npm - @aws-sdk/client-securityhub - Versions diffs - 3.316.0 → 3.319.0 - Mend

@aws-sdk/client-securityhub 3.316.0 → 3.319.0

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (55) hide show

package/dist-types/commands/DescribeStandardsControlsCommand.d.ts CHANGED Viewed

@@ -57,6 +57,52 @@ export interface DescribeStandardsControlsCommandOutput extends DescribeStandard
  *  <p>The request was rejected because we can't find the specified resource.</p>
  *
  *
+ * @example To get a list of controls for a security standard
+ * ```javascript
+ * // The following example returns a list of security controls and control details that apply to a specified security standard. The list includes controls that are enabled and disabled in the standard.
+ * const input = {
+ *   "MaxResults": 2,
+ *   "NextToken": "NULL",
+ *   "StandardsSubscriptionArn": "arn:aws:securityhub:us-west-1:123456789012:subscription/pci-dss/v/3.2.1"
+ * };
+ * const command = new DescribeStandardsControlsCommand(input);
+ * const response = await client.send(command);
+ * /* response ==
+ * {
+ *   "Controls": [
+ *     {
+ *       "ControlId": "PCI.AutoScaling.1",
+ *       "ControlStatus": "ENABLED",
+ *       "ControlStatusUpdatedAt": "2020-05-15T18:49:04.473000+00:00",
+ *       "Description": "This AWS control checks whether your Auto Scaling groups that are associated with a load balancer are using Elastic Load Balancing health checks.",
+ *       "RelatedRequirements": [
+ *         "PCI DSS 2.2"
+ *       ],
+ *       "RemediationUrl": "https://docs.aws.amazon.com/console/securityhub/PCI.AutoScaling.1/remediation",
+ *       "SeverityRating": "LOW",
+ *       "StandardsControlArn": "arn:aws:securityhub:us-west-1:123456789012:control/pci-dss/v/3.2.1/PCI.AutoScaling.1",
+ *       "Title": "Auto scaling groups associated with a load balancer should use health checks"
+ *     },
+ *     {
+ *       "ControlId": "PCI.CW.1",
+ *       "ControlStatus": "ENABLED",
+ *       "ControlStatusUpdatedAt": "2020-05-15T18:49:04.498000+00:00",
+ *       "Description": "This control checks for the CloudWatch metric filters using the following pattern { $.userIdentity.type = \"Root\" && $.userIdentity.invokedBy NOT EXISTS && $.eventType != \"AwsServiceEvent\" } It checks that the log group name is configured for use with active multi-region CloudTrail, that there is at least one Event Selector for a Trail with IncludeManagementEvents set to true and ReadWriteType set to All, and that there is at least one active subscriber to an SNS topic associated with the alarm.",
+ *       "RelatedRequirements": [
+ *         "PCI DSS 7.2.1"
+ *       ],
+ *       "RemediationUrl": "https://docs.aws.amazon.com/console/securityhub/PCI.CW.1/remediation",
+ *       "SeverityRating": "MEDIUM",
+ *       "StandardsControlArn": "arn:aws:securityhub:us-west-1:123456789012:control/pci-dss/v/3.2.1/PCI.CW.1",
+ *       "Title": "A log metric filter and alarm should exist for usage of the \"root\" user"
+ *     }
+ *   ],
+ *   "NextToken": "U2FsdGVkX1+eNkPoZHVl11ip5HUYQPWSWZGmftcmJiHL8JoKEsCDuaKayiPDyLK+LiTkShveoOdvfxXCkOBaGhohIXhsIedN+LSjQV/l7kfCfJcq4PziNC1N9xe9aq2pjlLVZnznTfSImrodT5bRNHe4fELCQq/z+5ka+5Lzmc11axcwTd5lKgQyQqmUVoeriHZhyIiBgWKf7oNYdBVG8OEortVWvSkoUTt+B2ThcnC7l43kI0UNxlkZ6sc64AsW"
+ * }
+ * *\/
+ * // example id: to-get-a-list-of-controls-for-a-security-standard-1676308027759
+ * ```
+ *
  */
 export declare class DescribeStandardsControlsCommand extends $Command<DescribeStandardsControlsCommandInput, DescribeStandardsControlsCommandOutput, SecurityHubClientResolvedConfig> {
     readonly input: DescribeStandardsControlsCommandInput;

package/dist-types/commands/DisableImportFindingsForProductCommand.d.ts CHANGED Viewed

