partition"},":secretsmanager:us-west-2:701849097212:secret:newton-prover-avs-datadog-secret"]]},"Export":{"Name":"NewtonAVS-Sepolia-Stagef-DatadogSecretArn"}}
[+] Output RedisSecretArn RedisSecretArn: {"Description":"Redis Secret ARN","Value":{"Fn::Join":["",["arn:",{"Ref":"AWS::Partition"},":secretsmanager:us-west-2:701849097212:secret:prover-avs-redis-connection"]]},"Export":{"Name":"NewtonAVS-Sepolia-Stagef-RedisSecretArn"}}
Stack NewtonAVS-Sepolia-Stagef-Monitoring
Parameters
[+] Parameter BootstrapVersion BootstrapVersion: {"Type":"AWS::SSM::Parameter::Value<String>","Default":"/cdk-bootstrap/hnb659fds/version","Description":"Version of the CDK Bootstrap resources in this environment, automatically retrieved from SSM Parameter Store. [cdk:skip]"}
Resources
[+] AWS::SNS::Topic CriticalAlarmTopic CriticalAlarmTopic2BD5EA05
[+] AWS::SNS::Topic WarningAlarmTopic WarningAlarmTopic2CA5348E
Outputs
[+] Output CriticalAlarmTopicArn CriticalAlarmTopicArn: {"Description":"Critical Alarm SNS Topic ARN","Value":{"Ref":"CriticalAlarmTopic2BD5EA05"},"Export":{"Name":"NewtonAVS-Sepolia-Stagef-CriticalAlarmTopicArn"}}
[+] Output WarningAlarmTopicArn WarningAlarmTopicArn: {"Description":"Warning Alarm SNS Topic ARN","Value":{"Ref":"WarningAlarmTopic2CA5348E"},"Export":{"Name":"NewtonAVS-Sepolia-Stagef-WarningAlarmTopicArn"}}
Stack NewtonAVS-Sepolia-Stagef-Compute
IAM Statement Changes
┌───┬────────────────────────────────────────────────────────────────────────────────────────────────────────────┬────────┬────────────────────────────────────┬──────────────────────────────────────────────────────────────────┬───────────┐
│ │ Resource │ Effect │ Action │ Principal │ Condition │
├───┼────────────────────────────────────────────────────────────────────────────────────────────────────────────┼────────┼────────────────────────────────────┼──────────────────────────────────────────────────────────────────┼───────────┤
│ + │ ${Challenger/ChallengerService/TaskDefinition/DatadogAgent/LogGroup.Arn} │ Allow │ logs:CreateLogStream │ AWS:${Challenger/ChallengerService/TaskDefinition/ExecutionRole} │ │
│ │ ${Challenger/ChallengerService/TaskDefinition/LogRouter/LogGroup.Arn} │ │ logs:PutLogEvents │ │ │
├───┼────────────────────────────────────────────────────────────────────────────────────────────────────────────┼────────┼────────────────────────────────────┼──────────────────────────────────────────────────────────────────┼───────────┤
│ + │ ${Challenger/ChallengerService/TaskDefinition/ExecutionRole.Arn} │ Allow │ sts:AssumeRole │ Service:ecs-tasks.amazonaws.com │ │
├───┼────────────────────────────────────────────────────────────────────────────────────────────────────────────┼────────┼────────────────────────────────────┼──────────────────────────────────────────────────────────────────┼───────────┤
│ + │ ${Challenger/ChallengerService/TaskDefinition/TaskRole.Arn} │ Allow │ sts:AssumeRole │ Service:ecs-tasks.amazonaws.com │ │
├───┼────────────────────────────────────────────────────────────────────────────────────────────────────────────┼────────┼────────────────────────────────────┼──────────────────────────────────────────────────────────────────┼───────────┤
