RubyGems - aws-sdk-ssm - Versions diffs - 1.148.0 → 1.150.0 - Mend

aws-sdk-ssm 1.148.0 → 1.150.0

Files changed (9) hide show

checksums.yaml +4 -4
data/CHANGELOG.md +10 -0
data/VERSION +1 -1
data/lib/aws-sdk-ssm/client.rb +124 -95
data/lib/aws-sdk-ssm/endpoint_parameters.rb +0 -3
data/lib/aws-sdk-ssm/endpoint_provider.rb +29 -26
data/lib/aws-sdk-ssm/types.rb +132 -100
data/lib/aws-sdk-ssm.rb +1 -1
metadata +2 -2

checksums.yaml CHANGED Viewed

@@ -1,7 +1,7 @@
 ---
 SHA256:
-  metadata.gz: 9c62005d3c9a82bae53d5a9200469d944ddce08dc3973f936d574ec8a4f41907
-  data.tar.gz: de20cd86c845d97e01806553dc51784058dc61b0c2524c5a2fd786ab915a836e
+  metadata.gz: 184ef695f37be946e4b3ab18c4d2fcaa4dc552e477a11aac3ec092faa676a4d1
+  data.tar.gz: '09c9d87e13f3751694c140a5c56ff7d09ddb2d4706831d0b948521a119891d7d'
 SHA512:
-  metadata.gz: 28175c19e99bfeb72cbc7d66a43f58f7224c0c67e0347d14620cba1b8f058d0044ba3027f615d41ef9fecdd83a5533cbd184d95ed1123657362308964160e797
-  data.tar.gz: a694271bd977943678ebec909e246c16fb6fedb7180deeec48acbd4445c1ba23cbfabed93ed3c2c42c213623eedc586ee1a49c6e4b7a59f21e5f00404ae8d973
+  metadata.gz: 66acf8563fb457dc15813ad4e5f8bb7d8f8c62e7c692061c55d02a5eadadb2d4e40f52a2eb0352e0af4825ddb481d046f801b8586a1477805a4837ecfc8af9d4
+  data.tar.gz: d1e3423290c640e0f27e566a867c9dadcd91a1b110cf2ccab548274f1622808f12e05019b815f25f83e83a3927fc57005ab8162fdeebded5bfc9b3f76fc7f7a5

data/CHANGELOG.md CHANGED Viewed

@@ -1,6 +1,16 @@
 Unreleased Changes
 ------------------
+1.150.0 (2023-03-22)
+------------------
+* Feature - This Patch Manager release supports creating, updating, and deleting Patch Baselines for AmazonLinux2023, AlmaLinux.
+1.149.0 (2023-02-22)
+------------------
+* Feature - Document only update for Feb 2023
 1.148.0 (2023-01-18)
 ------------------

