@aws-sdk/client-securityhub 3.454.0 → 3.459.0

package/dist-types/commands/BatchUpdateStandardsControlAssociationsCommand.d.ts

@@ -67,6 +67,9 @@ export interface BatchUpdateStandardsControlAssociationsCommandOutput extends Ba
  * @see {@link BatchUpdateStandardsControlAssociationsCommandOutput} for command's `response` shape.
  * @see {@link SecurityHubClientResolvedConfig | config} for SecurityHubClient's `config` shape.
  *
+ * @throws {@link AccessDeniedException} (client fault)
+ *  <p>You don't have permission to perform the action specified in the request.</p>
+ *
  * @throws {@link InternalException} (server fault)
  *  <p>Internal server error.</p>
  *

package/dist-types/commands/CreateAutomationRuleCommand.d.ts

@@ -116,6 +116,8 @@ export interface CreateAutomationRuleCommandOutput extends CreateAutomationRuleR
  *       { // NumberFilter
  *         Gte: Number("double"),
  *         Lte: Number("double"),
+ *         Gt: Number("double"),
+ *         Lt: Number("double"),
  *         Eq: Number("double"),
  *       },
  *     ],
@@ -123,6 +125,8 @@ export interface CreateAutomationRuleCommandOutput extends CreateAutomationRuleR
  *       {
  *         Gte: Number("double"),
  *         Lte: Number("double"),
+ *         Gt: Number("double"),
+ *         Lt: Number("double"),
  *         Eq: Number("double"),
  *       },
  *     ],
@@ -177,6 +181,9 @@ export interface CreateAutomationRuleCommandOutput extends CreateAutomationRuleR
  *         Comparison: "EQUALS" || "NOT_EQUALS" || "CONTAINS" || "NOT_CONTAINS",
  *       },
  *     ],
+ *     ResourceApplicationArn: "<StringFilterList>",
+ *     ResourceApplicationName: "<StringFilterList>",
+ *     AwsAccountName: "<StringFilterList>",
  *   },
  *   Actions: [ // ActionList // required
  *     { // AutomationRulesAction

