aws-sdk-securityhub 1.76.0 → 1.78.0

data/lib/aws-sdk-securityhub/types.rb

@@ -383,11 +383,29 @@ module Aws::SecurityHub
     # @!attribute [rw] first_seen
     #   An ISO8601-formatted timestamp that indicates when the API call was
     #   first observed.
+    #
+    #   A correctly formatted example is `2020-05-21T20:16:34.724Z`. The
+    #   value cannot contain spaces, and date and time should be separated
+    #   by `T`. For more information, see [RFC 3339 section 5.6, Internet
+    #   Date/Time Format][1].
+    #
+    #
+    #
+    #   [1]: https://www.rfc-editor.org/rfc/rfc3339#section-5.6
     #   @return [String]
     #
     # @!attribute [rw] last_seen
     #   An ISO8601-formatted timestamp that indicates when the API call was
     #   most recently observed.
+    #
+    #   A correctly formatted example is `2020-05-21T20:16:34.724Z`. The
+    #   value cannot contain spaces, and date and time should be separated
+    #   by `T`. For more information, see [RFC 3339 section 5.6, Internet
+    #   Date/Time Format][1].
+    #
+    #
+    #
+    #   [1]: https://www.rfc-editor.org/rfc/rfc3339#section-5.6
     #   @return [String]
     #
     # @see http://docs.aws.amazon.com/goto/WebAPI/securityhub-2018-10-26/AwsApiCallAction AWS API Documentation
@@ -611,8 +629,9 @@ module Aws::SecurityHub
     #   Indicates when the API was created.
     #
     #   Uses the `date-time` format specified in [RFC 3339 section 5.6,
-    #   Internet Date/Time Format][1]. The value cannot contain spaces. For
-    #   example, `2020-03-22T13:22:13.933Z`.
+    #   Internet Date/Time Format][1]. The value cannot contain spaces, and
+    #   date and time should be separated by `T`. For example,
+    #   `2020-03-22T13:22:13.933Z`.
     #
     #
     #
@@ -737,8 +756,9 @@ module Aws::SecurityHub
     #   Indicates when the stage was created.
     #
     #   Uses the `date-time` format specified in [RFC 3339 section 5.6,
-    #   Internet Date/Time Format][1]. The value cannot contain spaces. For
-    #   example, `2020-03-22T13:22:13.933Z`.
+    #   Internet Date/Time Format][1]. The value cannot contain spaces, and
+    #   date and time should be separated by `T`. For example,
+    #   `2020-03-22T13:22:13.933Z`.
     #
     #
     #
@@ -749,8 +769,9 @@ module Aws::SecurityHub
     #   Indicates when the stage was most recently updated.
     #
     #   Uses the `date-time` format specified in [RFC 3339 section 5.6,
-    #   Internet Date/Time Format][1]. The value cannot contain spaces. For
-    #   example, `2020-03-22T13:22:13.933Z`.
+    #   Internet Date/Time Format][1]. The value cannot contain spaces, and
+    #   date and time should be separated by `T`. For example,
+    #   `2020-03-22T13:22:13.933Z`.
     #
     #
     #
@@ -807,8 +828,9 @@ module Aws::SecurityHub
     #   Indicates when the API was created.
     #
     #   Uses the `date-time` format specified in [RFC 3339 section 5.6,
-    #   Internet Date/Time Format][1]. The value cannot contain spaces. For
-    #   example, `2020-03-22T13:22:13.933Z`.
+    #   Internet Date/Time Format][1]. The value cannot contain spaces, and
+    #   date and time should be separated by `T`. For example,
+    #   `2020-03-22T13:22:13.933Z`.
     #
     #
     #
@@ -920,8 +942,9 @@ module Aws::SecurityHub
     #   Indicates when the stage was created.
     #
     #   Uses the `date-time` format specified in [RFC 3339 section 5.6,
-    #   Internet Date/Time Format][1]. The value cannot contain spaces. For
-    #   example, `2020-03-22T13:22:13.933Z`.
+    #   Internet Date/Time Format][1]. The value cannot contain spaces, and
+    #   date and time should be separated by `T`. For example,
+    #   `2020-03-22T13:22:13.933Z`.
     #
     #
     #
@@ -944,8 +967,9 @@ module Aws::SecurityHub
     #   Indicates when the stage was most recently updated.
     #
     #   Uses the `date-time` format specified in [RFC 3339 section 5.6,
-    #   Internet Date/Time Format][1]. The value cannot contain spaces. For
-    #   example, `2020-03-22T13:22:13.933Z`.
+    #   Internet Date/Time Format][1]. The value cannot contain spaces, and
+    #   date and time should be separated by `T`. For example,
+    #   `2020-03-22T13:22:13.933Z`.
     #
     #
     #
@@ -1051,8 +1075,9 @@ module Aws::SecurityHub
     #   Indicates when the auto scaling group was created.
     #
     #   Uses the `date-time` format specified in [RFC 3339 section 5.6,
-    #   Internet Date/Time Format][1]. The value cannot contain spaces. For
-    #   example, `2020-03-22T13:22:13.933Z`.
+    #   Internet Date/Time Format][1]. The value cannot contain spaces, and
+    #   date and time should be separated by `T`. For example,
+    #   `2020-03-22T13:22:13.933Z`.
     #
     #
     #
@@ -1393,8 +1418,9 @@ module Aws::SecurityHub
     #   The creation date and time for the launch configuration.
     #
     #   Uses the `date-time` format specified in [RFC 3339 section 5.6,
-    #   Internet Date/Time Format][1]. The value cannot contain spaces. For
-    #   example, `2020-03-22T13:22:13.933Z`.
+    #   Internet Date/Time Format][1]. The value cannot contain spaces, and
+    #   date and time should be separated by `T`. For example,
+    #   `2020-03-22T13:22:13.933Z`.
     #
     #
     #
@@ -1812,8 +1838,8 @@ module Aws::SecurityHub
     #   @return [Array<String>]
     #
     # @!attribute [rw] sns_topic_arn
-    #   An ARN that uniquely identifies the Amazon SNS topic for a backup
-    #   vault’s events.
+    #   The Amazon Resource Name (ARN) that uniquely identifies the Amazon
+    #   SNS topic for a backup vault's events.
     #   @return [String]
     #
     # @see http://docs.aws.amazon.com/goto/WebAPI/securityhub-2018-10-26/AwsBackupBackupVaultNotificationsDetails AWS API Documentation
@@ -2065,8 +2091,9 @@ module Aws::SecurityHub
     #   Indicates when the certificate was requested.
     #
     #   Uses the `date-time` format specified in [RFC 3339 section 5.6,
-    #   Internet Date/Time Format][1]. The value cannot contain spaces. For
-    #   example, `2020-03-22T13:22:13.933Z`.
+    #   Internet Date/Time Format][1]. The value cannot contain spaces, and
+    #   date and time should be separated by `T`. For example,
+    #   `2020-03-22T13:22:13.933Z`.
     #
     #
     #
@@ -2109,8 +2136,9 @@ module Aws::SecurityHub
     #   certificate type is `IMPORTED`.
     #
     #   Uses the `date-time` format specified in [RFC 3339 section 5.6,
-    #   Internet Date/Time Format][1]. The value cannot contain spaces. For
-    #   example, `2020-03-22T13:22:13.933Z`.
+    #   Internet Date/Time Format][1]. The value cannot contain spaces, and
+    #   date and time should be separated by `T`. For example,
+    #   `2020-03-22T13:22:13.933Z`.
     #
     #
     #
@@ -2127,8 +2155,9 @@ module Aws::SecurityHub
     #   certificate type is `AMAZON_ISSUED`.
     #
     #   Uses the `date-time` format specified in [RFC 3339 section 5.6,
-    #   Internet Date/Time Format][1]. The value cannot contain spaces. For
-    #   example, `2020-03-22T13:22:13.933Z`.
+    #   Internet Date/Time Format][1]. The value cannot contain spaces, and
+    #   date and time should be separated by `T`. For example,
+    #   `2020-03-22T13:22:13.933Z`.
     #
     #
     #
@@ -2155,8 +2184,9 @@ module Aws::SecurityHub
     #   The time after which the certificate becomes invalid.
     #
     #   Uses the `date-time` format specified in [RFC 3339 section 5.6,
-    #   Internet Date/Time Format][1]. The value cannot contain spaces. For
-    #   example, `2020-03-22T13:22:13.933Z`.
+    #   Internet Date/Time Format][1]. The value cannot contain spaces, and
+    #   date and time should be separated by `T`. For example,
+    #   `2020-03-22T13:22:13.933Z`.
     #
     #
     #
@@ -2167,8 +2197,9 @@ module Aws::SecurityHub
     #   The time before which the certificate is not valid.
     #
     #   Uses the `date-time` format specified in [RFC 3339 section 5.6,
-    #   Internet Date/Time Format][1]. The value cannot contain spaces. For
-    #   example, `2020-03-22T13:22:13.933Z`.
+    #   Internet Date/Time Format][1]. The value cannot contain spaces, and
+    #   date and time should be separated by `T`. For example,
+    #   `2020-03-22T13:22:13.933Z`.
     #
     #
     #
@@ -2396,8 +2427,9 @@ module Aws::SecurityHub
     #   Indicates when the renewal summary was last updated.
     #
     #   Uses the `date-time` format specified in [RFC 3339 section 5.6,
-    #   Internet Date/Time Format][1]. The value cannot contain spaces. For
-    #   example, `2020-03-22T13:22:13.933Z`.
+    #   Internet Date/Time Format][1]. The value cannot contain spaces, and
+    #   date and time should be separated by `T`. For example,
+    #   `2020-03-22T13:22:13.933Z`.
     #
     #
     #
@@ -2664,8 +2696,9 @@ module Aws::SecurityHub
     #   Indicates when that the distribution was last modified.
     #
     #   Uses the `date-time` format specified in [RFC 3339 section 5.6,
-    #   Internet Date/Time Format][1]. The value cannot contain spaces. For
-    #   example, `2020-03-22T13:22:13.933Z`.
