npm - @aws-sdk/client-securityhub - Versions diffs - 3.458.0 → 3.460.0 - Mend

@aws-sdk/client-securityhub 3.458.0 → 3.460.0

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (103) hide show

package/dist-types/commands/CreateConfigurationPolicyCommand.d.ts ADDED Viewed

@@ -0,0 +1,265 @@
+import { EndpointParameterInstructions } from "@smithy/middleware-endpoint";
+import { Command as $Command } from "@smithy/smithy-client";
+import { Handler, HttpHandlerOptions as __HttpHandlerOptions, MetadataBearer as __MetadataBearer, MiddlewareStack } from "@smithy/types";
+import { CreateConfigurationPolicyRequest, CreateConfigurationPolicyResponse } from "../models/models_2";
+import { SecurityHubClientResolvedConfig, ServiceInputTypes, ServiceOutputTypes } from "../SecurityHubClient";
+/**
+ * @public
+ */
+export { __MetadataBearer, $Command };
+/**
+ * @public
+ *
+ * The input for {@link CreateConfigurationPolicyCommand}.
+ */
+export interface CreateConfigurationPolicyCommandInput extends CreateConfigurationPolicyRequest {
+}
+/**
+ * @public
+ *
+ * The output of {@link CreateConfigurationPolicyCommand}.
+ */
+export interface CreateConfigurationPolicyCommandOutput extends CreateConfigurationPolicyResponse, __MetadataBearer {
+}
+/**
+ * @public
+ * <p>
+ *             Creates a configuration policy with the defined configuration. Only the Security Hub delegated administrator
+ *             can invoke this operation from the home Region.
+ *         </p>
+ * @example
+ * Use a bare-bones client and the command you need to make an API call.
+ * ```javascript
+ * import { SecurityHubClient, CreateConfigurationPolicyCommand } from "@aws-sdk/client-securityhub"; // ES Modules import
+ * // const { SecurityHubClient, CreateConfigurationPolicyCommand } = require("@aws-sdk/client-securityhub"); // CommonJS import
+ * const client = new SecurityHubClient(config);
+ * const input = { // CreateConfigurationPolicyRequest
+ *   Name: "STRING_VALUE", // required
+ *   Description: "STRING_VALUE",
+ *   ConfigurationPolicy: { // Policy Union: only one key present
+ *     SecurityHub: { // SecurityHubPolicy
+ *       ServiceEnabled: true || false,
+ *       EnabledStandardIdentifiers: [ // EnabledStandardIdentifierList
+ *         "STRING_VALUE",
+ *       ],
+ *       SecurityControlsConfiguration: { // SecurityControlsConfiguration
+ *         EnabledSecurityControlIdentifiers: [ // EnabledSecurityControlIdentifierList
+ *           "STRING_VALUE",
+ *         ],
+ *         DisabledSecurityControlIdentifiers: [ // DisabledSecurityControlIdentifierList
+ *           "STRING_VALUE",
+ *         ],
+ *         SecurityControlCustomParameters: [ // SecurityControlCustomParametersList
+ *           { // SecurityControlCustomParameter
+ *             SecurityControlId: "STRING_VALUE",
+ *             Parameters: { // Parameters
+ *               "<keys>": { // ParameterConfiguration
+ *                 ValueType: "DEFAULT" || "CUSTOM", // required
+ *                 Value: { // ParameterValue Union: only one key present
+ *                   Integer: Number("int"),
+ *                   IntegerList: [ // IntegerList
+ *                     Number("int"),
+ *                   ],
+ *                   Double: Number("double"),
+ *                   String: "STRING_VALUE",
+ *                   StringList: [ // StringList
+ *                     "STRING_VALUE",
+ *                   ],
+ *                   Boolean: true || false,
+ *                   Enum: "STRING_VALUE",
+ *                   EnumList: [
+ *                     "STRING_VALUE",
+ *                   ],
+ *                 },
+ *               },
+ *             },
+ *           },
+ *         ],
+ *       },
+ *     },
+ *   },
+ *   Tags: { // TagMap
+ *     "<keys>": "STRING_VALUE",
+ *   },
+ * };
+ * const command = new CreateConfigurationPolicyCommand(input);
