@aws-sdk/client-accessanalyzer 3.592.0 → 3.596.0

package/README.md

@@ -257,6 +257,14 @@ CheckNoNewAccess
 
 [Command API Reference](https://docs.aws.amazon.com/AWSJavaScriptSDK/v3/latest/client/accessanalyzer/command/CheckNoNewAccessCommand/) / [Input](https://docs.aws.amazon.com/AWSJavaScriptSDK/v3/latest/Package/-aws-sdk-client-accessanalyzer/Interface/CheckNoNewAccessCommandInput/) / [Output](https://docs.aws.amazon.com/AWSJavaScriptSDK/v3/latest/Package/-aws-sdk-client-accessanalyzer/Interface/CheckNoNewAccessCommandOutput/)
 
+</details>
+<details>
+<summary>
+CheckNoPublicAccess
+</summary>
+
+[Command API Reference](https://docs.aws.amazon.com/AWSJavaScriptSDK/v3/latest/client/accessanalyzer/command/CheckNoPublicAccessCommand/) / [Input](https://docs.aws.amazon.com/AWSJavaScriptSDK/v3/latest/Package/-aws-sdk-client-accessanalyzer/Interface/CheckNoPublicAccessCommandInput/) / [Output](https://docs.aws.amazon.com/AWSJavaScriptSDK/v3/latest/Package/-aws-sdk-client-accessanalyzer/Interface/CheckNoPublicAccessCommandOutput/)
+
 </details>
 <details>
 <summary>
@@ -297,6 +305,14 @@ DeleteArchiveRule
 
 [Command API Reference](https://docs.aws.amazon.com/AWSJavaScriptSDK/v3/latest/client/accessanalyzer/command/DeleteArchiveRuleCommand/) / [Input](https://docs.aws.amazon.com/AWSJavaScriptSDK/v3/latest/Package/-aws-sdk-client-accessanalyzer/Interface/DeleteArchiveRuleCommandInput/) / [Output](https://docs.aws.amazon.com/AWSJavaScriptSDK/v3/latest/Package/-aws-sdk-client-accessanalyzer/Interface/DeleteArchiveRuleCommandOutput/)
 
+</details>
+<details>
+<summary>
+GenerateFindingRecommendation
+</summary>
+
+[Command API Reference](https://docs.aws.amazon.com/AWSJavaScriptSDK/v3/latest/client/accessanalyzer/command/GenerateFindingRecommendationCommand/) / [Input](https://docs.aws.amazon.com/AWSJavaScriptSDK/v3/latest/Package/-aws-sdk-client-accessanalyzer/Interface/GenerateFindingRecommendationCommandInput/) / [Output](https://docs.aws.amazon.com/AWSJavaScriptSDK/v3/latest/Package/-aws-sdk-client-accessanalyzer/Interface/GenerateFindingRecommendationCommandOutput/)
+
 </details>
 <details>
 <summary>
@@ -337,6 +353,14 @@ GetFinding
 
 [Command API Reference](https://docs.aws.amazon.com/AWSJavaScriptSDK/v3/latest/client/accessanalyzer/command/GetFindingCommand/) / [Input](https://docs.aws.amazon.com/AWSJavaScriptSDK/v3/latest/Package/-aws-sdk-client-accessanalyzer/Interface/GetFindingCommandInput/) / [Output](https://docs.aws.amazon.com/AWSJavaScriptSDK/v3/latest/Package/-aws-sdk-client-accessanalyzer/Interface/GetFindingCommandOutput/)
 
+</details>
+<details>
+<summary>
+GetFindingRecommendation
+</summary>
+
+[Command API Reference](https://docs.aws.amazon.com/AWSJavaScriptSDK/v3/latest/client/accessanalyzer/command/GetFindingRecommendationCommand/) / [Input](https://docs.aws.amazon.com/AWSJavaScriptSDK/v3/latest/Package/-aws-sdk-client-accessanalyzer/Interface/GetFindingRecommendationCommandInput/) / [Output](https://docs.aws.amazon.com/AWSJavaScriptSDK/v3/latest/Package/-aws-sdk-client-accessanalyzer/Interface/GetFindingRecommendationCommandOutput/)
+
 </details>
 <details>
 <summary>

