@aws-sdk/client-accessanalyzer 3.687.0 → 3.691.0

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.
Files changed (10) hide show
  1. package/dist-cjs/index.js +11 -0
  2. package/dist-es/models/models_0.js +6 -0
  3. package/dist-es/protocols/Aws_restJson1.js +3 -0
  4. package/dist-types/commands/GetFindingCommand.d.ts +1 -0
  5. package/dist-types/commands/GetFindingV2Command.d.ts +1 -0
  6. package/dist-types/commands/ListAccessPreviewFindingsCommand.d.ts +1 -0
  7. package/dist-types/commands/ListFindingsCommand.d.ts +1 -0
  8. package/dist-types/models/models_0.d.ts +235 -197
  9. package/dist-types/ts3.4/models/models_0.d.ts +207 -187
  10. package/package.json +7 -7
package/dist-types/ts3.4/models/models_0.d.ts CHANGED
@@ -1,8 +1,8 @@
1
1
  import { ExceptionOptionType as __ExceptionOptionType } from "@smithy/smithy-client";
2
2
  import { AccessAnalyzerServiceException as __BaseException } from "./AccessAnalyzerServiceException";
3
3
  export interface Access {
4
- actions?: string[];
5
- resources?: string[];
4
+ actions?: string[] | undefined;
5
+ resources?: string[] | undefined;
6
6
  }
7
7
  export declare class AccessDeniedException extends __BaseException {
8
8
  readonly name: "AccessDeniedException";
@@ -19,22 +19,22 @@ export declare class ConflictException extends __BaseException {
19
19
  constructor(opts: __ExceptionOptionType<ConflictException, __BaseException>);
20
20
  }
21
21
  export interface Criterion {
22
- eq?: string[];
23
- neq?: string[];
24
- contains?: string[];
25
- exists?: boolean;
22
+ eq?: string[] | undefined;
23
+ neq?: string[] | undefined;
24
+ contains?: string[] | undefined;
25
+ exists?: boolean | undefined;
26
26
  }
27
27
  export interface CreateArchiveRuleRequest {
28
28
  analyzerName: string | undefined;
29
29
  ruleName: string | undefined;
30
30
  filter: Record<string, Criterion> | undefined;
31
- clientToken?: string;
31
+ clientToken?: string | undefined;
32
32
  }
33
33
  export declare class InternalServerException extends __BaseException {
34
34
  readonly name: "InternalServerException";
35
35
  readonly $fault: "server";
36
36
  $retryable: {};
37
- retryAfterSeconds?: number;
37
+ retryAfterSeconds?: number | undefined;
38
38
  constructor(
39
39
  opts: __ExceptionOptionType<InternalServerException, __BaseException>
40
40
  );
@@ -63,7 +63,7 @@ export declare class ThrottlingException extends __BaseException {
63
63
  $retryable: {
64
64
  throttling: boolean;
65
65
  };
66
- retryAfterSeconds?: number;
66
+ retryAfterSeconds?: number | undefined;
67
67
  constructor(
68
68
  opts: __ExceptionOptionType<ThrottlingException, __BaseException>
69
69
  );
@@ -85,7 +85,7 @@ export declare class ValidationException extends __BaseException {
85
85
  readonly name: "ValidationException";
86
86
  readonly $fault: "client";
87
87
  reason: ValidationExceptionReason | undefined;
88
- fieldList?: ValidationExceptionField[];
88
+ fieldList?: ValidationExceptionField[] | undefined;
89
89
  constructor(
90
90
  opts: __ExceptionOptionType<ValidationException, __BaseException>
91
91
  );
@@ -93,7 +93,7 @@ export declare class ValidationException extends __BaseException {
93
93
  export interface DeleteArchiveRuleRequest {
94
94
  analyzerName: string | undefined;
95
95
  ruleName: string | undefined;
96
- clientToken?: string;
96
+ clientToken?: string | undefined;
97
97
  }
98
98
  export interface GetArchiveRuleRequest {
99
99
  analyzerName: string | undefined;
@@ -110,25 +110,25 @@ export interface GetArchiveRuleResponse {
110
110
  }
111
111
  export interface ListArchiveRulesRequest {
112
112
  analyzerName: string | undefined;
113
- nextToken?: string;
114
- maxResults?: number;
113
+ nextToken?: string | undefined;
114
+ maxResults?: number | undefined;
115
115
  }
116
116
  export interface ListArchiveRulesResponse {
117
117
  archiveRules: ArchiveRuleSummary[] | undefined;
118
- nextToken?: string;
118
+ nextToken?: string | undefined;
119
119
  }
120
120
  export interface UpdateArchiveRuleRequest {
121
121
  analyzerName: string | undefined;
122
122
  ruleName: string | undefined;
123
123
  filter: Record<string, Criterion> | undefined;
124
- clientToken?: string;
124
+ clientToken?: string | undefined;
125
125
  }
126
126
  export interface InlineArchiveRule {
127
127
  ruleName: string | undefined;
128
128
  filter: Record<string, Criterion> | undefined;
129
129
  }
130
130
  export interface UnusedAccessConfiguration {
