@aws-sdk/client-securityhub 3.458.0 → 3.460.0

package/dist-es/protocols/Aws_restJson1.js

@@ -2,7 +2,7 @@ import { awsExpectUnion as __expectUnion } from "@aws-sdk/core";
 import { HttpRequest as __HttpRequest } from "@smithy/protocol-http";
 import { _json, collectBody, decorateServiceException as __decorateServiceException, expectBoolean as __expectBoolean, expectInt32 as __expectInt32, expectLong as __expectLong, expectNonNull as __expectNonNull, expectObject as __expectObject, expectString as __expectString, limitedParseDouble as __limitedParseDouble, map, parseRfc3339DateTimeWithOffset as __parseRfc3339DateTimeWithOffset, resolvedPath as __resolvedPath, serializeFloat as __serializeFloat, take, withBaseException, } from "@smithy/smithy-client";
 import { AccessDeniedException, InternalException, InvalidAccessException, InvalidInputException, LimitExceededException, ResourceNotFoundException, } from "../models/models_0";
-import { ParameterValue, ResourceConflictException, ResourceInUseException, } from "../models/models_2";
+import { ParameterValue, Policy, ResourceConflictException, ResourceInUseException, } from "../models/models_2";
 import { SecurityHubServiceException as __BaseException } from "../models/SecurityHubServiceException";
 export const se_AcceptAdministratorInvitationCommand = async (input, context) => {
     const { hostname, protocol = "https", port, path: basePath } = await context.endpoint();
@@ -126,6 +126,26 @@ export const se_BatchGetAutomationRulesCommand = async (input, context) => {
         body,
     });
 };
+export const se_BatchGetConfigurationPolicyAssociationsCommand = async (input, context) => {
+    const { hostname, protocol = "https", port, path: basePath } = await context.endpoint();
+    const headers = {
+        "content-type": "application/json",
+    };
+    const resolvedPath = `${basePath?.endsWith("/") ? basePath.slice(0, -1) : basePath || ""}` + "/configurationPolicyAssociation/batchget";
+    let body;
+    body = JSON.stringify(take(input, {
+        ConfigurationPolicyAssociationIdentifiers: (_) => _json(_),
+    }));
+    return new __HttpRequest({
+        protocol,
+        hostname,
+        port,
+        method: "POST",
+        headers,
+        path: resolvedPath,
+        body,
+    });
+};
 export const se_BatchGetSecurityControlsCommand = async (input, context) => {
     const { hostname, protocol = "https", port, path: basePath } = await context.endpoint();
     const headers = {
@@ -304,6 +324,29 @@ export const se_CreateAutomationRuleCommand = async (input, context) => {
         body,
     });
 };
+export const se_CreateConfigurationPolicyCommand = async (input, context) => {
+    const { hostname, protocol = "https", port, path: basePath } = await context.endpoint();
+    const headers = {
+        "content-type": "application/json",
+    };
+    const resolvedPath = `${basePath?.endsWith("/") ? basePath.slice(0, -1) : basePath || ""}` + "/configurationPolicy/create";
+    let body;
+    body = JSON.stringify(take(input, {
+        ConfigurationPolicy: (_) => se_Policy(_, context),
+        Description: [],
+        Name: [],
+        Tags: (_) => _json(_),
+    }));
+    return new __HttpRequest({
+        protocol,
+        hostname,
+        port,
+        method: "POST",
+        headers,
+        path: resolvedPath,
+        body,
+    });
+};
 export const se_CreateFindingAggregatorCommand = async (input, context) => {
     const { hostname, protocol = "https", port, path: basePath } = await context.endpoint();
     const headers = {
@@ -403,6 +446,22 @@ export const se_DeleteActionTargetCommand = async (input, context) => {
         body,
     });
 };
+export const se_DeleteConfigurationPolicyCommand = async (input, context) => {
+    const { hostname, protocol = "https", port, path: basePath } = await context.endpoint();
+    const headers = {};
+    let resolvedPath = `${basePath?.endsWith("/") ? basePath.slice(0, -1) : basePath || ""}` + "/configurationPolicy/{Identifier}";
+    resolvedPath = __resolvedPath(resolvedPath, input, "Identifier", () => input.Identifier, "{Identifier}", false);
+    let body;
+    return new __HttpRequest({
+        protocol,
+        hostname,
+        port,
+        method: "DELETE",
+        headers,
+        path: resolvedPath,
+        body,
+    });
+};
 export const se_DeleteFindingAggregatorCommand = async (input, context) => {
     const { hostname, protocol = "https", port, path: basePath } = await context.endpoint();
     const headers = {};
@@ -789,6 +848,42 @@ export const se_GetAdministratorAccountCommand = async (input, context) => {
         body,
     });
 };
+export const se_GetConfigurationPolicyCommand = async (input, context) => {
+    const { hostname, protocol = "https", port, path: basePath } = await context.endpoint();
+    const headers = {};
+    let resolvedPath = `${basePath?.endsWith("/") ? basePath.slice(0, -1) : basePath || ""}` + "/configurationPolicy/get/{Identifier}";
+    resolvedPath = __resolvedPath(resolvedPath, input, "Identifier", () => input.Identifier, "{Identifier}", false);
+    let body;
+    return new __HttpRequest({
+        protocol,
+        hostname,
+        port,
+        method: "GET",
+        headers,
+        path: resolvedPath,
+        body,
+    });
+};
+export const se_GetConfigurationPolicyAssociationCommand = async (input, context) => {
+    const { hostname, protocol = "https", port, path: basePath } = await context.endpoint();
+    const headers = {
+        "content-type": "application/json",
+    };
+    const resolvedPath = `${basePath?.endsWith("/") ? basePath.slice(0, -1) : basePath || ""}` + "/configurationPolicyAssociation/get";
+    let body;
+    body = JSON.stringify(take(input, {
+        Target: (_) => _json(_),
+    }));
+    return new __HttpRequest({
+        protocol,
+        hostname,
+        port,
+        method: "POST",
+        headers,
+        path: resolvedPath,
+        body,
+    });
+};
 export const se_GetEnabledStandardsCommand = async (input, context) => {
     const { hostname, protocol = "https", port, path: basePath } = await context.endpoint();
     const headers = {
@@ -1028,6 +1123,48 @@ export const se_ListAutomationRulesCommand = async (input, context) => {
         body,
     });
 };
+export const se_ListConfigurationPoliciesCommand = async (input, context) => {
+    const { hostname, protocol = "https", port, path: basePath } = await context.endpoint();
+    const headers = {};
+    const resolvedPath = `${basePath?.endsWith("/") ? basePath.slice(0, -1) : basePath || ""}` + "/configurationPolicy/list";
+    const query = map({
+        NextToken: [, input.NextToken],
+        MaxResults: [() => input.MaxResults !== void 0, () => input.MaxResults.toString()],
+    });
+    let body;
+    return new __HttpRequest({
+        protocol,
+        hostname,
+        port,
+        method: "GET",
+        headers,
+        path: resolvedPath,
+        query,
+        body,
+    });
+};
+export const se_ListConfigurationPolicyAssociationsCommand = async (input, context) => {
+    const { hostname, protocol = "https", port, path: basePath } = await context.endpoint();
+    const headers = {
+        "content-type": "application/json",
+    };
+    const resolvedPath = `${basePath?.endsWith("/") ? basePath.slice(0, -1) : basePath || ""}` + "/configurationPolicyAssociation/list";
+    let body;
+    body = JSON.stringify(take(input, {
+        Filters: (_) => _json(_),
+        MaxResults: [],
+        NextToken: [],
+    }));
+    return new __HttpRequest({
+        protocol,
+        hostname,
+        port,
+        method: "POST",
+        headers,
+        path: resolvedPath,
+        body,
+    });
+};
 export const se_ListEnabledProductsForImportCommand = async (input, context) => {
     const { hostname, protocol = "https", port, path: basePath } = await context.endpoint();
     const headers = {};
@@ -1187,6 +1324,49 @@ export const se_ListTagsForResourceCommand = async (input, context) => {