+ * const response = await client.send(command);
+ * // { // CreateConfigurationPolicyResponse
+ * //   Arn: "STRING_VALUE",
+ * //   Id: "STRING_VALUE",
+ * //   Name: "STRING_VALUE",
+ * //   Description: "STRING_VALUE",
+ * //   UpdatedAt: new Date("TIMESTAMP"),
+ * //   CreatedAt: new Date("TIMESTAMP"),
+ * //   ConfigurationPolicy: { // Policy Union: only one key present
+ * //     SecurityHub: { // SecurityHubPolicy
+ * //       ServiceEnabled: true || false,
+ * //       EnabledStandardIdentifiers: [ // EnabledStandardIdentifierList
+ * //         "STRING_VALUE",
+ * //       ],
+ * //       SecurityControlsConfiguration: { // SecurityControlsConfiguration
+ * //         EnabledSecurityControlIdentifiers: [ // EnabledSecurityControlIdentifierList
+ * //           "STRING_VALUE",
+ * //         ],
+ * //         DisabledSecurityControlIdentifiers: [ // DisabledSecurityControlIdentifierList
+ * //           "STRING_VALUE",
+ * //         ],
+ * //         SecurityControlCustomParameters: [ // SecurityControlCustomParametersList
+ * //           { // SecurityControlCustomParameter
+ * //             SecurityControlId: "STRING_VALUE",
+ * //             Parameters: { // Parameters
+ * //               "<keys>": { // ParameterConfiguration
+ * //                 ValueType: "DEFAULT" || "CUSTOM", // required
+ * //                 Value: { // ParameterValue Union: only one key present
+ * //                   Integer: Number("int"),
+ * //                   IntegerList: [ // IntegerList
+ * //                     Number("int"),
+ * //                   ],
+ * //                   Double: Number("double"),
+ * //                   String: "STRING_VALUE",
+ * //                   StringList: [ // StringList
+ * //                     "STRING_VALUE",
+ * //                   ],
+ * //                   Boolean: true || false,
+ * //                   Enum: "STRING_VALUE",
+ * //                   EnumList: [
+ * //                     "STRING_VALUE",
+ * //                   ],
+ * //                 },
+ * //               },
+ * //             },
+ * //           },
+ * //         ],
+ * //       },
+ * //     },
+ * //   },
+ * // };
+ *
+ * ```
+ *
+ * @param CreateConfigurationPolicyCommandInput - {@link CreateConfigurationPolicyCommandInput}
+ * @returns {@link CreateConfigurationPolicyCommandOutput}
+ * @see {@link CreateConfigurationPolicyCommandInput} for command's `input` shape.
+ * @see {@link CreateConfigurationPolicyCommandOutput} for command's `response` shape.
+ * @see {@link SecurityHubClientResolvedConfig | config} for SecurityHubClient's `config` shape.
+ *
+ * @throws {@link AccessDeniedException} (client fault)
+ *  <p>You don't have permission to perform the action specified in the request.</p>
+ *
+ * @throws {@link InternalException} (server fault)
+ *  <p>Internal server error.</p>
+ *
+ * @throws {@link InvalidAccessException} (client fault)
+ *  <p>The account doesn't have permission to perform this action.</p>
+ *
+ * @throws {@link InvalidInputException} (client fault)
+ *  <p>The request was rejected because you supplied an invalid or out-of-range value for an
+ *          input parameter.</p>
+ *
+ * @throws {@link LimitExceededException} (client fault)
+ *  <p>The request was rejected because it attempted to create resources beyond the current Amazon Web Services
+ *          account or throttling limits. The error code describes the limit exceeded.</p>
+ *
+ * @throws {@link ResourceConflictException} (client fault)
+ *  <p>The resource specified in the request conflicts with an existing resource.</p>
+ *
+ * @throws {@link SecurityHubServiceException}
+ * <p>Base exception class for all service exceptions from SecurityHub service.</p>
+ *
+ * @example To create a configuration policy
+ * ```javascript
+ * // This operation creates a configuration policy in Security Hub.