@@ -58,6 +58,17 @@ export interface DisableImportFindingsForProductCommandOutput extends DisableImp
  *  <p>The request was rejected because we can't find the specified resource.</p>
  *
  *
+ * @example To end a Security Hub integration
+ * ```javascript
+ * // The following example ends an integration between Security Hub and the specified product that sends findings to Security Hub. After the integration ends, the product no longer sends findings to Security  Hub.
+ * const input = {
+ *   "ProductSubscriptionArn": "arn:aws:securityhub:us-east-1:517716713836:product/crowdstrike/crowdstrike-falcon"
+ * };
+ * const command = new DisableImportFindingsForProductCommand(input);
+ * await client.send(command);
+ * // example id: to-end-a-security-hub-integration-1676480035650
+ * ```
+ *
  */
 export declare class DisableImportFindingsForProductCommand extends $Command<DisableImportFindingsForProductCommandInput, DisableImportFindingsForProductCommandOutput, SecurityHubClientResolvedConfig> {
     readonly input: DisableImportFindingsForProductCommandInput;

package/dist-types/commands/DisableOrganizationAdminAccountCommand.d.ts CHANGED Viewed

@@ -55,6 +55,17 @@ export interface DisableOrganizationAdminAccountCommandOutput extends DisableOrg
  *          account or throttling limits. The error code describes the limit exceeded.</p>
  *
  *
+ * @example To remove a Security Hub administrator account
+ * ```javascript
+ * // The following example removes the Security Hub administrator account in the Region from which the operation was executed. This operation doesn't remove the delegated administrator account in AWS Organizations.
+ * const input = {
+ *   "AdminAccountId": "123456789012"
+ * };
+ * const command = new DisableOrganizationAdminAccountCommand(input);
+ * await client.send(command);
+ * // example id: to-remove-a-security-hub-administrator-account-1676480521876
+ * ```
+ *
  */
 export declare class DisableOrganizationAdminAccountCommand extends $Command<DisableOrganizationAdminAccountCommandInput, DisableOrganizationAdminAccountCommandOutput, SecurityHubClientResolvedConfig> {
     readonly input: DisableOrganizationAdminAccountCommandInput;

package/dist-types/commands/DisableSecurityHubCommand.d.ts CHANGED Viewed

@@ -59,6 +59,15 @@ export interface DisableSecurityHubCommandOutput extends DisableSecurityHubRespo
  *  <p>The request was rejected because we can't find the specified resource.</p>
  *
  *
+ * @example To deactivate Security Hub
+ * ```javascript
+ * // The following example deactivates Security Hub for the current account and Region.
+ * const input = undefined;
+ * const command = new DisableSecurityHubCommand(input);
+ * await client.send(command);
+ * // example id: to-deactivate-security-hub-1676583894245
+ * ```
+ *
  */
 export declare class DisableSecurityHubCommand extends $Command<DisableSecurityHubCommandInput, DisableSecurityHubCommandOutput, SecurityHubClientResolvedConfig> {
     readonly input: DisableSecurityHubCommandInput;

package/dist-types/commands/DisassociateFromAdministratorAccountCommand.d.ts CHANGED Viewed

@@ -59,6 +59,15 @@ export interface DisassociateFromAdministratorAccountCommandOutput extends Disas
  *  <p>The request was rejected because we can't find the specified resource.</p>
  *
  *
+ * @example To disassociate requesting account from administrator account
+ * ```javascript
+ * // The following example dissociates the requesting account from its associated administrator account.
+ * const input = undefined;
+ * const command = new DisassociateFromAdministratorAccountCommand(input);
+ * await client.send(command);
+ * // example id: to-disassociate-requesting-account-from-administrator-account-1676584168509
+ * ```
+ *
  */
 export declare class DisassociateFromAdministratorAccountCommand extends $Command<DisassociateFromAdministratorAccountCommandInput, DisassociateFromAdministratorAccountCommandOutput, SecurityHubClientResolvedConfig> {
     readonly input: DisassociateFromAdministratorAccountCommandInput;

