@aws-sdk/client-securityhub 3.295.0 → 3.297.0

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.
Files changed (83) hide show
  1. package/dist-types/SecurityHub.d.ts +62 -0
  2. package/dist-types/SecurityHubClient.d.ts +24 -4
  3. package/dist-types/commands/AcceptAdministratorInvitationCommand.d.ts +16 -0
  4. package/dist-types/commands/AcceptInvitationCommand.d.ts +16 -0
  5. package/dist-types/commands/BatchDisableStandardsCommand.d.ts +16 -0
  6. package/dist-types/commands/BatchEnableStandardsCommand.d.ts +16 -0
  7. package/dist-types/commands/BatchGetSecurityControlsCommand.d.ts +16 -0
  8. package/dist-types/commands/BatchGetStandardsControlAssociationsCommand.d.ts +16 -0
  9. package/dist-types/commands/BatchImportFindingsCommand.d.ts +16 -0
  10. package/dist-types/commands/BatchUpdateFindingsCommand.d.ts +16 -0
  11. package/dist-types/commands/BatchUpdateStandardsControlAssociationsCommand.d.ts +16 -0
  12. package/dist-types/commands/CreateActionTargetCommand.d.ts +16 -0
  13. package/dist-types/commands/CreateFindingAggregatorCommand.d.ts +16 -0
  14. package/dist-types/commands/CreateInsightCommand.d.ts +16 -0
  15. package/dist-types/commands/CreateMembersCommand.d.ts +16 -0
  16. package/dist-types/commands/DeclineInvitationsCommand.d.ts +16 -0
  17. package/dist-types/commands/DeleteActionTargetCommand.d.ts +16 -0
  18. package/dist-types/commands/DeleteFindingAggregatorCommand.d.ts +16 -0
  19. package/dist-types/commands/DeleteInsightCommand.d.ts +16 -0
  20. package/dist-types/commands/DeleteInvitationsCommand.d.ts +16 -0
  21. package/dist-types/commands/DeleteMembersCommand.d.ts +16 -0
  22. package/dist-types/commands/DescribeActionTargetsCommand.d.ts +16 -0
  23. package/dist-types/commands/DescribeHubCommand.d.ts +16 -0
  24. package/dist-types/commands/DescribeOrganizationConfigurationCommand.d.ts +16 -0
  25. package/dist-types/commands/DescribeProductsCommand.d.ts +16 -0
  26. package/dist-types/commands/DescribeStandardsCommand.d.ts +16 -0
  27. package/dist-types/commands/DescribeStandardsControlsCommand.d.ts +16 -0
  28. package/dist-types/commands/DisableImportFindingsForProductCommand.d.ts +16 -0
  29. package/dist-types/commands/DisableOrganizationAdminAccountCommand.d.ts +16 -0
  30. package/dist-types/commands/DisableSecurityHubCommand.d.ts +16 -0
  31. package/dist-types/commands/DisassociateFromAdministratorAccountCommand.d.ts +16 -0
  32. package/dist-types/commands/DisassociateFromMasterAccountCommand.d.ts +16 -0
  33. package/dist-types/commands/DisassociateMembersCommand.d.ts +16 -0
  34. package/dist-types/commands/EnableImportFindingsForProductCommand.d.ts +16 -0
  35. package/dist-types/commands/EnableOrganizationAdminAccountCommand.d.ts +16 -0
  36. package/dist-types/commands/EnableSecurityHubCommand.d.ts +16 -0
  37. package/dist-types/commands/GetAdministratorAccountCommand.d.ts +16 -0
  38. package/dist-types/commands/GetEnabledStandardsCommand.d.ts +16 -0
  39. package/dist-types/commands/GetFindingAggregatorCommand.d.ts +16 -0
  40. package/dist-types/commands/GetFindingsCommand.d.ts +16 -0
  41. package/dist-types/commands/GetInsightResultsCommand.d.ts +16 -0
  42. package/dist-types/commands/GetInsightsCommand.d.ts +16 -0
  43. package/dist-types/commands/GetInvitationsCountCommand.d.ts +16 -0
  44. package/dist-types/commands/GetMasterAccountCommand.d.ts +16 -0
  45. package/dist-types/commands/GetMembersCommand.d.ts +16 -0
  46. package/dist-types/commands/InviteMembersCommand.d.ts +16 -0
  47. package/dist-types/commands/ListEnabledProductsForImportCommand.d.ts +16 -0
  48. package/dist-types/commands/ListFindingAggregatorsCommand.d.ts +16 -0
  49. package/dist-types/commands/ListInvitationsCommand.d.ts +16 -0
  50. package/dist-types/commands/ListMembersCommand.d.ts +16 -0
  51. package/dist-types/commands/ListOrganizationAdminAccountsCommand.d.ts +16 -0
  52. package/dist-types/commands/ListSecurityControlDefinitionsCommand.d.ts +16 -0
  53. package/dist-types/commands/ListStandardsControlAssociationsCommand.d.ts +16 -0
  54. package/dist-types/commands/ListTagsForResourceCommand.d.ts +16 -0
  55. package/dist-types/commands/TagResourceCommand.d.ts +16 -0
  56. package/dist-types/commands/UntagResourceCommand.d.ts +16 -0
  57. package/dist-types/commands/UpdateActionTargetCommand.d.ts +16 -0
  58. package/dist-types/commands/UpdateFindingAggregatorCommand.d.ts +16 -0
  59. package/dist-types/commands/UpdateFindingsCommand.d.ts +16 -0
  60. package/dist-types/commands/UpdateInsightCommand.d.ts +16 -0
  61. package/dist-types/commands/UpdateOrganizationConfigurationCommand.d.ts +16 -0
  62. package/dist-types/commands/UpdateSecurityHubConfigurationCommand.d.ts +16 -0
  63. package/dist-types/commands/UpdateStandardsControlCommand.d.ts +16 -0
  64. package/dist-types/models/SecurityHubServiceException.d.ts +2 -0
  65. package/dist-types/models/models_0.d.ts +317 -1
  66. package/dist-types/models/models_1.d.ts +398 -0
  67. package/dist-types/models/models_2.d.ts +298 -0
  68. package/dist-types/pagination/DescribeActionTargetsPaginator.d.ts +3 -0
  69. package/dist-types/pagination/DescribeProductsPaginator.d.ts +3 -0
  70. package/dist-types/pagination/DescribeStandardsControlsPaginator.d.ts +3 -0
  71. package/dist-types/pagination/DescribeStandardsPaginator.d.ts +3 -0
  72. package/dist-types/pagination/GetEnabledStandardsPaginator.d.ts +3 -0
  73. package/dist-types/pagination/GetFindingsPaginator.d.ts +3 -0
  74. package/dist-types/pagination/GetInsightsPaginator.d.ts +3 -0
  75. package/dist-types/pagination/Interfaces.d.ts +3 -0
  76. package/dist-types/pagination/ListEnabledProductsForImportPaginator.d.ts +3 -0
  77. package/dist-types/pagination/ListFindingAggregatorsPaginator.d.ts +3 -0
  78. package/dist-types/pagination/ListInvitationsPaginator.d.ts +3 -0
  79. package/dist-types/pagination/ListMembersPaginator.d.ts +3 -0
  80. package/dist-types/pagination/ListOrganizationAdminAccountsPaginator.d.ts +3 -0
  81. package/dist-types/pagination/ListSecurityControlDefinitionsPaginator.d.ts +3 -0
  82. package/dist-types/pagination/ListStandardsControlAssociationsPaginator.d.ts +3 -0
  83. package/package.json +29 -29
package/dist-types/models/models_1.d.ts CHANGED
@@ -2,6 +2,7 @@ import { ExceptionOptionType as __ExceptionOptionType } from "@aws-sdk/smithy-cl
2
2
  import { AccountDetails, Action, Adjustment, AssociatedStandard, AssociationStatus, AwsApiGatewayRestApiDetails, AwsApiGatewayStageDetails, AwsApiGatewayV2ApiDetails, AwsApiGatewayV2StageDetails, AwsAutoScalingAutoScalingGroupDetails, AwsAutoScalingLaunchConfigurationDetails, AwsBackupBackupPlanDetails, AwsBackupBackupVaultDetails, AwsBackupRecoveryPointDetails, AwsCertificateManagerCertificateDetails, AwsCloudFormationStackDetails, AwsCloudFrontDistributionDetails, AwsCloudTrailTrailDetails, AwsCloudWatchAlarmDetails, AwsCodeBuildProjectDetails, AwsDynamoDbTableDetails, AwsEc2EipDetails, AwsEc2InstanceDetails, AwsEc2LaunchTemplateDetails, AwsEc2NetworkAclDetails, AwsEc2NetworkInterfaceDetails, AwsEc2SecurityGroupDetails, AwsEc2SubnetDetails, AwsEc2TransitGatewayDetails, AwsEc2VolumeDetails, AwsEc2VpcDetails, AwsEc2VpcEndpointServiceDetails, AwsEc2VpcPeeringConnectionDetails, AwsEc2VpnConnectionDetails, AwsEcrContainerImageDetails, AwsEcrRepositoryDetails, AwsEcsClusterDetails, AwsEcsContainerDetails, AwsEcsServiceDetails, AwsEcsTaskDefinitionDetails, AwsEcsTaskDetails, AwsEfsAccessPointDetails, AwsEksClusterDetails, AwsElasticBeanstalkEnvironmentDetails, AwsElasticsearchDomainDetails, AwsElbLoadBalancerDetails, AwsElbv2LoadBalancerDetails, AwsIamAccessKeyDetails, AwsIamAttachedManagedPolicy } from "./models_0";
3
3
  import { SecurityHubServiceException as __BaseException } from "./SecurityHubServiceException";
4
4
  /**
5
+ * @public
5
6
  * <p>A managed policy that is attached to the IAM group.</p>
6
7
  */
7
8
  export interface AwsIamGroupPolicy {
@@ -11,6 +12,7 @@ export interface AwsIamGroupPolicy {
11
12
  PolicyName?: string;
12
13
  }
13
14
  /**
15
+ * @public
14
16
  * <p>Contains details about an IAM group.</p>
15
17
  */
16
18
  export interface AwsIamGroupDetails {
@@ -43,6 +45,7 @@ export interface AwsIamGroupDetails {
43
45
  Path?: string;
44
46
  }
45
47
  /**
48
+ * @public
46
49
  * <p>Information about a role associated with an instance profile.</p>
47
50
  */
48
51
  export interface AwsIamInstanceProfileRole {
@@ -75,6 +78,7 @@ export interface AwsIamInstanceProfileRole {
75
78
  RoleName?: string;
76
79
  }
77
80
  /**
81
+ * @public
78
82
  * <p>Information about an instance profile.</p>
79
83
  */
80
84
  export interface AwsIamInstanceProfile {
@@ -107,6 +111,7 @@ export interface AwsIamInstanceProfile {
107
111
  Roles?: AwsIamInstanceProfileRole[];
108
112
  }
109
113
  /**
114
+ * @public
110
115
  * <p>Information about the policy used to set the permissions boundary for an IAM
111
116
  * principal.</p>
112
117
  */
@@ -121,6 +126,7 @@ export interface AwsIamPermissionsBoundary {
121
126
  PermissionsBoundaryType?: string;
122
127
  }
123
128
  /**
129
+ * @public
124
130
  * <p>A version of an IAM policy.</p>
125
131
  */
126
132
  export interface AwsIamPolicyVersion {
@@ -141,6 +147,7 @@ export interface AwsIamPolicyVersion {
141
147
  CreateDate?: string;
142
148
  }
143
149
  /**
150
+ * @public
144
151
  * <p>Represents an IAM permissions policy.</p>
145
152
  */
146
153
  export interface AwsIamPolicyDetails {
@@ -197,6 +204,7 @@ export interface AwsIamPolicyDetails {
197
204
  UpdateDate?: string;
198
205
  }
199
206
  /**
207
+ * @public
200
208
  * <p>An inline policy that is embedded in the role.</p>
201
209
  */
202
210
  export interface AwsIamRolePolicy {
@@ -206,6 +214,7 @@ export interface AwsIamRolePolicy {
206
214
  PolicyName?: string;
207
215
  }
208
216
  /**
217
+ * @public
209
218
  * <p>Contains information about an IAM role, including all of the role's policies.</p>
210
219
  */
211
220
  export interface AwsIamRoleDetails {
@@ -255,6 +264,7 @@ export interface AwsIamRoleDetails {
255
264
  Path?: string;
256
265
  }
257
266
  /**
267
+ * @public
258
268
  * <p>Information about an inline policy that is embedded in the user.</p>
259
269
  */
260
270
  export interface AwsIamUserPolicy {
@@ -264,6 +274,7 @@ export interface AwsIamUserPolicy {
264
274
  PolicyName?: string;
265
275
  }
266
276
  /**
277
+ * @public
267
278
  * <p>Information about an IAM user.</p>
268
279
  */
269
280
  export interface AwsIamUserDetails {
@@ -304,6 +315,7 @@ export interface AwsIamUserDetails {
304
315
  UserPolicyList?: AwsIamUserPolicy[];
305
316
  }
306
317
  /**
318
+ * @public
307
319
  * <p>Provides information about stream encryption.
308
320
  * </p>
309
321
  */
@@ -319,6 +331,7 @@ export interface AwsKinesisStreamStreamEncryptionDetails {
319
331
  KeyId?: string;
320
332
  }
321
333
  /**
334
+ * @public
322
335
  * <p>Provides information about an Amazon Kinesis data stream.