131
- unusedAccessAge?: number;
131
+ unusedAccessAge?: number | undefined;
132
132
  }
133
133
  export type AnalyzerConfiguration =
134
134
  | AnalyzerConfiguration.UnusedAccessMember
@@ -156,17 +156,17 @@ export type Type =
156
156
  export interface CreateAnalyzerRequest {
157
157
  analyzerName: string | undefined;
158
158
  type: Type | undefined;
159
- archiveRules?: InlineArchiveRule[];
160
- tags?: Record<string, string>;
161
- clientToken?: string;
162
- configuration?: AnalyzerConfiguration;
159
+ archiveRules?: InlineArchiveRule[] | undefined;
160
+ tags?: Record<string, string> | undefined;
161
+ clientToken?: string | undefined;
162
+ configuration?: AnalyzerConfiguration | undefined;
163
163
  }
164
164
  export interface CreateAnalyzerResponse {
165
- arn?: string;
165
+ arn?: string | undefined;
166
166
  }
167
167
  export interface DeleteAnalyzerRequest {
168
168
  analyzerName: string | undefined;
169
- clientToken?: string;
169
+ clientToken?: string | undefined;
170
170
  }
171
171
  export interface GetAnalyzerRequest {
172
172
  analyzerName: string | undefined;
@@ -185,29 +185,29 @@ export interface AnalyzerSummary {
185
185
  name: string | undefined;
186
186
  type: Type | undefined;
187
187
  createdAt: Date | undefined;
188
- lastResourceAnalyzed?: string;
189
- lastResourceAnalyzedAt?: Date;
190
- tags?: Record<string, string>;
188
+ lastResourceAnalyzed?: string | undefined;
189
+ lastResourceAnalyzedAt?: Date | undefined;
190
+ tags?: Record<string, string> | undefined;
191
191
  status: AnalyzerStatus | undefined;
192
- statusReason?: StatusReason;
193
- configuration?: AnalyzerConfiguration;
192
+ statusReason?: StatusReason | undefined;
193
+ configuration?: AnalyzerConfiguration | undefined;
194
194
  }
195
195
  export interface GetAnalyzerResponse {
196
196
  analyzer: AnalyzerSummary | undefined;
197
197
  }
198
198
  export interface ListAnalyzersRequest {
199
- nextToken?: string;
200
- maxResults?: number;
201
- type?: Type;
199
+ nextToken?: string | undefined;
200
+ maxResults?: number | undefined;
201
+ type?: Type | undefined;
202
202
  }
203
203
  export interface ListAnalyzersResponse {
204
204
  analyzers: AnalyzerSummary[] | undefined;
205
- nextToken?: string;
205
+ nextToken?: string | undefined;
206
206
  }
207
207
  export interface ApplyArchiveRuleRequest {
208
208
  analyzerArn: string | undefined;
209
209
  ruleName: string | undefined;
210
- clientToken?: string;
210
+ clientToken?: string | undefined;
211
211
  }
212
212
  export interface CancelPolicyGenerationRequest {
213
213
  jobId: string | undefined;
@@ -225,9 +225,9 @@ export interface CheckAccessNotGrantedRequest {
225
225
  policyType: AccessCheckPolicyType | undefined;
226
226
  }
227
227
  export interface ReasonSummary {
228
- description?: string;
229
- statementIndex?: number;
230
- statementId?: string;
228
+ description?: string | undefined;
229
+ statementIndex?: number | undefined;
230
+ statementId?: string | undefined;
231
231
  }
232
232
  export declare const CheckAccessNotGrantedResult: {
233
233
  readonly FAIL: "FAIL";
@@ -236,9 +236,9 @@ export declare const CheckAccessNotGrantedResult: {
236
236
  export type CheckAccessNotGrantedResult =
237
237
  (typeof CheckAccessNotGrantedResult)[keyof typeof CheckAccessNotGrantedResult];
238
238
  export interface CheckAccessNotGrantedResponse {
239
- result?: CheckAccessNotGrantedResult;
240
- message?: string;
241
- reasons?: ReasonSummary[];
239
+ result?: CheckAccessNotGrantedResult | undefined;
240
+ message?: string | undefined;
241
+ reasons?: ReasonSummary[] | undefined;
242
242
  }
243
243
  export declare class InvalidParameterException extends __BaseException {
244
244
  readonly name: "InvalidParameterException";
@@ -267,9 +267,9 @@ export declare const CheckNoNewAccessResult: {
267
267
  export type CheckNoNewAccessResult =
268
268
  (typeof CheckNoNewAccessResult)[keyof typeof CheckNoNewAccessResult];
269
269
  export interface CheckNoNewAccessResponse {
270
- result?: CheckNoNewAccessResult;
271
- message?: string;
272
- reasons?: ReasonSummary[];
270
+ result?: CheckNoNewAccessResult | undefined;
271
+ message?: string | undefined;
272
+ reasons?: ReasonSummary[] | undefined;
273
273
  }
274
274
  export declare const AccessCheckResourceType: {
275
275
  readonly DYNAMODB_STREAM: "AWS::DynamoDB::Stream";
@@ -304,33 +304,33 @@ export declare const CheckNoPublicAccessResult: {
304
