diff --git a/.github/workflows/build.yml b/.github/workflows/build.yml
new file mode 100644
index 0000000..d3d7853
--- /dev/null
+++ b/.github/workflows/build.yml
@@ -0,0 +1,42 @@
+# This workflow will install Python dependencies, run tests and lint with a variety of Python versions
+# For more information see: https://help.github.com/actions/language-and-framework-guides/using-python-with-github-actions
+
+name: Build
+
+on:
+  push:
+    branches: [ develop ]
+  pull_request:
+    branches: [ develop ]
+
+  workflow_call: {}
+
+
+jobs:
+  build:
+    runs-on: ubuntu-latest
+    strategy:
+      fail-fast: false
+      matrix:
+        python-version: ["3.8", "3.9", "3.10", "3.11", "3.12", "3.12", "3.13"]
+
+    steps:
+    - uses: actions/checkout@v3
+    - name: Set up Python ${{ matrix.python-version }}
+      uses: actions/setup-python@v4
+      with:
+        python-version: ${{ matrix.python-version }}
+    - name: Install dependencies
+      run: |
+        python -m pip install --upgrade pip
+        pip install .
+        pip install -r requirements-test.txt
+    - name: Lint with flake8
+      run: |
+        # stop the build if there are Python syntax errors or undefined names
+        flake8 ecs_deploy tests --count --select=E9,F63,F7,F82 --show-source --statistics
+        # exit-zero treats all errors as warnings. The GitHub editor is 127 chars wide
+        flake8 ecs_deploy tests --count --exit-zero --max-complexity=10 --max-line-length=127 --statistics
+    - name: Test with pytest --cov ecs_deploy
+      run: |
+        pytest
diff --git a/.github/workflows/docker.yml b/.github/workflows/docker.yml
new file mode 100644
index 0000000..a2756dc
--- /dev/null
+++ b/.github/workflows/docker.yml
@@ -0,0 +1,47 @@
+name: Docker Hub
+
+on:
+  push:
+    branches:
+      - 'develop'
+      - 'master'
+    tags: 
+      - '*.*.*'
+    
+jobs:
+  build:
+    runs-on: ubuntu-latest
+
+
+    steps:
+      -
+        name: Checkout 
+        uses: actions/checkout@v3
+      -
+        name: Login to Docker Hub
+        uses: docker/login-action@v1
+        with:
+          username: fabfuel
+          password: ${{ secrets.DOCKER_HUB_ACCESS_TOKEN }}
+      -
+        name: Set up Docker Buildx
+        uses: docker/setup-buildx-action@v1
+      -
+        name: Build and push
+        uses: docker/build-push-action@v2
+        with:
+          context: .
+          file: ./Dockerfile
+          platforms: linux/amd64,linux/arm64
+          push: true
+          tags: fabfuel/ecs-deploy:${{ github.ref_name }}
+      -
+        name: "Build and push (tag: latest)"
+        if: github.ref == 'refs/heads/develop'
+        uses: docker/build-push-action@v2
+        with:
+          context: .
+          file: ./Dockerfile
+          platforms: linux/amd64,linux/arm64
+          push: true
+          tags: fabfuel/ecs-deploy:latest
diff --git a/.github/workflows/release.yml b/.github/workflows/release.yml
new file mode 100644
index 0000000..3f9cd6a
--- /dev/null
+++ b/.github/workflows/release.yml
@@ -0,0 +1,39 @@
+name: Release
+
+on:
+  push:
+    tags: [ '**' ]
+
+jobs:
+  build:
+    uses: ./.github/workflows/build.yml
+
+  release:
+    needs:
+      - build
+    runs-on: ubuntu-latest
+    permissions:
+      id-token: write
+      contents: read
+    strategy:
+      fail-fast: false
+
+    steps:
+      - uses: actions/checkout@v4
+      - name: Set up Python
+        uses: actions/setup-python@v5
+        with:
+          python-version: 3.12
+
+      - name: Install tools
+        run: |
+          pip install build twine
+
+      - name: Build project
+        run: python -m build
+
+      - name: Upload to PyPI
+        env:
+          TWINE_USERNAME: __token__
+          TWINE_PASSWORD: ${{ secrets.TWINE_API_KEY }}
+        run: twine upload dist/*
diff --git a/.travis.yml b/.travis.yml
deleted file mode 100644
index a0c7b60..0000000
--- a/.travis.yml
+++ /dev/null
@@ -1,13 +0,0 @@
-language: python
-python:
-  - "2.7"
-  - "3.5"
-  - "3.6"
-  - "3.7"
-  - "3.8"
-  - "3.9"
-install: pip install tox-travis
-script: tox
-after_script:
-    - pip install scrutinizer-ocular
-    - ocular --data-file ".coverage"
diff --git a/Dockerfile b/Dockerfile
index a282db7..fa3d669 100644
--- a/Dockerfile
+++ b/Dockerfile
@@ -1,4 +1,4 @@
-FROM python:3.8-alpine3.13
+FROM python:3.10-alpine
 
 ADD . /usr/src/app
 WORKDIR /usr/src/app
diff --git a/README.rst b/README.rst
index 43f8fc6..d0204d8 100644
--- a/README.rst
+++ b/README.rst
@@ -4,13 +4,10 @@ ECS Deploy
 .. image:: https://badge.fury.io/py/ecs-deploy.svg
     :target: https://badge.fury.io/py/ecs-deploy
 
-.. image:: https://travis-ci.com/fabfuel/ecs-deploy.svg?branch=develop
-    :target: https://travis-ci.com/github/fabfuel/ecs-deploy
+.. image:: https://github.com/fabfuel/ecs-deploy/actions/workflows/build.yml/badge.svg
+    :target: https://github.com/fabfuel/ecs-deploy/actions/workflows/build.yml
 
-.. image:: https://scrutinizer-ci.com/g/fabfuel/ecs-deploy/badges/coverage.png?b=develop
-    :target: https://scrutinizer-ci.com/g/fabfuel/ecs-deploy
-
-`ecs-deploy` simplifies deployments on Amazon ECS by providing a convinience CLI tool for complex actions, which are executed pretty often.
+`ecs-deploy` simplifies deployments on Amazon ECS by providing a convenience CLI tool for complex actions, which are executed pretty often.
 
 Key Features
 ------------
@@ -48,10 +45,13 @@ Update a task definition (without running or deploying)::
 Installation
 ------------
 
-The project is availably on PyPI. Simply run::
+The project is available on PyPI. Simply run::
 
     $ pip install ecs-deploy
 
+For [Homebrew](https://brew.sh/) users, you can also install [it](https://formulae.brew.sh/formula/ecs-deploy) via brew::
+
+    $ brew install ecs-deploy
 
 Run via Docker
 --------------
@@ -60,7 +60,7 @@ Instead of installing **ecs-deploy** locally, which requires a Python environmen
 Running **ecs-deploy** via Docker is easy as::
 
     docker run fabfuel/ecs-deploy:1.10.2
-    
+
 In this example, the stable version 1.10.2 is executed. Alternatively you can use Docker tags ``master`` or ``latest`` for the latest stable version or Docker tag ``develop`` for the newest development version of **ecs-deploy**.
 
 Please be aware, that when running **ecs-deploy** via Docker, the configuration - as described below - does not apply. You have to provide credentials and the AWS region via the command as attributes or environment variables::
@@ -83,7 +83,7 @@ AWS IAM
 -------
 
 If you are using **ecs-deploy** with a role or user account that does not have full AWS access, such as in a deploy script, you will
-need to use or create an IAM policy with the correct set of permissions in order for your deploys to succeed. One option is to use the 
+need to use or create an IAM policy with the correct set of permissions in order for your deploys to succeed. One option is to use the
 pre-specified ``AmazonECS_FullAccess`` (https://docs.aws.amazon.com/AmazonECS/latest/userguide/security-iam-awsmanpol.html#security-iam-awsmanpol-AmazonECS_FullAccess) policy. If you would prefer to create a role with a more minimal set of permissions,
 the following are required:
 
@@ -96,7 +96,7 @@ the following are required:
 * ``ecs:ListTaskDefinitions``
 * ``ecs:DescribeTaskDefinition``
 * ``ecs:DeregisterTaskDefinition``
- 
+
 If using custom IAM permissions, you will also need to set the ``iam:PassRole`` policy for each IAM role. See here https://docs.aws.amazon.com/IAM/latest/UserGuide/id_roles_use_passrole.html for more information.
 
 Note that not every permission is required for every action you can take in **ecs-deploy**. You may be able to adjust permissions based on your specific needs.
@@ -146,7 +146,7 @@ Deployment
 
 Simple Redeploy
 ===============
-To redeploy a service without any modifications, but pulling the most recent image versions, run the follwing command.
+To redeploy a service without any modifications, but pulling the most recent image versions, run the following command.
 This will duplicate the current task definition and cause the service to redeploy all running tasks.::
 
     $ ecs deploy my-cluster my-service
@@ -261,6 +261,22 @@ Instead of setting environment variables separately, you can pass a .env file pe
 
     $ ecs deploy my-cluster my-service --s3-env-file my-app arn:aws:s3:::my-ecs-environment/my-app.env
 
+Set secrets via .env files
+==============================
+Instead of setting secrets separately, you can pass a .env file per container to set all secrets at once.
+
+This will expect an env file format, but any values will be set as the `valueFrom` parameter in the secrets config.
+This value can be either the path or the full ARN of a secret in the AWS Parameter Store. For example, with a secrets.env
+file like the following:
+
+```
+SOME_SECRET=arn:aws:ssm:<aws region>:<aws account id>:parameter/KEY_OF_SECRET_IN_PARAMETER_STORE
+```
+
+$ ecs deploy my-cluster my-service --secret-env-file webserver env/secrets.env
+
+This will modify the **webserver** container definition and add or overwrite the environment variable `SOME_SECRET` with the value of the `KEY_OF_SECRET_IN_PARAMETER_STORE` in the AWS Parameter Store of the AWS Systems Manager.
+
 
 Set a docker label
 ===================
@@ -297,8 +313,8 @@ To change the command of a specific container, run the following command::
 
     $ ecs deploy my-cluster my-service --command webserver "nginx"
 
-This will modify the **webserver** container and change its command to "nginx". If you have 
-a command that requries arugments as well, then you can simply specify it like this as you would normally do:
+This will modify the **webserver** container and change its command to "nginx". If you have
+a command that requires arguments as well, then you can simply specify it like this as you would normally do:
 
     $ ecs deploy my-cluster my-service --command webserver "ngnix -c /etc/ngnix/ngnix.conf"
 
@@ -324,13 +340,15 @@ This will set the task role to "MySpecialEcsTaskRole".
 
 Set CPU and memory reservation
 ==============================
-- Set the `cpu` value for a task definition: :code:`--cpu <container_name> 0`.
-- Set the `memory` value (`hard limit`) for a task definition: :code:`--memory <container_name> 256`.
+- Set the `cpu` value for a task: :code:`--task-cpu 0`.
+- Set the `cpu` value for a task container: :code:`--cpu <container_name> 0`.
+- Set the `memory` value (`hard limit`) for a task: :code:`--task-memory 256`.
+- Set the `memory` value (`hard limit`) for a task container: :code:`--memory <container_name> 256`.
 - Set the `memoryreservation` value (`soft limit`) for a task definition: :code:`--memoryreservation <container_name> 256`.
 
 Set privileged or essential flags
 =================================
-- Set the `privliged` value for a task definition: :code:`--privileged <container_name> True|False`.
+- Set the `privileged` value for a task definition: :code:`--privileged <container_name> True|False`.
 - Set the `essential` value for a task definition: :code:`--essential <container_name> True|False`.
 
 Set logging configuration
@@ -377,7 +395,7 @@ Placeholder Container
 =====================
 - Add placeholder containers: :code:`--add-container <container_name>`.
 - To comply with the minimum requirements for a task definition, a placeholder container is set like this:
-    + The contaienr name is :code:`<container_name>`.
+    + The container name is :code:`<container_name>`.
     + The container image is :code:`PLACEHOLDER`.
     + The container soft limit is :code:`128`.
 - The idea is to set sensible values with the deployment.
@@ -423,6 +441,21 @@ This instructs ecs-deploy to wait for ECS to finish the deployment for the given
 
 To run a deployment without waiting for the successful or failed result at all, set ``--timeout`` to the value of ``-1``.
 
