@awboost/cfn-resource-types 0.1.136 → 0.1.137

package/lib/AWS-SecurityHub-DelegatedAdmin.d.ts

@@ -1,12 +1,15 @@
 import { Resource as $Resource } from "@awboost/cfn-template-builder/template/resource";
 import type { ResourceOptions as $ResourceOptions } from "@awboost/cfn-template-builder/template";
 /**
- * The AWS::SecurityHub::DelegatedAdmin resource represents the AWS Security Hub delegated admin account in your organization. One delegated admin resource is allowed to create for the organization in each region in which you configure the AdminAccountId.
+ * The ``AWS::SecurityHub::DelegatedAdmin`` resource designates the delegated ASHlong administrator account for an organization. You must enable the integration between ASH and AOlong before you can designate a delegated ASH administrator. Only the management account for an organization can designate the delegated ASH administrator account. For more information, see [Designating the delegated administrator](https://docs.aws.amazon.com/securityhub/latest/userguide/designate-orgs-admin-account.html#designate-admin-instructions) in the *User Guide*.
+ To change the delegated administrator account, remove the current delegated administrator account, and then designate the new account.
+ To designate multiple delegated administrators in different organizations and AWS-Regions, we recommend using [mappings](https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/mappings-section-structure.html).
+ Tags aren't supported for this resource.
  * @see {@link https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-securityhub-delegatedadmin.html}
  */
 export type SecurityHubDelegatedAdminProperties = {
     /**
-     * The Amazon Web Services account identifier of the account to designate as the Security Hub administrator account
+     * The AWS-account identifier of the account to designate as the Security Hub administrator account.
      * @pattern `^[0-9]{12}$`
      */
     AdminAccountId: string;
@@ -17,17 +20,16 @@ export type SecurityHubDelegatedAdminProperties = {
  */
 export type SecurityHubDelegatedAdminAttributes = {
     /**
-     * The identifier of the DelegatedAdmin being created and assigned as the unique identifier
      * @pattern `^[0-9]{12}/[a-zA-Z0-9-]{1,32}$`
      */
     DelegatedAdminIdentifier: string;
-    /**
-     * The current status of the Security Hub administrator account. Indicates whether the account is currently enabled as a Security Hub administrator
-     */
     Status: "ENABLED" | "DISABLE_IN_PROGRESS";
 };
 /**
- * The AWS::SecurityHub::DelegatedAdmin resource represents the AWS Security Hub delegated admin account in your organization. One delegated admin resource is allowed to create for the organization in each region in which you configure the AdminAccountId.
+ * The ``AWS::SecurityHub::DelegatedAdmin`` resource designates the delegated ASHlong administrator account for an organization. You must enable the integration between ASH and AOlong before you can designate a delegated ASH administrator. Only the management account for an organization can designate the delegated ASH administrator account. For more information, see [Designating the delegated administrator](https://docs.aws.amazon.com/securityhub/latest/userguide/designate-orgs-admin-account.html#designate-admin-instructions) in the *User Guide*.
+ To change the delegated administrator account, remove the current delegated administrator account, and then designate the new account.
+ To designate multiple delegated administrators in different organizations and AWS-Regions, we recommend using [mappings](https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/mappings-section-structure.html).
+ Tags aren't supported for this resource.
  * @see {@link https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-securityhub-delegatedadmin.html}
  */
 export declare class SecurityHubDelegatedAdmin extends $Resource<"AWS::SecurityHub::DelegatedAdmin", SecurityHubDelegatedAdminProperties, SecurityHubDelegatedAdminAttributes> {

package/lib/AWS-SecurityHub-DelegatedAdmin.js

@@ -1,6 +1,9 @@
 import { Resource as $Resource } from "@awboost/cfn-template-builder/template/resource";
 /**
- * The AWS::SecurityHub::DelegatedAdmin resource represents the AWS Security Hub delegated admin account in your organization. One delegated admin resource is allowed to create for the organization in each region in which you configure the AdminAccountId.
+ * The ``AWS::SecurityHub::DelegatedAdmin`` resource designates the delegated ASHlong administrator account for an organization. You must enable the integration between ASH and AOlong before you can designate a delegated ASH administrator. Only the management account for an organization can designate the delegated ASH administrator account. For more information, see [Designating the delegated administrator](https://docs.aws.amazon.com/securityhub/latest/userguide/designate-orgs-admin-account.html#designate-admin-instructions) in the *User Guide*.
+ To change the delegated administrator account, remove the current delegated administrator account, and then designate the new account.
+ To designate multiple delegated administrators in different organizations and AWS-Regions, we recommend using [mappings](https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/mappings-section-structure.html).
+ Tags aren't supported for this resource.
  * @see {@link https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-securityhub-delegatedadmin.html}
  */
 export class SecurityHubDelegatedAdmin extends $Resource {

