Merge branch 'aws:master' into master

Author: laileni-aws

package-lock.json

@@ -0,0 +1,5 @@
+{
+	"date": "2025-10-22",
+	"version": "1.101.0",
+	"entries": []
+}

packages/amazonq/.changes/1.101.0.json

@@ -1,3 +1,7 @@
+## 1.101.0 2025-10-22
+
+- Miscellaneous non-user-facing changes
+
 ## 1.100.0 2025-10-16
 
 - Miscellaneous non-user-facing changes

packages/amazonq/CHANGELOG.md

@@ -2,7 +2,7 @@
     "name": "amazon-q-vscode",
     "displayName": "Amazon Q",
     "description": "The most capable generative AI–powered assistant for software development.",
-    "version": "1.101.0-SNAPSHOT",
+    "version": "1.102.0-SNAPSHOT",
     "extensionKind": [
         "workspace"
     ],
@@ -1387,26 +1387,61 @@
                     "fontCharacter": "\\f1e0"
                 }
             },
-            "aws-schemas-registry": {
+            "aws-sagemakerunifiedstudio-catalog": {
                 "description": "AWS Contributed Icon",
                 "default": {
                     "fontPath": "./resources/fonts/aws-toolkit-icons.woff",
                     "fontCharacter": "\\f1e1"
                 }
             },
-            "aws-schemas-schema": {
+            "aws-sagemakerunifiedstudio-spaces": {
                 "description": "AWS Contributed Icon",
                 "default": {
                     "fontPath": "./resources/fonts/aws-toolkit-icons.woff",
                     "fontCharacter": "\\f1e2"
                 }
             },
-            "aws-stepfunctions-preview": {
+            "aws-sagemakerunifiedstudio-spaces-dark": {
                 "description": "AWS Contributed Icon",
                 "default": {
                     "fontPath": "./resources/fonts/aws-toolkit-icons.woff",
                     "fontCharacter": "\\f1e3"
                 }
+            },
+            "aws-sagemakerunifiedstudio-symbol-int": {
+                "description": "AWS Contributed Icon",
+                "default": {
+                    "fontPath": "./resources/fonts/aws-toolkit-icons.woff",
+                    "fontCharacter": "\\f1e4"
+                }
+            },
+            "aws-sagemakerunifiedstudio-table": {
+                "description": "AWS Contributed Icon",
+                "default": {
+                    "fontPath": "./resources/fonts/aws-toolkit-icons.woff",
+                    "fontCharacter": "\\f1e5"
+                }
+            },
+            "aws-schemas-registry": {
+                "description": "AWS Contributed Icon",
+                "default": {
+                    "fontPath": "./resources/fonts/aws-toolkit-icons.woff",
+                    "fontCharacter": "\\f1e6"
+                }
+            },
+            "aws-schemas-schema": {
+                "description": "AWS Contributed Icon",
+                "default": {
+                    "fontPath": "./resources/fonts/aws-toolkit-icons.woff",
+                    "fontCharacter": "\\f1e7"
+                }
+            },
+            "aws-stepfunctions-preview": {
+                "description": "AWS Contributed Icon",
+                "default": {
+                    "fontPath": "./resources/fonts/aws-toolkit-icons.woff",
+                    "fontCharacter": "\\f1e8"
+                }
             }
         },
         "walkthroughs": [

