@aws-sdk/client-accessanalyzer 3.451.0 → 3.458.0

package/dist-types/ts3.4/models/models_0.d.ts

@@ -1,5 +1,8 @@
 import { ExceptionOptionType as __ExceptionOptionType } from "@smithy/smithy-client";
 import { AccessAnalyzerServiceException as __BaseException } from "./AccessAnalyzerServiceException";
+export interface Access {
+  actions: string[] | undefined;
+}
 export declare class AccessDeniedException extends __BaseException {
   readonly name: "AccessDeniedException";
   readonly $fault: "client";
@@ -122,13 +125,39 @@ export interface InlineArchiveRule {
   ruleName: string | undefined;
   filter: Record<string, Criterion> | undefined;
 }
-export type Type = "ACCOUNT" | "ORGANIZATION";
+export interface UnusedAccessConfiguration {
+  unusedAccessAge?: number;
+}
+export type AnalyzerConfiguration =
+  | AnalyzerConfiguration.UnusedAccessMember
+  | AnalyzerConfiguration.$UnknownMember;
+export declare namespace AnalyzerConfiguration {
+  interface UnusedAccessMember {
+    unusedAccess: UnusedAccessConfiguration;
+    $unknown?: never;
+  }
+  interface $UnknownMember {
+    unusedAccess?: never;
+    $unknown: [string, any];
+  }
+  interface Visitor<T> {
+    unusedAccess: (value: UnusedAccessConfiguration) => T;
+    _: (name: string, value: any) => T;
+  }
+  const visit: <T>(value: AnalyzerConfiguration, visitor: Visitor<T>) => T;
+}
+export type Type =
+  | "ACCOUNT"
+  | "ACCOUNT_UNUSED_ACCESS"
+  | "ORGANIZATION"
+  | "ORGANIZATION_UNUSED_ACCESS";
 export interface CreateAnalyzerRequest {
   analyzerName: string | undefined;
   type: Type | undefined;
   archiveRules?: InlineArchiveRule[];
   tags?: Record<string, string>;
   clientToken?: string;
+  configuration?: AnalyzerConfiguration;
 }
 export interface CreateAnalyzerResponse {
   arn?: string;
@@ -159,6 +188,7 @@ export interface AnalyzerSummary {
   tags?: Record<string, string>;
   status: AnalyzerStatus | undefined;
   statusReason?: StatusReason;
+  configuration?: AnalyzerConfiguration;
 }
 export interface GetAnalyzerResponse {
   analyzer: AnalyzerSummary | undefined;
@@ -181,6 +211,64 @@ export interface CancelPolicyGenerationRequest {
   jobId: string | undefined;
 }
 export interface CancelPolicyGenerationResponse {}
+export declare const AccessCheckPolicyType: {
+  readonly IDENTITY_POLICY: "IDENTITY_POLICY";
+  readonly RESOURCE_POLICY: "RESOURCE_POLICY";
+};
+export type AccessCheckPolicyType =
+  (typeof AccessCheckPolicyType)[keyof typeof AccessCheckPolicyType];
+export interface CheckAccessNotGrantedRequest {
+  policyDocument: string | undefined;
+  access: Access[] | undefined;
+  policyType: AccessCheckPolicyType | undefined;
+}
+export interface ReasonSummary {
+  description?: string;
+  statementIndex?: number;
+  statementId?: string;
+}
+export declare const CheckAccessNotGrantedResult: {
+  readonly FAIL: "FAIL";
+  readonly PASS: "PASS";
+};
+export type CheckAccessNotGrantedResult =
+  (typeof CheckAccessNotGrantedResult)[keyof typeof CheckAccessNotGrantedResult];
+export interface CheckAccessNotGrantedResponse {
+  result?: CheckAccessNotGrantedResult;
+  message?: string;
+  reasons?: ReasonSummary[];
+}
+export declare class InvalidParameterException extends __BaseException {
+  readonly name: "InvalidParameterException";
+  readonly $fault: "client";
+  constructor(
