npm - @aws-sdk/client-guardduty - Versions diffs - 3.933.0 → 3.935.0 - Mend

@aws-sdk/client-guardduty 3.933.0 → 3.935.0

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (72) hide show

package/README.md +16 -0
package/dist-cjs/index.js +1505 -525
package/dist-es/GuardDuty.js +4 -0
package/dist-es/commands/GetMalwareScanCommand.js +16 -0
package/dist-es/commands/ListMalwareScansCommand.js +16 -0
package/dist-es/commands/index.js +2 -0
package/dist-es/index.js +2 -1
package/dist-es/models/enums.js +445 -0
package/dist-es/models/errors.js +81 -0
package/dist-es/models/models_0.js +1 -383
package/dist-es/models/models_1.js +1 -77
package/dist-es/pagination/ListMalwareScansPaginator.js +4 -0
package/dist-es/pagination/index.js +1 -0
package/dist-es/schemas/schemas_0.js +942 -68
package/dist-types/GuardDuty.d.ts +15 -0
package/dist-types/GuardDutyClient.d.ts +4 -2
package/dist-types/commands/DescribeMalwareScansCommand.d.ts +1 -0
package/dist-types/commands/GetAdministratorAccountCommand.d.ts +1 -1
package/dist-types/commands/GetCoverageStatisticsCommand.d.ts +1 -1
package/dist-types/commands/GetDetectorCommand.d.ts +1 -1
package/dist-types/commands/GetFilterCommand.d.ts +1 -1
package/dist-types/commands/GetFindingsCommand.d.ts +34 -1
package/dist-types/commands/GetFindingsStatisticsCommand.d.ts +1 -1
package/dist-types/commands/GetIPSetCommand.d.ts +1 -1
package/dist-types/commands/GetInvitationsCountCommand.d.ts +1 -1
package/dist-types/commands/GetMalwareProtectionPlanCommand.d.ts +1 -1
package/dist-types/commands/GetMalwareScanCommand.d.ts +164 -0
package/dist-types/commands/GetMalwareScanSettingsCommand.d.ts +1 -1
package/dist-types/commands/GetMasterAccountCommand.d.ts +1 -1
package/dist-types/commands/GetMemberDetectorsCommand.d.ts +1 -1
package/dist-types/commands/GetMembersCommand.d.ts +1 -1
package/dist-types/commands/ListMalwareScansCommand.d.ts +110 -0
package/dist-types/commands/StartMalwareScanCommand.d.ts +14 -2
package/dist-types/commands/index.d.ts +2 -0
package/dist-types/index.d.ts +4 -1
package/dist-types/models/enums.d.ts +973 -0
package/dist-types/models/errors.d.ts +112 -0
package/dist-types/models/models_0.d.ts +1178 -784
package/dist-types/models/models_1.d.ts +169 -893
package/dist-types/pagination/ListMalwareScansPaginator.d.ts +7 -0
package/dist-types/pagination/index.d.ts +1 -0
package/dist-types/schemas/schemas_0.d.ts +30 -0
package/dist-types/ts3.4/GuardDuty.d.ts +35 -0
package/dist-types/ts3.4/GuardDutyClient.d.ts +12 -0
package/dist-types/ts3.4/commands/GetAdministratorAccountCommand.d.ts +1 -1
package/dist-types/ts3.4/commands/GetCoverageStatisticsCommand.d.ts +1 -1
package/dist-types/ts3.4/commands/GetDetectorCommand.d.ts +1 -1
package/dist-types/ts3.4/commands/GetFilterCommand.d.ts +1 -1
package/dist-types/ts3.4/commands/GetFindingsCommand.d.ts +1 -1
package/dist-types/ts3.4/commands/GetFindingsStatisticsCommand.d.ts +1 -1
package/dist-types/ts3.4/commands/GetIPSetCommand.d.ts +1 -1
package/dist-types/ts3.4/commands/GetInvitationsCountCommand.d.ts +1 -1
package/dist-types/ts3.4/commands/GetMalwareProtectionPlanCommand.d.ts +1 -1
package/dist-types/ts3.4/commands/GetMalwareScanCommand.d.ts +50 -0
package/dist-types/ts3.4/commands/GetMalwareScanSettingsCommand.d.ts +1 -1
package/dist-types/ts3.4/commands/GetMasterAccountCommand.d.ts +1 -1
package/dist-types/ts3.4/commands/GetMemberDetectorsCommand.d.ts +1 -1
package/dist-types/ts3.4/commands/GetMembersCommand.d.ts +1 -1
package/dist-types/ts3.4/commands/ListMalwareScansCommand.d.ts +50 -0
package/dist-types/ts3.4/commands/index.d.ts +2 -0
package/dist-types/ts3.4/index.d.ts +4 -1
package/dist-types/ts3.4/models/enums.d.ts +554 -0
package/dist-types/ts3.4/models/errors.d.ts +45 -0
package/dist-types/ts3.4/models/models_0.d.ts +329 -423
package/dist-types/ts3.4/models/models_1.d.ts +68 -285
package/dist-types/ts3.4/pagination/ListMalwareScansPaginator.d.ts +11 -0
package/dist-types/ts3.4/pagination/index.d.ts +1 -0
package/dist-types/ts3.4/schemas/schemas_0.d.ts +30 -0
package/package.json +12 -12
package/dist-es/models/index.js +0 -2
package/dist-types/models/index.d.ts +0 -2
package/dist-types/ts3.4/models/index.d.ts +0 -2

package/dist-types/models/models_0.d.ts CHANGED Viewed

@@ -1,5 +1,4 @@
-import { ExceptionOptionType as __ExceptionOptionType } from "@smithy/smithy-client";
-import { GuardDutyServiceException as __BaseException } from "./GuardDutyServiceException";
+import { AdminStatus, AutoEnableMembers, ClusterStatus, CoverageFilterCriterionKey, CoverageSortKey, CoverageStatisticsType, CoverageStatus, CriterionKey, DataSourceStatus, DestinationType, DetectionSource, DetectorFeature, DetectorFeatureResult, DetectorStatus, EbsSnapshotPreservation, FeatureAdditionalConfiguration, FeatureStatus, FilterAction, FindingPublishingFrequency, FindingResourceType, FindingStatisticType, FreeTrialFeatureResult, GroupByType, IndicatorType, IpSetFormat, IpSetStatus, KubernetesResourcesTypes, MalwareProtectionPlanStatus, MalwareProtectionPlanTaggingActionStatus, MalwareProtectionResourceType, MalwareProtectionScanStatus, MalwareProtectionScanType, ManagementType, MfaStatus, NetworkDirection, OrderBy, OrgFeature, OrgFeatureAdditionalConfiguration, OrgFeatureStatus, ProfileSubtype, ProfileType, PublicAccessStatus, PublicAclIgnoreBehavior, PublicBucketRestrictBehavior, PublishingStatus, ResourceType, ScanCategory, ScanCriterionKey, ScanResult, ScanResultStatus, ScanStatus, ScanStatusReason, ScanType, SignalType, ThreatEntitySetFormat, ThreatIntelSetFormat, TriggerType, TrustedEntitySetFormat } from "./enums";
 /**
  * @public
  */
@@ -27,50 +26,6 @@ export interface AcceptAdministratorInvitationRequest {
  */
 export interface AcceptAdministratorInvitationResponse {
 }
-/**
- * <p>A bad request exception object.</p>
- * @public
- */
-export declare class BadRequestException extends __BaseException {
-    readonly name: "BadRequestException";
-    readonly $fault: "client";
-    /**
-     * <p>The error message.</p>
-     * @public
-     */
-    Message?: string | undefined;
-    /**
-     * <p>The error type.</p>
-     * @public
-     */
-    Type?: string | undefined;
-    /**
-     * @internal
-     */
-    constructor(opts: __ExceptionOptionType<BadRequestException, __BaseException>);
-}
-/**
- * <p>An internal server error exception object.</p>
- * @public
- */
-export declare class InternalServerErrorException extends __BaseException {
-    readonly name: "InternalServerErrorException";
-    readonly $fault: "server";
-    /**
-     * <p>The error message.</p>
-     * @public
-     */
-    Message?: string | undefined;
-    /**
-     * <p>The error type.</p>
-     * @public
-     */
-    Type?: string | undefined;
-    /**
-     * @internal
-     */
-    constructor(opts: __ExceptionOptionType<InternalServerErrorException, __BaseException>);
-}
 /**
  * @public
  */
@@ -118,28 +73,6 @@ export interface AccessControlList {
      */
     AllowsPublicWriteAccess?: boolean | undefined;
 }
-/**
- * <p>An access denied exception object.</p>
- * @public
- */
-export declare class AccessDeniedException extends __BaseException {
-    readonly name: "AccessDeniedException";
-    readonly $fault: "client";
-    /**
-     * <p>The error message.</p>
-     * @public
-     */
-    Message?: string | undefined;
-    /**
-     * <p>The error type.</p>
-     * @public
-     */
-    Type?: string | undefined;
-    /**
-     * @internal
-     */
-    constructor(opts: __ExceptionOptionType<AccessDeniedException, __BaseException>);
-}
 /**
  * <p>Contains information about the access keys.</p>
  * @public
@@ -320,27 +253,6 @@ export interface DataSourcesFreeTrial {
      */
     MalwareProtection?: MalwareProtectionDataSourceFreeTrial | undefined;
 }
-/**
- * @public
- * @enum
- */
-export declare const FreeTrialFeatureResult: {
-    readonly CLOUD_TRAIL: "CLOUD_TRAIL";
-    readonly DNS_LOGS: "DNS_LOGS";
-    readonly EBS_MALWARE_PROTECTION: "EBS_MALWARE_PROTECTION";
-    readonly EC2_RUNTIME_MONITORING: "EC2_RUNTIME_MONITORING";
-    readonly EKS_AUDIT_LOGS: "EKS_AUDIT_LOGS";
-    readonly EKS_RUNTIME_MONITORING: "EKS_RUNTIME_MONITORING";
-    readonly FARGATE_RUNTIME_MONITORING: "FARGATE_RUNTIME_MONITORING";
-    readonly FLOW_LOGS: "FLOW_LOGS";
-    readonly LAMBDA_NETWORK_LOGS: "LAMBDA_NETWORK_LOGS";
-    readonly RDS_LOGIN_EVENTS: "RDS_LOGIN_EVENTS";
-    readonly S3_DATA_EVENTS: "S3_DATA_EVENTS";
-};
-/**
- * @public
- */
-export type FreeTrialFeatureResult = (typeof FreeTrialFeatureResult)[keyof typeof FreeTrialFeatureResult];
 /**
  * <p>Contains information about the free trial period for a feature.</p>
  * @public