         body,
     });
 };
+export const se_StartConfigurationPolicyAssociationCommand = async (input, context) => {
+    const { hostname, protocol = "https", port, path: basePath } = await context.endpoint();
+    const headers = {
+        "content-type": "application/json",
+    };
+    const resolvedPath = `${basePath?.endsWith("/") ? basePath.slice(0, -1) : basePath || ""}` + "/configurationPolicyAssociation/associate";
+    let body;
+    body = JSON.stringify(take(input, {
+        ConfigurationPolicyIdentifier: [],
+        Target: (_) => _json(_),
+    }));
+    return new __HttpRequest({
+        protocol,
+        hostname,
+        port,
+        method: "POST",
+        headers,
+        path: resolvedPath,
+        body,
+    });
+};
+export const se_StartConfigurationPolicyDisassociationCommand = async (input, context) => {
+    const { hostname, protocol = "https", port, path: basePath } = await context.endpoint();
+    const headers = {
+        "content-type": "application/json",
+    };
+    const resolvedPath = `${basePath?.endsWith("/") ? basePath.slice(0, -1) : basePath || ""}` +
+        "/configurationPolicyAssociation/disassociate";
+    let body;
+    body = JSON.stringify(take(input, {
+        ConfigurationPolicyIdentifier: [],
+        Target: (_) => _json(_),
+    }));
+    return new __HttpRequest({
+        protocol,
+        hostname,
+        port,
+        method: "POST",
+        headers,
+        path: resolvedPath,
+        body,
+    });
+};
 export const se_TagResourceCommand = async (input, context) => {
     const { hostname, protocol = "https", port, path: basePath } = await context.endpoint();
     const headers = {
@@ -1253,6 +1433,30 @@ export const se_UpdateActionTargetCommand = async (input, context) => {
         body,
     });
 };
+export const se_UpdateConfigurationPolicyCommand = async (input, context) => {
+    const { hostname, protocol = "https", port, path: basePath } = await context.endpoint();
+    const headers = {
+        "content-type": "application/json",
+    };
+    let resolvedPath = `${basePath?.endsWith("/") ? basePath.slice(0, -1) : basePath || ""}` + "/configurationPolicy/{Identifier}";
+    resolvedPath = __resolvedPath(resolvedPath, input, "Identifier", () => input.Identifier, "{Identifier}", false);
+    let body;
+    body = JSON.stringify(take(input, {
+        ConfigurationPolicy: (_) => se_Policy(_, context),
+        Description: [],
+        Name: [],
+        UpdatedReason: [],
+    }));
+    return new __HttpRequest({
+        protocol,
+        hostname,
+        port,
+        method: "PATCH",
+        headers,
+        path: resolvedPath,
+        body,
+    });
+};
 export const se_UpdateFindingAggregatorCommand = async (input, context) => {
     const { hostname, protocol = "https", port, path: basePath } = await context.endpoint();
     const headers = {
@@ -1330,6 +1534,7 @@ export const se_UpdateOrganizationConfigurationCommand = async (input, context)
     body = JSON.stringify(take(input, {
         AutoEnable: [],
         AutoEnableStandards: [],
+        OrganizationConfiguration: (_) => _json(_),
     }));
     return new __HttpRequest({
         protocol,
@@ -1555,6 +1760,9 @@ const de_BatchDisableStandardsCommandError = async (output, context) => {
     };
     const errorCode = loadRestJsonErrorCode(output, parsedOutput.body);
     switch (errorCode) {
+        case "AccessDeniedException":
+        case "com.amazonaws.securityhub#AccessDeniedException":
+            throw await de_AccessDeniedExceptionRes(parsedOutput, context);
         case "InternalException":
         case "com.amazonaws.securityhub#InternalException":
             throw await de_InternalExceptionRes(parsedOutput, context);
@@ -1597,6 +1805,9 @@ const de_BatchEnableStandardsCommandError = async (output, context) => {
     };
     const errorCode = loadRestJsonErrorCode(output, parsedOutput.body);
     switch (errorCode) {
+        case "AccessDeniedException":
+        case "com.amazonaws.securityhub#AccessDeniedException":
+            throw await de_AccessDeniedExceptionRes(parsedOutput, context);
         case "InternalException":
         case "com.amazonaws.securityhub#InternalException":
             throw await de_InternalExceptionRes(parsedOutput, context);
@@ -1667,6 +1878,55 @@ const de_BatchGetAutomationRulesCommandError = async (output, context) => {
             });
     }
 };
+export const de_BatchGetConfigurationPolicyAssociationsCommand = async (output, context) => {
+    if (output.statusCode !== 200 && output.statusCode >= 300) {
+        return de_BatchGetConfigurationPolicyAssociationsCommandError(output, context);
+    }
+    const contents = map({
+        $metadata: deserializeMetadata(output),
+    });
+    const data = __expectNonNull(__expectObject(await parseBody(output.body, context)), "body");
+    const doc = take(data, {
+        ConfigurationPolicyAssociations: (_) => de_ConfigurationPolicyAssociationList(_, context),
+        UnprocessedConfigurationPolicyAssociations: _json,
+    });
+    Object.assign(contents, doc);
+    return contents;
+};
+const de_BatchGetConfigurationPolicyAssociationsCommandError = async (output, context) => {
+    const parsedOutput = {
+        ...output,
+        body: await parseErrorBody(output.body, context),
+    };
+    const errorCode = loadRestJsonErrorCode(output, parsedOutput.body);
+    switch (errorCode) {
+        case "AccessDeniedException":
+        case "com.amazonaws.securityhub#AccessDeniedException":
+            throw await de_AccessDeniedExceptionRes(parsedOutput, context);
+        case "InternalException":
+        case "com.amazonaws.securityhub#InternalException":
+            throw await de_InternalExceptionRes(parsedOutput, context);
+        case "InvalidAccessException":
+        case "com.amazonaws.securityhub#InvalidAccessException":
+            throw await de_InvalidAccessExceptionRes(parsedOutput, context);
+        case "InvalidInputException":
+        case "com.amazonaws.securityhub#InvalidInputException":
+            throw await de_InvalidInputExceptionRes(parsedOutput, context);
+        case "LimitExceededException":
+        case "com.amazonaws.securityhub#LimitExceededException":
+            throw await de_LimitExceededExceptionRes(parsedOutput, context);
+        case "ResourceNotFoundException":
+        case "com.amazonaws.securityhub#ResourceNotFoundException":
+            throw await de_ResourceNotFoundExceptionRes(parsedOutput, context);
+        default:
+            const parsedBody = parsedOutput.body;
+            return throwDefaultError({
+                output,
+                parsedBody,
+                errorCode,
+            });
+    }
+};
 export const de_BatchGetSecurityControlsCommand = async (output, context) => {
     if (output.statusCode !== 200 && output.statusCode >= 300) {
         return de_BatchGetSecurityControlsCommandError(output, context);
@@ -1907,6 +2167,9 @@ const de_BatchUpdateStandardsControlAssociationsCommandError = async (output, co
     };
     const errorCode = loadRestJsonErrorCode(output, parsedOutput.body);
     switch (errorCode) {
+        case "AccessDeniedException":
+        case "com.amazonaws.securityhub#AccessDeniedException":
+            throw await de_AccessDeniedExceptionRes(parsedOutput, context);
         case "InternalException":
         case "com.amazonaws.securityhub#InternalException":
             throw await de_InternalExceptionRes(parsedOutput, context);
@@ -2018,24 +2281,27 @@ const de_CreateAutomationRuleCommandError = async (output, context) => {
             });
     }
 };
-export const de_CreateFindingAggregatorCommand = async (output, context) => {
+export const de_CreateConfigurationPolicyCommand = async (output, context) => {
     if (output.statusCode !== 200 && output.statusCode >= 300) {
-        return de_CreateFindingAggregatorCommandError(output, context);
