npm - @aws-sdk/client-kms - Versions diffs - 3.835.0 → 3.838.0 - Mend

@aws-sdk/client-kms 3.835.0 → 3.838.0

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (9) hide show

package/README.md +11 -9
package/dist-types/KMS.d.ts +11 -9
package/dist-types/KMSClient.d.ts +11 -9
package/dist-types/commands/ImportKeyMaterialCommand.d.ts +26 -26
package/dist-types/commands/ListKeyRotationsCommand.d.ts +3 -3
package/dist-types/commands/RotateKeyOnDemandCommand.d.ts +9 -9
package/dist-types/index.d.ts +11 -9
package/dist-types/models/models_0.d.ts +83 -75
package/package.json +1 -1

package/README.md CHANGED Viewed

@@ -16,18 +16,20 @@ see the <a href="https://docs.aws.amazon.com/kms/latest/developerguide/">
 <note>
 <p>KMS has replaced the term <i>customer master key (CMK)</i> with <i>KMS key</i> and <i>KMS key</i>. The concept has not changed. To prevent breaking changes, KMS is keeping some variations of this term.</p>
 <p>Amazon Web Services provides SDKs that consist of libraries and sample code for various programming
-languages and platforms (Java, Ruby, .Net, macOS, Android, etc.). The SDKs provide a
-convenient way to create programmatic access to KMS and other Amazon Web Services services. For example,
-the SDKs take care of tasks such as signing requests (see below), managing errors, and
-retrying requests automatically. For more information about the Amazon Web Services SDKs, including how to
-download and install them, see <a href="http://aws.amazon.com/tools/">Tools for Amazon Web
-Services</a>.</p>
+languages and platforms (Java, Rust, Python, Ruby, .Net, macOS, Android, etc.). The SDKs
+provide a convenient way to create programmatic access to KMS and other Amazon Web Services services.
+For example, the SDKs take care of tasks such as signing requests (see below), managing
+errors, and retrying requests automatically. For more information about the Amazon Web Services SDKs,
+including how to download and install them, see <a href="http://aws.amazon.com/tools/">Tools
+for Amazon Web Services</a>.</p>
 </note>
 <p>We recommend that you use the Amazon Web Services SDKs to make programmatic API calls to KMS.</p>
 <p>If you need to use FIPS 140-2 validated cryptographic modules when communicating with
-Amazon Web Services, use the FIPS endpoint in your preferred Amazon Web Services Region. For more information about the
-available FIPS endpoints, see <a href="https://docs.aws.amazon.com/general/latest/gr/kms.html#kms_region">Service endpoints</a> in the Key Management Service topic of
-the <i>Amazon Web Services General Reference</i>.</p>
+Amazon Web Services, use one of the FIPS endpoints in your preferred Amazon Web Services Region. If you need communicate
+over IPv6, use the dual-stack endpoint in your preferred Amazon Web Services Region. For more information
+see <a href="https://docs.aws.amazon.com/general/latest/gr/kms.html#kms_region">Service
+endpoints</a> in the Key Management Service topic of the <i>Amazon Web Services General Reference</i> and <a href="https://docs.aws.amazon.com/kms/latest/developerguide/ipv6-kms.html">Dual-stack endpoint
+support</a> in the KMS Developer Guide.</p>
 <p>All KMS API calls must be signed and be transmitted using Transport Layer Security
 (TLS). KMS recommends you always use the latest supported TLS version. Clients must also
 support cipher suites with Perfect Forward Secrecy (PFS) such as Ephemeral Diffie-Hellman

package/dist-types/KMS.d.ts CHANGED Viewed

@@ -389,18 +389,20 @@ export interface KMS {
  *          <note>
  *             <p>KMS has replaced the term <i>customer master key (CMK)</i> with <i>KMS key</i> and <i>KMS key</i>. The concept has not changed. To prevent breaking changes, KMS is keeping some variations of this term.</p>
  *             <p>Amazon Web Services provides SDKs that consist of libraries and sample code for various programming
- *         languages and platforms (Java, Ruby, .Net, macOS, Android, etc.). The SDKs provide a
- *         convenient way to create programmatic access to KMS and other Amazon Web Services services. For example,
- *         the SDKs take care of tasks such as signing requests (see below), managing errors, and
- *         retrying requests automatically. For more information about the Amazon Web Services SDKs, including how to
- *         download and install them, see <a href="http://aws.amazon.com/tools/">Tools for Amazon Web
- *           Services</a>.</p>
+ *         languages and platforms (Java, Rust, Python, Ruby, .Net, macOS, Android, etc.). The SDKs
+ *         provide a convenient way to create programmatic access to KMS and other Amazon Web Services services.
+ *         For example, the SDKs take care of tasks such as signing requests (see below), managing
+ *         errors, and retrying requests automatically. For more information about the Amazon Web Services SDKs,
+ *         including how to download and install them, see <a href="http://aws.amazon.com/tools/">Tools
+ *           for Amazon Web Services</a>.</p>
  *          </note>
  *          <p>We recommend that you use the Amazon Web Services SDKs to make programmatic API calls to KMS.</p>
  *          <p>If you need to use FIPS 140-2 validated cryptographic modules when communicating with
- *       Amazon Web Services, use the FIPS endpoint in your preferred Amazon Web Services Region. For more information about the
- *       available FIPS endpoints, see <a href="https://docs.aws.amazon.com/general/latest/gr/kms.html#kms_region">Service endpoints</a> in the Key Management Service topic of
- *       the <i>Amazon Web Services General Reference</i>.</p>
+ *       Amazon Web Services, use one of the FIPS endpoints in your preferred Amazon Web Services Region. If you need communicate
+ *       over IPv6, use the dual-stack endpoint in your preferred Amazon Web Services Region. For more information
+ *       see <a href="https://docs.aws.amazon.com/general/latest/gr/kms.html#kms_region">Service
+ *         endpoints</a> in the Key Management Service topic of the <i>Amazon Web Services General Reference</i> and <a href="https://docs.aws.amazon.com/kms/latest/developerguide/ipv6-kms.html">Dual-stack endpoint
+ *         support</a> in the KMS Developer Guide.</p>
  *          <p>All KMS API calls must be signed and be transmitted using Transport Layer Security
  *       (TLS). KMS recommends you always use the latest supported TLS version. Clients must also
  *       support cipher suites with Perfect Forward Secrecy (PFS) such as Ephemeral Diffie-Hellman