data/VERSION CHANGED Viewed

	@@ -1 +1 @@
1	- 1.~~148~~.0
1	+ 1.150.0

data/lib/aws-sdk-ssm/client.rb CHANGED Viewed

@@ -431,11 +431,11 @@ module Aws::SSM
     #
     #   Use the ID of the resource. Here are some examples:
     #
-    #   `MaintenanceWindow`\: `mw-012345abcde`
+    #   `MaintenanceWindow`: `mw-012345abcde`
     #
-    #   `PatchBaseline`\: `pb-012345abcde`
+    #   `PatchBaseline`: `pb-012345abcde`
     #
-    #   `Automation`\: `example-c160-4567-8519-012345abcde`
+    #   `Automation`: `example-c160-4567-8519-012345abcde`
     #
     #   `OpsMetadata` object: `ResourceID` for tagging is created from the
     #   Amazon Resource Name (ARN) for the object. Specifically, `ResourceID`
@@ -448,7 +448,7 @@ module Aws::SSM
     #   For the `Document` and `Parameter` values, use the name of the
     #   resource.
     #
-    #   `ManagedInstance`\: `mi-012345abcde`
+    #   `ManagedInstance`: `mi-012345abcde`
     #
     #   <note markdown="1"> The `ManagedInstance` type for this API operation is only for
     #   on-premises managed nodes. You must specify the name of the managed
@@ -504,9 +504,9 @@ module Aws::SSM
     #   The type of resource that you want to associate with an OpsItem.
     #   OpsCenter supports the following types:
     #
-    #   `AWS::SSMIncidents::IncidentRecord`\: an Incident Manager incident.
+    #   `AWS::SSMIncidents::IncidentRecord`: an Incident Manager incident.
     #
-    #   `AWS::SSM::Document`\: a Systems Manager (SSM) document.
+    #   `AWS::SSM::Document`: a Systems Manager (SSM) document.
     #
     # @option params [required, String] :resource_uri
     #   The Amazon Resource Name (ARN) of the Amazon Web Services resource
@@ -750,8 +750,8 @@ module Aws::SSM
     #   contains the configuration information for the managed node.
     #
     #   You can specify Amazon Web Services-predefined documents, documents
-    #   you created, or a document that is shared with you from another
-    #   account.
+    #   you created, or a document that is shared with you from another Amazon
+    #   Web Services account.
     #
     #   For Systems Manager documents (SSM documents) that are shared with you
     #   from other Amazon Web Services accounts, you must specify the complete
@@ -1293,9 +1293,11 @@ module Aws::SSM
     # [1]: https://docs.aws.amazon.com/systems-manager/latest/userguide/sysman-ssm-docs.html
     #
     # @option params [required, String] :content
-    #   The content for the new SSM document in JSON or YAML format. We
-    #   recommend storing the contents for your new document in an external
-    #   JSON or YAML file and referencing the file in a command.
+    #   The content for the new SSM document in JSON or YAML format. The
+    #   content of the document must not exceed 64KB. This quota also includes
+    #   the content specified for input parameters at runtime. We recommend
+    #   storing the contents for your new document in an external JSON or YAML
+    #   file and referencing the file in a command.
     #
     #   For examples, see the following topics in the *Amazon Web Services
     #   Systems Manager User Guide*.
@@ -1947,17 +1949,17 @@ module Aws::SSM
     #   The action for Patch Manager to take on patches included in the
     #   `RejectedPackages` list.
     #
-    #   * <b> <code>ALLOW_AS_DEPENDENCY</code> </b>\: A package in the
+    #   * <b> <code>ALLOW_AS_DEPENDENCY</code> </b>: A package in the
     #     `Rejected` patches list is installed only if it is a dependency of
     #     another package. It is considered compliant with the patch baseline,
     #     and its status is reported as `InstalledOther`. This is the default
     #     action if no option is specified.
     #
-    #   * <b> <code>BLOCK</code> </b>\: Packages in the `RejectedPatches`
-    #     list, and packages that include them as dependencies, aren't
-    #     installed under any circumstances. If a package was installed before
-    #     it was added to the Rejected patches list, it is considered
-    #     non-compliant with the patch baseline, and its status is reported as
+    #   * <b> <code>BLOCK</code> </b>: Packages in the `RejectedPatches` list,
+    #     and packages that include them as dependencies, aren't installed
+    #     under any circumstances. If a package was installed before it was
+    #     added to the Rejected patches list, it is considered non-compliant
+    #     with the patch baseline, and its status is reported as
     #     `InstalledRejected`.
     #
     # @option params [String] :description
@@ -1998,7 +2000,7 @@ module Aws::SSM
     # @example Request syntax with placeholder values
     #
     #   resp = client.create_patch_baseline({
-    #     operating_system: "WINDOWS", # accepts WINDOWS, AMAZON_LINUX, AMAZON_LINUX_2, AMAZON_LINUX_2022, UBUNTU, REDHAT_ENTERPRISE_LINUX, SUSE, CENTOS, ORACLE_LINUX, DEBIAN, MACOS, RASPBIAN, ROCKY_LINUX
+    #     operating_system: "WINDOWS", # accepts WINDOWS, AMAZON_LINUX, AMAZON_LINUX_2, AMAZON_LINUX_2022, UBUNTU, REDHAT_ENTERPRISE_LINUX, SUSE, CENTOS, ORACLE_LINUX, DEBIAN, MACOS, RASPBIAN, ROCKY_LINUX, ALMA_LINUX, AMAZON_LINUX_2023
     #     name: "BaselineName", # required
     #     global_filters: {
     #       patch_filters: [ # required
@@ -4926,7 +4928,7 @@ module Aws::SSM
     #   resp.baseline_identities #=> Array
     #   resp.baseline_identities[0].baseline_id #=> String
     #   resp.baseline_identities[0].baseline_name #=> String
-    #   resp.baseline_identities[0].operating_system #=> String, one of "WINDOWS", "AMAZON_LINUX", "AMAZON_LINUX_2", "AMAZON_LINUX_2022", "UBUNTU", "REDHAT_ENTERPRISE_LINUX", "SUSE", "CENTOS", "ORACLE_LINUX", "DEBIAN", "MACOS", "RASPBIAN", "ROCKY_LINUX"
+    #   resp.baseline_identities[0].operating_system #=> String, one of "WINDOWS", "AMAZON_LINUX", "AMAZON_LINUX_2", "AMAZON_LINUX_2022", "UBUNTU", "REDHAT_ENTERPRISE_LINUX", "SUSE", "CENTOS", "ORACLE_LINUX", "DEBIAN", "MACOS", "RASPBIAN", "ROCKY_LINUX", "ALMA_LINUX", "AMAZON_LINUX_2023"
     #   resp.baseline_identities[0].baseline_description #=> String
     #   resp.baseline_identities[0].default_baseline #=> Boolean
     #   resp.next_token #=> String
@@ -5039,7 +5041,7 @@ module Aws::SSM
     #   resp.mappings[0].patch_group #=> String
     #   resp.mappings[0].baseline_identity.baseline_id #=> String
     #   resp.mappings[0].baseline_identity.baseline_name #=> String
-    #   resp.mappings[0].baseline_identity.operating_system #=> String, one of "WINDOWS", "AMAZON_LINUX", "AMAZON_LINUX_2", "AMAZON_LINUX_2022", "UBUNTU", "REDHAT_ENTERPRISE_LINUX", "SUSE", "CENTOS", "ORACLE_LINUX", "DEBIAN", "MACOS", "RASPBIAN", "ROCKY_LINUX"
+    #   resp.mappings[0].baseline_identity.operating_system #=> String, one of "WINDOWS", "AMAZON_LINUX", "AMAZON_LINUX_2", "AMAZON_LINUX_2022", "UBUNTU", "REDHAT_ENTERPRISE_LINUX", "SUSE", "CENTOS", "ORACLE_LINUX", "DEBIAN", "MACOS", "RASPBIAN", "ROCKY_LINUX", "ALMA_LINUX", "AMAZON_LINUX_2023"
     #   resp.mappings[0].baseline_identity.baseline_description #=> String
     #   resp.mappings[0].baseline_identity.default_baseline #=> Boolean
     #   resp.next_token #=> String
@@ -5134,7 +5136,7 @@ module Aws::SSM
     # @example Request syntax with placeholder values
     #
     #   resp = client.describe_patch_properties({
-    #     operating_system: "WINDOWS", # required, accepts WINDOWS, AMAZON_LINUX, AMAZON_LINUX_2, AMAZON_LINUX_2022, UBUNTU, REDHAT_ENTERPRISE_LINUX, SUSE, CENTOS, ORACLE_LINUX, DEBIAN, MACOS, RASPBIAN, ROCKY_LINUX
+    #     operating_system: "WINDOWS", # required, accepts WINDOWS, AMAZON_LINUX, AMAZON_LINUX_2, AMAZON_LINUX_2022, UBUNTU, REDHAT_ENTERPRISE_LINUX, SUSE, CENTOS, ORACLE_LINUX, DEBIAN, MACOS, RASPBIAN, ROCKY_LINUX, ALMA_LINUX, AMAZON_LINUX_2023
     #     property: "PRODUCT", # required, accepts PRODUCT, PRODUCT_FAMILY, CLASSIFICATION, MSRC_SEVERITY, PRIORITY, SEVERITY
     #     patch_set: "OS", # accepts OS, APPLICATION
     #     max_results: 1,
@@ -5631,13 +5633,13 @@ module Aws::SSM
     # @example Request syntax with placeholder values
     #
     #   resp = client.get_default_patch_baseline({
-    #     operating_system: "WINDOWS", # accepts WINDOWS, AMAZON_LINUX, AMAZON_LINUX_2, AMAZON_LINUX_2022, UBUNTU, REDHAT_ENTERPRISE_LINUX, SUSE, CENTOS, ORACLE_LINUX, DEBIAN, MACOS, RASPBIAN, ROCKY_LINUX
+    #     operating_system: "WINDOWS", # accepts WINDOWS, AMAZON_LINUX, AMAZON_LINUX_2, AMAZON_LINUX_2022, UBUNTU, REDHAT_ENTERPRISE_LINUX, SUSE, CENTOS, ORACLE_LINUX, DEBIAN, MACOS, RASPBIAN, ROCKY_LINUX, ALMA_LINUX, AMAZON_LINUX_2023
     #   })
     #
     # @example Response structure
     #
     #   resp.baseline_id #=> String
-    #   resp.operating_system #=> String, one of "WINDOWS", "AMAZON_LINUX", "AMAZON_LINUX_2", "AMAZON_LINUX_2022", "UBUNTU", "REDHAT_ENTERPRISE_LINUX", "SUSE", "CENTOS", "ORACLE_LINUX", "DEBIAN", "MACOS", "RASPBIAN", "ROCKY_LINUX"
+    #   resp.operating_system #=> String, one of "WINDOWS", "AMAZON_LINUX", "AMAZON_LINUX_2", "AMAZON_LINUX_2022", "UBUNTU", "REDHAT_ENTERPRISE_LINUX", "SUSE", "CENTOS", "ORACLE_LINUX", "DEBIAN", "MACOS", "RASPBIAN", "ROCKY_LINUX", "ALMA_LINUX", "AMAZON_LINUX_2023"
     #
     # @see http://docs.aws.amazon.com/goto/WebAPI/ssm-2014-11-06/GetDefaultPatchBaseline AWS API Documentation
     #
@@ -5688,7 +5690,7 @@ module Aws::SSM
     #     instance_id: "InstanceId", # required
     #     snapshot_id: "SnapshotId", # required
     #     baseline_override: {
-    #       operating_system: "WINDOWS", # accepts WINDOWS, AMAZON_LINUX, AMAZON_LINUX_2, AMAZON_LINUX_2022, UBUNTU, REDHAT_ENTERPRISE_LINUX, SUSE, CENTOS, ORACLE_LINUX, DEBIAN, MACOS, RASPBIAN, ROCKY_LINUX
+    #       operating_system: "WINDOWS", # accepts WINDOWS, AMAZON_LINUX, AMAZON_LINUX_2, AMAZON_LINUX_2022, UBUNTU, REDHAT_ENTERPRISE_LINUX, SUSE, CENTOS, ORACLE_LINUX, DEBIAN, MACOS, RASPBIAN, ROCKY_LINUX, ALMA_LINUX, AMAZON_LINUX_2023
     #       global_filters: {
     #         patch_filters: [ # required
     #           {
@@ -6733,11 +6735,11 @@ module Aws::SSM
     # @option params [Array<Types::ParameterStringFilter>] :parameter_filters
     #   Filters to limit the request results.
