@aws-sdk/client-detective 3.451.0 → 3.458.0

package/dist-cjs/models/models_0.js

@@ -1,6 +1,6 @@
 "use strict";
 Object.defineProperty(exports, "__esModule", { value: true });
-exports.ListMembersResponseFilterSensitiveLog = exports.ListInvitationsResponseFilterSensitiveLog = exports.GetMembersResponseFilterSensitiveLog = exports.CreateMembersResponseFilterSensitiveLog = exports.MemberDetailFilterSensitiveLog = exports.CreateMembersRequestFilterSensitiveLog = exports.AccountFilterSensitiveLog = exports.TooManyRequestsException = exports.MemberStatus = exports.InvitationType = exports.MemberDisabledReason = exports.ServiceQuotaExceededException = exports.DatasourcePackageIngestState = exports.DatasourcePackage = exports.ValidationException = exports.ResourceNotFoundException = exports.InternalServerException = exports.ConflictException = exports.AccessDeniedException = exports.ErrorCode = void 0;
+exports.ListMembersResponseFilterSensitiveLog = exports.ListInvitationsResponseFilterSensitiveLog = exports.GetMembersResponseFilterSensitiveLog = exports.CreateMembersResponseFilterSensitiveLog = exports.MemberDetailFilterSensitiveLog = exports.CreateMembersRequestFilterSensitiveLog = exports.AccountFilterSensitiveLog = exports.SortOrder = exports.Field = exports.Reason = exports.IndicatorType = exports.Status = exports.State = exports.Severity = exports.EntityType = exports.TooManyRequestsException = exports.MemberStatus = exports.InvitationType = exports.MemberDisabledReason = exports.ServiceQuotaExceededException = exports.DatasourcePackageIngestState = exports.DatasourcePackage = exports.ValidationException = exports.ResourceNotFoundException = exports.InternalServerException = exports.ConflictException = exports.AccessDeniedException = exports.ErrorCode = void 0;
 const smithy_client_1 = require("@smithy/smithy-client");
 const DetectiveServiceException_1 = require("./DetectiveServiceException");
 exports.ErrorCode = {
@@ -138,6 +138,48 @@ class TooManyRequestsException extends DetectiveServiceException_1.DetectiveServ
     }
 }
 exports.TooManyRequestsException = TooManyRequestsException;
+exports.EntityType = {
+    IAM_ROLE: "IAM_ROLE",
+    IAM_USER: "IAM_USER",
+};
+exports.Severity = {
+    CRITICAL: "CRITICAL",
+    HIGH: "HIGH",
+    INFORMATIONAL: "INFORMATIONAL",
+    LOW: "LOW",
+    MEDIUM: "MEDIUM",
+};
+exports.State = {
+    ACTIVE: "ACTIVE",
+    ARCHIVED: "ARCHIVED",
+};
+exports.Status = {
+    FAILED: "FAILED",
+    RUNNING: "RUNNING",
+    SUCCESSFUL: "SUCCESSFUL",
+};
+exports.IndicatorType = {
+    FLAGGED_IP_ADDRESS: "FLAGGED_IP_ADDRESS",
+    IMPOSSIBLE_TRAVEL: "IMPOSSIBLE_TRAVEL",
+    NEW_ASO: "NEW_ASO",
+    NEW_GEOLOCATION: "NEW_GEOLOCATION",
+    NEW_USER_AGENT: "NEW_USER_AGENT",
+    RELATED_FINDING: "RELATED_FINDING",
+    RELATED_FINDING_GROUP: "RELATED_FINDING_GROUP",
+    TTP_OBSERVED: "TTP_OBSERVED",
+};
+exports.Reason = {
+    AWS_THREAT_INTELLIGENCE: "AWS_THREAT_INTELLIGENCE",
+};
+exports.Field = {
+    CREATED_TIME: "CREATED_TIME",
+    SEVERITY: "SEVERITY",
+    STATUS: "STATUS",
+};
+exports.SortOrder = {
+    ASC: "ASC",
+    DESC: "DESC",
+};
 const AccountFilterSensitiveLog = (obj) => ({
     ...obj,
     ...(obj.EmailAddress && { EmailAddress: smithy_client_1.SENSITIVE_STRING }),

package/dist-cjs/protocols/Aws_restJson1.js

@@ -1,6 +1,7 @@
 "use strict";
 Object.defineProperty(exports, "__esModule", { value: true });
-exports.de_UpdateOrganizationConfigurationCommand = exports.de_UpdateDatasourcePackagesCommand = exports.de_UntagResourceCommand = exports.de_TagResourceCommand = exports.de_StartMonitoringMemberCommand = exports.de_RejectInvitationCommand = exports.de_ListTagsForResourceCommand = exports.de_ListOrganizationAdminAccountsCommand = exports.de_ListMembersCommand = exports.de_ListInvitationsCommand = exports.de_ListGraphsCommand = exports.de_ListDatasourcePackagesCommand = exports.de_GetMembersCommand = exports.de_EnableOrganizationAdminAccountCommand = exports.de_DisassociateMembershipCommand = exports.de_DisableOrganizationAdminAccountCommand = exports.de_DescribeOrganizationConfigurationCommand = exports.de_DeleteMembersCommand = exports.de_DeleteGraphCommand = exports.de_CreateMembersCommand = exports.de_CreateGraphCommand = exports.de_BatchGetMembershipDatasourcesCommand = exports.de_BatchGetGraphMemberDatasourcesCommand = exports.de_AcceptInvitationCommand = exports.se_UpdateOrganizationConfigurationCommand = exports.se_UpdateDatasourcePackagesCommand = exports.se_UntagResourceCommand = exports.se_TagResourceCommand = exports.se_StartMonitoringMemberCommand = exports.se_RejectInvitationCommand = exports.se_ListTagsForResourceCommand = exports.se_ListOrganizationAdminAccountsCommand = exports.se_ListMembersCommand = exports.se_ListInvitationsCommand = exports.se_ListGraphsCommand = exports.se_ListDatasourcePackagesCommand = exports.se_GetMembersCommand = exports.se_EnableOrganizationAdminAccountCommand = exports.se_DisassociateMembershipCommand = exports.se_DisableOrganizationAdminAccountCommand = exports.se_DescribeOrganizationConfigurationCommand = exports.se_DeleteMembersCommand = exports.se_DeleteGraphCommand = exports.se_CreateMembersCommand = exports.se_CreateGraphCommand = exports.se_BatchGetMembershipDatasourcesCommand = exports.se_BatchGetGraphMemberDatasourcesCommand = exports.se_AcceptInvitationCommand = void 0;
+exports.de_ListTagsForResourceCommand = exports.de_ListOrganizationAdminAccountsCommand = exports.de_ListMembersCommand = exports.de_ListInvitationsCommand = exports.de_ListInvestigationsCommand = exports.de_ListIndicatorsCommand = exports.de_ListGraphsCommand = exports.de_ListDatasourcePackagesCommand = exports.de_GetMembersCommand = exports.de_GetInvestigationCommand = exports.de_EnableOrganizationAdminAccountCommand = exports.de_DisassociateMembershipCommand = exports.de_DisableOrganizationAdminAccountCommand = exports.de_DescribeOrganizationConfigurationCommand = exports.de_DeleteMembersCommand = exports.de_DeleteGraphCommand = exports.de_CreateMembersCommand = exports.de_CreateGraphCommand = exports.de_BatchGetMembershipDatasourcesCommand = exports.de_BatchGetGraphMemberDatasourcesCommand = exports.de_AcceptInvitationCommand = exports.se_UpdateOrganizationConfigurationCommand = exports.se_UpdateInvestigationStateCommand = exports.se_UpdateDatasourcePackagesCommand = exports.se_UntagResourceCommand = exports.se_TagResourceCommand = exports.se_StartMonitoringMemberCommand = exports.se_StartInvestigationCommand = exports.se_RejectInvitationCommand = exports.se_ListTagsForResourceCommand = exports.se_ListOrganizationAdminAccountsCommand = exports.se_ListMembersCommand = exports.se_ListInvitationsCommand = exports.se_ListInvestigationsCommand = exports.se_ListIndicatorsCommand = exports.se_ListGraphsCommand = exports.se_ListDatasourcePackagesCommand = exports.se_GetMembersCommand = exports.se_GetInvestigationCommand = exports.se_EnableOrganizationAdminAccountCommand = exports.se_DisassociateMembershipCommand = exports.se_DisableOrganizationAdminAccountCommand = exports.se_DescribeOrganizationConfigurationCommand = exports.se_DeleteMembersCommand = exports.se_DeleteGraphCommand = exports.se_CreateMembersCommand = exports.se_CreateGraphCommand = exports.se_BatchGetMembershipDatasourcesCommand = exports.se_BatchGetGraphMemberDatasourcesCommand = exports.se_AcceptInvitationCommand = void 0;
+exports.de_UpdateOrganizationConfigurationCommand = exports.de_UpdateInvestigationStateCommand = exports.de_UpdateDatasourcePackagesCommand = exports.de_UntagResourceCommand = exports.de_TagResourceCommand = exports.de_StartMonitoringMemberCommand = exports.de_StartInvestigationCommand = exports.de_RejectInvitationCommand = void 0;
 const protocol_http_1 = require("@smithy/protocol-http");
 const smithy_client_1 = require("@smithy/smithy-client");
 const DetectiveServiceException_1 = require("../models/DetectiveServiceException");
@@ -239,6 +240,28 @@ const se_EnableOrganizationAdminAccountCommand = async (input, context) => {
     });
 };
 exports.se_EnableOrganizationAdminAccountCommand = se_EnableOrganizationAdminAccountCommand;
+const se_GetInvestigationCommand = async (input, context) => {
+    const { hostname, protocol = "https", port, path: basePath } = await context.endpoint();
+    const headers = {
+        "content-type": "application/json",
+    };
+    const resolvedPath = `${basePath?.endsWith("/") ? basePath.slice(0, -1) : basePath || ""}` + "/investigations/getInvestigation";
+    let body;
+    body = JSON.stringify((0, smithy_client_1.take)(input, {
+        GraphArn: [],
+        InvestigationId: [],
+    }));
+    return new protocol_http_1.HttpRequest({
+        protocol,
+        hostname,
+        port,
+        method: "POST",
+        headers,
+        path: resolvedPath,
+        body,