package/dist-types/commands/DisassociateMembersCommand.d.ts CHANGED Viewed

@@ -61,6 +61,20 @@ export interface DisassociateMembersCommandOutput extends DisassociateMembersRes
  *  <p>The request was rejected because we can't find the specified resource.</p>
  *
  *
+ * @example To disassociate member accounts from administrator account
+ * ```javascript
+ * // The following example dissociates the specified member accounts from the associated administrator account.
+ * const input = {
+ *   "AccountIds": [
+ *     "123456789012",
+ *     "111122223333"
+ *   ]
+ * };
+ * const command = new DisassociateMembersCommand(input);
+ * await client.send(command);
+ * // example id: to-disassociate-member-accounts-from-administrator-account-1676918349164
+ * ```
+ *
  */
 export declare class DisassociateMembersCommand extends $Command<DisassociateMembersCommandInput, DisassociateMembersCommandOutput, SecurityHubClientResolvedConfig> {
     readonly input: DisassociateMembersCommandInput;

package/dist-types/commands/EnableImportFindingsForProductCommand.d.ts CHANGED Viewed

@@ -60,6 +60,22 @@ export interface EnableImportFindingsForProductCommandOutput extends EnableImpor
  *  <p>The resource specified in the request conflicts with an existing resource.</p>
  *
  *
+ * @example To activate an integration
+ * ```javascript
+ * // The following example activates an integration between Security Hub and a third party partner product that sends findings to Security Hub.
+ * const input = {
+ *   "ProductArn": "arn:aws:securityhub:us-east-1:517716713836:product/crowdstrike/crowdstrike-falcon"
+ * };
+ * const command = new EnableImportFindingsForProductCommand(input);
+ * const response = await client.send(command);
+ * /* response ==
+ * {
+ *   "ProductSubscriptionArn": "arn:aws:securityhub:us-east-1:517716713836:product-subscription/crowdstrike/crowdstrike-falcon"
+ * }
+ * *\/
+ * // example id: to-activate-an-integration-1676918918114
+ * ```
+ *
  */
 export declare class EnableImportFindingsForProductCommand extends $Command<EnableImportFindingsForProductCommandInput, EnableImportFindingsForProductCommandOutput, SecurityHubClientResolvedConfig> {
     readonly input: EnableImportFindingsForProductCommandInput;

package/dist-types/commands/EnableOrganizationAdminAccountCommand.d.ts CHANGED Viewed

@@ -55,6 +55,17 @@ export interface EnableOrganizationAdminAccountCommandOutput extends EnableOrgan
  *          account or throttling limits. The error code describes the limit exceeded.</p>
  *
  *
+ * @example To designate a Security Hub administrator
+ * ```javascript
+ * // The following example designates the specified account as the Security Hub administrator account. The requesting account must be the organization management account.
+ * const input = {
+ *   "AdminAccountId": "123456789012"
+ * };
+ * const command = new EnableOrganizationAdminAccountCommand(input);
+ * await client.send(command);
+ * // example id: to-designate-a-security-hub-administrator-1676998319851
+ * ```
+ *
  */
 export declare class EnableOrganizationAdminAccountCommand extends $Command<EnableOrganizationAdminAccountCommandInput, EnableOrganizationAdminAccountCommandOutput, SecurityHubClientResolvedConfig> {
     readonly input: EnableOrganizationAdminAccountCommandInput;

package/dist-types/commands/EnableSecurityHubCommand.d.ts CHANGED Viewed

@@ -79,6 +79,20 @@ export interface EnableSecurityHubCommandOutput extends EnableSecurityHubRespons
  *  <p>The resource specified in the request conflicts with an existing resource.</p>
  *
  *
+ * @example To activate Security Hub
+ * ```javascript
+ * // The following example activates the Security Hub service in the requesting AWS account. The service is activated in the current AWS Region or the Region that you specify in the request. Some standards are automatically turned on in your account unless you opt out. To determine which standards are automatically turned on, see the Security Hub documentation.
+ * const input = {
+ *   "EnableDefaultStandards": true,
+ *   "Tags": {
+ *     "Department": "Security"
+ *   }
+ * };
+ * const command = new EnableSecurityHubCommand(input);
+ * await client.send(command);
+ * // example id: to-activate-security-hub-1676998538599
+ * ```
+ *
  */
 export declare class EnableSecurityHubCommand extends $Command<EnableSecurityHubCommandInput, EnableSecurityHubCommandOutput, SecurityHubClientResolvedConfig> {
     readonly input: EnableSecurityHubCommandInput;

