aws-sdk-macie2 1.2.0 → 1.7.0

data/lib/aws-sdk-macie2/errors.rb

@@ -1,3 +1,5 @@
+# frozen_string_literal: true
+
 # WARNING ABOUT GENERATED CODE
 #
 # This file is generated. See the contributing guide for more information:

data/lib/aws-sdk-macie2/resource.rb

@@ -1,3 +1,5 @@
+# frozen_string_literal: true
+
 # WARNING ABOUT GENERATED CODE
 #
 # This file is generated. See the contributing guide for more information:

data/lib/aws-sdk-macie2/types.rb

@@ -1,3 +1,5 @@
+# frozen_string_literal: true
+
 # WARNING ABOUT GENERATED CODE
 #
 # This file is generated. See the contributing guide for more information:
@@ -29,6 +31,7 @@ module Aws::Macie2
     class AcceptInvitationRequest < Struct.new(
       :invitation_id,
       :master_account)
+      SENSITIVE = []
       include Aws::Structure
     end
 
@@ -50,6 +53,7 @@ module Aws::Macie2
     class AccessControlList < Struct.new(
       :allows_public_read_access,
       :allows_public_write_access)
+      SENSITIVE = []
       include Aws::Structure
     end
 
@@ -63,6 +67,7 @@ module Aws::Macie2
     #
     class AccessDeniedException < Struct.new(
       :message)
+      SENSITIVE = []
       include Aws::Structure
     end
 
@@ -88,6 +93,7 @@ module Aws::Macie2
     class AccountDetail < Struct.new(
       :account_id,
       :email)
+      SENSITIVE = []
       include Aws::Structure
     end
 
@@ -110,6 +116,7 @@ module Aws::Macie2
     #
     class AccountLevelPermissions < Struct.new(
       :block_public_access)
+      SENSITIVE = []
       include Aws::Structure
     end
 
@@ -129,21 +136,12 @@ module Aws::Macie2
     class AdminAccount < Struct.new(
       :account_id,
       :status)
+      SENSITIVE = []
       include Aws::Structure
     end
 
-    # For the affected resource:
-    #
-    # * The name of the operation that was invoked most recently and
-    #   produced the finding (api).
-    #
-    # * The first date and time when any operation was invoked and produced
-    #   the finding (firstSeen).
-    #
-    # * The most recent date and time when the specified operation was
-    #   invoked and produced the finding (lastSeen).
-    #
-    # All date and time values are in UTC and extended ISO 8601 format.
+    # Provides information about an API operation that an entity invoked for
+    # an affected resource.
     #
     # @!attribute [rw] api
     #   @return [String]
@@ -164,33 +162,14 @@ module Aws::Macie2
       :api_service_name,
       :first_seen,
       :last_seen)
+      SENSITIVE = []
       include Aws::Structure
     end
 
-    # Specifies one or more findings to archive.
-    #
-    # @note When making an API call, you may pass ArchiveFindingsRequest
-    #   data as a hash:
-    #
-    #       {
-    #         finding_ids: ["__string"], # required
-    #       }
-    #
-    # @!attribute [rw] finding_ids
-    #   @return [Array<String>]
-    #
-    # @see http://docs.aws.amazon.com/goto/WebAPI/macie2-2020-01-01/ArchiveFindingsRequest AWS API Documentation
-    #
-    class ArchiveFindingsRequest < Struct.new(
-      :finding_ids)
-      include Aws::Structure
-    end
-
-    # @see http://docs.aws.amazon.com/goto/WebAPI/macie2-2020-01-01/ArchiveFindingsResponse AWS API Documentation
-    #
-    class ArchiveFindingsResponse < Aws::EmptyStructure; end
-
-    # Reserved for future use.
+    # Provides information about an identity that performed an action on an
+    # affected resource by using temporary security credentials. The
+    # credentials were obtained using the AssumeRole operation of the AWS
+    # Security Token Service (AWS STS) API.
     #
     # @!attribute [rw] access_key_id
     #   @return [String]
@@ -206,7 +185,7 @@ module Aws::Macie2
     #
     # @!attribute [rw] session_context
     #   Provides information about a session that was created for an entity
-    #   who performed an action by using temporary security credentials.
+    #   that performed an action by using temporary security credentials.
     #   @return [Types::SessionContext]
     #
     # @see http://docs.aws.amazon.com/goto/WebAPI/macie2-2020-01-01/AssumedRole AWS API Documentation
@@ -217,10 +196,13 @@ module Aws::Macie2
       :arn,
       :principal_id,
       :session_context)
+      SENSITIVE = []
       include Aws::Structure
     end
 
-    # Reserved for future use.
+    # Provides information about an AWS account and entity that performed an
+    # action on an affected resource. The action was performed using the
+    # credentials for an AWS account other than your own account.
     #
     # @!attribute [rw] account_id
     #   @return [String]
@@ -233,10 +215,12 @@ module Aws::Macie2
     class AwsAccount < Struct.new(
       :account_id,
       :principal_id)
+      SENSITIVE = []
       include Aws::Structure
     end
 
-    # Reserved for future use.
+    # Provides information about an AWS service that performed an action on
+    # an affected resource.
     #
     # @!attribute [rw] invoked_by
     #   @return [String]
@@ -245,6 +229,7 @@ module Aws::Macie2
     #
     class AwsService < Struct.new(
       :invoked_by)
+      SENSITIVE = []
       include Aws::Structure
     end
 
@@ -277,6 +262,7 @@ module Aws::Macie2
       :description,
       :id,
       :name)
+      SENSITIVE = []
       include Aws::Structure
     end
 
@@ -297,6 +283,7 @@ module Aws::Macie2
     #
     class BatchGetCustomDataIdentifiersRequest < Struct.new(
       :ids)
+      SENSITIVE = []
       include Aws::Structure
     end
 
@@ -313,6 +300,7 @@ module Aws::Macie2
     class BatchGetCustomDataIdentifiersResponse < Struct.new(
       :custom_data_identifiers,
       :not_found_identifier_ids)
+      SENSITIVE = []
       include Aws::Structure
     end
 
@@ -345,11 +333,13 @@ module Aws::Macie2
       :block_public_policy,
       :ignore_public_acls,
       :restrict_public_buckets)
+      SENSITIVE = []
       include Aws::Structure
     end
 
-    # The total number of buckets that are publicly accessible, based on a
-    # combination of permissions settings for each bucket.
+    # Provides information about the number of S3 buckets that are publicly
+    # accessible based on a combination of permissions settings for each
+    # bucket.
     #
     # @!attribute [rw] publicly_accessible
     #   @return [Integer]
@@ -366,12 +356,12 @@ module Aws::Macie2
       :publicly_accessible,
       :publicly_readable,
       :publicly_writable)
+      SENSITIVE = []
       include Aws::Structure
     end
 
-    # The total number of buckets, grouped by server-side encryption type.
-    # This object also reports the total number of buckets that aren't
-    # encrypted.
+    # Provides information about the number of S3 buckets that use certain
+    # types of server-side encryption or don't encrypt objects by default.
     #
     # @!attribute [rw] kms_managed
     #   @return [Integer]
@@ -388,11 +378,12 @@ module Aws::Macie2
       :kms_managed,
       :s3_managed,
       :unencrypted)
+      SENSITIVE = []
       include Aws::Structure
     end
 
-    # The total number of buckets that are shared with another AWS account
-    # or configured to support cross-origin resource sharing (CORS).
+    # Provides information about the number of S3 buckets that are shared
+    # with other AWS accounts.
     #
     # @!attribute [rw] external
     #   @return [Integer]
@@ -409,6 +400,7 @@ module Aws::Macie2
       :external,
       :internal,
       :not_shared)
+      SENSITIVE = []
       include Aws::Structure
     end
 
@@ -459,6 +451,7 @@ module Aws::Macie2
       :lte,
       :neq,
       :prefix)
+      SENSITIVE = []
       include Aws::Structure
     end
 
@@ -493,6 +486,7 @@ module Aws::Macie2
       :access_control_list,
       :block_public_access,
       :bucket_policy)
+      SENSITIVE = []
       include Aws::Structure
     end
 
@@ -521,6 +515,9 @@ module Aws::Macie2
     #   @return [Integer]
     #
     # @!attribute [rw] object_count_by_encryption_type
+    #   Provides information about the number of objects that are in an S3
+    #   bucket and use certain types of server-side encryption, use
+    #   client-side encryption, or aren't encrypted.
     #   @return [Types::ObjectCountByEncryptionType]
     #
     # @!attribute [rw] public_access
@@ -571,11 +568,12 @@ module Aws::Macie2
       :size_in_bytes_compressed,
       :tags,
       :versioning)
+      SENSITIVE = []
       include Aws::Structure
     end
 
     # The account-level and bucket-level permissions settings for an S3
-    # bucket, or the bucket that contains an object.
+    # bucket.
     #
     # @!attribute [rw] account_level_permissions
     #   Provides information about account-level permissions settings that
@@ -592,6 +590,7 @@ module Aws::Macie2
     class BucketPermissionConfiguration < Struct.new(
       :account_level_permissions,
       :bucket_level_permissions)
+      SENSITIVE = []
       include Aws::Structure
     end
 