+ * const input = {
+ *   "ConfigurationPolicy": {
+ *     "SecurityHub": {
+ *       "EnabledStandardIdentifiers": [
+ *         "arn:aws:securityhub:us-east-1::standards/aws-foundational-security-best-practices/v/1.0.0",
+ *         "arn:aws:securityhub:::ruleset/cis-aws-foundations-benchmark/v/1.2.0"
+ *       ],
+ *       "SecurityControlsConfiguration": {
+ *         "DisabledSecurityControlIdentifiers": [
+ *           "CloudWatch.1"
+ *         ],
+ *         "SecurityControlCustomParameters": [
+ *           {
+ *             "Parameters": {
+ *               "daysToExpiration": {
+ *                 "Value": {
+ *                   "Integer": 14
+ *                 },
+ *                 "ValueType": "CUSTOM"
+ *               }
+ *             },
+ *             "SecurityControlId": "ACM.1"
+ *           }
+ *         ]
+ *       },
+ *       "ServiceEnabled": true
+ *     }
+ *   },
+ *   "Description": "Configuration policy for testing FSBP and CIS",
+ *   "Name": "TestConfigurationPolicy"
+ * };
+ * const command = new CreateConfigurationPolicyCommand(input);
+ * const response = await client.send(command);
+ * /* response ==
+ * {
+ *   "Arn": "arn:aws:securityhub:us-east-1:123456789012:configuration-policy/a1b2c3d4-5678-90ab-cdef-EXAMPLE11111",
+ *   "ConfigurationPolicy": {
+ *     "SecurityHub": {
+ *       "EnabledStandardIdentifiers": [
+ *         "arn:aws:securityhub:us-east-1::standards/aws-foundational-security-best-practices/v/1.0.0",
+ *         "arn:aws:securityhub:::ruleset/cis-aws-foundations-benchmark/v/1.2.0"
+ *       ],
+ *       "SecurityControlsConfiguration": {
+ *         "DisabledSecurityControlIdentifiers": [
+ *           "CloudWatch.1"
+ *         ],
+ *         "SecurityControlCustomParameters": [
+ *           {
+ *             "Parameters": {
+ *               "daysToExpiration": {
+ *                 "Value": {
+ *                   "Integer": 14
+ *                 },
+ *                 "ValueType": "CUSTOM"
+ *               }
+ *             },
+ *             "SecurityControlId": "ACM.1"
+ *           }
+ *         ]
+ *       },
+ *       "ServiceEnabled": true
+ *     }
+ *   },
+ *   "CreatedAt": "2023-01-11T06:17:17.154Z",
+ *   "Description": "Configuration policy for testing FSBP and CIS",
+ *   "Id": "a1b2c3d4-5678-90ab-cdef-EXAMPLE11111",
+ *   "Name": "TestConfigurationPolicy",
+ *   "UpdatedAt": "2023-01-11T06:17:17.154Z"
+ * }
+ * *\/
+ * // example id: to-create-a-configuration-policy-1695172470099
+ * ```
+ *
+ */
+export declare class CreateConfigurationPolicyCommand extends $Command<CreateConfigurationPolicyCommandInput, CreateConfigurationPolicyCommandOutput, SecurityHubClientResolvedConfig> {
+    readonly input: CreateConfigurationPolicyCommandInput;
+    static getEndpointParameterInstructions(): EndpointParameterInstructions;
+    /**
+     * @public
+     */
+    constructor(input: CreateConfigurationPolicyCommandInput);
+    /**
+     * @internal
+     */