323
336
  * </p>
324
337
  */
@@ -352,6 +365,7 @@ export interface AwsKinesisStreamDetails {
352
365
  RetentionPeriodHours?: number;
353
366
  }
354
367
  /**
368
+ * @public
355
369
  * <p>Contains metadata about an KMS key.</p>
356
370
  */
357
371
  export interface AwsKmsKeyDetails {
@@ -423,6 +437,7 @@ export interface AwsKmsKeyDetails {
423
437
  KeyRotationStatus?: boolean;
424
438
  }
425
439
  /**
440
+ * @public
426
441
  * <p>The code for the Lambda function. You can specify either an object in Amazon S3, or upload a deployment package directly.</p>
427
442
  */
428
443
  export interface AwsLambdaFunctionCode {
@@ -444,6 +459,7 @@ export interface AwsLambdaFunctionCode {
444
459
  ZipFile?: string;
445
460
  }
446
461
  /**
462
+ * @public
447
463
  * <p>The dead-letter queue for failed asynchronous invocations.</p>
448
464
  */
449
465
  export interface AwsLambdaFunctionDeadLetterConfig {
@@ -453,6 +469,7 @@ export interface AwsLambdaFunctionDeadLetterConfig {
453
469
  TargetArn?: string;
454
470
  }
455
471
  /**
472
+ * @public
456
473
  * <p>Error messages for environment variables that could not be applied.</p>
457
474
  */
458
475
  export interface AwsLambdaFunctionEnvironmentError {
@@ -466,6 +483,7 @@ export interface AwsLambdaFunctionEnvironmentError {
466
483
  Message?: string;
467
484
  }
468
485
  /**
486
+ * @public
469
487
  * <p>A function's environment variable settings.</p>
470
488
  */
471
489
  export interface AwsLambdaFunctionEnvironment {
@@ -479,6 +497,7 @@ export interface AwsLambdaFunctionEnvironment {
479
497
  Error?: AwsLambdaFunctionEnvironmentError;
480
498
  }
481
499
  /**
500
+ * @public
482
501
  * <p>An Lambda layer.</p>
483
502
  */
484
503
  export interface AwsLambdaFunctionLayer {
@@ -492,6 +511,7 @@ export interface AwsLambdaFunctionLayer {
492
511
  CodeSize?: number;
493
512
  }
494
513
  /**
514
+ * @public
495
515
  * <p>The function's X-Ray tracing configuration.</p>
496
516
  */
497
517
  export interface AwsLambdaFunctionTracingConfig {
@@ -501,6 +521,7 @@ export interface AwsLambdaFunctionTracingConfig {
501
521
  Mode?: string;
502
522
  }
503
523
  /**
524
+ * @public
504
525
  * <p>The VPC security groups and subnets that are attached to a Lambda function.</p>
505
526
  */
506
527
  export interface AwsLambdaFunctionVpcConfig {
@@ -518,6 +539,7 @@ export interface AwsLambdaFunctionVpcConfig {
518
539
  VpcId?: string;
519
540
  }
520
541
  /**
542
+ * @public
521
543
  * <p>Details about an Lambda function's configuration.</p>
522
544
  */
523
545
  export interface AwsLambdaFunctionDetails {
@@ -608,6 +630,7 @@ export interface AwsLambdaFunctionDetails {
608
630
  PackageType?: string;
609
631
  }
610
632
  /**
633
+ * @public
611
634
  * <p>Details about a Lambda layer version.</p>
612
635
  */
613
636
  export interface AwsLambdaLayerVersionDetails {
@@ -634,6 +657,7 @@ export interface AwsLambdaLayerVersionDetails {
634
657
  CreatedDate?: string;
635
658
  }
636
659
  /**
660
+ * @public
637
661
  * <p>A public subnet that Network Firewall uses for the firewall.</p>
638
662
  */
639
663
  export interface AwsNetworkFirewallFirewallSubnetMappingsDetails {
@@ -643,6 +667,7 @@ export interface AwsNetworkFirewallFirewallSubnetMappingsDetails {
643
667
  SubnetId?: string;
644
668
  }
645
669
  /**
670
+ * @public
646
671
  * <p>Details about an Network Firewall firewall.</p>
647
672
  */
648
673
  export interface AwsNetworkFirewallFirewallDetails {
@@ -688,6 +713,7 @@ export interface AwsNetworkFirewallFirewallDetails {
688
713
  VpcId?: string;
689
714
  }
690
715
  /**
716
+ * @public
691
717
  * <p>A stateful rule group that is used by the firewall policy.</p>
692
718
  */
693
719
  export interface FirewallPolicyStatefulRuleGroupReferencesDetails {
@@ -697,6 +723,7 @@ export interface FirewallPolicyStatefulRuleGroupReferencesDetails {
697
723
  ResourceArn?: string;
698
724
  }
699
725
  /**
726
+ * @public
700
727
  * <p>Defines a CloudWatch dimension value to publish.</p>
701
728
  */
702
729
  export interface StatelessCustomPublishMetricActionDimension {
@@ -706,6 +733,7 @@ export interface StatelessCustomPublishMetricActionDimension {
706
733
  Value?: string;
707
734
  }
708
735
  /**
736
+ * @public
709
737
  * <p>Information about metrics to publish to CloudWatch.</p>
710
738
  */
711
739
  export interface StatelessCustomPublishMetricAction {
@@ -715,6 +743,7 @@ export interface StatelessCustomPublishMetricAction {
715
743
  Dimensions?: StatelessCustomPublishMetricActionDimension[];
716
744
  }
717
745
  /**
746
+ * @public
718
747
  * <p>The definition of a custom action that can be used for stateless packet handling.</p>
719
748
  */
720
749
  export interface StatelessCustomActionDefinition {
@@ -724,6 +753,7 @@ export interface StatelessCustomActionDefinition {
724
753
  PublishMetricAction?: StatelessCustomPublishMetricAction;
725
754
  }
726
755
  /**
756
+ * @public
727
757
  * <p>A custom action that can be used for stateless packet handling.</p>
728
758
  */
729
759
  export interface FirewallPolicyStatelessCustomActionsDetails {
@@ -737,6 +767,7 @@ export interface FirewallPolicyStatelessCustomActionsDetails {
737
767
  ActionName?: string;
738
768
  }
739
769
  /**
770
+ * @public
740
771
  * <p>A stateless rule group that is used by the firewall policy.</p>
741
772
  */
742
773
  export interface FirewallPolicyStatelessRuleGroupReferencesDetails {
@@ -750,6 +781,7 @@ export interface FirewallPolicyStatelessRuleGroupReferencesDetails {
750
781
  ResourceArn?: string;
751
782
  }
752
783
  /**
784
+ * @public
753
785
  * <p>Defines the behavior of the firewall.</p>
754
786
  */
755
787
  export interface FirewallPolicyDetails {
@@ -779,6 +811,7 @@ export interface FirewallPolicyDetails {
779
811
  StatelessRuleGroupReferences?: FirewallPolicyStatelessRuleGroupReferencesDetails[];
780
812
  }
781
813
  /**
814
+ * @public
782
815
  * <p>Details about a firewall policy. A firewall policy defines the behavior of a network firewall.</p>
783
816
  */
784
817
  export interface AwsNetworkFirewallFirewallPolicyDetails {
@@ -804,6 +837,7 @@ export interface AwsNetworkFirewallFirewallPolicyDetails {
804
837
  Description?: string;
805
838
  }
806
839
  /**
840
+ * @public
807
841
  * <p>Stateful inspection criteria for a domain list rule group.</p>
808
842
  */
809
843
  export interface RuleGroupSourceListDetails {
@@ -821,6 +855,7 @@ export interface RuleGroupSourceListDetails {
821
855
  Targets?: string[];
822
856
  }
823
857
  /**
858
+ * @public
824
859
  * <p>The inspection criteria for a stateful rule.</p>
825
860
  */
826
861
  export interface RuleGroupSourceStatefulRulesHeaderDetails {
@@ -850,6 +885,7 @@ export interface RuleGroupSourceStatefulRulesHeaderDetails {
850
885
  SourcePort?: string;
851
886
  }
852
887
  /**
888
+ * @public
853
889
  * <p>A rule option for a stateful rule.</p>
854
890
  */
855
891
  export interface RuleGroupSourceStatefulRulesOptionsDetails {
@@ -863,6 +899,7 @@ export interface RuleGroupSourceStatefulRulesOptionsDetails {
863
899
  Settings?: string[];
864
900
  }
865
901
  /**
902
+ * @public
866
903
  * <p>A Suricata rule specification.</p>
867
904
  */
868
905
  export interface RuleGroupSourceStatefulRulesDetails {
@@ -880,6 +917,7 @@ export interface RuleGroupSourceStatefulRulesDetails {
880
917
  RuleOptions?: RuleGroupSourceStatefulRulesOptionsDetails[];
881
918
  }
882
919
  /**
920
+ * @public
883
921
  * <p>A custom action definition. A custom action is an optional, non-standard action to use for stateless packet handling.</p>
884
922
  */
885
923
  export interface RuleGroupSourceCustomActionsDetails {
@@ -893,6 +931,7 @@ export interface RuleGroupSourceCustomActionsDetails {
893
931
  ActionName?: string;
894
932
  }
895
933
  /**
934
+ * @public
896
935
  * <p>A port range to specify the destination ports to inspect for.</p>
897
936
  */
898
937
  export interface RuleGroupSourceStatelessRuleMatchAttributesDestinationPorts {
@@ -906,6 +945,7 @@ export interface RuleGroupSourceStatelessRuleMatchAttributesDestinationPorts {
906
945
  ToPort?: number;
907
946
  }
908
947
  /**
948
+ * @public
909
949
  * <p>A destination IP address or range.</p>
910
950
  */
911
951
  export interface RuleGroupSourceStatelessRuleMatchAttributesDestinations {
@@ -915,6 +955,7 @@ export interface RuleGroupSourceStatelessRuleMatchAttributesDestinations {
915
955
  AddressDefinition?: string;
916
956
  }
917
957
  /**
958
+ * @public
918
959
  * <p>A port range to specify the source ports to inspect for.</p>
919
960
  */
920
961
  export interface RuleGroupSourceStatelessRuleMatchAttributesSourcePorts {
@@ -928,6 +969,7 @@ export interface RuleGroupSourceStatelessRuleMatchAttributesSourcePorts {
928
969
  ToPort?: number;
929
970
  }
930
971
  /**
972
+ * @public
931
973
  * <p>A source IP addresses and address range to inspect for.</p>
932
974
  */
933
975
  export interface RuleGroupSourceStatelessRuleMatchAttributesSources {
@@ -937,6 +979,7 @@ export interface RuleGroupSourceStatelessRuleMatchAttributesSources {
937
979
  AddressDefinition?: string;
938
980
  }
939
981
  /**
982
+ * @public
940
983
  * <p>A set of TCP flags and masks to inspect for.</p>
941
984
  */
942
985
  export interface RuleGroupSourceStatelessRuleMatchAttributesTcpFlags {
@@ -950,6 +993,7 @@ export interface RuleGroupSourceStatelessRuleMatchAttributesTcpFlags {
950
993
  Masks?: string[];
951
994
  }
952
995
  /**
996
+ * @public
953
997
  * <p>Criteria for the stateless rule.</p>
954
998
  */
955
999
  export interface RuleGroupSourceStatelessRuleMatchAttributes {
@@ -979,6 +1023,7 @@ export interface RuleGroupSourceStatelessRuleMatchAttributes {
979
1023
  TcpFlags?: RuleGroupSourceStatelessRuleMatchAttributesTcpFlags[];
980
1024
  }
981
1025
  /**
1026
+ * @public
982
1027
  * <p>The definition of the stateless rule.</p>
983
1028
  */
984
1029
  export interface RuleGroupSourceStatelessRuleDefinition {
@@ -992,6 +1037,7 @@ export interface RuleGroupSourceStatelessRuleDefinition {
992
1037
  MatchAttributes?: RuleGroupSourceStatelessRuleMatchAttributes;
993
1038
  }
994
1039
  /**
1040
+ * @public
995
1041
  * <p>A stateless rule in the rule group.</p>
996
1042
  */
997
1043
  export interface RuleGroupSourceStatelessRulesDetails {
@@ -1005,6 +1051,7 @@ export interface RuleGroupSourceStatelessRulesDetails {
1005
1051
  RuleDefinition?: RuleGroupSourceStatelessRuleDefinition;
1006
1052
  }
1007
1053
  /**
1054
+ * @public
1008
1055
  * <p>Stateless rules and custom actions for a stateless rule group.</p>
1009
1056
  */
1010
1057
  export interface RuleGroupSourceStatelessRulesAndCustomActionsDetails {
@@ -1018,6 +1065,7 @@ export interface RuleGroupSourceStatelessRulesAndCustomActionsDetails {
1018
1065
  StatelessRules?: RuleGroupSourceStatelessRulesDetails[];
1019
1066
  }
1020
1067
  /**
1068
+ * @public
1021
1069
  * <p>The rules and actions for the rule group.</p>
1022
1070
  */
1023
1071
  export interface RuleGroupSource {
@@ -1039,6 +1087,7 @@ export interface RuleGroupSource {
1039
1087
  StatelessRulesAndCustomActions?: RuleGroupSourceStatelessRulesAndCustomActionsDetails;
1040
1088
  }
1041
1089
  /**
1090
+ * @public
1042
1091
  * <p>A list of IP addresses and address ranges, in CIDR notation.</p>
1043
1092
  */
1044
1093
  export interface RuleGroupVariablesIpSetsDetails {
@@ -1048,6 +1097,7 @@ export interface RuleGroupVariablesIpSetsDetails {
1048
1097
  Definition?: string[];
1049
1098
  }
1050
1099
  /**
1100
+ * @public
1051
1101
  * <p>A list of port ranges.</p>
1052
1102
  */
1053
1103
  export interface RuleGroupVariablesPortSetsDetails {
@@ -1057,6 +1107,7 @@ export interface RuleGroupVariablesPortSetsDetails {
1057
1107
  Definition?: string[];
1058
1108
  }
1059
1109
  /**
1110
+ * @public
1060
1111
  * <p>Additional settings to use in the specified rules.</p>
1061
1112
  */
1062
1113
  export interface RuleGroupVariables {
@@ -1070,6 +1121,7 @@ export interface RuleGroupVariables {
1070
1121
  PortSets?: RuleGroupVariablesPortSetsDetails;
1071
1122
  }
1072
1123
  /**
1124
+ * @public
1073
1125
  * <p>Details about the rule group.</p>
1074
1126
  */
1075
1127
  export interface RuleGroupDetails {
@@ -1085,6 +1137,7 @@ export interface RuleGroupDetails {
1085
1137
  RulesSource?: RuleGroupSource;
1086
1138
  }
1087
1139
  /**
1140
+ * @public
1088
1141
  * <p>Details about an Network Firewall rule group. Rule groups are used to inspect and control network traffic. Stateless rule groups apply to individual packets. Stateful rule groups apply to packets in the context of their traffic flow.</p>
1089
1142
  * <p>Rule groups are referenced in firewall policies.
1090
1143
  * </p>
@@ -1120,6 +1173,7 @@ export interface AwsNetworkFirewallRuleGroupDetails {
1120
1173
  Type?: string;
1121
1174
  }
1122
1175
  /**
1176
+ * @public
1123
1177
  * <p>Specifies information about the master user of the domain.
1124
1178
  * </p>
1125
1179
  */
@@ -1141,6 +1195,7 @@ export interface AwsOpenSearchServiceDomainMasterUserOptionsDetails {
1141
1195
  MasterUserPassword?: string;
1142
1196
  }
1143
1197
  /**
1198
+ * @public
1144
1199
  * <p>Provides information about domain access control options.