+        return de_CreateConfigurationPolicyCommandError(output, context);
     }
     const contents = map({
         $metadata: deserializeMetadata(output),
     });
     const data = __expectNonNull(__expectObject(await parseBody(output.body, context)), "body");
     const doc = take(data, {
-        FindingAggregationRegion: __expectString,
-        FindingAggregatorArn: __expectString,
-        RegionLinkingMode: __expectString,
-        Regions: _json,
+        Arn: __expectString,
+        ConfigurationPolicy: (_) => de_Policy(__expectUnion(_), context),
+        CreatedAt: (_) => __expectNonNull(__parseRfc3339DateTimeWithOffset(_)),
+        Description: __expectString,
+        Id: __expectString,
+        Name: __expectString,
+        UpdatedAt: (_) => __expectNonNull(__parseRfc3339DateTimeWithOffset(_)),
     });
     Object.assign(contents, doc);
     return contents;
 };
-const de_CreateFindingAggregatorCommandError = async (output, context) => {
+const de_CreateConfigurationPolicyCommandError = async (output, context) => {
     const parsedOutput = {
         ...output,
         body: await parseErrorBody(output.body, context),
@@ -2057,6 +2323,9 @@ const de_CreateFindingAggregatorCommandError = async (output, context) => {
         case "LimitExceededException":
         case "com.amazonaws.securityhub#LimitExceededException":
             throw await de_LimitExceededExceptionRes(parsedOutput, context);
+        case "ResourceConflictException":
+        case "com.amazonaws.securityhub#ResourceConflictException":
+            throw await de_ResourceConflictExceptionRes(parsedOutput, context);
         default:
             const parsedBody = parsedOutput.body;
             return throwDefaultError({
@@ -2066,27 +2335,33 @@ const de_CreateFindingAggregatorCommandError = async (output, context) => {
             });
     }
 };
-export const de_CreateInsightCommand = async (output, context) => {
+export const de_CreateFindingAggregatorCommand = async (output, context) => {
     if (output.statusCode !== 200 && output.statusCode >= 300) {
-        return de_CreateInsightCommandError(output, context);
+        return de_CreateFindingAggregatorCommandError(output, context);
     }
     const contents = map({
         $metadata: deserializeMetadata(output),
     });
     const data = __expectNonNull(__expectObject(await parseBody(output.body, context)), "body");
     const doc = take(data, {
-        InsightArn: __expectString,
+        FindingAggregationRegion: __expectString,
+        FindingAggregatorArn: __expectString,
+        RegionLinkingMode: __expectString,
+        Regions: _json,
     });
     Object.assign(contents, doc);
     return contents;
 };
-const de_CreateInsightCommandError = async (output, context) => {
+const de_CreateFindingAggregatorCommandError = async (output, context) => {
     const parsedOutput = {
         ...output,
         body: await parseErrorBody(output.body, context),
     };
     const errorCode = loadRestJsonErrorCode(output, parsedOutput.body);
     switch (errorCode) {
+        case "AccessDeniedException":
+        case "com.amazonaws.securityhub#AccessDeniedException":
+            throw await de_AccessDeniedExceptionRes(parsedOutput, context);
         case "InternalException":
         case "com.amazonaws.securityhub#InternalException":
             throw await de_InternalExceptionRes(parsedOutput, context);
@@ -2099,9 +2374,6 @@ const de_CreateInsightCommandError = async (output, context) => {
         case "LimitExceededException":
         case "com.amazonaws.securityhub#LimitExceededException":
             throw await de_LimitExceededExceptionRes(parsedOutput, context);
-        case "ResourceConflictException":
-        case "com.amazonaws.securityhub#ResourceConflictException":
-            throw await de_ResourceConflictExceptionRes(parsedOutput, context);
         default:
             const parsedBody = parsedOutput.body;
             return throwDefaultError({
@@ -2111,7 +2383,52 @@ const de_CreateInsightCommandError = async (output, context) => {
             });
     }
 };
-export const de_CreateMembersCommand = async (output, context) => {
+export const de_CreateInsightCommand = async (output, context) => {
+    if (output.statusCode !== 200 && output.statusCode >= 300) {
+        return de_CreateInsightCommandError(output, context);
+    }
+    const contents = map({
+        $metadata: deserializeMetadata(output),
+    });
+    const data = __expectNonNull(__expectObject(await parseBody(output.body, context)), "body");
+    const doc = take(data, {
+        InsightArn: __expectString,
+    });
+    Object.assign(contents, doc);
+    return contents;
+};
+const de_CreateInsightCommandError = async (output, context) => {
+    const parsedOutput = {
+        ...output,
+        body: await parseErrorBody(output.body, context),
+    };
+    const errorCode = loadRestJsonErrorCode(output, parsedOutput.body);
+    switch (errorCode) {
+        case "InternalException":
+        case "com.amazonaws.securityhub#InternalException":
+            throw await de_InternalExceptionRes(parsedOutput, context);
+        case "InvalidAccessException":
+        case "com.amazonaws.securityhub#InvalidAccessException":
+            throw await de_InvalidAccessExceptionRes(parsedOutput, context);
+        case "InvalidInputException":
+        case "com.amazonaws.securityhub#InvalidInputException":
+            throw await de_InvalidInputExceptionRes(parsedOutput, context);
+        case "LimitExceededException":
+        case "com.amazonaws.securityhub#LimitExceededException":
+            throw await de_LimitExceededExceptionRes(parsedOutput, context);
+        case "ResourceConflictException":
+        case "com.amazonaws.securityhub#ResourceConflictException":
+            throw await de_ResourceConflictExceptionRes(parsedOutput, context);
+        default:
+            const parsedBody = parsedOutput.body;
+            return throwDefaultError({
+                output,
+                parsedBody,
+                errorCode,
+            });
+    }
+};
+export const de_CreateMembersCommand = async (output, context) => {
     if (output.statusCode !== 200 && output.statusCode >= 300) {
         return de_CreateMembersCommandError(output, context);
     }
@@ -2132,6 +2449,9 @@ const de_CreateMembersCommandError = async (output, context) => {
     };
     const errorCode = loadRestJsonErrorCode(output, parsedOutput.body);
     switch (errorCode) {
+        case "AccessDeniedException":
+        case "com.amazonaws.securityhub#AccessDeniedException":
+            throw await de_AccessDeniedExceptionRes(parsedOutput, context);
         case "InternalException":
         case "com.amazonaws.securityhub#InternalException":
             throw await de_InternalExceptionRes(parsedOutput, context);
@@ -2240,6 +2560,53 @@ const de_DeleteActionTargetCommandError = async (output, context) => {
             });
     }
 };
+export const de_DeleteConfigurationPolicyCommand = async (output, context) => {
+    if (output.statusCode !== 200 && output.statusCode >= 300) {
+        return de_DeleteConfigurationPolicyCommandError(output, context);
+    }
+    const contents = map({
+        $metadata: deserializeMetadata(output),
+    });
+    await collectBody(output.body, context);
+    return contents;
+};
+const de_DeleteConfigurationPolicyCommandError = async (output, context) => {
+    const parsedOutput = {
+        ...output,
+        body: await parseErrorBody(output.body, context),
+    };
+    const errorCode = loadRestJsonErrorCode(output, parsedOutput.body);
+    switch (errorCode) {
+        case "AccessDeniedException":
+        case "com.amazonaws.securityhub#AccessDeniedException":
+            throw await de_AccessDeniedExceptionRes(parsedOutput, context);
+        case "InternalException":
+        case "com.amazonaws.securityhub#InternalException":
+            throw await de_InternalExceptionRes(parsedOutput, context);
+        case "InvalidAccessException":