package/dist-types/commands/GetAdministratorAccountCommand.d.ts CHANGED Viewed

@@ -57,6 +57,25 @@ export interface GetAdministratorAccountCommandOutput extends GetAdministratorAc
  *  <p>The request was rejected because we can't find the specified resource.</p>
  *
  *
+ * @example To get details about the Security Hub administrator account
+ * ```javascript
+ * // The following example provides details about the Security Hub administrator account for the requesting member account.
+ * const input = undefined;
+ * const command = new GetAdministratorAccountCommand(input);
+ * const response = await client.send(command);
+ * /* response ==
+ * {
+ *   "Administrator": {
+ *     "AccountId": "123456789012",
+ *     "InvitationId": "7ab938c5d52d7904ad09f9e7c20cc4eb",
+ *     "InvitedAt": "2020-06-01T20:21:18.042000+00:00",
+ *     "MemberStatus": "ASSOCIATED"
+ *   }
+ * }
+ * *\/
+ * // example id: to-get-details-about-the-security-hub-administrator-account-1676998997182
+ * ```
+ *
  */
 export declare class GetAdministratorAccountCommand extends $Command<GetAdministratorAccountCommandInput, GetAdministratorAccountCommandOutput, SecurityHubClientResolvedConfig> {
     readonly input: GetAdministratorAccountCommandInput;

package/dist-types/commands/GetEnabledStandardsCommand.d.ts CHANGED Viewed

@@ -58,6 +58,31 @@ export interface GetEnabledStandardsCommandOutput extends GetEnabledStandardsRes
  *          account or throttling limits. The error code describes the limit exceeded.</p>
  *
  *
+ * @example To return a list of enabled standards
+ * ```javascript
+ * // The following example returns a list of Security Hub standards that are currently enabled in your account.
+ * const input = {
+ *   "StandardsSubscriptionArns": [
+ *     "arn:aws:securityhub:us-west-1:123456789012:subscription/pci-dss/v/3.2.1"
+ *   ]
+ * };
+ * const command = new GetEnabledStandardsCommand(input);
+ * const response = await client.send(command);
+ * /* response ==
+ * {
+ *   "StandardsSubscriptions": [
+ *     {
+ *       "StandardsArn": "arn:aws:securityhub:us-west-1::standards/pci-dss/v/3.2.1",
+ *       "StandardsInput": {},
+ *       "StandardsStatus": "READY",
+ *       "StandardsSubscriptionArn": "arn:aws:securityhub:us-west-1:123456789012:subscription/pci-dss/v/3.2.1"
+ *     }
+ *   ]
+ * }
+ * *\/
+ * // example id: to-return-a-list-of-enabled-standards-1677090731129
+ * ```
+ *
  */
 export declare class GetEnabledStandardsCommand extends $Command<GetEnabledStandardsCommandInput, GetEnabledStandardsCommandOutput, SecurityHubClientResolvedConfig> {
     readonly input: GetEnabledStandardsCommandInput;

package/dist-types/commands/GetFindingAggregatorCommand.d.ts CHANGED Viewed

@@ -60,6 +60,28 @@ export interface GetFindingAggregatorCommandOutput extends GetFindingAggregatorR
  *  <p>The request was rejected because we can't find the specified resource.</p>
  *
  *
+ * @example To get cross-Region aggregation details
+ * ```javascript
+ * // The following example returns cross-Region aggregation details for the requesting account.
+ * const input = {
+ *   "FindingAggregatorArn": "arn:aws:securityhub:us-east-1:123456789012:finding-aggregator/a1b2c3d4-5678-90ab-cdef-EXAMPLE11111"
+ * };
+ * const command = new GetFindingAggregatorCommand(input);
+ * const response = await client.send(command);
+ * /* response ==
+ * {
+ *   "FindingAggregationRegion": "us-east-1",
+ *   "FindingAggregatorArn": "arn:aws:securityhub:us-east-1:123456789012:finding-aggregator/a1b2c3d4-5678-90ab-cdef-EXAMPLE11111",
+ *   "RegionLinkingMode": "SPECIFIED_REGIONS",
+ *   "Regions": [
+ *     "us-west-1",
+ *     "us-west-2"
+ *   ]
+ * }
+ * *\/
+ * // example id: to-get-cross-region-aggregation-details-1677091474868
+ * ```
+ *
  */
 export declare class GetFindingAggregatorCommand extends $Command<GetFindingAggregatorCommandInput, GetFindingAggregatorCommandOutput, SecurityHubClientResolvedConfig> {
     readonly input: GetFindingAggregatorCommandInput;