@@ -1062,18 +974,6 @@ export interface ActorProcess {
      */
     Sha256?: string | undefined;
 }
-/**
- * @public
- * @enum
- */
-export declare const MfaStatus: {
-    readonly DISABLED: "DISABLED";
-    readonly ENABLED: "ENABLED";
-};
-/**
- * @public
- */
-export type MfaStatus = (typeof MfaStatus)[keyof typeof MfaStatus];
 /**
  * <p>Contains information about the authenticated session.</p>
  * @public
@@ -1162,6 +1062,22 @@ export interface Actor {
      */
     Process?: ActorProcess | undefined;
 }
+/**
+ * <p>Contains additional information about the detected threat.</p>
+ * @public
+ */
+export interface AdditionalInfo {
+    /**
+     * <p>The version ID of the S3 object, if applicable.</p>
+     * @public
+     */
+    VersionId?: string | undefined;
+    /**
+     * <p>The device name of the EBS volume, if applicable.</p>
+     * @public
+     */
+    DeviceName?: string | undefined;
+}
 /**
  * <p>Information about the installed EKS add-on (GuardDuty security agent).</p>
  * @public
@@ -1178,18 +1094,6 @@ export interface AddonDetails {
      */
     AddonStatus?: string | undefined;
 }
-/**
- * @public
- * @enum
- */
-export declare const AdminStatus: {
-    readonly DISABLE_IN_PROGRESS: "DISABLE_IN_PROGRESS";
-    readonly ENABLED: "ENABLED";
-};
-/**
- * @public
- */
-export type AdminStatus = (typeof AdminStatus)[keyof typeof AdminStatus];
 /**
  * <p>The account within the organization specified as the GuardDuty delegated
  *       administrator.</p>
@@ -1256,31 +1160,6 @@ export interface Observations {
      */
     Text?: string[] | undefined;
 }
-/**
- * @public
- * @enum
- */
-export declare const ProfileSubtype: {
-    readonly FREQUENT: "FREQUENT";
-    readonly INFREQUENT: "INFREQUENT";
-    readonly RARE: "RARE";
-    readonly UNSEEN: "UNSEEN";
-};
-/**
- * @public
- */
-export type ProfileSubtype = (typeof ProfileSubtype)[keyof typeof ProfileSubtype];
-/**
- * @public
- * @enum
- */
-export declare const ProfileType: {
-    readonly FREQUENCY: "FREQUENCY";
-};
-/**
- * @public
- */
-export type ProfileType = (typeof ProfileType)[keyof typeof ProfileType];
 /**
  * <p>Contains information about the unusual anomalies.</p>
  * @public
@@ -1353,19 +1232,6 @@ export interface ArchiveFindingsRequest {
  */
 export interface ArchiveFindingsResponse {
 }
-/**
- * @public
- * @enum
- */
-export declare const AutoEnableMembers: {
-    readonly ALL: "ALL";
-    readonly NEW: "NEW";
-    readonly NONE: "NONE";
-};
-/**
- * @public
- */
-export type AutoEnableMembers = (typeof AutoEnableMembers)[keyof typeof AutoEnableMembers];
 /**
  * <p>Contains information about the Autonomous System (AS) associated with the network
  *        endpoints involved in an attack sequence.</p>
@@ -1423,18 +1289,6 @@ export interface BucketLevelPermissions {
      */
     BlockPublicAccess?: BlockPublicAccess | undefined;
 }
-/**
- * @public
- * @enum
- */
-export declare const DataSourceStatus: {
-    readonly DISABLED: "DISABLED";
-    readonly ENABLED: "ENABLED";
-};
-/**
- * @public
- */
-export type DataSourceStatus = (typeof DataSourceStatus)[keyof typeof DataSourceStatus];
 /**
  * <p>Contains information on the status of CloudTrail as a data source for the detector.</p>
  * @public
@@ -1446,22 +1300,6 @@ export interface CloudTrailConfigurationResult {
      */
     Status: DataSourceStatus | undefined;
 }
-/**
- * @public
- * @enum
- */
-export declare const ClusterStatus: {
-    readonly ACTIVE: "ACTIVE";
-    readonly CREATING: "CREATING";
-    readonly DELETING: "DELETING";
-    readonly FAILED: "FAILED";
-    readonly PENDING: "PENDING";
-    readonly UPDATING: "UPDATING";
-};
-/**
- * @public
- */
-export type ClusterStatus = (typeof ClusterStatus)[keyof typeof ClusterStatus];
 /**
  * <p>Contains information about the condition.</p>
  * @public
@@ -1554,28 +1392,6 @@ export interface Condition {
      */
     LessThanOrEqual?: number | undefined;
 }
-/**
- * <p>A request conflict exception object.</p>
- * @public
- */
-export declare class ConflictException extends __BaseException {
-    readonly name: "ConflictException";
-    readonly $fault: "client";
-    /**
-     * <p>The error message.</p>
-     * @public
-     */
-    Message?: string | undefined;
-    /**
-     * <p>The error type.</p>
-     * @public
-     */
-    Type?: string | undefined;
-    /**
-     * @internal
-     */
-    constructor(opts: __ExceptionOptionType<ConflictException, __BaseException>);
-}
 /**
  * <p>Container security context.</p>
  * @public
@@ -1688,44 +1504,6 @@ export interface ContainerInstanceDetails {
      */
     CompatibleContainerInstances?: number | undefined;
 }
-/**
- * @public
- * @enum
- */
-export declare const CoverageStatus: {
-    readonly HEALTHY: "HEALTHY";
-    readonly UNHEALTHY: "UNHEALTHY";
-};
-/**
- * @public
- */
-export type CoverageStatus = (typeof CoverageStatus)[keyof typeof CoverageStatus];
-/**
- * @public
- * @enum
- */
-export declare const ResourceType: {
-    readonly EC2: "EC2";
-    readonly ECS: "ECS";
-    readonly EKS: "EKS";
-};
-/**
- * @public
- */
-export type ResourceType = (typeof ResourceType)[keyof typeof ResourceType];
-/**
- * @public
- * @enum
- */
-export declare const ManagementType: {
-    readonly AUTO_MANAGED: "AUTO_MANAGED";
-    readonly DISABLED: "DISABLED";
-    readonly MANUAL: "MANUAL";
-};
-/**
- * @public
- */
-export type ManagementType = (typeof ManagementType)[keyof typeof ManagementType];
 /**
  * <p>Contains information about the Amazon EC2 instance runtime
  *     coverage details.</p>
@@ -1883,27 +1661,6 @@ export interface CoverageFilterCondition {
      */
     NotEquals?: string[] | undefined;
 }
-/**
- * @public
- * @enum
- */
-export declare const CoverageFilterCriterionKey: {
-    readonly ACCOUNT_ID: "ACCOUNT_ID";
-    readonly ADDON_VERSION: "ADDON_VERSION";
-    readonly AGENT_VERSION: "AGENT_VERSION";
-    readonly CLUSTER_ARN: "CLUSTER_ARN";
-    readonly CLUSTER_NAME: "CLUSTER_NAME";
-    readonly COVERAGE_STATUS: "COVERAGE_STATUS";
-    readonly ECS_CLUSTER_NAME: "ECS_CLUSTER_NAME";
-    readonly EKS_CLUSTER_NAME: "EKS_CLUSTER_NAME";
-    readonly INSTANCE_ID: "INSTANCE_ID";
-    readonly MANAGEMENT_TYPE: "MANAGEMENT_TYPE";
-    readonly RESOURCE_TYPE: "RESOURCE_TYPE";
-};
-/**
- * @public
- */
-export type CoverageFilterCriterionKey = (typeof CoverageFilterCriterionKey)[keyof typeof CoverageFilterCriterionKey];
 /**
  * <p>Represents a condition that when matched will be added to the response of the
  *       operation.</p>
@@ -2008,37 +1765,6 @@ export interface CoverageResource {
      */
     UpdatedAt?: Date | undefined;
 }
-/**
- * @public
- * @enum
- */
-export declare const CoverageSortKey: {
-    readonly ACCOUNT_ID: "ACCOUNT_ID";
-    readonly ADDON_VERSION: "ADDON_VERSION";
-    readonly CLUSTER_NAME: "CLUSTER_NAME";
-    readonly COVERAGE_STATUS: "COVERAGE_STATUS";
-    readonly ECS_CLUSTER_NAME: "ECS_CLUSTER_NAME";
-    readonly EKS_CLUSTER_NAME: "EKS_CLUSTER_NAME";
-    readonly INSTANCE_ID: "INSTANCE_ID";
-    readonly ISSUE: "ISSUE";
-    readonly UPDATED_AT: "UPDATED_AT";
-};
-/**
- * @public
- */
-export type CoverageSortKey = (typeof CoverageSortKey)[keyof typeof CoverageSortKey];
-/**
- * @public
- * @enum
- */
-export declare const OrderBy: {
-    readonly ASC: "ASC";
-    readonly DESC: "DESC";
-};
-/**
- * @public
- */
-export type OrderBy = (typeof OrderBy)[keyof typeof OrderBy];
 /**
  * <p>Information about the sorting criteria used in the coverage statistics.</p>
  * @public
@@ -2075,18 +1801,6 @@ export interface CoverageStatistics {
      */
     CountByCoverageStatus?: Partial<Record<CoverageStatus, number>> | undefined;
 }
-/**
- * @public
- * @enum
- */
-export declare const CoverageStatisticsType: {
-    readonly COUNT_BY_COVERAGE_STATUS: "COUNT_BY_COVERAGE_STATUS";
-    readonly COUNT_BY_RESOURCE_TYPE: "COUNT_BY_RESOURCE_TYPE";
-};
-/**
- * @public
- */
-export type CoverageStatisticsType = (typeof CoverageStatisticsType)[keyof typeof CoverageStatisticsType];
 /**
  * <p>Describes whether Kubernetes audit logs are enabled as a data source.</p>
  * @public
@@ -2164,31 +1878,6 @@ export interface DataSourceConfigurations {
      */
     MalwareProtection?: MalwareProtectionConfiguration | undefined;
 }
-/**
- * @public
- * @enum
- */
-export declare const FeatureAdditionalConfiguration: {
-    readonly EC2_AGENT_MANAGEMENT: "EC2_AGENT_MANAGEMENT";
-    readonly ECS_FARGATE_AGENT_MANAGEMENT: "ECS_FARGATE_AGENT_MANAGEMENT";
-    readonly EKS_ADDON_MANAGEMENT: "EKS_ADDON_MANAGEMENT";
-};
-/**
- * @public
- */