+    });
+};
+exports.se_GetInvestigationCommand = se_GetInvestigationCommand;
 const se_GetMembersCommand = async (input, context) => {
     const { hostname, protocol = "https", port, path: basePath } = await context.endpoint();
     const headers = {
@@ -306,6 +329,56 @@ const se_ListGraphsCommand = async (input, context) => {
     });
 };
 exports.se_ListGraphsCommand = se_ListGraphsCommand;
+const se_ListIndicatorsCommand = async (input, context) => {
+    const { hostname, protocol = "https", port, path: basePath } = await context.endpoint();
+    const headers = {
+        "content-type": "application/json",
+    };
+    const resolvedPath = `${basePath?.endsWith("/") ? basePath.slice(0, -1) : basePath || ""}` + "/investigations/listIndicators";
+    let body;
+    body = JSON.stringify((0, smithy_client_1.take)(input, {
+        GraphArn: [],
+        IndicatorType: [],
+        InvestigationId: [],
+        MaxResults: [],
+        NextToken: [],
+    }));
+    return new protocol_http_1.HttpRequest({
+        protocol,
+        hostname,
+        port,
+        method: "POST",
+        headers,
+        path: resolvedPath,
+        body,
+    });
+};
+exports.se_ListIndicatorsCommand = se_ListIndicatorsCommand;
+const se_ListInvestigationsCommand = async (input, context) => {
+    const { hostname, protocol = "https", port, path: basePath } = await context.endpoint();
+    const headers = {
+        "content-type": "application/json",
+    };
+    const resolvedPath = `${basePath?.endsWith("/") ? basePath.slice(0, -1) : basePath || ""}` + "/investigations/listInvestigations";
+    let body;
+    body = JSON.stringify((0, smithy_client_1.take)(input, {
+        FilterCriteria: (_) => se_FilterCriteria(_, context),
+        GraphArn: [],
+        MaxResults: [],
+        NextToken: [],
+        SortCriteria: (_) => (0, smithy_client_1._json)(_),
+    }));
+    return new protocol_http_1.HttpRequest({
+        protocol,
+        hostname,
+        port,
+        method: "POST",
+        headers,
+        path: resolvedPath,
+        body,
+    });
+};
+exports.se_ListInvestigationsCommand = se_ListInvestigationsCommand;
 const se_ListInvitationsCommand = async (input, context) => {
     const { hostname, protocol = "https", port, path: basePath } = await context.endpoint();
     const headers = {
@@ -411,6 +484,30 @@ const se_RejectInvitationCommand = async (input, context) => {
     });
 };
 exports.se_RejectInvitationCommand = se_RejectInvitationCommand;
+const se_StartInvestigationCommand = async (input, context) => {
+    const { hostname, protocol = "https", port, path: basePath } = await context.endpoint();
+    const headers = {
+        "content-type": "application/json",
+    };
+    const resolvedPath = `${basePath?.endsWith("/") ? basePath.slice(0, -1) : basePath || ""}` + "/investigations/startInvestigation";
+    let body;
+    body = JSON.stringify((0, smithy_client_1.take)(input, {
+        EntityArn: [],
+        GraphArn: [],
+        ScopeEndTime: (_) => _.toISOString().split(".")[0] + "Z",
+        ScopeStartTime: (_) => _.toISOString().split(".")[0] + "Z",
+    }));
+    return new protocol_http_1.HttpRequest({
+        protocol,
+        hostname,
+        port,
+        method: "POST",
+        headers,
+        path: resolvedPath,
+        body,
+    });
+};
+exports.se_StartInvestigationCommand = se_StartInvestigationCommand;
 const se_StartMonitoringMemberCommand = async (input, context) => {
     const { hostname, protocol = "https", port, path: basePath } = await context.endpoint();
     const headers = {
@@ -501,6 +598,29 @@ const se_UpdateDatasourcePackagesCommand = async (input, context) => {
     });
 };
 exports.se_UpdateDatasourcePackagesCommand = se_UpdateDatasourcePackagesCommand;
+const se_UpdateInvestigationStateCommand = async (input, context) => {
+    const { hostname, protocol = "https", port, path: basePath } = await context.endpoint();
+    const headers = {
+        "content-type": "application/json",
+    };
+    const resolvedPath = `${basePath?.endsWith("/") ? basePath.slice(0, -1) : basePath || ""}` + "/investigations/updateInvestigationState";
+    let body;
+    body = JSON.stringify((0, smithy_client_1.take)(input, {
+        GraphArn: [],
+        InvestigationId: [],
+        State: [],
+    }));
+    return new protocol_http_1.HttpRequest({
+        protocol,
+        hostname,