packages/amazonq/package.json

@@ -476,7 +476,8 @@
     "AWS.toolkit.lambda.walkthrough.title": "Get started building your application",
     "AWS.toolkit.lambda.walkthrough.description": "Your quick guide to build an application visually, iterate locally, and deploy to the cloud!",
     "AWS.toolkit.lambda.walkthrough.toolInstall.title": "Complete installation",
-    "AWS.toolkit.lambda.walkthrough.toolInstall.description": "Manage your AWS services and resources with the AWS Command Line Interface (AWS CLI). \n\n[Install AWS CLI](command:aws.toolkit.installAWSCLI)\n\nBuild locally, invoke, and deploy your functions with the Serverless Application Model (SAM) CLI. \n\n[Install SAM CLI](command:aws.toolkit.installSAMCLI)\n\nDocker is an optional, third party tool that assists with local AWS Lambda runtime emulation. Docker is required to invoke Lambda functions on your local machine. \n\n[Install Docker (optional)](command:aws.toolkit.installDocker)\n\nEmulate your AWS cloud services locally with LocalStack to streamline testing in VS Code and CI environments. [Learn more](https://docs.localstack.cloud/aws/). \n\n[Install LocalStack (optional)](command:aws.toolkit.installLocalStack)",
+    "AWS.toolkit.lambda.walkthrough.toolInstall.description.windows": "Manage your AWS services and resources with the AWS Command Line Interface (AWS CLI). \n\n[Install AWS CLI](command:aws.toolkit.installAWSCLI)\n\nBuild locally, invoke, and deploy your functions with the Serverless Application Model (SAM) CLI. \n\n[Install SAM CLI](command:aws.toolkit.installSAMCLI)\n\nDocker is an optional, third party tool that assists with local AWS Lambda runtime emulation. Docker is required to invoke Lambda functions on your local machine. \n\n[Install Docker (optional)](command:aws.toolkit.installDocker)\n\nEmulate your AWS cloud services locally with LocalStack to streamline testing in VS Code and CI environments. [Learn more](https://docs.localstack.cloud/aws/). \n\n[Install LocalStack (optional)](command:aws.toolkit.installLocalStack)",
+    "AWS.toolkit.lambda.walkthrough.toolInstall.description": "Manage your AWS services and resources with the AWS Command Line Interface (AWS CLI). \n\n[Install AWS CLI](command:aws.toolkit.installAWSCLI)\n\nBuild locally, invoke, and deploy your functions with the Serverless Application Model (SAM) CLI. \n\n[Install SAM CLI](command:aws.toolkit.installSAMCLI)\n\nDocker is an optional, third party tool that assists with local AWS Lambda runtime emulation. Docker is required to invoke Lambda functions on your local machine. \n\n[Install Docker (optional)](command:aws.toolkit.installDocker)\n\nEmulate your AWS cloud services locally with LocalStack to streamline testing in VS Code and CI environments. [Learn more]((https://docs.localstack.cloud/aws/). \n\n[Install LocalStack (optional)](command:aws.toolkit.installLocalStack)\n\nFinch is an open source tool for local container development. Finch aims to help promote innovative upstream container projects  by making it easy to install and use them. [Learn more](https://runfinch.com/) \n\n[Install Finch (optional)](command:aws.toolkit.installFinch)",
     "AWS.toolkit.lambda.walkthrough.chooseTemplate.title": "Choose your application template",
     "AWS.toolkit.lambda.walkthrough.chooseTemplate.description": "Select a starter application, visually compose an application from scratch, open an existing application, or browse more application examples. \n\nInfrastructure Composer allows you to visually compose modern applications in the cloud. It will define the necessary permissions between resources when you drag a connection between them. \n\n[Initialize your project](command:aws.toolkit.lambda.initializeWalkthroughProject)",
     "AWS.toolkit.lambda.walkthrough.step1.title": "Iterate locally",

packages/core/package.nls.json

@@ -150,6 +150,9 @@ async function registerAppBuilderCommands(context: ExtContext): Promise<void> {
         Commands.register('aws.toolkit.installLocalStack', async () => {
             await installLocalStackExtension(source)
         }),
+        Commands.register('aws.toolkit.installFinch', async () => {
+            await getOrInstallCliWrapper('finch', source)
+        }),
         Commands.register('aws.toolkit.lambda.setWalkthroughToAPI', async () => {
             await setWalkthrough('API')
         }),

packages/core/src/awsService/appBuilder/activation.ts

@@ -1,5 +1,19 @@
 {
     "types": [
+        {
+            "name": "toolId",
+            "type": "string",
+            "description": "The tool being installed",
+            "allowedValues": [
+                "session-manager-plugin",
+                "dotnet-lambda-deploy",
+                "dotnet-deploy-cli",
+                "aws-cli",
+                "sam-cli",
+                "docker",
+                "finch"
+            ]
+        },
         {
             "name": "amazonQProfileRegion",
             "type": "string",

packages/core/src/shared/telemetry/vscodeTelemetry.json

@@ -55,7 +55,7 @@ interface Cli {
     exec?: string
 }
 
-export type AwsClis = Extract<ToolId, 'session-manager-plugin' | 'aws-cli' | 'sam-cli' | 'docker'>
+export type AwsClis = Extract<ToolId, 'session-manager-plugin' | 'aws-cli' | 'sam-cli' | 'docker' | 'finch'>
 
 /**
  * CLIs and their full filenames and download paths for their respective OSes
@@ -170,6 +170,21 @@ export const awsClis: { [cli in AwsClis]: Cli } = {
         manualInstallLink: 'https://docs.docker.com/desktop',
         exec: 'docker',
     },
+    // Currently Finch is available for MacOS and Linux; Windows support will be added if/when available
+    finch: {
+        command: {
+            unix: ['finch', path.join('/', 'usr', 'bin', 'finch'), path.join('/', 'usr', 'local', 'bin', 'finch')],
+        },
+        source: {
+            macos: {
+                x86: 'https://github.com/runfinch/finch/releases/download/v1.11.0/Finch-v1.11.0-x86_64.pkg',
+                arm: 'https://github.com/runfinch/finch/releases/download/v1.11.0/Finch-v1.11.0-aarch64.pkg',
+            },
+        },
+        name: 'Finch',
+        manualInstallLink: 'https://runfinch.com/docs/getting-started/installation/',
+        exec: 'finch',
+    },
 }
 