package/lib/AWS-SecurityHub-FindingAggregator.d.ts

@@ -1,19 +1,29 @@
 import { Resource as $Resource } from "@awboost/cfn-template-builder/template/resource";
 import type { ResourceOptions as $ResourceOptions } from "@awboost/cfn-template-builder/template";
 /**
- * The AWS::SecurityHub::FindingAggregator resource represents the AWS Security Hub Finding Aggregator in your account. One finding aggregator resource is created for each account in non opt-in region in which you configure region linking mode.
+ * The ``AWS::SecurityHub::FindingAggregator`` resource enables cross-Region aggregation. When cross-Region aggregation is enabled, you can aggregate findings, finding updates, insights, control compliance statuses, and security scores from one or more linked Regions to a single aggregation Region. You can then view and manage all of this data from the aggregation Region. For more details about cross-Region aggregation, see [Cross-Region aggregation](https://docs.aws.amazon.com/securityhub/latest/userguide/finding-aggregation.html) in the *User Guide*
+ This resource must be created in the Region that you want to designate as your aggregation Region.
+ Cross-Region aggregation is also a prerequisite for using [central configuration](https://docs.aws.amazon.com/securityhub/latest/userguide/central-configuration-intro.html) in ASH.
  * @see {@link https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-securityhub-findingaggregator.html}
  */
 export type SecurityHubFindingAggregatorProperties = {
     /**
-     * Indicates whether to link all Regions, all Regions except for a list of excluded Regions, or a list of included Regions
-     */
+       * Indicates whether to aggregate findings from all of the available Regions in the current partition. Also determines whether to automatically aggregate findings from new Regions as Security Hub supports them and you opt into them.
+       The selected option also determines how to use the Regions provided in the Regions list.
+       The options are as follows:
+        +   ``ALL_REGIONS`` - Aggregates findings from all of the Regions where Security Hub is enabled. When you choose this option, Security Hub also automatically aggregates findings from new Regions as Security Hub supports them and you opt into them.
+        +   ``ALL_REGIONS_EXCEPT_SPECIFIED`` - Aggregates findings from all of the Regions where Security Hub is enabled, except for the Regions listed in the ``Regions`` parameter. When you choose this option, Security Hub also automatically aggregates findings from new Regions as Security Hub supports them and you opt into them.
+        +   ``SPECIFIED_REGIONS`` - Aggregates findings only from the Regions listed in the ``Regions`` parameter. Security Hub does not automatically aggregate findings from new Regions.
+        +   ``NO_REGIONS`` - Aggregates no data because no Regions are selected as linked Regions.
+       */
     RegionLinkingMode: "ALL_REGIONS" | "ALL_REGIONS_EXCEPT_SPECIFIED" | "SPECIFIED_REGIONS";
     /**
-     * The list of excluded Regions or included Regions
-     * @minLength `1`
-     * @maxLength `50`
-     */
+       * If ``RegionLinkingMode`` is ``ALL_REGIONS_EXCEPT_SPECIFIED``, then this is a space-separated list of Regions that do not aggregate findings to the aggregation Region.
+       If ``RegionLinkingMode`` is ``SPECIFIED_REGIONS``, then this is a space-separated list of Regions that do aggregate findings to the aggregation Region.
+       An ``InvalidInputException`` error results if you populate this field while ``RegionLinkingMode`` is ``NO_REGIONS``.
+       * @minLength `1`
+       * @maxLength `50`
+       */
     Regions?: string[];
 };
 /**
@@ -22,18 +32,18 @@ export type SecurityHubFindingAggregatorProperties = {
  */
 export type SecurityHubFindingAggregatorAttributes = {
     /**
-     * The aggregation Region of the FindingAggregator
      * @pattern `^[a-zA-Z0-9-]{1,32}$`
      */
     FindingAggregationRegion: string;
     /**
-     * The ARN of the FindingAggregator being created and assigned as the unique identifier
      * @pattern `arn:aws\S*:securityhub:\S*`
      */
     FindingAggregatorArn: string;
 };
 /**
- * The AWS::SecurityHub::FindingAggregator resource represents the AWS Security Hub Finding Aggregator in your account. One finding aggregator resource is created for each account in non opt-in region in which you configure region linking mode.
+ * The ``AWS::SecurityHub::FindingAggregator`` resource enables cross-Region aggregation. When cross-Region aggregation is enabled, you can aggregate findings, finding updates, insights, control compliance statuses, and security scores from one or more linked Regions to a single aggregation Region. You can then view and manage all of this data from the aggregation Region. For more details about cross-Region aggregation, see [Cross-Region aggregation](https://docs.aws.amazon.com/securityhub/latest/userguide/finding-aggregation.html) in the *User Guide*
+ This resource must be created in the Region that you want to designate as your aggregation Region.
+ Cross-Region aggregation is also a prerequisite for using [central configuration](https://docs.aws.amazon.com/securityhub/latest/userguide/central-configuration-intro.html) in ASH.
  * @see {@link https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-securityhub-findingaggregator.html}
  */
 export declare class SecurityHubFindingAggregator extends $Resource<"AWS::SecurityHub::FindingAggregator", SecurityHubFindingAggregatorProperties, SecurityHubFindingAggregatorAttributes> {

package/lib/AWS-SecurityHub-FindingAggregator.js

@@ -1,6 +1,8 @@
 import { Resource as $Resource } from "@awboost/cfn-template-builder/template/resource";
 /**
- * The AWS::SecurityHub::FindingAggregator resource represents the AWS Security Hub Finding Aggregator in your account. One finding aggregator resource is created for each account in non opt-in region in which you configure region linking mode.
+ * The ``AWS::SecurityHub::FindingAggregator`` resource enables cross-Region aggregation. When cross-Region aggregation is enabled, you can aggregate findings, finding updates, insights, control compliance statuses, and security scores from one or more linked Regions to a single aggregation Region. You can then view and manage all of this data from the aggregation Region. For more details about cross-Region aggregation, see [Cross-Region aggregation](https://docs.aws.amazon.com/securityhub/latest/userguide/finding-aggregation.html) in the *User Guide*
+ This resource must be created in the Region that you want to designate as your aggregation Region.
+ Cross-Region aggregation is also a prerequisite for using [central configuration](https://docs.aws.amazon.com/securityhub/latest/userguide/central-configuration-intro.html) in ASH.
  * @see {@link https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-securityhub-findingaggregator.html}
  */
 export class SecurityHubFindingAggregator extends $Resource {

package/package.json

@@ -1,6 +1,6 @@
 {
   "name": "@awboost/cfn-resource-types",
-  "version": "0.1.136",
+  "version": "0.1.137",
   "publishConfig": {
     "access": "public"
   },