+    resolveMiddleware(clientStack: MiddlewareStack<ServiceInputTypes, ServiceOutputTypes>, configuration: SecurityHubClientResolvedConfig, options?: __HttpHandlerOptions): Handler<CreateConfigurationPolicyCommandInput, CreateConfigurationPolicyCommandOutput>;
+    /**
+     * @internal
+     */
+    private serialize;
+    /**
+     * @internal
+     */
+    private deserialize;
+}

package/dist-types/commands/CreateInsightCommand.d.ts CHANGED Viewed

@@ -299,6 +299,9 @@ export interface CreateInsightCommandOutput extends CreateInsightResponse, __Met
  *     VulnerabilitiesFixAvailable: "<StringFilterList>",
  *     ComplianceSecurityControlParametersName: "<StringFilterList>",
  *     ComplianceSecurityControlParametersValue: "<StringFilterList>",
+ *     AwsAccountName: "<StringFilterList>",
+ *     ResourceApplicationName: "<StringFilterList>",
+ *     ResourceApplicationArn: "<StringFilterList>",
  *   },
  *   GroupByAttribute: "STRING_VALUE", // required
  * };

package/dist-types/commands/CreateMembersCommand.d.ts CHANGED Viewed

@@ -91,6 +91,9 @@ export interface CreateMembersCommandOutput extends CreateMembersResponse, __Met
  * @see {@link CreateMembersCommandOutput} for command's `response` shape.
  * @see {@link SecurityHubClientResolvedConfig | config} for SecurityHubClient's `config` shape.
  *
+ * @throws {@link AccessDeniedException} (client fault)
+ *  <p>You don't have permission to perform the action specified in the request.</p>
+ *
  * @throws {@link InternalException} (server fault)
  *  <p>Internal server error.</p>
  *

package/dist-types/commands/DeleteConfigurationPolicyCommand.d.ts ADDED Viewed

@@ -0,0 +1,109 @@
+import { EndpointParameterInstructions } from "@smithy/middleware-endpoint";
+import { Command as $Command } from "@smithy/smithy-client";
+import { Handler, HttpHandlerOptions as __HttpHandlerOptions, MetadataBearer as __MetadataBearer, MiddlewareStack } from "@smithy/types";
+import { DeleteConfigurationPolicyRequest, DeleteConfigurationPolicyResponse } from "../models/models_2";
+import { SecurityHubClientResolvedConfig, ServiceInputTypes, ServiceOutputTypes } from "../SecurityHubClient";
+/**
+ * @public
+ */
+export { __MetadataBearer, $Command };
+/**
+ * @public
+ *
+ * The input for {@link DeleteConfigurationPolicyCommand}.
+ */
+export interface DeleteConfigurationPolicyCommandInput extends DeleteConfigurationPolicyRequest {
+}
+/**
+ * @public
+ *
+ * The output of {@link DeleteConfigurationPolicyCommand}.
+ */
+export interface DeleteConfigurationPolicyCommandOutput extends DeleteConfigurationPolicyResponse, __MetadataBearer {
+}
+/**
+ * @public
+ * <p>
+ *             Deletes a configuration policy. Only the Security Hub delegated administrator can invoke this operation
+ *             from the home Region. For the deletion to succeed, you must first disassociate a configuration policy from target accounts,
+ *             organizational units, or the root by invoking the <code>StartConfigurationPolicyDisassociation</code> operation.
+ *         </p>
+ * @example
+ * Use a bare-bones client and the command you need to make an API call.
