@aws-sdk/client-securityhub 3.458.0 → 3.460.0

package/dist-types/commands/StartConfigurationPolicyAssociationCommand.d.ts

@@ -0,0 +1,133 @@
+import { EndpointParameterInstructions } from "@smithy/middleware-endpoint";
+import { Command as $Command } from "@smithy/smithy-client";
+import { Handler, HttpHandlerOptions as __HttpHandlerOptions, MetadataBearer as __MetadataBearer, MiddlewareStack } from "@smithy/types";
+import { StartConfigurationPolicyAssociationRequest, StartConfigurationPolicyAssociationResponse } from "../models/models_2";
+import { SecurityHubClientResolvedConfig, ServiceInputTypes, ServiceOutputTypes } from "../SecurityHubClient";
+/**
+ * @public
+ */
+export { __MetadataBearer, $Command };
+/**
+ * @public
+ *
+ * The input for {@link StartConfigurationPolicyAssociationCommand}.
+ */
+export interface StartConfigurationPolicyAssociationCommandInput extends StartConfigurationPolicyAssociationRequest {
+}
+/**
+ * @public
+ *
+ * The output of {@link StartConfigurationPolicyAssociationCommand}.
+ */
+export interface StartConfigurationPolicyAssociationCommandOutput extends StartConfigurationPolicyAssociationResponse, __MetadataBearer {
+}
+/**
+ * @public
+ * <p>
+ *             Associates a target account, organizational unit, or the root with a specified configuration. The target can be
+ *             associated with a configuration policy or self-managed behavior. Only the Security Hub delegated administrator can
+ *             invoke this operation from the home Region.
+ *         </p>
+ * @example
+ * Use a bare-bones client and the command you need to make an API call.
+ * ```javascript
+ * import { SecurityHubClient, StartConfigurationPolicyAssociationCommand } from "@aws-sdk/client-securityhub"; // ES Modules import
+ * // const { SecurityHubClient, StartConfigurationPolicyAssociationCommand } = require("@aws-sdk/client-securityhub"); // CommonJS import
+ * const client = new SecurityHubClient(config);
+ * const input = { // StartConfigurationPolicyAssociationRequest
+ *   ConfigurationPolicyIdentifier: "STRING_VALUE", // required
+ *   Target: { // Target Union: only one key present
+ *     AccountId: "STRING_VALUE",
+ *     OrganizationalUnitId: "STRING_VALUE",
+ *     RootId: "STRING_VALUE",
+ *   },
+ * };
+ * const command = new StartConfigurationPolicyAssociationCommand(input);
+ * const response = await client.send(command);
+ * // { // StartConfigurationPolicyAssociationResponse
+ * //   ConfigurationPolicyId: "STRING_VALUE",
+ * //   TargetId: "STRING_VALUE",
+ * //   TargetType: "ACCOUNT" || "ORGANIZATIONAL_UNIT",
+ * //   AssociationType: "INHERITED" || "APPLIED",
+ * //   UpdatedAt: new Date("TIMESTAMP"),
+ * //   AssociationStatus: "PENDING" || "SUCCESS" || "FAILED",
+ * //   AssociationStatusMessage: "STRING_VALUE",
+ * // };
+ *
+ * ```
+ *
+ * @param StartConfigurationPolicyAssociationCommandInput - {@link StartConfigurationPolicyAssociationCommandInput}
+ * @returns {@link StartConfigurationPolicyAssociationCommandOutput}
+ * @see {@link StartConfigurationPolicyAssociationCommandInput} for command's `input` shape.
+ * @see {@link StartConfigurationPolicyAssociationCommandOutput} for command's `response` shape.
+ * @see {@link SecurityHubClientResolvedConfig | config} for SecurityHubClient's `config` shape.
