@aws-sdk/client-securitylake 3.289.0 → 3.292.0

package/dist-cjs/endpoint/ruleset.js

@@ -1,7 +1,7 @@
 "use strict";
 Object.defineProperty(exports, "__esModule", { value: true });
 exports.ruleSet = void 0;
-const q = "fn", r = "argv", s = "ref";
-const a = true, b = false, c = "String", d = "PartitionResult", e = "tree", f = "error", g = "endpoint", h = { "required": true, "default": false, "type": "Boolean" }, i = { [s]: "Endpoint" }, j = { [q]: "booleanEquals", [r]: [{ [s]: "UseFIPS" }, true] }, k = { [q]: "booleanEquals", [r]: [{ [s]: "UseDualStack" }, true] }, l = {}, m = { [q]: "booleanEquals", [r]: [true, { [q]: "getAttr", [r]: [{ [s]: d }, "supportsFIPS"] }] }, n = { [q]: "booleanEquals", [r]: [true, { [q]: "getAttr", [r]: [{ [s]: d }, "supportsDualStack"] }] }, o = [j], p = [k];
-const _data = { version: "1.0", parameters: { Region: { required: a, type: c }, UseDualStack: h, UseFIPS: h, Endpoint: { required: b, type: c } }, rules: [{ conditions: [{ [q]: "aws.partition", [r]: [{ [s]: "Region" }], assign: d }], type: e, rules: [{ conditions: [{ [q]: "isSet", [r]: [i] }], type: e, rules: [{ conditions: o, error: "Invalid Configuration: FIPS and custom endpoint are not supported", type: f }, { type: e, rules: [{ conditions: p, error: "Invalid Configuration: Dualstack and custom endpoint are not supported", type: f }, { endpoint: { url: i, properties: l, headers: l }, type: g }] }] }, { conditions: [j, k], type: e, rules: [{ conditions: [m, n], type: e, rules: [{ endpoint: { url: "https://securitylake-fips.{Region}.{PartitionResult#dualStackDnsSuffix}", properties: l, headers: l }, type: g }] }, { error: "FIPS and DualStack are enabled, but this partition does not support one or both", type: f }] }, { conditions: o, type: e, rules: [{ conditions: [m], type: e, rules: [{ endpoint: { url: "https://securitylake-fips.{Region}.{PartitionResult#dnsSuffix}", properties: l, headers: l }, type: g }] }, { error: "FIPS is enabled but this partition does not support FIPS", type: f }] }, { conditions: p, type: e, rules: [{ conditions: [n], type: e, rules: [{ endpoint: { url: "https://securitylake.{Region}.{PartitionResult#dualStackDnsSuffix}", properties: l, headers: l }, type: g }] }, { error: "DualStack is enabled but this partition does not support DualStack", type: f }] }, { endpoint: { url: "https://securitylake.{Region}.{PartitionResult#dnsSuffix}", properties: l, headers: l }, type: g }] }] };
+const q = "required", r = "fn", s = "argv", t = "ref";
+const a = "isSet", b = "tree", c = "error", d = "endpoint", e = "PartitionResult", f = { [q]: false, "type": "String" }, g = { [q]: true, "default": false, "type": "Boolean" }, h = { [t]: "Endpoint" }, i = { [r]: "booleanEquals", [s]: [{ [t]: "UseFIPS" }, true] }, j = { [r]: "booleanEquals", [s]: [{ [t]: "UseDualStack" }, true] }, k = {}, l = { [r]: "booleanEquals", [s]: [true, { [r]: "getAttr", [s]: [{ [t]: e }, "supportsFIPS"] }] }, m = { [r]: "booleanEquals", [s]: [true, { [r]: "getAttr", [s]: [{ [t]: e }, "supportsDualStack"] }] }, n = [i], o = [j], p = [{ [t]: "Region" }];
