@aws-sdk/client-securityhub 3.454.0 → 3.459.0

package/dist-es/protocols/Aws_restJson1.js

@@ -1,7 +1,8 @@
+import { awsExpectUnion as __expectUnion } from "@aws-sdk/core";
 import { HttpRequest as __HttpRequest } from "@smithy/protocol-http";
 import { _json, collectBody, decorateServiceException as __decorateServiceException, expectBoolean as __expectBoolean, expectInt32 as __expectInt32, expectLong as __expectLong, expectNonNull as __expectNonNull, expectObject as __expectObject, expectString as __expectString, limitedParseDouble as __limitedParseDouble, map, parseRfc3339DateTimeWithOffset as __parseRfc3339DateTimeWithOffset, resolvedPath as __resolvedPath, serializeFloat as __serializeFloat, take, withBaseException, } from "@smithy/smithy-client";
 import { AccessDeniedException, InternalException, InvalidAccessException, InvalidInputException, LimitExceededException, ResourceNotFoundException, } from "../models/models_0";
-import { ResourceConflictException, } from "../models/models_2";
+import { ParameterValue, Policy, ResourceConflictException, ResourceInUseException, } from "../models/models_2";
 import { SecurityHubServiceException as __BaseException } from "../models/SecurityHubServiceException";
 export const se_AcceptAdministratorInvitationCommand = async (input, context) => {
     const { hostname, protocol = "https", port, path: basePath } = await context.endpoint();
@@ -125,6 +126,26 @@ export const se_BatchGetAutomationRulesCommand = async (input, context) => {
         body,
     });
 };
+export const se_BatchGetConfigurationPolicyAssociationsCommand = async (input, context) => {
+    const { hostname, protocol = "https", port, path: basePath } = await context.endpoint();
+    const headers = {
+        "content-type": "application/json",
+    };
+    const resolvedPath = `${basePath?.endsWith("/") ? basePath.slice(0, -1) : basePath || ""}` + "/configurationPolicyAssociation/batchget";
+    let body;
+    body = JSON.stringify(take(input, {
+        ConfigurationPolicyAssociationIdentifiers: (_) => _json(_),
+    }));
+    return new __HttpRequest({
+        protocol,
+        hostname,
+        port,
+        method: "POST",
+        headers,
+        path: resolvedPath,
+        body,
+    });
+};
 export const se_BatchGetSecurityControlsCommand = async (input, context) => {
     const { hostname, protocol = "https", port, path: basePath } = await context.endpoint();
     const headers = {
@@ -303,6 +324,29 @@ export const se_CreateAutomationRuleCommand = async (input, context) => {
         body,
     });
 };
+export const se_CreateConfigurationPolicyCommand = async (input, context) => {
+    const { hostname, protocol = "https", port, path: basePath } = await context.endpoint();
+    const headers = {
+        "content-type": "application/json",
+    };
+    const resolvedPath = `${basePath?.endsWith("/") ? basePath.slice(0, -1) : basePath || ""}` + "/configurationPolicy/create";
+    let body;
+    body = JSON.stringify(take(input, {
+        ConfigurationPolicy: (_) => se_Policy(_, context),
+        Description: [],
+        Name: [],
+        Tags: (_) => _json(_),
+    }));
+    return new __HttpRequest({
+        protocol,
+        hostname,
+        port,
+        method: "POST",
+        headers,
+        path: resolvedPath,
+        body,
+    });
+};
 export const se_CreateFindingAggregatorCommand = async (input, context) => {
     const { hostname, protocol = "https", port, path: basePath } = await context.endpoint();
     const headers = {
@@ -402,6 +446,22 @@ export const se_DeleteActionTargetCommand = async (input, context) => {
         body,
     });
 };
+export const se_DeleteConfigurationPolicyCommand = async (input, context) => {
+    const { hostname, protocol = "https", port, path: basePath } = await context.endpoint();
+    const headers = {};
+    let resolvedPath = `${basePath?.endsWith("/") ? basePath.slice(0, -1) : basePath || ""}` + "/configurationPolicy/{Identifier}";
+    resolvedPath = __resolvedPath(resolvedPath, input, "Identifier", () => input.Identifier, "{Identifier}", false);
+    let body;
+    return new __HttpRequest({
+        protocol,
+        hostname,
+        port,
+        method: "DELETE",
+        headers,
+        path: resolvedPath,
+        body,
+    });
+};
 export const se_DeleteFindingAggregatorCommand = async (input, context) => {
     const { hostname, protocol = "https", port, path: basePath } = await context.endpoint();
     const headers = {};
@@ -788,6 +848,42 @@ export const se_GetAdministratorAccountCommand = async (input, context) => {
         body,
     });
 };
+export const se_GetConfigurationPolicyCommand = async (input, context) => {
+    const { hostname, protocol = "https", port, path: basePath } = await context.endpoint();
+    const headers = {};
+    let resolvedPath = `${basePath?.endsWith("/") ? basePath.slice(0, -1) : basePath || ""}` + "/configurationPolicy/get/{Identifier}";
+    resolvedPath = __resolvedPath(resolvedPath, input, "Identifier", () => input.Identifier, "{Identifier}", false);
+    let body;
+    return new __HttpRequest({
+        protocol,
+        hostname,
+        port,
+        method: "GET",
+        headers,
+        path: resolvedPath,
+        body,
+    });
+};
+export const se_GetConfigurationPolicyAssociationCommand = async (input, context) => {
+    const { hostname, protocol = "https", port, path: basePath } = await context.endpoint();
+    const headers = {
+        "content-type": "application/json",
+    };
+    const resolvedPath = `${basePath?.endsWith("/") ? basePath.slice(0, -1) : basePath || ""}` + "/configurationPolicyAssociation/get";
+    let body;
+    body = JSON.stringify(take(input, {
+        Target: (_) => _json(_),
+    }));
+    return new __HttpRequest({
+        protocol,
+        hostname,
+        port,
+        method: "POST",
+        headers,
+        path: resolvedPath,
+        body,
+    });
+};
 export const se_GetEnabledStandardsCommand = async (input, context) => {
     const { hostname, protocol = "https", port, path: basePath } = await context.endpoint();
     const headers = {
@@ -968,6 +1064,25 @@ export const se_GetMembersCommand = async (input, context) => {
         body,
     });
 };
+export const se_GetSecurityControlDefinitionCommand = async (input, context) => {
+    const { hostname, protocol = "https", port, path: basePath } = await context.endpoint();
+    const headers = {};
+    const resolvedPath = `${basePath?.endsWith("/") ? basePath.slice(0, -1) : basePath || ""}` + "/securityControl/definition";
+    const query = map({
+        SecurityControlId: [, __expectNonNull(input.SecurityControlId, `SecurityControlId`)],
+    });
+    let body;
+    return new __HttpRequest({
+        protocol,
+        hostname,
+        port,
+        method: "GET",
+        headers,
+        path: resolvedPath,
+        query,
+        body,
+    });
+};
 export const se_InviteMembersCommand = async (input, context) => {
     const { hostname, protocol = "https", port, path: basePath } = await context.endpoint();
     const headers = {
@@ -1008,6 +1123,48 @@ export const se_ListAutomationRulesCommand = async (input, context) => {
         body,
     });
 };
+export const se_ListConfigurationPoliciesCommand = async (input, context) => {
+    const { hostname, protocol = "https", port, path: basePath } = await context.endpoint();
+    const headers = {};
+    const resolvedPath = `${basePath?.endsWith("/") ? basePath.slice(0, -1) : basePath || ""}` + "/configurationPolicy/list";
+    const query = map({
+        NextToken: [, input.NextToken],
+        MaxResults: [() => input.MaxResults !== void 0, () => input.MaxResults.toString()],
+    });
+    let body;
+    return new __HttpRequest({
+        protocol,
+        hostname,
+        port,
+        method: "GET",
+        headers,
+        path: resolvedPath,
+        query,
+        body,
+    });
+};
+export const se_ListConfigurationPolicyAssociationsCommand = async (input, context) => {
+    const { hostname, protocol = "https", port, path: basePath } = await context.endpoint();
+    const headers = {
+        "content-type": "application/json",
+    };
+    const resolvedPath = `${basePath?.endsWith("/") ? basePath.slice(0, -1) : basePath || ""}` + "/configurationPolicyAssociation/list";
+    let body;
+    body = JSON.stringify(take(input, {
+        Filters: (_) => _json(_),
+        MaxResults: [],
+        NextToken: [],
+    }));
+    return new __HttpRequest({
+        protocol,
+        hostname,
+        port,
+        method: "POST",
+        headers,
+        path: resolvedPath,
+        body,
+    });
+};
 export const se_ListEnabledProductsForImportCommand = async (input, context) => {
     const { hostname, protocol = "https", port, path: basePath } = await context.endpoint();
     const headers = {};
@@ -1167,6 +1324,49 @@ export const se_ListTagsForResourceCommand = async (input, context) => {
         body,
     });
 };
+export const se_StartConfigurationPolicyAssociationCommand = async (input, context) => {
+    const { hostname, protocol = "https", port, path: basePath } = await context.endpoint();
+    const headers = {
+        "content-type": "application/json",
+    };
+    const resolvedPath = `${basePath?.endsWith("/") ? basePath.slice(0, -1) : basePath || ""}` + "/configurationPolicyAssociation/associate";
+    let body;
+    body = JSON.stringify(take(input, {
+        ConfigurationPolicyIdentifier: [],
+        Target: (_) => _json(_),
+    }));
+    return new __HttpRequest({
+        protocol,
+        hostname,
+        port,
+        method: "POST",