package/dist-types/KMSClient.d.ts CHANGED Viewed

@@ -231,18 +231,20 @@ export interface KMSClientResolvedConfig extends KMSClientResolvedConfigType {
  *          <note>
  *             <p>KMS has replaced the term <i>customer master key (CMK)</i> with <i>KMS key</i> and <i>KMS key</i>. The concept has not changed. To prevent breaking changes, KMS is keeping some variations of this term.</p>
  *             <p>Amazon Web Services provides SDKs that consist of libraries and sample code for various programming
- *         languages and platforms (Java, Ruby, .Net, macOS, Android, etc.). The SDKs provide a
- *         convenient way to create programmatic access to KMS and other Amazon Web Services services. For example,
- *         the SDKs take care of tasks such as signing requests (see below), managing errors, and
- *         retrying requests automatically. For more information about the Amazon Web Services SDKs, including how to
- *         download and install them, see <a href="http://aws.amazon.com/tools/">Tools for Amazon Web
- *           Services</a>.</p>
+ *         languages and platforms (Java, Rust, Python, Ruby, .Net, macOS, Android, etc.). The SDKs
+ *         provide a convenient way to create programmatic access to KMS and other Amazon Web Services services.
+ *         For example, the SDKs take care of tasks such as signing requests (see below), managing
+ *         errors, and retrying requests automatically. For more information about the Amazon Web Services SDKs,
+ *         including how to download and install them, see <a href="http://aws.amazon.com/tools/">Tools
+ *           for Amazon Web Services</a>.</p>
  *          </note>
  *          <p>We recommend that you use the Amazon Web Services SDKs to make programmatic API calls to KMS.</p>
  *          <p>If you need to use FIPS 140-2 validated cryptographic modules when communicating with
- *       Amazon Web Services, use the FIPS endpoint in your preferred Amazon Web Services Region. For more information about the
- *       available FIPS endpoints, see <a href="https://docs.aws.amazon.com/general/latest/gr/kms.html#kms_region">Service endpoints</a> in the Key Management Service topic of
- *       the <i>Amazon Web Services General Reference</i>.</p>
+ *       Amazon Web Services, use one of the FIPS endpoints in your preferred Amazon Web Services Region. If you need communicate
+ *       over IPv6, use the dual-stack endpoint in your preferred Amazon Web Services Region. For more information
+ *       see <a href="https://docs.aws.amazon.com/general/latest/gr/kms.html#kms_region">Service
+ *         endpoints</a> in the Key Management Service topic of the <i>Amazon Web Services General Reference</i> and <a href="https://docs.aws.amazon.com/kms/latest/developerguide/ipv6-kms.html">Dual-stack endpoint
+ *         support</a> in the KMS Developer Guide.</p>
  *          <p>All KMS API calls must be signed and be transmitted using Transport Layer Security
  *       (TLS). KMS recommends you always use the latest supported TLS version. Clients must also
  *       support cipher suites with Perfect Forward Secrecy (PFS) such as Ephemeral Diffie-Hellman

