@awboost/cfn-resource-types 0.1.18 → 0.1.20

package/lib/AWS-ACMPCA-Certificate.d.ts

@@ -1,39 +1,43 @@
 import { Resource as $Resource } from "@awboost/cfn-template-builder/template/resource";
 import type { ResourceOptions as $ResourceOptions } from "@awboost/cfn-template-builder/template";
 /**
- * Resource type definition for `AWS::ACMPCA::Certificate`.
- * A certificate issued via a private certificate authority
+ * The ``AWS::ACMPCA::Certificate`` resource is used to issue a certificate using your private certificate authority. For more information, see the [IssueCertificate](https://docs.aws.amazon.com/privateca/latest/APIReference/API_IssueCertificate.html) action.
  * @see {@link https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-acmpca-certificate.html}
  */
 export type ACMPCACertificateProperties = {
     /**
-     * These are fields to be overridden in a certificate at the time of issuance. These requires an API_Passthrough template be used or they will be ignored.
+     * Specifies X.509 certificate information to be included in the issued certificate. An ``APIPassthrough`` or ``APICSRPassthrough`` template variant must be selected, or else this parameter is ignored.
      */
     ApiPassthrough?: ApiPassthrough;
     /**
-     * The Amazon Resource Name (ARN) for the private CA to issue the certificate.
+     * The Amazon Resource Name (ARN) for the private CA issues the certificate.
      */
     CertificateAuthorityArn: string;
     /**
-     * The certificate signing request (CSR) for the Certificate.
+     * The certificate signing request (CSR) for the certificate.
      * @minLength `1`
      */
     CertificateSigningRequest: string;
     /**
-     * The name of the algorithm that will be used to sign the Certificate.
-     */
+       * The name of the algorithm that will be used to sign the certificate to be issued.
+       This parameter should not be confused with the ``SigningAlgorithm`` parameter used to sign a CSR in the ``CreateCertificateAuthority`` action.
+        The specified signing algorithm family (RSA or ECDSA) must match the algorithm family of the CA's secret key.
+       */
     SigningAlgorithm: string;
     /**
-     * Specifies a custom configuration template to use when issuing a certificate. If this parameter is not provided, ACM Private CA defaults to the EndEntityCertificate/V1 template.
+     * Specifies a custom configuration template to use when issuing a certificate. If this parameter is not provided, PCAshort defaults to the ``EndEntityCertificate/V1`` template. For more information about PCAshort templates, see [Using Templates](https://docs.aws.amazon.com/privateca/latest/userguide/UsingTemplates.html).
      */
     TemplateArn?: string;
     /**
-     * The time before which the Certificate will be valid.
+     * The period of time during which the certificate will be valid.
      */
     Validity: Validity;
     /**
-     * The time after which the Certificate will be valid.
-     */
+       * Information describing the start of the validity period of the certificate. This parameter sets the “Not Before" date for the certificate.
+       By default, when issuing a certificate, PCAshort sets the "Not Before" date to the issuance time minus 60 minutes. This compensates for clock inconsistencies across computer systems. The ``ValidityNotBefore`` parameter can be used to customize the “Not Before” value.
+       Unlike the ``Validity`` parameter, the ``ValidityNotBefore`` parameter is optional.
+       The ``ValidityNotBefore`` value is expressed as an explicit date and time, using the ``Validity`` type value ``ABSOLUTE``.
+       */
     ValidityNotBefore?: Validity;
 };
 /**
@@ -41,33 +45,26 @@ export type ACMPCACertificateProperties = {
  * @see {@link https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-acmpca-certificate.html#aws-resource-acmpca-certificate-return-values}
  */
 export type ACMPCACertificateAttributes = {
-    /**
-     * The ARN of the issued certificate.
-     */
     Arn: string;
-    /**
-     * The issued certificate in base 64 PEM-encoded format.
-     */
     Certificate: string;
 };
 /**
  * Type definition for `AWS::ACMPCA::Certificate.ApiPassthrough`.
- * Structure that specifies fields to be overridden in a certificate at the time of issuance. These requires an API Passthrough template be used or they will be ignored.
+ * Contains information about the certificate subject. The Subject field in the certificate identifies the entity that owns or controls the public key in the certificate. The entity can be a user, computer, device, or service. The Subject must contain an X.500 distinguished name (DN). A DN is a sequence of relative distinguished names (RDNs). The RDNs are separated by commas in the certificate.
  * @see {@link https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-acmpca-certificate-apipassthrough.html}
  */
 export type ApiPassthrough = {
     /**
-     * Structure that contains X.500 extensions for a Certificate.
+     * Defines one or more purposes for which the key contained in the certificate can be used. Default value for each option is false.
      */
     Extensions?: Extensions;
     /**
-     * Structure that contains X.500 distinguished name information.