1145
1200
  * </p>
1146
1201
  */
@@ -1162,6 +1217,7 @@ export interface AwsOpenSearchServiceDomainAdvancedSecurityOptionsDetails {
1162
1217
  MasterUserOptions?: AwsOpenSearchServiceDomainMasterUserOptionsDetails;
1163
1218
  }
1164
1219
  /**
1220
+ * @public
1165
1221
  * <p>Configuration options for zone awareness.</p>
1166
1222
  */
1167
1223
  export interface AwsOpenSearchServiceDomainClusterConfigZoneAwarenessConfigDetails {
@@ -1171,6 +1227,7 @@ export interface AwsOpenSearchServiceDomainClusterConfigZoneAwarenessConfigDetai
1171
1227
  AvailabilityZoneCount?: number;
1172
1228
  }
1173
1229
  /**
1230
+ * @public
1174
1231
  * <p>Details about the configuration of an OpenSearch cluster.</p>
1175
1232
  */
1176
1233
  export interface AwsOpenSearchServiceDomainClusterConfigDetails {
@@ -1219,6 +1276,7 @@ export interface AwsOpenSearchServiceDomainClusterConfigDetails {
1219
1276
  DedicatedMasterType?: string;
1220
1277
  }
1221
1278
  /**
1279
+ * @public
1222
1280
  * <p>Information about additional options for the domain endpoint.</p>
1223
1281
  */
1224
1282
  export interface AwsOpenSearchServiceDomainDomainEndpointOptionsDetails {
@@ -1244,6 +1302,7 @@ export interface AwsOpenSearchServiceDomainDomainEndpointOptionsDetails {
1244
1302
  TLSSecurityPolicy?: string;
1245
1303
  }
1246
1304
  /**
1305
+ * @public
1247
1306
  * <p>Details about the configuration for encryption at rest for the OpenSearch domain.</p>
1248
1307
  */
1249
1308
  export interface AwsOpenSearchServiceDomainEncryptionAtRestOptionsDetails {
@@ -1257,6 +1316,7 @@ export interface AwsOpenSearchServiceDomainEncryptionAtRestOptionsDetails {
1257
1316
  KmsKeyId?: string;
1258
1317
  }
1259
1318
  /**
1319
+ * @public
1260
1320
  * <p>Configuration details for a log publishing option.</p>
1261
1321
  */
1262
1322
  export interface AwsOpenSearchServiceDomainLogPublishingOption {
@@ -1270,6 +1330,7 @@ export interface AwsOpenSearchServiceDomainLogPublishingOption {
1270
1330
  Enabled?: boolean;
1271
1331
  }
1272
1332
  /**
1333
+ * @public
1273
1334
  * <p>Configures the CloudWatch Logs to publish for the OpenSearch domain.</p>
1274
1335
  */
1275
1336
  export interface AwsOpenSearchServiceDomainLogPublishingOptionsDetails {
@@ -1287,6 +1348,7 @@ export interface AwsOpenSearchServiceDomainLogPublishingOptionsDetails {
1287
1348
  AuditLogs?: AwsOpenSearchServiceDomainLogPublishingOption;
1288
1349
  }
1289
1350
  /**
1351
+ * @public
1290
1352
  * <p>Provides details about the configuration for node-to-node encryption.</p>
1291
1353
  */
1292
1354
  export interface AwsOpenSearchServiceDomainNodeToNodeEncryptionOptionsDetails {
@@ -1296,6 +1358,7 @@ export interface AwsOpenSearchServiceDomainNodeToNodeEncryptionOptionsDetails {
1296
1358
  Enabled?: boolean;
1297
1359
  }
1298
1360
  /**
1361
+ * @public
1299
1362
  * <p>Provides information about the state of the domain relative to the latest service software.</p>
1300
1363
  */
1301
1364
  export interface AwsOpenSearchServiceDomainServiceSoftwareOptionsDetails {
@@ -1360,6 +1423,7 @@ export interface AwsOpenSearchServiceDomainServiceSoftwareOptionsDetails {
1360
1423
  OptionalDeployment?: boolean;
1361
1424
  }
1362
1425
  /**
1426
+ * @public
1363
1427
  * <p>Contains information that OpenSearch Service derives based on the <code>VPCOptions</code> for the domain.</p>
1364
1428
  */
1365
1429
  export interface AwsOpenSearchServiceDomainVpcOptionsDetails {
@@ -1373,6 +1437,7 @@ export interface AwsOpenSearchServiceDomainVpcOptionsDetails {
1373
1437
  SubnetIds?: string[];
1374
1438
  }
1375
1439
  /**
1440
+ * @public
1376
1441
  * <p>Information about an Amazon OpenSearch Service domain.</p>
1377
1442
  */
1378
1443
  export interface AwsOpenSearchServiceDomainDetails {
@@ -1440,6 +1505,7 @@ export interface AwsOpenSearchServiceDomainDetails {
1440
1505
  AdvancedSecurityOptions?: AwsOpenSearchServiceDomainAdvancedSecurityOptionsDetails;
1441
1506
  }
1442
1507
  /**
1508
+ * @public
1443
1509
  * <p>An IAM role that is associated with the Amazon RDS DB cluster.</p>
1444
1510
  */
1445
1511
  export interface AwsRdsDbClusterAssociatedRole {
@@ -1470,6 +1536,7 @@ export interface AwsRdsDbClusterAssociatedRole {
1470
1536
  Status?: string;
1471
1537
  }
1472
1538
  /**
1539
+ * @public
1473
1540
  * <p>Information about an instance in the DB cluster.</p>
1474
1541
  */
1475
1542
  export interface AwsRdsDbClusterMember {
@@ -1492,6 +1559,7 @@ export interface AwsRdsDbClusterMember {
1492
1559
  DbClusterParameterGroupStatus?: string;
1493
1560
  }
1494
1561
  /**
1562
+ * @public
1495
1563
  * <p>Information about an option group membership for a DB cluster.</p>
1496
1564
  */
1497
1565
  export interface AwsRdsDbClusterOptionGroupMembership {
@@ -1505,6 +1573,7 @@ export interface AwsRdsDbClusterOptionGroupMembership {
1505
1573
  Status?: string;
1506
1574
  }
1507
1575
  /**
1576
+ * @public
1508
1577
  * <p>Information about an Active Directory domain membership record associated with the DB
1509
1578
  * instance.</p>
1510
1579
  */
@@ -1527,6 +1596,7 @@ export interface AwsRdsDbDomainMembership {
1527
1596
  IamRoleName?: string;
1528
1597
  }
1529
1598
  /**
1599
+ * @public
1530
1600
  * <p>A VPC security groups that the DB instance belongs to.</p>
1531
1601
  */
1532
1602
  export interface AwsRdsDbInstanceVpcSecurityGroup {
@@ -1540,6 +1610,7 @@ export interface AwsRdsDbInstanceVpcSecurityGroup {
1540
1610
  Status?: string;
1541
1611
  }
1542
1612
  /**
1613
+ * @public
1543
1614
  * <p>Information about an Amazon RDS DB cluster.</p>
1544
1615
  */
1545
1616
  export interface AwsRdsDbClusterDetails {
@@ -1779,6 +1850,7 @@ export interface AwsRdsDbClusterDetails {
1779
1850
  IamDatabaseAuthenticationEnabled?: boolean;
1780
1851
  }
1781
1852
  /**
1853
+ * @public
1782
1854
  * <p>Information about an Amazon RDS DB cluster snapshot.</p>
1783
1855
  */
1784
1856
  export interface AwsRdsDbClusterSnapshotDetails {
@@ -1863,6 +1935,7 @@ export interface AwsRdsDbClusterSnapshotDetails {
1863
1935
  IamDatabaseAuthenticationEnabled?: boolean;
1864
1936
  }
1865
1937
  /**
1938
+ * @public
1866
1939
  * <p>An IAM role associated with the DB instance.</p>
1867
1940
  */
1868
1941
  export interface AwsRdsDbInstanceAssociatedRole {
@@ -1900,6 +1973,7 @@ export interface AwsRdsDbInstanceAssociatedRole {
1900
1973
  Status?: string;
1901
1974
  }
1902
1975
  /**
1976
+ * @public
1903
1977
  * <p>Provides information about a parameter group for a DB instance.</p>
1904
1978
  */
1905
1979
  export interface AwsRdsDbParameterGroup {
@@ -1913,6 +1987,7 @@ export interface AwsRdsDbParameterGroup {
1913
1987
  ParameterApplyStatus?: string;
1914
1988
  }
1915
1989
  /**
1990
+ * @public
1916
1991
  * <p>An Availability Zone for a subnet in a subnet group.</p>
1917
1992
  */
1918
1993
  export interface AwsRdsDbSubnetGroupSubnetAvailabilityZone {
@@ -1922,6 +1997,7 @@ export interface AwsRdsDbSubnetGroupSubnetAvailabilityZone {
1922
1997
  Name?: string;
1923
1998
  }
1924
1999
  /**
2000
+ * @public
1925
2001
  * <p>Information about a subnet in a subnet group.</p>
1926
2002
  */
1927
2003
  export interface AwsRdsDbSubnetGroupSubnet {
@@ -1939,6 +2015,7 @@ export interface AwsRdsDbSubnetGroupSubnet {
1939
2015
  SubnetStatus?: string;
1940
2016
  }
1941
2017
  /**
2018
+ * @public
1942
2019
  * <p>Information about the subnet group for the database instance.</p>
1943
2020
  */
1944
2021
  export interface AwsRdsDbSubnetGroup {
@@ -1968,6 +2045,7 @@ export interface AwsRdsDbSubnetGroup {
1968
2045
  DbSubnetGroupArn?: string;
1969
2046
  }
1970
2047
  /**
2048
+ * @public
1971
2049
  * <p>Specifies the connection endpoint.</p>
1972
2050
  */
1973
2051
  export interface AwsRdsDbInstanceEndpoint {
@@ -1985,6 +2063,7 @@ export interface AwsRdsDbInstanceEndpoint {
1985
2063
  HostedZoneId?: string;
1986
2064
  }
1987
2065
  /**
2066
+ * @public
1988
2067
  * <p>An option group membership.</p>
1989
2068
  */
1990
2069
  export interface AwsRdsDbOptionGroupMembership {
@@ -1998,6 +2077,7 @@ export interface AwsRdsDbOptionGroupMembership {
1998
2077
  Status?: string;
1999
2078
  }
2000
2079
  /**
2080
+ * @public
2001
2081
  * <p>Identifies the log types to enable and disable.</p>
2002
2082
  */
2003
2083
  export interface AwsRdsPendingCloudWatchLogsExports {
@@ -2011,6 +2091,7 @@ export interface AwsRdsPendingCloudWatchLogsExports {
2011
2091
  LogTypesToDisable?: string[];
2012
2092
  }
2013
2093
  /**
2094
+ * @public
2014
2095
  * <p>A processor feature.</p>
2015
2096
  */
2016
2097
  export interface AwsRdsDbProcessorFeature {
@@ -2024,6 +2105,7 @@ export interface AwsRdsDbProcessorFeature {
2024
2105
  Value?: string;
2025
2106
  }
2026
2107
  /**
2108
+ * @public
2027
2109
  * <p>Changes to a DB instance that are currently pending.</p>
2028
2110
  */
2029
2111
  export interface AwsRdsDbPendingModifiedValues {
@@ -2089,6 +2171,7 @@ export interface AwsRdsDbPendingModifiedValues {
2089
2171
  ProcessorFeatures?: AwsRdsDbProcessorFeature[];
2090
2172
  }
2091
2173
  /**
2174
+ * @public
2092
2175
  * <p>Information about the status of a read replica.</p>
2093
2176
  */
2094
2177
  export interface AwsRdsDbStatusInfo {
@@ -2110,6 +2193,7 @@ export interface AwsRdsDbStatusInfo {
2110
2193
  Message?: string;
2111
2194
  }
2112
2195
  /**
2196
+ * @public
2113
2197
  * <p>Contains the details of an Amazon RDS DB instance.</p>
2114
2198
  */
2115
2199
  export interface AwsRdsDbInstanceDetails {
@@ -2404,6 +2488,7 @@ export interface AwsRdsDbInstanceDetails {
2404
2488
  MaxAllocatedStorage?: number;
2405
2489
  }
2406
2490
  /**
2491
+ * @public
2407
2492
  * <p>EC2 security group information for an RDS DB security group.</p>
2408
2493
  */
2409
2494
  export interface AwsRdsDbSecurityGroupEc2SecurityGroup {
@@ -2425,6 +2510,7 @@ export interface AwsRdsDbSecurityGroupEc2SecurityGroup {
2425
2510
  Status?: string;
2426
2511
  }
2427
2512
  /**
2513
+ * @public
2428
2514
  * <p>IP range information for an RDS DB security group.</p>
2429
2515
  */
2430
2516
  export interface AwsRdsDbSecurityGroupIpRange {
@@ -2438,6 +2524,7 @@ export interface AwsRdsDbSecurityGroupIpRange {
2438
2524
  Status?: string;
2439
2525
  }
2440
2526
  /**
2527
+ * @public
2441
2528
  * <p>Provides information about an Amazon RDS DB security group.</p>
2442
2529
  */
2443
2530
  export interface AwsRdsDbSecurityGroupDetails {
@@ -2472,6 +2559,7 @@ export interface AwsRdsDbSecurityGroupDetails {
2472
2559
  VpcId?: string;
2473
2560
  }
2474
2561
  /**
2562
+ * @public
2475
2563
  * <p>Provides details about an Amazon RDS DB cluster snapshot.</p>
2476
2564
  */
2477
2565
  export interface AwsRdsDbSnapshotDetails {
@@ -2674,6 +2762,7 @@ export interface AwsRdsDbSnapshotDetails {
2674
2762
  DbiResourceId?: string;
2675
2763
  }
2676
2764
  /**
2765
+ * @public
2677
2766
  * <p>Details about an Amazon RDS event notification subscription. The subscription allows Amazon RDS to post events to an SNS topic.</p>
2678
2767
  */
2679
2768
  export interface AwsRdsEventSubscriptionDetails {
@@ -2724,6 +2813,7 @@ export interface AwsRdsEventSubscriptionDetails {
2724
2813
  SubscriptionCreationTime?: string;
2725
2814
  }
2726
2815
  /**
2816
+ * @public
2727
2817
  * <p>A node in an Amazon Redshift cluster.</p>
2728
2818
  */
2729
2819
  export interface AwsRedshiftClusterClusterNode {
@@ -2741,6 +2831,7 @@ export interface AwsRedshiftClusterClusterNode {
2741
2831
  PublicIpAddress?: string;
2742
2832
  }
2743
2833
  /**
2834
+ * @public
2744
2835
  * <p>The status of a parameter in a cluster parameter group for an Amazon Redshift
2745
2836
  * cluster.</p>
2746
2837
  */
@@ -2764,6 +2855,7 @@ export interface AwsRedshiftClusterClusterParameterStatus {
2764
2855
  ParameterApplyErrorDescription?: string;
2765
2856
  }
2766
2857
  /**
2858
+ * @public
2767
2859
  * <p>A cluster parameter group that is associated with an Amazon Redshift cluster.</p>
2768
2860
  */
2769
2861
  export interface AwsRedshiftClusterClusterParameterGroup {
@@ -2781,6 +2873,7 @@ export interface AwsRedshiftClusterClusterParameterGroup {
2781
2873
  ParameterGroupName?: string;
2782
2874
  }
2783
2875
  /**
2876
+ * @public
2784
2877
  * <p>A security group that is associated with the cluster.</p>
2785
2878
  */
2786
2879
  export interface AwsRedshiftClusterClusterSecurityGroup {
@@ -2794,6 +2887,7 @@ export interface AwsRedshiftClusterClusterSecurityGroup {
2794
2887
  Status?: string;
2795
2888
  }
2796
2889
  /**
2890
+ * @public
2797
2891
  * <p>You can configure Amazon Redshift to copy snapshots for a cluster to another Amazon Web Services Region. This parameter
2798
2892
  * provides information about a cross-Region snapshot copy.</p>
2799
2893
  */
@@ -2823,6 +2917,7 @@ export interface AwsRedshiftClusterClusterSnapshotCopyStatus {
2823
2917
  SnapshotCopyGrantName?: string;
2824
2918
  }
2825
2919
  /**
2920
+ * @public
2826
2921
  * <p>A time windows during which maintenance was deferred for an Amazon Redshift
2827
2922
  * cluster.</p>
2828
2923
  */
@@ -2847,6 +2942,7 @@ export interface AwsRedshiftClusterDeferredMaintenanceWindow {
2847
2942
  DeferMaintenanceStartTime?: string;
2848
2943
  }
2849
2944
  /**
2945
+ * @public
2850
2946