@@ -609,6 +608,7 @@ module Aws::Macie2
     class BucketPolicy < Struct.new(
       :allows_public_read_access,
       :allows_public_write_access)
+      SENSITIVE = []
       include Aws::Structure
     end
 
@@ -620,7 +620,7 @@ module Aws::Macie2
     #
     # @!attribute [rw] permission_configuration
     #   The account-level and bucket-level permissions settings for an S3
-    #   bucket, or the bucket that contains an object.
+    #   bucket.
     #   @return [Types::BucketPermissionConfiguration]
     #
     # @see http://docs.aws.amazon.com/goto/WebAPI/macie2-2020-01-01/BucketPublicAccess AWS API Documentation
@@ -628,6 +628,7 @@ module Aws::Macie2
     class BucketPublicAccess < Struct.new(
       :effective_permission,
       :permission_configuration)
+      SENSITIVE = []
       include Aws::Structure
     end
 
@@ -653,6 +654,7 @@ module Aws::Macie2
     class BucketSortCriteria < Struct.new(
       :attribute_name,
       :order_by)
+      SENSITIVE = []
       include Aws::Structure
     end
 
@@ -670,8 +672,8 @@ module Aws::Macie2
     #
     # @!attribute [rw] result
     #   Provides detailed information about a sensitive data finding,
-    #   including the types and number of occurrences of the data that was
-    #   found.
+    #   including the types and number of occurrences of the sensitive data
+    #   that was found.
     #   @return [Types::ClassificationResult]
     #
     # @see http://docs.aws.amazon.com/goto/WebAPI/macie2-2020-01-01/ClassificationDetails AWS API Documentation
@@ -681,12 +683,13 @@ module Aws::Macie2
       :job_arn,
       :job_id,
       :result)
+      SENSITIVE = []
       include Aws::Structure
     end
 
-    # Specifies where to export data classification results to, and the
+    # Specifies where to store data classification results, and the
     # encryption settings to use when storing results in that location.
-    # Currently, you can export classification results only to an S3 bucket.
+    # Currently, you can store classification results only in an S3 bucket.
     #
     # @note When making an API call, you may pass ClassificationExportConfiguration
     #   data as a hash:
@@ -700,7 +703,7 @@ module Aws::Macie2
     #       }
     #
     # @!attribute [rw] s3_destination
-    #   Specifies an S3 bucket to export data classification results to, and
+    #   Specifies an S3 bucket to store data classification results in, and
     #   the encryption settings to use when storing results in that bucket.
     #   @return [Types::S3Destination]
     #
@@ -708,12 +711,13 @@ module Aws::Macie2
     #
     class ClassificationExportConfiguration < Struct.new(
       :s3_destination)
+      SENSITIVE = []
       include Aws::Structure
     end
 
     # Provides detailed information about a sensitive data finding,
-    # including the types and number of occurrences of the data that was
-    # found.
+    # including the types and number of occurrences of the sensitive data
+    # that was found.
     #
     # @!attribute [rw] custom_data_identifiers
     #   Provides information about the number of occurrences of the data
@@ -744,6 +748,7 @@ module Aws::Macie2
       :sensitive_data,
       :size_classified,
       :status)
+      SENSITIVE = []
       include Aws::Structure
     end
 
@@ -760,6 +765,7 @@ module Aws::Macie2
     class ClassificationResultStatus < Struct.new(
       :code,
       :reason)
+      SENSITIVE = []
       include Aws::Structure
     end
 
@@ -773,11 +779,15 @@ module Aws::Macie2
     #
     class ConflictException < Struct.new(
       :message)
+      SENSITIVE = []
       include Aws::Structure
     end
 
     # Specifies the scope, schedule, and other settings for a classification
-    # job.
+    # job. You can't delete or change the settings for a classification job
+    # after you create it. In Amazon Macie, classification jobs are
+    # immutable. This ensures accurate data classification results for
+    # audits or investigations.
     #
     # @note When making an API call, you may pass CreateClassificationJobRequest
     #   data as a hash:
@@ -911,6 +921,7 @@ module Aws::Macie2
       :sampling_percentage,
       :schedule_frequency,
       :tags)
+      SENSITIVE = []
       include Aws::Structure
     end
 
@@ -928,11 +939,15 @@ module Aws::Macie2
     class CreateClassificationJobResponse < Struct.new(
       :job_arn,
       :job_id)
+      SENSITIVE = []
       include Aws::Structure
     end
 
     # Specifies the criteria and other settings for a new custom data
-    # identifier.
+    # identifier. You can't change a custom data identifier after you
+    # create it. In Amazon Macie, custom data identifiers are immutable.
+    # This ensures accurate data classification results for audits or
+    # investigations.
     #
     # @note When making an API call, you may pass CreateCustomDataIdentifierRequest
     #   data as a hash:
@@ -990,6 +1005,7 @@ module Aws::Macie2
       :name,
       :regex,
       :tags)
+      SENSITIVE = []
       include Aws::Structure
     end
 
@@ -1003,6 +1019,7 @@ module Aws::Macie2
     #
     class CreateCustomDataIdentifierResponse < Struct.new(
       :custom_data_identifier_id)
+      SENSITIVE = []
       include Aws::Structure
     end
 
@@ -1035,8 +1052,9 @@ module Aws::Macie2
     #       }
     #
     # @!attribute [rw] action
-    #   The action to perform on findings that meet the filter criteria.
-    #   Valid values are:
+    #   The action to perform on findings that meet the filter criteria. To
+    #   suppress (automatically archive) findings that meet the criteria,
+    #   set this value to ARCHIVE. Valid values are:
     #   @return [String]
     #
     # @!attribute [rw] client_token
@@ -1074,6 +1092,7 @@ module Aws::Macie2
       :name,
       :position,
       :tags)
+      SENSITIVE = []
       include Aws::Structure
     end
 
@@ -1091,6 +1110,7 @@ module Aws::Macie2
     class CreateFindingsFilterResponse < Struct.new(
       :arn,
       :id)
+      SENSITIVE = []
       include Aws::Structure
     end
 
@@ -1120,6 +1140,7 @@ module Aws::Macie2
       :account_ids,
       :disable_email_notification,
       :message)
+      SENSITIVE = []
       include Aws::Structure
     end
 
@@ -1133,6 +1154,7 @@ module Aws::Macie2
     #
     class CreateInvitationsResponse < Struct.new(
       :unprocessed_accounts)
+      SENSITIVE = []
       include Aws::Structure
     end
 
@@ -1167,6 +1189,7 @@ module Aws::Macie2
     class CreateMemberRequest < Struct.new(
       :account,
       :tags)
+      SENSITIVE = []
       include Aws::Structure
     end
 
@@ -1180,6 +1203,7 @@ module Aws::Macie2
     #
     class CreateMemberResponse < Struct.new(
       :arn)
+      SENSITIVE = []
       include Aws::Structure
     end
 
@@ -1200,6 +1224,7 @@ module Aws::Macie2
     #
     class CreateSampleFindingsRequest < Struct.new(
       :finding_types)
+      SENSITIVE = []
       include Aws::Structure
     end
 
@@ -1249,6 +1274,7 @@ module Aws::Macie2
       :lt,
       :lte,
       :neq)
+      SENSITIVE = []
       include Aws::Structure
     end
 
@@ -1277,6 +1303,7 @@ module Aws::Macie2
       :description,
       :id,
       :name)
+      SENSITIVE = []
       include Aws::Structure
     end
 
@@ -1285,7 +1312,9 @@ module Aws::Macie2
     # that detected the data for the finding.
     #
     # @!attribute [rw] detections
-    #   Reserved for future use.
+    #   Provides information about custom data identifiers that produced a
+    #   sensitive data finding, and the number of occurrences of the data
+    #   that each identifier detected.
     #   @return [Array<Types::CustomDetection>]
     #
     # @!attribute [rw] total_count
@@ -1296,6 +1325,7 @@ module Aws::Macie2
     class CustomDataIdentifiers < Struct.new(
       :detections,
       :total_count)
+      SENSITIVE = []
       include Aws::Structure
     end
 
@@ -1318,9 +1348,13 @@ module Aws::Macie2
       :arn,
       :count,
       :name)
+      SENSITIVE = []
       include Aws::Structure
     end
 
+    # Specifies that a classification job runs once a day, every day. This
+    # is an empty object.
+    #
     # @api private
     #
     # @see http://docs.aws.amazon.com/goto/WebAPI/macie2-2020-01-01/DailySchedule AWS API Documentation
@@ -1344,6 +1378,7 @@ module Aws::Macie2
     #
     class DeclineInvitationsRequest < Struct.new(
       :account_ids)
+      SENSITIVE = []
       include Aws::Structure
     end
 