+        case "com.amazonaws.securityhub#InvalidAccessException":
+            throw await de_InvalidAccessExceptionRes(parsedOutput, context);
+        case "InvalidInputException":
+        case "com.amazonaws.securityhub#InvalidInputException":
+            throw await de_InvalidInputExceptionRes(parsedOutput, context);
+        case "LimitExceededException":
+        case "com.amazonaws.securityhub#LimitExceededException":
+            throw await de_LimitExceededExceptionRes(parsedOutput, context);
+        case "ResourceConflictException":
+        case "com.amazonaws.securityhub#ResourceConflictException":
+            throw await de_ResourceConflictExceptionRes(parsedOutput, context);
+        case "ResourceNotFoundException":
+        case "com.amazonaws.securityhub#ResourceNotFoundException":
+            throw await de_ResourceNotFoundExceptionRes(parsedOutput, context);
+        default:
+            const parsedBody = parsedOutput.body;
+            return throwDefaultError({
+                output,
+                parsedBody,
+                errorCode,
+            });
+    }
+};
 export const de_DeleteFindingAggregatorCommand = async (output, context) => {
     if (output.statusCode !== 200 && output.statusCode >= 300) {
         return de_DeleteFindingAggregatorCommandError(output, context);
@@ -2522,6 +2889,7 @@ export const de_DescribeOrganizationConfigurationCommand = async (output, contex
         AutoEnable: __expectBoolean,
         AutoEnableStandards: __expectString,
         MemberAccountLimitReached: __expectBoolean,
+        OrganizationConfiguration: _json,
     });
     Object.assign(contents, doc);
     return contents;
@@ -2738,6 +3106,9 @@ const de_DisableOrganizationAdminAccountCommandError = async (output, context) =
     };
     const errorCode = loadRestJsonErrorCode(output, parsedOutput.body);
     switch (errorCode) {
+        case "AccessDeniedException":
+        case "com.amazonaws.securityhub#AccessDeniedException":
+            throw await de_AccessDeniedExceptionRes(parsedOutput, context);
         case "InternalException":
         case "com.amazonaws.securityhub#InternalException":
             throw await de_InternalExceptionRes(parsedOutput, context);
@@ -2776,6 +3147,9 @@ const de_DisableSecurityHubCommandError = async (output, context) => {
     };
     const errorCode = loadRestJsonErrorCode(output, parsedOutput.body);
     switch (errorCode) {
+        case "AccessDeniedException":
+        case "com.amazonaws.securityhub#AccessDeniedException":
+            throw await de_AccessDeniedExceptionRes(parsedOutput, context);
         case "InternalException":
         case "com.amazonaws.securityhub#InternalException":
             throw await de_InternalExceptionRes(parsedOutput, context);
@@ -2896,6 +3270,9 @@ const de_DisassociateMembersCommandError = async (output, context) => {
     };
     const errorCode = loadRestJsonErrorCode(output, parsedOutput.body);
     switch (errorCode) {
+        case "AccessDeniedException":
+        case "com.amazonaws.securityhub#AccessDeniedException":
+            throw await de_AccessDeniedExceptionRes(parsedOutput, context);
         case "InternalException":
         case "com.amazonaws.securityhub#InternalException":
             throw await de_InternalExceptionRes(parsedOutput, context);
@@ -2982,6 +3359,9 @@ const de_EnableOrganizationAdminAccountCommandError = async (output, context) =>
     };
     const errorCode = loadRestJsonErrorCode(output, parsedOutput.body);
     switch (errorCode) {
+        case "AccessDeniedException":
+        case "com.amazonaws.securityhub#AccessDeniedException":
+            throw await de_AccessDeniedExceptionRes(parsedOutput, context);
         case "InternalException":
         case "com.amazonaws.securityhub#InternalException":
             throw await de_InternalExceptionRes(parsedOutput, context);
@@ -3089,6 +3469,114 @@ const de_GetAdministratorAccountCommandError = async (output, context) => {
             });
     }
 };
+export const de_GetConfigurationPolicyCommand = async (output, context) => {
+    if (output.statusCode !== 200 && output.statusCode >= 300) {
+        return de_GetConfigurationPolicyCommandError(output, context);
+    }
+    const contents = map({
+        $metadata: deserializeMetadata(output),
+    });
+    const data = __expectNonNull(__expectObject(await parseBody(output.body, context)), "body");
+    const doc = take(data, {
+        Arn: __expectString,
+        ConfigurationPolicy: (_) => de_Policy(__expectUnion(_), context),
+        CreatedAt: (_) => __expectNonNull(__parseRfc3339DateTimeWithOffset(_)),
+        Description: __expectString,
+        Id: __expectString,
+        Name: __expectString,
+        UpdatedAt: (_) => __expectNonNull(__parseRfc3339DateTimeWithOffset(_)),
+    });
+    Object.assign(contents, doc);
+    return contents;
+};
+const de_GetConfigurationPolicyCommandError = async (output, context) => {
+    const parsedOutput = {
+        ...output,
+        body: await parseErrorBody(output.body, context),
+    };
+    const errorCode = loadRestJsonErrorCode(output, parsedOutput.body);
+    switch (errorCode) {
+        case "AccessDeniedException":
+        case "com.amazonaws.securityhub#AccessDeniedException":
+            throw await de_AccessDeniedExceptionRes(parsedOutput, context);
+        case "InternalException":
+        case "com.amazonaws.securityhub#InternalException":
+            throw await de_InternalExceptionRes(parsedOutput, context);
+        case "InvalidAccessException":
+        case "com.amazonaws.securityhub#InvalidAccessException":
+            throw await de_InvalidAccessExceptionRes(parsedOutput, context);
+        case "InvalidInputException":
+        case "com.amazonaws.securityhub#InvalidInputException":
+            throw await de_InvalidInputExceptionRes(parsedOutput, context);
+        case "LimitExceededException":
+        case "com.amazonaws.securityhub#LimitExceededException":
+            throw await de_LimitExceededExceptionRes(parsedOutput, context);
+        case "ResourceNotFoundException":
+        case "com.amazonaws.securityhub#ResourceNotFoundException":
+            throw await de_ResourceNotFoundExceptionRes(parsedOutput, context);
+        default:
+            const parsedBody = parsedOutput.body;
+            return throwDefaultError({
+                output,
+                parsedBody,
+                errorCode,
+            });
+    }
+};
+export const de_GetConfigurationPolicyAssociationCommand = async (output, context) => {
+    if (output.statusCode !== 200 && output.statusCode >= 300) {
+        return de_GetConfigurationPolicyAssociationCommandError(output, context);
+    }
+    const contents = map({
+        $metadata: deserializeMetadata(output),
+    });
+    const data = __expectNonNull(__expectObject(await parseBody(output.body, context)), "body");
+    const doc = take(data, {
+        AssociationStatus: __expectString,
+        AssociationStatusMessage: __expectString,
+        AssociationType: __expectString,
+        ConfigurationPolicyId: __expectString,
+        TargetId: __expectString,
+        TargetType: __expectString,
+        UpdatedAt: (_) => __expectNonNull(__parseRfc3339DateTimeWithOffset(_)),
+    });
+    Object.assign(contents, doc);
+    return contents;
+};
+const de_GetConfigurationPolicyAssociationCommandError = async (output, context) => {
+    const parsedOutput = {
+        ...output,
+        body: await parseErrorBody(output.body, context),
+    };
+    const errorCode = loadRestJsonErrorCode(output, parsedOutput.body);
+    switch (errorCode) {
+        case "AccessDeniedException":
+        case "com.amazonaws.securityhub#AccessDeniedException":
+            throw await de_AccessDeniedExceptionRes(parsedOutput, context);
+        case "InternalException":
+        case "com.amazonaws.securityhub#InternalException":
+            throw await de_InternalExceptionRes(parsedOutput, context);