+    opts: __ExceptionOptionType<InvalidParameterException, __BaseException>
+  );
+}
+export declare class UnprocessableEntityException extends __BaseException {
+  readonly name: "UnprocessableEntityException";
+  readonly $fault: "client";
+  $retryable: {};
+  constructor(
+    opts: __ExceptionOptionType<UnprocessableEntityException, __BaseException>
+  );
+}
+export interface CheckNoNewAccessRequest {
+  newPolicyDocument: string | undefined;
+  existingPolicyDocument: string | undefined;
+  policyType: AccessCheckPolicyType | undefined;
+}
+export declare const CheckNoNewAccessResult: {
+  readonly FAIL: "FAIL";
+  readonly PASS: "PASS";
+};
+export type CheckNoNewAccessResult =
+  (typeof CheckNoNewAccessResult)[keyof typeof CheckNoNewAccessResult];
+export interface CheckNoNewAccessResponse {
+  result?: CheckNoNewAccessResult;
+  message?: string;
+  reasons?: ReasonSummary[];
+}
 export interface EbsSnapshotConfiguration {
   userIds?: string[];
   groups?: string[];
@@ -681,6 +769,126 @@ export interface Finding {
 export interface GetFindingResponse {
   finding?: Finding;
 }
+export interface GetFindingV2Request {
+  analyzerArn: string | undefined;
+  id: string | undefined;
+  maxResults?: number;
+  nextToken?: string;
+}
+export interface ExternalAccessDetails {
+  action?: string[];
+  condition: Record<string, string> | undefined;
+  isPublic?: boolean;
+  principal?: Record<string, string>;
+  sources?: FindingSource[];
+}
+export interface UnusedIamRoleDetails {
+  lastAccessed?: Date;
+}
+export interface UnusedIamUserAccessKeyDetails {
+  accessKeyId: string | undefined;
+  lastAccessed?: Date;
+}
+export interface UnusedIamUserPasswordDetails {
+  lastAccessed?: Date;
+}
+export interface UnusedAction {
+  action: string | undefined;
+  lastAccessed?: Date;
+}
+export interface UnusedPermissionDetails {
+  actions?: UnusedAction[];
+  serviceNamespace: string | undefined;
+  lastAccessed?: Date;
+}
+export type FindingDetails =
+  | FindingDetails.ExternalAccessDetailsMember
+  | FindingDetails.UnusedIamRoleDetailsMember
+  | FindingDetails.UnusedIamUserAccessKeyDetailsMember
+  | FindingDetails.UnusedIamUserPasswordDetailsMember
+  | FindingDetails.UnusedPermissionDetailsMember
+  | FindingDetails.$UnknownMember;
+export declare namespace FindingDetails {
+  interface ExternalAccessDetailsMember {
+    externalAccessDetails: ExternalAccessDetails;
+    unusedPermissionDetails?: never;
+    unusedIamUserAccessKeyDetails?: never;
+    unusedIamRoleDetails?: never;
+    unusedIamUserPasswordDetails?: never;
+    $unknown?: never;
+  }
+  interface UnusedPermissionDetailsMember {
+    externalAccessDetails?: never;
+    unusedPermissionDetails: UnusedPermissionDetails;
+    unusedIamUserAccessKeyDetails?: never;
+    unusedIamRoleDetails?: never;
+    unusedIamUserPasswordDetails?: never;
+    $unknown?: never;
+  }
+  interface UnusedIamUserAccessKeyDetailsMember {
+    externalAccessDetails?: never;
+    unusedPermissionDetails?: never;
+    unusedIamUserAccessKeyDetails: UnusedIamUserAccessKeyDetails;
+    unusedIamRoleDetails?: never;
+    unusedIamUserPasswordDetails?: never;
+    $unknown?: never;
+  }
+  interface UnusedIamRoleDetailsMember {
+    externalAccessDetails?: never;
+    unusedPermissionDetails?: never;
+    unusedIamUserAccessKeyDetails?: never;
+    unusedIamRoleDetails: UnusedIamRoleDetails;