-export type FeatureAdditionalConfiguration = (typeof FeatureAdditionalConfiguration)[keyof typeof FeatureAdditionalConfiguration];
-/**
- * @public
- * @enum
- */
-export declare const FeatureStatus: {
-    readonly DISABLED: "DISABLED";
-    readonly ENABLED: "ENABLED";
-};
-/**
- * @public
- */
-export type FeatureStatus = (typeof FeatureStatus)[keyof typeof FeatureStatus];
 /**
  * <p>Information about the additional configuration for a feature in your GuardDuty account.</p>
  * @public
@@ -2205,23 +1894,6 @@ export interface DetectorAdditionalConfiguration {
      */
     Status?: FeatureStatus | undefined;
 }
-/**
- * @public
- * @enum
- */
-export declare const DetectorFeature: {
-    readonly EBS_MALWARE_PROTECTION: "EBS_MALWARE_PROTECTION";
-    readonly EKS_AUDIT_LOGS: "EKS_AUDIT_LOGS";
-    readonly EKS_RUNTIME_MONITORING: "EKS_RUNTIME_MONITORING";
-    readonly LAMBDA_NETWORK_LOGS: "LAMBDA_NETWORK_LOGS";
-    readonly RDS_LOGIN_EVENTS: "RDS_LOGIN_EVENTS";
-    readonly RUNTIME_MONITORING: "RUNTIME_MONITORING";
-    readonly S3_DATA_EVENTS: "S3_DATA_EVENTS";
-};
-/**
- * @public
- */
-export type DetectorFeature = (typeof DetectorFeature)[keyof typeof DetectorFeature];
 /**
  * <p>Contains information about a GuardDuty feature.</p>
  *          <p>Specifying both EKS Runtime Monitoring (<code>EKS_RUNTIME_MONITORING</code>)
@@ -2248,19 +1920,6 @@ export interface DetectorFeatureConfiguration {
      */
     AdditionalConfiguration?: DetectorAdditionalConfiguration[] | undefined;
 }
-/**
- * @public
- * @enum
- */
-export declare const FindingPublishingFrequency: {
-    readonly FIFTEEN_MINUTES: "FIFTEEN_MINUTES";
-    readonly ONE_HOUR: "ONE_HOUR";
-    readonly SIX_HOURS: "SIX_HOURS";
-};
-/**
- * @public
- */
-export type FindingPublishingFrequency = (typeof FindingPublishingFrequency)[keyof typeof FindingPublishingFrequency];
 /**
  * @public
  */
@@ -2375,18 +2034,6 @@ export interface CreateDetectorResponse {
      */
     UnprocessedDataSources?: UnprocessedDataSourcesResult | undefined;
 }
-/**
- * @public
- * @enum
- */
-export declare const FilterAction: {
-    readonly ARCHIVE: "ARCHIVE";
-    readonly NOOP: "NOOP";
-};
-/**
- * @public
- */
-export type FilterAction = (typeof FilterAction)[keyof typeof FilterAction];
 /**
  * <p>Contains information about the criteria used for querying findings.</p>
  * @public
@@ -2781,22 +2428,6 @@ export interface CreateFilterResponse {
      */
     Name: string | undefined;
 }
-/**
- * @public
- * @enum
- */
-export declare const IpSetFormat: {
-    readonly ALIEN_VAULT: "ALIEN_VAULT";
-    readonly FIRE_EYE: "FIRE_EYE";
-    readonly OTX_CSV: "OTX_CSV";
-    readonly PROOF_POINT: "PROOF_POINT";
-    readonly STIX: "STIX";
-    readonly TXT: "TXT";
-};
-/**
- * @public
- */
-export type IpSetFormat = (typeof IpSetFormat)[keyof typeof IpSetFormat];
 /**
  * @public
  */
@@ -2856,18 +2487,6 @@ export interface CreateIPSetResponse {
      */
     IpSetId: string | undefined;
 }
-/**
- * @public
- * @enum
- */
-export declare const MalwareProtectionPlanTaggingActionStatus: {
-    readonly DISABLED: "DISABLED";
-    readonly ENABLED: "ENABLED";
-};
-/**
- * @public
- */
-export type MalwareProtectionPlanTaggingActionStatus = (typeof MalwareProtectionPlanTaggingActionStatus)[keyof typeof MalwareProtectionPlanTaggingActionStatus];
 /**
  * <p>Information about adding tags to the scanned S3 object after the scan result.</p>
  * @public
@@ -3030,17 +2649,6 @@ export interface DestinationProperties {
      */
     KmsKeyArn?: string | undefined;
 }
-/**
- * @public
- * @enum
- */
-export declare const DestinationType: {
-    readonly S3: "S3";
-};
-/**
- * @public
- */
-export type DestinationType = (typeof DestinationType)[keyof typeof DestinationType];
 /**
  * @public
  */
@@ -3107,22 +2715,6 @@ export interface CreateSampleFindingsRequest {
  */
 export interface CreateSampleFindingsResponse {
 }
-/**
- * @public
- * @enum
- */
-export declare const ThreatEntitySetFormat: {
-    readonly ALIEN_VAULT: "ALIEN_VAULT";
-    readonly FIRE_EYE: "FIRE_EYE";
-    readonly OTX_CSV: "OTX_CSV";
-    readonly PROOF_POINT: "PROOF_POINT";
-    readonly STIX: "STIX";
-    readonly TXT: "TXT";
-};
-/**
- * @public
- */
-export type ThreatEntitySetFormat = (typeof ThreatEntitySetFormat)[keyof typeof ThreatEntitySetFormat];
 /**
  * @public
  */
@@ -3186,22 +2778,6 @@ export interface CreateThreatEntitySetResponse {
      */
     ThreatEntitySetId: string | undefined;
 }
-/**
- * @public
- * @enum
- */
-export declare const ThreatIntelSetFormat: {
-    readonly ALIEN_VAULT: "ALIEN_VAULT";
-    readonly FIRE_EYE: "FIRE_EYE";
-    readonly OTX_CSV: "OTX_CSV";
-    readonly PROOF_POINT: "PROOF_POINT";
-    readonly STIX: "STIX";
-    readonly TXT: "TXT";
-};
-/**
- * @public
- */
-export type ThreatIntelSetFormat = (typeof ThreatIntelSetFormat)[keyof typeof ThreatIntelSetFormat];
 /**
  * @public
  */
@@ -3262,22 +2838,6 @@ export interface CreateThreatIntelSetResponse {
      */
     ThreatIntelSetId: string | undefined;
 }
-/**
- * @public
- * @enum
- */
-export declare const TrustedEntitySetFormat: {
-    readonly ALIEN_VAULT: "ALIEN_VAULT";
-    readonly FIRE_EYE: "FIRE_EYE";
-    readonly OTX_CSV: "OTX_CSV";
-    readonly PROOF_POINT: "PROOF_POINT";
-    readonly STIX: "STIX";
-    readonly TXT: "TXT";
-};
-/**
- * @public
- */
-export type TrustedEntitySetFormat = (typeof TrustedEntitySetFormat)[keyof typeof TrustedEntitySetFormat];
 /**
  * @public
  */
@@ -3342,39 +2902,6 @@ export interface CreateTrustedEntitySetResponse {
      */
     TrustedEntitySetId: string | undefined;
 }
-/**
- * @public
- * @enum
- */
-export declare const CriterionKey: {
-    readonly ACCOUNT_ID: "ACCOUNT_ID";
-    readonly EC2_INSTANCE_ARN: "EC2_INSTANCE_ARN";
-    readonly GUARDDUTY_FINDING_ID: "GUARDDUTY_FINDING_ID";
-    readonly SCAN_ID: "SCAN_ID";
-    readonly SCAN_START_TIME: "SCAN_START_TIME";
-    readonly SCAN_STATUS: "SCAN_STATUS";
-    readonly SCAN_TYPE: "SCAN_TYPE";
-};
-/**
- * @public
- */
-export type CriterionKey = (typeof CriterionKey)[keyof typeof CriterionKey];
-/**
- * @public
- * @enum
- */
-export declare const DataSource: {
-    readonly CLOUD_TRAIL: "CLOUD_TRAIL";
-    readonly DNS_LOGS: "DNS_LOGS";
-    readonly EC2_MALWARE_SCAN: "EC2_MALWARE_SCAN";
-    readonly FLOW_LOGS: "FLOW_LOGS";
-    readonly KUBERNETES_AUDIT_LOGS: "KUBERNETES_AUDIT_LOGS";
-    readonly S3_LOGS: "S3_LOGS";
-};
-/**
- * @public
- */
-export type DataSource = (typeof DataSource)[keyof typeof DataSource];
 /**
  * <p>Contains information on the status of DNS logs as a data source.</p>
  * @public
@@ -3631,28 +3158,6 @@ export interface DeleteMalwareProtectionPlanRequest {
      */
     MalwareProtectionPlanId: string | undefined;
 }
-/**
- * <p>The requested resource can't be found.</p>
- * @public
- */
-export declare class ResourceNotFoundException extends __BaseException {
-    readonly name: "ResourceNotFoundException";
-    readonly $fault: "client";
-    /**
-     * <p>The error message.</p>
-     * @public
-     */
-    Message?: string | undefined;
-    /**
-     * <p>The error type.</p>
-     * @public
-     */
-    Type?: string | undefined;
-    /**
-     * @internal
-     */
-    constructor(opts: __ExceptionOptionType<ResourceNotFoundException, __BaseException>);
-}
 /**
  * @public
  */
@@ -3934,18 +3439,6 @@ export interface ResourceDetails {
      */
     InstanceArn?: string | undefined;
 }
-/**
- * @public
- * @enum
- */
-export declare const ScanResult: {
-    readonly CLEAN: "CLEAN";
-    readonly INFECTED: "INFECTED";
-};
-/**
- * @public
- */
-export type ScanResult = (typeof ScanResult)[keyof typeof ScanResult];
 /**
  * <p>Represents the result of the scan.</p>
  * @public
@@ -3957,32 +3450,6 @@ export interface ScanResultDetails {
      */
     ScanResult?: ScanResult | undefined;
 }
-/**
- * @public
- * @enum
- */
-export declare const ScanStatus: {
-    readonly COMPLETED: "COMPLETED";
-    readonly FAILED: "FAILED";
-    readonly RUNNING: "RUNNING";
-    readonly SKIPPED: "SKIPPED";
-};
-/**
- * @public
- */
-export type ScanStatus = (typeof ScanStatus)[keyof typeof ScanStatus];
-/**
- * @public
- * @enum
- */
-export declare const ScanType: {
-    readonly GUARDDUTY_INITIATED: "GUARDDUTY_INITIATED";
-    readonly ON_DEMAND: "ON_DEMAND";
-};
-/**
- * @public
- */
-export type ScanType = (typeof ScanType)[keyof typeof ScanType];
 /**
  * <p>Represents the reason the scan was triggered.</p>
  * @public
@@ -3998,6 +3465,11 @@ export interface TriggerDetails {
      * @public
      */
     Description?: string | undefined;
+    /**
+     * <p>Specifies the trigger type that started the malware scan.</p>
