@aws-sdk/client-network-firewall 3.830.0 → 3.831.0

package/README.md

@@ -480,6 +480,14 @@ DescribeRuleGroupMetadata
 
 [Command API Reference](https://docs.aws.amazon.com/AWSJavaScriptSDK/v3/latest/client/network-firewall/command/DescribeRuleGroupMetadataCommand/) / [Input](https://docs.aws.amazon.com/AWSJavaScriptSDK/v3/latest/Package/-aws-sdk-client-network-firewall/Interface/DescribeRuleGroupMetadataCommandInput/) / [Output](https://docs.aws.amazon.com/AWSJavaScriptSDK/v3/latest/Package/-aws-sdk-client-network-firewall/Interface/DescribeRuleGroupMetadataCommandOutput/)
 
+</details>
+<details>
+<summary>
+DescribeRuleGroupSummary
+</summary>
+
+[Command API Reference](https://docs.aws.amazon.com/AWSJavaScriptSDK/v3/latest/client/network-firewall/command/DescribeRuleGroupSummaryCommand/) / [Input](https://docs.aws.amazon.com/AWSJavaScriptSDK/v3/latest/Package/-aws-sdk-client-network-firewall/Interface/DescribeRuleGroupSummaryCommandInput/) / [Output](https://docs.aws.amazon.com/AWSJavaScriptSDK/v3/latest/Package/-aws-sdk-client-network-firewall/Interface/DescribeRuleGroupSummaryCommandOutput/)
+
 </details>
 <details>
 <summary>

package/dist-cjs/index.js

@@ -47,6 +47,7 @@ __export(index_exports, {
   DescribeResourcePolicyCommand: () => DescribeResourcePolicyCommand,
   DescribeRuleGroupCommand: () => DescribeRuleGroupCommand,
   DescribeRuleGroupMetadataCommand: () => DescribeRuleGroupMetadataCommand,
+  DescribeRuleGroupSummaryCommand: () => DescribeRuleGroupSummaryCommand,
   DescribeTLSInspectionConfigurationCommand: () => DescribeTLSInspectionConfigurationCommand,
   DescribeVpcEndpointAssociationCommand: () => DescribeVpcEndpointAssociationCommand,
   DisassociateAvailabilityZonesCommand: () => DisassociateAvailabilityZonesCommand,
@@ -101,6 +102,7 @@ __export(index_exports, {
   StatefulRuleDirection: () => StatefulRuleDirection,
   StatefulRuleProtocol: () => StatefulRuleProtocol,
   StreamExceptionPolicy: () => StreamExceptionPolicy,
+  SummaryRuleOption: () => SummaryRuleOption,
   TCPFlag: () => TCPFlag,
   TagResourceCommand: () => TagResourceCommand,
   TargetType: () => TargetType,
@@ -587,6 +589,11 @@ var TCPFlag = {
   SYN: "SYN",
   URG: "URG"
 };
+var SummaryRuleOption = {
+  METADATA: "METADATA",
+  MSG: "MSG",
+  SID: "SID"
+};
 var RuleGroupType = {
   STATEFUL: "STATEFUL",
   STATELESS: "STATELESS"
@@ -652,6 +659,7 @@ var LogType = {
   TLS: "TLS"
 };
 var ResourceManagedType = {
+  ACTIVE_THREAT_DEFENSE: "ACTIVE_THREAT_DEFENSE",
   AWS_MANAGED_DOMAIN_LISTS: "AWS_MANAGED_DOMAIN_LISTS",
   AWS_MANAGED_THREAT_SIGNATURES: "AWS_MANAGED_THREAT_SIGNATURES"
 };
@@ -845,6 +853,12 @@ var se_DescribeRuleGroupMetadataCommand = /* @__PURE__ */ __name(async (input, c
   body = JSON.stringify((0, import_smithy_client._json)(input));
   return buildHttpRpcRequest(context, headers, "/", void 0, body);
 }, "se_DescribeRuleGroupMetadataCommand");
+var se_DescribeRuleGroupSummaryCommand = /* @__PURE__ */ __name(async (input, context) => {
+  const headers = sharedHeaders("DescribeRuleGroupSummary");
+  let body;
+  body = JSON.stringify((0, import_smithy_client._json)(input));
+  return buildHttpRpcRequest(context, headers, "/", void 0, body);
+}, "se_DescribeRuleGroupSummaryCommand");
 var se_DescribeTLSInspectionConfigurationCommand = /* @__PURE__ */ __name(async (input, context) => {
   const headers = sharedHeaders("DescribeTLSInspectionConfiguration");
   let body;
@@ -1349,6 +1363,19 @@ var de_DescribeRuleGroupMetadataCommand = /* @__PURE__ */ __name(async (output,
   };
   return response;
 }, "de_DescribeRuleGroupMetadataCommand");
+var de_DescribeRuleGroupSummaryCommand = /* @__PURE__ */ __name(async (output, context) => {
+  if (output.statusCode >= 300) {
+    return de_CommandError(output, context);
+  }
+  const data = await (0, import_core2.parseJsonBody)(output.body, context);
+  let contents = {};
+  contents = (0, import_smithy_client._json)(data);
+  const response = {
+    $metadata: deserializeMetadata(output),
+    ...contents
+  };
+  return response;
+}, "de_DescribeRuleGroupSummaryCommand");
 var de_DescribeTLSInspectionConfigurationCommand = /* @__PURE__ */ __name(async (output, context) => {
   if (output.statusCode >= 300) {
     return de_CommandError(output, context);
@@ -1936,6 +1963,7 @@ var se_CreateRuleGroupRequest = /* @__PURE__ */ __name((input, context) => {
     RuleGroupName: [],
     Rules: [],
     SourceMetadata: import_smithy_client._json,
+    SummaryConfiguration: import_smithy_client._json,
     Tags: import_smithy_client._json,
     Type: []
   });
@@ -1951,6 +1979,7 @@ var se_UpdateRuleGroupRequest = /* @__PURE__ */ __name((input, context) => {
     RuleGroupName: [],
     Rules: [],
     SourceMetadata: import_smithy_client._json,
+    SummaryConfiguration: import_smithy_client._json,
     Type: [],
     UpdateToken: []
   });
@@ -2145,6 +2174,7 @@ var de_RuleGroupResponse = /* @__PURE__ */ __name((output, context) => {
     RuleGroupStatus: import_smithy_client.expectString,
     SnsTopic: import_smithy_client.expectString,
     SourceMetadata: import_smithy_client._json,
+    SummaryConfiguration: import_smithy_client._json,
     Tags: import_smithy_client._json,
     Type: import_smithy_client.expectString
   });
@@ -2572,6 +2602,21 @@ var DescribeRuleGroupMetadataCommand = class extends import_smithy_client.Comman
   }
 };
 
+// src/commands/DescribeRuleGroupSummaryCommand.ts
+
+
+
+var DescribeRuleGroupSummaryCommand = class extends import_smithy_client.Command.classBuilder().ep(commonParams).m(function(Command, cs, config, o) {
+  return [
+    (0, import_middleware_serde.getSerdePlugin)(config, this.serialize, this.deserialize),
+    (0, import_middleware_endpoint.getEndpointPlugin)(config, Command.getEndpointParameterInstructions())
+  ];
+}).s("NetworkFirewall_20201112", "DescribeRuleGroupSummary", {}).n("NetworkFirewallClient", "DescribeRuleGroupSummaryCommand").f(void 0, void 0).ser(se_DescribeRuleGroupSummaryCommand).de(de_DescribeRuleGroupSummaryCommand).build() {
+  static {
+    __name(this, "DescribeRuleGroupSummaryCommand");
+  }
+};
+
 // src/commands/DescribeTLSInspectionConfigurationCommand.ts
 