+    unusedIamUserPasswordDetails?: never;
+    $unknown?: never;
+  }
+  interface UnusedIamUserPasswordDetailsMember {
+    externalAccessDetails?: never;
+    unusedPermissionDetails?: never;
+    unusedIamUserAccessKeyDetails?: never;
+    unusedIamRoleDetails?: never;
+    unusedIamUserPasswordDetails: UnusedIamUserPasswordDetails;
+    $unknown?: never;
+  }
+  interface $UnknownMember {
+    externalAccessDetails?: never;
+    unusedPermissionDetails?: never;
+    unusedIamUserAccessKeyDetails?: never;
+    unusedIamRoleDetails?: never;
+    unusedIamUserPasswordDetails?: never;
+    $unknown: [string, any];
+  }
+  interface Visitor<T> {
+    externalAccessDetails: (value: ExternalAccessDetails) => T;
+    unusedPermissionDetails: (value: UnusedPermissionDetails) => T;
+    unusedIamUserAccessKeyDetails: (value: UnusedIamUserAccessKeyDetails) => T;
+    unusedIamRoleDetails: (value: UnusedIamRoleDetails) => T;
+    unusedIamUserPasswordDetails: (value: UnusedIamUserPasswordDetails) => T;
+    _: (name: string, value: any) => T;
+  }
+  const visit: <T>(value: FindingDetails, visitor: Visitor<T>) => T;
+}
+export declare const FindingType: {
+  readonly EXTERNAL_ACCESS: "ExternalAccess";
+  readonly UNUSED_IAM_ROLE: "UnusedIAMRole";
+  readonly UNUSED_IAM_USER_ACCESS_KEY: "UnusedIAMUserAccessKey";
+  readonly UNUSED_IAM_USER_PASSWORD: "UnusedIAMUserPassword";
+  readonly UNUSED_PERMISSION: "UnusedPermission";
+};
+export type FindingType = (typeof FindingType)[keyof typeof FindingType];
+export interface GetFindingV2Response {
+  analyzedAt: Date | undefined;
+  createdAt: Date | undefined;
+  error?: string;
+  id: string | undefined;
+  nextToken?: string;
+  resource?: string;
+  resourceType: ResourceType | undefined;
+  resourceOwnerAccount: string | undefined;
+  status: FindingStatus | undefined;
+  updatedAt: Date | undefined;
+  findingDetails: FindingDetails[] | undefined;
+  findingType?: FindingType;
+}
 export interface GetGeneratedPolicyRequest {
   jobId: string | undefined;
   includeResourcePlaceholders?: boolean;
@@ -835,6 +1043,29 @@ export interface ListFindingsResponse {
   findings: FindingSummary[] | undefined;
   nextToken?: string;
 }
+export interface ListFindingsV2Request {
+  analyzerArn: string | undefined;
+  filter?: Record<string, Criterion>;
+  maxResults?: number;
+  nextToken?: string;
+  sort?: SortCriteria;
+}
+export interface FindingSummaryV2 {
+  analyzedAt: Date | undefined;
+  createdAt: Date | undefined;
+  error?: string;
+  id: string | undefined;
+  resource?: string;
+  resourceType: ResourceType | undefined;
+  resourceOwnerAccount: string | undefined;
+  status: FindingStatus | undefined;
+  updatedAt: Date | undefined;
+  findingType?: FindingType;
+}
+export interface ListFindingsV2Response {
+  findings: FindingSummaryV2[] | undefined;
+  nextToken?: string;
+}
 export interface ListPolicyGenerationsRequest {
   principalArn?: string;
   maxResults?: number;
@@ -1025,3 +1256,9 @@ export interface ValidatePolicyResponse {
   findings: ValidatePolicyFinding[] | undefined;
   nextToken?: string;
 }
+export declare const CheckAccessNotGrantedRequestFilterSensitiveLog: (
+  obj: CheckAccessNotGrantedRequest
+) => any;
+export declare const CheckNoNewAccessRequestFilterSensitiveLog: (
+  obj: CheckNoNewAccessRequest
+) => any;