package/dist-types/commands/GetFindingsCommand.d.ts CHANGED Viewed

@@ -313,6 +313,117 @@ export interface GetFindingsCommandOutput extends GetFindingsResponse, __Metadat
  *          account or throttling limits. The error code describes the limit exceeded.</p>
  *
  *
+ * @example To get a list of findings
+ * ```javascript
+ * // The following example returns a filtered and sorted list of Security Hub findings.
+ * const input = {
+ *   "Filters": {
+ *     "AwsAccountId": [
+ *       {
+ *         "Comparison": "PREFIX",
+ *         "Value": "123456789012"
+ *       }
+ *     ]
+ *   },
+ *   "MaxResults": 1
+ * };
+ * const command = new GetFindingsCommand(input);
+ * const response = await client.send(command);
+ * /* response ==
+ * {
+ *   "Findings": [
+ *     {
+ *       "AwsAccountId": "123456789012",
+ *       "CompanyName": "AWS",
+ *       "Compliance": {
+ *         "AssociatedStandards": [
+ *           {
+ *             "StandardsId": "standards/aws-foundational-security-best-practices/v/1.0.0"
+ *           },
+ *           {
+ *             "StandardsId": "standards/pci-dss/v/3.2.1"
+ *           },
+ *           {
+ *             "StandardsId": "ruleset/cis-aws-foundations-benchmark/v/1.2.0"
+ *           },
+ *           {
+ *             "StandardsId": "standards/cis-aws-foundations-benchmark/v/1.4.0"
+ *           },
+ *           {
+ *             "StandardsId": "standards/service-managed-aws-control-tower/v/1.0.0"
+ *           }
+ *         ],
+ *         "RelatedRequirements": [
+ *           "PCI DSS v3.2.1/3.4",
+ *           "CIS AWS Foundations Benchmark v1.2.0/2.7",
+ *           "CIS AWS Foundations Benchmark v1.4.0/3.7"
+ *         ],
+ *         "SecurityControlId": "CloudTrail.2",
+ *         "Status": "FAILED"
+ *       },
+ *       "CreatedAt": "2022-10-06T02:18:23.076Z",
+ *       "Description": "This AWS control checks whether AWS CloudTrail is configured to use the server side encryption (SSE) AWS Key Management Service (AWS KMS) customer master key (CMK) encryption. The check will pass if the KmsKeyId is defined.",
+ *       "FindingProviderFields": {
+ *         "Severity": {
+ *           "Label": "MEDIUM",
+ *           "Original": "MEDIUM"
+ *         },
+ *         "Types": [
+ *           "Software and Configuration Checks/Industry and Regulatory Standards"
+ *         ]
+ *       },
+ *       "FirstObservedAt": "2022-10-06T02:18:23.076Z",
+ *       "GeneratorId": "security-control/CloudTrail.2",
+ *       "Id": "arn:aws:securityhub:us-east-2:123456789012:security-control/CloudTrail.2/finding/a1b2c3d4-5678-90ab-cdef-EXAMPLE11111",
+ *       "LastObservedAt": "2022-10-28T16:10:06.956Z",
+ *       "ProductArn": "arn:aws:securityhub:us-east-2::product/aws/securityhub",
+ *       "ProductFields": {
+ *         "RelatedAWSResources:0/name": "securityhub-cloud-trail-encryption-enabled-fe95bf3f",
+ *         "RelatedAWSResources:0/type": "AWS::Config::ConfigRule",
+ *         "Resources:0/Id": "arn:aws:cloudtrail:us-east-2:123456789012:trail/AWSMacieTrail-DO-NOT-EDIT",
+ *         "aws/securityhub/CompanyName": "AWS",
+ *         "aws/securityhub/FindingId": "arn:aws:securityhub:us-east-2::product/aws/securityhub/arn:aws:securityhub:us-east-2:123456789012:security-control/CloudTrail.2/finding/a1b2c3d4-5678-90ab-cdef-EXAMPLE11111",
+ *         "aws/securityhub/ProductName": "Security Hub"
+ *       },
+ *       "ProductName": "Security Hub",
+ *       "RecordState": "ACTIVE",
+ *       "Region": "us-east-2",
+ *       "Remediation": {
+ *         "Recommendation": {
+ *           "Text": "For directions on how to correct this issue, consult the AWS Security Hub controls documentation.",
+ *           "Url": "https://docs.aws.amazon.com/console/securityhub/CloudTrail.2/remediation"
+ *         }
+ *       },
+ *       "Resources": [
+ *         {
+ *           "Id": "arn:aws:cloudtrail:us-east-2:123456789012:trail/AWSMacieTrail-DO-NOT-EDIT",
+ *           "Partition": "aws",
+ *           "Region": "us-east-2",
+ *           "Type": "AwsCloudTrailTrail"
+ *         }
+ *       ],
+ *       "SchemaVersion": "2018-10-08",
+ *       "Severity": {
+ *         "Label": "MEDIUM",
+ *         "Normalized": 40,
+ *         "Original": "MEDIUM"
+ *       },
+ *       "Title": "CloudTrail should have encryption at-rest enabled",
+ *       "Types": [
+ *         "Software and Configuration Checks/Industry and Regulatory Standards"
+ *       ],
+ *       "UpdatedAt": "2022-10-28T16:10:00.093Z",
+ *       "Workflow": {
+ *         "Status": "NEW"
+ *       },
+ *       "WorkflowState": "NEW"
+ *     }
+ *   ]
+ * }
+ * *\/
+ * // example id: to-get-a-list-of-findings-1677181069931
+ * ```
+ *
  */
 export declare class GetFindingsCommand extends $Command<GetFindingsCommandInput, GetFindingsCommandOutput, SecurityHubClientResolvedConfig> {
     readonly input: GetFindingsCommandInput;