│ + │ ${Gateway/GatewayService/TaskDefinition/DatadogAgent/LogGroup.Arn} │ Allow │ logs:CreateLogStream │ AWS:${Gateway/GatewayService/TaskDefinition/ExecutionRole} │ │
│ │ ${Gateway/GatewayService/TaskDefinition/LogRouter/LogGroup.Arn} │ │ logs:PutLogEvents │ │ │
├───┼────────────────────────────────────────────────────────────────────────────────────────────────────────────┼────────┼────────────────────────────────────┼──────────────────────────────────────────────────────────────────┼───────────┤
│ + │ ${Gateway/GatewayService/TaskDefinition/ExecutionRole.Arn} │ Allow │ sts:AssumeRole │ Service:ecs-tasks.amazonaws.com │ │
├───┼────────────────────────────────────────────────────────────────────────────────────────────────────────────┼────────┼────────────────────────────────────┼──────────────────────────────────────────────────────────────────┼───────────┤
│ + │ ${Gateway/GatewayService/TaskDefinition/TaskRole.Arn} │ Allow │ sts:AssumeRole │ Service:ecs-tasks.amazonaws.com │ │
├───┼────────────────────────────────────────────────────────────────────────────────────────────────────────────┼────────┼────────────────────────────────────┼──────────────────────────────────────────────────────────────────┼───────────┤
│ + │ ${Operator1/OperatorService/TaskDefinition/DatadogAgent/LogGroup.Arn} │ Allow │ logs:CreateLogStream │ AWS:${Operator1/OperatorService/TaskDefinition/ExecutionRole} │ │
│ │ ${Operator1/OperatorService/TaskDefinition/LogRouter/LogGroup.Arn} │ │ logs:PutLogEvents │ │ │
├───┼────────────────────────────────────────────────────────────────────────────────────────────────────────────┼────────┼────────────────────────────────────┼──────────────────────────────────────────────────────────────────┼───────────┤
│ + │ ${Operator1/OperatorService/TaskDefinition/ExecutionRole.Arn} │ Allow │ sts:AssumeRole │ Service:ecs-tasks.amazonaws.com │ │
├───┼────────────────────────────────────────────────────────────────────────────────────────────────────────────┼────────┼────────────────────────────────────┼──────────────────────────────────────────────────────────────────┼───────────┤
│ + │ ${Operator1/OperatorService/TaskDefinition/TaskRole.Arn} │ Allow │ sts:AssumeRole │ Service:ecs-tasks.amazonaws.com │ │
├───┼────────────────────────────────────────────────────────────────────────────────────────────────────────────┼────────┼────────────────────────────────────┼──────────────────────────────────────────────────────────────────┼───────────┤
│ + │ ${Operator2/OperatorService/TaskDefinition/DatadogAgent/LogGroup.Arn} │ Allow │ logs:CreateLogStream │ AWS:${Operator2/OperatorService/TaskDefinition/ExecutionRole} │ │
│ │ ${Operator2/OperatorService/TaskDefinition/LogRouter/LogGroup.Arn} │ │ logs:PutLogEvents │ │ │
├───┼────────────────────────────────────────────────────────────────────────────────────────────────────────────┼────────┼────────────────────────────────────┼──────────────────────────────────────────────────────────────────┼───────────┤
│ + │ ${Operator2/OperatorService/TaskDefinition/ExecutionRole.Arn} │ Allow │ sts:AssumeRole │ Service:ecs-tasks.amazonaws.com │ │
├───┼────────────────────────────────────────────────────────────────────────────────────────────────────────────┼────────┼────────────────────────────────────┼──────────────────────────────────────────────────────────────────┼───────────┤
