@aws-sdk/client-cloudtrail 3.261.0 → 3.264.0

package/dist-types/models/models_0.d.ts

@@ -1,10 +1,8 @@
 import { ExceptionOptionType as __ExceptionOptionType } from "@aws-sdk/smithy-client";
 import { CloudTrailServiceException as __BaseException } from "./CloudTrailServiceException";
 /**
- * <p>
- *          This exception is thrown when you start a new import and a
- *          previous import is still in progress.
- *       </p>
+ * <p> This exception is thrown when you start a new import and a previous import is still in
+ *          progress. </p>
  */
 export declare class AccountHasOngoingImportException extends __BaseException {
     readonly name: "AccountHasOngoingImportException";
@@ -19,7 +17,8 @@ export declare class AccountHasOngoingImportException extends __BaseException {
     constructor(opts: __ExceptionOptionType<AccountHasOngoingImportException, __BaseException>);
 }
 /**
- * <p>This exception is thrown when when the specified account is not found or not part of an organization.</p>
+ * <p>This exception is thrown when the specified account is not found or not part of an
+ *          organization.</p>
  */
 export declare class AccountNotFoundException extends __BaseException {
     readonly name: "AccountNotFoundException";
@@ -49,7 +48,8 @@ export declare class AccountNotRegisteredException extends __BaseException {
     constructor(opts: __ExceptionOptionType<AccountNotRegisteredException, __BaseException>);
 }
 /**
- * <p>This exception is thrown when the account is already registered as the CloudTrail delegated administrator.</p>
+ * <p>This exception is thrown when the account is already registered as the CloudTrail
+ *          delegated administrator.</p>
  */
 export declare class AccountRegisteredException extends __BaseException {
     readonly name: "AccountRegisteredException";
@@ -64,27 +64,36 @@ export declare class AccountRegisteredException extends __BaseException {
     constructor(opts: __ExceptionOptionType<AccountRegisteredException, __BaseException>);
 }
 /**
- * <p>A custom key-value pair associated with a resource such as a CloudTrail trail.</p>
+ * <p>A custom key-value pair associated with a resource such as a CloudTrail
+ *          trail, event data store, or channel.</p>
  */
 export interface Tag {
     /**
-     * <p>The key in a key-value pair. The key must be must be no longer than 128 Unicode characters.
-     *          The key must be unique for the resource to which it applies.</p>
+     * <p>The key in a key-value pair. The key must be must be no longer than 128 Unicode
+     *          characters. The key must be unique for the resource to which it applies.</p>
      */
     Key: string | undefined;
     /**
-     * <p>The value in a key-value pair of a tag. The value must be no longer than 256 Unicode characters.</p>
+     * <p>The value in a key-value pair of a tag. The value must be no longer than 256 Unicode
+     *          characters.</p>
      */
     Value?: string;
 }
 /**
- * <p>Specifies the tags to add to a trail or event data store.</p>
+ * <p>Specifies the tags to add to a trail, event data store, or channel.</p>
  */
 export interface AddTagsRequest {
     /**
-     * <p>Specifies the ARN of the trail or event data store to which one or more tags will be added. The format of a trail ARN is:</p>
-     *          <p>
-     *             <code>arn:aws:cloudtrail:us-east-2:123456789012:trail/MyTrail</code>
+     * <p>Specifies the ARN of the trail, event data store, or channel to which one or more tags will be
+     *          added.</p>
+     *          <p>The format of a trail ARN is:
+     *          <code>arn:aws:cloudtrail:us-east-2:123456789012:trail/MyTrail</code>
+     *          </p>
+     *          <p>The format of an event data store ARN is:
+     *          <code>arn:aws:cloudtrail:us-east-2:12345678910:eventdatastore/EXAMPLE-f852-4e8f-8bd1-bcf6cEXAMPLE</code>
+     *          </p>
+     *          <p>The format of a channel ARN is:
+     *          <code>arn:aws:cloudtrail:us-east-2:123456789012:channel/01234567890</code>
      *          </p>
      */
     ResourceId: string | undefined;
@@ -99,10 +108,33 @@ export interface AddTagsRequest {
 export interface AddTagsResponse {
 }
 /**
- * <p>This exception is thrown when an operation is called with a trail ARN that is not valid. The following is the format of a trail ARN.</p>
+ * <p>This exception is thrown when CloudTrail cannot find the specified channel.</p>
+ */
+export declare class ChannelNotFoundException extends __BaseException {
+    readonly name: "ChannelNotFoundException";
+    readonly $fault: "client";
+    /**
+     * <p>Brief description of the exception returned by the request.</p>
+     */
+    Message?: string;
+    /**
+     * @internal
+     */
+    constructor(opts: __ExceptionOptionType<ChannelNotFoundException, __BaseException>);
+}
+/**
+ * <p>This exception is thrown when an operation is called with a trail ARN that is not valid.
+ *          The following is the format of a trail ARN.</p>
  *          <p>
  *             <code>arn:aws:cloudtrail:us-east-2:123456789012:trail/MyTrail</code>
  *          </p>
+ *          <p>This exception is also thrown when you call <code>AddTags</code> or <code>RemoveTags</code> on a trail, event data store, or channel with a resource ARN that is not valid.</p>
+ *          <p>The following is the format of an event data store ARN:
+ *          <code>arn:aws:cloudtrail:us-east-2:12345678910:eventdatastore/EXAMPLE-f852-4e8f-8bd1-bcf6cEXAMPLE</code>
+ *          </p>
+ *          <p>The following is the format of a channel ARN:
+ *          <code>arn:aws:cloudtrail:us-east-2:123456789012:channel/01234567890</code>
+ *          </p>
  */
 export declare class CloudTrailARNInvalidException extends __BaseException {
     readonly name: "CloudTrailARNInvalidException";
@@ -117,9 +149,10 @@ export declare class CloudTrailARNInvalidException extends __BaseException {
     constructor(opts: __ExceptionOptionType<CloudTrailARNInvalidException, __BaseException>);
 }
 /**
- * <p>This exception is thrown when the specified resource is not ready for an operation.
- *          This can occur when you try to run an operation on a resource before CloudTrail has time to fully load the resource.
- *          If this exception occurs, wait a few minutes, and then try the operation again.</p>
+ * <p>This exception is thrown when the specified resource is not ready for an operation. This
+ *          can occur when you try to run an operation on a resource before CloudTrail has time
+ *          to fully load the resource, or because another operation is modifying the resource. If this exception occurs, wait a few minutes, and then try the
+ *          operation again.</p>
  */
 export declare class ConflictException extends __BaseException {
     readonly name: "ConflictException";
@@ -164,8 +197,8 @@ export declare class InactiveEventDataStoreException extends __BaseException {
     constructor(opts: __ExceptionOptionType<InactiveEventDataStoreException, __BaseException>);
 }
 /**
- * <p>This exception is thrown when the specified tag key or values are not valid.
- *          It can also occur if there are duplicate tags or too many tags on the resource.</p>
+ * <p>This exception is thrown when the specified tag key or values are not valid. It can also
+ *          occur if there are duplicate tags or too many tags on the resource.</p>
  */
 export declare class InvalidTagParameterException extends __BaseException {
     readonly name: "InvalidTagParameterException";
@@ -180,10 +213,12 @@ export declare class InvalidTagParameterException extends __BaseException {
     constructor(opts: __ExceptionOptionType<InvalidTagParameterException, __BaseException>);
 }
 /**
- * <p>This exception is thrown when the provided trail name is not valid. Trail names must meet the following requirements:</p>
+ * <p>This exception is thrown when the provided trail name is not valid. Trail names must
+ *          meet the following requirements:</p>
  *          <ul>
  *             <li>
- *                <p>Contain only ASCII letters (a-z, A-Z), numbers (0-9), periods (.), underscores (_), or dashes (-)</p>
+ *                <p>Contain only ASCII letters (a-z, A-Z), numbers (0-9), periods (.), underscores
+ *                (_), or dashes (-)</p>
  *             </li>
  *             <li>
  *                <p>Start with a letter or number, and end with a letter or number</p>
@@ -192,8 +227,8 @@ export declare class InvalidTagParameterException extends __BaseException {
  *                <p>Be between 3 and 128 characters</p>
  *             </li>
  *             <li>
- *                <p>Have no adjacent periods, underscores or dashes. Names like <code>my-_namespace</code>
- *             and <code>my--namespace</code> are not valid.</p>
+ *                <p>Have no adjacent periods, underscores or dashes. Names like
+ *                   <code>my-_namespace</code> and <code>my--namespace</code> are not valid.</p>
  *             </li>
  *             <li>
  *                <p>Not be in IP address format (for example, 192.168.5.4)</p>
@@ -213,9 +248,8 @@ export declare class InvalidTrailNameException extends __BaseException {
     constructor(opts: __ExceptionOptionType<InvalidTrailNameException, __BaseException>);
 }
 /**
- * <p>
- *          This exception is thrown when the management account does not have a service-linked role.
- *       </p>
+ * <p> This exception is thrown when the management account does not have a service-linked
+ *          role. </p>
  */
 export declare class NoManagementAccountSLRExistsException extends __BaseException {
     readonly name: "NoManagementAccountSLRExistsException";
@@ -230,10 +264,9 @@ export declare class NoManagementAccountSLRExistsException extends __BaseExcepti
     constructor(opts: __ExceptionOptionType<NoManagementAccountSLRExistsException, __BaseException>);
 }
 /**
- * <p>This exception is thrown when the Amazon Web Services account making the request to create
- *          or update an organization trail or event data store is not the management account for an
- *          organization in Organizations. For more information, see
- *          <a href="https://docs.aws.amazon.com/awscloudtrail/latest/userguide/creating-an-organizational-trail-prepare.html">Prepare For Creating a Trail For Your Organization</a> or <a href="https://docs.aws.amazon.com/awscloudtrail/latest/userguide/query-event-data-store.html">Create an event data store</a>.</p>
+ * <p>This exception is thrown when the Amazon Web Services account making the request to
+ *          create or update an organization trail or event data store is not the management account
+ *          for an organization in Organizations. For more information, see <a href="https://docs.aws.amazon.com/awscloudtrail/latest/userguide/creating-an-organizational-trail-prepare.html">Prepare For Creating a Trail For Your Organization</a> or <a href="https://docs.aws.amazon.com/awscloudtrail/latest/userguide/query-event-data-store.html">Create an event data store</a>.</p>
  */
 export declare class NotOrganizationMasterAccountException extends __BaseException {
     readonly name: "NotOrganizationMasterAccountException";
@@ -293,7 +326,8 @@ export declare class ResourceTypeNotSupportedException extends __BaseException {
     constructor(opts: __ExceptionOptionType<ResourceTypeNotSupportedException, __BaseException>);
 }
 /**
- * <p>The number of tags per trail has exceeded the permitted amount. Currently, the limit is 50.</p>
+ * <p>The number of tags per trail, event data store, or channel has exceeded the permitted amount. Currently, the limit is
+ *          50.</p>
  */
 export declare class TagsLimitExceededException extends __BaseException {
     readonly name: "TagsLimitExceededException";
@@ -327,53 +361,91 @@ export declare class UnsupportedOperationException extends __BaseException {
  */
 export interface AdvancedFieldSelector {
     /**
-     * <p>
-     *          A field in an event record on which to filter events to be logged. Supported fields include <code>readOnly</code>, <code>eventCategory</code>,
-     *          <code>eventSource</code> (for management events), <code>eventName</code>, <code>resources.type</code>, and <code>resources.ARN</code>.
-     *       </p>
+     * <p> A field in a CloudTrail event record on which to filter events to be logged. For
+     *          event data stores for Config configuration items, Audit Manager evidence, or non-Amazon Web Services events, the field is used only for
+     *          selecting events as filtering is not supported. </p>
+     *          <p> For CloudTrail event records, supported fields include <code>readOnly</code>,
+     *             <code>eventCategory</code>, <code>eventSource</code> (for management events),
+     *             <code>eventName</code>, <code>resources.type</code>, and <code>resources.ARN</code>. </p>
+     *          <p> For event data stores for Config configuration items, Audit Manager evidence, or non-Amazon Web Services events, the only supported field is
+     *             <code>eventCategory</code>. </p>
      *          <ul>
      *             <li>
      *                <p>
      *                   <b>
      *                      <code>readOnly</code>
-     *                   </b> - Optional. Can be set to <code>Equals</code> a value of <code>true</code>
-     *             or <code>false</code>. If you do not add this field, CloudTrail logs both <code>read</code> and
-     *             <code>write</code> events. A value of <code>true</code> logs only <code>read</code> events. A value of <code>false</code>
-     *             logs only <code>write</code> events.</p>
+     *                   </b> - Optional. Can be set to
+     *                   <code>Equals</code> a value of <code>true</code> or <code>false</code>. If you do
+     *                not add this field, CloudTrail logs both <code>read</code> and
+     *                   <code>write</code> events. A value of <code>true</code> logs only
+     *                   <code>read</code> events. A value of <code>false</code> logs only
+     *                   <code>write</code> events.</p>
      *             </li>
      *             <li>
      *                <p>
      *                   <b>
      *                      <code>eventSource</code>
-     *                   </b> - For filtering management events only.
-     *             This can be set only to <code>NotEquals</code>
+     *                   </b> - For filtering
+     *                management events only. This can be set only to <code>NotEquals</code>
      *                   <code>kms.amazonaws.com</code>.</p>
      *             </li>
      *             <li>
      *                <p>
      *                   <b>
      *                      <code>eventName</code>
-     *                   </b> - Can use any operator. You can use it to filter in
-     *             or filter out any data event logged to CloudTrail, such as <code>PutBucket</code> or <code>GetSnapshotBlock</code>. You can have multiple values
-     *             for this field, separated by commas.</p>
+     *                   </b> - Can use any operator.
+     *                You can use it to filter in or filter out any data event logged to CloudTrail,
+     *                such as <code>PutBucket</code> or <code>GetSnapshotBlock</code>. You can have
+     *                multiple values for this field, separated by commas.</p>
      *             </li>
      *             <li>
      *                <p>
      *                   <b>
      *                      <code>eventCategory</code>
-     *                   </b> - This is required. It must be set to <code>Equals</code>, and
-     *             the value must be <code>Management</code> or <code>Data</code>.</p>
+     *                   </b> - This is required and
+     *                must be set to <code>Equals</code>.
+     *             </p>
+     *                <ul>
+     *                   <li>
+     *                      <p>
+     *                      For CloudTrail event records, the value
+     *                      must be <code>Management</code> or <code>Data</code>.
+     *                   </p>
+     *                   </li>
+     *                   <li>
+     *                      <p>
+     *                      For Config
+     *                      configuration items, the value must be <code>ConfigurationItem</code>.
+     *                   </p>
+     *                   </li>
+     *                   <li>
+     *                      <p>
+     *                      For Audit Manager evidence, the value must be <code>Evidence</code>.
+     *                   </p>
+     *                   </li>
+     *                   <li>
+     *                      <p>
+     *                      For non-Amazon Web Services events, the value must be <code>ActivityAuditLog</code>.
+     *                   </p>
+     *                   </li>
+     *                </ul>
      *             </li>
      *             <li>
      *                <p>
      *                   <b>
      *                      <code>resources.type</code>
-     *                   </b> - This field is required.
-     *                   <code>resources.type</code> can only use the <code>Equals</code> operator, and the
-     *             value can be one of the following:</p>
+     *                   </b> - This field is
+     *                required for CloudTrail data events. <code>resources.type</code> can only
+     *                use the <code>Equals</code> operator, and the value can be one of the
+     *                following:</p>
      *                <ul>
      *                   <li>
      *                      <p>
+     *                         <code>AWS::CloudTrail::Channel</code>
+     *                      </p>
+     *                   </li>
+     *                   <li>
+     *                      <p>
      *                         <code>AWS::S3::Object</code>
      *                      </p>
      *                   </li>
@@ -422,22 +494,37 @@ export interface AdvancedFieldSelector {
      *                         <code>AWS::Glue::Table</code>
      *                      </p>
      *                   </li>
+     *                   <li>
+     *                      <p>
+     *                         <code>AWS::FinSpace::Environment</code>
+     *                      </p>
+     *                   </li>
+     *                   <li>
+     *                      <p>
+     *                         <code>AWS::SageMaker::ExperimentTrialComponent</code>
+     *                      </p>
+     *                   </li>
+     *                   <li>
+     *                      <p>
+     *                         <code>AWS::SageMaker::FeatureGroup</code>
+     *                      </p>
+     *                   </li>
      *                </ul>
-     *                <p>
-     *                You can have only one <code>resources.type</code> field per selector. To log data
+     *                <p> You can have only one <code>resources.type</code> field per selector. To log data
      *                events on more than one resource type, add another selector.</p>
      *             </li>
      *             <li>
      *                <p>
      *                   <b>
      *                      <code>resources.ARN</code>
-     *                   </b> - You can use any operator with
-     *                <code>resources.ARN</code>, but if you use <code>Equals</code> or <code>NotEquals</code>, the
-     *                value must exactly match the ARN of a valid resource of the type you've specified in
-     *                the template as the value of resources.type. For example, if resources.type equals
-     *                   <code>AWS::S3::Object</code>, the ARN must be in one of the following formats. To
-     *                log all data events for all objects in a specific S3 bucket, use the
-     *                   <code>StartsWith</code> operator, and include only the bucket ARN as the matching value.</p>
+     *                   </b> - You can use any
+     *                operator with <code>resources.ARN</code>, but if you use <code>Equals</code> or
+     *                   <code>NotEquals</code>, the value must exactly match the ARN of a valid resource
+     *                of the type you've specified in the template as the value of resources.type. For
+     *                example, if resources.type equals <code>AWS::S3::Object</code>, the ARN must be in
+     *                one of the following formats. To log all data events for all objects in a specific S3
+     *                bucket, use the <code>StartsWith</code> operator, and include only the bucket ARN as
+     *                the matching value.</p>
      *                <p>The trailing slash is intentional; do not exclude it. Replace the text between
      *                less than and greater than symbols (<>) with resource-specific information. </p>
      *                <ul>
@@ -469,8 +556,9 @@ export interface AdvancedFieldSelector {
      *                      </p>
      *                   </li>
      *                </ul>
-     *                <p>When resources.type equals <code>AWS::Lambda::Function</code>, and the operator is set
-     *             to <code>Equals</code> or <code>NotEquals</code>, the ARN must be in the following format:</p>
+     *                <p>When resources.type equals <code>AWS::Lambda::Function</code>, and the operator is
+     *                set to <code>Equals</code> or <code>NotEquals</code>, the ARN must be in the
+     *                following format:</p>
      *                <ul>
      *                   <li>
      *                      <p>
@@ -488,8 +576,19 @@ export interface AdvancedFieldSelector {
      *                      </p>
      *                   </li>
      *                </ul>
-     *                <p>When <code>resources.type</code> equals <code>AWS::S3Outposts::Object</code>, and the operator
-     *                is set to <code>Equals</code> or <code>NotEquals</code>, the ARN must be in the following format:</p>
+     *                <p>When resources.type equals <code>AWS::CloudTrail::Channel</code>, and the operator is
+     *                set to <code>Equals</code> or <code>NotEquals</code>, the ARN must be in the
+     *                following format:</p>
+     *                <ul>
+     *                   <li>
+     *                      <p>
+     *                         <code>arn:<partition>:cloudtrail:<region>:<account_ID>:channel/<channel_UUID></code>
+     *                      </p>
+     *                   </li>
+     *                </ul>
+     *                <p>When <code>resources.type</code> equals <code>AWS::S3Outposts::Object</code>, and
+     *                the operator is set to <code>Equals</code> or <code>NotEquals</code>, the ARN must be
+     *                in the following format:</p>
      *                <ul>
      *                   <li>
      *                      <p>
@@ -528,8 +627,9 @@ export interface AdvancedFieldSelector {
      *                      </p>
      *                   </li>
      *                </ul>
-     *                <p>When <code>resources.type</code> equals <code>AWS::DynamoDB::Stream</code>, and the operator is set to
-     *                <code>Equals</code> or <code>NotEquals</code>, the ARN must be in the following format:</p>
+     *                <p>When <code>resources.type</code> equals <code>AWS::DynamoDB::Stream</code>, and
+     *                the operator is set to <code>Equals</code> or <code>NotEquals</code>, the ARN must be
+     *                in the following format:</p>
      *                <ul>
      *                   <li>
      *                      <p>
@@ -537,8 +637,9 @@ export interface AdvancedFieldSelector {
      *                      </p>
      *                   </li>
      *                </ul>
-     *                <p>When <code>resources.type</code> equals <code>AWS::Glue::Table</code>, and the operator is set to
-     *                <code>Equals</code> or <code>NotEquals</code>, the ARN must be in the following format:</p>
+     *                <p>When <code>resources.type</code> equals <code>AWS::Glue::Table</code>, and the
+     *                operator is set to <code>Equals</code> or <code>NotEquals</code>, the ARN must be in
+     *                the following format:</p>
      *                <ul>
      *                   <li>
      *                      <p>
@@ -546,6 +647,34 @@ export interface AdvancedFieldSelector {
      *                      </p>
      *                   </li>
      *                </ul>
+     *                <p>When <code>resources.type</code> equals <code>AWS::FinSpace::Environment</code>,
+     *                and the operator is set to <code>Equals</code> or <code>NotEquals</code>, the ARN
+     *                must be in the following format:</p>
+     *                <ul>
+     *                   <li>
+     *                      <p>
+     *                         <code>arn:<partition>:finspace:<region>:<account_ID>:environment/<environment_ID></code>
+     *                      </p>
+     *                   </li>
+     *                </ul>
+     *                <p>When <code>resources.type</code> equals <code>AWS::SageMaker::ExperimentTrialComponent</code>, and the operator is set to
+     *                <code>Equals</code> or <code>NotEquals</code>, the ARN must be in the following format:</p>
+     *                <ul>
+     *                   <li>
+     *                      <p>
+     *                         <code>arn:<partition>:sagemaker:<region>:<account_ID>:experiment-trial-component/<experiment_trial_component_name></code>
+     *                      </p>
+     *                   </li>
+     *                </ul>
+     *                <p>When <code>resources.type</code> equals <code>AWS::SageMaker::FeatureGroup</code>, and the operator is set to
+     *                <code>Equals</code> or <code>NotEquals</code>, the ARN must be in the following format:</p>
+     *                <ul>
+     *                   <li>
+     *                      <p>
+     *                         <code>arn:<partition>:sagemaker:<region>:<account_ID>:feature-group/<feature_group_name></code>
+     *                      </p>
+     *                   </li>
+     *                </ul>
      *             </li>
      *          </ul>
      */
@@ -568,28 +697,25 @@ export interface AdvancedFieldSelector {
      */
     EndsWith?: string[];
     /**
-     * <p>
-     *          An operator that excludes events that match the exact value of the event record field specified as the value of <code>Field</code>.
-     *       </p>
+     * <p> An operator that excludes events that match the exact value of the event record field
+     *          specified as the value of <code>Field</code>. </p>
      */
     NotEquals?: string[];
     /**
-     * <p>
-     *          An operator that excludes events that match the first few characters of the event record field specified as the value of <code>Field</code>.
-     *       </p>
+     * <p> An operator that excludes events that match the first few characters of the event
+     *          record field specified as the value of <code>Field</code>. </p>
      */
     NotStartsWith?: string[];
     /**
-     * <p>
-     *          An operator that excludes events that match the last few characters of the event record field specified as the value of <code>Field</code>.