package/dist-types/commands/GetInsightResultsCommand.d.ts CHANGED Viewed

@@ -57,6 +57,35 @@ export interface GetInsightResultsCommandOutput extends GetInsightResultsRespons
  *  <p>The request was rejected because we can't find the specified resource.</p>
  *
  *
+ * @example To get the results of a Security Hub insight
+ * ```javascript
+ * // The following example returns the results of the Security Hub insight specified by the insight ARN.
+ * const input = {
+ *   "InsightArn": "arn:aws:securityhub:us-west-1:123456789012:insight/123456789012/custom/a1b2c3d4-5678-90ab-cdef-EXAMPLE11111"
+ * };
+ * const command = new GetInsightResultsCommand(input);
+ * const response = await client.send(command);
+ * /* response ==
+ * {
+ *   "InsightResults": {
+ *     "GroupByAttribute": "ResourceId",
+ *     "InsightArn": "arn:aws:securityhub:us-west-1:123456789012:insight/123456789012/custom/a1b2c3d4-5678-90ab-cdef-EXAMPLE11111",
+ *     "ResultValues": [
+ *       {
+ *         "Count": 10,
+ *         "GroupByAttributeValue": "AWS::::Account:111122223333"
+ *       },
+ *       {
+ *         "Count": 3,
+ *         "GroupByAttributeValue": "AWS::::Account:444455556666"
+ *       }
+ *     ]
+ *   }
+ * }
+ * *\/
+ * // example id: to-get-the-results-of-a-security-hub-insight-1677182822019
+ * ```
+ *
  */
 export declare class GetInsightResultsCommand extends $Command<GetInsightResultsCommandInput, GetInsightResultsCommandOutput, SecurityHubClientResolvedConfig> {
     readonly input: GetInsightResultsCommandInput;