package/dist-types/commands/CreateConfigurationPolicyCommand.d.ts

@@ -0,0 +1,189 @@
+import { EndpointParameterInstructions } from "@smithy/middleware-endpoint";
+import { Command as $Command } from "@smithy/smithy-client";
+import { Handler, HttpHandlerOptions as __HttpHandlerOptions, MetadataBearer as __MetadataBearer, MiddlewareStack } from "@smithy/types";
+import { CreateConfigurationPolicyRequest, CreateConfigurationPolicyResponse } from "../models/models_2";
+import { SecurityHubClientResolvedConfig, ServiceInputTypes, ServiceOutputTypes } from "../SecurityHubClient";
+/**
+ * @public
+ */
+export { __MetadataBearer, $Command };
+/**
+ * @public
+ *
+ * The input for {@link CreateConfigurationPolicyCommand}.
+ */
+export interface CreateConfigurationPolicyCommandInput extends CreateConfigurationPolicyRequest {
+}
+/**
+ * @public
+ *
+ * The output of {@link CreateConfigurationPolicyCommand}.
+ */
+export interface CreateConfigurationPolicyCommandOutput extends CreateConfigurationPolicyResponse, __MetadataBearer {
+}
+/**
+ * @public
+ * <p>
+ *             Creates a configuration policy with the defined configuration. Only the Security Hub delegated administrator
+ *             can invoke this operation from the home Region.
+ *         </p>
+ * @example
+ * Use a bare-bones client and the command you need to make an API call.
+ * ```javascript
+ * import { SecurityHubClient, CreateConfigurationPolicyCommand } from "@aws-sdk/client-securityhub"; // ES Modules import
+ * // const { SecurityHubClient, CreateConfigurationPolicyCommand } = require("@aws-sdk/client-securityhub"); // CommonJS import
+ * const client = new SecurityHubClient(config);
+ * const input = { // CreateConfigurationPolicyRequest
+ *   Name: "STRING_VALUE", // required
+ *   Description: "STRING_VALUE",
+ *   ConfigurationPolicy: { // Policy Union: only one key present
+ *     SecurityHub: { // SecurityHubPolicy
+ *       ServiceEnabled: true || false,
+ *       EnabledStandardIdentifiers: [ // EnabledStandardIdentifierList
+ *         "STRING_VALUE",
+ *       ],
+ *       SecurityControlsConfiguration: { // SecurityControlsConfiguration
+ *         EnabledSecurityControlIdentifiers: [ // EnabledSecurityControlIdentifierList
+ *           "STRING_VALUE",
+ *         ],
+ *         DisabledSecurityControlIdentifiers: [ // DisabledSecurityControlIdentifierList
+ *           "STRING_VALUE",
+ *         ],
+ *         SecurityControlCustomParameters: [ // SecurityControlCustomParametersList
+ *           { // SecurityControlCustomParameter
+ *             SecurityControlId: "STRING_VALUE",
+ *             Parameters: { // Parameters
+ *               "<keys>": { // ParameterConfiguration
+ *                 ValueType: "DEFAULT" || "CUSTOM", // required
+ *                 Value: { // ParameterValue Union: only one key present
+ *                   Integer: Number("int"),
+ *                   IntegerList: [ // IntegerList
+ *                     Number("int"),
+ *                   ],
+ *                   Double: Number("double"),
+ *                   String: "STRING_VALUE",
+ *                   StringList: [ // StringList
+ *                     "STRING_VALUE",
+ *                   ],
+ *                   Boolean: true || false,
+ *                   Enum: "STRING_VALUE",
+ *                   EnumList: [
+ *                     "STRING_VALUE",
+ *                   ],
+ *                 },
+ *               },
+ *             },
+ *           },
+ *         ],
+ *       },
+ *     },
+ *   },
+ *   Tags: { // TagMap
+ *     "<keys>": "STRING_VALUE",
+ *   },
+ * };
+ * const command = new CreateConfigurationPolicyCommand(input);
+ * const response = await client.send(command);
+ * // { // CreateConfigurationPolicyResponse
+ * //   Arn: "STRING_VALUE",
+ * //   Id: "STRING_VALUE",
+ * //   Name: "STRING_VALUE",
+ * //   Description: "STRING_VALUE",
+ * //   UpdatedAt: new Date("TIMESTAMP"),
+ * //   CreatedAt: new Date("TIMESTAMP"),
+ * //   ConfigurationPolicy: { // Policy Union: only one key present
+ * //     SecurityHub: { // SecurityHubPolicy
+ * //       ServiceEnabled: true || false,
