npm - @awboost/cfn-resource-types - Versions diffs - 0.1.355 → 0.1.356 - Mend

@awboost/cfn-resource-types 0.1.355 → 0.1.356

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (6) hide show

package/lib/AWS-KMS-Key.d.ts +1 -1
package/lib/AWS-MWAA-Environment.d.ts +10 -0
package/lib/AWS-OpsWorksCM-Server.d.ts +1 -1
package/lib/AWS-WAFv2-RuleGroup.d.ts +19 -0
package/lib/AWS-WAFv2-WebACL.d.ts +90 -1
package/package.json +1 -1

package/lib/AWS-KMS-Key.d.ts CHANGED Viewed

@@ -88,7 +88,7 @@ export type KMSKeyProperties = {
         +  SM2 key pairs (encryption and decryption *or* signing and verification *or* deriving shared secrets)
         +  ``SM2`` (China Regions only)
        */
-    KeySpec?: "SYMMETRIC_DEFAULT" | "RSA_2048" | "RSA_3072" | "RSA_4096" | "ECC_NIST_P256" | "ECC_NIST_P384" | "ECC_NIST_P521" | "ECC_SECG_P256K1" | "HMAC_224" | "HMAC_256" | "HMAC_384" | "HMAC_512" | "SM2";
+    KeySpec?: "SYMMETRIC_DEFAULT" | "RSA_2048" | "RSA_3072" | "RSA_4096" | "ECC_NIST_P256" | "ECC_NIST_P384" | "ECC_NIST_P521" | "ECC_SECG_P256K1" | "HMAC_224" | "HMAC_256" | "HMAC_384" | "HMAC_512" | "SM2" | "ML_DSA_44" | "ML_DSA_65" | "ML_DSA_87";
     /**
        * Determines the [cryptographic operations](https://docs.aws.amazon.com/kms/latest/developerguide/concepts.html#cryptographic-operations) for which you can use the KMS key. The default value is ``ENCRYPT_DECRYPT``. This property is required for asymmetric KMS keys and HMAC KMS keys. You can't change the ``KeyUsage`` value after the KMS key is created.
         If you change the value of the ``KeyUsage`` property on an existing KMS key, the update request fails, regardless of the value of the [UpdateReplacePolicy attribute](https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-attribute-updatereplacepolicy.html). This prevents you from accidentally deleting a KMS key by changing an immutable property value.

package/lib/AWS-MWAA-Environment.d.ts CHANGED Viewed

@@ -157,6 +157,10 @@ export type MWAAEnvironmentProperties = {
      * @pattern `(MON|TUE|WED|THU|FRI|SAT|SUN):([01]\d|2[0-3]):(00|30)`
      */
     WeeklyMaintenanceWindowStart?: string;
+    /**
+     * The worker replacement strategy to use when updating the environment. Valid values: `FORCED`, `GRACEFUL`. FORCED means Apache Airflow workers will be stopped and replaced without waiting for tasks to complete before an update. GRACEFUL means Apache Airflow workers will be able to complete running tasks for up to 12 hours during an update before being stopped and replaced.
+     */
+    WorkerReplacementStrategy?: WorkerReplacementStrategy;
 };
 /**
  * Attribute type definition for `AWS::MWAA::Environment`.
@@ -320,6 +324,12 @@ export type NetworkConfiguration = {
  * @see {@link https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-mwaa-environment-webserveraccessmode.html}
  */
 export type WebserverAccessMode = "PRIVATE_ONLY" | "PUBLIC_ONLY";
+/**
+ * Type definition for `AWS::MWAA::Environment.WorkerReplacementStrategy`.
+ * The worker replacement strategy to use when updating the environment. Valid values: `FORCED`, `GRACEFUL`. FORCED means Apache Airflow workers will be stopped and replaced without waiting for tasks to complete before an update. GRACEFUL means Apache Airflow workers will be able to complete running tasks for up to 12 hours during an update before being stopped and replaced.
+ * @see {@link https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-mwaa-environment-workerreplacementstrategy.html}
+ */
+export type WorkerReplacementStrategy = "FORCED" | "GRACEFUL";
 /**
  * Resource schema for AWS::MWAA::Environment
  * @see {@link https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-mwaa-environment.html}

package/lib/AWS-OpsWorksCM-Server.d.ts CHANGED Viewed

@@ -22,6 +22,7 @@ export type OpsWorksCMServerProperties = {
     PreferredBackupWindow?: string;
     PreferredMaintenanceWindow?: string;
     SecurityGroupIds?: string[];
+    ServerName?: string;
     ServiceRoleArn: string;
     SubnetIds?: string[];
     Tags?: Tag[];
@@ -34,7 +35,6 @@ export type OpsWorksCMServerAttributes = {
     Arn: string;
     Endpoint: string;
     Id: string;
-    ServerName: string;
 };
 /**
  * Type definition for `AWS::OpsWorksCM::Server.EngineAttribute`.

