aws-sdk-cloudformation 1.128.0 → 1.129.0

checksums.yaml

@@ -1,7 +1,7 @@
 ---
 SHA256:
-  metadata.gz: 609762ae192ff9ca01c0fdf5e4c70cdc45e03df4c487b3d5f7653dd9599b8591
-  data.tar.gz: d138019f1726f4e6438416b0f7d0e763dd915cc5e422b441a368c3d1be8bf11e
+  metadata.gz: d4bb035add5d4b74c4250d4f5c819fbafdae007e5e6a315f8b4e870c46fe7e0a
+  data.tar.gz: 97d52a471a5b5915686e08f2e65be732d62e55cde37eeb5ab5a22cac8d481425
 SHA512:
-  metadata.gz: 569a6909f9ecdc3cc6d6d25ab34631091f9628f87eca415c7b5242e4fb9dd1f4205683c2c582f9dd56d623d1129a1c2f62754cfbbfa31e95e60fc6cf13219686
-  data.tar.gz: ae491314b7e4237b53827d6c655851618cfeeeb9ca8f9032d1b7596db05123379b3876a7cebff07d201184fabdfa82de6f02773360afd5c0ede87792bb00ed55
+  metadata.gz: 3fab42e017530798cf9b6c556f3b9dbc2b5ec21eb7033ebca86662470063aa25e80c81c7734deefe80385591c25f4fc18ffafcd64475674c033afda9243111f0
+  data.tar.gz: ee58a0421735145053b59ff85ab4a453a61a2d4f8011fc9b61982a4463b2e63c1585528ddfc5514433879e37410f1688e4ee852df3ae28ff2bede83845fa7cae

data/CHANGELOG.md

@@ -1,6 +1,11 @@
 Unreleased Changes
 ------------------
 
+1.129.0 (2025-03-27)
+------------------
+
+* Feature - Adding support for the new parameter "ScanFilters" in the CloudFormation StartResourceScan API. When this parameter is included, the StartResourceScan API will initiate a scan limited to the resource types specified by the parameter.
+
 1.128.0 (2025-03-04)
 ------------------
 