+     * Contains information about the certificate subject. The Subject field in the certificate identifies the entity that owns or controls the public key in the certificate. The entity can be a user, computer, device, or service. The Subject must contain an X.500 distinguished name (DN). A DN is a sequence of relative distinguished names (RDNs). The RDNs are separated by commas in the certificate.
      */
     Subject?: Subject;
 };
 /**
  * Type definition for `AWS::ACMPCA::Certificate.CustomAttribute`.
- * Structure that contains X.500 attribute type and value.
  * @see {@link https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-acmpca-certificate-customattribute.html}
  */
 export type CustomAttribute = {
@@ -79,7 +76,6 @@ export type CustomAttribute = {
 };
 /**
  * Type definition for `AWS::ACMPCA::Certificate.CustomExtension`.
- * Structure that contains X.509 extension information for a certificate.
  * @see {@link https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-acmpca-certificate-customextension.html}
  */
 export type CustomExtension = {
@@ -92,7 +88,6 @@ export type CustomExtension = {
 };
 /**
  * Type definition for `AWS::ACMPCA::Certificate.EdiPartyName`.
- * Structure that contains X.509 EdiPartyName information.
  * @see {@link https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-acmpca-certificate-edipartyname.html}
  */
 export type EdiPartyName = {
@@ -101,7 +96,6 @@ export type EdiPartyName = {
 };
 /**
  * Type definition for `AWS::ACMPCA::Certificate.ExtendedKeyUsage`.
- * Structure that contains X.509 ExtendedKeyUsage information.
  * @see {@link https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-acmpca-certificate-extendedkeyusage.html}
  */
 export type ExtendedKeyUsage = {
@@ -113,7 +107,7 @@ export type ExtendedKeyUsage = {
 };
 /**
  * Type definition for `AWS::ACMPCA::Certificate.Extensions`.
- * Structure that contains X.500 extensions for a Certificate.
+ * Defines one or more purposes for which the key contained in the certificate can be used. Default value for each option is false.
  * @see {@link https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-acmpca-certificate-extensions.html}
  */
 export type Extensions = {
@@ -124,36 +118,30 @@ export type Extensions = {
     CustomExtensions?: CustomExtension[];
     ExtendedKeyUsage?: ExtendedKeyUsage[];
     /**
-     * Structure that contains X.509 KeyUsage information.
+     * Defines one or more purposes for which the key contained in the certificate can be used. Default value for each option is false.
      */
     KeyUsage?: KeyUsage;
     SubjectAlternativeNames?: GeneralName[];
 };
 /**
  * Type definition for `AWS::ACMPCA::Certificate.GeneralName`.
- * Structure that contains X.509 GeneralName information. Assign one and ONLY one field.
+ * Contains information about the certificate subject. The certificate can be one issued by your private certificate authority (CA) or it can be your private CA certificate. The Subject field in the certificate identifies the entity that owns or controls the public key in the certificate. The entity can be a user, computer, device, or service. The Subject must contain an X.500 distinguished name (DN). A DN is a sequence of relative distinguished names (RDNs). The RDNs are separated by commas in the certificate. The DN must be unique for each entity, but your private CA can issue more than one certificate with the same DN to the same entity.
  * @see {@link https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-acmpca-certificate-generalname.html}
  */
 export type GeneralName = {
     /**
-     * Structure that contains X.500 distinguished name information.
+     * Contains information about the certificate subject. The certificate can be one issued by your private certificate authority (CA) or it can be your private CA certificate. The Subject field in the certificate identifies the entity that owns or controls the public key in the certificate. The entity can be a user, computer, device, or service. The Subject must contain an X.500 distinguished name (DN). A DN is a sequence of relative distinguished names (RDNs). The RDNs are separated by commas in the certificate. The DN must be unique for each entity, but your private CA can issue more than one certificate with the same DN to the same entity.
      */
     DirectoryName?: Subject;
     /**
      * String that contains X.509 DnsName information.
      */
     DnsName?: string;
-    /**
-     * Structure that contains X.509 EdiPartyName information.
-     */
     EdiPartyName?: EdiPartyName;
     /**
      * String that contains X.509 IpAddress information.
      */
     IpAddress?: string;
-    /**
-     * Structure that contains X.509 OtherName information.
-     */
     OtherName?: OtherName;
     /**
      * String that contains X.509 ObjectIdentifier information.
@@ -170,7 +158,6 @@ export type GeneralName = {
 };
 /**
  * Type definition for `AWS::ACMPCA::Certificate.KeyUsage`.
- * Structure that contains X.509 KeyUsage information.
  * @see {@link https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-acmpca-certificate-keyusage.html}
  */
 export type KeyUsage = {
@@ -186,7 +173,6 @@ export type KeyUsage = {
 };
 /**
  * Type definition for `AWS::ACMPCA::Certificate.OtherName`.
- * Structure that contains X.509 OtherName information.
  * @see {@link https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-acmpca-certificate-othername.html}
  */
 export type OtherName = {
@@ -198,7 +184,6 @@ export type OtherName = {
 };
 /**
  * Type definition for `AWS::ACMPCA::Certificate.PolicyInformation`.