+     * @public
+     */
+    TriggerType?: TriggerType | undefined;
 }
 /**
  * <p>Contains information about malware scans associated with GuardDuty Malware Protection for EC2.</p>
@@ -4226,32 +3698,6 @@ export interface OrganizationDataSourceConfigurationsResult {
      */
     MalwareProtection?: OrganizationMalwareProtectionConfigurationResult | undefined;
 }
-/**
- * @public
- * @enum
- */
-export declare const OrgFeatureStatus: {
-    readonly ALL: "ALL";
-    readonly NEW: "NEW";
-    readonly NONE: "NONE";
-};
-/**
- * @public
- */
-export type OrgFeatureStatus = (typeof OrgFeatureStatus)[keyof typeof OrgFeatureStatus];
-/**
- * @public
- * @enum
- */
-export declare const OrgFeatureAdditionalConfiguration: {
-    readonly EC2_AGENT_MANAGEMENT: "EC2_AGENT_MANAGEMENT";
-    readonly ECS_FARGATE_AGENT_MANAGEMENT: "ECS_FARGATE_AGENT_MANAGEMENT";
-    readonly EKS_ADDON_MANAGEMENT: "EKS_ADDON_MANAGEMENT";
-};
-/**
- * @public
- */
-export type OrgFeatureAdditionalConfiguration = (typeof OrgFeatureAdditionalConfiguration)[keyof typeof OrgFeatureAdditionalConfiguration];
 /**
  * <p>A list of additional configuration which will be configured for the organization.</p>
  * @public
@@ -4294,23 +3740,6 @@ export interface OrganizationAdditionalConfigurationResult {
      */
     AutoEnable?: OrgFeatureStatus | undefined;
 }
-/**
- * @public
- * @enum
- */
-export declare const OrgFeature: {
-    readonly EBS_MALWARE_PROTECTION: "EBS_MALWARE_PROTECTION";
-    readonly EKS_AUDIT_LOGS: "EKS_AUDIT_LOGS";
-    readonly EKS_RUNTIME_MONITORING: "EKS_RUNTIME_MONITORING";
-    readonly LAMBDA_NETWORK_LOGS: "LAMBDA_NETWORK_LOGS";
-    readonly RDS_LOGIN_EVENTS: "RDS_LOGIN_EVENTS";
-    readonly RUNTIME_MONITORING: "RUNTIME_MONITORING";
-    readonly S3_DATA_EVENTS: "S3_DATA_EVENTS";
-};
-/**
- * @public
- */
-export type OrgFeature = (typeof OrgFeature)[keyof typeof OrgFeature];
 /**
  * <p>A list of features which will be configured for the organization.</p>
  * @public
@@ -4444,20 +3873,6 @@ export interface DescribePublishingDestinationRequest {
      */
     DestinationId: string | undefined;
 }
-/**
- * @public
- * @enum
- */
-export declare const PublishingStatus: {
-    readonly PENDING_VERIFICATION: "PENDING_VERIFICATION";
-    readonly PUBLISHING: "PUBLISHING";
-    readonly STOPPED: "STOPPED";
-    readonly UNABLE_TO_PUBLISH_FIX_DESTINATION_PROPERTY: "UNABLE_TO_PUBLISH_FIX_DESTINATION_PROPERTY";
-};
-/**
- * @public
- */
-export type PublishingStatus = (typeof PublishingStatus)[keyof typeof PublishingStatus];
 /**
  * @public
  */
@@ -4519,18 +3934,6 @@ export interface Destination {
      */
     Status: PublishingStatus | undefined;
 }
-/**
- * @public
- * @enum
- */
-export declare const NetworkDirection: {
-    readonly INBOUND: "INBOUND";
-    readonly OUTBOUND: "OUTBOUND";
-};
-/**
- * @public
- */
-export type NetworkDirection = (typeof NetworkDirection)[keyof typeof NetworkDirection];
 /**
  * <p>Contains information about the network connection.</p>
  * @public
@@ -4796,24 +4199,6 @@ export interface EksCluster {
      */
     Ec2InstanceUids?: string[] | undefined;
 }
-/**
- * @public
- * @enum
- */
-export declare const KubernetesResourcesTypes: {
-    readonly CRONJOBS: "CRONJOBS";
-    readonly DAEMONSETS: "DAEMONSETS";
-    readonly DEPLOYMENTS: "DEPLOYMENTS";
-    readonly JOBS: "JOBS";
-    readonly PODS: "PODS";
-    readonly REPLICASETS: "REPLICASETS";
-    readonly REPLICATIONCONTROLLERS: "REPLICATIONCONTROLLERS";
-    readonly STATEFULSETS: "STATEFULSETS";
-};
-/**
- * @public
- */
-export type KubernetesResourcesTypes = (typeof KubernetesResourcesTypes)[keyof typeof KubernetesResourcesTypes];
 /**
  * <p>Contains information about Kubernetes workloads involved in a GuardDuty finding,
  *       including pods, deployments, and other Kubernetes resources.</p>
@@ -4836,42 +4221,6 @@ export interface KubernetesWorkload {
      */
     KubernetesResourcesTypes?: KubernetesResourcesTypes | undefined;
 }
-/**
- * @public
- * @enum
- */
-export declare const PublicAccessStatus: {
-    readonly ALLOWED: "ALLOWED";
-    readonly BLOCKED: "BLOCKED";
-};
-/**
- * @public
- */
-export type PublicAccessStatus = (typeof PublicAccessStatus)[keyof typeof PublicAccessStatus];
-/**
- * @public
- * @enum
- */
-export declare const PublicAclIgnoreBehavior: {
-    readonly IGNORED: "IGNORED";
-    readonly NOT_IGNORED: "NOT_IGNORED";
-};
-/**
- * @public
- */
-export type PublicAclIgnoreBehavior = (typeof PublicAclIgnoreBehavior)[keyof typeof PublicAclIgnoreBehavior];
-/**
- * @public
- * @enum
- */
-export declare const PublicBucketRestrictBehavior: {
-    readonly NOT_RESTRICTED: "NOT_RESTRICTED";
-    readonly RESTRICTED: "RESTRICTED";
-};
-/**
- * @public
- */
-export type PublicBucketRestrictBehavior = (typeof PublicBucketRestrictBehavior)[keyof typeof PublicBucketRestrictBehavior];
 /**
  * <p>Describes public access policies that apply to the Amazon S3 bucket.</p>
  *          <p>For information about each of the following settings, see
@@ -5032,24 +4381,6 @@ export interface ResourceData {
      */
     Container?: ContainerFindingResource | undefined;
 }
-/**
- * @public
- * @enum
- */
-export declare const FindingResourceType: {
-    readonly ACCESS_KEY: "ACCESS_KEY";
-    readonly CONTAINER: "CONTAINER";
-    readonly EC2_INSTANCE: "EC2_INSTANCE";
-    readonly EC2_NETWORK_INTERFACE: "EC2_NETWORK_INTERFACE";
-    readonly EKS_CLUSTER: "EKS_CLUSTER";
-    readonly KUBERNETES_WORKLOAD: "KUBERNETES_WORKLOAD";
-    readonly S3_BUCKET: "S3_BUCKET";
-    readonly S3_OBJECT: "S3_OBJECT";
-};
-/**
- * @public
- */
-export type FindingResourceType = (typeof FindingResourceType)[keyof typeof FindingResourceType];
 /**
  * <p>Contains information about a tag key-value pair.</p>
  * @public
@@ -5118,32 +4449,6 @@ export interface ResourceV2 {
      */
     Data?: ResourceData | undefined;
 }
-/**
- * @public
- * @enum
- */
-export declare const IndicatorType: {
-    readonly ATTACK_TACTIC: "ATTACK_TACTIC";
-    readonly ATTACK_TECHNIQUE: "ATTACK_TECHNIQUE";
-    readonly CRYPTOMINING_DOMAIN: "CRYPTOMINING_DOMAIN";
-    readonly CRYPTOMINING_IP: "CRYPTOMINING_IP";
-    readonly CRYPTOMINING_PROCESS: "CRYPTOMINING_PROCESS";
-    readonly HIGH_RISK_API: "HIGH_RISK_API";
-    readonly MALICIOUS_DOMAIN: "MALICIOUS_DOMAIN";
-    readonly MALICIOUS_IP: "MALICIOUS_IP";
-    readonly MALICIOUS_PROCESS: "MALICIOUS_PROCESS";
-    readonly SUSPICIOUS_NETWORK: "SUSPICIOUS_NETWORK";
-    readonly SUSPICIOUS_PROCESS: "SUSPICIOUS_PROCESS";
-    readonly SUSPICIOUS_USER_AGENT: "SUSPICIOUS_USER_AGENT";
-    readonly TOR_IP: "TOR_IP";
-    readonly UNUSUAL_API_FOR_ACCOUNT: "UNUSUAL_API_FOR_ACCOUNT";
-    readonly UNUSUAL_ASN_FOR_ACCOUNT: "UNUSUAL_ASN_FOR_ACCOUNT";
-    readonly UNUSUAL_ASN_FOR_USER: "UNUSUAL_ASN_FOR_USER";
-};
-/**
- * @public
- */
-export type IndicatorType = (typeof IndicatorType)[keyof typeof IndicatorType];
 /**
  * <p>Contains information about the indicators that include a set of
  *        signals observed in an attack sequence.</p>
@@ -5169,23 +4474,6 @@ export interface Indicator {
      */
     Title?: string | undefined;
 }
-/**
- * @public
- * @enum
- */
-export declare const SignalType: {
-    readonly CLOUD_TRAIL: "CLOUD_TRAIL";
-    readonly DNS_LOGS: "DNS_LOGS";
-    readonly EKS_AUDIT_LOGS: "EKS_AUDIT_LOGS";
-    readonly FINDING: "FINDING";
-    readonly FLOW_LOGS: "FLOW_LOGS";
-    readonly RUNTIME_MONITORING: "RUNTIME_MONITORING";
-    readonly S3_DATA_EVENTS: "S3_DATA_EVENTS";
-};
-/**
- * @public
- */
-export type SignalType = (typeof SignalType)[keyof typeof SignalType];
 /**
  * <p>Contains information about the signals involved in the attack sequence.</p>
  * @public
@@ -5374,26 +4662,6 @@ export interface DetectorAdditionalConfigurationResult {
      */
     UpdatedAt?: Date | undefined;
 }
-/**
- * @public
- * @enum
- */
-export declare const DetectorFeatureResult: {
-    readonly CLOUD_TRAIL: "CLOUD_TRAIL";
-    readonly DNS_LOGS: "DNS_LOGS";
-    readonly EBS_MALWARE_PROTECTION: "EBS_MALWARE_PROTECTION";
-    readonly EKS_AUDIT_LOGS: "EKS_AUDIT_LOGS";
-    readonly EKS_RUNTIME_MONITORING: "EKS_RUNTIME_MONITORING";
-    readonly FLOW_LOGS: "FLOW_LOGS";
-    readonly LAMBDA_NETWORK_LOGS: "LAMBDA_NETWORK_LOGS";
-    readonly RDS_LOGIN_EVENTS: "RDS_LOGIN_EVENTS";
-    readonly RUNTIME_MONITORING: "RUNTIME_MONITORING";
-    readonly S3_DATA_EVENTS: "S3_DATA_EVENTS";
-};
-/**
- * @public
- */
-export type DetectorFeatureResult = (typeof DetectorFeatureResult)[keyof typeof DetectorFeatureResult];
 /**
  * <p>Contains information about a GuardDuty feature.</p>