  * <p>The status of the elastic IP (EIP) address for an Amazon Redshift cluster.</p>
2851
2947
  */
2852
2948
  export interface AwsRedshiftClusterElasticIpStatus {
@@ -2860,6 +2956,7 @@ export interface AwsRedshiftClusterElasticIpStatus {
2860
2956
  Status?: string;
2861
2957
  }
2862
2958
  /**
2959
+ * @public
2863
2960
  * <p>The connection endpoint for an Amazon Redshift cluster.</p>
2864
2961
  */
2865
2962
  export interface AwsRedshiftClusterEndpoint {
@@ -2873,6 +2970,7 @@ export interface AwsRedshiftClusterEndpoint {
2873
2970
  Port?: number;
2874
2971
  }
2875
2972
  /**
2973
+ * @public
2876
2974
  * <p>Information about whether an Amazon Redshift cluster finished applying any hardware
2877
2975
  * changes to security module (HSM) settings that were specified in a modify cluster
2878
2976
  * command.</p>
@@ -2898,6 +2996,7 @@ export interface AwsRedshiftClusterHsmStatus {
2898
2996
  Status?: string;
2899
2997
  }
2900
2998
  /**
2999
+ * @public
2901
3000
  * <p>An IAM role that the cluster can use to access other Amazon Web Services services.</p>
2902
3001
  */
2903
3002
  export interface AwsRedshiftClusterIamRole {
@@ -2913,6 +3012,7 @@ export interface AwsRedshiftClusterIamRole {
2913
3012
  IamRoleArn?: string;
2914
3013
  }
2915
3014
  /**
3015
+ * @public
2916
3016
  * <p>Provides information about the logging status of the cluster.</p>
2917
3017
  */
2918
3018
  export interface AwsRedshiftClusterLoggingStatus {
@@ -2948,6 +3048,7 @@ export interface AwsRedshiftClusterLoggingStatus {
2948
3048
  S3KeyPrefix?: string;
2949
3049
  }
2950
3050
  /**
3051
+ * @public
2951
3052
  * <p>Changes to the Amazon Redshift cluster that are currently pending.</p>
2952
3053
  */
2953
3054
  export interface AwsRedshiftClusterPendingModifiedValues {
@@ -2999,6 +3100,7 @@ export interface AwsRedshiftClusterPendingModifiedValues {
2999
3100
  PubliclyAccessible?: boolean;
3000
3101
  }
3001
3102
  /**
3103
+ * @public
3002
3104
  * <p>Information about the resize operation for the cluster.</p>
3003
3105
  */
3004
3106
  export interface AwsRedshiftClusterResizeInfo {
@@ -3014,6 +3116,7 @@ export interface AwsRedshiftClusterResizeInfo {
3014
3116
  ResizeType?: string;
3015
3117
  }
3016
3118
  /**
3119
+ * @public
3017
3120
  * <p>Information about the status of a cluster restore action. It only applies if the cluster
3018
3121
  * was created by restoring a snapshot.</p>
3019
3122
  */
@@ -3055,6 +3158,7 @@ export interface AwsRedshiftClusterRestoreStatus {
3055
3158
  Status?: string;
3056
3159
  }
3057
3160
  /**
3161
+ * @public
3058
3162
  * <p>A VPC security group that the cluster belongs to, if the cluster is in a VPC.</p>
3059
3163
  */
3060
3164
  export interface AwsRedshiftClusterVpcSecurityGroup {
@@ -3068,6 +3172,7 @@ export interface AwsRedshiftClusterVpcSecurityGroup {
3068
3172
  VpcSecurityGroupId?: string;
3069
3173
  }
3070
3174
  /**
3175
+ * @public
3071
3176
  * <p>Details about an Amazon Redshift cluster.</p>
3072
3177
  */
3073
3178
  export interface AwsRedshiftClusterDetails {
@@ -3324,6 +3429,7 @@ export interface AwsRedshiftClusterDetails {
3324
3429
  LoggingStatus?: AwsRedshiftClusterLoggingStatus;
3325
3430
  }
3326
3431
  /**
3432
+ * @public
3327
3433
  * <p>provides information about the Amazon S3 Public Access Block configuration for accounts.</p>
3328
3434
  */
3329
3435
  export interface AwsS3AccountPublicAccessBlockDetails {
@@ -3345,6 +3451,7 @@ export interface AwsS3AccountPublicAccessBlockDetails {
3345
3451
  RestrictPublicBuckets?: boolean;
3346
3452
  }
3347
3453
  /**
3454
+ * @public
3348
3455
  * <p>Information about what Amazon S3
3349
3456
  * does when a multipart upload is incomplete.</p>
3350
3457
  */
@@ -3355,6 +3462,7 @@ export interface AwsS3BucketBucketLifecycleConfigurationRulesAbortIncompleteMult
3355
3462
  DaysAfterInitiation?: number;
3356
3463
  }
3357
3464
  /**
3465
+ * @public
3358
3466
  * <p>A tag that is assigned to matching objects.</p>
3359
3467
  */
3360
3468
  export interface AwsS3BucketBucketLifecycleConfigurationRulesFilterPredicateOperandsTagDetails {
@@ -3368,6 +3476,7 @@ export interface AwsS3BucketBucketLifecycleConfigurationRulesFilterPredicateOper
3368
3476
  Value?: string;
3369
3477
  }
3370
3478
  /**
3479
+ * @public
3371
3480
  * <p>A value to use for the filter.</p>
3372
3481
  */
3373
3482
  export interface AwsS3BucketBucketLifecycleConfigurationRulesFilterPredicateOperandsDetails {
@@ -3386,6 +3495,7 @@ export interface AwsS3BucketBucketLifecycleConfigurationRulesFilterPredicateOper
3386
3495
  Type?: string;
3387
3496
  }
3388
3497
  /**
3498
+ * @public
3389
3499
  * <p>A tag filter.</p>
3390
3500
  */
3391
3501
  export interface AwsS3BucketBucketLifecycleConfigurationRulesFilterPredicateTagDetails {
@@ -3399,6 +3509,7 @@ export interface AwsS3BucketBucketLifecycleConfigurationRulesFilterPredicateTagD
3399
3509
  Value?: string;
3400
3510
  }
3401
3511
  /**
3512
+ * @public
3402
3513
  * <p>The configuration for the filter.</p>
3403
3514
  */
3404
3515
  export interface AwsS3BucketBucketLifecycleConfigurationRulesFilterPredicateDetails {
@@ -3421,6 +3532,7 @@ export interface AwsS3BucketBucketLifecycleConfigurationRulesFilterPredicateDeta
3421
3532
  Type?: string;
3422
3533
  }
3423
3534
  /**
3535
+ * @public
3424
3536
  * <p>Identifies the objects that a rule applies to.</p>
3425
3537
  */
3426
3538
  export interface AwsS3BucketBucketLifecycleConfigurationRulesFilterDetails {
@@ -3430,6 +3542,7 @@ export interface AwsS3BucketBucketLifecycleConfigurationRulesFilterDetails {
3430
3542
  Predicate?: AwsS3BucketBucketLifecycleConfigurationRulesFilterPredicateDetails;
3431
3543
  }
3432
3544
  /**
3545
+ * @public
3433
3546
  * <p>A transition rule that describes when noncurrent objects transition to a specified storage class.</p>
3434
3547
  */
3435
3548
  export interface AwsS3BucketBucketLifecycleConfigurationRulesNoncurrentVersionTransitionsDetails {
@@ -3443,6 +3556,7 @@ export interface AwsS3BucketBucketLifecycleConfigurationRulesNoncurrentVersionTr
3443
3556
  StorageClass?: string;
3444
3557
  }
3445
3558
  /**
3559
+ * @public
3446
3560
  * <p>A rule for when objects transition to specific storage classes.</p>
3447
3561
  */
3448
3562
  export interface AwsS3BucketBucketLifecycleConfigurationRulesTransitionsDetails {
@@ -3490,6 +3604,7 @@ export interface AwsS3BucketBucketLifecycleConfigurationRulesTransitionsDetails
3490
3604
  StorageClass?: string;
3491
3605
  }
3492
3606
  /**
3607
+ * @public
3493
3608
  * <p>Configuration for a lifecycle rule.</p>
3494
3609
  */
3495
3610
  export interface AwsS3BucketBucketLifecycleConfigurationRulesDetails {
@@ -3547,6 +3662,7 @@ export interface AwsS3BucketBucketLifecycleConfigurationRulesDetails {
3547
3662
  Transitions?: AwsS3BucketBucketLifecycleConfigurationRulesTransitionsDetails[];
3548
3663
  }
3549
3664
  /**
3665
+ * @public
3550
3666
  * <p>The lifecycle configuration for the objects in the S3 bucket.</p>
3551
3667
  */
3552
3668
  export interface AwsS3BucketBucketLifecycleConfigurationDetails {
@@ -3556,6 +3672,7 @@ export interface AwsS3BucketBucketLifecycleConfigurationDetails {
3556
3672
  Rules?: AwsS3BucketBucketLifecycleConfigurationRulesDetails[];
3557
3673
  }
3558
3674
  /**
3675
+ * @public
3559
3676
  * <p>Describes the versioning state of an S3 bucket.</p>
3560
3677
  */
3561
3678
  export interface AwsS3BucketBucketVersioningConfiguration {
@@ -3569,6 +3686,7 @@ export interface AwsS3BucketBucketVersioningConfiguration {
3569
3686
  Status?: string;
3570
3687
  }
3571
3688
  /**
3689
+ * @public
3572
3690
  * <p>Information about logging for
3573
3691
  * the S3 bucket</p>
3574
3692
  */
@@ -3582,11 +3700,15 @@ export interface AwsS3BucketLoggingConfiguration {
3582
3700
  */
3583
3701
  LogFilePrefix?: string;
3584
3702
  }
3703
+ /**
3704
+ * @public
3705
+ */
3585
3706
  export declare enum AwsS3BucketNotificationConfigurationS3KeyFilterRuleName {
3586
3707
  PREFIX = "Prefix",
3587
3708
  SUFFIX = "Suffix"
3588
3709
  }
3589
3710
  /**
3711
+ * @public
3590
3712
  * <p>Details for a filter rule.</p>
3591
3713
  */
3592
3714
  export interface AwsS3BucketNotificationConfigurationS3KeyFilterRule {
@@ -3600,6 +3722,7 @@ export interface AwsS3BucketNotificationConfigurationS3KeyFilterRule {
3600
3722
  Value?: string;
3601
3723
  }
3602
3724
  /**
3725
+ * @public
3603
3726
  * <p>Details for an Amazon S3 filter.</p>
3604
3727
  */
3605
3728
  export interface AwsS3BucketNotificationConfigurationS3KeyFilter {
@@ -3609,6 +3732,7 @@ export interface AwsS3BucketNotificationConfigurationS3KeyFilter {
3609
3732
  FilterRules?: AwsS3BucketNotificationConfigurationS3KeyFilterRule[];
3610
3733
  }
3611
3734
  /**
3735
+ * @public
3612
3736
  * <p>Filtering information for the notifications. The
3613
3737
  * filtering is based on Amazon S3 key names.</p>
3614
3738
  */
@@ -3619,6 +3743,7 @@ export interface AwsS3BucketNotificationConfigurationFilter {
3619
3743
  S3KeyFilter?: AwsS3BucketNotificationConfigurationS3KeyFilter;
3620
3744
  }
3621
3745
  /**
3746
+ * @public
3622
3747
  * <p>Details for an S3 bucket notification configuration.</p>
3623
3748
  */
3624
3749
  export interface AwsS3BucketNotificationConfigurationDetail {
@@ -3659,6 +3784,7 @@ export interface AwsS3BucketNotificationConfigurationDetail {
3659
3784
  Type?: string;
3660
3785
  }
3661
3786
  /**
3787
+ * @public
3662
3788
  * <p>The notification
3663
3789
  * configuration for the S3 bucket.</p>
3664
3790
  */
@@ -3669,6 +3795,7 @@ export interface AwsS3BucketNotificationConfiguration {
3669
3795
  Configurations?: AwsS3BucketNotificationConfigurationDetail[];
3670
3796
  }
3671
3797
  /**
3798
+ * @public
3672
3799
  * <p>The redirect behavior for requests
3673
3800
  * to the website.</p>
3674
3801
  */
@@ -3684,6 +3811,7 @@ export interface AwsS3BucketWebsiteConfigurationRedirectTo {
3684
3811
  Protocol?: string;
3685
3812
  }
3686
3813
  /**
3814
+ * @public
3687
3815
  * <p>The condition that must be met in order to apply the routing rule.</p>
3688
3816
  */
3689
3817
  export interface AwsS3BucketWebsiteConfigurationRoutingRuleCondition {
@@ -3697,6 +3825,7 @@ export interface AwsS3BucketWebsiteConfigurationRoutingRuleCondition {
3697
3825
  KeyPrefixEquals?: string;
3698
3826
  }
3699
3827
  /**
3828
+ * @public
3700
3829
  * <p>The rules to redirect the request if the condition in <code>Condition</code> is
3701
3830
  * met.</p>
3702
3831
  */
@@ -3726,6 +3855,7 @@ export interface AwsS3BucketWebsiteConfigurationRoutingRuleRedirect {
3726
3855
  ReplaceKeyWith?: string;
3727
3856
  }
3728
3857
  /**
3858
+ * @public
3729
3859
  * <p>A rule for redirecting requests
3730
3860
  * to the website.</p>
3731
3861
  */
@@ -3741,6 +3871,7 @@ export interface AwsS3BucketWebsiteConfigurationRoutingRule {
3741
3871
  Redirect?: AwsS3BucketWebsiteConfigurationRoutingRuleRedirect;
3742
3872
  }
3743
3873
  /**
3874
+ * @public
3744
3875
  * <p>Website parameters for the S3
3745
3876
  * bucket.</p>
3746
3877
  */
@@ -3763,6 +3894,7 @@ export interface AwsS3BucketWebsiteConfiguration {
3763
3894
  RoutingRules?: AwsS3BucketWebsiteConfigurationRoutingRule[];
3764
3895
  }
3765
3896
  /**
3897
+ * @public
3766
3898
  * <p>Specifies the default server-side encryption to apply to new objects in the
3767
3899
  * bucket.</p>
3768
3900
  */
@@ -3778,6 +3910,7 @@ export interface AwsS3BucketServerSideEncryptionByDefault {
3778
3910
  KMSMasterKeyID?: string;
3779
3911
  }
3780
3912
  /**
3913
+ * @public
3781
3914
  * <p>An encryption rule to apply to the S3 bucket.</p>
3782
3915
  */
3783
3916
  export interface AwsS3BucketServerSideEncryptionRule {
@@ -3789,6 +3922,7 @@ export interface AwsS3BucketServerSideEncryptionRule {
3789
3922
  ApplyServerSideEncryptionByDefault?: AwsS3BucketServerSideEncryptionByDefault;
3790
3923
  }
3791
3924
  /**
3925
+ * @public
3792
3926
  * <p>The encryption configuration for the S3 bucket.</p>
3793
3927
  */
3794
3928
  export interface AwsS3BucketServerSideEncryptionConfiguration {
@@ -3798,6 +3932,7 @@ export interface AwsS3BucketServerSideEncryptionConfiguration {
3798
3932
  Rules?: AwsS3BucketServerSideEncryptionRule[];
3799
3933
  }
3800
3934
  /**
3935
+ * @public
3801
3936
  * <p>The details of an Amazon S3 bucket.</p>
3802
3937
  */
3803
3938
  export interface AwsS3BucketDetails {
@@ -3854,6 +3989,7 @@ export interface AwsS3BucketDetails {
3854
3989
  BucketVersioningConfiguration?: AwsS3BucketBucketVersioningConfiguration;
3855
3990
  }
3856
3991
  /**
3992
+ * @public
3857
3993
  * <p>Details about an Amazon S3 object.</p>
3858
3994
  */
3859
3995
  export interface AwsS3ObjectDetails {
@@ -3888,6 +4024,7 @@ export interface AwsS3ObjectDetails {
3888
4024
  SSEKMSKeyId?: string;
3889
4025
  }
3890
4026
  /**
4027
+ * @public
3891
4028
  * <p>
3892
4029
  * Information on the instance metadata service (IMDS) configuration of the notebook instance.
3893
4030
  * </p>
@@ -3901,6 +4038,7 @@ export interface AwsSageMakerNotebookInstanceMetadataServiceConfigurationDetails
3901
4038
  MinimumInstanceMetadataServiceVersion?: string;
3902
4039
  }
3903
4040
  /**
4041
+ * @public
3904
4042
  * <p>
3905
4043
  * Provides details about an Amazon SageMaker notebook instance.