 
@@ -3078,6 +3123,7 @@ var commands = {
   DescribeResourcePolicyCommand,
   DescribeRuleGroupCommand,
   DescribeRuleGroupMetadataCommand,
+  DescribeRuleGroupSummaryCommand,
   DescribeTLSInspectionConfigurationCommand,
   DescribeVpcEndpointAssociationCommand,
   DisassociateAvailabilityZonesCommand,
@@ -3189,6 +3235,7 @@ var paginateListVpcEndpointAssociations = (0, import_core.createPaginator)(Netwo
   DescribeResourcePolicyCommand,
   DescribeRuleGroupCommand,
   DescribeRuleGroupMetadataCommand,
+  DescribeRuleGroupSummaryCommand,
   DescribeTLSInspectionConfigurationCommand,
   DescribeVpcEndpointAssociationCommand,
   DisassociateAvailabilityZonesCommand,
@@ -3259,6 +3306,7 @@ var paginateListVpcEndpointAssociations = (0, import_core.createPaginator)(Netwo
   StatefulRuleDirection,
   StatefulRuleProtocol,
   TCPFlag,
+  SummaryRuleOption,
   RuleGroupType,
   UnsupportedOperationException,
   InvalidResourcePolicyException,

package/dist-es/NetworkFirewall.js

@@ -23,6 +23,7 @@ import { DescribeLoggingConfigurationCommand, } from "./commands/DescribeLogging
 import { DescribeResourcePolicyCommand, } from "./commands/DescribeResourcePolicyCommand";
 import { DescribeRuleGroupCommand, } from "./commands/DescribeRuleGroupCommand";
 import { DescribeRuleGroupMetadataCommand, } from "./commands/DescribeRuleGroupMetadataCommand";
+import { DescribeRuleGroupSummaryCommand, } from "./commands/DescribeRuleGroupSummaryCommand";
 import { DescribeTLSInspectionConfigurationCommand, } from "./commands/DescribeTLSInspectionConfigurationCommand";
 import { DescribeVpcEndpointAssociationCommand, } from "./commands/DescribeVpcEndpointAssociationCommand";
 import { DisassociateAvailabilityZonesCommand, } from "./commands/DisassociateAvailabilityZonesCommand";
@@ -81,6 +82,7 @@ const commands = {
     DescribeResourcePolicyCommand,
     DescribeRuleGroupCommand,
     DescribeRuleGroupMetadataCommand,
+    DescribeRuleGroupSummaryCommand,
     DescribeTLSInspectionConfigurationCommand,
     DescribeVpcEndpointAssociationCommand,
     DisassociateAvailabilityZonesCommand,

package/dist-es/commands/DescribeRuleGroupSummaryCommand.js

@@ -0,0 +1,22 @@
+import { getEndpointPlugin } from "@smithy/middleware-endpoint";
+import { getSerdePlugin } from "@smithy/middleware-serde";
+import { Command as $Command } from "@smithy/smithy-client";
+import { commonParams } from "../endpoint/EndpointParameters";
+import { de_DescribeRuleGroupSummaryCommand, se_DescribeRuleGroupSummaryCommand } from "../protocols/Aws_json1_0";
+export { $Command };
+export class DescribeRuleGroupSummaryCommand extends $Command
+    .classBuilder()
+    .ep(commonParams)
+    .m(function (Command, cs, config, o) {
+    return [
+        getSerdePlugin(config, this.serialize, this.deserialize),
+        getEndpointPlugin(config, Command.getEndpointParameterInstructions()),
+    ];
+})
+    .s("NetworkFirewall_20201112", "DescribeRuleGroupSummary", {})
+    .n("NetworkFirewallClient", "DescribeRuleGroupSummaryCommand")
+    .f(void 0, void 0)
+    .ser(se_DescribeRuleGroupSummaryCommand)
+    .de(de_DescribeRuleGroupSummaryCommand)
+    .build() {
+}

package/dist-es/commands/index.js

@@ -22,6 +22,7 @@ export * from "./DescribeLoggingConfigurationCommand";
 export * from "./DescribeResourcePolicyCommand";
 export * from "./DescribeRuleGroupCommand";
 export * from "./DescribeRuleGroupMetadataCommand";
+export * from "./DescribeRuleGroupSummaryCommand";
 export * from "./DescribeTLSInspectionConfigurationCommand";
 export * from "./DescribeVpcEndpointAssociationCommand";
 export * from "./DisassociateAvailabilityZonesCommand";

package/dist-es/models/models_0.js

@@ -235,6 +235,11 @@ export const TCPFlag = {
     SYN: "SYN",
     URG: "URG",
 };
+export const SummaryRuleOption = {
+    METADATA: "METADATA",
+    MSG: "MSG",
+    SID: "SID",
+};
 export const RuleGroupType = {
     STATEFUL: "STATEFUL",
     STATELESS: "STATELESS",
@@ -288,6 +293,7 @@ export const LogType = {
     TLS: "TLS",
 };
 export const ResourceManagedType = {
+    ACTIVE_THREAT_DEFENSE: "ACTIVE_THREAT_DEFENSE",
     AWS_MANAGED_DOMAIN_LISTS: "AWS_MANAGED_DOMAIN_LISTS",
     AWS_MANAGED_THREAT_SIGNATURES: "AWS_MANAGED_THREAT_SIGNATURES",
 };

package/dist-es/protocols/Aws_json1_0.js

@@ -147,6 +147,12 @@ export const se_DescribeRuleGroupMetadataCommand = async (input, context) => {
     body = JSON.stringify(_json(input));
     return buildHttpRpcRequest(context, headers, "/", undefined, body);
 };
+export const se_DescribeRuleGroupSummaryCommand = async (input, context) => {
+    const headers = sharedHeaders("DescribeRuleGroupSummary");
+    let body;
+    body = JSON.stringify(_json(input));
+    return buildHttpRpcRequest(context, headers, "/", undefined, body);
+};
 export const se_DescribeTLSInspectionConfigurationCommand = async (input, context) => {
     const headers = sharedHeaders("DescribeTLSInspectionConfiguration");
     let body;
@@ -651,6 +657,19 @@ export const de_DescribeRuleGroupMetadataCommand = async (output, context) => {
     };
     return response;
 };
+export const de_DescribeRuleGroupSummaryCommand = async (output, context) => {
+    if (output.statusCode >= 300) {
+        return de_CommandError(output, context);
+    }
+    const data = await parseBody(output.body, context);
+    let contents = {};
+    contents = _json(data);
+    const response = {
+        $metadata: deserializeMetadata(output),
+        ...contents,
+    };
+    return response;
+};
 export const de_DescribeTLSInspectionConfigurationCommand = async (output, context) => {
     if (output.statusCode >= 300) {
         return de_CommandError(output, context);
@@ -1238,6 +1257,7 @@ const se_CreateRuleGroupRequest = (input, context) => {
         RuleGroupName: [],
         Rules: [],
         SourceMetadata: _json,
+        SummaryConfiguration: _json,
         Tags: _json,
         Type: [],
     });
@@ -1253,6 +1273,7 @@ const se_UpdateRuleGroupRequest = (input, context) => {
         RuleGroupName: [],
         Rules: [],
         SourceMetadata: _json,
+        SummaryConfiguration: _json,
         Type: [],
         UpdateToken: [],
     });
@@ -1453,6 +1474,7 @@ const de_RuleGroupResponse = (output, context) => {
         RuleGroupStatus: __expectString,
         SnsTopic: __expectString,
         SourceMetadata: _json,
+        SummaryConfiguration: _json,
         Tags: _json,
         Type: __expectString,
     });

package/dist-types/NetworkFirewall.d.ts

@@ -23,6 +23,7 @@ import { DescribeLoggingConfigurationCommandInput, DescribeLoggingConfigurationC
 import { DescribeResourcePolicyCommandInput, DescribeResourcePolicyCommandOutput } from "./commands/DescribeResourcePolicyCommand";
 import { DescribeRuleGroupCommandInput, DescribeRuleGroupCommandOutput } from "./commands/DescribeRuleGroupCommand";
 import { DescribeRuleGroupMetadataCommandInput, DescribeRuleGroupMetadataCommandOutput } from "./commands/DescribeRuleGroupMetadataCommand";
+import { DescribeRuleGroupSummaryCommandInput, DescribeRuleGroupSummaryCommandOutput } from "./commands/DescribeRuleGroupSummaryCommand";
 import { DescribeTLSInspectionConfigurationCommandInput, DescribeTLSInspectionConfigurationCommandOutput } from "./commands/DescribeTLSInspectionConfigurationCommand";
 import { DescribeVpcEndpointAssociationCommandInput, DescribeVpcEndpointAssociationCommandOutput } from "./commands/DescribeVpcEndpointAssociationCommand";
 import { DisassociateAvailabilityZonesCommandInput, DisassociateAvailabilityZonesCommandOutput } from "./commands/DisassociateAvailabilityZonesCommand";
@@ -211,6 +212,13 @@ export interface NetworkFirewall {
     describeRuleGroupMetadata(args: DescribeRuleGroupMetadataCommandInput, options?: __HttpHandlerOptions): Promise<DescribeRuleGroupMetadataCommandOutput>;
     describeRuleGroupMetadata(args: DescribeRuleGroupMetadataCommandInput, cb: (err: any, data?: DescribeRuleGroupMetadataCommandOutput) => void): void;
     describeRuleGroupMetadata(args: DescribeRuleGroupMetadataCommandInput, options: __HttpHandlerOptions, cb: (err: any, data?: DescribeRuleGroupMetadataCommandOutput) => void): void;
+    /**
+     * @see {@link DescribeRuleGroupSummaryCommand}
+     */
+    describeRuleGroupSummary(): Promise<DescribeRuleGroupSummaryCommandOutput>;
+    describeRuleGroupSummary(args: DescribeRuleGroupSummaryCommandInput, options?: __HttpHandlerOptions): Promise<DescribeRuleGroupSummaryCommandOutput>;
+    describeRuleGroupSummary(args: DescribeRuleGroupSummaryCommandInput, cb: (err: any, data?: DescribeRuleGroupSummaryCommandOutput) => void): void;
+    describeRuleGroupSummary(args: DescribeRuleGroupSummaryCommandInput, options: __HttpHandlerOptions, cb: (err: any, data?: DescribeRuleGroupSummaryCommandOutput) => void): void;
     /**
      * @see {@link DescribeTLSInspectionConfigurationCommand}
      */