package/dist-types/commands/GetInsightsCommand.d.ts CHANGED Viewed

@@ -61,6 +61,44 @@ export interface GetInsightsCommandOutput extends GetInsightsResponse, __Metadat
  *  <p>The request was rejected because we can't find the specified resource.</p>
  *
  *
+ * @example To get details of a Security Hub insight
+ * ```javascript
+ * // The following example returns details of the Security Hub insight with the specified ARN.
+ * const input = {
+ *   "InsightArns": [
+ *     "arn:aws:securityhub:us-west-1:123456789012:insight/123456789012/custom/a1b2c3d4-5678-90ab-cdef-EXAMPLE11111"
+ *   ]
+ * };
+ * const command = new GetInsightsCommand(input);
+ * const response = await client.send(command);
+ * /* response ==
+ * {
+ *   "Insights": [
+ *     {
+ *       "Filters": {
+ *         "ResourceType": [
+ *           {
+ *             "Comparison": "EQUALS",
+ *             "Value": "AwsIamRole"
+ *           }
+ *         ],
+ *         "SeverityLabel": [
+ *           {
+ *             "Comparison": "EQUALS",
+ *             "Value": "CRITICAL"
+ *           }
+ *         ]
+ *       },
+ *       "GroupByAttribute": "ResourceId",
+ *       "InsightArn": "arn:aws:securityhub:us-west-1:123456789012:insight/123456789012/custom/a1b2c3d4-5678-90ab-cdef-EXAMPLE11111",
+ *       "Name": "Critical role findings"
+ *     }
+ *   ]
+ * }
+ * *\/
+ * // example id: to-get-details-of-a-security-hub-insight-1677774127203
+ * ```
+ *
  */
 export declare class GetInsightsCommand extends $Command<GetInsightsCommandInput, GetInsightsCommandOutput, SecurityHubClientResolvedConfig> {
     readonly input: GetInsightsCommandInput;

package/dist-types/commands/GetInvitationsCountCommand.d.ts CHANGED Viewed

@@ -53,6 +53,22 @@ export interface GetInvitationsCountCommandOutput extends GetInvitationsCountRes
  *          account or throttling limits. The error code describes the limit exceeded.</p>
  *
  *
+ * @example To get a count of membership invitations
+ * ```javascript
+ * // The following example returns a count of invitations that the Security Hub administrator sent to the current member account, not including the currently accepted invitation.
+ * //
+ * //
+ * const input = undefined;
+ * const command = new GetInvitationsCountCommand(input);
+ * const response = await client.send(command);
+ * /* response ==
+ * {
+ *   "InvitationsCount": 3
+ * }
+ * *\/
+ * // example id: to-get-a-count-of-membership-invitations-1677774568793
+ * ```
+ *
  */
 export declare class GetInvitationsCountCommand extends $Command<GetInvitationsCountCommandInput, GetInvitationsCountCommandOutput, SecurityHubClientResolvedConfig> {
     readonly input: GetInvitationsCountCommandInput;

package/dist-types/commands/GetMembersCommand.d.ts CHANGED Viewed

@@ -63,6 +63,43 @@ export interface GetMembersCommandOutput extends GetMembersResponse, __MetadataB
  *  <p>The request was rejected because we can't find the specified resource.</p>
  *
  *
+ * @example To get member account details
+ * ```javascript
+ * // The following example returns details for the Security Hub member accounts with the specified AWS account IDs. An administrator account may be the delegated Security Hub administrator account for an organization or an administrator account that enabled Security Hub manually. The Security Hub administrator must call this operation.
+ * const input = {
+ *   "AccountIds": [
+ *     "444455556666",
+ *     "777788889999"
+ *   ]
+ * };
+ * const command = new GetMembersCommand(input);
+ * const response = await client.send(command);
+ * /* response ==
+ * {
+ *   "Members": [
+ *     {
+ *       "AccountId": "444455556666",
+ *       "AdministratorId": "123456789012",
+ *       "InvitedAt": "2020-06-01T20:15:15.289000+00:00",
+ *       "MasterId": "123456789012",
+ *       "MemberStatus": "ASSOCIATED",
+ *       "UpdatedAt": "2020-06-01T20:15:15.289000+00:00"
+ *     },
+ *     {
+ *       "AccountId": "777788889999",
+ *       "AdministratorId": "123456789012",
+ *       "InvitedAt": "2020-06-01T20:15:15.289000+00:00",
+ *       "MasterId": "123456789012",
+ *       "MemberStatus": "ASSOCIATED",
+ *       "UpdatedAt": "2020-06-01T20:15:15.289000+00:00"
+ *     }
+ *   ],
+ *   "UnprocessedAccounts": []
+ * }
+ * *\/
+ * // example id: to-get-member-account-details-1677774956489
+ * ```
+ *
  */
 export declare class GetMembersCommand extends $Command<GetMembersCommandInput, GetMembersCommandOutput, SecurityHubClientResolvedConfig> {
     readonly input: GetMembersCommandInput;