+const _data = { version: "1.0", parameters: { Region: f, UseDualStack: g, UseFIPS: g, Endpoint: f }, rules: [{ conditions: [{ [r]: a, [s]: [h] }], type: b, rules: [{ conditions: n, error: "Invalid Configuration: FIPS and custom endpoint are not supported", type: c }, { type: b, rules: [{ conditions: o, error: "Invalid Configuration: Dualstack and custom endpoint are not supported", type: c }, { endpoint: { url: h, properties: k, headers: k }, type: d }] }] }, { type: b, rules: [{ conditions: [{ [r]: a, [s]: p }], type: b, rules: [{ conditions: [{ [r]: "aws.partition", [s]: p, assign: e }], type: b, rules: [{ conditions: [i, j], type: b, rules: [{ conditions: [l, m], type: b, rules: [{ type: b, rules: [{ endpoint: { url: "https://securitylake-fips.{Region}.{PartitionResult#dualStackDnsSuffix}", properties: k, headers: k }, type: d }] }] }, { error: "FIPS and DualStack are enabled, but this partition does not support one or both", type: c }] }, { conditions: n, type: b, rules: [{ conditions: [l], type: b, rules: [{ type: b, rules: [{ endpoint: { url: "https://securitylake-fips.{Region}.{PartitionResult#dnsSuffix}", properties: k, headers: k }, type: d }] }] }, { error: "FIPS is enabled but this partition does not support FIPS", type: c }] }, { conditions: o, type: b, rules: [{ conditions: [m], type: b, rules: [{ type: b, rules: [{ endpoint: { url: "https://securitylake.{Region}.{PartitionResult#dualStackDnsSuffix}", properties: k, headers: k }, type: d }] }] }, { error: "DualStack is enabled but this partition does not support DualStack", type: c }] }, { type: b, rules: [{ endpoint: { url: "https://securitylake.{Region}.{PartitionResult#dnsSuffix}", properties: k, headers: k }, type: d }] }] }] }, { error: "Invalid Configuration: Missing Region", type: c }] }] };
 exports.ruleSet = _data;

package/dist-cjs/models/models_0.js

@@ -1,8 +1,8 @@
 "use strict";
 Object.defineProperty(exports, "__esModule", { value: true });
 exports.CreateSubscriberResponseFilterSensitiveLog = exports.CreateSubscriberRequestFilterSensitiveLog = exports.SourceTypeFilterSensitiveLog = exports.CreateDatalakeExceptionsSubscriptionResponseFilterSensitiveLog = exports.CreateDatalakeExceptionsSubscriptionRequestFilterSensitiveLog = exports.CreateDatalakeDelegatedAdminResponseFilterSensitiveLog = exports.CreateDatalakeDelegatedAdminRequestFilterSensitiveLog = exports.CreateDatalakeAutoEnableResponseFilterSensitiveLog = exports.CreateDatalakeAutoEnableRequestFilterSensitiveLog = exports.CreateDatalakeResponseFilterSensitiveLog = exports.CreateDatalakeRequestFilterSensitiveLog = exports.LakeConfigurationRequestFilterSensitiveLog = exports.RetentionSettingFilterSensitiveLog = exports.CreateCustomLogSourceResponseFilterSensitiveLog = exports.CreateCustomLogSourceRequestFilterSensitiveLog = exports.ValidationExceptionFieldFilterSensitiveLog = exports.CreateAwsLogSourceResponseFilterSensitiveLog = exports.CreateAwsLogSourceRequestFilterSensitiveLog = exports.AutoEnableNewRegionConfigurationFilterSensitiveLog = exports.AccountSourcesFilterSensitiveLog = exports.LogsStatusFilterSensitiveLog = exports.SubscriptionStatus = exports.SettingsStatus = exports.EventBridgeException = exports.EndpointProtocol = exports.HttpsMethod = exports.InvalidInputException = exports.SourceType = exports.SubscriptionProtocolType = exports.ThrottlingException = exports.ServiceQuotaExceededException = exports.StorageClass = exports.ValidationException = exports.ValidationExceptionReason = exports.S3Exception = exports.ResourceNotFoundException = exports.InternalServerException = exports.Dimension = exports.ConflictSubscriptionException = exports.ConflictSourceNamesException = exports.ConflictException = exports.ConcurrentModificationException = exports.BucketNotFoundException = exports.AwsLogSourceType = exports.Region = exports.SourceStatus = exports.OcsfEventClass = exports.AccountNotFoundException = exports.AccessType = exports.AccessDeniedException = void 0;