- * Structure that contains X.509 Policy information.
  * @see {@link https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-acmpca-certificate-policyinformation.html}
  */
 export type PolicyInformation = {
@@ -210,19 +195,14 @@ export type PolicyInformation = {
 };
 /**
  * Type definition for `AWS::ACMPCA::Certificate.PolicyQualifierInfo`.
- * Structure that contains X.509 Policy qualifier information.
  * @see {@link https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-acmpca-certificate-policyqualifierinfo.html}
  */
 export type PolicyQualifierInfo = {
     PolicyQualifierId: string;
-    /**
-     * Structure that contains a X.509 policy qualifier.
-     */
     Qualifier: Qualifier;
 };
 /**
  * Type definition for `AWS::ACMPCA::Certificate.Qualifier`.
- * Structure that contains a X.509 policy qualifier.
  * @see {@link https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-acmpca-certificate-qualifier.html}
  */
 export type Qualifier = {
@@ -230,41 +210,89 @@ export type Qualifier = {
 };
 /**
  * Type definition for `AWS::ACMPCA::Certificate.Subject`.
- * Structure that contains X.500 distinguished name information.
+ * Contains information about the certificate subject. The ``Subject`` field in the certificate identifies the entity that owns or controls the public key in the certificate. The entity can be a user, computer, device, or service. The ``Subject``must contain an X.500 distinguished name (DN). A DN is a sequence of relative distinguished names (RDNs). The RDNs are separated by commas in the certificate.
  * @see {@link https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-acmpca-certificate-subject.html}
  */
 export type Subject = {
+    /**
+       * For CA and end-entity certificates in a private PKI, the common name (CN) can be any string within the length limit.
+       Note: In publicly trusted certificates, the common name must be a fully qualified domain name (FQDN) associated with the certificate subject.
+       */
     CommonName?: string;
+    /**
+     * Two-digit code that specifies the country in which the certificate subject located.
+     */
     Country?: string;
     /**
      * Array of X.500 attribute type and value. CustomAttributes cannot be used along with pre-defined attributes.
      */
     CustomAttributes?: CustomAttribute[];
+    /**
+     * Disambiguating information for the certificate subject.
+     */
     DistinguishedNameQualifier?: string;
+    /**
+     * Typically a qualifier appended to the name of an individual. Examples include Jr. for junior, Sr. for senior, and III for third.
+     */
     GenerationQualifier?: string;
+    /**
+     * First name.
+     */
     GivenName?: string;
+    /**
+     * Concatenation that typically contains the first letter of the *GivenName*, the first letter of the middle name if one exists, and the first letter of the *Surname*.
+     */
     Initials?: string;
+    /**
+     * The locality (such as a city or town) in which the certificate subject is located.
+     */
     Locality?: string;
+    /**
+     * Legal name of the organization with which the certificate subject is affiliated.
+     */
     Organization?: string;
+    /**
+     * A subdivision or unit of the organization (such as sales or finance) with which the certificate subject is affiliated.
+     */
     OrganizationalUnit?: string;
+    /**
+     * Typically a shortened version of a longer *GivenName*. For example, Jonathan is often shortened to John. Elizabeth is often shortened to Beth, Liz, or Eliza.
+     */
     Pseudonym?: string;
+    /**
+     * The certificate serial number.
+     */
     SerialNumber?: string;
+    /**
+     * State in which the subject of the certificate is located.
+     */
     State?: string;
+    /**
+     * Family name. In the US and the UK, for example, the surname of an individual is ordered last. In Asian cultures the surname is typically ordered first.
+     */
     Surname?: string;
+    /**
+     * A title such as Mr. or Ms., which is pre-pended to the name to refer formally to the certificate subject.
+     */
     Title?: string;
 };
 /**
  * Type definition for `AWS::ACMPCA::Certificate.Validity`.
- * Validity for a certificate.
+ * Length of time for which the certificate issued by your private certificate authority (CA), or by the private CA itself, is valid in days, months, or years. You can issue a certificate by calling the ``IssueCertificate`` operation.
  * @see {@link https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-acmpca-certificate-validity.html}
  */
 export type Validity = {
+    /**
+     * Specifies whether the ``Value`` parameter represents days, months, or years.
+     */
     Type: string;
+    /**
+     * Time period.
+     */
     Value: number;
 };
 /**
- * Resource type definition for `AWS::ACMPCA::Certificate`.
- * A certificate issued via a private certificate authority
+ * The ``AWS::ACMPCA::Certificate`` resource is used to issue a certificate using your private certificate authority. For more information, see the [IssueCertificate](https://docs.aws.amazon.com/privateca/latest/APIReference/API_IssueCertificate.html) action.
  * @see {@link https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-acmpca-certificate.html}
  */
 export declare class ACMPCACertificate extends $Resource<"AWS::ACMPCA::Certificate", ACMPCACertificateProperties, ACMPCACertificateAttributes> {