+ *
+ * @throws {@link AccessDeniedException} (client fault)
+ *  <p>You don't have permission to perform the action specified in the request.</p>
+ *
+ * @throws {@link InternalException} (server fault)
+ *  <p>Internal server error.</p>
+ *
+ * @throws {@link InvalidAccessException} (client fault)
+ *  <p>The account doesn't have permission to perform this action.</p>
+ *
+ * @throws {@link InvalidInputException} (client fault)
+ *  <p>The request was rejected because you supplied an invalid or out-of-range value for an
+ *          input parameter.</p>
+ *
+ * @throws {@link LimitExceededException} (client fault)
+ *  <p>The request was rejected because it attempted to create resources beyond the current Amazon Web Services
+ *          account or throttling limits. The error code describes the limit exceeded.</p>
+ *
+ * @throws {@link ResourceNotFoundException} (client fault)
+ *  <p>The request was rejected because we can't find the specified resource.</p>
+ *
+ * @throws {@link SecurityHubServiceException}
+ * <p>Base exception class for all service exceptions from SecurityHub service.</p>
+ *
+ * @example To associate a configuration with a target
+ * ```javascript
+ * // This operation associates a configuration policy or self-managed behavior with the target account, organizational unit, or the root.
+ * const input = {
+ *   "ConfigurationPolicyIdentifier": "arn:aws:securityhub:us-east-1:123456789012:configuration-policy/a1b2c3d4-5678-90ab-cdef-EXAMPLE11111",
+ *   "Target": {
+ *     "AccountId": "111122223333"
+ *   }
+ * };
+ * const command = new StartConfigurationPolicyAssociationCommand(input);
+ * const response = await client.send(command);
+ * /* response ==
+ * {
+ *   "AssociationStatus": "SUCCESS",
+ *   "AssociationStatusMessage": "This field is populated only if the association fails",
+ *   "AssociationType": "APPLIED",
+ *   "ConfigurationPolicyId": "a1b2c3d4-5678-90ab-cdef-EXAMPLE11111",
+ *   "TargetId": "111122223333",
+ *   "TargetType": "ACCOUNT",
+ *   "UpdatedAt": "2023-01-11T06:17:17.154Z"
+ * }
+ * *\/
+ * // example id: to-associate-a-configuration-with-a-target-1695176455638
+ * ```
+ *
+ */
+export declare class StartConfigurationPolicyAssociationCommand extends $Command<StartConfigurationPolicyAssociationCommandInput, StartConfigurationPolicyAssociationCommandOutput, SecurityHubClientResolvedConfig> {
+    readonly input: StartConfigurationPolicyAssociationCommandInput;
+    static getEndpointParameterInstructions(): EndpointParameterInstructions;
+    /**
+     * @public
+     */
+    constructor(input: StartConfigurationPolicyAssociationCommandInput);
+    /**
+     * @internal
+     */
+    resolveMiddleware(clientStack: MiddlewareStack<ServiceInputTypes, ServiceOutputTypes>, configuration: SecurityHubClientResolvedConfig, options?: __HttpHandlerOptions): Handler<StartConfigurationPolicyAssociationCommandInput, StartConfigurationPolicyAssociationCommandOutput>;
+    /**
+     * @internal
+     */
+    private serialize;
+    /**
+     * @internal
+     */
+    private deserialize;
+}

package/dist-types/commands/StartConfigurationPolicyDisassociationCommand.d.ts

@@ -0,0 +1,116 @@
+import { EndpointParameterInstructions } from "@smithy/middleware-endpoint";
+import { Command as $Command } from "@smithy/smithy-client";
+import { Handler, HttpHandlerOptions as __HttpHandlerOptions, MetadataBearer as __MetadataBearer, MiddlewareStack } from "@smithy/types";
+import { StartConfigurationPolicyDisassociationRequest, StartConfigurationPolicyDisassociationResponse } from "../models/models_2";
+import { SecurityHubClientResolvedConfig, ServiceInputTypes, ServiceOutputTypes } from "../SecurityHubClient";
+/**
+ * @public
+ */
+export { __MetadataBearer, $Command };
+/**
+ * @public
+ *
+ * The input for {@link StartConfigurationPolicyDisassociationCommand}.
+ */
+export interface StartConfigurationPolicyDisassociationCommandInput extends StartConfigurationPolicyDisassociationRequest {
+}
+/**
+ * @public
+ *
+ * The output of {@link StartConfigurationPolicyDisassociationCommand}.