│ + │ ${Operator2/OperatorService/TaskDefinition/TaskRole.Arn} │ Allow │ sts:AssumeRole │ Service:ecs-tasks.amazonaws.com │ │
├───┼────────────────────────────────────────────────────────────────────────────────────────────────────────────┼────────┼────────────────────────────────────┼──────────────────────────────────────────────────────────────────┼───────────┤
│ + │ * │ Allow │ logs:CreateLogStream │ AWS:${Gateway/GatewayService/TaskDefinition/TaskRole} │ │
│ │ │ │ logs:DescribeLogGroups │ │ │
│ │ │ │ logs:DescribeLogStreams │ │ │
│ │ │ │ logs:PutLogEvents │ │ │
│ │ │ │ secretsmanager:BatchGetSecretValue │ │ │
│ │ │ │ secretsmanager:GetSecretValue │ │ │
│ │ │ │ secretsmanager:ListSecrets │ │ │
│ │ │ │ ssmmessages:CreateControlChannel │ │ │
│ │ │ │ ssmmessages:CreateDataChannel │ │ │
│ │ │ │ ssmmessages:OpenControlChannel │ │ │
│ │ │ │ ssmmessages:OpenDataChannel │ │ │
│ + │ * │ Allow │ ecr:GetAuthorizationToken │ AWS:${Gateway/GatewayService/TaskDefinition/ExecutionRole} │ │
│ + │ * │ Allow │ logs:CreateLogStream │ AWS:${Operator1/OperatorService/TaskDefinition/TaskRole} │ │
│ │ │ │ logs:DescribeLogGroups │ │ │
│ │ │ │ logs:DescribeLogStreams │ │ │
│ │ │ │ logs:PutLogEvents │ │ │
│ │ │ │ secretsmanager:BatchGetSecretValue │ │ │
│ │ │ │ secretsmanager:GetSecretValue │ │ │
│ │ │ │ secretsmanager:ListSecrets │ │ │
│ │ │ │ ssmmessages:CreateControlChannel │ │ │
│ │ │ │ ssmmessages:CreateDataChannel │ │ │
│ │ │ │ ssmmessages:OpenControlChannel │ │ │
│ │ │ │ ssmmessages:OpenDataChannel │ │ │
│ + │ * │ Allow │ ecr:GetAuthorizationToken │ AWS:${Operator1/OperatorService/TaskDefinition/ExecutionRole} │ │
│ + │ * │ Allow │ logs:CreateLogStream │ AWS:${Operator2/OperatorService/TaskDefinition/TaskRole} │ │
│ │ │ │ logs:DescribeLogGroups │ │ │
│ │ │ │ logs:DescribeLogStreams │ │ │
│ │ │ │ logs:PutLogEvents │ │ │
│ │ │ │ secretsmanager:BatchGetSecretValue │ │ │
│ │ │ │ secretsmanager:GetSecretValue │ │ │
│ │ │ │ secretsmanager:ListSecrets │ │ │
│ │ │ │ ssmmessages:CreateControlChannel │ │ │
│ │ │ │ ssmmessages:CreateDataChannel │ │ │
│ │ │ │ ssmmessages:OpenControlChannel │ │ │
│ │ │ │ ssmmessages:OpenDataChannel │ │ │
│ + │ * │ Allow │ ecr:GetAuthorizationToken │ AWS:${Operator2/OperatorService/TaskDefinition/ExecutionRole} │ │
│ + │ * │ Allow │ logs:CreateLogStream │ AWS:${Challenger/ChallengerService/TaskDefinition/TaskRole} │ │
│ │ │ │ logs:DescribeLogGroups │ │ │
│ │ │ │ logs:DescribeLogStreams │ │ │
│ │ │ │ logs:PutLogEvents │ │ │
│ │ │ │ secretsmanager:BatchGetSecretValue │ │ │
│ │ │ │ secretsmanager:GetSecretValue │ │ │
│ │ │ │ secretsmanager:ListSecrets │ │ │
│ │ │ │ ssmmessages:CreateControlChannel │ │ │
│ │ │ │ ssmmessages:CreateDataChannel │ │ │
│ │ │ │ ssmmessages:OpenControlChannel │ │ │
│ │ │ │ ssmmessages:OpenDataChannel │ │ │
│ + │ * │ Allow │ ecr:GetAuthorizationToken │ AWS:${Challenger/ChallengerService/TaskDefinition/ExecutionRole} │ │
├───┼────────────────────────────────────────────────────────────────────────────────────────────────────────────┼────────┼────────────────────────────────────┼──────────────────────────────────────────────────────────────────┼───────────┤
│ + │ arn:${AWS::Partition}:secretsmanager:us-west-2:701849097212:secret:newton-prover-avs-datadog-secret-?????? │ Allow │ secretsmanager:DescribeSecret │ AWS:${Operator1/OperatorService/TaskDefinition/ExecutionRole} │ │