+ * ```javascript
+ * import { SecurityHubClient, DeleteConfigurationPolicyCommand } from "@aws-sdk/client-securityhub"; // ES Modules import
+ * // const { SecurityHubClient, DeleteConfigurationPolicyCommand } = require("@aws-sdk/client-securityhub"); // CommonJS import
+ * const client = new SecurityHubClient(config);
+ * const input = { // DeleteConfigurationPolicyRequest
+ *   Identifier: "STRING_VALUE", // required
+ * };
+ * const command = new DeleteConfigurationPolicyCommand(input);
+ * const response = await client.send(command);
+ * // {};
+ *
+ * ```
+ *
+ * @param DeleteConfigurationPolicyCommandInput - {@link DeleteConfigurationPolicyCommandInput}
+ * @returns {@link DeleteConfigurationPolicyCommandOutput}
+ * @see {@link DeleteConfigurationPolicyCommandInput} for command's `input` shape.
+ * @see {@link DeleteConfigurationPolicyCommandOutput} for command's `response` shape.
+ * @see {@link SecurityHubClientResolvedConfig | config} for SecurityHubClient's `config` shape.
+ *
+ * @throws {@link AccessDeniedException} (client fault)
+ *  <p>You don't have permission to perform the action specified in the request.</p>
+ *
+ * @throws {@link InternalException} (server fault)
+ *  <p>Internal server error.</p>
+ *
+ * @throws {@link InvalidAccessException} (client fault)
+ *  <p>The account doesn't have permission to perform this action.</p>
+ *
+ * @throws {@link InvalidInputException} (client fault)
+ *  <p>The request was rejected because you supplied an invalid or out-of-range value for an
+ *          input parameter.</p>
+ *
+ * @throws {@link LimitExceededException} (client fault)
+ *  <p>The request was rejected because it attempted to create resources beyond the current Amazon Web Services
+ *          account or throttling limits. The error code describes the limit exceeded.</p>
+ *
+ * @throws {@link ResourceConflictException} (client fault)
+ *  <p>The resource specified in the request conflicts with an existing resource.</p>
+ *
+ * @throws {@link ResourceNotFoundException} (client fault)
+ *  <p>The request was rejected because we can't find the specified resource.</p>
+ *
+ * @throws {@link SecurityHubServiceException}
+ * <p>Base exception class for all service exceptions from SecurityHub service.</p>
+ *
+ * @example To delete a configuration policy
+ * ```javascript
+ * // This operation deletes the specified configuration policy.
+ * const input = {
+ *   "Identifier": "arn:aws:securityhub:us-east-1:123456789012:configuration-policy/a1b2c3d4-5678-90ab-cdef-EXAMPLE11111"
+ * };
+ * const command = new DeleteConfigurationPolicyCommand(input);
+ * await client.send(command);
+ * // example id: to-delete-a-configuration-policy-1695174614062
+ * ```
+ *
+ */
+export declare class DeleteConfigurationPolicyCommand extends $Command<DeleteConfigurationPolicyCommandInput, DeleteConfigurationPolicyCommandOutput, SecurityHubClientResolvedConfig> {
+    readonly input: DeleteConfigurationPolicyCommandInput;
+    static getEndpointParameterInstructions(): EndpointParameterInstructions;
+    /**
+     * @public
+     */
+    constructor(input: DeleteConfigurationPolicyCommandInput);
+    /**
+     * @internal
+     */
+    resolveMiddleware(clientStack: MiddlewareStack<ServiceInputTypes, ServiceOutputTypes>, configuration: SecurityHubClientResolvedConfig, options?: __HttpHandlerOptions): Handler<DeleteConfigurationPolicyCommandInput, DeleteConfigurationPolicyCommandOutput>;
+    /**
+     * @internal
+     */
+    private serialize;
+    /**
+     * @internal
+     */
+    private deserialize;
+}

package/dist-types/commands/DescribeOrganizationConfigurationCommand.d.ts CHANGED Viewed

@@ -23,8 +23,8 @@ export interface DescribeOrganizationConfigurationCommandOutput extends Describe
 }
 /**
  * @public
- * <p>Returns information about the Organizations configuration for Security Hub. Can only be
- *          called from a Security Hub administrator account.</p>
+ * <p>Returns information about the way your organization is configured in Security Hub. Only the
+ *          Security Hub administrator account can invoke this operation.</p>
  * @example
  * Use a bare-bones client and the command you need to make an API call.