+ */
+export interface StartConfigurationPolicyDisassociationCommandOutput extends StartConfigurationPolicyDisassociationResponse, __MetadataBearer {
+}
+/**
+ * @public
+ * <p>
+ *             Disassociates a target account, organizational unit, or the root from a specified configuration. When you
+ *             disassociate a configuration from its target, the target inherits the configuration of the closest parent. If there’s no
+ *             configuration to inherit, the target retains its settings but becomes a self-managed account. A target can be disassociated from
+ *             a configuration policy or self-managed behavior. Only the Security Hub delegated administrator can invoke this
+ *             operation from the home Region.
+ *         </p>
+ * @example
+ * Use a bare-bones client and the command you need to make an API call.
+ * ```javascript
+ * import { SecurityHubClient, StartConfigurationPolicyDisassociationCommand } from "@aws-sdk/client-securityhub"; // ES Modules import
+ * // const { SecurityHubClient, StartConfigurationPolicyDisassociationCommand } = require("@aws-sdk/client-securityhub"); // CommonJS import
+ * const client = new SecurityHubClient(config);
+ * const input = { // StartConfigurationPolicyDisassociationRequest
+ *   Target: { // Target Union: only one key present
+ *     AccountId: "STRING_VALUE",
+ *     OrganizationalUnitId: "STRING_VALUE",
+ *     RootId: "STRING_VALUE",
+ *   },
+ *   ConfigurationPolicyIdentifier: "STRING_VALUE", // required
+ * };
+ * const command = new StartConfigurationPolicyDisassociationCommand(input);
+ * const response = await client.send(command);
+ * // {};
+ *
+ * ```
+ *
+ * @param StartConfigurationPolicyDisassociationCommandInput - {@link StartConfigurationPolicyDisassociationCommandInput}
+ * @returns {@link StartConfigurationPolicyDisassociationCommandOutput}
+ * @see {@link StartConfigurationPolicyDisassociationCommandInput} for command's `input` shape.
+ * @see {@link StartConfigurationPolicyDisassociationCommandOutput} for command's `response` shape.
+ * @see {@link SecurityHubClientResolvedConfig | config} for SecurityHubClient's `config` shape.
+ *
+ * @throws {@link AccessDeniedException} (client fault)
+ *  <p>You don't have permission to perform the action specified in the request.</p>
+ *
+ * @throws {@link InternalException} (server fault)
+ *  <p>Internal server error.</p>
+ *
+ * @throws {@link InvalidAccessException} (client fault)
+ *  <p>The account doesn't have permission to perform this action.</p>
+ *
+ * @throws {@link InvalidInputException} (client fault)
+ *  <p>The request was rejected because you supplied an invalid or out-of-range value for an
+ *          input parameter.</p>
+ *
+ * @throws {@link LimitExceededException} (client fault)
+ *  <p>The request was rejected because it attempted to create resources beyond the current Amazon Web Services
+ *          account or throttling limits. The error code describes the limit exceeded.</p>
+ *
+ * @throws {@link ResourceNotFoundException} (client fault)
+ *  <p>The request was rejected because we can't find the specified resource.</p>
+ *
+ * @throws {@link SecurityHubServiceException}
+ * <p>Base exception class for all service exceptions from SecurityHub service.</p>
+ *
+ * @example To disassociate a configuration from a target
+ * ```javascript
+ * // This operation disassociates a configuration policy or self-managed behavior from the target account, organizational unit, or the root.