-     *       </p>
+     * <p> An operator that excludes events that match the last few characters of the event record
+     *          field specified as the value of <code>Field</code>. </p>
      */
     NotEndsWith?: string[];
 }
 /**
- * <p>Advanced event selectors let you create fine-grained selectors for the following CloudTrail
- *          event record fields. They help you control costs by logging only those events
- *          that are important to you. For more information about advanced event selectors, see <a href="https://docs.aws.amazon.com/awscloudtrail/latest/userguide/logging-data-events-with-cloudtrail.html">Logging data events for trails</a> in the <i>CloudTrail User Guide</i>.</p>
+ * <p>Advanced event selectors let you create fine-grained selectors for the following CloudTrail event record fields. They help you control costs by logging only those
+ *          events that are important to you. For more information about advanced event selectors, see
+ *             <a href="https://docs.aws.amazon.com/awscloudtrail/latest/userguide/logging-data-events-with-cloudtrail.html">Logging data events for trails</a> in the <i>CloudTrail User Guide</i>.</p>
  *          <ul>
  *             <li>
  *                <p>
@@ -639,12 +765,13 @@ export interface CancelQueryRequest {
     /**
      * @deprecated
      *
-     * <p>The ARN (or the ID suffix of the ARN) of an event data store on which the specified query is running.</p>
+     * <p>The ARN (or the ID suffix of the ARN) of an event data store on which the specified
+     *          query is running.</p>
      */
     EventDataStore?: string;
     /**
-     * <p>The ID of the query that you want to cancel. The <code>QueryId</code> comes from the response of a <code>StartQuery</code>
-     *       operation.</p>
+     * <p>The ID of the query that you want to cancel. The <code>QueryId</code> comes from the
+     *          response of a <code>StartQuery</code> operation.</p>
      */
     QueryId: string | undefined;
 }
@@ -662,13 +789,14 @@ export interface CancelQueryResponse {
      */
     QueryId: string | undefined;
     /**
-     * <p>Shows the status of a query after a <code>CancelQuery</code> request. Typically, the values shown are either
-     *          <code>RUNNING</code> or <code>CANCELLED</code>.</p>
+     * <p>Shows the status of a query after a <code>CancelQuery</code> request. Typically, the
+     *          values shown are either <code>RUNNING</code> or <code>CANCELLED</code>.</p>
      */
     QueryStatus: QueryStatus | string | undefined;
 }
 /**
- * <p>The specified event data store ARN is not valid or does not map to an event data store in your account.</p>
+ * <p>The specified event data store ARN is not valid or does not map to an event data store
+ *          in your account.</p>
  */
 export declare class EventDataStoreARNInvalidException extends __BaseException {
     readonly name: "EventDataStoreARNInvalidException";
@@ -683,8 +811,8 @@ export declare class EventDataStoreARNInvalidException extends __BaseException {
     constructor(opts: __ExceptionOptionType<EventDataStoreARNInvalidException, __BaseException>);
 }
 /**
- * <p>The specified query cannot be canceled because it is in the <code>FINISHED</code>, <code>FAILED</code>, <code>TIMED_OUT</code>, or
- *          <code>CANCELLED</code> state.</p>
+ * <p>The specified query cannot be canceled because it is in the <code>FINISHED</code>,
+ *             <code>FAILED</code>, <code>TIMED_OUT</code>, or <code>CANCELLED</code> state.</p>
  */
 export declare class InactiveQueryException extends __BaseException {
     readonly name: "InactiveQueryException";
@@ -729,7 +857,8 @@ export declare class QueryIdNotFoundException extends __BaseException {
     constructor(opts: __ExceptionOptionType<QueryIdNotFoundException, __BaseException>);
 }
 /**
- * <p>This exception is thrown when the management account of an organization is registered as the CloudTrail delegated administrator.</p>
+ * <p>This exception is thrown when the management account of an organization is registered as
+ *          the CloudTrail delegated administrator.</p>
  */
 export declare class CannotDelegateManagementAccountException extends __BaseException {
     readonly name: "CannotDelegateManagementAccountException";
@@ -752,15 +881,34 @@ export interface Channel {
      */
     ChannelArn?: string;
     /**
-     * <p>
-     *          The name of the CloudTrail channel. For service-linked channels, the name is <code>aws-service-channel/service-name/custom-suffix</code> where <code>service-name</code> represents the name of the
-     *          Amazon Web Services service that created the channel and <code>custom-suffix</code> represents the suffix created by the Amazon Web Services service.
-     *       </p>
+     * <p> The name of the CloudTrail channel. For service-linked channels, the name is
+     *             <code>aws-service-channel/service-name/custom-suffix</code> where
+     *             <code>service-name</code> represents the name of the Amazon Web Services service that
+     *          created the channel and <code>custom-suffix</code> represents the suffix created by the
+     *             Amazon Web Services service. </p>
      */
     Name?: string;
 }
 /**
- * <p>This exception is thrown when the specified value of <code>ChannelARN</code> is not valid.</p>
+ * <p>
+ *          This exception is thrown when the provided channel already exists.
+ *       </p>
+ */
+export declare class ChannelAlreadyExistsException extends __BaseException {
+    readonly name: "ChannelAlreadyExistsException";
+    readonly $fault: "client";
+    /**
+     * <p>Brief description of the exception returned by the request.</p>
+     */
+    Message?: string;
+    /**
+     * @internal
+     */
+    constructor(opts: __ExceptionOptionType<ChannelAlreadyExistsException, __BaseException>);
+}
+/**
+ * <p>This exception is thrown when the specified value of <code>ChannelARN</code> is not
+ *          valid.</p>
  */
 export declare class ChannelARNInvalidException extends __BaseException {
     readonly name: "ChannelARNInvalidException";
@@ -774,13 +922,29 @@ export declare class ChannelARNInvalidException extends __BaseException {
      */
     constructor(opts: __ExceptionOptionType<ChannelARNInvalidException, __BaseException>);
 }
+/**
+ * <p>This exception is thrown when the specified event data store cannot yet be deleted because it
+ *          is in use by a channel.</p>
+ */
+export declare class ChannelExistsForEDSException extends __BaseException {
+    readonly name: "ChannelExistsForEDSException";
+    readonly $fault: "client";
+    /**
+     * <p>Brief description of the exception returned by the request.</p>
+     */
+    Message?: string;
+    /**
+     * @internal
+     */
+    constructor(opts: __ExceptionOptionType<ChannelExistsForEDSException, __BaseException>);
+}
 /**
  * <p>
- *          The specified channel was not found.
+ *          This exception is thrown when the maximum number of channels limit is exceeded.
  *       </p>
  */
-export declare class ChannelNotFoundException extends __BaseException {
-    readonly name: "ChannelNotFoundException";
+export declare class ChannelMaxLimitExceededException extends __BaseException {
+    readonly name: "ChannelMaxLimitExceededException";
     readonly $fault: "client";
     /**
      * <p>Brief description of the exception returned by the request.</p>
@@ -789,12 +953,105 @@ export declare class ChannelNotFoundException extends __BaseException {
     /**
      * @internal
      */
-    constructor(opts: __ExceptionOptionType<ChannelNotFoundException, __BaseException>);
+    constructor(opts: __ExceptionOptionType<ChannelMaxLimitExceededException, __BaseException>);
+}
+export declare enum DestinationType {
+    AWS_SERVICE = "AWS_SERVICE",
+    EVENT_DATA_STORE = "EVENT_DATA_STORE"
 }
 /**
- * <p>This exception is thrown when trusted access has not been enabled between CloudTrail and Organizations. For more information,
- *          see <a href="https://docs.aws.amazon.com/organizations/latest/userguide/orgs_integrate_services.html">Enabling Trusted Access with Other Amazon Web Services Services</a>
- *          and <a href="https://docs.aws.amazon.com/awscloudtrail/latest/userguide/creating-an-organizational-trail-prepare.html">Prepare For Creating a Trail For Your Organization</a>. </p>
+ * <p>Contains information about the destination receiving events.</p>
+ */
+export interface Destination {
+    /**
+     * <p>The type of destination for events arriving from a channel. For channels used for a CloudTrail Lake integration, the value is <code>EventDataStore</code>. For service-linked channels,
+     *          the value is <code>AWS_SERVICE</code>. </p>
+     */
+    Type: DestinationType | string | undefined;
+    /**
+     * <p> For channels used for a CloudTrail Lake integration, the location is the ARN of an event data store that receives events from a channel.
+     *          For service-linked channels, the location is the name of the Amazon Web Services service.</p>
+     */
+    Location: string | undefined;
+}
+export interface CreateChannelRequest {
+    /**
+     * <p>The name of the channel.</p>
+     */
+    Name: string | undefined;
+    /**
+     * <p>The name of the partner or external event source. You cannot change this name after you create the
+     *          channel. A maximum of one channel is allowed per source.</p>
+     *          <p>
+     *          A source can be either <code>Custom</code> for all valid non-Amazon Web Services
+     *          events, or the name of a partner event source. For information about the source names for available partners, see <a href="https://docs.aws.amazon.com/awscloudtrail/latest/userguide/query-event-data-store-integration.html#cloudtrail-lake-partner-information">Additional information about integration partners</a> in the CloudTrail User Guide.
+     *       </p>
+     */
+    Source: string | undefined;
+    /**
+     * <p>One or more event data stores to which events arriving through a channel will be logged.</p>
+     */
+    Destinations: Destination[] | undefined;
+    /**
+     * <p>A list of tags.</p>
+     */
+    Tags?: Tag[];
+}
+export interface CreateChannelResponse {
+    /**
+     * <p>The Amazon Resource Name (ARN) of the new channel.</p>
+     */
+    ChannelArn?: string;
+    /**
+     * <p>The name of the new channel.</p>
+     */
+    Name?: string;
+    /**
+     * <p>The partner or external event source name.</p>
+     */
+    Source?: string;
+    /**
+     * <p>The event data stores that log the events arriving through the channel.</p>
+     */
+    Destinations?: Destination[];
+    /**
+     * <p>A list of tags.</p>
+     */
+    Tags?: Tag[];
+}
+/**
+ * <p>This exception is thrown when event categories of specified event data stores are not
+ *          valid.</p>
+ */
+export declare class InvalidEventDataStoreCategoryException extends __BaseException {
+    readonly name: "InvalidEventDataStoreCategoryException";
+    readonly $fault: "client";
+    /**
+     * <p>Brief description of the exception returned by the request.</p>
+     */
+    Message?: string;
+    /**
+     * @internal
+     */
+    constructor(opts: __ExceptionOptionType<InvalidEventDataStoreCategoryException, __BaseException>);
+}
+/**
+ * <p>This exception is thrown when the specified value of <code>Source</code> is not valid.</p>
+ */
+export declare class InvalidSourceException extends __BaseException {
+    readonly name: "InvalidSourceException";
+    readonly $fault: "client";
+    /**
+     * <p>Brief description of the exception returned by the request.</p>
+     */
+    Message?: string;
+    /**
+     * @internal
+     */
+    constructor(opts: __ExceptionOptionType<InvalidSourceException, __BaseException>);
+}
+/**
+ * <p>This exception is thrown when trusted access has not been enabled between CloudTrail and Organizations. For more information, see <a href="https://docs.aws.amazon.com/organizations/latest/userguide/orgs_integrate_services.html">Enabling Trusted Access with Other Amazon Web Services Services</a> and <a href="https://docs.aws.amazon.com/awscloudtrail/latest/userguide/creating-an-organizational-trail-prepare.html">Prepare For Creating a Trail For Your Organization</a>. </p>
  */
 export declare class CloudTrailAccessNotEnabledException extends __BaseException {
     readonly name: "CloudTrailAccessNotEnabledException";
@@ -814,28 +1071,34 @@ export interface CreateEventDataStoreRequest {
      */
     Name: string | undefined;
     /**
-     * <p>The advanced event selectors to use to select the events for the data store. For more information about how to use advanced event
-     *          selectors, see <a href="https://docs.aws.amazon.com/awscloudtrail/latest/userguide/logging-data-events-with-cloudtrail.html#creating-data-event-selectors-advanced">Log events by using advanced event selectors</a> in the CloudTrail
-     *          User Guide.</p>
+     * <p>The advanced event selectors to use to select the events for the data store. You can
+     *          configure up to five advanced event selectors for each event data store.</p>
+     *          <p> For more information about how to use advanced event selectors to log CloudTrail
+     *          events, see <a href="https://docs.aws.amazon.com/awscloudtrail/latest/userguide/logging-data-events-with-cloudtrail.html#creating-data-event-selectors-advanced">Log events by using advanced event selectors</a> in the CloudTrail User Guide.</p>
+     *          <p>For more information about how to use advanced event selectors to include Config configuration items in your event data store, see <a href="https://docs.aws.amazon.com/awscloudtrail/latest/userguide/query-lake-cli.html#lake-cli-create-eds-config">Create an event data store for Config configuration
+     *             items</a> in the CloudTrail User Guide.</p>
+     *          <p>For more information about how to use advanced event selectors to include non-Amazon Web Services events in your event data store, see <a href="https://docs.aws.amazon.com/awscloudtrail/latest/userguide/query-lake-cli.html#lake-cli-create-integration">Create an integration to log events from outside Amazon Web Services</a> in the CloudTrail User Guide.</p>
      */
     AdvancedEventSelectors?: AdvancedEventSelector[];
     /**
-     * <p>Specifies whether the event data store includes events from all regions, or only from the region in which the event data store
-     *          is created.</p>
+     * <p>Specifies whether the event data store includes events from all regions, or only from
+     *          the region in which the event data store is created.</p>
      */
     MultiRegionEnabled?: boolean;
     /**
-     * <p>Specifies whether an event data store collects events logged for an organization in Organizations.</p>
+     * <p>Specifies whether an event data store collects events logged for an organization in
+     *             Organizations.</p>
      */
     OrganizationEnabled?: boolean;
     /**
-     * <p>The retention period of the event data store, in days. You can set a retention period of up to 2557 days,
-     *       the equivalent of seven years.</p>
+     * <p>The retention period of the event data store, in days. You can set a retention period of
+     *          up to 2557 days, the equivalent of seven years.</p>
      */
     RetentionPeriod?: number;
     /**
-     * <p>Specifies whether termination protection is enabled for the event data store. If termination protection is enabled, you
-     *       cannot delete the event data store until termination protection is disabled.</p>
+     * <p>Specifies whether termination protection is enabled for the event data store. If
+     *          termination protection is enabled, you cannot delete the event data store until termination
+     *          protection is disabled.</p>
      */
     TerminationProtectionEnabled?: boolean;
     /**
@@ -843,18 +1106,21 @@ export interface CreateEventDataStoreRequest {
      */
     TagsList?: Tag[];
     /**
-     * <p>Specifies the KMS key ID to use to encrypt the events delivered by CloudTrail. The
-     *          value can be an alias name prefixed by <code>alias/</code>, a fully specified ARN to an alias, a fully
-     *          specified ARN to a key, or a globally unique identifier.</p>
+     * <p>Specifies the KMS key ID to use to encrypt the events delivered by
+     *             CloudTrail. The value can be an alias name prefixed by <code>alias/</code>, a
+     *          fully specified ARN to an alias, a fully specified ARN to a key, or a globally unique
+     *          identifier.</p>
      *          <important>
      *             <p>Disabling or deleting the KMS key, or removing CloudTrail
-     *          permissions on the key, prevents CloudTrail from logging events to the event data store, and prevents users
-     *          from querying the data in the event data store that was encrypted with the key.
-     *          After you associate an event data store with a KMS key, the KMS key cannot be removed or changed. Before you disable or
-     *          delete a KMS key that you are using with an event data store, delete or back up your event data store.</p>
+     *             permissions on the key, prevents CloudTrail from logging events to the event data
+     *             store, and prevents users from querying the data in the event data store that was
+     *             encrypted with the key. After you associate an event data store with a KMS key, the KMS key cannot be removed or changed. Before you
+     *             disable or delete a KMS key that you are using with an event data store,
+     *             delete or back up your event data store.</p>
      *          </important>
-     *          <p>CloudTrail also supports KMS multi-Region keys. For more information about multi-Region keys,
-     *          see <a href="https://docs.aws.amazon.com/kms/latest/developerguide/multi-region-keys-overview.html">Using multi-Region keys</a> in the <i>Key Management Service Developer Guide</i>.</p>
+     *          <p>CloudTrail also supports KMS multi-Region keys. For more
+     *          information about multi-Region keys, see <a href="https://docs.aws.amazon.com/kms/latest/developerguide/multi-region-keys-overview.html">Using multi-Region
+     *             keys</a> in the <i>Key Management Service Developer Guide</i>.</p>
      *          <p>Examples:</p>
      *          <ul>
      *             <li>
@@ -900,15 +1166,18 @@ export interface CreateEventDataStoreResponse {
      */
     Status?: EventDataStoreStatus | string;
     /**
-     * <p>The advanced event selectors that were used to select the events for the data store.</p>
+     * <p>The advanced event selectors that were used to select the events for the data
+     *          store.</p>
      */
     AdvancedEventSelectors?: AdvancedEventSelector[];
     /**
-     * <p>Indicates whether the event data store collects events from all regions, or only from the region in which it was created.</p>
+     * <p>Indicates whether the event data store collects events from all regions, or only from
+     *          the region in which it was created.</p>
      */
     MultiRegionEnabled?: boolean;
     /**
-     * <p>Indicates whether an event data store is collecting logged events for an organization in Organizations.</p>
+     * <p>Indicates whether an event data store is collecting logged events for an organization in
+     *             Organizations.</p>
      */
     OrganizationEnabled?: boolean;
     /**
@@ -929,12 +1198,13 @@ export interface CreateEventDataStoreResponse {
     CreatedTimestamp?: Date;
     /**
      * <p>The timestamp that shows when an event data store was updated, if applicable.
-     *          <code>UpdatedTimestamp</code> is always either the same or newer than the time shown in <code>CreatedTimestamp</code>.</p>
+     *             <code>UpdatedTimestamp</code> is always either the same or newer than the time shown in
+     *             <code>CreatedTimestamp</code>.</p>
      */
     UpdatedTimestamp?: Date;
     /**
-     * <p>Specifies the KMS key ID that encrypts the events delivered by CloudTrail.
-     *          The value is a fully specified ARN to a KMS key in the following format.</p>
+     * <p>Specifies the KMS key ID that encrypts the events delivered by CloudTrail. The value is a fully specified ARN to a KMS key in the
+     *          following format.</p>
      *          <p>
      *             <code>arn:aws:kms:us-east-2:123456789012:key/12345678-1234-1234-1234-123456789012</code>
      *          </p>
@@ -973,8 +1243,8 @@ export declare class EventDataStoreMaxLimitExceededException extends __BaseExcep
 }
 /**
  * <p>This exception is thrown when the IAM user or role that is used to create
- *          the organization resource lacks one or more required permissions for
- *          creating an organization resource in a required service.</p>
+ *          the organization resource lacks one or more required permissions for creating an
+ *          organization resource in a required service.</p>
  */
 export declare class InsufficientDependencyServiceAccessPermissionException extends __BaseException {
     readonly name: "InsufficientDependencyServiceAccessPermissionException";
@@ -989,7 +1259,8 @@ export declare class InsufficientDependencyServiceAccessPermissionException exte
     constructor(opts: __ExceptionOptionType<InsufficientDependencyServiceAccessPermissionException, __BaseException>);
 }
 /**
- * <p>This exception is thrown when the policy on the S3 bucket or KMS key does not have sufficient permissions for the operation.</p>
+ * <p>This exception is thrown when the policy on the S3 bucket or KMS key does
+ *          not have sufficient permissions for the operation.</p>
  */
 export declare class InsufficientEncryptionPolicyException extends __BaseException {
     readonly name: "InsufficientEncryptionPolicyException";
@@ -1004,27 +1275,32 @@ export declare class InsufficientEncryptionPolicyException extends __BaseExcepti
     constructor(opts: __ExceptionOptionType<InsufficientEncryptionPolicyException, __BaseException>);
 }
 /**
- * <p>This exception is thrown when the <code>PutEventSelectors</code> operation is called with a number of event
- *          selectors, advanced event selectors, or data resources that is not valid. The combination of event selectors or advanced event selectors and
- *          data resources is not valid. A trail can have up to 5 event selectors. If a trail uses advanced event selectors, a maximum
- *          of 500 total values for all conditions in all advanced event selectors is allowed. A trail is limited to 250 data resources. These data resources can be distributed across event selectors, but the overall total cannot exceed 250.</p>
+ * <p>This exception is thrown when the <code>PutEventSelectors</code> operation is called
+ *          with a number of event selectors, advanced event selectors, or data resources that is not
+ *          valid. The combination of event selectors or advanced event selectors and data resources is
+ *          not valid. A trail can have up to 5 event selectors. If a trail uses advanced event
+ *          selectors, a maximum of 500 total values for all conditions in all advanced event selectors
+ *          is allowed. A trail is limited to 250 data resources. These data resources can be
+ *          distributed across event selectors, but the overall total cannot exceed 250.</p>
  *          <p>You can:</p>
  *          <ul>
  *             <li>
  *                <p>Specify a valid number of event selectors (1 to 5) for a trail.</p>
  *             </li>
  *             <li>
- *                <p>Specify a valid number of data resources (1 to 250) for an event selector.
- *                The limit of number of resources on an individual event selector is configurable up to 250.
- *                However, this upper limit is allowed only if the total number of data resources does not
- *                exceed 250 across all event selectors for a trail.</p>
+ *                <p>Specify a valid number of data resources (1 to 250) for an event selector. The
+ *                limit of number of resources on an individual event selector is configurable up to
+ *                250. However, this upper limit is allowed only if the total number of data resources
+ *                does not exceed 250 across all event selectors for a trail.</p>
  *             </li>
  *             <li>
- *                <p>Specify up to 500 values for all conditions in all advanced event selectors for a trail.</p>
+ *                <p>Specify up to 500 values for all conditions in all advanced event selectors for a
+ *                trail.</p>
  *             </li>
  *             <li>
- *                <p>Specify a valid value for a parameter. For example, specifying the <code>ReadWriteType</code>
- *                parameter with a value of <code>read-only</code> is not valid.</p>
+ *                <p>Specify a valid value for a parameter. For example, specifying the
+ *                   <code>ReadWriteType</code> parameter with a value of <code>read-only</code> is not
+ *                valid.</p>
  *             </li>
  *          </ul>
  */
@@ -1056,7 +1332,8 @@ export declare class InvalidKmsKeyIdException extends __BaseException {
     constructor(opts: __ExceptionOptionType<InvalidKmsKeyIdException, __BaseException>);
 }
 /**
- * <p>This exception is thrown when there is an issue with the specified KMS key and the trail or event data store can't be updated.</p>
+ * <p>This exception is thrown when there is an issue with the specified KMS
+ *          key and the trail or event data store can't be updated.</p>
  */
 export declare class KmsException extends __BaseException {
     readonly name: "KmsException";
@@ -1071,9 +1348,9 @@ export declare class KmsException extends __BaseException {
     constructor(opts: __ExceptionOptionType<KmsException, __BaseException>);
 }
 /**
- * <p>This exception is thrown when the KMS key does not exist, when the S3 bucket and the
- *          KMS key are not in the same region, or when the KMS key associated with the Amazon SNS
- *          topic either does not exist or is not in the same region.</p>
+ * <p>This exception is thrown when the KMS key does not exist, when the S3
+ *          bucket and the KMS key are not in the same region, or when the KMS key associated with the Amazon SNS topic either does not exist or is
+ *          not in the same region.</p>
  */
 export declare class KmsKeyNotFoundException extends __BaseException {
     readonly name: "KmsKeyNotFoundException";
@@ -1089,8 +1366,8 @@ export declare class KmsKeyNotFoundException extends __BaseException {
 }
 /**
  * <p>This exception is thrown when Organizations is not configured to support all
- *          features. All features must be enabled in Organizations to support
- *          creating an organization trail or event data store.</p>
+ *          features. All features must be enabled in Organizations to support creating an
+ *          organization trail or event data store.</p>
  */
 export declare class OrganizationNotInAllFeaturesModeException extends __BaseException {
     readonly name: "OrganizationNotInAllFeaturesModeException";
@@ -1105,8 +1382,9 @@ export declare class OrganizationNotInAllFeaturesModeException extends __BaseExc
     constructor(opts: __ExceptionOptionType<OrganizationNotInAllFeaturesModeException, __BaseException>);
 }
 /**
- * <p>This exception is thrown when the request is made from an Amazon Web Services account that is not a member of an organization.
- *          To make this request, sign in using the credentials of an account that belongs to an organization.</p>
+ * <p>This exception is thrown when the request is made from an Amazon Web Services account
+ *          that is not a member of an organization. To make this request, sign in using the
+ *          credentials of an account that belongs to an organization.</p>
  */
 export declare class OrganizationsNotInUseException extends __BaseException {
     readonly name: "OrganizationsNotInUseException";
@@ -1121,9 +1399,9 @@ export declare class OrganizationsNotInUseException extends __BaseException {
     constructor(opts: __ExceptionOptionType<OrganizationsNotInUseException, __BaseException>);
 }
 /**
- * <p>This exception is thrown when a call results in the <code>InvalidClientTokenId</code> error code.
- *          This can occur when you are creating or updating a trail to send notifications to an Amazon SNS topic that
- *          is in a suspended Amazon Web Services account.</p>
+ * <p>This exception is thrown when a call results in the <code>InvalidClientTokenId</code>
+ *          error code. This can occur when you are creating or updating a trail to send notifications
+ *          to an Amazon SNS topic that is in a suspended Amazon Web Services account.</p>
  */
 export declare class CloudTrailInvalidClientTokenIdException extends __BaseException {
     readonly name: "CloudTrailInvalidClientTokenIdException";
@@ -1160,7 +1438,8 @@ export interface CreateTrailRequest {
      * <p>Specifies the name of the trail. The name must meet the following requirements:</p>
      *          <ul>
      *             <li>
-     *                <p>Contain only ASCII letters (a-z, A-Z), numbers (0-9), periods (.), underscores (_), or dashes (-)</p>
+     *                <p>Contain only ASCII letters (a-z, A-Z), numbers (0-9), periods (.), underscores
+     *                (_), or dashes (-)</p>
      *             </li>
      *             <li>
      *                <p>Start with a letter or number, and end with a letter or number</p>
@@ -1169,8 +1448,8 @@ export interface CreateTrailRequest {
      *                <p>Be between 3 and 128 characters</p>
      *             </li>
      *             <li>
-     *                <p>Have no adjacent periods, underscores or dashes. Names like <code>my-_namespace</code>
-     *             and <code>my--namespace</code> are not valid.</p>
+     *                <p>Have no adjacent periods, underscores or dashes. Names like
+     *                   <code>my-_namespace</code> and <code>my--namespace</code> are not valid.</p>
      *             </li>
      *             <li>
      *                <p>Not be in IP address format (for example, 192.168.5.4)</p>
@@ -1179,53 +1458,65 @@ export interface CreateTrailRequest {
      */
     Name: string | undefined;
     /**
-     * <p>Specifies the name of the Amazon S3 bucket designated for publishing log files. See <a href="https://docs.aws.amazon.com/awscloudtrail/latest/userguide/create_trail_naming_policy.html">Amazon S3 Bucket Naming Requirements</a>.</p>
+     * <p>Specifies the name of the Amazon S3 bucket designated for publishing log files.
+     *          See <a href="https://docs.aws.amazon.com/awscloudtrail/latest/userguide/create_trail_naming_policy.html">Amazon S3
+     *             Bucket Naming Requirements</a>.</p>
      */
     S3BucketName: string | undefined;
     /**
-     * <p>Specifies the Amazon S3 key prefix that comes after the name of the bucket you have designated
-     *          for log file delivery. For more information, see <a href="https://docs.aws.amazon.com/awscloudtrail/latest/userguide/cloudtrail-find-log-files.html">Finding Your CloudTrail Log Files</a>. The maximum length is 200 characters.</p>
+     * <p>Specifies the Amazon S3 key prefix that comes after the name of the bucket you
+     *          have designated for log file delivery. For more information, see <a href="https://docs.aws.amazon.com/awscloudtrail/latest/userguide/cloudtrail-find-log-files.html">Finding Your CloudTrail Log Files</a>. The maximum length is 200
+     *          characters.</p>
      */
     S3KeyPrefix?: string;
     /**
-     * <p>Specifies the name of the Amazon SNS topic defined for notification of log file delivery. The maximum length is 256 characters.</p>
+     * <p>Specifies the name of the Amazon SNS topic defined for notification of log file
+     *          delivery. The maximum length is 256 characters.</p>
      */
     SnsTopicName?: string;
     /**
-     * <p>Specifies whether the trail is publishing events from global services such as IAM to the log files.</p>
+     * <p>Specifies whether the trail is publishing events from global services such as IAM to the
+     *          log files.</p>
      */
     IncludeGlobalServiceEvents?: boolean;
     /**
-     * <p>Specifies whether the trail is created in the current region or in all regions. The default is false, which creates a trail only in the region where you are signed in. As a best practice, consider
-     *       creating trails that log events in all regions.</p>
+     * <p>Specifies whether the trail is created in the current region or in all regions. The
+     *          default is false, which creates a trail only in the region where you are signed in. As a
+     *          best practice, consider creating trails that log events in all regions.</p>
      */
     IsMultiRegionTrail?: boolean;
     /**
      * <p>Specifies whether log file integrity validation is enabled. The default is false.</p>
      *          <note>
-     *             <p>When you disable log file integrity validation, the chain of digest files is broken after one hour. CloudTrail does
-     *             not create digest files for log files that were delivered during a period in which log file integrity validation was disabled.
-     *             For example, if you enable log file integrity validation at noon on January 1, disable it at noon on January 2, and re-enable
-     *             it at noon on January 10, digest files will not be created for the log files delivered from noon on January 2 to noon on
-     *             January 10. The same applies whenever you stop CloudTrail logging or delete a trail.</p>
+     *             <p>When you disable log file integrity validation, the chain of digest files is broken
+     *             after one hour. CloudTrail does not create digest files for log files that were
+     *             delivered during a period in which log file integrity validation was disabled. For
+     *             example, if you enable log file integrity validation at noon on January 1, disable it at
+     *             noon on January 2, and re-enable it at noon on January 10, digest files will not be
+     *             created for the log files delivered from noon on January 2 to noon on January 10. The
+     *             same applies whenever you stop CloudTrail logging or delete a trail.</p>
      *          </note>
      */
     EnableLogFileValidation?: boolean;
     /**
-     * <p>Specifies a log group name using an Amazon Resource Name (ARN), a unique identifier that represents the log group
-     *          to which CloudTrail logs will be delivered. Not required unless you specify <code>CloudWatchLogsRoleArn</code>.</p>
+     * <p>Specifies a log group name using an Amazon Resource Name (ARN), a unique identifier that
+     *          represents the log group to which CloudTrail logs will be delivered. You must use a
+     *          log group that exists in your account.</p>
+     *          <p>Not required unless you specify <code>CloudWatchLogsRoleArn</code>.</p>
      */
     CloudWatchLogsLogGroupArn?: string;
     /**
-     * <p>Specifies the role for the CloudWatch Logs endpoint to assume to write to a user's log group.</p>
+     * <p>Specifies the role for the CloudWatch Logs endpoint to assume to write to a user's
+     *          log group. You must use a role that exists in your account.</p>
      */
     CloudWatchLogsRoleArn?: string;
     /**
-     * <p>Specifies the KMS key ID to use to encrypt the logs delivered by CloudTrail. The
-     *          value can be an alias name prefixed by <code>alias/</code>, a fully specified ARN to an alias, a fully
-     *          specified ARN to a key, or a globally unique identifier.</p>
-     *          <p>CloudTrail also supports KMS multi-Region keys. For more information about multi-Region keys,
-     *          see <a href="https://docs.aws.amazon.com/kms/latest/developerguide/multi-region-keys-overview.html">Using multi-Region keys</a> in the <i>Key Management Service Developer Guide</i>.</p>
+     * <p>Specifies the KMS key ID to use to encrypt the logs delivered by CloudTrail. The value can be an alias name prefixed by <code>alias/</code>, a fully
+     *          specified ARN to an alias, a fully specified ARN to a key, or a globally unique
+     *          identifier.</p>
+     *          <p>CloudTrail also supports KMS multi-Region keys. For more
+     *          information about multi-Region keys, see <a href="https://docs.aws.amazon.com/kms/latest/developerguide/multi-region-keys-overview.html">Using multi-Region
+     *             keys</a> in the <i>Key Management Service Developer Guide</i>.</p>
      *          <p>Examples:</p>
      *          <ul>
      *             <li>
@@ -1252,9 +1543,9 @@ export interface CreateTrailRequest {
      */
     KmsKeyId?: string;
     /**
-     * <p>Specifies whether the trail is created for all accounts in an organization in Organizations, or only for the current Amazon Web Services account.
-     *          The default is false, and cannot be true unless the call is made on behalf of an Amazon Web Services account that is the management account for an organization in
-     *          Organizations.</p>
+     * <p>Specifies whether the trail is created for all accounts in an organization in Organizations, or only for the current Amazon Web Services account. The default is false,
+     *          and cannot be true unless the call is made on behalf of an Amazon Web Services account that
+     *          is the management account or delegated administrator account for an organization in Organizations.</p>
      */
     IsOrganizationTrail?: boolean;
     /**
@@ -1263,7 +1554,8 @@ export interface CreateTrailRequest {
     TagsList?: Tag[];
 }
 /**
- * <p>Returns the objects or data listed below if successful. Otherwise, returns an error.</p>
+ * <p>Returns the objects or data listed below if successful. Otherwise, returns an
+ *          error.</p>
  */
 export interface CreateTrailResponse {
     /**
@@ -1271,12 +1563,13 @@ export interface CreateTrailResponse {
      */
     Name?: string;
     /**
-     * <p>Specifies the name of the Amazon S3 bucket designated for publishing log files.</p>
+     * <p>Specifies the name of the Amazon S3 bucket designated for publishing log
+     *          files.</p>
      */
     S3BucketName?: string;
     /**
-     * <p>Specifies the Amazon S3 key prefix that comes after the name of the bucket you have designated
-     *          for log file delivery. For more information, see <a href="https://docs.aws.amazon.com/awscloudtrail/latest/userguide/cloudtrail-find-log-files.html">Finding Your CloudTrail Log Files</a>.</p>
+     * <p>Specifies the Amazon S3 key prefix that comes after the name of the bucket you
+     *          have designated for log file delivery. For more information, see <a href="https://docs.aws.amazon.com/awscloudtrail/latest/userguide/cloudtrail-find-log-files.html">Finding Your CloudTrail Log Files</a>.</p>
      */
     S3KeyPrefix?: string;
     /**
@@ -1286,14 +1579,16 @@ export interface CreateTrailResponse {
      */
     SnsTopicName?: string;
     /**
-     * <p>Specifies the ARN of the Amazon SNS topic that CloudTrail uses to send notifications when log files are delivered. The format of a topic ARN is:</p>
+     * <p>Specifies the ARN of the Amazon SNS topic that CloudTrail uses to send
+     *          notifications when log files are delivered. The format of a topic ARN is:</p>
      *          <p>
      *             <code>arn:aws:sns:us-east-2:123456789012:MyTopic</code>
      *          </p>
      */
     SnsTopicARN?: string;
     /**
-     * <p>Specifies whether the trail is publishing events from global services such as IAM to the log files.</p>
+     * <p>Specifies whether the trail is publishing events from global services such as IAM to the
+     *          log files.</p>
      */
     IncludeGlobalServiceEvents?: boolean;
     /**
@@ -1301,8 +1596,7 @@ export interface CreateTrailResponse {
      */
     IsMultiRegionTrail?: boolean;
     /**
-     * <p>Specifies the ARN of the trail that was created. The format of a trail ARN
-     *          is:</p>
+     * <p>Specifies the ARN of the trail that was created. The format of a trail ARN is:</p>
      *          <p>
      *             <code>arn:aws:cloudtrail:us-east-2:123456789012:trail/MyTrail</code>
      *          </p>
@@ -1313,16 +1607,18 @@ export interface CreateTrailResponse {
      */
     LogFileValidationEnabled?: boolean;
     /**
-     * <p>Specifies the Amazon Resource Name (ARN) of the log group to which CloudTrail logs will be delivered.</p>
+     * <p>Specifies the Amazon Resource Name (ARN) of the log group to which CloudTrail
+     *          logs will be delivered.</p>
      */
     CloudWatchLogsLogGroupArn?: string;
     /**
-     * <p>Specifies the role for the CloudWatch Logs endpoint to assume to write to a user's log group.</p>
+     * <p>Specifies the role for the CloudWatch Logs endpoint to assume to write to a user's
+     *          log group.</p>
      */
     CloudWatchLogsRoleArn?: string;
     /**
-     * <p>Specifies the KMS key ID that encrypts the events delivered by CloudTrail.
-     *          The value is a fully specified ARN to a KMS key in the following format.</p>
+     * <p>Specifies the KMS key ID that encrypts the events delivered by CloudTrail. The value is a fully specified ARN to a KMS key in the
+     *          following format.</p>
      *          <p>
      *             <code>arn:aws:kms:us-east-2:123456789012:key/12345678-1234-1234-1234-123456789012</code>
      *          </p>
@@ -1349,7 +1645,8 @@ export declare class InsufficientS3BucketPolicyException extends __BaseException
     constructor(opts: __ExceptionOptionType<InsufficientS3BucketPolicyException, __BaseException>);
 }
 /**
- * <p>This exception is thrown when the policy on the Amazon SNS topic is not sufficient.</p>
+ * <p>This exception is thrown when the policy on the Amazon SNS topic is not
+ *          sufficient.</p>
  */
 export declare class InsufficientSnsTopicPolicyException extends __BaseException {
     readonly name: "InsufficientSnsTopicPolicyException";
@@ -1364,7 +1661,8 @@ export declare class InsufficientSnsTopicPolicyException extends __BaseException
     constructor(opts: __ExceptionOptionType<InsufficientSnsTopicPolicyException, __BaseException>);
 }
 /**
- * <p>This exception is thrown when the provided CloudWatch Logs log group is not valid.</p>
+ * <p>This exception is thrown when the provided CloudWatch Logs log group is not
+ *          valid.</p>
  */
 export declare class InvalidCloudWatchLogsLogGroupArnException extends __BaseException {
     readonly name: "InvalidCloudWatchLogsLogGroupArnException";
@@ -1394,7 +1692,8 @@ export declare class InvalidCloudWatchLogsRoleArnException extends __BaseExcepti
     constructor(opts: __ExceptionOptionType<InvalidCloudWatchLogsRoleArnException, __BaseException>);
 }
 /**
- * <p>This exception is thrown when the combination of parameters provided is not valid.</p>
+ * <p>This exception is thrown when the combination of parameters provided is not
+ *          valid.</p>
  */
 export declare class InvalidParameterCombinationException extends __BaseException {
     readonly name: "InvalidParameterCombinationException";
@@ -1530,6 +1829,14 @@ export declare class TrailNotProvidedException extends __BaseException {
      */
     constructor(opts: __ExceptionOptionType<TrailNotProvidedException, __BaseException>);
 }
+export interface DeleteChannelRequest {
+    /**
+     * <p>The ARN or the <code>UUID</code> value of the channel that you want to delete.</p>
+     */
+    Channel: string | undefined;
+}
+export interface DeleteChannelResponse {
+}
 export interface DeleteEventDataStoreRequest {
     /**
      * <p>The ARN (or the ID suffix of the ARN) of the event data store to delete.</p>
@@ -1539,9 +1846,8 @@ export interface DeleteEventDataStoreRequest {
 export interface DeleteEventDataStoreResponse {
 }
 /**
- * <p>
- *          This exception is thrown when you try to update or delete an event data store that currently has an import in progress.
- *       </p>
+ * <p> This exception is thrown when you try to update or delete an event data store that
+ *          currently has an import in progress. </p>
  */
 export declare class EventDataStoreHasOngoingImportException extends __BaseException {
     readonly name: "EventDataStoreHasOngoingImportException";
@@ -1556,7 +1862,8 @@ export declare class EventDataStoreHasOngoingImportException extends __BaseExcep
     constructor(opts: __ExceptionOptionType<EventDataStoreHasOngoingImportException, __BaseException>);
 }
 /**
- * <p>The event data store cannot be deleted because termination protection is enabled for it.</p>
+ * <p>The event data store cannot be deleted because termination protection is enabled for
+ *          it.</p>
  */
 export declare class EventDataStoreTerminationProtectedException extends __BaseException {
     readonly name: "EventDataStoreTerminationProtectedException";
@@ -1570,25 +1877,74 @@ export declare class EventDataStoreTerminationProtectedException extends __BaseE
      */
     constructor(opts: __ExceptionOptionType<EventDataStoreTerminationProtectedException, __BaseException>);
 }
+export interface DeleteResourcePolicyRequest {
+    /**
+     * <p>
+     *          The Amazon Resource Name (ARN) of the CloudTrail channel you're deleting the resource-based policy from.
+     *          The following is the format of a resource ARN:
+     *          <code>arn:aws:cloudtrail:us-east-2:123456789012:channel/MyChannel</code>.
+     *       </p>
+     */
+    ResourceArn: string | undefined;
+}
+export interface DeleteResourcePolicyResponse {
+}
+/**
+ * <p>
+ *          This exception is thrown when the provided resource does not exist, or the ARN format of the resource is not valid. The following is the valid format for a resource ARN:
+ *          <code>arn:aws:cloudtrail:us-east-2:123456789012:channel/MyChannel</code>.
+ *       </p>
+ */
+export declare class ResourceARNNotValidException extends __BaseException {
+    readonly name: "ResourceARNNotValidException";
+    readonly $fault: "client";
+    /**
+     * <p>Brief description of the exception returned by the request.</p>
+     */
+    Message?: string;
+    /**
+     * @internal
+     */
+    constructor(opts: __ExceptionOptionType<ResourceARNNotValidException, __BaseException>);
+}
+/**
+ * <p>
+ *          This exception is thrown when the specified resource policy is not found.
+ *       </p>
+ */
+export declare class ResourcePolicyNotFoundException extends __BaseException {
+    readonly name: "ResourcePolicyNotFoundException";
+    readonly $fault: "client";
+    /**
+     * <p>Brief description of the exception returned by the request.</p>
+     */
+    Message?: string;
+    /**
+     * @internal
+     */
+    constructor(opts: __ExceptionOptionType<ResourcePolicyNotFoundException, __BaseException>);
+}
 /**
  * <p>The request that specifies the name of a trail to delete.</p>
  */
 export interface DeleteTrailRequest {
     /**
-     * <p>Specifies the name or the CloudTrail ARN of the trail to be deleted. The following is the format of a
-     *          trail ARN.
-     *          <code>arn:aws:cloudtrail:us-east-2:123456789012:trail/MyTrail</code>
+     * <p>Specifies the name or the CloudTrail ARN of the trail to be deleted. The
+     *          following is the format of a trail ARN.
+     *             <code>arn:aws:cloudtrail:us-east-2:123456789012:trail/MyTrail</code>
      *          </p>
      */
     Name: string | undefined;
 }
 /**
- * <p>Returns the objects or data listed below if successful. Otherwise, returns an error.</p>
+ * <p>Returns the objects or data listed below if successful. Otherwise, returns an
+ *          error.</p>
  */
 export interface DeleteTrailResponse {
 }
 /**
- * <p>This exception is thrown when an operation is called on a trail from a region other than the region in which the trail was created.</p>
+ * <p>This exception is thrown when an operation is called on a trail from a region other than
+ *          the region in which the trail was created.</p>
  */
 export declare class InvalidHomeRegionException extends __BaseException {
     readonly name: "InvalidHomeRegionException";
@@ -1618,13 +1974,14 @@ export declare class TrailNotFoundException extends __BaseException {
     constructor(opts: __ExceptionOptionType<TrailNotFoundException, __BaseException>);
 }
 /**
- * <p>Removes CloudTrail delegated administrator permissions from a specified member account in an organization
- *          that is currently designated as a delegated administrator.</p>
+ * <p>Removes CloudTrail delegated administrator permissions from a specified member
+ *          account in an organization that is currently designated as a delegated
+ *          administrator.</p>
  */
 export interface DeregisterOrganizationDelegatedAdminRequest {
     /**
-     * <p>A delegated administrator account ID. This is a member account in an organization
-     *          that is currently designated as a delegated administrator.</p>
+     * <p>A delegated administrator account ID. This is a member account in an organization that
+     *          is currently designated as a delegated administrator.</p>
      */
     DelegatedAdminAccountId: string | undefined;
 }
@@ -1634,9 +1991,8 @@ export interface DeregisterOrganizationDelegatedAdminRequest {
 export interface DeregisterOrganizationDelegatedAdminResponse {
 }
 /**
- * <p>
- *          This exception is thrown when the account making the request is not the organization's management account.
- *       </p>
+ * <p> This exception is thrown when the account making the request is not the organization's
+ *          management account. </p>
  */
 export declare class NotOrganizationManagementAccountException extends __BaseException {
     readonly name: "NotOrganizationManagementAccountException";
@@ -1654,7 +2010,8 @@ export interface DescribeQueryRequest {
     /**
      * @deprecated
      *
-     * <p>The ARN (or the ID suffix of the ARN) of an event data store on which the specified query was run.</p>
+     * <p>The ARN (or the ID suffix of the ARN) of an event data store on which the specified
+     *          query was run.</p>
      */
     EventDataStore?: string;
     /**
@@ -1674,8 +2031,9 @@ export declare enum DeliveryStatus {
     UNKNOWN = "UNKNOWN"
 }
 /**
- * <p>Gets metadata about a query, including the number of events that were matched, the total number of events scanned, the query run time
- *          in milliseconds, and the query's creation time.</p>
+ * <p>Gets metadata about a query, including the number of events that were matched, the total
+ *          number of events scanned, the query run time in milliseconds, and the query's creation
+ *          time.</p>
  */
 export interface QueryStatisticsForDescribeQuery {
     /**
@@ -1687,8 +2045,9 @@ export interface QueryStatisticsForDescribeQuery {
      */
     EventsScanned?: number;
     /**
-     * <p>The total bytes that the query scanned in the event data store. This value matches the number of
-     *       bytes for which your account is billed for the query, unless the query is still running.</p>
+     * <p>The total bytes that the query scanned in the event data store. This value matches the
+     *          number of bytes for which your account is billed for the query, unless the query is still
+     *          running.</p>
      */
     BytesScanned?: number;
     /**
@@ -1710,14 +2069,16 @@ export interface DescribeQueryResponse {
      */
     QueryString?: string;
     /**
-     * <p>The status of a query. Values for <code>QueryStatus</code> include <code>QUEUED</code>, <code>RUNNING</code>,
-     *          <code>FINISHED</code>, <code>FAILED</code>, <code>TIMED_OUT</code>, or <code>CANCELLED</code>
+     * <p>The status of a query. Values for <code>QueryStatus</code> include <code>QUEUED</code>,
+     *             <code>RUNNING</code>, <code>FINISHED</code>, <code>FAILED</code>,
+     *          <code>TIMED_OUT</code>, or <code>CANCELLED</code>
      *          </p>
      */
     QueryStatus?: QueryStatus | string;
     /**
-     * <p>Metadata about a query, including the number of events that were matched, the total number of events scanned, the query run time
-     *          in milliseconds, and the query's creation time.</p>
+     * <p>Metadata about a query, including the number of events that were matched, the total
+     *          number of events scanned, the query run time in milliseconds, and the query's creation
+     *          time.</p>
      */
     QueryStatistics?: QueryStatisticsForDescribeQuery;
     /**
@@ -1725,7 +2086,8 @@ export interface DescribeQueryResponse {
      */
     ErrorMessage?: string;
     /**
-     * <p>The URI for the S3 bucket where CloudTrail delivered query results, if applicable.</p>
+     * <p>The URI for the S3 bucket where CloudTrail delivered query results, if
+     *          applicable.</p>
      */
     DeliveryS3Uri?: string;
     /**
@@ -1738,29 +2100,37 @@ export interface DescribeQueryResponse {
  */
 export interface DescribeTrailsRequest {
     /**
-     * <p>Specifies a list of trail names, trail ARNs, or both, of the trails to describe. The format of a trail ARN is:</p>
+     * <p>Specifies a list of trail names, trail ARNs, or both, of the trails to describe. The
+     *          format of a trail ARN is:</p>
      *          <p>
      *             <code>arn:aws:cloudtrail:us-east-2:123456789012:trail/MyTrail</code>
      *          </p>
-     *          <p>If an empty list is specified, information for the trail in the current region is returned.</p>
+     *          <p>If an empty list is specified, information for the trail in the current region is
+     *          returned.</p>
      *          <ul>
      *             <li>
      *                <p>If an empty list is specified and <code>IncludeShadowTrails</code> is false, then
-     *             information for all trails in the current region is returned.</p>
+     *                information for all trails in the current region is returned.</p>
      *             </li>
      *             <li>
-     *                <p>If an empty list is specified and IncludeShadowTrails is null or true, then information for all trails in the current region and any associated shadow trails in other regions is returned.</p>
+     *                <p>If an empty list is specified and IncludeShadowTrails is null or true, then
+     *                information for all trails in the current region and any associated shadow trails in
+     *                other regions is returned.</p>
      *             </li>
      *          </ul>
      *          <note>
-     *             <p>If one or more trail names are specified, information is returned only if the names match the names of trails belonging only to the current region. To return information about a trail in another region, you must specify its trail ARN.</p>
+     *             <p>If one or more trail names are specified, information is returned only if the names
+     *             match the names of trails belonging only to the current region and current account. To return information
+     *             about a trail in another region, you must specify its trail ARN.</p>
      *          </note>
      */
     trailNameList?: string[];
     /**
-     * <p>Specifies whether to include shadow trails in the response. A shadow trail is the replication in a region of a trail that was created in a different region,
-     *          or in the case of an organization trail, the replication of an organization trail in member accounts. If you do not include shadow trails, organization trails in a member account
-     *          and region replication trails will not be returned. The default is true.</p>
+     * <p>Specifies whether to include shadow trails in the response. A shadow trail is the
+     *          replication in a region of a trail that was created in a different region, or in the case
+     *          of an organization trail, the replication of an organization trail in member accounts. If
+     *          you do not include shadow trails, organization trails in a member account and region
+     *          replication trails will not be returned. The default is true.</p>
      */
     includeShadowTrails?: boolean;
 }
@@ -1769,18 +2139,20 @@ export interface DescribeTrailsRequest {
  */
 export interface Trail {
     /**
-     * <p>Name of the trail set by calling <a>CreateTrail</a>. The maximum length is 128
-     *          characters.</p>
+     * <p>Name of the trail set by calling <a>CreateTrail</a>. The maximum length is
+     *          128 characters.</p>
      */
     Name?: string;
     /**
-     * <p>Name of the Amazon S3 bucket into which CloudTrail delivers your trail files. See <a href="https://docs.aws.amazon.com/awscloudtrail/latest/userguide/create_trail_naming_policy.html">Amazon S3 Bucket Naming Requirements</a>.</p>
+     * <p>Name of the Amazon S3 bucket into which CloudTrail delivers your trail
+     *          files. See <a href="https://docs.aws.amazon.com/awscloudtrail/latest/userguide/create_trail_naming_policy.html">Amazon S3
+     *             Bucket Naming Requirements</a>.</p>
      */
     S3BucketName?: string;
     /**
-     * <p>Specifies the Amazon S3 key prefix that comes after the name of the bucket you have designated
-     *          for log file delivery. For more information, see <a href="https://docs.aws.amazon.com/awscloudtrail/latest/userguide/cloudtrail-find-log-files.html">Finding Your CloudTrail Log Files</a>.
-     *          The maximum length is 200 characters.</p>
+     * <p>Specifies the Amazon S3 key prefix that comes after the name of the bucket you
+     *          have designated for log file delivery. For more information, see <a href="https://docs.aws.amazon.com/awscloudtrail/latest/userguide/cloudtrail-find-log-files.html">Finding Your CloudTrail Log Files</a>. The maximum length is 200
+     *          characters.</p>
      */
     S3KeyPrefix?: string;
     /**
@@ -1790,16 +2162,17 @@ export interface Trail {
      */
     SnsTopicName?: string;
     /**
-     * <p>Specifies the ARN of the Amazon SNS topic that CloudTrail uses to send notifications
-     *          when log files are delivered. The following is the format of a topic ARN.</p>
+     * <p>Specifies the ARN of the Amazon SNS topic that CloudTrail uses to send
+     *          notifications when log files are delivered. The following is the format of a topic
+     *          ARN.</p>
      *          <p>
      *             <code>arn:aws:sns:us-east-2:123456789012:MyTopic</code>
      *          </p>
      */
     SnsTopicARN?: string;
     /**
-     * <p>Set to <b>True</b> to include Amazon Web Services API calls from Amazon Web Services global services such as IAM.
-     *          Otherwise, <b>False</b>.</p>
+     * <p>Set to <b>True</b> to include Amazon Web Services API calls
+     *          from Amazon Web Services global services such as IAM. Otherwise, <b>False</b>.</p>
      */
     IncludeGlobalServiceEvents?: boolean;
     /**
@@ -1822,16 +2195,18 @@ export interface Trail {
      */
     LogFileValidationEnabled?: boolean;
     /**
-     * <p>Specifies an Amazon Resource Name (ARN), a unique identifier that represents the log group to which CloudTrail logs will be delivered.</p>
+     * <p>Specifies an Amazon Resource Name (ARN), a unique identifier that represents the log
+     *          group to which CloudTrail logs will be delivered.</p>
      */
     CloudWatchLogsLogGroupArn?: string;
     /**
-     * <p>Specifies the role for the CloudWatch Logs endpoint to assume to write to a user's log group.</p>
+     * <p>Specifies the role for the CloudWatch Logs endpoint to assume to write to a user's
+     *          log group.</p>
      */
     CloudWatchLogsRoleArn?: string;
     /**
-     * <p>Specifies the KMS key ID that encrypts the logs delivered by CloudTrail.
-     *          The value is a fully specified ARN to a KMS key in the following format.</p>
+     * <p>Specifies the KMS key ID that encrypts the logs delivered by CloudTrail. The value is a fully specified ARN to a KMS key in the
+     *          following format.</p>
      *          <p>
      *             <code>arn:aws:kms:us-east-2:123456789012:key/12345678-1234-1234-1234-123456789012</code>
      *          </p>
@@ -1842,7 +2217,8 @@ export interface Trail {
      */
     HasCustomEventSelectors?: boolean;
     /**
-     * <p>Specifies whether a trail has insight types specified in an <code>InsightSelector</code> list.</p>
+     * <p>Specifies whether a trail has insight types specified in an <code>InsightSelector</code>
+     *          list.</p>
      */
     HasInsightSelectors?: boolean;
     /**
@@ -1851,13 +2227,17 @@ export interface Trail {
     IsOrganizationTrail?: boolean;
 }
 /**
- * <p>Returns the objects or data listed below if successful. Otherwise, returns an error.</p>
+ * <p>Returns the objects or data listed below if successful. Otherwise, returns an
+ *          error.</p>
  */
 export interface DescribeTrailsResponse {
     /**
-     * <p>The list of trail objects. Trail objects with string values are only returned if values for the objects exist in a trail's configuration.
-     *          For example, <code>SNSTopicName</code> and <code>SNSTopicARN</code> are only returned in results if a trail is configured to send SNS notifications. Similarly,
-     *          <code>KMSKeyId</code> only appears in results if a trail's log files are encrypted with KMS customer managed keys.</p>
+     * <p>The list of trail objects. Trail objects with string values are only returned if values
+     *          for the objects exist in a trail's configuration. For example, <code>SNSTopicName</code>
+     *          and <code>SNSTopicARN</code> are only returned in results if a trail is configured to send
+     *          SNS notifications. Similarly, <code>KMSKeyId</code> only appears in results if a trail's
+     *          log files are encrypted with KMS
+     *          customer managed keys.</p>
      */
     trailList?: Trail[];
 }
@@ -1867,38 +2247,42 @@ export interface GetChannelRequest {
      */
     Channel: string | undefined;
 }
-export declare enum DestinationType {
-    AWS_SERVICE = "AWS_SERVICE",
-    EVENT_DATA_STORE = "EVENT_DATA_STORE"
-}
 /**
- * <p>Contains information about the service where CloudTrail delivers events.</p>
+ * <p>A table showing information about the most recent successful and failed attempts
+ *          to ingest events.</p>
  */
-export interface Destination {
+export interface IngestionStatus {
     /**
-     * <p>The type of destination for events arriving from a channel. For service-linked channels,
-     *          the value is <code>AWS_SERVICE</code>.</p>
+     * <p>The time stamp of the most recent successful ingestion of events for the channel.</p>
      */
-    Type: DestinationType | string | undefined;
+    LatestIngestionSuccessTime?: Date;
     /**
-     * <p>For service-linked channels, the value is the name of the Amazon Web Services service.</p>
+     * <p>The event ID of the most recent successful ingestion of events.</p>
      */
-    Location: string | undefined;
+    LatestIngestionSuccessEventID?: string;
+    /**
+     * <p>The error code for the most recent failure to ingest events.</p>
+     */
+    LatestIngestionErrorCode?: string;
+    /**
+     * <p>The time stamp of the most recent attempt to ingest events on the channel.</p>
+     */
+    LatestIngestionAttemptTime?: Date;
+    /**
+     * <p>The event ID of the most recent attempt to ingest events.</p>
+     */
+    LatestIngestionAttemptEventID?: string;
 }
 /**
- * <p>
- *          Contains configuration information about the channel.
- *       </p>
+ * <p> Contains configuration information about the channel. </p>
  */
 export interface SourceConfig {
     /**
-     * <p>
-     *          Specifies whether the channel applies to a single region or to all regions.</p>
+     * <p> Specifies whether the channel applies to a single region or to all regions.</p>
      */
     ApplyToAllRegions?: boolean;
     /**
-     * <p>
-     *          The advanced event selectors that are configured for the channel.</p>
+     * <p> The advanced event selectors that are configured for the channel.</p>
      */
     AdvancedEventSelectors?: AdvancedEventSelector[];
 }
@@ -1908,32 +2292,38 @@ export interface GetChannelResponse {
      */
     ChannelArn?: string;
     /**
-     * <p>
-     *          The name of the CloudTrail channel. For service-linked channels, the value is <code>aws-service-channel/service-name/custom-suffix</code>
-     *          where <code>service-name</code> represents the name of the
-     *          Amazon Web Services service that created the channel and <code>custom-suffix</code> represents the suffix generated by the Amazon Web Services service.
-     *       </p>
+     * <p> The name of the CloudTrail channel. For service-linked channels, the name is
+     *             <code>aws-service-channel/service-name/custom-suffix</code> where
+     *             <code>service-name</code> represents the name of the Amazon Web Services service that
+     *          created the channel and <code>custom-suffix</code> represents the suffix generated by the
+     *             Amazon Web Services service. </p>
      */
     Name?: string;
     /**
-     * <p>The event source for the CloudTrail channel.</p>
+     * <p>The source for the CloudTrail channel.</p>
      */
     Source?: string;
     /**
-     * <p>
-     *          Provides information about the advanced event selectors configured for the channel, and
-     *          whether the channel applies to all regions or a single region.
-     *       </p>
+     * <p> Provides information about the advanced event selectors configured for the channel, and
+     *          whether the channel applies to all regions or a single region. </p>
      */
     SourceConfig?: SourceConfig;
     /**
-     * <p>The Amazon Web Services service that created the service-linked channel.</p>
+     * <p>The destinations for the channel. For channels created for integrations,
+     *          the destinations are the event data stores that log events arriving through the channel.
+     *          For service-linked channels, the destination is the Amazon Web Services service that created the service-linked channel to receive events.</p>
      */
     Destinations?: Destination[];
+    /**
+     * <p>A table showing information about the most recent successful and failed attempts
+     *       to ingest events.</p>
+     */
+    IngestionStatus?: IngestionStatus;
 }
 export interface GetEventDataStoreRequest {
     /**
-     * <p>The ARN (or ID suffix of the ARN) of the event data store about which you want information.</p>
+     * <p>The ARN (or ID suffix of the ARN) of the event data store about which you want
+     *          information.</p>
      */
     EventDataStore: string | undefined;
 }
@@ -1947,7 +2337,8 @@ export interface GetEventDataStoreResponse {
      */
     Name?: string;
     /**
-     * <p>The status of an event data store. Values can be <code>ENABLED</code> and <code>PENDING_DELETION</code>.</p>
+     * <p>The status of an event data store. Values can be <code>ENABLED</code> and
+     *             <code>PENDING_DELETION</code>.</p>
      */
     Status?: EventDataStoreStatus | string;
     /**
@@ -1955,11 +2346,13 @@ export interface GetEventDataStoreResponse {
      */
     AdvancedEventSelectors?: AdvancedEventSelector[];
     /**
-     * <p>Indicates whether the event data store includes events from all regions, or only from the region in which it was created.</p>
+     * <p>Indicates whether the event data store includes events from all regions, or only from
+     *          the region in which it was created.</p>
      */
     MultiRegionEnabled?: boolean;
     /**
-     * <p>Indicates whether an event data store is collecting logged events for an organization in Organizations.</p>
+     * <p>Indicates whether an event data store is collecting logged events for an organization in
+     *             Organizations.</p>
      */
     OrganizationEnabled?: boolean;
     /**
@@ -1975,12 +2368,14 @@ export interface GetEventDataStoreResponse {
      */
     CreatedTimestamp?: Date;
     /**
-     * <p>Shows the time that an event data store was updated, if applicable. <code>UpdatedTimestamp</code> is always either the same or newer than the time shown in <code>CreatedTimestamp</code>.</p>
+     * <p>Shows the time that an event data store was updated, if applicable.
+     *             <code>UpdatedTimestamp</code> is always either the same or newer than the time shown in
+     *             <code>CreatedTimestamp</code>.</p>
      */
     UpdatedTimestamp?: Date;
     /**
-     * <p>Specifies the KMS key ID that encrypts the events delivered by CloudTrail.
-     *          The value is a fully specified ARN to a KMS key in the following format.</p>
+     * <p>Specifies the KMS key ID that encrypts the events delivered by CloudTrail. The value is a fully specified ARN to a KMS key in the
+     *          following format.</p>
      *          <p>
      *             <code>arn:aws:kms:us-east-2:123456789012:key/12345678-1234-1234-1234-123456789012</code>
      *          </p>
@@ -1989,11 +2384,12 @@ export interface GetEventDataStoreResponse {
 }
 export interface GetEventSelectorsRequest {
     /**
-     * <p>Specifies the name of the trail or trail ARN. If you specify a trail name, the
-     *          string must meet the following requirements:</p>
+     * <p>Specifies the name of the trail or trail ARN. If you specify a trail name, the string
+     *          must meet the following requirements:</p>
      *          <ul>
      *             <li>
-     *                <p>Contain only ASCII letters (a-z, A-Z), numbers (0-9), periods (.), underscores (_), or dashes (-)</p>
+     *                <p>Contain only ASCII letters (a-z, A-Z), numbers (0-9), periods (.), underscores
+     *                (_), or dashes (-)</p>
      *             </li>
      *             <li>
      *                <p>Start with a letter or number, and end with a letter or number</p>
@@ -2002,8 +2398,8 @@ export interface GetEventSelectorsRequest {
      *                <p>Be between 3 and 128 characters</p>
      *             </li>
      *             <li>
-     *                <p>Have no adjacent periods, underscores or dashes. Names like <code>my-_namespace</code>
-     *                   and <code>my--namespace</code> are not valid.</p>
+     *                <p>Have no adjacent periods, underscores or dashes. Names like
+     *                   <code>my-_namespace</code> and <code>my--namespace</code> are not valid.</p>
      *             </li>
      *             <li>
      *                <p>Not be in IP address format (for example, 192.168.5.4)</p>
@@ -2017,63 +2413,70 @@ export interface GetEventSelectorsRequest {
     TrailName: string | undefined;
 }
 /**
- * <p>The Amazon S3 buckets, Lambda functions, or Amazon DynamoDB tables that you specify
- *          in your event selectors for your trail to log data events. Data events provide information
- *          about the resource operations performed on or within a resource itself. These are also
- *          known as data plane operations. You can specify up to 250 data resources for a
- *          trail.</p>
+ * <p>The Amazon S3 buckets, Lambda functions, or Amazon DynamoDB tables that you specify in your event selectors for your trail to log data events. Data
+ *          events provide information about the resource operations performed on or within a resource
+ *          itself. These are also known as data plane operations. You can specify up to 250 data
+ *          resources for a trail.</p>
  *          <note>
- *             <p>The total number of allowed data resources is 250. This number can be distributed between 1 and 5 event selectors,
- *       but the total cannot exceed 250 across all selectors.</p>
+ *             <p>The total number of allowed data resources is 250. This number can be distributed
+ *             between 1 and 5 event selectors, but the total cannot exceed 250 across all
+ *             selectors for the trail.</p>
  *             <p>If you are using advanced event selectors, the maximum total number of values for
  *             all conditions, across all advanced event selectors for the trail, is 500.</p>
  *          </note>
- *          <p>The following example demonstrates how logging works when you configure logging of all data events
- *          for an S3 bucket named <code>bucket-1</code>. In this example, the CloudTrail user specified an empty prefix,
- *       and the option to log both <code>Read</code> and <code>Write</code> data events.</p>
+ *          <p>The following example demonstrates how logging works when you configure logging of all
+ *          data events for an S3 bucket named <code>bucket-1</code>. In this example, the CloudTrail user specified an empty prefix, and the option to log both <code>Read</code>
+ *          and <code>Write</code> data events.</p>
  *          <ol>
  *             <li>
  *                <p>A user uploads an image file to <code>bucket-1</code>.</p>
  *             </li>
  *             <li>
  *                <p>The <code>PutObject</code> API operation is an Amazon S3 object-level API.
- *             It is recorded as a data event in CloudTrail. Because the CloudTrail user specified an S3 bucket
- *             with an empty prefix, events that occur on any object in that bucket are logged. The trail processes and logs the
- *                event.</p>
+ *                It is recorded as a data event in CloudTrail. Because the CloudTrail
+ *                user specified an S3 bucket with an empty prefix, events that occur on any object in
+ *                that bucket are logged. The trail processes and logs the event.</p>
  *             </li>
  *             <li>
  *                <p>A user uploads an object to an Amazon S3 bucket named
  *                   <code>arn:aws:s3:::bucket-2</code>.</p>
  *             </li>
  *             <li>
- *                <p>The <code>PutObject</code> API operation occurred for an object in an S3 bucket that the CloudTrail
- *             user didn't specify for the trail. The trail doesn’t log the event.</p>
+ *                <p>The <code>PutObject</code> API operation occurred for an object in an S3 bucket
+ *                that the CloudTrail user didn't specify for the trail. The trail doesn’t log
+ *                the event.</p>
  *             </li>
  *          </ol>
- *          <p>The following example demonstrates how logging works when you configure logging of Lambda data events for a
- *          Lambda function named <i>MyLambdaFunction</i>, but not for all Lambda functions.</p>
+ *          <p>The following example demonstrates how logging works when you configure logging of
+ *             Lambda data events for a Lambda function named
+ *             <i>MyLambdaFunction</i>, but not for all Lambda
+ *          functions.</p>
  *          <ol>
  *             <li>
- *                <p>A user runs a script that includes a call to the <i>MyLambdaFunction</i> function and the
- *                <i>MyOtherLambdaFunction</i> function.</p>
+ *                <p>A user runs a script that includes a call to the
+ *                   <i>MyLambdaFunction</i> function and the
+ *                   <i>MyOtherLambdaFunction</i> function.</p>
  *             </li>
  *             <li>
- *                <p>The <code>Invoke</code> API operation on <i>MyLambdaFunction</i> is an Lambda API.
- *                It is recorded as a data event in CloudTrail. Because the CloudTrail user specified logging data events for
- *                <i>MyLambdaFunction</i>, any invocations of that function are logged. The trail processes and logs the event.</p>
+ *                <p>The <code>Invoke</code> API operation on <i>MyLambdaFunction</i> is
+ *                an Lambda API. It is recorded as a data event in CloudTrail.
+ *                Because the CloudTrail user specified logging data events for
+ *                   <i>MyLambdaFunction</i>, any invocations of that function are
+ *                logged. The trail processes and logs the event.</p>
  *             </li>
  *             <li>
- *                <p>The <code>Invoke</code> API operation on <i>MyOtherLambdaFunction</i> is an Lambda API.
- *                Because the CloudTrail user did not specify logging data events for all Lambda functions,
- *                the <code>Invoke</code> operation for <i>MyOtherLambdaFunction</i> does not match the function specified for the trail.
- *                The trail doesn’t log the event. </p>
+ *                <p>The <code>Invoke</code> API operation on
+ *                   <i>MyOtherLambdaFunction</i> is an Lambda API. Because
+ *                the CloudTrail user did not specify logging data events for all Lambda functions, the <code>Invoke</code> operation for
+ *                   <i>MyOtherLambdaFunction</i> does not match the function specified
+ *                for the trail. The trail doesn’t log the event. </p>
  *             </li>
  *          </ol>
  */
 export interface DataResource {
     /**
-     * <p>The resource type in which you want to log data events. You can specify
-     *          the following <i>basic</i> event selector resource types:</p>
+     * <p>The resource type in which you want to log data events. You can specify the following
+     *             <i>basic</i> event selector resource types:</p>
      *          <ul>
      *             <li>
      *                <p>
@@ -2091,13 +2494,18 @@ export interface DataResource {
      *                </p>
      *             </li>
      *          </ul>
-     *          <p>The following resource types are also available through <i>advanced</i> event selectors.
-     *          Basic event selector resource types are valid in advanced event selectors, but
-     *          advanced event selector resource types are not valid in basic event selectors.
-     *          For more information, see <a>AdvancedFieldSelector$Field</a>.</p>
+     *          <p>The following resource types are also available through <i>advanced</i>
+     *          event selectors. Basic event selector resource types are valid in advanced event selectors,
+     *          but advanced event selector resource types are not valid in basic event selectors. For more
+     *          information, see <a>AdvancedFieldSelector$Field</a>.</p>
      *          <ul>
      *             <li>
      *                <p>
+     *                   <code>AWS::CloudTrail::Channel</code>
+     *                </p>
+     *             </li>
+     *             <li>
+     *                <p>
      *                   <code>AWS::S3Outposts::Object</code>
      *                </p>
      *             </li>
@@ -2131,50 +2539,69 @@ export interface DataResource {
      *                   <code>AWS::Glue::Table</code>
      *                </p>
      *             </li>
+     *             <li>
+     *                <p>
+     *                   <code>AWS::FinSpace::Environment</code>
+     *                </p>
+     *             </li>
+     *             <li>
+     *                <p>
+     *                   <code>AWS::SageMaker::ExperimentTrialComponent</code>
+     *                </p>
+     *             </li>
+     *             <li>
+     *                <p>
+     *                   <code>AWS::SageMaker::FeatureGroup</code>
+     *                </p>
+     *             </li>
      *          </ul>
      */
     Type?: string;
     /**
-     * <p>An array of Amazon Resource Name (ARN) strings or partial ARN strings for the specified objects.</p>
+     * <p>An array of Amazon Resource Name (ARN) strings or partial ARN strings for the specified
+     *          objects.</p>
      *          <ul>
      *             <li>
-     *                <p>To log data events for all objects in all S3 buckets in your Amazon Web Services account, specify the
-     *          prefix as <code>arn:aws:s3</code>.</p>
+     *                <p>To log data events for all objects in all S3 buckets in your Amazon Web Services account, specify the prefix as <code>arn:aws:s3</code>.</p>
      *                <note>
-     *                   <p>This also enables logging of data event activity performed by any user or role in your Amazon Web Services account,
-     *          even if that activity is performed on a bucket that belongs to another Amazon Web Services account.</p>
+     *                   <p>This also enables logging of data event activity performed by any user or role
+     *                   in your Amazon Web Services account, even if that activity is performed on a bucket
+     *                   that belongs to another Amazon Web Services account.</p>
      *                </note>
      *             </li>
      *             <li>
-     *                <p>To log data events for all objects in an S3 bucket, specify the bucket and an empty
-     *          object prefix such as <code>arn:aws:s3:::bucket-1/</code>. The trail logs data events for
-     *          all objects in this S3 bucket.</p>
+     *                <p>To log data events for all objects in an S3 bucket, specify the bucket and an
+     *                empty object prefix such as <code>arn:aws:s3:::bucket-1/</code>. The trail logs data
+     *                events for all objects in this S3 bucket.</p>
      *             </li>
      *             <li>
-     *                <p>To log data events for specific objects, specify the S3 bucket and object prefix such
-     *          as <code>arn:aws:s3:::bucket-1/example-images</code>. The trail logs data events for
-     *          objects in this S3 bucket that match the prefix.</p>
+     *                <p>To log data events for specific objects, specify the S3 bucket and object prefix
+     *                such as <code>arn:aws:s3:::bucket-1/example-images</code>. The trail logs data events
+     *                for objects in this S3 bucket that match the prefix.</p>
      *             </li>
      *             <li>
-     *                <p>To log data events for all Lambda functions in your Amazon Web Services account, specify the prefix as
-     *                   <code>arn:aws:lambda</code>.</p>
+     *                <p>To log data events for all Lambda functions in your Amazon Web Services account, specify the prefix as <code>arn:aws:lambda</code>.</p>
      *                <note>
-     *                   <p>This also enables logging of <code>Invoke</code> activity performed by any user or role in your Amazon Web Services account,
-     *          even if that activity is performed on a function that belongs to another Amazon Web Services account. </p>
+     *                   <p>This also enables logging of <code>Invoke</code> activity performed by any user
+     *                   or role in your Amazon Web Services account, even if that activity is performed on
+     *                   a function that belongs to another Amazon Web Services account. </p>
      *                </note>
      *             </li>
      *             <li>
-     *                <p>To log data events for a specific Lambda function, specify the function ARN.</p>
+     *                <p>To log data events for a specific Lambda function, specify the
+     *                function ARN.</p>
      *                <note>
      *                   <p>Lambda function ARNs are exact. For example, if you specify a
-     *             function ARN <i>arn:aws:lambda:us-west-2:111111111111:function:helloworld</i>, data events will
-     *             only be logged for <i>arn:aws:lambda:us-west-2:111111111111:function:helloworld</i>. They will
-     *             not be logged for <i>arn:aws:lambda:us-west-2:111111111111:function:helloworld2</i>.</p>
+     *                   function ARN
+     *                      <i>arn:aws:lambda:us-west-2:111111111111:function:helloworld</i>,
+     *                   data events will only be logged for
+     *                      <i>arn:aws:lambda:us-west-2:111111111111:function:helloworld</i>.
+     *                   They will not be logged for
+     *                      <i>arn:aws:lambda:us-west-2:111111111111:function:helloworld2</i>.</p>
      *                </note>
      *             </li>
      *             <li>
-     *                <p>To log data events for all DynamoDB tables in your Amazon Web Services account, specify the prefix
-     *                as <code>arn:aws:dynamodb</code>.</p>
+     *                <p>To log data events for all DynamoDB tables in your Amazon Web Services account, specify the prefix as <code>arn:aws:dynamodb</code>.</p>
      *             </li>
      *          </ul>
      */
@@ -2186,49 +2613,52 @@ export declare enum ReadWriteType {
     WriteOnly = "WriteOnly"
 }
 /**
- * <p>Use event selectors to further specify the management and data event settings for your trail. By
- *          default, trails created without specific event selectors will be configured to log all read and
- *          write management events, and no data events. When an event occurs in your account, CloudTrail evaluates the event selector
- *          for all trails. For each trail, if the event matches any event selector, the trail
- *          processes and logs the event. If the event doesn't match any event selector, the trail
- *          doesn't log the event.</p>
+ * <p>Use event selectors to further specify the management and data event settings for your
+ *          trail. By default, trails created without specific event selectors will be configured to
+ *          log all read and write management events, and no data events. When an event occurs in your
+ *          account, CloudTrail evaluates the event selector for all trails. For each trail, if
+ *          the event matches any event selector, the trail processes and logs the event. If the event
+ *          doesn't match any event selector, the trail doesn't log the event.</p>
  *          <p>You can configure up to five event selectors for a trail.</p>
  *          <p>You cannot apply both event selectors and advanced event selectors to a trail.</p>
  */
 export interface EventSelector {
     /**
-     * <p>Specify if you want your trail to log read-only events, write-only events, or all. For example,
-     *          the EC2 <code>GetConsoleOutput</code> is a read-only API operation and
+     * <p>Specify if you want your trail to log read-only events, write-only events, or all. For
+     *          example, the EC2 <code>GetConsoleOutput</code> is a read-only API operation and
      *             <code>RunInstances</code> is a write-only API operation.</p>
      *          <p> By default, the value is <code>All</code>.</p>
      */
     ReadWriteType?: ReadWriteType | string;
     /**
-     * <p>Specify if you want your event selector to include management events for your trail.</p>
-     *          <p>
-     *          For more information, see <a href="https://docs.aws.amazon.com/awscloudtrail/latest/userguide/logging-management-events-with-cloudtrail.html">Management Events</a> in the <i>CloudTrail User Guide</i>.</p>
+     * <p>Specify if you want your event selector to include management events for your
+     *          trail.</p>
+     *          <p> For more information, see <a href="https://docs.aws.amazon.com/awscloudtrail/latest/userguide/logging-management-events-with-cloudtrail.html">Management Events</a> in the <i>CloudTrail User
+     *          Guide</i>.</p>
      *          <p>By default, the value is <code>true</code>.</p>
-     *          <p>The first copy of management events is free. You are charged for additional copies of management
-     *          events that you are logging on any subsequent trail in the same region. For more information about
-     *          CloudTrail pricing, see <a href="http://aws.amazon.com/cloudtrail/pricing/">CloudTrail Pricing</a>.</p>
+     *          <p>The first copy of management events is free. You are charged for additional copies of
+     *          management events that you are logging on any subsequent trail in the same region. For more
+     *          information about CloudTrail pricing, see <a href="http://aws.amazon.com/cloudtrail/pricing/">CloudTrail Pricing</a>.</p>
      */
     IncludeManagementEvents?: boolean;
     /**
-     * <p>CloudTrail supports data event logging for Amazon S3 objects, Lambda functions,
-     *          and Amazon DynamoDB tables
-     *          with basic event selectors. You can specify up to 250 resources for an individual event
-     *          selector, but the total number of data resources cannot exceed 250 across all event
-     *          selectors in a trail. This limit does not apply if you configure resource logging for all
-     *          data events.</p>
-     *          <p>For more information, see <a href="https://docs.aws.amazon.com/awscloudtrail/latest/userguide/logging-data-events-with-cloudtrail.html">Data Events</a> and <a href="https://docs.aws.amazon.com/awscloudtrail/latest/userguide/WhatIsCloudTrail-Limits.html">Limits in CloudTrail</a>
-     *          in the <i>CloudTrail User Guide</i>.</p>
+     * <p>CloudTrail supports data event logging for Amazon S3 objects, Lambda functions, and Amazon DynamoDB tables with basic event selectors.
+     *          You can specify up to 250 resources for an individual event selector, but the total number
+     *          of data resources cannot exceed 250 across all event selectors in a trail. This limit does
+     *          not apply if you configure resource logging for all data events.</p>
+     *          <p>For more information, see <a href="https://docs.aws.amazon.com/awscloudtrail/latest/userguide/logging-data-events-with-cloudtrail.html">Data
+     *             Events</a> and <a href="https://docs.aws.amazon.com/awscloudtrail/latest/userguide/WhatIsCloudTrail-Limits.html">Limits in CloudTrail</a> in the <i>CloudTrail User
+     *          Guide</i>.</p>
      */
     DataResources?: DataResource[];
     /**
-     * <p>An optional list of service event sources from which you do not want management events to be logged on your trail. In this release, the list can be empty (disables the filter),
+     * <p>An optional list of service event sources from which you do not want management events
+     *          to be logged on your trail. In this release, the list can be empty (disables the filter),
      *          or it can filter out Key Management Service or Amazon RDS Data API events by
-     *          containing <code>kms.amazonaws.com</code> or <code>rdsdata.amazonaws.com</code>. By default, <code>ExcludeManagementEventSources</code> is empty, and KMS and
-     *          Amazon RDS Data API events are logged to your trail. You can exclude management event sources only in regions that support the event source.</p>
+     *          containing <code>kms.amazonaws.com</code> or <code>rdsdata.amazonaws.com</code>. By
+     *          default, <code>ExcludeManagementEventSources</code> is empty, and KMS and
+     *             Amazon RDS Data API events are logged to your trail. You can exclude management
+     *          event sources only in regions that support the event source.</p>
      */
     ExcludeManagementEventSources?: string[];
 }
@@ -2242,76 +2672,54 @@ export interface GetEventSelectorsResponse {
      */
     EventSelectors?: EventSelector[];
     /**
-     * <p>
-     *          The advanced event selectors that are configured for the trail.
-     *       </p>
+     * <p> The advanced event selectors that are configured for the trail. </p>
      */
     AdvancedEventSelectors?: AdvancedEventSelector[];
 }
 export interface GetImportRequest {
     /**
-     * <p>
-     *          The ID for the import.
-     *       </p>
+     * <p> The ID for the import. </p>
      */
     ImportId: string | undefined;
 }
 /**
- * <p>
- *          The settings for the source S3 bucket.
- *       </p>
+ * <p> The settings for the source S3 bucket. </p>
  */
 export interface S3ImportSource {
     /**
-     * <p>
-     *          The URI for the source S3 bucket.
-     *       </p>
+     * <p> The URI for the source S3 bucket. </p>
      */
     S3LocationUri: string | undefined;
     /**
-     * <p>
-     *          The region associated with the source S3 bucket.
-     *       </p>
+     * <p> The region associated with the source S3 bucket. </p>
      */
     S3BucketRegion: string | undefined;
     /**
-     * <p>
-     *          The IAM ARN role used to access the source S3 bucket.
-     *       </p>
+     * <p> The IAM ARN role used to access the source S3 bucket. </p>
      */
     S3BucketAccessRoleArn: string | undefined;
 }
 /**
- * <p>
- *          The import source.
- *       </p>
+ * <p> The import source. </p>
  */
 export interface ImportSource {
     /**
-     * <p>
-     *          The source S3 bucket.
-     *       </p>
+     * <p> The source S3 bucket. </p>
      */
     S3: S3ImportSource | undefined;
 }
 /**
- * <p>
- *          Provides statistics for the specified <code>ImportID</code>. CloudTrail does not update import statistics in real-time.
- *          Returned values for parameters such as <code>EventsCompleted</code> may be lower than the actual value, because
- *          CloudTrail updates statistics incrementally over the course of the import.
- *       </p>
+ * <p> Provides statistics for the specified <code>ImportID</code>. CloudTrail does not
+ *          update import statistics in real-time. Returned values for parameters such as
+ *             <code>EventsCompleted</code> may be lower than the actual value, because CloudTrail updates statistics incrementally over the course of the import. </p>
  */
 export interface ImportStatistics {
     /**
-     * <p>
-     *          The number of S3 prefixes found for the import.
-     *       </p>
+     * <p> The number of S3 prefixes found for the import. </p>
      */
     PrefixesFound?: number;
     /**
-     * <p>
-     *          The number of S3 prefixes that completed import.
-     *       </p>
+     * <p> The number of S3 prefixes that completed import. </p>
      */
     PrefixesCompleted?: number;
     /**
@@ -2319,15 +2727,11 @@ export interface ImportStatistics {
      */
     FilesCompleted?: number;
     /**
-     * <p>
-     *          The number of trail events imported into the event data store.
-     *       </p>
+     * <p> The number of trail events imported into the event data store. </p>
      */
     EventsCompleted?: number;
     /**
-     * <p>
-     *         The number of failed entries.
-     *       </p>
+     * <p> The number of failed entries. </p>
      */
     FailedEntries?: number;
 }
@@ -2340,68 +2744,51 @@ export declare enum ImportStatus {
 }
 export interface GetImportResponse {
     /**
-     * <p>
-     *          The ID of the import.
-     *       </p>
+     * <p> The ID of the import. </p>
      */
     ImportId?: string;
     /**
-     * <p>
-     *          The ARN of the destination event data store.
-     *       </p>
+     * <p> The ARN of the destination event data store. </p>
      */
     Destinations?: string[];
     /**
-     * <p>
-     *          The source S3 bucket.
-     *       </p>
+     * <p> The source S3 bucket. </p>
      */
     ImportSource?: ImportSource;
     /**
-     * <p>
-     *          Used with <code>EndEventTime</code> to bound a <code>StartImport</code> request, and limit imported trail events
-     *          to only those events logged within a specified time period.
+     * <p> Used with <code>EndEventTime</code> to bound a <code>StartImport</code> request, and
+     *          limit imported trail events to only those events logged within a specified time period.
      *       </p>
      */
     StartEventTime?: Date;
     /**
-     * <p>
-     *          Used with <code>StartEventTime</code> to bound a <code>StartImport</code> request, and limit imported trail events
-     *          to only those events logged within a specified time period.
+     * <p> Used with <code>StartEventTime</code> to bound a <code>StartImport</code> request, and
+     *          limit imported trail events to only those events logged within a specified time period.
      *       </p>
      */
     EndEventTime?: Date;
     /**
-     * <p>
-     *          The status of the import.
-     *       </p>
+     * <p> The status of the import. </p>
      */
     ImportStatus?: ImportStatus | string;
     /**
-     * <p>
-     *          The timestamp of the import's creation.
-     *       </p>
+     * <p> The timestamp of the import's creation. </p>
      */
     CreatedTimestamp?: Date;
     /**
-     * <p>
-     *          The timestamp of when the import was updated.
-     *       </p>
+     * <p> The timestamp of when the import was updated. </p>
      */
     UpdatedTimestamp?: Date;
     /**
-     * <p>
-     *          Provides statistics for the import. CloudTrail does not update import statistics in real-time.
-     *          Returned values for parameters such as <code>EventsCompleted</code> may be lower than the actual value, because
-     *          CloudTrail updates statistics incrementally over the course of the import.
-     *       </p>
+     * <p> Provides statistics for the import. CloudTrail does not update import statistics
+     *          in real-time. Returned values for parameters such as <code>EventsCompleted</code> may be
+     *          lower than the actual value, because CloudTrail updates statistics incrementally
+     *          over the course of the import. </p>
      */
     ImportStatistics?: ImportStatistics;
 }
 /**
- * <p>
- *          The specified import was not found.
- *       </p>
+ * <p> The specified import was not found. </p>
  */
 export declare class ImportNotFoundException extends __BaseException {
     readonly name: "ImportNotFoundException";
@@ -2417,11 +2804,12 @@ export declare class ImportNotFoundException extends __BaseException {
 }
 export interface GetInsightSelectorsRequest {
     /**
-     * <p>Specifies the name of the trail or trail ARN. If you specify a trail name, the
-     *          string must meet the following requirements:</p>
+     * <p>Specifies the name of the trail or trail ARN. If you specify a trail name, the string
+     *          must meet the following requirements:</p>
      *          <ul>
      *             <li>
-     *                <p>Contain only ASCII letters (a-z, A-Z), numbers (0-9), periods (.), underscores (_), or dashes (-)</p>
+     *                <p>Contain only ASCII letters (a-z, A-Z), numbers (0-9), periods (.), underscores
+     *                (_), or dashes (-)</p>
      *             </li>
      *             <li>
      *                <p>Start with a letter or number, and end with a letter or number</p>
@@ -2430,8 +2818,8 @@ export interface GetInsightSelectorsRequest {
      *                <p>Be between 3 and 128 characters</p>
      *             </li>
      *             <li>
-     *                <p>Have no adjacent periods, underscores or dashes. Names like <code>my-_namespace</code>
-     *                and <code>my--namespace</code> are not valid.</p>
+     *                <p>Have no adjacent periods, underscores or dashes. Names like
+     *                   <code>my-_namespace</code> and <code>my--namespace</code> are not valid.</p>
      *             </li>
      *             <li>
      *                <p>Not be in IP address format (for example, 192.168.5.4)</p>
@@ -2453,23 +2841,28 @@ export declare enum InsightType {
  */
 export interface InsightSelector {
     /**
-     * <p>The type of insights to log on a trail. <code>ApiCallRateInsight</code> and <code>ApiErrorRateInsight</code> are valid insight types.</p>
+     * <p>The type of insights to log on a trail. <code>ApiCallRateInsight</code> and
+     *             <code>ApiErrorRateInsight</code> are valid insight types.</p>
      */
     InsightType?: InsightType | string;
 }
 export interface GetInsightSelectorsResponse {
     /**
-     * <p>The Amazon Resource Name (ARN) of a trail for which you want to get Insights selectors.</p>
+     * <p>The Amazon Resource Name (ARN) of a trail for which you want to get Insights
+     *          selectors.</p>
      */
     TrailARN?: string;
     /**
-     * <p>A JSON string that contains the insight types you want to log on a trail. In this release, <code>ApiErrorRateInsight</code> and
-     *          <code>ApiCallRateInsight</code> are supported as insight types.</p>
+     * <p>A JSON string that contains the insight types you want to log on a trail. In this
+     *          release, <code>ApiErrorRateInsight</code> and <code>ApiCallRateInsight</code> are supported
+     *          as insight types.</p>
      */
     InsightSelectors?: InsightSelector[];
 }
 /**
- * <p>If you run <code>GetInsightSelectors</code> on a trail that does not have Insights events enabled, the operation throws the exception <code>InsightNotEnabledException</code>.</p>
+ * <p>If you run <code>GetInsightSelectors</code> on a trail that does not have Insights
+ *          events enabled, the operation throws the exception
+ *          <code>InsightNotEnabledException</code>.</p>
  */
 export declare class InsightNotEnabledException extends __BaseException {
     readonly name: "InsightNotEnabledException";
@@ -2487,7 +2880,8 @@ export interface GetQueryResultsRequest {
     /**
      * @deprecated
      *
-     * <p>The ARN (or ID suffix of the ARN) of the event data store against which the query was run.</p>
+     * <p>The ARN (or ID suffix of the ARN) of the event data store against which the query was
+     *          run.</p>
      */
     EventDataStore?: string;
     /**
@@ -2516,15 +2910,17 @@ export interface QueryStatistics {
      */
     TotalResultsCount?: number;
     /**
-     * <p>The total bytes that the query scanned in the event data store. This value matches the number of
-     *          bytes for which your account is billed for the query, unless the query is still running.</p>
+     * <p>The total bytes that the query scanned in the event data store. This value matches the
+     *          number of bytes for which your account is billed for the query, unless the query is still
+     *          running.</p>
      */
     BytesScanned?: number;
 }
 export interface GetQueryResultsResponse {
     /**
-     * <p>The status of the query. Values include <code>QUEUED</code>, <code>RUNNING</code>, <code>FINISHED</code>, <code>FAILED</code>,
-     *          <code>TIMED_OUT</code>, or <code>CANCELLED</code>.</p>
+     * <p>The status of the query. Values include <code>QUEUED</code>, <code>RUNNING</code>,
+     *             <code>FINISHED</code>, <code>FAILED</code>, <code>TIMED_OUT</code>, or
+     *             <code>CANCELLED</code>.</p>
      */
     QueryStatus?: QueryStatus | string;
     /**
@@ -2560,7 +2956,8 @@ export declare class InvalidMaxResultsException extends __BaseException {
     constructor(opts: __ExceptionOptionType<InvalidMaxResultsException, __BaseException>);
 }
 /**
- * <p>A token that is not valid, or a token that was previously used in a request with different parameters. This exception is thrown if the token is not valid.</p>
+ * <p>A token that is not valid, or a token that was previously used in a request with
+ *          different parameters. This exception is thrown if the token is not valid.</p>
  */
 export declare class InvalidNextTokenException extends __BaseException {
     readonly name: "InvalidNextTokenException";
@@ -2574,9 +2971,34 @@ export declare class InvalidNextTokenException extends __BaseException {
      */
     constructor(opts: __ExceptionOptionType<InvalidNextTokenException, __BaseException>);
 }
+export interface GetResourcePolicyRequest {
+    /**
+     * <p>
+     *          The Amazon Resource Name (ARN) of the CloudTrail channel attached to the resource-based policy.
+     *          The following is the format of a resource ARN:
+     *          <code>arn:aws:cloudtrail:us-east-2:123456789012:channel/MyChannel</code>.
+     *       </p>
+     */
+    ResourceArn: string | undefined;
+}
+export interface GetResourcePolicyResponse {
+    /**
+     * <p>
+     *          The Amazon Resource Name (ARN) of the CloudTrail channel attached to resource-based policy.
+     *       </p>
+     */
+    ResourceArn?: string;
+    /**
+     * <p>
+     *          A JSON-formatted string that contains the resource-based policy attached to the CloudTrail channel.
+     *       </p>
+     */
+    ResourcePolicy?: string;
+}
 export interface GetTrailRequest {
     /**
-     * <p>The name or the Amazon Resource Name (ARN) of the trail for which you want to retrieve settings information.</p>
+     * <p>The name or the Amazon Resource Name (ARN) of the trail for which you want to retrieve
+     *          settings information.</p>
      */
     Name: string | undefined;
 }
@@ -2591,8 +3013,10 @@ export interface GetTrailResponse {
  */
 export interface GetTrailStatusRequest {
     /**
-     * <p>Specifies the name or the CloudTrail ARN of the trail for which you are requesting status. To get the status of a
-     *          shadow trail (a replication of the trail in another region), you must specify its ARN. The following is the format of a trail ARN.</p>
+     * <p>Specifies the name or the CloudTrail ARN of the trail for which you are
+     *          requesting status. To get the status of a shadow trail (a replication of the trail in
+     *          another region), you must specify its ARN. The following is the format of a trail
+     *          ARN.</p>
      *          <p>
      *             <code>arn:aws:cloudtrail:us-east-2:123456789012:trail/MyTrail</code>
      *          </p>
@@ -2600,49 +3024,58 @@ export interface GetTrailStatusRequest {
     Name: string | undefined;
 }
 /**
- * <p>Returns the objects or data listed below if successful. Otherwise, returns an error.</p>
+ * <p>Returns the objects or data listed below if successful. Otherwise, returns an
+ *          error.</p>
  */
 export interface GetTrailStatusResponse {
     /**
-     * <p>Whether the CloudTrail trail is currently logging Amazon Web Services API calls.</p>
+     * <p>Whether the CloudTrail trail is currently logging Amazon Web Services API
+     *          calls.</p>
      */
     IsLogging?: boolean;
     /**
-     * <p>Displays any Amazon S3 error that CloudTrail encountered when attempting to deliver log files
-     *          to the designated bucket. For more information, see <a href="https://docs.aws.amazon.com/AmazonS3/latest/API/ErrorResponses.html">Error
+     * <p>Displays any Amazon S3 error that CloudTrail encountered when attempting
+     *          to deliver log files to the designated bucket. For more information, see <a href="https://docs.aws.amazon.com/AmazonS3/latest/API/ErrorResponses.html">Error
      *             Responses</a> in the Amazon S3 API Reference. </p>
      *          <note>
-     *             <p>This error occurs only when there is a problem with the destination S3 bucket, and does
-     *          not occur for requests that time out. To resolve the issue, create a new bucket, and then call
-     *             <code>UpdateTrail</code> to specify the new bucket; or fix the existing objects so that
-     *          CloudTrail can again write to the bucket.</p>
+     *             <p>This error occurs only when there is a problem with the destination S3 bucket, and
+     *             does not occur for requests that time out. To resolve the issue, create a new bucket,
+     *             and then call <code>UpdateTrail</code> to specify the new bucket; or fix the existing
+     *             objects so that CloudTrail can again write to the bucket.</p>
      *          </note>
      */
     LatestDeliveryError?: string;
     /**
-     * <p>Displays any Amazon SNS error that CloudTrail encountered when attempting to send a
-     *          notification. For more information about Amazon SNS errors, see the <a href="https://docs.aws.amazon.com/sns/latest/dg/welcome.html">Amazon SNS Developer Guide</a>.
-     *       </p>
+     * <p>Displays any Amazon SNS error that CloudTrail encountered when attempting
+     *          to send a notification. For more information about Amazon SNS errors, see the
+     *             <a href="https://docs.aws.amazon.com/sns/latest/dg/welcome.html">Amazon SNS
+     *             Developer Guide</a>. </p>
      */
     LatestNotificationError?: string;
     /**
-     * <p>Specifies the date and time that CloudTrail last delivered log files to an account's Amazon S3 bucket.</p>
+     * <p>Specifies the date and time that CloudTrail last delivered log files to an
+     *          account's Amazon S3 bucket.</p>
      */
     LatestDeliveryTime?: Date;
     /**
-     * <p>Specifies the date and time of the most recent Amazon SNS notification that CloudTrail has written a new log file to an account's Amazon S3 bucket.</p>
+     * <p>Specifies the date and time of the most recent Amazon SNS notification that
+     *             CloudTrail has written a new log file to an account's Amazon S3
+     *          bucket.</p>
      */
     LatestNotificationTime?: Date;
     /**
-     * <p>Specifies the most recent date and time when CloudTrail started recording API calls for an Amazon Web Services account.</p>
+     * <p>Specifies the most recent date and time when CloudTrail started recording API
+     *          calls for an Amazon Web Services account.</p>
      */
     StartLoggingTime?: Date;
     /**
-     * <p>Specifies the most recent date and time when CloudTrail stopped recording API calls for an Amazon Web Services account.</p>
+     * <p>Specifies the most recent date and time when CloudTrail stopped recording API
+     *          calls for an Amazon Web Services account.</p>
      */
     StopLoggingTime?: Date;
     /**
-     * <p>Displays any CloudWatch Logs error that CloudTrail encountered when attempting to deliver logs to CloudWatch Logs.</p>
+     * <p>Displays any CloudWatch Logs error that CloudTrail encountered when attempting
+     *          to deliver logs to CloudWatch Logs.</p>
      */
     LatestCloudWatchLogsDeliveryError?: string;
     /**
@@ -2650,18 +3083,19 @@ export interface GetTrailStatusResponse {
      */
     LatestCloudWatchLogsDeliveryTime?: Date;
     /**
-     * <p>Specifies the date and time that CloudTrail last delivered a digest file to an account's Amazon S3 bucket.</p>
+     * <p>Specifies the date and time that CloudTrail last delivered a digest file to an
+     *          account's Amazon S3 bucket.</p>
      */
     LatestDigestDeliveryTime?: Date;
     /**
-     * <p>Displays any Amazon S3 error that CloudTrail encountered when attempting to deliver a digest
-     *          file to the designated bucket. For more information, see <a href="https://docs.aws.amazon.com/AmazonS3/latest/API/ErrorResponses.html">Error
+     * <p>Displays any Amazon S3 error that CloudTrail encountered when attempting
+     *          to deliver a digest file to the designated bucket. For more information, see <a href="https://docs.aws.amazon.com/AmazonS3/latest/API/ErrorResponses.html">Error
      *             Responses</a> in the Amazon S3 API Reference. </p>
      *          <note>
-     *             <p>This error occurs only when there is a problem with the destination S3 bucket, and does
-     *          not occur for requests that time out. To resolve the issue, create a new bucket, and then call
-     *             <code>UpdateTrail</code> to specify the new bucket; or fix the existing objects so that
-     *             CloudTrail can again write to the bucket.</p>
+     *             <p>This error occurs only when there is a problem with the destination S3 bucket, and
+     *             does not occur for requests that time out. To resolve the issue, create a new bucket,
+     *             and then call <code>UpdateTrail</code> to specify the new bucket; or fix the existing
+     *             objects so that CloudTrail can again write to the bucket.</p>
      *          </note>
      */
     LatestDigestDeliveryError?: string;
@@ -2692,24 +3126,20 @@ export interface GetTrailStatusResponse {
 }
 export interface ListChannelsRequest {
     /**
-     * <p>
-     *          The maximum number of CloudTrail channels to display on a single page.
-     *       </p>
+     * <p> The maximum number of CloudTrail channels to display on a single page. </p>
      */
     MaxResults?: number;
     /**
-     * <p>The token to use to get the next page of results after a previous API call. This token must be
-     *          passed in with the same parameters that were specified in the original call.
-     *          For example, if the original call specified an AttributeKey of 'Username' with a value of 'root',
-     *          the call with NextToken should include those same parameters.</p>
+     * <p>The token to use to get the next page of results after a previous API call. This token
+     *          must be passed in with the same parameters that were specified in the original call. For
+     *          example, if the original call specified an AttributeKey of 'Username' with a value of
+     *          'root', the call with NextToken should include those same parameters.</p>
      */
     NextToken?: string;
 }
 export interface ListChannelsResponse {
     /**
-     * <p>
-     *          The list of channels in the account.
-     *       </p>
+     * <p> The list of channels in the account. </p>
      */
     Channels?: Channel[];
     /**
@@ -2728,10 +3158,10 @@ export interface ListEventDataStoresRequest {
     MaxResults?: number;
 }
 /**
- * <p>A storage lake of event data against which you can run complex SQL-based queries. An event data store can include events
- *          that you have logged on your account from the last 90 to 2557 days
- *          (about three months to up to seven years). To select events for an event data store,
- *          use <a href="https://docs.aws.amazon.com/awscloudtrail/latest/userguide/logging-data-events-with-cloudtrail.html#creating-data-event-selectors-advanced">advanced event selectors</a>.</p>
+ * <p>A storage lake of event data against which you can run complex SQL-based queries. An
+ *          event data store can include events that you have logged on your account from the last 90
+ *          to 2557 days (about three months to up to seven years). To select events for an event data
+ *          store, use <a href="https://docs.aws.amazon.com/awscloudtrail/latest/userguide/logging-data-events-with-cloudtrail.html#creating-data-event-selectors-advanced">advanced event selectors</a>.</p>
  */
 export interface EventDataStore {
     /**
@@ -2745,55 +3175,63 @@ export interface EventDataStore {
     /**
      * @deprecated
      *
-     * <p>This field is being deprecated. Indicates whether the event data store is protected from termination.</p>
+     * <p>Indicates whether the event data store is protected from
+     *          termination.</p>
      */
     TerminationProtectionEnabled?: boolean;
     /**
      * @deprecated
      *
-     * <p>This field is being deprecated. The status of an event data store. Values are <code>ENABLED</code> and <code>PENDING_DELETION</code>.</p>
+     * <p>The status of an event data store. Values are
+     *             <code>ENABLED</code> and <code>PENDING_DELETION</code>.</p>
      */
     Status?: EventDataStoreStatus | string;
     /**
      * @deprecated
      *
-     * <p>This field is being deprecated. The advanced event selectors that were used to select events for the data store.</p>
+     * <p>The advanced event selectors that were used to select
+     *          events for the data store.</p>
      */
     AdvancedEventSelectors?: AdvancedEventSelector[];
     /**
      * @deprecated
      *
-     * <p>This field is being deprecated. Indicates whether the event data store includes events from all regions, or only from the region in which it was created.</p>
+     * <p>Indicates whether the event data store includes events
+     *          from all regions, or only from the region in which it was created.</p>
      */
     MultiRegionEnabled?: boolean;
     /**
      * @deprecated
      *
-     * <p>This field is being deprecated. Indicates that an event data store is collecting logged events for an organization.</p>
+     * <p>Indicates that an event data store is collecting logged
+     *          events for an organization.</p>
      */
     OrganizationEnabled?: boolean;
     /**
      * @deprecated
      *
-     * <p>This field is being deprecated. The retention period, in days.</p>
+     * <p>The retention period, in days.</p>
      */
     RetentionPeriod?: number;
     /**
      * @deprecated
      *
-     * <p>This field is being deprecated. The timestamp of the event data store's creation.</p>
+     * <p>The timestamp of the event data store's creation.</p>
      */
     CreatedTimestamp?: Date;
     /**
      * @deprecated
      *
-     * <p>This field is being deprecated. The timestamp showing when an event data store was updated, if applicable. <code>UpdatedTimestamp</code> is always either the same or newer than the time shown in <code>CreatedTimestamp</code>.</p>
+     * <p>The timestamp showing when an event data store was
+     *          updated, if applicable. <code>UpdatedTimestamp</code> is always either the same or newer
+     *          than the time shown in <code>CreatedTimestamp</code>.</p>
      */
     UpdatedTimestamp?: Date;
 }
 export interface ListEventDataStoresResponse {
     /**
-     * <p>Contains information about event data stores in the account, in the current region.</p>
+     * <p>Contains information about event data stores in the account, in the current
+     *          region.</p>
      */
     EventDataStores?: EventDataStore[];
     /**
@@ -2803,21 +3241,15 @@ export interface ListEventDataStoresResponse {
 }
 export interface ListImportFailuresRequest {
     /**
-     * <p>
-     *          The ID of the import.
-     *       </p>
+     * <p> The ID of the import. </p>
      */
     ImportId: string | undefined;
     /**
-     * <p>
-     *          The maximum number of failures to display on a single page.
-     *       </p>
+     * <p> The maximum number of failures to display on a single page. </p>
      */
     MaxResults?: number;
     /**
-     * <p>
-     *          A token you can use to get the next page of import failures.
-     *       </p>
+     * <p> A token you can use to get the next page of import failures. </p>
      */
     NextToken?: string;
 }
@@ -2827,135 +3259,96 @@ export declare enum ImportFailureStatus {
     SUCCEEDED = "SUCCEEDED"
 }
 /**
- * <p>
- *          Provides information about an import failure.
- *       </p>
+ * <p> Provides information about an import failure. </p>
  */
 export interface ImportFailureListItem {
     /**
-     * <p>
-     *          The location of the failure in the S3 bucket.
-     *       </p>
+     * <p> The location of the failure in the S3 bucket. </p>
      */
     Location?: string;
     /**
-     * <p>
-     *          The status of the import.
-     *       </p>
+     * <p> The status of the import. </p>
      */
     Status?: ImportFailureStatus | string;
     /**
-     * <p>
-     *          The type of import error.
-     *       </p>
+     * <p> The type of import error. </p>
      */
     ErrorType?: string;
     /**
-     * <p>
-     *          Provides the reason the import failed.
-     *       </p>
+     * <p> Provides the reason the import failed. </p>
      */
     ErrorMessage?: string;
     /**
-     * <p>
-     *          When the import was last updated.
-     *       </p>
+     * <p> When the import was last updated. </p>
      */
     LastUpdatedTime?: Date;
 }
 export interface ListImportFailuresResponse {
     /**
-     * <p>
-     *         Contains information about the import failures.
-     *       </p>
+     * <p> Contains information about the import failures. </p>
      */
     Failures?: ImportFailureListItem[];
     /**
-     * <p>
-     *          A token you can use to get the next page of results.
-     *       </p>
+     * <p> A token you can use to get the next page of results. </p>
      */
     NextToken?: string;
 }
 export interface ListImportsRequest {
     /**
-     * <p>
-     *          The maximum number of imports to display on a single page.
-     *       </p>
+     * <p> The maximum number of imports to display on a single page. </p>
      */
     MaxResults?: number;
     /**
-     * <p>
-     *          The ARN of the destination event data store.
-     *       </p>
+     * <p> The ARN of the destination event data store. </p>
      */
     Destination?: string;
     /**
-     * <p>
-     *          The status of the import.
-     *       </p>
+     * <p> The status of the import. </p>
      */
     ImportStatus?: ImportStatus | string;
     /**
-     * <p>
-     *          A token you can use to get the next page of import results.
-     *       </p>
+     * <p> A token you can use to get the next page of import results. </p>
      */
     NextToken?: string;
 }
 /**
- * <p>
- *          Contains information about an import that was returned by a lookup request.
- *       </p>
+ * <p> Contains information about an import that was returned by a lookup request. </p>
  */
 export interface ImportsListItem {
     /**
-     * <p>
-     *          The ID of the import.
-     *       </p>
+     * <p> The ID of the import. </p>
      */
     ImportId?: string;
     /**
-     * <p>
-     *          The status of the import.
-     *       </p>
+     * <p> The status of the import. </p>
      */
     ImportStatus?: ImportStatus | string;
     /**
-     * <p>
-     *          The ARN of the destination event data store.
-     *       </p>
+     * <p> The ARN of the destination event data store. </p>
      */
     Destinations?: string[];
     /**
-     * <p>
-     *          The timestamp of the import's creation.
-     *       </p>
+     * <p> The timestamp of the import's creation. </p>
      */
     CreatedTimestamp?: Date;
     /**
-     * <p>
-     *          The timestamp of the import's last update.
-     *       </p>
+     * <p> The timestamp of the import's last update. </p>
      */
     UpdatedTimestamp?: Date;
 }
 export interface ListImportsResponse {
     /**
-     * <p>
-     *          The list of returned imports.
-     *       </p>
+     * <p> The list of returned imports. </p>
      */
     Imports?: ImportsListItem[];
     /**
-     * <p>
-     *          A token you can use to get the next page of import results.
-     *       </p>
+     * <p> A token you can use to get the next page of import results. </p>
      */
     NextToken?: string;
 }
 /**
- * <p>Occurs if the timestamp values are not valid. Either the start time occurs after the end time, or the time range is outside the range of possible values.</p>
+ * <p>Occurs if the timestamp values are not valid. Either the start time occurs after the end
+ *          time, or the time range is outside the range of possible values.</p>
  */
 export declare class InvalidTimeRangeException extends __BaseException {
     readonly name: "InvalidTimeRangeException";
@@ -2989,13 +3382,14 @@ export declare class InvalidTokenException extends __BaseException {
  */
 export interface ListPublicKeysRequest {
     /**
-     * <p>Optionally specifies, in UTC, the start of the time range to look up public keys for CloudTrail digest files.
-     *          If not specified, the current time is used, and the current public key is returned.</p>
+     * <p>Optionally specifies, in UTC, the start of the time range to look up public keys for
+     *             CloudTrail digest files. If not specified, the current time is used, and the
+     *          current public key is returned.</p>
      */
     StartTime?: Date;
     /**
-     * <p>Optionally specifies, in UTC, the end of the time range to look up public keys for CloudTrail digest files. If not
-     *          specified, the current time is used.</p>
+     * <p>Optionally specifies, in UTC, the end of the time range to look up public keys for
+     *             CloudTrail digest files. If not specified, the current time is used.</p>
      */
     EndTime?: Date;
     /**
@@ -3025,7 +3419,8 @@ export interface PublicKey {
     Fingerprint?: string;
 }
 /**
- * <p>Returns the objects or data listed below if successful. Otherwise, returns an error.</p>
+ * <p>Returns the objects or data listed below if successful. Otherwise, returns an
+ *          error.</p>
  */
 export interface ListPublicKeysResponse {
     /**
@@ -3041,10 +3436,9 @@ export interface ListPublicKeysResponse {
     NextToken?: string;
 }
 /**
- * <p>A date range for the query was specified that is not valid. Be sure that the start time is chronologically
- *          before the end time. For more information
- *          about writing a query, see <a href="https://docs.aws.amazon.com/awscloudtrail/latest/userguide/query-create-edit-query.html">Create
- *             or edit a query</a> in the <i>CloudTrail User Guide</i>.</p>
+ * <p>A date range for the query was specified that is not valid. Be sure that the start time
+ *          is chronologically before the end time. For more information about writing a query, see
+ *             <a href="https://docs.aws.amazon.com/awscloudtrail/latest/userguide/query-create-edit-query.html">Create or edit a query</a> in the <i>CloudTrail User Guide</i>.</p>
  */
 export declare class InvalidDateRangeException extends __BaseException {
     readonly name: "InvalidDateRangeException";
@@ -3075,7 +3469,8 @@ export declare class InvalidQueryStatusException extends __BaseException {
 }
 export interface ListQueriesRequest {
     /**
-     * <p>The ARN (or the ID suffix of the ARN) of an event data store on which queries were run.</p>
+     * <p>The ARN (or the ID suffix of the ARN) of an event data store on which queries were
+     *          run.</p>
      */
     EventDataStore: string | undefined;
     /**
@@ -3087,23 +3482,26 @@ export interface ListQueriesRequest {
      */
     MaxResults?: number;
     /**
-     * <p>Use with <code>EndTime</code> to bound a <code>ListQueries</code> request, and limit its results to only those queries run
-     *          within a specified time period.</p>
+     * <p>Use with <code>EndTime</code> to bound a <code>ListQueries</code> request, and limit its
+     *          results to only those queries run within a specified time period.</p>
      */
     StartTime?: Date;
     /**
-     * <p>Use with <code>StartTime</code> to bound a <code>ListQueries</code> request, and limit its results to only those queries run
-     *       within a specified time period.</p>
+     * <p>Use with <code>StartTime</code> to bound a <code>ListQueries</code> request, and limit
+     *          its results to only those queries run within a specified time period.</p>
      */
     EndTime?: Date;
     /**
-     * <p>The status of queries that you want to return in results. Valid values for <code>QueryStatus</code> include <code>QUEUED</code>, <code>RUNNING</code>,
-     *          <code>FINISHED</code>, <code>FAILED</code>, <code>TIMED_OUT</code>, or <code>CANCELLED</code>.</p>
+     * <p>The status of queries that you want to return in results. Valid values for
+     *             <code>QueryStatus</code> include <code>QUEUED</code>, <code>RUNNING</code>,
+     *             <code>FINISHED</code>, <code>FAILED</code>, <code>TIMED_OUT</code>, or
+     *             <code>CANCELLED</code>.</p>
      */
     QueryStatus?: QueryStatus | string;
 }
 /**
- * <p>A SQL string of criteria about events that you want to collect in an event data store.</p>
+ * <p>A SQL string of criteria about events that you want to collect in an event data
+ *          store.</p>
  */
 export interface Query {
     /**
@@ -3111,8 +3509,9 @@ export interface Query {
      */
     QueryId?: string;
     /**
-     * <p>The status of the query. This can be <code>QUEUED</code>, <code>RUNNING</code>, <code>FINISHED</code>, <code>FAILED</code>,
-     *          <code>TIMED_OUT</code>, or <code>CANCELLED</code>.</p>
+     * <p>The status of the query. This can be <code>QUEUED</code>, <code>RUNNING</code>,
+     *             <code>FINISHED</code>, <code>FAILED</code>, <code>TIMED_OUT</code>, or
+     *             <code>CANCELLED</code>.</p>
      */
     QueryStatus?: QueryStatus | string;
     /**
@@ -3122,7 +3521,8 @@ export interface Query {
 }
 export interface ListQueriesResponse {
     /**
-     * <p>Lists matching query results, and shows query ID, status, and creation time of each query.</p>
+     * <p>Lists matching query results, and shows query ID, status, and creation time of each
+     *          query.</p>
      */
     Queries?: Query[];
     /**
@@ -3135,7 +3535,7 @@ export interface ListQueriesResponse {
  */
 export interface ListTagsRequest {
     /**
-     * <p>Specifies a list of trail and event data store ARNs whose tags will be listed. The list
+     * <p>Specifies a list of trail, event data store, or channel ARNs whose tags will be listed. The list
      *          has a limit of 20 ARNs.</p>
      */
     ResourceIdList: string[] | undefined;
@@ -3158,7 +3558,8 @@ export interface ResourceTag {
     TagsList?: Tag[];
 }
 /**
- * <p>Returns the objects or data listed below if successful. Otherwise, returns an error.</p>
+ * <p>Returns the objects or data listed below if successful. Otherwise, returns an
+ *          error.</p>
  */
 export interface ListTagsResponse {
     /**
@@ -3172,15 +3573,16 @@ export interface ListTagsResponse {
 }
 export interface ListTrailsRequest {
     /**
-     * <p>The token to use to get the next page of results after a previous API call. This token must be passed
-     *          in with the same parameters that were specified in the original call. For example, if the original
-     *          call specified an AttributeKey of 'Username' with a value of 'root', the call with NextToken should
-     *          include those same parameters.</p>
+     * <p>The token to use to get the next page of results after a previous API call. This token
+     *          must be passed in with the same parameters that were specified in the original call. For
+     *          example, if the original call specified an AttributeKey of 'Username' with a value of
+     *          'root', the call with NextToken should include those same parameters.</p>
      */
     NextToken?: string;
 }
 /**
- * <p>Information about a CloudTrail trail, including the trail's name, home region, and Amazon Resource Name (ARN).</p>
+ * <p>Information about a CloudTrail trail, including the trail's name, home region,
+ *          and Amazon Resource Name (ARN).</p>
  */
 export interface TrailInfo {
     /**
@@ -3202,15 +3604,17 @@ export interface ListTrailsResponse {
      */
     Trails?: TrailInfo[];
     /**
-     * <p>The token to use to get the next page of results after a previous API call. If the token does not appear,
-     *          there are no more results to return. The token must be passed in with the same parameters as the previous call.
-     *          For example, if the original call specified an AttributeKey of 'Username' with a value of 'root', the call with
-     *          NextToken should include those same parameters.</p>
+     * <p>The token to use to get the next page of results after a previous API call. If the token
+     *          does not appear, there are no more results to return. The token must be passed in with the
+     *          same parameters as the previous call. For example, if the original call specified an
+     *          AttributeKey of 'Username' with a value of 'root', the call with NextToken should include
+     *          those same parameters.</p>
      */
     NextToken?: string;
 }
 /**
- * <p>Occurs if an event category that is not valid is specified as a value of <code>EventCategory</code>.</p>
+ * <p>Occurs if an event category that is not valid is specified as a value of
+ *             <code>EventCategory</code>.</p>
  */
 export declare class InvalidEventCategoryException extends __BaseException {
     readonly name: "InvalidEventCategoryException";
@@ -3270,29 +3674,37 @@ export interface LookupAttribute {
  */
 export interface LookupEventsRequest {
     /**
-     * <p>Contains a list of lookup attributes. Currently the list can contain only one item.</p>
+     * <p>Contains a list of lookup attributes. Currently the list can contain only one
+     *          item.</p>
      */
     LookupAttributes?: LookupAttribute[];
     /**
-     * <p>Specifies that only events that occur after or at the specified time are returned. If the specified start time is after the specified end time, an error is returned.</p>
+     * <p>Specifies that only events that occur after or at the specified time are returned. If
+     *          the specified start time is after the specified end time, an error is returned.</p>
      */
     StartTime?: Date;
     /**
-     * <p>Specifies that only events that occur before or at the specified time are returned. If the specified end time is before the specified start time, an error is returned.</p>
+     * <p>Specifies that only events that occur before or at the specified time are returned. If
+     *          the specified end time is before the specified start time, an error is returned.</p>
      */
     EndTime?: Date;
     /**
-     * <p>Specifies the event category. If you do not specify an event category, events of the category are not returned in the response. For example,
-     *          if you do not specify <code>insight</code> as the value of <code>EventCategory</code>, no Insights events are returned.</p>
+     * <p>Specifies the event category. If you do not specify an event category, events of the
+     *          category are not returned in the response. For example, if you do not specify
+     *             <code>insight</code> as the value of <code>EventCategory</code>, no Insights events are
+     *          returned.</p>
      */
     EventCategory?: EventCategory | string;
     /**
-     * <p>The number of events to return. Possible values are 1 through 50. The default is 50.</p>
+     * <p>The number of events to return. Possible values are 1 through 50. The default is
+     *          50.</p>
      */
     MaxResults?: number;
     /**
-     * <p>The token to use to get the next page of results after a previous API call. This token must be passed in with the same parameters that were specified in the original call.
-     *          For example, if the original call specified an AttributeKey of 'Username' with a value of 'root', the call with NextToken should include those same parameters.</p>
+     * <p>The token to use to get the next page of results after a previous API call. This token
+     *          must be passed in with the same parameters that were specified in the original call. For
+     *          example, if the original call specified an AttributeKey of 'Username' with a value of
+     *          'root', the call with NextToken should include those same parameters.</p>
      */
     NextToken?: string;
 }
@@ -3301,19 +3713,22 @@ export interface LookupEventsRequest {
  */
 export interface Resource {
     /**
-     * <p>The type of a resource referenced by the event returned. When the resource type cannot be
-     *          determined, null is returned. Some examples of resource types are: <b>Instance</b> for EC2,
-     *          <b>Trail</b> for CloudTrail, <b>DBInstance</b> for Amazon RDS, and <b>AccessKey</b> for IAM.
-     *          To learn more about how to look up and filter events by the resource types supported for a service, see <a href="https://docs.aws.amazon.com/awscloudtrail/latest/userguide/view-cloudtrail-events-console.html#filtering-cloudtrail-events">Filtering CloudTrail Events</a>.</p>
+     * <p>The type of a resource referenced by the event returned. When the resource type cannot
+     *          be determined, null is returned. Some examples of resource types are: <b>Instance</b> for EC2, <b>Trail</b> for CloudTrail, <b>DBInstance</b> for Amazon RDS, and <b>AccessKey</b> for IAM. To learn more about how to look up and filter
+     *          events by the resource types supported for a service, see <a href="https://docs.aws.amazon.com/awscloudtrail/latest/userguide/view-cloudtrail-events-console.html#filtering-cloudtrail-events">Filtering CloudTrail Events</a>.</p>
      */
     ResourceType?: string;
     /**
-     * <p>The name of the resource referenced by the event returned. These are user-created names whose values will depend on the environment. For example, the resource name might be "auto-scaling-test-group" for an Auto Scaling Group or "i-1234567" for an EC2 Instance.</p>
+     * <p>The name of the resource referenced by the event returned. These are user-created names
+     *          whose values will depend on the environment. For example, the resource name might be
+     *          "auto-scaling-test-group" for an Auto Scaling Group or "i-1234567" for an EC2
+     *          Instance.</p>
      */
     ResourceName?: string;
 }
 /**
- * <p>Contains information about an event that was returned by a lookup request. The result includes a representation of a CloudTrail event.</p>
+ * <p>Contains information about an event that was returned by a lookup request. The result
+ *          includes a representation of a CloudTrail event.</p>
  */
 export interface Event {
     /**
@@ -3329,8 +3744,9 @@ export interface Event {
      */
     ReadOnly?: string;
     /**
-     * <p>The Amazon Web Services access key ID that was used to sign the request. If the request was made
-     *          with temporary security credentials, this is the access key ID of the temporary credentials.</p>
+     * <p>The Amazon Web Services access key ID that was used to sign the request. If the request
+     *          was made with temporary security credentials, this is the access key ID of the temporary
+     *          credentials.</p>
      */
     AccessKeyId?: string;
     /**
@@ -3342,7 +3758,8 @@ export interface Event {
      */
     EventSource?: string;
     /**
-     * <p>A user name or role name of the requester that called the API in the event returned.</p>
+     * <p>A user name or role name of the requester that called the API in the event
+     *          returned.</p>
      */
     Username?: string;
     /**
@@ -3359,24 +3776,27 @@ export interface Event {
  */
 export interface LookupEventsResponse {
     /**
-     * <p>A list of events returned based on the lookup attributes specified and the CloudTrail event. The events list is sorted by time. The most recent event is listed first.</p>
+     * <p>A list of events returned based on the lookup attributes specified and the CloudTrail event. The events list is sorted by time. The most recent event is listed
+     *          first.</p>
      */
     Events?: Event[];
     /**
-     * <p>The token to use to get the next page of results after a previous API call. If the token does not appear,
-     *          there are no more results to return. The token must be passed in with the same parameters as the previous call.
-     *          For example, if the original call specified an AttributeKey of 'Username' with a value of 'root', the call with
-     *          NextToken should include those same parameters.</p>
+     * <p>The token to use to get the next page of results after a previous API call. If the token
+     *          does not appear, there are no more results to return. The token must be passed in with the
+     *          same parameters as the previous call. For example, if the original call specified an
+     *          AttributeKey of 'Username' with a value of 'root', the call with NextToken should include
+     *          those same parameters.</p>
      */
     NextToken?: string;
 }
 export interface PutEventSelectorsRequest {
     /**
-     * <p>Specifies the name of the trail or trail ARN. If you specify a trail name, the
-     *          string must meet the following requirements:</p>
+     * <p>Specifies the name of the trail or trail ARN. If you specify a trail name, the string
+     *          must meet the following requirements:</p>
      *          <ul>
      *             <li>
-     *                <p>Contain only ASCII letters (a-z, A-Z), numbers (0-9), periods (.), underscores (_), or dashes (-)</p>
+     *                <p>Contain only ASCII letters (a-z, A-Z), numbers (0-9), periods (.), underscores
+     *                (_), or dashes (-)</p>
      *             </li>
      *             <li>
      *                <p>Start with a letter or number, and end with a letter or number</p>
@@ -3385,8 +3805,8 @@ export interface PutEventSelectorsRequest {
      *                <p>Be between 3 and 128 characters</p>
      *             </li>
      *             <li>
-     *                <p>Have no adjacent periods, underscores or dashes. Names like <code>my-_namespace</code>
-     *                and <code>my--namespace</code> are not valid.</p>
+     *                <p>Have no adjacent periods, underscores or dashes. Names like
+     *                   <code>my-_namespace</code> and <code>my--namespace</code> are not valid.</p>
      *             </li>
      *             <li>
      *                <p>Not be in IP address format (for example, 192.168.5.4)</p>
@@ -3399,27 +3819,28 @@ export interface PutEventSelectorsRequest {
      */
     TrailName: string | undefined;
     /**
-     * <p>Specifies the settings for your event selectors. You can configure up to five event selectors for a trail.
-     *          You can use either <code>EventSelectors</code> or <code>AdvancedEventSelectors</code> in a <code>PutEventSelectors</code> request, but not both.
-     *          If you apply <code>EventSelectors</code> to a trail, any existing <code>AdvancedEventSelectors</code> are overwritten.</p>
+     * <p>Specifies the settings for your event selectors. You can configure up to five event
+     *          selectors for a trail. You can use either <code>EventSelectors</code> or
+     *             <code>AdvancedEventSelectors</code> in a <code>PutEventSelectors</code> request, but not
+     *          both. If you apply <code>EventSelectors</code> to a trail, any existing
+     *             <code>AdvancedEventSelectors</code> are overwritten.</p>
      */
     EventSelectors?: EventSelector[];
     /**
-     * <p>
-     *          Specifies the settings for advanced event selectors. You can add advanced event selectors, and conditions for your advanced
-     *          event selectors, up to a maximum of 500 values for all conditions and selectors on a trail.
-     *          You can use either <code>AdvancedEventSelectors</code> or <code>EventSelectors</code>, but not both. If you apply <code>AdvancedEventSelectors</code>
-     *          to a trail, any existing <code>EventSelectors</code> are overwritten. For more information about
-     *          advanced event selectors, see
-     *          <a href="https://docs.aws.amazon.com/awscloudtrail/latest/userguide/logging-data-events-with-cloudtrail.html">Logging
-     *             data events for trails</a> in the <i>CloudTrail User Guide</i>.
-     *       </p>
+     * <p> Specifies the settings for advanced event selectors. You can add advanced event
+     *          selectors, and conditions for your advanced event selectors, up to a maximum of 500 values
+     *          for all conditions and selectors on a trail. You can use either
+     *             <code>AdvancedEventSelectors</code> or <code>EventSelectors</code>, but not both. If you
+     *          apply <code>AdvancedEventSelectors</code> to a trail, any existing
+     *             <code>EventSelectors</code> are overwritten. For more information about advanced event
+     *          selectors, see <a href="https://docs.aws.amazon.com/awscloudtrail/latest/userguide/logging-data-events-with-cloudtrail.html">Logging data events for trails</a> in the <i>CloudTrail User Guide</i>. </p>
      */
     AdvancedEventSelectors?: AdvancedEventSelector[];
 }
 export interface PutEventSelectorsResponse {
     /**
-     * <p>Specifies the ARN of the trail that was updated with event selectors. The following is the format of a trail ARN.</p>
+     * <p>Specifies the ARN of the trail that was updated with event selectors. The following is
+     *          the format of a trail ARN.</p>
      *          <p>
      *             <code>arn:aws:cloudtrail:us-east-2:123456789012:trail/MyTrail</code>
      *          </p>
@@ -3435,8 +3856,10 @@ export interface PutEventSelectorsResponse {
     AdvancedEventSelectors?: AdvancedEventSelector[];
 }
 /**
- * <p>The formatting or syntax of the <code>InsightSelectors</code> JSON statement in your <code>PutInsightSelectors</code> or <code>GetInsightSelectors</code> request
- *          is not valid, or the specified insight type in the <code>InsightSelectors</code> statement is not a valid insight type.</p>
+ * <p>The formatting or syntax of the <code>InsightSelectors</code> JSON statement in your
+ *             <code>PutInsightSelectors</code> or <code>GetInsightSelectors</code> request is not
+ *          valid, or the specified insight type in the <code>InsightSelectors</code> statement is not
+ *          a valid insight type.</p>
  */
 export declare class InvalidInsightSelectorsException extends __BaseException {
     readonly name: "InvalidInsightSelectorsException";
@@ -3452,27 +3875,116 @@ export declare class InvalidInsightSelectorsException extends __BaseException {
 }
 export interface PutInsightSelectorsRequest {
     /**
-     * <p>The name of the CloudTrail trail for which you want to change or add Insights selectors.</p>
+     * <p>The name of the CloudTrail trail for which you want to change or add Insights
+     *          selectors.</p>
      */
     TrailName: string | undefined;
     /**
-     * <p>A JSON string that contains the insight types you want to log on a trail. <code>ApiCallRateInsight</code> and <code>ApiErrorRateInsight</code> are valid insight types.</p>
+     * <p>A JSON string that contains the insight types you want to log on a trail.
+     *             <code>ApiCallRateInsight</code> and <code>ApiErrorRateInsight</code> are valid insight
+     *          types.</p>
      */
     InsightSelectors: InsightSelector[] | undefined;
 }
 export interface PutInsightSelectorsResponse {
     /**
-     * <p>The Amazon Resource Name (ARN) of a trail for which you want to change or add Insights selectors.</p>
+     * <p>The Amazon Resource Name (ARN) of a trail for which you want to change or add Insights
+     *          selectors.</p>
      */
     TrailARN?: string;
     /**
-     * <p>A JSON string that contains the Insights event types that you want to log on a trail. The valid Insights types in this release are
-     *          <code>ApiErrorRateInsight</code> and <code>ApiCallRateInsight</code>.</p>
+     * <p>A JSON string that contains the Insights event types that you want to log on a trail.
+     *          The valid Insights types in this release are <code>ApiErrorRateInsight</code> and
+     *             <code>ApiCallRateInsight</code>.</p>
      */
     InsightSelectors?: InsightSelector[];
 }
+export interface PutResourcePolicyRequest {
+    /**
+     * <p>
+     *          The Amazon Resource Name (ARN) of the CloudTrail channel attached to the resource-based policy.
+     *          The following is the format of a resource ARN:
+     *          <code>arn:aws:cloudtrail:us-east-2:123456789012:channel/MyChannel</code>.
+     *       </p>
+     */
+    ResourceArn: string | undefined;
+    /**
+     * <p>
+     *          A JSON-formatted string for an Amazon Web Services resource-based policy.
+     *       </p>
+     *          <p>The following are requirements for the resource policy:</p>
+     *          <ul>
+     *             <li>
+     *                <p>
+     *                Contains only one action: cloudtrail-data:PutAuditEvents
+     *             </p>
+     *             </li>
+     *             <li>
+     *                <p>
+     *                Contains at least one statement. The policy can have a maximum of 20 statements.
+     *             </p>
+     *             </li>
+     *             <li>
+     *                <p>
+     *                Each statement contains at least one principal. A statement can have a maximum of 50 principals.
+     *             </p>
+     *             </li>
+     *          </ul>
+     */
+    ResourcePolicy: string | undefined;
+}
+export interface PutResourcePolicyResponse {
+    /**
+     * <p>
+     *          The Amazon Resource Name (ARN) of the CloudTrail channel attached to the resource-based policy.
+     *       </p>
+     */
+    ResourceArn?: string;
+    /**
+     * <p>
+     *          The JSON-formatted string of the Amazon Web Services resource-based policy attached to the CloudTrail channel.
+     *       </p>
+     */
+    ResourcePolicy?: string;
+}
+/**
+ * <p>
+ *          This exception is thrown when the resouce-based policy has syntax errors, or contains a principal that is not valid.
+ *       </p>
+ *          <p>The following are requirements for the resource policy:</p>
+ *          <ul>
+ *             <li>
+ *                <p>
+ *                Contains only one action: cloudtrail-data:PutAuditEvents
+ *             </p>
+ *             </li>
+ *             <li>
+ *                <p>
+ *                Contains at least one statement. The policy can have a maximum of 20 statements.
+ *             </p>
+ *             </li>
+ *             <li>
+ *                <p>
+ *                Each statement contains at least one principal. A statement can have a maximum of 50 principals.
+ *             </p>
+ *             </li>
+ *          </ul>
+ */
+export declare class ResourcePolicyNotValidException extends __BaseException {
+    readonly name: "ResourcePolicyNotValidException";
+    readonly $fault: "client";
+    /**
+     * <p>Brief description of the exception returned by the request.</p>
+     */
+    Message?: string;
+    /**
+     * @internal
+     */
+    constructor(opts: __ExceptionOptionType<ResourcePolicyNotValidException, __BaseException>);
+}
 /**
- * <p>This exception is thrown when the maximum number of CloudTrail delegated administrators is reached.</p>
+ * <p>This exception is thrown when the maximum number of CloudTrail delegated
+ *          administrators is reached.</p>
  */
 export declare class DelegatedAdminAccountLimitExceededException extends __BaseException {
     readonly name: "DelegatedAdminAccountLimitExceededException";
@@ -3487,11 +3999,13 @@ export declare class DelegatedAdminAccountLimitExceededException extends __BaseE
     constructor(opts: __ExceptionOptionType<DelegatedAdminAccountLimitExceededException, __BaseException>);
 }
 /**
- * <p>Specifies an organization member account ID as a CloudTrail delegated administrator.</p>
+ * <p>Specifies an organization member account ID as a CloudTrail delegated
+ *          administrator.</p>
  */
 export interface RegisterOrganizationDelegatedAdminRequest {
     /**
-     * <p>An organization member account ID that you want to designate as a delegated administrator.</p>
+     * <p>An organization member account ID that you want to designate as a delegated
+     *          administrator.</p>
      */
     MemberAccountId: string | undefined;
 }
@@ -3501,15 +4015,20 @@ export interface RegisterOrganizationDelegatedAdminRequest {
 export interface RegisterOrganizationDelegatedAdminResponse {
 }
 /**
- * <p>Specifies the tags to remove from a trail or event data store.</p>
+ * <p>Specifies the tags to remove from a trail, event data store, or channel.</p>
  */
 export interface RemoveTagsRequest {
     /**
-     * <p>Specifies the ARN of the trail or event data store from which tags should be removed.</p>
-     *          <p>
-     *          Example trail ARN format: <code>arn:aws:cloudtrail:us-east-2:123456789012:trail/MyTrail</code>
+     * <p>Specifies the ARN of the trail, event data store, or channel from which tags should be
+     *          removed.</p>
+     *          <p> Example trail ARN format:
+     *             <code>arn:aws:cloudtrail:us-east-2:123456789012:trail/MyTrail</code>
      *          </p>
-     *          <p>Example event data store ARN format: <code>arn:aws:cloudtrail:us-east-2:12345678910:eventdatastore/EXAMPLE-f852-4e8f-8bd1-bcf6cEXAMPLE</code>
+     *          <p>Example event data store ARN format:
+     *             <code>arn:aws:cloudtrail:us-east-2:12345678910:eventdatastore/EXAMPLE-f852-4e8f-8bd1-bcf6cEXAMPLE</code>
+     *          </p>
+     *          <p>Example channel ARN format:
+     *          <code>arn:aws:cloudtrail:us-east-2:123456789012:channel/01234567890</code>
      *          </p>
      */
     ResourceId: string | undefined;
@@ -3519,7 +4038,8 @@ export interface RemoveTagsRequest {
     TagsList: Tag[] | undefined;
 }
 /**
- * <p>Returns the objects or data listed below if successful. Otherwise, returns an error.</p>
+ * <p>Returns the objects or data listed below if successful. Otherwise, returns an
+ *          error.</p>
  */
 export interface RemoveTagsResponse {
 }
@@ -3540,7 +4060,8 @@ export declare class InvalidEventDataStoreStatusException extends __BaseExceptio
 }
 export interface RestoreEventDataStoreRequest {
     /**
-     * <p>The ARN (or the ID suffix of the ARN) of the event data store that you want to restore.</p>
+     * <p>The ARN (or the ID suffix of the ARN) of the event data store that you want to
+     *          restore.</p>
      */
     EventDataStore: string | undefined;
 }
@@ -3562,12 +4083,13 @@ export interface RestoreEventDataStoreResponse {
      */
     AdvancedEventSelectors?: AdvancedEventSelector[];
     /**
-     * <p>Indicates whether the event data store is collecting events from all regions, or only from the region in which the event data
-     *       store was created.</p>
+     * <p>Indicates whether the event data store is collecting events from all regions, or only
+     *          from the region in which the event data store was created.</p>
      */
     MultiRegionEnabled?: boolean;
     /**
-     * <p>Indicates whether an event data store is collecting logged events for an organization in Organizations.</p>
+     * <p>Indicates whether an event data store is collecting logged events for an organization in
+     *             Organizations.</p>
      */
     OrganizationEnabled?: boolean;
     /**
@@ -3575,7 +4097,8 @@ export interface RestoreEventDataStoreResponse {
      */
     RetentionPeriod?: number;
     /**
-     * <p>Indicates that termination protection is enabled and the event data store cannot be automatically deleted.</p>
+     * <p>Indicates that termination protection is enabled and the event data store cannot be
+     *          automatically deleted.</p>
      */
     TerminationProtectionEnabled?: boolean;
     /**
@@ -3584,12 +4107,13 @@ export interface RestoreEventDataStoreResponse {
     CreatedTimestamp?: Date;
     /**
      * <p>The timestamp that shows when an event data store was updated, if applicable.
-     *          <code>UpdatedTimestamp</code> is always either the same or newer than the time shown in <code>CreatedTimestamp</code>.</p>
+     *             <code>UpdatedTimestamp</code> is always either the same or newer than the time shown in
+     *             <code>CreatedTimestamp</code>.</p>
      */
     UpdatedTimestamp?: Date;
     /**
-     * <p>Specifies the KMS key ID that encrypts the events delivered by CloudTrail.
-     *          The value is a fully specified ARN to a KMS key in the following format.</p>
+     * <p>Specifies the KMS key ID that encrypts the events delivered by CloudTrail. The value is a fully specified ARN to a KMS key in the
+     *          following format.</p>
      *          <p>
      *             <code>arn:aws:kms:us-east-2:123456789012:key/12345678-1234-1234-1234-123456789012</code>
      *          </p>
@@ -3597,23 +4121,7 @@ export interface RestoreEventDataStoreResponse {
     KmsKeyId?: string;
 }
 /**
- * <p>This exception is thrown when event categories of specified event data stores are not valid.</p>
- */
-export declare class InvalidEventDataStoreCategoryException extends __BaseException {
-    readonly name: "InvalidEventDataStoreCategoryException";
-    readonly $fault: "client";
-    /**
-     * <p>Brief description of the exception returned by the request.</p>
-     */
-    Message?: string;
-    /**
-     * @internal
-     */
-    constructor(opts: __ExceptionOptionType<InvalidEventDataStoreCategoryException, __BaseException>);
-}
-/**
- * <p>
- *          This exception is thrown when the provided source S3 bucket is not valid for import.
+ * <p> This exception is thrown when the provided source S3 bucket is not valid for import.
  *       </p>
  */
 export declare class InvalidImportSourceException extends __BaseException {
@@ -3630,102 +4138,83 @@ export declare class InvalidImportSourceException extends __BaseException {
 }
 export interface StartImportRequest {
     /**
-     * <p>
-     *          The ARN of the destination event data store. Use this parameter for a new import.
+     * <p> The ARN of the destination event data store. Use this parameter for a new import.
      *       </p>
      */
     Destinations?: string[];
     /**
-     * <p>
-     *          The source S3 bucket for the import. Use this parameter for a new import.
-     *       </p>
+     * <p> The source S3 bucket for the import. Use this parameter for a new import. </p>
      */
     ImportSource?: ImportSource;
     /**
-     * <p>
-     *          Use with <code>EndEventTime</code> to bound a <code>StartImport</code> request, and limit imported trail events
-     *          to only those events logged within a specified time period. When you specify a time range, CloudTrail checks the prefix and log
-     *          file names to verify the names contain a date between the specified <code>StartEventTime</code> and <code>EndEventTime</code> before attempting
-     *          to import events.
-     *       </p>
+     * <p> Use with <code>EndEventTime</code> to bound a <code>StartImport</code> request, and
+     *          limit imported trail events to only those events logged within a specified time period.
+     *          When you specify a time range, CloudTrail checks the prefix and log file names to
+     *          verify the names contain a date between the specified <code>StartEventTime</code> and
+     *             <code>EndEventTime</code> before attempting to import events. </p>
      */
     StartEventTime?: Date;
     /**
-     * <p>
-     *          Use with <code>StartEventTime</code> to bound a <code>StartImport</code> request, and limit imported trail events
-     *          to only those events logged within a specified time period. When you specify a time range, CloudTrail checks the prefix and log
-     *          file names to verify the names contain a date between the specified <code>StartEventTime</code> and <code>EndEventTime</code> before attempting
-     *          to import events.
-     *       </p>
+     * <p> Use with <code>StartEventTime</code> to bound a <code>StartImport</code> request, and
+     *          limit imported trail events to only those events logged within a specified time period.
+     *          When you specify a time range, CloudTrail checks the prefix and log file names to
+     *          verify the names contain a date between the specified <code>StartEventTime</code> and
+     *             <code>EndEventTime</code> before attempting to import events. </p>
      */
     EndEventTime?: Date;
     /**
-     * <p>
-     *          The ID of the import. Use this parameter when you are retrying an import.
-     *       </p>
+     * <p> The ID of the import. Use this parameter when you are retrying an import. </p>
      */
     ImportId?: string;
 }
 export interface StartImportResponse {
     /**
-     * <p>
-     *          The ID of the import.
-     *       </p>
+     * <p> The ID of the import. </p>
      */
     ImportId?: string;
     /**
-     * <p>
-     *          The ARN of the destination event data store.
-     *       </p>
+     * <p> The ARN of the destination event data store. </p>
      */
     Destinations?: string[];
     /**
-     * <p>
-     *          The source S3 bucket for the import.
-     *       </p>
+     * <p> The source S3 bucket for the import. </p>
      */
     ImportSource?: ImportSource;
     /**
-     * <p>
-     *          Used with <code>EndEventTime</code> to bound a <code>StartImport</code> request, and limit imported trail events
-     *          to only those events logged within a specified time period.
+     * <p> Used with <code>EndEventTime</code> to bound a <code>StartImport</code> request, and
+     *          limit imported trail events to only those events logged within a specified time period.
      *       </p>
      */
     StartEventTime?: Date;
     /**
-     * <p>
-     *          Used with <code>StartEventTime</code> to bound a <code>StartImport</code> request, and limit imported trail events
-     *          to only those events logged within a specified time period.
+     * <p> Used with <code>StartEventTime</code> to bound a <code>StartImport</code> request, and
+     *          limit imported trail events to only those events logged within a specified time period.
      *       </p>
      */
     EndEventTime?: Date;
     /**
-     * <p>
-     *          Shows the status of the import after a <code>StartImport</code> request. An import finishes with a status of <code>COMPLETED</code> if there were no failures, or <code>FAILED</code>
-     *          if there were failures.
-     *       </p>
+     * <p> Shows the status of the import after a <code>StartImport</code> request. An import
+     *          finishes with a status of <code>COMPLETED</code> if there were no failures, or
+     *             <code>FAILED</code> if there were failures. </p>
      */
     ImportStatus?: ImportStatus | string;
     /**
-     * <p>
-     *          The timestamp for the import's creation.
-     *       </p>
+     * <p> The timestamp for the import's creation. </p>
      */
     CreatedTimestamp?: Date;
     /**
-     * <p>
-     *          The timestamp of the import's last update, if applicable.
-     *       </p>
+     * <p> The timestamp of the import's last update, if applicable. </p>
      */
     UpdatedTimestamp?: Date;
 }
 /**
- * <p>The request to CloudTrail to start logging Amazon Web Services API calls for an account.</p>
+ * <p>The request to CloudTrail to start logging Amazon Web Services API calls for an
+ *          account.</p>
  */
 export interface StartLoggingRequest {
     /**
-     * <p>Specifies the name or the CloudTrail ARN of the trail for which CloudTrail logs Amazon Web Services API calls.
-     *          The following is the format of a trail ARN.</p>
+     * <p>Specifies the name or the CloudTrail ARN of the trail for which CloudTrail
+     *          logs Amazon Web Services API calls. The following is the format of a trail ARN.</p>
      *          <p>
      *             <code>arn:aws:cloudtrail:us-east-2:123456789012:trail/MyTrail</code>
      *          </p>
@@ -3733,14 +4222,15 @@ export interface StartLoggingRequest {
     Name: string | undefined;
 }
 /**
- * <p>Returns the objects or data listed below if successful. Otherwise, returns an error.</p>
+ * <p>Returns the objects or data listed below if successful. Otherwise, returns an
+ *          error.</p>
  */
 export interface StartLoggingResponse {
 }
 /**
- * <p>The query that was submitted has validation errors, or uses incorrect syntax or unsupported keywords. For more information
- *          about writing a query, see <a href="https://docs.aws.amazon.com/awscloudtrail/latest/userguide/query-create-edit-query.html">Create
- *             or edit a query</a> in the <i>CloudTrail User Guide</i>.</p>
+ * <p>The query that was submitted has validation errors, or uses incorrect syntax or
+ *          unsupported keywords. For more information about writing a query, see <a href="https://docs.aws.amazon.com/awscloudtrail/latest/userguide/query-create-edit-query.html">Create or edit a query</a> in the <i>CloudTrail User
+ *             Guide</i>.</p>
  */
 export declare class InvalidQueryStatementException extends __BaseException {
     readonly name: "InvalidQueryStatementException";
@@ -3755,8 +4245,8 @@ export declare class InvalidQueryStatementException extends __BaseException {
     constructor(opts: __ExceptionOptionType<InvalidQueryStatementException, __BaseException>);
 }
 /**
- * <p>You are already running the maximum number of concurrent queries. Wait a minute for some queries to finish, and then
- *          run the query again.</p>
+ * <p>You are already running the maximum number of concurrent queries. Wait a minute for some
+ *          queries to finish, and then run the query again.</p>
  */
 export declare class MaxConcurrentQueriesException extends __BaseException {
     readonly name: "MaxConcurrentQueriesException";
@@ -3776,9 +4266,7 @@ export interface StartQueryRequest {
      */
     QueryStatement: string | undefined;
     /**
-     * <p>
-     *          The URI for the S3 bucket where CloudTrail delivers the query results.
-     *       </p>
+     * <p> The URI for the S3 bucket where CloudTrail delivers the query results. </p>
      */
     DeliveryS3Uri?: string;
 }
@@ -3790,77 +4278,61 @@ export interface StartQueryResponse {
 }
 export interface StopImportRequest {
     /**
-     * <p>
-     *         The ID of the import.
-     *       </p>
+     * <p> The ID of the import. </p>
      */
     ImportId: string | undefined;
 }
 export interface StopImportResponse {
     /**
-     * <p>
-     *          The ID for the import.
-     *       </p>
+     * <p> The ID for the import. </p>
      */
     ImportId?: string;
     /**
-     * <p>
-     *          The source S3 bucket for the import.
-     *       </p>
+     * <p> The source S3 bucket for the import. </p>
      */
     ImportSource?: ImportSource;
     /**
-     * <p>
-     *          The ARN of the destination event data store.
-     *       </p>
+     * <p> The ARN of the destination event data store. </p>
      */
     Destinations?: string[];
     /**
-     * <p>
-     *          The status of the import.
-     *       </p>
+     * <p> The status of the import. </p>
      */
     ImportStatus?: ImportStatus | string;
     /**
-     * <p>
-     *          The timestamp of the import's creation.
-     *       </p>
+     * <p> The timestamp of the import's creation. </p>
      */
     CreatedTimestamp?: Date;
     /**
-     * <p>
-     *          The timestamp of the import's last update.
-     *       </p>
+     * <p> The timestamp of the import's last update. </p>
      */
     UpdatedTimestamp?: Date;
     /**
-     * <p>
-     *          Used with <code>EndEventTime</code> to bound a <code>StartImport</code> request, and limit imported trail events
-     *          to only those events logged within a specified time period.
+     * <p> Used with <code>EndEventTime</code> to bound a <code>StartImport</code> request, and
+     *          limit imported trail events to only those events logged within a specified time period.
      *       </p>
      */
     StartEventTime?: Date;
     /**
-     * <p>
-     *          Used with <code>StartEventTime</code> to bound a <code>StartImport</code> request, and limit imported trail events
-     *          to only those events logged within a specified time period.
+     * <p> Used with <code>StartEventTime</code> to bound a <code>StartImport</code> request, and
+     *          limit imported trail events to only those events logged within a specified time period.
      *       </p>
      */
     EndEventTime?: Date;
     /**
-     * <p>
-     *         Returns information on the stopped import.
-     *       </p>
+     * <p> Returns information on the stopped import. </p>
      */
     ImportStatistics?: ImportStatistics;
 }
 /**
- * <p>Passes the request to CloudTrail to stop logging Amazon Web Services API calls for the specified account.</p>
+ * <p>Passes the request to CloudTrail to stop logging Amazon Web Services API calls for
+ *          the specified account.</p>
  */
 export interface StopLoggingRequest {
     /**
-     * <p>Specifies the name or the CloudTrail ARN of the trail for which CloudTrail will stop logging Amazon Web Services
-     *          API calls. The following is the format of a trail ARN.</p>
+     * <p>Specifies the name or the CloudTrail ARN of the trail for which CloudTrail
+     *          will stop logging Amazon Web Services API calls. The following is the format of a trail
+     *          ARN.</p>
      *          <p>
      *             <code>arn:aws:cloudtrail:us-east-2:123456789012:trail/MyTrail</code>
      *          </p>
@@ -3868,13 +4340,49 @@ export interface StopLoggingRequest {
     Name: string | undefined;
 }
 /**
- * <p>Returns the objects or data listed below if successful. Otherwise, returns an error.</p>
+ * <p>Returns the objects or data listed below if successful. Otherwise, returns an
+ *          error.</p>
  */
 export interface StopLoggingResponse {
 }
+export interface UpdateChannelRequest {
+    /**
+     * <p>The ARN or ID (the ARN suffix) of the channel that you want to update.</p>
+     */
+    Channel: string | undefined;
+    /**
+     * <p>The ARNs of event data stores that you want to log events arriving through the channel.</p>
+     */
+    Destinations?: Destination[];
+    /**
+     * <p>
+     *          Changes the name of the channel.
+     *       </p>
+     */
+    Name?: string;
+}
+export interface UpdateChannelResponse {
+    /**
+     * <p>The ARN of the channel that was updated.</p>
+     */
+    ChannelArn?: string;
+    /**
+     * <p>The name of the channel that was updated.</p>
+     */
+    Name?: string;
+    /**
+     * <p>The event source of the channel that was updated.</p>
+     */
+    Source?: string;
+    /**
+     * <p>The event data stores that log events arriving through the channel.</p>
+     */
+    Destinations?: Destination[];
+}
 export interface UpdateEventDataStoreRequest {
     /**
-     * <p>The ARN (or the ID suffix of the ARN) of the event data store that you want to update.</p>
+     * <p>The ARN (or the ID suffix of the ARN) of the event data store that you want to
+     *          update.</p>
      */
     EventDataStore: string | undefined;
     /**
@@ -3882,15 +4390,18 @@ export interface UpdateEventDataStoreRequest {
      */
     Name?: string;
     /**
-     * <p>The advanced event selectors used to select events for the event data store. You can configure up to five advanced event selectors for each event data store.</p>
+     * <p>The advanced event selectors used to select events for the event data store. You can
+     *          configure up to five advanced event selectors for each event data store.</p>
      */
     AdvancedEventSelectors?: AdvancedEventSelector[];
     /**
-     * <p>Specifies whether an event data store collects events from all regions, or only from the region in which it was created.</p>
+     * <p>Specifies whether an event data store collects events from all regions, or only from the
+     *          region in which it was created.</p>
      */
     MultiRegionEnabled?: boolean;
     /**
-     * <p>Specifies whether an event data store collects events logged for an organization in Organizations.</p>
+     * <p>Specifies whether an event data store collects events logged for an organization in
+     *             Organizations.</p>
      */
     OrganizationEnabled?: boolean;
     /**
@@ -3898,22 +4409,26 @@ export interface UpdateEventDataStoreRequest {
      */
     RetentionPeriod?: number;
     /**
-     * <p>Indicates that termination protection is enabled and the event data store cannot be automatically deleted.</p>
+     * <p>Indicates that termination protection is enabled and the event data store cannot be
+     *          automatically deleted.</p>
      */
     TerminationProtectionEnabled?: boolean;
     /**
-     * <p>Specifies the KMS key ID to use to encrypt the events delivered by CloudTrail. The
-     *          value can be an alias name prefixed by <code>alias/</code>, a fully specified ARN to an alias, a fully
-     *          specified ARN to a key, or a globally unique identifier.</p>
+     * <p>Specifies the KMS key ID to use to encrypt the events delivered by
+     *             CloudTrail. The value can be an alias name prefixed by <code>alias/</code>, a
+     *          fully specified ARN to an alias, a fully specified ARN to a key, or a globally unique
+     *          identifier.</p>
      *          <important>
      *             <p>Disabling or deleting the KMS key, or removing CloudTrail
-     *          permissions on the key, prevents CloudTrail from logging events to the event data store, and prevents users
-     *          from querying the data in the event data store that was encrypted with the key.
-     *          After you associate an event data store with a KMS key, the KMS key cannot be removed or changed. Before you disable or
-     *          delete a KMS key that you are using with an event data store, delete or back up your event data store.</p>
+     *             permissions on the key, prevents CloudTrail from logging events to the event data
+     *             store, and prevents users from querying the data in the event data store that was
+     *             encrypted with the key. After you associate an event data store with a KMS key, the KMS key cannot be removed or changed. Before you
+     *             disable or delete a KMS key that you are using with an event data store,
+     *             delete or back up your event data store.</p>
      *          </important>
-     *          <p>CloudTrail also supports KMS multi-Region keys. For more information about multi-Region keys,
-     *          see <a href="https://docs.aws.amazon.com/kms/latest/developerguide/multi-region-keys-overview.html">Using multi-Region keys</a> in the <i>Key Management Service Developer Guide</i>.</p>
+     *          <p>CloudTrail also supports KMS multi-Region keys. For more
+     *          information about multi-Region keys, see <a href="https://docs.aws.amazon.com/kms/latest/developerguide/multi-region-keys-overview.html">Using multi-Region
+     *             keys</a> in the <i>Key Management Service Developer Guide</i>.</p>
      *          <p>Examples:</p>
      *          <ul>
      *             <li>
@@ -3950,7 +4465,8 @@ export interface UpdateEventDataStoreResponse {
      */
     Name?: string;
     /**
-     * <p>The status of an event data store. Values can be <code>ENABLED</code> and <code>PENDING_DELETION</code>.</p>
+     * <p>The status of an event data store. Values can be <code>ENABLED</code> and
+     *             <code>PENDING_DELETION</code>.</p>
      */
     Status?: EventDataStoreStatus | string;
     /**
@@ -3958,11 +4474,13 @@ export interface UpdateEventDataStoreResponse {
      */
     AdvancedEventSelectors?: AdvancedEventSelector[];
     /**
-     * <p>Indicates whether the event data store includes events from all regions, or only from the region in which it was created.</p>
+     * <p>Indicates whether the event data store includes events from all regions, or only from
+     *          the region in which it was created.</p>
      */
     MultiRegionEnabled?: boolean;
     /**
-     * <p>Indicates whether an event data store is collecting logged events for an organization in Organizations.</p>
+     * <p>Indicates whether an event data store is collecting logged events for an organization in
+     *             Organizations.</p>
      */
     OrganizationEnabled?: boolean;
     /**
@@ -3978,12 +4496,14 @@ export interface UpdateEventDataStoreResponse {
      */
     CreatedTimestamp?: Date;
     /**
-     * <p>The timestamp that shows when the event data store was last updated. <code>UpdatedTimestamp</code> is always either the same or newer than the time shown in <code>CreatedTimestamp</code>.</p>
+     * <p>The timestamp that shows when the event data store was last updated.
+     *             <code>UpdatedTimestamp</code> is always either the same or newer than the time shown in
+     *             <code>CreatedTimestamp</code>.</p>
      */
     UpdatedTimestamp?: Date;
     /**
-     * <p>Specifies the KMS key ID that encrypts the events delivered by CloudTrail.
-     *          The value is a fully specified ARN to a KMS key in the following format.</p>
+     * <p>Specifies the KMS key ID that encrypts the events delivered by CloudTrail. The value is a fully specified ARN to a KMS key in the
+     *          following format.</p>
      *          <p>
      *             <code>arn:aws:kms:us-east-2:123456789012:key/12345678-1234-1234-1234-123456789012</code>
      *          </p>
@@ -3999,7 +4519,8 @@ export interface UpdateTrailRequest {
      *          string must meet the following requirements:</p>
      *          <ul>
      *             <li>
-     *                <p>Contain only ASCII letters (a-z, A-Z), numbers (0-9), periods (.), underscores (_), or dashes (-)</p>
+     *                <p>Contain only ASCII letters (a-z, A-Z), numbers (0-9), periods (.), underscores
+     *                (_), or dashes (-)</p>
      *             </li>
      *             <li>
      *                <p>Start with a letter or number, and end with a letter or number</p>
@@ -4008,8 +4529,8 @@ export interface UpdateTrailRequest {
      *                <p>Be between 3 and 128 characters</p>
      *             </li>
      *             <li>
-     *                <p>Have no adjacent periods, underscores or dashes. Names like <code>my-_namespace</code>
-     *             and <code>my--namespace</code> are not valid.</p>
+     *                <p>Have no adjacent periods, underscores or dashes. Names like
+     *                   <code>my-_namespace</code> and <code>my--namespace</code> are not valid.</p>
      *             </li>
      *             <li>
      *                <p>Not be in IP address format (for example, 192.168.5.4)</p>
@@ -4022,16 +4543,20 @@ export interface UpdateTrailRequest {
      */
     Name: string | undefined;
     /**
-     * <p>Specifies the name of the Amazon S3 bucket designated for publishing log files. See <a href="https://docs.aws.amazon.com/awscloudtrail/latest/userguide/create_trail_naming_policy.html">Amazon S3 Bucket Naming Requirements</a>.</p>
+     * <p>Specifies the name of the Amazon S3 bucket designated for publishing log files.
+     *          See <a href="https://docs.aws.amazon.com/awscloudtrail/latest/userguide/create_trail_naming_policy.html">Amazon S3
+     *             Bucket Naming Requirements</a>.</p>
      */
     S3BucketName?: string;
     /**
-     * <p>Specifies the Amazon S3 key prefix that comes after the name of the bucket you have designated
-     *          for log file delivery. For more information, see <a href="https://docs.aws.amazon.com/awscloudtrail/latest/userguide/cloudtrail-find-log-files.html">Finding Your CloudTrail Log Files</a>. The maximum length is 200 characters.</p>
+     * <p>Specifies the Amazon S3 key prefix that comes after the name of the bucket you
+     *          have designated for log file delivery. For more information, see <a href="https://docs.aws.amazon.com/awscloudtrail/latest/userguide/cloudtrail-find-log-files.html">Finding Your CloudTrail Log Files</a>. The maximum length is 200
+     *          characters.</p>
      */
     S3KeyPrefix?: string;
     /**
-     * <p>Specifies the name of the Amazon SNS topic defined for notification of log file delivery. The maximum length is 256 characters.</p>
+     * <p>Specifies the name of the Amazon SNS topic defined for notification of log file
+     *          delivery. The maximum length is 256 characters.</p>
      */
     SnsTopicName?: string;
     /**
@@ -4039,37 +4564,45 @@ export interface UpdateTrailRequest {
      */
     IncludeGlobalServiceEvents?: boolean;
     /**
-     * <p>Specifies whether the trail applies only to the current region or to all regions. The default is false. If the trail exists only in the current region and this value is set to true,
-     *          shadow trails (replications of the trail) will be created in the other regions. If the trail exists in all regions and this value is set to false, the trail will remain in the region
-     *          where it was created, and its shadow trails in other regions will be deleted. As a best practice, consider
-     *          using trails that log events in all regions.</p>
+     * <p>Specifies whether the trail applies only to the current region or to all regions. The
+     *          default is false. If the trail exists only in the current region and this value is set to
+     *          true, shadow trails (replications of the trail) will be created in the other regions. If
+     *          the trail exists in all regions and this value is set to false, the trail will remain in
+     *          the region where it was created, and its shadow trails in other regions will be deleted. As
+     *          a best practice, consider using trails that log events in all regions.</p>
      */
     IsMultiRegionTrail?: boolean;
     /**
      * <p>Specifies whether log file validation is enabled. The default is false.</p>
      *          <note>
-     *             <p>When you disable log file integrity validation, the chain of digest files is broken after one hour. CloudTrail
-     *             does not create digest files for log files that were delivered during a period in which log file integrity validation
-     *             was disabled. For example, if you enable log file integrity validation at noon on January 1, disable it at noon on
-     *             January 2, and re-enable it at noon on January 10, digest files will not be created for the log files delivered from noon
-     *             on January 2 to noon on January 10. The same applies whenever you stop CloudTrail logging or delete a trail.</p>
+     *             <p>When you disable log file integrity validation, the chain of digest files is broken
+     *             after one hour. CloudTrail does not create digest files for log files that were
+     *             delivered during a period in which log file integrity validation was disabled. For
+     *             example, if you enable log file integrity validation at noon on January 1, disable it at
+     *             noon on January 2, and re-enable it at noon on January 10, digest files will not be
+     *             created for the log files delivered from noon on January 2 to noon on January 10. The
+     *             same applies whenever you stop CloudTrail logging or delete a trail.</p>
      *          </note>
      */
     EnableLogFileValidation?: boolean;
     /**
-     * <p>Specifies a log group name using an Amazon Resource Name (ARN), a unique identifier that represents the log group to which CloudTrail logs are delivered. Not required unless you specify <code>CloudWatchLogsRoleArn</code>.</p>
+     * <p>Specifies a log group name using an Amazon Resource Name (ARN), a unique identifier that
+     *          represents the log group to which CloudTrail logs are delivered. You must use a log
+     *          group that exists in your account.</p>
+     *          <p>Not required unless you specify <code>CloudWatchLogsRoleArn</code>.</p>
      */
     CloudWatchLogsLogGroupArn?: string;
     /**
-     * <p>Specifies the role for the CloudWatch Logs endpoint to assume to write to a user's log group.</p>
+     * <p>Specifies the role for the CloudWatch Logs endpoint to assume to write to a user's
+     *          log group. You must use a role that exists in your account.</p>
      */
     CloudWatchLogsRoleArn?: string;
     /**
-     * <p>Specifies the KMS key ID to use to encrypt the logs delivered by CloudTrail. The
-     *          value can be an alias name prefixed by "alias/", a fully specified ARN to an alias, a fully
-     *          specified ARN to a key, or a globally unique identifier.</p>
-     *          <p>CloudTrail also supports KMS multi-Region keys. For more information about multi-Region keys,
-     *          see <a href="https://docs.aws.amazon.com/kms/latest/developerguide/multi-region-keys-overview.html">Using multi-Region keys</a> in the <i>Key Management Service Developer Guide</i>.</p>
+     * <p>Specifies the KMS key ID to use to encrypt the logs delivered by CloudTrail. The value can be an alias name prefixed by "alias/", a fully specified ARN to
+     *          an alias, a fully specified ARN to a key, or a globally unique identifier.</p>
+     *          <p>CloudTrail also supports KMS multi-Region keys. For more
+     *          information about multi-Region keys, see <a href="https://docs.aws.amazon.com/kms/latest/developerguide/multi-region-keys-overview.html">Using multi-Region
+     *             keys</a> in the <i>Key Management Service Developer Guide</i>.</p>
      *          <p>Examples:</p>
      *          <ul>
      *             <li>
@@ -4088,16 +4621,19 @@ export interface UpdateTrailRequest {
      */
     KmsKeyId?: string;
     /**
-     * <p>Specifies whether the trail is applied to all accounts in an organization in Organizations, or only for the current Amazon Web Services account.
-     *          The default is false, and cannot be true unless the call is made on behalf of an Amazon Web Services account that is the management account for an organization in
-     *          Organizations. If the trail is not an organization trail and this is set to <code>true</code>, the trail will be created in all Amazon Web Services accounts that belong
-     *          to the organization. If the trail is an organization trail and this is set to <code>false</code>, the trail will remain in the current Amazon Web Services account but be
-     *          deleted from all member accounts in the organization.</p>
+     * <p>Specifies whether the trail is applied to all accounts in an organization in Organizations, or only for the current Amazon Web Services account. The default is false,
+     *          and cannot be true unless the call is made on behalf of an Amazon Web Services account that
+     *          is the management account or delegated administrator account for an organization in Organizations. If the trail is not an organization trail and this is set to
+     *             <code>true</code>, the trail will be created in all Amazon Web Services accounts that
+     *          belong to the organization. If the trail is an organization trail and this is set to
+     *             <code>false</code>, the trail will remain in the current Amazon Web Services account but
+     *          be deleted from all member accounts in the organization.</p>
      */
     IsOrganizationTrail?: boolean;
 }
 /**
- * <p>Returns the objects or data listed below if successful. Otherwise, returns an error.</p>
+ * <p>Returns the objects or data listed below if successful. Otherwise, returns an
+ *          error.</p>
  */
 export interface UpdateTrailResponse {
     /**
@@ -4105,13 +4641,13 @@ export interface UpdateTrailResponse {
      */
     Name?: string;
     /**
-     * <p>Specifies the name of the Amazon S3 bucket designated for publishing log files.</p>
+     * <p>Specifies the name of the Amazon S3 bucket designated for publishing log
+     *          files.</p>
      */
     S3BucketName?: string;
     /**
-     * <p>Specifies the Amazon S3 key prefix that comes after the name of the bucket you have designated
-     *          for log file delivery.
-     *          For more information, see <a href="https://docs.aws.amazon.com/awscloudtrail/latest/userguide/cloudtrail-find-log-files.html">Finding Your IAM Log Files</a>.</p>
+     * <p>Specifies the Amazon S3 key prefix that comes after the name of the bucket you
+     *          have designated for log file delivery. For more information, see <a href="https://docs.aws.amazon.com/awscloudtrail/latest/userguide/cloudtrail-find-log-files.html">Finding Your IAM Log Files</a>.</p>
      */
     S3KeyPrefix?: string;
     /**
@@ -4121,8 +4657,9 @@ export interface UpdateTrailResponse {
      */
     SnsTopicName?: string;
     /**
-     * <p>Specifies the ARN of the Amazon SNS topic that CloudTrail uses to send notifications
-     *          when log files are delivered. The following is the format of a topic ARN.</p>
+     * <p>Specifies the ARN of the Amazon SNS topic that CloudTrail uses to send
+     *          notifications when log files are delivered. The following is the format of a topic
+     *          ARN.</p>
      *          <p>
      *             <code>arn:aws:sns:us-east-2:123456789012:MyTopic</code>
      *          </p>
@@ -4137,7 +4674,8 @@ export interface UpdateTrailResponse {
      */
     IsMultiRegionTrail?: boolean;
     /**
-     * <p>Specifies the ARN of the trail that was updated. The following is the format of a trail ARN.</p>
+     * <p>Specifies the ARN of the trail that was updated. The following is the format of a trail
+     *          ARN.</p>
      *          <p>
      *             <code>arn:aws:cloudtrail:us-east-2:123456789012:trail/MyTrail</code>
      *          </p>
@@ -4148,15 +4686,18 @@ export interface UpdateTrailResponse {
      */
     LogFileValidationEnabled?: boolean;
     /**
-     * <p>Specifies the Amazon Resource Name (ARN) of the log group to which CloudTrail logs are delivered.</p>
+     * <p>Specifies the Amazon Resource Name (ARN) of the log group to which CloudTrail
+     *          logs are delivered.</p>
      */
     CloudWatchLogsLogGroupArn?: string;
     /**
-     * <p>Specifies the role for the CloudWatch Logs endpoint to assume to write to a user's log group.</p>
+     * <p>Specifies the role for the CloudWatch Logs endpoint to assume to write to a user's
+     *          log group.</p>
      */
     CloudWatchLogsRoleArn?: string;
     /**
-     * <p>Specifies the KMS key ID that encrypts the logs delivered by CloudTrail. The value is a fully specified ARN to a KMS key in the following format.</p>
+     * <p>Specifies the KMS key ID that encrypts the logs delivered by CloudTrail. The value is a fully specified ARN to a KMS key in the
+     *          following format.</p>
      *          <p>
      *             <code>arn:aws:kms:us-east-2:123456789012:key/12345678-1234-1234-1234-123456789012</code>
      *          </p>
@@ -4199,6 +4740,18 @@ export declare const CancelQueryResponseFilterSensitiveLog: (obj: CancelQueryRes
  * @internal
  */
 export declare const ChannelFilterSensitiveLog: (obj: Channel) => any;
+/**
+ * @internal
+ */
+export declare const DestinationFilterSensitiveLog: (obj: Destination) => any;
+/**
+ * @internal
+ */
+export declare const CreateChannelRequestFilterSensitiveLog: (obj: CreateChannelRequest) => any;
+/**
+ * @internal
+ */
+export declare const CreateChannelResponseFilterSensitiveLog: (obj: CreateChannelResponse) => any;
 /**
  * @internal
  */
@@ -4215,6 +4768,14 @@ export declare const CreateTrailRequestFilterSensitiveLog: (obj: CreateTrailRequ
  * @internal
  */
 export declare const CreateTrailResponseFilterSensitiveLog: (obj: CreateTrailResponse) => any;
+/**
+ * @internal
+ */
+export declare const DeleteChannelRequestFilterSensitiveLog: (obj: DeleteChannelRequest) => any;
+/**
+ * @internal
+ */
+export declare const DeleteChannelResponseFilterSensitiveLog: (obj: DeleteChannelResponse) => any;
 /**
  * @internal
  */
@@ -4223,6 +4784,14 @@ export declare const DeleteEventDataStoreRequestFilterSensitiveLog: (obj: Delete
  * @internal
  */
 export declare const DeleteEventDataStoreResponseFilterSensitiveLog: (obj: DeleteEventDataStoreResponse) => any;
+/**
+ * @internal
+ */
+export declare const DeleteResourcePolicyRequestFilterSensitiveLog: (obj: DeleteResourcePolicyRequest) => any;
+/**
+ * @internal
+ */
+export declare const DeleteResourcePolicyResponseFilterSensitiveLog: (obj: DeleteResourcePolicyResponse) => any;
 /**
  * @internal
  */
@@ -4270,7 +4839,7 @@ export declare const GetChannelRequestFilterSensitiveLog: (obj: GetChannelReques
 /**
  * @internal
  */
-export declare const DestinationFilterSensitiveLog: (obj: Destination) => any;
+export declare const IngestionStatusFilterSensitiveLog: (obj: IngestionStatus) => any;
 /**
  * @internal
  */
@@ -4347,6 +4916,14 @@ export declare const QueryStatisticsFilterSensitiveLog: (obj: QueryStatistics) =
  * @internal
  */
 export declare const GetQueryResultsResponseFilterSensitiveLog: (obj: GetQueryResultsResponse) => any;
+/**
+ * @internal
+ */
+export declare const GetResourcePolicyRequestFilterSensitiveLog: (obj: GetResourcePolicyRequest) => any;
+/**
+ * @internal
+ */
+export declare const GetResourcePolicyResponseFilterSensitiveLog: (obj: GetResourcePolicyResponse) => any;
 /**
  * @internal
  */
@@ -4491,6 +5068,14 @@ export declare const PutInsightSelectorsRequestFilterSensitiveLog: (obj: PutInsi
  * @internal
  */
 export declare const PutInsightSelectorsResponseFilterSensitiveLog: (obj: PutInsightSelectorsResponse) => any;
+/**
+ * @internal
+ */
+export declare const PutResourcePolicyRequestFilterSensitiveLog: (obj: PutResourcePolicyRequest) => any;
+/**
+ * @internal
+ */
+export declare const PutResourcePolicyResponseFilterSensitiveLog: (obj: PutResourcePolicyResponse) => any;
 /**
  * @internal
  */
@@ -4555,6 +5140,14 @@ export declare const StopLoggingRequestFilterSensitiveLog: (obj: StopLoggingRequ
  * @internal
  */
 export declare const StopLoggingResponseFilterSensitiveLog: (obj: StopLoggingResponse) => any;
+/**
+ * @internal
+ */
+export declare const UpdateChannelRequestFilterSensitiveLog: (obj: UpdateChannelRequest) => any;
+/**
+ * @internal
+ */
+export declare const UpdateChannelResponseFilterSensitiveLog: (obj: UpdateChannelResponse) => any;
 /**
  * @internal
  */