@@ -1358,11 +1393,12 @@ module Aws::Macie2
     #
     class DeclineInvitationsResponse < Struct.new(
       :unprocessed_accounts)
+      SENSITIVE = []
       include Aws::Structure
     end
 
     # Provides information about sensitive data that was detected by managed
-    # data identifiers and produced a finding.
+    # data identifiers and produced a sensitive data finding.
     #
     # @!attribute [rw] count
     #   @return [Integer]
@@ -1375,6 +1411,7 @@ module Aws::Macie2
     class DefaultDetection < Struct.new(
       :count,
       :type)
+      SENSITIVE = []
       include Aws::Structure
     end
 
@@ -1392,6 +1429,7 @@ module Aws::Macie2
     #
     class DeleteCustomDataIdentifierRequest < Struct.new(
       :id)
+      SENSITIVE = []
       include Aws::Structure
     end
 
@@ -1413,6 +1451,7 @@ module Aws::Macie2
     #
     class DeleteFindingsFilterRequest < Struct.new(
       :id)
+      SENSITIVE = []
       include Aws::Structure
     end
 
@@ -1437,6 +1476,7 @@ module Aws::Macie2
     #
     class DeleteInvitationsRequest < Struct.new(
       :account_ids)
+      SENSITIVE = []
       include Aws::Structure
     end
 
@@ -1450,6 +1490,7 @@ module Aws::Macie2
     #
     class DeleteInvitationsResponse < Struct.new(
       :unprocessed_accounts)
+      SENSITIVE = []
       include Aws::Structure
     end
 
@@ -1467,6 +1508,7 @@ module Aws::Macie2
     #
     class DeleteMemberRequest < Struct.new(
       :id)
+      SENSITIVE = []
       include Aws::Structure
     end
 
@@ -1523,6 +1565,7 @@ module Aws::Macie2
       :max_results,
       :next_token,
       :sort_criteria)
+      SENSITIVE = []
       include Aws::Structure
     end
 
@@ -1541,6 +1584,7 @@ module Aws::Macie2
     class DescribeBucketsResponse < Struct.new(
       :buckets,
       :next_token)
+      SENSITIVE = []
       include Aws::Structure
     end
 
@@ -1558,6 +1602,7 @@ module Aws::Macie2
     #
     class DescribeClassificationJobRequest < Struct.new(
       :job_id)
+      SENSITIVE = []
       include Aws::Structure
     end
 
@@ -1588,7 +1633,7 @@ module Aws::Macie2
     #   @return [String]
     #
     # @!attribute [rw] job_status
-    #   The current status of a classification job. Valid values are:
+    #   The current status of a classification job. Possible values are:
     #   @return [String]
     #
     # @!attribute [rw] job_type
@@ -1642,6 +1687,7 @@ module Aws::Macie2
       :schedule_frequency,
       :statistics,
       :tags)
+      SENSITIVE = []
       include Aws::Structure
     end
 
@@ -1665,6 +1711,7 @@ module Aws::Macie2
     class DescribeOrganizationConfigurationResponse < Struct.new(
       :auto_enable,
       :max_account_limit_reached)
+      SENSITIVE = []
       include Aws::Structure
     end
 
@@ -1692,6 +1739,7 @@ module Aws::Macie2
     #
     class DisableOrganizationAdminAccountRequest < Struct.new(
       :admin_account_id)
+      SENSITIVE = []
       include Aws::Structure
     end
 
@@ -1723,6 +1771,7 @@ module Aws::Macie2
     #
     class DisassociateMemberRequest < Struct.new(
       :id)
+      SENSITIVE = []
       include Aws::Structure
     end
 
@@ -1730,6 +1779,9 @@ module Aws::Macie2
     #
     class DisassociateMemberResponse < Aws::EmptyStructure; end
 
+    # Provides information about the domain name of the device that an
+    # entity used to perform an action on an affected resource.
+    #
     # @!attribute [rw] domain_name
     #   @return [String]
     #
@@ -1737,6 +1789,7 @@ module Aws::Macie2
     #
     class DomainDetails < Struct.new(
       :domain_name)
+      SENSITIVE = []
       include Aws::Structure
     end
 
@@ -1765,9 +1818,10 @@ module Aws::Macie2
     #   @return [String]
     #
     # @!attribute [rw] finding_publishing_frequency
-    #   The frequency with which Amazon Macie publishes findings for an
-    #   account. This includes adding findings to AWS Security Hub and
-    #   exporting finding events to Amazon CloudWatch. Valid values are:
+    #   The frequency with which Amazon Macie publishes updates to policy
+    #   findings for an account. This includes publishing updates to AWS
+    #   Security Hub and Amazon EventBridge (formerly called Amazon
+    #   CloudWatch Events). Valid values are:
     #   @return [String]
     #
     # @!attribute [rw] status
@@ -1780,6 +1834,7 @@ module Aws::Macie2
       :client_token,
       :finding_publishing_frequency,
       :status)
+      SENSITIVE = []
       include Aws::Structure
     end
 
@@ -1812,6 +1867,7 @@ module Aws::Macie2
     class EnableOrganizationAdminAccountRequest < Struct.new(
       :admin_account_id,
       :client_token)
+      SENSITIVE = []
       include Aws::Structure
     end
 
@@ -1819,7 +1875,10 @@ module Aws::Macie2
     #
     class EnableOrganizationAdminAccountResponse < Aws::EmptyStructure; end
 
-    # Reserved for future use.
+    # Provides information about an identity that performed an action on an
+    # affected resource by using temporary security credentials. The
+    # credentials were obtained using the GetFederationToken operation of
+    # the AWS Security Token Service (AWS STS) API.
     #
     # @!attribute [rw] access_key_id
     #   @return [String]
@@ -1835,7 +1894,7 @@ module Aws::Macie2
     #
     # @!attribute [rw] session_context
     #   Provides information about a session that was created for an entity
-    #   who performed an action by using temporary security credentials.
+    #   that performed an action by using temporary security credentials.
     #   @return [Types::SessionContext]
     #
     # @see http://docs.aws.amazon.com/goto/WebAPI/macie2-2020-01-01/FederatedUser AWS API Documentation
@@ -1846,6 +1905,7 @@ module Aws::Macie2
       :arn,
       :principal_id,
       :session_context)
+      SENSITIVE = []
       include Aws::Structure
     end
 
@@ -1882,7 +1942,7 @@ module Aws::Macie2
     #   @return [String]
     #
     # @!attribute [rw] policy_details
-    #   Provides detailed information about a policy finding.
+    #   Provides the details of a policy finding.
     #   @return [Types::PolicyDetails]
     #
     # @!attribute [rw] region
@@ -1934,6 +1994,7 @@ module Aws::Macie2
       :title,
       :type,
       :updated_at)
+      SENSITIVE = []
       include Aws::Structure
     end
 
@@ -1941,21 +2002,13 @@ module Aws::Macie2
     # produced a policy finding.
     #
     # @!attribute [rw] action_type
+    #   The type of action that occurred for the resource and produced the
+    #   policy finding:
     #   @return [String]
     #
     # @!attribute [rw] api_call_details
-    #   For the affected resource:
-    #
-    #   * The name of the operation that was invoked most recently and
-    #     produced the finding (api).
-    #
-    #   * The first date and time when any operation was invoked and
-    #     produced the finding (firstSeen).
-    #
-    #   * The most recent date and time when the specified operation was
-    #     invoked and produced the finding (lastSeen).
-    #
-    #   All date and time values are in UTC and extended ISO 8601 format.
+    #   Provides information about an API operation that an entity invoked
+    #   for an affected resource.
     #   @return [Types::ApiCallDetails]
     #
     # @see http://docs.aws.amazon.com/goto/WebAPI/macie2-2020-01-01/FindingAction AWS API Documentation
@@ -1963,19 +2016,26 @@ module Aws::Macie2
     class FindingAction < Struct.new(
       :action_type,
       :api_call_details)
+      SENSITIVE = []
       include Aws::Structure
     end
 
-    # Provides information about an entity who performed an action that
+    # Provides information about an entity that performed an action that
     # produced a policy finding for a resource.
     #
     # @!attribute [rw] domain_details
+    #   Provides information about the domain name of the device that an
+    #   entity used to perform an action on an affected resource.
     #   @return [Types::DomainDetails]
     #
     # @!attribute [rw] ip_address_details
+    #   Provides information about the IP address of the device that an
+    #   entity used to perform an action on an affected resource.
     #   @return [Types::IpAddressDetails]
     #
     # @!attribute [rw] user_identity
+    #   Provides information about the type and other characteristics of an
+    #   entity that performed an action on an affected resource.
     #   @return [Types::UserIdentity]
     #
     # @see http://docs.aws.amazon.com/goto/WebAPI/macie2-2020-01-01/FindingActor AWS API Documentation
@@ -1984,6 +2044,7 @@ module Aws::Macie2
       :domain_details,
       :ip_address_details,
       :user_identity)
+      SENSITIVE = []
       include Aws::Structure
     end
 