│ │ arn:${AWS::Partition}:secretsmanager:us-west-2:701849097212:secret:newton-prover-avs-secrets-?????? │ │ secretsmanager:GetSecretValue │ │ │
│ + │ arn:${AWS::Partition}:secretsmanager:us-west-2:701849097212:secret:newton-prover-avs-datadog-secret-?????? │ Allow │ secretsmanager:DescribeSecret │ AWS:${Operator2/OperatorService/TaskDefinition/ExecutionRole} │ │
│ │ arn:${AWS::Partition}:secretsmanager:us-west-2:701849097212:secret:newton-prover-avs-secrets-?????? │ │ secretsmanager:GetSecretValue │ │ │
│ + │ arn:${AWS::Partition}:secretsmanager:us-west-2:701849097212:secret:newton-prover-avs-datadog-secret-?????? │ Allow │ secretsmanager:DescribeSecret │ AWS:${Challenger/ChallengerService/TaskDefinition/ExecutionRole} │ │
│ │ arn:${AWS::Partition}:secretsmanager:us-west-2:701849097212:secret:newton-prover-avs-secrets-?????? │ │ secretsmanager:GetSecretValue │ │ │
├───┼────────────────────────────────────────────────────────────────────────────────────────────────────────────┼────────┼────────────────────────────────────┼──────────────────────────────────────────────────────────────────┼───────────┤
│ + │ arn:${AWS::Partition}:secretsmanager:us-west-2:701849097212:secret:newton-prover-avs-datadog-secret-?????? │ Allow │ secretsmanager:DescribeSecret │ AWS:${Gateway/GatewayService/TaskDefinition/ExecutionRole} │ │
│ │ arn:${AWS::Partition}:secretsmanager:us-west-2:701849097212:secret:newton-prover-avs-secrets-?????? │ │ secretsmanager:GetSecretValue │ │ │
│ │ arn:${AWS::Partition}:secretsmanager:us-west-2:701849097212:secret:prover-avs-redis-connection-?????? │ │ │ │ │
├───┼────────────────────────────────────────────────────────────────────────────────────────────────────────────┼────────┼────────────────────────────────────┼──────────────────────────────────────────────────────────────────┼───────────┤
│ + │ arn:aws:ecr:us-west-2:584864542664:repository/newton-prover-avs │ Allow │ ecr:BatchCheckLayerAvailability │ AWS:${Gateway/GatewayService/TaskDefinition/ExecutionRole} │ │
│ │ │ │ ecr:BatchGetImage │ │ │
│ │ │ │ ecr:GetDownloadUrlForLayer │ │ │
│ + │ arn:aws:ecr:us-west-2:584864542664:repository/newton-prover-avs │ Allow │ ecr:BatchCheckLayerAvailability │ AWS:${Operator1/OperatorService/TaskDefinition/ExecutionRole} │ │
│ │ │ │ ecr:BatchGetImage │ │ │
│ │ │ │ ecr:GetDownloadUrlForLayer │ │ │
│ + │ arn:aws:ecr:us-west-2:584864542664:repository/newton-prover-avs │ Allow │ ecr:BatchCheckLayerAvailability │ AWS:${Operator2/OperatorService/TaskDefinition/ExecutionRole} │ │
│ │ │ │ ecr:BatchGetImage │ │ │
│ │ │ │ ecr:GetDownloadUrlForLayer │ │ │
│ + │ arn:aws:ecr:us-west-2:584864542664:repository/newton-prover-avs │ Allow │ ecr:BatchCheckLayerAvailability │ AWS:${Challenger/ChallengerService/TaskDefinition/ExecutionRole} │ │
│ │ │ │ ecr:BatchGetImage │ │ │
│ │ │ │ ecr:GetDownloadUrlForLayer │ │ │
└───┴────────────────────────────────────────────────────────────────────────────────────────────────────────────┴────────┴────────────────────────────────────┴──────────────────────────────────────────────────────────────────┴───────────┘
(NOTE: There may be security-related changes not in this list. See https://github.com/aws/aws-cdk/issues/1299)