+    #   Internet Date/Time Format][1]. The value cannot contain spaces, and
+    #   date and time should be separated by `T`. For example,
+    #   `2020-03-22T13:22:13.933Z`.
     #
     #
     #
@@ -3770,8 +3803,9 @@ module Aws::SecurityHub
     #   mode was set to that value.
     #
     #   Uses the `date-time` format specified in [RFC 3339 section 5.6,
-    #   Internet Date/Time Format][1]. The value cannot contain spaces. For
-    #   example, `2020-03-22T13:22:13.933Z`.
+    #   Internet Date/Time Format][1]. The value cannot contain spaces, and
+    #   date and time should be separated by `T`. For example,
+    #   `2020-03-22T13:22:13.933Z`.
     #
     #
     #
@@ -3801,8 +3835,9 @@ module Aws::SecurityHub
     #   Indicates when the table was created.
     #
     #   Uses the `date-time` format specified in [RFC 3339 section 5.6,
-    #   Internet Date/Time Format][1]. The value cannot contain spaces. For
-    #   example, `2020-03-22T13:22:13.933Z`.
+    #   Internet Date/Time Format][1]. The value cannot contain spaces, and
+    #   date and time should be separated by `T`. For example,
+    #   `2020-03-22T13:22:13.933Z`.
     #
     #
     #
@@ -4064,8 +4099,9 @@ module Aws::SecurityHub
     #   Indicates when the provisioned throughput was last decreased.
     #
     #   Uses the `date-time` format specified in [RFC 3339 section 5.6,
-    #   Internet Date/Time Format][1]. The value cannot contain spaces. For
-    #   example, `2020-03-22T13:22:13.933Z`.
+    #   Internet Date/Time Format][1]. The value cannot contain spaces, and
+    #   date and time should be separated by `T`. For example,
+    #   `2020-03-22T13:22:13.933Z`.
     #
     #
     #
@@ -4076,8 +4112,9 @@ module Aws::SecurityHub
     #   Indicates when the provisioned throughput was last increased.
     #
     #   Uses the `date-time` format specified in [RFC 3339 section 5.6,
-    #   Internet Date/Time Format][1]. The value cannot contain spaces. For
-    #   example, `2020-03-22T13:22:13.933Z`.
+    #   Internet Date/Time Format][1]. The value cannot contain spaces, and
+    #   date and time should be separated by `T`. For example,
+    #   `2020-03-22T13:22:13.933Z`.
     #
     #
     #
@@ -4210,8 +4247,9 @@ module Aws::SecurityHub
     #   Indicates the point in time that the table was restored to.
     #
     #   Uses the `date-time` format specified in [RFC 3339 section 5.6,
-    #   Internet Date/Time Format][1]. The value cannot contain spaces. For
-    #   example, `2020-03-22T13:22:13.933Z`.
+    #   Internet Date/Time Format][1]. The value cannot contain spaces, and
+    #   date and time should be separated by `T`. For example,
+    #   `2020-03-22T13:22:13.933Z`.
     #
     #
     #
@@ -4240,8 +4278,9 @@ module Aws::SecurityHub
     #   that the key was inaccessible.
     #
     #   Uses the `date-time` format specified in [RFC 3339 section 5.6,
-    #   Internet Date/Time Format][1]. The value cannot contain spaces. For
-    #   example, `2020-03-22T13:22:13.933Z`.
+    #   Internet Date/Time Format][1]. The value cannot contain spaces, and
+    #   date and time should be separated by `T`. For example,
+    #   `2020-03-22T13:22:13.933Z`.
     #
     #
     #
@@ -4396,8 +4435,9 @@ module Aws::SecurityHub
     #   Indicates when the instance was launched.
     #
     #   Uses the `date-time` format specified in [RFC 3339 section 5.6,
-    #   Internet Date/Time Format][1]. The value cannot contain spaces. For
-    #   example, `2020-03-22T13:22:13.933Z`.
+    #   Internet Date/Time Format][1]. The value cannot contain spaces, and
+    #   date and time should be separated by `T`. For example,
+    #   `2020-03-22T13:22:13.933Z`.
     #
     #
     #
@@ -5176,7 +5216,7 @@ module Aws::SecurityHub
     #
     # @!attribute [rw] on_demand_max_price_percentage_over_lowest_price
     #   The price protection threshold for On-Demand Instances. This is the
-    #   maximum you’ll pay for an On-Demand Instance, expressed as a
+    #   maximum you'll pay for an On-Demand Instance, expressed as a
     #   percentage above the least expensive current generation M, C, or R
     #   instance type with your specified attributes. When Amazon EC2
     #   selects instance types with your attributes, it excludes instance
@@ -5195,7 +5235,7 @@ module Aws::SecurityHub
     #
     # @!attribute [rw] spot_max_price_percentage_over_lowest_price
     #   The price protection threshold for Spot Instances. This is the
-    #   maximum you’ll pay for a Spot Instance, expressed as a percentage
+    #   maximum you'll pay for a Spot Instance, expressed as a percentage
     #   above the least expensive current generation M, C, or R instance
     #   type with your specified attributes. When Amazon EC2 selects
     #   instance types with your attributes, it excludes instance types
@@ -5378,7 +5418,7 @@ module Aws::SecurityHub
     # @!attribute [rw] http_endpoint
     #   Enables or disables the HTTP metadata endpoint on your instances. If
     #   the parameter is not specified, the default state is enabled, and
-    #   you won’t be able to access your instance metadata.
+    #   you won't be able to access your instance metadata.
     #   @return [String]
     #
     # @!attribute [rw] http_protocol_ipv_6
@@ -5880,8 +5920,9 @@ module Aws::SecurityHub
     #   Indicates when the attachment initiated.
     #
     #   Uses the `date-time` format specified in [RFC 3339 section 5.6,
-    #   Internet Date/Time Format][1]. The value cannot contain spaces. For
-    #   example, `2020-03-22T13:22:13.933Z`.
+    #   Internet Date/Time Format][1]. The value cannot contain spaces, and
+    #   date and time should be separated by `T`. For example,
+    #   `2020-03-22T13:22:13.933Z`.
     #
     #
     #
@@ -6430,8 +6471,9 @@ module Aws::SecurityHub
     #   Indicates when the volume was created.
     #
     #   Uses the `date-time` format specified in [RFC 3339 section 5.6,
-    #   Internet Date/Time Format][1]. The value cannot contain spaces. For
-    #   example, `2020-03-22T13:22:13.933Z`.
+    #   Internet Date/Time Format][1]. The value cannot contain spaces, and
+    #   date and time should be separated by `T`. For example,
+    #   `2020-03-22T13:22:13.933Z`.
     #
     #
     #
@@ -6966,8 +7008,9 @@ module Aws::SecurityHub
     #   The date and time of the last change in status.
     #
     #   Uses the `date-time` format specified in [RFC 3339 section 5.6,
-    #   Internet Date/Time Format][1]. The value cannot contain spaces. For
-    #   example, `2020-03-22T13:22:13.933Z`.
+    #   Internet Date/Time Format][1]. The value cannot contain spaces, and
+    #   date and time should be separated by `T`. For example,
+    #   `2020-03-22T13:22:13.933Z`.
     #
     #
     #
@@ -7033,8 +7076,9 @@ module Aws::SecurityHub
     #   The date and time when the image was pushed to the repository.
     #
     #   Uses the `date-time` format specified in [RFC 3339 section 5.6,
-    #   Internet Date/Time Format][1]. The value cannot contain spaces. For
-    #   example, `2020-03-22T13:22:13.933Z`.
+    #   Internet Date/Time Format][1]. The value cannot contain spaces, and
+    #   date and time should be separated by `T`. For example,
+    #   `2020-03-22T13:22:13.933Z`.
     #
     #
     #
@@ -10196,8 +10240,9 @@ module Aws::SecurityHub
     #   Indicates when the load balancer was created.
     #
     #   Uses the `date-time` format specified in [RFC 3339 section 5.6,
-    #   Internet Date/Time Format][1]. The value cannot contain spaces. For
-    #   example, `2020-03-22T13:22:13.933Z`.
+    #   Internet Date/Time Format][1]. The value cannot contain spaces, and
+    #   date and time should be separated by `T`. For example,
+    #   `2020-03-22T13:22:13.933Z`.
     #
     #
     #
@@ -10492,8 +10537,9 @@ module Aws::SecurityHub
     #   Indicates when the load balancer was created.
     #
     #   Uses the `date-time` format specified in [RFC 3339 section 5.6,
-    #   Internet Date/Time Format][1]. The value cannot contain spaces. For
-    #   example, `2020-03-22T13:22:13.933Z`.
+    #   Internet Date/Time Format][1]. The value cannot contain spaces, and
+    #   date and time should be separated by `T`. For example,
+    #   `2020-03-22T13:22:13.933Z`.
     #
     #
     #
@@ -10571,8 +10617,9 @@ module Aws::SecurityHub
     #   Indicates when the IAM access key was created.
     #
     #   Uses the `date-time` format specified in [RFC 3339 section 5.6,
-    #   Internet Date/Time Format][1]. The value cannot contain spaces. For
-    #   example, `2020-03-22T13:22:13.933Z`.
+    #   Internet Date/Time Format][1]. The value cannot contain spaces, and
+    #   date and time should be separated by `T`. For example,
+    #   `2020-03-22T13:22:13.933Z`.
     #
     #
     #
@@ -10649,8 +10696,9 @@ module Aws::SecurityHub
     #   Indicates when the session was created.
     #
     #   Uses the `date-time` format specified in [RFC 3339 section 5.6,
-    #   Internet Date/Time Format][1]. The value cannot contain spaces. For
-    #   example, `2020-03-22T13:22:13.933Z`.
+    #   Internet Date/Time Format][1]. The value cannot contain spaces, and
+    #   date and time should be separated by `T`. For example,
+    #   `2020-03-22T13:22:13.933Z`.