package/lib/AWS-ACMPCA-Certificate.js

@@ -1,7 +1,6 @@
 import { Resource as $Resource } from "@awboost/cfn-template-builder/template/resource";
 /**
- * Resource type definition for `AWS::ACMPCA::Certificate`.
- * A certificate issued via a private certificate authority
+ * The ``AWS::ACMPCA::Certificate`` resource is used to issue a certificate using your private certificate authority. For more information, see the [IssueCertificate](https://docs.aws.amazon.com/privateca/latest/APIReference/API_IssueCertificate.html) action.
  * @see {@link https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-acmpca-certificate.html}
  */
 export class ACMPCACertificate extends $Resource {

package/lib/AWS-EFS-AccessPoint.d.ts

@@ -1,25 +1,30 @@
 import { Resource as $Resource } from "@awboost/cfn-template-builder/template/resource";
 import type { ResourceOptions as $ResourceOptions } from "@awboost/cfn-template-builder/template";
 /**
- * Resource Type definition for AWS::EFS::AccessPoint
+ * The ``AWS::EFS::AccessPoint`` resource creates an EFS access point. An access point is an application-specific view into an EFS file system that applies an operating system user and group, and a file system path, to any file system request made through the access point. The operating system user and group override any identity information provided by the NFS client. The file system path is exposed as the access point's root directory. Applications using the access point can only access data in its own directory and below. To learn more, see [Mounting a file system using EFS access points](https://docs.aws.amazon.com/efs/latest/ug/efs-access-points.html).
+ This operation requires permissions for the ``elasticfilesystem:CreateAccessPoint`` action.
  * @see {@link https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-efs-accesspoint.html}
  */
 export type EFSAccessPointProperties = {
+    /**
+       * An array of key-value pairs to apply to this resource.
+       For more information, see [Tag](https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-resource-tags.html).
+       */
     AccessPointTags?: AccessPointTag[];
     /**
-     * (optional) A string of up to 64 ASCII characters that Amazon EFS uses to ensure idempotent creation.
+     * The opaque string specified in the request to ensure idempotent creation.
      */
     ClientToken?: string;
     /**
-     * The ID of the EFS file system that the access point provides access to.
+     * The ID of the EFS file system that the access point applies to. Accepts only the ID format for input when specifying a file system, for example ``fs-0123456789abcedf2``.
      */
     FileSystemId: string;
     /**
-     * The operating system user and group applied to all file system requests made using the access point.
+     * The full POSIX identity, including the user ID, group ID, and secondary group IDs on the access point that is used for all file operations by NFS clients using the access point.
      */
     PosixUser?: PosixUser;
     /**
-     * Specifies the directory on the Amazon EFS file system that the access point exposes as the root directory of your file system to NFS clients using the access point. The clients using the access point can only access the root directory and below. If the RootDirectory>Path specified does not exist, EFS creates it and applies the CreationInfo settings when a client connects to an access point. When specifying a RootDirectory, you need to provide the Path, and the CreationInfo is optional.
+     * The directory on the EFS file system that the access point exposes as the root directory to NFS clients using the access point.
      */
     RootDirectory?: RootDirectory;
 };
@@ -33,15 +38,18 @@ export type EFSAccessPointAttributes = {
 };
 /**
  * Type definition for `AWS::EFS::AccessPoint.AccessPointTag`.
+ * A tag is a key-value pair attached to a file system. Allowed characters in the ``Key`` and ``Value`` properties are letters, white space, and numbers that can be represented in UTF-8, and the following characters:``+ - = . _ : /``
  * @see {@link https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-efs-accesspoint-accesspointtag.html}
  */
 export type AccessPointTag = {
     /**
+     * The tag key (String). The key can't start with ``aws:``.
      * @minLength `1`
      * @maxLength `128`
      */
     Key?: string;
     /**
+     * The value of the tag key.
      * @minLength `1`
      * @maxLength `256`
      */
@@ -49,25 +57,29 @@ export type AccessPointTag = {
 };
 /**
  * Type definition for `AWS::EFS::AccessPoint.CreationInfo`.
+ * Required if the ``RootDirectory`` > ``Path`` specified does not exist. Specifies the POSIX IDs and permissions to apply to the access point's ``RootDirectory`` > ``Path``. If the access point root directory does not exist, EFS creates it with these settings when a client connects to the access point. When specifying ``CreationInfo``, you must include values for all properties.
+ Amazon EFS creates a root directory only if you have provided the CreationInfo: OwnUid, OwnGID, and permissions for the directory. If you do not provide this information, Amazon EFS does not create the root directory. If the root directory does not exist, attempts to mount using the access point will fail.
+  If you do not provide ``CreationInfo`` and the specified ``RootDirectory`` does not exist, attempts to mount the file system using the access point will fail.
  * @see {@link https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-efs-accesspoint-creationinfo.html}
  */
 export type CreationInfo = {
     /**
-     * Specifies the POSIX group ID to apply to the RootDirectory. Accepts values from 0 to 2^32 (4294967295).
+     * Specifies the POSIX group ID to apply to the ``RootDirectory``. Accepts values from 0 to 2^32 (4294967295).
      */
     OwnerGid: string;
     /**
-     * Specifies the POSIX user ID to apply to the RootDirectory. Accepts values from 0 to 2^32 (4294967295).
+     * Specifies the POSIX user ID to apply to the ``RootDirectory``. Accepts values from 0 to 2^32 (4294967295).
      */
     OwnerUid: string;
     /**
-     * Specifies the POSIX permissions to apply to the RootDirectory, in the format of an octal number representing the file's mode bits.
+     * Specifies the POSIX permissions to apply to the ``RootDirectory``, in the format of an octal number representing the file's mode bits.
      * @pattern `^[0-7]{3,4}$`
      */
     Permissions: string;
 };
 /**
  * Type definition for `AWS::EFS::AccessPoint.PosixUser`.
+ * The full POSIX identity, including the user ID, group ID, and any secondary group IDs, on the access point that is used for all file system operations performed by NFS clients using the access point.
  * @see {@link https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-efs-accesspoint-posixuser.html}
  */
 export type PosixUser = {
@@ -86,22 +98,25 @@ export type PosixUser = {
 };
 /**
  * Type definition for `AWS::EFS::AccessPoint.RootDirectory`.
+ * Specifies the directory on the Amazon EFS file system that the access point provides access to. The access point exposes the specified file system path as the root directory of your file system to applications using the access point. NFS clients using the access point can only access data in the access point's ``RootDirectory`` and its subdirectories.
  * @see {@link https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-efs-accesspoint-rootdirectory.html}
  */
 export type RootDirectory = {
     /**
-     * (Optional) Specifies the POSIX IDs and permissions to apply to the access point's RootDirectory. If the RootDirectory>Path specified does not exist, EFS creates the root directory using the CreationInfo settings when a client connects to an access point. When specifying the CreationInfo, you must provide values for all properties.   If you do not provide CreationInfo and the specified RootDirectory>Path does not exist, attempts to mount the file system using the access point will fail.
-     */
+       * (Optional) Specifies the POSIX IDs and permissions to apply to the access point's ``RootDirectory``. If the ``RootDirectory`` > ``Path`` specified does not exist, EFS creates the root directory using the ``CreationInfo`` settings when a client connects to an access point. When specifying the ``CreationInfo``, you must provide values for all properties.
+        If you do not provide ``CreationInfo`` and the specified ``RootDirectory`` > ``Path`` does not exist, attempts to mount the file system using the access point will fail.
+       */
     CreationInfo?: CreationInfo;
     /**
-     * Specifies the path on the EFS file system to expose as the root directory to NFS clients using the access point to access the EFS file system. A path can have up to four subdirectories. If the specified path does not exist, you are required to provide the CreationInfo.
+     * Specifies the path on the EFS file system to expose as the root directory to NFS clients using the access point to access the EFS file system. A path can have up to four subdirectories. If the specified path does not exist, you are required to provide the ``CreationInfo``.
      * @minLength `1`
      * @maxLength `100`
      */
     Path?: string;
 };
 /**
- * Resource Type definition for AWS::EFS::AccessPoint
+ * The ``AWS::EFS::AccessPoint`` resource creates an EFS access point. An access point is an application-specific view into an EFS file system that applies an operating system user and group, and a file system path, to any file system request made through the access point. The operating system user and group override any identity information provided by the NFS client. The file system path is exposed as the access point's root directory. Applications using the access point can only access data in its own directory and below. To learn more, see [Mounting a file system using EFS access points](https://docs.aws.amazon.com/efs/latest/ug/efs-access-points.html).
+ This operation requires permissions for the ``elasticfilesystem:CreateAccessPoint`` action.
  * @see {@link https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-efs-accesspoint.html}
  */
 export declare class EFSAccessPoint extends $Resource<"AWS::EFS::AccessPoint", EFSAccessPointProperties, EFSAccessPointAttributes> {