package/dist-types/commands/ImportKeyMaterialCommand.d.ts CHANGED Viewed

@@ -28,22 +28,22 @@ declare const ImportKeyMaterialCommand_base: {
 };
 /**
  * <p>Imports or reimports key material into an existing KMS key that was created without key
- *       material. You can also use this operation to set or update the expiration model and expiration date of
- *       the imported key material.</p>
- *          <p>By default, KMS creates KMS keys with key material that it generates. You can also generate and
- *       import your own key material. For more information about importing key material, see
- *       <a href="https://docs.aws.amazon.com/kms/latest/developerguide/importing-keys.html">Importing key
+ *       material. You can also use this operation to set or update the expiration model and expiration
+ *       date of the imported key material.</p>
+ *          <p>By default, KMS creates KMS keys with key material that it generates. You can also
+ *       generate and import your own key material. For more information about importing key material,
+ *       see <a href="https://docs.aws.amazon.com/kms/latest/developerguide/importing-keys.html">Importing key
  *         material</a>.</p>
- *          <p>For asymmetric, HMAC and multi-Region keys, you cannot change the key material after the initial import.
- *       You can import multiple key materials into single-Region, symmetric encryption keys and rotate the key material
- *       on demand using <code>RotateKeyOnDemand</code>.</p>
+ *          <p>For asymmetric, HMAC and multi-Region keys, you cannot change the key material after the
+ *       initial import. You can import multiple key materials into single-Region, symmetric encryption
+ *       keys and rotate the key material on demand using <code>RotateKeyOnDemand</code>.</p>
  *          <p>After you import key material, you can <a href="https://docs.aws.amazon.com/kms/latest/developerguide/importing-keys-import-key-material.html#reimport-key-material">reimport
- *       the same key material</a> into that KMS key or, if the key supports on-demand rotation,
- *       import new key material. You can use the <code>ImportType</code> parameter to indicate
- *       whether you are importing new key material or re-importing previously imported key material.
- *       You might reimport key material to replace key material that expired or key material
- *       that you deleted. You might also reimport key material to change the expiration model or
- *       expiration date of the key material.</p>
+ *         the same key material</a> into that KMS key or, if the key supports on-demand rotation,
+ *       import new key material. You can use the <code>ImportType</code> parameter to indicate whether
+ *       you are importing new key material or re-importing previously imported key material. You might
+ *       reimport key material to replace key material that expired or key material that you deleted.
+ *       You might also reimport key material to change the expiration model or expiration date of the
+ *       key material.</p>
  *          <p>Each time you import key material into KMS, you can determine whether
  *         (<code>ExpirationModel</code>) and when (<code>ValidTo</code>) the key material expires. To
  *       change the expiration of your key material, you must import it again, either by calling
@@ -51,13 +51,13 @@ declare const ImportKeyMaterialCommand_base: {
  *          <p>Before you call <code>ImportKeyMaterial</code>, complete these steps:</p>
  *          <ul>
  *             <li>
- *                <p>Create or identify a KMS key with <code>EXTERNAL</code> origin, which indicates that the KMS key is
- *           designed for imported key material. </p>
+ *                <p>Create or identify a KMS key with <code>EXTERNAL</code> origin, which indicates that
+ *           the KMS key is designed for imported key material. </p>
  *                <p>To create a new KMS key for imported key material, call the <a>CreateKey</a> operation with an <code>Origin</code> value of <code>EXTERNAL</code>. You can create a
- *           symmetric encryption KMS key, HMAC KMS key, asymmetric encryption KMS key, asymmetric key agreement key,
- *           or asymmetric signing KMS key. You can also import key material into a <a href="https://docs.aws.amazon.com/kms/latest/developerguide/multi-region-keys-overview.html">multi-Region key</a> of any
- *           supported type. However, you can't import key material into a KMS key in a
- *           <a href="https://docs.aws.amazon.com/kms/latest/developerguide/key-store-overview.html">custom key store</a>.</p>
+ *           symmetric encryption KMS key, HMAC KMS key, asymmetric encryption KMS key, asymmetric key
+ *           agreement key, or asymmetric signing KMS key. You can also import key material into a
+ *             <a href="https://docs.aws.amazon.com/kms/latest/developerguide/multi-region-keys-overview.html">multi-Region key</a> of any supported type. However, you can't import key material
+ *           into a KMS key in a <a href="https://docs.aws.amazon.com/kms/latest/developerguide/key-store-overview.html">custom key store</a>.</p>
  *             </li>
  *             <li>
  *                <p>Call the <a>GetParametersForImport</a> operation to get a public key and
@@ -99,9 +99,9 @@ declare const ImportKeyMaterialCommand_base: {
  *          <p>When this operation is successful, the key state of the KMS key changes from
  *         <code>PendingImport</code> to <code>Enabled</code>, and you can use the KMS key in
  *       cryptographic operations. For single-Region, symmetric encryption keys, you will need to
- *       import all of the key materials associated with the KMS key to change its state to <code>Enabled</code>.
- *       Use the <code>ListKeyRotations</code> operation to list the ID and import state of each key material
- *       associated with a KMS key.</p>
+ *       import all of the key materials associated with the KMS key to change its state to
+ *         <code>Enabled</code>. Use the <code>ListKeyRotations</code> operation to list the ID and
+ *       import state of each key material associated with a KMS key.</p>
  *          <p>If this operation fails, use the exception to help determine the problem. If the error is
  *       related to the key material, the import token, or wrapping key, use <a>GetParametersForImport</a> to get a new public key and import token for the KMS key
  *       and repeat the import procedure. For help, see <a href="https://docs.aws.amazon.com/kms/latest/developerguide/importing-keys-conceptual.html">Create a KMS key with imported key
@@ -181,9 +181,9 @@ declare const ImportKeyMaterialCommand_base: {
  *
  * @throws {@link IncorrectKeyMaterialException} (client fault)
  *  <p>The request was rejected because the key material in the request is, expired, invalid, or
- *       does not meet expectations. For example, it is not the same key material that was previously imported or
- *       KMS expected new key material but the key material being imported is already associated with
- *       the KMS key.</p>
+ *       does not meet expectations. For example, it is not the same key material that was previously
+ *       imported or KMS expected new key material but the key material being imported is already
+ *       associated with the KMS key.</p>
  *
  * @throws {@link InvalidArnException} (client fault)
  *  <p>The request was rejected because a specified ARN, or an ARN in a key policy, is not