package/dist-cjs/index.js

@@ -25,6 +25,7 @@ __export(src_exports, {
   AccessAnalyzerClient: () => AccessAnalyzerClient,
   AccessAnalyzerServiceException: () => AccessAnalyzerServiceException,
   AccessCheckPolicyType: () => AccessCheckPolicyType,
+  AccessCheckResourceType: () => AccessCheckResourceType,
   AccessDeniedException: () => AccessDeniedException,
   AccessPreviewStatus: () => AccessPreviewStatus,
   AccessPreviewStatusReasonCode: () => AccessPreviewStatusReasonCode,
@@ -39,6 +40,9 @@ __export(src_exports, {
   CheckNoNewAccessCommand: () => CheckNoNewAccessCommand,
   CheckNoNewAccessRequestFilterSensitiveLog: () => CheckNoNewAccessRequestFilterSensitiveLog,
   CheckNoNewAccessResult: () => CheckNoNewAccessResult,
+  CheckNoPublicAccessCommand: () => CheckNoPublicAccessCommand,
+  CheckNoPublicAccessRequestFilterSensitiveLog: () => CheckNoPublicAccessRequestFilterSensitiveLog,
+  CheckNoPublicAccessResult: () => CheckNoPublicAccessResult,
   Configuration: () => Configuration,
   ConflictException: () => ConflictException,
   CreateAccessPreviewCommand: () => CreateAccessPreviewCommand,
@@ -49,11 +53,13 @@ __export(src_exports, {
   FindingChangeType: () => FindingChangeType,
   FindingDetails: () => FindingDetails,
   FindingType: () => FindingType,
+  GenerateFindingRecommendationCommand: () => GenerateFindingRecommendationCommand,
   GetAccessPreviewCommand: () => GetAccessPreviewCommand,
   GetAnalyzedResourceCommand: () => GetAnalyzedResourceCommand,
   GetAnalyzerCommand: () => GetAnalyzerCommand,
   GetArchiveRuleCommand: () => GetArchiveRuleCommand,
   GetFindingCommand: () => GetFindingCommand,
+  GetFindingRecommendationCommand: () => GetFindingRecommendationCommand,
   GetFindingV2Command: () => GetFindingV2Command,
   GetGeneratedPolicyCommand: () => GetGeneratedPolicyCommand,
   InternalServerException: () => InternalServerException,
@@ -76,10 +82,14 @@ __export(src_exports, {
   PolicyType: () => PolicyType,
   RdsDbClusterSnapshotAttributeValue: () => RdsDbClusterSnapshotAttributeValue,
   RdsDbSnapshotAttributeValue: () => RdsDbSnapshotAttributeValue,
+  RecommendationType: () => RecommendationType,
+  RecommendedRemediationAction: () => RecommendedRemediationAction,
+  RecommendedStep: () => RecommendedStep,
   ResourceNotFoundException: () => ResourceNotFoundException,
   ServiceQuotaExceededException: () => ServiceQuotaExceededException,
   StartPolicyGenerationCommand: () => StartPolicyGenerationCommand,
   StartResourceScanCommand: () => StartResourceScanCommand,
+  Status: () => Status,
   TagResourceCommand: () => TagResourceCommand,
   ThrottlingException: () => ThrottlingException,
   UnprocessableEntityException: () => UnprocessableEntityException,
@@ -92,6 +102,7 @@ __export(src_exports, {
   ValidationException: () => ValidationException,
   ValidationExceptionReason: () => ValidationExceptionReason,
   __Client: () => import_smithy_client.Client,
+  paginateGetFindingRecommendation: () => paginateGetFindingRecommendation,
   paginateGetFindingV2: () => paginateGetFindingV2,
   paginateListAccessPreviewFindings: () => paginateListAccessPreviewFindings,
   paginateListAccessPreviews: () => paginateListAccessPreviews,
@@ -395,6 +406,7 @@ var ThrottlingException = _ThrottlingException;
 var ValidationExceptionReason = {
   CANNOT_PARSE: "cannotParse",
   FIELD_VALIDATION_FAILED: "fieldValidationFailed",
+  NOT_SUPPORTED: "notSupported",
   OTHER: "other",
   UNKNOWN_OPERATION: "unknownOperation"
 };
@@ -472,6 +484,30 @@ var CheckNoNewAccessResult = {
   FAIL: "FAIL",
   PASS: "PASS"
 };
+var AccessCheckResourceType = {
+  DYNAMODB_STREAM: "AWS::DynamoDB::Stream",
+  DYNAMODB_TABLE: "AWS::DynamoDB::Table",
+  EFS_FILESYSTEM: "AWS::EFS::FileSystem",
+  KINESIS_DATA_STREAM: "AWS::Kinesis::Stream",
+  KINESIS_STREAM_CONSUMER: "AWS::Kinesis::StreamConsumer",
+  KMS_KEY: "AWS::KMS::Key",
+  LAMBDA_FUNCTION: "AWS::Lambda::Function",
+  OPENSEARCHSERVICE_DOMAIN: "AWS::OpenSearchService::Domain",
+  ROLE_TRUST: "AWS::IAM::AssumeRolePolicyDocument",
+  S3EXPRESS_DIRECTORYBUCKET: "AWS::S3Express::DirectoryBucket",
+  S3_ACCESS_POINT: "AWS::S3::AccessPoint",
+  S3_BUCKET: "AWS::S3::Bucket",
+  S3_GLACIER: "AWS::S3::Glacier",
+  S3_OUTPOSTS_ACCESS_POINT: "AWS::S3Outposts::AccessPoint",
+  S3_OUTPOSTS_BUCKET: "AWS::S3Outposts::Bucket",
+  SECRETSMANAGER_SECRET: "AWS::SecretsManager::Secret",
+  SNS_TOPIC: "AWS::SNS::Topic",
+  SQS_QUEUE: "AWS::SQS::Queue"
+};
+var CheckNoPublicAccessResult = {
+  FAIL: "FAIL",
+  PASS: "PASS"
+};
 var KmsGrantOperation = {
   CREATE_GRANT: "CreateGrant",
   DECRYPT: "Decrypt",
@@ -574,6 +610,26 @@ var AccessPreviewStatusReasonCode = {
   INTERNAL_ERROR: "INTERNAL_ERROR",
   INVALID_CONFIGURATION: "INVALID_CONFIGURATION"
 };
+var RecommendationType = {
+  UNUSED_PERMISSION_RECOMMENDATION: "UnusedPermissionRecommendation"
+};
+var RecommendedRemediationAction = {
+  CREATE_POLICY: "CREATE_POLICY",
+  DETACH_POLICY: "DETACH_POLICY"
+};
+var RecommendedStep;
+((RecommendedStep3) => {
+  RecommendedStep3.visit = /* @__PURE__ */ __name((value, visitor) => {
+    if (value.unusedPermissionsRecommendedStep !== void 0)
+      return visitor.unusedPermissionsRecommendedStep(value.unusedPermissionsRecommendedStep);
+    return visitor._(value.$unknown[0], value.$unknown[1]);
+  }, "visit");
+})(RecommendedStep || (RecommendedStep = {}));
+var Status = {
+  FAILED: "FAILED",
+  IN_PROGRESS: "IN_PROGRESS",
+  SUCCEEDED: "SUCCEEDED"
+};
 var FindingDetails;
 ((FindingDetails3) => {
   FindingDetails3.visit = /* @__PURE__ */ __name((value, visitor) => {
@@ -668,6 +724,10 @@ var CheckNoNewAccessRequestFilterSensitiveLog = /* @__PURE__ */ __name((obj) =>
   ...obj.newPolicyDocument && { newPolicyDocument: import_smithy_client.SENSITIVE_STRING },
   ...obj.existingPolicyDocument && { existingPolicyDocument: import_smithy_client.SENSITIVE_STRING }
 }), "CheckNoNewAccessRequestFilterSensitiveLog");
+var CheckNoPublicAccessRequestFilterSensitiveLog = /* @__PURE__ */ __name((obj) => ({
+  ...obj,
+  ...obj.policyDocument && { policyDocument: import_smithy_client.SENSITIVE_STRING }
+}), "CheckNoPublicAccessRequestFilterSensitiveLog");
 