package/lib/AWS-EFS-AccessPoint.js

@@ -1,6 +1,7 @@
 import { Resource as $Resource } from "@awboost/cfn-template-builder/template/resource";
 /**
- * Resource Type definition for AWS::EFS::AccessPoint
+ * The ``AWS::EFS::AccessPoint`` resource creates an EFS access point. An access point is an application-specific view into an EFS file system that applies an operating system user and group, and a file system path, to any file system request made through the access point. The operating system user and group override any identity information provided by the NFS client. The file system path is exposed as the access point's root directory. Applications using the access point can only access data in its own directory and below. To learn more, see [Mounting a file system using EFS access points](https://docs.aws.amazon.com/efs/latest/ug/efs-access-points.html).
+ This operation requires permissions for the ``elasticfilesystem:CreateAccessPoint`` action.
  * @see {@link https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-efs-accesspoint.html}
  */
 export class EFSAccessPoint extends $Resource {

package/lib/AWS-EFS-MountTarget.d.ts

@@ -1,13 +1,25 @@
 import { Resource as $Resource } from "@awboost/cfn-template-builder/template/resource";
 import type { ResourceOptions as $ResourceOptions } from "@awboost/cfn-template-builder/template";
 /**
- * Resource Type definition for AWS::EFS::MountTarget
+ * The ``AWS::EFS::MountTarget`` resource is an Amazon EFS resource that creates a mount target for an EFS file system. You can then mount the file system on Amazon EC2 instances or other resources by using the mount target.
  * @see {@link https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-efs-mounttarget.html}
  */
 export type EFSMountTargetProperties = {
+    /**
+     * The ID of the file system for which to create the mount target.
+     */
     FileSystemId: string;
+    /**
+     * Valid IPv4 address within the address range of the specified subnet.
+     */
     IpAddress?: string;
+    /**
+     * Up to five VPC security group IDs, of the form ``sg-xxxxxxxx``. These must be for the same VPC as subnet specified.
+     */
     SecurityGroups: string[];
+    /**
+     * The ID of the subnet to add the mount target in. For One Zone file systems, use the subnet that is associated with the file system's Availability Zone.
+     */
     SubnetId: string;
 };
 /**
@@ -18,7 +30,7 @@ export type EFSMountTargetAttributes = {
     Id: string;
 };
 /**
- * Resource Type definition for AWS::EFS::MountTarget
+ * The ``AWS::EFS::MountTarget`` resource is an Amazon EFS resource that creates a mount target for an EFS file system. You can then mount the file system on Amazon EC2 instances or other resources by using the mount target.
  * @see {@link https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-efs-mounttarget.html}
  */
 export declare class EFSMountTarget extends $Resource<"AWS::EFS::MountTarget", EFSMountTargetProperties, EFSMountTargetAttributes> {

package/lib/AWS-EFS-MountTarget.js

@@ -1,6 +1,6 @@
 import { Resource as $Resource } from "@awboost/cfn-template-builder/template/resource";
 /**
- * Resource Type definition for AWS::EFS::MountTarget
+ * The ``AWS::EFS::MountTarget`` resource is an Amazon EFS resource that creates a mount target for an EFS file system. You can then mount the file system on Amazon EC2 instances or other resources by using the mount target.
  * @see {@link https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-efs-mounttarget.html}
  */
 export class EFSMountTarget extends $Resource {