package/dist-types/commands/ListKeyRotationsCommand.d.ts CHANGED Viewed

@@ -27,9 +27,9 @@ declare const ListKeyRotationsCommand_base: {
     getEndpointParameterInstructions(): import("@smithy/middleware-endpoint").EndpointParameterInstructions;
 };
 /**
- * <p>Returns information about the key materials associated with the specified KMS
- *       key. You can use the optional <code>IncludeKeyMaterial</code> parameter to control which key materials
- *       are included in the response.</p>
+ * <p>Returns information about the key materials associated with the specified KMS key. You can
+ *       use the optional <code>IncludeKeyMaterial</code> parameter to control which key materials are
+ *       included in the response.</p>
  *          <p>You must specify the KMS key in all requests. You can refine the key rotations list by
  *       limiting the number of rotations returned.</p>
  *          <p>For detailed information about automatic and on-demand key rotations, see <a href="https://docs.aws.amazon.com/kms/latest/developerguide/rotate-keys.html">Rotate KMS keys</a> in the

package/dist-types/commands/RotateKeyOnDemandCommand.d.ts CHANGED Viewed

@@ -46,15 +46,15 @@ declare const RotateKeyOnDemandCommand_base: {
  *       on-demand rotations were performed. You can monitor rotation of the key material for your KMS
  *       keys in CloudTrail and Amazon CloudWatch.</p>
  *          <p>On-demand key rotation is supported only on symmetric encryption KMS keys. You cannot
- *       perform on-demand rotation of <a href="https://docs.aws.amazon.com/kms/latest/developerguide/symmetric-asymmetric.html">asymmetric KMS keys</a>,
- *       <a href="https://docs.aws.amazon.com/kms/latest/developerguide/hmac.html">HMAC KMS keys</a>, multi-Region KMS keys
- *       with <a href="https://docs.aws.amazon.com/kms/latest/developerguide/importing-keys.html">imported key material</a>,
- *       or KMS keys in a <a href="https://docs.aws.amazon.com/kms/latest/developerguide/key-store-overview.html">custom key store</a>. When you initiate on-demand key rotation on a symmetric encryption KMS key
- *       with imported key material, you must have already imported
- *       <a href="https://docs.aws.amazon.com/kms/latest/developerguide/importing-keys-import-key-material.html">new key material</a>
- *       and that key material's state should be <code>PENDING_ROTATION</code>. Use the <code>ListKeyRotations</code>
- *       operation to check the state of all key materials associated with a KMS key. To perform on-demand rotation of
- *       a set of related <a href="https://docs.aws.amazon.com/kms/latest/developerguide/rotate-keys.html#multi-region-rotate">multi-Region keys</a>, invoke the on-demand rotation on the primary key.</p>
+ *       perform on-demand rotation of <a href="https://docs.aws.amazon.com/kms/latest/developerguide/symmetric-asymmetric.html">asymmetric KMS keys</a>, <a href="https://docs.aws.amazon.com/kms/latest/developerguide/hmac.html">HMAC KMS keys</a>, multi-Region KMS
+ *       keys with <a href="https://docs.aws.amazon.com/kms/latest/developerguide/importing-keys.html">imported key
+ *         material</a>, or KMS keys in a <a href="https://docs.aws.amazon.com/kms/latest/developerguide/key-store-overview.html">custom key store</a>. When you initiate on-demand key
+ *       rotation on a symmetric encryption KMS key with imported key material, you must have already
+ *       imported <a href="https://docs.aws.amazon.com/kms/latest/developerguide/importing-keys-import-key-material.html">new key material</a> and that
+ *       key material's state should be <code>PENDING_ROTATION</code>. Use the
+ *         <code>ListKeyRotations</code> operation to check the state of all key materials associated
+ *       with a KMS key. To perform on-demand rotation of a set of related <a href="https://docs.aws.amazon.com/kms/latest/developerguide/rotate-keys.html#multi-region-rotate">multi-Region keys</a>, invoke
+ *       the on-demand rotation on the primary key.</p>
  *          <p>You cannot initiate on-demand rotation of <a href="https://docs.aws.amazon.com/kms/latest/developerguide/concepts.html#aws-managed-cmk">Amazon Web Services managed KMS keys</a>. KMS
  *       always rotates the key material of Amazon Web Services managed keys every year. Rotation of <a href="https://docs.aws.amazon.com/kms/latest/developerguide/concepts.html#aws-owned-cmk">Amazon Web Services owned KMS
  *         keys</a> is managed by the Amazon Web Services service that owns the key.</p>