+        case "InvalidAccessException":
+        case "com.amazonaws.securityhub#InvalidAccessException":
+            throw await de_InvalidAccessExceptionRes(parsedOutput, context);
+        case "InvalidInputException":
+        case "com.amazonaws.securityhub#InvalidInputException":
+            throw await de_InvalidInputExceptionRes(parsedOutput, context);
+        case "LimitExceededException":
+        case "com.amazonaws.securityhub#LimitExceededException":
+            throw await de_LimitExceededExceptionRes(parsedOutput, context);
+        case "ResourceNotFoundException":
+        case "com.amazonaws.securityhub#ResourceNotFoundException":
+            throw await de_ResourceNotFoundExceptionRes(parsedOutput, context);
+        default:
+            const parsedBody = parsedOutput.body;
+            return throwDefaultError({
+                output,
+                parsedBody,
+                errorCode,
+            });
+    }
+};
 export const de_GetEnabledStandardsCommand = async (output, context) => {
     if (output.statusCode !== 200 && output.statusCode >= 300) {
         return de_GetEnabledStandardsCommandError(output, context);
@@ -3495,25 +3983,119 @@ const de_GetMembersCommandError = async (output, context) => {
 };
 export const de_GetSecurityControlDefinitionCommand = async (output, context) => {
     if (output.statusCode !== 200 && output.statusCode >= 300) {
-        return de_GetSecurityControlDefinitionCommandError(output, context);
+        return de_GetSecurityControlDefinitionCommandError(output, context);
+    }
+    const contents = map({
+        $metadata: deserializeMetadata(output),
+    });
+    const data = __expectNonNull(__expectObject(await parseBody(output.body, context)), "body");
+    const doc = take(data, {
+        SecurityControlDefinition: (_) => de_SecurityControlDefinition(_, context),
+    });
+    Object.assign(contents, doc);
+    return contents;
+};
+const de_GetSecurityControlDefinitionCommandError = async (output, context) => {
+    const parsedOutput = {
+        ...output,
+        body: await parseErrorBody(output.body, context),
+    };
+    const errorCode = loadRestJsonErrorCode(output, parsedOutput.body);
+    switch (errorCode) {
+        case "InternalException":
+        case "com.amazonaws.securityhub#InternalException":
+            throw await de_InternalExceptionRes(parsedOutput, context);
+        case "InvalidAccessException":
+        case "com.amazonaws.securityhub#InvalidAccessException":
+            throw await de_InvalidAccessExceptionRes(parsedOutput, context);
+        case "InvalidInputException":
+        case "com.amazonaws.securityhub#InvalidInputException":
+            throw await de_InvalidInputExceptionRes(parsedOutput, context);
+        case "LimitExceededException":
+        case "com.amazonaws.securityhub#LimitExceededException":
+            throw await de_LimitExceededExceptionRes(parsedOutput, context);
+        case "ResourceNotFoundException":
+        case "com.amazonaws.securityhub#ResourceNotFoundException":
+            throw await de_ResourceNotFoundExceptionRes(parsedOutput, context);
+        default:
+            const parsedBody = parsedOutput.body;
+            return throwDefaultError({
+                output,
+                parsedBody,
+                errorCode,
+            });
+    }
+};
+export const de_InviteMembersCommand = async (output, context) => {
+    if (output.statusCode !== 200 && output.statusCode >= 300) {
+        return de_InviteMembersCommandError(output, context);
+    }
+    const contents = map({
+        $metadata: deserializeMetadata(output),
+    });
+    const data = __expectNonNull(__expectObject(await parseBody(output.body, context)), "body");
+    const doc = take(data, {
+        UnprocessedAccounts: _json,
+    });
+    Object.assign(contents, doc);
+    return contents;
+};
+const de_InviteMembersCommandError = async (output, context) => {
+    const parsedOutput = {
+        ...output,
+        body: await parseErrorBody(output.body, context),
+    };
+    const errorCode = loadRestJsonErrorCode(output, parsedOutput.body);
+    switch (errorCode) {
+        case "InternalException":
+        case "com.amazonaws.securityhub#InternalException":
+            throw await de_InternalExceptionRes(parsedOutput, context);
+        case "InvalidAccessException":
+        case "com.amazonaws.securityhub#InvalidAccessException":
+            throw await de_InvalidAccessExceptionRes(parsedOutput, context);
+        case "InvalidInputException":
+        case "com.amazonaws.securityhub#InvalidInputException":
+            throw await de_InvalidInputExceptionRes(parsedOutput, context);
+        case "LimitExceededException":
+        case "com.amazonaws.securityhub#LimitExceededException":
+            throw await de_LimitExceededExceptionRes(parsedOutput, context);
+        case "ResourceNotFoundException":
+        case "com.amazonaws.securityhub#ResourceNotFoundException":
+            throw await de_ResourceNotFoundExceptionRes(parsedOutput, context);
+        default:
+            const parsedBody = parsedOutput.body;
+            return throwDefaultError({
+                output,
+                parsedBody,
+                errorCode,
+            });
+    }
+};
+export const de_ListAutomationRulesCommand = async (output, context) => {
+    if (output.statusCode !== 200 && output.statusCode >= 300) {
+        return de_ListAutomationRulesCommandError(output, context);
     }
     const contents = map({
         $metadata: deserializeMetadata(output),
     });
     const data = __expectNonNull(__expectObject(await parseBody(output.body, context)), "body");
     const doc = take(data, {
-        SecurityControlDefinition: (_) => de_SecurityControlDefinition(_, context),
+        AutomationRulesMetadata: (_) => de_AutomationRulesMetadataList(_, context),
+        NextToken: __expectString,
     });
     Object.assign(contents, doc);
     return contents;
 };
-const de_GetSecurityControlDefinitionCommandError = async (output, context) => {
+const de_ListAutomationRulesCommandError = async (output, context) => {
     const parsedOutput = {
         ...output,
         body: await parseErrorBody(output.body, context),
     };
     const errorCode = loadRestJsonErrorCode(output, parsedOutput.body);
     switch (errorCode) {
+        case "AccessDeniedException":
+        case "com.amazonaws.securityhub#AccessDeniedException":
+            throw await de_AccessDeniedExceptionRes(parsedOutput, context);
         case "InternalException":
         case "com.amazonaws.securityhub#InternalException":
             throw await de_InternalExceptionRes(parsedOutput, context);
@@ -3526,9 +4108,6 @@ const de_GetSecurityControlDefinitionCommandError = async (output, context) => {
         case "LimitExceededException":
         case "com.amazonaws.securityhub#LimitExceededException":
             throw await de_LimitExceededExceptionRes(parsedOutput, context);
-        case "ResourceNotFoundException":
-        case "com.amazonaws.securityhub#ResourceNotFoundException":
-            throw await de_ResourceNotFoundExceptionRes(parsedOutput, context);
         default:
             const parsedBody = parsedOutput.body;
             return throwDefaultError({
@@ -3538,27 +4117,31 @@ const de_GetSecurityControlDefinitionCommandError = async (output, context) => {
             });
     }
 };
-export const de_InviteMembersCommand = async (output, context) => {
+export const de_ListConfigurationPoliciesCommand = async (output, context) => {
     if (output.statusCode !== 200 && output.statusCode >= 300) {
-        return de_InviteMembersCommandError(output, context);
+        return de_ListConfigurationPoliciesCommandError(output, context);
     }
     const contents = map({
         $metadata: deserializeMetadata(output),
     });
     const data = __expectNonNull(__expectObject(await parseBody(output.body, context)), "body");
     const doc = take(data, {