Parameters
[+] Parameter BootstrapVersion BootstrapVersion: {"Type":"AWS::SSM::Parameter::Value<String>","Default":"/cdk-bootstrap/hnb659fds/version","Description":"Version of the CDK Bootstrap resources in this environment, automatically retrieved from SSM Parameter Store. [cdk:skip]"}
Resources
[+] AWS::ElasticLoadBalancingV2::LoadBalancer Gateway/GatewayALB GatewayGatewayALBA71383DA
[+] AWS::ElasticLoadBalancingV2::Listener Gateway/GatewayALB/HttpListener GatewayGatewayALBHttpListener943D625C
[+] AWS::ElasticLoadBalancingV2::TargetGroup Gateway/GatewayTargetGroup GatewayGatewayTargetGroup2B7ADE95
[+] AWS::CertificateManager::Certificate Gateway/GatewayCertificate GatewayGatewayCertificateA35EE3CF
[+] AWS::ElasticLoadBalancingV2::Listener Gateway/HttpsListener GatewayHttpsListenerC5CA05BB
[+] AWS::IAM::Role Gateway/GatewayService/TaskDefinition/TaskRole GatewayGatewayServiceTaskDefinitionTaskRole40B5EB6C
[+] AWS::IAM::Policy Gateway/GatewayService/TaskDefinition/TaskRole/DefaultPolicy GatewayGatewayServiceTaskDefinitionTaskRoleDefaultPolicyBB52488B
[+] AWS::ECS::TaskDefinition Gateway/GatewayService/TaskDefinition GatewayGatewayServiceTaskDefinitionB3480923
[+] AWS::Logs::LogGroup Gateway/GatewayService/TaskDefinition/LogRouter/LogGroup GatewayGatewayServiceTaskDefinitionLogRouterLogGroupF037EFEC
[+] AWS::IAM::Role Gateway/GatewayService/TaskDefinition/ExecutionRole GatewayGatewayServiceTaskDefinitionExecutionRole596BC943
[+] AWS::IAM::Policy Gateway/GatewayService/TaskDefinition/ExecutionRole/DefaultPolicy GatewayGatewayServiceTaskDefinitionExecutionRoleDefaultPolicyC857EC74
[+] AWS::Logs::LogGroup Gateway/GatewayService/TaskDefinition/DatadogAgent/LogGroup GatewayGatewayServiceTaskDefinitionDatadogAgentLogGroupA81F741B
[+] AWS::ECS::Service Gateway/GatewayService/Service/Service GatewayGatewayService51D63965
[+] AWS::ServiceDiscovery::Service Gateway/GatewayService/Service/CloudmapService GatewayGatewayServiceCloudmapService2AD5363B
[+] AWS::ElasticLoadBalancingV2::LoadBalancer Operator1/OperatorALB Operator1OperatorALB48B27F6F
[+] AWS::ElasticLoadBalancingV2::Listener Operator1/OperatorALB/HttpListener Operator1OperatorALBHttpListener7E164F9E
[+] AWS::ElasticLoadBalancingV2::TargetGroup Operator1/OperatorTargetGroup Operator1OperatorTargetGroup36D46053
[+] AWS::CertificateManager::Certificate Operator1/OperatorCertificate Operator1OperatorCertificate285CF019
[+] AWS::ElasticLoadBalancingV2::Listener Operator1/HttpsListener Operator1HttpsListener28C1B907
[+] AWS::IAM::Role Operator1/OperatorService/TaskDefinition/TaskRole Operator1OperatorServiceTaskDefinitionTaskRole08F077AB
[+] AWS::IAM::Policy Operator1/OperatorService/TaskDefinition/TaskRole/DefaultPolicy Operator1OperatorServiceTaskDefinitionTaskRoleDefaultPolicyF9E2864C
[+] AWS::ECS::TaskDefinition Operator1/OperatorService/TaskDefinition Operator1OperatorServiceTaskDefinitionAEA48F0E
[+] AWS::Logs::LogGroup Operator1/OperatorService/TaskDefinition/LogRouter/LogGroup Operator1OperatorServiceTaskDefinitionLogRouterLogGroup957ABA16
[+] AWS::IAM::Role Operator1/OperatorService/TaskDefinition/ExecutionRole Operator1OperatorServiceTaskDefinitionExecutionRole966CBD29