package/dist-types/commands/InviteMembersCommand.d.ts CHANGED Viewed

@@ -65,6 +65,25 @@ export interface InviteMembersCommandOutput extends InviteMembersResponse, __Met
  *  <p>The request was rejected because we can't find the specified resource.</p>
  *
  *
+ * @example To invite accounts to become members
+ * ```javascript
+ * // The following example invites the specified AWS accounts to become member accounts associated with the calling Security Hub administrator account. You only use this operation to invite accounts that don't belong to an AWS Organizations organization.
+ * const input = {
+ *   "AccountIds": [
+ *     "111122223333",
+ *     "444455556666"
+ *   ]
+ * };
+ * const command = new InviteMembersCommand(input);
+ * const response = await client.send(command);
+ * /* response ==
+ * {
+ *   "UnprocessedAccounts": []
+ * }
+ * *\/
+ * // example id: to-invite-accounts-to-become-members-1677775500860
+ * ```
+ *
  */
 export declare class InviteMembersCommand extends $Command<InviteMembersCommandInput, InviteMembersCommandOutput, SecurityHubClientResolvedConfig> {
     readonly input: InviteMembersCommandInput;

package/dist-types/commands/ListEnabledProductsForImportCommand.d.ts CHANGED Viewed

@@ -52,6 +52,23 @@ export interface ListEnabledProductsForImportCommandOutput extends ListEnabledPr
  *          account or throttling limits. The error code describes the limit exceeded.</p>
  *
  *
+ * @example To list ARNs for enabled integrations
+ * ```javascript
+ * // The following example returns a list of subscription Amazon Resource Names (ARNs) for the product integrations that you have currently enabled in Security Hub.
+ * const input = undefined;
+ * const command = new ListEnabledProductsForImportCommand(input);
+ * const response = await client.send(command);
+ * /* response ==
+ * {
+ *   "ProductSubscriptions": [
+ *     "arn:aws:securityhub:us-east-1:517716713836:product-subscription/crowdstrike/crowdstrike-falcon",
+ *     "arn:aws:securityhub:us-east-1::product/3coresec/3coresec"
+ *   ]
+ * }
+ * *\/
+ * // example id: to-list-arns-for-enabled-integrations-1678294870020
+ * ```
+ *
  */
 export declare class ListEnabledProductsForImportCommand extends $Command<ListEnabledProductsForImportCommandInput, ListEnabledProductsForImportCommandOutput, SecurityHubClientResolvedConfig> {
     readonly input: ListEnabledProductsForImportCommandInput;

package/dist-types/commands/ListFindingAggregatorsCommand.d.ts CHANGED Viewed

@@ -58,6 +58,24 @@ export interface ListFindingAggregatorsCommandOutput extends ListFindingAggregat
  *          account or throttling limits. The error code describes the limit exceeded.</p>
  *
  *
+ * @example To update the enablement status of a standard control
+ * ```javascript
+ * // The following example disables the specified control in the specified security standard.
+ * const input = {};
+ * const command = new ListFindingAggregatorsCommand(input);
+ * const response = await client.send(command);
+ * /* response ==
+ * {
+ *   "FindingAggregators": [
+ *     {
+ *       "FindingAggregatorArn": "arn:aws:securityhub:us-east-1:222222222222:finding-aggregator/a1b2c3d4-5678-90ab-cdef-EXAMPLE11111"
+ *     }
+ *   ]
+ * }
+ * *\/
+ * // example id: to-update-the-enablement-status-of-a-standard-control-1678912506444
+ * ```
+ *
  */
 export declare class ListFindingAggregatorsCommand extends $Command<ListFindingAggregatorsCommandInput, ListFindingAggregatorsCommandOutput, SecurityHubClientResolvedConfig> {
     readonly input: ListFindingAggregatorsCommandInput;