+        headers,
+        path: resolvedPath,
+        body,
+    });
+};
+export const se_StartConfigurationPolicyDisassociationCommand = async (input, context) => {
+    const { hostname, protocol = "https", port, path: basePath } = await context.endpoint();
+    const headers = {
+        "content-type": "application/json",
+    };
+    const resolvedPath = `${basePath?.endsWith("/") ? basePath.slice(0, -1) : basePath || ""}` +
+        "/configurationPolicyAssociation/disassociate";
+    let body;
+    body = JSON.stringify(take(input, {
+        ConfigurationPolicyIdentifier: [],
+        Target: (_) => _json(_),
+    }));
+    return new __HttpRequest({
+        protocol,
+        hostname,
+        port,
+        method: "POST",
+        headers,
+        path: resolvedPath,
+        body,
+    });
+};
 export const se_TagResourceCommand = async (input, context) => {
     const { hostname, protocol = "https", port, path: basePath } = await context.endpoint();
     const headers = {
@@ -1233,6 +1433,30 @@ export const se_UpdateActionTargetCommand = async (input, context) => {
         body,
     });
 };
+export const se_UpdateConfigurationPolicyCommand = async (input, context) => {
+    const { hostname, protocol = "https", port, path: basePath } = await context.endpoint();
+    const headers = {
+        "content-type": "application/json",
+    };
+    let resolvedPath = `${basePath?.endsWith("/") ? basePath.slice(0, -1) : basePath || ""}` + "/configurationPolicy/{Identifier}";
+    resolvedPath = __resolvedPath(resolvedPath, input, "Identifier", () => input.Identifier, "{Identifier}", false);
+    let body;
+    body = JSON.stringify(take(input, {
+        ConfigurationPolicy: (_) => se_Policy(_, context),
+        Description: [],
+        Name: [],
+        UpdatedReason: [],
+    }));
+    return new __HttpRequest({
+        protocol,
+        hostname,
+        port,
+        method: "PATCH",
+        headers,
+        path: resolvedPath,
+        body,
+    });
+};
 export const se_UpdateFindingAggregatorCommand = async (input, context) => {
     const { hostname, protocol = "https", port, path: basePath } = await context.endpoint();
     const headers = {
@@ -1310,6 +1534,7 @@ export const se_UpdateOrganizationConfigurationCommand = async (input, context)
     body = JSON.stringify(take(input, {
         AutoEnable: [],
         AutoEnableStandards: [],
+        OrganizationConfiguration: (_) => _json(_),
     }));
     return new __HttpRequest({
         protocol,
@@ -1321,6 +1546,28 @@ export const se_UpdateOrganizationConfigurationCommand = async (input, context)
         body,
     });
 };
+export const se_UpdateSecurityControlCommand = async (input, context) => {
+    const { hostname, protocol = "https", port, path: basePath } = await context.endpoint();
+    const headers = {
+        "content-type": "application/json",
+    };
+    const resolvedPath = `${basePath?.endsWith("/") ? basePath.slice(0, -1) : basePath || ""}` + "/securityControl/update";
+    let body;
+    body = JSON.stringify(take(input, {
+        LastUpdateReason: [],
+        Parameters: (_) => se_Parameters(_, context),
+        SecurityControlId: [],
+    }));
+    return new __HttpRequest({
+        protocol,
+        hostname,
+        port,
+        method: "PATCH",
+        headers,
+        path: resolvedPath,
+        body,
+    });
+};
 export const se_UpdateSecurityHubConfigurationCommand = async (input, context) => {
     const { hostname, protocol = "https", port, path: basePath } = await context.endpoint();
     const headers = {
@@ -1513,6 +1760,9 @@ const de_BatchDisableStandardsCommandError = async (output, context) => {
     };
     const errorCode = loadRestJsonErrorCode(output, parsedOutput.body);
     switch (errorCode) {
+        case "AccessDeniedException":
+        case "com.amazonaws.securityhub#AccessDeniedException":
+            throw await de_AccessDeniedExceptionRes(parsedOutput, context);
         case "InternalException":
         case "com.amazonaws.securityhub#InternalException":
             throw await de_InternalExceptionRes(parsedOutput, context);
@@ -1555,6 +1805,9 @@ const de_BatchEnableStandardsCommandError = async (output, context) => {
     };
     const errorCode = loadRestJsonErrorCode(output, parsedOutput.body);
     switch (errorCode) {
+        case "AccessDeniedException":
+        case "com.amazonaws.securityhub#AccessDeniedException":
+            throw await de_AccessDeniedExceptionRes(parsedOutput, context);
         case "InternalException":
         case "com.amazonaws.securityhub#InternalException":
             throw await de_InternalExceptionRes(parsedOutput, context);
@@ -1625,6 +1878,55 @@ const de_BatchGetAutomationRulesCommandError = async (output, context) => {
             });
     }
 };
+export const de_BatchGetConfigurationPolicyAssociationsCommand = async (output, context) => {
+    if (output.statusCode !== 200 && output.statusCode >= 300) {
+        return de_BatchGetConfigurationPolicyAssociationsCommandError(output, context);
+    }
+    const contents = map({
+        $metadata: deserializeMetadata(output),
+    });
+    const data = __expectNonNull(__expectObject(await parseBody(output.body, context)), "body");
+    const doc = take(data, {
+        ConfigurationPolicyAssociations: (_) => de_ConfigurationPolicyAssociationList(_, context),
+        UnprocessedConfigurationPolicyAssociations: _json,
+    });
+    Object.assign(contents, doc);
+    return contents;
+};
+const de_BatchGetConfigurationPolicyAssociationsCommandError = async (output, context) => {
+    const parsedOutput = {
+        ...output,
+        body: await parseErrorBody(output.body, context),
+    };
+    const errorCode = loadRestJsonErrorCode(output, parsedOutput.body);
+    switch (errorCode) {
+        case "AccessDeniedException":
+        case "com.amazonaws.securityhub#AccessDeniedException":
+            throw await de_AccessDeniedExceptionRes(parsedOutput, context);
+        case "InternalException":
+        case "com.amazonaws.securityhub#InternalException":
+            throw await de_InternalExceptionRes(parsedOutput, context);
+        case "InvalidAccessException":
+        case "com.amazonaws.securityhub#InvalidAccessException":
+            throw await de_InvalidAccessExceptionRes(parsedOutput, context);
+        case "InvalidInputException":
+        case "com.amazonaws.securityhub#InvalidInputException":
+            throw await de_InvalidInputExceptionRes(parsedOutput, context);
+        case "LimitExceededException":
+        case "com.amazonaws.securityhub#LimitExceededException":
+            throw await de_LimitExceededExceptionRes(parsedOutput, context);
+        case "ResourceNotFoundException":
+        case "com.amazonaws.securityhub#ResourceNotFoundException":
+            throw await de_ResourceNotFoundExceptionRes(parsedOutput, context);
+        default:
+            const parsedBody = parsedOutput.body;
+            return throwDefaultError({
+                output,
+                parsedBody,
+                errorCode,
+            });
+    }
+};
 export const de_BatchGetSecurityControlsCommand = async (output, context) => {
     if (output.statusCode !== 200 && output.statusCode >= 300) {
         return de_BatchGetSecurityControlsCommandError(output, context);
@@ -1634,7 +1936,7 @@ export const de_BatchGetSecurityControlsCommand = async (output, context) => {
     });
     const data = __expectNonNull(__expectObject(await parseBody(output.body, context)), "body");
     const doc = take(data, {
-        SecurityControls: _json,
+        SecurityControls: (_) => de_SecurityControls(_, context),
         UnprocessedIds: _json,
     });
     Object.assign(contents, doc);
@@ -1865,8 +2167,11 @@ const de_BatchUpdateStandardsControlAssociationsCommandError = async (output, co
     };
     const errorCode = loadRestJsonErrorCode(output, parsedOutput.body);
     switch (errorCode) {
-        case "InternalException":
-        case "com.amazonaws.securityhub#InternalException":
+        case "AccessDeniedException":
+        case "com.amazonaws.securityhub#AccessDeniedException":
+            throw await de_AccessDeniedExceptionRes(parsedOutput, context);
+        case "InternalException":
+        case "com.amazonaws.securityhub#InternalException":
             throw await de_InternalExceptionRes(parsedOutput, context);
         case "InvalidAccessException":
         case "com.amazonaws.securityhub#InvalidAccessException":
@@ -1976,6 +2281,60 @@ const de_CreateAutomationRuleCommandError = async (output, context) => {
             });
     }
 };
+export const de_CreateConfigurationPolicyCommand = async (output, context) => {
+    if (output.statusCode !== 200 && output.statusCode >= 300) {
+        return de_CreateConfigurationPolicyCommandError(output, context);
+    }
+    const contents = map({
+        $metadata: deserializeMetadata(output),
+    });
+    const data = __expectNonNull(__expectObject(await parseBody(output.body, context)), "body");
+    const doc = take(data, {
+        Arn: __expectString,
+        ConfigurationPolicy: (_) => de_Policy(__expectUnion(_), context),
+        CreatedAt: (_) => __expectNonNull(__parseRfc3339DateTimeWithOffset(_)),
+        Description: __expectString,
+        Id: __expectString,
+        Name: __expectString,
+        UpdatedAt: (_) => __expectNonNull(__parseRfc3339DateTimeWithOffset(_)),
+    });
+    Object.assign(contents, doc);
+    return contents;
+};
+const de_CreateConfigurationPolicyCommandError = async (output, context) => {
+    const parsedOutput = {