package/lib/AWS-SecurityHub-AutomationRule.d.ts

@@ -1,9 +1,7 @@
 import { Resource as $Resource } from "@awboost/cfn-template-builder/template/resource";
 import type { ResourceOptions as $ResourceOptions } from "@awboost/cfn-template-builder/template";
 /**
- * The AWS::SecurityHub::AutomationRule resource represents the Automation Rule in your account. One rule resource is created for each Automation Rule in which you configure rule criteria and actions.
-
-
+ * The ``AWS::SecurityHub::AutomationRule`` resource specifies an automation rule based on input parameters. For more information, see [Automation rules](https://docs.aws.amazon.com/securityhub/latest/userguide/automation-rules.html) in the *User Guide*.
  * @see {@link https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-securityhub-automationrule.html}
  */
 export type SecurityHubAutomationRuleProperties = {
@@ -13,33 +11,27 @@ export type SecurityHubAutomationRuleProperties = {
      */
     Actions?: AutomationRulesAction[];
     /**
-     * The rule criteria for evaluating findings
+     * A set of [Security Finding Format (ASFF)](https://docs.aws.amazon.com/securityhub/latest/userguide/securityhub-findings-format.html) finding field attributes and corresponding expected values that ASH uses to filter findings. If a rule is enabled and a finding matches the criteria specified in this parameter, ASH applies the rule action to the finding.
      */
     Criteria?: AutomationRulesFindingFilters;
     /**
-     * Rule description
      * @minLength `1`
      * @maxLength `1024`
      */
     Description?: string;
-    /**
-     * If Rule is a terminal rule
-     */
     IsTerminal?: boolean;
     /**
-     * Rule name
      * @minLength `1`
      * @maxLength `256`
      */
     RuleName?: string;
     /**
-     * Rule order value
      * @min `1`
      * @max `1000`
      */
     RuleOrder?: number;
     /**
-     * Status of the Rule upon creation
+     * Whether the rule is active after it is created. If this parameter is equal to ``ENABLED``, ASH applies the rule to findings and finding updates after the rule is created.
      */
     RuleStatus?: "ENABLED" | "DISABLED";
     /**
@@ -53,29 +45,28 @@ export type SecurityHubAutomationRuleProperties = {
  */
 export type SecurityHubAutomationRuleAttributes = {
     /**
-     * The date and time when Automation Rule was created
+     * The date and time, in UTC and ISO 8601 format.
      * @pattern `^(\d\d\d\d)-([0][1-9]|[1][0-2])-([0][1-9]|[1-2](\d)|[3][0-1])[T](?:([0-1](\d)|[2][0-3]):[0-5](\d):[0-5](\d)|23:59:60)(?:\.(\d)+)?([Z]|[+-](\d\d)(:?(\d\d))?)$`
      */
     CreatedAt: string;
     /**
-     * The identifier by which created the rule
      * @minLength `1`
      * @maxLength `256`
      */
     CreatedBy: string;
     /**
-     * An Automation Rule Arn is automatically created
      * @pattern `arn:aws\S*:securityhub:\S*`
      */
     RuleArn: string;
     /**
-     * The date and time when Automation Rule was last updated
+     * The date and time, in UTC and ISO 8601 format.
      * @pattern `^(\d\d\d\d)-([0][1-9]|[1][0-2])-([0][1-9]|[1-2](\d)|[3][0-1])[T](?:([0-1](\d)|[2][0-3]):[0-5](\d):[0-5](\d)|23:59:60)(?:\.(\d)+)?([Z]|[+-](\d\d)(:?(\d\d))?)$`
      */
     UpdatedAt: string;
 };
 /**
  * Type definition for `AWS::SecurityHub::AutomationRule.arnOrId`.
+ * The Amazon Resource Name (ARN) or Id of the automation rule.
  * @see {@link https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-securityhub-automationrule-arnorid.html}
  */
 export type arnOrId = string | string;
@@ -84,45 +75,55 @@ export type arnOrId = string | string;
  * @see {@link https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-securityhub-automationrule-automationrulesaction.html}
  */
 export type AutomationRulesAction = {
+    /**
+     * The rule action will update the ``Note`` field of a finding.
+     */
     FindingFieldsUpdate: AutomationRulesFindingFieldsUpdate;
     Type: "FINDING_FIELDS_UPDATE";
 };
 /**
  * Type definition for `AWS::SecurityHub::AutomationRule.AutomationRulesFindingFieldsUpdate`.
+ * The rule action will update the ``Note`` field of a finding.
  * @see {@link https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-securityhub-automationrule-automationrulesfindingfieldsupdate.html}
  */
 export type AutomationRulesFindingFieldsUpdate = {
     /**
+     * Integer from 0 to 100.
      * @min `0`
      * @max `100`
      */
     Confidence?: number;
     /**
+     * Integer from 0 to 100.
      * @min `0`
      * @max `100`
      */
     Criticality?: number;
     /**
-     * Note added to the finding
+     * The rule action will update the ``Note`` field of a finding.
      */
     Note?: NoteUpdate;