3906
4044
  * </p>
@@ -4031,6 +4169,7 @@ export interface AwsSageMakerNotebookInstanceDetails {
4031
4169
  VolumeSizeInGB?: number;
4032
4170
  }
4033
4171
  /**
4172
+ * @public
4034
4173
  * <p>Defines the rotation schedule for the secret.</p>
4035
4174
  */
4036
4175
  export interface AwsSecretsManagerSecretRotationRules {
@@ -4040,6 +4179,7 @@ export interface AwsSecretsManagerSecretRotationRules {
4040
4179
  AutomaticallyAfterDays?: number;
4041
4180
  }
4042
4181
  /**
4182
+ * @public
4043
4183
  * <p>Details about an Secrets Manager secret.</p>
4044
4184
  */
4045
4185
  export interface AwsSecretsManagerSecretDetails {
@@ -4078,6 +4218,9 @@ export interface AwsSecretsManagerSecretDetails {
4078
4218
  */
4079
4219
  Description?: string;
4080
4220
  }
4221
+ /**
4222
+ * @public
4223
+ */
4081
4224
  export declare enum ComplianceStatus {
4082
4225
  FAILED = "FAILED",
4083
4226
  NOT_AVAILABLE = "NOT_AVAILABLE",
@@ -4085,6 +4228,7 @@ export declare enum ComplianceStatus {
4085
4228
  WARNING = "WARNING"
4086
4229
  }
4087
4230
  /**
4231
+ * @public
4088
4232
  * <p>Provides additional context for the value of <code>Compliance.Status</code>.</p>
4089
4233
  */
4090
4234
  export interface StatusReason {
@@ -4100,6 +4244,7 @@ export interface StatusReason {
4100
4244
  Description?: string;
4101
4245
  }
4102
4246
  /**
4247
+ * @public
4103
4248
  * <p>Contains finding details that are specific to control-based findings. Only returned for
4104
4249
  * findings generated from controls.</p>
4105
4250
  */
@@ -4163,6 +4308,7 @@ export interface Compliance {
4163
4308
  AssociatedStandards?: AssociatedStandard[];
4164
4309
  }
4165
4310
  /**
4311
+ * @public
4166
4312
  * <p>Details about a related finding.</p>
4167
4313
  */
4168
4314
  export interface RelatedFinding {
@@ -4175,6 +4321,9 @@ export interface RelatedFinding {
4175
4321
  */
4176
4322
  Id: string | undefined;
4177
4323
  }
4324
+ /**
4325
+ * @public
4326
+ */
4178
4327
  export declare enum SeverityLabel {
4179
4328
  CRITICAL = "CRITICAL",
4180
4329
  HIGH = "HIGH",
@@ -4183,6 +4332,7 @@ export declare enum SeverityLabel {
4183
4332
  MEDIUM = "MEDIUM"
4184
4333
  }
4185
4334
  /**
4335
+ * @public
4186
4336
  * <p>The severity assigned to the finding by the finding provider.</p>
4187
4337
  */
4188
4338
  export interface FindingProviderSeverity {
@@ -4196,6 +4346,7 @@ export interface FindingProviderSeverity {
4196
4346
  Original?: string;
4197
4347
  }
4198
4348
  /**
4349
+ * @public
4199
4350
  * <p>In a <code>BatchImportFindings</code> request, finding providers use <code>FindingProviderFields</code> to provide and update values for confidence, criticality, related findings, severity, and types.</p>
4200
4351
  */
4201
4352
  export interface FindingProviderFields {
@@ -4228,11 +4379,17 @@ export interface FindingProviderFields {
4228
4379
  */
4229
4380
  Types?: string[];
4230
4381
  }
4382
+ /**
4383
+ * @public
4384
+ */
4231
4385
  export declare enum MalwareState {
4232
4386
  OBSERVED = "OBSERVED",
4233
4387
  REMOVAL_FAILED = "REMOVAL_FAILED",
4234
4388
  REMOVED = "REMOVED"
4235
4389
  }
4390
+ /**
4391
+ * @public
4392
+ */
4236
4393
  export declare enum MalwareType {
4237
4394
  ADWARE = "ADWARE",
4238
4395
  BLENDED_THREAT = "BLENDED_THREAT",
@@ -4251,6 +4408,7 @@ export declare enum MalwareType {
4251
4408
  WORM = "WORM"
4252
4409
  }
4253
4410
  /**
4411
+ * @public
4254
4412
  * <p>A list of malware related to a finding.</p>
4255
4413
  */
4256
4414
  export interface Malware {
@@ -4271,11 +4429,15 @@ export interface Malware {
4271
4429
  */
4272
4430
  State?: MalwareState | string;
4273
4431
  }
4432
+ /**
4433
+ * @public
4434
+ */
4274
4435
  export declare enum NetworkDirection {
4275
4436
  IN = "IN",
4276
4437
  OUT = "OUT"
4277
4438
  }
4278
4439
  /**
4440
+ * @public
4279
4441
  * <p>A range of ports.</p>
4280
4442
  */
4281
4443
  export interface PortRange {
@@ -4289,6 +4451,7 @@ export interface PortRange {
4289
4451
  End?: number;
4290
4452
  }
4291
4453
  /**
4454
+ * @public
4292
4455
  * <p>The details of network-related information about a finding.</p>
4293
4456
  */
4294
4457
  export interface Network {
@@ -4343,6 +4506,7 @@ export interface Network {
4343
4506
  DestinationDomain?: string;
4344
4507
  }
4345
4508
  /**
4509
+ * @public
4346
4510
  * <p>Information about the destination of the next component in the network path.</p>
4347
4511
  */
4348
4512
  export interface NetworkPathComponentDetails {
@@ -4356,6 +4520,7 @@ export interface NetworkPathComponentDetails {
4356
4520
  PortRanges?: PortRange[];
4357
4521
  }
4358
4522
  /**
4523
+ * @public
4359
4524
  * <p>Details about a network path component that occurs before or after the current
4360
4525
  * component.</p>
4361
4526
  */
@@ -4374,6 +4539,7 @@ export interface NetworkHeader {
4374
4539
  Source?: NetworkPathComponentDetails;
4375
4540
  }
4376
4541
  /**
4542
+ * @public
4377
4543
  * <p>Information about a network path component.</p>
4378
4544
  */
4379
4545
  export interface NetworkPathComponent {
@@ -4397,6 +4563,7 @@ export interface NetworkPathComponent {
4397
4563
  Ingress?: NetworkHeader;
4398
4564
  }
4399
4565
  /**
4566
+ * @public
4400
4567
  * <p>A user-defined note added to a finding.</p>
4401
4568
  */
4402
4569
  export interface Note {
@@ -4417,6 +4584,7 @@ export interface Note {
4417
4584
  UpdatedAt: string | undefined;
4418
4585
  }
4419
4586
  /**
4587
+ * @public
4420
4588
  * <p>Provides an overview of the patch compliance status for an instance against a selected
4421
4589
  * compliance standard.</p>
4422
4590
  */
@@ -4479,6 +4647,7 @@ export interface PatchSummary {
4479
4647
  Operation?: string;
4480
4648
  }
4481
4649
  /**
4650
+ * @public
4482
4651
  * <p>The details of process-related information about a finding.</p>
4483
4652
  */
4484
4653
  export interface ProcessDetails {
@@ -4513,11 +4682,15 @@ export interface ProcessDetails {
4513
4682
  */
4514
4683
  TerminatedAt?: string;
4515
4684
  }
4685
+ /**
4686
+ * @public
4687
+ */
4516
4688
  export declare enum RecordState {
4517
4689
  ACTIVE = "ACTIVE",
4518
4690
  ARCHIVED = "ARCHIVED"
4519
4691
  }
4520
4692
  /**
4693
+ * @public
4521
4694
  * <p>A recommendation on how to remediate the issue identified in a finding.</p>
4522
4695
  */
4523
4696
  export interface Recommendation {
@@ -4531,6 +4704,7 @@ export interface Recommendation {
4531
4704
  Url?: string;
4532
4705
  }
4533
4706
  /**
4707
+ * @public
4534
4708
  * <p>Details about the remediation steps for a finding.</p>
4535
4709
  */
4536
4710
  export interface Remediation {
@@ -4540,6 +4714,7 @@ export interface Remediation {
4540
4714
  Recommendation?: Recommendation;
4541
4715
  }
4542
4716
  /**
4717
+ * @public
4543
4718
  * <p>An occurrence of sensitive data detected in a Microsoft Excel workbook, comma-separated value (CSV) file, or tab-separated value (TSV) file.</p>
4544
4719
  */
4545
4720
  export interface Cell {
@@ -4561,6 +4736,7 @@ export interface Cell {
4561
4736
  CellReference?: string;
4562
4737
  }
4563
4738
  /**
4739
+ * @public
4564
4740
  * <p>Identifies where the sensitive data begins and ends.</p>
4565
4741
  */
4566
4742
  export interface Range {
@@ -4578,6 +4754,7 @@ export interface Range {
4578
4754
  StartColumn?: number;
4579
4755
  }
4580
4756
  /**
4757
+ * @public
4581
4758
  * <p>An occurrence of sensitive data in an Adobe Portable Document Format (PDF) file.</p>
4582
4759
  */
4583
4760
  export interface Page {
@@ -4595,6 +4772,7 @@ export interface Page {
4595
4772
  OffsetRange?: Range;
4596
4773
  }
4597
4774
  /**
4775
+ * @public
4598
4776
  * <p>An occurrence of sensitive data in an Apache Avro object container or an Apache Parquet file.</p>
4599
4777
  */
4600
4778
  export interface _Record {
@@ -4608,6 +4786,7 @@ export interface _Record {
4608
4786
  RecordIndex?: number;
4609
4787
  }
4610
4788
  /**
4789
+ * @public
4611
4790
  * <p>The detected occurrences of sensitive data.</p>
4612
4791
  */
4613
4792
  export interface Occurrences {
@@ -4633,6 +4812,7 @@ export interface Occurrences {
4633
4812
  Cells?: Cell[];
4634
4813
  }
4635
4814
  /**
4815
+ * @public
4636
4816
  * <p>The list of detected instances of sensitive data.</p>
4637
4817
  */
4638
4818
  export interface CustomDataIdentifiersDetections {
@@ -4654,6 +4834,7 @@ export interface CustomDataIdentifiersDetections {
4654
4834
  Occurrences?: Occurrences;
4655
4835
  }
4656
4836
  /**
4837
+ * @public
4657
4838
  * <p>Contains an instance of sensitive data that was detected by a customer-defined identifier.</p>
4658
4839
  */
4659
4840
  export interface CustomDataIdentifiersResult {
@@ -4667,6 +4848,7 @@ export interface CustomDataIdentifiersResult {
4667
4848
  TotalCount?: number;
4668
4849
  }
4669
4850
  /**
4851
+ * @public
4670
4852
  * <p>The list of detected instances of sensitive data.</p>
4671
4853
  */
4672
4854
  export interface SensitiveDataDetections {
@@ -4684,6 +4866,7 @@ export interface SensitiveDataDetections {
4684
4866
  Occurrences?: Occurrences;
4685
4867
  }
4686
4868
  /**
4869
+ * @public
4687
4870
  * <p>Contains a detected instance of sensitive data that are based on built-in identifiers.</p>
4688
4871
  */
4689
4872
  export interface SensitiveDataResult {
@@ -4701,6 +4884,7 @@ export interface SensitiveDataResult {
4701
4884
  TotalCount?: number;
4702
4885
  }
4703
4886
  /**
4887
+ * @public
4704
4888
  * <p>Provides details about the current status of the sensitive data detection.</p>
4705
4889
  */
4706
4890
  export interface ClassificationStatus {
@@ -4714,6 +4898,7 @@ export interface ClassificationStatus {
4714
4898
  Reason?: string;
4715
4899
  }
4716
4900
  /**
4901
+ * @public
4717
4902
  * <p>Details about the sensitive data that was detected on the resource.</p>
4718
4903
  */
4719
4904
  export interface ClassificationResult {
@@ -4743,6 +4928,7 @@ export interface ClassificationResult {
4743
4928
  CustomDataIdentifiers?: CustomDataIdentifiersResult;
4744
4929
  }
4745
4930
  /**
4931
+ * @public
4746
4932
  * <p>Provides details about sensitive data that was detected on a resource.</p>
4747
4933
  */
4748
4934
  export interface DataClassificationDetails {
@@ -4756,6 +4942,7 @@ export interface DataClassificationDetails {
4756
4942
  Result?: ClassificationResult;
4757
4943
  }
4758
4944
  /**
4945
+ * @public
4759
4946
  * <p>A wrapper type for the attributes of an Amazon SNS subscription.</p>
4760
4947
  */
4761
4948
  export interface AwsSnsTopicSubscription {
@@ -4769,6 +4956,7 @@ export interface AwsSnsTopicSubscription {
4769
4956
  Protocol?: string;
4770
4957
  }
4771
4958
  /**
4959
+ * @public
4772
4960
  * <p>Provides information about an Amazon SNS topic to which notifications can be published.</p>
4773
4961
  */
4774
4962
  export interface AwsSnsTopicDetails {
@@ -4824,6 +5012,7 @@ export interface AwsSnsTopicDetails {
4824
5012
  HttpFailureFeedbackRoleArn?: string;
4825
5013
  }
4826
5014
  /**
5015
+ * @public
4827
5016
  * <p>Data about a queue.</p>
4828
5017
  */
4829
5018
  export interface AwsSqsQueueDetails {
@@ -4847,6 +5036,7 @@ export interface AwsSqsQueueDetails {
4847
5036
  DeadLetterTargetArn?: string;
4848
5037
  }
4849
5038
  /**
5039
+ * @public
4850
5040
  * <p>Provides the details about the compliance status for a patch.</p>
4851
5041
  */
4852
5042
  export interface AwsSsmComplianceSummary {
@@ -4988,6 +5178,7 @@ export interface AwsSsmComplianceSummary {
4988
5178
  PatchGroup?: string;
4989
5179
  }
4990
5180
  /**
5181
+ * @public
4991
5182
  * <p>Provides details about the compliance for a patch.</p>
4992
5183
  */
4993
5184
  export interface AwsSsmPatch {
@@ -4997,6 +5188,7 @@ export interface AwsSsmPatch {
4997
5188
  ComplianceSummary?: AwsSsmComplianceSummary;
4998
5189
  }
4999
5190
  /**
5191
+ * @public
5000
5192
  * <p>Provides information about the state of a patch on an instance based on the patch
5001
5193
  * baseline that was used to patch the instance.</p>
5002
5194
  */
@@ -5007,6 +5199,7 @@ export interface AwsSsmPatchComplianceDetails {
5007
5199
  Patch?: AwsSsmPatch;
5008
5200
  }
5009
5201
  /**
5202
+ * @public
5010
5203
  * <p>A match predicate. A predicate might look for characteristics such as specific IP addresses, geographic locations, or sizes.</p>
5011
5204
  */
5012
5205
  export interface AwsWafRateBasedRuleMatchPredicate {
@@ -5063,6 +5256,7 @@ export interface AwsWafRateBasedRuleMatchPredicate {
5063
5256
  Type?: string;
5064
5257
  }
5065
5258
  /**
5259
+ * @public
5066
5260
  * <p>Details about a rate-based rule for global resources. A rate-based rule provides settings to indicate when to allow, block, or count a request. Rate-based rules include the number of requests that arrive over a specified period of time.</p>
5067
5261
  */
5068
5262
  export interface AwsWafRateBasedRuleDetails {
@@ -5092,6 +5286,7 @@ export interface AwsWafRateBasedRuleDetails {
5092
5286
  MatchPredicates?: AwsWafRateBasedRuleMatchPredicate[];
5093
5287
  }
5094
5288
  /**
5289
+ * @public
5095
5290
  * <p>Details for a match predicate. A predicate might look for characteristics such as specific IP addresses, geographic locations, or sizes.</p>
5096
5291
  */
5097
5292
  export interface AwsWafRegionalRateBasedRuleMatchPredicate {
@@ -5147,6 +5342,7 @@ export interface AwsWafRegionalRateBasedRuleMatchPredicate {
5147
5342
  Type?: string;
5148
5343
  }
5149
5344
  /**
5345
+ * @public
5150
5346
  * <p>contains details about a rate-based rule for Regional resources. A rate-based rule provides settings to indicate when to allow, block, or count a request. Rate-based rules include the number of requests that arrive over a specified period of time.</p>
5151
5347
  */
5152
5348
  export interface AwsWafRegionalRateBasedRuleDetails {
@@ -5176,6 +5372,7 @@ export interface AwsWafRegionalRateBasedRuleDetails {
5176
5372
  MatchPredicates?: AwsWafRegionalRateBasedRuleMatchPredicate[];
5177
5373
  }
5178
5374
  /**
5375
+ * @public
5179
5376
  * <p>Provides details about the <code>ByteMatchSet</code>, <code>IPSet</code>, <code>SqlInjectionMatchSet</code>, <code>XssMatchSet</code>,
5180
5377
  * <code>RegexMatchSet</code>, <code>GeoMatchSet</code>, and <code>SizeConstraintSet</code> objects that you want to add to a rule and, for each object, indicates whether you want to negate the settings.