+
+Multi-Account Setup
+===================
+If you manage different environments of your system in multiple differnt AWS accounts, you can now easily assume a
+deployment role in the target account in which your ECS cluster is running. You only need to provide ``--account``
+with the AWS account id and ``--assume-role`` with the name of the role you want to assume in the target account.
+ecs-deploy automatically assumes this role and deploys inside your target account:
+
+Example::
+
+    $ ecs deploy my-cluster my-service --account 1234567890 --assume-role ecsDeployRole
+
+
+
+
 Scaling
 -------
 
@@ -500,7 +533,7 @@ Optionally you can provide additional information for the deployment:
 
 - ``--comment "New feature X"`` - comment to the deployment
 - ``--user john.doe`` - the name of the user who deployed with
-- ``--newrelic-revision 1.0.0`` - explicitly set the revison to use for the deployment
+- ``--newrelic-revision 1.0.0`` - explicitly set the revision to use for the deployment
 
 Note: If neither ``--tag`` nor ``--newrelic-revision`` are provided, the deployment will not be recorded.
 
diff --git a/ecs_deploy/__init__.py b/ecs_deploy/__init__.py
index f192018..248bfdd 100644
--- a/ecs_deploy/__init__.py
+++ b/ecs_deploy/__init__.py
@@ -1 +1 @@
-VERSION = '1.12.1'
+VERSION = '1.15.2'
diff --git a/ecs_deploy/cli.py b/ecs_deploy/cli.py
index d60a24a..679fe93 100644
--- a/ecs_deploy/cli.py
+++ b/ecs_deploy/cli.py
@@ -7,6 +7,7 @@
 import json
 import getpass
 from datetime import datetime, timedelta
+from botocore.exceptions import ClientError
 from ecs_deploy import VERSION
 from ecs_deploy.ecs import DeployAction, ScaleAction, RunAction, EcsClient, DiffAction, \
     TaskPlacementError, EcsError, UpdateAction, LAUNCH_TYPE_EC2, LAUNCH_TYPE_FARGATE
@@ -20,8 +21,8 @@ def ecs():  # pragma: no cover
     pass
 
 
-def get_client(access_key_id, secret_access_key, region, profile):
-    return EcsClient(access_key_id, secret_access_key, region, profile)
+def get_client(access_key_id, secret_access_key, region, profile, assume_account, assume_role):
+    return EcsClient(access_key_id, secret_access_key, region, profile, assume_account=assume_account, assume_role=assume_role)
 
 
 @click.command()
@@ -34,12 +35,15 @@ def get_client(access_key_id, secret_access_key, region, profile):
 @click.option('--cpu', type=(str, int), multiple=True, help='Overwrites the cpu value for a container: <container> <cpu>')
 @click.option('--memory', type=(str, int), multiple=True, help='Overwrites the memory value for a container: <container> <memory>')
 @click.option('--memoryreservation', type=(str, int), multiple=True, help='Overwrites the memory reservation value for a container: <container> <memoryreservation>')
+@click.option('--task-cpu', type=int, help='Overwrites the cpu value for a task: <cpu>')
+@click.option('--task-memory', type=int, help='Overwrites the memory value for a task: <memory>')
 @click.option('--privileged', type=(str, bool), multiple=True, help='Overwrites the privileged value for a container: <container> <privileged>')
 @click.option('--essential', type=(str, bool), multiple=True, help='Overwrites the essential value for a container: <container> <essential>')
 @click.option('-e', '--env', type=(str, str, str), multiple=True, help='Adds or changes an environment variable: <container> <name> <value>')
 @click.option('--env-file', type=(str, str), default=((None, None),), multiple=True, required=False, help='Load environment variables from .env-file: <container> <env file path>')
 @click.option('--s3-env-file', type=(str, str), multiple=True, required=False, help='Location of .env-file in S3 in ARN format (eg arn:aws:s3:::/bucket_name/object_name): <container> <S3 ARN>')
 @click.option('-s', '--secret', type=(str, str, str), multiple=True, help='Adds or changes a secret environment variable from the AWS Parameter Store (Not available for Fargate): <container> <name> <parameter name>')
+@click.option('--secrets-env-file', type=(str, str), default=((None, None),), multiple=True, required=False, help='Load secrets from .env-file: <container> <env file path>')
 @click.option('-d', '--docker-label', type=(str, str, str), multiple=True, help='Adds or changes a docker label: <container> <name> <value>')
 @click.option('-u', '--ulimit', type=(str, str, int, int), multiple=True, help='Adds or changes a ulimit variable in the container description (Not available for Fargate): <container> <ulimit name> <softlimit value> <hardlimit value>')
 @click.option('--system-control', type=(str, str, str), multiple=True, help='Adds or changes a system control variable in the container description (Not available for Fargate): <container> <namespace> <value>')
@@ -48,11 +52,14 @@ def get_client(access_key_id, secret_access_key, region, profile):
 @click.option('-l', '--log', type=(str, str, str, str), multiple=True, help='Adds or changes a log configuration in the container description (Not available for Fargate): <container> <log driver> <option name> <option value>')
 @click.option('-r', '--role', type=str, help='Sets the task\'s role ARN: <task role ARN>')
 @click.option('-x', '--execution-role', type=str, help='Sets the execution\'s role ARN: <execution role ARN>')
+@click.option('--runtime-platform', type=str, nargs=2, help='Overwrites runtimePlatform: <cpuArchitecture> <operatingSystemFamily>')
 @click.option('--task', type=str, help='Task definition to be deployed. Can be a task ARN or a task family with optional revision')
 @click.option('--region', required=False, help='AWS region (e.g. eu-central-1)')
 @click.option('--access-key-id', required=False, help='AWS access key id')
 @click.option('--secret-access-key', required=False, help='AWS secret access key')
 @click.option('--profile', required=False, help='AWS configuration profile name')
+@click.option('--account', help='Target AWS account id to deploy in')
+@click.option('--assume-role', help='AWS Role to assume in target account')
 @click.option('--timeout', required=False, default=300, type=int, help='Amount of seconds to wait for deployment before command fails (default: 300). To disable timeout (fire and forget) set to -1')
 @click.option('--ignore-warnings', is_flag=True, help='Do not fail deployment on warnings (port already in use or insufficient memory/CPU)')
 @click.option('--newrelic-apikey', required=False, help='New Relic API Key for recording the deployment. Can also be defined via environment variable NEW_RELIC_API_KEY')
@@ -78,21 +85,20 @@ def get_client(access_key_id, secret_access_key, region, profile):
 @click.option('--volume', type=(str, str), multiple=True, required=False, help='Set volume mapping from host to container in the task definition.')
 @click.option('--add-container', type=str, multiple=True, required=False, help='Add a placeholder container in the task definition.')
 @click.option('--remove-container', type=str, multiple=True, required=False, help='Remove a container from the task definition.')
-def deploy(cluster, service, tag, image, command, health_check, cpu, memory, memoryreservation, privileged, essential, env, env_file, s3_env_file, secret, ulimit, system_control, port, mount, log, role, execution_role, task, region, access_key_id, secret_access_key, profile, timeout, newrelic_apikey, newrelic_appid, newrelic_region, newrelic_revision, comment, user, ignore_warnings, diff, deregister, rollback, exclusive_env, exclusive_secrets, exclusive_s3_env_file, sleep_time, exclusive_ulimits, exclusive_system_controls, exclusive_ports, exclusive_mounts, volume, add_container, remove_container, slack_url, docker_label, exclusive_docker_labels, slack_service_match='.*'):
+def deploy(cluster, service, tag, image, command, health_check, cpu, memory, memoryreservation, task_cpu, task_memory, privileged, essential, env, env_file, s3_env_file, secret, secrets_env_file, ulimit, system_control, port, mount, log, role, execution_role, runtime_platform, task, region, access_key_id, secret_access_key, profile, account, assume_role, timeout, newrelic_apikey, newrelic_appid, newrelic_region, newrelic_revision, comment, user, ignore_warnings, diff, deregister, rollback, exclusive_env, exclusive_secrets, exclusive_s3_env_file, sleep_time, exclusive_ulimits, exclusive_system_controls, exclusive_ports, exclusive_mounts, volume, add_container, remove_container, slack_url, docker_label, exclusive_docker_labels, slack_service_match='.*'):
     """
     Redeploy or modify a service.
 
     \b
-    CLUSTER is the name of your cluster (e.g. 'my-custer') within ECS.
+    CLUSTER is the name of your cluster (e.g. 'my-cluster') within ECS.
     SERVICE is the name of your service (e.g. 'my-app') within ECS.
 
     When not giving any other options, the task definition will not be changed.
     It will just be duplicated, so that all container images will be pulled
     and redeployed.
     """
-
     try:
-        client = get_client(access_key_id, secret_access_key, region, profile)
+        client = get_client(access_key_id, secret_access_key, region, profile, account, assume_role)
         deployment = DeployAction(client, cluster, service)
 
         td = get_task_definition(deployment, task)
@@ -105,12 +111,14 @@ def deploy(cluster, service, tag, image, command, health_check, cpu, memory, mem
         td.set_cpu(**{key: value for (key, value) in cpu})
         td.set_memory(**{key: value for (key, value) in memory})
         td.set_memoryreservation(**{key: value for (key, value) in memoryreservation})
+        td.set_task_cpu(task_cpu)
+        td.set_task_memory(task_memory)
         td.set_privileged(**{key: value for (key, value) in privileged})
         td.set_essential(**{key: value for (key, value) in essential})
         td.set_environment(env, exclusive_env, env_file)
         td.set_docker_labels(docker_label, exclusive_docker_labels)
         td.set_s3_env_file(s3_env_file, exclusive_s3_env_file)
-        td.set_secrets(secret, exclusive_secrets)
+        td.set_secrets(secret, exclusive_secrets, secrets_env_file)
         td.set_ulimits(ulimit, exclusive_ulimits)
         td.set_system_controls(system_control, exclusive_system_controls)
         td.set_port_mappings(port, exclusive_ports)
@@ -118,6 +126,7 @@ def deploy(cluster, service, tag, image, command, health_check, cpu, memory, mem
         td.set_log_configurations(log)
         td.set_role_arn(role)
         td.set_execution_role_arn(execution_role)
+        td.set_runtime_platform(runtime_platform)
         td.set_volumes(volume)
 
         slack = SlackNotification(
@@ -160,7 +169,7 @@ def deploy(cluster, service, tag, image, command, health_check, cpu, memory, mem
 
         slack.notify_success(cluster, td.revision, service=service)
 
-    except (EcsError, NewRelicException) as e:
+    except (EcsError, NewRelicException, ClientError) as e:
         click.secho('%s\n' % str(e), fg='red', err=True)
         exit(1)
 
@@ -175,9 +184,12 @@ def deploy(cluster, service, tag, image, command, health_check, cpu, memory, mem
 @click.option('--cpu', type=(str, int), multiple=True, help='Overwrites the cpu value for a container: <container> <cpu>')
 @click.option('--memory', type=(str, int), multiple=True, help='Overwrites the memory value for a container: <container> <memory>')
 @click.option('--memoryreservation', type=(str, int), multiple=True, help='Overwrites the memory reservation value for a container: <container> <memoryreservation>')
+@click.option('--task-cpu', type=int, help='Overwrites the cpu value for a task: <cpu>')
+@click.option('--task-memory', type=int, help='Overwrites the memory value for a task: <memory>')
 @click.option('--privileged', type=(str, bool), multiple=True, help='Overwrites the memory reservation value for a container: <container> <memoryreservation>')
 @click.option('-e', '--env', type=(str, str, str), multiple=True, help='Adds or changes an environment variable: <container> <name> <value>')
 @click.option('-s', '--secret', type=(str, str, str), multiple=True, help='Adds or changes a secret environment variable from the AWS Parameter Store (Not available for Fargate): <container> <name> <parameter name>')
+@click.option('--secrets-env-file', type=(str, str), default=((None, None),), multiple=True, required=False, help='Load secrets from .env-file: <container> <env file path>')
 @click.option('-d', '--docker-label', type=(str, str, str), multiple=True, help='Adds or changes a docker label: <container> <name> <value>')
 @click.option('-u', '--ulimit', type=(str, str, int, int), multiple=True, help='Adds or changes a ulimit variable in the container description (Not available for Fargate): <container> <ulimit name> <softlimit value> <hardlimit value>')
 @click.option('--system-control', type=(str, str, str), multiple=True, help='Adds or changes a system control variable in the container description (Not available for Fargate): <container> <namespace> <value>')
@@ -198,6 +210,8 @@ def deploy(cluster, service, tag, image, command, health_check, cpu, memory, mem
 @click.option('--comment', required=False, help='Description/comment for recording the deployment')
 @click.option('--user', required=False, help='User who executes the deployment (used for recording)')
 @click.option('--profile', help='AWS configuration profile name')
+@click.option('--account', help='Target AWS account id to deploy in')
+@click.option('--assume-role', help='AWS Role to assume in target account')
 @click.option('--diff/--no-diff', default=True, help='Print what values were changed in the task definition')
 @click.option('--deregister/--no-deregister', default=True, help='Deregister or keep the old task definition (default: --deregister)')
 @click.option('--rollback/--no-rollback', default=False, help='Rollback to previous revision, if deployment failed (default: --no-rollback)')
@@ -212,17 +226,17 @@ def deploy(cluster, service, tag, image, command, health_check, cpu, memory, mem
 @click.option('--exclusive-ports', is_flag=True, default=False, help='Set the given port mappings exclusively and remove all other pre-existing port mappings from all containers')
 @click.option('--exclusive-mounts', is_flag=True, default=False, help='Set the given mount points exclusively and remove all other pre-existing mount points from all containers')
 @click.option('--volume', type=(str, str), multiple=True, required=False, help='Set volume mapping from host to container in the task definition.')
-def cron(cluster, task, rule, image, tag, command, cpu, memory, memoryreservation, privileged, env, env_file, s3_env_file, secret, ulimit, system_control, port, mount, log, role, execution_role, region, access_key_id, secret_access_key, newrelic_apikey, newrelic_appid, newrelic_region, newrelic_revision, comment, user, profile, diff, deregister, rollback, exclusive_env, exclusive_secrets, exclusive_s3_env_file, slack_url, slack_service_match, exclusive_ulimits, exclusive_system_controls, exclusive_ports, exclusive_mounts, volume, docker_label, exclusive_docker_labels):
+def cron(cluster, task, rule, image, tag, command, cpu, memory, memoryreservation, task_cpu, task_memory, privileged, env, env_file, s3_env_file, secret, secrets_env_file, ulimit, system_control, port, mount, log, role, execution_role, region, access_key_id, secret_access_key, newrelic_apikey, newrelic_appid, newrelic_region, newrelic_revision, comment, user, profile, account, assume_role, diff, deregister, rollback, exclusive_env, exclusive_secrets, exclusive_s3_env_file, slack_url, slack_service_match, exclusive_ulimits, exclusive_system_controls, exclusive_ports, exclusive_mounts, volume, docker_label, exclusive_docker_labels):
     """
     Update a scheduled task.
 