     /**
+     * The rule action will update the ``RelatedFindings`` field of a finding.
      * @minLength `1`
      * @maxLength `10`
      */
     RelatedFindings?: RelatedFinding[];
     /**
-     * Severity of the finding
+     * The rule action will update the ``Severity`` field of a finding.
      */
     Severity?: SeverityUpdate;
     /**
      * @maxLength `50`
      */
     Types?: string[];
+    /**
+     * An object of user-defined name and value string pair added to a finding.
+     */
     UserDefinedFields?: map;
     VerificationState?: "UNKNOWN" | "TRUE_POSITIVE" | "FALSE_POSITIVE" | "BENIGN_POSITIVE";
     /**
-     * Workflow status set for the finding
+     * The rule action will update the ``Workflow`` field of a finding.
      */
     Workflow?: WorkflowUpdate;
 };
@@ -279,10 +280,12 @@ export type AutomationRulesFindingFilters = {
 export type DateFilter = {
     DateRange?: DateRange;
     /**
+     * The date and time, in UTC and ISO 8601 format.
      * @pattern `^(\d\d\d\d)-([0][1-9]|[1][0-2])-([0][1-9]|[1-2](\d)|[3][0-1])[T](?:([0-1](\d)|[2][0-3]):[0-5](\d):[0-5](\d)|23:59:60)(?:\.(\d)+)?([Z]|[+-](\d\d)(:?(\d\d))?)$`
      */
     End?: string;
     /**
+     * The date and time, in UTC and ISO 8601 format.
      * @pattern `^(\d\d\d\d)-([0][1-9]|[1][0-2])-([0][1-9]|[1-2](\d)|[3][0-1])[T](?:([0-1](\d)|[2][0-3]):[0-5](\d):[0-5](\d)|23:59:60)(?:\.(\d)+)?([Z]|[+-](\d\d)(:?(\d\d))?)$`
      */
     Start?: string;
@@ -297,6 +300,7 @@ export type DateRange = {
 };
 /**
  * Type definition for `AWS::SecurityHub::AutomationRule.map`.
+ * An object of user-defined name and value string pair added to a finding.
  * @see {@link https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-securityhub-automationrule-map.html}
  */
 export type map = Record<string, string>;
@@ -319,6 +323,9 @@ export type NoteUpdate = {
      * @maxLength `512`
      */
     Text: string;
+    /**
+     * The Amazon Resource Name (ARN) or Id of the automation rule.
+     */
     UpdatedBy: arnOrId;
 };
 /**
@@ -332,11 +339,16 @@ export type NumberFilter = {
 };
 /**
  * Type definition for `AWS::SecurityHub::AutomationRule.RelatedFinding`.
+ * Provides details about a list of findings that the current finding relates to.
  * @see {@link https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-securityhub-automationrule-relatedfinding.html}
  */
 export type RelatedFinding = {
+    /**
+     * The Amazon Resource Name (ARN) or Id of the automation rule.
+     */
     Id: arnOrId;
     /**
+     * The Amazon Resource Name (ARN) for the product that generated a related finding.
      * @minLength `12`
      * @maxLength `2048`
      * @pattern `^arn:(aws|aws-cn|aws-us-gov|aws-iso-?[a-z]{0,2}):[A-Za-z0-9]{1,63}:[a-z]+-([a-z]{1,10}-)?[a-z]+-[0-9]+:([0-9]{12})?:.+$`
@@ -350,6 +362,7 @@ export type RelatedFinding = {
 export type SeverityUpdate = {
     Label?: "INFORMATIONAL" | "LOW" | "MEDIUM" | "HIGH" | "CRITICAL";
     /**
+     * Integer from 0 to 100.
      * @min `0`
      * @max `100`
      */
@@ -361,11 +374,15 @@ export type SeverityUpdate = {
  * @see {@link https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-securityhub-automationrule-stringfilter.html}
  */
 export type StringFilter = {
+    /**
+     * The condition to apply to a string value when filtering Security Hub findings.
+     */
     Comparison: StringFilterComparison;
     Value: string;
 };
 /**
  * Type definition for `AWS::SecurityHub::AutomationRule.StringFilterComparison`.
+ * The condition to apply to a string value when filtering Security Hub findings.
  * @see {@link https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-securityhub-automationrule-stringfiltercomparison.html}
  */
 export type StringFilterComparison = "EQUALS" | "PREFIX" | "NOT_EQUALS" | "PREFIX_NOT_EQUALS" | "CONTAINS" | "NOT_CONTAINS";
@@ -383,9 +400,7 @@ export type WorkflowUpdate = {
     Status: "NEW" | "NOTIFIED" | "RESOLVED" | "SUPPRESSED";
 };
 /**
- * The AWS::SecurityHub::AutomationRule resource represents the Automation Rule in your account. One rule resource is created for each Automation Rule in which you configure rule criteria and actions.
-
-
+ * The ``AWS::SecurityHub::AutomationRule`` resource specifies an automation rule based on input parameters. For more information, see [Automation rules](https://docs.aws.amazon.com/securityhub/latest/userguide/automation-rules.html) in the *User Guide*.
  * @see {@link https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-securityhub-automationrule.html}
  */
 export declare class SecurityHubAutomationRule extends $Resource<"AWS::SecurityHub::AutomationRule", SecurityHubAutomationRuleProperties, SecurityHubAutomationRuleAttributes> {