package/dist-types/index.d.ts CHANGED Viewed

@@ -8,18 +8,20 @@
  *          <note>
  *             <p>KMS has replaced the term <i>customer master key (CMK)</i> with <i>KMS key</i> and <i>KMS key</i>. The concept has not changed. To prevent breaking changes, KMS is keeping some variations of this term.</p>
  *             <p>Amazon Web Services provides SDKs that consist of libraries and sample code for various programming
- *         languages and platforms (Java, Ruby, .Net, macOS, Android, etc.). The SDKs provide a
- *         convenient way to create programmatic access to KMS and other Amazon Web Services services. For example,
- *         the SDKs take care of tasks such as signing requests (see below), managing errors, and
- *         retrying requests automatically. For more information about the Amazon Web Services SDKs, including how to
- *         download and install them, see <a href="http://aws.amazon.com/tools/">Tools for Amazon Web
- *           Services</a>.</p>
+ *         languages and platforms (Java, Rust, Python, Ruby, .Net, macOS, Android, etc.). The SDKs
+ *         provide a convenient way to create programmatic access to KMS and other Amazon Web Services services.
+ *         For example, the SDKs take care of tasks such as signing requests (see below), managing
+ *         errors, and retrying requests automatically. For more information about the Amazon Web Services SDKs,
+ *         including how to download and install them, see <a href="http://aws.amazon.com/tools/">Tools
+ *           for Amazon Web Services</a>.</p>
  *          </note>
  *          <p>We recommend that you use the Amazon Web Services SDKs to make programmatic API calls to KMS.</p>
  *          <p>If you need to use FIPS 140-2 validated cryptographic modules when communicating with
- *       Amazon Web Services, use the FIPS endpoint in your preferred Amazon Web Services Region. For more information about the
- *       available FIPS endpoints, see <a href="https://docs.aws.amazon.com/general/latest/gr/kms.html#kms_region">Service endpoints</a> in the Key Management Service topic of
- *       the <i>Amazon Web Services General Reference</i>.</p>
+ *       Amazon Web Services, use one of the FIPS endpoints in your preferred Amazon Web Services Region. If you need communicate
+ *       over IPv6, use the dual-stack endpoint in your preferred Amazon Web Services Region. For more information
+ *       see <a href="https://docs.aws.amazon.com/general/latest/gr/kms.html#kms_region">Service
+ *         endpoints</a> in the Key Management Service topic of the <i>Amazon Web Services General Reference</i> and <a href="https://docs.aws.amazon.com/kms/latest/developerguide/ipv6-kms.html">Dual-stack endpoint
+ *         support</a> in the KMS Developer Guide.</p>
  *          <p>All KMS API calls must be signed and be transmitted using Transport Layer Security
  *       (TLS). KMS recommends you always use the latest supported TLS version. Clients must also
  *       support cipher suites with Perfect Forward Secrecy (PFS) such as Ephemeral Diffie-Hellman