+ * const input = {
+ *   "ConfigurationPolicyIdentifier": "SELF_MANAGED_SECURITY_HUB",
+ *   "Target": {
+ *     "RootId": "r-f6g7h8i9j0example"
+ *   }
+ * };
+ * const command = new StartConfigurationPolicyDisassociationCommand(input);
+ * await client.send(command);
+ * // example id: to-disassociate-a-configuration-from-a-target-1695177176748
+ * ```
+ *
+ */
+export declare class StartConfigurationPolicyDisassociationCommand extends $Command<StartConfigurationPolicyDisassociationCommandInput, StartConfigurationPolicyDisassociationCommandOutput, SecurityHubClientResolvedConfig> {
+    readonly input: StartConfigurationPolicyDisassociationCommandInput;
+    static getEndpointParameterInstructions(): EndpointParameterInstructions;
+    /**
+     * @public
+     */
+    constructor(input: StartConfigurationPolicyDisassociationCommandInput);
+    /**
+     * @internal
+     */
+    resolveMiddleware(clientStack: MiddlewareStack<ServiceInputTypes, ServiceOutputTypes>, configuration: SecurityHubClientResolvedConfig, options?: __HttpHandlerOptions): Handler<StartConfigurationPolicyDisassociationCommandInput, StartConfigurationPolicyDisassociationCommandOutput>;
+    /**
+     * @internal
+     */
+    private serialize;
+    /**
+     * @internal
+     */
+    private deserialize;
+}

package/dist-types/commands/UpdateConfigurationPolicyCommand.d.ts

@@ -0,0 +1,271 @@
+import { EndpointParameterInstructions } from "@smithy/middleware-endpoint";
+import { Command as $Command } from "@smithy/smithy-client";
+import { Handler, HttpHandlerOptions as __HttpHandlerOptions, MetadataBearer as __MetadataBearer, MiddlewareStack } from "@smithy/types";
+import { UpdateConfigurationPolicyRequest, UpdateConfigurationPolicyResponse } from "../models/models_2";
+import { SecurityHubClientResolvedConfig, ServiceInputTypes, ServiceOutputTypes } from "../SecurityHubClient";
+/**
+ * @public
+ */
+export { __MetadataBearer, $Command };
+/**
+ * @public
+ *
+ * The input for {@link UpdateConfigurationPolicyCommand}.
+ */
+export interface UpdateConfigurationPolicyCommandInput extends UpdateConfigurationPolicyRequest {
+}
+/**
+ * @public
+ *
+ * The output of {@link UpdateConfigurationPolicyCommand}.
+ */
+export interface UpdateConfigurationPolicyCommandOutput extends UpdateConfigurationPolicyResponse, __MetadataBearer {
+}
+/**
+ * @public
+ * <p>
+ *             Updates a configuration policy. Only the Security Hub delegated
+ *             administrator can invoke this operation from the home Region.
+ *         </p>
+ * @example
+ * Use a bare-bones client and the command you need to make an API call.
+ * ```javascript
+ * import { SecurityHubClient, UpdateConfigurationPolicyCommand } from "@aws-sdk/client-securityhub"; // ES Modules import
+ * // const { SecurityHubClient, UpdateConfigurationPolicyCommand } = require("@aws-sdk/client-securityhub"); // CommonJS import
+ * const client = new SecurityHubClient(config);
+ * const input = { // UpdateConfigurationPolicyRequest
+ *   Identifier: "STRING_VALUE", // required
+ *   Name: "STRING_VALUE",
+ *   Description: "STRING_VALUE",
+ *   UpdatedReason: "STRING_VALUE",
+ *   ConfigurationPolicy: { // Policy Union: only one key present
+ *     SecurityHub: { // SecurityHubPolicy
+ *       ServiceEnabled: true || false,
+ *       EnabledStandardIdentifiers: [ // EnabledStandardIdentifierList
+ *         "STRING_VALUE",
+ *       ],
+ *       SecurityControlsConfiguration: { // SecurityControlsConfiguration
+ *         EnabledSecurityControlIdentifiers: [ // EnabledSecurityControlIdentifierList
+ *           "STRING_VALUE",
+ *         ],
+ *         DisabledSecurityControlIdentifiers: [ // DisabledSecurityControlIdentifierList
+ *           "STRING_VALUE",
+ *         ],