  * ```javascript
@@ -38,6 +38,11 @@ export interface DescribeOrganizationConfigurationCommandOutput extends Describe
  * //   AutoEnable: true || false,
  * //   MemberAccountLimitReached: true || false,
  * //   AutoEnableStandards: "NONE" || "DEFAULT",
+ * //   OrganizationConfiguration: { // OrganizationConfiguration
+ * //     ConfigurationType: "CENTRAL" || "LOCAL",
+ * //     Status: "PENDING" || "ENABLED" || "FAILED",
+ * //     StatusMessage: "STRING_VALUE",
+ * //   },
  * // };
  *
  * ```
@@ -81,6 +86,26 @@ export interface DescribeOrganizationConfigurationCommandOutput extends Describe
  * // example id: to-get-information-about-organizations-configuration-1676059786304
  * ```
  *
+ * @example To get information about organization configuration
+ * ```javascript
+ * // This operation provides information about the way your organization is configured in Security Hub. Only a Security Hub administrator account can invoke this operation.
+ * const input = {};
+ * const command = new DescribeOrganizationConfigurationCommand(input);
+ * const response = await client.send(command);
+ * /* response ==
+ * {
+ *   "AutoEnable": false,
+ *   "AutoEnableStandards": "NONE",
+ *   "MemberAccountLimitReached": false,
+ *   "OrganizationConfiguration": {
+ *     "ConfigurationType": "CENTRAL",
+ *     "Status": "ENABLED"
+ *   }
+ * }
+ * *\/
+ * // example id: to-get-information-about-organization-configuration-1676059786304
+ * ```
+ *
  */
 export declare class DescribeOrganizationConfigurationCommand extends $Command<DescribeOrganizationConfigurationCommandInput, DescribeOrganizationConfigurationCommandOutput, SecurityHubClientResolvedConfig> {
     readonly input: DescribeOrganizationConfigurationCommandInput;

package/dist-types/commands/DisableOrganizationAdminAccountCommand.d.ts CHANGED Viewed

@@ -46,6 +46,9 @@ export interface DisableOrganizationAdminAccountCommandOutput extends DisableOrg
  * @see {@link DisableOrganizationAdminAccountCommandOutput} for command's `response` shape.
  * @see {@link SecurityHubClientResolvedConfig | config} for SecurityHubClient's `config` shape.
  *
+ * @throws {@link AccessDeniedException} (client fault)
+ *  <p>You don't have permission to perform the action specified in the request.</p>
+ *
  * @throws {@link InternalException} (server fault)
  *  <p>Internal server error.</p>
  *

package/dist-types/commands/DisableSecurityHubCommand.d.ts CHANGED Viewed

@@ -50,6 +50,9 @@ export interface DisableSecurityHubCommandOutput extends DisableSecurityHubRespo
  * @see {@link DisableSecurityHubCommandOutput} for command's `response` shape.
  * @see {@link SecurityHubClientResolvedConfig | config} for SecurityHubClient's `config` shape.
  *
+ * @throws {@link AccessDeniedException} (client fault)
+ *  <p>You don't have permission to perform the action specified in the request.</p>
+ *
  * @throws {@link InternalException} (server fault)
  *  <p>Internal server error.</p>
  *

package/dist-types/commands/DisassociateMembersCommand.d.ts CHANGED Viewed

@@ -49,6 +49,9 @@ export interface DisassociateMembersCommandOutput extends DisassociateMembersRes
  * @see {@link DisassociateMembersCommandOutput} for command's `response` shape.
  * @see {@link SecurityHubClientResolvedConfig | config} for SecurityHubClient's `config` shape.