package/dist-types/NetworkFirewallClient.d.ts

@@ -31,6 +31,7 @@ import { DescribeLoggingConfigurationCommandInput, DescribeLoggingConfigurationC
 import { DescribeResourcePolicyCommandInput, DescribeResourcePolicyCommandOutput } from "./commands/DescribeResourcePolicyCommand";
 import { DescribeRuleGroupCommandInput, DescribeRuleGroupCommandOutput } from "./commands/DescribeRuleGroupCommand";
 import { DescribeRuleGroupMetadataCommandInput, DescribeRuleGroupMetadataCommandOutput } from "./commands/DescribeRuleGroupMetadataCommand";
+import { DescribeRuleGroupSummaryCommandInput, DescribeRuleGroupSummaryCommandOutput } from "./commands/DescribeRuleGroupSummaryCommand";
 import { DescribeTLSInspectionConfigurationCommandInput, DescribeTLSInspectionConfigurationCommandOutput } from "./commands/DescribeTLSInspectionConfigurationCommand";
 import { DescribeVpcEndpointAssociationCommandInput, DescribeVpcEndpointAssociationCommandOutput } from "./commands/DescribeVpcEndpointAssociationCommand";
 import { DisassociateAvailabilityZonesCommandInput, DisassociateAvailabilityZonesCommandOutput } from "./commands/DisassociateAvailabilityZonesCommand";
@@ -69,11 +70,11 @@ export { __Client };
 /**
  * @public
  */
-export type ServiceInputTypes = AcceptNetworkFirewallTransitGatewayAttachmentCommandInput | AssociateAvailabilityZonesCommandInput | AssociateFirewallPolicyCommandInput | AssociateSubnetsCommandInput | CreateFirewallCommandInput | CreateFirewallPolicyCommandInput | CreateRuleGroupCommandInput | CreateTLSInspectionConfigurationCommandInput | CreateVpcEndpointAssociationCommandInput | DeleteFirewallCommandInput | DeleteFirewallPolicyCommandInput | DeleteNetworkFirewallTransitGatewayAttachmentCommandInput | DeleteResourcePolicyCommandInput | DeleteRuleGroupCommandInput | DeleteTLSInspectionConfigurationCommandInput | DeleteVpcEndpointAssociationCommandInput | DescribeFirewallCommandInput | DescribeFirewallMetadataCommandInput | DescribeFirewallPolicyCommandInput | DescribeFlowOperationCommandInput | DescribeLoggingConfigurationCommandInput | DescribeResourcePolicyCommandInput | DescribeRuleGroupCommandInput | DescribeRuleGroupMetadataCommandInput | DescribeTLSInspectionConfigurationCommandInput | DescribeVpcEndpointAssociationCommandInput | DisassociateAvailabilityZonesCommandInput | DisassociateSubnetsCommandInput | GetAnalysisReportResultsCommandInput | ListAnalysisReportsCommandInput | ListFirewallPoliciesCommandInput | ListFirewallsCommandInput | ListFlowOperationResultsCommandInput | ListFlowOperationsCommandInput | ListRuleGroupsCommandInput | ListTLSInspectionConfigurationsCommandInput | ListTagsForResourceCommandInput | ListVpcEndpointAssociationsCommandInput | PutResourcePolicyCommandInput | RejectNetworkFirewallTransitGatewayAttachmentCommandInput | StartAnalysisReportCommandInput | StartFlowCaptureCommandInput | StartFlowFlushCommandInput | TagResourceCommandInput | UntagResourceCommandInput | UpdateAvailabilityZoneChangeProtectionCommandInput | UpdateFirewallAnalysisSettingsCommandInput | UpdateFirewallDeleteProtectionCommandInput | UpdateFirewallDescriptionCommandInput | UpdateFirewallEncryptionConfigurationCommandInput | UpdateFirewallPolicyChangeProtectionCommandInput | UpdateFirewallPolicyCommandInput | UpdateLoggingConfigurationCommandInput | UpdateRuleGroupCommandInput | UpdateSubnetChangeProtectionCommandInput | UpdateTLSInspectionConfigurationCommandInput;
+export type ServiceInputTypes = AcceptNetworkFirewallTransitGatewayAttachmentCommandInput | AssociateAvailabilityZonesCommandInput | AssociateFirewallPolicyCommandInput | AssociateSubnetsCommandInput | CreateFirewallCommandInput | CreateFirewallPolicyCommandInput | CreateRuleGroupCommandInput | CreateTLSInspectionConfigurationCommandInput | CreateVpcEndpointAssociationCommandInput | DeleteFirewallCommandInput | DeleteFirewallPolicyCommandInput | DeleteNetworkFirewallTransitGatewayAttachmentCommandInput | DeleteResourcePolicyCommandInput | DeleteRuleGroupCommandInput | DeleteTLSInspectionConfigurationCommandInput | DeleteVpcEndpointAssociationCommandInput | DescribeFirewallCommandInput | DescribeFirewallMetadataCommandInput | DescribeFirewallPolicyCommandInput | DescribeFlowOperationCommandInput | DescribeLoggingConfigurationCommandInput | DescribeResourcePolicyCommandInput | DescribeRuleGroupCommandInput | DescribeRuleGroupMetadataCommandInput | DescribeRuleGroupSummaryCommandInput | DescribeTLSInspectionConfigurationCommandInput | DescribeVpcEndpointAssociationCommandInput | DisassociateAvailabilityZonesCommandInput | DisassociateSubnetsCommandInput | GetAnalysisReportResultsCommandInput | ListAnalysisReportsCommandInput | ListFirewallPoliciesCommandInput | ListFirewallsCommandInput | ListFlowOperationResultsCommandInput | ListFlowOperationsCommandInput | ListRuleGroupsCommandInput | ListTLSInspectionConfigurationsCommandInput | ListTagsForResourceCommandInput | ListVpcEndpointAssociationsCommandInput | PutResourcePolicyCommandInput | RejectNetworkFirewallTransitGatewayAttachmentCommandInput | StartAnalysisReportCommandInput | StartFlowCaptureCommandInput | StartFlowFlushCommandInput | TagResourceCommandInput | UntagResourceCommandInput | UpdateAvailabilityZoneChangeProtectionCommandInput | UpdateFirewallAnalysisSettingsCommandInput | UpdateFirewallDeleteProtectionCommandInput | UpdateFirewallDescriptionCommandInput | UpdateFirewallEncryptionConfigurationCommandInput | UpdateFirewallPolicyChangeProtectionCommandInput | UpdateFirewallPolicyCommandInput | UpdateLoggingConfigurationCommandInput | UpdateRuleGroupCommandInput | UpdateSubnetChangeProtectionCommandInput | UpdateTLSInspectionConfigurationCommandInput;
 /**
  * @public
  */
-export type ServiceOutputTypes = AcceptNetworkFirewallTransitGatewayAttachmentCommandOutput | AssociateAvailabilityZonesCommandOutput | AssociateFirewallPolicyCommandOutput | AssociateSubnetsCommandOutput | CreateFirewallCommandOutput | CreateFirewallPolicyCommandOutput | CreateRuleGroupCommandOutput | CreateTLSInspectionConfigurationCommandOutput | CreateVpcEndpointAssociationCommandOutput | DeleteFirewallCommandOutput | DeleteFirewallPolicyCommandOutput | DeleteNetworkFirewallTransitGatewayAttachmentCommandOutput | DeleteResourcePolicyCommandOutput | DeleteRuleGroupCommandOutput | DeleteTLSInspectionConfigurationCommandOutput | DeleteVpcEndpointAssociationCommandOutput | DescribeFirewallCommandOutput | DescribeFirewallMetadataCommandOutput | DescribeFirewallPolicyCommandOutput | DescribeFlowOperationCommandOutput | DescribeLoggingConfigurationCommandOutput | DescribeResourcePolicyCommandOutput | DescribeRuleGroupCommandOutput | DescribeRuleGroupMetadataCommandOutput | DescribeTLSInspectionConfigurationCommandOutput | DescribeVpcEndpointAssociationCommandOutput | DisassociateAvailabilityZonesCommandOutput | DisassociateSubnetsCommandOutput | GetAnalysisReportResultsCommandOutput | ListAnalysisReportsCommandOutput | ListFirewallPoliciesCommandOutput | ListFirewallsCommandOutput | ListFlowOperationResultsCommandOutput | ListFlowOperationsCommandOutput | ListRuleGroupsCommandOutput | ListTLSInspectionConfigurationsCommandOutput | ListTagsForResourceCommandOutput | ListVpcEndpointAssociationsCommandOutput | PutResourcePolicyCommandOutput | RejectNetworkFirewallTransitGatewayAttachmentCommandOutput | StartAnalysisReportCommandOutput | StartFlowCaptureCommandOutput | StartFlowFlushCommandOutput | TagResourceCommandOutput | UntagResourceCommandOutput | UpdateAvailabilityZoneChangeProtectionCommandOutput | UpdateFirewallAnalysisSettingsCommandOutput | UpdateFirewallDeleteProtectionCommandOutput | UpdateFirewallDescriptionCommandOutput | UpdateFirewallEncryptionConfigurationCommandOutput | UpdateFirewallPolicyChangeProtectionCommandOutput | UpdateFirewallPolicyCommandOutput | UpdateLoggingConfigurationCommandOutput | UpdateRuleGroupCommandOutput | UpdateSubnetChangeProtectionCommandOutput | UpdateTLSInspectionConfigurationCommandOutput;
+export type ServiceOutputTypes = AcceptNetworkFirewallTransitGatewayAttachmentCommandOutput | AssociateAvailabilityZonesCommandOutput | AssociateFirewallPolicyCommandOutput | AssociateSubnetsCommandOutput | CreateFirewallCommandOutput | CreateFirewallPolicyCommandOutput | CreateRuleGroupCommandOutput | CreateTLSInspectionConfigurationCommandOutput | CreateVpcEndpointAssociationCommandOutput | DeleteFirewallCommandOutput | DeleteFirewallPolicyCommandOutput | DeleteNetworkFirewallTransitGatewayAttachmentCommandOutput | DeleteResourcePolicyCommandOutput | DeleteRuleGroupCommandOutput | DeleteTLSInspectionConfigurationCommandOutput | DeleteVpcEndpointAssociationCommandOutput | DescribeFirewallCommandOutput | DescribeFirewallMetadataCommandOutput | DescribeFirewallPolicyCommandOutput | DescribeFlowOperationCommandOutput | DescribeLoggingConfigurationCommandOutput | DescribeResourcePolicyCommandOutput | DescribeRuleGroupCommandOutput | DescribeRuleGroupMetadataCommandOutput | DescribeRuleGroupSummaryCommandOutput | DescribeTLSInspectionConfigurationCommandOutput | DescribeVpcEndpointAssociationCommandOutput | DisassociateAvailabilityZonesCommandOutput | DisassociateSubnetsCommandOutput | GetAnalysisReportResultsCommandOutput | ListAnalysisReportsCommandOutput | ListFirewallPoliciesCommandOutput | ListFirewallsCommandOutput | ListFlowOperationResultsCommandOutput | ListFlowOperationsCommandOutput | ListRuleGroupsCommandOutput | ListTLSInspectionConfigurationsCommandOutput | ListTagsForResourceCommandOutput | ListVpcEndpointAssociationsCommandOutput | PutResourcePolicyCommandOutput | RejectNetworkFirewallTransitGatewayAttachmentCommandOutput | StartAnalysisReportCommandOutput | StartFlowCaptureCommandOutput | StartFlowFlushCommandOutput | TagResourceCommandOutput | UntagResourceCommandOutput | UpdateAvailabilityZoneChangeProtectionCommandOutput | UpdateFirewallAnalysisSettingsCommandOutput | UpdateFirewallDeleteProtectionCommandOutput | UpdateFirewallDescriptionCommandOutput | UpdateFirewallEncryptionConfigurationCommandOutput | UpdateFirewallPolicyChangeProtectionCommandOutput | UpdateFirewallPolicyCommandOutput | UpdateLoggingConfigurationCommandOutput | UpdateRuleGroupCommandOutput | UpdateSubnetChangeProtectionCommandOutput | UpdateTLSInspectionConfigurationCommandOutput;
 /**
  * @public
  */