+ * //       EnabledStandardIdentifiers: [ // EnabledStandardIdentifierList
+ * //         "STRING_VALUE",
+ * //       ],
+ * //       SecurityControlsConfiguration: { // SecurityControlsConfiguration
+ * //         EnabledSecurityControlIdentifiers: [ // EnabledSecurityControlIdentifierList
+ * //           "STRING_VALUE",
+ * //         ],
+ * //         DisabledSecurityControlIdentifiers: [ // DisabledSecurityControlIdentifierList
+ * //           "STRING_VALUE",
+ * //         ],
+ * //         SecurityControlCustomParameters: [ // SecurityControlCustomParametersList
+ * //           { // SecurityControlCustomParameter
+ * //             SecurityControlId: "STRING_VALUE",
+ * //             Parameters: { // Parameters
+ * //               "<keys>": { // ParameterConfiguration
+ * //                 ValueType: "DEFAULT" || "CUSTOM", // required
+ * //                 Value: { // ParameterValue Union: only one key present
+ * //                   Integer: Number("int"),
+ * //                   IntegerList: [ // IntegerList
+ * //                     Number("int"),
+ * //                   ],
+ * //                   Double: Number("double"),
+ * //                   String: "STRING_VALUE",
+ * //                   StringList: [ // StringList
+ * //                     "STRING_VALUE",
+ * //                   ],
+ * //                   Boolean: true || false,
+ * //                   Enum: "STRING_VALUE",
+ * //                   EnumList: [
+ * //                     "STRING_VALUE",
+ * //                   ],
+ * //                 },
+ * //               },
+ * //             },
+ * //           },
+ * //         ],
+ * //       },
+ * //     },
+ * //   },
+ * // };
+ *
+ * ```
+ *
+ * @param CreateConfigurationPolicyCommandInput - {@link CreateConfigurationPolicyCommandInput}
+ * @returns {@link CreateConfigurationPolicyCommandOutput}
+ * @see {@link CreateConfigurationPolicyCommandInput} for command's `input` shape.
+ * @see {@link CreateConfigurationPolicyCommandOutput} for command's `response` shape.
+ * @see {@link SecurityHubClientResolvedConfig | config} for SecurityHubClient's `config` shape.
+ *
+ * @throws {@link AccessDeniedException} (client fault)
+ *  <p>You don't have permission to perform the action specified in the request.</p>
+ *
+ * @throws {@link InternalException} (server fault)
+ *  <p>Internal server error.</p>
+ *
+ * @throws {@link InvalidAccessException} (client fault)
+ *  <p>The account doesn't have permission to perform this action.</p>
+ *
+ * @throws {@link InvalidInputException} (client fault)
+ *  <p>The request was rejected because you supplied an invalid or out-of-range value for an
+ *          input parameter.</p>
+ *
+ * @throws {@link LimitExceededException} (client fault)
+ *  <p>The request was rejected because it attempted to create resources beyond the current Amazon Web Services
+ *          account or throttling limits. The error code describes the limit exceeded.</p>
+ *
+ * @throws {@link ResourceConflictException} (client fault)
+ *  <p>The resource specified in the request conflicts with an existing resource.</p>
+ *
+ * @throws {@link SecurityHubServiceException}
+ * <p>Base exception class for all service exceptions from SecurityHub service.</p>
+ *
+ */
+export declare class CreateConfigurationPolicyCommand extends $Command<CreateConfigurationPolicyCommandInput, CreateConfigurationPolicyCommandOutput, SecurityHubClientResolvedConfig> {
+    readonly input: CreateConfigurationPolicyCommandInput;
+    static getEndpointParameterInstructions(): EndpointParameterInstructions;
+    /**
+     * @public
+     */
+    constructor(input: CreateConfigurationPolicyCommandInput);
+    /**
+     * @internal
+     */
+    resolveMiddleware(clientStack: MiddlewareStack<ServiceInputTypes, ServiceOutputTypes>, configuration: SecurityHubClientResolvedConfig, options?: __HttpHandlerOptions): Handler<CreateConfigurationPolicyCommandInput, CreateConfigurationPolicyCommandOutput>;
+    /**
+     * @internal
+     */
+    private serialize;
+    /**
+     * @internal
+     */
+    private deserialize;
+}