  *          <p>Specifying both EKS Runtime Monitoring (<code>EKS_RUNTIME_MONITORING</code>)
@@ -5425,18 +4693,6 @@ export interface DetectorFeatureConfigurationResult {
      */
     AdditionalConfiguration?: DetectorAdditionalConfigurationResult[] | undefined;
 }
-/**
- * @public
- * @enum
- */
-export declare const DetectorStatus: {
-    readonly DISABLED: "DISABLED";
-    readonly ENABLED: "ENABLED";
-};
-/**
- * @public
- */
-export type DetectorStatus = (typeof DetectorStatus)[keyof typeof DetectorStatus];
 /**
  * @public
  */
@@ -5512,17 +4768,27 @@ export interface DisassociateMembersResponse {
     UnprocessedAccounts: UnprocessedAccount[] | undefined;
 }
 /**
+ * <p>Contains information about an EBS snapshot that was scanned for malware.</p>
  * @public
- * @enum
  */
-export declare const EbsSnapshotPreservation: {
-    readonly NO_RETENTION: "NO_RETENTION";
-    readonly RETENTION_WITH_FINDING: "RETENTION_WITH_FINDING";
-};
+export interface EbsSnapshot {
+    /**
+     * <p>The device name of the EBS snapshot that was scanned.</p>
+     * @public
+     */
+    DeviceName?: string | undefined;
+}
 /**
+ * <p>Contains details about the EBS snapshot that was scanned for malware.</p>
  * @public
  */
-export type EbsSnapshotPreservation = (typeof EbsSnapshotPreservation)[keyof typeof EbsSnapshotPreservation];
+export interface EbsSnapshotDetails {
+    /**
+     * <p>The Amazon Resource Name (ARN) of the EBS snapshot.</p>
+     * @public
+     */
+    SnapshotArn?: string | undefined;
+}
 /**
  * <p>Contains list of scanned and skipped EBS volumes with details.</p>
  * @public
@@ -5741,6 +5007,17 @@ export interface EbsVolumeScanDetails {
      */
     ScanType?: ScanType | undefined;
 }
+/**
+ * <p>Contains details about the EC2 AMI that was scanned.</p>
+ * @public
+ */
+export interface Ec2ImageDetails {
+    /**
+     * <p>The Amazon Resource Name (ARN) of the EC2 AMI.</p>
+     * @public
+     */
+    ImageArn?: string | undefined;
+}
 /**
  * <p>Represents a pre-existing file or directory on the host machine that the volume maps
  *       to.</p>
@@ -5963,18 +5240,6 @@ export interface Evidence {
      */
     ThreatIntelligenceDetails?: ThreatIntelligenceDetail[] | undefined;
 }
-/**
- * @public
- * @enum
- */
-export declare const Feedback: {
-    readonly NOT_USEFUL: "NOT_USEFUL";
-    readonly USEFUL: "USEFUL";
-};
-/**
- * @public
- */
-export type Feedback = (typeof Feedback)[keyof typeof Feedback];
 /**
  * <p>Contains information about the elastic network interface of the EC2 instance.</p>
  * @public
@@ -6412,6 +5677,22 @@ export interface RdsLimitlessDbDetails {
      */
     Tags?: Tag[] | undefined;
 }
+/**
+ * <p>Contains details about the backup recovery point.</p>
+ * @public
+ */
+export interface RecoveryPointDetails {
+    /**
+     * <p>The Amazon Resource Name (ARN) of the recovery point.</p>
+     * @public
+     */
+    RecoveryPointArn?: string | undefined;
+    /**
+     * <p>The name of the backup vault containing the recovery point.</p>
+     * @public
+     */
+    BackupVaultName?: string | undefined;
+}
 /**
  * <p>Contains information on the owner of the bucket.</p>
  * @public
@@ -6617,6 +5898,21 @@ export interface Resource {
      * @public
      */
     LambdaDetails?: LambdaDetails | undefined;
+    /**
+     * <p>Contains details about the EBS snapshot that was scanned.</p>
+     * @public
+     */
+    EbsSnapshotDetails?: EbsSnapshotDetails | undefined;
+    /**
+     * <p>Contains details about the EC2 image that was scanned.</p>
+     * @public
+     */
+    Ec2ImageDetails?: Ec2ImageDetails | undefined;
+    /**
+     * <p>Contains details about the backup recovery point that was scanned.</p>
+     * @public
+     */
+    RecoveryPointDetails?: RecoveryPointDetails | undefined;
 }
 /**
  * <p>Additional information about the generated finding.</p>
@@ -6634,6 +5930,60 @@ export interface ServiceAdditionalInfo {
      */
     Type?: string | undefined;
 }
+/**
+ * <p>Contains information about the incremental scan configuration.</p>
+ * @public
+ */
+export interface IncrementalScanDetails {
+    /**
+     * <p>Amazon Resource Name (ARN) of the baseline resource used for incremental scanning. The scan will only
+     *       process changes since this baseline resource was created.</p>
+     * @public
+     */
+    BaselineResourceArn: string | undefined;
+}
+/**
+ * <p>Contains finding configuration details about the malware scan.</p>
+ * @public
+ */
+export interface MalwareProtectionFindingsScanConfiguration {
+    /**
+     * <p>The event that triggered the malware scan.</p>
+     * @public
+     */
+    TriggerType?: TriggerType | undefined;
+    /**
+     * <p>Contains information about the incremental scan configuration.</p>
+     * @public
+     */
+    IncrementalScanDetails?: IncrementalScanDetails | undefined;
+}
+/**
+ * <p>Contains detailed information about where a threat was detected.</p>
+ * @public
+ */
+export interface ItemDetails {
+    /**
+     * <p>Amazon Resource Name (ARN) of the resource where the threat was detected.</p>
+     * @public
+     */
+    ResourceArn?: string | undefined;
+    /**
+     * <p>The path where the threat was detected.</p>
+     * @public
+     */
+    ItemPath?: string | undefined;
+    /**
+     * <p>The hash value of the infected item.</p>
+     * @public
+     */
+    Hash?: string | undefined;
+    /**
+     * <p>Additional information about the detected threat item.</p>
+     * @public
+     */
+    AdditionalInfo?: AdditionalInfo | undefined;
+}
 /**
  * <p>Information about the nested item path and hash of the protected
  *       resource.</p>
@@ -6673,6 +6023,21 @@ export interface Threat {
      * @public
      */
     ItemPaths?: ItemPath[] | undefined;
+    /**
+     * <p>The number of occurrences of this specific threat detected during the scan.</p>
+     * @public
+     */
+    Count?: number | undefined;
+    /**
+     * <p>The hash identifier of the detected malware threat.</p>
+     * @public
+     */
+    Hash?: string | undefined;
+    /**
+     * <p>Detailed information about the detected malware threat.</p>
+     * @public
+     */
+    ItemDetails?: ItemDetails[] | undefined;
 }
 /**
  * <p>Information about the malware scan that generated a GuardDuty finding.</p>
@@ -6685,6 +6050,31 @@ export interface MalwareScanDetails {
      * @public
      */
     Threats?: Threat[] | undefined;
+    /**
+     * <p>The unique identifier for the malware scan.</p>
+     * @public
+     */
+    ScanId?: string | undefined;
+    /**
+     * <p>The type of malware scan performed.</p>
+     * @public
+     */
+    ScanType?: MalwareProtectionScanType | undefined;
+    /**
+     * <p>The category of the malware scan.</p>
+     * @public
+     */
+    ScanCategory?: ScanCategory | undefined;
+    /**
+     * <p>The configuration settings used for the malware scan.</p>
+     * @public
+     */
+    ScanConfiguration?: MalwareProtectionFindingsScanConfiguration | undefined;
+    /**
+     * <p>The number of unique malware threats detected during the scan.</p>
+     * @public
+     */
+    UniqueThreatCount?: number | undefined;
 }
 /**
  * <p>Information about the runtime process details.</p>
@@ -7310,3 +6700,1007 @@ export interface FindingStatistics {
      */
     GroupedBySeverity?: SeverityStatistics[] | undefined;
 }
+/**
+ * @public
+ */
+export interface GetAdministratorAccountRequest {
+    /**
+     * <p>The unique ID of the detector of the GuardDuty member account.</p>
+     * @public
+     */
+    DetectorId: string | undefined;
+}
+/**
+ * @public
+ */
+export interface GetAdministratorAccountResponse {
+    /**
+     * <p>The administrator account details.</p>
+     * @public
+     */
+    Administrator: Administrator | undefined;
+}
+/**
+ * @public
+ */
+export interface GetCoverageStatisticsRequest {
+    /**
+     * <p>The unique ID of the GuardDuty detector.</p>
+     *          <p>To find the <code>detectorId</code> in the current Region, see the
+     * Settings page in the GuardDuty console, or run the <a href="https://docs.aws.amazon.com/guardduty/latest/APIReference/API_ListDetectors.html">ListDetectors</a> API.</p>
+     * @public
+     */
+    DetectorId: string | undefined;
+    /**
+     * <p>Represents the criteria used to filter the coverage statistics.</p>
+     * @public
+     */
+    FilterCriteria?: CoverageFilterCriteria | undefined;
+    /**
+     * <p>Represents the statistics type used to aggregate the coverage details.</p>
+     * @public
+     */
+    StatisticsType: CoverageStatisticsType[] | undefined;
+}
+/**
+ * @public
+ */