package/dist-types/commands/CreateFirewallPolicyCommand.d.ts

@@ -73,6 +73,7 @@ declare const CreateFirewallPolicyCommand_base: {
  *         Override: { // StatefulRuleGroupOverride
  *           Action: "DROP_TO_ALERT",
  *         },
+ *         DeepThreatInspection: true || false,
  *       },
  *     ],
  *     StatefulDefaultActions: [ // StatefulActions

package/dist-types/commands/CreateRuleGroupCommand.d.ts

@@ -183,6 +183,11 @@ declare const CreateRuleGroupCommand_base: {
  *     SourceUpdateToken: "STRING_VALUE",
  *   },
  *   AnalyzeRuleGroup: true || false,
+ *   SummaryConfiguration: { // SummaryConfiguration
+ *     RuleOptions: [ // SummaryRuleOptions
+ *       "SID" || "MSG" || "METADATA",
+ *     ],
+ *   },
  * };
  * const command = new CreateRuleGroupCommand(input);
  * const response = await client.send(command);
@@ -223,6 +228,11 @@ declare const CreateRuleGroupCommand_base: {
  * //         AnalysisDetail: "STRING_VALUE",
  * //       },
  * //     ],
+ * //     SummaryConfiguration: { // SummaryConfiguration
+ * //       RuleOptions: [ // SummaryRuleOptions
+ * //         "SID" || "MSG" || "METADATA",
+ * //       ],
+ * //     },
  * //   },
  * // };
  *

package/dist-types/commands/DeleteNetworkFirewallTransitGatewayAttachmentCommand.d.ts

@@ -29,7 +29,7 @@ declare const DeleteNetworkFirewallTransitGatewayAttachmentCommand_base: {
 /**
  * <p>Deletes a transit gateway attachment from a Network Firewall. Either the firewall owner or the transit gateway owner can delete the attachment.</p>
  *          <important>
- *             <p>After you delete a transit gateway attachment, traffic will no longer flow through the firewall endpoints.</p>
+ *             <p>After you delete a transit gateway attachment, raffic will no longer flow through the firewall endpoints.</p>
  *          </important>
  *          <p>After you initiate the delete operation, use <a>DescribeFirewall</a> to monitor the deletion status.</p>
  * @example

package/dist-types/commands/DeleteRuleGroupCommand.d.ts

@@ -77,6 +77,11 @@ declare const DeleteRuleGroupCommand_base: {
  * //         AnalysisDetail: "STRING_VALUE",
  * //       },
  * //     ],
+ * //     SummaryConfiguration: { // SummaryConfiguration
+ * //       RuleOptions: [ // SummaryRuleOptions
+ * //         "SID" || "MSG" || "METADATA",
+ * //       ],
+ * //     },
  * //   },
  * // };
  *

package/dist-types/commands/DescribeFirewallPolicyCommand.d.ts

@@ -97,6 +97,7 @@ declare const DescribeFirewallPolicyCommand_base: {
  * //         Override: { // StatefulRuleGroupOverride
  * //           Action: "DROP_TO_ALERT",
  * //         },
+ * //         DeepThreatInspection: true || false,
  * //       },
  * //     ],
  * //     StatefulDefaultActions: [ // StatefulActions

package/dist-types/commands/DescribeRuleGroupCommand.d.ts

@@ -203,6 +203,11 @@ declare const DescribeRuleGroupCommand_base: {
  * //         AnalysisDetail: "STRING_VALUE",
  * //       },
  * //     ],
+ * //     SummaryConfiguration: { // SummaryConfiguration
+ * //       RuleOptions: [ // SummaryRuleOptions
+ * //         "SID" || "MSG" || "METADATA",
+ * //       ],
+ * //     },
  * //   },
  * // };
  *