+        ...output,
+        body: await parseErrorBody(output.body, context),
+    };
+    const errorCode = loadRestJsonErrorCode(output, parsedOutput.body);
+    switch (errorCode) {
+        case "AccessDeniedException":
+        case "com.amazonaws.securityhub#AccessDeniedException":
+            throw await de_AccessDeniedExceptionRes(parsedOutput, context);
+        case "InternalException":
+        case "com.amazonaws.securityhub#InternalException":
+            throw await de_InternalExceptionRes(parsedOutput, context);
+        case "InvalidAccessException":
+        case "com.amazonaws.securityhub#InvalidAccessException":
+            throw await de_InvalidAccessExceptionRes(parsedOutput, context);
+        case "InvalidInputException":
+        case "com.amazonaws.securityhub#InvalidInputException":
+            throw await de_InvalidInputExceptionRes(parsedOutput, context);
+        case "LimitExceededException":
+        case "com.amazonaws.securityhub#LimitExceededException":
+            throw await de_LimitExceededExceptionRes(parsedOutput, context);
+        case "ResourceConflictException":
+        case "com.amazonaws.securityhub#ResourceConflictException":
+            throw await de_ResourceConflictExceptionRes(parsedOutput, context);
+        default:
+            const parsedBody = parsedOutput.body;
+            return throwDefaultError({
+                output,
+                parsedBody,
+                errorCode,
+            });
+    }
+};
 export const de_CreateFindingAggregatorCommand = async (output, context) => {
     if (output.statusCode !== 200 && output.statusCode >= 300) {
         return de_CreateFindingAggregatorCommandError(output, context);
@@ -2090,6 +2449,9 @@ const de_CreateMembersCommandError = async (output, context) => {
     };
     const errorCode = loadRestJsonErrorCode(output, parsedOutput.body);
     switch (errorCode) {
+        case "AccessDeniedException":
+        case "com.amazonaws.securityhub#AccessDeniedException":
+            throw await de_AccessDeniedExceptionRes(parsedOutput, context);
         case "InternalException":
         case "com.amazonaws.securityhub#InternalException":
             throw await de_InternalExceptionRes(parsedOutput, context);
@@ -2198,6 +2560,53 @@ const de_DeleteActionTargetCommandError = async (output, context) => {
             });
     }
 };
+export const de_DeleteConfigurationPolicyCommand = async (output, context) => {
+    if (output.statusCode !== 200 && output.statusCode >= 300) {
+        return de_DeleteConfigurationPolicyCommandError(output, context);
+    }
+    const contents = map({
+        $metadata: deserializeMetadata(output),
+    });
+    await collectBody(output.body, context);
+    return contents;
+};
+const de_DeleteConfigurationPolicyCommandError = async (output, context) => {
+    const parsedOutput = {
+        ...output,
+        body: await parseErrorBody(output.body, context),
+    };
+    const errorCode = loadRestJsonErrorCode(output, parsedOutput.body);
+    switch (errorCode) {
+        case "AccessDeniedException":
+        case "com.amazonaws.securityhub#AccessDeniedException":
+            throw await de_AccessDeniedExceptionRes(parsedOutput, context);
+        case "InternalException":
+        case "com.amazonaws.securityhub#InternalException":
+            throw await de_InternalExceptionRes(parsedOutput, context);
+        case "InvalidAccessException":
+        case "com.amazonaws.securityhub#InvalidAccessException":
+            throw await de_InvalidAccessExceptionRes(parsedOutput, context);
+        case "InvalidInputException":
+        case "com.amazonaws.securityhub#InvalidInputException":
+            throw await de_InvalidInputExceptionRes(parsedOutput, context);
+        case "LimitExceededException":
+        case "com.amazonaws.securityhub#LimitExceededException":
+            throw await de_LimitExceededExceptionRes(parsedOutput, context);
+        case "ResourceConflictException":
+        case "com.amazonaws.securityhub#ResourceConflictException":
+            throw await de_ResourceConflictExceptionRes(parsedOutput, context);
+        case "ResourceNotFoundException":
+        case "com.amazonaws.securityhub#ResourceNotFoundException":
+            throw await de_ResourceNotFoundExceptionRes(parsedOutput, context);
+        default:
+            const parsedBody = parsedOutput.body;
+            return throwDefaultError({
+                output,
+                parsedBody,
+                errorCode,
+            });
+    }
+};
 export const de_DeleteFindingAggregatorCommand = async (output, context) => {
     if (output.statusCode !== 200 && output.statusCode >= 300) {
         return de_DeleteFindingAggregatorCommandError(output, context);
@@ -2480,6 +2889,7 @@ export const de_DescribeOrganizationConfigurationCommand = async (output, contex
         AutoEnable: __expectBoolean,
         AutoEnableStandards: __expectString,
         MemberAccountLimitReached: __expectBoolean,
+        OrganizationConfiguration: _json,
     });
     Object.assign(contents, doc);
     return contents;
@@ -2696,6 +3106,9 @@ const de_DisableOrganizationAdminAccountCommandError = async (output, context) =
     };
     const errorCode = loadRestJsonErrorCode(output, parsedOutput.body);
     switch (errorCode) {
+        case "AccessDeniedException":
+        case "com.amazonaws.securityhub#AccessDeniedException":
+            throw await de_AccessDeniedExceptionRes(parsedOutput, context);
         case "InternalException":
         case "com.amazonaws.securityhub#InternalException":
             throw await de_InternalExceptionRes(parsedOutput, context);
@@ -2734,6 +3147,9 @@ const de_DisableSecurityHubCommandError = async (output, context) => {
     };
     const errorCode = loadRestJsonErrorCode(output, parsedOutput.body);
     switch (errorCode) {
+        case "AccessDeniedException":
+        case "com.amazonaws.securityhub#AccessDeniedException":
+            throw await de_AccessDeniedExceptionRes(parsedOutput, context);
         case "InternalException":
         case "com.amazonaws.securityhub#InternalException":
             throw await de_InternalExceptionRes(parsedOutput, context);
@@ -2854,6 +3270,9 @@ const de_DisassociateMembersCommandError = async (output, context) => {
     };
     const errorCode = loadRestJsonErrorCode(output, parsedOutput.body);
     switch (errorCode) {
+        case "AccessDeniedException":
+        case "com.amazonaws.securityhub#AccessDeniedException":
+            throw await de_AccessDeniedExceptionRes(parsedOutput, context);
         case "InternalException":
         case "com.amazonaws.securityhub#InternalException":
             throw await de_InternalExceptionRes(parsedOutput, context);
@@ -2940,6 +3359,9 @@ const de_EnableOrganizationAdminAccountCommandError = async (output, context) =>
     };
     const errorCode = loadRestJsonErrorCode(output, parsedOutput.body);
     switch (errorCode) {
+        case "AccessDeniedException":
+        case "com.amazonaws.securityhub#AccessDeniedException":
+            throw await de_AccessDeniedExceptionRes(parsedOutput, context);
         case "InternalException":
         case "com.amazonaws.securityhub#InternalException":
             throw await de_InternalExceptionRes(parsedOutput, context);
@@ -3047,6 +3469,114 @@ const de_GetAdministratorAccountCommandError = async (output, context) => {
             });
     }
 };
+export const de_GetConfigurationPolicyCommand = async (output, context) => {
+    if (output.statusCode !== 200 && output.statusCode >= 300) {
+        return de_GetConfigurationPolicyCommandError(output, context);
+    }
+    const contents = map({
+        $metadata: deserializeMetadata(output),
+    });
+    const data = __expectNonNull(__expectObject(await parseBody(output.body, context)), "body");
+    const doc = take(data, {
+        Arn: __expectString,
+        ConfigurationPolicy: (_) => de_Policy(__expectUnion(_), context),
+        CreatedAt: (_) => __expectNonNull(__parseRfc3339DateTimeWithOffset(_)),
+        Description: __expectString,
+        Id: __expectString,
+        Name: __expectString,
+        UpdatedAt: (_) => __expectNonNull(__parseRfc3339DateTimeWithOffset(_)),
+    });
+    Object.assign(contents, doc);
+    return contents;
+};
+const de_GetConfigurationPolicyCommandError = async (output, context) => {
+    const parsedOutput = {
+        ...output,
+        body: await parseErrorBody(output.body, context),
+    };
+    const errorCode = loadRestJsonErrorCode(output, parsedOutput.body);
+    switch (errorCode) {
+        case "AccessDeniedException":
+        case "com.amazonaws.securityhub#AccessDeniedException":
+            throw await de_AccessDeniedExceptionRes(parsedOutput, context);
+        case "InternalException":
+        case "com.amazonaws.securityhub#InternalException":
+            throw await de_InternalExceptionRes(parsedOutput, context);
+        case "InvalidAccessException":
+        case "com.amazonaws.securityhub#InvalidAccessException":
+            throw await de_InvalidAccessExceptionRes(parsedOutput, context);
+        case "InvalidInputException":
+        case "com.amazonaws.securityhub#InvalidInputException":
+            throw await de_InvalidInputExceptionRes(parsedOutput, context);
+        case "LimitExceededException":
+        case "com.amazonaws.securityhub#LimitExceededException":
+            throw await de_LimitExceededExceptionRes(parsedOutput, context);
+        case "ResourceNotFoundException":
+        case "com.amazonaws.securityhub#ResourceNotFoundException":