     #
-    #   <note markdown="1"> The following `Key` values are supported for `GetParametersByPath`\:
+    #   <note markdown="1"> The following `Key` values are supported for `GetParametersByPath`:
     #   `Type`, `KeyId`, and `Label`.
     #
     #    The following `Key` values aren't supported for
-    #   `GetParametersByPath`\: `tag`, `DataType`, `Name`, `Path`, and `Tier`.
+    #   `GetParametersByPath`: `tag`, `DataType`, `Name`, `Path`, and `Tier`.
     #
     #    </note>
     #
@@ -6842,7 +6844,7 @@ module Aws::SSM
     #
     #   resp.baseline_id #=> String
     #   resp.name #=> String
-    #   resp.operating_system #=> String, one of "WINDOWS", "AMAZON_LINUX", "AMAZON_LINUX_2", "AMAZON_LINUX_2022", "UBUNTU", "REDHAT_ENTERPRISE_LINUX", "SUSE", "CENTOS", "ORACLE_LINUX", "DEBIAN", "MACOS", "RASPBIAN", "ROCKY_LINUX"
+    #   resp.operating_system #=> String, one of "WINDOWS", "AMAZON_LINUX", "AMAZON_LINUX_2", "AMAZON_LINUX_2022", "UBUNTU", "REDHAT_ENTERPRISE_LINUX", "SUSE", "CENTOS", "ORACLE_LINUX", "DEBIAN", "MACOS", "RASPBIAN", "ROCKY_LINUX", "ALMA_LINUX", "AMAZON_LINUX_2023"
     #   resp.global_filters.patch_filters #=> Array
     #   resp.global_filters.patch_filters[0].key #=> String, one of "ARCH", "ADVISORY_ID", "BUGZILLA_ID", "PATCH_SET", "PRODUCT", "PRODUCT_FAMILY", "CLASSIFICATION", "CVE_ID", "EPOCH", "MSRC_SEVERITY", "NAME", "PATCH_ID", "SECTION", "PRIORITY", "REPOSITORY", "RELEASE", "SEVERITY", "SECURITY", "VERSION"
     #   resp.global_filters.patch_filters[0].values #=> Array
@@ -6903,14 +6905,14 @@ module Aws::SSM
     #
     #   resp = client.get_patch_baseline_for_patch_group({
     #     patch_group: "PatchGroup", # required
-    #     operating_system: "WINDOWS", # accepts WINDOWS, AMAZON_LINUX, AMAZON_LINUX_2, AMAZON_LINUX_2022, UBUNTU, REDHAT_ENTERPRISE_LINUX, SUSE, CENTOS, ORACLE_LINUX, DEBIAN, MACOS, RASPBIAN, ROCKY_LINUX
+    #     operating_system: "WINDOWS", # accepts WINDOWS, AMAZON_LINUX, AMAZON_LINUX_2, AMAZON_LINUX_2022, UBUNTU, REDHAT_ENTERPRISE_LINUX, SUSE, CENTOS, ORACLE_LINUX, DEBIAN, MACOS, RASPBIAN, ROCKY_LINUX, ALMA_LINUX, AMAZON_LINUX_2023
     #   })
     #
     # @example Response structure
     #
     #   resp.baseline_id #=> String
     #   resp.patch_group #=> String
-    #   resp.operating_system #=> String, one of "WINDOWS", "AMAZON_LINUX", "AMAZON_LINUX_2", "AMAZON_LINUX_2022", "UBUNTU", "REDHAT_ENTERPRISE_LINUX", "SUSE", "CENTOS", "ORACLE_LINUX", "DEBIAN", "MACOS", "RASPBIAN", "ROCKY_LINUX"
+    #   resp.operating_system #=> String, one of "WINDOWS", "AMAZON_LINUX", "AMAZON_LINUX_2", "AMAZON_LINUX_2022", "UBUNTU", "REDHAT_ENTERPRISE_LINUX", "SUSE", "CENTOS", "ORACLE_LINUX", "DEBIAN", "MACOS", "RASPBIAN", "ROCKY_LINUX", "ALMA_LINUX", "AMAZON_LINUX_2023"
     #
     # @see http://docs.aws.amazon.com/goto/WebAPI/ssm-2014-11-06/GetPatchBaselineForPatchGroup AWS API Documentation
     #
@@ -6992,6 +6994,8 @@ module Aws::SSM
     #   The ID of the service setting to get. The setting ID can be one of the
     #   following.
     #
+    #   * `/ssm/managed-instance/default-ec2-instance-management-role`
+    #
     #   * `/ssm/automation/customer-script-log-destination`
     #
     #   * `/ssm/automation/customer-script-log-group-name`
@@ -8269,9 +8273,9 @@ module Aws::SSM
     # Shares a Amazon Web Services Systems Manager document (SSM
     # document)publicly or privately. If you share a document privately, you
-    # must specify the Amazon Web Services user account IDs for those people
-    # who can use the document. If you share a document publicly, you must
-    # specify *All* as the account ID.
+    # must specify the Amazon Web Services user IDs for those people who can
+    # use the document. If you share a document publicly, you must specify
+    # *All* as the account ID.
     #
     # @option params [required, String] :name
     #   The name of the document that you want to share.
@@ -8281,16 +8285,15 @@ module Aws::SSM
     #   *Share*.
     #
     # @option params [Array<String>] :account_ids_to_add
-    #   The Amazon Web Services user accounts that should have access to the
-    #   document. The account IDs can either be a group of account IDs or
-    #   *All*.
+    #   The Amazon Web Services users that should have access to the document.
+    #   The account IDs can either be a group of account IDs or *All*.
     #
     # @option params [Array<String>] :account_ids_to_remove
-    #   The Amazon Web Services user accounts that should no longer have
-    #   access to the document. The Amazon Web Services user account can
-    #   either be a group of account IDs or *All*. This action has a higher
-    #   priority than *AccountIdsToAdd*. If you specify an account ID to add
-    #   and the same ID to remove, the system removes access to the document.
+    #   The Amazon Web Services users that should no longer have access to the
+    #   document. The Amazon Web Services user can either be a group of
+    #   account IDs or *All*. This action has a higher priority than
+    #   *AccountIdsToAdd*. If you specify an ID to add and the same ID to
+    #   remove, the system removes access to the document.
     #
     # @option params [String] :shared_document_version
     #   (Optional) The version of the document to share. If it isn't
@@ -8574,20 +8577,18 @@ module Aws::SSM
     #
     # @option params [String] :key_id
     #   The Key Management Service (KMS) ID that you want to use to encrypt a
-    #   parameter. Either the default KMS key automatically assigned to your
-    #   Amazon Web Services account or a custom key. Required for parameters
-    #   that use the `SecureString` data type.
+    #   parameter. Use a custom key for better security. Required for
+    #   parameters that use the `SecureString` data type.
     #
     #   If you don't specify a key ID, the system uses the default key
-    #   associated with your Amazon Web Services account.
-    #
-    #   * To use your default KMS key, choose the `SecureString` data type,
-    #     and do *not* specify the `Key ID` when you create the parameter. The
-    #     system automatically populates `Key ID` with your default KMS key.
+    #   associated with your Amazon Web Services account which is not as
+    #   secure as using a custom key.
     #
     #   * To use a custom KMS key, choose the `SecureString` data type with
     #     the `Key ID` parameter.
     #
+    #   ^
+    #
     # @option params [Boolean] :overwrite
     #   Overwrite an existing parameter. The default value is `false`.
     #
@@ -8658,12 +8659,11 @@ module Aws::SSM
     #   standard-parameter tier. If you use the advanced-parameter tier, you
     #   can specify one of the following as the default:
     #
-    #   * **Advanced**\: With this option, Parameter Store evaluates all
+    #   * **Advanced**: With this option, Parameter Store evaluates all
     #     requests as advanced parameters.
     #
-    #   * **Intelligent-Tiering**\: With this option, Parameter Store
-    #     evaluates each request to determine if the parameter is standard or
-    #     advanced.
+    #   * **Intelligent-Tiering**: With this option, Parameter Store evaluates
+    #     each request to determine if the parameter is standard or advanced.
     #
     #     If the request doesn't include any options that require an advanced
     #     parameter, the parameter is created in the standard-parameter tier.
@@ -8737,14 +8737,29 @@ module Aws::SSM
     #   When you create a `String` parameter and specify `aws:ec2:image`,
     #   Amazon Web Services Systems Manager validates the parameter value is
     #   in the required format, such as `ami-12345abcdeEXAMPLE`, and that the
-    #   specified AMI is available in your Amazon Web Services account. For
-    #   more information, see [Native parameter support for Amazon Machine
-    #   Image (AMI) IDs][1] in the *Amazon Web Services Systems Manager User
-    #   Guide*.
+    #   specified AMI is available in your Amazon Web Services account.
+    #
+    #   <note markdown="1"> If the action is successful, the service sends back an HTTP 200
+    #   response which indicates a successful `PutParameter` call for all
+    #   cases except for data type `aws:ec2:image`. If you call `PutParameter`
+    #   with `aws:ec2:image` data type, a successful HTTP 200 response does
+    #   not guarantee that your parameter was successfully created or updated.
+    #   The `aws:ec2:image` value is validated asynchronously, and the
+    #   `PutParameter` call returns before the validation is complete. If you
+    #   submit an invalid AMI value, the PutParameter operation will return
+    #   success, but the asynchronous validation will fail and the parameter
+    #   will not be created or updated. To monitor whether your
+    #   `aws:ec2:image` parameters are created successfully, see [Setting up
+    #   notifications or trigger actions based on Parameter Store events][1].
+    #   For more information about AMI format validation , see [Native
+    #   parameter support for Amazon Machine Image (AMI) IDs][2].
+    #
+    #    </note>
     #
     #
     #
-    #   [1]: https://docs.aws.amazon.com/systems-manager/latest/userguide/parameter-store-ec2-aliases.html
+    #   [1]: https://docs.aws.amazon.com/systems-manager/latest/userguide/sysman-paramstore-cwe.html
+    #   [2]: https://docs.aws.amazon.com/systems-manager/latest/userguide/parameter-store-ec2-aliases.html
     #
     # @return [Types::PutParameterResult] Returns a {Seahorse::Client::Response response} object which responds to the following methods:
     #
@@ -8929,23 +8944,23 @@ module Aws::SSM
     #   You can specify targets using managed node IDs, resource group names,
     #   or tags that have been applied to managed nodes.
     #
-    #   **Example 1**\: Specify managed node IDs
+    #   **Example 1**: Specify managed node IDs
     #
     #   `Key=InstanceIds,Values=<instance-id-1>,<instance-id-2>,<instance-id-3>`
     #
-    #   **Example 2**\: Use tag key-pairs applied to managed nodes
+    #   **Example 2**: Use tag key-pairs applied to managed nodes
     #