+export interface GetCoverageStatisticsResponse {
+    /**
+     * <p>Represents the count aggregated by the <code>statusCode</code> and
+     *         <code>resourceType</code>.</p>
+     * @public
+     */
+    CoverageStatistics?: CoverageStatistics | undefined;
+}
+/**
+ * @public
+ */
+export interface GetDetectorRequest {
+    /**
+     * <p>The unique ID of the detector that you want to get.</p>
+     *          <p>To find the <code>detectorId</code> in the current Region, see the
+     * Settings page in the GuardDuty console, or run the <a href="https://docs.aws.amazon.com/guardduty/latest/APIReference/API_ListDetectors.html">ListDetectors</a> API.</p>
+     * @public
+     */
+    DetectorId: string | undefined;
+}
+/**
+ * @public
+ */
+export interface GetDetectorResponse {
+    /**
+     * <p>The timestamp of when the detector was created.</p>
+     * @public
+     */
+    CreatedAt?: string | undefined;
+    /**
+     * <p>The publishing frequency of the finding.</p>
+     * @public
+     */
+    FindingPublishingFrequency?: FindingPublishingFrequency | undefined;
+    /**
+     * <p>The GuardDuty service role.</p>
+     * @public
+     */
+    ServiceRole: string | undefined;
+    /**
+     * <p>The detector status.</p>
+     * @public
+     */
+    Status: DetectorStatus | undefined;
+    /**
+     * <p>The last-updated timestamp for the detector.</p>
+     * @public
+     */
+    UpdatedAt?: string | undefined;
+    /**
+     * <p>Describes which data sources are enabled for the detector.</p>
+     *
+     * @deprecated This parameter is deprecated, use Features instead
+     * @public
+     */
+    DataSources?: DataSourceConfigurationsResult | undefined;
+    /**
+     * <p>The tags of the detector resource.</p>
+     * @public
+     */
+    Tags?: Record<string, string> | undefined;
+    /**
+     * <p>Describes the features that have been enabled for the detector.</p>
+     * @public
+     */
+    Features?: DetectorFeatureConfigurationResult[] | undefined;
+}
+/**
+ * @public
+ */
+export interface GetFilterRequest {
+    /**
+     * <p>The unique ID of the detector that is associated with this filter.</p>
+     *          <p>To find the <code>detectorId</code> in the current Region, see the
+     * Settings page in the GuardDuty console, or run the <a href="https://docs.aws.amazon.com/guardduty/latest/APIReference/API_ListDetectors.html">ListDetectors</a> API.</p>
+     * @public
+     */
+    DetectorId: string | undefined;
+    /**
+     * <p>The name of the filter you want to get.</p>
+     * @public
+     */
+    FilterName: string | undefined;
+}
+/**
+ * @public
+ */
+export interface GetFilterResponse {
+    /**
+     * <p>The name of the filter.</p>
+     * @public
+     */
+    Name: string | undefined;
+    /**
+     * <p>The description of the filter.</p>
+     * @public
+     */
+    Description?: string | undefined;
+    /**
+     * <p>Specifies the action that is to be applied to the findings that match the filter.</p>
+     * @public
+     */
+    Action: FilterAction | undefined;
+    /**
+     * <p>Specifies the position of the filter in the list of current filters. Also specifies the
+     *       order in which this filter is applied to the findings.</p>
+     * @public
+     */
+    Rank?: number | undefined;
+    /**
+     * <p>Represents the criteria to be used in the filter for querying findings.</p>
+     * @public
+     */
+    FindingCriteria: FindingCriteria | undefined;
+    /**
+     * <p>The tags of the filter resource.</p>
+     * @public
+     */
+    Tags?: Record<string, string> | undefined;
+}
+/**
+ * @public
+ */
+export interface GetFindingsRequest {
+    /**
+     * <p>The ID of the detector that specifies the GuardDuty service whose findings you want to
+     *       retrieve.</p>
+     *          <p>To find the <code>detectorId</code> in the current Region, see the
+     * Settings page in the GuardDuty console, or run the <a href="https://docs.aws.amazon.com/guardduty/latest/APIReference/API_ListDetectors.html">ListDetectors</a> API.</p>
+     * @public
+     */
+    DetectorId: string | undefined;
+    /**
+     * <p>The IDs of the findings that you want to retrieve.</p>
+     * @public
+     */
+    FindingIds: string[] | undefined;
+    /**
+     * <p>Represents the criteria used for sorting findings.</p>
+     * @public
+     */
+    SortCriteria?: SortCriteria | undefined;
+}
+/**
+ * @public
+ */
+export interface GetFindingsResponse {
+    /**
+     * <p>A list of findings.</p>
+     * @public
+     */
+    Findings: Finding[] | undefined;
+}
+/**
+ * @public
+ */
+export interface GetFindingsStatisticsRequest {
+    /**
+     * <p>The ID of the detector whose findings statistics you
+     *       want to retrieve.</p>
+     *          <p>To find the <code>detectorId</code> in the current Region, see the
+     * Settings page in the GuardDuty console, or run the <a href="https://docs.aws.amazon.com/guardduty/latest/APIReference/API_ListDetectors.html">ListDetectors</a> API.</p>
+     * @public
+     */
+    DetectorId: string | undefined;
+    /**
+     * <p>The types of finding statistics to retrieve.</p>
+     *
+     * @deprecated This parameter is deprecated, please use GroupBy instead
+     * @public
+     */
+    FindingStatisticTypes?: FindingStatisticType[] | undefined;
+    /**
+     * <p>Represents the criteria that is used for querying findings.</p>
+     * @public
+     */
+    FindingCriteria?: FindingCriteria | undefined;
+    /**
+     * <p>Displays the findings statistics grouped by one of the listed valid values.</p>
+     * @public
+     */
+    GroupBy?: GroupByType | undefined;
+    /**
+     * <p>Displays the sorted findings in the requested order. The default
+     *       value of <code>orderBy</code> is <code>DESC</code>.</p>
+     *          <p>You can use this parameter only with the <code>groupBy</code> parameter.</p>
+     * @public
+     */
+    OrderBy?: OrderBy | undefined;
+    /**
+     * <p>The maximum number of results to be returned in the response. The default value is 25.</p>
+     *          <p>You can use this parameter only with the <code>groupBy</code> parameter.</p>
+     * @public
+     */
+    MaxResults?: number | undefined;
+}
+/**
+ * @public
+ */
+export interface GetFindingsStatisticsResponse {
+    /**
+     * <p>The finding statistics object.</p>
+     * @public
+     */
+    FindingStatistics: FindingStatistics | undefined;
+    /**
+     * <p>The pagination parameter to be used on the next list operation to retrieve more items.</p>
+     *          <p>This parameter is currently not supported.</p>
+     * @public
+     */
+    NextToken?: string | undefined;
+}
+/**
+ * @public
+ */
+export interface GetInvitationsCountRequest {
+}
+/**
+ * @public
+ */
+export interface GetInvitationsCountResponse {
+    /**
+     * <p>The number of received invitations.</p>
+     * @public
+     */
+    InvitationsCount?: number | undefined;
+}
+/**
+ * @public
+ */
+export interface GetIPSetRequest {
+    /**
+     * <p>The unique ID of the detector that is associated with the IPSet.</p>
+     *          <p>To find the <code>detectorId</code> in the current Region, see the
+     * Settings page in the GuardDuty console, or run the <a href="https://docs.aws.amazon.com/guardduty/latest/APIReference/API_ListDetectors.html">ListDetectors</a> API.</p>
+     * @public
+     */
+    DetectorId: string | undefined;
+    /**
+     * <p>The unique ID of the IPSet to retrieve.</p>
+     * @public
+     */
+    IpSetId: string | undefined;
+}
+/**
+ * @public
+ */
+export interface GetIPSetResponse {
+    /**
+     * <p>The user-friendly name for the IPSet.</p>
+     * @public
+     */
+    Name: string | undefined;
+    /**
+     * <p>The format of the file that contains the IPSet.</p>
+     * @public
+     */
+    Format: IpSetFormat | undefined;
+    /**
+     * <p>The URI of the file that contains the IPSet.</p>
+     * @public
+     */
+    Location: string | undefined;
+    /**
+     * <p>The status of IPSet file that was uploaded.</p>
+     * @public
+     */
+    Status: IpSetStatus | undefined;
+    /**
+     * <p>The tags of the IPSet resource.</p>
+     * @public
+     */
+    Tags?: Record<string, string> | undefined;
+    /**
+     * <p>The Amazon Web Services account ID that owns the Amazon S3 bucket specified in the <b>location</b> parameter. This field appears
+     *       in the response only if it was provided during IPSet creation or update.</p>
+     * @public
+     */
+    ExpectedBucketOwner?: string | undefined;
+}
+/**
+ * @public
+ */
+export interface GetMalwareProtectionPlanRequest {