package/lib/AWS-SecurityHub-AutomationRule.js

@@ -1,8 +1,6 @@
 import { Resource as $Resource } from "@awboost/cfn-template-builder/template/resource";
 /**
- * The AWS::SecurityHub::AutomationRule resource represents the Automation Rule in your account. One rule resource is created for each Automation Rule in which you configure rule criteria and actions.
-
-
+ * The ``AWS::SecurityHub::AutomationRule`` resource specifies an automation rule based on input parameters. For more information, see [Automation rules](https://docs.aws.amazon.com/securityhub/latest/userguide/automation-rules.html) in the *User Guide*.
  * @see {@link https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-securityhub-automationrule.html}
  */
 export class SecurityHubAutomationRule extends $Resource {

package/lib/AWS-SecurityHub-Standard.d.ts

@@ -1,18 +1,21 @@
 import { Resource as $Resource } from "@awboost/cfn-template-builder/template/resource";
 import type { ResourceOptions as $ResourceOptions } from "@awboost/cfn-template-builder/template";
 /**
- * The AWS::SecurityHub::Standard resource represents the implementation of an individual AWS Security Hub Standard in your account. It requires you have SecurityHub enabled before you can enable the Standard.
+ * The ``AWS::SecurityHub::Standard`` resource specifies the enablement of a security standard. The standard is identified by the ``StandardsArn`` property. To view a list of ASH standards and their Amazon Resource Names (ARNs), use the [DescribeStandards](https://docs.aws.amazon.com/securityhub/1.0/APIReference/API_DescribeStandards.html) API operation.
+ You must create a separate ``AWS::SecurityHub::Standard`` resource for each standard that you want to enable.
+ For more information about ASH standards, see [standards reference](https://docs.aws.amazon.com/securityhub/latest/userguide/standards-reference.html) in the *User Guide*.
  * @see {@link https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-securityhub-standard.html}
  */
 export type SecurityHubStandardProperties = {
     /**
-     * StandardsControls to disable from this Standard.
+     * Specifies which controls are to be disabled in a standard.
+     *Maximum*: ``100``
      * @minLength `0`
      * @maxLength `100`
      */
     DisabledStandardsControls?: StandardsControl[];
     /**
-     * The ARN of the Standard being enabled
+     * The ARN of the standard that you want to enable. To view a list of available ASH standards and their ARNs, use the [DescribeStandards](https://docs.aws.amazon.com/securityhub/1.0/APIReference/API_DescribeStandards.html) API operation.
      * @pattern `arn:aws\S*:securityhub:\S`
      */
     StandardsArn: string;
@@ -23,29 +26,30 @@ export type SecurityHubStandardProperties = {
  */
 export type SecurityHubStandardAttributes = {
     /**
-     * The ARN of the StandardsSubscription for the account ID, region, and Standard.
      * @pattern `arn:aws\S*:securityhub:\S*`
      */
     StandardsSubscriptionArn: string;
 };
 /**
  * Type definition for `AWS::SecurityHub::Standard.StandardsControl`.
- * An individual StandardsControl within the Standard.
+ * Provides details about an individual security control. For a list of ASH controls, see [controls reference](https://docs.aws.amazon.com/securityhub/latest/userguide/securityhub-controls-reference.html) in the *User Guide*.
  * @see {@link https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-securityhub-standard-standardscontrol.html}
  */
 export type StandardsControl = {
     /**
-     * the reason the standard control is disabled
+     * A user-defined reason for changing a control's enablement status in a specified standard. If you are disabling a control, then this property is required.
      */
     Reason?: string;
     /**
-     * the Arn for the standard control.
+     * The Amazon Resource Name (ARN) of the control.
      * @pattern `arn:aws\S*:securityhub:\S*`
      */
     StandardsControlArn: string;
 };
 /**
- * The AWS::SecurityHub::Standard resource represents the implementation of an individual AWS Security Hub Standard in your account. It requires you have SecurityHub enabled before you can enable the Standard.
+ * The ``AWS::SecurityHub::Standard`` resource specifies the enablement of a security standard. The standard is identified by the ``StandardsArn`` property. To view a list of ASH standards and their Amazon Resource Names (ARNs), use the [DescribeStandards](https://docs.aws.amazon.com/securityhub/1.0/APIReference/API_DescribeStandards.html) API operation.
+ You must create a separate ``AWS::SecurityHub::Standard`` resource for each standard that you want to enable.
+ For more information about ASH standards, see [standards reference](https://docs.aws.amazon.com/securityhub/latest/userguide/standards-reference.html) in the *User Guide*.
  * @see {@link https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-securityhub-standard.html}
  */
 export declare class SecurityHubStandard extends $Resource<"AWS::SecurityHub::Standard", SecurityHubStandardProperties, SecurityHubStandardAttributes> {

package/lib/AWS-SecurityHub-Standard.js

@@ -1,6 +1,8 @@
 import { Resource as $Resource } from "@awboost/cfn-template-builder/template/resource";
 /**
- * The AWS::SecurityHub::Standard resource represents the implementation of an individual AWS Security Hub Standard in your account. It requires you have SecurityHub enabled before you can enable the Standard.
+ * The ``AWS::SecurityHub::Standard`` resource specifies the enablement of a security standard. The standard is identified by the ``StandardsArn`` property. To view a list of ASH standards and their Amazon Resource Names (ARNs), use the [DescribeStandards](https://docs.aws.amazon.com/securityhub/1.0/APIReference/API_DescribeStandards.html) API operation.
+ You must create a separate ``AWS::SecurityHub::Standard`` resource for each standard that you want to enable.
+ For more information about ASH standards, see [standards reference](https://docs.aws.amazon.com/securityhub/latest/userguide/standards-reference.html) in the *User Guide*.
  * @see {@link https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-securityhub-standard.html}
  */
 export class SecurityHubStandard extends $Resource {

package/package.json

@@ -1,6 +1,6 @@
 {
   "name": "@awboost/cfn-resource-types",
-  "version": "0.1.18",
+  "version": "0.1.20",
   "publishConfig": {
     "access": "public"
   },