package/dist-types/commands/CreateInsightCommand.d.ts

@@ -111,6 +111,8 @@ export interface CreateInsightCommandOutput extends CreateInsightResponse, __Met
  *       { // NumberFilter
  *         Gte: Number("double"),
  *         Lte: Number("double"),
+ *         Gt: Number("double"),
+ *         Lt: Number("double"),
  *         Eq: Number("double"),
  *       },
  *     ],
@@ -118,6 +120,8 @@ export interface CreateInsightCommandOutput extends CreateInsightResponse, __Met
  *       {
  *         Gte: Number("double"),
  *         Lte: Number("double"),
+ *         Gt: Number("double"),
+ *         Lt: Number("double"),
  *         Eq: Number("double"),
  *       },
  *     ],
@@ -126,6 +130,8 @@ export interface CreateInsightCommandOutput extends CreateInsightResponse, __Met
  *       {
  *         Gte: Number("double"),
  *         Lte: Number("double"),
+ *         Gt: Number("double"),
+ *         Lt: Number("double"),
  *         Eq: Number("double"),
  *       },
  *     ],
@@ -133,6 +139,8 @@ export interface CreateInsightCommandOutput extends CreateInsightResponse, __Met
  *       {
  *         Gte: Number("double"),
  *         Lte: Number("double"),
+ *         Gt: Number("double"),
+ *         Lt: Number("double"),
  *         Eq: Number("double"),
  *       },
  *     ],
@@ -176,6 +184,8 @@ export interface CreateInsightCommandOutput extends CreateInsightResponse, __Met
  *       {
  *         Gte: Number("double"),
  *         Lte: Number("double"),
+ *         Gt: Number("double"),
+ *         Lt: Number("double"),
  *         Eq: Number("double"),
  *       },
  *     ],
@@ -285,6 +295,13 @@ export interface CreateInsightCommandOutput extends CreateInsightResponse, __Met
  *     ],
  *     ComplianceSecurityControlId: "<StringFilterList>",
  *     ComplianceAssociatedStandardsId: "<StringFilterList>",
+ *     VulnerabilitiesExploitAvailable: "<StringFilterList>",
+ *     VulnerabilitiesFixAvailable: "<StringFilterList>",
+ *     ComplianceSecurityControlParametersName: "<StringFilterList>",
+ *     ComplianceSecurityControlParametersValue: "<StringFilterList>",
+ *     AwsAccountName: "<StringFilterList>",
+ *     ResourceApplicationName: "<StringFilterList>",
+ *     ResourceApplicationArn: "<StringFilterList>",
  *   },
  *   GroupByAttribute: "STRING_VALUE", // required
  * };

package/dist-types/commands/CreateMembersCommand.d.ts

@@ -91,6 +91,9 @@ export interface CreateMembersCommandOutput extends CreateMembersResponse, __Met
  * @see {@link CreateMembersCommandOutput} for command's `response` shape.
  * @see {@link SecurityHubClientResolvedConfig | config} for SecurityHubClient's `config` shape.
  *
+ * @throws {@link AccessDeniedException} (client fault)
+ *  <p>You don't have permission to perform the action specified in the request.</p>
+ *
  * @throws {@link InternalException} (server fault)
  *  <p>Internal server error.</p>
  *