     #
     #
     #
@@ -10732,8 +10780,9 @@ module Aws::SecurityHub
     #   Indicates when the IAM group was created.
     #
     #   Uses the `date-time` format specified in [RFC 3339 section 5.6,
-    #   Internet Date/Time Format][1]. The value cannot contain spaces. For
-    #   example, `2020-03-22T13:22:13.933Z`.
+    #   Internet Date/Time Format][1]. The value cannot contain spaces, and
+    #   date and time should be separated by `T`. For example,
+    #   `2020-03-22T13:22:13.933Z`.
     #
     #
     #
@@ -10793,8 +10842,9 @@ module Aws::SecurityHub
     #   Indicates when the instance profile was created.
     #
     #   Uses the `date-time` format specified in [RFC 3339 section 5.6,
-    #   Internet Date/Time Format][1]. The value cannot contain spaces. For
-    #   example, `2020-03-22T13:22:13.933Z`.
+    #   Internet Date/Time Format][1]. The value cannot contain spaces, and
+    #   date and time should be separated by `T`. For example,
+    #   `2020-03-22T13:22:13.933Z`.
     #
     #
     #
@@ -10844,8 +10894,9 @@ module Aws::SecurityHub
     #   Indicates when the role was created.
     #
     #   Uses the `date-time` format specified in [RFC 3339 section 5.6,
-    #   Internet Date/Time Format][1]. The value cannot contain spaces. For
-    #   example, `2020-03-22T13:22:13.933Z`.
+    #   Internet Date/Time Format][1]. The value cannot contain spaces, and
+    #   date and time should be separated by `T`. For example,
+    #   `2020-03-22T13:22:13.933Z`.
     #
     #
     #
@@ -10908,8 +10959,9 @@ module Aws::SecurityHub
     #   When the policy was created.
     #
     #   Uses the `date-time` format specified in [RFC 3339 section 5.6,
-    #   Internet Date/Time Format][1]. The value cannot contain spaces. For
-    #   example, `2020-03-22T13:22:13.933Z`.
+    #   Internet Date/Time Format][1]. The value cannot contain spaces, and
+    #   date and time should be separated by `T`. For example,
+    #   `2020-03-22T13:22:13.933Z`.
     #
     #
     #
@@ -10953,8 +11005,9 @@ module Aws::SecurityHub
     #   When the policy was most recently updated.
     #
     #   Uses the `date-time` format specified in [RFC 3339 section 5.6,
-    #   Internet Date/Time Format][1]. The value cannot contain spaces. For
-    #   example, `2020-03-22T13:22:13.933Z`.
+    #   Internet Date/Time Format][1]. The value cannot contain spaces, and
+    #   date and time should be separated by `T`. For example,
+    #   `2020-03-22T13:22:13.933Z`.
     #
     #
     #
@@ -10993,8 +11046,9 @@ module Aws::SecurityHub
     #   Indicates when the version was created.
     #
     #   Uses the `date-time` format specified in [RFC 3339 section 5.6,
-    #   Internet Date/Time Format][1]. The value cannot contain spaces. For
-    #   example, `2020-03-22T13:22:13.933Z`.
+    #   Internet Date/Time Format][1]. The value cannot contain spaces, and
+    #   date and time should be separated by `T`. For example,
+    #   `2020-03-22T13:22:13.933Z`.
     #
     #
     #
@@ -11026,8 +11080,9 @@ module Aws::SecurityHub
     #   Indicates when the role was created.
     #
     #   Uses the `date-time` format specified in [RFC 3339 section 5.6,
-    #   Internet Date/Time Format][1]. The value cannot contain spaces. For
-    #   example, `2020-03-22T13:22:13.933Z`.
+    #   Internet Date/Time Format][1]. The value cannot contain spaces, and
+    #   date and time should be separated by `T`. For example,
+    #   `2020-03-22T13:22:13.933Z`.
     #
     #
     #
@@ -11105,8 +11160,9 @@ module Aws::SecurityHub
     #   Indicates when the user was created.
     #
     #   Uses the `date-time` format specified in [RFC 3339 section 5.6,
-    #   Internet Date/Time Format][1]. The value cannot contain spaces. For
-    #   example, `2020-03-22T13:22:13.933Z`.
+    #   Internet Date/Time Format][1]. The value cannot contain spaces, and
+    #   date and time should be separated by `T`. For example,
+    #   `2020-03-22T13:22:13.933Z`.
     #
     #
     #
@@ -11236,8 +11292,9 @@ module Aws::SecurityHub
     #   Indicates when the KMS key was created.
     #
     #   Uses the `date-time` format specified in [RFC 3339 section 5.6,
-    #   Internet Date/Time Format][1]. The value cannot contain spaces. For
-    #   example, `2020-03-22T13:22:13.933Z`.
+    #   Internet Date/Time Format][1]. The value cannot contain spaces, and
+    #   date and time should be separated by `T`. For example,
+    #   `2020-03-22T13:22:13.933Z`.
     #
     #
     #
@@ -11388,8 +11445,9 @@ module Aws::SecurityHub
     #   Indicates when the function was last updated.
     #
     #   Uses the `date-time` format specified in [RFC 3339 section 5.6,
-    #   Internet Date/Time Format][1]. The value cannot contain spaces. For
-    #   example, `2020-03-22T13:22:13.933Z`.
+    #   Internet Date/Time Format][1]. The value cannot contain spaces, and
+    #   date and time should be separated by `T`. For example,
+    #   `2020-03-22T13:22:13.933Z`.
     #
     #
     #
@@ -11590,8 +11648,9 @@ module Aws::SecurityHub
     #   Indicates when the version was created.
     #
     #   Uses the `date-time` format specified in [RFC 3339 section 5.6,
-    #   Internet Date/Time Format][1]. The value cannot contain spaces. For
-    #   example, `2020-03-22T13:22:13.933Z`.
+    #   Internet Date/Time Format][1]. The value cannot contain spaces, and
+    #   date and time should be separated by `T`. For example,
+    #   `2020-03-22T13:22:13.933Z`.
     #
     #
     #
@@ -12372,8 +12431,9 @@ module Aws::SecurityHub
     #   Time (UTC).
     #
     #   Uses the `date-time` format specified in [RFC 3339 section 5.6,
-    #   Internet Date/Time Format][1]. The value cannot contain spaces. For
-    #   example, `2020-03-22T13:22:13.933Z`.
+    #   Internet Date/Time Format][1]. The value cannot contain spaces, and
+    #   date and time should be separated by `T`. For example,
+    #   `2020-03-22T13:22:13.933Z`.
     #
     #
     #
@@ -12569,8 +12629,9 @@ module Aws::SecurityHub
     #   Indicates when the snapshot was taken.
     #
     #   Uses the `date-time` format specified in [RFC 3339 section 5.6,
-    #   Internet Date/Time Format][1]. The value cannot contain spaces. For
-    #   example, `2020-03-22T13:22:13.933Z`.
+    #   Internet Date/Time Format][1]. The value cannot contain spaces, and
+    #   date and time should be separated by `T`. For example,
+    #   `2020-03-22T13:22:13.933Z`.
     #
     #
     #
@@ -12604,8 +12665,9 @@ module Aws::SecurityHub
     #   Time (UTC).
     #
     #   Uses the `date-time` format specified in [RFC 3339 section 5.6,
-    #   Internet Date/Time Format][1]. The value cannot contain spaces. For
-    #   example, `2020-03-22T13:22:13.933Z`.
+    #   Internet Date/Time Format][1]. The value cannot contain spaces, and
+    #   date and time should be separated by `T`. For example,
+    #   `2020-03-22T13:22:13.933Z`.
     #
     #
     #
@@ -12840,8 +12902,9 @@ module Aws::SecurityHub
     #   Indicates when the DB instance was created.
     #
     #   Uses the `date-time` format specified in [RFC 3339 section 5.6,
-    #   Internet Date/Time Format][1]. The value cannot contain spaces. For
-    #   example, `2020-03-22T13:22:13.933Z`.
+    #   Internet Date/Time Format][1]. The value cannot contain spaces, and
+    #   date and time should be separated by `T`. For example,
+    #   `2020-03-22T13:22:13.933Z`.
     #
     #
     #
@@ -12947,8 +13010,9 @@ module Aws::SecurityHub
     #   point-in-time restore.
     #
     #   Uses the `date-time` format specified in [RFC 3339 section 5.6,
-    #   Internet Date/Time Format][1]. The value cannot contain spaces. For
-    #   example, `2020-03-22T13:22:13.933Z`.
+    #   Internet Date/Time Format][1]. The value cannot contain spaces, and
+    #   date and time should be separated by `T`. For example,
+    #   `2020-03-22T13:22:13.933Z`.
     #
     #
     #
@@ -13760,8 +13824,9 @@ module Aws::SecurityHub
     #   The datetime when the event notification subscription was created.
     #
     #   Uses the `date-time` format specified in [RFC 3339 section 5.6,
-    #   Internet Date/Time Format][1]. The value cannot contain spaces. For
-    #   example, `2020-03-22T13:22:13.933Z`.
+    #   Internet Date/Time Format][1]. The value cannot contain spaces, and
+    #   date and time should be separated by `T`. For example,
+    #   `2020-03-22T13:22:13.933Z`.
     #
     #
     #
@@ -13905,7 +13970,9 @@ module Aws::SecurityHub
       include Aws::Structure
     end
 
-    # Information about a cross-Region snapshot copy.
+    # You can configure Amazon Redshift to copy snapshots for a cluster to
+    # another Amazon Web Services Region. This parameter provides
+    # information about a cross-Region snapshot copy.
     #
     # @!attribute [rw] destination_region
     #   The destination Region that snapshots are automatically copied to
@@ -13914,7 +13981,7 @@ module Aws::SecurityHub
     #
     # @!attribute [rw] manual_snapshot_retention_period
     #   The number of days that manual snapshots are retained in the
-    #   destination region after they are copied from a source region.
+    #   destination Region after they are copied from a source Region.
