Skip to content

feat(integ-runner): add --role-arn CLI option to override CFN role#1541

Merged
aws-cdk-automation merged 1 commit into
mainfrom
integ-cli-set-role
May 21, 2026
Merged

feat(integ-runner): add --role-arn CLI option to override CFN role#1541
aws-cdk-automation merged 1 commit into
mainfrom
integ-cli-set-role

Conversation

@Abogical
Copy link
Copy Markdown
Member

@Abogical Abogical commented May 21, 2026
edited
Loading

Add a --role-arn CLI flag to integ-runner that overrides the CloudFormation execution and deploy role for deploy, destroy, and watch operations.

The CLI flag takes precedence over any roleArn set in the integ manifest via cdkCommandOptions.destroy.args.roleArn.

This is helpful in cases where we want to use an Admin role different from the CDK bootstrap role. This is helpful in cases where we clean up accounts and the bootstrap role itself is deleted, leading to CFN stacks that cannot be deleted without that role by default.

Checklist

  • This change contains a major version upgrade for a dependency and I confirm all breaking changes are addressed
    • Release notes for the new version:

By submitting this pull request, I confirm that my contribution is made under the terms of the Apache-2.0 license

@Abogical
feat(integ-runner): add --role-arn CLI option to override CFN executi…
c90def2 
…on role

Add a `--role-arn` CLI flag to `integ-runner` that overrides the
CloudFormation execution role for deploy, destroy, and watch operations.

The CLI flag takes precedence over any `roleArn` set in the integ
manifest via `cdkCommandOptions.destroy.args.roleArn`.

Closes cdklabs/cdk-ops#5147
@github-actions github-actions Bot added the p2 label May 21, 2026
@aws-cdk-automation aws-cdk-automation requested a review from a team May 21, 2026 12:52
@github-actions
Copy link
Copy Markdown
Contributor

github-actions Bot commented May 21, 2026

Dependency Review

✅ No vulnerabilities or license issues or OpenSSF Scorecard issues found.

Scanned Files

None

@codecov-commenter
Copy link
Copy Markdown

codecov-commenter commented May 21, 2026

Codecov Report

✅ All modified and coverable lines are covered by tests.
✅ Project coverage is 88.18%. Comparing base (bd58d4d) to head (c90def2).

Additional details and impacted files 
@@            Coverage Diff             @@
##             main    #1541      +/-   ##
==========================================
+ Coverage   88.16%   88.18%   +0.01%     
==========================================
  Files          76       76              
  Lines       10839    10839              
  Branches     1494     1493       -1     
==========================================
+ Hits         9556     9558       +2     
+ Misses       1255     1253       -2     
  Partials       28       28
Flag Coverage Δ
suite.unit 88.18% <ø> (+0.01%) ⬆️

Flags with carried forward coverage won't be shown. Click here to find out more.

☔ View full report in Codecov by Sentry.
📢 Have feedback on the report? Share it here.

🚀 New features to boost your workflow:
  • ❄️ Test Analytics: Detect flaky tests, report on failures, and find test suite problems.
  • 📦 JS Bundle Analysis: Save yourself from yourself by tracking and limiting bundle sizes in JS merges.

@aws-cdk-automation aws-cdk-automation added this pull request to the merge queue May 21, 2026
Merged via the queue into main with commit 527d141 May 21, 2026
51 checks passed
@aws-cdk-automation aws-cdk-automation deleted the integ-cli-set-role branch May 21, 2026 13:13
@Abogical Abogical mentioned this pull request May 21, 2026
Draft
1 task
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

@mrgrain mrgrain mrgrain approved these changes

Assignees

No one assigned

Labels

p2

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

4 participants

@Abogical @codecov-commenter @mrgrain @aws-cdk-automation