     #   `Key=tag:<my-tag-key>,Values=<my-tag-value-1>,<my-tag-value-2>`
     #
-    #   **Example 3**\: Use tag-keys applied to managed nodes
+    #   **Example 3**: Use tag-keys applied to managed nodes
     #
     #   `Key=tag-key,Values=<my-tag-key-1>,<my-tag-key-2>`
     #
-    #   **Example 4**\: Use resource group names
+    #   **Example 4**: Use resource group names
     #
     #   `Key=resource-groups:Name,Values=<resource-group-name>`
     #
-    #   **Example 5**\: Use filters for resource group types
+    #   **Example 5**: Use filters for resource group types
     #
     #   `Key=resource-groups:ResourceTypeFilters,Values=<resource-type-1>,<resource-type-2>`
     #
@@ -9057,7 +9072,7 @@ module Aws::SSM
     #   `RegisterTaskWithMaintenanceWindow`.
     #
     #   For more information, see the following topics in the in the *Amazon
-    #   Web Services Systems Manager User Guide*\:
+    #   Web Services Systems Manager User Guide*:
     #
     #   * [Using service-linked roles for Systems Manager][1]
     #
@@ -9161,10 +9176,10 @@ module Aws::SSM
     #   Indicates whether tasks should continue to run after the cutoff time
     #   specified in the maintenance windows is reached.
     #
-    #   * `CONTINUE_TASK`\: When the cutoff time is reached, any tasks that
-    #     are running continue. The default value.
+    #   * `CONTINUE_TASK`: When the cutoff time is reached, any tasks that are
+    #     running continue. The default value.
     #
-    #   * `CANCEL_TASK`\:
+    #   * `CANCEL_TASK`:
     #
     #     * For Automation, Lambda, Step Functions tasks: When the cutoff time
     #       is reached, any task invocations that are already running
@@ -9297,7 +9312,7 @@ module Aws::SSM
     #
     #   MaintenanceWindow: mw-012345abcde
     #
-    #   `Automation`\: `example-c160-4567-8519-012345abcde`
+    #   `Automation`: `example-c160-4567-8519-012345abcde`
     #
     #   PatchBaseline: pb-012345abcde
     #
@@ -9363,6 +9378,8 @@ module Aws::SSM
     #   The Amazon Resource Name (ARN) of the service setting to reset. The
     #   setting ID can be one of the following.
     #
+    #   * `/ssm/managed-instance/default-ec2-instance-management-role`
+    #
     #   * `/ssm/automation/customer-script-log-destination`
     #
     #   * `/ssm/automation/customer-script-log-group-name`
@@ -10298,14 +10315,13 @@ module Aws::SSM
     # the DescribeAssociation API operation and make a note of all optional
     # parameters required for your `UpdateAssociation` call.
     #
-    # In order to call this API operation, your Identity and Access
-    # Management (IAM) user account, group, or role must be configured with
-    # permission to call the DescribeAssociation API operation. If you
-    # don't have permission to call `DescribeAssociation`, then you receive
-    # the following error: `An error occurred (AccessDeniedException) when
-    # calling the UpdateAssociation operation: User: <user_arn> isn't
-    # authorized to perform: ssm:DescribeAssociation on resource:
-    # <resource_arn>`
+    # In order to call this API operation, a user, group, or role must be
+    # granted permission to call the DescribeAssociation API operation. If
+    # you don't have permission to call `DescribeAssociation`, then you
+    # receive the following error: `An error occurred
+    # (AccessDeniedException) when calling the UpdateAssociation operation:
+    # User: <user_arn> isn't authorized to perform: ssm:DescribeAssociation
+    # on resource: <resource_arn>`
     #
     # When you update an association, the association immediately runs
     # against the specified targets. You can add the
@@ -11258,7 +11274,7 @@ module Aws::SSM
     #   `RegisterTaskWithMaintenanceWindow`.
     #
     #   For more information, see the following topics in the in the *Amazon
-    #   Web Services Systems Manager User Guide*\:
+    #   Web Services Systems Manager User Guide*:
     #
     #   * [Using service-linked roles for Systems Manager][1]
     #
@@ -11375,10 +11391,10 @@ module Aws::SSM
     #   Indicates whether tasks should continue to run after the cutoff time
     #   specified in the maintenance windows is reached.
     #
-    #   * `CONTINUE_TASK`\: When the cutoff time is reached, any tasks that
-    #     are running continue. The default value.
+    #   * `CONTINUE_TASK`: When the cutoff time is reached, any tasks that are
+    #     running continue. The default value.
     #
-    #   * `CANCEL_TASK`\:
+    #   * `CANCEL_TASK`:
     #
     #     * For Automation, Lambda, Step Functions tasks: When the cutoff time
     #       is reached, any task invocations that are already running
@@ -11852,17 +11868,17 @@ module Aws::SSM
     #   The action for Patch Manager to take on patches included in the
     #   `RejectedPackages` list.
     #
-    #   * <b> <code>ALLOW_AS_DEPENDENCY</code> </b>\: A package in the
+    #   * <b> <code>ALLOW_AS_DEPENDENCY</code> </b>: A package in the
     #     `Rejected` patches list is installed only if it is a dependency of
     #     another package. It is considered compliant with the patch baseline,
     #     and its status is reported as `InstalledOther`. This is the default
     #     action if no option is specified.
     #
-    #   * <b> <code>BLOCK</code> </b>\: Packages in the `RejectedPatches`
-    #     list, and packages that include them as dependencies, aren't
-    #     installed under any circumstances. If a package was installed before
-    #     it was added to the `Rejected` patches list, it is considered
-    #     non-compliant with the patch baseline, and its status is reported as
+    #   * <b> <code>BLOCK</code> </b>: Packages in the `RejectedPatches` list,
+    #     and packages that include them as dependencies, aren't installed
+    #     under any circumstances. If a package was installed before it was
+    #     added to the `Rejected` patches list, it is considered non-compliant
+    #     with the patch baseline, and its status is reported as
     #     `InstalledRejected`.
     #
     # @option params [String] :description
@@ -11946,7 +11962,7 @@ module Aws::SSM
     #
     #   resp.baseline_id #=> String
     #   resp.name #=> String
-    #   resp.operating_system #=> String, one of "WINDOWS", "AMAZON_LINUX", "AMAZON_LINUX_2", "AMAZON_LINUX_2022", "UBUNTU", "REDHAT_ENTERPRISE_LINUX", "SUSE", "CENTOS", "ORACLE_LINUX", "DEBIAN", "MACOS", "RASPBIAN", "ROCKY_LINUX"
+    #   resp.operating_system #=> String, one of "WINDOWS", "AMAZON_LINUX", "AMAZON_LINUX_2", "AMAZON_LINUX_2022", "UBUNTU", "REDHAT_ENTERPRISE_LINUX", "SUSE", "CENTOS", "ORACLE_LINUX", "DEBIAN", "MACOS", "RASPBIAN", "ROCKY_LINUX", "ALMA_LINUX", "AMAZON_LINUX_2023"
     #   resp.global_filters.patch_filters #=> Array
     #   resp.global_filters.patch_filters[0].key #=> String, one of "ARCH", "ADVISORY_ID", "BUGZILLA_ID", "PATCH_SET", "PRODUCT", "PRODUCT_FAMILY", "CLASSIFICATION", "CVE_ID", "EPOCH", "MSRC_SEVERITY", "NAME", "PATCH_ID", "SECTION", "PRIORITY", "REPOSITORY", "RELEASE", "SEVERITY", "SECURITY", "VERSION"
     #   resp.global_filters.patch_filters[0].values #=> Array
@@ -12060,11 +12076,13 @@ module Aws::SSM
     # Update the service setting for the account.
     #
     # @option params [required, String] :setting_id
-    #   The Amazon Resource Name (ARN) of the service setting to reset. For
+    #   The Amazon Resource Name (ARN) of the service setting to update. For
     #   example,
     #   `arn:aws:ssm:us-east-1:111122223333:servicesetting/ssm/parameter-store/high-throughput-enabled`.
     #   The setting ID can be one of the following.
     #
+    #   * `/ssm/managed-instance/default-ec2-instance-management-role`
+    #
     #   * `/ssm/automation/customer-script-log-destination`
     #
     #   * `/ssm/automation/customer-script-log-group-name`
@@ -12079,26 +12097,37 @@ module Aws::SSM
     #
     #   * `/ssm/parameter-store/high-throughput-enabled`
     #
+    #   <note markdown="1"> Permissions to update the
+    #   `/ssm/managed-instance/default-ec2-instance-management-role` setting
+    #   should only be provided to administrators. Implement least privilege
+    #   access when allowing individuals to configure or modify the Default
+    #   Host Management Configuration.
+    #
+    #    </note>
+    #
     # @option params [required, String] :setting_value
     #   The new value to specify for the service setting. The following list
     #   specifies the available values for each setting.
     #
-    #   * `/ssm/automation/customer-script-log-destination`\: `CloudWatch`
+    #   * `/ssm/managed-instance/default-ec2-instance-management-role: The
+    #     name of an IAM role`
+    #
+    #   * `/ssm/automation/customer-script-log-destination`: `CloudWatch`
     #
-    #   * `/ssm/automation/customer-script-log-group-name`\: the name of an
+    #   * `/ssm/automation/customer-script-log-group-name`: The name of an
     #     Amazon CloudWatch Logs log group
     #
-    #   * `/ssm/documents/console/public-sharing-permission`\: `Enable` or
+    #   * `/ssm/documents/console/public-sharing-permission`: `Enable` or
     #     `Disable`
     #
-    #   * `/ssm/managed-instance/activation-tier`\: `standard` or `advanced`
+    #   * `/ssm/managed-instance/activation-tier`: `standard` or `advanced`
     #
-    #   * `/ssm/opsinsights/opscenter`\: `Enabled` or `Disabled`
+    #   * `/ssm/opsinsights/opscenter`: `Enabled` or `Disabled`
     #
-    #   * `/ssm/parameter-store/default-parameter-tier`\: `Standard`,
+    #   * `/ssm/parameter-store/default-parameter-tier`: `Standard`,
     #     `Advanced`, `Intelligent-Tiering`
     #
-    #   * `/ssm/parameter-store/high-throughput-enabled`\: `true` or `false`
+    #   * `/ssm/parameter-store/high-throughput-enabled`: `true` or `false`
     #
     # @return [Struct] Returns an empty {Seahorse::Client::Response response}.
     #
@@ -12131,7 +12160,7 @@ module Aws::SSM
         params: params,
         config: config)
       context[:gem_name] = 'aws-sdk-ssm'
-      context[:gem_version] = '1.148.0'
+      context[:gem_version] = '1.150.0'
       Seahorse::Client::Request.new(handlers, context)
     end