     #
     #   If the value is `-1`, then the manual snapshot is retained
     #   indefinitely.
@@ -13949,8 +14016,9 @@ module Aws::SecurityHub
     #   The end of the time window for which maintenance was deferred.
     #
     #   Uses the `date-time` format specified in [RFC 3339 section 5.6,
-    #   Internet Date/Time Format][1]. The value cannot contain spaces. For
-    #   example, `2020-03-22T13:22:13.933Z`.
+    #   Internet Date/Time Format][1]. The value cannot contain spaces, and
+    #   date and time should be separated by `T`. For example,
+    #   `2020-03-22T13:22:13.933Z`.
     #
     #
     #
@@ -13965,8 +14033,9 @@ module Aws::SecurityHub
     #   The start of the time window for which maintenance was deferred.
     #
     #   Uses the `date-time` format specified in [RFC 3339 section 5.6,
-    #   Internet Date/Time Format][1]. The value cannot contain spaces. For
-    #   example, `2020-03-22T13:22:13.933Z`.
+    #   Internet Date/Time Format][1]. The value cannot contain spaces, and
+    #   date and time should be separated by `T`. For example,
+    #   `2020-03-22T13:22:13.933Z`.
     #
     #
     #
@@ -14019,8 +14088,9 @@ module Aws::SecurityHub
     #   Indicates when the cluster was created.
     #
     #   Uses the `date-time` format specified in [RFC 3339 section 5.6,
-    #   Internet Date/Time Format][1]. The value cannot contain spaces. For
-    #   example, `2020-03-22T13:22:13.933Z`.
+    #   Internet Date/Time Format][1]. The value cannot contain spaces, and
+    #   date and time should be separated by `T`. For example,
+    #   `2020-03-22T13:22:13.933Z`.
     #
     #
     #
@@ -14122,8 +14192,9 @@ module Aws::SecurityHub
     #   enabled.
     #
     #   Uses the `date-time` format specified in [RFC 3339 section 5.6,
-    #   Internet Date/Time Format][1]. The value cannot contain spaces. For
-    #   example, `2020-03-22T13:22:13.933Z`.
+    #   Internet Date/Time Format][1]. The value cannot contain spaces, and
+    #   date and time should be separated by `T`. For example,
+    #   `2020-03-22T13:22:13.933Z`.
     #
     #
     #
@@ -14176,8 +14247,9 @@ module Aws::SecurityHub
     #   Indicates the start of the next maintenance window.
     #
     #   Uses the `date-time` format specified in [RFC 3339 section 5.6,
-    #   Internet Date/Time Format][1]. The value cannot contain spaces. For
-    #   example, `2020-03-22T13:22:13.933Z`.
+    #   Internet Date/Time Format][1]. The value cannot contain spaces, and
+    #   date and time should be separated by `T`. For example,
+    #   `2020-03-22T13:22:13.933Z`.
     #
     #
     #
@@ -14410,8 +14482,9 @@ module Aws::SecurityHub
     #   The last time when logs failed to be delivered.
     #
     #   Uses the `date-time` format specified in [RFC 3339 section 5.6,
-    #   Internet Date/Time Format][1]. The value cannot contain spaces. For
-    #   example, `2020-03-22T13:22:13.933Z`.
+    #   Internet Date/Time Format][1]. The value cannot contain spaces, and
+    #   date and time should be separated by `T`. For example,
+    #   `2020-03-22T13:22:13.933Z`.
     #
     #
     #
@@ -14422,8 +14495,9 @@ module Aws::SecurityHub
     #   The last time that logs were delivered successfully.
     #
     #   Uses the `date-time` format specified in [RFC 3339 section 5.6,
-    #   Internet Date/Time Format][1]. The value cannot contain spaces. For
-    #   example, `2020-03-22T13:22:13.933Z`.
+    #   Internet Date/Time Format][1]. The value cannot contain spaces, and
+    #   date and time should be separated by `T`. For example,
+    #   `2020-03-22T13:22:13.933Z`.
     #
     #
     #
@@ -14701,8 +14775,9 @@ module Aws::SecurityHub
     #   The date when objects are moved or deleted.
     #
     #   Uses the `date-time` format specified in [RFC 3339 section 5.6,
-    #   Internet Date/Time Format][1]. The value cannot contain spaces. For
-    #   example, `2020-03-22T13:22:13.933Z`.
+    #   Internet Date/Time Format][1]. The value cannot contain spaces, and
+    #   date and time should be separated by `T`. For example,
+    #   `2020-03-22T13:22:13.933Z`.
     #
     #
     #
@@ -14910,8 +14985,9 @@ module Aws::SecurityHub
     #   class. If you provide `Date`, you cannot provide `Days`.
     #
     #   Uses the `date-time` format specified in [RFC 3339 section 5.6,
-    #   Internet Date/Time Format][1]. The value cannot contain spaces. For
-    #   example, `2020-03-22T13:22:13.933Z`.
+    #   Internet Date/Time Format][1]. The value cannot contain spaces, and
+    #   date and time should be separated by `T`. For example,
+    #   `2020-03-22T13:22:13.933Z`.
     #
     #
     #
@@ -14990,8 +15066,9 @@ module Aws::SecurityHub
     #   Indicates when the S3 bucket was created.
     #
     #   Uses the `date-time` format specified in [RFC 3339 section 5.6,
-    #   Internet Date/Time Format][1]. The value cannot contain spaces. For
-    #   example, `2020-03-22T13:22:13.933Z`.
+    #   Internet Date/Time Format][1]. The value cannot contain spaces, and
+    #   date and time should be separated by `T`. For example,
+    #   `2020-03-22T13:22:13.933Z`.
     #
     #
     #
@@ -15360,8 +15437,9 @@ module Aws::SecurityHub
     #   Indicates when the object was last modified.
     #
     #   Uses the `date-time` format specified in [RFC 3339 section 5.6,
-    #   Internet Date/Time Format][1]. The value cannot contain spaces. For
-    #   example, `2020-03-22T13:22:13.933Z`.
+    #   Internet Date/Time Format][1]. The value cannot contain spaces, and
+    #   date and time should be separated by `T`. For example,
+    #   `2020-03-22T13:22:13.933Z`.
     #
     #
     #
@@ -15723,8 +15801,9 @@ module Aws::SecurityHub
     #   potential security issue that a finding captured.
     #
     #   Uses the `date-time` format specified in [RFC 3339 section 5.6,
-    #   Internet Date/Time Format][1]. The value cannot contain spaces. For
-    #   example, `2020-03-22T13:22:13.933Z`.
+    #   Internet Date/Time Format][1]. The value cannot contain spaces, and
+    #   date and time should be separated by `T`. For example,
+    #   `2020-03-22T13:22:13.933Z`.
     #
     #
     #
@@ -15736,8 +15815,9 @@ module Aws::SecurityHub
     #   the potential security issue that a finding captured.
     #
     #   Uses the `date-time` format specified in [RFC 3339 section 5.6,
-    #   Internet Date/Time Format][1]. The value cannot contain spaces. For
-    #   example, `2020-03-22T13:22:13.933Z`.
+    #   Internet Date/Time Format][1]. The value cannot contain spaces, and
+    #   date and time should be separated by `T`. For example,
+    #   `2020-03-22T13:22:13.933Z`.
     #
     #
     #
@@ -15749,8 +15829,9 @@ module Aws::SecurityHub
     #   security issue that a finding captured.
     #
     #   Uses the `date-time` format specified in [RFC 3339 section 5.6,
-    #   Internet Date/Time Format][1]. The value cannot contain spaces. For
-    #   example, `2020-03-22T13:22:13.933Z`.
+    #   Internet Date/Time Format][1]. The value cannot contain spaces, and
+    #   date and time should be separated by `T`. For example,
+    #   `2020-03-22T13:22:13.933Z`.
     #
     #
     #
@@ -15762,8 +15843,9 @@ module Aws::SecurityHub
     #   finding record.
     #
     #   Uses the `date-time` format specified in [RFC 3339 section 5.6,
-    #   Internet Date/Time Format][1]. The value cannot contain spaces. For
-    #   example, `2020-03-22T13:22:13.933Z`.
+    #   Internet Date/Time Format][1]. The value cannot contain spaces, and
+    #   date and time should be separated by `T`. For example,
+    #   `2020-03-22T13:22:13.933Z`.
     #
     #
     #
@@ -16010,23 +16092,59 @@ module Aws::SecurityHub
     #   An ISO8601-formatted timestamp that indicates when the
     #   security-findings provider first observed the potential security
     #   issue that a finding captured.
+    #
+    #   A correctly formatted example is `2020-05-21T20:16:34.724Z`. The
+    #   value cannot contain spaces, and date and time should be separated
+    #   by `T`. For more information, see [RFC 3339 section 5.6, Internet
+    #   Date/Time Format][1].
+    #
+    #
+    #
+    #   [1]: https://www.rfc-editor.org/rfc/rfc3339#section-5.6
     #   @return [Array<Types::DateFilter>]
     #
     # @!attribute [rw] last_observed_at
     #   An ISO8601-formatted timestamp that indicates when the
     #   security-findings provider most recently observed the potential
     #   security issue that a finding captured.
+    #
+    #   A correctly formatted example is `2020-05-21T20:16:34.724Z`. The
+    #   value cannot contain spaces, and date and time should be separated
+    #   by `T`. For more information, see [RFC 3339 section 5.6, Internet
+    #   Date/Time Format][1].
+    #
+    #
+    #
+    #   [1]: https://www.rfc-editor.org/rfc/rfc3339#section-5.6
     #   @return [Array<Types::DateFilter>]
     #
     # @!attribute [rw] created_at
     #   An ISO8601-formatted timestamp that indicates when the
     #   security-findings provider captured the potential security issue
     #   that a finding captured.
+    #
+    #   A correctly formatted example is `2020-05-21T20:16:34.724Z`. The
+    #   value cannot contain spaces, and date and time should be separated
+    #   by `T`. For more information, see [RFC 3339 section 5.6, Internet
+    #   Date/Time Format][1].