     \b
-    CLUSTER is the name of your cluster (e.g. 'my-custer') within ECS.
+    CLUSTER is the name of your cluster (e.g. 'my-cluster') within ECS.
     TASK is the name of your task definition (e.g. 'my-task') within ECS.
     RULE is the name of the rule to use the new task definition.
     """
     try:
-        client = get_client(access_key_id, secret_access_key, region, profile)
+        client = get_client(access_key_id, secret_access_key, region, profile, account, assume_role)
         action = RunAction(client, cluster)
 
         td = action.get_task_definition(task)
@@ -233,11 +247,13 @@ def cron(cluster, task, rule, image, tag, command, cpu, memory, memoryreservatio
         td.set_cpu(**{key: value for (key, value) in cpu})
         td.set_memory(**{key: value for (key, value) in memory})
         td.set_memoryreservation(**{key: value for (key, value) in memoryreservation})
+        td.set_task_cpu(task_cpu)
+        td.set_task_memory(task_memory)
         td.set_privileged(**{key: value for (key, value) in privileged})
         td.set_environment(env, exclusive_env, env_file)
         td.set_docker_labels(docker_label, exclusive_docker_labels)
         td.set_s3_env_file(s3_env_file, exclusive_s3_env_file)
-        td.set_secrets(secret, exclusive_secrets)
+        td.set_secrets(secret, exclusive_secrets, secrets_env_file)
         td.set_ulimits(ulimit, exclusive_ulimits)
         td.set_system_controls(system_control, exclusive_system_controls)
         td.set_port_mappings(port, exclusive_ports)
@@ -273,7 +289,7 @@ def cron(cluster, task, rule, image, tag, command, cpu, memory, memoryreservatio
         if deregister:
             deregister_task_definition(action, td)
 
-    except EcsError as e:
+    except (EcsError, ClientError) as e:
         click.secho('%s\n' % str(e), fg='red', err=True)
         exit(1)
 
@@ -287,19 +303,23 @@ def cron(cluster, task, rule, image, tag, command, cpu, memory, memoryreservatio
 @click.option('--env-file', type=(str, str), default=((None, None),), multiple=True, required=False, help='Load environment variables from .env-file')
 @click.option('--s3-env-file', type=(str, str), multiple=True, required=False, help='Location of .env-file in S3 in ARN format (eg arn:aws:s3:::/bucket_name/object_name')
 @click.option('-s', '--secret', type=(str, str, str), multiple=True, help='Adds or changes a secret environment variable from the AWS Parameter Store (Not available for Fargate): <container> <name> <parameter name>')
+@click.option('--secrets-env-file', type=(str, str), default=((None, None),), multiple=True, required=False, help='Load secrets from .env-file: <container> <env file path>')
 @click.option('-d', '--docker-label', type=(str, str, str), multiple=True, help='Adds or changes a docker label: <container> <name> <value>')
 @click.option('-r', '--role', type=str, help='Sets the task\'s role ARN: <task role ARN>')
+@click.option('--runtime-platform', type=str, nargs=2, help='Overwrites runtimePlatform: <cpuArchitecture> <operatingSystemFamily>')
 @click.option('--region', help='AWS region (e.g. eu-central-1)')
 @click.option('--access-key-id', help='AWS access key id')
 @click.option('--secret-access-key', help='AWS secret access key')
 @click.option('--profile', help='AWS configuration profile name')
+@click.option('--account', help='Target AWS account id to deploy in')
+@click.option('--assume-role', help='AWS Role to assume in target account')
 @click.option('--diff/--no-diff', default=True, help='Print what values were changed in the task definition')
 @click.option('--exclusive-env', is_flag=True, default=False, help='Set the given environment variables exclusively and remove all other pre-existing env variables from all containers')
 @click.option('--exclusive-secrets', is_flag=True, default=False, help='Set the given secrets exclusively and remove all other pre-existing secrets from all containers')
 @click.option('--exclusive-docker-labels', is_flag=True, default=False, help='Set the given docker labels exclusively and remove all other pre-existing docker-labels from all containers')
 @click.option('--exclusive-s3-env-file', is_flag=True, default=False, help='Set the given s3 env files exclusively and remove all other pre-existing s3 env files from all containers')
 @click.option('--deregister/--no-deregister', default=True, help='Deregister or keep the old task definition (default: --deregister)')
-def update(task, image, tag, command, env, env_file, s3_env_file, secret, role, region, access_key_id, secret_access_key, profile, diff, exclusive_env, exclusive_s3_env_file, exclusive_secrets, deregister, docker_label, exclusive_docker_labels):
+def update(task, image, tag, command, env, env_file, s3_env_file, secret, secrets_env_file, role, region, access_key_id, secret_access_key, profile, account, assume_role, diff, exclusive_env, exclusive_s3_env_file, exclusive_secrets, runtime_platform, deregister, docker_label, exclusive_docker_labels):
     """
     Update a task definition.
 
@@ -307,7 +327,7 @@ def update(task, image, tag, command, env, env_file, s3_env_file, secret, role,
     TASK is the name of your task definition family (e.g. 'my-task') within ECS.
     """
     try:
-        client = get_client(access_key_id, secret_access_key, region, profile)
+        client = get_client(access_key_id, secret_access_key, region, profile, account, assume_role)
         action = UpdateAction(client)
 
         td = action.get_task_definition(task)
@@ -317,9 +337,10 @@ def update(task, image, tag, command, env, env_file, s3_env_file, secret, role,
         td.set_commands(**{key: value for (key, value) in command})
         td.set_environment(env, exclusive_env, env_file)
         td.set_docker_labels(docker_label, exclusive_docker_labels)
-        td.set_secrets(secret, exclusive_secrets)
+        td.set_secrets(secret, exclusive_secrets, secrets_env_file)
         td.set_s3_env_file(s3_env_file, exclusive_s3_env_file)
         td.set_role_arn(role)
+        td.set_runtime_platform(runtime_platform)
 
         if diff:
             print_diff(td)
@@ -329,7 +350,7 @@ def update(task, image, tag, command, env, env_file, s3_env_file, secret, role,
         if deregister:
             deregister_task_definition(action, td)
 
-    except EcsError as e:
+    except (EcsError, ClientError) as e:
         click.secho('%s\n' % str(e), fg='red', err=True)
         exit(1)
 
@@ -342,20 +363,22 @@ def update(task, image, tag, command, env, env_file, s3_env_file, secret, role,
 @click.option('--access-key-id', help='AWS access key id')
 @click.option('--secret-access-key', help='AWS secret access key')
 @click.option('--profile', help='AWS configuration profile name')
+@click.option('--account', help='Target AWS account id to deploy in')
+@click.option('--assume-role', help='AWS Role to assume in target account')
 @click.option('--timeout', default=300, type=int, help='Amount of seconds to wait for deployment before command fails (default: 300). To disable timeout (fire and forget) set to -1')
 @click.option('--ignore-warnings', is_flag=True, help='Do not fail deployment on warnings (port already in use or insufficient memory/CPU)')
 @click.option('--sleep-time', default=1, type=int, help='Amount of seconds to wait between each check of the service (default: 1)')
-def scale(cluster, service, desired_count, access_key_id, secret_access_key, region, profile, timeout, ignore_warnings, sleep_time):
+def scale(cluster, service, desired_count, access_key_id, secret_access_key, region, profile, account, assume_role, timeout, ignore_warnings, sleep_time):
     """
     Scale a service up or down.
 
     \b
-    CLUSTER is the name of your cluster (e.g. 'my-custer') within ECS.
+    CLUSTER is the name of your cluster (e.g. 'my-cluster') within ECS.
     SERVICE is the name of your service (e.g. 'my-app') within ECS.
     DESIRED_COUNT is the number of tasks your service should run.
     """
     try:
-        client = get_client(access_key_id, secret_access_key, region, profile)
+        client = get_client(access_key_id, secret_access_key, region, profile, account, assume_role)
         scaling = ScaleAction(client, cluster, service)
         click.secho('Updating service')
         scaling.scale(desired_count)
@@ -373,7 +396,7 @@ def scale(cluster, service, desired_count, access_key_id, secret_access_key, reg
             sleep_time=sleep_time
         )
 
-    except EcsError as e:
+    except (EcsError, ClientError) as e:
         click.secho('%s\n' % str(e), fg='red', err=True)
         exit(1)
 
@@ -387,6 +410,7 @@ def scale(cluster, service, desired_count, access_key_id, secret_access_key, reg
 @click.option('--env-file', type=(str, str), default=((None, None),), multiple=True, required=False, help='Load environment variables from .env-file')
 @click.option('--s3-env-file', type=(str, str), multiple=True, required=False, help='Location of .env-file in S3 in ARN format (eg arn:aws:s3:::/bucket_name/object_name')
 @click.option('-s', '--secret', type=(str, str, str), multiple=True, help='Adds or changes a secret environment variable from the AWS Parameter Store (Not available for Fargate): <container> <name> <parameter name>')
+@click.option('--secrets-env-file', type=(str, str), default=((None, None),), multiple=True, required=False, help='Load secrets from .env-file: <container> <env file path>')
 @click.option('-d', '--docker-label', type=(str, str, str), multiple=True, help='Adds or changes a docker label: <container> <name> <value>')
 @click.option('--launchtype', type=click.Choice([LAUNCH_TYPE_EC2, LAUNCH_TYPE_FARGATE]), default=LAUNCH_TYPE_EC2, help='ECS Launch type (default: EC2)')
 @click.option('--subnet', type=str, multiple=True, help='A subnet ID to launch the task within. Required for launch type FARGATE (multiple values possible)')
@@ -397,21 +421,24 @@ def scale(cluster, service, desired_count, access_key_id, secret_access_key, reg
 @click.option('--access-key-id', help='AWS access key id')
 @click.option('--secret-access-key', help='AWS secret access key')
 @click.option('--profile', help='AWS configuration profile name')
+@click.option('--account', help='Target AWS account id to deploy in')
+@click.option('--assume-role', help='AWS Role to assume in target account')
 @click.option('--exclusive-env', is_flag=True, default=False, help='Set the given environment variables exclusively and remove all other pre-existing env variables from all containers')
+@click.option('--exclusive-secrets', is_flag=True, default=False, help='Set the given secrets exclusively and remove all other pre-existing secrets from all containers')
 @click.option('--exclusive-docker-labels', is_flag=True, default=False, help='Set the given docker labels exclusively and remove all other pre-existing docker-labels from all containers')
 @click.option('--exclusive-s3-env-file', is_flag=True, default=False, help='Set the given s3 env files exclusively and remove all other pre-existing s3 env files from all containers')
 @click.option('--diff/--no-diff', default=True, help='Print what values were changed in the task definition')
-def run(cluster, task, count, command, env, env_file, s3_env_file, secret, launchtype, subnet, securitygroup, public_ip, platform_version, region, access_key_id, secret_access_key, profile, exclusive_env, exclusive_s3_env_file, diff, docker_label, exclusive_docker_labels):
+def run(cluster, task, count, command, env, env_file, s3_env_file, secret, secrets_env_file, launchtype, subnet, securitygroup, public_ip, platform_version, region, access_key_id, secret_access_key, profile, account, assume_role, exclusive_env, exclusive_secrets, exclusive_s3_env_file, diff, docker_label, exclusive_docker_labels):
     """
     Run a one-off task.
 