@@ -2015,11 +2076,12 @@ module Aws::Macie2
     #
     class FindingCriteria < Struct.new(
       :criterion)
+      SENSITIVE = []
       include Aws::Structure
     end
 
-    # Specifies criteria for sorting the results of a query for information
-    # about findings.
+    # Specifies criteria for sorting the results of a query that retrieves
+    # aggregated statistical data about findings.
     #
     # @note When making an API call, you may pass FindingStatisticsSortCriteria
     #   data as a hash:
@@ -2041,11 +2103,18 @@ module Aws::Macie2
     class FindingStatisticsSortCriteria < Struct.new(
       :attribute_name,
       :order_by)
+      SENSITIVE = []
       include Aws::Structure
     end
 
     # Provides information about a findings filter.
     #
+    # @!attribute [rw] action
+    #   The action to perform on findings that meet the filter criteria. To
+    #   suppress (automatically archive) findings that meet the criteria,
+    #   set this value to ARCHIVE. Valid values are:
+    #   @return [String]
+    #
     # @!attribute [rw] arn
     #   @return [String]
     #
@@ -2064,15 +2133,17 @@ module Aws::Macie2
     # @see http://docs.aws.amazon.com/goto/WebAPI/macie2-2020-01-01/FindingsFilterListItem AWS API Documentation
     #
     class FindingsFilterListItem < Struct.new(
+      :action,
       :arn,
       :id,
       :name,
       :tags)
+      SENSITIVE = []
       include Aws::Structure
     end
 
-    # Specifies an account that's associated with S3 buckets to retrieve
-    # aggregated statistical data for.
+    # Specifies an account that's associated with the S3 buckets to
+    # retrieve aggregated statistical data for.
     #
     # @note When making an API call, you may pass GetBucketStatisticsRequest
     #   data as a hash:
@@ -2088,6 +2159,7 @@ module Aws::Macie2
     #
     class GetBucketStatisticsRequest < Struct.new(
       :account_id)
+      SENSITIVE = []
       include Aws::Structure
     end
 
@@ -2099,19 +2171,20 @@ module Aws::Macie2
     #   @return [Integer]
     #
     # @!attribute [rw] bucket_count_by_effective_permission
-    #   The total number of buckets that are publicly accessible, based on a
-    #   combination of permissions settings for each bucket.
+    #   Provides information about the number of S3 buckets that are
+    #   publicly accessible based on a combination of permissions settings
+    #   for each bucket.
     #   @return [Types::BucketCountByEffectivePermission]
     #
     # @!attribute [rw] bucket_count_by_encryption_type
-    #   The total number of buckets, grouped by server-side encryption type.
-    #   This object also reports the total number of buckets that aren't
-    #   encrypted.
+    #   Provides information about the number of S3 buckets that use certain
+    #   types of server-side encryption or don't encrypt objects by
+    #   default.
     #   @return [Types::BucketCountByEncryptionType]
     #
     # @!attribute [rw] bucket_count_by_shared_access_type
-    #   The total number of buckets that are shared with another AWS account
-    #   or configured to support cross-origin resource sharing (CORS).
+    #   Provides information about the number of S3 buckets that are shared
+    #   with other AWS accounts.
     #   @return [Types::BucketCountBySharedAccessType]
     #
     # @!attribute [rw] classifiable_object_count
@@ -2141,6 +2214,7 @@ module Aws::Macie2
       :object_count,
       :size_in_bytes,
       :size_in_bytes_compressed)
+      SENSITIVE = []
       include Aws::Structure
     end
 
@@ -2151,12 +2225,12 @@ module Aws::Macie2
     class GetClassificationExportConfigurationRequest < Aws::EmptyStructure; end
 
     # Provides information about the current configuration settings for
-    # exporting data classification results.
+    # storing data classification results.
     #
     # @!attribute [rw] configuration
-    #   Specifies where to export data classification results to, and the
+    #   Specifies where to store data classification results, and the
     #   encryption settings to use when storing results in that location.
-    #   Currently, you can export classification results only to an S3
+    #   Currently, you can store classification results only in an S3
     #   bucket.
     #   @return [Types::ClassificationExportConfiguration]
     #
@@ -2164,6 +2238,7 @@ module Aws::Macie2
     #
     class GetClassificationExportConfigurationResponse < Struct.new(
       :configuration)
+      SENSITIVE = []
       include Aws::Structure
     end
 
@@ -2181,6 +2256,7 @@ module Aws::Macie2
     #
     class GetCustomDataIdentifierRequest < Struct.new(
       :id)
+      SENSITIVE = []
       include Aws::Structure
     end
 
@@ -2237,11 +2313,13 @@ module Aws::Macie2
       :name,
       :regex,
       :tags)
+      SENSITIVE = []
       include Aws::Structure
     end
 
     # Specifies criteria for filtering, grouping, sorting, and paginating
-    # the results of a query for information about findings.
+    # the results of a query that retrieves aggregated statistical data
+    # about findings.
     #
     # @note When making an API call, you may pass GetFindingStatisticsRequest
     #   data as a hash:
@@ -2279,8 +2357,8 @@ module Aws::Macie2
     #   @return [Integer]
     #
     # @!attribute [rw] sort_criteria
-    #   Specifies criteria for sorting the results of a query for
-    #   information about findings.
+    #   Specifies criteria for sorting the results of a query that retrieves
+    #   aggregated statistical data about findings.
     #   @return [Types::FindingStatisticsSortCriteria]
     #
     # @see http://docs.aws.amazon.com/goto/WebAPI/macie2-2020-01-01/GetFindingStatisticsRequest AWS API Documentation
@@ -2290,6 +2368,7 @@ module Aws::Macie2
       :group_by,
       :size,
       :sort_criteria)
+      SENSITIVE = []
       include Aws::Structure
     end
 
@@ -2303,6 +2382,7 @@ module Aws::Macie2
     #
     class GetFindingStatisticsResponse < Struct.new(
       :counts_by_group)
+      SENSITIVE = []
       include Aws::Structure
     end
 
@@ -2320,14 +2400,17 @@ module Aws::Macie2
     #
     class GetFindingsFilterRequest < Struct.new(
       :id)
+      SENSITIVE = []
       include Aws::Structure
     end
 
-    # Provides information about a findings filter.
+    # Provides information about the criteria and other settings for a
+    # findings filter.
     #
     # @!attribute [rw] action
-    #   The action to perform on findings that meet the filter criteria.
-    #   Valid values are:
+    #   The action to perform on findings that meet the filter criteria. To
+    #   suppress (automatically archive) findings that meet the criteria,
+    #   set this value to ARCHIVE. Valid values are:
     #   @return [String]
     #
     # @!attribute [rw] arn
@@ -2367,6 +2450,7 @@ module Aws::Macie2
       :name,
       :position,
       :tags)
+      SENSITIVE = []
       include Aws::Structure
     end
 
@@ -2396,6 +2480,7 @@ module Aws::Macie2
     class GetFindingsRequest < Struct.new(
       :finding_ids,
       :sort_criteria)
+      SENSITIVE = []
       include Aws::Structure
     end
 
@@ -2409,6 +2494,7 @@ module Aws::Macie2
     #
     class GetFindingsResponse < Struct.new(
       :findings)
+      SENSITIVE = []
       include Aws::Structure
     end
 
@@ -2429,6 +2515,7 @@ module Aws::Macie2
     #
     class GetInvitationsCountResponse < Struct.new(
       :invitations_count)
+      SENSITIVE = []
       include Aws::Structure
     end
 
@@ -2445,9 +2532,10 @@ module Aws::Macie2
     #   @return [Time]
     #
     # @!attribute [rw] finding_publishing_frequency
-    #   The frequency with which Amazon Macie publishes findings for an
-    #   account. This includes adding findings to AWS Security Hub and
-    #   exporting finding events to Amazon CloudWatch. Valid values are:
+    #   The frequency with which Amazon Macie publishes updates to policy
+    #   findings for an account. This includes publishing updates to AWS
+    #   Security Hub and Amazon EventBridge (formerly called Amazon
+    #   CloudWatch Events). Valid values are:
     #   @return [String]
     #
     # @!attribute [rw] service_role
@@ -2468,6 +2556,7 @@ module Aws::Macie2
       :service_role,
       :status,
       :updated_at)
+      SENSITIVE = []
       include Aws::Structure
     end
 
@@ -2491,6 +2580,7 @@ module Aws::Macie2
     #
     class GetMasterAccountResponse < Struct.new(
       :master)
+      SENSITIVE = []
       include Aws::Structure
     end
 
@@ -2508,6 +2598,7 @@ module Aws::Macie2
     #
     class GetMemberRequest < Struct.new(
       :id)
+      SENSITIVE = []
       include Aws::Structure
     end
 
@@ -2555,6 +2646,7 @@ module Aws::Macie2
       :relationship_status,
       :tags,
       :updated_at)
+      SENSITIVE = []
       include Aws::Structure
     end
 
