Iam-floyd

:warning: **Breaking changes:**

- All methods which add actions to a statement now are prefixed with `to`. For example the method `startInstances()` now is called `toStartInstances()`. The renaming was required to not conflict with reserved method names: In Java, methods cannot start with `get` as these are reserved for value getters.

- The method `allActions` no longer accepts regular expressions. Regular expressions must now be passed as strings: `allActions('/vpn/i')`. This was required as [JSII does not support regular expressions](https://github.com/aws/jsii/issues/1828).

**New actions:**

- ec2:CreateCarrierGateway
- ec2:DeleteCarrierGateway
- ec2:DescribeCarrierGateways
- route53resolver:AssociateResolverQueryLogConfig
- route53resolver:CreateResolverQueryLogConfig
- route53resolver:DeleteResolverQueryLogConfig
- route53resolver:DisassociateResolverQueryLogConfig
- route53resolver:GetResolverQueryLogConfig
- route53resolver:GetResolverQueryLogConfigAssociation
- route53resolver:GetResolverQueryLogConfigPolicy
- route53resolver:ListResolverQueryLogConfigAssociations
- route53resolver:ListResolverQueryLogConfigs
- route53resolver:PutResolverQueryLogConfigPolicy

**New actions:**

- kafka:DeleteConfiguration
- kafka:UpdateConfiguration

**New actions:**

- medialive:DescribeInputDeviceThumbnail

**New actions:**

- ivs:DeletePlaybackKeyPair
- ivs:GetPlaybackKeyPair
- ivs:ImportPlaybackKeyPair
- ivs:ListPlaybackKeyPairs

**New actions:**

- acm-pca:DeletePolicy
- acm-pca:GetPolicy
- acm-pca:PutPolicy

**New conditions:**

- iam:ResourceTag/${ tagKey }