     \b
-    CLUSTER is the name of your cluster (e.g. 'my-custer') within ECS.
+    CLUSTER is the name of your cluster (e.g. 'my-cluster') within ECS.
     TASK is the name of your task definition (e.g. 'my-task') within ECS.
     COUNT is the number of tasks your service should run.
     """
     try:
-        client = get_client(access_key_id, secret_access_key, region, profile)
+        client = get_client(access_key_id, secret_access_key, region, profile, account, assume_role)
         action = RunAction(client, cluster)
 
         td = action.get_task_definition(task)
@@ -419,7 +446,7 @@ def run(cluster, task, count, command, env, env_file, s3_env_file, secret, launc
         td.set_environment(env, exclusive_env, env_file)
         td.set_docker_labels(docker_label, exclusive_docker_labels)
         td.set_s3_env_file(s3_env_file, exclusive_s3_env_file)
-        td.set_secrets(secret)
+        td.set_secrets(secret, exclusive_secrets, secrets_env_file)
 
         if diff:
             print_diff(td, 'Using task definition: %s' % task)
@@ -438,7 +465,7 @@ def run(cluster, task, count, command, env, env_file, s3_env_file, secret, launc
             click.secho('- %s' % started_task['taskArn'], fg='green')
         click.secho(' ')
 
-    except EcsError as e:
+    except (EcsError, ClientError) as e:
         click.secho('%s\n' % str(e), fg='red', err=True)
         exit(1)
 
@@ -451,7 +478,9 @@ def run(cluster, task, count, command, env, env_file, s3_env_file, secret, launc
 @click.option('--access-key-id', help='AWS access key id')
 @click.option('--secret-access-key', help='AWS secret access key')
 @click.option('--profile', help='AWS configuration profile name')
-def diff(task, revision_a, revision_b, region, access_key_id, secret_access_key, profile):
+@click.option('--account', help='Target AWS account id to deploy in')
+@click.option('--assume-role', help='AWS Role to assume in target account')
+def diff(task, revision_a, revision_b, region, access_key_id, secret_access_key, profile, account, assume_role):
     """
     Compare two task definition revisions.
 
@@ -461,7 +490,7 @@ def diff(task, revision_a, revision_b, region, access_key_id, secret_access_key,
     """
 
     try:
-        client = get_client(access_key_id, secret_access_key, region, profile)
+        client = get_client(access_key_id, secret_access_key, region, profile, account, assume_role)
         action = DiffAction(client)
 
         td_a = action.get_task_definition('%s:%s' % (task, revision_a))
@@ -484,14 +513,15 @@ def diff(task, revision_a, revision_b, region, access_key_id, secret_access_key,
                 for removed in difference[2]:
                     click.secho('    - %s: %s' % removed, fg='red')
 
-    except EcsError as e:
+    except (EcsError, ClientError) as e:
         click.secho('%s\n' % str(e), fg='red', err=True)
         exit(1)
 
 
 def wait_for_finish(action, timeout, title, success_message, failure_message,
                     ignore_warnings, sleep_time=1):
-    click.secho(title, nl=False)
+    click.secho(title)
+    start_timestamp = datetime.now()
     waiting_timeout = datetime.now() + timedelta(seconds=timeout)
     service = action.get_service()
     inspected_until = None
@@ -524,7 +554,8 @@ def wait_for_finish(action, timeout, title, success_message, failure_message,
         timeout=waiting
     )
 
-    click.secho('\n%s\n' % success_message, fg='green')
+    click.secho('\n%s' % success_message, fg='green')
+    click.secho('Duration: %s sec\n' % (datetime.now() - start_timestamp).seconds)
 
 
 def deploy_task_definition(deployment, task_definition, title, success_message,
@@ -614,7 +645,7 @@ def record_deployment(tag, api_key, app_id, region, revision, comment, user):
 
     if not revision or not api_key or not app_id:
         if api_key:
-            click.secho('Missing required parameters for recording New Relic deployment.' \
+            click.secho('Missing required parameters for recording New Relic deployment. '
                         'Please see https://github.com/fabfuel/ecs-deploy#new-relic')
         return False
 
diff --git a/ecs_deploy/ecs.py b/ecs_deploy/ecs.py
index 871c207..2fb4824 100644
--- a/ecs_deploy/ecs.py
+++ b/ecs_deploy/ecs.py
@@ -42,7 +42,14 @@ def read_env_file(container_name, file):
 
 class EcsClient(object):
     def __init__(self, access_key_id=None, secret_access_key=None,
-                 region=None, profile=None, session_token=None):
+                 region=None, profile=None, session_token=None, assume_account=None, assume_role=None):
+
+        if assume_account and assume_role:
+            access_key_id, secret_access_key, session_token = self.assume_role(access_key_id, secret_access_key, region,
+                                                                               profile, session_token, assume_account,
+                                                                               assume_role)
+            profile = None
+
         session = Session(aws_access_key_id=access_key_id,
                           aws_secret_access_key=secret_access_key,
                           aws_session_token=session_token,
@@ -51,6 +58,26 @@ def __init__(self, access_key_id=None, secret_access_key=None,
         self.boto = session.client(u'ecs')
         self.events = session.client(u'events')
 
+    @staticmethod
+    def assume_role(access_key_id=None, secret_access_key=None, region=None, profile=None, session_token=None,
+                    assume_account=None, assume_role=None):
+        role_arn = 'arn:aws:iam::%s:role/%s' % (assume_account, assume_role)
+        sts_session = Session(aws_access_key_id=access_key_id,
+                              aws_secret_access_key=secret_access_key,
+                              aws_session_token=session_token,
+                              region_name=region,
+                              profile_name=profile)
+        sts = sts_session.client('sts')
+        response = sts.assume_role(
+            RoleArn=role_arn,
+            RoleSessionName='ecsDeploy',
+        )
+        access_key_id = response['Credentials']['AccessKeyId']
+        secret_access_key = response['Credentials']['SecretAccessKey']
+        session_token = response['Credentials']['SessionToken']
+        return access_key_id, secret_access_key, session_token
+
+
     def describe_services(self, cluster_name, service_name):
         return self.boto.describe_services(
             cluster=cluster_name,
@@ -80,10 +107,21 @@ def describe_tasks(self, cluster_name, task_arns):
         return self.boto.describe_tasks(cluster=cluster_name, tasks=task_arns)
 
     def register_task_definition(self, family, containers, volumes, role_arn,
-                                 execution_role_arn, tags, additional_properties):
+                                 execution_role_arn, runtime_platform, tags,
+                                 cpu, memory,
+                                 additional_properties):
         if tags:
             additional_properties['tags'] = tags
 
+        if cpu:
+            additional_properties['cpu'] = cpu
+
+        if memory:
+            additional_properties['memory'] = memory
+
+        if runtime_platform:
+            additional_properties['runtimePlatform'] = runtime_platform
+
         return self.boto.register_task_definition(
             family=family,
             containerDefinitions=containers,
@@ -273,7 +311,7 @@ def get_warnings(self, since=None, until=None):
 
 class EcsTaskDefinition(object):
     def __init__(self, containerDefinitions, volumes, family, revision,
-                 status, taskDefinitionArn, requiresAttributes=None,
+                 status, taskDefinitionArn, runtimePlatform=None, cpu=None, memory=None, requiresAttributes=None,
                  taskRoleArn=None, executionRoleArn=None, compatibilities=None,
                  tags=None, registeredAt=None, deregisteredAt=None, registeredBy=None, **kwargs):
 
@@ -287,6 +325,9 @@ def __init__(self, containerDefinitions, volumes, family, revision,
         self.requires_attributes = requiresAttributes or {}
         self.role_arn = taskRoleArn or u''
         self.execution_role_arn = executionRoleArn or u''
+        self.runtime_platform = runtimePlatform or {}
+        self.cpu = cpu
+        self.memory = memory
         self.tags = tags
         self.additional_properties = kwargs
         self._diff = []
@@ -470,6 +511,20 @@ def set_health_checks(self, health_checks_list):
                 self._diff.append(diff)
                 container[u'healthCheck'] = new_health_checks
 
+    def set_runtime_platform(self, runtime_platform):
+        if runtime_platform:
+            new_runtime_platform = {}
+            new_runtime_platform[u'cpuArchitecture'] = runtime_platform[0]
+            new_runtime_platform[u'operatingSystemFamily'] = runtime_platform[1]
+            diff = EcsTaskDefinitionDiff(
+                container=None,
+                field=u'runtimePlatform',
+                value=new_runtime_platform,
+                old_value=self.runtime_platform
+            )
+            self.runtime_platform = new_runtime_platform
+            self._diff.append(diff)
+
     def set_cpu(self, **cpu):
         self.validate_container_options(**cpu)
         for container in self.containers:
@@ -484,7 +539,31 @@ def set_cpu(self, **cpu):
 
                 self._diff.append(diff)
                 container[u'cpu'] = new_cpu
-    
+
+    def set_task_cpu(self, task_cpu):
+        if task_cpu:
+            new_cpu = str(task_cpu)
+            diff = EcsTaskDefinitionDiff(
+                container=None,
+                field=u'cpu',
+                value=new_cpu,
+                old_value=self.cpu
+            )
+            self._diff.append(diff)
+            self.cpu = new_cpu
+
+    def set_task_memory(self, task_memory):
+        if task_memory:
+            new_memory = str(task_memory)
+            diff = EcsTaskDefinitionDiff(
+                container=None,
+                field=u'memory',
+                value=new_memory,
+                old_value=self.memory
+            )
+            self._diff.append(diff)
+            self.memory = new_memory
+
     def set_memory(self, **memory):
         self.validate_container_options(**memory)
         for container in self.containers:
@@ -498,7 +577,7 @@ def set_memory(self, **memory):
                 )
                 self._diff.append(diff)
                 container[u'memory'] = new_memory
-    
+
     def set_memoryreservation(self, **memoryreservation):
         self.validate_container_options(**memoryreservation)
         for container in self.containers:
@@ -519,7 +598,7 @@ def set_privileged(self, **privileged):
             if container[u'name'] in privileged:
                 new_privileged = bool(privileged[container[u'name']])
                 old_privileged = container.get(u'privileged')
-                if not new_privileged == old_privileged: 
+                if not new_privileged == old_privileged:
                     diff = EcsTaskDefinitionDiff(
                         container=container[u'name'],
                         field=u'privileged',
@@ -535,7 +614,7 @@ def set_essential(self, **essential):
             if container[u'name'] in essential:
                 new_essential = bool(essential[container[u'name']])
                 old_essential = container.get(u'essential')
-                if not new_essential == old_essential: 
+                if not new_essential == old_essential:
                     diff = EcsTaskDefinitionDiff(
                         container=container[u'name'],
                         field=u'essential',
@@ -635,16 +714,16 @@ def set_docker_labels(self, dockerlabel_list, exclusive=False):
 
     def apply_docker_labels(self, container, new_dockerlabels, exclusive=False):
         old_dockerlabels = container.get('dockerLabels', {})
-        
+
         if exclusive is True:
             merged = new_dockerlabels
         else:
             merged = old_dockerlabels.copy()
             merged.update(new_dockerlabels)
-        
+
         if old_dockerlabels == merged:
             return
-        
+
         diff = EcsTaskDefinitionDiff(
             container=container[u'name'],
             field=u'dockerLabels',
@@ -652,7 +731,7 @@ def apply_docker_labels(self, container, new_dockerlabels, exclusive=False):
             old_value=old_dockerlabels
         )
         self._diff.append(diff)
-        
+
         container[u'dockerLabels'] = merged.copy()
     def set_s3_env_file(self, s3_env_files, exclusive=False):
         # environmentFiles in task definition https://docs.aws.amazon.com/AmazonECS/latest/developerguide/taskdef-envfiles.html
@@ -706,9 +785,14 @@ def apply_s3_env_file(self, container, new_s3_env_file, exclusive=False):
             {"value": e, "type": "s3"} for e in merged
         ]
 
-    def set_secrets(self, secrets_list, exclusive=False):
+    def set_secrets(self, secrets_list, exclusive=False, env_file=((None, None),)):
         secrets = defaultdict(dict)
 
+        if None not in env_file[0]:
+            for secret in env_file:
+                l = read_env_file(secret[0], secret[1])
+                secrets_list = l + secrets_list
+
         for secret in secrets_list:
             secrets[secret[0]][secret[1]] = secret[2]
 