+        port,
+        method: "POST",
+        headers,
+        path: resolvedPath,
+        body,
+    });
+};
+exports.se_UpdateInvestigationStateCommand = se_UpdateInvestigationStateCommand;
 const se_UpdateOrganizationConfigurationCommand = async (input, context) => {
     const { hostname, protocol = "https", port, path: basePath } = await context.endpoint();
     const headers = {
@@ -992,6 +1112,61 @@ const de_EnableOrganizationAdminAccountCommandError = async (output, context) =>
             });
     }
 };
+const de_GetInvestigationCommand = async (output, context) => {
+    if (output.statusCode !== 200 && output.statusCode >= 300) {
+        return de_GetInvestigationCommandError(output, context);
+    }
+    const contents = (0, smithy_client_1.map)({
+        $metadata: deserializeMetadata(output),
+    });
+    const data = (0, smithy_client_1.expectNonNull)((0, smithy_client_1.expectObject)(await parseBody(output.body, context)), "body");
+    const doc = (0, smithy_client_1.take)(data, {
+        CreatedTime: (_) => (0, smithy_client_1.expectNonNull)((0, smithy_client_1.parseRfc3339DateTimeWithOffset)(_)),
+        EntityArn: smithy_client_1.expectString,
+        EntityType: smithy_client_1.expectString,
+        GraphArn: smithy_client_1.expectString,
+        InvestigationId: smithy_client_1.expectString,
+        ScopeEndTime: (_) => (0, smithy_client_1.expectNonNull)((0, smithy_client_1.parseRfc3339DateTimeWithOffset)(_)),
+        ScopeStartTime: (_) => (0, smithy_client_1.expectNonNull)((0, smithy_client_1.parseRfc3339DateTimeWithOffset)(_)),
+        Severity: smithy_client_1.expectString,
+        State: smithy_client_1.expectString,
+        Status: smithy_client_1.expectString,
+    });
+    Object.assign(contents, doc);
+    return contents;
+};
+exports.de_GetInvestigationCommand = de_GetInvestigationCommand;
+const de_GetInvestigationCommandError = async (output, context) => {
+    const parsedOutput = {
+        ...output,
+        body: await parseErrorBody(output.body, context),
+    };
+    const errorCode = loadRestJsonErrorCode(output, parsedOutput.body);
+    switch (errorCode) {
+        case "AccessDeniedException":
+        case "com.amazonaws.detective#AccessDeniedException":
+            throw await de_AccessDeniedExceptionRes(parsedOutput, context);
+        case "InternalServerException":
+        case "com.amazonaws.detective#InternalServerException":
+            throw await de_InternalServerExceptionRes(parsedOutput, context);
+        case "ResourceNotFoundException":
+        case "com.amazonaws.detective#ResourceNotFoundException":
+            throw await de_ResourceNotFoundExceptionRes(parsedOutput, context);
+        case "TooManyRequestsException":
+        case "com.amazonaws.detective#TooManyRequestsException":
+            throw await de_TooManyRequestsExceptionRes(parsedOutput, context);
+        case "ValidationException":
+        case "com.amazonaws.detective#ValidationException":
+            throw await de_ValidationExceptionRes(parsedOutput, context);
+        default:
+            const parsedBody = parsedOutput.body;
+            return throwDefaultError({
+                output,
+                parsedBody,
+                errorCode,
+            });
+    }
+};
 const de_GetMembersCommand = async (output, context) => {
     if (output.statusCode !== 200 && output.statusCode >= 300) {
         return de_GetMembersCommandError(output, context);
@@ -1121,6 +1296,102 @@ const de_ListGraphsCommandError = async (output, context) => {
             });
     }
 };
+const de_ListIndicatorsCommand = async (output, context) => {
+    if (output.statusCode !== 200 && output.statusCode >= 300) {
+        return de_ListIndicatorsCommandError(output, context);
+    }
+    const contents = (0, smithy_client_1.map)({
+        $metadata: deserializeMetadata(output),
+    });
+    const data = (0, smithy_client_1.expectNonNull)((0, smithy_client_1.expectObject)(await parseBody(output.body, context)), "body");
+    const doc = (0, smithy_client_1.take)(data, {
+        GraphArn: smithy_client_1.expectString,
+        Indicators: smithy_client_1._json,
+        InvestigationId: smithy_client_1.expectString,
+        NextToken: smithy_client_1.expectString,
+    });
+    Object.assign(contents, doc);
+    return contents;
+};
+exports.de_ListIndicatorsCommand = de_ListIndicatorsCommand;