data/VERSION

@@ -1 +1 @@
-1.128.0
+1.129.0

data/lib/aws-sdk-cloudformation/client.rb

@@ -1963,12 +1963,14 @@ module Aws::CloudFormation
     #   Specify an IAM role only if you are using customized administrator
     #   roles to control which users or groups can manage specific stack sets
     #   within the same administrator account. For more information, see
-    #   [Prerequisites for using StackSets][1] in the *CloudFormation User
+    #   [Grant self-managed permissions][1] in the *CloudFormation User
     #   Guide*.
     #
+    #   Valid only if the permissions model is `SELF_MANAGED`.
     #
     #
-    #   [1]: https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/stacksets-prereqs.html
+    #
+    #   [1]: https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/stacksets-prereqs-self-managed.html
     #
     # @option params [String] :execution_role_name
     #   The name of the IAM execution role to use to create the stack set. If
@@ -1980,6 +1982,8 @@ module Aws::CloudFormation
     #   to control which stack resources users and groups can include in their
     #   stack sets.
     #
+    #   Valid only if the permissions model is `SELF_MANAGED`.
+    #
     # @option params [String] :permission_model
     #   Describes how the IAM roles required for stack set operations are
     #   created. By default, `SELF-MANAGED` is specified.
@@ -2001,12 +2005,21 @@ module Aws::CloudFormation
     # @option params [Types::AutoDeployment] :auto_deployment
     #   Describes whether StackSets automatically deploys to Organizations
     #   accounts that are added to the target organization or organizational
-    #   unit (OU). Specify only if `PermissionModel` is `SERVICE_MANAGED`.
+    #   unit (OU). For more information, see [Manage automatic deployments for
+    #   CloudFormation StackSets that use service-managed permissions][1] in
+    #   the *CloudFormation User Guide*.
+    #
+    #   Required if the permissions model is `SERVICE_MANAGED`. (Not used with
+    #   self-managed permissions.)
+    #
+    #
+    #
+    #   [1]: https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/stacksets-orgs-manage-auto-deployment.html
     #
     # @option params [String] :call_as
-    #   \[Service-managed permissions\] Specifies whether you are acting as an
-    #   account administrator in the organization's management account or as
-    #   a delegated administrator in a member account.
+    #   Specifies whether you are acting as an account administrator in the
+    #   organization's management account or as a delegated administrator in
+    #   a member account.
     #
     #   By default, `SELF` is specified. Use `SELF` for stack sets with
     #   self-managed permissions.
@@ -2025,6 +2038,8 @@ module Aws::CloudFormation
     #   management account, including stack sets that are created by delegated
     #   administrators.
     #
+    #   Valid only if the permissions model is `SERVICE_MANAGED`.
+    #
     #
     #
     #   [1]: https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/stacksets-orgs-delegated-admin.html
@@ -3003,6 +3018,7 @@ module Aws::CloudFormation
     #   * {Types::DescribeResourceScanOutput#resource_types #resource_types} => Array<String>
     #   * {Types::DescribeResourceScanOutput#resources_scanned #resources_scanned} => Integer
     #   * {Types::DescribeResourceScanOutput#resources_read #resources_read} => Integer
+    #   * {Types::DescribeResourceScanOutput#scan_filters #scan_filters} => Array<Types::ScanFilter>
     #
     #
     # @example Example: To describe a selected resource scan
@@ -3117,6 +3133,9 @@ module Aws::CloudFormation
     #   resp.resource_types[0] #=> String
     #   resp.resources_scanned #=> Integer
     #   resp.resources_read #=> Integer
+    #   resp.scan_filters #=> Array
+    #   resp.scan_filters[0].types #=> Array
+    #   resp.scan_filters[0].types[0] #=> String
     #
     # @see http://docs.aws.amazon.com/goto/WebAPI/cloudformation-2010-05-15/DescribeResourceScan AWS API Documentation
     #
@@ -3214,8 +3233,6 @@ module Aws::CloudFormation
     #
     #   * Deleted stacks: You must specify the unique stack ID.
     #
-    #   Default: There is no default value.
-    #
     # @option params [String] :next_token
     #   A string that identifies the next page of events that you want to
     #   retrieve.
@@ -3408,13 +3425,9 @@ module Aws::CloudFormation
     #
     #   * Deleted stacks: You must specify the unique stack ID.
     #
-    #   Default: There is no default value.
-    #
     # @option params [required, String] :logical_resource_id
     #   The logical name of the resource as specified in the template.
     #
-    #   Default: There is no default value.
-    #
     # @return [Types::DescribeStackResourceOutput] Returns a {Seahorse::Client::Response response} object which responds to the following methods:
     #
     #   * {Types::DescribeStackResourceOutput#stack_resource_detail #stack_resource_detail} => Types::StackResourceDetail
@@ -3586,16 +3599,12 @@ module Aws::CloudFormation
     #
     #   * Deleted stacks: You must specify the unique stack ID.
     #
-    #   Default: There is no default value.
-    #
     #   Required: Conditional. If you don't specify `StackName`, you must
     #   specify `PhysicalResourceId`.
     #
     # @option params [String] :logical_resource_id
     #   The logical name of the resource as specified in the template.
     #
-    #   Default: There is no default value.
-    #
     # @option params [String] :physical_resource_id
     #   The name or unique identifier that corresponds to a physical instance
     #   ID of a resource supported by CloudFormation.
@@ -3608,8 +3617,6 @@ module Aws::CloudFormation
     #   Required: Conditional. If you don't specify `PhysicalResourceId`, you
     #   must specify `StackName`.
     #
-    #   Default: There is no default value.
-    #
     # @return [Types::DescribeStackResourcesOutput] Returns a {Seahorse::Client::Response response} object which responds to the following methods:
     #
     #   * {Types::DescribeStackResourcesOutput#stack_resources #stack_resources} => Array<Types::StackResource>
@@ -3861,8 +3868,6 @@ module Aws::CloudFormation
     #
     #   * Deleted stacks: You must specify the unique stack ID.
     #
-    #   Default: There is no default value.
-    #
     # @option params [String] :next_token
     #   A string that identifies the next page of stacks that you want to
     #   retrieve.
@@ -4659,8 +4664,6 @@ module Aws::CloudFormation
     #
     #   * Deleted stacks: You must specify the unique stack ID.
     #
-    #   Default: There is no default value.
-    #
     # @option params [String] :change_set_name
     #   The name or Amazon Resource Name (ARN) of a change set for which
     #   CloudFormation returns the associated template. If you specify a name,
@@ -5489,6 +5492,10 @@ module Aws::CloudFormation
     #   parameter to get the next set of results. The default value is 10. The
     #   maximum value is 100.
     #
+    # @option params [String] :scan_type_filter
+    #   The scan type that you want to get summary information about. The
+    #   default is `FULL`.
+    #
     # @return [Types::ListResourceScansOutput] Returns a {Seahorse::Client::Response response} object which responds to the following methods:
     #
     #   * {Types::ListResourceScansOutput#resource_scan_summaries #resource_scan_summaries} => Array<Types::ResourceScanSummary>
@@ -5528,6 +5535,7 @@ module Aws::CloudFormation
     #   resp = client.list_resource_scans({
     #     next_token: "NextToken",
     #     max_results: 1,
+    #     scan_type_filter: "FULL", # accepts FULL, PARTIAL
     #   })
     #
     # @example Response structure
@@ -5539,6 +5547,7 @@ module Aws::CloudFormation
     #   resp.resource_scan_summaries[0].start_time #=> Time
     #   resp.resource_scan_summaries[0].end_time #=> Time
     #   resp.resource_scan_summaries[0].percentage_completed #=> Float
+    #   resp.resource_scan_summaries[0].scan_type #=> String, one of "FULL", "PARTIAL"
     #   resp.next_token #=> String
     #
     # @see http://docs.aws.amazon.com/goto/WebAPI/cloudformation-2010-05-15/ListResourceScans AWS API Documentation
@@ -5906,8 +5915,6 @@ module Aws::CloudFormation
     #
     #   * Deleted stacks: You must specify the unique stack ID.
     #
-    #   Default: There is no default value.
-    #
     # @option params [String] :next_token
     #   A string that identifies the next page of stack resources that you
     #   want to retrieve.
@@ -6298,11 +6305,11 @@ module Aws::CloudFormation
     end
 