 // src/protocols/Aws_restJson1.ts
 var se_ApplyArchiveRuleCommand = /* @__PURE__ */ __name(async (input, context) => {
@@ -730,6 +790,22 @@ var se_CheckNoNewAccessCommand = /* @__PURE__ */ __name(async (input, context) =
   b.m("POST").h(headers).b(body);
   return b.build();
 }, "se_CheckNoNewAccessCommand");
+var se_CheckNoPublicAccessCommand = /* @__PURE__ */ __name(async (input, context) => {
+  const b = (0, import_core.requestBuilder)(input, context);
+  const headers = {
+    "content-type": "application/json"
+  };
+  b.bp("/policy/check-no-public-access");
+  let body;
+  body = JSON.stringify(
+    (0, import_smithy_client.take)(input, {
+      policyDocument: [],
+      resourceType: []
+    })
+  );
+  b.m("POST").h(headers).b(body);
+  return b.build();
+}, "se_CheckNoPublicAccessCommand");
 var se_CreateAccessPreviewCommand = /* @__PURE__ */ __name(async (input, context) => {
   const b = (0, import_core.requestBuilder)(input, context);
   const headers = {
@@ -810,6 +886,18 @@ var se_DeleteArchiveRuleCommand = /* @__PURE__ */ __name(async (input, context)
   b.m("DELETE").h(headers).q(query).b(body);
   return b.build();
 }, "se_DeleteArchiveRuleCommand");
+var se_GenerateFindingRecommendationCommand = /* @__PURE__ */ __name(async (input, context) => {
+  const b = (0, import_core.requestBuilder)(input, context);
+  const headers = {};
+  b.bp("/recommendation/{id}");
+  b.p("id", () => input.id, "{id}", false);
+  const query = (0, import_smithy_client.map)({
+    [_aA]: [, (0, import_smithy_client.expectNonNull)(input[_aA], `analyzerArn`)]
+  });
+  let body;
+  b.m("POST").h(headers).q(query).b(body);
+  return b.build();
+}, "se_GenerateFindingRecommendationCommand");
 var se_GetAccessPreviewCommand = /* @__PURE__ */ __name(async (input, context) => {
   const b = (0, import_core.requestBuilder)(input, context);
   const headers = {};
@@ -865,6 +953,20 @@ var se_GetFindingCommand = /* @__PURE__ */ __name(async (input, context) => {
   b.m("GET").h(headers).q(query).b(body);
   return b.build();
 }, "se_GetFindingCommand");
+var se_GetFindingRecommendationCommand = /* @__PURE__ */ __name(async (input, context) => {
+  const b = (0, import_core.requestBuilder)(input, context);
+  const headers = {};
+  b.bp("/recommendation/{id}");
+  b.p("id", () => input.id, "{id}", false);
+  const query = (0, import_smithy_client.map)({
+    [_aA]: [, (0, import_smithy_client.expectNonNull)(input[_aA], `analyzerArn`)],
+    [_mR]: [() => input.maxResults !== void 0, () => input[_mR].toString()],
+    [_nT]: [, input[_nT]]
+  });
+  let body;
+  b.m("GET").h(headers).q(query).b(body);
+  return b.build();
+}, "se_GetFindingRecommendationCommand");
 var se_GetFindingV2Command = /* @__PURE__ */ __name(async (input, context) => {
   const b = (0, import_core.requestBuilder)(input, context);
   const headers = {};
@@ -1204,6 +1306,22 @@ var de_CheckNoNewAccessCommand = /* @__PURE__ */ __name(async (output, context)
   Object.assign(contents, doc);
   return contents;
 }, "de_CheckNoNewAccessCommand");
+var de_CheckNoPublicAccessCommand = /* @__PURE__ */ __name(async (output, context) => {
+  if (output.statusCode !== 200 && output.statusCode >= 300) {
+    return de_CommandError(output, context);
+  }
+  const contents = (0, import_smithy_client.map)({
+    $metadata: deserializeMetadata(output)
+  });
+  const data = (0, import_smithy_client.expectNonNull)((0, import_smithy_client.expectObject)(await (0, import_core2.parseJsonBody)(output.body, context)), "body");
+  const doc = (0, import_smithy_client.take)(data, {
+    message: import_smithy_client.expectString,
+    reasons: import_smithy_client._json,
+    result: import_smithy_client.expectString
+  });
+  Object.assign(contents, doc);
+  return contents;
+}, "de_CheckNoPublicAccessCommand");
 var de_CreateAccessPreviewCommand = /* @__PURE__ */ __name(async (output, context) => {
   if (output.statusCode !== 200 && output.statusCode >= 300) {
     return de_CommandError(output, context);
@@ -1262,6 +1380,16 @@ var de_DeleteArchiveRuleCommand = /* @__PURE__ */ __name(async (output, context)
   await (0, import_smithy_client.collectBody)(output.body, context);
   return contents;
 }, "de_DeleteArchiveRuleCommand");
+var de_GenerateFindingRecommendationCommand = /* @__PURE__ */ __name(async (output, context) => {