+            throw await de_ResourceNotFoundExceptionRes(parsedOutput, context);
+        default:
+            const parsedBody = parsedOutput.body;
+            return throwDefaultError({
+                output,
+                parsedBody,
+                errorCode,
+            });
+    }
+};
+export const de_GetConfigurationPolicyAssociationCommand = async (output, context) => {
+    if (output.statusCode !== 200 && output.statusCode >= 300) {
+        return de_GetConfigurationPolicyAssociationCommandError(output, context);
+    }
+    const contents = map({
+        $metadata: deserializeMetadata(output),
+    });
+    const data = __expectNonNull(__expectObject(await parseBody(output.body, context)), "body");
+    const doc = take(data, {
+        AssociationStatus: __expectString,
+        AssociationStatusMessage: __expectString,
+        AssociationType: __expectString,
+        ConfigurationPolicyId: __expectString,
+        TargetId: __expectString,
+        TargetType: __expectString,
+        UpdatedAt: (_) => __expectNonNull(__parseRfc3339DateTimeWithOffset(_)),
+    });
+    Object.assign(contents, doc);
+    return contents;
+};
+const de_GetConfigurationPolicyAssociationCommandError = async (output, context) => {
+    const parsedOutput = {
+        ...output,
+        body: await parseErrorBody(output.body, context),
+    };
+    const errorCode = loadRestJsonErrorCode(output, parsedOutput.body);
+    switch (errorCode) {
+        case "AccessDeniedException":
+        case "com.amazonaws.securityhub#AccessDeniedException":
+            throw await de_AccessDeniedExceptionRes(parsedOutput, context);
+        case "InternalException":
+        case "com.amazonaws.securityhub#InternalException":
+            throw await de_InternalExceptionRes(parsedOutput, context);
+        case "InvalidAccessException":
+        case "com.amazonaws.securityhub#InvalidAccessException":
+            throw await de_InvalidAccessExceptionRes(parsedOutput, context);
+        case "InvalidInputException":
+        case "com.amazonaws.securityhub#InvalidInputException":
+            throw await de_InvalidInputExceptionRes(parsedOutput, context);
+        case "LimitExceededException":
+        case "com.amazonaws.securityhub#LimitExceededException":
+            throw await de_LimitExceededExceptionRes(parsedOutput, context);
+        case "ResourceNotFoundException":
+        case "com.amazonaws.securityhub#ResourceNotFoundException":
+            throw await de_ResourceNotFoundExceptionRes(parsedOutput, context);
+        default:
+            const parsedBody = parsedOutput.body;
+            return throwDefaultError({
+                output,
+                parsedBody,
+                errorCode,
+            });
+    }
+};
 export const de_GetEnabledStandardsCommand = async (output, context) => {
     if (output.statusCode !== 200 && output.statusCode >= 300) {
         return de_GetEnabledStandardsCommandError(output, context);
@@ -3451,6 +3981,51 @@ const de_GetMembersCommandError = async (output, context) => {
             });
     }
 };
+export const de_GetSecurityControlDefinitionCommand = async (output, context) => {
+    if (output.statusCode !== 200 && output.statusCode >= 300) {
+        return de_GetSecurityControlDefinitionCommandError(output, context);
+    }
+    const contents = map({
+        $metadata: deserializeMetadata(output),
+    });
+    const data = __expectNonNull(__expectObject(await parseBody(output.body, context)), "body");
+    const doc = take(data, {
+        SecurityControlDefinition: (_) => de_SecurityControlDefinition(_, context),
+    });
+    Object.assign(contents, doc);
+    return contents;
+};
+const de_GetSecurityControlDefinitionCommandError = async (output, context) => {
+    const parsedOutput = {
+        ...output,
+        body: await parseErrorBody(output.body, context),
+    };
+    const errorCode = loadRestJsonErrorCode(output, parsedOutput.body);
+    switch (errorCode) {
+        case "InternalException":
+        case "com.amazonaws.securityhub#InternalException":
+            throw await de_InternalExceptionRes(parsedOutput, context);
+        case "InvalidAccessException":
+        case "com.amazonaws.securityhub#InvalidAccessException":
+            throw await de_InvalidAccessExceptionRes(parsedOutput, context);
+        case "InvalidInputException":
+        case "com.amazonaws.securityhub#InvalidInputException":
+            throw await de_InvalidInputExceptionRes(parsedOutput, context);
+        case "LimitExceededException":
+        case "com.amazonaws.securityhub#LimitExceededException":
+            throw await de_LimitExceededExceptionRes(parsedOutput, context);
+        case "ResourceNotFoundException":
+        case "com.amazonaws.securityhub#ResourceNotFoundException":
+            throw await de_ResourceNotFoundExceptionRes(parsedOutput, context);
+        default:
+            const parsedBody = parsedOutput.body;
+            return throwDefaultError({
+                output,
+                parsedBody,
+                errorCode,
+            });
+    }
+};
 export const de_InviteMembersCommand = async (output, context) => {
     if (output.statusCode !== 200 && output.statusCode >= 300) {
         return de_InviteMembersCommandError(output, context);
@@ -3542,6 +4117,98 @@ const de_ListAutomationRulesCommandError = async (output, context) => {
             });
     }
 };
+export const de_ListConfigurationPoliciesCommand = async (output, context) => {
+    if (output.statusCode !== 200 && output.statusCode >= 300) {
+        return de_ListConfigurationPoliciesCommandError(output, context);
+    }
+    const contents = map({
+        $metadata: deserializeMetadata(output),
+    });
+    const data = __expectNonNull(__expectObject(await parseBody(output.body, context)), "body");
+    const doc = take(data, {
+        ConfigurationPolicySummaries: (_) => de_ConfigurationPolicySummaryList(_, context),
+        NextToken: __expectString,
+    });
+    Object.assign(contents, doc);
+    return contents;
+};
+const de_ListConfigurationPoliciesCommandError = async (output, context) => {
+    const parsedOutput = {
+        ...output,
+        body: await parseErrorBody(output.body, context),
+    };
+    const errorCode = loadRestJsonErrorCode(output, parsedOutput.body);
+    switch (errorCode) {
+        case "AccessDeniedException":
+        case "com.amazonaws.securityhub#AccessDeniedException":
+            throw await de_AccessDeniedExceptionRes(parsedOutput, context);
+        case "InternalException":
+        case "com.amazonaws.securityhub#InternalException":
+            throw await de_InternalExceptionRes(parsedOutput, context);
+        case "InvalidAccessException":
+        case "com.amazonaws.securityhub#InvalidAccessException":
+            throw await de_InvalidAccessExceptionRes(parsedOutput, context);
+        case "InvalidInputException":
+        case "com.amazonaws.securityhub#InvalidInputException":
+            throw await de_InvalidInputExceptionRes(parsedOutput, context);
+        case "LimitExceededException":
+        case "com.amazonaws.securityhub#LimitExceededException":
+            throw await de_LimitExceededExceptionRes(parsedOutput, context);
+        default:
+            const parsedBody = parsedOutput.body;
+            return throwDefaultError({
+                output,
+                parsedBody,
+                errorCode,
+            });
+    }
+};
+export const de_ListConfigurationPolicyAssociationsCommand = async (output, context) => {
+    if (output.statusCode !== 200 && output.statusCode >= 300) {
+        return de_ListConfigurationPolicyAssociationsCommandError(output, context);
+    }
+    const contents = map({
+        $metadata: deserializeMetadata(output),
+    });
+    const data = __expectNonNull(__expectObject(await parseBody(output.body, context)), "body");
+    const doc = take(data, {
+        ConfigurationPolicyAssociationSummaries: (_) => de_ConfigurationPolicyAssociationSummaryList(_, context),
+        NextToken: __expectString,
+    });
+    Object.assign(contents, doc);
+    return contents;
+};
+const de_ListConfigurationPolicyAssociationsCommandError = async (output, context) => {
+    const parsedOutput = {
+        ...output,
+        body: await parseErrorBody(output.body, context),
+    };
+    const errorCode = loadRestJsonErrorCode(output, parsedOutput.body);
+    switch (errorCode) {
+        case "AccessDeniedException":
+        case "com.amazonaws.securityhub#AccessDeniedException":
+            throw await de_AccessDeniedExceptionRes(parsedOutput, context);
+        case "InternalException":
+        case "com.amazonaws.securityhub#InternalException":
+            throw await de_InternalExceptionRes(parsedOutput, context);
+        case "InvalidAccessException":
+        case "com.amazonaws.securityhub#InvalidAccessException":
+            throw await de_InvalidAccessExceptionRes(parsedOutput, context);
+        case "InvalidInputException":
+        case "com.amazonaws.securityhub#InvalidInputException":
+            throw await de_InvalidInputExceptionRes(parsedOutput, context);
+        case "LimitExceededException":
+        case "com.amazonaws.securityhub#LimitExceededException":
+            throw await de_LimitExceededExceptionRes(parsedOutput, context);
+        default:
+            const parsedBody = parsedOutput.body;
+            return throwDefaultError({
+                output,
+                parsedBody,
+                errorCode,
+            });
+    }
+};
 export const de_ListEnabledProductsForImportCommand = async (output, context) => {