     # Returns the summary information for stacks whose status matches the
-    # specified StackStatusFilter. Summary information for stacks that have
-    # been deleted is kept for 90 days after the stack is deleted. If no
-    # StackStatusFilter is specified, summary information for all stacks is
-    # returned (including existing stacks and stacks that have been
-    # deleted).
+    # specified `StackStatusFilter`. Summary information for stacks that
+    # have been deleted is kept for 90 days after the stack is deleted. If
+    # no `StackStatusFilter` is specified, summary information for all
+    # stacks is returned (including existing stacks and stacks that have
+    # been deleted).
     #
     # @option params [String] :next_token
     #   A string that identifies the next page of stacks that you want to
@@ -7330,6 +7337,9 @@ module Aws::CloudFormation
     #   token if you plan to retry requests so that CloudFormation knows that
     #   you're not attempting to start a new resource scan.
     #
+    # @option params [Array<Types::ScanFilter>] :scan_filters
+    #   The scan filters to use.
+    #
     # @return [Types::StartResourceScanOutput] Returns a {Seahorse::Client::Response response} object which responds to the following methods:
     #
     #   * {Types::StartResourceScanOutput#resource_scan_id #resource_scan_id} => String
@@ -7351,6 +7361,11 @@ module Aws::CloudFormation
     #
     #   resp = client.start_resource_scan({
     #     client_request_token: "ClientRequestToken",
+    #     scan_filters: [
+    #       {
+    #         types: ["ResourceTypeFilter"],
+    #       },
+    #     ],
     #   })
     #
     # @example Response structure
@@ -8181,7 +8196,7 @@ module Aws::CloudFormation
       req.send_request(options)
     end
 
-    # Updates the stack set, and associated stack instances in the specified
+    # Updates the stack set and associated stack instances in the specified
     # accounts and Amazon Web Services Regions.
     #
     # Even if the stack set operation created by updating the stack set
@@ -8331,14 +8346,14 @@ module Aws::CloudFormation
     #   Preferences for how CloudFormation performs this stack set operation.
     #
     # @option params [String] :administration_role_arn
-    #   The Amazon Resource Name (ARN) of the IAM role to use to update this
-    #   stack set.
+    #   \[Self-managed permissions\] The Amazon Resource Name (ARN) of the IAM
+    #   role to use to update this stack set.
     #
     #   Specify an IAM role only if you are using customized administrator
     #   roles to control which users or groups can manage specific stack sets
     #   within the same administrator account. For more information, see
-    #   [Prerequisites for using CloudFormation StackSets][1] in the
-    #   *CloudFormation User Guide*.
+    #   [Grant self-managed permissions][1] in the *CloudFormation User
+    #   Guide*.
     #
     #   If you specified a customized administrator role when you created the
     #   stack set, you must specify a customized administrator role, even if
@@ -8347,13 +8362,13 @@ module Aws::CloudFormation
     #
     #
     #
-    #   [1]: https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/stacksets-prereqs.html
+    #   [1]: https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/stacksets-prereqs-self-managed.html
     #
     # @option params [String] :execution_role_name
-    #   The name of the IAM execution role to use to update the stack set. If
-    #   you do not specify an execution role, CloudFormation uses the
-    #   `AWSCloudFormationStackSetExecutionRole` role for the stack set
-    #   operation.
+    #   \[Self-managed permissions\] The name of the IAM execution role to use
+    #   to update the stack set. If you do not specify an execution role,
+    #   CloudFormation uses the `AWSCloudFormationStackSetExecutionRole` role
+    #   for the stack set operation.
     #
     #   Specify an IAM role only if you are using customized execution roles
     #   to control which stack resources users and groups can include in their
@@ -8403,11 +8418,18 @@ module Aws::CloudFormation
     # @option params [Types::AutoDeployment] :auto_deployment
     #   \[Service-managed permissions\] Describes whether StackSets
     #   automatically deploys to Organizations accounts that are added to a
-    #   target organization or organizational unit (OU).
+    #   target organization or organizational unit (OU). For more information,
+    #   see [Manage automatic deployments for CloudFormation StackSets that
+    #   use service-managed permissions][1] in the *CloudFormation User
+    #   Guide*.
     #
     #   If you specify `AutoDeployment`, don't specify `DeploymentTargets` or
     #   `Regions`.
     #
+    #
+    #
+    #   [1]: https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/stacksets-orgs-manage-auto-deployment.html
+    #
     # @option params [String] :operation_id
     #   The unique ID for this stack set operation.
     #
@@ -8682,7 +8704,7 @@ module Aws::CloudFormation
         tracer: tracer
       )
       context[:gem_name] = 'aws-sdk-cloudformation'
-      context[:gem_version] = '1.128.0'
+      context[:gem_version] = '1.129.0'
       Seahorse::Client::Request.new(handlers, context)
     end
 