data/lib/aws-sdk-ssm/endpoint_parameters.rb CHANGED Viewed

@@ -50,9 +50,6 @@ module Aws::SSM
     def initialize(options = {})
       self[:region] = options[:region]
-      if self[:region].nil?
-        raise ArgumentError, "Missing required EndpointParameter: :region"
-      end
       self[:use_dual_stack] = options[:use_dual_stack]
       self[:use_dual_stack] = false if self[:use_dual_stack].nil?
       if self[:use_dual_stack].nil?

data/lib/aws-sdk-ssm/endpoint_provider.rb CHANGED Viewed

@@ -14,39 +14,42 @@ module Aws::SSM
       use_dual_stack = parameters.use_dual_stack
       use_fips = parameters.use_fips
       endpoint = parameters.endpoint
-      if (partition_result = Aws::Endpoints::Matchers.aws_partition(region))
-        if Aws::Endpoints::Matchers.set?(endpoint)
-          if Aws::Endpoints::Matchers.boolean_equals?(use_fips, true)
-            raise ArgumentError, "Invalid Configuration: FIPS and custom endpoint are not supported"
-          end
-          if Aws::Endpoints::Matchers.boolean_equals?(use_dual_stack, true)
-            raise ArgumentError, "Invalid Configuration: Dualstack and custom endpoint are not supported"
-          end
-          return Aws::Endpoints::Endpoint.new(url: endpoint, headers: {}, properties: {})
+      if Aws::Endpoints::Matchers.set?(endpoint)
+        if Aws::Endpoints::Matchers.boolean_equals?(use_fips, true)
+          raise ArgumentError, "Invalid Configuration: FIPS and custom endpoint are not supported"
         end
-        if Aws::Endpoints::Matchers.boolean_equals?(use_fips, true) && Aws::Endpoints::Matchers.boolean_equals?(use_dual_stack, true)
-          if Aws::Endpoints::Matchers.boolean_equals?(true, Aws::Endpoints::Matchers.attr(partition_result, "supportsFIPS")) && Aws::Endpoints::Matchers.boolean_equals?(true, Aws::Endpoints::Matchers.attr(partition_result, "supportsDualStack"))
-            return Aws::Endpoints::Endpoint.new(url: "https://ssm-fips.#{region}.#{partition_result['dualStackDnsSuffix']}", headers: {}, properties: {})
-          end
-          raise ArgumentError, "FIPS and DualStack are enabled, but this partition does not support one or both"
+        if Aws::Endpoints::Matchers.boolean_equals?(use_dual_stack, true)
+          raise ArgumentError, "Invalid Configuration: Dualstack and custom endpoint are not supported"
         end
-        if Aws::Endpoints::Matchers.boolean_equals?(use_fips, true)
-          if Aws::Endpoints::Matchers.boolean_equals?(true, Aws::Endpoints::Matchers.attr(partition_result, "supportsFIPS"))
-            if Aws::Endpoints::Matchers.string_equals?("aws-us-gov", Aws::Endpoints::Matchers.attr(partition_result, "name"))
-              return Aws::Endpoints::Endpoint.new(url: "https://ssm.#{region}.#{partition_result['dnsSuffix']}", headers: {}, properties: {})
+        return Aws::Endpoints::Endpoint.new(url: endpoint, headers: {}, properties: {})
+      end
+      if Aws::Endpoints::Matchers.set?(region)
+        if (partition_result = Aws::Endpoints::Matchers.aws_partition(region))
+          if Aws::Endpoints::Matchers.boolean_equals?(use_fips, true) && Aws::Endpoints::Matchers.boolean_equals?(use_dual_stack, true)
+            if Aws::Endpoints::Matchers.boolean_equals?(true, Aws::Endpoints::Matchers.attr(partition_result, "supportsFIPS")) && Aws::Endpoints::Matchers.boolean_equals?(true, Aws::Endpoints::Matchers.attr(partition_result, "supportsDualStack"))
+              return Aws::Endpoints::Endpoint.new(url: "https://ssm-fips.#{region}.#{partition_result['dualStackDnsSuffix']}", headers: {}, properties: {})
             end
-            return Aws::Endpoints::Endpoint.new(url: "https://ssm-fips.#{region}.#{partition_result['dnsSuffix']}", headers: {}, properties: {})
+            raise ArgumentError, "FIPS and DualStack are enabled, but this partition does not support one or both"
           end
-          raise ArgumentError, "FIPS is enabled but this partition does not support FIPS"
-        end
-        if Aws::Endpoints::Matchers.boolean_equals?(use_dual_stack, true)
-          if Aws::Endpoints::Matchers.boolean_equals?(true, Aws::Endpoints::Matchers.attr(partition_result, "supportsDualStack"))
-            return Aws::Endpoints::Endpoint.new(url: "https://ssm.#{region}.#{partition_result['dualStackDnsSuffix']}", headers: {}, properties: {})
+          if Aws::Endpoints::Matchers.boolean_equals?(use_fips, true)
+            if Aws::Endpoints::Matchers.boolean_equals?(true, Aws::Endpoints::Matchers.attr(partition_result, "supportsFIPS"))
+              if Aws::Endpoints::Matchers.string_equals?("aws-us-gov", Aws::Endpoints::Matchers.attr(partition_result, "name"))
+                return Aws::Endpoints::Endpoint.new(url: "https://ssm.#{region}.amazonaws.com", headers: {}, properties: {})
+              end
+              return Aws::Endpoints::Endpoint.new(url: "https://ssm-fips.#{region}.#{partition_result['dnsSuffix']}", headers: {}, properties: {})
+            end
+            raise ArgumentError, "FIPS is enabled but this partition does not support FIPS"
+          end
+          if Aws::Endpoints::Matchers.boolean_equals?(use_dual_stack, true)
+            if Aws::Endpoints::Matchers.boolean_equals?(true, Aws::Endpoints::Matchers.attr(partition_result, "supportsDualStack"))
+              return Aws::Endpoints::Endpoint.new(url: "https://ssm.#{region}.#{partition_result['dualStackDnsSuffix']}", headers: {}, properties: {})
+            end
+            raise ArgumentError, "DualStack is enabled but this partition does not support DualStack"
           end
-          raise ArgumentError, "DualStack is enabled but this partition does not support DualStack"
+          return Aws::Endpoints::Endpoint.new(url: "https://ssm.#{region}.#{partition_result['dnsSuffix']}", headers: {}, properties: {})
         end
-        return Aws::Endpoints::Endpoint.new(url: "https://ssm.#{region}.#{partition_result['dnsSuffix']}", headers: {}, properties: {})
       end
+      raise ArgumentError, "Invalid Configuration: Missing Region"
       raise ArgumentError, 'No endpoint could be resolved'
     end