@@ -751,7 +835,7 @@ def apply_container_secrets(self, container, new_secrets, exclusive=False):
         container[u'secrets'] = [
             {"name": s, "valueFrom": merged[s]} for s in merged
         ]
-    
+
     def set_system_controls(self, system_controls_list, exclusive=False):
         system_controls = defaultdict(list)
         for system_control in system_controls_list:
@@ -760,7 +844,7 @@ def set_system_controls(self, system_controls_list, exclusive=False):
             mapping["namespace"] = system_control[1]
             mapping["value"] = system_control[2]
             system_controls[system_control[0]].append(mapping)
-            
+
         self.validate_container_options(**system_controls)
         for container in self.containers:
             if container[u'name'] in system_controls:
@@ -825,7 +909,7 @@ def set_ulimits(self, ulimits_list, exclusive=False):
             mapping["softLimit"] = int(ulimit[2])
             mapping["hardLimit"] = int(ulimit[3])
             ulimits[ulimit[0]].append(mapping)
-            
+
         self.validate_container_options(**ulimits)
         for container in self.containers:
             if container[u'name'] in ulimits:
@@ -1106,7 +1190,7 @@ def remove_containers(self, containers_list):
 
             containers_not_found = list(containers_ - set(self.container_names))
             # Remaining containers could not be found.
-            for container in containers_not_found: 
+            for container in containers_not_found:
                 logger.warning("Cannot remove container '{container}', not in the task definition.".format(container=container))
 
             if containers:
@@ -1268,8 +1352,11 @@ def update_task_definition(self, task_definition):
             volumes=task_definition.volumes,
             role_arn=task_definition.role_arn,
             execution_role_arn=task_definition.execution_role_arn,
+            runtime_platform=task_definition.runtime_platform,
             tags=task_definition.tags,
-            additional_properties=task_definition.additional_properties
+            additional_properties=task_definition.additional_properties,
+            cpu=task_definition.cpu,
+            memory=task_definition.memory
         )
         new_task_definition = EcsTaskDefinition(**response[u'taskDefinition'])
         return new_task_definition
diff --git a/requirements-test.txt b/requirements-test.txt
new file mode 100644
index 0000000..456a257
--- /dev/null
+++ b/requirements-test.txt
@@ -0,0 +1,8 @@
+pytest
+pytest-cov
+pytest-mock
+mock
+requests
+boto3
+freezegun
+flake8
diff --git a/setup.cfg b/setup.cfg
index cc54d9f..17bd5bb 100644
--- a/setup.cfg
+++ b/setup.cfg
@@ -4,6 +4,3 @@ universal = 1
 [tool:pytest]
 testpaths = tests
 flake8-max-line-length = 120
-
-[metadata]
-description-file = README.rst
diff --git a/setup.py b/setup.py
index 1cf7549..c7ef00f 100644
--- a/setup.py
+++ b/setup.py
@@ -12,13 +12,13 @@ def readme():
 
 
 dependencies = [
-    'click==7.1.2',
+    'click>=7.1.2, <9',
     'click-log==0.3.2',
-    'botocore>=1.17.47',
-    'boto3>=1.14.47',
+    'botocore>=1.32.6',
+    'boto3>=1.29.6',
     'future',
-    'requests',
-    'dictdiffer==0.8.0',
+    'requests<2.30.0',
+    'dictdiffer>=0.9.0',
 ]
 
 setup(
@@ -42,14 +42,6 @@ def readme():
             'ecs = ecs_deploy.cli:ecs',
         ],
     },
-    tests_require=[
-        'mock',
-        'pytest',
-        'pytest-flake8',
-        'pytest-mock',
-        'freezegun',
-        'coverage'
-    ],
     classifiers=[
         'Environment :: Console',
         'Intended Audience :: Developers',
@@ -58,7 +50,6 @@ def readme():
         'Operating System :: MacOS',
         'Operating System :: Unix',
         'Programming Language :: Python',
-        'Programming Language :: Python :: 2',
         'Programming Language :: Python :: 3',
         'Topic :: Software Development :: Libraries :: Python Modules',
     ]
diff --git a/tests/test_cli.py b/tests/test_cli.py
index a6b2990..96bff7b 100644
--- a/tests/test_cli.py
+++ b/tests/test_cli.py
@@ -22,8 +22,9 @@ def runner():
 @patch.object(EcsClient, '__init__')
 def test_get_client(ecs_client):
     ecs_client.return_value = None
-    client = get_client('access_key_id', 'secret_access_key', 'region', 'profile')
-    ecs_client.assert_called_once_with('access_key_id', 'secret_access_key', 'region', 'profile')
+    client = get_client('access_key_id', 'secret_access_key', 'region', 'profile', 'account', 'role')
+    ecs_client.assert_called_once_with('access_key_id', 'secret_access_key', 'region', 'profile',
+                                       assume_account='account', assume_role='role')
     assert isinstance(client, EcsClient)
 
 
@@ -350,6 +351,39 @@ def test_deploy_s3_env_file_with_previous_value(get_client, runner):
     assert u'Successfully changed task definition to: test-task:2' in result.output
     assert u'Deployment successful' in result.output
 
+@patch('ecs_deploy.cli.get_client')
+def test_deploy_runtime_platform_with_previous_value(get_client, runner):
+    get_client.return_value = EcsTestClient('acces_key', 'secret_key')
+    result = runner.invoke(cli.deploy, (CLUSTER_NAME, SERVICE_NAME, '--runtime-platform', 'ARM64', 'WINDOWS'))
+    expected_runtime_platform = {
+      u'cpuArchitecture': u'ARM64',
+      u'operatingSystemFamily': u'WINDOWS'
+    }
+    assert result.exit_code == 0
+    assert not result.exception
+    assert u"Deploying based on task definition: test-task:1" in result.output
+    assert u"Updating task definition" in result.output
+    assert str(expected_runtime_platform) in result.output
+    assert u'Successfully created revision: 2' in result.output
+    assert u'Successfully deregistered revision: 1' in result.output
+    assert u'Successfully changed task definition to: test-task:2' in result.output
+    assert u'Deployment successful' in result.output
+
+@patch('ecs_deploy.cli.get_client')
+def test_update_previously_empty_runtime_platform_with_value(get_client, runner):
+    get_client.return_value = EcsTestClient('acces_key', 'secret_key')
+    result = runner.invoke(cli.update, (TASK_DEFINITION_ARN_2, '--runtime-platform', 'ARM64', 'WINDOWS'))
+    assert result.exit_code == 0
+    assert not result.exception
+    assert u"Update task definition based on: test-task:2" in result.output
+    assert u"Updating task definition" in result.output
+    expected_runtime_platform = {
+      u'cpuArchitecture': u'ARM64',
+      u'operatingSystemFamily': u'WINDOWS'
+    }
+    assert str(expected_runtime_platform) in result.output
+    assert u"Creating new task definition revision" in result.output
+    assert u"Successfully created revision: 2" in result.output
 
 @patch('ecs_deploy.cli.get_client')
 def test_deploy_exclusive_environment(get_client, runner):
@@ -746,7 +780,8 @@ def test_deploy_with_wait_within_timeout(get_client, runner):
     get_client.return_value = EcsTestClient('acces_key', 'secret_key', wait=2)
     result = runner.invoke(cli.deploy, (CLUSTER_NAME, SERVICE_NAME, '--timeout', '10'))
     assert result.exit_code == 0
-    assert u'Deploying new task definition...' in result.output
+    assert u'Deploying new task definition' in result.output
+    assert u'...' in result.output
 
 
 @patch('ecs_deploy.cli.get_client')
@@ -968,8 +1003,11 @@ def test_record_deployment_without_apikey(Deployment):
 @patch('click.secho')
 @patch('ecs_deploy.newrelic.Deployment')
 def test_record_deployment_without_appid(Deployment, secho):
-    result = record_deployment('1.2.3', 'APIKEY',None, None, None, None, None)
-    secho.assert_any_call('Missing required parameters for recording New Relic deployment.Please see https://github.com/fabfuel/ecs-deploy#new-relic')
+    result = record_deployment('1.2.3', 'APIKEY', None, None, None, None, None)
+    secho.assert_any_call(
+        'Missing required parameters for recording New Relic deployment. '
+        'Please see https://github.com/fabfuel/ecs-deploy#new-relic'
+    )
     assert result is False
 
 
diff --git a/tests/test_ecs.py b/tests/test_ecs.py
index e7e0ce8..ac75650 100644
--- a/tests/test_ecs.py
+++ b/tests/test_ecs.py
@@ -8,7 +8,7 @@
 from boto3.session import Session
 from botocore.exceptions import ClientError, NoCredentialsError
 from dateutil.tz import tzlocal
-from mock.mock import patch
+from mock.mock import patch, call, Mock
 
 from ecs_deploy.ecs import EcsService, EcsTaskDefinition, \
     UnknownContainerError, EcsTaskDefinitionDiff, EcsClient, \
@@ -26,11 +26,14 @@
 TASK_DEFINITION_ROLE_ARN_1 = u'arn:test:role:1'
 TASK_DEFINITION_ARN_1 = u'arn:aws:ecs:eu-central-1:123456789012:task-definition/%s:%s' % (TASK_DEFINITION_FAMILY_1,
                                                                                           TASK_DEFINITION_REVISION_1)
+TASK_DEFINITION_RUNTIME_PLATFORM_1 = {u'cpuArchitecture': u'X86_64', u'operatingSystemFamily': u'LINUX'}
 TASK_DEFINITION_VOLUMES_1 = []
 TASK_DEFINITION_CONTAINERS_1 = [
     {u'name': u'webserver', u'image': u'webserver:123', u'command': u'run',
-     u'environment': ({"name": "foo", "value": "bar"}, {"name": "lorem", "value": "ipsum"}, {"name": "empty", "value": ""}),
-     u'environmentFiles': [{'value': 'arn:aws:s3:::myS3bucket/myApp/.env', 'type': 's3'}, {'value': 'arn:aws:s3:::coolBuckets/dev/.env', 'type': 's3'}],
+     u'environment': (
+         {"name": "foo", "value": "bar"}, {"name": "lorem", "value": "ipsum"}, {"name": "empty", "value": ""}),
+     u'environmentFiles': [{'value': 'arn:aws:s3:::myS3bucket/myApp/.env', 'type': 's3'},
+                           {'value': 'arn:aws:s3:::coolBuckets/dev/.env', 'type': 's3'}],
      u'secrets': ({"name": "baz", "valueFrom": "qux"}, {"name": "dolor", "valueFrom": "sit"}),
      u'dockerLabels': {"foo": "bar", "lorem": "ipsum", "empty": ""},
      u'logConfiguration': {},
@@ -53,8 +56,10 @@
 TASK_DEFINITION_VOLUMES_2 = []
 TASK_DEFINITION_CONTAINERS_2 = [
     {u'name': u'webserver', u'image': u'webserver:123', u'command': u'run',
-     u'environment': ({"name": "foo", "value": "bar"}, {"name": "lorem", "value": "ipsum"}, {"name": "empty", "value": ""}),
-     u'environmentFiles': [{'value': 'arn:aws:s3:::myS3bucket/myApp/.env', 'type': 's3'}, {'value': 'arn:aws:s3:::coolBuckets/dev/.env', 'type': 's3'}],
+     u'environment': (
+         {"name": "foo", "value": "bar"}, {"name": "lorem", "value": "ipsum"}, {"name": "empty", "value": ""}),
+     u'environmentFiles': [{'value': 'arn:aws:s3:::myS3bucket/myApp/.env', 'type': 's3'},
+                           {'value': 'arn:aws:s3:::coolBuckets/dev/.env', 'type': 's3'}],
      u'secrets': ({"name": "baz", "valueFrom": "qux"}, {"name": "dolor", "valueFrom": "sit"}),
      u'dockerLabels': {"foo": "bar", "lorem": "ipsum", "empty": ""},
      u'logConfiguration': {},
@@ -68,7 +73,7 @@
      u'systemControls': [{'namespace': 'net.core.somaxconn', 'value': '511'}],
      u'portMappings': [{'containerPort': 8080, 'hostPort': 8080}],
      u'mountPoints': [{'sourceVolume': 'volume', 'containerPath': '/container/path', 'readOnly': False}]},
-    
+
 ]
 
 TASK_DEFINITION_REVISION_3 = 3
@@ -86,6 +91,7 @@
 
 PAYLOAD_TASK_DEFINITION_1 = {
     u'taskDefinitionArn': TASK_DEFINITION_ARN_1,
+    u'runtimePlatform': deepcopy(TASK_DEFINITION_RUNTIME_PLATFORM_1),
     u'family': TASK_DEFINITION_FAMILY_1,
     u'revision': TASK_DEFINITION_REVISION_1,
     u'taskRoleArn': TASK_DEFINITION_ROLE_ARN_1,
@@ -260,7 +266,6 @@
     }
 ]
 
-
 PAYLOAD_DEPLOYMENTS_FAILED_ROLLBACK = [
     {
         u'status': u'PRIMARY',
@@ -536,6 +541,7 @@ def test_task_set_image(task_definition):
         if container[u'name'] == u'application':
             assert container[u'image'] == u'app-image:latest'
 
+
 def test_task_set_cpu(task_definition):
     task_definition.set_cpu(webserver=10, application=0)
     for container in task_definition.containers:
@@ -544,6 +550,7 @@ def test_task_set_cpu(task_definition):
         if container[u'name'] == u'application':
             assert container[u'cpu'] == 0
 
+
 def test_task_set_memory(task_definition):
     task_definition.set_memory(webserver=256, application=128)
     for container in task_definition.containers:
@@ -552,6 +559,7 @@ def test_task_set_memory(task_definition):
         if container[u'name'] == u'application':
             assert container[u'memory'] == 128
 
+
 def test_task_set_memoryreservation(task_definition):
     task_definition.set_memoryreservation(webserver=128, application=64)
     for container in task_definition.containers:
@@ -560,6 +568,7 @@ def test_task_set_memoryreservation(task_definition):
         if container[u'name'] == u'application':
             assert container[u'memoryReservation'] == 64
 
+
 def test_task_set_privileged(task_definition):
     task_definition.set_privileged(webserver=False, application=True)
     for container in task_definition.containers:
@@ -568,14 +577,16 @@ def test_task_set_privileged(task_definition):
         if container[u'name'] == u'application':
             assert container[u'privileged'] == True
 
+
 def test_task_set_log_configurations(task_definition):
     assert len(task_definition.containers[0]['logConfiguration']) == 0
 