data/lib/aws-sdk-cloudformation/client_api.rb

@@ -413,6 +413,8 @@ module Aws::CloudFormation
     ResourceToImport = Shapes::StructureShape.new(name: 'ResourceToImport')
     ResourceToSkip = Shapes::StringShape.new(name: 'ResourceToSkip')
     ResourceType = Shapes::StringShape.new(name: 'ResourceType')
+    ResourceTypeFilter = Shapes::StringShape.new(name: 'ResourceTypeFilter')
+    ResourceTypeFilters = Shapes::ListShape.new(name: 'ResourceTypeFilters')
     ResourceTypePrefix = Shapes::StringShape.new(name: 'ResourceTypePrefix')
     ResourceTypes = Shapes::ListShape.new(name: 'ResourceTypes')
     ResourcesFailed = Shapes::IntegerShape.new(name: 'ResourcesFailed')
@@ -437,6 +439,9 @@ module Aws::CloudFormation
     RollbackTriggers = Shapes::ListShape.new(name: 'RollbackTriggers')
     S3Bucket = Shapes::StringShape.new(name: 'S3Bucket')
     S3Url = Shapes::StringShape.new(name: 'S3Url')
+    ScanFilter = Shapes::StructureShape.new(name: 'ScanFilter')
+    ScanFilters = Shapes::ListShape.new(name: 'ScanFilters')
+    ScanType = Shapes::StringShape.new(name: 'ScanType')
     ScannedResource = Shapes::StructureShape.new(name: 'ScannedResource')
     ScannedResourceIdentifier = Shapes::StructureShape.new(name: 'ScannedResourceIdentifier')
     ScannedResourceIdentifiers = Shapes::ListShape.new(name: 'ScannedResourceIdentifiers')
@@ -1003,6 +1008,7 @@ module Aws::CloudFormation
     DescribeResourceScanOutput.add_member(:resource_types, Shapes::ShapeRef.new(shape: ResourceTypes, location_name: "ResourceTypes"))
     DescribeResourceScanOutput.add_member(:resources_scanned, Shapes::ShapeRef.new(shape: ResourcesScanned, location_name: "ResourcesScanned"))
     DescribeResourceScanOutput.add_member(:resources_read, Shapes::ShapeRef.new(shape: ResourcesRead, location_name: "ResourcesRead"))
+    DescribeResourceScanOutput.add_member(:scan_filters, Shapes::ShapeRef.new(shape: ScanFilters, location_name: "ScanFilters"))
     DescribeResourceScanOutput.struct_class = Types::DescribeResourceScanOutput
 
     DescribeStackDriftDetectionStatusInput.add_member(:stack_drift_detection_id, Shapes::ShapeRef.new(shape: StackDriftDetectionId, required: true, location_name: "StackDriftDetectionId"))
@@ -1344,6 +1350,7 @@ module Aws::CloudFormation
 
     ListResourceScansInput.add_member(:next_token, Shapes::ShapeRef.new(shape: NextToken, location_name: "NextToken"))
     ListResourceScansInput.add_member(:max_results, Shapes::ShapeRef.new(shape: ResourceScannerMaxResults, location_name: "MaxResults"))
+    ListResourceScansInput.add_member(:scan_type_filter, Shapes::ShapeRef.new(shape: ScanType, location_name: "ScanTypeFilter"))
     ListResourceScansInput.struct_class = Types::ListResourceScansInput
 
     ListResourceScansOutput.add_member(:resource_scan_summaries, Shapes::ShapeRef.new(shape: ResourceScanSummaries, location_name: "ResourceScanSummaries"))
@@ -1694,6 +1701,7 @@ module Aws::CloudFormation
     ResourceScanSummary.add_member(:start_time, Shapes::ShapeRef.new(shape: Timestamp, location_name: "StartTime"))
     ResourceScanSummary.add_member(:end_time, Shapes::ShapeRef.new(shape: Timestamp, location_name: "EndTime"))
     ResourceScanSummary.add_member(:percentage_completed, Shapes::ShapeRef.new(shape: PercentageCompleted, location_name: "PercentageCompleted"))
+    ResourceScanSummary.add_member(:scan_type, Shapes::ShapeRef.new(shape: ScanType, location_name: "ScanType"))
     ResourceScanSummary.struct_class = Types::ResourceScanSummary
 
     ResourceTargetDefinition.add_member(:attribute, Shapes::ShapeRef.new(shape: ResourceAttribute, location_name: "Attribute"))
@@ -1710,6 +1718,8 @@ module Aws::CloudFormation
     ResourceToImport.add_member(:resource_identifier, Shapes::ShapeRef.new(shape: ResourceIdentifierProperties, required: true, location_name: "ResourceIdentifier"))
     ResourceToImport.struct_class = Types::ResourceToImport
 
+    ResourceTypeFilters.member = Shapes::ShapeRef.new(shape: ResourceTypeFilter)
+
     ResourceTypes.member = Shapes::ShapeRef.new(shape: ResourceType)
 