 /**
@@ -185,7 +200,7 @@ export async function installCli(
 ): Promise<string | never> {
     const cliToInstall = awsClis[cli]
     if (!cliToInstall) {
-        throw new InstallerError(`Invalid not found for CLI: ${cli}`)
+        throw new InstallerError(`Installer not found for CLI: ${cli}`)
     }
     let result: Result = 'Succeeded'
     let reason: string = ''
@@ -247,10 +262,11 @@ export async function installCli(
                 case 'aws-cli':
                 case 'sam-cli':
                 case 'docker':
+                case 'finch':
                     cliPath = await installGui(cli, tempDir, progress, timeout)
                     break
                 default:
-                    throw new InstallerError(`Invalid not found for CLI: ${cli}`)
+                    throw new InstallerError(`Installer not found for CLI: ${cli}`)
             }
         } finally {
             timeout.dispose()

packages/core/src/shared/utilities/cliUtils.ts

@@ -51,6 +51,11 @@ const scenarios: TestScenario[] = [
         platform: 'win32',
         shouldSucceed: true,
     },
+    {
+        toolID: 'finch',
+        platform: 'win32',
+        shouldSucceed: false,
+    },
     {
         toolID: 'aws-cli',
         platform: 'darwin',
@@ -66,6 +71,11 @@ const scenarios: TestScenario[] = [
         platform: 'darwin',
         shouldSucceed: true,
     },
+    {
+        toolID: 'finch',
+        platform: 'darwin',
+        shouldSucceed: true,
+    },
     {
         toolID: 'aws-cli',
         platform: 'linux',
@@ -81,6 +91,11 @@ const scenarios: TestScenario[] = [
         platform: 'linux',
         shouldSucceed: false,
     },
+    {
+        toolID: 'finch',
+        platform: 'linux',
+        shouldSucceed: false,
+    },
 ]
 
 describe('AppBuilder Walkthrough', function () {

packages/core/src/test/awsService/appBuilder/walkthrough.test.ts

@@ -17,14 +17,7 @@ import { assertTelemetry, closeAllEditors, getFetchStubWithResponse } from '../t
 import { AWSError } from 'aws-sdk'
 import { getTestWindow } from '../shared/vscode/window'
 import { SeverityLevel } from '../shared/vscode/message'
-import { cancel } from '../../shared/localizedText'
-import {
-    showScannedFilesMessage,
-    stopScanMessage,
-    CodeAnalysisScope,
-    monthlyLimitReachedNotification,
-    scansLimitReachedErrorMessage,
-} from '../../codewhisperer/models/constants'
+import { showScannedFilesMessage, CodeAnalysisScope } from '../../codewhisperer/models/constants'
 import * as model from '../../codewhisperer/models/model'
 import * as errors from '../../shared/errors'
 import * as timeoutUtils from '../../shared/utilities/timeoutUtils'
@@ -124,70 +117,6 @@ describe('startSecurityScan', function () {
         })
     })
 