@@ -2568,14 +2660,15 @@ module Aws::Macie2
     #       {
     #         filter_by: [
     #           {
-    #             key: "accountId", # accepts accountId
+    #             comparator: "GT", # accepts GT, GTE, LT, LTE, EQ, NE, CONTAINS
+    #             key: "accountId", # accepts accountId, serviceLimit, freeTrialStartDate, total
     #             values: ["__string"],
     #           },
     #         ],
     #         max_results: 1,
     #         next_token: "__string",
     #         sort_by: {
-    #           key: "accountId", # accepts accountId, total
+    #           key: "accountId", # accepts accountId, total, serviceLimitValue, freeTrialStartDate
     #           order_by: "ASC", # accepts ASC, DESC
     #         },
     #       }
@@ -2601,6 +2694,7 @@ module Aws::Macie2
       :max_results,
       :next_token,
       :sort_by)
+      SENSITIVE = []
       include Aws::Structure
     end
 
@@ -2618,6 +2712,7 @@ module Aws::Macie2
     class GetUsageStatisticsResponse < Struct.new(
       :next_token,
       :records)
+      SENSITIVE = []
       include Aws::Structure
     end
 
@@ -2637,11 +2732,12 @@ module Aws::Macie2
     #
     class GetUsageTotalsResponse < Struct.new(
       :usage_totals)
+      SENSITIVE = []
       include Aws::Structure
     end
 
-    # Provides a group of results for a query that retrieved information
-    # about findings.
+    # Provides a group of results for a query that retrieved aggregated
+    # statistical data about findings.
     #
     # @!attribute [rw] count
     #   @return [Integer]
@@ -2654,10 +2750,12 @@ module Aws::Macie2
     class GroupCount < Struct.new(
       :count,
       :group_key)
+      SENSITIVE = []
       include Aws::Structure
     end
 
-    # Reserved for future use.
+    # Provides information about an AWS Identity and Access Management (IAM)
+    # user who performed an action on an affected resource.
     #
     # @!attribute [rw] account_id
     #   @return [String]
@@ -2678,6 +2776,7 @@ module Aws::Macie2
       :arn,
       :principal_id,
       :user_name)
+      SENSITIVE = []
       include Aws::Structure
     end
 
@@ -2691,6 +2790,7 @@ module Aws::Macie2
     #
     class InternalServerException < Struct.new(
       :message)
+      SENSITIVE = []
       include Aws::Structure
     end
 
@@ -2719,26 +2819,33 @@ module Aws::Macie2
       :invitation_id,
       :invited_at,
       :relationship_status)
+      SENSITIVE = []
       include Aws::Structure
     end
 
+    # Provides information about the IP address of the device that an entity
+    # used to perform an action on an affected resource.
+    #
     # @!attribute [rw] ip_address_v4
     #   @return [String]
     #
     # @!attribute [rw] ip_city
-    #   Reserved for future use.
+    #   Provides information about the city that an IP address originated
+    #   from.
     #   @return [Types::IpCity]
     #
     # @!attribute [rw] ip_country
-    #   Reserved for future use.
+    #   Provides information about the country that an IP address originated
+    #   from.
     #   @return [Types::IpCountry]
     #
     # @!attribute [rw] ip_geo_location
-    #   Reserved for future use.
+    #   Provides geographic coordinates that indicate where a specified IP
+    #   address originated from.
     #   @return [Types::IpGeoLocation]
     #
     # @!attribute [rw] ip_owner
-    #   Reserved for future use.
+    #   Provides information about the registered owner of an IP address.
     #   @return [Types::IpOwner]
     #
     # @see http://docs.aws.amazon.com/goto/WebAPI/macie2-2020-01-01/IpAddressDetails AWS API Documentation
@@ -2749,10 +2856,12 @@ module Aws::Macie2
       :ip_country,
       :ip_geo_location,
       :ip_owner)
+      SENSITIVE = []
       include Aws::Structure
     end
 
-    # Reserved for future use.
+    # Provides information about the city that an IP address originated
+    # from.
     #
     # @!attribute [rw] name
     #   @return [String]
@@ -2761,10 +2870,12 @@ module Aws::Macie2
     #
     class IpCity < Struct.new(
       :name)
+      SENSITIVE = []
       include Aws::Structure
     end
 
-    # Reserved for future use.
+    # Provides information about the country that an IP address originated
+    # from.
     #
     # @!attribute [rw] code
     #   @return [String]
@@ -2777,10 +2888,12 @@ module Aws::Macie2
     class IpCountry < Struct.new(
       :code,
       :name)
+      SENSITIVE = []
       include Aws::Structure
     end
 
-    # Reserved for future use.
+    # Provides geographic coordinates that indicate where a specified IP
+    # address originated from.
     #
     # @!attribute [rw] lat
     #   @return [Float]
@@ -2793,10 +2906,11 @@ module Aws::Macie2
     class IpGeoLocation < Struct.new(
       :lat,
       :lon)
+      SENSITIVE = []
       include Aws::Structure
     end
 
-    # Reserved for future use.
+    # Provides information about the registered owner of an IP address.
     #
     # @!attribute [rw] asn
     #   @return [String]
@@ -2817,6 +2931,7 @@ module Aws::Macie2
       :asn_org,
       :isp,
       :org)
+      SENSITIVE = []
       include Aws::Structure
     end
 
@@ -2837,14 +2952,18 @@ module Aws::Macie2
     #       }
     #
     # @!attribute [rw] daily_schedule
+    #   Specifies that a classification job runs once a day, every day. This
+    #   is an empty object.
     #   @return [Types::DailySchedule]
     #
     # @!attribute [rw] monthly_schedule
-    #   Run the job once a month, on a specific day of the month. This value
-    #   can be an integer from 1 through 30.
+    #   Specifies a monthly recurrence pattern for running a classification
+    #   job.
     #   @return [Types::MonthlySchedule]
     #
     # @!attribute [rw] weekly_schedule
+    #   Specifies a weekly recurrence pattern for running a classification
+    #   job.
     #   @return [Types::WeeklySchedule]
     #
     # @see http://docs.aws.amazon.com/goto/WebAPI/macie2-2020-01-01/JobScheduleFrequency AWS API Documentation
@@ -2853,11 +2972,12 @@ module Aws::Macie2
       :daily_schedule,
       :monthly_schedule,
       :weekly_schedule)
+      SENSITIVE = []
       include Aws::Structure
     end
 
-    # Specifies one or more conditions that determine which objects a
-    # classification job analyzes.
+    # Specifies a property- or tag-based condition that defines criteria for
+    # including or excluding objects from a classification job.
     #
     # @note When making an API call, you may pass JobScopeTerm
     #   data as a hash:
@@ -2896,10 +3016,12 @@ module Aws::Macie2
     class JobScopeTerm < Struct.new(
       :simple_scope_term,
       :tag_scope_term)
+      SENSITIVE = []
       include Aws::Structure
     end
 
-    # Reserved for future use.
+    # Specifies one or more property- and tag-based conditions that define
+    # criteria for including or excluding objects from a classification job.
     #
     # @note When making an API call, you may pass JobScopingBlock
     #   data as a hash:
@@ -2934,6 +3056,7 @@ module Aws::Macie2
     #
     class JobScopingBlock < Struct.new(
       :and)
+      SENSITIVE = []
       include Aws::Structure
     end
 
@@ -2950,7 +3073,7 @@ module Aws::Macie2
     #   @return [String]
     #
     # @!attribute [rw] job_status
-    #   The current status of a classification job. Valid values are:
+    #   The current status of a classification job. Possible values are:
     #   @return [String]
     #
     # @!attribute [rw] job_type
@@ -2969,6 +3092,7 @@ module Aws::Macie2
       :job_status,
       :job_type,
       :name)
+      SENSITIVE = []
       include Aws::Structure
     end
 
@@ -2987,6 +3111,7 @@ module Aws::Macie2
     class KeyValuePair < Struct.new(
       :key,
       :value)
+      SENSITIVE = []
       include Aws::Structure
     end
 
@@ -3044,6 +3169,7 @@ module Aws::Macie2
       :max_results,
       :next_token,
       :sort_criteria)
+      SENSITIVE = []
       include Aws::Structure
     end
 
@@ -3061,6 +3187,7 @@ module Aws::Macie2
     class ListClassificationJobsResponse < Struct.new(
       :items,
       :next_token)
+      SENSITIVE = []
       include Aws::Structure
     end
 
@@ -3086,6 +3213,7 @@ module Aws::Macie2
     class ListCustomDataIdentifiersRequest < Struct.new(
       :max_results,
       :next_token)
+      SENSITIVE = []
       include Aws::Structure
     end
 
@@ -3103,6 +3231,7 @@ module Aws::Macie2
     class ListCustomDataIdentifiersResponse < Struct.new(
       :items,
       :next_token)
+      SENSITIVE = []
       include Aws::Structure
     end
 
@@ -3125,6 +3254,7 @@ module Aws::Macie2
     class ListFindingsFiltersRequest < Struct.new(
       :max_results,
       :next_token)
+      SENSITIVE = []
       include Aws::Structure
     end
 