package/dist-types/commands/DescribeRuleGroupSummaryCommand.d.ts

@@ -0,0 +1,112 @@
+import { Command as $Command } from "@smithy/smithy-client";
+import { MetadataBearer as __MetadataBearer } from "@smithy/types";
+import { DescribeRuleGroupSummaryRequest, DescribeRuleGroupSummaryResponse } from "../models/models_0";
+import { NetworkFirewallClientResolvedConfig, ServiceInputTypes, ServiceOutputTypes } from "../NetworkFirewallClient";
+/**
+ * @public
+ */
+export type { __MetadataBearer };
+export { $Command };
+/**
+ * @public
+ *
+ * The input for {@link DescribeRuleGroupSummaryCommand}.
+ */
+export interface DescribeRuleGroupSummaryCommandInput extends DescribeRuleGroupSummaryRequest {
+}
+/**
+ * @public
+ *
+ * The output of {@link DescribeRuleGroupSummaryCommand}.
+ */
+export interface DescribeRuleGroupSummaryCommandOutput extends DescribeRuleGroupSummaryResponse, __MetadataBearer {
+}
+declare const DescribeRuleGroupSummaryCommand_base: {
+    new (input: DescribeRuleGroupSummaryCommandInput): import("@smithy/smithy-client").CommandImpl<DescribeRuleGroupSummaryCommandInput, DescribeRuleGroupSummaryCommandOutput, NetworkFirewallClientResolvedConfig, ServiceInputTypes, ServiceOutputTypes>;
+    new (...[input]: [] | [DescribeRuleGroupSummaryCommandInput]): import("@smithy/smithy-client").CommandImpl<DescribeRuleGroupSummaryCommandInput, DescribeRuleGroupSummaryCommandOutput, NetworkFirewallClientResolvedConfig, ServiceInputTypes, ServiceOutputTypes>;
+    getEndpointParameterInstructions(): import("@smithy/middleware-endpoint").EndpointParameterInstructions;
+};
+/**
+ * <p>Returns detailed information for a stateful rule group.</p>
+ *          <p>For active threat defense Amazon Web Services managed rule groups, this operation provides insight into the protections enabled by the rule group, based on Suricata rule metadata fields. Summaries are available for rule groups you manage and for active threat defense Amazon Web Services managed rule groups.</p>
+ *          <p>To modify how threat information appears in summaries, use the <code>SummaryConfiguration</code> parameter in <a>UpdateRuleGroup</a>.</p>
+ * @example
+ * Use a bare-bones client and the command you need to make an API call.
+ * ```javascript
+ * import { NetworkFirewallClient, DescribeRuleGroupSummaryCommand } from "@aws-sdk/client-network-firewall"; // ES Modules import
+ * // const { NetworkFirewallClient, DescribeRuleGroupSummaryCommand } = require("@aws-sdk/client-network-firewall"); // CommonJS import
+ * const client = new NetworkFirewallClient(config);
+ * const input = { // DescribeRuleGroupSummaryRequest
+ *   RuleGroupName: "STRING_VALUE",
+ *   RuleGroupArn: "STRING_VALUE",
+ *   Type: "STATELESS" || "STATEFUL",
+ * };
+ * const command = new DescribeRuleGroupSummaryCommand(input);
+ * const response = await client.send(command);
+ * // { // DescribeRuleGroupSummaryResponse
+ * //   RuleGroupName: "STRING_VALUE", // required
+ * //   Description: "STRING_VALUE",
+ * //   Summary: { // Summary
+ * //     RuleSummaries: [ // RuleSummaries
+ * //       { // RuleSummary
+ * //         SID: "STRING_VALUE",
+ * //         Msg: "STRING_VALUE",
+ * //         Metadata: "STRING_VALUE",
+ * //       },
+ * //     ],
+ * //   },
+ * // };
+ *
+ * ```
+ *
+ * @param DescribeRuleGroupSummaryCommandInput - {@link DescribeRuleGroupSummaryCommandInput}
+ * @returns {@link DescribeRuleGroupSummaryCommandOutput}
+ * @see {@link DescribeRuleGroupSummaryCommandInput} for command's `input` shape.
+ * @see {@link DescribeRuleGroupSummaryCommandOutput} for command's `response` shape.
+ * @see {@link NetworkFirewallClientResolvedConfig | config} for NetworkFirewallClient's `config` shape.
+ *
+ * @throws {@link InternalServerError} (server fault)
+ *  <p>Your request is valid, but Network Firewall couldn't perform the operation because of a
+ *          system problem. Retry your request. </p>
+ *
+ * @throws {@link InvalidRequestException} (client fault)
+ *  <p>The operation failed because of a problem with your request. Examples include: </p>
+ *          <ul>
+ *             <li>
+ *                <p>You specified an unsupported parameter name or value.</p>
+ *             </li>
+ *             <li>
+ *                <p>You tried to update a property with a value that isn't among the available
+ *                types.</p>
+ *             </li>
+ *             <li>
+ *                <p>Your request references an ARN that is malformed, or corresponds to a resource
+ *                that isn't valid in the context of the request.</p>
+ *             </li>
+ *          </ul>
+ *
+ * @throws {@link ResourceNotFoundException} (client fault)
+ *  <p>Unable to locate a resource using the parameters that you provided.</p>
+ *
+ * @throws {@link ThrottlingException} (client fault)
+ *  <p>Unable to process the request due to throttling limitations.</p>
+ *
+ * @throws {@link NetworkFirewallServiceException}
+ * <p>Base exception class for all service exceptions from NetworkFirewall service.</p>
+ *
+ *
+ * @public
+ */
+export declare class DescribeRuleGroupSummaryCommand extends DescribeRuleGroupSummaryCommand_base {
+    /** @internal type navigation helper, not in runtime. */
+    protected static __types: {
+        api: {
+            input: DescribeRuleGroupSummaryRequest;
+            output: DescribeRuleGroupSummaryResponse;
+        };
+        sdk: {
+            input: DescribeRuleGroupSummaryCommandInput;
+            output: DescribeRuleGroupSummaryCommandOutput;
+        };
+    };
+}

package/dist-types/commands/ListRuleGroupsCommand.d.ts

@@ -40,7 +40,7 @@ declare const ListRuleGroupsCommand_base: {
  *   NextToken: "STRING_VALUE",
  *   MaxResults: Number("int"),
  *   Scope: "MANAGED" || "ACCOUNT",
- *   ManagedType: "AWS_MANAGED_THREAT_SIGNATURES" || "AWS_MANAGED_DOMAIN_LISTS",
+ *   ManagedType: "AWS_MANAGED_THREAT_SIGNATURES" || "AWS_MANAGED_DOMAIN_LISTS" || "ACTIVE_THREAT_DEFENSE",
  *   Type: "STATELESS" || "STATEFUL",
  * };
  * const command = new ListRuleGroupsCommand(input);

package/dist-types/commands/RejectNetworkFirewallTransitGatewayAttachmentCommand.d.ts

@@ -28,7 +28,7 @@ declare const RejectNetworkFirewallTransitGatewayAttachmentCommand_base: {
 };
 /**
  * <p>Rejects a transit gateway attachment request for Network Firewall. When you reject the attachment request, Network Firewall cancels the creation of routing components between the transit gateway and firewall endpoints.</p>
- *          <p>Only the transit gateway owner can reject the attachment. After rejection, no traffic will flow through the firewall endpoints for this attachment.</p>
+ *          <p>Only the firewall owner can reject the attachment. After rejection, no traffic will flow through the firewall endpoints for this attachment.</p>
  *          <p>Use <a>DescribeFirewall</a> to monitor the rejection status. To accept the attachment instead of rejecting it, use <a>AcceptNetworkFirewallTransitGatewayAttachment</a>.</p>
  *          <note>
  *             <p>Once rejected, you cannot reverse this action. To establish connectivity, you must create a new transit gateway-attached firewall.</p>

package/dist-types/commands/UpdateFirewallPolicyCommand.d.ts

@@ -72,6 +72,7 @@ declare const UpdateFirewallPolicyCommand_base: {
  *         Override: { // StatefulRuleGroupOverride
  *           Action: "DROP_TO_ALERT",
  *         },
+ *         DeepThreatInspection: true || false,
  *       },
  *     ],
  *     StatefulDefaultActions: [ // StatefulActions