data/lib/aws-sdk-ssm/types.rb CHANGED Viewed

@@ -112,11 +112,11 @@ module Aws::SSM
     #
     #   Use the ID of the resource. Here are some examples:
     #
-    #   `MaintenanceWindow`\: `mw-012345abcde`
+    #   `MaintenanceWindow`: `mw-012345abcde`
     #
-    #   `PatchBaseline`\: `pb-012345abcde`
+    #   `PatchBaseline`: `pb-012345abcde`
     #
-    #   `Automation`\: `example-c160-4567-8519-012345abcde`
+    #   `Automation`: `example-c160-4567-8519-012345abcde`
     #
     #   `OpsMetadata` object: `ResourceID` for tagging is created from the
     #   Amazon Resource Name (ARN) for the object. Specifically,
@@ -130,7 +130,7 @@ module Aws::SSM
     #   For the `Document` and `Parameter` values, use the name of the
     #   resource.
     #
-    #   `ManagedInstance`\: `mi-012345abcde`
+    #   `ManagedInstance`: `mi-012345abcde`
     #
     #   <note markdown="1"> The `ManagedInstance` type for this API operation is only for
     #   on-premises managed nodes. You must specify the name of the managed
@@ -178,9 +178,11 @@ module Aws::SSM
     # automation or command.
     #
     # @!attribute [rw] ignore_poll_alarm_failure
-    #   If you specify `true` for this value, your automation or command
-    #   continue to run even if we can't gather information about the state
-    #   of your CloudWatch alarm. The default value is `false`.
+    #   When this value is *true*, your automation or command continues to
+    #   run in cases where we can’t retrieve alarm status information from
+    #   CloudWatch. In cases where we successfully retrieve an alarm status
+    #   of OK or INSUFFICIENT\_DATA, the automation or command continues to
+    #   run, regardless of this value. Default is *false*.
     #   @return [Boolean]
     #
     # @!attribute [rw] alarms
@@ -245,9 +247,9 @@ module Aws::SSM
     #   The type of resource that you want to associate with an OpsItem.
     #   OpsCenter supports the following types:
     #
-    #   `AWS::SSMIncidents::IncidentRecord`\: an Incident Manager incident.
+    #   `AWS::SSMIncidents::IncidentRecord`: an Incident Manager incident.
     #
-    #   `AWS::SSM::Document`\: a Systems Manager (SSM) document.
+    #   `AWS::SSM::Document`: a Systems Manager (SSM) document.
     #   @return [String]
     #
     # @!attribute [rw] resource_uri
@@ -2022,15 +2024,15 @@ module Aws::SSM
     # @!attribute [rw] value
     #   The filter value. Valid values for each filter key are as follows:
     #
-    #   * **InvokedAfter**\: Specify a timestamp to limit your results. For
+    #   * **InvokedAfter**: Specify a timestamp to limit your results. For
     #     example, specify `2021-07-07T00:00:00Z` to see a list of command
     #     executions occurring July 7, 2021, and later.
     #
-    #   * **InvokedBefore**\: Specify a timestamp to limit your results. For
+    #   * **InvokedBefore**: Specify a timestamp to limit your results. For
     #     example, specify `2021-07-07T00:00:00Z` to see a list of command
     #     executions from before July 7, 2021.
     #
-    #   * **Status**\: Specify a valid command status to see a list of all
+    #   * **Status**: Specify a valid command status to see a list of all
     #     command executions with that status. The status choices depend on
     #     the API you call.
     #
@@ -2089,19 +2091,19 @@ module Aws::SSM
     #
     #     * `Terminated`
     #
-    #   * **DocumentName**\: Specify name of the Amazon Web Services Systems
+    #   * **DocumentName**: Specify name of the Amazon Web Services Systems
     #     Manager document (SSM document) for which you want to see command
     #     execution results. For example, specify `AWS-RunPatchBaseline` to
     #     see command executions that used this SSM document to perform
     #     security patching operations on managed nodes.
     #
-    #   * **ExecutionStage**\: Specify one of the following values
+    #   * **ExecutionStage**: Specify one of the following values
     #     (`ListCommands` operations only):
     #
-    #     * `Executing`\: Returns a list of command executions that are
+    #     * `Executing`: Returns a list of command executions that are
     #       currently still running.
     #
-    #     * `Complete`\: Returns a list of command executions that have
+    #     * `Complete`: Returns a list of command executions that have
     #       already completed.
     #   @return [String]
     #
@@ -2991,7 +2993,7 @@ module Aws::SSM
     #
     #   You can specify Amazon Web Services-predefined documents, documents
     #   you created, or a document that is shared with you from another
-    #   account.
+    #   Amazon Web Services account.
     #
     #   For Systems Manager documents (SSM documents) that are shared with
     #   you from other Amazon Web Services accounts, you must specify the
@@ -3232,7 +3234,9 @@ module Aws::SSM
     end
     # @!attribute [rw] content
-    #   The content for the new SSM document in JSON or YAML format. We
+    #   The content for the new SSM document in JSON or YAML format. The
+    #   content of the document must not exceed 64KB. This quota also
+    #   includes the content specified for input parameters at runtime. We
     #   recommend storing the contents for your new document in an external
     #   JSON or YAML file and referencing the file in a command.
     #
@@ -3798,13 +3802,13 @@ module Aws::SSM
     #   The action for Patch Manager to take on patches included in the
     #   `RejectedPackages` list.
     #
-    #   * <b> <code>ALLOW_AS_DEPENDENCY</code> </b>\: A package in the
+    #   * <b> <code>ALLOW_AS_DEPENDENCY</code> </b>: A package in the
     #     `Rejected` patches list is installed only if it is a dependency of
     #     another package. It is considered compliant with the patch
     #     baseline, and its status is reported as `InstalledOther`. This is
     #     the default action if no option is specified.
     #
-    #   * <b> <code>BLOCK</code> </b>\: Packages in the `RejectedPatches`
+    #   * <b> <code>BLOCK</code> </b>: Packages in the `RejectedPatches`
     #     list, and packages that include them as dependencies, aren't
     #     installed under any circumstances. If a package was installed
     #     before it was added to the Rejected patches list, it is considered
@@ -6118,10 +6122,10 @@ module Aws::SSM
     # @!attribute [rw] mappings
     #   Each entry in the array contains:
     #
-    #   * `PatchGroup`\: string (between 1 and 256 characters. Regex:
+    #   * `PatchGroup`: string (between 1 and 256 characters. Regex:
     #     `^([\p\{L\}\p\{Z\}\p\{N\}_.:/=+\-@]*)$)`
     #
-    #   * `PatchBaselineIdentity`\: A `PatchBaselineIdentity` element.
+    #   * `PatchBaselineIdentity`: A `PatchBaselineIdentity` element.
     #   @return [Array<Types::PatchGroupPatchBaselineMapping>]
     #
     # @!attribute [rw] next_token
@@ -6344,7 +6348,7 @@ module Aws::SSM
     #   @return [String]
     #
     # @!attribute [rw] owner
-    #   The Amazon Web Services user account that created the document.
+    #   The Amazon Web Services user that created the document.
     #   @return [String]
     #
     # @!attribute [rw] created_date
@@ -6529,7 +6533,7 @@ module Aws::SSM
     #   @return [String]
     #
     # @!attribute [rw] owner
-    #   The Amazon Web Services user account that created the document.
+    #   The Amazon Web Services user that created the document.
     #   @return [String]
     #
     # @!attribute [rw] version_name
@@ -6730,7 +6734,7 @@ module Aws::SSM
       include Aws::Structure
     end
-    # Parameters specified in a System Manager document that run on the
+    # Parameters specified in a Systems Manager document that run on the
     # server when the command is run.
     #
     # @!attribute [rw] name
@@ -6763,9 +6767,9 @@ module Aws::SSM
       include Aws::Structure
     end
-    # The document can't be shared with more Amazon Web Services user
-    # accounts. You can specify a maximum of 20 accounts per API operation
-    # to share a private document.
+    # The document can't be shared with more Amazon Web Services accounts.
+    # You can specify a maximum of 20 accounts per API operation to share a
+    # private document.
     #
     # By default, you can share a private document with a maximum of 1,000
     # accounts and publicly share up to five documents.
@@ -7990,9 +7994,9 @@ module Aws::SSM
     #
     #   The map has the following format:
     #
-    #   * `Key`\: string, between 1 and 255 characters
+    #   * `Key`: string, between 1 and 255 characters
     #
-    #   * `Value`\: an array of strings, each between 1 and 255 characters
+    #   * `Value`: an array of strings, each between 1 and 255 characters
     #   @return [Array<Hash<String,Types::MaintenanceWindowTaskParameterValueExpression>>]
     #
     # @!attribute [rw] priority
@@ -8569,11 +8573,11 @@ module Aws::SSM
     # @!attribute [rw] parameter_filters
     #   Filters to limit the request results.
     #
-    #   <note markdown="1"> The following `Key` values are supported for `GetParametersByPath`\:
+    #   <note markdown="1"> The following `Key` values are supported for `GetParametersByPath`:
     #   `Type`, `KeyId`, and `Label`.
     #
     #    The following `Key` values aren't supported for
-    #   `GetParametersByPath`\: `tag`, `DataType`, `Name`, `Path`, and
+    #   `GetParametersByPath`: `tag`, `DataType`, `Name`, `Path`, and
     #   `Tier`.
     #
     #    </note>
@@ -8905,6 +8909,8 @@ module Aws::SSM
     #   The ID of the service setting to get. The setting ID can be one of
     #   the following.
     #
+    #   * `/ssm/managed-instance/default-ec2-instance-management-role`
+    #