     if (output.statusCode !== 200 && output.statusCode >= 300) {
         return de_ListEnabledProductsForImportCommandError(output, context);
@@ -3767,7 +4434,7 @@ export const de_ListSecurityControlDefinitionsCommand = async (output, context)
     const data = __expectNonNull(__expectObject(await parseBody(output.body, context)), "body");
     const doc = take(data, {
         NextToken: __expectString,
-        SecurityControlDefinitions: _json,
+        SecurityControlDefinitions: (_) => de_SecurityControlDefinitions(_, context),
     });
     Object.assign(contents, doc);
     return contents;
@@ -3802,26 +4469,160 @@ const de_ListSecurityControlDefinitionsCommandError = async (output, context) =>
 };
 export const de_ListStandardsControlAssociationsCommand = async (output, context) => {
     if (output.statusCode !== 200 && output.statusCode >= 300) {
-        return de_ListStandardsControlAssociationsCommandError(output, context);
+        return de_ListStandardsControlAssociationsCommandError(output, context);
+    }
+    const contents = map({
+        $metadata: deserializeMetadata(output),
+    });
+    const data = __expectNonNull(__expectObject(await parseBody(output.body, context)), "body");
+    const doc = take(data, {
+        NextToken: __expectString,
+        StandardsControlAssociationSummaries: (_) => de_StandardsControlAssociationSummaries(_, context),
+    });
+    Object.assign(contents, doc);
+    return contents;
+};
+const de_ListStandardsControlAssociationsCommandError = async (output, context) => {
+    const parsedOutput = {
+        ...output,
+        body: await parseErrorBody(output.body, context),
+    };
+    const errorCode = loadRestJsonErrorCode(output, parsedOutput.body);
+    switch (errorCode) {
+        case "InternalException":
+        case "com.amazonaws.securityhub#InternalException":
+            throw await de_InternalExceptionRes(parsedOutput, context);
+        case "InvalidAccessException":
+        case "com.amazonaws.securityhub#InvalidAccessException":
+            throw await de_InvalidAccessExceptionRes(parsedOutput, context);
+        case "InvalidInputException":
+        case "com.amazonaws.securityhub#InvalidInputException":
+            throw await de_InvalidInputExceptionRes(parsedOutput, context);
+        case "LimitExceededException":
+        case "com.amazonaws.securityhub#LimitExceededException":
+            throw await de_LimitExceededExceptionRes(parsedOutput, context);
+        default:
+            const parsedBody = parsedOutput.body;
+            return throwDefaultError({
+                output,
+                parsedBody,
+                errorCode,
+            });
+    }
+};
+export const de_ListTagsForResourceCommand = async (output, context) => {
+    if (output.statusCode !== 200 && output.statusCode >= 300) {
+        return de_ListTagsForResourceCommandError(output, context);
+    }
+    const contents = map({
+        $metadata: deserializeMetadata(output),
+    });
+    const data = __expectNonNull(__expectObject(await parseBody(output.body, context)), "body");
+    const doc = take(data, {
+        Tags: _json,
+    });
+    Object.assign(contents, doc);
+    return contents;
+};
+const de_ListTagsForResourceCommandError = async (output, context) => {
+    const parsedOutput = {
+        ...output,
+        body: await parseErrorBody(output.body, context),
+    };
+    const errorCode = loadRestJsonErrorCode(output, parsedOutput.body);
+    switch (errorCode) {
+        case "InternalException":
+        case "com.amazonaws.securityhub#InternalException":
+            throw await de_InternalExceptionRes(parsedOutput, context);
+        case "InvalidInputException":
+        case "com.amazonaws.securityhub#InvalidInputException":
+            throw await de_InvalidInputExceptionRes(parsedOutput, context);
+        case "ResourceNotFoundException":
+        case "com.amazonaws.securityhub#ResourceNotFoundException":
+            throw await de_ResourceNotFoundExceptionRes(parsedOutput, context);
+        default:
+            const parsedBody = parsedOutput.body;
+            return throwDefaultError({
+                output,
+                parsedBody,
+                errorCode,
+            });
+    }
+};
+export const de_StartConfigurationPolicyAssociationCommand = async (output, context) => {
+    if (output.statusCode !== 200 && output.statusCode >= 300) {
+        return de_StartConfigurationPolicyAssociationCommandError(output, context);
+    }
+    const contents = map({
+        $metadata: deserializeMetadata(output),
+    });
+    const data = __expectNonNull(__expectObject(await parseBody(output.body, context)), "body");
+    const doc = take(data, {
+        AssociationStatus: __expectString,
+        AssociationStatusMessage: __expectString,
+        AssociationType: __expectString,
+        ConfigurationPolicyId: __expectString,
+        TargetId: __expectString,
+        TargetType: __expectString,
+        UpdatedAt: (_) => __expectNonNull(__parseRfc3339DateTimeWithOffset(_)),
+    });
+    Object.assign(contents, doc);
+    return contents;
+};
+const de_StartConfigurationPolicyAssociationCommandError = async (output, context) => {
+    const parsedOutput = {
+        ...output,
+        body: await parseErrorBody(output.body, context),
+    };
+    const errorCode = loadRestJsonErrorCode(output, parsedOutput.body);
+    switch (errorCode) {
+        case "AccessDeniedException":
+        case "com.amazonaws.securityhub#AccessDeniedException":
+            throw await de_AccessDeniedExceptionRes(parsedOutput, context);
+        case "InternalException":
+        case "com.amazonaws.securityhub#InternalException":
+            throw await de_InternalExceptionRes(parsedOutput, context);
+        case "InvalidAccessException":
+        case "com.amazonaws.securityhub#InvalidAccessException":
+            throw await de_InvalidAccessExceptionRes(parsedOutput, context);
+        case "InvalidInputException":
+        case "com.amazonaws.securityhub#InvalidInputException":
+            throw await de_InvalidInputExceptionRes(parsedOutput, context);
+        case "LimitExceededException":
+        case "com.amazonaws.securityhub#LimitExceededException":
+            throw await de_LimitExceededExceptionRes(parsedOutput, context);
+        case "ResourceNotFoundException":
+        case "com.amazonaws.securityhub#ResourceNotFoundException":
+            throw await de_ResourceNotFoundExceptionRes(parsedOutput, context);
+        default:
+            const parsedBody = parsedOutput.body;
+            return throwDefaultError({
+                output,
+                parsedBody,
+                errorCode,
+            });
+    }
+};
+export const de_StartConfigurationPolicyDisassociationCommand = async (output, context) => {
+    if (output.statusCode !== 200 && output.statusCode >= 300) {
+        return de_StartConfigurationPolicyDisassociationCommandError(output, context);
     }
     const contents = map({
         $metadata: deserializeMetadata(output),
     });
-    const data = __expectNonNull(__expectObject(await parseBody(output.body, context)), "body");
-    const doc = take(data, {
-        NextToken: __expectString,
-        StandardsControlAssociationSummaries: (_) => de_StandardsControlAssociationSummaries(_, context),
-    });
-    Object.assign(contents, doc);
+    await collectBody(output.body, context);
     return contents;
 };
-const de_ListStandardsControlAssociationsCommandError = async (output, context) => {
+const de_StartConfigurationPolicyDisassociationCommandError = async (output, context) => {
     const parsedOutput = {
         ...output,
         body: await parseErrorBody(output.body, context),
     };
     const errorCode = loadRestJsonErrorCode(output, parsedOutput.body);
     switch (errorCode) {
+        case "AccessDeniedException":
+        case "com.amazonaws.securityhub#AccessDeniedException":
+            throw await de_AccessDeniedExceptionRes(parsedOutput, context);
         case "InternalException":
         case "com.amazonaws.securityhub#InternalException":
             throw await de_InternalExceptionRes(parsedOutput, context);
@@ -3834,6 +4635,9 @@ const de_ListStandardsControlAssociationsCommandError = async (output, context)
         case "LimitExceededException":
         case "com.amazonaws.securityhub#LimitExceededException":
             throw await de_LimitExceededExceptionRes(parsedOutput, context);
+        case "ResourceNotFoundException":
+        case "com.amazonaws.securityhub#ResourceNotFoundException":
+            throw await de_ResourceNotFoundExceptionRes(parsedOutput, context);
         default:
             const parsedBody = parsedOutput.body;
             return throwDefaultError({
@@ -3843,21 +4647,17 @@ const de_ListStandardsControlAssociationsCommandError = async (output, context)
             });
     }
 };
-export const de_ListTagsForResourceCommand = async (output, context) => {
+export const de_TagResourceCommand = async (output, context) => {
     if (output.statusCode !== 200 && output.statusCode >= 300) {
-        return de_ListTagsForResourceCommandError(output, context);
+        return de_TagResourceCommandError(output, context);
     }
     const contents = map({
         $metadata: deserializeMetadata(output),
     });
-    const data = __expectNonNull(__expectObject(await parseBody(output.body, context)), "body");
-    const doc = take(data, {
-        Tags: _json,
-    });
-    Object.assign(contents, doc);
+    await collectBody(output.body, context);
     return contents;
 };