+const de_ListIndicatorsCommandError = async (output, context) => {
+    const parsedOutput = {
+        ...output,
+        body: await parseErrorBody(output.body, context),
+    };
+    const errorCode = loadRestJsonErrorCode(output, parsedOutput.body);
+    switch (errorCode) {
+        case "AccessDeniedException":
+        case "com.amazonaws.detective#AccessDeniedException":
+            throw await de_AccessDeniedExceptionRes(parsedOutput, context);
+        case "InternalServerException":
+        case "com.amazonaws.detective#InternalServerException":
+            throw await de_InternalServerExceptionRes(parsedOutput, context);
+        case "ResourceNotFoundException":
+        case "com.amazonaws.detective#ResourceNotFoundException":
+            throw await de_ResourceNotFoundExceptionRes(parsedOutput, context);
+        case "TooManyRequestsException":
+        case "com.amazonaws.detective#TooManyRequestsException":
+            throw await de_TooManyRequestsExceptionRes(parsedOutput, context);
+        case "ValidationException":
+        case "com.amazonaws.detective#ValidationException":
+            throw await de_ValidationExceptionRes(parsedOutput, context);
+        default:
+            const parsedBody = parsedOutput.body;
+            return throwDefaultError({
+                output,
+                parsedBody,
+                errorCode,
+            });
+    }
+};
+const de_ListInvestigationsCommand = async (output, context) => {
+    if (output.statusCode !== 200 && output.statusCode >= 300) {
+        return de_ListInvestigationsCommandError(output, context);
+    }
+    const contents = (0, smithy_client_1.map)({
+        $metadata: deserializeMetadata(output),
+    });
+    const data = (0, smithy_client_1.expectNonNull)((0, smithy_client_1.expectObject)(await parseBody(output.body, context)), "body");
+    const doc = (0, smithy_client_1.take)(data, {
+        InvestigationDetails: (_) => de_InvestigationDetails(_, context),
+        NextToken: smithy_client_1.expectString,
+    });
+    Object.assign(contents, doc);
+    return contents;
+};
+exports.de_ListInvestigationsCommand = de_ListInvestigationsCommand;
+const de_ListInvestigationsCommandError = async (output, context) => {
+    const parsedOutput = {
+        ...output,
+        body: await parseErrorBody(output.body, context),
+    };
+    const errorCode = loadRestJsonErrorCode(output, parsedOutput.body);
+    switch (errorCode) {
+        case "AccessDeniedException":
+        case "com.amazonaws.detective#AccessDeniedException":
+            throw await de_AccessDeniedExceptionRes(parsedOutput, context);
+        case "InternalServerException":
+        case "com.amazonaws.detective#InternalServerException":
+            throw await de_InternalServerExceptionRes(parsedOutput, context);
+        case "ResourceNotFoundException":
+        case "com.amazonaws.detective#ResourceNotFoundException":
+            throw await de_ResourceNotFoundExceptionRes(parsedOutput, context);
+        case "TooManyRequestsException":
+        case "com.amazonaws.detective#TooManyRequestsException":
+            throw await de_TooManyRequestsExceptionRes(parsedOutput, context);
+        case "ValidationException":
+        case "com.amazonaws.detective#ValidationException":
+            throw await de_ValidationExceptionRes(parsedOutput, context);
+        default:
+            const parsedBody = parsedOutput.body;
+            return throwDefaultError({
+                output,
+                parsedBody,
+                errorCode,
+            });
+    }
+};
 const de_ListInvitationsCommand = async (output, context) => {
     if (output.statusCode !== 200 && output.statusCode >= 300) {
         return de_ListInvitationsCommandError(output, context);
@@ -1335,6 +1606,52 @@ const de_RejectInvitationCommandError = async (output, context) => {
             });
     }
 };
+const de_StartInvestigationCommand = async (output, context) => {
+    if (output.statusCode !== 200 && output.statusCode >= 300) {
+        return de_StartInvestigationCommandError(output, context);
+    }
+    const contents = (0, smithy_client_1.map)({
+        $metadata: deserializeMetadata(output),
+    });
+    const data = (0, smithy_client_1.expectNonNull)((0, smithy_client_1.expectObject)(await parseBody(output.body, context)), "body");
+    const doc = (0, smithy_client_1.take)(data, {