package/dist-types/models/models_0.d.ts CHANGED Viewed

@@ -1810,10 +1810,11 @@ export interface KeyMetadata {
      */
     DeletionDate?: Date | undefined;
     /**
-     * <p>The earliest time at which any imported key material permanently associated with this KMS key expires. When
-     *       a key material expires, KMS deletes the key material and the KMS key becomes unusable. This value is present
-     *       only for KMS keys whose <code>Origin</code> is <code>EXTERNAL</code> and the <code>ExpirationModel</code>
-     *       is <code>KEY_MATERIAL_EXPIRES</code>, otherwise this value is omitted.</p>
+     * <p>The earliest time at which any imported key material permanently associated with this KMS
+     *       key expires. When a key material expires, KMS deletes the key material and the KMS key
+     *       becomes unusable. This value is present only for KMS keys whose <code>Origin</code> is
+     *         <code>EXTERNAL</code> and the <code>ExpirationModel</code> is
+     *         <code>KEY_MATERIAL_EXPIRES</code>, otherwise this value is omitted.</p>
      * @public
      */
     ValidTo?: Date | undefined;
@@ -1953,11 +1954,12 @@ export interface KeyMetadata {
      */
     XksKeyConfiguration?: XksKeyConfigurationType | undefined;
     /**
-     * <p>Identifies the current key material. This value is present for symmetric encryption keys with
-     *       <code>AWS_KMS</code> origin and single-Region, symmetric encryption keys with <code>EXTERNAL</code>
-     *       origin. These KMS keys support automatic or on-demand key rotation and can have multiple key materials
-     *       associated with them. KMS uses the current key material for both encryption and decryption, and the non-current
-     *       key material for decryption operations only.</p>
+     * <p>Identifies the current key material. This value is present for symmetric encryption keys
+     *       with <code>AWS_KMS</code> origin and single-Region, symmetric encryption keys with
+     *         <code>EXTERNAL</code> origin. These KMS keys support automatic or on-demand key rotation and
+     *       can have multiple key materials associated with them. KMS uses the current key material for
+     *       both encryption and decryption, and the non-current key material for decryption operations
+     *       only.</p>
      * @public
      */
     CurrentKeyMaterialId?: string | undefined;
@@ -2562,9 +2564,9 @@ export interface DecryptResponse {
      */
     CiphertextForRecipient?: Uint8Array | undefined;
     /**
-     * <p>The identifier of the key material used to decrypt the ciphertext. This field is present only when
-     *       the operation uses a symmetric encryption KMS key. This field is omitted if the request includes
-     *       the <code>Recipient</code> parameter.</p>
+     * <p>The identifier of the key material used to decrypt the ciphertext. This field is present
+     *       only when the operation uses a symmetric encryption KMS key. This field is omitted if the
+     *       request includes the <code>Recipient</code> parameter.</p>
      * @public
      */
     KeyMaterialId?: string | undefined;
@@ -2697,8 +2699,7 @@ export interface DeleteImportedKeyMaterialRequest {
     /**
      * <p>Identifies the imported key material you are deleting. </p>
      *          <important>
-     *             <p>If no KeyMaterialId is specified, KMS
-     *       deletes the current key material.</p>
+     *             <p>If no KeyMaterialId is specified, KMS deletes the current key material.</p>
      *          </important>
      *          <p>To get the list of key material IDs associated with a KMS key, use <a>ListKeyRotations</a>.</p>
      * @public
@@ -3338,8 +3339,8 @@ export interface GenerateDataKeyResponse {
      */
     CiphertextForRecipient?: Uint8Array | undefined;
     /**
-     * <p>The identifier of the key material used to encrypt the data key. This field is omitted if the request
-     *       includes the <code>Recipient</code> parameter.</p>
+     * <p>The identifier of the key material used to encrypt the data key. This field is omitted if
+     *       the request includes the <code>Recipient</code> parameter.</p>
      * @public
      */
     KeyMaterialId?: string | undefined;
@@ -3878,10 +3879,9 @@ export interface GetKeyRotationStatusResponse {
     NextRotationDate?: Date | undefined;
     /**
      * <p>Identifies the date and time that an in progress on-demand rotation was initiated.</p>
-     *          <p>KMS uses a background process to perform rotations. As a result, there
-     *       might be a slight delay between initiating on-demand key rotation and the rotation's
-     *       completion. Once the on-demand rotation is complete, KMS removes this field from the response. You can
-     *       use <a>ListKeyRotations</a> to view the details of the completed on-demand rotation.</p>
+     *          <p>KMS uses a background process to perform rotations. As a result, there might be a slight
+     *       delay between initiating on-demand key rotation and the rotation's completion. Once the
+     *       on-demand rotation is complete, KMS removes this field from the response. You can use <a>ListKeyRotations</a> to view the details of the completed on-demand rotation.</p>
      * @public
      */
     OnDemandRotationStartDate?: Date | undefined;
@@ -4250,26 +4250,30 @@ export interface ImportKeyMaterialRequest {
      */
     ExpirationModel?: ExpirationModelType | undefined;
     /**
-     * <p>Indicates whether the key material being imported is previously associated with this KMS key or not.
-     *       This parameter is optional and only usable with symmetric encryption keys. The default is
-     *       <code>EXISTING_KEY_MATERIAL</code>. If no key material has ever been imported into the KMS key,
-     *       and this parameter is omitted, the parameter defaults to <code>NEW_KEY_MATERIAL</code>.</p>
+     * <p>Indicates whether the key material being imported is previously associated with this KMS
+     *       key or not. This parameter is optional and only usable with symmetric encryption keys. If no
+     *       key material has ever been imported into the KMS key, and this parameter is omitted, the
+     *       parameter defaults to <code>NEW_KEY_MATERIAL</code>. After the first key material is imported,
+     *       if this parameter is omitted then the parameter defaults to
+     *       <code>EXISTING_KEY_MATERIAL</code>.</p>
      * @public
      */
     ImportType?: ImportType | undefined;
     /**
-     * <p>Description for the key material being imported. This parameter is optional and only usable
-     *       with symmetric encryption keys. If you do not specify a key material description, KMS retains
-     *       the value you specified when you last imported the same key material into this KMS key.</p>