  *
+ * @throws {@link AccessDeniedException} (client fault)
+ *  <p>You don't have permission to perform the action specified in the request.</p>
+ *
  * @throws {@link InternalException} (server fault)
  *  <p>Internal server error.</p>
  *

package/dist-types/commands/EnableOrganizationAdminAccountCommand.d.ts CHANGED Viewed

@@ -46,6 +46,9 @@ export interface EnableOrganizationAdminAccountCommandOutput extends EnableOrgan
  * @see {@link EnableOrganizationAdminAccountCommandOutput} for command's `response` shape.
  * @see {@link SecurityHubClientResolvedConfig | config} for SecurityHubClient's `config` shape.
  *
+ * @throws {@link AccessDeniedException} (client fault)
+ *  <p>You don't have permission to perform the action specified in the request.</p>
+ *
  * @throws {@link InternalException} (server fault)
  *  <p>Internal server error.</p>
  *

package/dist-types/commands/GetConfigurationPolicyAssociationCommand.d.ts ADDED Viewed

@@ -0,0 +1,131 @@
+import { EndpointParameterInstructions } from "@smithy/middleware-endpoint";
+import { Command as $Command } from "@smithy/smithy-client";
+import { Handler, HttpHandlerOptions as __HttpHandlerOptions, MetadataBearer as __MetadataBearer, MiddlewareStack } from "@smithy/types";
+import { GetConfigurationPolicyAssociationRequest, GetConfigurationPolicyAssociationResponse } from "../models/models_2";
+import { SecurityHubClientResolvedConfig, ServiceInputTypes, ServiceOutputTypes } from "../SecurityHubClient";
+/**
+ * @public
+ */
+export { __MetadataBearer, $Command };
+/**
+ * @public
+ *
+ * The input for {@link GetConfigurationPolicyAssociationCommand}.
+ */
+export interface GetConfigurationPolicyAssociationCommandInput extends GetConfigurationPolicyAssociationRequest {
+}
+/**
+ * @public
+ *
+ * The output of {@link GetConfigurationPolicyAssociationCommand}.
+ */
+export interface GetConfigurationPolicyAssociationCommandOutput extends GetConfigurationPolicyAssociationResponse, __MetadataBearer {
+}
+/**
+ * @public
+ * <p>
+ *             Returns the association between a configuration and a target account, organizational unit, or the root. The
+ *             configuration can be a configuration policy or self-managed behavior. Only the Security Hub delegated administrator can
+ *             invoke this operation from the home Region.
+ *         </p>
+ * @example
+ * Use a bare-bones client and the command you need to make an API call.
+ * ```javascript
+ * import { SecurityHubClient, GetConfigurationPolicyAssociationCommand } from "@aws-sdk/client-securityhub"; // ES Modules import
+ * // const { SecurityHubClient, GetConfigurationPolicyAssociationCommand } = require("@aws-sdk/client-securityhub"); // CommonJS import
+ * const client = new SecurityHubClient(config);
+ * const input = { // GetConfigurationPolicyAssociationRequest
+ *   Target: { // Target Union: only one key present
+ *     AccountId: "STRING_VALUE",
+ *     OrganizationalUnitId: "STRING_VALUE",
+ *     RootId: "STRING_VALUE",
+ *   },
+ * };
+ * const command = new GetConfigurationPolicyAssociationCommand(input);
+ * const response = await client.send(command);
+ * // { // GetConfigurationPolicyAssociationResponse
+ * //   ConfigurationPolicyId: "STRING_VALUE",
+ * //   TargetId: "STRING_VALUE",
+ * //   TargetType: "ACCOUNT" || "ORGANIZATIONAL_UNIT",
+ * //   AssociationType: "INHERITED" || "APPLIED",
+ * //   UpdatedAt: new Date("TIMESTAMP"),
+ * //   AssociationStatus: "PENDING" || "SUCCESS" || "FAILED",
+ * //   AssociationStatusMessage: "STRING_VALUE",
+ * // };
+ *
+ * ```
+ *
+ * @param GetConfigurationPolicyAssociationCommandInput - {@link GetConfigurationPolicyAssociationCommandInput}
+ * @returns {@link GetConfigurationPolicyAssociationCommandOutput}
+ * @see {@link GetConfigurationPolicyAssociationCommandInput} for command's `input` shape.