package/dist-types/commands/DeleteConfigurationPolicyCommand.d.ts

@@ -0,0 +1,98 @@
+import { EndpointParameterInstructions } from "@smithy/middleware-endpoint";
+import { Command as $Command } from "@smithy/smithy-client";
+import { Handler, HttpHandlerOptions as __HttpHandlerOptions, MetadataBearer as __MetadataBearer, MiddlewareStack } from "@smithy/types";
+import { DeleteConfigurationPolicyRequest, DeleteConfigurationPolicyResponse } from "../models/models_2";
+import { SecurityHubClientResolvedConfig, ServiceInputTypes, ServiceOutputTypes } from "../SecurityHubClient";
+/**
+ * @public
+ */
+export { __MetadataBearer, $Command };
+/**
+ * @public
+ *
+ * The input for {@link DeleteConfigurationPolicyCommand}.
+ */
+export interface DeleteConfigurationPolicyCommandInput extends DeleteConfigurationPolicyRequest {
+}
+/**
+ * @public
+ *
+ * The output of {@link DeleteConfigurationPolicyCommand}.
+ */
+export interface DeleteConfigurationPolicyCommandOutput extends DeleteConfigurationPolicyResponse, __MetadataBearer {
+}
+/**
+ * @public
+ * <p>
+ *             Deletes a configuration policy. Only the Security Hub delegated administrator can invoke this operation
+ *             from the home Region. For the deletion to succeed, you must first disassociate a configuration policy from target accounts,
+ *             organizational units, or the root by invoking the <code>StartConfigurationPolicyDisassociation</code> operation.
+ *         </p>
+ * @example
+ * Use a bare-bones client and the command you need to make an API call.
+ * ```javascript
+ * import { SecurityHubClient, DeleteConfigurationPolicyCommand } from "@aws-sdk/client-securityhub"; // ES Modules import
+ * // const { SecurityHubClient, DeleteConfigurationPolicyCommand } = require("@aws-sdk/client-securityhub"); // CommonJS import
+ * const client = new SecurityHubClient(config);
+ * const input = { // DeleteConfigurationPolicyRequest
+ *   Identifier: "STRING_VALUE", // required
+ * };
+ * const command = new DeleteConfigurationPolicyCommand(input);
+ * const response = await client.send(command);
+ * // {};
+ *
+ * ```
+ *
+ * @param DeleteConfigurationPolicyCommandInput - {@link DeleteConfigurationPolicyCommandInput}
+ * @returns {@link DeleteConfigurationPolicyCommandOutput}
+ * @see {@link DeleteConfigurationPolicyCommandInput} for command's `input` shape.
+ * @see {@link DeleteConfigurationPolicyCommandOutput} for command's `response` shape.
+ * @see {@link SecurityHubClientResolvedConfig | config} for SecurityHubClient's `config` shape.
+ *
+ * @throws {@link AccessDeniedException} (client fault)
+ *  <p>You don't have permission to perform the action specified in the request.</p>
+ *
+ * @throws {@link InternalException} (server fault)
+ *  <p>Internal server error.</p>
+ *
+ * @throws {@link InvalidAccessException} (client fault)
+ *  <p>The account doesn't have permission to perform this action.</p>
+ *
+ * @throws {@link InvalidInputException} (client fault)
+ *  <p>The request was rejected because you supplied an invalid or out-of-range value for an
+ *          input parameter.</p>
+ *
+ * @throws {@link LimitExceededException} (client fault)
+ *  <p>The request was rejected because it attempted to create resources beyond the current Amazon Web Services
+ *          account or throttling limits. The error code describes the limit exceeded.</p>
+ *
+ * @throws {@link ResourceConflictException} (client fault)
+ *  <p>The resource specified in the request conflicts with an existing resource.</p>
+ *
+ * @throws {@link ResourceNotFoundException} (client fault)
+ *  <p>The request was rejected because we can't find the specified resource.</p>
+ *
+ * @throws {@link SecurityHubServiceException}
+ * <p>Base exception class for all service exceptions from SecurityHub service.</p>
+ *
+ */
+export declare class DeleteConfigurationPolicyCommand extends $Command<DeleteConfigurationPolicyCommandInput, DeleteConfigurationPolicyCommandOutput, SecurityHubClientResolvedConfig> {
+    readonly input: DeleteConfigurationPolicyCommandInput;
+    static getEndpointParameterInstructions(): EndpointParameterInstructions;
+    /**
+     * @public
+     */
+    constructor(input: DeleteConfigurationPolicyCommandInput);
+    /**
+     * @internal
+     */
+    resolveMiddleware(clientStack: MiddlewareStack<ServiceInputTypes, ServiceOutputTypes>, configuration: SecurityHubClientResolvedConfig, options?: __HttpHandlerOptions): Handler<DeleteConfigurationPolicyCommandInput, DeleteConfigurationPolicyCommandOutput>;
+    /**
+     * @internal
+     */
+    private serialize;
+    /**
+     * @internal
+     */
+    private deserialize;
+}

package/dist-types/commands/DescribeOrganizationConfigurationCommand.d.ts

@@ -23,8 +23,8 @@ export interface DescribeOrganizationConfigurationCommandOutput extends Describe
 }
 /**
  * @public
- * <p>Returns information about the Organizations configuration for Security Hub. Can only be
- *          called from a Security Hub administrator account.</p>
+ * <p>Returns information about the way your organization is configured in Security Hub. Only the
+ *          Security Hub administrator account can invoke this operation.</p>
  * @example
  * Use a bare-bones client and the command you need to make an API call.
  * ```javascript
@@ -38,6 +38,11 @@ export interface DescribeOrganizationConfigurationCommandOutput extends Describe
  * //   AutoEnable: true || false,
  * //   MemberAccountLimitReached: true || false,
  * //   AutoEnableStandards: "NONE" || "DEFAULT",
+ * //   OrganizationConfiguration: { // OrganizationConfiguration
+ * //     ConfigurationType: "CENTRAL" || "LOCAL",
+ * //     Status: "PENDING" || "ENABLED" || "FAILED",
+ * //     StatusMessage: "STRING_VALUE",
+ * //   },
  * // };
  *
  * ```