     ResourcesToImport.member = Shapes::ShapeRef.new(shape: ResourceToImport)
@@ -1737,6 +1747,11 @@ module Aws::CloudFormation
 
     RollbackTriggers.member = Shapes::ShapeRef.new(shape: RollbackTrigger)
 
+    ScanFilter.add_member(:types, Shapes::ShapeRef.new(shape: ResourceTypeFilters, location_name: "Types"))
+    ScanFilter.struct_class = Types::ScanFilter
+
+    ScanFilters.member = Shapes::ShapeRef.new(shape: ScanFilter)
+
     ScannedResource.add_member(:resource_type, Shapes::ShapeRef.new(shape: ResourceType, location_name: "ResourceType"))
     ScannedResource.add_member(:resource_identifier, Shapes::ShapeRef.new(shape: JazzResourceIdentifierProperties, location_name: "ResourceIdentifier"))
     ScannedResource.add_member(:managed_by_stack, Shapes::ShapeRef.new(shape: ManagedByStack, location_name: "ManagedByStack"))
@@ -2126,6 +2141,7 @@ module Aws::CloudFormation
     StaleRequestException.struct_class = Types::StaleRequestException
 
     StartResourceScanInput.add_member(:client_request_token, Shapes::ShapeRef.new(shape: ClientRequestToken, location_name: "ClientRequestToken"))
+    StartResourceScanInput.add_member(:scan_filters, Shapes::ShapeRef.new(shape: ScanFilters, location_name: "ScanFilters"))
     StartResourceScanInput.struct_class = Types::StartResourceScanInput
 
     StartResourceScanOutput.add_member(:resource_scan_id, Shapes::ShapeRef.new(shape: ResourceScanId, location_name: "ResourceScanId"))

data/lib/aws-sdk-cloudformation/resource.rb

@@ -387,8 +387,6 @@ module Aws::CloudFormation
     #     unique stack ID.
     #
     #   * Deleted stacks: You must specify the unique stack ID.
-    #
-    #   Default: There is no default value.
     # @return [Stack::Collection]
     def stacks(options = {})
       batches = Enumerator.new do |y|