package/dist-types/commands/UpdateRuleGroupCommand.d.ts

@@ -180,6 +180,11 @@ declare const UpdateRuleGroupCommand_base: {
  *     SourceUpdateToken: "STRING_VALUE",
  *   },
  *   AnalyzeRuleGroup: true || false,
+ *   SummaryConfiguration: { // SummaryConfiguration
+ *     RuleOptions: [ // SummaryRuleOptions
+ *       "SID" || "MSG" || "METADATA",
+ *     ],
+ *   },
  * };
  * const command = new UpdateRuleGroupCommand(input);
  * const response = await client.send(command);
@@ -220,6 +225,11 @@ declare const UpdateRuleGroupCommand_base: {
  * //         AnalysisDetail: "STRING_VALUE",
  * //       },
  * //     ],
+ * //     SummaryConfiguration: { // SummaryConfiguration
+ * //       RuleOptions: [ // SummaryRuleOptions
+ * //         "SID" || "MSG" || "METADATA",
+ * //       ],
+ * //     },
  * //   },
  * // };
  *

package/dist-types/commands/index.d.ts

@@ -22,6 +22,7 @@ export * from "./DescribeLoggingConfigurationCommand";
 export * from "./DescribeResourcePolicyCommand";
 export * from "./DescribeRuleGroupCommand";
 export * from "./DescribeRuleGroupMetadataCommand";
+export * from "./DescribeRuleGroupSummaryCommand";
 export * from "./DescribeTLSInspectionConfigurationCommand";
 export * from "./DescribeVpcEndpointAssociationCommand";
 export * from "./DisassociateAvailabilityZonesCommand";

package/dist-types/models/models_0.d.ts

@@ -1538,6 +1538,15 @@ export interface StatefulRuleGroupReference {
      * @public
      */
     Override?: StatefulRuleGroupOverride | undefined;
+    /**
+     * <p>Network Firewall plans to augment the active threat defense managed rule group with an additional deep threat inspection capability. When this capability is released, Amazon Web Services will analyze service logs of network traffic processed by these rule groups to identify threat indicators across customers.
+     *          Amazon Web Services will use these threat indicators to improve the active threat defense managed rule groups and protect the security of Amazon Web Services customers and services.</p>
+     *          <note>
+     *             <p>Customers can opt-out of deep threat inspection at any time through the Network Firewall console or API. When customers opt out, Network Firewall  will not use the network traffic processed by those customers' active threat defense rule groups for rule group improvement.</p>
+     *          </note>
+     * @public
+     */
+    DeepThreatInspection?: boolean | undefined;
 }
 /**
  * <p>An optional, non-standard action to use for stateless packet handling. You can define
@@ -2462,6 +2471,37 @@ export interface SourceMetadata {
      */
     SourceUpdateToken?: string | undefined;
 }
+/**
+ * @public
+ * @enum
+ */
+export declare const SummaryRuleOption: {
+    readonly METADATA: "METADATA";
+    readonly MSG: "MSG";
+    readonly SID: "SID";
+};
+/**
+ * @public
+ */
+export type SummaryRuleOption = (typeof SummaryRuleOption)[keyof typeof SummaryRuleOption];
+/**
+ * <p>A complex type that specifies which Suricata rule metadata fields to use when displaying threat information. Contains:</p>
+ *          <ul>
+ *             <li>
+ *                <p>
+ *                   <code>RuleOptions</code> - The Suricata rule options fields to extract and display</p>
+ *             </li>
+ *          </ul>
+ *          <p>These settings affect how threat information appears in both the console and API responses. Summaries are available for rule groups you manage and for active threat defense Amazon Web Services managed rule groups.</p>
+ * @public
+ */
+export interface SummaryConfiguration {
+    /**
+     * <p>Specifies the selected rule options returned by <a>DescribeRuleGroupSummary</a>.</p>
+     * @public
+     */
+    RuleOptions?: SummaryRuleOption[] | undefined;
+}
 /**
  * @public
  * @enum
@@ -2587,6 +2627,28 @@ export interface CreateRuleGroupRequest {
      * @public
      */
     AnalyzeRuleGroup?: boolean | undefined;
+    /**
+     * <p>An object that contains a <code>RuleOptions</code> array of strings.
+     *          You use <code>RuleOptions</code> to determine which of the following <a>RuleSummary</a> values are returned in response to <code>DescribeRuleGroupSummary</code>.</p>
+     *          <ul>
+     *             <li>
+     *                <p>
+     *                   <code>Metadata</code> - returns</p>
+     *             </li>
+     *             <li>
+     *                <p>
+     *                   <code>Msg</code>
+     *                </p>
+     *             </li>
+     *             <li>
+     *                <p>
+     *                   <code>SID</code>
+     *                </p>
+     *             </li>
+     *          </ul>
+     * @public
+     */
+    SummaryConfiguration?: SummaryConfiguration | undefined;
 }
 /**
  * <p>The high-level properties of a rule group. This, along with the <a>RuleGroup</a>, define the rule group. You can retrieve all objects for a rule group by calling <a>DescribeRuleGroup</a>. </p>
@@ -2681,6 +2743,20 @@ export interface RuleGroupResponse {
      * @public
      */
     AnalysisResults?: AnalysisResult[] | undefined;
+    /**
+     * <p>A complex type containing the currently selected rule option fields that will be displayed for rule summarization returned by <a>DescribeRuleGroupSummary</a>.</p>
+     *          <ul>
+     *             <li>
+     *                <p>The <code>RuleOptions</code> specified in <a>SummaryConfiguration</a>
+     *                </p>
+     *             </li>
+     *             <li>
+     *                <p>Rule metadata organization preferences</p>
+     *             </li>
+     *          </ul>
+     * @public
+     */
+    SummaryConfiguration?: SummaryConfiguration | undefined;
 }
 /**
  * @public
@@ -3910,6 +3986,113 @@ export interface DescribeRuleGroupMetadataResponse {
      */
     LastModifiedTime?: Date | undefined;
 }
+/**
+ * @public
+ */
+export interface DescribeRuleGroupSummaryRequest {
+    /**
+     * <p>The descriptive name of the rule group. You can't change the name of a rule group after you create it.</p>
+     *          <p>You must specify the ARN or the name, and you can specify both. </p>
+     * @public
+     */
+    RuleGroupName?: string | undefined;
+    /**
+     * <p>Required. The Amazon Resource Name (ARN) of the rule group.</p>
+     *          <p>You must specify the ARN or the name, and you can specify both. </p>
+     * @public
+     */
+    RuleGroupArn?: string | undefined;
+    /**
+     * <p>The type of rule group you want a summary for. This is a required field.</p>
+     *          <p>Valid value: <code>STATEFUL</code>
+     *          </p>
+     *          <p>Note that <code>STATELESS</code> exists but is not currently supported. If you provide <code>STATELESS</code>, an exception is returned.</p>
+     * @public
+     */
+    Type?: RuleGroupType | undefined;
+}
+/**
+ * <p>A complex type containing details about a Suricata rule. Contains:</p>
+ *          <ul>
+ *             <li>
+ *                <p>
+ *                   <code>SID</code>
+ *                </p>
+ *             </li>
+ *             <li>
+ *                <p>
+ *                   <code>Msg</code>
+ *                </p>
+ *             </li>
+ *             <li>
+ *                <p>
+ *                   <code>Metadata</code>
+ *                </p>
+ *             </li>
+ *          </ul>
+ *          <p>Summaries are available for rule groups you manage and for active threat defense Amazon Web Services managed rule groups.</p>
+ * @public
+ */
+export interface RuleSummary {
+    /**
+     * <p>The unique identifier (Signature ID) of the Suricata rule.</p>
+     * @public
+     */
+    SID?: string | undefined;
+    /**
+     * <p>The contents taken from the rule's msg field.</p>
+     * @public
+     */
+    Msg?: string | undefined;
+    /**
+     * <p>The contents of the rule's metadata.</p>
+     * @public
+     */
+    Metadata?: string | undefined;
+}
+/**
+ * <p>A complex type containing summaries of security protections provided by a rule group.</p>
+ *          <p>Network Firewall extracts this information from selected fields in the rule group's Suricata rules, based on your <a>SummaryConfiguration</a> settings.</p>
+ * @public
+ */
+export interface Summary {
+    /**
+     * <p>An array of <a>RuleSummary</a> objects containing individual rule details that had been configured by the rulegroup's SummaryConfiguration.</p>
+     * @public
+     */
+    RuleSummaries?: RuleSummary[] | undefined;
+}
+/**
+ * @public
+ */
+export interface DescribeRuleGroupSummaryResponse {
+    /**
+     * <p>The descriptive name of the rule group. You can't change the name of a rule group after you create it.</p>
+     * @public
+     */
+    RuleGroupName: string | undefined;
+    /**
+     * <p>A description of the rule group. </p>
+     * @public
+     */
+    Description?: string | undefined;
+    /**
+     * <p>A complex type that contains rule information based on the rule group's configured summary settings. The content varies depending on the fields that you specified to extract in your SummaryConfiguration. When you haven't configured any summary settings, this returns an empty array. The response might include:</p>
+     *          <ul>
+     *             <li>
+     *                <p>Rule identifiers</p>
+     *             </li>
+     *             <li>
+     *                <p>Rule descriptions</p>
+     *             </li>
+     *             <li>
+     *                <p>Any metadata fields that you specified in your SummaryConfiguration</p>
+     *             </li>
+     *          </ul>
+     * @public
+     */
+    Summary?: Summary | undefined;
+}
 /**
  * @public
  */
@@ -4596,6 +4779,7 @@ export interface ListFlowOperationsResponse {
  * @enum
  */
 export declare const ResourceManagedType: {
+    readonly ACTIVE_THREAT_DEFENSE: "ACTIVE_THREAT_DEFENSE";
     readonly AWS_MANAGED_DOMAIN_LISTS: "AWS_MANAGED_DOMAIN_LISTS";
     readonly AWS_MANAGED_THREAT_SIGNATURES: "AWS_MANAGED_THREAT_SIGNATURES";
 };
@@ -5731,6 +5915,12 @@ export interface UpdateRuleGroupRequest {
      * @public
      */
     AnalyzeRuleGroup?: boolean | undefined;
+    /**
+     * <p>Updates the selected summary configuration for a rule group.</p>
+     *          <p>Changes affect subsequent responses from <a>DescribeRuleGroupSummary</a>.</p>
+     * @public
+     */
+    SummaryConfiguration?: SummaryConfiguration | undefined;
 }
 /**
  * @public