@@ -3141,6 +3271,7 @@ module Aws::Macie2
     class ListFindingsFiltersResponse < Struct.new(
       :findings_filter_list_items,
       :next_token)
+      SENSITIVE = []
       include Aws::Structure
     end
 
@@ -3194,6 +3325,7 @@ module Aws::Macie2
       :max_results,
       :next_token,
       :sort_criteria)
+      SENSITIVE = []
       include Aws::Structure
     end
 
@@ -3211,6 +3343,7 @@ module Aws::Macie2
     class ListFindingsResponse < Struct.new(
       :finding_ids,
       :next_token)
+      SENSITIVE = []
       include Aws::Structure
     end
 
@@ -3233,6 +3366,7 @@ module Aws::Macie2
     class ListInvitationsRequest < Struct.new(
       :max_results,
       :next_token)
+      SENSITIVE = []
       include Aws::Structure
     end
 
@@ -3250,6 +3384,7 @@ module Aws::Macie2
     class ListInvitationsResponse < Struct.new(
       :invitations,
       :next_token)
+      SENSITIVE = []
       include Aws::Structure
     end
 
@@ -3287,6 +3422,7 @@ module Aws::Macie2
     class ListJobsFilterCriteria < Struct.new(
       :excludes,
       :includes)
+      SENSITIVE = []
       include Aws::Structure
     end
 
@@ -3320,6 +3456,7 @@ module Aws::Macie2
       :comparator,
       :key,
       :values)
+      SENSITIVE = []
       include Aws::Structure
     end
 
@@ -3346,6 +3483,7 @@ module Aws::Macie2
     class ListJobsSortCriteria < Struct.new(
       :attribute_name,
       :order_by)
+      SENSITIVE = []
       include Aws::Structure
     end
 
@@ -3373,6 +3511,7 @@ module Aws::Macie2
       :max_results,
       :next_token,
       :only_associated)
+      SENSITIVE = []
       include Aws::Structure
     end
 
@@ -3390,6 +3529,7 @@ module Aws::Macie2
     class ListMembersResponse < Struct.new(
       :members,
       :next_token)
+      SENSITIVE = []
       include Aws::Structure
     end
 
@@ -3412,6 +3552,7 @@ module Aws::Macie2
     class ListOrganizationAdminAccountsRequest < Struct.new(
       :max_results,
       :next_token)
+      SENSITIVE = []
       include Aws::Structure
     end
 
@@ -3429,6 +3570,7 @@ module Aws::Macie2
     class ListOrganizationAdminAccountsResponse < Struct.new(
       :admin_accounts,
       :next_token)
+      SENSITIVE = []
       include Aws::Structure
     end
 
@@ -3446,6 +3588,7 @@ module Aws::Macie2
     #
     class ListTagsForResourceRequest < Struct.new(
       :resource_arn)
+      SENSITIVE = []
       include Aws::Structure
     end
 
@@ -3463,6 +3606,7 @@ module Aws::Macie2
     #
     class ListTagsForResourceResponse < Struct.new(
       :tags)
+      SENSITIVE = []
       include Aws::Structure
     end
 
@@ -3510,11 +3654,12 @@ module Aws::Macie2
       :relationship_status,
       :tags,
       :updated_at)
+      SENSITIVE = []
       include Aws::Structure
     end
 
-    # Run the job once a month, on a specific day of the month. This value
-    # can be an integer from 1 through 30.
+    # Specifies a monthly recurrence pattern for running a classification
+    # job.
     #
     # @note When making an API call, you may pass MonthlySchedule
     #   data as a hash:
@@ -3530,9 +3675,14 @@ module Aws::Macie2
     #
     class MonthlySchedule < Struct.new(
       :day_of_month)
+      SENSITIVE = []
       include Aws::Structure
     end
 
+    # Provides information about the number of objects that are in an S3
+    # bucket and use certain types of server-side encryption, use
+    # client-side encryption, or aren't encrypted.
+    #
     # @!attribute [rw] customer_managed
     #   @return [Integer]
     #
@@ -3552,10 +3702,11 @@ module Aws::Macie2
       :kms_managed,
       :s3_managed,
       :unencrypted)
+      SENSITIVE = []
       include Aws::Structure
     end
 
-    # Provides detailed information about a policy finding.
+    # Provides the details of a policy finding.
     #
     # @!attribute [rw] action
     #   Provides information about an action that occurred for a resource
@@ -3563,7 +3714,7 @@ module Aws::Macie2
     #   @return [Types::FindingAction]
     #
     # @!attribute [rw] actor
-    #   Provides information about an entity who performed an action that
+    #   Provides information about an entity that performed an action that
     #   produced a policy finding for a resource.
     #   @return [Types::FindingActor]
     #
@@ -3572,12 +3723,13 @@ module Aws::Macie2
     class PolicyDetails < Struct.new(
       :action,
       :actor)
+      SENSITIVE = []
       include Aws::Structure
     end
 
-    # Specifies where to export data classification results to, and the
+    # Specifies where to store data classification results, and the
     # encryption settings to use when storing results in that location.
-    # Currently, you can export classification results only to an S3 bucket.
+    # Currently, you can store classification results only in an S3 bucket.
     #
     # @note When making an API call, you may pass PutClassificationExportConfigurationRequest
     #   data as a hash:
@@ -3593,9 +3745,9 @@ module Aws::Macie2
     #       }
     #
     # @!attribute [rw] configuration
-    #   Specifies where to export data classification results to, and the
+    #   Specifies where to store data classification results, and the
     #   encryption settings to use when storing results in that location.
-    #   Currently, you can export classification results only to an S3
+    #   Currently, you can store classification results only in an S3
     #   bucket.
     #   @return [Types::ClassificationExportConfiguration]
     #
@@ -3603,16 +3755,17 @@ module Aws::Macie2
     #
     class PutClassificationExportConfigurationRequest < Struct.new(
       :configuration)
+      SENSITIVE = []
       include Aws::Structure
     end
 
-    # Provides information about updated settings for exporting data
+    # Provides information about updated settings for storing data
     # classification results.
     #
     # @!attribute [rw] configuration
-    #   Specifies where to export data classification results to, and the
+    #   Specifies where to store data classification results, and the
     #   encryption settings to use when storing results in that location.
-    #   Currently, you can export classification results only to an S3
+    #   Currently, you can store classification results only in an S3
     #   bucket.
     #   @return [Types::ClassificationExportConfiguration]
     #
@@ -3620,6 +3773,7 @@ module Aws::Macie2
     #
     class PutClassificationExportConfigurationResponse < Struct.new(
       :configuration)
+      SENSITIVE = []
       include Aws::Structure
     end
 
@@ -3642,6 +3796,7 @@ module Aws::Macie2
       :replicated,
       :replicated_externally,
       :replication_accounts)
+      SENSITIVE = []
       include Aws::Structure
     end
 
@@ -3655,6 +3810,7 @@ module Aws::Macie2
     #
     class ResourceNotFoundException < Struct.new(
       :message)
+      SENSITIVE = []
       include Aws::Structure
     end
 
@@ -3673,6 +3829,7 @@ module Aws::Macie2
     class ResourcesAffected < Struct.new(
       :s3_bucket,
       :s3_object)
+      SENSITIVE = []
       include Aws::Structure
     end
 
@@ -3702,7 +3859,9 @@ module Aws::Macie2
     #   @return [Types::BucketPublicAccess]
     #
     # @!attribute [rw] tags
-    #   Reserved for future use.
+    #   Provides information about the tags that are associated with an S3
+    #   bucket or object. Each tag consists of a required tag key and an
+    #   associated tag value.
     #   @return [Array<Types::KeyValuePair>]
     #
     # @see http://docs.aws.amazon.com/goto/WebAPI/macie2-2020-01-01/S3Bucket AWS API Documentation
@@ -3715,6 +3874,7 @@ module Aws::Macie2
       :owner,
       :public_access,
       :tags)
+      SENSITIVE = []
       include Aws::Structure
     end
 
@@ -3740,6 +3900,7 @@ module Aws::Macie2
     class S3BucketDefinitionForJob < Struct.new(
       :account_id,
       :buckets)
+      SENSITIVE = []
       include Aws::Structure
     end
 
@@ -3756,10 +3917,11 @@ module Aws::Macie2
     class S3BucketOwner < Struct.new(
       :display_name,
       :id)
+      SENSITIVE = []
       include Aws::Structure
     end
 
-    # Specifies an S3 bucket to export data classification results to, and
+    # Specifies an S3 bucket to store data classification results in, and
     # the encryption settings to use when storing results in that bucket.
     #
     # @note When making an API call, you may pass S3Destination
@@ -3786,6 +3948,7 @@ module Aws::Macie2
       :bucket_name,
       :key_prefix,
       :kms_key_arn)
+      SENSITIVE = []
       include Aws::Structure
     end
 