-        UnprocessedAccounts: _json,
+        ConfigurationPolicySummaries: (_) => de_ConfigurationPolicySummaryList(_, context),
+        NextToken: __expectString,
     });
     Object.assign(contents, doc);
     return contents;
 };
-const de_InviteMembersCommandError = async (output, context) => {
+const de_ListConfigurationPoliciesCommandError = async (output, context) => {
     const parsedOutput = {
         ...output,
         body: await parseErrorBody(output.body, context),
     };
     const errorCode = loadRestJsonErrorCode(output, parsedOutput.body);
     switch (errorCode) {
+        case "AccessDeniedException":
+        case "com.amazonaws.securityhub#AccessDeniedException":
+            throw await de_AccessDeniedExceptionRes(parsedOutput, context);
         case "InternalException":
         case "com.amazonaws.securityhub#InternalException":
             throw await de_InternalExceptionRes(parsedOutput, context);
@@ -3571,9 +4154,6 @@ const de_InviteMembersCommandError = async (output, context) => {
         case "LimitExceededException":
         case "com.amazonaws.securityhub#LimitExceededException":
             throw await de_LimitExceededExceptionRes(parsedOutput, context);
-        case "ResourceNotFoundException":
-        case "com.amazonaws.securityhub#ResourceNotFoundException":
-            throw await de_ResourceNotFoundExceptionRes(parsedOutput, context);
         default:
             const parsedBody = parsedOutput.body;
             return throwDefaultError({
@@ -3583,22 +4163,22 @@ const de_InviteMembersCommandError = async (output, context) => {
             });
     }
 };
-export const de_ListAutomationRulesCommand = async (output, context) => {
+export const de_ListConfigurationPolicyAssociationsCommand = async (output, context) => {
     if (output.statusCode !== 200 && output.statusCode >= 300) {
-        return de_ListAutomationRulesCommandError(output, context);
+        return de_ListConfigurationPolicyAssociationsCommandError(output, context);
     }
     const contents = map({
         $metadata: deserializeMetadata(output),
     });
     const data = __expectNonNull(__expectObject(await parseBody(output.body, context)), "body");
     const doc = take(data, {
-        AutomationRulesMetadata: (_) => de_AutomationRulesMetadataList(_, context),
+        ConfigurationPolicyAssociationSummaries: (_) => de_ConfigurationPolicyAssociationSummaryList(_, context),
         NextToken: __expectString,
     });
     Object.assign(contents, doc);
     return contents;
 };
-const de_ListAutomationRulesCommandError = async (output, context) => {
+const de_ListConfigurationPolicyAssociationsCommandError = async (output, context) => {
     const parsedOutput = {
         ...output,
         body: await parseErrorBody(output.body, context),
@@ -3969,6 +4549,104 @@ const de_ListTagsForResourceCommandError = async (output, context) => {
             });
     }
 };
+export const de_StartConfigurationPolicyAssociationCommand = async (output, context) => {
+    if (output.statusCode !== 200 && output.statusCode >= 300) {
+        return de_StartConfigurationPolicyAssociationCommandError(output, context);
+    }
+    const contents = map({
+        $metadata: deserializeMetadata(output),
+    });
+    const data = __expectNonNull(__expectObject(await parseBody(output.body, context)), "body");
+    const doc = take(data, {
+        AssociationStatus: __expectString,
+        AssociationStatusMessage: __expectString,
+        AssociationType: __expectString,
+        ConfigurationPolicyId: __expectString,
+        TargetId: __expectString,
+        TargetType: __expectString,
+        UpdatedAt: (_) => __expectNonNull(__parseRfc3339DateTimeWithOffset(_)),
+    });
+    Object.assign(contents, doc);
+    return contents;
+};
+const de_StartConfigurationPolicyAssociationCommandError = async (output, context) => {
+    const parsedOutput = {
+        ...output,
+        body: await parseErrorBody(output.body, context),
+    };
+    const errorCode = loadRestJsonErrorCode(output, parsedOutput.body);
+    switch (errorCode) {
+        case "AccessDeniedException":
+        case "com.amazonaws.securityhub#AccessDeniedException":
+            throw await de_AccessDeniedExceptionRes(parsedOutput, context);
+        case "InternalException":
+        case "com.amazonaws.securityhub#InternalException":
+            throw await de_InternalExceptionRes(parsedOutput, context);
+        case "InvalidAccessException":
+        case "com.amazonaws.securityhub#InvalidAccessException":
+            throw await de_InvalidAccessExceptionRes(parsedOutput, context);
+        case "InvalidInputException":
+        case "com.amazonaws.securityhub#InvalidInputException":
+            throw await de_InvalidInputExceptionRes(parsedOutput, context);
+        case "LimitExceededException":
+        case "com.amazonaws.securityhub#LimitExceededException":
+            throw await de_LimitExceededExceptionRes(parsedOutput, context);
+        case "ResourceNotFoundException":
+        case "com.amazonaws.securityhub#ResourceNotFoundException":
+            throw await de_ResourceNotFoundExceptionRes(parsedOutput, context);
+        default:
+            const parsedBody = parsedOutput.body;
+            return throwDefaultError({
+                output,
+                parsedBody,
+                errorCode,
+            });
+    }
+};
+export const de_StartConfigurationPolicyDisassociationCommand = async (output, context) => {
+    if (output.statusCode !== 200 && output.statusCode >= 300) {
+        return de_StartConfigurationPolicyDisassociationCommandError(output, context);
+    }
+    const contents = map({
+        $metadata: deserializeMetadata(output),
+    });
+    await collectBody(output.body, context);
+    return contents;
+};
+const de_StartConfigurationPolicyDisassociationCommandError = async (output, context) => {
+    const parsedOutput = {
+        ...output,
+        body: await parseErrorBody(output.body, context),
+    };
+    const errorCode = loadRestJsonErrorCode(output, parsedOutput.body);
+    switch (errorCode) {
+        case "AccessDeniedException":
+        case "com.amazonaws.securityhub#AccessDeniedException":
+            throw await de_AccessDeniedExceptionRes(parsedOutput, context);
+        case "InternalException":
+        case "com.amazonaws.securityhub#InternalException":
+            throw await de_InternalExceptionRes(parsedOutput, context);
+        case "InvalidAccessException":
+        case "com.amazonaws.securityhub#InvalidAccessException":
+            throw await de_InvalidAccessExceptionRes(parsedOutput, context);
+        case "InvalidInputException":
+        case "com.amazonaws.securityhub#InvalidInputException":
+            throw await de_InvalidInputExceptionRes(parsedOutput, context);
+        case "LimitExceededException":
+        case "com.amazonaws.securityhub#LimitExceededException":
+            throw await de_LimitExceededExceptionRes(parsedOutput, context);
+        case "ResourceNotFoundException":
+        case "com.amazonaws.securityhub#ResourceNotFoundException":
+            throw await de_ResourceNotFoundExceptionRes(parsedOutput, context);
+        default:
+            const parsedBody = parsedOutput.body;
+            return throwDefaultError({
+                output,
+                parsedBody,
+                errorCode,
+            });
+    }
+};
 export const de_TagResourceCommand = async (output, context) => {
     if (output.statusCode !== 200 && output.statusCode >= 300) {
         return de_TagResourceCommandError(output, context);
@@ -4077,6 +4755,63 @@ const de_UpdateActionTargetCommandError = async (output, context) => {
             });
     }
 };
+export const de_UpdateConfigurationPolicyCommand = async (output, context) => {
+    if (output.statusCode !== 200 && output.statusCode >= 300) {
+        return de_UpdateConfigurationPolicyCommandError(output, context);
+    }
+    const contents = map({