package/dist-types/commands/DisableOrganizationAdminAccountCommand.d.ts

@@ -46,6 +46,9 @@ export interface DisableOrganizationAdminAccountCommandOutput extends DisableOrg
  * @see {@link DisableOrganizationAdminAccountCommandOutput} for command's `response` shape.
  * @see {@link SecurityHubClientResolvedConfig | config} for SecurityHubClient's `config` shape.
  *
+ * @throws {@link AccessDeniedException} (client fault)
+ *  <p>You don't have permission to perform the action specified in the request.</p>
+ *
  * @throws {@link InternalException} (server fault)
  *  <p>Internal server error.</p>
  *

package/dist-types/commands/DisableSecurityHubCommand.d.ts

@@ -50,6 +50,9 @@ export interface DisableSecurityHubCommandOutput extends DisableSecurityHubRespo
  * @see {@link DisableSecurityHubCommandOutput} for command's `response` shape.
  * @see {@link SecurityHubClientResolvedConfig | config} for SecurityHubClient's `config` shape.
  *
+ * @throws {@link AccessDeniedException} (client fault)
+ *  <p>You don't have permission to perform the action specified in the request.</p>
+ *
  * @throws {@link InternalException} (server fault)
  *  <p>Internal server error.</p>
  *

package/dist-types/commands/DisassociateMembersCommand.d.ts

@@ -49,6 +49,9 @@ export interface DisassociateMembersCommandOutput extends DisassociateMembersRes
  * @see {@link DisassociateMembersCommandOutput} for command's `response` shape.
  * @see {@link SecurityHubClientResolvedConfig | config} for SecurityHubClient's `config` shape.
  *
+ * @throws {@link AccessDeniedException} (client fault)
+ *  <p>You don't have permission to perform the action specified in the request.</p>
+ *
  * @throws {@link InternalException} (server fault)
  *  <p>Internal server error.</p>
  *

package/dist-types/commands/EnableOrganizationAdminAccountCommand.d.ts

@@ -46,6 +46,9 @@ export interface EnableOrganizationAdminAccountCommandOutput extends EnableOrgan
  * @see {@link EnableOrganizationAdminAccountCommandOutput} for command's `response` shape.
  * @see {@link SecurityHubClientResolvedConfig | config} for SecurityHubClient's `config` shape.
  *
+ * @throws {@link AccessDeniedException} (client fault)
+ *  <p>You don't have permission to perform the action specified in the request.</p>
+ *
  * @throws {@link InternalException} (server fault)
  *  <p>Internal server error.</p>
  *