+ *         SecurityControlCustomParameters: [ // SecurityControlCustomParametersList
+ *           { // SecurityControlCustomParameter
+ *             SecurityControlId: "STRING_VALUE",
+ *             Parameters: { // Parameters
+ *               "<keys>": { // ParameterConfiguration
+ *                 ValueType: "DEFAULT" || "CUSTOM", // required
+ *                 Value: { // ParameterValue Union: only one key present
+ *                   Integer: Number("int"),
+ *                   IntegerList: [ // IntegerList
+ *                     Number("int"),
+ *                   ],
+ *                   Double: Number("double"),
+ *                   String: "STRING_VALUE",
+ *                   StringList: [ // StringList
+ *                     "STRING_VALUE",
+ *                   ],
+ *                   Boolean: true || false,
+ *                   Enum: "STRING_VALUE",
+ *                   EnumList: [
+ *                     "STRING_VALUE",
+ *                   ],
+ *                 },
+ *               },
+ *             },
+ *           },
+ *         ],
+ *       },
+ *     },
+ *   },
+ * };
+ * const command = new UpdateConfigurationPolicyCommand(input);
+ * const response = await client.send(command);
+ * // { // UpdateConfigurationPolicyResponse
+ * //   Arn: "STRING_VALUE",
+ * //   Id: "STRING_VALUE",
+ * //   Name: "STRING_VALUE",
+ * //   Description: "STRING_VALUE",
+ * //   UpdatedAt: new Date("TIMESTAMP"),
+ * //   CreatedAt: new Date("TIMESTAMP"),
+ * //   ConfigurationPolicy: { // Policy Union: only one key present
+ * //     SecurityHub: { // SecurityHubPolicy
+ * //       ServiceEnabled: true || false,
+ * //       EnabledStandardIdentifiers: [ // EnabledStandardIdentifierList
+ * //         "STRING_VALUE",
+ * //       ],
+ * //       SecurityControlsConfiguration: { // SecurityControlsConfiguration
+ * //         EnabledSecurityControlIdentifiers: [ // EnabledSecurityControlIdentifierList
+ * //           "STRING_VALUE",
+ * //         ],
+ * //         DisabledSecurityControlIdentifiers: [ // DisabledSecurityControlIdentifierList
+ * //           "STRING_VALUE",
+ * //         ],
+ * //         SecurityControlCustomParameters: [ // SecurityControlCustomParametersList
+ * //           { // SecurityControlCustomParameter
+ * //             SecurityControlId: "STRING_VALUE",
+ * //             Parameters: { // Parameters
+ * //               "<keys>": { // ParameterConfiguration
+ * //                 ValueType: "DEFAULT" || "CUSTOM", // required
+ * //                 Value: { // ParameterValue Union: only one key present
+ * //                   Integer: Number("int"),
+ * //                   IntegerList: [ // IntegerList
+ * //                     Number("int"),
+ * //                   ],
+ * //                   Double: Number("double"),
+ * //                   String: "STRING_VALUE",
+ * //                   StringList: [ // StringList
+ * //                     "STRING_VALUE",
+ * //                   ],
+ * //                   Boolean: true || false,
+ * //                   Enum: "STRING_VALUE",
+ * //                   EnumList: [
+ * //                     "STRING_VALUE",
+ * //                   ],
+ * //                 },
+ * //               },
+ * //             },
+ * //           },
+ * //         ],
+ * //       },
+ * //     },
+ * //   },
+ * // };
+ *
+ * ```
+ *
+ * @param UpdateConfigurationPolicyCommandInput - {@link UpdateConfigurationPolicyCommandInput}
+ * @returns {@link UpdateConfigurationPolicyCommandOutput}
+ * @see {@link UpdateConfigurationPolicyCommandInput} for command's `input` shape.
+ * @see {@link UpdateConfigurationPolicyCommandOutput} for command's `response` shape.
+ * @see {@link SecurityHubClientResolvedConfig | config} for SecurityHubClient's `config` shape.