package/lib/AWS-WAFv2-RuleGroup.d.ts CHANGED Viewed

@@ -101,6 +101,14 @@ export type AllowAction = {
 export type AndStatement = {
     Statements: Statement[];
 };
+/**
+ * Type definition for `AWS::WAFv2::RuleGroup.AsnMatchStatement`.
+ * @see {@link https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-wafv2-rulegroup-asnmatchstatement.html}
+ */
+export type AsnMatchStatement = {
+    AsnList?: number[];
+    ForwardedIPConfig?: ForwardedIPConfiguration;
+};
 /**
  * Type definition for `AWS::WAFv2::RuleGroup.BlockAction`.
  * Block traffic towards application.
@@ -625,6 +633,10 @@ export type RateBasedStatement = {
  * @see {@link https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-wafv2-rulegroup-ratebasedstatementcustomkey.html}
  */
 export type RateBasedStatementCustomKey = {
+    /**
+     * Specifies the request's ASN as an aggregate key for a rate-based rule.
+     */
+    ASN?: RateLimitAsn;
     /**
      * Specifies a cookie as an aggregate key for a rate-based rule.
      */
@@ -670,6 +682,12 @@ export type RateBasedStatementCustomKey = {
      */
     UriPath?: RateLimitUriPath;
 };
+/**
+ * Type definition for `AWS::WAFv2::RuleGroup.RateLimitAsn`.
+ * Specifies the request's ASN as an aggregate key for a rate-based rule.
+ * @see {@link https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-wafv2-rulegroup-ratelimitasn.html}
+ */
+export type RateLimitAsn = Record<string, any>;
 /**
  * Type definition for `AWS::WAFv2::RuleGroup.RateLimitCookie`.
  * Specifies a cookie as an aggregate key for a rate-based rule.
@@ -931,6 +949,7 @@ export type SqliMatchStatement = {
  */
 export type Statement = {
     AndStatement?: AndStatement;
+    AsnMatchStatement?: AsnMatchStatement;
     /**
      * Byte Match statement.
      */