+    #
+    #
+    #
+    #   [1]: https://www.rfc-editor.org/rfc/rfc3339#section-5.6
     #   @return [Array<Types::DateFilter>]
     #
     # @!attribute [rw] updated_at
     #   An ISO8601-formatted timestamp that indicates when the
     #   security-findings provider last updated the finding record.
+    #
+    #   A correctly formatted example is `2020-05-21T20:16:34.724Z`. The
+    #   value cannot contain spaces, and date and time should be separated
+    #   by `T`. For more information, see [RFC 3339 section 5.6, Internet
+    #   Date/Time Format][1].
+    #
+    #
+    #
+    #   [1]: https://www.rfc-editor.org/rfc/rfc3339#section-5.6
     #   @return [Array<Types::DateFilter>]
     #
     # @!attribute [rw] severity_product
@@ -16182,11 +16300,29 @@ module Aws::SecurityHub
     #   @return [Array<Types::NumberFilter>]
     #
     # @!attribute [rw] process_launched_at
-    #   The date/time that the process was launched.
+    #   A timestamp that identifies when the process was launched.
+    #
+    #   A correctly formatted example is `2020-05-21T20:16:34.724Z`. The
+    #   value cannot contain spaces, and date and time should be separated
+    #   by `T`. For more information, see [RFC 3339 section 5.6, Internet
+    #   Date/Time Format][1].
+    #
+    #
+    #
+    #   [1]: https://www.rfc-editor.org/rfc/rfc3339#section-5.6
     #   @return [Array<Types::DateFilter>]
     #
     # @!attribute [rw] process_terminated_at
-    #   The date/time that the process was terminated.
+    #   A timestamp that identifies when the process was terminated.
+    #
+    #   A correctly formatted example is `2020-05-21T20:16:34.724Z`. The
+    #   value cannot contain spaces, and date and time should be separated
+    #   by `T`. For more information, see [RFC 3339 section 5.6, Internet
+    #   Date/Time Format][1].
+    #
+    #
+    #
+    #   [1]: https://www.rfc-editor.org/rfc/rfc3339#section-5.6
     #   @return [Array<Types::DateFilter>]
     #
     # @!attribute [rw] threat_intel_indicator_type
@@ -16202,8 +16338,8 @@ module Aws::SecurityHub
     #   @return [Array<Types::StringFilter>]
     #
     # @!attribute [rw] threat_intel_indicator_last_observed_at
-    #   The date/time of the last observation of a threat intelligence
-    #   indicator.
+    #   A timestamp that identifies the last observation of a threat
+    #   intelligence indicator.
     #   @return [Array<Types::DateFilter>]
     #
     # @!attribute [rw] threat_intel_indicator_source
@@ -16314,7 +16450,16 @@ module Aws::SecurityHub
     #   @return [Array<Types::StringFilter>]
     #
     # @!attribute [rw] resource_container_launched_at
-    #   The date/time that the container was started.
+    #   A timestamp that identifies when the container was started.
+    #
+    #   A correctly formatted example is `2020-05-21T20:16:34.724Z`. The
+    #   value cannot contain spaces, and date and time should be separated
+    #   by `T`. For more information, see [RFC 3339 section 5.6, Internet
+    #   Date/Time Format][1].
+    #
+    #
+    #
+    #   [1]: https://www.rfc-editor.org/rfc/rfc3339#section-5.6
     #   @return [Array<Types::DateFilter>]
     #
     # @!attribute [rw] resource_details_other
@@ -18091,6 +18236,81 @@ module Aws::SecurityHub
       include Aws::Structure
     end
 
+    # @!attribute [rw] security_control_ids
+    #   A list of security controls (identified with `SecurityControlId`,
+    #   `SecurityControlArn`, or a mix of both parameters). The security
+    #   control ID or Amazon Resource Name (ARN) is the same across
+    #   standards.
+    #   @return [Array<String>]
+    #
+    # @see http://docs.aws.amazon.com/goto/WebAPI/securityhub-2018-10-26/BatchGetSecurityControlsRequest AWS API Documentation
+    #
+    class BatchGetSecurityControlsRequest < Struct.new(
+      :security_control_ids)
+      SENSITIVE = []
+      include Aws::Structure
+    end
+
+    # @!attribute [rw] security_controls
+    #   An array that returns the identifier, Amazon Resource Name (ARN),
+    #   and other details about a security control. The same information is
+    #   returned whether the request includes `SecurityControlId` or
+    #   `SecurityControlArn`.
+    #   @return [Array<Types::SecurityControl>]
+    #
+    # @!attribute [rw] unprocessed_ids
+    #   A security control (identified with `SecurityControlId`,
+    #   `SecurityControlArn`, or a mix of both parameters) for which details
+    #   cannot be returned.
+    #   @return [Array<Types::UnprocessedSecurityControl>]
+    #
+    # @see http://docs.aws.amazon.com/goto/WebAPI/securityhub-2018-10-26/BatchGetSecurityControlsResponse AWS API Documentation
+    #
+    class BatchGetSecurityControlsResponse < Struct.new(
+      :security_controls,
+      :unprocessed_ids)
+      SENSITIVE = []
+      include Aws::Structure
+    end
+
+    # @!attribute [rw] standards_control_association_ids
+    #   An array with one or more objects that includes a security control
+    #   (identified with `SecurityControlId`, `SecurityControlArn`, or a mix
+    #   of both parameters) and the Amazon Resource Name (ARN) of a
+    #   standard. This field is used to query the enablement status of a
+    #   control in a specified standard. The security control ID or ARN is
+    #   the same across standards.
+    #   @return [Array<Types::StandardsControlAssociationId>]
+    #
+    # @see http://docs.aws.amazon.com/goto/WebAPI/securityhub-2018-10-26/BatchGetStandardsControlAssociationsRequest AWS API Documentation
+    #
+    class BatchGetStandardsControlAssociationsRequest < Struct.new(
+      :standards_control_association_ids)
+      SENSITIVE = []
+      include Aws::Structure
+    end
+
+    # @!attribute [rw] standards_control_association_details
+    #   Provides the enablement status of a security control in a specified
+    #   standard and other details for the control in relation to the
+    #   specified standard.
+    #   @return [Array<Types::StandardsControlAssociationDetail>]
+    #
+    # @!attribute [rw] unprocessed_associations
+    #   A security control (identified with `SecurityControlId`,
+    #   `SecurityControlArn`, or a mix of both parameters) whose enablement
+    #   status in a specified standard cannot be returned.
+    #   @return [Array<Types::UnprocessedStandardsControlAssociation>]
+    #
+    # @see http://docs.aws.amazon.com/goto/WebAPI/securityhub-2018-10-26/BatchGetStandardsControlAssociationsResponse AWS API Documentation
+    #
+    class BatchGetStandardsControlAssociationsResponse < Struct.new(
+      :standards_control_association_details,
+      :unprocessed_associations)
+      SENSITIVE = []
+      include Aws::Structure
+    end
+
     # @!attribute [rw] findings
     #   A list of findings to import. To successfully import a finding, it
     #   must follow the [Amazon Web Services Security Finding Format][1].
@@ -18312,6 +18532,33 @@ module Aws::SecurityHub
       include Aws::Structure
     end
 
+    # @!attribute [rw] standards_control_association_updates
+    #   Updates the enablement status of a security control in a specified
+    #   standard.
+    #   @return [Array<Types::StandardsControlAssociationUpdate>]
+    #
+    # @see http://docs.aws.amazon.com/goto/WebAPI/securityhub-2018-10-26/BatchUpdateStandardsControlAssociationsRequest AWS API Documentation
+    #
+    class BatchUpdateStandardsControlAssociationsRequest < Struct.new(
+      :standards_control_association_updates)
+      SENSITIVE = []
+      include Aws::Structure
+    end
+
+    # @!attribute [rw] unprocessed_association_updates
+    #   A security control (identified with `SecurityControlId`,
+    #   `SecurityControlArn`, or a mix of both parameters) whose enablement
+    #   status in a specified standard couldn't be updated.
+    #   @return [Array<Types::UnprocessedStandardsControlAssociationUpdate>]
+    #
+    # @see http://docs.aws.amazon.com/goto/WebAPI/securityhub-2018-10-26/BatchUpdateStandardsControlAssociationsResponse AWS API Documentation
+    #
+    class BatchUpdateStandardsControlAssociationsResponse < Struct.new(
+      :unprocessed_association_updates)
+      SENSITIVE = []
+      include Aws::Structure
+    end
+
     # Boolean filter for querying findings.
     #
     # @!attribute [rw] value
@@ -18549,8 +18796,9 @@ module Aws::SecurityHub
     #   Indicates when the container started.
     #
     #   Uses the `date-time` format specified in [RFC 3339 section 5.6,
-    #   Internet Date/Time Format][1]. The value cannot contain spaces. For
-    #   example, `2020-03-22T13:22:13.933Z`.
+    #   Internet Date/Time Format][1]. The value cannot contain spaces, and
+    #   date and time should be separated by `T`. For example,
+    #   `2020-03-22T13:22:13.933Z`.
     #
     #
     #
@@ -18625,7 +18873,7 @@ module Aws::SecurityHub
     end
 
     # @!attribute [rw] action_target_arn
-    #   The ARN for the custom action target.
+    #   The Amazon Resource Name (ARN) for the custom action target.
     #   @return [String]
     #
     # @see http://docs.aws.amazon.com/goto/WebAPI/securityhub-2018-10-26/CreateActionTargetResponse AWS API Documentation
@@ -18888,11 +19136,29 @@ module Aws::SecurityHub
     # A date filter for querying findings.
     #
     # @!attribute [rw] start
-    #   A start date for the date filter.
+    #   A timestamp that provides the start date for the date filter.
+    #
+    #   A correctly formatted example is `2020-05-21T20:16:34.724Z`. The
+    #   value cannot contain spaces, and date and time should be separated
+    #   by `T`. For more information, see [RFC 3339 section 5.6, Internet
+    #   Date/Time Format][1].
+    #
+    #
+    #
+    #   [1]: https://www.rfc-editor.org/rfc/rfc3339#section-5.6
     #   @return [String]
     #
     # @!attribute [rw] end
-    #   An end date for the date filter.