5181
5378
  * </p>
@@ -5200,6 +5397,7 @@ export interface AwsWafRegionalRulePredicateListDetails {
5200
5397
  Type?: string;
5201
5398
  }
5202
5399
  /**
5400
+ * @public
5203
5401
  * <p>Provides information about an WAF Regional rule. This rule identifies the web requests that you want to allow, block, or count. </p>
5204
5402
  */
5205
5403
  export interface AwsWafRegionalRuleDetails {
@@ -5227,6 +5425,7 @@ export interface AwsWafRegionalRuleDetails {
5227
5425
  RuleId?: string;
5228
5426
  }
5229
5427
  /**
5428
+ * @public
5230
5429
  * <p>Describes the action that WAF should take on a web request when it matches the criteria defined in the rule.
5231
5430
  * </p>
5232
5431
  */
@@ -5238,6 +5437,7 @@ export interface AwsWafRegionalRuleGroupRulesActionDetails {
5238
5437
  Type?: string;
5239
5438
  }
5240
5439
  /**
5440
+ * @public
5241
5441
  * <p>Provides information about the rules attached to a rule group
5242
5442
  * </p>
5243
5443
  */
@@ -5263,6 +5463,7 @@ export interface AwsWafRegionalRuleGroupRulesDetails {
5263
5463
  Type?: string;
5264
5464
  }
5265
5465
  /**
5466
+ * @public
5266
5467
  * <p>Provides information about an WAF Regional rule group. The rule group is a collection of rules for inspecting and controlling web
5267
5468
  * requests. </p>
5268
5469
  */
@@ -5290,6 +5491,7 @@ export interface AwsWafRegionalRuleGroupDetails {
5290
5491
  Rules?: AwsWafRegionalRuleGroupRulesDetails[];
5291
5492
  }
5292
5493
  /**
5494
+ * @public
5293
5495
  * <p>The action that WAF takes when a web request matches all conditions in the
5294
5496
  * rule, such as allow, block, or count the request. </p>
5295
5497
  */
@@ -5301,6 +5503,7 @@ export interface AwsWafRegionalWebAclRulesListActionDetails {
5301
5503
  Type?: string;
5302
5504
  }
5303
5505
  /**
5506
+ * @public
5304
5507
  * <p>Provides details about the action to use in the place of the action that results from the rule group
5305
5508
  * evaluation.
5306
5509
  * </p>
@@ -5313,6 +5516,7 @@ export interface AwsWafRegionalWebAclRulesListOverrideActionDetails {
5313
5516
  Type?: string;
5314
5517
  }
5315
5518
  /**
5519
+ * @public
5316
5520
  * <p>A combination of <code>ByteMatchSet</code>, <code>IPSet</code>, and/or <code>SqlInjectionMatchSet</code>
5317
5521
  * objects that identify the web requests that you want to allow, block, or count.
5318
5522
  * </p>
@@ -5346,6 +5550,7 @@ export interface AwsWafRegionalWebAclRulesListDetails {
5346
5550
  Type?: string;
5347
5551
  }
5348
5552
  /**
5553
+ * @public
5349
5554
  * <p>Provides information about the web access control list (web ACL). The web ACL contains the rules that identify the requests that you
5350
5555
  * want to allow, block, or count. </p>
5351
5556
  */
@@ -5378,6 +5583,7 @@ export interface AwsWafRegionalWebAclDetails {
5378
5583
  WebAclId?: string;
5379
5584
  }
5380
5585
  /**
5586
+ * @public
5381
5587
  * <p>Provides details about the <code>ByteMatchSet</code>, <code>IPSet</code>, <code>SqlInjectionMatchSet</code>, <code>XssMatchSet</code>,
5382
5588
  * <code>RegexMatchSet</code>, <code>GeoMatchSet</code>, and <code>SizeConstraintSet</code> objects that you want to add to a rule and,
5383
5589
  * for each object, indicates whether you want to negate the settings.
@@ -5403,6 +5609,7 @@ export interface AwsWafRulePredicateListDetails {
5403
5609
  Type?: string;
5404
5610
  }
5405
5611
  /**
5612
+ * @public
5406
5613
  * <p>Provides information about a WAF rule. This rule specifies the web requests that you want to allow, block, or count.
5407
5614
  * </p>
5408
5615
  */
@@ -5431,6 +5638,7 @@ export interface AwsWafRuleDetails {
5431
5638
  RuleId?: string;
5432
5639
  }
5433
5640
  /**
5641
+ * @public
5434
5642
  * <p>Provides information about what action WAF should take on a web request when it matches the criteria defined in the rule.
5435
5643
  * </p>
5436
5644
  */
@@ -5442,6 +5650,7 @@ export interface AwsWafRuleGroupRulesActionDetails {
5442
5650
  Type?: string;
5443
5651
  }
5444
5652
  /**
5653
+ * @public
5445
5654
  * <p>Provides information about the rules attached to the rule group. These rules identify the web requests that you want to
5446
5655
  * allow, block, or count.
5447
5656
  * </p>
@@ -5469,6 +5678,7 @@ export interface AwsWafRuleGroupRulesDetails {
5469
5678
  Type?: string;
5470
5679
  }
5471
5680
  /**
5681
+ * @public
5472
5682
  * <p>Provides information about an WAF rule group. A rule group is a collection of rules for inspecting and controlling web requests.
5473
5683
  * </p>
5474
5684
  */
@@ -5496,6 +5706,7 @@ export interface AwsWafRuleGroupDetails {
5496
5706
  Rules?: AwsWafRuleGroupRulesDetails[];
5497
5707
  }
5498
5708
  /**
5709
+ * @public
5499
5710
  * <p>
5500
5711
  * A custom header for custom request and response handling.
5501
5712
  * </p>
@@ -5515,6 +5726,7 @@ export interface AwsWafv2CustomHttpHeader {
5515
5726
  Value?: string;
5516
5727
  }
5517
5728
  /**
5729
+ * @public
5518
5730
  * <p>
5519
5731
  * Custom request handling behavior that inserts custom headers into a web request. WAF uses custom request handling when the rule action doesn't block the request.
5520
5732
  * </p>
@@ -5528,6 +5740,7 @@ export interface AwsWafv2CustomRequestHandlingDetails {
5528
5740
  InsertHeaders?: AwsWafv2CustomHttpHeader[];
5529
5741
  }
5530
5742
  /**
5743
+ * @public
5531
5744
  * <p>
5532
5745
  * Specifies that WAF should allow the request and optionally defines additional custom handling for the request.
5533
5746
  * </p>
@@ -5542,6 +5755,7 @@ export interface AwsWafv2ActionAllowDetails {
5542
5755
  CustomRequestHandling?: AwsWafv2CustomRequestHandlingDetails;
5543
5756
  }
5544
5757
  /**
5758
+ * @public
5545
5759
  * <p>
5546
5760
  * A custom response to send to the client. You can define a custom response for rule actions and default web ACL actions that are set to block.
5547
5761
  * </p>
@@ -5568,6 +5782,7 @@ export interface AwsWafv2CustomResponseDetails {
5568
5782
  ResponseHeaders?: AwsWafv2CustomHttpHeader[];
5569
5783
  }
5570
5784
  /**
5785
+ * @public
5571
5786
  * <p>
5572
5787
  * Specifies that WAF should block the request and optionally defines additional custom handling for the response to the web request.
5573
5788
  * </p>
@@ -5582,6 +5797,7 @@ export interface AwsWafv2ActionBlockDetails {
5582
5797
  CustomResponse?: AwsWafv2CustomResponseDetails;
5583
5798
  }
5584
5799
  /**
5800
+ * @public
5585
5801
  * <p>
5586
5802
  * Specifies that WAF should run a CAPTCHA check against the request.
5587
5803
  * </p>
@@ -5596,6 +5812,7 @@ export interface AwsWafv2RulesActionCaptchaDetails {
5596
5812
  CustomRequestHandling?: AwsWafv2CustomRequestHandlingDetails;
5597
5813
  }
5598
5814
  /**
5815
+ * @public
5599
5816
  * <p>
5600
5817
  * Specifies that WAF should count the request.
5601
5818
  * </p>
@@ -5610,6 +5827,7 @@ export interface AwsWafv2RulesActionCountDetails {
5610
5827
  CustomRequestHandling?: AwsWafv2CustomRequestHandlingDetails;
5611
5828
  }
5612
5829
  /**
5830
+ * @public
5613
5831
  * <p>
5614
5832
  * The action that WAF should take on a web request when it matches a rule's statement.
5615
5833
  * Settings at the web ACL level can override the rule action setting.
@@ -5642,6 +5860,7 @@ export interface AwsWafv2RulesActionDetails {
5642
5860
  Count?: AwsWafv2RulesActionCountDetails;
5643
5861
  }
5644
5862
  /**
5863
+ * @public
5645
5864
  * <p>
5646
5865
  * Defines and enables Amazon CloudWatch metrics and web request sample collection.
5647
5866
  * </p>
@@ -5669,6 +5888,7 @@ export interface AwsWafv2VisibilityConfigDetails {
5669
5888
  SampledRequestsEnabled?: boolean;
5670
5889
  }
5671
5890
  /**
5891
+ * @public
5672
5892
  * <p>
5673
5893
  * Provides details about rules in a rule group. A rule identifies web requests that you want to allow, block, or count. Each rule includes one top-level Statement that WAF uses to identify matching web requests, and parameters that govern how WAF handles them.
5674
5894
  * </p>
@@ -5707,6 +5927,7 @@ export interface AwsWafv2RulesDetails {
5707
5927
  VisibilityConfig?: AwsWafv2VisibilityConfigDetails;
5708
5928
  }
5709
5929
  /**
5930
+ * @public
5710
5931
  * <p>
5711
5932
  * Details about an WAFv2 rule group.
5712
5933
  * </p>
@@ -5766,6 +5987,7 @@ export interface AwsWafv2RuleGroupDetails {
5766
5987
  VisibilityConfig?: AwsWafv2VisibilityConfigDetails;
5767
5988
  }
5768
5989
  /**
5990
+ * @public
5769
5991
  * <p>
5770
5992
  * Used for CAPTCHA and challenge token settings. Determines how long a CAPTCHA or challenge timestamp remains valid after WAF updates it for a successful CAPTCHA or challenge response.
5771
5993
  * </p>
@@ -5779,6 +6001,7 @@ export interface AwsWafv2WebAclCaptchaConfigImmunityTimePropertyDetails {
5779
6001
  ImmunityTime?: number;
5780
6002
  }
5781
6003
  /**
6004
+ * @public
5782
6005
  * <p>
5783
6006
  * Specifies how WAF should handle CAPTCHA evaluations for rules that don't have their own <code>CaptchaConfig</code> settings.
5784
6007
  * </p>
@@ -5792,6 +6015,7 @@ export interface AwsWafv2WebAclCaptchaConfigDetails {
5792
6015
  ImmunityTimeProperty?: AwsWafv2WebAclCaptchaConfigImmunityTimePropertyDetails;
5793
6016
  }
5794
6017
  /**
6018
+ * @public
5795
6019
  * <p>
5796
6020
  * Specifies the action that Amazon CloudFront or WAF takes when a web request matches the conditions in the rule.
5797
6021
  * </p>
@@ -5811,6 +6035,7 @@ export interface AwsWafv2WebAclActionDetails {
5811
6035
  Block?: AwsWafv2ActionBlockDetails;
5812
6036
  }
5813
6037
  /**
6038
+ * @public
5814
6039
  * <p>
5815
6040
  * Details about an WAFv2 web Access Control List (ACL).
5816
6041
  * </p>
@@ -5881,6 +6106,7 @@ export interface AwsWafv2WebAclDetails {
5881
6106
  VisibilityConfig?: AwsWafv2VisibilityConfigDetails;
5882
6107
  }
5883
6108
  /**
6109
+ * @public
5884
6110
  * <p>Details about the action that CloudFront or WAF takes when a web request matches the
5885
6111
  * conditions in the rule. </p>
5886
6112
  */
@@ -5910,6 +6136,7 @@ export interface WafAction {
5910
6136
  Type?: string;
5911
6137
  }
5912
6138
  /**
6139
+ * @public
5913
6140
  * <p>Details about a rule to exclude from a rule group.</p>
5914
6141
  */
5915
6142
  export interface WafExcludedRule {
@@ -5919,6 +6146,7 @@ export interface WafExcludedRule {
5919
6146
  RuleId?: string;
5920
6147
  }
5921
6148
  /**
6149
+ * @public
5922
6150
  * <p>Details about an override action for a rule.</p>
5923
6151
  */
5924
6152
  export interface WafOverrideAction {
@@ -5931,6 +6159,7 @@ export interface WafOverrideAction {
5931
6159
  Type?: string;
5932
6160
  }
5933
6161
  /**
6162
+ * @public
5934
6163
  * <p>Details for a rule in an WAF web ACL.</p>
5935
6164
  */
5936
6165
  export interface AwsWafWebAclRule {
@@ -5982,6 +6211,7 @@ export interface AwsWafWebAclRule {
5982
6211
  Type?: string;
5983
6212
  }
5984
6213
  /**
6214
+ * @public
5985
6215
  * <p>Provides information about an WAF web access control list (web ACL).</p>
5986
6216
  */
5987
6217
  export interface AwsWafWebAclDetails {
@@ -6003,6 +6233,7 @@ export interface AwsWafWebAclDetails {
6003
6233
  WebAclId?: string;
6004
6234
  }
6005
6235
  /**
6236
+ * @public
6006
6237
  * <p>Information about the encryption configuration for X-Ray.</p>
6007
6238
  */
6008
6239
  export interface AwsXrayEncryptionConfigDetails {
@@ -6021,6 +6252,7 @@ export interface AwsXrayEncryptionConfigDetails {
6021
6252
  Type?: string;
6022
6253
  }
6023
6254
  /**
6255
+ * @public
6024
6256
  * <p>Describes the mounting of a volume in a container.