+  if (output.statusCode !== 200 && output.statusCode >= 300) {
+    return de_CommandError(output, context);
+  }
+  const contents = (0, import_smithy_client.map)({
+    $metadata: deserializeMetadata(output)
+  });
+  await (0, import_smithy_client.collectBody)(output.body, context);
+  return contents;
+}, "de_GenerateFindingRecommendationCommand");
 var de_GetAccessPreviewCommand = /* @__PURE__ */ __name(async (output, context) => {
   if (output.statusCode !== 200 && output.statusCode >= 300) {
     return de_CommandError(output, context);
@@ -1332,6 +1460,27 @@ var de_GetFindingCommand = /* @__PURE__ */ __name(async (output, context) => {
   Object.assign(contents, doc);
   return contents;
 }, "de_GetFindingCommand");
+var de_GetFindingRecommendationCommand = /* @__PURE__ */ __name(async (output, context) => {
+  if (output.statusCode !== 200 && output.statusCode >= 300) {
+    return de_CommandError(output, context);
+  }
+  const contents = (0, import_smithy_client.map)({
+    $metadata: deserializeMetadata(output)
+  });
+  const data = (0, import_smithy_client.expectNonNull)((0, import_smithy_client.expectObject)(await (0, import_core2.parseJsonBody)(output.body, context)), "body");
+  const doc = (0, import_smithy_client.take)(data, {
+    completedAt: (_) => (0, import_smithy_client.expectNonNull)((0, import_smithy_client.parseRfc3339DateTimeWithOffset)(_)),
+    error: import_smithy_client._json,
+    nextToken: import_smithy_client.expectString,
+    recommendationType: import_smithy_client.expectString,
+    recommendedSteps: (_) => de_RecommendedStepList(_, context),
+    resourceArn: import_smithy_client.expectString,
+    startedAt: (_) => (0, import_smithy_client.expectNonNull)((0, import_smithy_client.parseRfc3339DateTimeWithOffset)(_)),
+    status: import_smithy_client.expectString
+  });
+  Object.assign(contents, doc);
+  return contents;
+}, "de_GetFindingRecommendationCommand");
 var de_GetFindingV2Command = /* @__PURE__ */ __name(async (output, context) => {
   if (output.statusCode !== 200 && output.statusCode >= 300) {
     return de_CommandError(output, context);
@@ -2005,6 +2154,23 @@ var de_PolicyGenerationList = /* @__PURE__ */ __name((output, context) => {
   });
   return retVal;
 }, "de_PolicyGenerationList");
+var de_RecommendedStep = /* @__PURE__ */ __name((output, context) => {
+  if (output.unusedPermissionsRecommendedStep != null) {
+    return {
+      unusedPermissionsRecommendedStep: de_UnusedPermissionsRecommendedStep(
+        output.unusedPermissionsRecommendedStep,
+        context
+      )
+    };
+  }
+  return { $unknown: Object.entries(output)[0] };
+}, "de_RecommendedStep");
+var de_RecommendedStepList = /* @__PURE__ */ __name((output, context) => {
+  const retVal = (output || []).filter((e) => e != null).map((entry) => {
+    return de_RecommendedStep((0, import_core2.awsExpectUnion)(entry), context);
+  });
+  return retVal;
+}, "de_RecommendedStepList");
 var de_UnusedAction = /* @__PURE__ */ __name((output, context) => {
   return (0, import_smithy_client.take)(output, {
     action: import_smithy_client.expectString,
@@ -2040,6 +2206,14 @@ var de_UnusedPermissionDetails = /* @__PURE__ */ __name((output, context) => {
     serviceNamespace: import_smithy_client.expectString
   });
 }, "de_UnusedPermissionDetails");
+var de_UnusedPermissionsRecommendedStep = /* @__PURE__ */ __name((output, context) => {
+  return (0, import_smithy_client.take)(output, {
+    existingPolicyId: import_smithy_client.expectString,
+    policyUpdatedAt: (_) => (0, import_smithy_client.expectNonNull)((0, import_smithy_client.parseRfc3339DateTimeWithOffset)(_)),
+    recommendedAction: import_smithy_client.expectString,
+    recommendedPolicy: import_smithy_client.expectString
+  });
+}, "de_UnusedPermissionsRecommendedStep");
 var deserializeMetadata = /* @__PURE__ */ __name((output) => ({
   httpStatusCode: output.statusCode,
   requestId: output.headers["x-amzn-requestid"] ?? output.headers["x-amzn-request-id"] ?? output.headers["x-amz-request-id"],
@@ -2120,6 +2294,22 @@ var _CheckNoNewAccessCommand = class _CheckNoNewAccessCommand extends import_smi
 __name(_CheckNoNewAccessCommand, "CheckNoNewAccessCommand");
 var CheckNoNewAccessCommand = _CheckNoNewAccessCommand;
 