+ *
+ * @throws {@link AccessDeniedException} (client fault)
+ *  <p>You don't have permission to perform the action specified in the request.</p>
+ *
+ * @throws {@link InternalException} (server fault)
+ *  <p>Internal server error.</p>
+ *
+ * @throws {@link InvalidAccessException} (client fault)
+ *  <p>The account doesn't have permission to perform this action.</p>
+ *
+ * @throws {@link InvalidInputException} (client fault)
+ *  <p>The request was rejected because you supplied an invalid or out-of-range value for an
+ *          input parameter.</p>
+ *
+ * @throws {@link LimitExceededException} (client fault)
+ *  <p>The request was rejected because it attempted to create resources beyond the current Amazon Web Services
+ *          account or throttling limits. The error code describes the limit exceeded.</p>
+ *
+ * @throws {@link ResourceConflictException} (client fault)
+ *  <p>The resource specified in the request conflicts with an existing resource.</p>
+ *
+ * @throws {@link ResourceNotFoundException} (client fault)
+ *  <p>The request was rejected because we can't find the specified resource.</p>
+ *
+ * @throws {@link SecurityHubServiceException}
+ * <p>Base exception class for all service exceptions from SecurityHub service.</p>
+ *
+ * @example To update a configuration policy
+ * ```javascript
+ * // This operation updates the specified configuration policy.
+ * const input = {
+ *   "ConfigurationPolicy": {
+ *     "SecurityHub": {
+ *       "EnabledStandardIdentifiers": [
+ *         "arn:aws:securityhub:us-east-1::standards/aws-foundational-security-best-practices/v/1.0.0",
+ *         "arn:aws:securityhub:::ruleset/cis-aws-foundations-benchmark/v/1.2.0"
+ *       ],
+ *       "SecurityControlsConfiguration": {
+ *         "DisabledSecurityControlIdentifiers": [
+ *           "CloudWatch.1",
+ *           "CloudWatch.2"
+ *         ],
+ *         "SecurityControlCustomParameters": [
+ *           {
+ *             "Parameters": {
+ *               "daysToExpiration": {
+ *                 "Value": {
+ *                   "Integer": 21
+ *                 },
+ *                 "ValueType": "CUSTOM"
+ *               }
+ *             },
+ *             "SecurityControlId": "ACM.1"
+ *           }
+ *         ]
+ *       },
+ *       "ServiceEnabled": true
+ *     }
+ *   },
+ *   "Description": "Updated configuration policy for testing FSBP and CIS",
+ *   "Identifier": "arn:aws:securityhub:us-east-1:123456789012:configuration-policy/a1b2c3d4-5678-90ab-cdef-EXAMPLE11111",
+ *   "Name": "TestConfigurationPolicy",
+ *   "UpdatedReason": "Enabling ACM.2"
+ * };
+ * const command = new UpdateConfigurationPolicyCommand(input);
+ * const response = await client.send(command);
+ * /* response ==
+ * {
+ *   "Arn": "arn:aws:securityhub:us-east-1:123456789012:configuration-policy/a1b2c3d4-5678-90ab-cdef-EXAMPLE11111",
+ *   "ConfigurationPolicy": {
+ *     "SecurityHub": {
+ *       "EnabledStandardIdentifiers": [
+ *         "arn:aws:securityhub:us-east-1::standards/aws-foundational-security-best-practices/v/1.0.0",
+ *         "arn:aws:securityhub:::ruleset/cis-aws-foundations-benchmark/v/1.2.0"
+ *       ],
+ *       "SecurityControlsConfiguration": {
+ *         "DisabledSecurityControlIdentifiers": [
+ *           "CloudWatch.1",
+ *           "CloudWatch.2"
+ *         ],
+ *         "SecurityControlCustomParameters": [
+ *           {
+ *             "Parameters": {
+ *               "daysToExpiration": {
+ *                 "Value": {
+ *                   "Integer": 21
+ *                 },
+ *                 "ValueType": "CUSTOM"
+ *               }
+ *             },
+ *             "SecurityControlId": "ACM.1"
+ *           }
+ *         ]
+ *       },
+ *       "ServiceEnabled": true
+ *     }
+ *   },
+ *   "CreatedAt": "2023-01-11T06:17:17.154Z",