6025
6257
  * </p>
6026
6258
  */
@@ -6037,6 +6269,7 @@ export interface VolumeMount {
6037
6269
  MountPath?: string;
6038
6270
  }
6039
6271
  /**
6272
+ * @public
6040
6273
  * <p>Container details related to a finding.</p>
6041
6274
  */
6042
6275
  export interface ContainerDetails {
@@ -6077,6 +6310,7 @@ export interface ContainerDetails {
6077
6310
  Privileged?: boolean;
6078
6311
  }
6079
6312
  /**
6313
+ * @public
6080
6314
  * <p>Additional details about a resource related to a finding.</p>
6081
6315
  * <p>To provide the details, use the object that corresponds to the resource type. For
6082
6316
  * example, if the resource type is <code>AwsEc2Instance</code>, then you use the
@@ -6454,12 +6688,16 @@ export interface ResourceDetails {
6454
6688
  */
6455
6689
  AwsWafv2RuleGroup?: AwsWafv2RuleGroupDetails;
6456
6690
  }
6691
+ /**
6692
+ * @public
6693
+ */
6457
6694
  export declare enum Partition {
6458
6695
  AWS = "aws",
6459
6696
  AWS_CN = "aws-cn",
6460
6697
  AWS_US_GOV = "aws-us-gov"
6461
6698
  }
6462
6699
  /**
6700
+ * @public
6463
6701
  * <p>A resource related to a finding.</p>
6464
6702
  */
6465
6703
  export interface Resource {
@@ -6502,6 +6740,7 @@ export interface Resource {
6502
6740
  Details?: ResourceDetails;
6503
6741
  }
6504
6742
  /**
6743
+ * @public
6505
6744
  * <p>The severity of the finding.</p>
6506
6745
  * <p>The finding provider can provide the initial severity. The finding provider can only
6507
6746
  * update the severity if it hasn't been updated using
@@ -6604,6 +6843,9 @@ export interface Severity {
6604
6843
  */
6605
6844
  Original?: string;
6606
6845
  }
6846
+ /**
6847
+ * @public
6848
+ */
6607
6849
  export declare enum ThreatIntelIndicatorCategory {
6608
6850
  BACKDOOR = "BACKDOOR",
6609
6851
  CARD_STEALER = "CARD_STEALER",
@@ -6612,6 +6854,9 @@ export declare enum ThreatIntelIndicatorCategory {
6612
6854
  EXPLOIT_SITE = "EXPLOIT_SITE",
6613
6855
  KEYLOGGER = "KEYLOGGER"
6614
6856
  }
6857
+ /**
6858
+ * @public
6859
+ */
6615
6860
  export declare enum ThreatIntelIndicatorType {
6616
6861
  DOMAIN = "DOMAIN",
6617
6862
  EMAIL_ADDRESS = "EMAIL_ADDRESS",
@@ -6626,6 +6871,7 @@ export declare enum ThreatIntelIndicatorType {
6626
6871
  URL = "URL"
6627
6872
  }
6628
6873
  /**
6874
+ * @public
6629
6875
  * <p>Details about the threat intelligence related to a finding.</p>
6630
6876
  */
6631
6877
  export interface ThreatIntelIndicator {
@@ -6660,6 +6906,7 @@ export interface ThreatIntelIndicator {
6660
6906
  SourceUrl?: string;
6661
6907
  }
6662
6908
  /**
6909
+ * @public
6663
6910
  * <p>Provides information about the file paths that were affected by the threat.
6664
6911
  * </p>
6665
6912
  */
@@ -6686,6 +6933,7 @@ export interface FilePaths {
6686
6933
  Hash?: string;
6687
6934
  }
6688
6935
  /**
6936
+ * @public
6689
6937
  * <p>Provides information about the threat detected in a security finding and the file paths that were affected by the threat.
6690
6938
  * </p>
6691
6939
  */
@@ -6711,6 +6959,9 @@ export interface Threat {
6711
6959
  */
6712
6960
  FilePaths?: FilePaths[];
6713
6961
  }
6962
+ /**
6963
+ * @public
6964
+ */
6714
6965
  export declare enum VerificationState {
6715
6966
  BENIGN_POSITIVE = "BENIGN_POSITIVE",
6716
6967
  FALSE_POSITIVE = "FALSE_POSITIVE",
@@ -6718,6 +6969,7 @@ export declare enum VerificationState {
6718
6969
  UNKNOWN = "UNKNOWN"
6719
6970
  }
6720
6971
  /**
6972
+ * @public
6721
6973
  * <p>CVSS scores from the advisory related to the vulnerability.</p>
6722
6974
  */
6723
6975
  export interface Cvss {
@@ -6742,12 +6994,16 @@ export interface Cvss {
6742
6994
  */
6743
6995
  Adjustments?: Adjustment[];
6744
6996
  }
6997
+ /**
6998
+ * @public
6999
+ */
6745
7000
  export declare enum VulnerabilityFixAvailable {
6746
7001
  NO = "NO",
6747
7002
  PARTIAL = "PARTIAL",
6748
7003
  YES = "YES"
6749
7004
  }
6750
7005
  /**
7006
+ * @public
6751
7007
  * <p>A vendor that generates a vulnerability report.</p>
6752
7008
  */
6753
7009
  export interface VulnerabilityVendor {
@@ -6779,6 +7035,7 @@ export interface VulnerabilityVendor {
6779
7035
  VendorUpdatedAt?: string;
6780
7036
  }
6781
7037
  /**
7038
+ * @public
6782
7039
  * <p>Information about a software package.</p>
6783
7040
  */
6784
7041
  export interface SoftwarePackage {
@@ -6832,6 +7089,7 @@ export interface SoftwarePackage {
6832
7089
  SourceLayerArn?: string;
6833
7090
  }
6834
7091
  /**
7092
+ * @public
6835
7093
  * <p>A vulnerability associated with a finding.</p>
6836
7094
  */
6837
7095
  export interface Vulnerability {
@@ -6883,6 +7141,9 @@ export interface Vulnerability {
6883
7141
  */
6884
7142
  FixAvailable?: VulnerabilityFixAvailable | string;
6885
7143
  }
7144
+ /**
7145
+ * @public
7146
+ */
6886
7147
  export declare enum WorkflowStatus {
6887
7148
  NEW = "NEW",
6888
7149
  NOTIFIED = "NOTIFIED",
@@ -6890,6 +7151,7 @@ export declare enum WorkflowStatus {
6890
7151
  SUPPRESSED = "SUPPRESSED"
6891
7152
  }
6892
7153
  /**
7154
+ * @public
6893
7155
  * <p>Provides information about the status of the investigation into a finding.</p>
6894
7156
  */
6895
7157
  export interface Workflow {
@@ -6935,6 +7197,9 @@ export interface Workflow {
6935
7197
  */
6936
7198
  Status?: WorkflowStatus | string;
6937
7199
  }
7200
+ /**
7201
+ * @public
7202
+ */
6938
7203
  export declare enum WorkflowState {
6939
7204
  ASSIGNED = "ASSIGNED",
6940
7205
  DEFERRED = "DEFERRED",
@@ -6943,6 +7208,7 @@ export declare enum WorkflowState {
6943
7208
  RESOLVED = "RESOLVED"
6944
7209
  }
6945
7210
  /**
7211
+ * @public
6946
7212
  * <p>Provides a consistent format for Security Hub findings.
6947
7213
  * <code>AwsSecurityFinding</code> format allows you to share findings between Amazon Web Services
6948
7214
  * security services and third-party solutions.</p>
@@ -7167,6 +7433,9 @@ export interface AwsSecurityFinding {
7167
7433
  */
7168
7434
  Sample?: boolean;
7169
7435
  }
7436
+ /**
7437
+ * @public
7438
+ */
7170
7439
  export declare enum StringFilterComparison {
7171
7440
  EQUALS = "EQUALS",
7172
7441
  NOT_EQUALS = "NOT_EQUALS",
@@ -7174,6 +7443,7 @@ export declare enum StringFilterComparison {
7174
7443
  PREFIX_NOT_EQUALS = "PREFIX_NOT_EQUALS"
7175
7444
  }
7176
7445
  /**
7446
+ * @public
7177
7447
  * <p>A string filter for querying findings.</p>
7178
7448
  */
7179
7449
  export interface StringFilter {
@@ -7267,6 +7537,7 @@ export interface StringFilter {
7267
7537
  Comparison?: StringFilterComparison | string;
7268
7538
  }
7269
7539
  /**
7540
+ * @public
7270
7541
  * <p>A number filter for querying findings.</p>
7271
7542
  */
7272
7543
  export interface NumberFilter {
@@ -7286,10 +7557,14 @@ export interface NumberFilter {
7286
7557
  */
7287
7558
  Eq?: number;
7288
7559
  }
7560
+ /**
7561
+ * @public
7562
+ */
7289
7563
  export declare enum DateRangeUnit {
7290
7564
  DAYS = "DAYS"
7291
7565
  }
7292
7566
  /**
7567
+ * @public
7293
7568
  * <p>A date range for the date filter.</p>
7294
7569
  */
7295
7570
  export interface DateRange {
@@ -7303,6 +7578,7 @@ export interface DateRange {
7303
7578
  Unit?: DateRangeUnit | string;
7304
7579
  }
7305
7580
  /**
7581
+ * @public
7306
7582
  * <p>A date filter for querying findings.</p>
7307
7583
  */
7308
7584
  export interface DateFilter {
@@ -7324,6 +7600,7 @@ export interface DateFilter {
7324
7600
  DateRange?: DateRange;
7325
7601
  }
7326
7602
  /**
7603
+ * @public
7327
7604
  * <p>A keyword filter for querying findings.</p>
7328
7605
  */
7329
7606
  export interface KeywordFilter {
@@ -7333,6 +7610,7 @@ export interface KeywordFilter {
7333
7610
  Value?: string;
7334
7611
  }
7335
7612
  /**
7613
+ * @public
7336
7614
  * <p>The IP filter for querying findings.</p>
7337
7615
  */
7338
7616
  export interface IpFilter {
@@ -7341,11 +7619,15 @@ export interface IpFilter {
7341
7619
  */
7342
7620
  Cidr?: string;
7343
7621
  }
7622
+ /**
7623
+ * @public
7624
+ */
7344
7625
  export declare enum MapFilterComparison {
7345
7626
  EQUALS = "EQUALS",
7346
7627
  NOT_EQUALS = "NOT_EQUALS"
7347
7628
  }
7348
7629
  /**
7630
+ * @public
7349
7631
  * <p>A map filter for querying findings. Each map filter provides the field to check, the
7350
7632
  * value to look for, and the comparison operator.</p>
7351
7633
  */
@@ -7385,6 +7667,7 @@ export interface MapFilter {
7385
7667
  Comparison?: MapFilterComparison | string;
7386
7668
  }
7387
7669
  /**
7670
+ * @public
7388
7671
  * <p>Boolean filter for querying findings.</p>
7389
7672
  */
7390
7673
  export interface BooleanFilter {
@@ -7394,6 +7677,7 @@ export interface BooleanFilter {
7394
7677
  Value?: boolean;
7395
7678
  }
7396
7679
  /**
7680
+ * @public
7397
7681
  * <p>A collection of attributes that are applied to all active Security Hub-aggregated findings and
7398
7682
  * that result in a subset of findings that are included in this insight.</p>
7399
7683
  * <p>You can filter by up to 10 finding attributes. For each attribute, you can provide up to
@@ -7915,6 +8199,7 @@ export interface AwsSecurityFindingFilters {
7915
8199
  ComplianceAssociatedStandardsId?: StringFilter[];
7916
8200
  }
7917
8201
  /**
8202
+ * @public
7918
8203
  * <p>Identifies a finding to update using <code>BatchUpdateFindings</code>.</p>
7919
8204
  */
7920
8205
  export interface AwsSecurityFindingIdentifier {
@@ -7929,12 +8214,18 @@ export interface AwsSecurityFindingIdentifier {
7929
8214
  */
7930
8215
  ProductArn: string | undefined;
7931
8216
  }
8217
+ /**
8218
+ * @public
8219
+ */
7932
8220
  export interface BatchDisableStandardsRequest {
7933
8221
  /**
7934
8222
  * <p>The ARNs of the standards subscriptions to disable.</p>
7935
8223
  */
7936
8224
  StandardsSubscriptionArns: string[] | undefined;
7937
8225
  }
8226
+ /**
8227
+ * @public
8228
+ */
7938
8229
  export declare enum StandardsStatus {
7939
8230
  DELETING = "DELETING",
7940
8231
  FAILED = "FAILED",
@@ -7942,11 +8233,15 @@ export declare enum StandardsStatus {
7942
8233
  PENDING = "PENDING",
7943
8234
  READY = "READY"
7944
8235
  }
8236
+ /**
8237
+ * @public
8238
+ */
7945
8239
  export declare enum StatusReasonCode {
7946
8240
  INTERNAL_ERROR = "INTERNAL_ERROR",
7947
8241
  NO_AVAILABLE_CONFIGURATION_RECORDER = "NO_AVAILABLE_CONFIGURATION_RECORDER"
7948
8242
  }
7949
8243
  /**
8244
+ * @public
7950
8245
  * <p>The reason for the current status of a standard subscription.</p>
7951
8246
  */
7952
8247
  export interface StandardsStatusReason {
@@ -7956,6 +8251,7 @@ export interface StandardsStatusReason {
7956
8251
  StatusReasonCode: StatusReasonCode | string | undefined;
7957
8252
  }
7958
8253
  /**
8254
+ * @public
7959
8255
  * <p>A resource that represents your subscription to a supported standard.</p>
7960
8256
  */
7961
8257
  export interface StandardsSubscription {
@@ -8003,6 +8299,9 @@ export interface StandardsSubscription {
8003
8299
  */
8004
8300
  StandardsStatusReason?: StandardsStatusReason;
8005
8301
  }
8302
+ /**
8303
+ * @public
8304
+ */
8006
8305
  export interface BatchDisableStandardsResponse {
8007
8306
  /**
8008
8307
  * <p>The details of the standards subscriptions that were disabled.</p>
@@ -8010,6 +8309,7 @@ export interface BatchDisableStandardsResponse {
8010
8309
  StandardsSubscriptions?: StandardsSubscription[];
8011
8310
  }
8012
8311
  /**
8312
+ * @public
8013
8313
  * <p>The standard that you want to enable.</p>
8014
8314
  */
8015
8315
  export interface StandardsSubscriptionRequest {
@@ -8023,18 +8323,27 @@ export interface StandardsSubscriptionRequest {
8023
8323
  */
8024
8324
  StandardsInput?: Record<string, string>;
8025
8325
  }
8326
+ /**
8327
+ * @public
8328
+ */
8026
8329
  export interface BatchEnableStandardsRequest {
8027
8330
  /**
8028
8331
  * <p>The list of standards checks to enable.</p>
8029
8332
  */
8030
8333
  StandardsSubscriptionRequests: StandardsSubscriptionRequest[] | undefined;
8031
8334
  }
8335
+ /**
8336
+ * @public
8337
+ */
8032
8338
  export interface BatchEnableStandardsResponse {
8033
8339
  /**
8034
8340
  * <p>The details of the standards subscriptions that were enabled.</p>
8035
8341
  */
8036
8342
  StandardsSubscriptions?: StandardsSubscription[];
8037
8343
  }
8344
+ /**
8345
+ * @public
8346
+ */
8038
8347
  export interface BatchGetSecurityControlsRequest {
8039
8348
  /**
8040
8349
  * <p> A list of security controls (identified with <code>SecurityControlId</code>,
@@ -8043,10 +8352,16 @@ export interface BatchGetSecurityControlsRequest {
8043
8352
  */
8044
8353
  SecurityControlIds: string[] | undefined;
8045
8354
  }
8355
+ /**
8356
+ * @public
8357
+ */
8046
8358
  export declare enum ControlStatus {
8047
8359
  DISABLED = "DISABLED",
8048
8360
  ENABLED = "ENABLED"
8049
8361
  }
8362
+ /**
8363
+ * @public
8364
+ */
8050
8365
  export declare enum SeverityRating {
8051
8366
  CRITICAL = "CRITICAL",
8052
8367
  HIGH = "HIGH",
@@ -8054,6 +8369,7 @@ export declare enum SeverityRating {
8054
8369
  MEDIUM = "MEDIUM"
8055
8370
  }
8056
8371
  /**
8372
+ * @public
8057
8373
  * <p>
8058
8374
  * A security control in Security Hub describes a security best practice related to a specific resource.