package/dist-types/ts3.4/pagination/GetFindingV2Paginator.d.ts

@@ -0,0 +1,11 @@
+import { Paginator } from "@smithy/types";
+import {
+  GetFindingV2CommandInput,
+  GetFindingV2CommandOutput,
+} from "../commands/GetFindingV2Command";
+import { AccessAnalyzerPaginationConfiguration } from "./Interfaces";
+export declare function paginateGetFindingV2(
+  config: AccessAnalyzerPaginationConfiguration,
+  input: GetFindingV2CommandInput,
+  ...additionalArguments: any
+): Paginator<GetFindingV2CommandOutput>;

package/dist-types/ts3.4/pagination/ListFindingsV2Paginator.d.ts

@@ -0,0 +1,11 @@
+import { Paginator } from "@smithy/types";
+import {
+  ListFindingsV2CommandInput,
+  ListFindingsV2CommandOutput,
+} from "../commands/ListFindingsV2Command";
+import { AccessAnalyzerPaginationConfiguration } from "./Interfaces";
+export declare function paginateListFindingsV2(
+  config: AccessAnalyzerPaginationConfiguration,
+  input: ListFindingsV2CommandInput,
+  ...additionalArguments: any
+): Paginator<ListFindingsV2CommandOutput>;

package/dist-types/ts3.4/pagination/index.d.ts

@@ -1,3 +1,4 @@
+export * from "./GetFindingV2Paginator";
 export * from "./Interfaces";
 export * from "./ListAccessPreviewFindingsPaginator";
 export * from "./ListAccessPreviewsPaginator";
@@ -5,5 +6,6 @@ export * from "./ListAnalyzedResourcesPaginator";
 export * from "./ListAnalyzersPaginator";
 export * from "./ListArchiveRulesPaginator";
 export * from "./ListFindingsPaginator";
+export * from "./ListFindingsV2Paginator";
 export * from "./ListPolicyGenerationsPaginator";
 export * from "./ValidatePolicyPaginator";