     #   * `/ssm/automation/customer-script-log-destination`
     #
     #   * `/ssm/automation/customer-script-log-group-name`
@@ -9529,11 +9535,11 @@ module Aws::SSM
     #
     #    </note>
     #
-    #   * `RebootIfNeeded`\: Patch Manager tries to reboot the managed node
+    #   * `RebootIfNeeded`: Patch Manager tries to reboot the managed node
     #     if it installed any patches, or if any patches are detected with a
     #     status of `InstalledPendingReboot`.
     #
-    #   * `NoReboot`\: Patch Manager attempts to install missing packages
+    #   * `NoReboot`: Patch Manager attempts to install missing packages
     #     without trying to reboot the system. Patches installed with this
     #     option are assigned a status of `InstalledPendingReboot`. These
     #     patches might not be in effect until a reboot is performed.
@@ -9593,15 +9599,15 @@ module Aws::SSM
     # Defines a filter used in DescribeInstancePatchStatesForPatchGroup to
     # scope down the information returned by the API.
     #
-    # **Example**\: To filter for all managed nodes in a patch group having
+    # **Example**: To filter for all managed nodes in a patch group having
     # more than three patches with a `FailedCount` status, use the following
     # for the filter:
     #
-    # * Value for `Key`\: `FailedCount`
+    # * Value for `Key`: `FailedCount`
     #
-    # * Value for `Type`\: `GreaterThan`
+    # * Value for `Type`: `GreaterThan`
     #
-    # * Value for `Values`\: `3`
+    # * Value for `Values`: `3`
     #
     # @!attribute [rw] key
     #   The key for the filter. Supported values include the following:
@@ -12453,18 +12459,17 @@ module Aws::SSM
     #   @return [String]
     #
     # @!attribute [rw] account_ids_to_add
-    #   The Amazon Web Services user accounts that should have access to the
+    #   The Amazon Web Services users that should have access to the
     #   document. The account IDs can either be a group of account IDs or
     #   *All*.
     #   @return [Array<String>]
     #
     # @!attribute [rw] account_ids_to_remove
-    #   The Amazon Web Services user accounts that should no longer have
-    #   access to the document. The Amazon Web Services user account can
-    #   either be a group of account IDs or *All*. This action has a higher
-    #   priority than *AccountIdsToAdd*. If you specify an account ID to add
-    #   and the same ID to remove, the system removes access to the
-    #   document.
+    #   The Amazon Web Services users that should no longer have access to
+    #   the document. The Amazon Web Services user can either be a group of
+    #   account IDs or *All*. This action has a higher priority than
+    #   *AccountIdsToAdd*. If you specify an ID to add and the same ID to
+    #   remove, the system removes access to the document.
     #   @return [Array<String>]
     #
     # @!attribute [rw] shared_document_version
@@ -12530,12 +12535,12 @@ module Aws::SSM
     # @!attribute [rw] notification_type
     #   The type of notification.
     #
-    #   * `Command`\: Receive notification when the status of a command
+    #   * `Command`: Receive notification when the status of a command
     #     changes.
     #
-    #   * `Invocation`\: For commands sent to multiple managed nodes,
-    #     receive notification on a per-node basis when the status of a
-    #     command changes.
+    #   * `Invocation`: For commands sent to multiple managed nodes, receive
+    #     notification on a per-node basis when the status of a command
+    #     changes.
     #   @return [String]
     #
     # @see http://docs.aws.amazon.com/goto/WebAPI/ssm-2014-11-06/NotificationConfig AWS API Documentation
@@ -14695,20 +14700,17 @@ module Aws::SSM
     #
     # @!attribute [rw] key_id
     #   The Key Management Service (KMS) ID that you want to use to encrypt
-    #   a parameter. Either the default KMS key automatically assigned to
-    #   your Amazon Web Services account or a custom key. Required for
+    #   a parameter. Use a custom key for better security. Required for
     #   parameters that use the `SecureString` data type.
     #
     #   If you don't specify a key ID, the system uses the default key
-    #   associated with your Amazon Web Services account.
-    #
-    #   * To use your default KMS key, choose the `SecureString` data type,
-    #     and do *not* specify the `Key ID` when you create the parameter.
-    #     The system automatically populates `Key ID` with your default KMS
-    #     key.
+    #   associated with your Amazon Web Services account which is not as
+    #   secure as using a custom key.
     #
     #   * To use a custom KMS key, choose the `SecureString` data type with
     #     the `Key ID` parameter.
+    #
+    #   ^
     #   @return [String]
     #
     # @!attribute [rw] overwrite
@@ -14784,10 +14786,10 @@ module Aws::SSM
     #   standard-parameter tier. If you use the advanced-parameter tier, you
     #   can specify one of the following as the default:
     #
-    #   * **Advanced**\: With this option, Parameter Store evaluates all
+    #   * **Advanced**: With this option, Parameter Store evaluates all
     #     requests as advanced parameters.
     #
-    #   * **Intelligent-Tiering**\: With this option, Parameter Store
+    #   * **Intelligent-Tiering**: With this option, Parameter Store
     #     evaluates each request to determine if the parameter is standard
     #     or advanced.
     #
@@ -14867,13 +14869,29 @@ module Aws::SSM
     #   Amazon Web Services Systems Manager validates the parameter value is
     #   in the required format, such as `ami-12345abcdeEXAMPLE`, and that
     #   the specified AMI is available in your Amazon Web Services account.
-    #   For more information, see [Native parameter support for Amazon
-    #   Machine Image (AMI) IDs][1] in the *Amazon Web Services Systems
-    #   Manager User Guide*.
+    #
+    #   <note markdown="1"> If the action is successful, the service sends back an HTTP 200
+    #   response which indicates a successful `PutParameter` call for all
+    #   cases except for data type `aws:ec2:image`. If you call
+    #   `PutParameter` with `aws:ec2:image` data type, a successful HTTP 200
+    #   response does not guarantee that your parameter was successfully
+    #   created or updated. The `aws:ec2:image` value is validated
+    #   asynchronously, and the `PutParameter` call returns before the
+    #   validation is complete. If you submit an invalid AMI value, the
+    #   PutParameter operation will return success, but the asynchronous
+    #   validation will fail and the parameter will not be created or
+    #   updated. To monitor whether your `aws:ec2:image` parameters are
+    #   created successfully, see [Setting up notifications or trigger
+    #   actions based on Parameter Store events][1]. For more information
+    #   about AMI format validation , see [Native parameter support for
+    #   Amazon Machine Image (AMI) IDs][2].
+    #
+    #    </note>
     #
     #
     #
-    #   [1]: https://docs.aws.amazon.com/systems-manager/latest/userguide/parameter-store-ec2-aliases.html
+    #   [1]: https://docs.aws.amazon.com/systems-manager/latest/userguide/sysman-paramstore-cwe.html
+    #   [2]: https://docs.aws.amazon.com/systems-manager/latest/userguide/parameter-store-ec2-aliases.html
     #   @return [String]
     #
     # @see http://docs.aws.amazon.com/goto/WebAPI/ssm-2014-11-06/PutParameterRequest AWS API Documentation
@@ -15050,23 +15068,23 @@ module Aws::SSM
     #   You can specify targets using managed node IDs, resource group
     #   names, or tags that have been applied to managed nodes.
     #
-    #   **Example 1**\: Specify managed node IDs
+    #   **Example 1**: Specify managed node IDs
     #
     #   `Key=InstanceIds,Values=<instance-id-1>,<instance-id-2>,<instance-id-3>`
     #
-    #   **Example 2**\: Use tag key-pairs applied to managed nodes
+    #   **Example 2**: Use tag key-pairs applied to managed nodes
     #
     #   `Key=tag:<my-tag-key>,Values=<my-tag-value-1>,<my-tag-value-2>`
     #
-    #   **Example 3**\: Use tag-keys applied to managed nodes
+    #   **Example 3**: Use tag-keys applied to managed nodes
     #
     #   `Key=tag-key,Values=<my-tag-key-1>,<my-tag-key-2>`
     #
-    #   **Example 4**\: Use resource group names
+    #   **Example 4**: Use resource group names
     #
     #   `Key=resource-groups:Name,Values=<resource-group-name>`
     #
-    #   **Example 5**\: Use filters for resource group types
+    #   **Example 5**: Use filters for resource group types
     #
     #   `Key=resource-groups:ResourceTypeFilters,Values=<resource-type-1>,<resource-type-2>`
     #
@@ -15176,7 +15194,7 @@ module Aws::SSM
     #   is created when you run `RegisterTaskWithMaintenanceWindow`.
     #
     #   For more information, see the following topics in the in the *Amazon
-    #   Web Services Systems Manager User Guide*\:
+    #   Web Services Systems Manager User Guide*:
     #
     #   * [Using service-linked roles for Systems Manager][1]
     #
@@ -15291,10 +15309,10 @@ module Aws::SSM
     #   Indicates whether tasks should continue to run after the cutoff time
     #   specified in the maintenance windows is reached.
     #
-    #   * `CONTINUE_TASK`\: When the cutoff time is reached, any tasks that
+    #   * `CONTINUE_TASK`: When the cutoff time is reached, any tasks that
     #     are running continue. The default value.
     #
-    #   * `CANCEL_TASK`\:
+    #   * `CANCEL_TASK`:
     #
     #     * For Automation, Lambda, Step Functions tasks: When the cutoff
     #       time is reached, any task invocations that are already running
@@ -15403,7 +15421,7 @@ module Aws::SSM
     #