@@ -3854,6 +4017,9 @@ module Aws::Macie2
     #   @return [Array<Types::S3BucketDefinitionForJob>]
     #
     # @!attribute [rw] scoping
+    #   Specifies one or more property- and tag-based conditions that refine
+    #   the scope of a classification job. These conditions define criteria
+    #   that determine which objects a job analyzes.
     #   @return [Types::Scoping]
     #
     # @see http://docs.aws.amazon.com/goto/WebAPI/macie2-2020-01-01/S3JobDefinition AWS API Documentation
@@ -3861,6 +4027,7 @@ module Aws::Macie2
     class S3JobDefinition < Struct.new(
       :bucket_definitions,
       :scoping)
+      SENSITIVE = []
       include Aws::Structure
     end
 
@@ -3896,11 +4063,13 @@ module Aws::Macie2
     #   @return [Integer]
     #
     # @!attribute [rw] storage_class
-    #   The storage class of the S3 bucket or object. Valid values are:
+    #   The storage class of the S3 bucket or object. Possible values are:
     #   @return [String]
     #
     # @!attribute [rw] tags
-    #   Reserved for future use.
+    #   Provides information about the tags that are associated with an S3
+    #   bucket or object. Each tag consists of a required tag key and an
+    #   associated tag value.
     #   @return [Array<Types::KeyValuePair>]
     #
     # @!attribute [rw] version_id
@@ -3921,9 +4090,14 @@ module Aws::Macie2
       :storage_class,
       :tags,
       :version_id)
+      SENSITIVE = []
       include Aws::Structure
     end
 
+    # Specifies one or more property- and tag-based conditions that refine
+    # the scope of a classification job. These conditions define criteria
+    # that determine which objects a job analyzes.
+    #
     # @note When making an API call, you may pass Scoping
     #   data as a hash:
     #
@@ -3975,11 +4149,15 @@ module Aws::Macie2
     #       }
     #
     # @!attribute [rw] excludes
-    #   Reserved for future use.
+    #   Specifies one or more property- and tag-based conditions that define
+    #   criteria for including or excluding objects from a classification
+    #   job.
     #   @return [Types::JobScopingBlock]
     #
     # @!attribute [rw] includes
-    #   Reserved for future use.
+    #   Specifies one or more property- and tag-based conditions that define
+    #   criteria for including or excluding objects from a classification
+    #   job.
     #   @return [Types::JobScopingBlock]
     #
     # @see http://docs.aws.amazon.com/goto/WebAPI/macie2-2020-01-01/Scoping AWS API Documentation
@@ -3987,6 +4165,7 @@ module Aws::Macie2
     class Scoping < Struct.new(
       :excludes,
       :includes)
+      SENSITIVE = []
       include Aws::Structure
     end
 
@@ -3994,10 +4173,15 @@ module Aws::Macie2
     # occurrences of sensitive data that produced a finding.
     #
     # @!attribute [rw] category
+    #   The category of sensitive data that was detected and produced the
+    #   finding. Possible values are:
     #   @return [String]
     #
     # @!attribute [rw] detections
-    #   Reserved for future use.
+    #   Provides information about sensitive data that was detected by
+    #   managed data identifiers and produced a sensitive data finding, and
+    #   the number of occurrences of each type of sensitive data that was
+    #   detected.
     #   @return [Array<Types::DefaultDetection>]
     #
     # @!attribute [rw] total_count
@@ -4009,6 +4193,7 @@ module Aws::Macie2
       :category,
       :detections,
       :total_count)
+      SENSITIVE = []
       include Aws::Structure
     end
 
@@ -4016,8 +4201,8 @@ module Aws::Macie2
     # S3 bucket or object.
     #
     # @!attribute [rw] encryption_type
-    #   The server-side encryption algorithm that's used when storing the
-    #   S3 bucket or object. Valid values are:
+    #   The type of server-side encryption that's used to encrypt objects
+    #   in the S3 bucket. Valid values are:
     #   @return [String]
     #
     # @!attribute [rw] kms_master_key_id
@@ -4028,6 +4213,7 @@ module Aws::Macie2
     class ServerSideEncryption < Struct.new(
       :encryption_type,
       :kms_master_key_id)
+      SENSITIVE = []
       include Aws::Structure
     end
 
@@ -4048,6 +4234,7 @@ module Aws::Macie2
       :is_service_limited,
       :unit,
       :value)
+      SENSITIVE = []
       include Aws::Structure
     end
 
@@ -4061,11 +4248,12 @@ module Aws::Macie2
     #
     class ServiceQuotaExceededException < Struct.new(
       :message)
+      SENSITIVE = []
       include Aws::Structure
     end
 
     # Provides information about a session that was created for an entity
-    # who performed an action by using temporary security credentials.
+    # that performed an action by using temporary security credentials.
     #
     # @!attribute [rw] attributes
     #   Provides information about the context in which temporary security
@@ -4082,6 +4270,7 @@ module Aws::Macie2
     class SessionContext < Struct.new(
       :attributes,
       :session_issuer)
+      SENSITIVE = []
       include Aws::Structure
     end
 
@@ -4099,6 +4288,7 @@ module Aws::Macie2
     class SessionContextAttributes < Struct.new(
       :creation_date,
       :mfa_authenticated)
+      SENSITIVE = []
       include Aws::Structure
     end
 
@@ -4128,6 +4318,7 @@ module Aws::Macie2
       :principal_id,
       :type,
       :user_name)
+      SENSITIVE = []
       include Aws::Structure
     end
 
@@ -4135,8 +4326,8 @@ module Aws::Macie2
     # value.
     #
     # @!attribute [rw] description
-    #   The textual representation of the finding's severity. Valid values
-    #   are:
+    #   The textual representation of the finding's severity. Possible
+    #   values are:
     #   @return [String]
     #
     # @!attribute [rw] score
@@ -4147,6 +4338,7 @@ module Aws::Macie2
     class Severity < Struct.new(
       :description,
       :score)
+      SENSITIVE = []
       include Aws::Structure
     end
 
@@ -4180,6 +4372,7 @@ module Aws::Macie2
       :comparator,
       :key,
       :values)
+      SENSITIVE = []
       include Aws::Structure
     end
 
@@ -4205,6 +4398,7 @@ module Aws::Macie2
     class SortCriteria < Struct.new(
       :attribute_name,
       :order_by)
+      SENSITIVE = []
       include Aws::Structure
     end
 
@@ -4221,6 +4415,7 @@ module Aws::Macie2
     class Statistics < Struct.new(
       :approximate_number_of_objects_to_process,
       :number_of_runs)
+      SENSITIVE = []
       include Aws::Structure
     end
 
@@ -4252,6 +4447,7 @@ module Aws::Macie2
     class TagResourceRequest < Struct.new(
       :resource_arn,
       :tags)
+      SENSITIVE = []
       include Aws::Structure
     end
 
@@ -4301,6 +4497,7 @@ module Aws::Macie2
       :key,
       :tag_values,
       :target)
+      SENSITIVE = []
       include Aws::Structure
     end
 
@@ -4326,6 +4523,7 @@ module Aws::Macie2
     class TagValuePair < Struct.new(
       :key,
       :value)
+      SENSITIVE = []
       include Aws::Structure
     end
 
@@ -4365,6 +4563,7 @@ module Aws::Macie2
       :maximum_match_distance,
       :regex,
       :sample_text)
+      SENSITIVE = []
       include Aws::Structure
     end
 
@@ -4377,6 +4576,7 @@ module Aws::Macie2
     #
     class TestCustomDataIdentifierResponse < Struct.new(
       :match_count)
+      SENSITIVE = []
       include Aws::Structure
     end
 
@@ -4390,32 +4590,10 @@ module Aws::Macie2
     #
     class ThrottlingException < Struct.new(
       :message)
+      SENSITIVE = []
       include Aws::Structure
     end
 
-    # Specifies one or more findings to reactivate (unarchive).
-    #
-    # @note When making an API call, you may pass UnarchiveFindingsRequest
-    #   data as a hash:
-    #
-    #       {
-    #         finding_ids: ["__string"], # required
-    #       }
-    #
-    # @!attribute [rw] finding_ids
-    #   @return [Array<String>]
-    #
-    # @see http://docs.aws.amazon.com/goto/WebAPI/macie2-2020-01-01/UnarchiveFindingsRequest AWS API Documentation
-    #
-    class UnarchiveFindingsRequest < Struct.new(
-      :finding_ids)
-      include Aws::Structure
-    end
-
-    # @see http://docs.aws.amazon.com/goto/WebAPI/macie2-2020-01-01/UnarchiveFindingsResponse AWS API Documentation
-    #
-    class UnarchiveFindingsResponse < Aws::EmptyStructure; end
-
     # Provides information about an account-related request that hasn't
     # been processed.
     #
@@ -4435,6 +4613,7 @@ module Aws::Macie2
       :account_id,
       :error_code,
       :error_message)
+      SENSITIVE = []
       include Aws::Structure
     end
 