304
  export type CheckNoPublicAccessResult =
305
305
  (typeof CheckNoPublicAccessResult)[keyof typeof CheckNoPublicAccessResult];
306
306
  export interface CheckNoPublicAccessResponse {
307
- result?: CheckNoPublicAccessResult;
308
- message?: string;
309
- reasons?: ReasonSummary[];
307
+ result?: CheckNoPublicAccessResult | undefined;
308
+ message?: string | undefined;
309
+ reasons?: ReasonSummary[] | undefined;
310
310
  }
311
311
  export interface DynamodbStreamConfiguration {
312
- streamPolicy?: string;
312
+ streamPolicy?: string | undefined;
313
313
  }
314
314
  export interface DynamodbTableConfiguration {
315
- tablePolicy?: string;
315
+ tablePolicy?: string | undefined;
316
316
  }
317
317
  export interface EbsSnapshotConfiguration {
318
- userIds?: string[];
319
- groups?: string[];
320
- kmsKeyId?: string;
318
+ userIds?: string[] | undefined;
319
+ groups?: string[] | undefined;
320
+ kmsKeyId?: string | undefined;
321
321
  }
322
322
  export interface EcrRepositoryConfiguration {
323
- repositoryPolicy?: string;
323
+ repositoryPolicy?: string | undefined;
324
324
  }
325
325
  export interface EfsFileSystemConfiguration {
326
- fileSystemPolicy?: string;
326
+ fileSystemPolicy?: string | undefined;
327
327
  }
328
328
  export interface IamRoleConfiguration {
329
- trustPolicy?: string;
329
+ trustPolicy?: string | undefined;
330
330
  }
331
331
  export interface KmsGrantConstraints {
332
- encryptionContextEquals?: Record<string, string>;
333
- encryptionContextSubset?: Record<string, string>;
332
+ encryptionContextEquals?: Record<string, string> | undefined;
333
+ encryptionContextSubset?: Record<string, string> | undefined;
334
334
  }
335
335
  export declare const KmsGrantOperation: {
336
336
  readonly CREATE_GRANT: "CreateGrant";
@@ -353,13 +353,13 @@ export type KmsGrantOperation =
353
353
  export interface KmsGrantConfiguration {
354
354
  operations: KmsGrantOperation[] | undefined;
355
355
  granteePrincipal: string | undefined;
356
- retiringPrincipal?: string;
357
- constraints?: KmsGrantConstraints;
356
+ retiringPrincipal?: string | undefined;
357
+ constraints?: KmsGrantConstraints | undefined;
358
358
  issuingAccount: string | undefined;
359
359
  }
360
360
  export interface KmsKeyConfiguration {
361
- keyPolicies?: Record<string, string>;
362
- grants?: KmsGrantConfiguration[];
361
+ keyPolicies?: Record<string, string> | undefined;
362
+ grants?: KmsGrantConfiguration[] | undefined;
363
363
  }
364
364
  export type RdsDbClusterSnapshotAttributeValue =
365
365
  | RdsDbClusterSnapshotAttributeValue.AccountIdsMember
@@ -383,8 +383,8 @@ export declare namespace RdsDbClusterSnapshotAttributeValue {
383
383
  ) => T;
384
384
  }
385
385
  export interface RdsDbClusterSnapshotConfiguration {
386
- attributes?: Record<string, RdsDbClusterSnapshotAttributeValue>;
387
- kmsKeyId?: string;
386
+ attributes?: Record<string, RdsDbClusterSnapshotAttributeValue> | undefined;
387
+ kmsKeyId?: string | undefined;
388
388
  }
389
389
  export type RdsDbSnapshotAttributeValue =
390
390
  | RdsDbSnapshotAttributeValue.AccountIdsMember
@@ -408,8 +408,8 @@ export declare namespace RdsDbSnapshotAttributeValue {
408
408
  ) => T;
409
409
  }
410
410
  export interface RdsDbSnapshotConfiguration {
411
- attributes?: Record<string, RdsDbSnapshotAttributeValue>;
412
- kmsKeyId?: string;
411
+ attributes?: Record<string, RdsDbSnapshotAttributeValue> | undefined;
412
+ kmsKeyId?: string | undefined;
413
413
  }
414
414
  export interface InternetConfiguration {}
415
415
  export interface VpcConfiguration {
@@ -447,9 +447,9 @@ export interface S3PublicAccessBlockConfiguration {
447
447
  restrictPublicBuckets: boolean | undefined;
448
448
  }
449
449
  export interface S3AccessPointConfiguration {
450
- accessPointPolicy?: string;
451
- publicAccessBlock?: S3PublicAccessBlockConfiguration;
452
- networkOrigin?: NetworkOriginConfiguration;
450
+ accessPointPolicy?: string | undefined;
451
+ publicAccessBlock?: S3PublicAccessBlockConfiguration | undefined;
452
+ networkOrigin?: NetworkOriginConfiguration | undefined;
453
453
  }
454
454
  export type AclGrantee =
455
455
  | AclGrantee.IdMember
@@ -491,23 +491,23 @@ export interface S3BucketAclGrantConfiguration {
491
491
  grantee: AclGrantee | undefined;
492
492
  }
493
493
  export interface S3BucketConfiguration {
494
- bucketPolicy?: string;
495
- bucketAclGrants?: S3BucketAclGrantConfiguration[];
496