+    #   A timestamp that provides the end date for the date filter.
+    #
+    #   A correctly formatted example is `2020-05-21T20:16:34.724Z`. The
+    #   value cannot contain spaces, and date and time should be separated
+    #   by `T`. For more information, see [RFC 3339 section 5.6, Internet
+    #   Date/Time Format][1].
+    #
+    #
+    #
+    #   [1]: https://www.rfc-editor.org/rfc/rfc3339#section-5.6
     #   @return [String]
     #
     # @!attribute [rw] date_range
@@ -18956,7 +19222,8 @@ module Aws::SecurityHub
     end
 
     # @!attribute [rw] action_target_arn
-    #   The ARN of the custom action target to delete.
+    #   The Amazon Resource Name (ARN) of the custom action target to
+    #   delete.
     #   @return [String]
     #
     # @see http://docs.aws.amazon.com/goto/WebAPI/securityhub-2018-10-26/DeleteActionTargetRequest AWS API Documentation
@@ -19149,12 +19416,30 @@ module Aws::SecurityHub
     #   enabled.
     #   @return [Boolean]
     #
+    # @!attribute [rw] control_finding_generator
+    #   Specifies whether the calling account has consolidated control
+    #   findings turned on. If the value for this field is set to
+    #   `SECURITY_CONTROL`, Security Hub generates a single finding for a
+    #   control check even when the check applies to multiple enabled
+    #   standards.
+    #
+    #   If the value for this field is set to `STANDARD_CONTROL`, Security
+    #   Hub generates separate findings for a control check when the check
+    #   applies to multiple enabled standards.
+    #
+    #   The value for this field in a member account matches the value in
+    #   the administrator account. For accounts that aren't part of an
+    #   organization, the default value of this field is `SECURITY_CONTROL`
+    #   if you enabled Security Hub on or after February 9, 2023.
+    #   @return [String]
+    #
     # @see http://docs.aws.amazon.com/goto/WebAPI/securityhub-2018-10-26/DescribeHubResponse AWS API Documentation
     #
     class DescribeHubResponse < Struct.new(
       :hub_arn,
       :subscribed_at,
-      :auto_enable_controls)
+      :auto_enable_controls,
+      :control_finding_generator)
       SENSITIVE = []
       include Aws::Structure
     end
@@ -19495,11 +19780,29 @@ module Aws::SecurityHub
     #   `false`.
     #   @return [Boolean]
     #
+    # @!attribute [rw] control_finding_generator
+    #   This field, used when enabling Security Hub, specifies whether the
+    #   calling account has consolidated control findings turned on. If the
+    #   value for this field is set to `SECURITY_CONTROL`, Security Hub
+    #   generates a single finding for a control check even when the check
+    #   applies to multiple enabled standards.
+    #
+    #   If the value for this field is set to `STANDARD_CONTROL`, Security
+    #   Hub generates separate findings for a control check when the check
+    #   applies to multiple enabled standards.
+    #
+    #   The value for this field in a member account matches the value in
+    #   the administrator account. For accounts that aren't part of an
+    #   organization, the default value of this field is `SECURITY_CONTROL`
+    #   if you enabled Security Hub on or after February 9, 2023.
+    #   @return [String]
+    #
     # @see http://docs.aws.amazon.com/goto/WebAPI/securityhub-2018-10-26/EnableSecurityHubRequest AWS API Documentation
     #
     class EnableSecurityHubRequest < Struct.new(
       :tags,
-      :enable_default_standards)
+      :enable_default_standards,
+      :control_finding_generator)
       SENSITIVE = []
       include Aws::Structure
     end
@@ -20614,6 +20917,104 @@ module Aws::SecurityHub
       include Aws::Structure
     end
 
+    # @!attribute [rw] standards_arn
+    #   The Amazon Resource Name (ARN) of the standard that you want to view
+    #   controls for.
+    #   @return [String]
+    #
+    # @!attribute [rw] next_token
+    #   Optional pagination parameter.
+    #   @return [String]
+    #
+    # @!attribute [rw] max_results
+    #   An optional parameter that limits the total results of the API
+    #   response to the specified number. If this parameter isn't provided
+    #   in the request, the results include the first 25 security controls
+    #   that apply to the specified standard. The results also include a
+    #   `NextToken` parameter that you can use in a subsequent API call to
+    #   get the next 25 controls. This repeats until all controls for the
+    #   standard are returned.
+    #   @return [Integer]
+    #
+    # @see http://docs.aws.amazon.com/goto/WebAPI/securityhub-2018-10-26/ListSecurityControlDefinitionsRequest AWS API Documentation
+    #
+    class ListSecurityControlDefinitionsRequest < Struct.new(
+      :standards_arn,
+      :next_token,
+      :max_results)
+      SENSITIVE = []
+      include Aws::Structure
+    end
+
+    # @!attribute [rw] security_control_definitions
+    #   An array of controls that apply to the specified standard.
+    #   @return [Array<Types::SecurityControlDefinition>]
+    #
+    # @!attribute [rw] next_token
+    #   A pagination parameter that's included in the response only if it
+    #   was included in the request.
+    #   @return [String]
+    #
+    # @see http://docs.aws.amazon.com/goto/WebAPI/securityhub-2018-10-26/ListSecurityControlDefinitionsResponse AWS API Documentation
+    #
+    class ListSecurityControlDefinitionsResponse < Struct.new(
+      :security_control_definitions,
+      :next_token)
+      SENSITIVE = []
+      include Aws::Structure
+    end
+
+    # @!attribute [rw] security_control_id
+    #   The identifier of the control (identified with `SecurityControlId`,
+    #   `SecurityControlArn`, or a mix of both parameters) that you want to
+    #   determine the enablement status of in each enabled standard.
+    #   @return [String]
+    #
+    # @!attribute [rw] next_token
+    #   Optional pagination parameter.
+    #   @return [String]
+    #
+    # @!attribute [rw] max_results
+    #   An optional parameter that limits the total results of the API
+    #   response to the specified number. If this parameter isn't provided
+    #   in the request, the results include the first 25 standard and
+    #   control associations. The results also include a `NextToken`
+    #   parameter that you can use in a subsequent API call to get the next
+    #   25 associations. This repeats until all associations for the
+    #   specified control are returned. The number of results is limited by
+    #   the number of supported Security Hub standards that you've enabled
+    #   in the calling account.
+    #   @return [Integer]
+    #
+    # @see http://docs.aws.amazon.com/goto/WebAPI/securityhub-2018-10-26/ListStandardsControlAssociationsRequest AWS API Documentation
+    #
+    class ListStandardsControlAssociationsRequest < Struct.new(
+      :security_control_id,
+      :next_token,
+      :max_results)
+      SENSITIVE = []
+      include Aws::Structure
+    end
+
+    # @!attribute [rw] standards_control_association_summaries
+    #   An array that provides the enablement status and other details for
+    #   each security control that applies to each enabled standard.
+    #   @return [Array<Types::StandardsControlAssociationSummary>]
+    #
+    # @!attribute [rw] next_token
+    #   A pagination parameter that's included in the response only if it
+    #   was included in the request.
+    #   @return [String]
+    #
+    # @see http://docs.aws.amazon.com/goto/WebAPI/securityhub-2018-10-26/ListStandardsControlAssociationsResponse AWS API Documentation
+    #
+    class ListStandardsControlAssociationsResponse < Struct.new(
+      :standards_control_association_summaries,
+      :next_token)
+      SENSITIVE = []
+      include Aws::Structure
+    end
+
     # @!attribute [rw] resource_arn
     #   The ARN of the resource to retrieve tags for.
     #   @return [String]
@@ -21026,8 +21427,9 @@ module Aws::SecurityHub
     #   The timestamp of when the note was updated.
     #
     #   Uses the `date-time` format specified in [RFC 3339 section 5.6,
-    #   Internet Date/Time Format][1]. The value cannot contain spaces. For
-    #   example, `2020-03-22T13:22:13.933Z`.
+    #   Internet Date/Time Format][1]. The value cannot contain spaces, and
+    #   date and time should be separated by `T`. For example,
+    #   `2020-03-22T13:22:13.933Z`.
     #
     #
     #
@@ -21200,8 +21602,9 @@ module Aws::SecurityHub
     #   Indicates when the operation started.
     #
     #   Uses the `date-time` format specified in [RFC 3339 section 5.6,
-    #   Internet Date/Time Format][1]. The value cannot contain spaces. For
-    #   example, `2020-03-22T13:22:13.933Z`.
+    #   Internet Date/Time Format][1]. The value cannot contain spaces, and
+    #   date and time should be separated by `T`. For example,
+    #   `2020-03-22T13:22:13.933Z`.
     #
     #
     #
@@ -21212,8 +21615,9 @@ module Aws::SecurityHub
     #   Indicates when the operation completed.
     #
     #   Uses the `date-time` format specified in [RFC 3339 section 5.6,
-    #   Internet Date/Time Format][1]. The value cannot contain spaces. For
-    #   example, `2020-03-22T13:22:13.933Z`.
+    #   Internet Date/Time Format][1]. The value cannot contain spaces, and
+    #   date and time should be separated by `T`. For example,
+    #   `2020-03-22T13:22:13.933Z`.
     #
     #
     #
@@ -21356,8 +21760,9 @@ module Aws::SecurityHub
     #   Indicates when the process was launched.
     #
     #   Uses the `date-time` format specified in [RFC 3339 section 5.6,
-    #   Internet Date/Time Format][1]. The value cannot contain spaces. For
-    #   example, `2020-03-22T13:22:13.933Z`.
+    #   Internet Date/Time Format][1]. The value cannot contain spaces, and
+    #   date and time should be separated by `T`. For example,
+    #   `2020-03-22T13:22:13.933Z`.
     #
     #
     #
@@ -21368,8 +21773,9 @@ module Aws::SecurityHub
     #   Indicates when the process was terminated.
     #
     #   Uses the `date-time` format specified in [RFC 3339 section 5.6,
-    #   Internet Date/Time Format][1]. The value cannot contain spaces. For
-    #   example, `2020-03-22T13:22:13.933Z`.