-const de_ListTagsForResourceCommandError = async (output, context) => {
+const de_TagResourceCommandError = async (output, context) => {
     const parsedOutput = {
         ...output,
         body: await parseErrorBody(output.body, context),
@@ -3882,9 +4682,9 @@ const de_ListTagsForResourceCommandError = async (output, context) => {
             });
     }
 };
-export const de_TagResourceCommand = async (output, context) => {
+export const de_UntagResourceCommand = async (output, context) => {
     if (output.statusCode !== 200 && output.statusCode >= 300) {
-        return de_TagResourceCommandError(output, context);
+        return de_UntagResourceCommandError(output, context);
     }
     const contents = map({
         $metadata: deserializeMetadata(output),
@@ -3892,7 +4692,7 @@ export const de_TagResourceCommand = async (output, context) => {
     await collectBody(output.body, context);
     return contents;
 };
-const de_TagResourceCommandError = async (output, context) => {
+const de_UntagResourceCommandError = async (output, context) => {
     const parsedOutput = {
         ...output,
         body: await parseErrorBody(output.body, context),
@@ -3917,9 +4717,9 @@ const de_TagResourceCommandError = async (output, context) => {
             });
     }
 };
-export const de_UntagResourceCommand = async (output, context) => {
+export const de_UpdateActionTargetCommand = async (output, context) => {
     if (output.statusCode !== 200 && output.statusCode >= 300) {
-        return de_UntagResourceCommandError(output, context);
+        return de_UpdateActionTargetCommandError(output, context);
     }
     const contents = map({
         $metadata: deserializeMetadata(output),
@@ -3927,7 +4727,7 @@ export const de_UntagResourceCommand = async (output, context) => {
     await collectBody(output.body, context);
     return contents;
 };
-const de_UntagResourceCommandError = async (output, context) => {
+const de_UpdateActionTargetCommandError = async (output, context) => {
     const parsedOutput = {
         ...output,
         body: await parseErrorBody(output.body, context),
@@ -3937,6 +4737,9 @@ const de_UntagResourceCommandError = async (output, context) => {
         case "InternalException":
         case "com.amazonaws.securityhub#InternalException":
             throw await de_InternalExceptionRes(parsedOutput, context);
+        case "InvalidAccessException":
+        case "com.amazonaws.securityhub#InvalidAccessException":
+            throw await de_InvalidAccessExceptionRes(parsedOutput, context);
         case "InvalidInputException":
         case "com.amazonaws.securityhub#InvalidInputException":
             throw await de_InvalidInputExceptionRes(parsedOutput, context);
@@ -3952,23 +4755,36 @@ const de_UntagResourceCommandError = async (output, context) => {
             });
     }
 };
-export const de_UpdateActionTargetCommand = async (output, context) => {
+export const de_UpdateConfigurationPolicyCommand = async (output, context) => {
     if (output.statusCode !== 200 && output.statusCode >= 300) {
-        return de_UpdateActionTargetCommandError(output, context);
+        return de_UpdateConfigurationPolicyCommandError(output, context);
     }
     const contents = map({
         $metadata: deserializeMetadata(output),
     });
-    await collectBody(output.body, context);
+    const data = __expectNonNull(__expectObject(await parseBody(output.body, context)), "body");
+    const doc = take(data, {
+        Arn: __expectString,
+        ConfigurationPolicy: (_) => de_Policy(__expectUnion(_), context),
+        CreatedAt: (_) => __expectNonNull(__parseRfc3339DateTimeWithOffset(_)),
+        Description: __expectString,
+        Id: __expectString,
+        Name: __expectString,
+        UpdatedAt: (_) => __expectNonNull(__parseRfc3339DateTimeWithOffset(_)),
+    });
+    Object.assign(contents, doc);
     return contents;
 };
-const de_UpdateActionTargetCommandError = async (output, context) => {
+const de_UpdateConfigurationPolicyCommandError = async (output, context) => {
     const parsedOutput = {
         ...output,
         body: await parseErrorBody(output.body, context),
     };
     const errorCode = loadRestJsonErrorCode(output, parsedOutput.body);
     switch (errorCode) {
+        case "AccessDeniedException":
+        case "com.amazonaws.securityhub#AccessDeniedException":
+            throw await de_AccessDeniedExceptionRes(parsedOutput, context);
         case "InternalException":
         case "com.amazonaws.securityhub#InternalException":
             throw await de_InternalExceptionRes(parsedOutput, context);
@@ -3978,6 +4794,12 @@ const de_UpdateActionTargetCommandError = async (output, context) => {
         case "InvalidInputException":
         case "com.amazonaws.securityhub#InvalidInputException":
             throw await de_InvalidInputExceptionRes(parsedOutput, context);
+        case "LimitExceededException":
+        case "com.amazonaws.securityhub#LimitExceededException":
+            throw await de_LimitExceededExceptionRes(parsedOutput, context);
+        case "ResourceConflictException":
+        case "com.amazonaws.securityhub#ResourceConflictException":
+            throw await de_ResourceConflictExceptionRes(parsedOutput, context);
         case "ResourceNotFoundException":
         case "com.amazonaws.securityhub#ResourceNotFoundException":
             throw await de_ResourceNotFoundExceptionRes(parsedOutput, context);
@@ -4140,6 +4962,56 @@ const de_UpdateOrganizationConfigurationCommandError = async (output, context) =
     };
     const errorCode = loadRestJsonErrorCode(output, parsedOutput.body);
     switch (errorCode) {
+        case "AccessDeniedException":
+        case "com.amazonaws.securityhub#AccessDeniedException":
+            throw await de_AccessDeniedExceptionRes(parsedOutput, context);
+        case "InternalException":
+        case "com.amazonaws.securityhub#InternalException":
+            throw await de_InternalExceptionRes(parsedOutput, context);
+        case "InvalidAccessException":
+        case "com.amazonaws.securityhub#InvalidAccessException":
+            throw await de_InvalidAccessExceptionRes(parsedOutput, context);
+        case "InvalidInputException":
+        case "com.amazonaws.securityhub#InvalidInputException":
+            throw await de_InvalidInputExceptionRes(parsedOutput, context);
+        case "LimitExceededException":
+        case "com.amazonaws.securityhub#LimitExceededException":
+            throw await de_LimitExceededExceptionRes(parsedOutput, context);
+        case "ResourceConflictException":
+        case "com.amazonaws.securityhub#ResourceConflictException":
+            throw await de_ResourceConflictExceptionRes(parsedOutput, context);
+        case "ResourceNotFoundException":
+        case "com.amazonaws.securityhub#ResourceNotFoundException":
+            throw await de_ResourceNotFoundExceptionRes(parsedOutput, context);
+        default:
+            const parsedBody = parsedOutput.body;
+            return throwDefaultError({
+                output,
+                parsedBody,
+                errorCode,
+            });
+    }
+};
+export const de_UpdateSecurityControlCommand = async (output, context) => {
+    if (output.statusCode !== 200 && output.statusCode >= 300) {
+        return de_UpdateSecurityControlCommandError(output, context);
+    }
+    const contents = map({
+        $metadata: deserializeMetadata(output),
+    });
+    await collectBody(output.body, context);
+    return contents;
+};
+const de_UpdateSecurityControlCommandError = async (output, context) => {
+    const parsedOutput = {
+        ...output,
+        body: await parseErrorBody(output.body, context),
+    };
+    const errorCode = loadRestJsonErrorCode(output, parsedOutput.body);
+    switch (errorCode) {
+        case "AccessDeniedException":
+        case "com.amazonaws.securityhub#AccessDeniedException":
+            throw await de_AccessDeniedExceptionRes(parsedOutput, context);
         case "InternalException":
         case "com.amazonaws.securityhub#InternalException":
             throw await de_InternalExceptionRes(parsedOutput, context);
@@ -4152,6 +5024,12 @@ const de_UpdateOrganizationConfigurationCommandError = async (output, context) =
         case "LimitExceededException":
         case "com.amazonaws.securityhub#LimitExceededException":
             throw await de_LimitExceededExceptionRes(parsedOutput, context);
+        case "ResourceInUseException":
+        case "com.amazonaws.securityhub#ResourceInUseException":
+            throw await de_ResourceInUseExceptionRes(parsedOutput, context);
+        case "ResourceNotFoundException":
+        case "com.amazonaws.securityhub#ResourceNotFoundException":
+            throw await de_ResourceNotFoundExceptionRes(parsedOutput, context);
         default:
             const parsedBody = parsedOutput.body;
             return throwDefaultError({
@@ -4178,6 +5056,9 @@ const de_UpdateSecurityHubConfigurationCommandError = async (output, context) =>
     };
     const errorCode = loadRestJsonErrorCode(output, parsedOutput.body);
     switch (errorCode) {
+        case "AccessDeniedException":
+        case "com.amazonaws.securityhub#AccessDeniedException":
+            throw await de_AccessDeniedExceptionRes(parsedOutput, context);
         case "InternalException":
         case "com.amazonaws.securityhub#InternalException":
             throw await de_InternalExceptionRes(parsedOutput, context);
@@ -4219,6 +5100,9 @@ const de_UpdateStandardsControlCommandError = async (output, context) => {
     };