-    task_definition.set_log_configurations(((u'webserver', u'awslogs', u'awslogs-group', u'service_logs'), (u'webserver', u'awslogs', u'awslogs-region', u'eu-central-1')))
+    task_definition.set_log_configurations(((u'webserver', u'awslogs', u'awslogs-group', u'service_logs'),
+                                            (u'webserver', u'awslogs', u'awslogs-region', u'eu-central-1')))
 
     assert len(task_definition.containers[0]['logConfiguration']) > 0
 
-    assert('logDriver' in task_definition.containers[0]['logConfiguration'])
+    assert ('logDriver' in task_definition.containers[0]['logConfiguration'])
     assert 'awslogs' == task_definition.containers[0]['logConfiguration']['logDriver']
     assert 'options' in task_definition.containers[0]['logConfiguration']
     assert 'awslogs-group' in task_definition.containers[0]['logConfiguration']['options']
@@ -583,17 +594,19 @@ def test_task_set_log_configurations(task_definition):
     assert 'awslogs-region' in task_definition.containers[0]['logConfiguration']['options']
     assert 'eu-central-1' == task_definition.containers[0]['logConfiguration']['options']['awslogs-region']
 
+
 def test_task_set_log_configurations_no_changes(task_definition):
     assert len(task_definition.containers[0]['logConfiguration']) == 0
 
-    task_definition.set_log_configurations(((u'webserver', u'awslogs', u'awslogs-group', u'service_logs'), (u'webserver', u'awslogs', u'awslogs-region', u'eu-central-1')))
+    task_definition.set_log_configurations(((u'webserver', u'awslogs', u'awslogs-group', u'service_logs'),
+                                            (u'webserver', u'awslogs', u'awslogs-region', u'eu-central-1')))
     # deploy without log configurations does not change the previous configuration
     # needs to be actively changed
     task_definition.set_log_configurations(())
 
     assert len(task_definition.containers[0]['logConfiguration']) > 0
 
-    assert('logDriver' in task_definition.containers[0]['logConfiguration'])
+    assert ('logDriver' in task_definition.containers[0]['logConfiguration'])
     assert 'awslogs' == task_definition.containers[0]['logConfiguration']['logDriver']
     assert 'options' in task_definition.containers[0]['logConfiguration']
     assert 'awslogs-group' in task_definition.containers[0]['logConfiguration']['options']
@@ -601,6 +614,7 @@ def test_task_set_log_configurations_no_changes(task_definition):
     assert 'awslogs-region' in task_definition.containers[0]['logConfiguration']['options']
     assert 'eu-central-1' == task_definition.containers[0]['logConfiguration']['options']['awslogs-region']
 
+
 def test_task_set_environment(task_definition):
     assert len(task_definition.containers[0]['environment']) == 3
 
@@ -612,18 +626,21 @@ def test_task_set_environment(task_definition):
     assert {'name': 'foo', 'value': 'baz'} in task_definition.containers[0]['environment']
     assert {'name': 'some-name', 'value': 'some-value'} in task_definition.containers[0]['environment']
 
+
 def test_read_env_file_wrong_env_format():
     tmp = tempfile.NamedTemporaryFile(delete=False)
     tmp.write(b'#comment\n  \nIncompleteDescription')
     tmp.read()
-    l = read_env_file('webserver',tmp.name)
+    l = read_env_file('webserver', tmp.name)
     os.unlink(tmp.name)
     tmp.close()
     assert l == ()
 
+
 def test_env_file_wrong_file_name():
     with pytest.raises(EcsTaskDefinitionCommandError):
-        read_env_file('webserver','WrongFileName')
+        read_env_file('webserver', 'WrongFileName')
+
 
 def test_task_set_environment_from_e_and_env_file(task_definition):
     assert len(task_definition.containers[0]['environment']) == 3
@@ -632,7 +649,8 @@ def test_task_set_environment_from_e_and_env_file(task_definition):
     tmp.write(b'some-name-from-env-file=some-value-from-env-file')
     tmp.read()
 
-    task_definition.set_environment(((u'webserver', u'foo', u'baz'), (u'webserver', u'some-name', u'some-value')), env_file = ((u'webserver',tmp.name),))
+    task_definition.set_environment(((u'webserver', u'foo', u'baz'), (u'webserver', u'some-name', u'some-value')),
+                                    env_file=((u'webserver', tmp.name),))
     os.unlink(tmp.name)
     tmp.close()
 
@@ -641,7 +659,9 @@ def test_task_set_environment_from_e_and_env_file(task_definition):
     assert {'name': 'lorem', 'value': 'ipsum'} in task_definition.containers[0]['environment']
     assert {'name': 'foo', 'value': 'baz'} in task_definition.containers[0]['environment']
     assert {'name': 'some-name', 'value': 'some-value'} in task_definition.containers[0]['environment']
-    assert {'name': 'some-name-from-env-file', 'value': 'some-value-from-env-file'} in task_definition.containers[0]['environment']
+    assert {'name': 'some-name-from-env-file', 'value': 'some-value-from-env-file'} in task_definition.containers[0][
+        'environment']
+
 
 def test_task_set_environment_from_env_file(task_definition):
     assert len(task_definition.containers[0]['environment']) == 3
@@ -650,21 +670,23 @@ def test_task_set_environment_from_env_file(task_definition):
     tmp.write(b'some-name-from-env-file=some-value-from-env-file')
     tmp.read()
 
-    task_definition.set_environment((), env_file = ((u'webserver',tmp.name),))
+    task_definition.set_environment((), env_file=((u'webserver', tmp.name),))
     os.unlink(tmp.name)
     tmp.close()
 
     assert len(task_definition.containers[0]['environment']) == 4
 
     assert {'name': 'lorem', 'value': 'ipsum'} in task_definition.containers[0]['environment']
-    assert {'name': 'some-name-from-env-file', 'value': 'some-value-from-env-file'} in task_definition.containers[0]['environment']
+    assert {'name': 'some-name-from-env-file', 'value': 'some-value-from-env-file'} in task_definition.containers[0][
+        'environment']
 
 
 def test_task_set_environment_exclusively(task_definition):
     assert len(task_definition.containers[0]['environment']) == 3
     assert len(task_definition.containers[1]['environment']) == 0
 
-    task_definition.set_environment(((u'application', u'foo', u'baz'), (u'application', u'new-var', u'new-value')), exclusive=True)
+    task_definition.set_environment(((u'application', u'foo', u'baz'), (u'application', u'new-var', u'new-value')),
+                                    exclusive=True)
 
     assert len(task_definition.containers[0]['environment']) == 0
     assert len(task_definition.containers[1]['environment']) == 2
@@ -685,11 +707,13 @@ def test_task_set_docker_labels(task_definition):
     assert 'lorem' in task_definition.containers[0]['dockerLabels']
     assert 'some-name' in task_definition.containers[0]['dockerLabels']
 
+
 def test_task_set_docker_label_exclusively(task_definition):
     assert len(task_definition.containers[0]['dockerLabels']) == 3
     assert len(task_definition.containers[1]['dockerLabels']) == 0
 
-    task_definition.set_docker_labels(((u'application', u'foo', u'baz'), (u'application', u'new-var', u'new-value')), exclusive=True)
+    task_definition.set_docker_labels(((u'application', u'foo', u'baz'), (u'application', u'new-var', u'new-value')),
+                                      exclusive=True)
 
     assert len(task_definition.containers[0]['dockerLabels']) == 0
     assert len(task_definition.containers[1]['dockerLabels']) == 2
@@ -698,17 +722,25 @@ def test_task_set_docker_label_exclusively(task_definition):
     assert 'foo' in task_definition.containers[1]['dockerLabels']
     assert 'new-var' in task_definition.containers[1]['dockerLabels']
 
+
 def test_task_set_s3_env_file_multiple_files(task_definition):
     assert len(task_definition.containers[0]['environmentFiles']) == 2
 
-    task_definition.set_s3_env_file(((u'webserver', u'arn:aws:s3:::mycompany.domain.com/app/.env'), (u'webserver', u'arn:aws:s3:::melted.cheese.com/grilled/.env'), (u'proxyserver', u'arn:ars:s3:::pizza/dev/.env')))
+    task_definition.set_s3_env_file(((u'webserver', u'arn:aws:s3:::mycompany.domain.com/app/.env'),
+                                     (u'webserver', u'arn:aws:s3:::melted.cheese.com/grilled/.env'),
+                                     (u'proxyserver', u'arn:ars:s3:::pizza/dev/.env')))
 
     assert len(task_definition.containers[0]['environmentFiles']) == 4
 
-    assert {'value': 'arn:aws:s3:::mycompany.domain.com/app/.env', 'type': 's3'} in task_definition.containers[0]['environmentFiles']
-    assert {'value': 'arn:aws:s3:::myS3bucket/myApp/.env', 'type': 's3'} in task_definition.containers[0]['environmentFiles']
-    assert {'value': 'arn:aws:s3:::coolBuckets/dev/.env', 'type': 's3'} in task_definition.containers[0]['environmentFiles']
-    assert {'value': 'arn:aws:s3:::melted.cheese.com/grilled/.env', 'type': 's3'} in task_definition.containers[0]['environmentFiles']
+    assert {'value': 'arn:aws:s3:::mycompany.domain.com/app/.env', 'type': 's3'} in task_definition.containers[0][
+        'environmentFiles']
+    assert {'value': 'arn:aws:s3:::myS3bucket/myApp/.env', 'type': 's3'} in task_definition.containers[0][
+        'environmentFiles']
+    assert {'value': 'arn:aws:s3:::coolBuckets/dev/.env', 'type': 's3'} in task_definition.containers[0][
+        'environmentFiles']
+    assert {'value': 'arn:aws:s3:::melted.cheese.com/grilled/.env', 'type': 's3'} in task_definition.containers[0][
+        'environmentFiles']
+
 
 def test_task_set_s3_env_file_single_file(task_definition):
     assert len(task_definition.containers[0]['environmentFiles']) == 2
@@ -718,6 +750,7 @@ def test_task_set_s3_env_file_single_file(task_definition):
     assert len(task_definition.containers[0]['environmentFiles']) == 3
     # assert {'value': 'arn:aws:s3:::mycompany.domain.com/app/.env', 'type': 's3'} in task_definition.containers[0]['environmentFiles']
 
+
 def test_task_set_s3_env_file_exclusively(task_definition):
     assert len(task_definition.containers[0]['environmentFiles']) == 2
 
@@ -725,12 +758,14 @@ def test_task_set_s3_env_file_exclusively(task_definition):
 
     assert len(task_definition.containers[0]['environmentFiles']) == 1
 
-    assert {'value': 'arn:aws:s3:::mycompany.domain.com/app/.env', 'type': 's3'} in task_definition.containers[0]['environmentFiles']
+    assert {'value': 'arn:aws:s3:::mycompany.domain.com/app/.env', 'type': 's3'} in task_definition.containers[0][
+        'environmentFiles']
+
 
 def test_task_set_secrets_exclusively(task_definition):
     assert len(task_definition.containers[0]['secrets']) == 2
 
-    task_definition.set_secrets(((u'webserver', u'new-secret', u'another-place'), ), exclusive=True)
+    task_definition.set_secrets(((u'webserver', u'new-secret', u'another-place'),), exclusive=True)
 
     assert len(task_definition.containers[0]['secrets']) == 1
     assert {'name': 'new-secret', 'valueFrom': 'another-place'} in task_definition.containers[0]['secrets']
@@ -743,30 +778,74 @@ def test_task_set_secrets(task_definition):
     assert {'name': 'foo', 'valueFrom': 'baz'} in task_definition.containers[0]['secrets']
     assert {'name': 'some-name', 'valueFrom': 'some-value'} in task_definition.containers[0]['secrets']
 