+// src/commands/CheckNoPublicAccessCommand.ts
+
+
+
+var _CheckNoPublicAccessCommand = class _CheckNoPublicAccessCommand extends import_smithy_client.Command.classBuilder().ep({
+  ...commonParams
+}).m(function(Command, cs, config, o) {
+  return [
+    (0, import_middleware_serde.getSerdePlugin)(config, this.serialize, this.deserialize),
+    (0, import_middleware_endpoint.getEndpointPlugin)(config, Command.getEndpointParameterInstructions())
+  ];
+}).s("AccessAnalyzer", "CheckNoPublicAccess", {}).n("AccessAnalyzerClient", "CheckNoPublicAccessCommand").f(CheckNoPublicAccessRequestFilterSensitiveLog, void 0).ser(se_CheckNoPublicAccessCommand).de(de_CheckNoPublicAccessCommand).build() {
+};
+__name(_CheckNoPublicAccessCommand, "CheckNoPublicAccessCommand");
+var CheckNoPublicAccessCommand = _CheckNoPublicAccessCommand;
+
 // src/commands/CreateAccessPreviewCommand.ts
 
 
@@ -2200,6 +2390,22 @@ var _DeleteArchiveRuleCommand = class _DeleteArchiveRuleCommand extends import_s
 __name(_DeleteArchiveRuleCommand, "DeleteArchiveRuleCommand");
 var DeleteArchiveRuleCommand = _DeleteArchiveRuleCommand;
 
