@aws-cdk: cdk import always reports pending changes with lambda function w/alias #31677
Closed
1 task
Assignees
Labels
@aws-cdk/aws-lambda
Related to AWS Lambda
bug
This issue is a bug.
effort/small
Small work item – less than a day of effort
p1
package/tools
Related to AWS CDK Tools or CLI
Comments
perpil
added
bug
khushail
added
investigating
|
Hi @perpil , thanks for reaching out. The issue is reproducible. Even without using the alias, I am getting the error display- 
Checking the code how this ResourceImporter class - aws-cdk/packages/aws-cdk/lib/import.ts Line 62 in 4ada3ea checks for the importable resrources and does the needful by invoking this function- aws-cdk/packages/aws-cdk/lib/import.ts Line 173 in 4ada3ea public async discoverImportableResources(allowNonAdditions = false): Promise<DiscoverImportableResourcesResult> {
const currentTemplate = await this.currentTemplate();
const diff = cfnDiff.fullDiff(currentTemplate, this.stack.template);
// Ignore changes to CDKMetadata
const resourceChanges = Object.entries(diff.resources.changes)
.filter(([logicalId, _]) => logicalId !== 'CDKMetadata');
// Split the changes into additions and non-additions. Imports only make sense
// for newly-added resources.
const nonAdditions = resourceChanges.filter(([_, dif]) => !dif.isAddition);
const additions = resourceChanges.filter(([_, dif]) => dif.isAddition);
if (nonAdditions.length) {
const offendingResources = nonAdditions.map(([logId, _]) => this.describeResource(logId));
if (allowNonAdditions) {
warning(`Ignoring updated/deleted resources (--force): ${offendingResources.join(', ')}`);
} else {
throw new Error('No resource updates or deletes are allowed on import operation. Make sure to resolve pending changes ' +
`to existing resources, before attempting an import. Updated/deleted resources: ${offendingResources.join(', ')} (--force to override)`);
}
}so if there are changes which are to be ignored by setting Marking this as P2 as the workaround exists ( running command with --force) , which means it might not be immediately addressed by the team but would be on their radar. |
khushail
added
effort/small
1 task
1 task
1 task
mergify bot
pushed a commit
that referenced
this issue
Feb 10, 2025
…ls (#33322) ### Issues #31999 #31677 Closes #31999 #31677 ### Reason for this change `cdk import` reports changes in the stack when none are present, for NodeJS Lambda functions. This results in the command failing. The only way to work around this is to use the --force flag, which replaces stack resources. This is not ideal as it overwrites existing resources that may contain data, and is just generally unnecessary. ### Description of changes I added `cdk import` to a configuration that determines which CLI commands bundle code. Before this change, `cdk import` skipped code bundling. This is fine for regular Lambda functions that don't rely on bundling. However, NodeJSFunction does. The original implementation of skipping bundling for certain CLI commands was introduced via Issue #9540. `cdk import` was introduced two years later in PR #17666. ### Describe any new or updated permissions being added No permissions changes. ### Description of how you validated changes I added an integration test in `packages/@aws-cdk-testing/framework-integ/test/aws-lambda-nodejs/test/integ.nodejs.build.images.ts`. <img width="757" alt="Screenshot 2025-02-06 at 17 10 41" src="https://github.com/user-attachments/assets/f7b3939f-240c-4021-b0ad-fd7e423e7c09" /> The test ensures that NodeJSFunction Lambdas are always bundled. I will add a canary in a follow-up PR to ensure that new CLI commands are explicitly determined to either need or not need bundling. I manually validated changes: 1. Created an S3 bucket: `iankhou-1738867338384` 2. Ran `cdk synth`, `cdk deploy` on a stack with a NodeJSFunction, and without an S3 bucket 3. Added code that initializes an S3 bucket and ran `cdk import` Output and console: <img width="745" alt="Screenshot 2025-02-06 at 13 45 52" src="https://github.com/user-attachments/assets/c5e4b9ef-ae84-46a4-9b37-a1f58532a00e" /> <img width="1015" alt="Screenshot 2025-02-06 at 13 45 08" src="https://github.com/user-attachments/assets/10298665-281c-4fed-a32b-5c4fbb917f92" /> ### Checklist - [X] My code adheres to the [CONTRIBUTING GUIDE](https://github.com/aws/aws-cdk/blob/main/CONTRIBUTING.md) and [DESIGN GUIDELINES](https://github.com/aws/aws-cdk/blob/main/docs/DESIGN_GUIDELINES.md) ---- *By submitting this pull request, I confirm that my contribution is made under the terms of the Apache-2.0 license*
|
Fixed in #33322 |
|
Comments on closed issues and PRs are hard for our team to see. |
Sign up for free
to subscribe to this conversation on GitHub.
Already have an account?
Sign in.
Describe the bug
When using a Lambda NodeJsFunction with an alias and a function url attached to it,
cdk importalways reports pending changes even when no changes exist.Regression Issue
Last Known Working CDK Version
No response
Expected Behavior
Running
cdk importwhen there are no changes to your lambda function should report no pending changes that need to be resolved on existing resources.Current Behavior
Running
cdk deploythencdk importalways reports resource updates, when no resources are updated.Reproduction Steps
Deploy this stack with
cdk deployRun
cdk importThe cdk template is located here
Possible Solution
Using
cdk import --forceworks, but shouldn't be necessary.Additional Information/Context
No response
CDK CLI Version
2.160.0 (build 7a8ae02)
Framework Version
2.160.0
Node.js Version
20.13.1
OS
MacOS Sonoma 14.6.1
Language
TypeScript
Language Version
No response
Other information
No response
The text was updated successfully, but these errors were encountered: