@aws-sdk/client-cloudtrail 3.45.0 → 3.47.2

package/dist-types/models/models_0.d.ts

@@ -33,7 +33,7 @@ export interface AddTagsRequest {
     /**
      * <p>Contains a list of tags, up to a limit of 50</p>
      */
-    TagsList?: Tag[];
+    TagsList: Tag[] | undefined;
 }
 export declare namespace AddTagsRequest {
     /**
@@ -66,11 +66,40 @@ export interface CloudTrailARNInvalidException extends __SmithyException, $Metad
      */
     Message?: string;
 }
-export declare namespace CloudTrailARNInvalidException {
+/**
+ * <p>This exception is thrown when the specified resource is not ready for an operation.
+ *          This can occur when you try to run an operation on a trail before CloudTrail has time to fully load the trail.
+ *          If this exception occurs, wait a few minutes, and then try the operation again.</p>
+ */
+export interface ConflictException extends __SmithyException, $MetadataBearer {
+    name: "ConflictException";
+    $fault: "client";
     /**
-     * @internal
+     * <p>Brief description of the exception returned by the request.</p>
+     */
+    Message?: string;
+}
+/**
+ * <p>The specified event data store was not found.</p>
+ */
+export interface EventDataStoreNotFoundException extends __SmithyException, $MetadataBearer {
+    name: "EventDataStoreNotFoundException";
+    $fault: "client";
+    /**
+     * <p>Brief description of the exception returned by the request.</p>
+     */
+    Message?: string;
+}
+/**
+ * <p>The event data store against which you ran your query is inactive.</p>
+ */
+export interface InactiveEventDataStoreException extends __SmithyException, $MetadataBearer {
+    name: "InactiveEventDataStoreException";
+    $fault: "client";
+    /**
+     * <p>Brief description of the exception returned by the request.</p>
      */
-    const filterSensitiveLog: (obj: CloudTrailARNInvalidException) => any;
+    Message?: string;
 }
 /**
  * <p>This exception is thrown when the specified tag key or values are not valid.
@@ -84,12 +113,6 @@ export interface InvalidTagParameterException extends __SmithyException, $Metada
      */
     Message?: string;
 }
-export declare namespace InvalidTagParameterException {
-    /**
-     * @internal
-     */
-    const filterSensitiveLog: (obj: InvalidTagParameterException) => any;
-}
 /**
  * <p>This exception is thrown when the provided trail name is not valid. Trail names must meet the following requirements:</p>
  *          <ul>
@@ -119,12 +142,6 @@ export interface InvalidTrailNameException extends __SmithyException, $MetadataB
      */
     Message?: string;
 }
-export declare namespace InvalidTrailNameException {
-    /**
-     * @internal
-     */
-    const filterSensitiveLog: (obj: InvalidTrailNameException) => any;
-}
 /**
  * <p>This exception is thrown when the Amazon Web Services account making the request to create or update an organization trail is not the management account for an
  *          organization in Organizations. For more information, see
@@ -138,12 +155,6 @@ export interface NotOrganizationMasterAccountException extends __SmithyException
      */
     Message?: string;
 }
-export declare namespace NotOrganizationMasterAccountException {
-    /**
-     * @internal
-     */
-    const filterSensitiveLog: (obj: NotOrganizationMasterAccountException) => any;
-}
 /**
  * <p>This exception is thrown when the requested operation is not permitted.</p>
  */
@@ -155,12 +166,6 @@ export interface OperationNotPermittedException extends __SmithyException, $Meta
      */
     Message?: string;
 }
-export declare namespace OperationNotPermittedException {
-    /**
-     * @internal
-     */
-    const filterSensitiveLog: (obj: OperationNotPermittedException) => any;
-}
 /**
  * <p>This exception is thrown when the specified resource is not found.</p>
  */
@@ -172,12 +177,6 @@ export interface ResourceNotFoundException extends __SmithyException, $MetadataB
      */
     Message?: string;
 }
-export declare namespace ResourceNotFoundException {
-    /**
-     * @internal
-     */
-    const filterSensitiveLog: (obj: ResourceNotFoundException) => any;
-}
 /**
  * <p>This exception is thrown when the specified resource type is not supported by CloudTrail.</p>
  */
@@ -189,12 +188,6 @@ export interface ResourceTypeNotSupportedException extends __SmithyException, $M
      */
     Message?: string;
 }
-export declare namespace ResourceTypeNotSupportedException {
-    /**
-     * @internal
-     */
-    const filterSensitiveLog: (obj: ResourceTypeNotSupportedException) => any;
-}
 /**
  * <p>The number of tags per trail has exceeded the permitted amount. Currently, the limit is 50.</p>
  */
@@ -206,12 +199,6 @@ export interface TagsLimitExceededException extends __SmithyException, $Metadata
      */
     Message?: string;
 }
-export declare namespace TagsLimitExceededException {
-    /**
-     * @internal
-     */
-    const filterSensitiveLog: (obj: TagsLimitExceededException) => any;
-}
 /**
  * <p>This exception is thrown when the requested operation is not supported.</p>
  */
@@ -223,12 +210,6 @@ export interface UnsupportedOperationException extends __SmithyException, $Metad
      */
     Message?: string;
 }
-export declare namespace UnsupportedOperationException {
-    /**
-     * @internal
-     */
-    const filterSensitiveLog: (obj: UnsupportedOperationException) => any;
-}
 /**
  * <p>A single selector statement in an advanced event selector.</p>
  */
@@ -539,6 +520,92 @@ export declare namespace AdvancedEventSelector {
      */
     const filterSensitiveLog: (obj: AdvancedEventSelector) => any;
 }
+export interface CancelQueryRequest {
+    /**
+     * <p>The ARN (or the ID suffix of the ARN) of an event data store on which the specified query is running.</p>
+     */
+    EventDataStore: string | undefined;
+    /**
+     * <p>The ID of the query that you want to cancel. The <code>QueryId</code> comes from the response of a <code>StartQuery</code>
+     *       operation.</p>
+     */
+    QueryId: string | undefined;
+}
+export declare namespace CancelQueryRequest {
+    /**
+     * @internal
+     */
+    const filterSensitiveLog: (obj: CancelQueryRequest) => any;
+}
+export declare enum QueryStatus {
+    CANCELLED = "CANCELLED",
+    FAILED = "FAILED",
+    FINISHED = "FINISHED",
+    QUEUED = "QUEUED",
+    RUNNING = "RUNNING"
+}
+export interface CancelQueryResponse {
+    /**
+     * <p>The ID of the canceled query.</p>
+     */
+    QueryId: string | undefined;
+    /**
+     * <p>Shows the status of a query after a <code>CancelQuery</code> request. Typically, the values shown are either
+     *          <code>RUNNING</code> or <code>CANCELLED</code>.</p>
+     */
+    QueryStatus: QueryStatus | string | undefined;
+}
+export declare namespace CancelQueryResponse {
+    /**
+     * @internal
+     */
+    const filterSensitiveLog: (obj: CancelQueryResponse) => any;
+}
+/**
+ * <p>The specified event data store ARN is not valid or does not map to an event data store in your account.</p>
+ */
+export interface EventDataStoreARNInvalidException extends __SmithyException, $MetadataBearer {
+    name: "EventDataStoreARNInvalidException";
+    $fault: "client";
+    /**
+     * <p>Brief description of the exception returned by the request.</p>
+     */
+    Message?: string;
+}
+/**
+ * <p>The specified query cannot be canceled because it is in the <code>FINISHED</code>, <code>FAILED</code>, or
+ *          <code>CANCELLED</code> state.</p>
+ */
+export interface InactiveQueryException extends __SmithyException, $MetadataBearer {
+    name: "InactiveQueryException";
+    $fault: "client";
+    /**
+     * <p>Brief description of the exception returned by the request.</p>
+     */
+    Message?: string;
+}
+/**
+ * <p>The request includes a parameter that is not valid.</p>
+ */
+export interface InvalidParameterException extends __SmithyException, $MetadataBearer {
+    name: "InvalidParameterException";
+    $fault: "client";
+    /**
+     * <p>Brief description of the exception returned by the request.</p>
+     */
+    Message?: string;
+}
+/**
+ * <p>The query ID does not exist or does not map to a query.</p>
+ */
+export interface QueryIdNotFoundException extends __SmithyException, $MetadataBearer {
+    name: "QueryIdNotFoundException";
+    $fault: "client";
+    /**
+     * <p>Brief description of the exception returned by the request.</p>
+     */
+    Message?: string;
+}
 /**
  * <p>This exception is thrown when trusted access has not been enabled between CloudTrail and Organizations. For more information,
  *          see <a href="https://docs.aws.amazon.com/organizations/latest/userguide/orgs_integrate_services.html">Enabling Trusted Access with Other Amazon Web Services Services</a>
@@ -552,11 +619,164 @@ export interface CloudTrailAccessNotEnabledException extends __SmithyException,
      */
     Message?: string;
 }
-export declare namespace CloudTrailAccessNotEnabledException {
+export interface CreateEventDataStoreRequest {
+    /**
+     * <p>The name of the event data store.</p>
+     */
+    Name: string | undefined;
+    /**
+     * <p>The advanced event selectors to use to select the events for the data store. For more information about how to use advanced event
+     *          selectors, see <a href="https://docs.aws.amazon.com/awscloudtrail/latest/userguide/logging-data-events-with-cloudtrail.html#creating-data-event-selectors-advanced">Log events by using advanced event selectors</a> in the CloudTrail
+     *          User Guide.</p>
+     */
+    AdvancedEventSelectors?: AdvancedEventSelector[];
+    /**
+     * <p>Specifies whether the event data store includes events from all regions, or only from the region in which the event data store
+     *          is created.</p>
+     */
+    MultiRegionEnabled?: boolean;
+    /**
+     * <p>Specifies whether an event data store collects events logged for an organization in Organizations.</p>
+     */
+    OrganizationEnabled?: boolean;
+    /**
+     * <p>The retention period of the event data store, in days. You can set a retention period of up to 2555 days,
+     *       the equivalent of seven years.</p>
+     */
+    RetentionPeriod?: number;
+    /**
+     * <p>Specifies whether termination protection is enabled for the event data store. If termination protection is enabled, you
+     *       cannot delete the event data store until termination protection is disabled.</p>
+     */
+    TerminationProtectionEnabled?: boolean;
+    /**
+     * <p>A list of tags.</p>
+     */
+    TagsList?: Tag[];
+}
+export declare namespace CreateEventDataStoreRequest {
+    /**
+     * @internal
+     */
+    const filterSensitiveLog: (obj: CreateEventDataStoreRequest) => any;
+}
+export declare enum EventDataStoreStatus {
+    CREATED = "CREATED",
+    ENABLED = "ENABLED",
+    PENDING_DELETION = "PENDING_DELETION"
+}
+export interface CreateEventDataStoreResponse {
+    /**
+     * <p>The ARN of the event data store.</p>
+     */
+    EventDataStoreArn?: string;
+    /**
+     * <p>The name of the event data store.</p>
+     */
+    Name?: string;
+    /**
+     * <p>The status of event data store creation.</p>
+     */
+    Status?: EventDataStoreStatus | string;
+    /**
+     * <p>The advanced event selectors that were used to select the events for the data store.</p>
+     */
+    AdvancedEventSelectors?: AdvancedEventSelector[];
+    /**
+     * <p>Indicates whether the event data store collects events from all regions, or only from the region in which it was created.</p>
+     */
+    MultiRegionEnabled?: boolean;
+    /**
+     * <p>Indicates whether an event data store is collecting logged events for an organization in Organizations.</p>
+     */
+    OrganizationEnabled?: boolean;
+    /**
+     * <p>The retention period of an event data store, in days.</p>
+     */
+    RetentionPeriod?: number;
+    /**
+     * <p>Indicates whether termination protection is enabled for the event data store.</p>
+     */
+    TerminationProtectionEnabled?: boolean;
+    /**
+     * <p>A list of tags.</p>
+     */
+    TagsList?: Tag[];
+    /**
+     * <p>The timestamp that shows when the event data store was created.</p>
+     */
+    CreatedTimestamp?: Date;
+    /**
+     * <p>The timestamp that shows when an event data store was updated, if applicable.
+     *          <code>UpdatedTimestamp</code> is always either the same or newer than the time shown in <code>CreatedTimestamp</code>.</p>
+     */
+    UpdatedTimestamp?: Date;
+}
+export declare namespace CreateEventDataStoreResponse {
     /**
      * @internal
      */
-    const filterSensitiveLog: (obj: CloudTrailAccessNotEnabledException) => any;
+    const filterSensitiveLog: (obj: CreateEventDataStoreResponse) => any;
+}
+/**
+ * <p>An event data store with that name already exists.</p>
+ */
+export interface EventDataStoreAlreadyExistsException extends __SmithyException, $MetadataBearer {
+    name: "EventDataStoreAlreadyExistsException";
+    $fault: "client";
+    /**
+     * <p>Brief description of the exception returned by the request.</p>
+     */
+    Message?: string;
+}
+/**
+ * <p>Your account has used the maximum number of event data stores.</p>
+ */
+export interface EventDataStoreMaxLimitExceededException extends __SmithyException, $MetadataBearer {
+    name: "EventDataStoreMaxLimitExceededException";
+    $fault: "client";
+    /**
+     * <p>Brief description of the exception returned by the request.</p>
+     */
+    Message?: string;
+}
+/**
+ * <p>This exception is thrown when the IAM user or role that is used to create the organization trail is lacking one or more required permissions for
+ *          creating an organization trail in a required service. For more information, see
+ *          <a href="https://docs.aws.amazon.com/awscloudtrail/latest/userguide/creating-an-organizational-trail-prepare.html">Prepare For Creating a Trail For Your Organization</a>.</p>
+ */
+export interface InsufficientDependencyServiceAccessPermissionException extends __SmithyException, $MetadataBearer {
+    name: "InsufficientDependencyServiceAccessPermissionException";
+    $fault: "client";
+    /**
+     * <p>Brief description of the exception returned by the request.</p>
+     */
+    Message?: string;
+}
+/**
+ * <p>This exception is thrown when Organizations is not configured to support all features. All features must be enabled in Organizations to support
+ *          creating an organization trail. For more information, see
+ *          <a href="https://docs.aws.amazon.com/awscloudtrail/latest/userguide/creating-an-organizational-trail-prepare.html">Prepare For Creating a Trail For Your Organization</a>.</p>
+ */
+export interface OrganizationNotInAllFeaturesModeException extends __SmithyException, $MetadataBearer {
+    name: "OrganizationNotInAllFeaturesModeException";
+    $fault: "client";
+    /**
+     * <p>Brief description of the exception returned by the request.</p>
+     */
+    Message?: string;
+}
+/**
+ * <p>This exception is thrown when the request is made from an Amazon Web Services account that is not a member of an organization.
+ *          To make this request, sign in using the credentials of an account that belongs to an organization.</p>
+ */
+export interface OrganizationsNotInUseException extends __SmithyException, $MetadataBearer {
+    name: "OrganizationsNotInUseException";
+    $fault: "client";
+    /**
+     * <p>Brief description of the exception returned by the request.</p>
+     */
+    Message?: string;
 }
 /**
  * <p>This exception is thrown when a call results in the <code>InvalidClientTokenId</code> error code.
@@ -571,12 +791,6 @@ export interface CloudTrailInvalidClientTokenIdException extends __SmithyExcepti
      */
     Message?: string;
 }
-export declare namespace CloudTrailInvalidClientTokenIdException {
-    /**
-     * @internal
-     */
-    const filterSensitiveLog: (obj: CloudTrailInvalidClientTokenIdException) => any;
-}
 /**
  * <p>Cannot set a CloudWatch Logs delivery for this region.</p>
  */
@@ -588,12 +802,6 @@ export interface CloudWatchLogsDeliveryUnavailableException extends __SmithyExce
      */
     Message?: string;
 }
-export declare namespace CloudWatchLogsDeliveryUnavailableException {
-    /**
-     * @internal
-     */
-    const filterSensitiveLog: (obj: CloudWatchLogsDeliveryUnavailableException) => any;
-}
 /**
  * <p>Specifies the settings for each trail.</p>
  */
@@ -779,25 +987,6 @@ export declare namespace CreateTrailResponse {
      */
     const filterSensitiveLog: (obj: CreateTrailResponse) => any;
 }
-/**
- * <p>This exception is thrown when the IAM user or role that is used to create the organization trail is lacking one or more required permissions for
- *          creating an organization trail in a required service. For more information, see
- *          <a href="https://docs.aws.amazon.com/awscloudtrail/latest/userguide/creating-an-organizational-trail-prepare.html">Prepare For Creating a Trail For Your Organization</a>.</p>
- */
-export interface InsufficientDependencyServiceAccessPermissionException extends __SmithyException, $MetadataBearer {
-    name: "InsufficientDependencyServiceAccessPermissionException";
-    $fault: "client";
-    /**
-     * <p>Brief description of the exception returned by the request.</p>
-     */
-    Message?: string;
-}
-export declare namespace InsufficientDependencyServiceAccessPermissionException {
-    /**
-     * @internal
-     */
-    const filterSensitiveLog: (obj: InsufficientDependencyServiceAccessPermissionException) => any;
-}
 /**
  * <p>This exception is thrown when the policy on the S3 bucket or KMS key is not sufficient.</p>
  */
@@ -809,12 +998,6 @@ export interface InsufficientEncryptionPolicyException extends __SmithyException
      */
     Message?: string;
 }
-export declare namespace InsufficientEncryptionPolicyException {
-    /**
-     * @internal
-     */
-    const filterSensitiveLog: (obj: InsufficientEncryptionPolicyException) => any;
-}
 /**
  * <p>This exception is thrown when the policy on the S3 bucket is not sufficient.</p>
  */
@@ -826,12 +1009,6 @@ export interface InsufficientS3BucketPolicyException extends __SmithyException,
      */
     Message?: string;
 }
-export declare namespace InsufficientS3BucketPolicyException {
-    /**
-     * @internal
-     */
-    const filterSensitiveLog: (obj: InsufficientS3BucketPolicyException) => any;
-}
 /**
  * <p>This exception is thrown when the policy on the Amazon SNS topic is not sufficient.</p>
  */
@@ -843,12 +1020,6 @@ export interface InsufficientSnsTopicPolicyException extends __SmithyException,
      */
     Message?: string;
 }
-export declare namespace InsufficientSnsTopicPolicyException {
-    /**
-     * @internal
-     */
-    const filterSensitiveLog: (obj: InsufficientSnsTopicPolicyException) => any;
-}
 /**
  * <p>This exception is thrown when the provided CloudWatch Logs log group is not valid.</p>
  */
@@ -860,12 +1031,6 @@ export interface InvalidCloudWatchLogsLogGroupArnException extends __SmithyExcep
      */
     Message?: string;
 }
-export declare namespace InvalidCloudWatchLogsLogGroupArnException {
-    /**
-     * @internal
-     */
-    const filterSensitiveLog: (obj: InvalidCloudWatchLogsLogGroupArnException) => any;
-}
 /**
  * <p>This exception is thrown when the provided role is not valid.</p>
  */
@@ -877,12 +1042,6 @@ export interface InvalidCloudWatchLogsRoleArnException extends __SmithyException
      */
     Message?: string;
 }
-export declare namespace InvalidCloudWatchLogsRoleArnException {
-    /**
-     * @internal
-     */
-    const filterSensitiveLog: (obj: InvalidCloudWatchLogsRoleArnException) => any;
-}
 /**
  * <p>This exception is thrown when the KMS key ARN is not valid.</p>
  */
@@ -894,12 +1053,6 @@ export interface InvalidKmsKeyIdException extends __SmithyException, $MetadataBe
      */
     Message?: string;
 }
-export declare namespace InvalidKmsKeyIdException {
-    /**
-     * @internal
-     */
-    const filterSensitiveLog: (obj: InvalidKmsKeyIdException) => any;
-}
 /**
  * <p>This exception is thrown when the combination of parameters provided is not valid.</p>
  */
@@ -911,12 +1064,6 @@ export interface InvalidParameterCombinationException extends __SmithyException,
      */
     Message?: string;
 }
-export declare namespace InvalidParameterCombinationException {
-    /**
-     * @internal
-     */
-    const filterSensitiveLog: (obj: InvalidParameterCombinationException) => any;
-}
 /**
  * <p>This exception is thrown when the provided S3 bucket name is not valid.</p>
  */
@@ -928,12 +1075,6 @@ export interface InvalidS3BucketNameException extends __SmithyException, $Metada
      */
     Message?: string;
 }
-export declare namespace InvalidS3BucketNameException {
-    /**
-     * @internal
-     */
-    const filterSensitiveLog: (obj: InvalidS3BucketNameException) => any;
-}
 /**
  * <p>This exception is thrown when the provided S3 prefix is not valid.</p>
  */
@@ -945,12 +1086,6 @@ export interface InvalidS3PrefixException extends __SmithyException, $MetadataBe
      */
     Message?: string;
 }
-export declare namespace InvalidS3PrefixException {
-    /**
-     * @internal
-     */
-    const filterSensitiveLog: (obj: InvalidS3PrefixException) => any;
-}
 /**
  * <p>This exception is thrown when the provided SNS topic name is not valid.</p>
  */
@@ -962,12 +1097,6 @@ export interface InvalidSnsTopicNameException extends __SmithyException, $Metada
      */
     Message?: string;
 }
-export declare namespace InvalidSnsTopicNameException {
-    /**
-     * @internal
-     */
-    const filterSensitiveLog: (obj: InvalidSnsTopicNameException) => any;
-}
 /**
  * <p>This exception is thrown when there is an issue with the specified KMS key and the trail can’t be updated.</p>
  */
@@ -979,12 +1108,6 @@ export interface KmsException extends __SmithyException, $MetadataBearer {
      */
     Message?: string;
 }
-export declare namespace KmsException {
-    /**
-     * @internal
-     */
-    const filterSensitiveLog: (obj: KmsException) => any;
-}
 /**
  * @deprecated
  *
@@ -998,12 +1121,6 @@ export interface KmsKeyDisabledException extends __SmithyException, $MetadataBea
      */
     Message?: string;
 }
-export declare namespace KmsKeyDisabledException {
-    /**
-     * @internal
-     */
-    const filterSensitiveLog: (obj: KmsKeyDisabledException) => any;
-}
 /**
  * <p>This exception is thrown when the KMS key does not exist, when the S3 bucket and the
  *          KMS key are not in the same region, or when the KMS key associated with the Amazon SNS
@@ -1017,12 +1134,6 @@ export interface KmsKeyNotFoundException extends __SmithyException, $MetadataBea
      */
     Message?: string;
 }
-export declare namespace KmsKeyNotFoundException {
-    /**
-     * @internal
-     */
-    const filterSensitiveLog: (obj: KmsKeyNotFoundException) => any;
-}
 /**
  * <p>This exception is thrown when the maximum number of trails is reached.</p>
  */
@@ -1034,49 +1145,6 @@ export interface MaximumNumberOfTrailsExceededException extends __SmithyExceptio
      */
     Message?: string;
 }
-export declare namespace MaximumNumberOfTrailsExceededException {
-    /**
-     * @internal
-     */
-    const filterSensitiveLog: (obj: MaximumNumberOfTrailsExceededException) => any;
-}
-/**
- * <p>This exception is thrown when Organizations is not configured to support all features. All features must be enabled in Organizations to support
- *          creating an organization trail. For more information, see
- *          <a href="https://docs.aws.amazon.com/awscloudtrail/latest/userguide/creating-an-organizational-trail-prepare.html">Prepare For Creating a Trail For Your Organization</a>.</p>
- */
-export interface OrganizationNotInAllFeaturesModeException extends __SmithyException, $MetadataBearer {
-    name: "OrganizationNotInAllFeaturesModeException";
-    $fault: "client";
-    /**
-     * <p>Brief description of the exception returned by the request.</p>
-     */
-    Message?: string;
-}
-export declare namespace OrganizationNotInAllFeaturesModeException {
-    /**
-     * @internal
-     */
-    const filterSensitiveLog: (obj: OrganizationNotInAllFeaturesModeException) => any;
-}
-/**
- * <p>This exception is thrown when the request is made from an Amazon Web Services account that is not a member of an organization.
- *          To make this request, sign in using the credentials of an account that belongs to an organization.</p>
- */
-export interface OrganizationsNotInUseException extends __SmithyException, $MetadataBearer {
-    name: "OrganizationsNotInUseException";
-    $fault: "client";
-    /**
-     * <p>Brief description of the exception returned by the request.</p>
-     */
-    Message?: string;
-}
-export declare namespace OrganizationsNotInUseException {
-    /**
-     * @internal
-     */
-    const filterSensitiveLog: (obj: OrganizationsNotInUseException) => any;
-}
 /**
  * <p>This exception is thrown when the specified S3 bucket does not exist.</p>
  */
@@ -1088,12 +1156,6 @@ export interface S3BucketDoesNotExistException extends __SmithyException, $Metad
      */
     Message?: string;
 }
-export declare namespace S3BucketDoesNotExistException {
-    /**
-     * @internal
-     */
-    const filterSensitiveLog: (obj: S3BucketDoesNotExistException) => any;
-}
 /**
  * <p>This exception is thrown when the specified trail already exists.</p>
  */
@@ -1105,12 +1167,6 @@ export interface TrailAlreadyExistsException extends __SmithyException, $Metadat
      */
     Message?: string;
 }
-export declare namespace TrailAlreadyExistsException {
-    /**
-     * @internal
-     */
-    const filterSensitiveLog: (obj: TrailAlreadyExistsException) => any;
-}
 /**
  * <p>This exception is no longer in use.</p>
  */
@@ -1122,31 +1178,37 @@ export interface TrailNotProvidedException extends __SmithyException, $MetadataB
      */
     Message?: string;
 }
-export declare namespace TrailNotProvidedException {
+export interface DeleteEventDataStoreRequest {
+    /**
+     * <p>The ARN (or the ID suffix of the ARN) of the event data store to delete.</p>
+     */
+    EventDataStore: string | undefined;
+}
+export declare namespace DeleteEventDataStoreRequest {
+    /**
+     * @internal
+     */
+    const filterSensitiveLog: (obj: DeleteEventDataStoreRequest) => any;
+}
+export interface DeleteEventDataStoreResponse {
+}
+export declare namespace DeleteEventDataStoreResponse {
     /**
      * @internal
      */
-    const filterSensitiveLog: (obj: TrailNotProvidedException) => any;
+    const filterSensitiveLog: (obj: DeleteEventDataStoreResponse) => any;
 }
 /**
- * <p>This exception is thrown when the specified resource is not ready for an operation.
- *          This can occur when you try to run an operation on a trail before CloudTrail has time to fully load the trail.
- *          If this exception occurs, wait a few minutes, and then try the operation again.</p>
+ * <p>The event data store cannot be deleted because termination protection is enabled for it.</p>
  */
-export interface ConflictException extends __SmithyException, $MetadataBearer {
-    name: "ConflictException";
+export interface EventDataStoreTerminationProtectedException extends __SmithyException, $MetadataBearer {
+    name: "EventDataStoreTerminationProtectedException";
     $fault: "client";
     /**
      * <p>Brief description of the exception returned by the request.</p>
      */
     Message?: string;
 }
-export declare namespace ConflictException {
-    /**
-     * @internal
-     */
-    const filterSensitiveLog: (obj: ConflictException) => any;
-}
 /**
  * <p>The request that specifies the name of a trail to delete.</p>
  */
@@ -1187,12 +1249,6 @@ export interface InvalidHomeRegionException extends __SmithyException, $Metadata
      */
     Message?: string;
 }
-export declare namespace InvalidHomeRegionException {
-    /**
-     * @internal
-     */
-    const filterSensitiveLog: (obj: InvalidHomeRegionException) => any;
-}
 /**
  * <p>This exception is thrown when the trail with the given name is not found.</p>
  */
@@ -1204,11 +1260,80 @@ export interface TrailNotFoundException extends __SmithyException, $MetadataBear
      */
     Message?: string;
 }
-export declare namespace TrailNotFoundException {
+export interface DescribeQueryRequest {
+    /**
+     * <p>The ARN (or the ID suffix of the ARN) of an event data store on which the specified query was run.</p>
+     */
+    EventDataStore: string | undefined;
+    /**
+     * <p>The query ID.</p>
+     */
+    QueryId: string | undefined;
+}
+export declare namespace DescribeQueryRequest {
+    /**
+     * @internal
+     */
+    const filterSensitiveLog: (obj: DescribeQueryRequest) => any;
+}
+/**
+ * <p>Gets metadata about a query, including the number of events that were matched, the total number of events scanned, the query run time
+ *          in milliseconds, and the query's creation time.</p>
+ */
+export interface QueryStatisticsForDescribeQuery {
+    /**
+     * <p>The number of events that matched a query.</p>
+     */
+    EventsMatched?: number;
+    /**
+     * <p>The number of events that the query scanned in the event data store.</p>
+     */
+    EventsScanned?: number;
+    /**
+     * <p>The query's run time, in milliseconds.</p>
+     */
+    ExecutionTimeInMillis?: number;
+    /**
+     * <p>The creation time of the query.</p>
+     */
+    CreationTime?: Date;
+}
+export declare namespace QueryStatisticsForDescribeQuery {
+    /**
+     * @internal
+     */
+    const filterSensitiveLog: (obj: QueryStatisticsForDescribeQuery) => any;
+}
+export interface DescribeQueryResponse {
+    /**
+     * <p>The ID of the query.</p>
+     */
+    QueryId?: string;
+    /**
+     * <p>The SQL code of a query.</p>
+     */
+    QueryString?: string;
+    /**
+     * <p>The status of a query. Values for <code>QueryStatus</code> include <code>QUEUED</code>, <code>RUNNING</code>,
+     *          <code>FINISHED</code>, <code>FAILED</code>, or <code>CANCELLED</code>
+     *          </p>
+     */
+    QueryStatus?: QueryStatus | string;
+    /**
+     * <p>Metadata about a query, including the number of events that were matched, the total number of events scanned, the query run time
+     *          in milliseconds, and the query's creation time.</p>
+     */
+    QueryStatistics?: QueryStatisticsForDescribeQuery;
+    /**
+     * <p>The error message returned if a query failed.</p>
+     */
+    ErrorMessage?: string;
+}
+export declare namespace DescribeQueryResponse {
     /**
      * @internal
      */
-    const filterSensitiveLog: (obj: TrailNotFoundException) => any;
+    const filterSensitiveLog: (obj: DescribeQueryResponse) => any;
 }
 /**
  * <p>Returns information about the trail.</p>
@@ -1357,6 +1482,66 @@ export declare namespace DescribeTrailsResponse {
      */
     const filterSensitiveLog: (obj: DescribeTrailsResponse) => any;
 }
+export interface GetEventDataStoreRequest {
+    /**
+     * <p>The ARN (or ID suffix of the ARN) of the event data store about which you want information.</p>
+     */
+    EventDataStore: string | undefined;
+}
+export declare namespace GetEventDataStoreRequest {
+    /**
+     * @internal
+     */
+    const filterSensitiveLog: (obj: GetEventDataStoreRequest) => any;
+}
+export interface GetEventDataStoreResponse {
+    /**
+     * <p>The event data store Amazon Resource Number (ARN).</p>
+     */
+    EventDataStoreArn?: string;
+    /**
+     * <p>The name of the event data store.</p>
+     */
+    Name?: string;
+    /**
+     * <p>The status of an event data store. Values can be <code>ENABLED</code> and <code>PENDING_DELETION</code>.</p>
+     */
+    Status?: EventDataStoreStatus | string;
+    /**
+     * <p>The advanced event selectors used to select events for the data store.</p>
+     */
+    AdvancedEventSelectors?: AdvancedEventSelector[];
+    /**
+     * <p>Indicates whether the event data store includes events from all regions, or only from the region in which it was created.</p>
+     */
+    MultiRegionEnabled?: boolean;
+    /**
+     * <p>Indicates whether an event data store is collecting logged events for an organization in Organizations.</p>
+     */
+    OrganizationEnabled?: boolean;
+    /**
+     * <p>The retention period of the event data store, in days.</p>
+     */
+    RetentionPeriod?: number;
+    /**
+     * <p>Indicates that termination protection is enabled.</p>
+     */
+    TerminationProtectionEnabled?: boolean;
+    /**
+     * <p>The timestamp of the event data store's creation.</p>
+     */
+    CreatedTimestamp?: Date;
+    /**
+     * <p>Shows the time that an event data store was updated, if applicable. <code>UpdatedTimestamp</code> is always either the same or newer than the time shown in <code>CreatedTimestamp</code>.</p>
+     */
+    UpdatedTimestamp?: Date;
+}
+export declare namespace GetEventDataStoreResponse {
+    /**
+     * @internal
+     */
+    const filterSensitiveLog: (obj: GetEventDataStoreResponse) => any;
+}
 export interface GetEventSelectorsRequest {
     /**
      * <p>Specifies the name of the trail or trail ARN. If you specify a trail name, the
@@ -1682,7 +1867,7 @@ export declare enum InsightType {
  */
 export interface InsightSelector {
     /**
-     * <p>The type of Insights events to log on a trail. The valid Insights type in this release is <code>ApiCallRateInsight</code>.</p>
+     * <p>The type of insights to log on a trail. <code>ApiCallRateInsight</code> and <code>ApiErrorRateInsight</code> are valid insight types.</p>
      */
     InsightType?: InsightType | string;
 }
@@ -1698,7 +1883,8 @@ export interface GetInsightSelectorsResponse {
      */
     TrailARN?: string;
     /**
-     * <p>A JSON string that contains the insight types you want to log on a trail. In this release, only <code>ApiCallRateInsight</code> is supported as an insight type.</p>
+     * <p>A JSON string that contains the insight types you want to log on a trail. In this release, <code>ApiErrorRateInsight</code> and
+     *          <code>ApiCallRateInsight</code> are supported as insight types.</p>
      */
     InsightSelectors?: InsightSelector[];
 }
@@ -1719,11 +1905,101 @@ export interface InsightNotEnabledException extends __SmithyException, $Metadata
      */
     Message?: string;
 }
-export declare namespace InsightNotEnabledException {
+export interface GetQueryResultsRequest {
+    /**
+     * <p>The ARN (or ID suffix of the ARN) of the event data store against which the query was run.</p>
+     */
+    EventDataStore: string | undefined;
+    /**
+     * <p>The ID of the query for which you want to get results.</p>
+     */
+    QueryId: string | undefined;
+    /**
+     * <p>A token you can use to get the next page of query results.</p>
+     */
+    NextToken?: string;
+    /**
+     * <p>The maximum number of query results to display on a single page.</p>
+     */
+    MaxQueryResults?: number;
+}
+export declare namespace GetQueryResultsRequest {
+    /**
+     * @internal
+     */
+    const filterSensitiveLog: (obj: GetQueryResultsRequest) => any;
+}
+/**
+ * <p>Metadata about a query, such as the number of results.</p>
+ */
+export interface QueryStatistics {
+    /**
+     * <p>The number of results returned.</p>
+     */
+    ResultsCount?: number;
+    /**
+     * <p>The total number of results returned by a query.</p>
+     */
+    TotalResultsCount?: number;
+}
+export declare namespace QueryStatistics {
+    /**
+     * @internal
+     */
+    const filterSensitiveLog: (obj: QueryStatistics) => any;
+}
+export interface GetQueryResultsResponse {
+    /**
+     * <p>The status of the query. Values include <code>QUEUED</code>, <code>RUNNING</code>, <code>FINISHED</code>, <code>FAILED</code>,
+     *          or <code>CANCELLED</code>.</p>
+     */
+    QueryStatus?: QueryStatus | string;
+    /**
+     * <p>Shows the count of query results.</p>
+     */
+    QueryStatistics?: QueryStatistics;
+    /**
+     * <p>Contains the individual event results of the query.</p>
+     */
+    QueryResultRows?: {
+        [key: string]: string;
+    }[][];
+    /**
+     * <p>A token you can use to get the next page of query results.</p>
+     */
+    NextToken?: string;
+    /**
+     * <p>The error message returned if a query failed.</p>
+     */
+    ErrorMessage?: string;
+}
+export declare namespace GetQueryResultsResponse {
     /**
      * @internal
      */
-    const filterSensitiveLog: (obj: InsightNotEnabledException) => any;
+    const filterSensitiveLog: (obj: GetQueryResultsResponse) => any;
+}
+/**
+ * <p>This exception is thrown if the limit specified is not valid.</p>
+ */
+export interface InvalidMaxResultsException extends __SmithyException, $MetadataBearer {
+    name: "InvalidMaxResultsException";
+    $fault: "client";
+    /**
+     * <p>Brief description of the exception returned by the request.</p>
+     */
+    Message?: string;
+}
+/**
+ * <p>A token that is not valid, or a token that was previously used in a request with different parameters. This exception is thrown if the token is not valid.</p>
+ */
+export interface InvalidNextTokenException extends __SmithyException, $MetadataBearer {
+    name: "InvalidNextTokenException";
+    $fault: "client";
+    /**
+     * <p>Brief description of the exception returned by the request.</p>
+     */
+    Message?: string;
 }
 export interface GetTrailRequest {
     /**
@@ -1865,43 +2141,117 @@ export declare namespace GetTrailStatusResponse {
      */
     const filterSensitiveLog: (obj: GetTrailStatusResponse) => any;
 }
-/**
- * <p>Occurs if the timestamp values are not valid. Either the start time occurs after the end time, or the time range is outside the range of possible values.</p>
- */
-export interface InvalidTimeRangeException extends __SmithyException, $MetadataBearer {
-    name: "InvalidTimeRangeException";
-    $fault: "client";
+export interface ListEventDataStoresRequest {
     /**
-     * <p>Brief description of the exception returned by the request.</p>
+     * <p>A token you can use to get the next page of event data store results.</p>
      */
-    Message?: string;
+    NextToken?: string;
+    /**
+     * <p>The maximum number of event data stores to display on a single page.</p>
+     */
+    MaxResults?: number;
 }
-export declare namespace InvalidTimeRangeException {
+export declare namespace ListEventDataStoresRequest {
     /**
      * @internal
      */
-    const filterSensitiveLog: (obj: InvalidTimeRangeException) => any;
+    const filterSensitiveLog: (obj: ListEventDataStoresRequest) => any;
 }
 /**
- * <p>Reserved for future use.</p>
+ * <p>A storage lake of event data against which you can run complex SQL-based queries. An event data store can include events
+ *          that you have logged on your account from the last 90 to 2555 days
+ *          (about three months to up to seven years). To select events for an event data store,
+ *          use <a href="https://docs.aws.amazon.com/awscloudtrail/latest/userguide/logging-data-events-with-cloudtrail.html#creating-data-event-selectors-advanced">advanced event selectors</a>.</p>
  */
-export interface InvalidTokenException extends __SmithyException, $MetadataBearer {
-    name: "InvalidTokenException";
-    $fault: "client";
+export interface EventDataStore {
     /**
-     * <p>Brief description of the exception returned by the request.</p>
+     * <p>The ARN of the event data store.</p>
      */
-    Message?: string;
-}
-export declare namespace InvalidTokenException {
+    EventDataStoreArn?: string;
     /**
-     * @internal
+     * <p>The name of the event data store.</p>
      */
-    const filterSensitiveLog: (obj: InvalidTokenException) => any;
-}
-/**
- * <p>Requests the public keys for a specified time range.</p>
- */
+    Name?: string;
+    /**
+     * <p>Indicates whether the event data store is protected from termination.</p>
+     */
+    TerminationProtectionEnabled?: boolean;
+    /**
+     * <p>The status of an event data store. Values are <code>ENABLED</code> and <code>PENDING_DELETION</code>.</p>
+     */
+    Status?: EventDataStoreStatus | string;
+    /**
+     * <p>The advanced event selectors that were used to select events for the data store.</p>
+     */
+    AdvancedEventSelectors?: AdvancedEventSelector[];
+    /**
+     * <p>Indicates whether the event data store includes events from all regions, or only from the region in which it was created.</p>
+     */
+    MultiRegionEnabled?: boolean;
+    /**
+     * <p>Indicates that an event data store is collecting logged events for an organization.</p>
+     */
+    OrganizationEnabled?: boolean;
+    /**
+     * <p>The retention period, in days.</p>
+     */
+    RetentionPeriod?: number;
+    /**
+     * <p>The timestamp of the event data store's creation.</p>
+     */
+    CreatedTimestamp?: Date;
+    /**
+     * <p>The timestamp showing when an event data store was updated, if applicable. <code>UpdatedTimestamp</code> is always either the same or newer than the time shown in <code>CreatedTimestamp</code>.</p>
+     */
+    UpdatedTimestamp?: Date;
+}
+export declare namespace EventDataStore {
+    /**
+     * @internal
+     */
+    const filterSensitiveLog: (obj: EventDataStore) => any;
+}
+export interface ListEventDataStoresResponse {
+    /**
+     * <p>Contains information about event data stores in the account, in the current region.</p>
+     */
+    EventDataStores?: EventDataStore[];
+    /**
+     * <p>A token you can use to get the next page of results.</p>
+     */
+    NextToken?: string;
+}
+export declare namespace ListEventDataStoresResponse {
+    /**
+     * @internal
+     */
+    const filterSensitiveLog: (obj: ListEventDataStoresResponse) => any;
+}
+/**
+ * <p>Occurs if the timestamp values are not valid. Either the start time occurs after the end time, or the time range is outside the range of possible values.</p>
+ */
+export interface InvalidTimeRangeException extends __SmithyException, $MetadataBearer {
+    name: "InvalidTimeRangeException";
+    $fault: "client";
+    /**
+     * <p>Brief description of the exception returned by the request.</p>
+     */
+    Message?: string;
+}
+/**
+ * <p>Reserved for future use.</p>
+ */
+export interface InvalidTokenException extends __SmithyException, $MetadataBearer {
+    name: "InvalidTokenException";
+    $fault: "client";
+    /**
+     * <p>Brief description of the exception returned by the request.</p>
+     */
+    Message?: string;
+}
+/**
+ * <p>Requests the public keys for a specified time range.</p>
+ */
 export interface ListPublicKeysRequest {
     /**
      * <p>Optionally specifies, in UTC, the start of the time range to look up public keys for CloudTrail digest files.
@@ -1973,6 +2323,105 @@ export declare namespace ListPublicKeysResponse {
      */
     const filterSensitiveLog: (obj: ListPublicKeysResponse) => any;
 }
+/**
+ * <p>A date range for the query was specified that is not valid. For more information
+ *          about writing a query, see <a href="https://docs.aws.amazon.com/awscloudtrail/latest/userguide/query-create-edit-query.html">Create
+ *             or edit a query</a> in the <i>CloudTrail User Guide</i>.</p>
+ */
+export interface InvalidDateRangeException extends __SmithyException, $MetadataBearer {
+    name: "InvalidDateRangeException";
+    $fault: "client";
+    /**
+     * <p>Brief description of the exception returned by the request.</p>
+     */
+    Message?: string;
+}
+/**
+ * <p>The query status is not valid for the operation.</p>
+ */
+export interface InvalidQueryStatusException extends __SmithyException, $MetadataBearer {
+    name: "InvalidQueryStatusException";
+    $fault: "client";
+    /**
+     * <p>Brief description of the exception returned by the request.</p>
+     */
+    Message?: string;
+}
+export interface ListQueriesRequest {
+    /**
+     * <p>The ARN (or the ID suffix of the ARN) of an event data store on which queries were run.</p>
+     */
+    EventDataStore: string | undefined;
+    /**
+     * <p>A token you can use to get the next page of results.</p>
+     */
+    NextToken?: string;
+    /**
+     * <p>The maximum number of queries to show on a page.</p>
+     */
+    MaxResults?: number;
+    /**
+     * <p>Use with <code>EndTime</code> to bound a <code>ListQueries</code> request, and limit its results to only those queries run
+     *          within a specified time period.</p>
+     */
+    StartTime?: Date;
+    /**
+     * <p>Use with <code>StartTime</code> to bound a <code>ListQueries</code> request, and limit its results to only those queries run
+     *       within a specified time period.</p>
+     */
+    EndTime?: Date;
+    /**
+     * <p>The status of queries that you want to return in results. Valid values for <code>QueryStatus</code> include <code>QUEUED</code>, <code>RUNNING</code>,
+     *          <code>FINISHED</code>, <code>FAILED</code>, or <code>CANCELLED</code>.</p>
+     */
+    QueryStatus?: QueryStatus | string;
+}
+export declare namespace ListQueriesRequest {
+    /**
+     * @internal
+     */
+    const filterSensitiveLog: (obj: ListQueriesRequest) => any;
+}
+/**
+ * <p>A SQL string of criteria about events that you want to collect in an event data store.</p>
+ */
+export interface Query {
+    /**
+     * <p>The ID of a query.</p>
+     */
+    QueryId?: string;
+    /**
+     * <p>The status of the query. This can be <code>QUEUED</code>, <code>RUNNING</code>, <code>FINISHED</code>, <code>FAILED</code>,
+     *          or <code>CANCELLED</code>.</p>
+     */
+    QueryStatus?: QueryStatus | string;
+    /**
+     * <p>The creation time of a query.</p>
+     */
+    CreationTime?: Date;
+}
+export declare namespace Query {
+    /**
+     * @internal
+     */
+    const filterSensitiveLog: (obj: Query) => any;
+}
+export interface ListQueriesResponse {
+    /**
+     * <p>Lists matching query results, and shows query ID, status, and creation time of each query.</p>
+     */
+    Queries?: Query[];
+    /**
+     * <p>A token you can use to get the next page of results.</p>
+     */
+    NextToken?: string;
+}
+export declare namespace ListQueriesResponse {
+    /**
+     * @internal
+     */
+    const filterSensitiveLog: (obj: ListQueriesResponse) => any;
+}
 /**
  * <p>Specifies a list of trail tags to return.</p>
  */
@@ -2102,12 +2551,6 @@ export interface InvalidEventCategoryException extends __SmithyException, $Metad
      */
     Message?: string;
 }
-export declare namespace InvalidEventCategoryException {
-    /**
-     * @internal
-     */
-    const filterSensitiveLog: (obj: InvalidEventCategoryException) => any;
-}
 /**
  * <p>Occurs when a lookup attribute is specified that is not valid.</p>
  */
@@ -2119,46 +2562,6 @@ export interface InvalidLookupAttributesException extends __SmithyException, $Me
      */
     Message?: string;
 }
-export declare namespace InvalidLookupAttributesException {
-    /**
-     * @internal
-     */
-    const filterSensitiveLog: (obj: InvalidLookupAttributesException) => any;
-}
-/**
- * <p>This exception is thrown if the limit specified is not valid.</p>
- */
-export interface InvalidMaxResultsException extends __SmithyException, $MetadataBearer {
-    name: "InvalidMaxResultsException";
-    $fault: "client";
-    /**
-     * <p>Brief description of the exception returned by the request.</p>
-     */
-    Message?: string;
-}
-export declare namespace InvalidMaxResultsException {
-    /**
-     * @internal
-     */
-    const filterSensitiveLog: (obj: InvalidMaxResultsException) => any;
-}
-/**
- * <p>A token that is not valid, or a token that was previously used in a request with different parameters. This exception is thrown if the token is not valid.</p>
- */
-export interface InvalidNextTokenException extends __SmithyException, $MetadataBearer {
-    name: "InvalidNextTokenException";
-    $fault: "client";
-    /**
-     * <p>Brief description of the exception returned by the request.</p>
-     */
-    Message?: string;
-}
-export declare namespace InvalidNextTokenException {
-    /**
-     * @internal
-     */
-    const filterSensitiveLog: (obj: InvalidNextTokenException) => any;
-}
 export declare enum EventCategory {
     Insight = "insight"
 }
@@ -2353,12 +2756,6 @@ export interface InvalidEventSelectorsException extends __SmithyException, $Meta
      */
     Message?: string;
 }
-export declare namespace InvalidEventSelectorsException {
-    /**
-     * @internal
-     */
-    const filterSensitiveLog: (obj: InvalidEventSelectorsException) => any;
-}
 export interface PutEventSelectorsRequest {
     /**
      * <p>Specifies the name of the trail or trail ARN. If you specify a trail name, the
@@ -2447,19 +2844,13 @@ export interface InvalidInsightSelectorsException extends __SmithyException, $Me
      */
     Message?: string;
 }
-export declare namespace InvalidInsightSelectorsException {
-    /**
-     * @internal
-     */
-    const filterSensitiveLog: (obj: InvalidInsightSelectorsException) => any;
-}
 export interface PutInsightSelectorsRequest {
     /**
      * <p>The name of the CloudTrail trail for which you want to change or add Insights selectors.</p>
      */
     TrailName: string | undefined;
     /**
-     * <p>A JSON string that contains the Insights types that you want to log on a trail. The valid Insights type in this release is <code>ApiCallRateInsight</code>.</p>
+     * <p>A JSON string that contains the insight types you want to log on a trail. <code>ApiCallRateInsight</code> and <code>ApiErrorRateInsight</code> are valid insight types.</p>
      */
     InsightSelectors: InsightSelector[] | undefined;
 }
@@ -2475,7 +2866,8 @@ export interface PutInsightSelectorsResponse {
      */
     TrailARN?: string;
     /**
-     * <p>A JSON string that contains the Insights event types that you want to log on a trail. The valid Insights type in this release is <code>ApiCallRateInsight</code>.</p>
+     * <p>A JSON string that contains the Insights event types that you want to log on a trail. The valid Insights types in this release are
+     *          <code>ApiErrorRateInsight</code> and <code>ApiCallRateInsight</code>.</p>
      */
     InsightSelectors?: InsightSelector[];
 }
@@ -2499,7 +2891,7 @@ export interface RemoveTagsRequest {
     /**
      * <p>Specifies a list of tags to be removed.</p>
      */
-    TagsList?: Tag[];
+    TagsList: Tag[] | undefined;
 }
 export declare namespace RemoveTagsRequest {
     /**
@@ -2518,6 +2910,79 @@ export declare namespace RemoveTagsResponse {
      */
     const filterSensitiveLog: (obj: RemoveTagsResponse) => any;
 }
+/**
+ * <p>The event data store is not in a status that supports the operation.</p>
+ */
+export interface InvalidEventDataStoreStatusException extends __SmithyException, $MetadataBearer {
+    name: "InvalidEventDataStoreStatusException";
+    $fault: "client";
+    /**
+     * <p>Brief description of the exception returned by the request.</p>
+     */
+    Message?: string;
+}
+export interface RestoreEventDataStoreRequest {
+    /**
+     * <p>The ARN (or the ID suffix of the ARN) of the event data store that you want to restore.</p>
+     */
+    EventDataStore: string | undefined;
+}
+export declare namespace RestoreEventDataStoreRequest {
+    /**
+     * @internal
+     */
+    const filterSensitiveLog: (obj: RestoreEventDataStoreRequest) => any;
+}
+export interface RestoreEventDataStoreResponse {
+    /**
+     * <p>The event data store ARN.</p>
+     */
+    EventDataStoreArn?: string;
+    /**
+     * <p>The name of the event data store.</p>
+     */
+    Name?: string;
+    /**
+     * <p>The status of the event data store.</p>
+     */
+    Status?: EventDataStoreStatus | string;
+    /**
+     * <p>The advanced event selectors that were used to select events.</p>
+     */
+    AdvancedEventSelectors?: AdvancedEventSelector[];
+    /**
+     * <p>Indicates whether the event data store is collecting events from all regions, or only from the region in which the event data
+     *       store was created.</p>
+     */
+    MultiRegionEnabled?: boolean;
+    /**
+     * <p>Indicates whether an event data store is collecting logged events for an organization in Organizations.</p>
+     */
+    OrganizationEnabled?: boolean;
+    /**
+     * <p>The retention period, in days.</p>
+     */
+    RetentionPeriod?: number;
+    /**
+     * <p>Indicates that termination protection is enabled and the event data store cannot be automatically deleted.</p>
+     */
+    TerminationProtectionEnabled?: boolean;
+    /**
+     * <p>The timestamp of an event data store's creation.</p>
+     */
+    CreatedTimestamp?: Date;
+    /**
+     * <p>The timestamp that shows when an event data store was updated, if applicable.
+     *          <code>UpdatedTimestamp</code> is always either the same or newer than the time shown in <code>CreatedTimestamp</code>.</p>
+     */
+    UpdatedTimestamp?: Date;
+}
+export declare namespace RestoreEventDataStoreResponse {
+    /**
+     * @internal
+     */
+    const filterSensitiveLog: (obj: RestoreEventDataStoreResponse) => any;
+}
 /**
  * <p>The request to CloudTrail to start logging Amazon Web Services API calls for an account.</p>
  */
@@ -2548,6 +3013,55 @@ export declare namespace StartLoggingResponse {
      */
     const filterSensitiveLog: (obj: StartLoggingResponse) => any;
 }
+/**
+ * <p>The query that was submitted has validation errors, or uses incorrect syntax or unsupported keywords. For more information
+ *          about writing a query, see <a href="https://docs.aws.amazon.com/awscloudtrail/latest/userguide/query-create-edit-query.html">Create
+ *             or edit a query</a> in the <i>CloudTrail User Guide</i>.</p>
+ */
+export interface InvalidQueryStatementException extends __SmithyException, $MetadataBearer {
+    name: "InvalidQueryStatementException";
+    $fault: "client";
+    /**
+     * <p>Brief description of the exception returned by the request.</p>
+     */
+    Message?: string;
+}
+/**
+ * <p>You are already running the maximum number of concurrent queries. Wait a minute for some queries to finish, and then
+ *          run the query again.</p>
+ */
+export interface MaxConcurrentQueriesException extends __SmithyException, $MetadataBearer {
+    name: "MaxConcurrentQueriesException";
+    $fault: "client";
+    /**
+     * <p>Brief description of the exception returned by the request.</p>
+     */
+    Message?: string;
+}
+export interface StartQueryRequest {
+    /**
+     * <p>The SQL code of your query.</p>
+     */
+    QueryStatement: string | undefined;
+}
+export declare namespace StartQueryRequest {
+    /**
+     * @internal
+     */
+    const filterSensitiveLog: (obj: StartQueryRequest) => any;
+}
+export interface StartQueryResponse {
+    /**
+     * <p>The ID of the started query.</p>
+     */
+    QueryId?: string;
+}
+export declare namespace StartQueryResponse {
+    /**
+     * @internal
+     */
+    const filterSensitiveLog: (obj: StartQueryResponse) => any;
+}
 /**
  * <p>Passes the request to CloudTrail to stop logging Amazon Web Services API calls for the specified account.</p>
  */
@@ -2578,6 +3092,90 @@ export declare namespace StopLoggingResponse {
      */
     const filterSensitiveLog: (obj: StopLoggingResponse) => any;
 }
+export interface UpdateEventDataStoreRequest {
+    /**
+     * <p>The ARN (or the ID suffix of the ARN) of the event data store that you want to update.</p>
+     */
+    EventDataStore: string | undefined;
+    /**
+     * <p>The event data store name.</p>
+     */
+    Name?: string;
+    /**
+     * <p>The advanced event selectors used to select events for the event data store.</p>
+     */
+    AdvancedEventSelectors?: AdvancedEventSelector[];
+    /**
+     * <p>Specifies whether an event data store collects events from all regions, or only from the region in which it was created.</p>
+     */
+    MultiRegionEnabled?: boolean;
+    /**
+     * <p>Specifies whether an event data store collects events logged for an organization in Organizations.</p>
+     */
+    OrganizationEnabled?: boolean;
+    /**
+     * <p>The retention period, in days.</p>
+     */
+    RetentionPeriod?: number;
+    /**
+     * <p>Indicates that termination protection is enabled and the event data store cannot be automatically deleted.</p>
+     */
+    TerminationProtectionEnabled?: boolean;
+}
+export declare namespace UpdateEventDataStoreRequest {
+    /**
+     * @internal
+     */
+    const filterSensitiveLog: (obj: UpdateEventDataStoreRequest) => any;
+}
+export interface UpdateEventDataStoreResponse {
+    /**
+     * <p>The ARN of the event data store.</p>
+     */
+    EventDataStoreArn?: string;
+    /**
+     * <p>The name of the event data store.</p>
+     */
+    Name?: string;
+    /**
+     * <p>The status of an event data store. Values can be <code>ENABLED</code> and <code>PENDING_DELETION</code>.</p>
+     */
+    Status?: EventDataStoreStatus | string;
+    /**
+     * <p>The advanced event selectors that are applied to the event data store.</p>
+     */
+    AdvancedEventSelectors?: AdvancedEventSelector[];
+    /**
+     * <p>Indicates whether the event data store includes events from all regions, or only from the region in which it was created.</p>
+     */
+    MultiRegionEnabled?: boolean;
+    /**
+     * <p>Indicates whether an event data store is collecting logged events for an organization in Organizations.</p>
+     */
+    OrganizationEnabled?: boolean;
+    /**
+     * <p>The retention period, in days.</p>
+     */
+    RetentionPeriod?: number;
+    /**
+     * <p>Indicates whether termination protection is enabled for the event data store.</p>
+     */
+    TerminationProtectionEnabled?: boolean;
+    /**
+     * <p>The timestamp that shows when an event data store was first created.</p>
+     */
+    CreatedTimestamp?: Date;
+    /**
+     * <p>The timestamp that shows when the event data store was last updated. <code>UpdatedTimestamp</code> is always either the same or newer than the time shown in <code>CreatedTimestamp</code>.</p>
+     */
+    UpdatedTimestamp?: Date;
+}
+export declare namespace UpdateEventDataStoreResponse {
+    /**
+     * @internal
+     */
+    const filterSensitiveLog: (obj: UpdateEventDataStoreResponse) => any;
+}
 /**
  * <p>Specifies settings to update for the trail.</p>
  */