     #   MaintenanceWindow: mw-012345abcde
     #
-    #   `Automation`\: `example-c160-4567-8519-012345abcde`
+    #   `Automation`: `example-c160-4567-8519-012345abcde`
     #
     #   PatchBaseline: pb-012345abcde
     #
@@ -15449,6 +15467,8 @@ module Aws::SSM
     #   The Amazon Resource Name (ARN) of the service setting to reset. The
     #   setting ID can be one of the following.
     #
+    #   * `/ssm/managed-instance/default-ec2-instance-management-role`
+    #
     #   * `/ssm/automation/customer-script-log-destination`
     #
     #   * `/ssm/automation/customer-script-log-group-name`
@@ -15889,16 +15909,16 @@ module Aws::SSM
     #   The data type name for including resource data sync state. There are
     #   four sync states:
     #
-    #   `OrganizationNotExists`\: Your organization doesn't exist.
+    #   `OrganizationNotExists`: Your organization doesn't exist.
     #
-    #   `NoPermissions`\: The system can't locate the service-linked role.
+    #   `NoPermissions`: The system can't locate the service-linked role.
     #   This role is automatically created when a user creates a resource
     #   data sync in Explorer.
     #
-    #   `InvalidOrganizationalUnit`\: You specified or selected an invalid
+    #   `InvalidOrganizationalUnit`: You specified or selected an invalid
     #   unit in the resource data sync configuration.
     #
-    #   `TrustedAccessDisabled`\: You disabled Systems Manager access in the
+    #   `TrustedAccessDisabled`: You disabled Systems Manager access in the
     #   organization in Organizations.
     #   @return [String]
     #
@@ -16625,8 +16645,7 @@ module Aws::SSM
     #   @return [String]
     #
     # @!attribute [rw] owner
-    #   The ID of the Amazon Web Services user account that started the
-    #   session.
+    #   The ID of the Amazon Web Services user that started the session.
     #   @return [String]
     #
     # @!attribute [rw] reason
@@ -16683,8 +16702,8 @@ module Aws::SSM
     #   * Target: Specify a managed node to which session connections have
     #     been made.
     #
-    #   * Owner: Specify an Amazon Web Services user account to see a list
-    #     of sessions started by that user.
+    #   * Owner: Specify an Amazon Web Services user to see a list of
+    #     sessions started by that user.
     #
     #   * Status: Specify a valid session status to see a list of all
     #     sessions with that status. Status values you can specify include:
@@ -17388,13 +17407,13 @@ module Aws::SSM
     #
     # * `Key=tag-key,Values=<my-tag-key-1>,<my-tag-key-2>`
     #
-    # * **Run Command and Maintenance window targets only**\:
+    # * **Run Command and Maintenance window targets only**:
     #   `Key=resource-groups:Name,Values=<resource-group-name>`
     #
-    # * **Maintenance window targets only**\:
+    # * **Maintenance window targets only**:
     #   `Key=resource-groups:ResourceTypeFilters,Values=<resource-type-1>,<resource-type-2>`
     #
-    # * **Automation targets only**\:
+    # * **Automation targets only**:
     #   `Key=ResourceGroup;Values=<resource-group-name>`
     #
     # For example:
@@ -17405,23 +17424,23 @@ module Aws::SSM
     #
     # * `Key=tag-key,Values=Name,Instance-Type,CostCenter`
     #
-    # * **Run Command and Maintenance window targets only**\:
+    # * **Run Command and Maintenance window targets only**:
     #   `Key=resource-groups:Name,Values=ProductionResourceGroup`
     #
     #   This example demonstrates how to target all resources in the
     #   resource group **ProductionResourceGroup** in your maintenance
     #   window.
     #
-    # * **Maintenance window targets only**\:
+    # * **Maintenance window targets only**:
     #   `Key=resource-groups:ResourceTypeFilters,Values=AWS::EC2::INSTANCE,AWS::EC2::VPC`
     #
     #   This example demonstrates how to target only Amazon Elastic Compute
     #   Cloud (Amazon EC2) instances and VPCs in your maintenance window.
     #
-    # * **Automation targets only**\:
+    # * **Automation targets only**:
     #   `Key=ResourceGroup,Values=MyResourceGroup`
     #
-    # * **State Manager association targets only**\:
+    # * **State Manager association targets only**:
     #   `Key=InstanceIds,Values=*`
     #
     #   This example demonstrates how to target all managed instances in the
@@ -18480,7 +18499,7 @@ module Aws::SSM
     #   is created when you run `RegisterTaskWithMaintenanceWindow`.
     #
     #   For more information, see the following topics in the in the *Amazon
-    #   Web Services Systems Manager User Guide*\:
+    #   Web Services Systems Manager User Guide*:
     #
     #   * [Using service-linked roles for Systems Manager][1]
     #
@@ -18610,10 +18629,10 @@ module Aws::SSM
     #   Indicates whether tasks should continue to run after the cutoff time
     #   specified in the maintenance windows is reached.
     #
-    #   * `CONTINUE_TASK`\: When the cutoff time is reached, any tasks that
+    #   * `CONTINUE_TASK`: When the cutoff time is reached, any tasks that
     #     are running continue. The default value.
     #
-    #   * `CANCEL_TASK`\:
+    #   * `CANCEL_TASK`:
     #
     #     * For Automation, Lambda, Step Functions tasks: When the cutoff
     #       time is reached, any task invocations that are already running
@@ -19029,13 +19048,13 @@ module Aws::SSM
     #   The action for Patch Manager to take on patches included in the
     #   `RejectedPackages` list.
     #
-    #   * <b> <code>ALLOW_AS_DEPENDENCY</code> </b>\: A package in the
+    #   * <b> <code>ALLOW_AS_DEPENDENCY</code> </b>: A package in the
     #     `Rejected` patches list is installed only if it is a dependency of
     #     another package. It is considered compliant with the patch
     #     baseline, and its status is reported as `InstalledOther`. This is
     #     the default action if no option is specified.
     #
-    #   * <b> <code>BLOCK</code> </b>\: Packages in the `RejectedPatches`
+    #   * <b> <code>BLOCK</code> </b>: Packages in the `RejectedPatches`
     #     list, and packages that include them as dependencies, aren't
     #     installed under any circumstances. If a package was installed
     #     before it was added to the `Rejected` patches list, it is
@@ -19193,11 +19212,13 @@ module Aws::SSM
     # The request body of the UpdateServiceSetting API operation.
     #
     # @!attribute [rw] setting_id
-    #   The Amazon Resource Name (ARN) of the service setting to reset. For
+    #   The Amazon Resource Name (ARN) of the service setting to update. For
     #   example,
     #   `arn:aws:ssm:us-east-1:111122223333:servicesetting/ssm/parameter-store/high-throughput-enabled`.
     #   The setting ID can be one of the following.
     #
+    #   * `/ssm/managed-instance/default-ec2-instance-management-role`
+    #
     #   * `/ssm/automation/customer-script-log-destination`
     #
     #   * `/ssm/automation/customer-script-log-group-name`
@@ -19211,28 +19232,39 @@ module Aws::SSM
     #   * `/ssm/parameter-store/default-parameter-tier`
     #
     #   * `/ssm/parameter-store/high-throughput-enabled`
+    #
+    #   <note markdown="1"> Permissions to update the
+    #   `/ssm/managed-instance/default-ec2-instance-management-role` setting
+    #   should only be provided to administrators. Implement least privilege
+    #   access when allowing individuals to configure or modify the Default
+    #   Host Management Configuration.
+    #
+    #    </note>
     #   @return [String]
     #
     # @!attribute [rw] setting_value
     #   The new value to specify for the service setting. The following list
     #   specifies the available values for each setting.
     #
-    #   * `/ssm/automation/customer-script-log-destination`\: `CloudWatch`
+    #   * `/ssm/managed-instance/default-ec2-instance-management-role: The
+    #     name of an IAM role`
+    #
+    #   * `/ssm/automation/customer-script-log-destination`: `CloudWatch`
     #
-    #   * `/ssm/automation/customer-script-log-group-name`\: the name of an
+    #   * `/ssm/automation/customer-script-log-group-name`: The name of an
     #     Amazon CloudWatch Logs log group
     #
-    #   * `/ssm/documents/console/public-sharing-permission`\: `Enable` or
+    #   * `/ssm/documents/console/public-sharing-permission`: `Enable` or
     #     `Disable`
     #
-    #   * `/ssm/managed-instance/activation-tier`\: `standard` or `advanced`
+    #   * `/ssm/managed-instance/activation-tier`: `standard` or `advanced`
     #
-    #   * `/ssm/opsinsights/opscenter`\: `Enabled` or `Disabled`
+    #   * `/ssm/opsinsights/opscenter`: `Enabled` or `Disabled`
     #
-    #   * `/ssm/parameter-store/default-parameter-tier`\: `Standard`,
+    #   * `/ssm/parameter-store/default-parameter-tier`: `Standard`,
     #     `Advanced`, `Intelligent-Tiering`
     #
-    #   * `/ssm/parameter-store/high-throughput-enabled`\: `true` or `false`
+    #   * `/ssm/parameter-store/high-throughput-enabled`: `true` or `false`
     #   @return [String]
     #
     # @see http://docs.aws.amazon.com/goto/WebAPI/ssm-2014-11-06/UpdateServiceSettingRequest AWS API Documentation

data/lib/aws-sdk-ssm.rb CHANGED Viewed

@@ -53,6 +53,6 @@ require_relative 'aws-sdk-ssm/customizations'
 # @!group service
 module Aws::SSM
-  GEM_VERSION = '1.148.0'
+  GEM_VERSION = '1.150.0'
 end

metadata CHANGED Viewed

@@ -1,14 +1,14 @@
 --- !ruby/object:Gem::Specification
 name: aws-sdk-ssm
 version: !ruby/object:Gem::Version
-  version: 1.148.0
+  version: 1.150.0
 platform: ruby
 authors:
 - Amazon Web Services
 autorequire:
 bindir: bin
 cert_chain: []
-date: 2023-01-18 00:00:00.000000000 Z
+date: 2023-03-22 00:00:00.000000000 Z
 dependencies:
 - !ruby/object:Gem::Dependency
   name: aws-sdk-core