+ * @see {@link GetConfigurationPolicyAssociationCommandOutput} for command's `response` shape.
+ * @see {@link SecurityHubClientResolvedConfig | config} for SecurityHubClient's `config` shape.
+ *
+ * @throws {@link AccessDeniedException} (client fault)
+ *  <p>You don't have permission to perform the action specified in the request.</p>
+ *
+ * @throws {@link InternalException} (server fault)
+ *  <p>Internal server error.</p>
+ *
+ * @throws {@link InvalidAccessException} (client fault)
+ *  <p>The account doesn't have permission to perform this action.</p>
+ *
+ * @throws {@link InvalidInputException} (client fault)
+ *  <p>The request was rejected because you supplied an invalid or out-of-range value for an
+ *          input parameter.</p>
+ *
+ * @throws {@link LimitExceededException} (client fault)
+ *  <p>The request was rejected because it attempted to create resources beyond the current Amazon Web Services
+ *          account or throttling limits. The error code describes the limit exceeded.</p>
+ *
+ * @throws {@link ResourceNotFoundException} (client fault)
+ *  <p>The request was rejected because we can't find the specified resource.</p>
+ *
+ * @throws {@link SecurityHubServiceException}
+ * <p>Base exception class for all service exceptions from SecurityHub service.</p>
+ *
+ * @example To get details about a configuration association
+ * ```javascript
+ * // This operation provides details about configuration associations for a specific target account, organizational unit, or the root.
+ * const input = {
+ *   "Target": {
+ *     "AccountId": "111122223333"
+ *   }
+ * };
+ * const command = new GetConfigurationPolicyAssociationCommand(input);
+ * const response = await client.send(command);
+ * /* response ==
+ * {
+ *   "AssociationStatus": "FAILED",
+ *   "AssociationStatusMessage": "Configuration Policy a1b2c3d4-5678-90ab-cdef-EXAMPLE11111 couldn’t be applied to account 111122223333 in us-east-1 Region. Retry your request.",
+ *   "AssociationType": "INHERITED",
+ *   "ConfigurationPolicyId": "a1b2c3d4-5678-90ab-cdef-EXAMPLE11111",
+ *   "TargetId": "111122223333",
+ *   "TargetType": "ACCOUNT",
+ *   "UpdatedAt": "2023-01-11T06:17:17.154Z"
+ * }
+ * *\/
+ * // example id: to-get-details-about-a-configuration-association-1695177816371
+ * ```
+ *
+ */
+export declare class GetConfigurationPolicyAssociationCommand extends $Command<GetConfigurationPolicyAssociationCommandInput, GetConfigurationPolicyAssociationCommandOutput, SecurityHubClientResolvedConfig> {
+    readonly input: GetConfigurationPolicyAssociationCommandInput;
+    static getEndpointParameterInstructions(): EndpointParameterInstructions;
+    /**
+     * @public
+     */
+    constructor(input: GetConfigurationPolicyAssociationCommandInput);
+    /**
+     * @internal
+     */
+    resolveMiddleware(clientStack: MiddlewareStack<ServiceInputTypes, ServiceOutputTypes>, configuration: SecurityHubClientResolvedConfig, options?: __HttpHandlerOptions): Handler<GetConfigurationPolicyAssociationCommandInput, GetConfigurationPolicyAssociationCommandOutput>;
+    /**
+     * @internal
+     */
+    private serialize;
+    /**
+     * @internal
+     */
+    private deserialize;
+}