+    /**
+     * <p>A unique identifier associated with Malware Protection plan resource.</p>
+     * @public
+     */
+    MalwareProtectionPlanId: string | undefined;
+}
+/**
+ * <p>Information about the issue code and message associated to the status of
+ *       your Malware Protection plan.</p>
+ * @public
+ */
+export interface MalwareProtectionPlanStatusReason {
+    /**
+     * <p>Issue code.</p>
+     * @public
+     */
+    Code?: string | undefined;
+    /**
+     * <p>Issue message that specifies the reason. For information
+     *       about potential troubleshooting steps, see
+     *       <a href="https://docs.aws.amazon.com/guardduty/latest/ug/troubleshoot-s3-malware-protection-status-errors.html">Troubleshooting Malware Protection for S3 status issues</a> in the
+     *       <i>Amazon GuardDuty User Guide</i>.</p>
+     * @public
+     */
+    Message?: string | undefined;
+}
+/**
+ * @public
+ */
+export interface GetMalwareProtectionPlanResponse {
+    /**
+     * <p>Amazon Resource Name (ARN) of the protected resource.</p>
+     * @public
+     */
+    Arn?: string | undefined;
+    /**
+     * <p>Amazon Resource Name (ARN) of the IAM role that includes the permissions to scan and
+     *       add tags to the associated protected resource.</p>
+     * @public
+     */
+    Role?: string | undefined;
+    /**
+     * <p>Information about the protected resource that is associated with the created
+     *       Malware Protection plan. Presently, <code>S3Bucket</code> is the only supported
+     *       protected resource.</p>
+     * @public
+     */
+    ProtectedResource?: CreateProtectedResource | undefined;
+    /**
+     * <p>Information about whether the tags will be added to the S3 object after scanning.</p>
+     * @public
+     */
+    Actions?: MalwareProtectionPlanActions | undefined;
+    /**
+     * <p>The timestamp when the Malware Protection plan resource was created.</p>
+     * @public
+     */
+    CreatedAt?: Date | undefined;
+    /**
+     * <p>Malware Protection plan status.</p>
+     * @public
+     */
+    Status?: MalwareProtectionPlanStatus | undefined;
+    /**
+     * <p>Information about the issue code and message associated to the status of
+     *     your Malware Protection plan.</p>
+     * @public
+     */
+    StatusReasons?: MalwareProtectionPlanStatusReason[] | undefined;
+    /**
+     * <p>Tags added to the Malware Protection plan resource.</p>
+     * @public
+     */
+    Tags?: Record<string, string> | undefined;
+}
+/**
+ * @public
+ */
+export interface GetMalwareScanRequest {
+    /**
+     * <p>A unique identifier that gets generated when you invoke the API without any error. Each malware scan has
+     *       a corresponding scan ID. Using this scan ID, you can monitor the status of your malware scan.</p>
+     * @public
+     */
+    ScanId: string | undefined;
+}
+/**
+ * <p>Contains information about the recovery point configuration used in the scan.</p>
+ * @public
+ */
+export interface ScanConfigurationRecoveryPoint {
+    /**
+     * <p>The name of the Amazon Web Services Backup vault that contains the recovery point for the scanned.</p>
+     * @public
+     */
+    BackupVaultName?: string | undefined;
+}
+/**
+ * <p>Contains information about the configuration used for the malware scan.</p>
+ * @public
+ */
+export interface ScanConfiguration {
+    /**
+     * <p>Amazon Resource Name (ARN) of the IAM role that should contain the required permissions for the scan.</p>
+     * @public
+     */
+    Role?: string | undefined;
+    /**
+     * <p>Information about the entity that triggered the malware scan.</p>
+     * @public
+     */
+    TriggerDetails?: TriggerDetails | undefined;
+    /**
+     * <p>Information about the incremental scan configuration, if applicable.</p>
+     * @public
+     */
+    IncrementalScanDetails?: IncrementalScanDetails | undefined;
+    /**
+     * <p>Information about the recovery point configuration used for the scan, if applicable.</p>
+     * @public
+     */
+    RecoveryPoint?: ScanConfigurationRecoveryPoint | undefined;
+}
+/**
+ * <p>Contains additional information about a resource that was scanned.</p>
+ * @public
+ */
+export interface ScannedResourceDetails {
+    /**
+     * <p>Contains information about the EBS volume that was scanned.</p>
+     * @public
+     */
+    EbsVolume?: VolumeDetail | undefined;
+    /**
+     * <p>Contains information about the EBS snapshot that was scanned.</p>
+     * @public
+     */
+    EbsSnapshot?: EbsSnapshot | undefined;
+}
+/**
+ * <p>Contains information about a resource that was scanned as part of the malware scan operation.</p>
+ * @public
+ */
+export interface ScannedResource {
+    /**
+     * <p>Amazon Resource Name (ARN) of the scanned resource.</p>
+     * @public
+     */
+    ScannedResourceArn?: string | undefined;
+    /**
+     * <p>The resource type of the scanned resource.</p>
+     * @public
+     */
+    ScannedResourceType?: MalwareProtectionResourceType | undefined;
+    /**
+     * <p>The status of the scanned resource.</p>
+     * @public
+     */
+    ScannedResourceStatus?: MalwareProtectionScanStatus | undefined;
+    /**
+     * <p>The reason for the scan status of this particular resource, if applicable.</p>
+     * @public
+     */
+    ScanStatusReason?: ScanStatusReason | undefined;
+    /**
+     * <p>Information about the scanned resource.</p>
+     * @public
+     */
+    ResourceDetails?: ScannedResourceDetails | undefined;
+}
+/**
+ * <p>Contains information about a specific threat that was detected during the malware scan.</p>
+ * @public
+ */
+export interface ScanResultThreat {
+    /**
+     * <p>The name of the detected threat.</p>
+     * @public
+     */
+    Name?: string | undefined;
+    /**
+     * <p>The source that detected this threat.</p>
+     * @public
+     */
+    Source?: DetectionSource | undefined;
+    /**
+     * <p>The number of instances of this threat that were detected.</p>
+     * @public
+     */
+    Count?: number | undefined;
+    /**
+     * <p>The hash value associated with the detected threat.</p>
+     * @public
+     */
+    Hash?: string | undefined;
+    /**
+     * <p>Additional information about where this threat was detected.</p>
+     * @public
+     */
+    ItemDetails?: ItemDetails[] | undefined;
+}
+/**
+ * <p>Contains information about the results of the malware scan.</p>
+ * @public
+ */
+export interface GetMalwareScanResultDetails {
+    /**
+     * <p>Status indicating whether threats were found for a completed scan.</p>
+     * @public
+     */
+    ScanResultStatus?: ScanResultStatus | undefined;
+    /**
+     * <p>The total number of files that were skipped during the scan.</p>
+     * @public
+     */
+    SkippedFileCount?: number | undefined;
+    /**
+     * <p>The total number of files that failed to be scanned.</p>
+     * @public
+     */
+    FailedFileCount?: number | undefined;
+    /**
+     * <p>The total number of files in which threats were detected.</p>
+     * @public
+     */
+    ThreatFoundFileCount?: number | undefined;
+    /**
+     * <p>The total number of files that were processed during the scan.</p>
+     * @public
+     */
+    TotalFileCount?: number | undefined;
+    /**
+     * <p>The total number of bytes that were scanned.</p>
+     * @public
+     */
+    TotalBytes?: number | undefined;
+    /**
+     * <p>The total number of unique threats that were detected during the scan.</p>
+     * @public
+     */
+    UniqueThreatCount?: number | undefined;
+    /**
+     * <p>The threats that were detected during the malware scan.</p>
+     * @public
+     */
+    Threats?: ScanResultThreat[] | undefined;
+}
+/**
+ * @public
+ */
+export interface GetMalwareScanResponse {
+    /**
+     * <p>A unique identifier associated with the malware scan. Each malware scan has
+     *       a corresponding scan ID. Using this scan ID, you can monitor the status of your malware scan.</p>
+     * @public
+     */
+    ScanId?: string | undefined;
+    /**
+     * <p>The unique ID of the detector that is associated with the request, if it belongs to an account which is a GuardDuty customer.</p>
+     *          <p>To find the <code>detectorId</code> in the current Region, see the
+     * Settings page in the GuardDuty console, or run the <a href="https://docs.aws.amazon.com/guardduty/latest/APIReference/API_ListDetectors.html">ListDetectors</a> API.</p>
+     * @public
+     */
+    DetectorId?: string | undefined;
+    /**
+     * <p>The unique detector ID of the administrator account that the request is associated with.