- bucketPublicAccessBlock?: S3PublicAccessBlockConfiguration;
497
- accessPoints?: Record<string, S3AccessPointConfiguration>;
494
+ bucketPolicy?: string | undefined;
495
+ bucketAclGrants?: S3BucketAclGrantConfiguration[] | undefined;
496
+ bucketPublicAccessBlock?: S3PublicAccessBlockConfiguration | undefined;
497
+ accessPoints?: Record<string, S3AccessPointConfiguration> | undefined;
498
498
  }
499
499
  export interface S3ExpressDirectoryBucketConfiguration {
500
- bucketPolicy?: string;
500
+ bucketPolicy?: string | undefined;
501
501
  }
502
502
  export interface SecretsManagerSecretConfiguration {
503
- kmsKeyId?: string;
504
- secretPolicy?: string;
503
+ kmsKeyId?: string | undefined;
504
+ secretPolicy?: string | undefined;
505
505
  }
506
506
  export interface SnsTopicConfiguration {
507
- topicPolicy?: string;
507
+ topicPolicy?: string | undefined;
508
508
  }
509
509
  export interface SqsQueueConfiguration {
510
- queuePolicy?: string;
510
+ queuePolicy?: string | undefined;
511
511
  }
512
512
  export type Configuration =
513
513
  | Configuration.DynamodbStreamMember
@@ -805,7 +805,7 @@ export declare namespace Configuration {
805
805
  export interface CreateAccessPreviewRequest {
806
806
  analyzerArn: string | undefined;
807
807
  configurations: Record<string, Configuration> | undefined;
808
- clientToken?: string;
808
+ clientToken?: string | undefined;
809
809
  }
810
810
  export interface CreateAccessPreviewResponse {
811
811
  id: string | undefined;
@@ -840,7 +840,7 @@ export interface AccessPreview {
840
840
  configurations: Record<string, Configuration> | undefined;
841
841
  createdAt: Date | undefined;
842
842
  status: AccessPreviewStatus | undefined;
843
- statusReason?: AccessPreviewStatusReason;
843
+ statusReason?: AccessPreviewStatusReason | undefined;
844
844
  }
845
845
  export interface GetAccessPreviewResponse {
846
846
  accessPreview: AccessPreview | undefined;
@@ -874,22 +874,29 @@ export interface AnalyzedResource {
874
874
  analyzedAt: Date | undefined;
875
875
  updatedAt: Date | undefined;
876
876
  isPublic: boolean | undefined;
877
- actions?: string[];
878
- sharedVia?: string[];
879
- status?: FindingStatus;
877
+ actions?: string[] | undefined;
878
+ sharedVia?: string[] | undefined;
879
+ status?: FindingStatus | undefined;
880
880
  resourceOwnerAccount: string | undefined;
881
- error?: string;
881
+ error?: string | undefined;
882
882
  }
883
883
  export interface GetAnalyzedResourceResponse {
884
- resource?: AnalyzedResource;
884
+ resource?: AnalyzedResource | undefined;
885
885
  }
886
886
  export interface GetFindingRequest {
887
887
  analyzerArn: string | undefined;
888
888
  id: string | undefined;
889
889
  }
890
+ export declare const ResourceControlPolicyRestriction: {
891
+ readonly APPLICABLE: "APPLICABLE";
892
+ readonly FAILED_TO_EVALUATE_RCP: "FAILED_TO_EVALUATE_RCP";
893
+ readonly NOT_APPLICABLE: "NOT_APPLICABLE";
894
+ };
895
+ export type ResourceControlPolicyRestriction =
896
+ (typeof ResourceControlPolicyRestriction)[keyof typeof ResourceControlPolicyRestriction];
890
897
  export interface FindingSourceDetail {
891
- accessPointArn?: string;
892
- accessPointAccount?: string;
898
+ accessPointArn?: string | undefined;
899
+ accessPointAccount?: string | undefined;
893
900
  }
894
901
  export type FindingSourceType =
895
902
  | "BUCKET_ACL"
@@ -898,14 +905,14 @@ export type FindingSourceType =
898
905
  | "S3_ACCESS_POINT_ACCOUNT";
899
906
  export interface FindingSource {
900
907
  type: FindingSourceType | undefined;
901
- detail?: FindingSourceDetail;
908
+ detail?: FindingSourceDetail | undefined;
902
909
  }
903
910
  export interface Finding {
904
911
  id: string | undefined;
905
- principal?: Record<string, string>;
906
- action?: string[];
907
- resource?: string;
908
- isPublic?: boolean;
912
+ principal?: Record<string, string> | undefined;
913
+ action?: string[] | undefined;
914
+ resource?: string | undefined;
915
+ isPublic?: boolean | undefined;
909
916
  resourceType: ResourceType | undefined;
910
917
  condition: Record<string, string> | undefined;
911
918
  createdAt: Date | undefined;
@@ -913,17 +920,20 @@ export interface Finding {
913
920
  updatedAt: Date | undefined;
914
921
  status: FindingStatus | undefined;
915
922
  resourceOwnerAccount: string | undefined;
916
- error?: string;
917
- sources?: FindingSource[];
923
+ error?: string | undefined;
924
+ sources?: FindingSource[] | undefined;
925
+ resourceControlPolicyRestriction?:
926
+ | ResourceControlPolicyRestriction
927
+ | undefined;
918
928
  }
919
929
  export interface GetFindingResponse {
920
- finding?: Finding;
930
+ finding?: Finding | undefined;
921
931
  }
922
932
  export interface GetFindingRecommendationRequest {
923
933
  analyzerArn: string | undefined;
924
934
  id: string | undefined;
925
- maxResults?: number;
926
- nextToken?: string;
935
+ maxResults?: number | undefined;
936
+ nextToken?: string | undefined;
927
937
  }
928
938
  export interface RecommendationError {
929
939
  code: string | undefined;
@@ -941,10 +951,10 @@ export declare const RecommendedRemediationAction: {
941
951
  export type RecommendedRemediationAction =
942
952
  (typeof RecommendedRemediationAction)[keyof typeof RecommendedRemediationAction];
943
953
  export interface UnusedPermissionsRecommendedStep {
944
- policyUpdatedAt?: Date;
954
+ policyUpdatedAt?: Date | undefined;
945
955
  recommendedAction: RecommendedRemediationAction | undefined;
946
- recommendedPolicy?: string;
947
- existingPolicyId?: string;
956
+ recommendedPolicy?: string | undefined;
957
+ existingPolicyId?: string | undefined;
948
958
  }
949
959
  export type RecommendedStep =
950
960
  | RecommendedStep.UnusedPermissionsRecommendedStepMember
@@ -974,45 +984,48 @@ export declare const Status: {
974
984
  export type Status = (typeof Status)[keyof typeof Status];
975
985
  export interface GetFindingRecommendationResponse {
976
986
  startedAt: Date | undefined;
977
- completedAt?: Date;
978
- nextToken?: string;
979
- error?: RecommendationError;
987
+ completedAt?: Date | undefined;
988
+ nextToken?: string | undefined;
989
+ error?: RecommendationError | undefined;
980
990
  resourceArn: string | undefined;
981
- recommendedSteps?: RecommendedStep[];
991
+ recommendedSteps?: RecommendedStep[] | undefined;
982
992
  recommendationType: RecommendationType | undefined;
983
993
  status: Status | undefined;
984
994
  }
985
995
  export interface GetFindingV2Request {
986
996
  analyzerArn: string | undefined;
987
997
  id: string | undefined;
988
- maxResults?: number;
989
- nextToken?: string;
998
+ maxResults?: number | undefined;
999
+ nextToken?: string | undefined;
990
1000
  }
991
1001
  export interface ExternalAccessDetails {
992
- action?: string[];
1002
+ action?: string[] | undefined;
993
1003
  condition: Record<string, string> | undefined;
994
- isPublic?: boolean;
995
- principal?: Record<string, string>;
996
- sources?: FindingSource[];
1004
+ isPublic?: boolean | undefined;
1005
+ principal?: Record<string, string> | undefined;
1006
+ sources?: FindingSource[] | undefined;
1007
+ resourceControlPolicyRestriction?:
1008
+ | ResourceControlPolicyRestriction
1009
+ | undefined;
997
1010
  }
998
1011
  export interface UnusedIamRoleDetails {
999
- lastAccessed?: Date;
1012
+ lastAccessed?: Date | undefined;
1000
1013
  }
1001
1014
  export interface UnusedIamUserAccessKeyDetails {
1002
1015
  accessKeyId: string | undefined;
1003
- lastAccessed?: Date;
1016
+ lastAccessed?: Date | undefined;
1004
1017
  }
1005
1018
  export interface UnusedIamUserPasswordDetails {
1006
- lastAccessed?: Date;
1019
+ lastAccessed?: Date | undefined;
1007
1020
  }
1008
1021
  export interface UnusedAction {
1009
1022
  action: string | undefined;
1010
- lastAccessed?: Date;
1023
+ lastAccessed?: Date | undefined;
1011
1024
  }
1012
1025
  export interface UnusedPermissionDetails {
1013
- actions?: UnusedAction[];
1026
+ actions?: UnusedAction[] | undefined;
1014
1027
  serviceNamespace: string | undefined;
1015
- lastAccessed?: Date;
1028
+ lastAccessed?: Date | undefined;
1016
1029
  }
1017
1030
  export type FindingDetails =
1018
1031
  | FindingDetails.ExternalAccessDetailsMember
@@ -1091,29 +1104,29 @@ export type FindingType = (typeof FindingType)[keyof typeof FindingType];
1091
1104
  export interface GetFindingV2Response {
1092
1105
  analyzedAt: Date | undefined;
1093
1106
  createdAt: Date | undefined;
1094
- error?: string;
1107
+ error?: string | undefined;
1095
1108
  id: string | undefined;
1096
- nextToken?: string;
1097
- resource?: string;
1109
+ nextToken?: string | undefined;
1110
+ resource?: string | undefined;
1098
1111
  resourceType: ResourceType | undefined;
1099
1112
  resourceOwnerAccount: string | undefined;
1100
1113
  status: FindingStatus | undefined;
1101
1114
  updatedAt: Date | undefined;
1102
1115
  findingDetails: FindingDetails[] | undefined;
1103
- findingType?: FindingType;
1116
+ findingType?: FindingType | undefined;
1104
1117
  }
1105
1118
  export interface GetGeneratedPolicyRequest {
1106
1119
  jobId: string | undefined;
1107
- includeResourcePlaceholders?: boolean;
1108
- includeServiceLevelTemplate?: boolean;
1120
+ includeResourcePlaceholders?: boolean | undefined;
1121
+ includeServiceLevelTemplate?: boolean | undefined;
1109
1122
  }
1110
1123
  export interface GeneratedPolicy {
1111
1124
  policy: string | undefined;
1112
1125
  }
1113
1126
  export interface TrailProperties {
1114
1127
  cloudTrailArn: string | undefined;
1115
- regions?: string[];
1116
- allRegions?: boolean;
1128
+ regions?: string[] | undefined;
1129
+ allRegions?: boolean | undefined;
1117
1130
  }
1118
1131
  export interface CloudTrailProperties {
1119
1132
  trailProperties: TrailProperties[] | undefined;
@@ -1121,13 +1134,13 @@ export interface CloudTrailProperties {
1121
1134
  endTime: Date | undefined;
1122
1135
  }
1123
1136
  export interface GeneratedPolicyProperties {
1124
- isComplete?: boolean;
1137
+ isComplete?: boolean | undefined;
1125
1138
  principalArn: string | undefined;
1126
- cloudTrailProperties?: CloudTrailProperties;
1139
+ cloudTrailProperties?: CloudTrailProperties | undefined;
1127
1140
  }
1128
1141
  export interface GeneratedPolicyResult {
1129
1142
  properties: GeneratedPolicyProperties | undefined;
1130
- generatedPolicies?: GeneratedPolicy[];
1143
+ generatedPolicies?: GeneratedPolicy[] | undefined;
1131
1144
  }
1132
1145
  export declare const JobErrorCode: {
1133
1146
  readonly AUTHORIZATION_ERROR: "AUTHORIZATION_ERROR";
@@ -1151,8 +1164,8 @@ export interface JobDetails {
1151
1164
  jobId: string | undefined;
1152
1165
  status: JobStatus | undefined;
1153
1166
  startedOn: Date | undefined;
1154
- completedOn?: Date;
1155
- jobError?: JobError;
1167
+ completedOn?: Date | undefined;
1168
+ jobError?: JobError | undefined;
1156
1169
  }
1157
1170
  export interface GetGeneratedPolicyResponse {
1158
1171
  jobDetails: JobDetails | undefined;
@@ -1161,9 +1174,9 @@ export interface GetGeneratedPolicyResponse {
1161
1174
  export interface ListAccessPreviewFindingsRequest {
1162
1175
  accessPreviewId: string | undefined;
1163
1176
  analyzerArn: string | undefined;
1164
- filter?: Record<string, Criterion>;
1165
- nextToken?: string;
1166
- maxResults?: number;
1177
+ filter?: Record<string, Criterion> | undefined;
1178
+ nextToken?: string | undefined;
1179
+ maxResults?: number | undefined;
1167
1180
  }
1168
1181
  export declare const FindingChangeType: {
1169
1182
  readonly CHANGED: "CHANGED";
@@ -1174,46 +1187,49 @@ export type FindingChangeType =
1174
1187
  (typeof FindingChangeType)[keyof typeof FindingChangeType];
1175
1188
  export interface AccessPreviewFinding {
1176
1189
  id: string | undefined;
1177
- existingFindingId?: string;
1178
- existingFindingStatus?: FindingStatus;
1179
- principal?: Record<string, string>;
1180
- action?: string[];
1181
- condition?: Record<string, string>;
1182
- resource?: string;
1183
- isPublic?: boolean;
1190
+ existingFindingId?: string | undefined;
1191
+ existingFindingStatus?: FindingStatus | undefined;
1192
+ principal?: Record<string, string> | undefined;
1193
+ action?: string[] | undefined;
1194
+ condition?: Record<string, string> | undefined;
1195
+ resource?: string | undefined;
1196
+ isPublic?: boolean | undefined;
1184
1197
  resourceType: ResourceType | undefined;
1185
1198
  createdAt: Date | undefined;
1186
1199
  changeType: FindingChangeType | undefined;
1187
1200
  status: FindingStatus | undefined;
1188
1201
  resourceOwnerAccount: string | undefined;
1189
- error?: string;
1190
- sources?: FindingSource[];
1202
+ error?: string | undefined;
1203
+ sources?: FindingSource[] | undefined;
1204
+ resourceControlPolicyRestriction?:
1205
+ | ResourceControlPolicyRestriction
1206
+ | undefined;
1191
1207
  }
1192
1208
  export interface ListAccessPreviewFindingsResponse {
1193
1209
  findings: AccessPreviewFinding[] | undefined;
1194
- nextToken?: string;
1210
+ nextToken?: string | undefined;
1195
1211
  }
1196
1212
  export interface ListAccessPreviewsRequest {
1197
1213
  analyzerArn: string | undefined;
1198
- nextToken?: string;
1199
- maxResults?: number;
1214
+ nextToken?: string | undefined;
1215
+ maxResults?: number | undefined;
1200
1216
  }
1201
1217