[+] AWS::IAM::Policy Operator1/OperatorService/TaskDefinition/ExecutionRole/DefaultPolicy Operator1OperatorServiceTaskDefinitionExecutionRoleDefaultPolicy2244F824
[+] AWS::Logs::LogGroup Operator1/OperatorService/TaskDefinition/DatadogAgent/LogGroup Operator1OperatorServiceTaskDefinitionDatadogAgentLogGroupDECB6B89
[+] AWS::ECS::Service Operator1/OperatorService/Service/Service Operator1OperatorService4BD8EC7A
[+] AWS::ServiceDiscovery::Service Operator1/OperatorService/Service/CloudmapService Operator1OperatorServiceCloudmapService3FA11CED
[+] AWS::ApplicationAutoScaling::ScalableTarget Operator1/OperatorService/Service/TaskCount/Target Operator1OperatorServiceTaskCountTarget42E0D70F
[+] AWS::ApplicationAutoScaling::ScalingPolicy Operator1/OperatorService/Service/TaskCount/Target/CpuScaling Operator1OperatorServiceTaskCountTargetCpuScalingC8EDA2ED
[+] AWS::ApplicationAutoScaling::ScalingPolicy Operator1/OperatorService/Service/TaskCount/Target/MemoryScaling Operator1OperatorServiceTaskCountTargetMemoryScalingEDD43E61
[+] AWS::ElasticLoadBalancingV2::LoadBalancer Operator2/OperatorALB Operator2OperatorALB801FBC0D
[+] AWS::ElasticLoadBalancingV2::Listener Operator2/OperatorALB/HttpListener Operator2OperatorALBHttpListener88E8FA10
[+] AWS::ElasticLoadBalancingV2::TargetGroup Operator2/OperatorTargetGroup Operator2OperatorTargetGroup06EDF955
[+] AWS::CertificateManager::Certificate Operator2/OperatorCertificate Operator2OperatorCertificateE1EBB33E
[+] AWS::ElasticLoadBalancingV2::Listener Operator2/HttpsListener Operator2HttpsListenerF6C9B4AF
[+] AWS::IAM::Role Operator2/OperatorService/TaskDefinition/TaskRole Operator2OperatorServiceTaskDefinitionTaskRole8CC54B00
[+] AWS::IAM::Policy Operator2/OperatorService/TaskDefinition/TaskRole/DefaultPolicy Operator2OperatorServiceTaskDefinitionTaskRoleDefaultPolicy8B73E7F0
[+] AWS::ECS::TaskDefinition Operator2/OperatorService/TaskDefinition Operator2OperatorServiceTaskDefinitionA9A130FD
[+] AWS::Logs::LogGroup Operator2/OperatorService/TaskDefinition/LogRouter/LogGroup Operator2OperatorServiceTaskDefinitionLogRouterLogGroup9CBC0525
[+] AWS::IAM::Role Operator2/OperatorService/TaskDefinition/ExecutionRole Operator2OperatorServiceTaskDefinitionExecutionRoleF4FE8006
[+] AWS::IAM::Policy Operator2/OperatorService/TaskDefinition/ExecutionRole/DefaultPolicy Operator2OperatorServiceTaskDefinitionExecutionRoleDefaultPolicyAF1FC4B1
[+] AWS::Logs::LogGroup Operator2/OperatorService/TaskDefinition/DatadogAgent/LogGroup Operator2OperatorServiceTaskDefinitionDatadogAgentLogGroup89260D76
[+] AWS::ECS::Service Operator2/OperatorService/Service/Service Operator2OperatorServiceD52AD155
[+] AWS::ServiceDiscovery::Service Operator2/OperatorService/Service/CloudmapService Operator2OperatorServiceCloudmapServiceDBA2B094
[+] AWS::ApplicationAutoScaling::ScalableTarget Operator2/OperatorService/Service/TaskCount/Target Operator2OperatorServiceTaskCountTargetE0976D30
[+] AWS::ApplicationAutoScaling::ScalingPolicy Operator2/OperatorService/Service/TaskCount/Target/CpuScaling Operator2OperatorServiceTaskCountTargetCpuScalingCF887EF8
[+] AWS::ApplicationAutoScaling::ScalingPolicy Operator2/OperatorService/Service/TaskCount/Target/MemoryScaling Operator2OperatorServiceTaskCountTargetMemoryScalingCBF5C875