+     *       If the account is an administrator, the <code>AdminDetectorId</code> will be the same as the one used for
+     *       <code>DetectorId. If the customer is not a GuardDuty customer, this field will not be present.</code>.</p>
+     *          <p>To find the <code>detectorId</code> in the current Region, see the
+     * Settings page in the GuardDuty console, or run the <a href="https://docs.aws.amazon.com/guardduty/latest/APIReference/API_ListDetectors.html">ListDetectors</a> API.</p>
+     * @public
+     */
+    AdminDetectorId?: string | undefined;
+    /**
+     * <p>Amazon Resource Name (ARN) of the resource on which a malware scan was invoked.</p>
+     * @public
+     */
+    ResourceArn?: string | undefined;
+    /**
+     * <p>The type of resource that was scanned for malware.</p>
+     * @public
+     */
+    ResourceType?: MalwareProtectionResourceType | undefined;
+    /**
+     * <p>The total number of resources that were successfully scanned. This is dependent on the resource type.</p>
+     * @public
+     */
+    ScannedResourcesCount?: number | undefined;
+    /**
+     * <p>The total number of resources that were skipped during the scan.</p>
+     * @public
+     */
+    SkippedResourcesCount?: number | undefined;
+    /**
+     * <p>The total number of resources that failed to be scanned.</p>
+     * @public
+     */
+    FailedResourcesCount?: number | undefined;
+    /**
+     * <p>A list of resources along with their metadata that were scanned as part of the malware scan operation.</p>
+     * @public
+     */
+    ScannedResources?: ScannedResource[] | undefined;
+    /**
+     * <p>Information about the scan configuration used for the malware scan.</p>
+     * @public
+     */
+    ScanConfiguration?: ScanConfiguration | undefined;
+    /**
+     * <p>The category of the malware scan, indicating the type of scan performed.</p>
+     * @public
+     */
+    ScanCategory?: ScanCategory | undefined;
+    /**
+     * <p>A value representing the current status of the malware scan.</p>
+     * @public
+     */
+    ScanStatus?: MalwareProtectionScanStatus | undefined;
+    /**
+     * <p>Represents the reason for the current scan status, if applicable.</p>
+     * @public
+     */
+    ScanStatusReason?: ScanStatusReason | undefined;
+    /**
+     * <p>A value representing the initiator of the scan.</p>
+     * @public
+     */
+    ScanType?: MalwareProtectionScanType | undefined;
+    /**
+     * <p>The timestamp representing when the malware scan was started.</p>
+     * @public
+     */
+    ScanStartedAt?: Date | undefined;
+    /**
+     * <p>The timestamp representing when the malware scan was completed.</p>
+     * @public
+     */
+    ScanCompletedAt?: Date | undefined;
+    /**
+     * <p>Detailed information about the results of the malware scan, if the scan completed.</p>
+     * @public
+     */
+    ScanResultDetails?: GetMalwareScanResultDetails | undefined;
+}
+/**
+ * @public
+ */
+export interface GetMalwareScanSettingsRequest {
+    /**
+     * <p>The unique ID of the detector that is associated with this scan.</p>
+     *          <p>To find the <code>detectorId</code> in the current Region, see the
+     * Settings page in the GuardDuty console, or run the <a href="https://docs.aws.amazon.com/guardduty/latest/APIReference/API_ListDetectors.html">ListDetectors</a> API.</p>
+     * @public
+     */
+    DetectorId: string | undefined;
+}
+/**
+ * <p>Represents the <code>key:value</code> pair to be matched against given resource property.</p>
+ * @public
+ */
+export interface ScanConditionPair {
+    /**
+     * <p>Represents the <b>key</b> in the map condition.</p>
+     * @public
+     */
+    Key: string | undefined;
+    /**
+     * <p>Represents optional <b>value</b> in the map
+     *       condition. If not specified, only the <b>key</b> will be
+     *       matched.</p>
+     * @public
+     */
+    Value?: string | undefined;
+}
+/**
+ * <p>Contains information about the condition.</p>
+ * @public
+ */
+export interface ScanCondition {
+    /**
+     * <p>Represents an <i>mapEqual</i>
+     *             <b></b> condition to be applied
+     *       to a single field when triggering for malware scan.</p>
+     * @public
+     */
+    MapEquals: ScanConditionPair[] | undefined;
+}
+/**
+ * <p>Contains information about criteria used to filter resources before triggering malware
+ *       scan.</p>
+ * @public
+ */
+export interface ScanResourceCriteria {
+    /**
+     * <p>Represents condition that when matched will allow a malware scan for a certain
+     *       resource.</p>
+     * @public
+     */
+    Include?: Partial<Record<ScanCriterionKey, ScanCondition>> | undefined;
+    /**
+     * <p>Represents condition that when matched will prevent a malware scan for a certain
+     *       resource.</p>
+     * @public
+     */
+    Exclude?: Partial<Record<ScanCriterionKey, ScanCondition>> | undefined;
+}
+/**
+ * @public
+ */
+export interface GetMalwareScanSettingsResponse {
+    /**
+     * <p>Represents the criteria to be used in the filter for scanning resources.</p>
+     * @public
+     */
+    ScanResourceCriteria?: ScanResourceCriteria | undefined;
+    /**
+     * <p>An enum value representing possible snapshot preservation settings.</p>
+     * @public
+     */
+    EbsSnapshotPreservation?: EbsSnapshotPreservation | undefined;
+}
+/**
+ * @public
+ */
+export interface GetMasterAccountRequest {
+    /**
+     * <p>The unique ID of the detector of the GuardDuty member account.</p>
+     *          <p>To find the <code>detectorId</code> in the current Region, see the
+     * Settings page in the GuardDuty console, or run the <a href="https://docs.aws.amazon.com/guardduty/latest/APIReference/API_ListDetectors.html">ListDetectors</a> API.</p>
+     * @public
+     */
+    DetectorId: string | undefined;
+}
+/**
+ * <p>Contains information about the administrator account and invitation.</p>
+ * @public
+ */
+export interface Master {
+    /**
+     * <p>The ID of the account used as the administrator account.</p>
+     * @public
+     */
+    AccountId?: string | undefined;
+    /**
+     * <p>The value used to validate the administrator account to the member account.</p>
+     * @public
+     */
+    InvitationId?: string | undefined;
+    /**
+     * <p>The status of the relationship between the administrator and member accounts.</p>
+     * @public
+     */
+    RelationshipStatus?: string | undefined;
+    /**
+     * <p>The timestamp when the invitation was sent.</p>
+     * @public
+     */
+    InvitedAt?: string | undefined;
+}
+/**
+ * @public
+ */
+export interface GetMasterAccountResponse {
+    /**
+     * <p>The administrator account details.</p>
+     * @public
+     */
+    Master: Master | undefined;
+}
+/**
+ * @public
+ */
+export interface GetMemberDetectorsRequest {
+    /**
+     * <p>The detector ID for the administrator account.</p>
+     *          <p>To find the <code>detectorId</code> in the current Region, see the
+     * Settings page in the GuardDuty console, or run the <a href="https://docs.aws.amazon.com/guardduty/latest/APIReference/API_ListDetectors.html">ListDetectors</a> API.</p>
+     * @public
+     */
+    DetectorId: string | undefined;
+    /**
+     * <p>A list of member account IDs.</p>
+     * @public
+     */
+    AccountIds: string[] | undefined;
+}
+/**
+ * <p>Information about the additional configuration for the member account.</p>
+ * @public
+ */
+export interface MemberAdditionalConfigurationResult {
+    /**
+     * <p>Indicates the name of the additional configuration that is set for the member
+     *       account.</p>
+     * @public
+     */
+    Name?: OrgFeatureAdditionalConfiguration | undefined;
+    /**
+     * <p>Indicates the status of the additional configuration that is set for the member
+     *       account.</p>
+     * @public
+     */
+    Status?: FeatureStatus | undefined;
+    /**
+     * <p>The timestamp at which the additional configuration was set for the member account. This
+     *       is in UTC format.</p>
+     * @public
+     */
+    UpdatedAt?: Date | undefined;
+}
+/**
+ * <p>Contains information about the features for the member account.</p>
+ * @public
+ */
+export interface MemberFeaturesConfigurationResult {
+    /**
+     * <p>Indicates the name of the feature that is enabled for the detector.</p>
+     * @public
+     */
+    Name?: OrgFeature | undefined;
+    /**
+     * <p>Indicates the status of the feature that is enabled for the detector.</p>
+     * @public
+     */
+    Status?: FeatureStatus | undefined;
+    /**
+     * <p>The timestamp at which the feature object was updated.</p>
+     * @public
+     */
+    UpdatedAt?: Date | undefined;
+    /**
+     * <p>Indicates the additional configuration of the feature that is configured for the member
+     *       account.</p>
+     * @public
+     */
+    AdditionalConfiguration?: MemberAdditionalConfigurationResult[] | undefined;
+}
+/**
+ * <p>Contains information on which data sources are enabled for a member account.</p>
+ * @public
+ */
+export interface MemberDataSourceConfiguration {
+    /**
+     * <p>The account ID for the member account.</p>
+     * @public
+     */
+    AccountId: string | undefined;
+    /**
+     * <p>Contains information on the status of data sources for the account.</p>
+     *
+     * @deprecated This parameter is deprecated, use Features instead
+     * @public
+     */
+    DataSources?: DataSourceConfigurationsResult | undefined;
+    /**
+     * <p>Contains information about the status of the features for the member account.</p>
+     * @public
+     */
+    Features?: MemberFeaturesConfigurationResult[] | undefined;
+}
+/**
+ * @public
+ */
+export interface GetMemberDetectorsResponse {
+    /**
+     * <p>An object that describes which data sources are enabled for a member account.</p>
+     * @public
+     */
+    MemberDataSourceConfigurations: MemberDataSourceConfiguration[] | undefined;
+    /**
+     * <p>A list of member account IDs that were unable to be processed along with an explanation
+     *       for why they were not processed.</p>
+     * @public
+     */
+    UnprocessedAccounts: UnprocessedAccount[] | undefined;
+}
+/**
+ * @public
+ */
+export interface GetMembersRequest {
+    /**
+     * <p>The unique ID of the detector of the GuardDuty account whose members you want to
+     *       retrieve.</p>
+     *          <p>To find the <code>detectorId</code> in the current Region, see the
+     * Settings page in the GuardDuty console, or run the <a href="https://docs.aws.amazon.com/guardduty/latest/APIReference/API_ListDetectors.html">ListDetectors</a> API.</p>
+     * @public
+     */
+    DetectorId: string | undefined;
+    /**
+     * <p>A list of account IDs of the GuardDuty member accounts that you want to describe.</p>
+     * @public
+     */
+    AccountIds: string[] | undefined;
+}
+/**
+ * <p>Contains information about the member account. </p>
+ * @public
+ */
+export interface Member {
+    /**
+     * <p>The ID of the member account.</p>
+     * @public
+     */
+    AccountId: string | undefined;
+    /**
+     * <p>The detector ID of the member account.</p>
+     * @public
+     */
+    DetectorId?: string | undefined;
+    /**
+     * <p>The administrator account ID.</p>
+     * @public
+     */
+    MasterId: string | undefined;
+    /**
+     * <p>The email address of the member account.</p>
+     * @public
+     */
+    Email: string | undefined;
+    /**
+     * <p>The status of the relationship between the member and the administrator.</p>
+     * @public
+     */
+    RelationshipStatus: string | undefined;
+    /**
+     * <p>The timestamp when the invitation was sent.</p>
+     * @public
+     */
+    InvitedAt?: string | undefined;
+    /**
+     * <p>The last-updated timestamp of the member.</p>
+     * @public
+     */
+    UpdatedAt: string | undefined;
+    /**
+     * <p>The administrator account ID.</p>
+     * @public
+     */
+    AdministratorId?: string | undefined;
+}
+/**
+ * @public
+ */
+export interface GetMembersResponse {
+    /**
+     * <p>A list of members.</p>
+     * @public
+     */
+    Members: Member[] | undefined;
+    /**
+     * <p>A list of objects that contain the unprocessed account and a result string that explains
+     *       why it was unprocessed.</p>
+     * @public
+     */
+    UnprocessedAccounts: UnprocessedAccount[] | undefined;
+}
+/**
+ * <p>Information about the coverage
+ *       statistic for the additional
+ *     configuration of the feature.</p>
+ * @public
+ */
+export interface OrganizationFeatureStatisticsAdditionalConfiguration {
+    /**
+     * <p>Name of the additional configuration within a feature.</p>
+     * @public
+     */
+    Name?: OrgFeatureAdditionalConfiguration | undefined;
+    /**
+     * <p>Total number of accounts that have enabled the additional
+     *       configuration.</p>
+     * @public
+     */
+    EnabledAccountsCount?: number | undefined;
+}