+     * <p>Description for the key material being imported. This parameter is optional and only
+     *       usable with symmetric encryption keys. If you do not specify a key material description, KMS
+     *       retains the value you specified when you last imported the same key material into this KMS
+     *       key.</p>
      * @public
      */
     KeyMaterialDescription?: string | undefined;
     /**
-     * <p>Identifies the key material being imported. This parameter is optional and only usable with
-     *       symmetric encryption keys. You cannot specify a key material ID with <code>ImportType</code> set
-     *       to <code>NEW_KEY_MATERIAL</code>. Whenever you import key material into a symmetric encryption key,
-     *       KMS assigns a unique identifier to the key material based on the KMS key ID and
-     *       the imported key material. When you re-import key material with a specified key material ID, KMS:</p>
+     * <p>Identifies the key material being imported. This parameter is optional and only usable
+     *       with symmetric encryption keys. You cannot specify a key material ID with
+     *         <code>ImportType</code> set to <code>NEW_KEY_MATERIAL</code>. Whenever you import key
+     *       material into a symmetric encryption key, KMS assigns a unique identifier to the key
+     *       material based on the KMS key ID and the imported key material. When you re-import key
+     *       material with a specified key material ID, KMS:</p>
      *          <ul>
      *             <li>
      *                <p>Computes the identifier for the key material</p>
@@ -4303,9 +4307,9 @@ export interface ImportKeyMaterialResponse {
 }
 /**
  * <p>The request was rejected because the key material in the request is, expired, invalid, or
- *       does not meet expectations. For example, it is not the same key material that was previously imported or
- *       KMS expected new key material but the key material being imported is already associated with
- *       the KMS key.</p>
+ *       does not meet expectations. For example, it is not the same key material that was previously
+ *       imported or KMS expected new key material but the key material being imported is already
+ *       associated with the KMS key.</p>
  * @public
  */
 export declare class IncorrectKeyMaterialException extends __BaseException {
@@ -4652,12 +4656,12 @@ export interface ListKeyRotationsRequest {
     KeyId: string | undefined;
     /**
      * <p>Use this optional parameter to control which key materials associated with this key are
-     *       listed in the response. The default value of this parameter is <code>ROTATIONS_ONLY</code>. If you omit this
-     *       parameter, KMS returns information on the key materials created by automatic or on-demand key rotation. When you
-     *       specify a value of <code>ALL_KEY_MATERIAL</code>, KMS adds the first key material and any imported key material
-     *       pending rotation to the response. This parameter can only be used with KMS keys that support
-     *       automatic or on-demand key rotation.
-     *     </p>
+     *       listed in the response. The default value of this parameter is <code>ROTATIONS_ONLY</code>. If
+     *       you omit this parameter, KMS returns information on the key materials created by automatic
+     *       or on-demand key rotation. When you specify a value of <code>ALL_KEY_MATERIAL</code>, KMS
+     *       adds the first key material and any imported key material pending rotation to the response.
+     *       This parameter can only be used with KMS keys that support automatic or on-demand key
+     *       rotation. </p>
      * @public
      */
     IncludeKeyMaterial?: IncludeKeyMaterial | undefined;
@@ -4691,7 +4695,8 @@ export declare const RotationType: {
  */
 export type RotationType = (typeof RotationType)[keyof typeof RotationType];
 /**
- * <p>Each entry contains information about one of the key materials associated with a KMS key.</p>
+ * <p>Each entry contains information about one of the key materials associated with a KMS
+ *       key.</p>
  * @public
  */
 export interface RotationsListEntry {
@@ -4713,49 +4718,52 @@ export interface RotationsListEntry {
     KeyMaterialDescription?: string | undefined;
     /**
      * <p>Indicates if the key material is currently imported into KMS. It has two possible
-     *       values: <code>IMPORTED</code> or <code>PENDING_IMPORT</code>. This field is only present
-     *       for symmetric encryption KMS keys with <code>EXTERNAL</code> origin.</p>
+     *       values: <code>IMPORTED</code> or <code>PENDING_IMPORT</code>. This field is only present for
+     *       symmetric encryption KMS keys with <code>EXTERNAL</code> origin.</p>
      * @public
      */
     ImportState?: ImportState | undefined;
     /**
-     * <p>There are three possible values for this field: <code>CURRENT</code>, <code>NON_CURRENT</code>
-     *       and <code>PENDING_ROTATION</code>. KMS uses <code>CURRENT</code> key material for both encryption
-     *       and decryption and <code>NON_CURRENT</code> key material only for decryption. <code>PENDING_ROTATION</code>
-     *       identifies key material that has been imported for on-demand key rotation but the rotation hasn't completed.
-     *       Key material in <code>PENDING_ROTATION</code> is not permanently associated with the KMS key. You can
-     *       delete this key material and import different key material in its place. The <code>PENDING_ROTATION</code>
-     *       value is only used in symmetric encryption keys with imported key material. The other values,
-     *       <code>CURRENT</code> and <code>NON_CURRENT</code>, are used for all KMS keys that support automatic or
-     *       on-demand key rotation.</p>
+     * <p>There are three possible values for this field: <code>CURRENT</code>,
+     *         <code>NON_CURRENT</code> and <code>PENDING_ROTATION</code>. KMS uses <code>CURRENT</code>
+     *       key material for both encryption and decryption and <code>NON_CURRENT</code> key material only
+     *       for decryption. <code>PENDING_ROTATION</code> identifies key material that has been imported
+     *       for on-demand key rotation but the rotation hasn't completed. Key material in
+     *         <code>PENDING_ROTATION</code> is not permanently associated with the KMS key. You can delete
+     *       this key material and import different key material in its place. The
+     *         <code>PENDING_ROTATION</code> value is only used in symmetric encryption keys with imported
+     *       key material. The other values, <code>CURRENT</code> and <code>NON_CURRENT</code>, are used
+     *       for all KMS keys that support automatic or on-demand key rotation.</p>
      * @public
      */