+        InvestigationId: smithy_client_1.expectString,
+    });
+    Object.assign(contents, doc);
+    return contents;
+};
+exports.de_StartInvestigationCommand = de_StartInvestigationCommand;
+const de_StartInvestigationCommandError = async (output, context) => {
+    const parsedOutput = {
+        ...output,
+        body: await parseErrorBody(output.body, context),
+    };
+    const errorCode = loadRestJsonErrorCode(output, parsedOutput.body);
+    switch (errorCode) {
+        case "AccessDeniedException":
+        case "com.amazonaws.detective#AccessDeniedException":
+            throw await de_AccessDeniedExceptionRes(parsedOutput, context);
+        case "InternalServerException":
+        case "com.amazonaws.detective#InternalServerException":
+            throw await de_InternalServerExceptionRes(parsedOutput, context);
+        case "ResourceNotFoundException":
+        case "com.amazonaws.detective#ResourceNotFoundException":
+            throw await de_ResourceNotFoundExceptionRes(parsedOutput, context);
+        case "TooManyRequestsException":
+        case "com.amazonaws.detective#TooManyRequestsException":
+            throw await de_TooManyRequestsExceptionRes(parsedOutput, context);
+        case "ValidationException":
+        case "com.amazonaws.detective#ValidationException":
+            throw await de_ValidationExceptionRes(parsedOutput, context);
+        default:
+            const parsedBody = parsedOutput.body;
+            return throwDefaultError({
+                output,
+                parsedBody,
+                errorCode,
+            });
+    }
+};
 const de_StartMonitoringMemberCommand = async (output, context) => {
     if (output.statusCode !== 200 && output.statusCode >= 300) {
         return de_StartMonitoringMemberCommandError(output, context);
@@ -1500,6 +1817,48 @@ const de_UpdateDatasourcePackagesCommandError = async (output, context) => {
             });
     }
 };
+const de_UpdateInvestigationStateCommand = async (output, context) => {
+    if (output.statusCode !== 200 && output.statusCode >= 300) {
+        return de_UpdateInvestigationStateCommandError(output, context);
+    }
+    const contents = (0, smithy_client_1.map)({
+        $metadata: deserializeMetadata(output),
+    });
+    await (0, smithy_client_1.collectBody)(output.body, context);
+    return contents;
+};
+exports.de_UpdateInvestigationStateCommand = de_UpdateInvestigationStateCommand;
+const de_UpdateInvestigationStateCommandError = async (output, context) => {
+    const parsedOutput = {
+        ...output,
+        body: await parseErrorBody(output.body, context),
+    };
+    const errorCode = loadRestJsonErrorCode(output, parsedOutput.body);
+    switch (errorCode) {
+        case "AccessDeniedException":
+        case "com.amazonaws.detective#AccessDeniedException":
+            throw await de_AccessDeniedExceptionRes(parsedOutput, context);
+        case "InternalServerException":
+        case "com.amazonaws.detective#InternalServerException":
+            throw await de_InternalServerExceptionRes(parsedOutput, context);
+        case "ResourceNotFoundException":
+        case "com.amazonaws.detective#ResourceNotFoundException":
+            throw await de_ResourceNotFoundExceptionRes(parsedOutput, context);
+        case "TooManyRequestsException":
+        case "com.amazonaws.detective#TooManyRequestsException":
+            throw await de_TooManyRequestsExceptionRes(parsedOutput, context);
+        case "ValidationException":
+        case "com.amazonaws.detective#ValidationException":
+            throw await de_ValidationExceptionRes(parsedOutput, context);
+        default:
+            const parsedBody = parsedOutput.body;
+            return throwDefaultError({
+                output,
+                parsedBody,
+                errorCode,
+            });
+    }
+};
 const de_UpdateOrganizationConfigurationCommand = async (output, context) => {
     if (output.statusCode !== 200 && output.statusCode >= 300) {
         return de_UpdateOrganizationConfigurationCommandError(output, context);
@@ -1638,6 +1997,21 @@ const de_ValidationExceptionRes = async (parsedOutput, context) => {
     });
     return (0, smithy_client_1.decorateServiceException)(exception, parsedOutput.body);
 };
+const se_DateFilter = (input, context) => {
+    return (0, smithy_client_1.take)(input, {
+        EndInclusive: (_) => _.toISOString().split(".")[0] + "Z",