     const errorCode = loadRestJsonErrorCode(output, parsedOutput.body);
     switch (errorCode) {
+        case "AccessDeniedException":
+        case "com.amazonaws.securityhub#AccessDeniedException":
+            throw await de_AccessDeniedExceptionRes(parsedOutput, context);
         case "InternalException":
         case "com.amazonaws.securityhub#InternalException":
             throw await de_InternalExceptionRes(parsedOutput, context);
@@ -4325,6 +5209,20 @@ const de_ResourceConflictExceptionRes = async (parsedOutput, context) => {
     });
     return __decorateServiceException(exception, parsedOutput.body);
 };
+const de_ResourceInUseExceptionRes = async (parsedOutput, context) => {
+    const contents = map({});
+    const data = parsedOutput.body;
+    const doc = take(data, {
+        Code: __expectString,
+        Message: __expectString,
+    });
+    Object.assign(contents, doc);
+    const exception = new ResourceInUseException({
+        $metadata: deserializeMetadata(parsedOutput),
+        ...contents,
+    });
+    return __decorateServiceException(exception, parsedOutput.body);
+};
 const de_ResourceNotFoundExceptionRes = async (parsedOutput, context) => {
     const contents = map({});
     const data = parsedOutput.body;
@@ -4386,6 +5284,7 @@ const se_AutomationRulesFindingFieldsUpdate = (input, context) => {
 const se_AutomationRulesFindingFilters = (input, context) => {
     return take(input, {
         AwsAccountId: _json,
+        AwsAccountName: _json,
         CompanyName: _json,
         ComplianceAssociatedStandardsId: _json,
         ComplianceSecurityControlId: _json,
@@ -4406,6 +5305,8 @@ const se_AutomationRulesFindingFilters = (input, context) => {
         RecordState: _json,
         RelatedFindingsId: _json,
         RelatedFindingsProductArn: _json,
+        ResourceApplicationArn: _json,
+        ResourceApplicationName: _json,
         ResourceDetailsOther: _json,
         ResourceId: _json,
         ResourcePartition: _json,
@@ -4702,6 +5603,7 @@ const se_AwsSecurityFinding = (input, context) => {
     return take(input, {
         Action: (_) => se_Action(_, context),
         AwsAccountId: [],
+        AwsAccountName: [],
         CompanyName: [],
         Compliance: _json,
         Confidence: [],
@@ -4720,6 +5622,7 @@ const se_AwsSecurityFinding = (input, context) => {
         Note: _json,
         PatchSummary: _json,
         Process: _json,
+        ProcessedAt: [],
         ProductArn: [],
         ProductFields: _json,
         ProductName: [],
@@ -4747,9 +5650,12 @@ const se_AwsSecurityFinding = (input, context) => {
 const se_AwsSecurityFindingFilters = (input, context) => {
     return take(input, {
         AwsAccountId: _json,
+        AwsAccountName: _json,
         CompanyName: _json,
         ComplianceAssociatedStandardsId: _json,
         ComplianceSecurityControlId: _json,
+        ComplianceSecurityControlParametersName: _json,
+        ComplianceSecurityControlParametersValue: _json,
         ComplianceStatus: _json,
         Confidence: (_) => se_NumberFilterList(_, context),
         CreatedAt: _json,
@@ -4799,6 +5705,8 @@ const se_AwsSecurityFindingFilters = (input, context) => {
         Region: _json,
         RelatedFindingsId: _json,
         RelatedFindingsProductArn: _json,
+        ResourceApplicationArn: _json,
+        ResourceApplicationName: _json,
         ResourceAwsEc2InstanceIamInstanceProfileArn: _json,
         ResourceAwsEc2InstanceImageId: _json,
         ResourceAwsEc2InstanceIpV4Addresses: _json,
@@ -4841,6 +5749,8 @@ const se_AwsSecurityFindingFilters = (input, context) => {
         UpdatedAt: _json,
         UserDefinedFields: _json,
         VerificationState: _json,
+        VulnerabilitiesExploitAvailable: _json,
+        VulnerabilitiesFixAvailable: _json,
         WorkflowState: _json,
         WorkflowStatus: _json,
     });
@@ -4887,7 +5797,9 @@ const se_NetworkConnectionAction = (input, context) => {
 const se_NumberFilter = (input, context) => {
     return take(input, {
         Eq: __serializeFloat,
+        Gt: __serializeFloat,
         Gte: __serializeFloat,
+        Lt: __serializeFloat,
         Lte: __serializeFloat,
     });
 };
@@ -4898,6 +5810,40 @@ const se_NumberFilterList = (input, context) => {
         return se_NumberFilter(entry, context);
     });
 };
+const se_ParameterConfiguration = (input, context) => {
+    return take(input, {
+        Value: (_) => se_ParameterValue(_, context),
+        ValueType: [],
+    });
+};
+const se_Parameters = (input, context) => {
+    return Object.entries(input).reduce((acc, [key, value]) => {
+        if (value === null) {
+            return acc;
+        }
+        acc[key] = se_ParameterConfiguration(value, context);
+        return acc;
+    }, {});
+};
+const se_ParameterValue = (input, context) => {
+    return ParameterValue.visit(input, {
+        Boolean: (value) => ({ Boolean: value }),
+        Double: (value) => ({ Double: __serializeFloat(value) }),
+        Enum: (value) => ({ Enum: value }),
+        EnumList: (value) => ({ EnumList: _json(value) }),
+        Integer: (value) => ({ Integer: value }),
+        IntegerList: (value) => ({ IntegerList: _json(value) }),
+        String: (value) => ({ String: value }),
+        StringList: (value) => ({ StringList: _json(value) }),
+        _: (name, value) => ({ name: value }),
+    });
+};
+const se_Policy = (input, context) => {
+    return Policy.visit(input, {
+        SecurityHub: (value) => ({ SecurityHub: se_SecurityHubPolicy(value, context) }),
+        _: (name, value) => ({ name: value }),
+    });
+};
 const se_PortProbeAction = (input, context) => {
     return take(input, {
         Blocked: [],
@@ -4920,6 +5866,8 @@ const se_PortProbeDetailList = (input, context) => {
 };
 const se_Resource = (input, context) => {
     return take(input, {
+        ApplicationArn: [],
+        ApplicationName: [],
         DataClassification: _json,
         Details: (_) => se_ResourceDetails(_, context),
         Id: [],
@@ -5038,6 +5986,33 @@ const se_ResourceList = (input, context) => {
         return se_Resource(entry, context);
     });
 };
+const se_SecurityControlCustomParameter = (input, context) => {
+    return take(input, {
+        Parameters: (_) => se_Parameters(_, context),
+        SecurityControlId: [],
+    });
+};
+const se_SecurityControlCustomParametersList = (input, context) => {
+    return input
+        .filter((e) => e != null)
+        .map((entry) => {
+        return se_SecurityControlCustomParameter(entry, context);
+    });
+};
+const se_SecurityControlsConfiguration = (input, context) => {
+    return take(input, {
+        DisabledSecurityControlIdentifiers: _json,
+        EnabledSecurityControlIdentifiers: _json,
+        SecurityControlCustomParameters: (_) => se_SecurityControlCustomParametersList(_, context),
+    });
+};
+const se_SecurityHubPolicy = (input, context) => {
+    return take(input, {
+        EnabledStandardIdentifiers: _json,
+        SecurityControlsConfiguration: (_) => se_SecurityControlsConfiguration(_, context),
+        ServiceEnabled: [],
+    });
+};
 const se_Severity = (input, context) => {
     return take(input, {
         Label: [],
@@ -5164,6 +6139,7 @@ const de_AutomationRulesFindingFieldsUpdate = (output, context) => {
 const de_AutomationRulesFindingFilters = (output, context) => {
     return take(output, {
         AwsAccountId: _json,
+        AwsAccountName: _json,
         CompanyName: _json,
         ComplianceAssociatedStandardsId: _json,
         ComplianceSecurityControlId: _json,
@@ -5184,6 +6160,8 @@ const de_AutomationRulesFindingFilters = (output, context) => {
         RecordState: _json,
         RelatedFindingsId: _json,
         RelatedFindingsProductArn: _json,
+        ResourceApplicationArn: _json,
+        ResourceApplicationName: _json,
         ResourceDetailsOther: _json,
         ResourceId: _json,
         ResourcePartition: _json,
@@ -5502,6 +6480,7 @@ const de_AwsSecurityFinding = (output, context) => {
     return take(output, {
         Action: (_) => de_Action(_, context),
         AwsAccountId: __expectString,
+        AwsAccountName: __expectString,
         CompanyName: __expectString,
         Compliance: _json,
         Confidence: __expectInt32,
@@ -5520,6 +6499,7 @@ const de_AwsSecurityFinding = (output, context) => {
         Note: _json,
         PatchSummary: _json,
         Process: _json,
+        ProcessedAt: __expectString,
         ProductArn: __expectString,
         ProductFields: _json,
         ProductName: __expectString,
@@ -5547,9 +6527,12 @@ const de_AwsSecurityFinding = (output, context) => {
 const de_AwsSecurityFindingFilters = (output, context) => {
     return take(output, {
         AwsAccountId: _json,
+        AwsAccountName: _json,
         CompanyName: _json,
         ComplianceAssociatedStandardsId: _json,
         ComplianceSecurityControlId: _json,
+        ComplianceSecurityControlParametersName: _json,
+        ComplianceSecurityControlParametersValue: _json,
         ComplianceStatus: _json,
         Confidence: (_) => de_NumberFilterList(_, context),
         CreatedAt: _json,
@@ -5599,6 +6582,8 @@ const de_AwsSecurityFindingFilters = (output, context) => {
         Region: _json,
         RelatedFindingsId: _json,
         RelatedFindingsProductArn: _json,
+        ResourceApplicationArn: _json,
+        ResourceApplicationName: _json,
         ResourceAwsEc2InstanceIamInstanceProfileArn: _json,
         ResourceAwsEc2InstanceImageId: _json,
         ResourceAwsEc2InstanceIpV4Addresses: _json,