package/dist-types/protocols/Aws_json1_0.d.ts

@@ -24,6 +24,7 @@ import { DescribeLoggingConfigurationCommandInput, DescribeLoggingConfigurationC
 import { DescribeResourcePolicyCommandInput, DescribeResourcePolicyCommandOutput } from "../commands/DescribeResourcePolicyCommand";
 import { DescribeRuleGroupCommandInput, DescribeRuleGroupCommandOutput } from "../commands/DescribeRuleGroupCommand";
 import { DescribeRuleGroupMetadataCommandInput, DescribeRuleGroupMetadataCommandOutput } from "../commands/DescribeRuleGroupMetadataCommand";
+import { DescribeRuleGroupSummaryCommandInput, DescribeRuleGroupSummaryCommandOutput } from "../commands/DescribeRuleGroupSummaryCommand";
 import { DescribeTLSInspectionConfigurationCommandInput, DescribeTLSInspectionConfigurationCommandOutput } from "../commands/DescribeTLSInspectionConfigurationCommand";
 import { DescribeVpcEndpointAssociationCommandInput, DescribeVpcEndpointAssociationCommandOutput } from "../commands/DescribeVpcEndpointAssociationCommand";
 import { DisassociateAvailabilityZonesCommandInput, DisassociateAvailabilityZonesCommandOutput } from "../commands/DisassociateAvailabilityZonesCommand";
@@ -152,6 +153,10 @@ export declare const se_DescribeRuleGroupCommand: (input: DescribeRuleGroupComma
  * serializeAws_json1_0DescribeRuleGroupMetadataCommand
  */
 export declare const se_DescribeRuleGroupMetadataCommand: (input: DescribeRuleGroupMetadataCommandInput, context: __SerdeContext) => Promise<__HttpRequest>;
+/**
+ * serializeAws_json1_0DescribeRuleGroupSummaryCommand
+ */
+export declare const se_DescribeRuleGroupSummaryCommand: (input: DescribeRuleGroupSummaryCommandInput, context: __SerdeContext) => Promise<__HttpRequest>;
 /**
  * serializeAws_json1_0DescribeTLSInspectionConfigurationCommand
  */
@@ -376,6 +381,10 @@ export declare const de_DescribeRuleGroupCommand: (output: __HttpResponse, conte
  * deserializeAws_json1_0DescribeRuleGroupMetadataCommand
  */
 export declare const de_DescribeRuleGroupMetadataCommand: (output: __HttpResponse, context: __SerdeContext) => Promise<DescribeRuleGroupMetadataCommandOutput>;
+/**
+ * deserializeAws_json1_0DescribeRuleGroupSummaryCommand
+ */
+export declare const de_DescribeRuleGroupSummaryCommand: (output: __HttpResponse, context: __SerdeContext) => Promise<DescribeRuleGroupSummaryCommandOutput>;
 /**
  * deserializeAws_json1_0DescribeTLSInspectionConfigurationCommand
  */

package/dist-types/ts3.4/NetworkFirewall.d.ts

@@ -95,6 +95,10 @@ import {
   DescribeRuleGroupMetadataCommandInput,
   DescribeRuleGroupMetadataCommandOutput,
 } from "./commands/DescribeRuleGroupMetadataCommand";
+import {
+  DescribeRuleGroupSummaryCommandInput,
+  DescribeRuleGroupSummaryCommandOutput,
+} from "./commands/DescribeRuleGroupSummaryCommand";
 import {
   DescribeTLSInspectionConfigurationCommandInput,
   DescribeTLSInspectionConfigurationCommandOutput,
@@ -559,6 +563,20 @@ export interface NetworkFirewall {
     options: __HttpHandlerOptions,
     cb: (err: any, data?: DescribeRuleGroupMetadataCommandOutput) => void
   ): void;
+  describeRuleGroupSummary(): Promise<DescribeRuleGroupSummaryCommandOutput>;
+  describeRuleGroupSummary(
+    args: DescribeRuleGroupSummaryCommandInput,
+    options?: __HttpHandlerOptions
+  ): Promise<DescribeRuleGroupSummaryCommandOutput>;
+  describeRuleGroupSummary(
+    args: DescribeRuleGroupSummaryCommandInput,
+    cb: (err: any, data?: DescribeRuleGroupSummaryCommandOutput) => void
+  ): void;
+  describeRuleGroupSummary(
+    args: DescribeRuleGroupSummaryCommandInput,
+    options: __HttpHandlerOptions,
+    cb: (err: any, data?: DescribeRuleGroupSummaryCommandOutput) => void
+  ): void;
   describeTLSInspectionConfiguration(): Promise<DescribeTLSInspectionConfigurationCommandOutput>;
   describeTLSInspectionConfiguration(
     args: DescribeTLSInspectionConfigurationCommandInput,

package/dist-types/ts3.4/NetworkFirewallClient.d.ts

@@ -141,6 +141,10 @@ import {
   DescribeRuleGroupMetadataCommandInput,
   DescribeRuleGroupMetadataCommandOutput,
 } from "./commands/DescribeRuleGroupMetadataCommand";
+import {
+  DescribeRuleGroupSummaryCommandInput,
+  DescribeRuleGroupSummaryCommandOutput,
+} from "./commands/DescribeRuleGroupSummaryCommand";
 import {
   DescribeTLSInspectionConfigurationCommandInput,
   DescribeTLSInspectionConfigurationCommandOutput,
@@ -301,6 +305,7 @@ export type ServiceInputTypes =
   | DescribeResourcePolicyCommandInput
   | DescribeRuleGroupCommandInput
   | DescribeRuleGroupMetadataCommandInput
+  | DescribeRuleGroupSummaryCommandInput
   | DescribeTLSInspectionConfigurationCommandInput
   | DescribeVpcEndpointAssociationCommandInput
   | DisassociateAvailabilityZonesCommandInput
@@ -358,6 +363,7 @@ export type ServiceOutputTypes =
   | DescribeResourcePolicyCommandOutput
   | DescribeRuleGroupCommandOutput
   | DescribeRuleGroupMetadataCommandOutput
+  | DescribeRuleGroupSummaryCommandOutput
   | DescribeTLSInspectionConfigurationCommandOutput
   | DescribeVpcEndpointAssociationCommandOutput
   | DisassociateAvailabilityZonesCommandOutput