+        $metadata: deserializeMetadata(output),
+    });
+    const data = __expectNonNull(__expectObject(await parseBody(output.body, context)), "body");
+    const doc = take(data, {
+        Arn: __expectString,
+        ConfigurationPolicy: (_) => de_Policy(__expectUnion(_), context),
+        CreatedAt: (_) => __expectNonNull(__parseRfc3339DateTimeWithOffset(_)),
+        Description: __expectString,
+        Id: __expectString,
+        Name: __expectString,
+        UpdatedAt: (_) => __expectNonNull(__parseRfc3339DateTimeWithOffset(_)),
+    });
+    Object.assign(contents, doc);
+    return contents;
+};
+const de_UpdateConfigurationPolicyCommandError = async (output, context) => {
+    const parsedOutput = {
+        ...output,
+        body: await parseErrorBody(output.body, context),
+    };
+    const errorCode = loadRestJsonErrorCode(output, parsedOutput.body);
+    switch (errorCode) {
+        case "AccessDeniedException":
+        case "com.amazonaws.securityhub#AccessDeniedException":
+            throw await de_AccessDeniedExceptionRes(parsedOutput, context);
+        case "InternalException":
+        case "com.amazonaws.securityhub#InternalException":
+            throw await de_InternalExceptionRes(parsedOutput, context);
+        case "InvalidAccessException":
+        case "com.amazonaws.securityhub#InvalidAccessException":
+            throw await de_InvalidAccessExceptionRes(parsedOutput, context);
+        case "InvalidInputException":
+        case "com.amazonaws.securityhub#InvalidInputException":
+            throw await de_InvalidInputExceptionRes(parsedOutput, context);
+        case "LimitExceededException":
+        case "com.amazonaws.securityhub#LimitExceededException":
+            throw await de_LimitExceededExceptionRes(parsedOutput, context);
+        case "ResourceConflictException":
+        case "com.amazonaws.securityhub#ResourceConflictException":
+            throw await de_ResourceConflictExceptionRes(parsedOutput, context);
+        case "ResourceNotFoundException":
+        case "com.amazonaws.securityhub#ResourceNotFoundException":
+            throw await de_ResourceNotFoundExceptionRes(parsedOutput, context);
+        default:
+            const parsedBody = parsedOutput.body;
+            return throwDefaultError({
+                output,
+                parsedBody,
+                errorCode,
+            });
+    }
+};
 export const de_UpdateFindingAggregatorCommand = async (output, context) => {
     if (output.statusCode !== 200 && output.statusCode >= 300) {
         return de_UpdateFindingAggregatorCommandError(output, context);
@@ -4227,6 +4962,9 @@ const de_UpdateOrganizationConfigurationCommandError = async (output, context) =
     };
     const errorCode = loadRestJsonErrorCode(output, parsedOutput.body);
     switch (errorCode) {
+        case "AccessDeniedException":
+        case "com.amazonaws.securityhub#AccessDeniedException":
+            throw await de_AccessDeniedExceptionRes(parsedOutput, context);
         case "InternalException":
         case "com.amazonaws.securityhub#InternalException":
             throw await de_InternalExceptionRes(parsedOutput, context);
@@ -4239,6 +4977,12 @@ const de_UpdateOrganizationConfigurationCommandError = async (output, context) =
         case "LimitExceededException":
         case "com.amazonaws.securityhub#LimitExceededException":
             throw await de_LimitExceededExceptionRes(parsedOutput, context);
+        case "ResourceConflictException":
+        case "com.amazonaws.securityhub#ResourceConflictException":
+            throw await de_ResourceConflictExceptionRes(parsedOutput, context);
+        case "ResourceNotFoundException":
+        case "com.amazonaws.securityhub#ResourceNotFoundException":
+            throw await de_ResourceNotFoundExceptionRes(parsedOutput, context);
         default:
             const parsedBody = parsedOutput.body;
             return throwDefaultError({
@@ -4265,6 +5009,9 @@ const de_UpdateSecurityControlCommandError = async (output, context) => {
     };
     const errorCode = loadRestJsonErrorCode(output, parsedOutput.body);
     switch (errorCode) {
+        case "AccessDeniedException":
+        case "com.amazonaws.securityhub#AccessDeniedException":
+            throw await de_AccessDeniedExceptionRes(parsedOutput, context);
         case "InternalException":
         case "com.amazonaws.securityhub#InternalException":
             throw await de_InternalExceptionRes(parsedOutput, context);
@@ -4309,6 +5056,9 @@ const de_UpdateSecurityHubConfigurationCommandError = async (output, context) =>
     };
     const errorCode = loadRestJsonErrorCode(output, parsedOutput.body);
     switch (errorCode) {
+        case "AccessDeniedException":
+        case "com.amazonaws.securityhub#AccessDeniedException":
+            throw await de_AccessDeniedExceptionRes(parsedOutput, context);
         case "InternalException":
         case "com.amazonaws.securityhub#InternalException":
             throw await de_InternalExceptionRes(parsedOutput, context);
@@ -4350,6 +5100,9 @@ const de_UpdateStandardsControlCommandError = async (output, context) => {
     };
     const errorCode = loadRestJsonErrorCode(output, parsedOutput.body);
     switch (errorCode) {
+        case "AccessDeniedException":
+        case "com.amazonaws.securityhub#AccessDeniedException":
+            throw await de_AccessDeniedExceptionRes(parsedOutput, context);
         case "InternalException":
         case "com.amazonaws.securityhub#InternalException":
             throw await de_InternalExceptionRes(parsedOutput, context);
@@ -4531,6 +5284,7 @@ const se_AutomationRulesFindingFieldsUpdate = (input, context) => {
 const se_AutomationRulesFindingFilters = (input, context) => {
     return take(input, {
         AwsAccountId: _json,
+        AwsAccountName: _json,
         CompanyName: _json,
         ComplianceAssociatedStandardsId: _json,
         ComplianceSecurityControlId: _json,
@@ -4551,6 +5305,8 @@ const se_AutomationRulesFindingFilters = (input, context) => {
         RecordState: _json,
         RelatedFindingsId: _json,
         RelatedFindingsProductArn: _json,
+        ResourceApplicationArn: _json,
+        ResourceApplicationName: _json,
         ResourceDetailsOther: _json,
         ResourceId: _json,
         ResourcePartition: _json,
@@ -4847,6 +5603,7 @@ const se_AwsSecurityFinding = (input, context) => {
     return take(input, {
         Action: (_) => se_Action(_, context),
         AwsAccountId: [],
+        AwsAccountName: [],
         CompanyName: [],
         Compliance: _json,
         Confidence: [],
@@ -4865,6 +5622,7 @@ const se_AwsSecurityFinding = (input, context) => {
         Note: _json,
         PatchSummary: _json,
         Process: _json,
+        ProcessedAt: [],
         ProductArn: [],
         ProductFields: _json,
         ProductName: [],
@@ -4892,6 +5650,7 @@ const se_AwsSecurityFinding = (input, context) => {
 const se_AwsSecurityFindingFilters = (input, context) => {
     return take(input, {
         AwsAccountId: _json,
+        AwsAccountName: _json,
         CompanyName: _json,
         ComplianceAssociatedStandardsId: _json,
         ComplianceSecurityControlId: _json,
@@ -4946,6 +5705,8 @@ const se_AwsSecurityFindingFilters = (input, context) => {
         Region: _json,
         RelatedFindingsId: _json,
         RelatedFindingsProductArn: _json,
+        ResourceApplicationArn: _json,
+        ResourceApplicationName: _json,
         ResourceAwsEc2InstanceIamInstanceProfileArn: _json,
         ResourceAwsEc2InstanceImageId: _json,
         ResourceAwsEc2InstanceIpV4Addresses: _json,
@@ -5077,6 +5838,12 @@ const se_ParameterValue = (input, context) => {
         _: (name, value) => ({ name: value }),
     });
 };
+const se_Policy = (input, context) => {
+    return Policy.visit(input, {
+        SecurityHub: (value) => ({ SecurityHub: se_SecurityHubPolicy(value, context) }),
+        _: (name, value) => ({ name: value }),