@@ -5641,6 +6626,8 @@ const de_AwsSecurityFindingFilters = (output, context) => {
         UpdatedAt: _json,
         UserDefinedFields: _json,
         VerificationState: _json,
+        VulnerabilitiesExploitAvailable: _json,
+        VulnerabilitiesFixAvailable: _json,
         WorkflowState: _json,
         WorkflowStatus: _json,
     });
@@ -5653,6 +6640,94 @@ const de_AwsSecurityFindingList = (output, context) => {
     });
     return retVal;
 };
+const de_ConfigurationOptions = (output, context) => {
+    if (output.Boolean != null) {
+        return {
+            Boolean: _json(output.Boolean),
+        };
+    }
+    if (output.Double != null) {
+        return {
+            Double: de_DoubleConfigurationOptions(output.Double, context),
+        };
+    }
+    if (output.Enum != null) {
+        return {
+            Enum: _json(output.Enum),
+        };
+    }
+    if (output.EnumList != null) {
+        return {
+            EnumList: _json(output.EnumList),
+        };
+    }
+    if (output.Integer != null) {
+        return {
+            Integer: _json(output.Integer),
+        };
+    }
+    if (output.IntegerList != null) {
+        return {
+            IntegerList: _json(output.IntegerList),
+        };
+    }
+    if (output.String != null) {
+        return {
+            String: _json(output.String),
+        };
+    }
+    if (output.StringList != null) {
+        return {
+            StringList: _json(output.StringList),
+        };
+    }
+    return { $unknown: Object.entries(output)[0] };
+};
+const de_ConfigurationPolicyAssociationList = (output, context) => {
+    const retVal = (output || [])
+        .filter((e) => e != null)
+        .map((entry) => {
+        return de_ConfigurationPolicyAssociationSummary(entry, context);
+    });
+    return retVal;
+};
+const de_ConfigurationPolicyAssociationSummary = (output, context) => {
+    return take(output, {
+        AssociationStatus: __expectString,
+        AssociationStatusMessage: __expectString,
+        AssociationType: __expectString,
+        ConfigurationPolicyId: __expectString,
+        TargetId: __expectString,
+        TargetType: __expectString,
+        UpdatedAt: (_) => __expectNonNull(__parseRfc3339DateTimeWithOffset(_)),
+    });
+};
+const de_ConfigurationPolicyAssociationSummaryList = (output, context) => {
+    const retVal = (output || [])
+        .filter((e) => e != null)
+        .map((entry) => {
+        return de_ConfigurationPolicyAssociationSummary(entry, context);
+    });
+    return retVal;
+};
+const de_ConfigurationPolicySummary = (output, context) => {
+    return take(output, {
+        Arn: __expectString,
+        Description: __expectString,
+        Id: __expectString,
+        Name: __expectString,
+        ServiceEnabled: __expectBoolean,
+        UpdatedAt: (_) => __expectNonNull(__parseRfc3339DateTimeWithOffset(_)),
+    });
+};
+const de_ConfigurationPolicySummaryList = (output, context) => {
+    const retVal = (output || [])
+        .filter((e) => e != null)
+        .map((entry) => {
+        return de_ConfigurationPolicySummary(entry, context);
+    });
+    return retVal;
+};
 const de_Cvss = (output, context) => {
     return take(output, {
         Adjustments: _json,
@@ -5670,6 +6745,13 @@ const de_CvssList = (output, context) => {
     });
     return retVal;
 };
+const de_DoubleConfigurationOptions = (output, context) => {
+    return take(output, {
+        DefaultValue: __limitedParseDouble,
+        Max: __limitedParseDouble,
+        Min: __limitedParseDouble,
+    });
+};
 const de_FindingHistoryRecord = (output, context) => {
     return take(output, {
         FindingCreated: __expectBoolean,
@@ -5758,7 +6840,9 @@ const de_NetworkConnectionAction = (output, context) => {
 const de_NumberFilter = (output, context) => {
     return take(output, {
         Eq: __limitedParseDouble,
+        Gt: __limitedParseDouble,
         Gte: __limitedParseDouble,
+        Lt: __limitedParseDouble,
         Lte: __limitedParseDouble,
     });
 };
@@ -5770,6 +6854,77 @@ const de_NumberFilterList = (output, context) => {
     });
     return retVal;
 };
+const de_ParameterConfiguration = (output, context) => {
+    return take(output, {
+        Value: (_) => de_ParameterValue(__expectUnion(_), context),
+        ValueType: __expectString,
+    });
+};
+const de_ParameterDefinition = (output, context) => {
+    return take(output, {
+        ConfigurationOptions: (_) => de_ConfigurationOptions(__expectUnion(_), context),
+        Description: __expectString,
+    });
+};
+const de_ParameterDefinitions = (output, context) => {
+    return Object.entries(output).reduce((acc, [key, value]) => {
+        if (value === null) {
+            return acc;
+        }
+        acc[key] = de_ParameterDefinition(value, context);
+        return acc;
+    }, {});
+};
+const de_Parameters = (output, context) => {
+    return Object.entries(output).reduce((acc, [key, value]) => {
+        if (value === null) {
+            return acc;
+        }
+        acc[key] = de_ParameterConfiguration(value, context);
+        return acc;
+    }, {});
+};
+const de_ParameterValue = (output, context) => {
+    if (__expectBoolean(output.Boolean) !== undefined) {
+        return { Boolean: __expectBoolean(output.Boolean) };
+    }
+    if (__limitedParseDouble(output.Double) !== undefined) {
+        return { Double: __limitedParseDouble(output.Double) };
+    }
+    if (__expectString(output.Enum) !== undefined) {
+        return { Enum: __expectString(output.Enum) };
+    }
+    if (output.EnumList != null) {
+        return {
+            EnumList: _json(output.EnumList),
+        };
+    }
+    if (__expectInt32(output.Integer) !== undefined) {
+        return { Integer: __expectInt32(output.Integer) };
+    }
+    if (output.IntegerList != null) {
+        return {
+            IntegerList: _json(output.IntegerList),
+        };
+    }
+    if (__expectString(output.String) !== undefined) {
+        return { String: __expectString(output.String) };
+    }
+    if (output.StringList != null) {
+        return {
+            StringList: _json(output.StringList),
+        };
+    }
+    return { $unknown: Object.entries(output)[0] };
+};
+const de_Policy = (output, context) => {
+    if (output.SecurityHub != null) {
+        return {
+            SecurityHub: de_SecurityHubPolicy(output.SecurityHub, context),
+        };
+    }
+    return { $unknown: Object.entries(output)[0] };
+};
 const de_PortProbeAction = (output, context) => {
     return take(output, {
         Blocked: __expectBoolean,
@@ -5793,6 +6948,8 @@ const de_PortProbeDetailList = (output, context) => {
 };
 const de_Resource = (output, context) => {
     return take(output, {
+        ApplicationArn: __expectString,
+        ApplicationName: __expectString,
         DataClassification: _json,
         Details: (_) => de_ResourceDetails(_, context),
         Id: __expectString,
@@ -5912,6 +7069,76 @@ const de_ResourceList = (output, context) => {
     });
     return retVal;
 };
+const de_SecurityControl = (output, context) => {
+    return take(output, {
+        Description: __expectString,
+        LastUpdateReason: __expectString,
+        Parameters: (_) => de_Parameters(_, context),
+        RemediationUrl: __expectString,
+        SecurityControlArn: __expectString,
+        SecurityControlId: __expectString,
+        SecurityControlStatus: __expectString,
+        SeverityRating: __expectString,
+        Title: __expectString,
+        UpdateStatus: __expectString,
+    });
+};
+const de_SecurityControlCustomParameter = (output, context) => {
+    return take(output, {
+        Parameters: (_) => de_Parameters(_, context),
+        SecurityControlId: __expectString,
+    });
+};
+const de_SecurityControlCustomParametersList = (output, context) => {
+    const retVal = (output || [])
+        .filter((e) => e != null)
+        .map((entry) => {
+        return de_SecurityControlCustomParameter(entry, context);
+    });
+    return retVal;
+};
+const de_SecurityControlDefinition = (output, context) => {
+    return take(output, {
+        CurrentRegionAvailability: __expectString,
+        CustomizableProperties: _json,
+        Description: __expectString,
+        ParameterDefinitions: (_) => de_ParameterDefinitions(_, context),
+        RemediationUrl: __expectString,
+        SecurityControlId: __expectString,
+        SeverityRating: __expectString,
+        Title: __expectString,
+    });
+};
+const de_SecurityControlDefinitions = (output, context) => {
+    const retVal = (output || [])
+        .filter((e) => e != null)
+        .map((entry) => {
+        return de_SecurityControlDefinition(entry, context);
+    });
+    return retVal;
+};
+const de_SecurityControls = (output, context) => {
+    const retVal = (output || [])
+        .filter((e) => e != null)
+        .map((entry) => {
+        return de_SecurityControl(entry, context);
+    });
+    return retVal;
+};
+const de_SecurityControlsConfiguration = (output, context) => {
+    return take(output, {
+        DisabledSecurityControlIdentifiers: _json,
+        EnabledSecurityControlIdentifiers: _json,
+        SecurityControlCustomParameters: (_) => de_SecurityControlCustomParametersList(_, context),
+    });
+};
+const de_SecurityHubPolicy = (output, context) => {
+    return take(output, {
+        EnabledStandardIdentifiers: _json,
+        SecurityControlsConfiguration: (_) => de_SecurityControlsConfiguration(_, context),
+        ServiceEnabled: __expectBoolean,
+    });
+};
 const de_Severity = (output, context) => {
     return take(output, {
         Label: __expectString,