-    it('Should stop security scan for project scans when confirmed', async function () {
-        getFetchStubWithResponse({ status: 200, statusText: 'testing stub' })
-        const securityScanRenderSpy = sinon.spy(diagnosticsProvider, 'initSecurityScanRender')
-        const securityScanStoppedErrorSpy = sinon.spy(model, 'CodeScanStoppedError')
-        const testWindow = getTestWindow()
-        testWindow.onDidShowMessage((message) => {
-            if (message.message === stopScanMessage) {
-                message.selectItem(startSecurityScan.stopScanButton)
-            }
-        })
-        model.codeScanState.setToRunning()
-        const scanPromise = startSecurityScan.startSecurityScan(
-            mockSecurityPanelViewProvider,
-            editor,
-            createClient(),
-            extensionContext,
-            CodeAnalysisScope.PROJECT,
-            false
-        )
-        await startSecurityScan.confirmStopSecurityScan(
-            model.codeScanState,
-            false,
-            CodeAnalysisScope.PROJECT,
-            undefined
-        )
-        await scanPromise
-        assert.ok(securityScanRenderSpy.notCalled)
-        assert.ok(securityScanStoppedErrorSpy.calledOnce)
-        const warnings = testWindow.shownMessages.filter((m) => m.severity === SeverityLevel.Warning)
-        assert.ok(warnings.map((m) => m.message).includes(stopScanMessage))
-    })
-
-    it('Should not stop security scan for project scans when not confirmed', async function () {
-        getFetchStubWithResponse({ status: 200, statusText: 'testing stub' })
-        const securityScanRenderSpy = sinon.spy(diagnosticsProvider, 'initSecurityScanRender')
-        const securityScanStoppedErrorSpy = sinon.spy(model, 'CodeScanStoppedError')
-        const testWindow = getTestWindow()
-        testWindow.onDidShowMessage((message) => {
-            if (message.message === stopScanMessage) {
-                message.selectItem(cancel)
-            }
-        })
-        model.codeScanState.setToRunning()
-        const scanPromise = startSecurityScan.startSecurityScan(
-            mockSecurityPanelViewProvider,
-            editor,
-            createClient(),
-            extensionContext,
-            CodeAnalysisScope.PROJECT,
-            false
-        )
-        await startSecurityScan.confirmStopSecurityScan(
-            model.codeScanState,
-            false,
-            CodeAnalysisScope.PROJECT,
-            undefined
-        )
-        await scanPromise
-        assert.ok(securityScanRenderSpy.calledOnce)
-        assert.ok(securityScanStoppedErrorSpy.notCalled)
-        const warnings = testWindow.shownMessages.filter((m) => m.severity === SeverityLevel.Warning)
-        assert.ok(warnings.map((m) => m.message).includes(stopScanMessage))
-    })
-
     it('Should stop security scan for auto file scans if setting is disabled', async function () {
         getFetchStubWithResponse({ status: 200, statusText: 'testing stub' })
         const securityScanRenderSpy = sinon.spy(diagnosticsProvider, 'initSecurityScanRender')
@@ -272,39 +201,6 @@ describe('startSecurityScan', function () {
         ])
     })
 
-    it('Should not cancel a project scan if a file scan has started', async function () {
-        getFetchStubWithResponse({ status: 200, statusText: 'testing stub' })
-        await model.CodeScansState.instance.setScansEnabled(true)
-
-        const scanPromise = startSecurityScan.startSecurityScan(
-            mockSecurityPanelViewProvider,
-            editor,
-            createClient(),
-            extensionContext,
-            CodeAnalysisScope.PROJECT,
-            false
-        )
-        await startSecurityScan.startSecurityScan(
-            mockSecurityPanelViewProvider,
-            editor,
-            createClient(),
-            extensionContext,
-            CodeAnalysisScope.FILE_AUTO,
-            false
-        )
-        await scanPromise
-        assertTelemetry('codewhisperer_securityScan', [
-            {
-                result: 'Succeeded',
-                codewhispererCodeScanScope: 'FILE_AUTO',
-            },
-            {
-                result: 'Succeeded',
-                codewhispererCodeScanScope: 'PROJECT',
-            },
-        ])
-    })
-
     it('Should handle failed scan job status', async function () {
         getFetchStubWithResponse({ status: 200, statusText: 'testing stub' })
 
@@ -330,36 +226,6 @@ describe('startSecurityScan', function () {
         })
     })
 
-    it('Should show notification when throttled for project scans', async function () {
-        getFetchStubWithResponse({ status: 200, statusText: 'testing stub' })
-        const mockClient = createClient()
-        mockClient.createCodeScan.throws({
-            code: 'ThrottlingException',
-            time: new Date(),
-            name: 'error name',
-            message: scansLimitReachedErrorMessage,
-        } satisfies AWSError)
-        sinon.stub(errors, 'isAwsError').returns(true)
-        const testWindow = getTestWindow()
-        await startSecurityScan.startSecurityScan(
-            mockSecurityPanelViewProvider,
-            editor,
-            mockClient,
-            extensionContext,
-            CodeAnalysisScope.PROJECT,
-            false
-        )
-
-        assert.ok(testWindow.shownMessages.map((m) => m.message).includes(monthlyLimitReachedNotification))
-        assertTelemetry('codewhisperer_securityScan', {
-            codewhispererCodeScanScope: 'PROJECT',
-            result: 'Failed',
-            reason: 'ThrottlingException',
-            reasonDesc: `ThrottlingException: Maximum com.amazon.aws.codewhisperer.StartCodeAnalysis reached for this month.`,
-            passive: false,
-        })
-    })
-
     it('Should set monthly quota exceeded when throttled for auto file scans', async function () {
         getFetchStubWithResponse({ status: 200, statusText: 'testing stub' })
         await model.CodeScansState.instance.setScansEnabled(true)