package/dist-types/ts3.4/commands/DescribeRuleGroupSummaryCommand.d.ts

@@ -0,0 +1,51 @@
+import { Command as $Command } from "@smithy/smithy-client";
+import { MetadataBearer as __MetadataBearer } from "@smithy/types";
+import {
+  DescribeRuleGroupSummaryRequest,
+  DescribeRuleGroupSummaryResponse,
+} from "../models/models_0";
+import {
+  NetworkFirewallClientResolvedConfig,
+  ServiceInputTypes,
+  ServiceOutputTypes,
+} from "../NetworkFirewallClient";
+export { __MetadataBearer };
+export { $Command };
+export interface DescribeRuleGroupSummaryCommandInput
+  extends DescribeRuleGroupSummaryRequest {}
+export interface DescribeRuleGroupSummaryCommandOutput
+  extends DescribeRuleGroupSummaryResponse,
+    __MetadataBearer {}
+declare const DescribeRuleGroupSummaryCommand_base: {
+  new (
+    input: DescribeRuleGroupSummaryCommandInput
+  ): import("@smithy/smithy-client").CommandImpl<
+    DescribeRuleGroupSummaryCommandInput,
+    DescribeRuleGroupSummaryCommandOutput,
+    NetworkFirewallClientResolvedConfig,
+    ServiceInputTypes,
+    ServiceOutputTypes
+  >;
+  new (
+    ...[input]: [] | [DescribeRuleGroupSummaryCommandInput]
+  ): import("@smithy/smithy-client").CommandImpl<
+    DescribeRuleGroupSummaryCommandInput,
+    DescribeRuleGroupSummaryCommandOutput,
+    NetworkFirewallClientResolvedConfig,
+    ServiceInputTypes,
+    ServiceOutputTypes
+  >;
+  getEndpointParameterInstructions(): import("@smithy/middleware-endpoint").EndpointParameterInstructions;
+};
+export declare class DescribeRuleGroupSummaryCommand extends DescribeRuleGroupSummaryCommand_base {
+  protected static __types: {
+    api: {
+      input: DescribeRuleGroupSummaryRequest;
+      output: DescribeRuleGroupSummaryResponse;
+    };
+    sdk: {
+      input: DescribeRuleGroupSummaryCommandInput;
+      output: DescribeRuleGroupSummaryCommandOutput;
+    };
+  };
+}

package/dist-types/ts3.4/commands/index.d.ts

@@ -22,6 +22,7 @@ export * from "./DescribeLoggingConfigurationCommand";
 export * from "./DescribeResourcePolicyCommand";
 export * from "./DescribeRuleGroupCommand";
 export * from "./DescribeRuleGroupMetadataCommand";
+export * from "./DescribeRuleGroupSummaryCommand";
 export * from "./DescribeTLSInspectionConfigurationCommand";
 export * from "./DescribeVpcEndpointAssociationCommand";
 export * from "./DisassociateAvailabilityZonesCommand";

package/dist-types/ts3.4/models/models_0.d.ts

@@ -367,6 +367,7 @@ export interface StatefulRuleGroupReference {
   ResourceArn: string | undefined;
   Priority?: number | undefined;
   Override?: StatefulRuleGroupOverride | undefined;
+  DeepThreatInspection?: boolean | undefined;
 }
 export interface CustomAction {
   ActionName: string | undefined;
@@ -562,6 +563,16 @@ export interface SourceMetadata {
   SourceArn?: string | undefined;
   SourceUpdateToken?: string | undefined;
 }
+export declare const SummaryRuleOption: {
+  readonly METADATA: "METADATA";
+  readonly MSG: "MSG";
+  readonly SID: "SID";
+};
+export type SummaryRuleOption =
+  (typeof SummaryRuleOption)[keyof typeof SummaryRuleOption];
+export interface SummaryConfiguration {
+  RuleOptions?: SummaryRuleOption[] | undefined;
+}
 export declare const RuleGroupType: {
   readonly STATEFUL: "STATEFUL";
   readonly STATELESS: "STATELESS";
@@ -579,6 +590,7 @@ export interface CreateRuleGroupRequest {
   EncryptionConfiguration?: EncryptionConfiguration | undefined;
   SourceMetadata?: SourceMetadata | undefined;
   AnalyzeRuleGroup?: boolean | undefined;
+  SummaryConfiguration?: SummaryConfiguration | undefined;
 }
 export interface RuleGroupResponse {
   RuleGroupArn: string | undefined;
@@ -596,6 +608,7 @@ export interface RuleGroupResponse {
   SnsTopic?: string | undefined;
   LastModifiedTime?: Date | undefined;
   AnalysisResults?: AnalysisResult[] | undefined;
+  SummaryConfiguration?: SummaryConfiguration | undefined;
 }
 export interface CreateRuleGroupResponse {
   UpdateToken: string | undefined;
@@ -876,6 +889,24 @@ export interface DescribeRuleGroupMetadataResponse {
   StatefulRuleOptions?: StatefulRuleOptions | undefined;
   LastModifiedTime?: Date | undefined;
 }
+export interface DescribeRuleGroupSummaryRequest {
+  RuleGroupName?: string | undefined;
+  RuleGroupArn?: string | undefined;
+  Type?: RuleGroupType | undefined;
+}
+export interface RuleSummary {
+  SID?: string | undefined;
+  Msg?: string | undefined;
+  Metadata?: string | undefined;
+}
+export interface Summary {
+  RuleSummaries?: RuleSummary[] | undefined;
+}
+export interface DescribeRuleGroupSummaryResponse {
+  RuleGroupName: string | undefined;
+  Description?: string | undefined;
+  Summary?: Summary | undefined;
+}
 export interface DescribeTLSInspectionConfigurationRequest {
   TLSInspectionConfigurationArn?: string | undefined;
   TLSInspectionConfigurationName?: string | undefined;
@@ -1021,6 +1052,7 @@ export interface ListFlowOperationsResponse {
   NextToken?: string | undefined;
 }
 export declare const ResourceManagedType: {
+  readonly ACTIVE_THREAT_DEFENSE: "ACTIVE_THREAT_DEFENSE";
   readonly AWS_MANAGED_DOMAIN_LISTS: "AWS_MANAGED_DOMAIN_LISTS";
   readonly AWS_MANAGED_THREAT_SIGNATURES: "AWS_MANAGED_THREAT_SIGNATURES";
 };
@@ -1266,6 +1298,7 @@ export interface UpdateRuleGroupRequest {
   EncryptionConfiguration?: EncryptionConfiguration | undefined;
   SourceMetadata?: SourceMetadata | undefined;
   AnalyzeRuleGroup?: boolean | undefined;
+  SummaryConfiguration?: SummaryConfiguration | undefined;
 }
 export interface UpdateRuleGroupResponse {
   UpdateToken: string | undefined;

package/dist-types/ts3.4/protocols/Aws_json1_0.d.ts

@@ -99,6 +99,10 @@ import {
   DescribeRuleGroupMetadataCommandInput,
   DescribeRuleGroupMetadataCommandOutput,
 } from "../commands/DescribeRuleGroupMetadataCommand";
+import {
+  DescribeRuleGroupSummaryCommandInput,
+  DescribeRuleGroupSummaryCommandOutput,
+} from "../commands/DescribeRuleGroupSummaryCommand";
 import {
   DescribeTLSInspectionConfigurationCommandInput,
   DescribeTLSInspectionConfigurationCommandOutput,
@@ -323,6 +327,10 @@ export declare const se_DescribeRuleGroupMetadataCommand: (
   input: DescribeRuleGroupMetadataCommandInput,
   context: __SerdeContext
 ) => Promise<__HttpRequest>;
+export declare const se_DescribeRuleGroupSummaryCommand: (
+  input: DescribeRuleGroupSummaryCommandInput,
+  context: __SerdeContext
+) => Promise<__HttpRequest>;
 export declare const se_DescribeTLSInspectionConfigurationCommand: (
   input: DescribeTLSInspectionConfigurationCommandInput,
   context: __SerdeContext
@@ -547,6 +555,10 @@ export declare const de_DescribeRuleGroupMetadataCommand: (
   output: __HttpResponse,
   context: __SerdeContext
 ) => Promise<DescribeRuleGroupMetadataCommandOutput>;
+export declare const de_DescribeRuleGroupSummaryCommand: (
+  output: __HttpResponse,
+  context: __SerdeContext
+) => Promise<DescribeRuleGroupSummaryCommandOutput>;
 export declare const de_DescribeTLSInspectionConfigurationCommand: (
   output: __HttpResponse,
   context: __SerdeContext

package/package.json

@@ -1,7 +1,7 @@
 {
   "name": "@aws-sdk/client-network-firewall",
   "description": "AWS SDK for JavaScript Network Firewall Client for Node.js, Browser and React Native",
-  "version": "3.830.0",
+  "version": "3.831.0",
   "scripts": {
     "build": "concurrently 'yarn:build:cjs' 'yarn:build:es' 'yarn:build:types'",
     "build:cjs": "node ../../scripts/compilation/inline client-network-firewall",