@@ -4457,6 +4636,7 @@ module Aws::Macie2
     class UntagResourceRequest < Struct.new(
       :resource_arn,
       :tag_keys)
+      SENSITIVE = []
       include Aws::Structure
     end
 
@@ -4481,7 +4661,7 @@ module Aws::Macie2
     #   @return [String]
     #
     # @!attribute [rw] job_status
-    #   The current status of a classification job. Valid values are:
+    #   The current status of a classification job. Possible values are:
     #   @return [String]
     #
     # @see http://docs.aws.amazon.com/goto/WebAPI/macie2-2020-01-01/UpdateClassificationJobRequest AWS API Documentation
@@ -4489,6 +4669,7 @@ module Aws::Macie2
     class UpdateClassificationJobRequest < Struct.new(
       :job_id,
       :job_status)
+      SENSITIVE = []
       include Aws::Structure
     end
 
@@ -4522,8 +4703,9 @@ module Aws::Macie2
     #       }
     #
     # @!attribute [rw] action
-    #   The action to perform on findings that meet the filter criteria.
-    #   Valid values are:
+    #   The action to perform on findings that meet the filter criteria. To
+    #   suppress (automatically archive) findings that meet the criteria,
+    #   set this value to ARCHIVE. Valid values are:
     #   @return [String]
     #
     # @!attribute [rw] description
@@ -4552,6 +4734,7 @@ module Aws::Macie2
       :id,
       :name,
       :position)
+      SENSITIVE = []
       include Aws::Structure
     end
 
@@ -4569,6 +4752,7 @@ module Aws::Macie2
     class UpdateFindingsFilterResponse < Struct.new(
       :arn,
       :id)
+      SENSITIVE = []
       include Aws::Structure
     end
 
@@ -4584,9 +4768,10 @@ module Aws::Macie2
     #       }
     #
     # @!attribute [rw] finding_publishing_frequency
-    #   The frequency with which Amazon Macie publishes findings for an
-    #   account. This includes adding findings to AWS Security Hub and
-    #   exporting finding events to Amazon CloudWatch. Valid values are:
+    #   The frequency with which Amazon Macie publishes updates to policy
+    #   findings for an account. This includes publishing updates to AWS
+    #   Security Hub and Amazon EventBridge (formerly called Amazon
+    #   CloudWatch Events). Valid values are:
     #   @return [String]
     #
     # @!attribute [rw] status
@@ -4598,6 +4783,7 @@ module Aws::Macie2
     class UpdateMacieSessionRequest < Struct.new(
       :finding_publishing_frequency,
       :status)
+      SENSITIVE = []
       include Aws::Structure
     end
 
@@ -4627,6 +4813,7 @@ module Aws::Macie2
     class UpdateMemberSessionRequest < Struct.new(
       :id,
       :status)
+      SENSITIVE = []
       include Aws::Structure
     end
 
@@ -4651,6 +4838,7 @@ module Aws::Macie2
     #
     class UpdateOrganizationConfigurationRequest < Struct.new(
       :auto_enable)
+      SENSITIVE = []
       include Aws::Structure
     end
 
@@ -4685,6 +4873,7 @@ module Aws::Macie2
       :estimated_cost,
       :service_limit,
       :type)
+      SENSITIVE = []
       include Aws::Structure
     end
 
@@ -4705,23 +4894,30 @@ module Aws::Macie2
       :account_id,
       :free_trial_start_date,
       :usage)
+      SENSITIVE = []
       include Aws::Structure
     end
 
-    # Specifies criteria for filtering the results of a query for account
+    # Specifies a condition for filtering the results of a query for account
     # quotas and usage data.
     #
     # @note When making an API call, you may pass UsageStatisticsFilter
     #   data as a hash:
     #
     #       {
-    #         key: "accountId", # accepts accountId
+    #         comparator: "GT", # accepts GT, GTE, LT, LTE, EQ, NE, CONTAINS
+    #         key: "accountId", # accepts accountId, serviceLimit, freeTrialStartDate, total
     #         values: ["__string"],
     #       }
     #
+    # @!attribute [rw] comparator
+    #   The operator to use in a condition that filters the results of a
+    #   query for account quotas and usage data. Valid values are:
+    #   @return [String]
+    #
     # @!attribute [rw] key
-    #   The field to use to filter the results of a query for account quotas
-    #   and usage data.
+    #   The field to use in a condition that filters the results of a query
+    #   for account quotas and usage data. Valid values are:
     #   @return [String]
     #
     # @!attribute [rw] values
@@ -4730,8 +4926,10 @@ module Aws::Macie2
     # @see http://docs.aws.amazon.com/goto/WebAPI/macie2-2020-01-01/UsageStatisticsFilter AWS API Documentation
     #
     class UsageStatisticsFilter < Struct.new(
+      :comparator,
       :key,
       :values)
+      SENSITIVE = []
       include Aws::Structure
     end
 
@@ -4742,13 +4940,13 @@ module Aws::Macie2
     #   data as a hash:
     #
     #       {
-    #         key: "accountId", # accepts accountId, total
+    #         key: "accountId", # accepts accountId, total, serviceLimitValue, freeTrialStartDate
     #         order_by: "ASC", # accepts ASC, DESC
     #       }
     #
     # @!attribute [rw] key
     #   The field to use to sort the results of a query for account quotas
-    #   and usage data.
+    #   and usage data. Valid values are:
     #   @return [String]
     #
     # @!attribute [rw] order_by
@@ -4759,6 +4957,7 @@ module Aws::Macie2
     class UsageStatisticsSortBy < Struct.new(
       :key,
       :order_by)
+      SENSITIVE = []
       include Aws::Structure
     end
 
@@ -4783,35 +4982,52 @@ module Aws::Macie2
       :currency,
       :estimated_cost,
       :type)
+      SENSITIVE = []
       include Aws::Structure
     end
 
+    # Provides information about the type and other characteristics of an
+    # entity that performed an action on an affected resource.
+    #
     # @!attribute [rw] assumed_role
-    #   Reserved for future use.
+    #   Provides information about an identity that performed an action on
+    #   an affected resource by using temporary security credentials. The
+    #   credentials were obtained using the AssumeRole operation of the AWS
+    #   Security Token Service (AWS STS) API.
     #   @return [Types::AssumedRole]
     #
     # @!attribute [rw] aws_account
-    #   Reserved for future use.
+    #   Provides information about an AWS account and entity that performed
+    #   an action on an affected resource. The action was performed using
+    #   the credentials for an AWS account other than your own account.
     #   @return [Types::AwsAccount]
     #
     # @!attribute [rw] aws_service
-    #   Reserved for future use.
+    #   Provides information about an AWS service that performed an action
+    #   on an affected resource.
     #   @return [Types::AwsService]
     #
     # @!attribute [rw] federated_user
-    #   Reserved for future use.
+    #   Provides information about an identity that performed an action on
+    #   an affected resource by using temporary security credentials. The
+    #   credentials were obtained using the GetFederationToken operation of
+    #   the AWS Security Token Service (AWS STS) API.
     #   @return [Types::FederatedUser]
     #
     # @!attribute [rw] iam_user
-    #   Reserved for future use.
+    #   Provides information about an AWS Identity and Access Management
+    #   (IAM) user who performed an action on an affected resource.
     #   @return [Types::IamUser]
     #
     # @!attribute [rw] root
-    #   Reserved for future use.
+    #   Provides information about an AWS account and entity that performed
+    #   an action on an affected resource. The action was performed using
+    #   the credentials for your AWS account.
     #   @return [Types::UserIdentityRoot]
     #
     # @!attribute [rw] type
-    #   Reserved for future use.
+    #   The type of entity that performed the action on the affected
+    #   resource. Possible values are:
     #   @return [String]
     #
     # @see http://docs.aws.amazon.com/goto/WebAPI/macie2-2020-01-01/UserIdentity AWS API Documentation
@@ -4824,10 +5040,13 @@ module Aws::Macie2
       :iam_user,
       :root,
       :type)
+      SENSITIVE = []
       include Aws::Structure
     end
 
-    # Reserved for future use.
+    # Provides information about an AWS account and entity that performed an
+    # action on an affected resource. The action was performed using the
+    # credentials for your AWS account.
     #
     # @!attribute [rw] account_id
     #   @return [String]
@@ -4844,6 +5063,7 @@ module Aws::Macie2
       :account_id,
       :arn,
       :principal_id)
+      SENSITIVE = []
       include Aws::Structure
     end
 
@@ -4857,9 +5077,13 @@ module Aws::Macie2
     #
     class ValidationException < Struct.new(
       :message)
+      SENSITIVE = []
       include Aws::Structure
     end
 
+    # Specifies a weekly recurrence pattern for running a classification
+    # job.
+    #
     # @note When making an API call, you may pass WeeklySchedule
     #   data as a hash:
     #
@@ -4874,6 +5098,7 @@ module Aws::Macie2
     #
     class WeeklySchedule < Struct.new(
       :day_of_week)
+      SENSITIVE = []
       include Aws::Structure
     end