+    #   Internet Date/Time Format][1]. The value cannot contain spaces, and
+    #   date and time should be separated by `T`. For example,
+    #   `2020-03-22T13:22:13.933Z`.
     #
     #
     #
@@ -22587,6 +22993,132 @@ module Aws::SecurityHub
       include Aws::Structure
     end
 
+    # A security control in Security Hub describes a security best practice
+    # related to a specific resource.
+    #
+    # @!attribute [rw] security_control_id
+    #   The unique identifier of a security control across standards. Values
+    #   for this field typically consist of an Amazon Web Service name and a
+    #   number, such as APIGateway.3.
+    #   @return [String]
+    #
+    # @!attribute [rw] security_control_arn
+    #   The Amazon Resource Name (ARN) for a security control across
+    #   standards, such as
+    #   `arn:aws:securityhub:eu-central-1:123456789012:security-control/S3.1`.
+    #   This parameter doesn't mention a specific standard.
+    #   @return [String]
+    #
+    # @!attribute [rw] title
+    #   The title of a security control.
+    #   @return [String]
+    #
+    # @!attribute [rw] description
+    #   The description of a security control across standards. This
+    #   typically summarizes how Security Hub evaluates the control and the
+    #   conditions under which it produces a failed finding. This parameter
+    #   doesn't reference a specific standard.
+    #   @return [String]
+    #
+    # @!attribute [rw] remediation_url
+    #   A link to Security Hub documentation that explains how to remediate
+    #   a failed finding for a security control.
+    #   @return [String]
+    #
+    # @!attribute [rw] severity_rating
+    #   The severity of a security control. For more information about how
+    #   Security Hub determines control severity, see [Assigning severity to
+    #   control findings][1] in the *Security Hub User Guide*.
+    #
+    #
+    #
+    #   [1]: https://docs.aws.amazon.com/securityhub/latest/userguide/controls-findings-create-update.html#control-findings-severity
+    #   @return [String]
+    #
+    # @!attribute [rw] security_control_status
+    #   The status of a security control based on the compliance status of
+    #   its findings. For more information about how control status is
+    #   determined, see [Determining the overall status of a control from
+    #   its findings][1] in the *Security Hub User Guide*.
+    #
+    #
+    #
+    #   [1]: https://docs.aws.amazon.com/securityhub/latest/userguide/controls-overall-status.html
+    #   @return [String]
+    #
+    # @see http://docs.aws.amazon.com/goto/WebAPI/securityhub-2018-10-26/SecurityControl AWS API Documentation
+    #
+    class SecurityControl < Struct.new(
+      :security_control_id,
+      :security_control_arn,
+      :title,
+      :description,
+      :remediation_url,
+      :severity_rating,
+      :security_control_status)
+      SENSITIVE = []
+      include Aws::Structure
+    end
+
+    # Provides metadata for a security control, including its unique
+    # standard-agnostic identifier, title, description, severity,
+    # availability in Amazon Web Services Regions, and a link to remediation
+    # steps.
+    #
+    # @!attribute [rw] security_control_id
+    #   The unique identifier of a security control across standards. Values
+    #   for this field typically consist of an Amazon Web Service name and a
+    #   number (for example, APIGateway.3). This parameter differs from
+    #   `SecurityControlArn`, which is a unique Amazon Resource Name (ARN)
+    #   assigned to a control. The ARN references the security control ID
+    #   (for example,
+    #   arn:aws:securityhub:eu-central-1:123456789012:security-control/APIGateway.3).
+    #   @return [String]
+    #
+    # @!attribute [rw] title
+    #   The title of a security control.
+    #   @return [String]
+    #
+    # @!attribute [rw] description
+    #   The description of a security control across standards. This
+    #   typically summarizes how Security Hub evaluates the control and the
+    #   conditions under which it produces a failed finding. This parameter
+    #   doesn't reference a specific standard.
+    #   @return [String]
+    #
+    # @!attribute [rw] remediation_url
+    #   A link to Security Hub documentation that explains how to remediate
+    #   a failed finding for a security control.
+    #   @return [String]
+    #
+    # @!attribute [rw] severity_rating
+    #   The severity of a security control. For more information about how
+    #   Security Hub determines control severity, see [Assigning severity to
+    #   control findings][1] in the *Security Hub User Guide*.
+    #
+    #
+    #
+    #   [1]: https://docs.aws.amazon.com/securityhub/latest/userguide/controls-findings-create-update.html#control-findings-severity
+    #   @return [String]
+    #
+    # @!attribute [rw] current_region_availability
+    #   Specifies whether a security control is available in the current
+    #   Amazon Web Services Region.
+    #   @return [String]
+    #
+    # @see http://docs.aws.amazon.com/goto/WebAPI/securityhub-2018-10-26/SecurityControlDefinition AWS API Documentation
+    #
+    class SecurityControlDefinition < Struct.new(
+      :security_control_id,
+      :title,
+      :description,
+      :remediation_url,
+      :severity_rating,
+      :current_region_availability)
+      SENSITIVE = []
+      include Aws::Structure
+    end
+
     # The list of detected instances of sensitive data.
     #
     # @!attribute [rw] count
@@ -22643,7 +23175,7 @@ module Aws::SecurityHub
     # The severity of the finding.
     #
     # The finding provider can provide the initial severity. The finding
-    # provider can only update the severity if it has not been updated using
+    # provider can only update the severity if it hasn't been updated using
     # `BatchUpdateFindings`.
     #
     # The finding must have either `Label` or `Normalized` populated. If
@@ -22970,6 +23502,207 @@ module Aws::SecurityHub
       include Aws::Structure
     end
 
+    # Provides details about a control's enablement status in a specified
+    # standard.
+    #
+    # @!attribute [rw] standards_arn
+    #   The Amazon Resource Name (ARN) of a security standard.
+    #   @return [String]
+    #
+    # @!attribute [rw] security_control_id
+    #   The unique identifier of a security control across standards. Values
+    #   for this field typically consist of an Amazon Web Service name and a
+    #   number, such as APIGateway.3.
+    #   @return [String]
+    #
+    # @!attribute [rw] security_control_arn
+    #   The ARN of a security control across standards, such as
+    #   `arn:aws:securityhub:eu-central-1:123456789012:security-control/S3.1`.
+    #   This parameter doesn't mention a specific standard.
+    #   @return [String]
+    #
+    # @!attribute [rw] association_status
+    #   Specifies whether a control is enabled or disabled in a specified
+    #   standard.
+    #   @return [String]
+    #
+    # @!attribute [rw] related_requirements
+    #   The requirement that underlies a control in the compliance framework
+    #   related to the standard.
+    #   @return [Array<String>]
+    #
+    # @!attribute [rw] updated_at
+    #   The time at which the enablement status of the control in the
+    #   specified standard was last updated.
+    #   @return [Time]
+    #
+    # @!attribute [rw] updated_reason
+    #   The reason for updating the enablement status of a control in a
+    #   specified standard.
+    #   @return [String]
+    #
+    # @!attribute [rw] standards_control_title
+    #   The title of a control. This field may reference a specific
+    #   standard.
+    #   @return [String]
+    #
+    # @!attribute [rw] standards_control_description
+    #   The description of a control. This typically summarizes how Security
+    #   Hub evaluates the control and the conditions under which it produces
+    #   a failed finding. This parameter may reference a specific standard.
+    #   @return [String]
+    #
+    # @!attribute [rw] standards_control_arns
+    #   Provides the input parameter that Security Hub uses to call the
+    #   [UpdateStandardsControl][1] API. This API can be used to enable or
+    #   disable a control in a specified standard.
+    #
+    #
+    #
+    #   [1]: https://docs.aws.amazon.com/securityhub/1.0/APIReference/API_UpdateStandardsControl.html
+    #   @return [Array<String>]
+    #
+    # @see http://docs.aws.amazon.com/goto/WebAPI/securityhub-2018-10-26/StandardsControlAssociationDetail AWS API Documentation
+    #
+    class StandardsControlAssociationDetail < Struct.new(
+      :standards_arn,
+      :security_control_id,
+      :security_control_arn,
+      :association_status,
+      :related_requirements,
+      :updated_at,
+      :updated_reason,
+      :standards_control_title,
+      :standards_control_description,
+      :standards_control_arns)
+      SENSITIVE = []
+      include Aws::Structure
+    end
+
+    # An array with one or more objects that includes a security control
+    # (identified with `SecurityControlId`, `SecurityControlArn`, or a mix
+    # of both parameters) and the Amazon Resource Name (ARN) of a standard.
+    # The security control ID or ARN is the same across standards.
+    #
+    # @!attribute [rw] security_control_id
+    #   The unique identifier (identified with `SecurityControlId`,
+    #   `SecurityControlArn`, or a mix of both parameters) of a security
+    #   control across standards.
+    #   @return [String]
+    #
+    # @!attribute [rw] standards_arn
+    #   The ARN of a standard.
+    #   @return [String]
+    #
+    # @see http://docs.aws.amazon.com/goto/WebAPI/securityhub-2018-10-26/StandardsControlAssociationId AWS API Documentation
+    #
+    class StandardsControlAssociationId < Struct.new(
+      :security_control_id,
+      :standards_arn)
+      SENSITIVE = []
+      include Aws::Structure
+    end
+
+    # An array that provides the enablement status and other details for
+    # each control that applies to each enabled standard.
+    #
+    # @!attribute [rw] standards_arn
+    #   The Amazon Resource Name (ARN) of a standard.
+    #   @return [String]
+    #
+    # @!attribute [rw] security_control_id
+    #   A unique standard-agnostic identifier for a control. Values for this
+    #   field typically consist of an Amazon Web Service and a number, such
+    #   as APIGateway.5. This field doesn't reference a specific standard.
+    #   @return [String]
+    #
+    # @!attribute [rw] security_control_arn
+    #   The ARN of a control, such as
+    #   `arn:aws:securityhub:eu-central-1:123456789012:security-control/S3.1`.
+    #   This parameter doesn't mention a specific standard.