-exports.UpdateSubscriptionNotificationConfigurationRequestFilterSensitiveLog = exports.UpdateSubscriberResponseFilterSensitiveLog = exports.UpdateSubscriberRequestFilterSensitiveLog = exports.UpdateDatalakeExceptionsSubscriptionResponseFilterSensitiveLog = exports.UpdateDatalakeExceptionsSubscriptionRequestFilterSensitiveLog = exports.UpdateDatalakeExceptionsExpiryResponseFilterSensitiveLog = exports.UpdateDatalakeExceptionsExpiryRequestFilterSensitiveLog = exports.UpdateDatalakeResponseFilterSensitiveLog = exports.UpdateDatalakeRequestFilterSensitiveLog = exports.ListSubscribersResponseFilterSensitiveLog = exports.ListSubscribersRequestFilterSensitiveLog = exports.ListLogSourcesResponseFilterSensitiveLog = exports.ListLogSourcesRequestFilterSensitiveLog = exports.ListDatalakeExceptionsResponseFilterSensitiveLog = exports.ListDatalakeExceptionsRequestFilterSensitiveLog = exports.GetSubscriberResponseFilterSensitiveLog = exports.SubscriberResourceFilterSensitiveLog = exports.GetSubscriberRequestFilterSensitiveLog = exports.GetDatalakeStatusResponseFilterSensitiveLog = exports.GetDatalakeStatusRequestFilterSensitiveLog = exports.GetDatalakeExceptionsSubscriptionResponseFilterSensitiveLog = exports.ProtocolAndNotificationEndpointFilterSensitiveLog = exports.GetDatalakeExceptionsSubscriptionRequestFilterSensitiveLog = exports.GetDatalakeExceptionsExpiryResponseFilterSensitiveLog = exports.GetDatalakeExceptionsExpiryRequestFilterSensitiveLog = exports.GetDatalakeAutoEnableResponseFilterSensitiveLog = exports.GetDatalakeAutoEnableRequestFilterSensitiveLog = exports.GetDatalakeResponseFilterSensitiveLog = exports.LakeConfigurationResponseFilterSensitiveLog = exports.GetDatalakeRequestFilterSensitiveLog = exports.FailuresResponseFilterSensitiveLog = exports.FailuresFilterSensitiveLog = exports.DeleteSubscriptionNotificationConfigurationResponseFilterSensitiveLog = exports.DeleteSubscriptionNotificationConfigurationRequestFilterSensitiveLog = exports.DeleteSubscriberResponseFilterSensitiveLog = exports.DeleteSubscriberRequestFilterSensitiveLog = exports.DeleteDatalakeExceptionsSubscriptionResponseFilterSensitiveLog = exports.DeleteDatalakeExceptionsSubscriptionRequestFilterSensitiveLog = exports.DeleteDatalakeDelegatedAdminResponseFilterSensitiveLog = exports.DeleteDatalakeDelegatedAdminRequestFilterSensitiveLog = exports.DeleteDatalakeAutoEnableResponseFilterSensitiveLog = exports.DeleteDatalakeAutoEnableRequestFilterSensitiveLog = exports.DeleteDatalakeResponseFilterSensitiveLog = exports.DeleteDatalakeRequestFilterSensitiveLog = exports.DeleteCustomLogSourceResponseFilterSensitiveLog = exports.DeleteCustomLogSourceRequestFilterSensitiveLog = exports.DeleteAwsLogSourceResponseFilterSensitiveLog = exports.DeleteAwsLogSourceRequestFilterSensitiveLog = exports.CreateSubscriptionNotificationConfigurationResponseFilterSensitiveLog = exports.CreateSubscriptionNotificationConfigurationRequestFilterSensitiveLog = void 0;
-exports.UpdateSubscriptionNotificationConfigurationResponseFilterSensitiveLog = void 0;