package/dist-types/commands/GetConfigurationPolicyAssociationCommand.d.ts

@@ -0,0 +1,107 @@
+import { EndpointParameterInstructions } from "@smithy/middleware-endpoint";
+import { Command as $Command } from "@smithy/smithy-client";
+import { Handler, HttpHandlerOptions as __HttpHandlerOptions, MetadataBearer as __MetadataBearer, MiddlewareStack } from "@smithy/types";
+import { GetConfigurationPolicyAssociationRequest, GetConfigurationPolicyAssociationResponse } from "../models/models_2";
+import { SecurityHubClientResolvedConfig, ServiceInputTypes, ServiceOutputTypes } from "../SecurityHubClient";
+/**
+ * @public
+ */
+export { __MetadataBearer, $Command };
+/**
+ * @public
+ *
+ * The input for {@link GetConfigurationPolicyAssociationCommand}.
+ */
+export interface GetConfigurationPolicyAssociationCommandInput extends GetConfigurationPolicyAssociationRequest {
+}
+/**
+ * @public
+ *
+ * The output of {@link GetConfigurationPolicyAssociationCommand}.
+ */
+export interface GetConfigurationPolicyAssociationCommandOutput extends GetConfigurationPolicyAssociationResponse, __MetadataBearer {
+}
+/**
+ * @public
+ * <p>
+ *             Returns the association between a configuration and a target account, organizational unit, or the root. The
+ *             configuration can be a configuration policy or self-managed behavior. Only the Security Hub delegated administrator can
+ *             invoke this operation from the home Region.
+ *         </p>
+ * @example
+ * Use a bare-bones client and the command you need to make an API call.
+ * ```javascript
+ * import { SecurityHubClient, GetConfigurationPolicyAssociationCommand } from "@aws-sdk/client-securityhub"; // ES Modules import
+ * // const { SecurityHubClient, GetConfigurationPolicyAssociationCommand } = require("@aws-sdk/client-securityhub"); // CommonJS import
+ * const client = new SecurityHubClient(config);
+ * const input = { // GetConfigurationPolicyAssociationRequest
+ *   Target: { // Target Union: only one key present
+ *     AccountId: "STRING_VALUE",
+ *     OrganizationalUnitId: "STRING_VALUE",
+ *     RootId: "STRING_VALUE",
+ *   },
+ * };
+ * const command = new GetConfigurationPolicyAssociationCommand(input);
+ * const response = await client.send(command);
+ * // { // GetConfigurationPolicyAssociationResponse
+ * //   ConfigurationPolicyId: "STRING_VALUE",
+ * //   TargetId: "STRING_VALUE",
+ * //   TargetType: "ACCOUNT" || "ORGANIZATIONAL_UNIT",
+ * //   AssociationType: "INHERITED" || "APPLIED",
+ * //   UpdatedAt: new Date("TIMESTAMP"),
+ * //   AssociationStatus: "PENDING" || "SUCCESS" || "FAILED",
+ * //   AssociationStatusMessage: "STRING_VALUE",
+ * // };
+ *
+ * ```
+ *
+ * @param GetConfigurationPolicyAssociationCommandInput - {@link GetConfigurationPolicyAssociationCommandInput}
+ * @returns {@link GetConfigurationPolicyAssociationCommandOutput}
+ * @see {@link GetConfigurationPolicyAssociationCommandInput} for command's `input` shape.
+ * @see {@link GetConfigurationPolicyAssociationCommandOutput} for command's `response` shape.
+ * @see {@link SecurityHubClientResolvedConfig | config} for SecurityHubClient's `config` shape.
+ *
+ * @throws {@link AccessDeniedException} (client fault)
+ *  <p>You don't have permission to perform the action specified in the request.</p>
+ *
+ * @throws {@link InternalException} (server fault)
+ *  <p>Internal server error.</p>
+ *
+ * @throws {@link InvalidAccessException} (client fault)
+ *  <p>The account doesn't have permission to perform this action.</p>
+ *
+ * @throws {@link InvalidInputException} (client fault)
+ *  <p>The request was rejected because you supplied an invalid or out-of-range value for an
+ *          input parameter.</p>
+ *
+ * @throws {@link LimitExceededException} (client fault)
+ *  <p>The request was rejected because it attempted to create resources beyond the current Amazon Web Services
+ *          account or throttling limits. The error code describes the limit exceeded.</p>
+ *
+ * @throws {@link ResourceNotFoundException} (client fault)
+ *  <p>The request was rejected because we can't find the specified resource.</p>
+ *
+ * @throws {@link SecurityHubServiceException}
+ * <p>Base exception class for all service exceptions from SecurityHub service.</p>
+ *
+ */
+export declare class GetConfigurationPolicyAssociationCommand extends $Command<GetConfigurationPolicyAssociationCommandInput, GetConfigurationPolicyAssociationCommandOutput, SecurityHubClientResolvedConfig> {
+    readonly input: GetConfigurationPolicyAssociationCommandInput;
+    static getEndpointParameterInstructions(): EndpointParameterInstructions;
+    /**
+     * @public
+     */
+    constructor(input: GetConfigurationPolicyAssociationCommandInput);
+    /**
+     * @internal
+     */
+    resolveMiddleware(clientStack: MiddlewareStack<ServiceInputTypes, ServiceOutputTypes>, configuration: SecurityHubClientResolvedConfig, options?: __HttpHandlerOptions): Handler<GetConfigurationPolicyAssociationCommandInput, GetConfigurationPolicyAssociationCommandOutput>;
+    /**
+     * @internal
+     */
+    private serialize;
+    /**
+     * @internal
+     */
+    private deserialize;
+}