     KeyMaterialState?: KeyMaterialState | undefined;
     /**
-     * <p>Indicates if the key material is configured to automatically expire. There are two possible values for
-     *       this field: <code>KEY_MATERIAL_EXPIRES</code> and <code>KEY_MATERIAL_DOES_NOT_EXPIRE</code>. For any key
-     *       material that expires, the expiration date and time is indicated in <code>ValidTo</code>. This field
-     *       is only present for symmetric encryption KMS keys with <code>EXTERNAL</code> origin.</p>
+     * <p>Indicates if the key material is configured to automatically expire. There are two
+     *       possible values for this field: <code>KEY_MATERIAL_EXPIRES</code> and
+     *         <code>KEY_MATERIAL_DOES_NOT_EXPIRE</code>. For any key material that expires, the expiration
+     *       date and time is indicated in <code>ValidTo</code>. This field is only present for symmetric
+     *       encryption KMS keys with <code>EXTERNAL</code> origin.</p>
      * @public
      */
     ExpirationModel?: ExpirationModelType | undefined;
     /**
-     * <p>Date and time at which the key material expires. This field is only present for symmetric encryption KMS
-     *       keys with <code>EXTERNAL</code> origin in rotation list entries with an <code>ExpirationModel</code>
-     *       value of <code>KEY_MATERIAL_EXPIRES</code>.</p>
+     * <p>Date and time at which the key material expires. This field is only present for symmetric
+     *       encryption KMS keys with <code>EXTERNAL</code> origin in rotation list entries with an
+     *         <code>ExpirationModel</code> value of <code>KEY_MATERIAL_EXPIRES</code>.</p>
      * @public
      */
     ValidTo?: Date | undefined;
     /**
-     * <p>Date and time that the key material rotation completed. Formatted as Unix time. This field is not present
-     *       for the first key material or an imported key material in <code>PENDING_ROTATION</code> state.</p>
+     * <p>Date and time that the key material rotation completed. Formatted as Unix time. This field
+     *       is not present for the first key material or an imported key material in
+     *         <code>PENDING_ROTATION</code> state.</p>
      * @public
      */
     RotationDate?: Date | undefined;
     /**
      * <p>Identifies whether the key material rotation was a scheduled <a href="https://docs.aws.amazon.com/kms/latest/developerguide/rotating-keys-enable-disable.html">automatic rotation</a> or an <a href="https://docs.aws.amazon.com/kms/latest/developerguide/rotating-keys-on-demand.html">on-demand
-     *         rotation</a>. This field is not present for the first key material or an imported key material
-     *       in <code>PENDING_ROTATION</code> state.</p>
+     *         rotation</a>. This field is not present for the first key material or an imported key
+     *       material in <code>PENDING_ROTATION</code> state.</p>
      * @public
      */
     RotationType?: RotationType | undefined;
@@ -4765,10 +4773,10 @@ export interface RotationsListEntry {
  */
 export interface ListKeyRotationsResponse {
     /**
-     * <p>A list of completed key material rotations. When the optional input
-     *     parameter <code>IncludeKeyMaterial</code> is specified with a value of
-     *       <code>ALL_KEY_MATERIAL</code>, this list includes the first key material
-     *     and any imported key material pending rotation.</p>
+     * <p>A list of completed key material rotations. When the optional input parameter
+     *         <code>IncludeKeyMaterial</code> is specified with a value of <code>ALL_KEY_MATERIAL</code>,
+     *       this list includes the first key material and any imported key material pending
+     *       rotation.</p>
      * @public
      */
     Rotations?: RotationsListEntry[] | undefined;
@@ -5204,14 +5212,14 @@ export interface ReEncryptResponse {
      */
     DestinationEncryptionAlgorithm?: EncryptionAlgorithmSpec | undefined;
     /**
-     * <p>The identifier of the key material used to originally encrypt the data. This field is present only when
-     *       the original encryption used a symmetric encryption KMS key.</p>
+     * <p>The identifier of the key material used to originally encrypt the data. This field is
+     *       present only when the original encryption used a symmetric encryption KMS key.</p>
      * @public
      */
     SourceKeyMaterialId?: string | undefined;
     /**
-     * <p>The identifier of the key material used to reencrypt the data. This field is present only when
-     *       data is reencrypted using a symmetric encryption KMS key.</p>
+     * <p>The identifier of the key material used to reencrypt the data. This field is present only
+     *       when data is reencrypted using a symmetric encryption KMS key.</p>
      * @public
      */
     DestinationKeyMaterialId?: string | undefined;
@@ -5454,9 +5462,9 @@ export interface RotateKeyOnDemandRequest {
     /**
      * <p>Identifies a symmetric encryption KMS key. You cannot perform on-demand rotation of <a href="https://docs.aws.amazon.com/kms/latest/developerguide/symmetric-asymmetric.html">asymmetric KMS
      *         keys</a>, <a href="https://docs.aws.amazon.com/kms/latest/developerguide/hmac.html">HMAC KMS
-     *       keys</a>, multi-Region KMS keys with <a href="https://docs.aws.amazon.com/kms/latest/developerguide/importing-keys.html">imported key material</a>, or KMS keys in a <a href="https://docs.aws.amazon.com/kms/latest/developerguide/key-store-overview.html">custom key store</a>. To perform on-demand
-     *       rotation of a set of related <a href="https://docs.aws.amazon.com/kms/latest/developerguide/rotate-keys.html#multi-region-rotate">multi-Region keys</a>, invoke
-     *       the on-demand rotation on the primary key.</p>
+     *       keys</a>, multi-Region KMS keys with <a href="https://docs.aws.amazon.com/kms/latest/developerguide/importing-keys.html">imported key material</a>, or KMS keys in a
+     *       <a href="https://docs.aws.amazon.com/kms/latest/developerguide/key-store-overview.html">custom key store</a>. To perform on-demand rotation of a set of related <a href="https://docs.aws.amazon.com/kms/latest/developerguide/rotate-keys.html#multi-region-rotate">multi-Region
+     *         keys</a>, invoke the on-demand rotation on the primary key.</p>
      *          <p>Specify the key ID or key ARN of the KMS key.</p>
      *          <p>For example:</p>
      *          <ul>

package/package.json CHANGED Viewed

@@ -1,7 +1,7 @@
 {
   "name": "@aws-sdk/client-kms",
   "description": "AWS SDK for JavaScript Kms Client for Node.js, Browser and React Native",
-  "version": "3.835.0",
+  "version": "3.838.0",
   "scripts": {
     "build": "concurrently 'yarn:build:cjs' 'yarn:build:es' 'yarn:build:types'",
     "build:cjs": "node ../../scripts/compilation/inline client-kms",