  export interface AccessPreviewSummary {
1202
1218
  id: string | undefined;
1203
1219
  analyzerArn: string | undefined;
1204
1220
  createdAt: Date | undefined;
1205
1221
  status: AccessPreviewStatus | undefined;
1206
- statusReason?: AccessPreviewStatusReason;
1222
+ statusReason?: AccessPreviewStatusReason | undefined;
1207
1223
  }
1208
1224
  export interface ListAccessPreviewsResponse {
1209
1225
  accessPreviews: AccessPreviewSummary[] | undefined;
1210
- nextToken?: string;
1226
+ nextToken?: string | undefined;
1211
1227
  }
1212
1228
  export interface ListAnalyzedResourcesRequest {
1213
1229
  analyzerArn: string | undefined;
1214
- resourceType?: ResourceType;
1215
- nextToken?: string;
1216
- maxResults?: number;
1230
+ resourceType?: ResourceType | undefined;
1231
+ nextToken?: string | undefined;
1232
+ maxResults?: number | undefined;
1217
1233
  }
1218
1234
  export interface AnalyzedResourceSummary {
1219
1235
  resourceArn: string | undefined;
@@ -1222,26 +1238,26 @@ export interface AnalyzedResourceSummary {
1222
1238
  }
1223
1239
  export interface ListAnalyzedResourcesResponse {
1224
1240
  analyzedResources: AnalyzedResourceSummary[] | undefined;
1225
- nextToken?: string;
1241
+ nextToken?: string | undefined;
1226
1242
  }
1227
1243
  export type OrderBy = "ASC" | "DESC";
1228
1244
  export interface SortCriteria {
1229
- attributeName?: string;
1230
- orderBy?: OrderBy;
1245
+ attributeName?: string | undefined;
1246
+ orderBy?: OrderBy | undefined;
1231
1247
  }
1232
1248
  export interface ListFindingsRequest {
1233
1249
  analyzerArn: string | undefined;
1234
- filter?: Record<string, Criterion>;
1235
- sort?: SortCriteria;
1236
- nextToken?: string;
1237
- maxResults?: number;
1250
+ filter?: Record<string, Criterion> | undefined;
1251
+ sort?: SortCriteria | undefined;
1252
+ nextToken?: string | undefined;
1253
+ maxResults?: number | undefined;
1238
1254
  }
1239
1255
  export interface FindingSummary {
1240
1256
  id: string | undefined;
1241
- principal?: Record<string, string>;
1242
- action?: string[];
1243
- resource?: string;
1244
- isPublic?: boolean;
1257
+ principal?: Record<string, string> | undefined;
1258
+ action?: string[] | undefined;
1259
+ resource?: string | undefined;
1260
+ isPublic?: boolean | undefined;
1245
1261
  resourceType: ResourceType | undefined;
1246
1262
  condition: Record<string, string> | undefined;
1247
1263
  createdAt: Date | undefined;
@@ -1249,76 +1265,79 @@ export interface FindingSummary {
1249
1265
  updatedAt: Date | undefined;
1250
1266
  status: FindingStatus | undefined;
1251
1267
  resourceOwnerAccount: string | undefined;
1252
- error?: string;
1253
- sources?: FindingSource[];
1268
+ error?: string | undefined;
1269
+ sources?: FindingSource[] | undefined;
1270
+ resourceControlPolicyRestriction?:
1271
+ | ResourceControlPolicyRestriction
1272
+ | undefined;
1254
1273
  }
1255
1274
  export interface ListFindingsResponse {
1256
1275
  findings: FindingSummary[] | undefined;
1257
- nextToken?: string;
1276
+ nextToken?: string | undefined;
1258
1277
  }
1259
1278
  export interface ListFindingsV2Request {
1260
1279
  analyzerArn: string | undefined;
1261
- filter?: Record<string, Criterion>;
1262
- maxResults?: number;
1263
- nextToken?: string;
1264
- sort?: SortCriteria;
1280
+ filter?: Record<string, Criterion> | undefined;
1281
+ maxResults?: number | undefined;
1282
+ nextToken?: string | undefined;
1283
+ sort?: SortCriteria | undefined;
1265
1284
  }
1266
1285
  export interface FindingSummaryV2 {
1267
1286
  analyzedAt: Date | undefined;
1268
1287
  createdAt: Date | undefined;
1269
- error?: string;
1288
+ error?: string | undefined;
1270
1289
  id: string | undefined;
1271
- resource?: string;
1290
+ resource?: string | undefined;
1272
1291
  resourceType: ResourceType | undefined;
1273
1292
  resourceOwnerAccount: string | undefined;
1274
1293
  status: FindingStatus | undefined;
1275
1294
  updatedAt: Date | undefined;
1276
- findingType?: FindingType;
1295
+ findingType?: FindingType | undefined;
1277
1296
  }
1278
1297
  export interface ListFindingsV2Response {
1279
1298
  findings: FindingSummaryV2[] | undefined;
1280
- nextToken?: string;
1299
+ nextToken?: string | undefined;
1281
1300
  }
1282
1301
  export interface ListPolicyGenerationsRequest {
1283
- principalArn?: string;
1284
- maxResults?: number;
1285
- nextToken?: string;
1302
+ principalArn?: string | undefined;
1303
+ maxResults?: number | undefined;
1304
+ nextToken?: string | undefined;
1286
1305
  }
1287
1306
  export interface PolicyGeneration {
1288
1307
  jobId: string | undefined;
1289
1308
  principalArn: string | undefined;
1290
1309
  status: JobStatus | undefined;
1291
1310
  startedOn: Date | undefined;
1292
- completedOn?: Date;
1311
+ completedOn?: Date | undefined;
1293
1312
  }
1294
1313
  export interface ListPolicyGenerationsResponse {
1295
1314
  policyGenerations: PolicyGeneration[] | undefined;
1296
- nextToken?: string;
1315
+ nextToken?: string | undefined;
1297
1316
  }
1298
1317
  export interface ListTagsForResourceRequest {
1299
1318
  resourceArn: string | undefined;
1300
1319
  }
1301
1320
  export interface ListTagsForResourceResponse {
1302
- tags?: Record<string, string>;
1321
+ tags?: Record<string, string> | undefined;
1303
1322
  }
1304
1323
  export interface Trail {
1305
1324
  cloudTrailArn: string | undefined;
1306
- regions?: string[];
1307
- allRegions?: boolean;
1325
+ regions?: string[] | undefined;
1326
+ allRegions?: boolean | undefined;
1308
1327
  }
1309
1328
  export interface CloudTrailDetails {
1310
1329
  trails: Trail[] | undefined;
1311
1330
  accessRole: string | undefined;
1312
1331
  startTime: Date | undefined;
1313
- endTime?: Date;
1332
+ endTime?: Date | undefined;
1314
1333
  }
1315
1334
  export interface PolicyGenerationDetails {
1316
1335
  principalArn: string | undefined;
1317
1336
  }
1318
1337
  export interface StartPolicyGenerationRequest {
1319
1338
  policyGenerationDetails: PolicyGenerationDetails | undefined;
1320
- cloudTrailDetails?: CloudTrailDetails;
1321
- clientToken?: string;
1339
+ cloudTrailDetails?: CloudTrailDetails | undefined;
1340
+ clientToken?: string | undefined;
1322
1341
  }
1323
1342
  export interface StartPolicyGenerationResponse {
1324
1343
  jobId: string | undefined;
@@ -1326,7 +1345,7 @@ export interface StartPolicyGenerationResponse {
1326
1345
  export interface StartResourceScanRequest {
1327
1346
  analyzerArn: string | undefined;
1328
1347
  resourceArn: string | undefined;
1329
- resourceOwnerAccount?: string;
1348
+ resourceOwnerAccount?: string | undefined;
1330
1349
  }
1331
1350
  export interface TagResourceRequest {
1332
1351
  resourceArn: string | undefined;
@@ -1342,9 +1361,9 @@ export type FindingStatusUpdate = "ACTIVE" | "ARCHIVED";
1342
1361
  export interface UpdateFindingsRequest {
1343
1362
  analyzerArn: string | undefined;
1344
1363
  status: FindingStatusUpdate | undefined;
1345
- ids?: string[];
1346
- resourceArn?: string;
1347
- clientToken?: string;
1364
+ ids?: string[] | undefined;
1365
+ resourceArn?: string | undefined;
1366
+ clientToken?: string | undefined;
1348
1367
  }
1349
1368
  export declare const Locale: {
1350
1369
  readonly DE: "DE";
@@ -1361,6 +1380,7 @@ export declare const Locale: {
1361
1380
  export type Locale = (typeof Locale)[keyof typeof Locale];
1362
1381
  export declare const PolicyType: {
1363
1382
  readonly IDENTITY_POLICY: "IDENTITY_POLICY";
1383
+ readonly RESOURCE_CONTROL_POLICY: "RESOURCE_CONTROL_POLICY";
1364
1384
  readonly RESOURCE_POLICY: "RESOURCE_POLICY";
1365
1385
  readonly SERVICE_CONTROL_POLICY: "SERVICE_CONTROL_POLICY";
1366
1386
  };
@@ -1376,12 +1396,12 @@ export declare const ValidatePolicyResourceType: {
1376
1396
  export type ValidatePolicyResourceType =
1377
1397
  (typeof ValidatePolicyResourceType)[keyof typeof ValidatePolicyResourceType];
1378
1398
  export interface ValidatePolicyRequest {
1379
- locale?: Locale;
1380
- maxResults?: number;
1381
- nextToken?: string;
1399
+ locale?: Locale | undefined;
1400
+ maxResults?: number | undefined;
1401
+ nextToken?: string | undefined;
1382
1402
  policyDocument: string | undefined;
1383
1403
  policyType: PolicyType | undefined;
1384
- validatePolicyResourceType?: ValidatePolicyResourceType;
1404
+ validatePolicyResourceType?: ValidatePolicyResourceType | undefined;
1385
1405
  }
1386
1406
  export declare const ValidatePolicyFindingType: {
1387
1407
  readonly ERROR: "ERROR";
@@ -1468,7 +1488,7 @@ export interface ValidatePolicyFinding {
1468
1488
  }
1469
1489
  export interface ValidatePolicyResponse {
1470
1490
  findings: ValidatePolicyFinding[] | undefined;
1471
- nextToken?: string;
1491
+ nextToken?: string | undefined;
1472
1492
  }
1473
1493
  export declare const CheckAccessNotGrantedRequestFilterSensitiveLog: (
1474
1494
  obj: CheckAccessNotGrantedRequest