data/lib/aws-sdk-cloudformation/types.rb

@@ -1729,12 +1729,14 @@ module Aws::CloudFormation
     #   Specify an IAM role only if you are using customized administrator
     #   roles to control which users or groups can manage specific stack
     #   sets within the same administrator account. For more information,
-    #   see [Prerequisites for using StackSets][1] in the *CloudFormation
-    #   User Guide*.
+    #   see [Grant self-managed permissions][1] in the *CloudFormation User
+    #   Guide*.
     #
+    #   Valid only if the permissions model is `SELF_MANAGED`.
     #
     #
-    #   [1]: https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/stacksets-prereqs.html
+    #
+    #   [1]: https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/stacksets-prereqs-self-managed.html
     #   @return [String]
     #
     # @!attribute [rw] execution_role_name
@@ -1746,6 +1748,8 @@ module Aws::CloudFormation
     #   Specify an IAM role only if you are using customized execution roles
     #   to control which stack resources users and groups can include in
     #   their stack sets.
+    #
+    #   Valid only if the permissions model is `SELF_MANAGED`.
     #   @return [String]
     #
     # @!attribute [rw] permission_model
@@ -1770,13 +1774,22 @@ module Aws::CloudFormation
     # @!attribute [rw] auto_deployment
     #   Describes whether StackSets automatically deploys to Organizations
     #   accounts that are added to the target organization or organizational
-    #   unit (OU). Specify only if `PermissionModel` is `SERVICE_MANAGED`.
+    #   unit (OU). For more information, see [Manage automatic deployments
+    #   for CloudFormation StackSets that use service-managed
+    #   permissions][1] in the *CloudFormation User Guide*.
+    #
+    #   Required if the permissions model is `SERVICE_MANAGED`. (Not used
+    #   with self-managed permissions.)
+    #
+    #
+    #
+    #   [1]: https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/stacksets-orgs-manage-auto-deployment.html
     #   @return [Types::AutoDeployment]
     #
     # @!attribute [rw] call_as
-    #   \[Service-managed permissions\] Specifies whether you are acting as
-    #   an account administrator in the organization's management account
-    #   or as a delegated administrator in a member account.
+    #   Specifies whether you are acting as an account administrator in the
+    #   organization's management account or as a delegated administrator
+    #   in a member account.
     #
     #   By default, `SELF` is specified. Use `SELF` for stack sets with
     #   self-managed permissions.
@@ -1797,6 +1810,8 @@ module Aws::CloudFormation
     #   management account, including stack sets that are created by
     #   delegated administrators.
     #
+    #   Valid only if the permissions model is `SERVICE_MANAGED`.
+    #
     #
     #
     #   [1]: https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/stacksets-orgs-delegated-admin.html
@@ -2798,7 +2813,7 @@ module Aws::CloudFormation
     # @!attribute [rw] status
     #   Status of the resource scan.
     #
-    #   INPROGRESS
+    #   IN\_PROGRESS
     #
     #   : The resource scan is still in progress.
     #
@@ -2845,7 +2860,7 @@ module Aws::CloudFormation
     #
     # @!attribute [rw] resources_read
     #   The number of resources that were read. This is only available for
-    #   scans with a `Status` set to `COMPLETE`, `EXPIRED`, or `FAILED `.
+    #   scans with a `Status` set to `COMPLETE`, `EXPIRED`, or `FAILED`.
     #
     #   <note markdown="1"> This field may be 0 if the resource scan failed with a
     #   `ResourceScanLimitExceededException`.
@@ -2853,6 +2868,10 @@ module Aws::CloudFormation
     #    </note>
     #   @return [Integer]
     #
+    # @!attribute [rw] scan_filters
+    #   The scan filters that were used.
+    #   @return [Array<Types::ScanFilter>]
+    #
     # @see http://docs.aws.amazon.com/goto/WebAPI/cloudformation-2010-05-15/DescribeResourceScanOutput AWS API Documentation
     #
     class DescribeResourceScanOutput < Struct.new(
@@ -2864,7 +2883,8 @@ module Aws::CloudFormation
       :percentage_completed,
       :resource_types,
       :resources_scanned,
-      :resources_read)
+      :resources_read,
+      :scan_filters)
       SENSITIVE = []
       include Aws::Structure
     end
@@ -2977,8 +2997,6 @@ module Aws::CloudFormation
     #     unique stack ID.
     #
     #   * Deleted stacks: You must specify the unique stack ID.
-    #
-    #   Default: There is no default value.
     #   @return [String]
     #
     # @!attribute [rw] next_token
@@ -3223,14 +3241,10 @@ module Aws::CloudFormation
     #     unique stack ID.
     #
     #   * Deleted stacks: You must specify the unique stack ID.
-    #
-    #   Default: There is no default value.
     #   @return [String]
     #
     # @!attribute [rw] logical_resource_id
     #   The logical name of the resource as specified in the template.
-    #
-    #   Default: There is no default value.
     #   @return [String]
     #
     # @see http://docs.aws.amazon.com/goto/WebAPI/cloudformation-2010-05-15/DescribeStackResourceInput AWS API Documentation
@@ -3268,16 +3282,12 @@ module Aws::CloudFormation
     #
     #   * Deleted stacks: You must specify the unique stack ID.
     #
-    #   Default: There is no default value.
-    #
     #   Required: Conditional. If you don't specify `StackName`, you must
     #   specify `PhysicalResourceId`.
     #   @return [String]
     #
     # @!attribute [rw] logical_resource_id
     #   The logical name of the resource as specified in the template.
-    #
-    #   Default: There is no default value.
     #   @return [String]
     #
     # @!attribute [rw] physical_resource_id
@@ -3292,8 +3302,6 @@ module Aws::CloudFormation
     #
     #   Required: Conditional. If you don't specify `PhysicalResourceId`,
     #   you must specify `StackName`.
-    #
-    #   Default: There is no default value.
     #   @return [String]
     #
     # @see http://docs.aws.amazon.com/goto/WebAPI/cloudformation-2010-05-15/DescribeStackResourcesInput AWS API Documentation
@@ -3450,8 +3458,6 @@ module Aws::CloudFormation
     #     unique stack ID.
     #
     #   * Deleted stacks: You must specify the unique stack ID.
-    #
-    #   Default: There is no default value.
     #   @return [String]
     #
     # @!attribute [rw] next_token
@@ -4342,8 +4348,6 @@ module Aws::CloudFormation
     #     unique stack ID.
     #
     #   * Deleted stacks: You must specify the unique stack ID.
-    #
-    #   Default: There is no default value.
     #   @return [String]
     #
     # @!attribute [rw] change_set_name
@@ -5105,11 +5109,17 @@ module Aws::CloudFormation
     #   value is 10. The maximum value is 100.
     #   @return [Integer]
     #
+    # @!attribute [rw] scan_type_filter
+    #   The scan type that you want to get summary information about. The
+    #   default is `FULL`.
+    #   @return [String]
+    #
     # @see http://docs.aws.amazon.com/goto/WebAPI/cloudformation-2010-05-15/ListResourceScansInput AWS API Documentation
     #
     class ListResourceScansInput < Struct.new(
       :next_token,
-      :max_results)
+      :max_results,
+      :scan_type_filter)
       SENSITIVE = []
       include Aws::Structure
     end
@@ -5464,8 +5474,6 @@ module Aws::CloudFormation
     #     unique stack ID.
     #
     #   * Deleted stacks: You must specify the unique stack ID.
-    #
-    #   Default: There is no default value.
     #   @return [String]
     #
     # @!attribute [rw] next_token
@@ -7303,7 +7311,7 @@ module Aws::CloudFormation
     # @!attribute [rw] status
     #   Status of the resource scan.
     #
-    #   INPROGRESS
+    #   IN\_PROGRESS
     #
     #   : The resource scan is still in progress.
     #
@@ -7337,6 +7345,10 @@ module Aws::CloudFormation
     #   The percentage of the resource scan that has been completed.
     #   @return [Float]
     #
+    # @!attribute [rw] scan_type
+    #   The scan type that has been completed.
+    #   @return [String]
+    #
     # @see http://docs.aws.amazon.com/goto/WebAPI/cloudformation-2010-05-15/ResourceScanSummary AWS API Documentation
     #
     class ResourceScanSummary < Struct.new(
@@ -7345,7 +7357,8 @@ module Aws::CloudFormation
       :status_reason,
       :start_time,
       :end_time,
-      :percentage_completed)
+      :percentage_completed,
+      :scan_type)
       SENSITIVE = []
       include Aws::Structure
     end
@@ -7600,6 +7613,33 @@ module Aws::CloudFormation
       include Aws::Structure
     end
 