+
+def test_task_set_secrets_from_env_file(task_definition):
+    assert len(task_definition.containers[0]['secrets']) == 2
+
+    tmp = tempfile.NamedTemporaryFile(delete=False)
+    tmp.write(b'some-secret-name-from-env-file=some-secret-value-from-env-file')
+    tmp.read()
+
+    task_definition.set_secrets((), env_file=((u'webserver', tmp.name),))
+    os.unlink(tmp.name)
+    tmp.close()
+
+    assert len(task_definition.containers[0]['secrets']) == 3
+
+    assert {"name": "baz", "valueFrom": "qux"} in task_definition.containers[0]['secrets']
+    assert {'name': 'some-secret-name-from-env-file', 'valueFrom': 'some-secret-value-from-env-file'} in \
+           task_definition.containers[0]['secrets']
+
+
+def test_task_set_secrets_from_s_and_env_file(task_definition):
+    assert len(task_definition.containers[0]['secrets']) == 2
+
+    tmp = tempfile.NamedTemporaryFile(delete=False)
+    tmp.write(b'some-secret-name-from-env-file=some-secret-value-from-env-file')
+    tmp.read()
+
+    task_definition.set_secrets(((u'webserver', u'foo', u'baz'), (u'webserver', u'some-name', u'some-value')),
+                                env_file=((u'webserver', tmp.name),))
+    os.unlink(tmp.name)
+    tmp.close()
+
+    assert len(task_definition.containers[0]['secrets']) == 5
+
+    assert {"name": "baz", "valueFrom": "qux"} in task_definition.containers[0]['secrets']
+    assert {'name': 'dolor', 'valueFrom': 'sit'} in task_definition.containers[0]['secrets']
+    assert {'name': 'foo', 'valueFrom': 'baz'} in task_definition.containers[0]['secrets']
+    assert {"name": "baz", "valueFrom": "qux"} in task_definition.containers[0]['secrets']
+    assert {'name': 'some-secret-name-from-env-file', 'valueFrom': 'some-secret-value-from-env-file'} in \
+           task_definition.containers[0]['secrets']
+
+
 def test_task_set_system_controls(task_definition):
     assert len(task_definition.containers[0]['systemControls']) == 1
-    
-    task_definition.set_system_controls(((u'webserver', u'net.core.somaxconn', u'511'), (u'webserver',u'net.ipv4.ip_forward', u'1')))
+
+    task_definition.set_system_controls(
+        ((u'webserver', u'net.core.somaxconn', u'511'), (u'webserver', u'net.ipv4.ip_forward', u'1')))
 
     assert len(task_definition.containers[0]['systemControls']) == 2
 
     assert {'namespace': 'net.core.somaxconn', 'value': '511'} in task_definition.containers[0]['systemControls']
     assert {'namespace': 'net.ipv4.ip_forward', 'value': '1'} in task_definition.containers[0]['systemControls']
 
+
 def test_task_set_system_controls_existing_not_set_again(task_definition):
     assert len(task_definition.containers[0]['systemControls']) == 1
-    
-    task_definition.set_system_controls(((u'webserver', u'net.ipv4.ip_forward', u'1'), ))
+
+    task_definition.set_system_controls(((u'webserver', u'net.ipv4.ip_forward', u'1'),))
 
     assert len(task_definition.containers[0]['systemControls']) == 2
 
     assert {'namespace': 'net.core.somaxconn', 'value': '511'} in task_definition.containers[0]['systemControls']
     assert {'namespace': 'net.ipv4.ip_forward', 'value': '1'} in task_definition.containers[0]['systemControls']
 
+
 def test_task_set_system_controlsts_exclusively(task_definition):
     assert len(task_definition.containers[0]['systemControls']) == 1
     assert 'net.core.somaxconn' == task_definition.containers[0]['systemControls'][0]['namespace']
-    
+
     task_definition.set_system_controls(((u'webserver', u'net.ipv4.ip_forward', u'1'),), exclusive=True)
 
     assert len(task_definition.containers[0]['systemControls']) == 1
@@ -774,9 +853,10 @@ def test_task_set_system_controlsts_exclusively(task_definition):
     assert 'net.ipv4.ip_forward' == task_definition.containers[0]['systemControls'][0]['namespace']
     assert {'namespace': 'net.ipv4.ip_forward', 'value': '1'} in task_definition.containers[0]['systemControls']
 
+
 def test_task_set_ulimits(task_definition):
     assert len(task_definition.containers[0]['ulimits']) == 1
-    
+
     task_definition.set_ulimits(((u'webserver', u'memlock', 256, 257), (u'webserver', u'cpu', 80, 85)))
 
     assert len(task_definition.containers[0]['ulimits']) == 2
@@ -784,20 +864,22 @@ def test_task_set_ulimits(task_definition):
     assert {'name': 'memlock', 'softLimit': 256, 'hardLimit': 257} in task_definition.containers[0]['ulimits']
     assert {'name': 'cpu', 'softLimit': 80, 'hardLimit': 85} in task_definition.containers[0]['ulimits']
 
+
 def test_task_set_ulimits_existing_not_set_again(task_definition):
     assert len(task_definition.containers[0]['ulimits']) == 1
-    
-    task_definition.set_ulimits(((u'webserver', u'cpu', 80, 85), ))
+
+    task_definition.set_ulimits(((u'webserver', u'cpu', 80, 85),))
 
     assert len(task_definition.containers[0]['ulimits']) == 2
 
     assert {'name': 'memlock', 'softLimit': 256, 'hardLimit': 256} in task_definition.containers[0]['ulimits']
     assert {'name': 'cpu', 'softLimit': 80, 'hardLimit': 85} in task_definition.containers[0]['ulimits']
 
+
 def test_task_set_ulimits_exclusively(task_definition):
     assert len(task_definition.containers[0]['ulimits']) == 1
     assert 'memlock' == task_definition.containers[0]['ulimits'][0]['name']
-    
+
     task_definition.set_ulimits(((u'webserver', u'cpu', 80, 85),), exclusive=True)
 
     assert len(task_definition.containers[0]['ulimits']) == 1
@@ -805,10 +887,11 @@ def test_task_set_ulimits_exclusively(task_definition):
     assert 'cpu' == task_definition.containers[0]['ulimits'][0]['name']
     assert {'name': 'cpu', 'softLimit': 80, 'hardLimit': 85} in task_definition.containers[0]['ulimits']
 
+
 def test_task_set_port_mappings(task_definition):
     assert len(task_definition.containers[0]['portMappings']) == 1
     assert 8080 == task_definition.containers[0]['portMappings'][0]['containerPort']
-    
+
     task_definition.set_port_mappings(((u'webserver', 8080, 8080), (u'webserver', 81, 80)))
 
     assert len(task_definition.containers[0]['portMappings']) == 2
@@ -816,10 +899,11 @@ def test_task_set_port_mappings(task_definition):
     assert {'containerPort': 8080, 'hostPort': 8080, 'protocol': 'tcp'} in task_definition.containers[0]['portMappings']
     assert {'containerPort': 81, 'hostPort': 80, 'protocol': 'tcp'} in task_definition.containers[0]['portMappings']
 
+
 def test_task_set_port_mappings_exclusively(task_definition):
     assert len(task_definition.containers[0]['portMappings']) == 1
     assert 8080 == task_definition.containers[0]['portMappings'][0]['containerPort']
-    
+
     task_definition.set_port_mappings(((u'webserver', 81, 80),), exclusive=True)
 
     assert len(task_definition.containers[0]['portMappings']) == 1
@@ -827,29 +911,48 @@ def test_task_set_port_mappings_exclusively(task_definition):
     assert 81 == task_definition.containers[0]['portMappings'][0]['containerPort']
     assert {'containerPort': 81, 'hostPort': 80, 'protocol': 'tcp'} in task_definition.containers[0]['portMappings']
 
+
 def test_task_set_mount_points(task_definition):
     assert len(task_definition.containers[0]['mountPoints']) == 1
     assert '/container/path' == task_definition.containers[0]['mountPoints'][0]['containerPath']
-    
-    task_definition.set_mount_points(((u'webserver', u'volume', u'/data/path'), (u'webserver', u'another_volume', u'/logs/path')))
+
+    task_definition.set_mount_points(
+        ((u'webserver', u'volume', u'/data/path'), (u'webserver', u'another_volume', u'/logs/path')))
 
     assert len(task_definition.containers[0]['mountPoints']) == 2
 
-    assert {'sourceVolume': 'volume', 'containerPath': '/data/path', 'readOnly': False} in task_definition.containers[0]['mountPoints']
-    assert {'sourceVolume': 'another_volume', 'containerPath': '/logs/path', 'readOnly': False} in task_definition.containers[0]['mountPoints']
+    assert {'sourceVolume': 'volume', 'containerPath': '/data/path', 'readOnly': False} in \
+           task_definition.containers[0]['mountPoints']
+    assert {'sourceVolume': 'another_volume', 'containerPath': '/logs/path', 'readOnly': False} in \
+           task_definition.containers[0]['mountPoints']
+
+
+def test_task_set_task_cpu(task_definition):
+    assert task_definition.cpu is None
+    task_definition.set_task_cpu(256)
+    assert task_definition.cpu == '256'
+
+
+def test_task_set_task_memory(task_definition):
+    assert task_definition.memory is None
+    task_definition.set_task_memory(1024)
+    assert task_definition.memory == '1024'
+
 
 def test_task_set_mount_points_exclusively(task_definition):
     assert len(task_definition.containers[0]['mountPoints']) == 1
     assert '/container/path' == task_definition.containers[0]['mountPoints'][0]['containerPath']
     assert 'volume' == task_definition.containers[0]['mountPoints'][0]['sourceVolume']
-    
+
     task_definition.set_mount_points(((u'webserver', u'another_volume', u'/logs/path'),), exclusive=True)
 
     assert len(task_definition.containers[0]['mountPoints']) == 1
 
     assert '/logs/path' == task_definition.containers[0]['mountPoints'][0]['containerPath']
     assert 'another_volume' == task_definition.containers[0]['mountPoints'][0]['sourceVolume']
-    assert {'sourceVolume': 'another_volume', 'containerPath': '/logs/path', 'readOnly': False} in task_definition.containers[0]['mountPoints']
+    assert {'sourceVolume': 'another_volume', 'containerPath': '/logs/path', 'readOnly': False} in \
+           task_definition.containers[0]['mountPoints']
+
 
 def test_task_set_image_for_unknown_container(task_definition):
     with pytest.raises(UnknownContainerError):
@@ -873,6 +976,7 @@ def test_task_set_command_with_multiple_arguments(task_definition):
         if container[u'name'] == u'application':
             assert container[u'command'] == [u'run-application', u'arg1', u'arg2']
 
+
 def test_task_set_command_with_empty_argument(task_definition):
     empty_argument = " "
     task_definition.set_commands(webserver=empty_argument + u'run-webserver arg1 arg2')
@@ -880,17 +984,21 @@ def test_task_set_command_with_empty_argument(task_definition):
         if container[u'name'] == u'webserver':
             assert container[u'command'] == [u'run-webserver', u'arg1', u'arg2']
 
+
 def test_task_set_command_as_json_list(task_definition):
-    task_definition.set_commands(webserver=u'["run-webserver", "arg1", "arg2"]', application=u'["run-application", "arg1", "arg2"]')
+    task_definition.set_commands(webserver=u'["run-webserver", "arg1", "arg2"]',
+                                 application=u'["run-application", "arg1", "arg2"]')
     for container in task_definition.containers:
         if container[u'name'] == u'webserver':
             assert container[u'command'] == [u'run-webserver', u'arg1', u'arg2']
         if container[u'name'] == u'application':
             assert container[u'command'] == [u'run-application', u'arg1', u'arg2']
 
+
 def test_task_set_command_as_invalid_json_list(task_definition):
     with pytest.raises(EcsTaskDefinitionCommandError):
-        task_definition.set_commands(webserver=u'["run-webserver, "arg1" arg2"]', application=u'["run-application" "arg1 "arg2"]')
+        task_definition.set_commands(webserver=u'["run-webserver, "arg1" arg2"]',
+                                     application=u'["run-application" "arg1 "arg2"]')
 
 
 def test_task_set_command_for_unknown_container(task_definition):
@@ -902,17 +1010,17 @@ class TestSetHealthChecks:
     @pytest.mark.parametrize(
         'webserver_health_check, application_health_check',
         (
-            (
-                (u'webserver', u'curl -f http://webserver/alive/', 30, 5, 3, 0),
-                (u'application', u'curl -f http://application/alive/', 60, 10, 6, 5)
-            ),
-            (
-                (u'webserver', u'curl -f http://webserver/alive/', 30, 5, 3, 0),
-                (u'application', u'curl -f http://application/alive/', 60, 10, 6, 5)
-            )
+                (
+                        (u'webserver', u'curl -f http://webserver/alive/', 30, 5, 3, 0),
+                        (u'application', u'curl -f http://application/alive/', 60, 10, 6, 5)
+                ),
+                (
+                        (u'webserver', u'curl -f http://webserver/alive/', 30, 5, 3, 0),
+                        (u'application', u'curl -f http://application/alive/', 60, 10, 6, 5)
+                )
         )
     )
-    def test_success(self, webserver_health_check, application_health_check, task_definition):        
+    def test_success(self, webserver_health_check, application_health_check, task_definition):
         task_definition.set_health_checks((
             webserver_health_check,
             application_health_check,
@@ -937,7 +1045,8 @@ def test_success(self, webserver_health_check, application_health_check, task_de
 
     def test_unknown_container(self, task_definition):
         with pytest.raises(UnknownContainerError):
-            task_definition.set_health_checks(((u'foobar', u'curl -f http://application/alive/', 60, 10, 6,  5),))
+            task_definition.set_health_checks(((u'foobar', u'curl -f http://application/alive/', 60, 10, 6, 5),))
+
 
 def test_task_get_overrides(task_definition):
     assert task_definition.get_overrides() == []
@@ -947,7 +1056,7 @@ def test_task_get_overrides_with_command(task_definition):
     task_definition.set_commands(webserver='/usr/bin/python script.py')
     overrides = task_definition.get_overrides()
     assert len(overrides) == 1
-    assert overrides[0]['command'] == ['/usr/bin/python','script.py']
+    assert overrides[0]['command'] == ['/usr/bin/python', 'script.py']
 
 
 def test_task_get_overrides_with_environment(task_definition):
@@ -963,7 +1072,7 @@ def test_task_get_overrides_with_docker_labels(task_definition):
     overrides = task_definition.get_overrides()
     assert len(overrides) == 1
     assert overrides[0]['name'] == 'webserver'
-    #assert 'foo' in overrides[0]['dockerLabels']
+    # assert 'foo' in overrides[0]['dockerLabels']
     assert overrides[0]['dockerLabels']['foo'] == 'baz'
 