package/dist-types/ts3.4/protocols/Aws_restJson1.d.ts

@@ -11,6 +11,14 @@ import {
   CancelPolicyGenerationCommandInput,
   CancelPolicyGenerationCommandOutput,
 } from "../commands/CancelPolicyGenerationCommand";
+import {
+  CheckAccessNotGrantedCommandInput,
+  CheckAccessNotGrantedCommandOutput,
+} from "../commands/CheckAccessNotGrantedCommand";
+import {
+  CheckNoNewAccessCommandInput,
+  CheckNoNewAccessCommandOutput,
+} from "../commands/CheckNoNewAccessCommand";
 import {
   CreateAccessPreviewCommandInput,
   CreateAccessPreviewCommandOutput,
@@ -51,6 +59,10 @@ import {
   GetFindingCommandInput,
   GetFindingCommandOutput,
 } from "../commands/GetFindingCommand";
+import {
+  GetFindingV2CommandInput,
+  GetFindingV2CommandOutput,
+} from "../commands/GetFindingV2Command";
 import {
   GetGeneratedPolicyCommandInput,
   GetGeneratedPolicyCommandOutput,
@@ -79,6 +91,10 @@ import {
   ListFindingsCommandInput,
   ListFindingsCommandOutput,
 } from "../commands/ListFindingsCommand";
+import {
+  ListFindingsV2CommandInput,
+  ListFindingsV2CommandOutput,
+} from "../commands/ListFindingsV2Command";
 import {
   ListPolicyGenerationsCommandInput,
   ListPolicyGenerationsCommandOutput,
@@ -123,6 +139,14 @@ export declare const se_CancelPolicyGenerationCommand: (
   input: CancelPolicyGenerationCommandInput,
   context: __SerdeContext
 ) => Promise<__HttpRequest>;
+export declare const se_CheckAccessNotGrantedCommand: (
+  input: CheckAccessNotGrantedCommandInput,
+  context: __SerdeContext
+) => Promise<__HttpRequest>;
+export declare const se_CheckNoNewAccessCommand: (
+  input: CheckNoNewAccessCommandInput,
+  context: __SerdeContext
+) => Promise<__HttpRequest>;
 export declare const se_CreateAccessPreviewCommand: (
   input: CreateAccessPreviewCommandInput,
   context: __SerdeContext
@@ -163,6 +187,10 @@ export declare const se_GetFindingCommand: (
   input: GetFindingCommandInput,
   context: __SerdeContext
 ) => Promise<__HttpRequest>;
+export declare const se_GetFindingV2Command: (
+  input: GetFindingV2CommandInput,
+  context: __SerdeContext
+) => Promise<__HttpRequest>;
 export declare const se_GetGeneratedPolicyCommand: (
   input: GetGeneratedPolicyCommandInput,
   context: __SerdeContext
@@ -191,6 +219,10 @@ export declare const se_ListFindingsCommand: (
   input: ListFindingsCommandInput,
   context: __SerdeContext
 ) => Promise<__HttpRequest>;
+export declare const se_ListFindingsV2Command: (
+  input: ListFindingsV2CommandInput,
+  context: __SerdeContext
+) => Promise<__HttpRequest>;
 export declare const se_ListPolicyGenerationsCommand: (
   input: ListPolicyGenerationsCommandInput,
   context: __SerdeContext
@@ -235,6 +267,14 @@ export declare const de_CancelPolicyGenerationCommand: (
   output: __HttpResponse,
   context: __SerdeContext
 ) => Promise<CancelPolicyGenerationCommandOutput>;
+export declare const de_CheckAccessNotGrantedCommand: (
+  output: __HttpResponse,
+  context: __SerdeContext
+) => Promise<CheckAccessNotGrantedCommandOutput>;
+export declare const de_CheckNoNewAccessCommand: (
+  output: __HttpResponse,
+  context: __SerdeContext
+) => Promise<CheckNoNewAccessCommandOutput>;
 export declare const de_CreateAccessPreviewCommand: (
   output: __HttpResponse,
   context: __SerdeContext
@@ -275,6 +315,10 @@ export declare const de_GetFindingCommand: (
   output: __HttpResponse,
   context: __SerdeContext
 ) => Promise<GetFindingCommandOutput>;
+export declare const de_GetFindingV2Command: (
+  output: __HttpResponse,
+  context: __SerdeContext
+) => Promise<GetFindingV2CommandOutput>;
 export declare const de_GetGeneratedPolicyCommand: (
   output: __HttpResponse,
   context: __SerdeContext
@@ -303,6 +347,10 @@ export declare const de_ListFindingsCommand: (
   output: __HttpResponse,
   context: __SerdeContext
 ) => Promise<ListFindingsCommandOutput>;
+export declare const de_ListFindingsV2Command: (
+  output: __HttpResponse,
+  context: __SerdeContext
+) => Promise<ListFindingsV2CommandOutput>;
 export declare const de_ListPolicyGenerationsCommand: (
   output: __HttpResponse,
   context: __SerdeContext

package/package.json

@@ -1,7 +1,7 @@
 {
   "name": "@aws-sdk/client-accessanalyzer",
   "description": "AWS SDK for JavaScript Accessanalyzer Client for Node.js, Browser and React Native",
-  "version": "3.451.0",
+  "version": "3.458.0",
   "scripts": {
     "build": "concurrently 'yarn:build:cjs' 'yarn:build:es' 'yarn:build:types'",
     "build:cjs": "tsc -p tsconfig.cjs.json",
@@ -21,9 +21,9 @@
   "dependencies": {
     "@aws-crypto/sha256-browser": "3.0.0",
     "@aws-crypto/sha256-js": "3.0.0",
-    "@aws-sdk/client-sts": "3.451.0",
+    "@aws-sdk/client-sts": "3.458.0",
     "@aws-sdk/core": "3.451.0",
-    "@aws-sdk/credential-provider-node": "3.451.0",
+    "@aws-sdk/credential-provider-node": "3.458.0",
     "@aws-sdk/middleware-host-header": "3.451.0",
     "@aws-sdk/middleware-logger": "3.451.0",
     "@aws-sdk/middleware-recursion-detection": "3.451.0",