[+] AWS::IAM::Role Challenger/ChallengerService/TaskDefinition/TaskRole ChallengerChallengerServiceTaskDefinitionTaskRoleA49A8704
[+] AWS::IAM::Policy Challenger/ChallengerService/TaskDefinition/TaskRole/DefaultPolicy ChallengerChallengerServiceTaskDefinitionTaskRoleDefaultPolicyC09C710C
[+] AWS::ECS::TaskDefinition Challenger/ChallengerService/TaskDefinition ChallengerChallengerServiceTaskDefinition45482A04
[+] AWS::Logs::LogGroup Challenger/ChallengerService/TaskDefinition/LogRouter/LogGroup ChallengerChallengerServiceTaskDefinitionLogRouterLogGroup93B3B50D
[+] AWS::IAM::Role Challenger/ChallengerService/TaskDefinition/ExecutionRole ChallengerChallengerServiceTaskDefinitionExecutionRole31F083DE
[+] AWS::IAM::Policy Challenger/ChallengerService/TaskDefinition/ExecutionRole/DefaultPolicy ChallengerChallengerServiceTaskDefinitionExecutionRoleDefaultPolicy945BC910
[+] AWS::Logs::LogGroup Challenger/ChallengerService/TaskDefinition/DatadogAgent/LogGroup ChallengerChallengerServiceTaskDefinitionDatadogAgentLogGroup56F0EE07
[+] AWS::ECS::Service Challenger/ChallengerService/Service/Service ChallengerChallengerService08666FD7
[+] AWS::ServiceDiscovery::Service Challenger/ChallengerService/Service/CloudmapService ChallengerChallengerServiceCloudmapService91C31B6F
Outputs
[+] Output Gateway/LoadBalancerDNS GatewayLoadBalancerDNS57B83318: {"Description":"Gateway Load Balancer DNS","Value":{"Fn::GetAtt":["GatewayGatewayALBA71383DA","DNSName"]}}
[+] Output Gateway/LoadBalancerArn GatewayLoadBalancerArnF706BD61: {"Description":"Gateway Load Balancer ARN","Value":{"Ref":"GatewayGatewayALBA71383DA"}}
[+] Output Operator1/Operator1LoadBalancerDNS Operator1Operator1LoadBalancerDNS2A0069C0: {"Description":"Operator-1 Load Balancer DNS","Value":{"Fn::GetAtt":["Operator1OperatorALB48B27F6F","DNSName"]}}
[+] Output Operator1/Operator1Port Operator1Operator1PortA839B0E4: {"Description":"Operator-1 RPC Port","Value":"9003"}
[+] Output Operator2/Operator2LoadBalancerDNS Operator2Operator2LoadBalancerDNS51F25A8C: {"Description":"Operator-2 Load Balancer DNS","Value":{"Fn::GetAtt":["Operator2OperatorALB801FBC0D","DNSName"]}}
[+] Output Operator2/Operator2Port Operator2Operator2Port658DF800: {"Description":"Operator-2 RPC Port","Value":"9004"}
[+] Output ClusterArn ClusterArn: {"Description":"ECS Cluster ARN","Value":{"Fn::Join":["",["arn:",{"Ref":"AWS::Partition"},":ecs:us-west-2:701849097212:cluster/arn:aws:ecs:us-west-2:701849097212:cluster/protocol-cluster-stagef"]]},"Export":{"Name":"NewtonAVS-Sepolia-Stagef-ClusterArn"}}
[+] Output GatewayLoadBalancerDNS GatewayLoadBalancerDNS: {"Description":"Gateway Load Balancer DNS","Value":{"Fn::GetAtt":["GatewayGatewayALBA71383DA","DNSName"]},"Export":{"Name":"NewtonAVS-Sepolia-Stagef-GatewayALBDNS"}}
[+] Output Operator1LoadBalancerDNS Operator1LoadBalancerDNS: {"Description":"Operator-1 Load Balancer DNS","Value":{"Fn::GetAtt":["Operator1OperatorALB48B27F6F","DNSName"]},"Export":{"Name":"NewtonAVS-Sepolia-Stagef-Operator1ALBDNS"}}
[+] Output Operator2LoadBalancerDNS Operator2LoadBalancerDNS: {"Description":"Operator-2 Load Balancer DNS","Value":{"Fn::GetAtt":["Operator2OperatorALB801FBC0D","DNSName"]},"Export":{"Name":"NewtonAVS-Sepolia-Stagef-Operator2ALBDNS"}}
✨ Number of stacks with differences: 4
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment