@awboost/cfn-resource-types 0.1.17 → 0.1.19

package/lib/AWS-ACMPCA-Certificate.d.ts

@@ -1,39 +1,43 @@
 import { Resource as $Resource } from "@awboost/cfn-template-builder/template/resource";
 import type { ResourceOptions as $ResourceOptions } from "@awboost/cfn-template-builder/template";
 /**
- * Resource type definition for `AWS::ACMPCA::Certificate`.
- * A certificate issued via a private certificate authority
+ * The ``AWS::ACMPCA::Certificate`` resource is used to issue a certificate using your private certificate authority. For more information, see the [IssueCertificate](https://docs.aws.amazon.com/privateca/latest/APIReference/API_IssueCertificate.html) action.
  * @see {@link https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-acmpca-certificate.html}
  */
 export type ACMPCACertificateProperties = {
     /**
-     * These are fields to be overridden in a certificate at the time of issuance. These requires an API_Passthrough template be used or they will be ignored.
+     * Specifies X.509 certificate information to be included in the issued certificate. An ``APIPassthrough`` or ``APICSRPassthrough`` template variant must be selected, or else this parameter is ignored.
      */
     ApiPassthrough?: ApiPassthrough;
     /**
-     * The Amazon Resource Name (ARN) for the private CA to issue the certificate.
+     * The Amazon Resource Name (ARN) for the private CA issues the certificate.
      */
     CertificateAuthorityArn: string;
     /**
-     * The certificate signing request (CSR) for the Certificate.
+     * The certificate signing request (CSR) for the certificate.
      * @minLength `1`
      */
     CertificateSigningRequest: string;
     /**
-     * The name of the algorithm that will be used to sign the Certificate.
-     */
+       * The name of the algorithm that will be used to sign the certificate to be issued.
+       This parameter should not be confused with the ``SigningAlgorithm`` parameter used to sign a CSR in the ``CreateCertificateAuthority`` action.
+        The specified signing algorithm family (RSA or ECDSA) must match the algorithm family of the CA's secret key.
+       */
     SigningAlgorithm: string;
     /**
-     * Specifies a custom configuration template to use when issuing a certificate. If this parameter is not provided, ACM Private CA defaults to the EndEntityCertificate/V1 template.
+     * Specifies a custom configuration template to use when issuing a certificate. If this parameter is not provided, PCAshort defaults to the ``EndEntityCertificate/V1`` template. For more information about PCAshort templates, see [Using Templates](https://docs.aws.amazon.com/privateca/latest/userguide/UsingTemplates.html).
      */
     TemplateArn?: string;
     /**
-     * The time before which the Certificate will be valid.
+     * The period of time during which the certificate will be valid.
      */
     Validity: Validity;
     /**
-     * The time after which the Certificate will be valid.
-     */
+       * Information describing the start of the validity period of the certificate. This parameter sets the “Not Before" date for the certificate.
+       By default, when issuing a certificate, PCAshort sets the "Not Before" date to the issuance time minus 60 minutes. This compensates for clock inconsistencies across computer systems. The ``ValidityNotBefore`` parameter can be used to customize the “Not Before” value.
+       Unlike the ``Validity`` parameter, the ``ValidityNotBefore`` parameter is optional.
+       The ``ValidityNotBefore`` value is expressed as an explicit date and time, using the ``Validity`` type value ``ABSOLUTE``.
+       */
     ValidityNotBefore?: Validity;
 };
 /**
@@ -41,33 +45,26 @@ export type ACMPCACertificateProperties = {
  * @see {@link https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-acmpca-certificate.html#aws-resource-acmpca-certificate-return-values}
  */
 export type ACMPCACertificateAttributes = {
-    /**
-     * The ARN of the issued certificate.
-     */
     Arn: string;
-    /**
-     * The issued certificate in base 64 PEM-encoded format.
-     */
     Certificate: string;
 };
 /**
  * Type definition for `AWS::ACMPCA::Certificate.ApiPassthrough`.
- * Structure that specifies fields to be overridden in a certificate at the time of issuance. These requires an API Passthrough template be used or they will be ignored.
+ * Contains information about the certificate subject. The Subject field in the certificate identifies the entity that owns or controls the public key in the certificate. The entity can be a user, computer, device, or service. The Subject must contain an X.500 distinguished name (DN). A DN is a sequence of relative distinguished names (RDNs). The RDNs are separated by commas in the certificate.
  * @see {@link https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-acmpca-certificate-apipassthrough.html}
  */
 export type ApiPassthrough = {
     /**
-     * Structure that contains X.500 extensions for a Certificate.
+     * Defines one or more purposes for which the key contained in the certificate can be used. Default value for each option is false.
      */
     Extensions?: Extensions;
     /**
-     * Structure that contains X.500 distinguished name information.
+     * Contains information about the certificate subject. The Subject field in the certificate identifies the entity that owns or controls the public key in the certificate. The entity can be a user, computer, device, or service. The Subject must contain an X.500 distinguished name (DN). A DN is a sequence of relative distinguished names (RDNs). The RDNs are separated by commas in the certificate.
      */
     Subject?: Subject;
 };
 /**
  * Type definition for `AWS::ACMPCA::Certificate.CustomAttribute`.
- * Structure that contains X.500 attribute type and value.
  * @see {@link https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-acmpca-certificate-customattribute.html}
  */
 export type CustomAttribute = {
@@ -79,7 +76,6 @@ export type CustomAttribute = {
 };
 /**
  * Type definition for `AWS::ACMPCA::Certificate.CustomExtension`.
- * Structure that contains X.509 extension information for a certificate.
  * @see {@link https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-acmpca-certificate-customextension.html}
  */
 export type CustomExtension = {
@@ -92,7 +88,6 @@ export type CustomExtension = {
 };
 /**
  * Type definition for `AWS::ACMPCA::Certificate.EdiPartyName`.
- * Structure that contains X.509 EdiPartyName information.
  * @see {@link https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-acmpca-certificate-edipartyname.html}
  */
 export type EdiPartyName = {
@@ -101,7 +96,6 @@ export type EdiPartyName = {
 };
 /**
  * Type definition for `AWS::ACMPCA::Certificate.ExtendedKeyUsage`.
- * Structure that contains X.509 ExtendedKeyUsage information.
  * @see {@link https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-acmpca-certificate-extendedkeyusage.html}
  */
 export type ExtendedKeyUsage = {
@@ -113,7 +107,7 @@ export type ExtendedKeyUsage = {
 };
 /**
  * Type definition for `AWS::ACMPCA::Certificate.Extensions`.
- * Structure that contains X.500 extensions for a Certificate.
+ * Defines one or more purposes for which the key contained in the certificate can be used. Default value for each option is false.
  * @see {@link https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-acmpca-certificate-extensions.html}
  */
 export type Extensions = {
@@ -124,36 +118,30 @@ export type Extensions = {
     CustomExtensions?: CustomExtension[];
     ExtendedKeyUsage?: ExtendedKeyUsage[];
     /**
-     * Structure that contains X.509 KeyUsage information.
+     * Defines one or more purposes for which the key contained in the certificate can be used. Default value for each option is false.
      */
     KeyUsage?: KeyUsage;
     SubjectAlternativeNames?: GeneralName[];
 };
 /**
  * Type definition for `AWS::ACMPCA::Certificate.GeneralName`.
- * Structure that contains X.509 GeneralName information. Assign one and ONLY one field.
+ * Contains information about the certificate subject. The certificate can be one issued by your private certificate authority (CA) or it can be your private CA certificate. The Subject field in the certificate identifies the entity that owns or controls the public key in the certificate. The entity can be a user, computer, device, or service. The Subject must contain an X.500 distinguished name (DN). A DN is a sequence of relative distinguished names (RDNs). The RDNs are separated by commas in the certificate. The DN must be unique for each entity, but your private CA can issue more than one certificate with the same DN to the same entity.
  * @see {@link https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-acmpca-certificate-generalname.html}
  */
 export type GeneralName = {
     /**
-     * Structure that contains X.500 distinguished name information.
+     * Contains information about the certificate subject. The certificate can be one issued by your private certificate authority (CA) or it can be your private CA certificate. The Subject field in the certificate identifies the entity that owns or controls the public key in the certificate. The entity can be a user, computer, device, or service. The Subject must contain an X.500 distinguished name (DN). A DN is a sequence of relative distinguished names (RDNs). The RDNs are separated by commas in the certificate. The DN must be unique for each entity, but your private CA can issue more than one certificate with the same DN to the same entity.
      */
     DirectoryName?: Subject;
     /**
      * String that contains X.509 DnsName information.
      */
     DnsName?: string;
-    /**
-     * Structure that contains X.509 EdiPartyName information.
-     */
     EdiPartyName?: EdiPartyName;
     /**
      * String that contains X.509 IpAddress information.
      */
     IpAddress?: string;
-    /**
-     * Structure that contains X.509 OtherName information.
-     */
     OtherName?: OtherName;
     /**
      * String that contains X.509 ObjectIdentifier information.
@@ -170,7 +158,6 @@ export type GeneralName = {
 };
 /**
  * Type definition for `AWS::ACMPCA::Certificate.KeyUsage`.
- * Structure that contains X.509 KeyUsage information.
  * @see {@link https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-acmpca-certificate-keyusage.html}
  */
 export type KeyUsage = {
@@ -186,7 +173,6 @@ export type KeyUsage = {
 };
 /**
  * Type definition for `AWS::ACMPCA::Certificate.OtherName`.
- * Structure that contains X.509 OtherName information.
  * @see {@link https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-acmpca-certificate-othername.html}
  */
 export type OtherName = {
@@ -198,7 +184,6 @@ export type OtherName = {
 };
 /**
  * Type definition for `AWS::ACMPCA::Certificate.PolicyInformation`.
- * Structure that contains X.509 Policy information.
  * @see {@link https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-acmpca-certificate-policyinformation.html}
  */
 export type PolicyInformation = {
@@ -210,19 +195,14 @@ export type PolicyInformation = {
 };
 /**
  * Type definition for `AWS::ACMPCA::Certificate.PolicyQualifierInfo`.
- * Structure that contains X.509 Policy qualifier information.
  * @see {@link https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-acmpca-certificate-policyqualifierinfo.html}
  */
 export type PolicyQualifierInfo = {
     PolicyQualifierId: string;
-    /**
-     * Structure that contains a X.509 policy qualifier.
-     */
     Qualifier: Qualifier;
 };
 /**
  * Type definition for `AWS::ACMPCA::Certificate.Qualifier`.
- * Structure that contains a X.509 policy qualifier.
  * @see {@link https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-acmpca-certificate-qualifier.html}
  */
 export type Qualifier = {
@@ -230,41 +210,89 @@ export type Qualifier = {
 };
 /**
  * Type definition for `AWS::ACMPCA::Certificate.Subject`.
- * Structure that contains X.500 distinguished name information.
+ * Contains information about the certificate subject. The ``Subject`` field in the certificate identifies the entity that owns or controls the public key in the certificate. The entity can be a user, computer, device, or service. The ``Subject``must contain an X.500 distinguished name (DN). A DN is a sequence of relative distinguished names (RDNs). The RDNs are separated by commas in the certificate.
  * @see {@link https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-acmpca-certificate-subject.html}
  */
 export type Subject = {
+    /**
+       * For CA and end-entity certificates in a private PKI, the common name (CN) can be any string within the length limit.
+       Note: In publicly trusted certificates, the common name must be a fully qualified domain name (FQDN) associated with the certificate subject.
+       */
     CommonName?: string;
+    /**
+     * Two-digit code that specifies the country in which the certificate subject located.
+     */
     Country?: string;
     /**
      * Array of X.500 attribute type and value. CustomAttributes cannot be used along with pre-defined attributes.
      */
     CustomAttributes?: CustomAttribute[];
+    /**
+     * Disambiguating information for the certificate subject.
+     */
     DistinguishedNameQualifier?: string;
+    /**
+     * Typically a qualifier appended to the name of an individual. Examples include Jr. for junior, Sr. for senior, and III for third.
+     */
     GenerationQualifier?: string;
+    /**
+     * First name.
+     */
     GivenName?: string;
+    /**
+     * Concatenation that typically contains the first letter of the *GivenName*, the first letter of the middle name if one exists, and the first letter of the *Surname*.
+     */
     Initials?: string;
+    /**
+     * The locality (such as a city or town) in which the certificate subject is located.
+     */
     Locality?: string;
+    /**
+     * Legal name of the organization with which the certificate subject is affiliated.
+     */
     Organization?: string;
+    /**
+     * A subdivision or unit of the organization (such as sales or finance) with which the certificate subject is affiliated.
+     */
     OrganizationalUnit?: string;
+    /**
+     * Typically a shortened version of a longer *GivenName*. For example, Jonathan is often shortened to John. Elizabeth is often shortened to Beth, Liz, or Eliza.
+     */
     Pseudonym?: string;
+    /**
+     * The certificate serial number.
+     */
     SerialNumber?: string;
+    /**
+     * State in which the subject of the certificate is located.
+     */
     State?: string;
+    /**
+     * Family name. In the US and the UK, for example, the surname of an individual is ordered last. In Asian cultures the surname is typically ordered first.
+     */
     Surname?: string;
+    /**
+     * A title such as Mr. or Ms., which is pre-pended to the name to refer formally to the certificate subject.
+     */
     Title?: string;
 };
 /**
  * Type definition for `AWS::ACMPCA::Certificate.Validity`.
- * Validity for a certificate.
+ * Length of time for which the certificate issued by your private certificate authority (CA), or by the private CA itself, is valid in days, months, or years. You can issue a certificate by calling the ``IssueCertificate`` operation.
  * @see {@link https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-acmpca-certificate-validity.html}
  */
 export type Validity = {
+    /**
+     * Specifies whether the ``Value`` parameter represents days, months, or years.
+     */
     Type: string;
+    /**
+     * Time period.
+     */
     Value: number;
 };
 /**
- * Resource type definition for `AWS::ACMPCA::Certificate`.
- * A certificate issued via a private certificate authority
+ * The ``AWS::ACMPCA::Certificate`` resource is used to issue a certificate using your private certificate authority. For more information, see the [IssueCertificate](https://docs.aws.amazon.com/privateca/latest/APIReference/API_IssueCertificate.html) action.
  * @see {@link https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-acmpca-certificate.html}
  */
 export declare class ACMPCACertificate extends $Resource<"AWS::ACMPCA::Certificate", ACMPCACertificateProperties, ACMPCACertificateAttributes> {

package/lib/AWS-ACMPCA-Certificate.js

@@ -1,7 +1,6 @@
 import { Resource as $Resource } from "@awboost/cfn-template-builder/template/resource";
 /**
- * Resource type definition for `AWS::ACMPCA::Certificate`.
- * A certificate issued via a private certificate authority
+ * The ``AWS::ACMPCA::Certificate`` resource is used to issue a certificate using your private certificate authority. For more information, see the [IssueCertificate](https://docs.aws.amazon.com/privateca/latest/APIReference/API_IssueCertificate.html) action.
  * @see {@link https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-acmpca-certificate.html}
  */
 export class ACMPCACertificate extends $Resource {

package/lib/AWS-AppSync-GraphQLApi.d.ts

@@ -8,6 +8,7 @@ export type AppSyncGraphQLApiProperties = {
     AdditionalAuthenticationProviders?: AdditionalAuthenticationProvider[];
     ApiType?: string;
     AuthenticationType: string;
+    EnvironmentVariables?: Record<string, any>;
     IntrospectionConfig?: string;
     LambdaAuthorizerConfig?: LambdaAuthorizerConfig;
     LogConfig?: LogConfig;

package/lib/AWS-EC2-ClientVpnEndpoint.d.ts

@@ -9,6 +9,7 @@ export type EC2ClientVpnEndpointProperties = {
     ClientCidrBlock: string;
     ClientConnectOptions?: ClientConnectOptions;
     ClientLoginBannerOptions?: ClientLoginBannerOptions;
+    ClientRouteMonitoringOptions?: ClientRouteMonitoringOptions;
     ConnectionLogOptions: ConnectionLogOptions;
     Description?: string;
     DnsServers?: string[];
@@ -62,6 +63,13 @@ export type ClientLoginBannerOptions = {
     BannerText?: string;
     Enabled: boolean;
 };
+/**
+ * Type definition for `AWS::EC2::ClientVpnEndpoint.ClientRouteMonitoringOptions`.
+ * @see {@link https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-clientvpnendpoint-clientroutemonitoringoptions.html}
+ */
+export type ClientRouteMonitoringOptions = {
+    Enabled?: boolean;
+};
 /**
  * Type definition for `AWS::EC2::ClientVpnEndpoint.ConnectionLogOptions`.
  * @see {@link https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-clientvpnendpoint-connectionlogoptions.html}

package/lib/AWS-EC2-SecurityGroupIngress.d.ts

@@ -5,17 +5,67 @@ import type { ResourceOptions as $ResourceOptions } from "@awboost/cfn-template-
  * @see {@link https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ec2-securitygroupingress.html}
  */
 export type EC2SecurityGroupIngressProperties = {
+    /**
+     * The IPv4 ranges
+     */
     CidrIp?: string;
+    /**
+     * [VPC only] The IPv6 ranges
+     */
     CidrIpv6?: string;
+    /**
+     * Updates the description of an ingress (inbound) security group rule. You can replace an existing description, or add a description to a rule that did not have one previously
+     */
     Description?: string;
+    /**
+       * The start of port range for the TCP and UDP protocols, or an ICMP/ICMPv6 type number. A value of -1 indicates all ICMP/ICMPv6 types. If you specify all ICMP/ICMPv6 types, you must specify all codes.
+      
+      Use this for ICMP and any protocol that uses ports.
+       */
     FromPort?: number;
+    /**
+       * The ID of the security group. You must specify either the security group ID or the security group name in the request. For security groups in a nondefault VPC, you must specify the security group ID.
+      
+      You must specify the GroupName property or the GroupId property. For security groups that are in a VPC, you must use the GroupId property.
+       */
     GroupId?: string;
+    /**
+     * The name of the security group.
+     */
     GroupName?: string;
+    /**
+       * The IP protocol name (tcp, udp, icmp, icmpv6) or number (see Protocol Numbers).
+      
+      [VPC only] Use -1 to specify all protocols. When authorizing security group rules, specifying -1 or a protocol number other than tcp, udp, icmp, or icmpv6 allows traffic on all ports, regardless of any port range you specify. For tcp, udp, and icmp, you must specify a port range. For icmpv6, the port range is optional; if you omit the port range, traffic for all types and codes is allowed.
+       */
     IpProtocol: string;
+    /**
+       * [EC2-VPC only] The ID of a prefix list.
+      
+      
+       */
     SourcePrefixListId?: string;
+    /**
+     * The ID of the security group. You must specify either the security group ID or the security group name. For security groups in a nondefault VPC, you must specify the security group ID.
+     */
     SourceSecurityGroupId?: string;
+    /**
+       * [EC2-Classic, default VPC] The name of the source security group.
+      
+      You must specify the GroupName property or the GroupId property. For security groups that are in a VPC, you must use the GroupId property.
+       */
     SourceSecurityGroupName?: string;
+    /**
+       * [nondefault VPC] The AWS account ID that owns the source security group. You can't specify this property with an IP address range.
+      
+      If you specify SourceSecurityGroupName or SourceSecurityGroupId and that security group is owned by a different account than the account creating the stack, you must specify the SourceSecurityGroupOwnerId; otherwise, this property is optional.
+       */
     SourceSecurityGroupOwnerId?: string;
+    /**
+       * The end of port range for the TCP and UDP protocols, or an ICMP/ICMPv6 code. A value of -1 indicates all ICMP/ICMPv6 codes for the specified ICMP type. If you specify all ICMP/ICMPv6 types, you must specify all codes.
+      
+      Use this for ICMP and any protocol that uses ports.
+       */
     ToPort?: number;
 };
 /**
@@ -23,6 +73,9 @@ export type EC2SecurityGroupIngressProperties = {
  * @see {@link https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ec2-securitygroupingress.html#aws-resource-ec2-securitygroupingress-return-values}
  */
 export type EC2SecurityGroupIngressAttributes = {
+    /**
+     * The Security Group Rule Id
+     */
     Id: string;
 };
 /**

package/lib/AWS-IoT-DomainConfiguration.d.ts

@@ -24,6 +24,7 @@ export type IoTDomainConfigurationProperties = {
      * @maxLength `1`
      */
     ServerCertificateArns?: string[];
+    ServerCertificateConfig?: ServerCertificateConfig;
     ServiceType?: "DATA" | "CREDENTIAL_PROVIDER" | "JOBS";
     Tags?: Tag[];
     TlsConfig?: TlsConfig;
@@ -63,6 +64,13 @@ export type AuthorizerConfig = {
      */
     DefaultAuthorizerName?: string;
 };
+/**
+ * Type definition for `AWS::IoT::DomainConfiguration.ServerCertificateConfig`.
+ * @see {@link https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-iot-domainconfiguration-servercertificateconfig.html}
+ */
+export type ServerCertificateConfig = {
+    EnableOCSPCheck?: boolean;
+};
 /**
  * Type definition for `AWS::IoT::DomainConfiguration.ServerCertificateSummary`.
  * @see {@link https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-iot-domainconfiguration-servercertificatesummary.html}

package/lib/AWS-Location-APIKey.d.ts

@@ -89,14 +89,14 @@ export type Tag = {
      * The key name of the tag. You can specify a value that is 1 to 128 Unicode characters in length and cannot be prefixed with aws:. You can use any of the following characters: the set of Unicode letters, digits, whitespace, _, ., /, =, +, and -.
      * @minLength `1`
      * @maxLength `128`
-     * @pattern `\A(?!aws:)[a-zA-Z0-9+\-=\._\:\/@]+$`
+     * @pattern `^[a-zA-Z+-=._:/]+$`
      */
     Key: string;
     /**
      * The value for the tag. You can specify a value that is 0 to 256 Unicode characters in length and cannot be prefixed with aws:. You can use any of the following characters: the set of Unicode letters, digits, whitespace, _, ., /, =, +, and -.
      * @minLength `0`
      * @maxLength `256`
-     * @pattern `\A[a-zA-Z0-9+\-=\._\:\/@]+$`
+     * @pattern `^[A-Za-z0-9 _=@:.+-/]*$`
      */
     Value: string;
 };

package/lib/AWS-Location-PlaceIndex.d.ts

@@ -79,14 +79,14 @@ export type Tag = {
      * The key name of the tag. You can specify a value that is 1 to 128 Unicode characters in length and cannot be prefixed with aws:. You can use any of the following characters: the set of Unicode letters, digits, whitespace, _, ., /, =, +, and -.
      * @minLength `1`
      * @maxLength `128`
-     * @pattern `\A(?!aws:)[a-zA-Z0-9+\-=\._\:\/@]+$`
+     * @pattern `^[a-zA-Z+-=._:/]+$`
      */
     Key: string;
     /**
      * The value for the tag. You can specify a value that is 0 to 256 Unicode characters in length and cannot be prefixed with aws:. You can use any of the following characters: the set of Unicode letters, digits, whitespace, _, ., /, =, +, and -.
      * @minLength `0`
      * @maxLength `256`
-     * @pattern `\A[a-zA-Z0-9+\-=\._\:\/@]+$`
+     * @pattern `^[A-Za-z0-9 _=@:.+-/]*$`
      */
     Value: string;
 };

package/lib/AWS-Location-RouteCalculator.d.ts

@@ -66,14 +66,14 @@ export type Tag = {
      * The key name of the tag. You can specify a value that is 1 to 128 Unicode characters in length and cannot be prefixed with aws:. You can use any of the following characters: the set of Unicode letters, digits, whitespace, _, ., /, =, +, and -.
      * @minLength `1`
      * @maxLength `128`
-     * @pattern `\A(?!aws:)[a-zA-Z0-9+\-=\._\:\/@]+$`
+     * @pattern `^[a-zA-Z+-=._:/]+$`
      */
     Key: string;
     /**
      * The value for the tag. You can specify a value that is 0 to 256 Unicode characters in length and cannot be prefixed with aws:. You can use any of the following characters: the set of Unicode letters, digits, whitespace, _, ., /, =, +, and -.
      * @minLength `0`
      * @maxLength `256`
-     * @pattern `\A[a-zA-Z0-9+\-=\._\:\/@]+$`
+     * @pattern `^[A-Za-z0-9 _=@:.+-/]*$`
      */
     Value: string;
 };

package/lib/AWS-RedshiftServerless-Namespace.d.ts

@@ -6,7 +6,11 @@ import type { ResourceOptions as $ResourceOptions } from "@awboost/cfn-template-
  */
 export type RedshiftServerlessNamespaceProperties = {
     /**
-     * The password associated with the admin user for the namespace that is being created. Password must be at least 8 characters in length, should be any printable ASCII character. Must contain at least one lowercase letter, one uppercase letter and one decimal digit.
+     * The ID of the AWS Key Management Service (KMS) key used to encrypt and store the namespace's admin credentials secret. You can only use this parameter if manageAdminPassword is true.
+     */
+    AdminPasswordSecretKmsKeyId?: string;
+    /**
+     * The password associated with the admin user for the namespace that is being created. Password must be at least 8 characters in length, should be any printable ASCII character. Must contain at least one lowercase letter, one uppercase letter and one decimal digit. You can't use adminUserPassword if manageAdminPassword is true.
      * @minLength `8`
      * @maxLength `64`
      * @pattern `^(?=.*[a-z])(?=.*[A-Z])(?=.*\d)[^\x00-\x20\x22\x27\x2f\x40\x5c\x7f-\uffff]+`
@@ -51,6 +55,10 @@ export type RedshiftServerlessNamespaceProperties = {
      * @maxLength `16`
      */
     LogExports?: LogExport[];
+    /**
+     * If true, Amazon Redshift uses AWS Secrets Manager to manage the namespace's admin credentials. You can't use adminUserPassword if manageAdminPassword is true. If manageAdminPassword is false or not set, Amazon Redshift uses adminUserPassword for the admin user account's password.
+     */
+    ManageAdminPassword?: boolean;
     /**
      * A unique identifier for the namespace. You use this identifier to refer to the namespace for any subsequent namespace operations such as deleting or modifying. All alphabetical characters must be lower case. Namespace name should be unique for all namespaces within an AWS account.
      * @minLength `3`
@@ -58,6 +66,14 @@ export type RedshiftServerlessNamespaceProperties = {
      * @pattern `^[a-z0-9-]+$`
      */
     NamespaceName: string;
+    /**
+     * The resource policy document that will be attached to the namespace.
+     */
+    NamespaceResourcePolicy?: Record<string, any>;
+    /**
+     * The ARN for the Redshift application that integrates with IAM Identity Center.
+     */
+    RedshiftIdcApplicationArn?: string;
     /**
      * The list of tags for the namespace.
      * @minLength `0`
@@ -70,7 +86,12 @@ export type RedshiftServerlessNamespaceProperties = {
  * @see {@link https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-redshiftserverless-namespace.html#aws-resource-redshiftserverless-namespace-return-values}
  */
 export type RedshiftServerlessNamespaceAttributes = {
+    /**
+     * Definition of Namespace resource.
+     */
     Namespace: {
+        AdminPasswordSecretArn: string;
+        AdminPasswordSecretKmsKeyId: string;
         AdminUsername: string;
         CreationDate: string;
         /**
@@ -101,6 +122,14 @@ export type RedshiftServerlessNamespaceAttributes = {
  * @see {@link https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-redshiftserverless-namespace-logexport.html}
  */
 export type LogExport = "useractivitylog" | "userlog" | "connectionlog";
+/**
+ * Type definition for `AWS::RedshiftServerless::Namespace.Namespace`.
+ * @see {@link https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-redshiftserverless-namespace-namespace.html}
+ */
+export type Namespace = {
+    AdminPasswordSecretArn?: string;
+    AdminPasswordSecretKmsKeyId?: string;
+};
 /**
  * Type definition for `AWS::RedshiftServerless::Namespace.NamespaceStatus`.
  * @see {@link https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-redshiftserverless-namespace-namespacestatus.html}

package/lib/AWS-SSM-Parameter.d.ts

@@ -1,49 +1,59 @@
 import { Resource as $Resource } from "@awboost/cfn-template-builder/template/resource";
 import type { ResourceOptions as $ResourceOptions } from "@awboost/cfn-template-builder/template";
 /**
- * Resource Type definition for AWS::SSM::Parameter
+ * The ``AWS::SSM::Parameter`` resource creates an SSM parameter in SYSlong Parameter Store.
+  To create an SSM parameter, you must have the IAMlong (IAM) permissions ``ssm:PutParameter`` and ``ssm:AddTagsToResource``. On stack creation, CFNlong adds the following three tags to the parameter: ``aws:cloudformation:stack-name``, ``aws:cloudformation:logical-id``, and ``aws:cloudformation:stack-id``, in addition to any custom tags you specify.
+ To add, update, or remove tags during stack update, you must have IAM permissions for both ``ssm:AddTagsToResource`` and ``ssm:RemoveTagsFromResource``. For more information, see [Managing Access Using Policies](https://docs.aws.amazon.com/systems-manager/latest/userguide/security-iam.html#security_iam_access-manage) in the *User Guide*.
+  For information about valid values for parameters, see [Requirements and Constraints for Parameter Names](https://docs.aws.amazon.com/systems-manager/latest/userguide/sysman-paramstore-su-create.html#sysman-paramete
  * @see {@link https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ssm-parameter.html}
  */
 export type SSMParameterProperties = {
     /**
-     * The regular expression used to validate the parameter value.
+     * A regular expression used to validate the parameter value. For example, for String types with values restricted to numbers, you can specify the following: ``AllowedPattern=^\d+$``
      */
     AllowedPattern?: string;
     /**
-     * The corresponding DataType of the parameter.
+     * The data type of the parameter, such as ``text`` or ``aws:ec2:image``. The default is ``text``.
      */
     DataType?: "text" | "aws:ec2:image";
     /**
-     * The information about the parameter.
+     * Information about the parameter.
      */
     Description?: string;
     /**
-     * The name of the parameter.
-     */
+       * The name of the parameter.
+       The maximum length constraint listed below includes capacity for additional system attributes that aren't part of the name. The maximum length for a parameter name, including the full length of the parameter ARN, is 1011 characters. For example, the length of the following parameter name is 65 characters, not 20 characters: ``arn:aws:ssm:us-east-2:111222333444:parameter/ExampleParameterName``
+       */
     Name?: string;
     /**
-     * The policies attached to the parameter.
-     */
+       * Information about the policies assigned to a parameter.
+        [Assigning parameter policies](https://docs.aws.amazon.com/systems-manager/latest/userguide/parameter-store-policies.html) in the *User Guide*.
+       */
     Policies?: string;
     /**
-     * A key-value pair to associate with a resource.
+     * Optional metadata that you assign to a resource in the form of an arbitrary set of tags (key-value pairs). Tags enable you to categorize a resource in different ways, such as by purpose, owner, or environment. For example, you might want to tag a SYS parameter to identify the type of resource to which it applies, the environment, or the type of configuration data referenced by the parameter.
      */
     Tags?: Record<string, string>;
     /**
-     * The corresponding tier of the parameter.
+     * The parameter tier.
      */
     Tier?: "Standard" | "Advanced" | "Intelligent-Tiering";
     /**
-     * The type of the parameter.
-     */
-    Type: "String" | "StringList" | "SecureString";
+       * The type of parameter.
+        Although ``SecureString`` is included in the list of valid values, CFNlong does *not* currently support creating a ``SecureString`` parameter type.
+       */
+    Type: "String" | "StringList";
     /**
-     * The value associated with the parameter.
-     */
+       * The parameter value.
+        If type is ``StringList``, the system returns a comma-separated string with no spaces between commas in the ``Value`` field.
+       */
     Value: string;
 };
 /**
- * Resource Type definition for AWS::SSM::Parameter
+ * The ``AWS::SSM::Parameter`` resource creates an SSM parameter in SYSlong Parameter Store.
+  To create an SSM parameter, you must have the IAMlong (IAM) permissions ``ssm:PutParameter`` and ``ssm:AddTagsToResource``. On stack creation, CFNlong adds the following three tags to the parameter: ``aws:cloudformation:stack-name``, ``aws:cloudformation:logical-id``, and ``aws:cloudformation:stack-id``, in addition to any custom tags you specify.
+ To add, update, or remove tags during stack update, you must have IAM permissions for both ``ssm:AddTagsToResource`` and ``ssm:RemoveTagsFromResource``. For more information, see [Managing Access Using Policies](https://docs.aws.amazon.com/systems-manager/latest/userguide/security-iam.html#security_iam_access-manage) in the *User Guide*.
+  For information about valid values for parameters, see [Requirements and Constraints for Parameter Names](https://docs.aws.amazon.com/systems-manager/latest/userguide/sysman-paramstore-su-create.html#sysman-paramete
  * @see {@link https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ssm-parameter.html}
  */
 export declare class SSMParameter extends $Resource<"AWS::SSM::Parameter", SSMParameterProperties, Record<string, never>> {

package/lib/AWS-SSM-Parameter.js

@@ -1,6 +1,9 @@
 import { Resource as $Resource } from "@awboost/cfn-template-builder/template/resource";
 /**
- * Resource Type definition for AWS::SSM::Parameter
+ * The ``AWS::SSM::Parameter`` resource creates an SSM parameter in SYSlong Parameter Store.
+  To create an SSM parameter, you must have the IAMlong (IAM) permissions ``ssm:PutParameter`` and ``ssm:AddTagsToResource``. On stack creation, CFNlong adds the following three tags to the parameter: ``aws:cloudformation:stack-name``, ``aws:cloudformation:logical-id``, and ``aws:cloudformation:stack-id``, in addition to any custom tags you specify.
+ To add, update, or remove tags during stack update, you must have IAM permissions for both ``ssm:AddTagsToResource`` and ``ssm:RemoveTagsFromResource``. For more information, see [Managing Access Using Policies](https://docs.aws.amazon.com/systems-manager/latest/userguide/security-iam.html#security_iam_access-manage) in the *User Guide*.
+  For information about valid values for parameters, see [Requirements and Constraints for Parameter Names](https://docs.aws.amazon.com/systems-manager/latest/userguide/sysman-paramstore-su-create.html#sysman-paramete
  * @see {@link https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ssm-parameter.html}
  */
 export class SSMParameter extends $Resource {