+        StartInclusive: (_) => _.toISOString().split(".")[0] + "Z",
+    });
+};
+const se_FilterCriteria = (input, context) => {
+    return (0, smithy_client_1.take)(input, {
+        CreatedTime: (_) => se_DateFilter(_, context),
+        EntityArn: smithy_client_1._json,
+        Severity: smithy_client_1._json,
+        State: smithy_client_1._json,
+        Status: smithy_client_1._json,
+    });
+};
 const de_Administrator = (output, context) => {
     return (0, smithy_client_1.take)(output, {
         AccountId: smithy_client_1.expectString,
@@ -1697,6 +2071,25 @@ const de_GraphList = (output, context) => {
     });
     return retVal;
 };
+const de_InvestigationDetail = (output, context) => {
+    return (0, smithy_client_1.take)(output, {
+        CreatedTime: (_) => (0, smithy_client_1.expectNonNull)((0, smithy_client_1.parseRfc3339DateTimeWithOffset)(_)),
+        EntityArn: smithy_client_1.expectString,
+        EntityType: smithy_client_1.expectString,
+        InvestigationId: smithy_client_1.expectString,
+        Severity: smithy_client_1.expectString,
+        State: smithy_client_1.expectString,
+        Status: smithy_client_1.expectString,
+    });
+};
+const de_InvestigationDetails = (output, context) => {
+    const retVal = (output || [])
+        .filter((e) => e != null)
+        .map((entry) => {
+        return de_InvestigationDetail(entry, context);
+    });
+    return retVal;
+};
 const de_LastIngestStateChangeDates = (output, context) => {
     return Object.entries(output).reduce((acc, [key, value]) => {
         if (value === null) {

package/dist-es/Detective.js

@@ -10,18 +10,23 @@ import { DescribeOrganizationConfigurationCommand, } from "./commands/DescribeOr
 import { DisableOrganizationAdminAccountCommand, } from "./commands/DisableOrganizationAdminAccountCommand";
 import { DisassociateMembershipCommand, } from "./commands/DisassociateMembershipCommand";
 import { EnableOrganizationAdminAccountCommand, } from "./commands/EnableOrganizationAdminAccountCommand";
+import { GetInvestigationCommand, } from "./commands/GetInvestigationCommand";
 import { GetMembersCommand } from "./commands/GetMembersCommand";
 import { ListDatasourcePackagesCommand, } from "./commands/ListDatasourcePackagesCommand";
 import { ListGraphsCommand } from "./commands/ListGraphsCommand";
+import { ListIndicatorsCommand, } from "./commands/ListIndicatorsCommand";
+import { ListInvestigationsCommand, } from "./commands/ListInvestigationsCommand";
 import { ListInvitationsCommand, } from "./commands/ListInvitationsCommand";
 import { ListMembersCommand } from "./commands/ListMembersCommand";
 import { ListOrganizationAdminAccountsCommand, } from "./commands/ListOrganizationAdminAccountsCommand";
 import { ListTagsForResourceCommand, } from "./commands/ListTagsForResourceCommand";
 import { RejectInvitationCommand, } from "./commands/RejectInvitationCommand";
+import { StartInvestigationCommand, } from "./commands/StartInvestigationCommand";
 import { StartMonitoringMemberCommand, } from "./commands/StartMonitoringMemberCommand";
 import { TagResourceCommand } from "./commands/TagResourceCommand";
 import { UntagResourceCommand, } from "./commands/UntagResourceCommand";
 import { UpdateDatasourcePackagesCommand, } from "./commands/UpdateDatasourcePackagesCommand";
+import { UpdateInvestigationStateCommand, } from "./commands/UpdateInvestigationStateCommand";
 import { UpdateOrganizationConfigurationCommand, } from "./commands/UpdateOrganizationConfigurationCommand";
 import { DetectiveClient } from "./DetectiveClient";
 const commands = {
@@ -36,18 +41,23 @@ const commands = {
     DisableOrganizationAdminAccountCommand,
     DisassociateMembershipCommand,
     EnableOrganizationAdminAccountCommand,
+    GetInvestigationCommand,
     GetMembersCommand,
     ListDatasourcePackagesCommand,
     ListGraphsCommand,
+    ListIndicatorsCommand,
+    ListInvestigationsCommand,
     ListInvitationsCommand,
     ListMembersCommand,
     ListOrganizationAdminAccountsCommand,
     ListTagsForResourceCommand,
     RejectInvitationCommand,
+    StartInvestigationCommand,
     StartMonitoringMemberCommand,
     TagResourceCommand,
     UntagResourceCommand,
     UpdateDatasourcePackagesCommand,
+    UpdateInvestigationStateCommand,
     UpdateOrganizationConfigurationCommand,
 };
 export class Detective extends DetectiveClient {