+// src/commands/GenerateFindingRecommendationCommand.ts
+
+
+
+var _GenerateFindingRecommendationCommand = class _GenerateFindingRecommendationCommand extends import_smithy_client.Command.classBuilder().ep({
+  ...commonParams
+}).m(function(Command, cs, config, o) {
+  return [
+    (0, import_middleware_serde.getSerdePlugin)(config, this.serialize, this.deserialize),
+    (0, import_middleware_endpoint.getEndpointPlugin)(config, Command.getEndpointParameterInstructions())
+  ];
+}).s("AccessAnalyzer", "GenerateFindingRecommendation", {}).n("AccessAnalyzerClient", "GenerateFindingRecommendationCommand").f(void 0, void 0).ser(se_GenerateFindingRecommendationCommand).de(de_GenerateFindingRecommendationCommand).build() {
+};
+__name(_GenerateFindingRecommendationCommand, "GenerateFindingRecommendationCommand");
+var GenerateFindingRecommendationCommand = _GenerateFindingRecommendationCommand;
+
 // src/commands/GetAccessPreviewCommand.ts
 
 
@@ -2280,6 +2486,22 @@ var _GetFindingCommand = class _GetFindingCommand extends import_smithy_client.C
 __name(_GetFindingCommand, "GetFindingCommand");
 var GetFindingCommand = _GetFindingCommand;
 
+// src/commands/GetFindingRecommendationCommand.ts
+
+
+
+var _GetFindingRecommendationCommand = class _GetFindingRecommendationCommand extends import_smithy_client.Command.classBuilder().ep({
+  ...commonParams
+}).m(function(Command, cs, config, o) {
+  return [
+    (0, import_middleware_serde.getSerdePlugin)(config, this.serialize, this.deserialize),
+    (0, import_middleware_endpoint.getEndpointPlugin)(config, Command.getEndpointParameterInstructions())
+  ];
+}).s("AccessAnalyzer", "GetFindingRecommendation", {}).n("AccessAnalyzerClient", "GetFindingRecommendationCommand").f(void 0, void 0).ser(se_GetFindingRecommendationCommand).de(de_GetFindingRecommendationCommand).build() {
+};
+__name(_GetFindingRecommendationCommand, "GetFindingRecommendationCommand");
+var GetFindingRecommendationCommand = _GetFindingRecommendationCommand;
+
 // src/commands/GetFindingV2Command.ts
 
 
@@ -2574,16 +2796,19 @@ var commands = {
   CancelPolicyGenerationCommand,
   CheckAccessNotGrantedCommand,
   CheckNoNewAccessCommand,
+  CheckNoPublicAccessCommand,
   CreateAccessPreviewCommand,
   CreateAnalyzerCommand,
   CreateArchiveRuleCommand,
   DeleteAnalyzerCommand,
   DeleteArchiveRuleCommand,
+  GenerateFindingRecommendationCommand,
   GetAccessPreviewCommand,
   GetAnalyzedResourceCommand,
   GetAnalyzerCommand,
   GetArchiveRuleCommand,
   GetFindingCommand,
+  GetFindingRecommendationCommand,
   GetFindingV2Command,
   GetGeneratedPolicyCommand,
   ListAccessPreviewFindingsCommand,
@@ -2609,6 +2834,10 @@ __name(_AccessAnalyzer, "AccessAnalyzer");
 var AccessAnalyzer = _AccessAnalyzer;
 (0, import_smithy_client.createAggregatedClient)(commands, AccessAnalyzer);
 
+// src/pagination/GetFindingRecommendationPaginator.ts
+
+var paginateGetFindingRecommendation = (0, import_core.createPaginator)(AccessAnalyzerClient, GetFindingRecommendationCommand, "nextToken", "nextToken", "maxResults");
+
 // src/pagination/GetFindingV2Paginator.ts
 