package/lib/AWS-SecurityHub-AutomationRule.d.ts

@@ -1,9 +1,7 @@
 import { Resource as $Resource } from "@awboost/cfn-template-builder/template/resource";
 import type { ResourceOptions as $ResourceOptions } from "@awboost/cfn-template-builder/template";
 /**
- * The AWS::SecurityHub::AutomationRule resource represents the Automation Rule in your account. One rule resource is created for each Automation Rule in which you configure rule criteria and actions.
-
-
+ * The ``AWS::SecurityHub::AutomationRule`` resource specifies an automation rule based on input parameters. For more information, see [Automation rules](https://docs.aws.amazon.com/securityhub/latest/userguide/automation-rules.html) in the *User Guide*.
  * @see {@link https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-securityhub-automationrule.html}
  */
 export type SecurityHubAutomationRuleProperties = {
@@ -13,33 +11,27 @@ export type SecurityHubAutomationRuleProperties = {
      */
     Actions?: AutomationRulesAction[];
     /**
-     * The rule criteria for evaluating findings
+     * A set of [Security Finding Format (ASFF)](https://docs.aws.amazon.com/securityhub/latest/userguide/securityhub-findings-format.html) finding field attributes and corresponding expected values that ASH uses to filter findings. If a rule is enabled and a finding matches the criteria specified in this parameter, ASH applies the rule action to the finding.
      */
     Criteria?: AutomationRulesFindingFilters;
     /**
-     * Rule description
      * @minLength `1`
      * @maxLength `1024`
      */
     Description?: string;
-    /**
-     * If Rule is a terminal rule
-     */
     IsTerminal?: boolean;
     /**
-     * Rule name
      * @minLength `1`
      * @maxLength `256`
      */
     RuleName?: string;
     /**
-     * Rule order value
      * @min `1`
      * @max `1000`
      */
     RuleOrder?: number;
     /**
-     * Status of the Rule upon creation
+     * Whether the rule is active after it is created. If this parameter is equal to ``ENABLED``, ASH applies the rule to findings and finding updates after the rule is created.
      */
     RuleStatus?: "ENABLED" | "DISABLED";
     /**
@@ -53,29 +45,28 @@ export type SecurityHubAutomationRuleProperties = {
  */
 export type SecurityHubAutomationRuleAttributes = {
     /**
-     * The date and time when Automation Rule was created
+     * The date and time, in UTC and ISO 8601 format.
      * @pattern `^(\d\d\d\d)-([0][1-9]|[1][0-2])-([0][1-9]|[1-2](\d)|[3][0-1])[T](?:([0-1](\d)|[2][0-3]):[0-5](\d):[0-5](\d)|23:59:60)(?:\.(\d)+)?([Z]|[+-](\d\d)(:?(\d\d))?)$`
      */
     CreatedAt: string;
     /**
-     * The identifier by which created the rule
      * @minLength `1`
      * @maxLength `256`
      */
     CreatedBy: string;
     /**
-     * An Automation Rule Arn is automatically created
      * @pattern `arn:aws\S*:securityhub:\S*`
      */
     RuleArn: string;
     /**
-     * The date and time when Automation Rule was last updated
+     * The date and time, in UTC and ISO 8601 format.
      * @pattern `^(\d\d\d\d)-([0][1-9]|[1][0-2])-([0][1-9]|[1-2](\d)|[3][0-1])[T](?:([0-1](\d)|[2][0-3]):[0-5](\d):[0-5](\d)|23:59:60)(?:\.(\d)+)?([Z]|[+-](\d\d)(:?(\d\d))?)$`
      */
     UpdatedAt: string;
 };
 /**
  * Type definition for `AWS::SecurityHub::AutomationRule.arnOrId`.
+ * The Amazon Resource Name (ARN) or Id of the automation rule.
  * @see {@link https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-securityhub-automationrule-arnorid.html}
  */
 export type arnOrId = string | string;
@@ -84,45 +75,55 @@ export type arnOrId = string | string;
  * @see {@link https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-securityhub-automationrule-automationrulesaction.html}
  */
 export type AutomationRulesAction = {
+    /**
+     * The rule action will update the ``Note`` field of a finding.
+     */
     FindingFieldsUpdate: AutomationRulesFindingFieldsUpdate;
     Type: "FINDING_FIELDS_UPDATE";
 };
 /**
  * Type definition for `AWS::SecurityHub::AutomationRule.AutomationRulesFindingFieldsUpdate`.
+ * The rule action will update the ``Note`` field of a finding.
  * @see {@link https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-securityhub-automationrule-automationrulesfindingfieldsupdate.html}
  */
 export type AutomationRulesFindingFieldsUpdate = {
     /**
+     * Integer from 0 to 100.
      * @min `0`
      * @max `100`
      */
     Confidence?: number;
     /**
+     * Integer from 0 to 100.
      * @min `0`
      * @max `100`
      */
     Criticality?: number;
     /**
-     * Note added to the finding
+     * The rule action will update the ``Note`` field of a finding.
      */
     Note?: NoteUpdate;
     /**
+     * The rule action will update the ``RelatedFindings`` field of a finding.
      * @minLength `1`
      * @maxLength `10`
      */
     RelatedFindings?: RelatedFinding[];
     /**
-     * Severity of the finding
+     * The rule action will update the ``Severity`` field of a finding.
      */
     Severity?: SeverityUpdate;
     /**
      * @maxLength `50`
      */
     Types?: string[];
+    /**
+     * An object of user-defined name and value string pair added to a finding.
+     */
     UserDefinedFields?: map;
     VerificationState?: "UNKNOWN" | "TRUE_POSITIVE" | "FALSE_POSITIVE" | "BENIGN_POSITIVE";
     /**
-     * Workflow status set for the finding
+     * The rule action will update the ``Workflow`` field of a finding.
      */
     Workflow?: WorkflowUpdate;
 };
@@ -279,10 +280,12 @@ export type AutomationRulesFindingFilters = {
 export type DateFilter = {
     DateRange?: DateRange;
     /**
+     * The date and time, in UTC and ISO 8601 format.
      * @pattern `^(\d\d\d\d)-([0][1-9]|[1][0-2])-([0][1-9]|[1-2](\d)|[3][0-1])[T](?:([0-1](\d)|[2][0-3]):[0-5](\d):[0-5](\d)|23:59:60)(?:\.(\d)+)?([Z]|[+-](\d\d)(:?(\d\d))?)$`
      */
     End?: string;
     /**
+     * The date and time, in UTC and ISO 8601 format.
      * @pattern `^(\d\d\d\d)-([0][1-9]|[1][0-2])-([0][1-9]|[1-2](\d)|[3][0-1])[T](?:([0-1](\d)|[2][0-3]):[0-5](\d):[0-5](\d)|23:59:60)(?:\.(\d)+)?([Z]|[+-](\d\d)(:?(\d\d))?)$`
      */
     Start?: string;
@@ -297,6 +300,7 @@ export type DateRange = {
 };
 /**
  * Type definition for `AWS::SecurityHub::AutomationRule.map`.
+ * An object of user-defined name and value string pair added to a finding.
  * @see {@link https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-securityhub-automationrule-map.html}
  */
 export type map = Record<string, string>;
@@ -319,6 +323,9 @@ export type NoteUpdate = {
      * @maxLength `512`
      */
     Text: string;
+    /**
+     * The Amazon Resource Name (ARN) or Id of the automation rule.
+     */
     UpdatedBy: arnOrId;
 };
 /**
@@ -332,11 +339,16 @@ export type NumberFilter = {
 };
 /**
  * Type definition for `AWS::SecurityHub::AutomationRule.RelatedFinding`.
+ * Provides details about a list of findings that the current finding relates to.
  * @see {@link https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-securityhub-automationrule-relatedfinding.html}
  */
 export type RelatedFinding = {
+    /**
+     * The Amazon Resource Name (ARN) or Id of the automation rule.
+     */
     Id: arnOrId;
     /**
+     * The Amazon Resource Name (ARN) for the product that generated a related finding.
      * @minLength `12`
      * @maxLength `2048`
      * @pattern `^arn:(aws|aws-cn|aws-us-gov|aws-iso-?[a-z]{0,2}):[A-Za-z0-9]{1,63}:[a-z]+-([a-z]{1,10}-)?[a-z]+-[0-9]+:([0-9]{12})?:.+$`
@@ -350,6 +362,7 @@ export type RelatedFinding = {
 export type SeverityUpdate = {
     Label?: "INFORMATIONAL" | "LOW" | "MEDIUM" | "HIGH" | "CRITICAL";
     /**
+     * Integer from 0 to 100.
      * @min `0`
      * @max `100`
      */
@@ -361,11 +374,15 @@ export type SeverityUpdate = {
  * @see {@link https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-securityhub-automationrule-stringfilter.html}
  */
 export type StringFilter = {
+    /**
+     * The condition to apply to a string value when filtering Security Hub findings.
+     */
     Comparison: StringFilterComparison;
     Value: string;
 };
 /**
  * Type definition for `AWS::SecurityHub::AutomationRule.StringFilterComparison`.
+ * The condition to apply to a string value when filtering Security Hub findings.
  * @see {@link https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-securityhub-automationrule-stringfiltercomparison.html}
  */
 export type StringFilterComparison = "EQUALS" | "PREFIX" | "NOT_EQUALS" | "PREFIX_NOT_EQUALS" | "CONTAINS" | "NOT_CONTAINS";
@@ -383,9 +400,7 @@ export type WorkflowUpdate = {
     Status: "NEW" | "NOTIFIED" | "RESOLVED" | "SUPPRESSED";
 };
 /**
- * The AWS::SecurityHub::AutomationRule resource represents the Automation Rule in your account. One rule resource is created for each Automation Rule in which you configure rule criteria and actions.
-
-
+ * The ``AWS::SecurityHub::AutomationRule`` resource specifies an automation rule based on input parameters. For more information, see [Automation rules](https://docs.aws.amazon.com/securityhub/latest/userguide/automation-rules.html) in the *User Guide*.
  * @see {@link https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-securityhub-automationrule.html}
  */
 export declare class SecurityHubAutomationRule extends $Resource<"AWS::SecurityHub::AutomationRule", SecurityHubAutomationRuleProperties, SecurityHubAutomationRuleAttributes> {