+    #   @return [String]
+    #
+    # @!attribute [rw] association_status
+    #   The enablement status of a control in a specific standard.
+    #   @return [String]
+    #
+    # @!attribute [rw] related_requirements
+    #   The requirement that underlies this control in the compliance
+    #   framework related to the standard.
+    #   @return [Array<String>]
+    #
+    # @!attribute [rw] updated_at
+    #   The last time that a control's enablement status in a specified
+    #   standard was updated.
+    #   @return [Time]
+    #
+    # @!attribute [rw] updated_reason
+    #   The reason for updating the control's enablement status in a
+    #   specified standard.
+    #   @return [String]
+    #
+    # @!attribute [rw] standards_control_title
+    #   The title of a control.
+    #   @return [String]
+    #
+    # @!attribute [rw] standards_control_description
+    #   The description of a control. This typically summarizes how Security
+    #   Hub evaluates the control and the conditions under which it produces
+    #   a failed finding. The parameter may reference a specific standard.
+    #   @return [String]
+    #
+    # @see http://docs.aws.amazon.com/goto/WebAPI/securityhub-2018-10-26/StandardsControlAssociationSummary AWS API Documentation
+    #
+    class StandardsControlAssociationSummary < Struct.new(
+      :standards_arn,
+      :security_control_id,
+      :security_control_arn,
+      :association_status,
+      :related_requirements,
+      :updated_at,
+      :updated_reason,
+      :standards_control_title,
+      :standards_control_description)
+      SENSITIVE = []
+      include Aws::Structure
+    end
+
+    # An array of requested updates to the enablement status of controls in
+    # specified standards. The objects in the array include a security
+    # control ID, the Amazon Resource Name (ARN) of the standard, the
+    # requested enablement status, and the reason for updating the
+    # enablement status.
+    #
+    # @!attribute [rw] standards_arn
+    #   The Amazon Resource Name (ARN) of the standard in which you want to
+    #   update the control's enablement status.
+    #   @return [String]
+    #
+    # @!attribute [rw] security_control_id
+    #   The unique identifier for the security control whose enablement
+    #   status you want to update.
+    #   @return [String]
+    #
+    # @!attribute [rw] association_status
+    #   The desired enablement status of the control in the standard.
+    #   @return [String]
+    #
+    # @!attribute [rw] updated_reason
+    #   The reason for updating the control's enablement status in the
+    #   standard.
+    #   @return [String]
+    #
+    # @see http://docs.aws.amazon.com/goto/WebAPI/securityhub-2018-10-26/StandardsControlAssociationUpdate AWS API Documentation
+    #
+    class StandardsControlAssociationUpdate < Struct.new(
+      :standards_arn,
+      :security_control_id,
+      :association_status,
+      :updated_reason)
+      SENSITIVE = []
+      include Aws::Structure
+    end
+
     # Provides details about the management of a security standard.
     #
     # @!attribute [rw] company
@@ -23307,8 +24040,9 @@ module Aws::SecurityHub
     #   indicator was observed.
     #
     #   Uses the `date-time` format specified in [RFC 3339 section 5.6,
-    #   Internet Date/Time Format][1]. The value cannot contain spaces. For
-    #   example, `2020-03-22T13:22:13.933Z`.
+    #   Internet Date/Time Format][1]. The value cannot contain spaces, and
+    #   date and time should be separated by `T`. For example,
+    #   `2020-03-22T13:22:13.933Z`.
     #
     #
     #
@@ -23337,6 +24071,111 @@ module Aws::SecurityHub
       include Aws::Structure
     end
 
+    # Provides details about a security control for which a response
+    # couldn't be returned.
+    #
+    # @!attribute [rw] security_control_id
+    #   The control (identified with `SecurityControlId`,
+    #   `SecurityControlArn`, or a mix of both parameters) for which a
+    #   response couldn't be returned.
+    #   @return [String]
+    #
+    # @!attribute [rw] error_code
+    #   The error code for the unprocessed security control.
+    #   @return [String]
+    #
+    # @!attribute [rw] error_reason
+    #   The reason why the security control was unprocessed.
+    #   @return [String]
+    #
+    # @see http://docs.aws.amazon.com/goto/WebAPI/securityhub-2018-10-26/UnprocessedSecurityControl AWS API Documentation
+    #
+    class UnprocessedSecurityControl < Struct.new(
+      :security_control_id,
+      :error_code,
+      :error_reason)
+      SENSITIVE = []
+      include Aws::Structure
+    end
+
+    # Provides details about which control's enablement status couldn't be
+    # retrieved in a specified standard when calling
+    # [BatchUpdateStandardsControlAssociations][1]. This parameter also
+    # provides details about why the request was unprocessed.
+    #
+    #
+    #
+    # [1]: https://docs.aws.amazon.com/securityhub/1.0/APIReference/API_BatchUpdateStandardsControlAssociations.html
+    #
+    # @!attribute [rw] standards_control_association_id
+    #   An array with one or more objects that includes a security control
+    #   (identified with `SecurityControlId`, `SecurityControlArn`, or a mix
+    #   of both parameters) and the Amazon Resource Name (ARN) of a
+    #   standard. This parameter shows the specific controls for which the
+    #   enablement status couldn't be retrieved in specified standards when
+    #   calling [BatchUpdateStandardsControlAssociations][1].
+    #
+    #
+    #
+    #   [1]: https://docs.aws.amazon.com/securityhub/1.0/APIReference/API_BatchUpdateStandardsControlAssociations.html
+    #   @return [Types::StandardsControlAssociationId]
+    #
+    # @!attribute [rw] error_code
+    #   The error code for the unprocessed standard and control association.
+    #   @return [String]
+    #
+    # @!attribute [rw] error_reason
+    #   The reason why the standard and control association was unprocessed.
+    #   @return [String]
+    #
+    # @see http://docs.aws.amazon.com/goto/WebAPI/securityhub-2018-10-26/UnprocessedStandardsControlAssociation AWS API Documentation
+    #
+    class UnprocessedStandardsControlAssociation < Struct.new(
+      :standards_control_association_id,
+      :error_code,
+      :error_reason)
+      SENSITIVE = []
+      include Aws::Structure
+    end
+
+    # Provides details about which control's enablement status could not be
+    # updated in a specified standard when calling the
+    # [BatchUpdateStandardsControlAssociations][1] API. This parameter also
+    # provides details about why the request was unprocessed.
+    #
+    #
+    #
+    # [1]: https://docs.aws.amazon.com/securityhub/1.0/APIReference/API_BatchUpdateStandardsControlAssociations.html
+    #
+    # @!attribute [rw] standards_control_association_update
+    #   An array of control and standard associations for which an update
+    #   failed when calling [BatchUpdateStandardsControlAssociations][1].
+    #
+    #
+    #
+    #   [1]: https://docs.aws.amazon.com/securityhub/1.0/APIReference/API_BatchUpdateStandardsControlAssociations.html
+    #   @return [Types::StandardsControlAssociationUpdate]
+    #
+    # @!attribute [rw] error_code
+    #   The error code for the unprocessed update of the control's
+    #   enablement status in the specified standard.
+    #   @return [String]
+    #
+    # @!attribute [rw] error_reason
+    #   The reason why a control's enablement status in the specified
+    #   standard couldn't be updated.
+    #   @return [String]
+    #
+    # @see http://docs.aws.amazon.com/goto/WebAPI/securityhub-2018-10-26/UnprocessedStandardsControlAssociationUpdate AWS API Documentation
+    #
+    class UnprocessedStandardsControlAssociationUpdate < Struct.new(
+      :standards_control_association_update,
+      :error_code,
+      :error_reason)
+      SENSITIVE = []
+      include Aws::Structure
+    end
+
     # @!attribute [rw] resource_arn
     #   The ARN of the resource to remove the tags from.
     #   @return [String]
@@ -23573,10 +24412,26 @@ module Aws::SecurityHub
     #   `false`.
     #   @return [Boolean]
     #
+    # @!attribute [rw] control_finding_generator
+    #   Updates whether the calling account has consolidated control
+    #   findings turned on. If the value for this field is set to
+    #   `SECURITY_CONTROL`, Security Hub generates a single finding for a
+    #   control check even when the check applies to multiple enabled
+    #   standards.
+    #
+    #   If the value for this field is set to `STANDARD_CONTROL`, Security
+    #   Hub generates separate findings for a control check when the check
+    #   applies to multiple enabled standards.
+    #
+    #   For accounts that are part of an organization, this value can only
+    #   be updated in the administrator account.
+    #   @return [String]
+    #
     # @see http://docs.aws.amazon.com/goto/WebAPI/securityhub-2018-10-26/UpdateSecurityHubConfigurationRequest AWS API Documentation
     #
     class UpdateSecurityHubConfigurationRequest < Struct.new(
-      :auto_enable_controls)
+      :auto_enable_controls,
+      :control_finding_generator)
       SENSITIVE = []
       include Aws::Structure
     end
@@ -23764,8 +24619,9 @@ module Aws::SecurityHub
     #   Indicates when the vulnerability advisory was created.
     #
     #   Uses the `date-time` format specified in [RFC 3339 section 5.6,
-    #   Internet Date/Time Format][1]. The value cannot contain spaces. For
-    #   example, `2020-03-22T13:22:13.933Z`.
+    #   Internet Date/Time Format][1]. The value cannot contain spaces, and
+    #   date and time should be separated by `T`. For example,
+    #   `2020-03-22T13:22:13.933Z`.
     #
     #
     #
@@ -23776,8 +24632,9 @@ module Aws::SecurityHub
     #   Indicates when the vulnerability advisory was last updated.
     #
     #   Uses the `date-time` format specified in [RFC 3339 section 5.6,
-    #   Internet Date/Time Format][1]. The value cannot contain spaces. For
-    #   example, `2020-03-22T13:22:13.933Z`.
+    #   Internet Date/Time Format][1]. The value cannot contain spaces, and
+    #   date and time should be separated by `T`. For example,
+    #   `2020-03-22T13:22:13.933Z`.
     #
     #
     #