+exports.UpdateSubscriberRequestFilterSensitiveLog = exports.UpdateDatalakeExceptionsSubscriptionResponseFilterSensitiveLog = exports.UpdateDatalakeExceptionsSubscriptionRequestFilterSensitiveLog = exports.UpdateDatalakeExceptionsExpiryResponseFilterSensitiveLog = exports.UpdateDatalakeExceptionsExpiryRequestFilterSensitiveLog = exports.UpdateDatalakeResponseFilterSensitiveLog = exports.UpdateDatalakeRequestFilterSensitiveLog = exports.ListSubscribersResponseFilterSensitiveLog = exports.ListSubscribersRequestFilterSensitiveLog = exports.ListLogSourcesResponseFilterSensitiveLog = exports.ListLogSourcesRequestFilterSensitiveLog = exports.ListDatalakeExceptionsResponseFilterSensitiveLog = exports.ListDatalakeExceptionsRequestFilterSensitiveLog = exports.GetSubscriberResponseFilterSensitiveLog = exports.SubscriberResourceFilterSensitiveLog = exports.GetSubscriberRequestFilterSensitiveLog = exports.GetDatalakeStatusResponseFilterSensitiveLog = exports.GetDatalakeStatusRequestFilterSensitiveLog = exports.GetDatalakeExceptionsSubscriptionResponseFilterSensitiveLog = exports.ProtocolAndNotificationEndpointFilterSensitiveLog = exports.GetDatalakeExceptionsSubscriptionRequestFilterSensitiveLog = exports.GetDatalakeExceptionsExpiryResponseFilterSensitiveLog = exports.GetDatalakeExceptionsExpiryRequestFilterSensitiveLog = exports.GetDatalakeAutoEnableResponseFilterSensitiveLog = exports.GetDatalakeAutoEnableRequestFilterSensitiveLog = exports.GetDatalakeResponseFilterSensitiveLog = exports.LakeConfigurationResponseFilterSensitiveLog = exports.UpdateStatusFilterSensitiveLog = exports.LastUpdateFailureFilterSensitiveLog = exports.GetDatalakeRequestFilterSensitiveLog = exports.FailuresResponseFilterSensitiveLog = exports.FailuresFilterSensitiveLog = exports.DeleteSubscriptionNotificationConfigurationResponseFilterSensitiveLog = exports.DeleteSubscriptionNotificationConfigurationRequestFilterSensitiveLog = exports.DeleteSubscriberResponseFilterSensitiveLog = exports.DeleteSubscriberRequestFilterSensitiveLog = exports.DeleteDatalakeExceptionsSubscriptionResponseFilterSensitiveLog = exports.DeleteDatalakeExceptionsSubscriptionRequestFilterSensitiveLog = exports.DeleteDatalakeDelegatedAdminResponseFilterSensitiveLog = exports.DeleteDatalakeDelegatedAdminRequestFilterSensitiveLog = exports.DeleteDatalakeAutoEnableResponseFilterSensitiveLog = exports.DeleteDatalakeAutoEnableRequestFilterSensitiveLog = exports.DeleteDatalakeResponseFilterSensitiveLog = exports.DeleteDatalakeRequestFilterSensitiveLog = exports.DeleteCustomLogSourceResponseFilterSensitiveLog = exports.DeleteCustomLogSourceRequestFilterSensitiveLog = exports.DeleteAwsLogSourceResponseFilterSensitiveLog = exports.DeleteAwsLogSourceRequestFilterSensitiveLog = exports.CreateSubscriptionNotificationConfigurationResponseFilterSensitiveLog = exports.CreateSubscriptionNotificationConfigurationRequestFilterSensitiveLog = void 0;
+exports.UpdateSubscriptionNotificationConfigurationResponseFilterSensitiveLog = exports.UpdateSubscriptionNotificationConfigurationRequestFilterSensitiveLog = exports.UpdateSubscriberResponseFilterSensitiveLog = void 0;
 const SecurityLakeServiceException_1 = require("./SecurityLakeServiceException");
 class AccessDeniedException extends SecurityLakeServiceException_1.SecurityLakeServiceException {
     constructor(opts) {
@@ -14,6 +14,7 @@ class AccessDeniedException extends SecurityLakeServiceException_1.SecurityLakeS
         this.name = "AccessDeniedException";
         this.$fault = "client";
         Object.setPrototypeOf(this, AccessDeniedException.prototype);
+        this.errorCode = opts.errorCode;
     }
 }
 exports.AccessDeniedException = AccessDeniedException;
@@ -525,6 +526,14 @@ const GetDatalakeRequestFilterSensitiveLog = (obj) => ({
     ...obj,
 });