+    });
+};
 const se_PortProbeAction = (input, context) => {
     return take(input, {
         Blocked: [],
@@ -5099,6 +5866,8 @@ const se_PortProbeDetailList = (input, context) => {
 };
 const se_Resource = (input, context) => {
     return take(input, {
+        ApplicationArn: [],
+        ApplicationName: [],
         DataClassification: _json,
         Details: (_) => se_ResourceDetails(_, context),
         Id: [],
@@ -5217,6 +5986,33 @@ const se_ResourceList = (input, context) => {
         return se_Resource(entry, context);
     });
 };
+const se_SecurityControlCustomParameter = (input, context) => {
+    return take(input, {
+        Parameters: (_) => se_Parameters(_, context),
+        SecurityControlId: [],
+    });
+};
+const se_SecurityControlCustomParametersList = (input, context) => {
+    return input
+        .filter((e) => e != null)
+        .map((entry) => {
+        return se_SecurityControlCustomParameter(entry, context);
+    });
+};
+const se_SecurityControlsConfiguration = (input, context) => {
+    return take(input, {
+        DisabledSecurityControlIdentifiers: _json,
+        EnabledSecurityControlIdentifiers: _json,
+        SecurityControlCustomParameters: (_) => se_SecurityControlCustomParametersList(_, context),
+    });
+};
+const se_SecurityHubPolicy = (input, context) => {
+    return take(input, {
+        EnabledStandardIdentifiers: _json,
+        SecurityControlsConfiguration: (_) => se_SecurityControlsConfiguration(_, context),
+        ServiceEnabled: [],
+    });
+};
 const se_Severity = (input, context) => {
     return take(input, {
         Label: [],
@@ -5343,6 +6139,7 @@ const de_AutomationRulesFindingFieldsUpdate = (output, context) => {
 const de_AutomationRulesFindingFilters = (output, context) => {
     return take(output, {
         AwsAccountId: _json,
+        AwsAccountName: _json,
         CompanyName: _json,
         ComplianceAssociatedStandardsId: _json,
         ComplianceSecurityControlId: _json,
@@ -5363,6 +6160,8 @@ const de_AutomationRulesFindingFilters = (output, context) => {
         RecordState: _json,
         RelatedFindingsId: _json,
         RelatedFindingsProductArn: _json,
+        ResourceApplicationArn: _json,
+        ResourceApplicationName: _json,
         ResourceDetailsOther: _json,
         ResourceId: _json,
         ResourcePartition: _json,
@@ -5681,6 +6480,7 @@ const de_AwsSecurityFinding = (output, context) => {
     return take(output, {
         Action: (_) => de_Action(_, context),
         AwsAccountId: __expectString,
+        AwsAccountName: __expectString,
         CompanyName: __expectString,
         Compliance: _json,
         Confidence: __expectInt32,
@@ -5699,6 +6499,7 @@ const de_AwsSecurityFinding = (output, context) => {
         Note: _json,
         PatchSummary: _json,
         Process: _json,
+        ProcessedAt: __expectString,
         ProductArn: __expectString,
         ProductFields: _json,
         ProductName: __expectString,
@@ -5726,6 +6527,7 @@ const de_AwsSecurityFinding = (output, context) => {
 const de_AwsSecurityFindingFilters = (output, context) => {
     return take(output, {
         AwsAccountId: _json,
+        AwsAccountName: _json,
         CompanyName: _json,
         ComplianceAssociatedStandardsId: _json,
         ComplianceSecurityControlId: _json,
@@ -5780,6 +6582,8 @@ const de_AwsSecurityFindingFilters = (output, context) => {
         Region: _json,
         RelatedFindingsId: _json,
         RelatedFindingsProductArn: _json,
+        ResourceApplicationArn: _json,
+        ResourceApplicationName: _json,
         ResourceAwsEc2InstanceIamInstanceProfileArn: _json,
         ResourceAwsEc2InstanceImageId: _json,
         ResourceAwsEc2InstanceIpV4Addresses: _json,
@@ -5879,6 +6683,51 @@ const de_ConfigurationOptions = (output, context) => {
     }
     return { $unknown: Object.entries(output)[0] };
 };
+const de_ConfigurationPolicyAssociationList = (output, context) => {
+    const retVal = (output || [])
+        .filter((e) => e != null)
+        .map((entry) => {
+        return de_ConfigurationPolicyAssociationSummary(entry, context);
+    });
+    return retVal;
+};
+const de_ConfigurationPolicyAssociationSummary = (output, context) => {
+    return take(output, {
+        AssociationStatus: __expectString,
+        AssociationStatusMessage: __expectString,
+        AssociationType: __expectString,
+        ConfigurationPolicyId: __expectString,
+        TargetId: __expectString,
+        TargetType: __expectString,
+        UpdatedAt: (_) => __expectNonNull(__parseRfc3339DateTimeWithOffset(_)),
+    });
+};
+const de_ConfigurationPolicyAssociationSummaryList = (output, context) => {
+    const retVal = (output || [])
+        .filter((e) => e != null)
+        .map((entry) => {
+        return de_ConfigurationPolicyAssociationSummary(entry, context);
+    });
+    return retVal;
+};
+const de_ConfigurationPolicySummary = (output, context) => {
+    return take(output, {
+        Arn: __expectString,
+        Description: __expectString,
+        Id: __expectString,
+        Name: __expectString,
+        ServiceEnabled: __expectBoolean,
+        UpdatedAt: (_) => __expectNonNull(__parseRfc3339DateTimeWithOffset(_)),
+    });
+};
+const de_ConfigurationPolicySummaryList = (output, context) => {
+    const retVal = (output || [])
+        .filter((e) => e != null)
+        .map((entry) => {
+        return de_ConfigurationPolicySummary(entry, context);
+    });
+    return retVal;
+};
 const de_Cvss = (output, context) => {
     return take(output, {
         Adjustments: _json,
@@ -6068,6 +6917,14 @@ const de_ParameterValue = (output, context) => {
     }
     return { $unknown: Object.entries(output)[0] };
 };
+const de_Policy = (output, context) => {
+    if (output.SecurityHub != null) {
+        return {
+            SecurityHub: de_SecurityHubPolicy(output.SecurityHub, context),
+        };
+    }
+    return { $unknown: Object.entries(output)[0] };
+};
 const de_PortProbeAction = (output, context) => {
     return take(output, {
         Blocked: __expectBoolean,
@@ -6091,6 +6948,8 @@ const de_PortProbeDetailList = (output, context) => {
 };
 const de_Resource = (output, context) => {
     return take(output, {
+        ApplicationArn: __expectString,
+        ApplicationName: __expectString,
         DataClassification: _json,
         Details: (_) => de_ResourceDetails(_, context),
         Id: __expectString,
@@ -6224,6 +7083,20 @@ const de_SecurityControl = (output, context) => {
         UpdateStatus: __expectString,
     });
 };
+const de_SecurityControlCustomParameter = (output, context) => {
+    return take(output, {
+        Parameters: (_) => de_Parameters(_, context),
+        SecurityControlId: __expectString,
+    });
+};
+const de_SecurityControlCustomParametersList = (output, context) => {
+    const retVal = (output || [])
+        .filter((e) => e != null)
+        .map((entry) => {
+        return de_SecurityControlCustomParameter(entry, context);
+    });
+    return retVal;
+};
 const de_SecurityControlDefinition = (output, context) => {
     return take(output, {
         CurrentRegionAvailability: __expectString,
@@ -6252,6 +7125,20 @@ const de_SecurityControls = (output, context) => {
     });
     return retVal;
 };
+const de_SecurityControlsConfiguration = (output, context) => {
+    return take(output, {
+        DisabledSecurityControlIdentifiers: _json,
+        EnabledSecurityControlIdentifiers: _json,
+        SecurityControlCustomParameters: (_) => de_SecurityControlCustomParametersList(_, context),
+    });
+};
+const de_SecurityHubPolicy = (output, context) => {
+    return take(output, {
+        EnabledStandardIdentifiers: _json,
+        SecurityControlsConfiguration: (_) => de_SecurityControlsConfiguration(_, context),
+        ServiceEnabled: __expectBoolean,
+    });
+};
 const de_Severity = (output, context) => {
     return take(output, {
         Label: __expectString,