 var paginateGetFindingV2 = (0, import_core.createPaginator)(AccessAnalyzerClient, GetFindingV2Command, "nextToken", "nextToken", "maxResults");
@@ -2660,16 +2889,19 @@ var paginateValidatePolicy = (0, import_core.createPaginator)(AccessAnalyzerClie
   CancelPolicyGenerationCommand,
   CheckAccessNotGrantedCommand,
   CheckNoNewAccessCommand,
+  CheckNoPublicAccessCommand,
   CreateAccessPreviewCommand,
   CreateAnalyzerCommand,
   CreateArchiveRuleCommand,
   DeleteAnalyzerCommand,
   DeleteArchiveRuleCommand,
+  GenerateFindingRecommendationCommand,
   GetAccessPreviewCommand,
   GetAnalyzedResourceCommand,
   GetAnalyzerCommand,
   GetArchiveRuleCommand,
   GetFindingCommand,
+  GetFindingRecommendationCommand,
   GetFindingV2Command,
   GetGeneratedPolicyCommand,
   ListAccessPreviewFindingsCommand,
@@ -2688,6 +2920,7 @@ var paginateValidatePolicy = (0, import_core.createPaginator)(AccessAnalyzerClie
   UpdateArchiveRuleCommand,
   UpdateFindingsCommand,
   ValidatePolicyCommand,
+  paginateGetFindingRecommendation,
   paginateGetFindingV2,
   paginateListAccessPreviewFindings,
   paginateListAccessPreviews,
@@ -2712,6 +2945,8 @@ var paginateValidatePolicy = (0, import_core.createPaginator)(AccessAnalyzerClie
   InvalidParameterException,
   UnprocessableEntityException,
   CheckNoNewAccessResult,
+  AccessCheckResourceType,
+  CheckNoPublicAccessResult,
   KmsGrantOperation,
   RdsDbClusterSnapshotAttributeValue,
   RdsDbSnapshotAttributeValue,
@@ -2721,6 +2956,10 @@ var paginateValidatePolicy = (0, import_core.createPaginator)(AccessAnalyzerClie
   Configuration,
   AccessPreviewStatus,
   AccessPreviewStatusReasonCode,
+  RecommendationType,
+  RecommendedRemediationAction,
+  RecommendedStep,
+  Status,
   FindingDetails,
   FindingType,
   JobErrorCode,
@@ -2732,6 +2971,7 @@ var paginateValidatePolicy = (0, import_core.createPaginator)(AccessAnalyzerClie
   ValidatePolicyFindingType,
   PathElement,
   CheckAccessNotGrantedRequestFilterSensitiveLog,
-  CheckNoNewAccessRequestFilterSensitiveLog
+  CheckNoNewAccessRequestFilterSensitiveLog,
+  CheckNoPublicAccessRequestFilterSensitiveLog
 });
 

package/dist-es/AccessAnalyzer.js

@@ -4,16 +4,19 @@ import { ApplyArchiveRuleCommand, } from "./commands/ApplyArchiveRuleCommand";
 import { CancelPolicyGenerationCommand, } from "./commands/CancelPolicyGenerationCommand";
 import { CheckAccessNotGrantedCommand, } from "./commands/CheckAccessNotGrantedCommand";
 import { CheckNoNewAccessCommand, } from "./commands/CheckNoNewAccessCommand";
+import { CheckNoPublicAccessCommand, } from "./commands/CheckNoPublicAccessCommand";
 import { CreateAccessPreviewCommand, } from "./commands/CreateAccessPreviewCommand";
 import { CreateAnalyzerCommand, } from "./commands/CreateAnalyzerCommand";
 import { CreateArchiveRuleCommand, } from "./commands/CreateArchiveRuleCommand";
 import { DeleteAnalyzerCommand, } from "./commands/DeleteAnalyzerCommand";
 import { DeleteArchiveRuleCommand, } from "./commands/DeleteArchiveRuleCommand";
+import { GenerateFindingRecommendationCommand, } from "./commands/GenerateFindingRecommendationCommand";
 import { GetAccessPreviewCommand, } from "./commands/GetAccessPreviewCommand";
 import { GetAnalyzedResourceCommand, } from "./commands/GetAnalyzedResourceCommand";
 import { GetAnalyzerCommand } from "./commands/GetAnalyzerCommand";
 import { GetArchiveRuleCommand, } from "./commands/GetArchiveRuleCommand";
 import { GetFindingCommand } from "./commands/GetFindingCommand";
+import { GetFindingRecommendationCommand, } from "./commands/GetFindingRecommendationCommand";
 import { GetFindingV2Command, } from "./commands/GetFindingV2Command";
 import { GetGeneratedPolicyCommand, } from "./commands/GetGeneratedPolicyCommand";
 import { ListAccessPreviewFindingsCommand, } from "./commands/ListAccessPreviewFindingsCommand";
@@ -37,16 +40,19 @@ const commands = {
     CancelPolicyGenerationCommand,
     CheckAccessNotGrantedCommand,
     CheckNoNewAccessCommand,
+    CheckNoPublicAccessCommand,
     CreateAccessPreviewCommand,
     CreateAnalyzerCommand,
     CreateArchiveRuleCommand,
     DeleteAnalyzerCommand,
     DeleteArchiveRuleCommand,
+    GenerateFindingRecommendationCommand,
     GetAccessPreviewCommand,
     GetAnalyzedResourceCommand,
     GetAnalyzerCommand,
     GetArchiveRuleCommand,
     GetFindingCommand,
+    GetFindingRecommendationCommand,
     GetFindingV2Command,
     GetGeneratedPolicyCommand,
     ListAccessPreviewFindingsCommand,