package/dist-es/commands/GetInvestigationCommand.js

@@ -0,0 +1,47 @@
+import { getEndpointPlugin } from "@smithy/middleware-endpoint";
+import { getSerdePlugin } from "@smithy/middleware-serde";
+import { Command as $Command } from "@smithy/smithy-client";
+import { SMITHY_CONTEXT_KEY, } from "@smithy/types";
+import { de_GetInvestigationCommand, se_GetInvestigationCommand } from "../protocols/Aws_restJson1";
+export { $Command };
+export class GetInvestigationCommand extends $Command {
+    static getEndpointParameterInstructions() {
+        return {
+            UseFIPS: { type: "builtInParams", name: "useFipsEndpoint" },
+            Endpoint: { type: "builtInParams", name: "endpoint" },
+            Region: { type: "builtInParams", name: "region" },
+            UseDualStack: { type: "builtInParams", name: "useDualstackEndpoint" },
+        };
+    }
+    constructor(input) {
+        super();
+        this.input = input;
+    }
+    resolveMiddleware(clientStack, configuration, options) {
+        this.middlewareStack.use(getSerdePlugin(configuration, this.serialize, this.deserialize));
+        this.middlewareStack.use(getEndpointPlugin(configuration, GetInvestigationCommand.getEndpointParameterInstructions()));
+        const stack = clientStack.concat(this.middlewareStack);
+        const { logger } = configuration;
+        const clientName = "DetectiveClient";
+        const commandName = "GetInvestigationCommand";
+        const handlerExecutionContext = {
+            logger,
+            clientName,
+            commandName,
+            inputFilterSensitiveLog: (_) => _,
+            outputFilterSensitiveLog: (_) => _,
+            [SMITHY_CONTEXT_KEY]: {
+                service: "AmazonDetective",
+                operation: "GetInvestigation",
+            },
+        };
+        const { requestHandler } = configuration;
+        return stack.resolve((request) => requestHandler.handle(request.request, options || {}), handlerExecutionContext);
+    }
+    serialize(input, context) {
+        return se_GetInvestigationCommand(input, context);
+    }
+    deserialize(output, context) {
+        return de_GetInvestigationCommand(output, context);
+    }
+}

package/dist-es/commands/ListIndicatorsCommand.js

@@ -0,0 +1,47 @@
+import { getEndpointPlugin } from "@smithy/middleware-endpoint";
+import { getSerdePlugin } from "@smithy/middleware-serde";
+import { Command as $Command } from "@smithy/smithy-client";
+import { SMITHY_CONTEXT_KEY, } from "@smithy/types";
+import { de_ListIndicatorsCommand, se_ListIndicatorsCommand } from "../protocols/Aws_restJson1";
+export { $Command };
+export class ListIndicatorsCommand extends $Command {
+    static getEndpointParameterInstructions() {
+        return {
+            UseFIPS: { type: "builtInParams", name: "useFipsEndpoint" },
+            Endpoint: { type: "builtInParams", name: "endpoint" },
+            Region: { type: "builtInParams", name: "region" },
+            UseDualStack: { type: "builtInParams", name: "useDualstackEndpoint" },
+        };
+    }
+    constructor(input) {
+        super();
+        this.input = input;
+    }
+    resolveMiddleware(clientStack, configuration, options) {
+        this.middlewareStack.use(getSerdePlugin(configuration, this.serialize, this.deserialize));
+        this.middlewareStack.use(getEndpointPlugin(configuration, ListIndicatorsCommand.getEndpointParameterInstructions()));
+        const stack = clientStack.concat(this.middlewareStack);
+        const { logger } = configuration;
+        const clientName = "DetectiveClient";
+        const commandName = "ListIndicatorsCommand";
+        const handlerExecutionContext = {
+            logger,
+            clientName,
+            commandName,
+            inputFilterSensitiveLog: (_) => _,
+            outputFilterSensitiveLog: (_) => _,
+            [SMITHY_CONTEXT_KEY]: {
+                service: "AmazonDetective",
+                operation: "ListIndicators",
+            },
+        };
+        const { requestHandler } = configuration;
+        return stack.resolve((request) => requestHandler.handle(request.request, options || {}), handlerExecutionContext);
+    }
+    serialize(input, context) {
+        return se_ListIndicatorsCommand(input, context);
+    }
+    deserialize(output, context) {
+        return de_ListIndicatorsCommand(output, context);
+    }
+}