package/lib/AWS-SecurityHub-AutomationRule.js

@@ -1,8 +1,6 @@
 import { Resource as $Resource } from "@awboost/cfn-template-builder/template/resource";
 /**
- * The AWS::SecurityHub::AutomationRule resource represents the Automation Rule in your account. One rule resource is created for each Automation Rule in which you configure rule criteria and actions.
-
-
+ * The ``AWS::SecurityHub::AutomationRule`` resource specifies an automation rule based on input parameters. For more information, see [Automation rules](https://docs.aws.amazon.com/securityhub/latest/userguide/automation-rules.html) in the *User Guide*.
  * @see {@link https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-securityhub-automationrule.html}
  */
 export class SecurityHubAutomationRule extends $Resource {

package/lib/AWS-SecurityHub-Standard.d.ts

@@ -1,18 +1,21 @@
 import { Resource as $Resource } from "@awboost/cfn-template-builder/template/resource";
 import type { ResourceOptions as $ResourceOptions } from "@awboost/cfn-template-builder/template";
 /**
- * The AWS::SecurityHub::Standard resource represents the implementation of an individual AWS Security Hub Standard in your account. It requires you have SecurityHub enabled before you can enable the Standard.
+ * The ``AWS::SecurityHub::Standard`` resource specifies the enablement of a security standard. The standard is identified by the ``StandardsArn`` property. To view a list of ASH standards and their Amazon Resource Names (ARNs), use the [DescribeStandards](https://docs.aws.amazon.com/securityhub/1.0/APIReference/API_DescribeStandards.html) API operation.
+ You must create a separate ``AWS::SecurityHub::Standard`` resource for each standard that you want to enable.
+ For more information about ASH standards, see [standards reference](https://docs.aws.amazon.com/securityhub/latest/userguide/standards-reference.html) in the *User Guide*.
  * @see {@link https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-securityhub-standard.html}
  */
 export type SecurityHubStandardProperties = {
     /**
-     * StandardsControls to disable from this Standard.
+     * Specifies which controls are to be disabled in a standard.
+     *Maximum*: ``100``
      * @minLength `0`
      * @maxLength `100`
      */
     DisabledStandardsControls?: StandardsControl[];
     /**
-     * The ARN of the Standard being enabled
+     * The ARN of the standard that you want to enable. To view a list of available ASH standards and their ARNs, use the [DescribeStandards](https://docs.aws.amazon.com/securityhub/1.0/APIReference/API_DescribeStandards.html) API operation.
      * @pattern `arn:aws\S*:securityhub:\S`
      */
     StandardsArn: string;
@@ -23,29 +26,30 @@ export type SecurityHubStandardProperties = {
  */
 export type SecurityHubStandardAttributes = {
     /**
-     * The ARN of the StandardsSubscription for the account ID, region, and Standard.
      * @pattern `arn:aws\S*:securityhub:\S*`
      */
     StandardsSubscriptionArn: string;
 };
 /**
  * Type definition for `AWS::SecurityHub::Standard.StandardsControl`.
- * An individual StandardsControl within the Standard.
+ * Provides details about an individual security control. For a list of ASH controls, see [controls reference](https://docs.aws.amazon.com/securityhub/latest/userguide/securityhub-controls-reference.html) in the *User Guide*.
  * @see {@link https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-securityhub-standard-standardscontrol.html}
  */
 export type StandardsControl = {
     /**
-     * the reason the standard control is disabled
+     * A user-defined reason for changing a control's enablement status in a specified standard. If you are disabling a control, then this property is required.
      */
     Reason?: string;
     /**
-     * the Arn for the standard control.
+     * The Amazon Resource Name (ARN) of the control.
      * @pattern `arn:aws\S*:securityhub:\S*`
      */
     StandardsControlArn: string;
 };
 /**
- * The AWS::SecurityHub::Standard resource represents the implementation of an individual AWS Security Hub Standard in your account. It requires you have SecurityHub enabled before you can enable the Standard.
+ * The ``AWS::SecurityHub::Standard`` resource specifies the enablement of a security standard. The standard is identified by the ``StandardsArn`` property. To view a list of ASH standards and their Amazon Resource Names (ARNs), use the [DescribeStandards](https://docs.aws.amazon.com/securityhub/1.0/APIReference/API_DescribeStandards.html) API operation.
+ You must create a separate ``AWS::SecurityHub::Standard`` resource for each standard that you want to enable.
+ For more information about ASH standards, see [standards reference](https://docs.aws.amazon.com/securityhub/latest/userguide/standards-reference.html) in the *User Guide*.
  * @see {@link https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-securityhub-standard.html}
  */
 export declare class SecurityHubStandard extends $Resource<"AWS::SecurityHub::Standard", SecurityHubStandardProperties, SecurityHubStandardAttributes> {

package/lib/AWS-SecurityHub-Standard.js

@@ -1,6 +1,8 @@
 import { Resource as $Resource } from "@awboost/cfn-template-builder/template/resource";
 /**
- * The AWS::SecurityHub::Standard resource represents the implementation of an individual AWS Security Hub Standard in your account. It requires you have SecurityHub enabled before you can enable the Standard.
+ * The ``AWS::SecurityHub::Standard`` resource specifies the enablement of a security standard. The standard is identified by the ``StandardsArn`` property. To view a list of ASH standards and their Amazon Resource Names (ARNs), use the [DescribeStandards](https://docs.aws.amazon.com/securityhub/1.0/APIReference/API_DescribeStandards.html) API operation.
+ You must create a separate ``AWS::SecurityHub::Standard`` resource for each standard that you want to enable.
+ For more information about ASH standards, see [standards reference](https://docs.aws.amazon.com/securityhub/latest/userguide/standards-reference.html) in the *User Guide*.
  * @see {@link https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-securityhub-standard.html}
  */
 export class SecurityHubStandard extends $Resource {

package/package.json

@@ -1,6 +1,6 @@
 {
   "name": "@awboost/cfn-resource-types",
-  "version": "0.1.17",
+  "version": "0.1.19",
   "publishConfig": {
     "access": "public"
   },