+    # A filter that is used to specify which resource types to scan.
+    #
+    # @!attribute [rw] types
+    #   An array of strings where each string represents an Amazon Web
+    #   Services resource type you want to scan. Each string defines the
+    #   resource type using the format `AWS::ServiceName::ResourceType`, for
+    #   example, `AWS::DynamoDB::Table`. For the full list of supported
+    #   resource types, see the [Resource type support][1] table in the
+    #   *CloudFormation User Guide*.
+    #
+    #   To scan all resource types within a service, you can use a wildcard,
+    #   represented by an asterisk (`*`). You can place a asterisk at only
+    #   the end of the string, for example, `AWS::S3::*`.
+    #
+    #
+    #
+    #   [1]: https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/resource-import-supported-resources.html
+    #   @return [Array<String>]
+    #
+    # @see http://docs.aws.amazon.com/goto/WebAPI/cloudformation-2010-05-15/ScanFilter AWS API Documentation
+    #
+    class ScanFilter < Struct.new(
+      :types)
+      SENSITIVE = []
+      include Aws::Structure
+    end
+
     # A scanned resource returned by `ListResourceScanResources` or
     # `ListResourceScanRelatedResources`.
     #
@@ -9758,6 +9798,11 @@ module Aws::CloudFormation
     # For more information about maximum concurrent accounts and failure
     # tolerance, see [Stack set operation options][1].
     #
+    # <note markdown="1"> `StackSetOperationPreferences` don't apply to `AutoDeployment`, even
+    # if it's enabled.
+    #
+    #  </note>
+    #
     #
     #
     # [1]: https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/what-is-cfnstacksets.html#stackset-ops-options
@@ -9770,10 +9815,6 @@ module Aws::CloudFormation
     # @!attribute [rw] region_order
     #   The order of the Regions where you want to perform the stack
     #   operation.
-    #
-    #   <note markdown="1"> `RegionOrder` isn't followed if `AutoDeployment` is enabled.
-    #
-    #    </note>
     #   @return [Array<String>]
     #
     # @!attribute [rw] failure_tolerance_count
@@ -10261,10 +10302,15 @@ module Aws::CloudFormation
     #   knows that you're not attempting to start a new resource scan.
     #   @return [String]
     #
+    # @!attribute [rw] scan_filters
+    #   The scan filters to use.
+    #   @return [Array<Types::ScanFilter>]
+    #
     # @see http://docs.aws.amazon.com/goto/WebAPI/cloudformation-2010-05-15/StartResourceScanInput AWS API Documentation
     #
     class StartResourceScanInput < Struct.new(
-      :client_request_token)
+      :client_request_token,
+      :scan_filters)
       SENSITIVE = []
       include Aws::Structure
     end
@@ -11720,14 +11766,14 @@ module Aws::CloudFormation
     #   @return [Types::StackSetOperationPreferences]
     #
     # @!attribute [rw] administration_role_arn
-    #   The Amazon Resource Name (ARN) of the IAM role to use to update this
-    #   stack set.
+    #   \[Self-managed permissions\] The Amazon Resource Name (ARN) of the
+    #   IAM role to use to update this stack set.
     #
     #   Specify an IAM role only if you are using customized administrator
     #   roles to control which users or groups can manage specific stack
     #   sets within the same administrator account. For more information,
-    #   see [Prerequisites for using CloudFormation StackSets][1] in the
-    #   *CloudFormation User Guide*.
+    #   see [Grant self-managed permissions][1] in the *CloudFormation User
+    #   Guide*.
     #
     #   If you specified a customized administrator role when you created
     #   the stack set, you must specify a customized administrator role,
@@ -11736,12 +11782,13 @@ module Aws::CloudFormation
     #
     #
     #
-    #   [1]: https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/stacksets-prereqs.html
+    #   [1]: https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/stacksets-prereqs-self-managed.html
     #   @return [String]
     #
     # @!attribute [rw] execution_role_name
-    #   The name of the IAM execution role to use to update the stack set.
-    #   If you do not specify an execution role, CloudFormation uses the
+    #   \[Self-managed permissions\] The name of the IAM execution role to
+    #   use to update the stack set. If you do not specify an execution
+    #   role, CloudFormation uses the
     #   `AWSCloudFormationStackSetExecutionRole` role for the stack set
     #   operation.
     #
@@ -11797,10 +11844,17 @@ module Aws::CloudFormation
     # @!attribute [rw] auto_deployment
     #   \[Service-managed permissions\] Describes whether StackSets
     #   automatically deploys to Organizations accounts that are added to a
-    #   target organization or organizational unit (OU).
+    #   target organization or organizational unit (OU). For more
+    #   information, see [Manage automatic deployments for CloudFormation
+    #   StackSets that use service-managed permissions][1] in the
+    #   *CloudFormation User Guide*.
     #
     #   If you specify `AutoDeployment`, don't specify `DeploymentTargets`
     #   or `Regions`.
+    #
+    #
+    #
+    #   [1]: https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/stacksets-orgs-manage-auto-deployment.html
     #   @return [Types::AutoDeployment]
     #
     # @!attribute [rw] operation_id