 
@@ -982,7 +1091,7 @@ def test_task_get_overrides_with_command_environment_and_secrets(task_definition
     overrides = task_definition.get_overrides()
     assert len(overrides) == 1
     assert overrides[0]['name'] == 'webserver'
-    assert overrides[0]['command'] == ['/usr/bin/python','script.py']
+    assert overrides[0]['command'] == ['/usr/bin/python', 'script.py']
     assert dict(name='foo', value='baz') in overrides[0]['environment']
     assert dict(name='bar', valueFrom='qux') in overrides[0]['secrets']
 
@@ -994,7 +1103,7 @@ def test_task_get_overrides_with_command_secrets_and_environment_for_multiple_co
     overrides = task_definition.get_overrides()
     assert len(overrides) == 2
     assert overrides[0]['name'] == 'application'
-    assert overrides[0]['command'] == ['/usr/bin/python','script.py']
+    assert overrides[0]['command'] == ['/usr/bin/python', 'script.py']
     assert overrides[1]['name'] == 'webserver'
     assert dict(name='foo', value='baz') in overrides[1]['environment']
     assert dict(name='bar', valueFrom='qux') in overrides[1]['secrets']
@@ -1003,7 +1112,7 @@ def test_task_get_overrides_with_command_secrets_and_environment_for_multiple_co
 def test_task_get_overrides_command(task_definition):
     command = task_definition.get_overrides_command('/usr/bin/python script.py')
     assert isinstance(command, list)
-    assert command == ['/usr/bin/python','script.py']
+    assert command == ['/usr/bin/python', 'script.py']
 
 
 def test_task_get_overrides_environment(task_definition):
@@ -1048,6 +1157,55 @@ def test_client_init(mocked_init, mocked_client):
     mocked_client.assert_any_call(u'events')
 
 
+@patch.object(Session, 'client')
+@patch.object(Session, '__init__')
+@patch.object(EcsClient, 'assume_role')
+def test_client_init_assuming_role(assume_role_mock, mocked_init, mocked_client):
+    mocked_init.return_value = None
+    assume_role_mock.return_value = 'sts-key', 'sts-secret', 'sts-token'
+
+    EcsClient(u'access_key_id', u'secret_access_key', u'region', u'profile',
+              assume_account='1234567890', assume_role='DeployRole')
+
+    mocked_init.assert_called_once_with(aws_access_key_id=u'sts-key',
+                                        aws_secret_access_key=u'sts-secret',
+                                        profile_name=None,
+                                        region_name=u'region',
+                                        aws_session_token=u'sts-token')
+    mocked_client.assert_any_call(u'ecs')
+    mocked_client.assert_any_call(u'events')
+
+
+@patch.object(Session, 'client')
+@patch.object(Session, '__init__')
+def test_client_assume_role(session_mock, mocked_client):
+    sts = Mock()
+    mocked_client.return_value = sts
+    session_mock.return_value = None
+
+    sts.assume_role.return_value = {
+        'Credentials': {
+            'AccessKeyId': 'sts-key',
+            'SecretAccessKey': 'sts-secret',
+            'SessionToken': 'sts-token',
+        }
+    }
+
+    key, secret, token = EcsClient.assume_role('key', 'secret', 'region', 'profile', 'token', '1234567890', 'MyRole')
+
+    session_mock.assert_called_once_with(aws_access_key_id=u'key',
+                                         aws_secret_access_key=u'secret',
+                                         profile_name=u'profile',
+                                         region_name=u'region',
+                                         aws_session_token=u'token')
+
+    sts.assume_role.assert_called_with(RoleArn='arn:aws:iam::1234567890:role/MyRole', RoleSessionName='ecsDeploy')
+
+    assert key == 'sts-key'
+    assert secret == 'sts-secret'
+    assert token == 'sts-token'
+
+
 @pytest.fixture
 @patch.object(Session, 'client')
 @patch.object(Session, '__init__')
@@ -1063,7 +1221,8 @@ def test_client_describe_services(client):
 
 def test_client_describe_task_definition(client):
     client.describe_task_definition(u'task_definition_arn')
-    client.boto.describe_task_definition.assert_called_once_with(include=['TAGS'], taskDefinition=u'task_definition_arn')
+    client.boto.describe_task_definition.assert_called_once_with(include=['TAGS'],
+                                                                 taskDefinition=u'task_definition_arn')
 
 
 def test_client_describe_unknown_task_definition(client):
@@ -1088,6 +1247,7 @@ def test_client_register_task_definition(client):
     volumes = [{u'foo': u'bar'}]
     role_arn = 'arn:test:role'
     execution_role_arn = 'arn:test:role'
+    runtime_platform = {u'cpuArchitecture': u'X86_64', u'operatingSystemFamily': u'LINUX'}
     task_definition = EcsTaskDefinition(
         containerDefinitions=containers,
         volumes=volumes,
@@ -1095,13 +1255,16 @@ def test_client_register_task_definition(client):
         revision=1,
         taskRoleArn=role_arn,
         executionRoleArn=execution_role_arn,
+        runtimePlatform=runtime_platform,
         tags={
             'Name': 'test_client_register_task_definition'
         },
         status='active',
         taskDefinitionArn='arn:task',
         requiresAttributes={},
-        unkownProperty='foobar'
+        unkownProperty='foobar',
+        cpu=256,
+        memory=1024
     )
 
     client.register_task_definition(
@@ -1110,8 +1273,59 @@ def test_client_register_task_definition(client):
         volumes=task_definition.volumes,
         role_arn=task_definition.role_arn,
         execution_role_arn=execution_role_arn,
+        runtime_platform=task_definition.runtime_platform,
         tags=task_definition.tags,
-        additional_properties=task_definition.additional_properties
+        additional_properties=task_definition.additional_properties,
+        cpu=256,
+        memory=1024
+    )
+
+    client.boto.register_task_definition.assert_called_once_with(
+        family=u'family',
+        containerDefinitions=containers,
+        volumes=volumes,
+        taskRoleArn=role_arn,
+        executionRoleArn=execution_role_arn,
+        runtimePlatform=runtime_platform,
+        tags=task_definition.tags,
+        unkownProperty='foobar',
+        cpu=256,
+        memory=1024
+    )
+
+
+def test_client_register_task_definition_without_optional_values(client):
+    containers = [{u'name': u'foo'}]
+    volumes = [{u'foo': u'bar'}]
+    role_arn = 'arn:test:role'
+    execution_role_arn = 'arn:test:role'
+    runtime_platform = {u'cpuArchitecture': u'X86_64', u'operatingSystemFamily': u'LINUX'}
+    task_definition = EcsTaskDefinition(
+        containerDefinitions=containers,
+        volumes=volumes,
+        family=u'family',
+        revision=1,
+        taskRoleArn=role_arn,
+        executionRoleArn=execution_role_arn,
+        tags={
+            'Name': 'test_client_register_task_definition'
+        },
+        status='active',
+        taskDefinitionArn='arn:task',
+        requiresAttributes={},
+    )
+
+    client.register_task_definition(
+        family=task_definition.family,
+        containers=task_definition.containers,
+        volumes=task_definition.volumes,
+        role_arn=task_definition.role_arn,
+        execution_role_arn=execution_role_arn,
+        tags=task_definition.tags,
+        additional_properties=task_definition.additional_properties,
+        runtime_platform=None,
+        cpu=None,
+        memory=None
     )
 
     client.boto.register_task_definition.assert_called_once_with(
@@ -1121,7 +1335,6 @@ def test_client_register_task_definition(client):
         taskRoleArn=role_arn,
         executionRoleArn=execution_role_arn,
         tags=task_definition.tags,
-        unkownProperty='foobar'
     )
 
 
@@ -1130,6 +1343,7 @@ def test_client_register_task_definition_without_tags(client):
     volumes = [{u'foo': u'bar'}]
     role_arn = 'arn:test:role'
     execution_role_arn = 'arn:test:role'
+    runtime_platform = {u'cpuArchitecture': u'X86_64', u'operatingSystemFamily': u'LINUX'}
     task_definition = EcsTaskDefinition(
         containerDefinitions=containers,
         volumes=volumes,
@@ -1137,6 +1351,7 @@ def test_client_register_task_definition_without_tags(client):
         revision=1,
         taskRoleArn=role_arn,
         executionRoleArn=execution_role_arn,
+        runtimePlatform=runtime_platform,
         tags={},
         status='active',
         taskDefinitionArn='arn:task',
@@ -1150,8 +1365,11 @@ def test_client_register_task_definition_without_tags(client):
         volumes=task_definition.volumes,
         role_arn=task_definition.role_arn,
         execution_role_arn=execution_role_arn,
+        runtime_platform=task_definition.runtime_platform,
         tags=task_definition.tags,
-        additional_properties=task_definition.additional_properties
+        additional_properties=task_definition.additional_properties,
+        cpu=256,
+        memory=1024
     )
 
     client.boto.register_task_definition.assert_called_once_with(
@@ -1160,7 +1378,10 @@ def test_client_register_task_definition_without_tags(client):
         volumes=volumes,
         taskRoleArn=role_arn,
         executionRoleArn=execution_role_arn,
-        unkownProperty='foobar'
+        runtimePlatform=runtime_platform,
+        unkownProperty='foobar',
+        cpu=256,
+        memory=1024
     )
 
 
@@ -1216,7 +1437,7 @@ def test_ecs_action_init(client):
 
 def test_ecs_action_init_with_invalid_cluster():
     with pytest.raises(EcsConnectionError) as excinfo:
-        client = EcsTestClient(u'access_key',  u'secret_key')
+        client = EcsTestClient(u'access_key', u'secret_key')
         EcsAction(client, u'invliad-cluster', u'test-service')
     assert str(excinfo.value) == u'An error occurred (ClusterNotFoundException) when calling the DescribeServices ' \
                                  u'operation: Cluster not found.'
@@ -1224,7 +1445,7 @@ def test_ecs_action_init_with_invalid_cluster():
 
 def test_ecs_action_init_with_invalid_service():
     with pytest.raises(EcsConnectionError) as excinfo:
-        client = EcsTestClient(u'access_key',  u'secret_key')
+        client = EcsTestClient(u'access_key', u'secret_key')
         EcsAction(client, u'test-cluster', u'invalid-service')
     assert str(excinfo.value) == u'An error occurred when calling the DescribeServices operation: Service not found.'
 
@@ -1275,12 +1496,15 @@ def test_update_task_definition(client, task_definition):
         volumes=task_definition.volumes,
         role_arn=task_definition.role_arn,
         execution_role_arn=task_definition.execution_role_arn,
+        runtime_platform=task_definition.runtime_platform,
         tags=task_definition.tags,
         additional_properties={
             u'networkMode': u'host',
             u'placementConstraints': {},
             u'unknownProperty': u'lorem-ipsum'
-        }
+        },
+        cpu=None,
+        memory=None
     )
 
 
@@ -1592,7 +1816,7 @@ def describe_tasks(self, cluster_name, task_arns):
         return deepcopy(RESPONSE_DESCRIBE_TASKS)
 
     def register_task_definition(self, family, containers, volumes, role_arn,
-                                 execution_role_arn, tags, additional_properties):
+                                 execution_role_arn, runtime_platform, tags, cpu, memory, additional_properties):
         if not self.access_key_id or not self.secret_access_key:
             raise EcsConnectionError(u'Unable to locate credentials. Configure credentials by running "aws configure".')
         return deepcopy(RESPONSE_TASK_DEFINITION_2)
@@ -1614,7 +1838,8 @@ def run_task(self, cluster, task_definition, count, started_by, overrides,
         if not self.access_key_id or not self.secret_access_key:
             raise EcsConnectionError(u'Unable to locate credentials. Configure credentials by running "aws configure".')
         if cluster == 'unknown-cluster':
-            raise EcsConnectionError(u'An error occurred (ClusterNotFoundException) when calling the RunTask operation: Cluster not found.')
+            raise EcsConnectionError(
+                u'An error occurred (ClusterNotFoundException) when calling the RunTask operation: Cluster not found.')
         if self.deployment_errors:
             error = dict(Error=dict(Code=123, Message="Something went wrong"))
             raise ClientError(error, 'fake_error')
@@ -1624,4 +1849,5 @@ def update_rule(self, cluster, rule, task_definition):
         if not self.access_key_id or not self.secret_access_key:
             raise EcsConnectionError(u'Unable to locate credentials. Configure credentials by running "aws configure".')
         if cluster == 'unknown-cluster':
-            raise EcsConnectionError(u'An error occurred (ClusterNotFoundException) when calling the RunTask operation: Cluster not found.')
+            raise EcsConnectionError(
+                u'An error occurred (ClusterNotFoundException) when calling the RunTask operation: Cluster not found.')