+ *   "Description": "Updated configuration policy for testing FSBP and CIS",
+ *   "Id": "a1b2c3d4-5678-90ab-cdef-EXAMPLE11111",
+ *   "Name": "TestConfigurationPolicy",
+ *   "UpdatedAt": "2023-01-12T06:17:17.154Z"
+ * }
+ * *\/
+ * // example id: to-update-a-configuration-policy-1695174120555
+ * ```
+ *
+ */
+export declare class UpdateConfigurationPolicyCommand extends $Command<UpdateConfigurationPolicyCommandInput, UpdateConfigurationPolicyCommandOutput, SecurityHubClientResolvedConfig> {
+    readonly input: UpdateConfigurationPolicyCommandInput;
+    static getEndpointParameterInstructions(): EndpointParameterInstructions;
+    /**
+     * @public
+     */
+    constructor(input: UpdateConfigurationPolicyCommandInput);
+    /**
+     * @internal
+     */
+    resolveMiddleware(clientStack: MiddlewareStack<ServiceInputTypes, ServiceOutputTypes>, configuration: SecurityHubClientResolvedConfig, options?: __HttpHandlerOptions): Handler<UpdateConfigurationPolicyCommandInput, UpdateConfigurationPolicyCommandOutput>;
+    /**
+     * @internal
+     */
+    private serialize;
+    /**
+     * @internal
+     */
+    private deserialize;
+}

package/dist-types/commands/UpdateFindingsCommand.d.ts

@@ -300,6 +300,9 @@ export interface UpdateFindingsCommandOutput extends UpdateFindingsResponse, __M
  *     VulnerabilitiesFixAvailable: "<StringFilterList>",
  *     ComplianceSecurityControlParametersName: "<StringFilterList>",
  *     ComplianceSecurityControlParametersValue: "<StringFilterList>",
+ *     AwsAccountName: "<StringFilterList>",
+ *     ResourceApplicationName: "<StringFilterList>",
+ *     ResourceApplicationArn: "<StringFilterList>",
  *   },
  *   Note: { // NoteUpdate
  *     Text: "STRING_VALUE", // required

package/dist-types/commands/UpdateInsightCommand.d.ts

@@ -297,6 +297,9 @@ export interface UpdateInsightCommandOutput extends UpdateInsightResponse, __Met
  *     VulnerabilitiesFixAvailable: "<StringFilterList>",
  *     ComplianceSecurityControlParametersName: "<StringFilterList>",
  *     ComplianceSecurityControlParametersValue: "<StringFilterList>",
+ *     AwsAccountName: "<StringFilterList>",
+ *     ResourceApplicationName: "<StringFilterList>",
+ *     ResourceApplicationArn: "<StringFilterList>",
  *   },
  *   GroupByAttribute: "STRING_VALUE",
  * };

package/dist-types/commands/UpdateOrganizationConfigurationCommand.d.ts

@@ -23,8 +23,8 @@ export interface UpdateOrganizationConfigurationCommandOutput extends UpdateOrga
 }
 /**
  * @public
- * <p>Used to update the configuration related to Organizations. Can only be called from a
- *          Security Hub administrator account.</p>
+ * <p>Updates the configuration of your organization in Security Hub. Only the
+ *          Security Hub administrator account can invoke this operation.</p>
  * @example
  * Use a bare-bones client and the command you need to make an API call.
  * ```javascript
@@ -34,6 +34,11 @@ export interface UpdateOrganizationConfigurationCommandOutput extends UpdateOrga
  * const input = { // UpdateOrganizationConfigurationRequest
  *   AutoEnable: true || false, // required
  *   AutoEnableStandards: "NONE" || "DEFAULT",
+ *   OrganizationConfiguration: { // OrganizationConfiguration
+ *     ConfigurationType: "CENTRAL" || "LOCAL",
+ *     Status: "PENDING" || "ENABLED" || "FAILED",
+ *     StatusMessage: "STRING_VALUE",
+ *   },
  * };
  * const command = new UpdateOrganizationConfigurationCommand(input);
  * const response = await client.send(command);
@@ -47,6 +52,9 @@ export interface UpdateOrganizationConfigurationCommandOutput extends UpdateOrga
  * @see {@link UpdateOrganizationConfigurationCommandOutput} for command's `response` shape.
  * @see {@link SecurityHubClientResolvedConfig | config} for SecurityHubClient's `config` shape.