data/lib/aws-sdk-cloudformation.rb

@@ -59,7 +59,7 @@ module Aws::CloudFormation
   autoload :StackResource, 'aws-sdk-cloudformation/stack_resource'
   autoload :StackResourceSummary, 'aws-sdk-cloudformation/stack_resource_summary'
 
-  GEM_VERSION = '1.128.0'
+  GEM_VERSION = '1.129.0'
 
 end
 

data/sig/client.rbs

@@ -592,6 +592,7 @@ module Aws
         def resource_types: () -> ::Array[::String]
         def resources_scanned: () -> ::Integer
         def resources_read: () -> ::Integer
+        def scan_filters: () -> ::Array[Types::ScanFilter]
       end
       # https://docs.aws.amazon.com/sdk-for-ruby/v3/api/Aws/CloudFormation/Client.html#describe_resource_scan-instance_method
       def describe_resource_scan: (
@@ -1054,7 +1055,8 @@ module Aws
       # https://docs.aws.amazon.com/sdk-for-ruby/v3/api/Aws/CloudFormation/Client.html#list_resource_scans-instance_method
       def list_resource_scans: (
                                  ?next_token: ::String,
-                                 ?max_results: ::Integer
+                                 ?max_results: ::Integer,
+                                 ?scan_type_filter: ("FULL" | "PARTIAL")
                                ) -> _ListResourceScansResponseSuccess
                              | (?Hash[Symbol, untyped] params, ?Hash[Symbol, untyped] options) -> _ListResourceScansResponseSuccess
 
@@ -1384,7 +1386,12 @@ module Aws
       end
       # https://docs.aws.amazon.com/sdk-for-ruby/v3/api/Aws/CloudFormation/Client.html#start_resource_scan-instance_method
       def start_resource_scan: (
-                                 ?client_request_token: ::String
+                                 ?client_request_token: ::String,
+                                 ?scan_filters: Array[
+                                   {
+                                     types: Array[::String]?
+                                   },
+                                 ]
                                ) -> _StartResourceScanResponseSuccess
                              | (?Hash[Symbol, untyped] params, ?Hash[Symbol, untyped] options) -> _StartResourceScanResponseSuccess
 

data/sig/types.rbs

@@ -479,6 +479,7 @@ module Aws::CloudFormation
       attr_accessor resource_types: ::Array[::String]
       attr_accessor resources_scanned: ::Integer
       attr_accessor resources_read: ::Integer
+      attr_accessor scan_filters: ::Array[Types::ScanFilter]
       SENSITIVE: []
     end
 
@@ -939,6 +940,7 @@ module Aws::CloudFormation
     class ListResourceScansInput
       attr_accessor next_token: ::String
       attr_accessor max_results: ::Integer
+      attr_accessor scan_type_filter: ("FULL" | "PARTIAL")
       SENSITIVE: []
     end
 
@@ -1361,6 +1363,7 @@ module Aws::CloudFormation
       attr_accessor start_time: ::Time
       attr_accessor end_time: ::Time
       attr_accessor percentage_completed: ::Float
+      attr_accessor scan_type: ("FULL" | "PARTIAL")
       SENSITIVE: []
     end
 
@@ -1407,6 +1410,11 @@ module Aws::CloudFormation
       SENSITIVE: []
     end
 
+    class ScanFilter
+      attr_accessor types: ::Array[::String]
+      SENSITIVE: []
+    end
+
     class ScannedResource
       attr_accessor resource_type: ::String
       attr_accessor resource_identifier: ::Hash[::String, ::String]
@@ -1820,6 +1828,7 @@ module Aws::CloudFormation
 
     class StartResourceScanInput
       attr_accessor client_request_token: ::String
+      attr_accessor scan_filters: ::Array[Types::ScanFilter]
       SENSITIVE: []
     end
 

metadata

@@ -1,14 +1,14 @@
 --- !ruby/object:Gem::Specification
 name: aws-sdk-cloudformation
 version: !ruby/object:Gem::Version
-  version: 1.128.0
+  version: 1.129.0
 platform: ruby
 authors:
 - Amazon Web Services
 autorequire:
 bindir: bin
 cert_chain: []
-date: 2025-03-04 00:00:00.000000000 Z
+date: 2025-03-27 00:00:00.000000000 Z
 dependencies:
 - !ruby/object:Gem::Dependency
   name: aws-sdk-core