package/dist-es/commands/CheckNoPublicAccessCommand.js

@@ -0,0 +1,25 @@
+import { getEndpointPlugin } from "@smithy/middleware-endpoint";
+import { getSerdePlugin } from "@smithy/middleware-serde";
+import { Command as $Command } from "@smithy/smithy-client";
+import { commonParams } from "../endpoint/EndpointParameters";
+import { CheckNoPublicAccessRequestFilterSensitiveLog, } from "../models/models_0";
+import { de_CheckNoPublicAccessCommand, se_CheckNoPublicAccessCommand } from "../protocols/Aws_restJson1";
+export { $Command };
+export class CheckNoPublicAccessCommand extends $Command
+    .classBuilder()
+    .ep({
+    ...commonParams,
+})
+    .m(function (Command, cs, config, o) {
+    return [
+        getSerdePlugin(config, this.serialize, this.deserialize),
+        getEndpointPlugin(config, Command.getEndpointParameterInstructions()),
+    ];
+})
+    .s("AccessAnalyzer", "CheckNoPublicAccess", {})
+    .n("AccessAnalyzerClient", "CheckNoPublicAccessCommand")
+    .f(CheckNoPublicAccessRequestFilterSensitiveLog, void 0)
+    .ser(se_CheckNoPublicAccessCommand)
+    .de(de_CheckNoPublicAccessCommand)
+    .build() {
+}

package/dist-es/commands/GenerateFindingRecommendationCommand.js

@@ -0,0 +1,24 @@
+import { getEndpointPlugin } from "@smithy/middleware-endpoint";
+import { getSerdePlugin } from "@smithy/middleware-serde";
+import { Command as $Command } from "@smithy/smithy-client";
+import { commonParams } from "../endpoint/EndpointParameters";
+import { de_GenerateFindingRecommendationCommand, se_GenerateFindingRecommendationCommand, } from "../protocols/Aws_restJson1";
+export { $Command };
+export class GenerateFindingRecommendationCommand extends $Command
+    .classBuilder()
+    .ep({
+    ...commonParams,
+})
+    .m(function (Command, cs, config, o) {
+    return [
+        getSerdePlugin(config, this.serialize, this.deserialize),
+        getEndpointPlugin(config, Command.getEndpointParameterInstructions()),
+    ];
+})
+    .s("AccessAnalyzer", "GenerateFindingRecommendation", {})
+    .n("AccessAnalyzerClient", "GenerateFindingRecommendationCommand")
+    .f(void 0, void 0)
+    .ser(se_GenerateFindingRecommendationCommand)
+    .de(de_GenerateFindingRecommendationCommand)
+    .build() {
+}

package/dist-es/commands/GetFindingRecommendationCommand.js

@@ -0,0 +1,24 @@
+import { getEndpointPlugin } from "@smithy/middleware-endpoint";
+import { getSerdePlugin } from "@smithy/middleware-serde";
+import { Command as $Command } from "@smithy/smithy-client";
+import { commonParams } from "../endpoint/EndpointParameters";
+import { de_GetFindingRecommendationCommand, se_GetFindingRecommendationCommand } from "../protocols/Aws_restJson1";
+export { $Command };
+export class GetFindingRecommendationCommand extends $Command
+    .classBuilder()
+    .ep({
+    ...commonParams,
+})
+    .m(function (Command, cs, config, o) {
+    return [
+        getSerdePlugin(config, this.serialize, this.deserialize),
+        getEndpointPlugin(config, Command.getEndpointParameterInstructions()),
+    ];
+})
+    .s("AccessAnalyzer", "GetFindingRecommendation", {})
+    .n("AccessAnalyzerClient", "GetFindingRecommendationCommand")
+    .f(void 0, void 0)
+    .ser(se_GetFindingRecommendationCommand)
+    .de(de_GetFindingRecommendationCommand)
+    .build() {
+}

package/dist-es/commands/index.js

@@ -2,16 +2,19 @@ export * from "./ApplyArchiveRuleCommand";
 export * from "./CancelPolicyGenerationCommand";
 export * from "./CheckAccessNotGrantedCommand";
 export * from "./CheckNoNewAccessCommand";
+export * from "./CheckNoPublicAccessCommand";
 export * from "./CreateAccessPreviewCommand";
 export * from "./CreateAnalyzerCommand";
 export * from "./CreateArchiveRuleCommand";
 export * from "./DeleteAnalyzerCommand";
 export * from "./DeleteArchiveRuleCommand";
+export * from "./GenerateFindingRecommendationCommand";
 export * from "./GetAccessPreviewCommand";
 export * from "./GetAnalyzedResourceCommand";
 export * from "./GetAnalyzerCommand";
 export * from "./GetArchiveRuleCommand";
 export * from "./GetFindingCommand";
+export * from "./GetFindingRecommendationCommand";
 export * from "./GetFindingV2Command";
 export * from "./GetGeneratedPolicyCommand";
 export * from "./ListAccessPreviewFindingsCommand";