  *
+ * @throws {@link AccessDeniedException} (client fault)
+ *  <p>You don't have permission to perform the action specified in the request.</p>
+ *
  * @throws {@link InternalException} (server fault)
  *  <p>Internal server error.</p>
  *
@@ -61,6 +69,12 @@ export interface UpdateOrganizationConfigurationCommandOutput extends UpdateOrga
  *  <p>The request was rejected because it attempted to create resources beyond the current Amazon Web Services
  *          account or throttling limits. The error code describes the limit exceeded.</p>
  *
+ * @throws {@link ResourceConflictException} (client fault)
+ *  <p>The resource specified in the request conflicts with an existing resource.</p>
+ *
+ * @throws {@link ResourceNotFoundException} (client fault)
+ *  <p>The request was rejected because we can't find the specified resource.</p>
+ *
  * @throws {@link SecurityHubServiceException}
  * <p>Base exception class for all service exceptions from SecurityHub service.</p>
  *

package/dist-types/commands/UpdateSecurityControlCommand.d.ts

@@ -69,6 +69,9 @@ export interface UpdateSecurityControlCommandOutput extends UpdateSecurityContro
  * @see {@link UpdateSecurityControlCommandOutput} for command's `response` shape.
  * @see {@link SecurityHubClientResolvedConfig | config} for SecurityHubClient's `config` shape.
  *
+ * @throws {@link AccessDeniedException} (client fault)
+ *  <p>You don't have permission to perform the action specified in the request.</p>
+ *
  * @throws {@link InternalException} (server fault)
  *  <p>Internal server error.</p>
  *
@@ -95,6 +98,26 @@ export interface UpdateSecurityControlCommandOutput extends UpdateSecurityContro
  * @throws {@link SecurityHubServiceException}
  * <p>Base exception class for all service exceptions from SecurityHub service.</p>
  *
+ * @example To update security control properties
+ * ```javascript
+ * // The following example updates the specified security control. Specifically, this example updates control parameters.
+ * const input = {
+ *   "LastUpdateReason": "Comply with internal requirements",
+ *   "Parameters": {
+ *     "maxCredentialUsageAge": {
+ *       "Value": {
+ *         "Integer": 15
+ *       },
+ *       "ValueType": "CUSTOM"
+ *     }
+ *   },
+ *   "SecurityControlId": "ACM.1"
+ * };
+ * const command = new UpdateSecurityControlCommand(input);
+ * await client.send(command);
+ * // example id: to-update-security-control-properties-1699282942434
+ * ```
+ *
  */
 export declare class UpdateSecurityControlCommand extends $Command<UpdateSecurityControlCommandInput, UpdateSecurityControlCommandOutput, SecurityHubClientResolvedConfig> {
     readonly input: UpdateSecurityControlCommandInput;

package/dist-types/commands/UpdateSecurityHubConfigurationCommand.d.ts

@@ -46,6 +46,9 @@ export interface UpdateSecurityHubConfigurationCommandOutput extends UpdateSecur
  * @see {@link UpdateSecurityHubConfigurationCommandOutput} for command's `response` shape.
  * @see {@link SecurityHubClientResolvedConfig | config} for SecurityHubClient's `config` shape.
  *
+ * @throws {@link AccessDeniedException} (client fault)
+ *  <p>You don't have permission to perform the action specified in the request.</p>
+ *
  * @throws {@link InternalException} (server fault)
  *  <p>Internal server error.</p>
  *

package/dist-types/commands/UpdateStandardsControlCommand.d.ts

@@ -48,6 +48,9 @@ export interface UpdateStandardsControlCommandOutput extends UpdateStandardsCont
  * @see {@link UpdateStandardsControlCommandOutput} for command's `response` shape.
  * @see {@link SecurityHubClientResolvedConfig | config} for SecurityHubClient's `config` shape.
  *
+ * @throws {@link AccessDeniedException} (client fault)
+ *  <p>You don't have permission to perform the action specified in the request.</p>
+ *
  * @throws {@link InternalException} (server fault)
  *  <p>Internal server error.</p>
  *