8059
8375
  * </p>
@@ -8106,6 +8422,9 @@ export interface SecurityControl {
8106
8422
  */
8107
8423
  SecurityControlStatus: ControlStatus | string | undefined;
8108
8424
  }
8425
+ /**
8426
+ * @public
8427
+ */
8109
8428
  export declare enum UnprocessedErrorCode {
8110
8429
  ACCESS_DENIED = "ACCESS_DENIED",
8111
8430
  INVALID_INPUT = "INVALID_INPUT",
@@ -8113,6 +8432,7 @@ export declare enum UnprocessedErrorCode {
8113
8432
  NOT_FOUND = "NOT_FOUND"
8114
8433
  }
8115
8434
  /**
8435
+ * @public
8116
8436
  * <p> Provides details about a security control for which a response couldn't be returned. </p>
8117
8437
  */
8118
8438
  export interface UnprocessedSecurityControl {
@@ -8135,6 +8455,9 @@ export interface UnprocessedSecurityControl {
8135
8455
  */
8136
8456
  ErrorReason?: string;
8137
8457
  }
8458
+ /**
8459
+ * @public
8460
+ */
8138
8461
  export interface BatchGetSecurityControlsResponse {
8139
8462
  /**
8140
8463
  * <p>
@@ -8152,6 +8475,7 @@ export interface BatchGetSecurityControlsResponse {
8152
8475
  UnprocessedIds?: UnprocessedSecurityControl[];
8153
8476
  }
8154
8477
  /**
8478
+ * @public
8155
8479
  * <p>
8156
8480
  * An array with one or more objects that includes a security control (identified with <code>SecurityControlId</code>, <code>SecurityControlArn</code>, or a mix of both parameters)
8157
8481
  * and the Amazon Resource Name (ARN) of a standard. The security control ID or ARN is the same across standards.
@@ -8172,6 +8496,9 @@ export interface StandardsControlAssociationId {
8172
8496
  */
8173
8497
  StandardsArn: string | undefined;
8174
8498
  }
8499
+ /**
8500
+ * @public
8501
+ */
8175
8502
  export interface BatchGetStandardsControlAssociationsRequest {
8176
8503
  /**
8177
8504
  * <p>
@@ -8182,6 +8509,7 @@ export interface BatchGetStandardsControlAssociationsRequest {
8182
8509
  StandardsControlAssociationIds: StandardsControlAssociationId[] | undefined;
8183
8510
  }
8184
8511
  /**
8512
+ * @public
8185
8513
  * <p> Provides details about a control's enablement status in a specified standard. </p>
8186
8514
  */
8187
8515
  export interface StandardsControlAssociationDetail {
@@ -8248,6 +8576,7 @@ export interface StandardsControlAssociationDetail {
8248
8576
  StandardsControlArns?: string[];
8249
8577
  }
8250
8578
  /**
8579
+ * @public
8251
8580
  * <p> Provides details about which
8252
8581
  * control's enablement status couldn't be retrieved in a specified standard when calling <a href="https://docs.aws.amazon.com/securityhub/1.0/APIReference/API_BatchUpdateStandardsControlAssociations.html">BatchUpdateStandardsControlAssociations</a>. This parameter also provides details
8253
8582
  * about why the request was unprocessed. </p>
@@ -8271,6 +8600,9 @@ export interface UnprocessedStandardsControlAssociation {
8271
8600
  */
8272
8601
  ErrorReason?: string;
8273
8602
  }
8603
+ /**
8604
+ * @public
8605
+ */
8274
8606
  export interface BatchGetStandardsControlAssociationsResponse {
8275
8607
  /**
8276
8608
  * <p>Provides the enablement status of a security control in a specified standard and other details for the control in relation to
@@ -8286,6 +8618,9 @@ export interface BatchGetStandardsControlAssociationsResponse {
8286
8618
  */
8287
8619
  UnprocessedAssociations?: UnprocessedStandardsControlAssociation[];
8288
8620
  }
8621
+ /**
8622
+ * @public
8623
+ */
8289
8624
  export interface BatchImportFindingsRequest {
8290
8625
  /**
8291
8626
  * <p>A list of findings to import. To successfully import a finding, it must follow the
@@ -8294,6 +8629,7 @@ export interface BatchImportFindingsRequest {
8294
8629
  Findings: AwsSecurityFinding[] | undefined;
8295
8630
  }
8296
8631
  /**
8632
+ * @public
8297
8633
  * <p>The list of the findings that cannot be imported. For each finding, the list provides
8298
8634
  * the error.</p>
8299
8635
  */
@@ -8312,6 +8648,9 @@ export interface ImportFindingsError {
8312
8648
  */
8313
8649
  ErrorMessage: string | undefined;
8314
8650
  }
8651
+ /**
8652
+ * @public
8653
+ */
8315
8654
  export interface BatchImportFindingsResponse {
8316
8655
  /**
8317
8656
  * <p>The number of findings that failed to import.</p>
@@ -8327,6 +8666,7 @@ export interface BatchImportFindingsResponse {
8327
8666
  FailedFindings?: ImportFindingsError[];
8328
8667
  }
8329
8668
  /**
8669
+ * @public
8330
8670
  * <p>The updated note.</p>
8331
8671
  */
8332
8672
  export interface NoteUpdate {
@@ -8340,6 +8680,7 @@ export interface NoteUpdate {
8340
8680
  UpdatedBy: string | undefined;
8341
8681
  }
8342
8682
  /**
8683
+ * @public
8343
8684
  * <p>Updates to the severity information for a finding.</p>
8344
8685
  */
8345
8686
  export interface SeverityUpdate {
@@ -8406,6 +8747,7 @@ export interface SeverityUpdate {
8406
8747
  Label?: SeverityLabel | string;
8407
8748
  }
8408
8749
  /**
8750
+ * @public
8409
8751
  * <p>Used to update information about the investigation into the finding.</p>
8410
8752
  */
8411
8753
  export interface WorkflowUpdate {
@@ -8449,6 +8791,9 @@ export interface WorkflowUpdate {
8449
8791
  */
8450
8792
  Status?: WorkflowStatus | string;
8451
8793
  }
8794
+ /**
8795
+ * @public
8796
+ */
8452
8797
  export interface BatchUpdateFindingsRequest {
8453
8798
  /**
8454
8799
  * <p>The list of findings to update. <code>BatchUpdateFindings</code> can be used to update
@@ -8544,6 +8889,7 @@ export interface BatchUpdateFindingsRequest {
8544
8889
  RelatedFindings?: RelatedFinding[];
8545
8890
  }
8546
8891
  /**
8892
+ * @public
8547
8893
  * <p>A finding from a <code>BatchUpdateFindings</code> request that Security Hub was unable to
8548
8894
  * update.</p>
8549
8895
  */
@@ -8625,6 +8971,9 @@ export interface BatchUpdateFindingsUnprocessedFinding {
8625
8971
  */
8626
8972
  ErrorMessage: string | undefined;
8627
8973
  }
8974
+ /**
8975
+ * @public
8976
+ */
8628
8977
  export interface BatchUpdateFindingsResponse {
8629
8978
  /**
8630
8979
  * <p>The list of findings that were updated successfully.</p>
@@ -8636,6 +8985,7 @@ export interface BatchUpdateFindingsResponse {
8636
8985
  UnprocessedFindings: BatchUpdateFindingsUnprocessedFinding[] | undefined;
8637
8986
  }
8638
8987
  /**
8988
+ * @public
8639
8989
  * <p>An array of requested updates to the enablement status of controls in specified
8640
8990
  * standards. The objects in the array include a security control ID, the Amazon Resource Name (ARN) of the standard, the requested
8641
8991
  * enablement status, and the reason for updating the enablement status.</p>
@@ -8659,6 +9009,9 @@ export interface StandardsControlAssociationUpdate {
8659
9009
  */
8660
9010
  UpdatedReason?: string;
8661
9011
  }
9012
+ /**
9013
+ * @public
9014
+ */
8662
9015
  export interface BatchUpdateStandardsControlAssociationsRequest {
8663
9016
  /**
8664
9017
  * <p>
@@ -8668,6 +9021,7 @@ export interface BatchUpdateStandardsControlAssociationsRequest {
8668
9021
  StandardsControlAssociationUpdates: StandardsControlAssociationUpdate[] | undefined;
8669
9022
  }
8670
9023
  /**
9024
+ * @public
8671
9025
  * <p>Provides details about which control's enablement status could not be updated in a
8672
9026
  * specified standard when calling the <a href="https://docs.aws.amazon.com/securityhub/1.0/APIReference/API_BatchUpdateStandardsControlAssociations.html">BatchUpdateStandardsControlAssociations</a> API. This parameter also provides
8673
9027
  * details about why the request was unprocessed. </p>
@@ -8689,6 +9043,9 @@ export interface UnprocessedStandardsControlAssociationUpdate {
8689
9043
  */
8690
9044
  ErrorReason?: string;
8691
9045
  }
9046
+ /**
9047
+ * @public
9048
+ */
8692
9049
  export interface BatchUpdateStandardsControlAssociationsResponse {
8693
9050
  /**
8694
9051
  * <p>
@@ -8697,10 +9054,16 @@ export interface BatchUpdateStandardsControlAssociationsResponse {
8697
9054
  */
8698
9055
  UnprocessedAssociationUpdates?: UnprocessedStandardsControlAssociationUpdate[];
8699
9056
  }
9057
+ /**
9058
+ * @public
9059
+ */
8700
9060
  export declare enum ControlFindingGenerator {
8701
9061
  SECURITY_CONTROL = "SECURITY_CONTROL",
8702
9062
  STANDARD_CONTROL = "STANDARD_CONTROL"
8703
9063
  }
9064
+ /**
9065
+ * @public
9066
+ */
8704
9067
  export interface CreateActionTargetRequest {
8705
9068
  /**
8706
9069
  * <p>The name of the custom action target. Can contain up to 20 characters.</p>
@@ -8715,6 +9078,9 @@ export interface CreateActionTargetRequest {
8715
9078
  */
8716
9079
  Id: string | undefined;
8717
9080
  }
9081
+ /**
9082
+ * @public
9083
+ */
8718
9084
  export interface CreateActionTargetResponse {
8719
9085
  /**
8720
9086
  * <p>The Amazon Resource Name (ARN) for the custom action target.</p>
@@ -8722,6 +9088,7 @@ export interface CreateActionTargetResponse {
8722
9088
  ActionTargetArn: string | undefined;
8723
9089
  }
8724
9090
  /**
9091
+ * @public
8725
9092
  * <p>The resource specified in the request conflicts with an existing resource.</p>
8726
9093
  */
8727
9094
  export declare class ResourceConflictException extends __BaseException {
@@ -8734,6 +9101,9 @@ export declare class ResourceConflictException extends __BaseException {
8734
9101
  */
8735
9102
  constructor(opts: __ExceptionOptionType<ResourceConflictException, __BaseException>);
8736
9103
  }
9104
+ /**
9105
+ * @public
9106
+ */
8737
9107
  export interface CreateFindingAggregatorRequest {
8738
9108
  /**
8739
9109
  * <p>Indicates whether to aggregate findings from all of the available Regions in the current partition. Also determines whether to automatically aggregate findings from new Regions as Security Hub supports them and you opt into them.</p>
@@ -8765,6 +9135,9 @@ export interface CreateFindingAggregatorRequest {
8765
9135
  */
8766
9136
  Regions?: string[];
8767
9137
  }
9138
+ /**
9139
+ * @public
9140
+ */
8768
9141
  export interface CreateFindingAggregatorResponse {
8769
9142
  /**
8770
9143
  * <p>The ARN of the finding aggregator. You use the finding aggregator ARN to retrieve details for, update, and stop finding aggregation.</p>
@@ -8783,6 +9156,9 @@ export interface CreateFindingAggregatorResponse {
8783
9156
  */
8784
9157
  Regions?: string[];
8785
9158
  }
9159
+ /**
9160
+ * @public
9161
+ */
8786
9162
  export interface CreateInsightRequest {
8787
9163
  /**
8788
9164
  * <p>The name of the custom insight to create.</p>
@@ -8801,12 +9177,18 @@ export interface CreateInsightRequest {
8801
9177
  */
8802
9178
  GroupByAttribute: string | undefined;
8803
9179
  }
9180
+ /**
9181
+ * @public
9182
+ */
8804
9183
  export interface CreateInsightResponse {
8805
9184
  /**
8806
9185
  * <p>The ARN of the insight created.</p>
8807
9186
  */
8808
9187
  InsightArn: string | undefined;
8809
9188
  }
9189
+ /**
9190
+ * @public
9191
+ */
8810
9192
  export interface CreateMembersRequest {
8811
9193
  /**
8812
9194
  * <p>The list of accounts to associate with the Security Hub administrator account. For each account, the
@@ -8815,6 +9197,7 @@ export interface CreateMembersRequest {
8815
9197
  AccountDetails: AccountDetails[] | undefined;
8816
9198
  }
8817
9199
  /**
9200
+ * @public
8818
9201
  * <p>Details about the account that was not processed.</p>
8819
9202
  */
8820
9203
  export interface Result {
@@ -8827,6 +9210,9 @@ export interface Result {
8827
9210
  */
8828
9211
  ProcessingResult?: string;
8829
9212
  }
9213
+ /**
9214
+ * @public
9215
+ */
8830
9216
  export interface CreateMembersResponse {
8831
9217
  /**
8832
9218
  * <p>The list of Amazon Web Services accounts that were not processed. For each account, the list includes
@@ -8834,6 +9220,9 @@ export interface CreateMembersResponse {
8834
9220
  */
8835
9221
  UnprocessedAccounts?: Result[];
8836
9222
  }
9223
+ /**
9224
+ * @public
9225
+ */
8837
9226
  export interface DeclineInvitationsRequest {
8838
9227
  /**
8839
9228
  * <p>The list of account IDs for the accounts from which to decline the invitations to
@@ -8841,6 +9230,9 @@ export interface DeclineInvitationsRequest {
8841
9230
  */
8842
9231
  AccountIds: string[] | undefined;
8843
9232
  }
9233
+ /**
9234
+ * @public
9235
+ */
8844
9236
  export interface DeclineInvitationsResponse {
8845
9237
  /**
8846
9238
  * <p>The list of Amazon Web Services accounts that were not processed. For each account, the list includes
@@ -8848,12 +9240,18 @@ export interface DeclineInvitationsResponse {
8848
9240
  */
8849
9241
  UnprocessedAccounts?: Result[];
8850
9242
  }
9243
+ /**
9244
+ * @public
9245
+ */
8851
9246
  export interface DeleteActionTargetRequest {
8852
9247
  /**
8853
9248
  * <p>The Amazon Resource Name (ARN) of the custom action target to delete.</p>
8854
9249
  */
8855
9250
  ActionTargetArn: string | undefined;
8856
9251
  }
9252
+ /**
9253
+ * @public
9254
+ */
8857
9255
  export interface DeleteActionTargetResponse {
8858
9256
  /**
8859
9257
  * <p>The ARN of the custom action target that was deleted.</p>