package/lib/AWS-WAFv2-WebACL.d.ts CHANGED Viewed

@@ -34,7 +34,10 @@ export type WAFv2WebACLProperties = {
      * @pattern `^[0-9A-Za-z_-]{1,128}$`
      */
     Name?: string;
-    OnSourceDDoSProtectionConfig?: any;
+    /**
+     * Configures the options for on-source DDoS protection provided by supported resource type.
+     */
+    OnSourceDDoSProtectionConfig?: OnSourceDDoSProtectionConfig;
     /**
      * Collection of Rules.
      */
@@ -105,6 +108,14 @@ export type AllowAction = {
 export type AndStatement = {
     Statements: Statement[];
 };
+/**
+ * Type definition for `AWS::WAFv2::WebACL.AsnMatchStatement`.
+ * @see {@link https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-wafv2-webacl-asnmatchstatement.html}
+ */
+export type AsnMatchStatement = {
+    AsnList?: number[];
+    ForwardedIPConfig?: ForwardedIPConfiguration;
+};
 /**
  * Type definition for `AWS::WAFv2::WebACL.AssociationConfig`.
  * AssociationConfig for body inspection
@@ -134,6 +145,18 @@ export type AWSManagedRulesACFPRuleSet = {
      */
     ResponseInspection?: ResponseInspection;
 };
+/**
+ * Type definition for `AWS::WAFv2::WebACL.AWSManagedRulesAntiDDoSRuleSet`.
+ * Configures how to use the AntiDDOS AWS managed rule group in the web ACL
+ * @see {@link https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-wafv2-webacl-awsmanagedrulesantiddosruleset.html}
+ */
+export type AWSManagedRulesAntiDDoSRuleSet = {
+    /**
+     * Client side action config for AntiDDOS AMR.
+     */
+    ClientSideActionConfig: ClientSideActionConfig;
+    SensitivityToBlock?: SensitivityToAct;
+};
 /**
  * Type definition for `AWS::WAFv2::WebACL.AWSManagedRulesATPRuleSet`.
  * Configures how to use the Account Takeover Prevention managed rule group in the web ACL
@@ -248,6 +271,27 @@ export type ChallengeAction = {
 export type ChallengeConfig = {
     ImmunityTimeProperty?: ImmunityTimeProperty;
 };
+/**
+ * Type definition for `AWS::WAFv2::WebACL.ClientSideAction`.
+ * Client side action config for AntiDDOS AMR.
+ * @see {@link https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-wafv2-webacl-clientsideaction.html}
+ */
+export type ClientSideAction = {
+    ExemptUriRegularExpressions?: Regex[];
+    Sensitivity?: SensitivityToAct;
+    UsageOfAction: UsageOfAction;
+};
+/**
+ * Type definition for `AWS::WAFv2::WebACL.ClientSideActionConfig`.
+ * Client side action config for AntiDDOS AMR.
+ * @see {@link https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-wafv2-webacl-clientsideactionconfig.html}
+ */
+export type ClientSideActionConfig = {
+    /**
+     * Client side action config for AntiDDOS AMR.
+     */
+    Challenge: ClientSideAction;
+};
 /**
  * Type definition for `AWS::WAFv2::WebACL.CookieMatchPattern`.
  * The pattern to look for in the request cookies.
@@ -716,6 +760,10 @@ export type ManagedRuleGroupConfig = {
      * Configures how to use the Account Takeover Prevention managed rule group in the web ACL
      */
     AWSManagedRulesATPRuleSet?: AWSManagedRulesATPRuleSet;
+    /**
+     * Configures how to use the AntiDDOS AWS managed rule group in the web ACL
+     */
+    AWSManagedRulesAntiDDoSRuleSet?: AWSManagedRulesAntiDDoSRuleSet;
     /**
      * Configures how to use the Bot Control managed rule group in the web ACL
      */
@@ -778,6 +826,14 @@ export type NotStatement = {
      */
     Statement: Statement;
 };
+/**
+ * Type definition for `AWS::WAFv2::WebACL.OnSourceDDoSProtectionConfig`.
+ * Configures the options for on-source DDoS protection provided by supported resource type.
+ * @see {@link https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-wafv2-webacl-onsourceddosprotectionconfig.html}
+ */
+export type OnSourceDDoSProtectionConfig = {
+    ALBLowReputationMode: "ACTIVE_UNDER_DDOS" | "ALWAYS_ON";
+};
 /**
  * Type definition for `AWS::WAFv2::WebACL.OrStatement`.
  * @see {@link https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-wafv2-webacl-orstatement.html}
@@ -846,6 +902,10 @@ export type RateBasedStatement = {
  * @see {@link https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-wafv2-webacl-ratebasedstatementcustomkey.html}
  */
 export type RateBasedStatementCustomKey = {
+    /**
+     * Specifies the request's ASN as an aggregate key for a rate-based rule.
+     */
+    ASN?: RateLimitAsn;
     /**
      * Specifies a cookie as an aggregate key for a rate-based rule.
      */
@@ -891,6 +951,12 @@ export type RateBasedStatementCustomKey = {
      */
     UriPath?: RateLimitUriPath;
 };
+/**
+ * Type definition for `AWS::WAFv2::WebACL.RateLimitAsn`.
+ * Specifies the request's ASN as an aggregate key for a rate-based rule.
+ * @see {@link https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-wafv2-webacl-ratelimitasn.html}
+ */
+export type RateLimitAsn = Record<string, any>;
 /**
  * Type definition for `AWS::WAFv2::WebACL.RateLimitCookie`.
  * Specifies a cookie as an aggregate key for a rate-based rule.
@@ -998,6 +1064,18 @@ export type RateLimitQueryString = {
 export type RateLimitUriPath = {
     TextTransformations: TextTransformation[];
 };
+/**
+ * Type definition for `AWS::WAFv2::WebACL.Regex`.
+ * Regex
+ * @see {@link https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-wafv2-webacl-regex.html}
+ */
+export type Regex = {
+    /**
+     * @minLength `1`
+     * @maxLength `512`
+     */
+    RegexString?: string;
+};
 /**
  * Type definition for `AWS::WAFv2::WebACL.RegexMatchStatement`.
  * @see {@link https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-wafv2-webacl-regexmatchstatement.html}
@@ -1289,6 +1367,11 @@ export type Scope = "CLOUDFRONT" | "REGIONAL";
  * @see {@link https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-wafv2-webacl-sensitivitylevel.html}
  */
 export type SensitivityLevel = "LOW" | "HIGH";
+/**
+ * Type definition for `AWS::WAFv2::WebACL.SensitivityToAct`.
+ * @see {@link https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-wafv2-webacl-sensitivitytoact.html}
+ */
+export type SensitivityToAct = "LOW" | "MEDIUM" | "HIGH";
 /**
  * Type definition for `AWS::WAFv2::WebACL.SizeConstraintStatement`.
  * Size Constraint statement.
@@ -1335,6 +1418,7 @@ export type SqliMatchStatement = {
  */
 export type Statement = {
     AndStatement?: AndStatement;
+    AsnMatchStatement?: AsnMatchStatement;
     /**
      * Byte Match statement.
      */
@@ -1408,6 +1492,11 @@ export type TextTransformationType = "NONE" | "COMPRESS_WHITE_SPACE" | "HTML_ENT
 export type UriFragment = {
     FallbackBehavior?: "MATCH" | "NO_MATCH";
 };
+/**
+ * Type definition for `AWS::WAFv2::WebACL.UsageOfAction`.
+ * @see {@link https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-wafv2-webacl-usageofaction.html}
+ */
+export type UsageOfAction = "ENABLED" | "DISABLED";
 /**
  * Type definition for `AWS::WAFv2::WebACL.VisibilityConfig`.
  * Visibility Metric of the WebACL.

package/package.json CHANGED Viewed

@@ -1,6 +1,6 @@
 {
   "name": "@awboost/cfn-resource-types",
-  "version": "0.1.355",
+  "version": "0.1.356",
   "publishConfig": {
     "access": "public"
   },