 exports.GetDatalakeRequestFilterSensitiveLog = GetDatalakeRequestFilterSensitiveLog;
+const LastUpdateFailureFilterSensitiveLog = (obj) => ({
+    ...obj,
+});
+exports.LastUpdateFailureFilterSensitiveLog = LastUpdateFailureFilterSensitiveLog;
+const UpdateStatusFilterSensitiveLog = (obj) => ({
+    ...obj,
+});
+exports.UpdateStatusFilterSensitiveLog = UpdateStatusFilterSensitiveLog;
 const LakeConfigurationResponseFilterSensitiveLog = (obj) => ({
     ...obj,
 });

package/dist-cjs/protocols/Aws_restJson1.js

@@ -976,6 +976,12 @@ const deserializeAws_restJson1CreateSubscriberCommand = async (output, context)
         $metadata: deserializeMetadata(output),
     });
     const data = (0, smithy_client_1.expectNonNull)((0, smithy_client_1.expectObject)(await parseBody(output.body, context)), "body");
+    if (data.resourceShareArn != null) {
+        contents.resourceShareArn = (0, smithy_client_1.expectString)(data.resourceShareArn);
+    }
+    if (data.resourceShareName != null) {
+        contents.resourceShareName = (0, smithy_client_1.expectString)(data.resourceShareName);
+    }
     if (data.roleArn != null) {
         contents.roleArn = (0, smithy_client_1.expectString)(data.roleArn);
     }
@@ -2100,6 +2106,9 @@ const map = smithy_client_1.map;
 const deserializeAws_restJson1AccessDeniedExceptionResponse = async (parsedOutput, context) => {
     const contents = map({});
     const data = parsedOutput.body;
+    if (data.errorCode != null) {
+        contents.errorCode = (0, smithy_client_1.expectString)(data.errorCode);
+    }
     if (data.message != null) {
         contents.message = (0, smithy_client_1.expectString)(data.message);
     }
@@ -2580,6 +2589,7 @@ const deserializeAws_restJson1LakeConfigurationResponse = (output, context) => {
         s3BucketArn: (0, smithy_client_1.expectString)(output.s3BucketArn),
         status: (0, smithy_client_1.expectString)(output.status),
         tagsMap: output.tagsMap != null ? deserializeAws_restJson1TagsMap(output.tagsMap, context) : undefined,
+        updateStatus: output.updateStatus != null ? deserializeAws_restJson1UpdateStatus(output.updateStatus, context) : undefined,
     };
 };
 const deserializeAws_restJson1LakeConfigurationResponseMap = (output, context) => {
@@ -2591,6 +2601,12 @@ const deserializeAws_restJson1LakeConfigurationResponseMap = (output, context) =
         return acc;
     }, {});
 };
+const deserializeAws_restJson1LastUpdateFailure = (output, context) => {
+    return {
+        code: (0, smithy_client_1.expectString)(output.code),
+        reason: (0, smithy_client_1.expectString)(output.reason),
+    };
+};
 const deserializeAws_restJson1LogsStatus = (output, context) => {
     return {
         healthStatus: (0, smithy_client_1.expectString)(output.healthStatus),
@@ -2690,6 +2706,8 @@ const deserializeAws_restJson1SubscriberResource = (output, context) => {
         accountId: (0, smithy_client_1.expectString)(output.accountId),
         createdAt: output.createdAt != null ? (0, smithy_client_1.expectNonNull)((0, smithy_client_1.parseRfc3339DateTimeWithOffset)(output.createdAt)) : undefined,
         externalId: (0, smithy_client_1.expectString)(output.externalId),
+        resourceShareArn: (0, smithy_client_1.expectString)(output.resourceShareArn),
+        resourceShareName: (0, smithy_client_1.expectString)(output.resourceShareName),
         roleArn: (0, smithy_client_1.expectString)(output.roleArn),
         s3BucketArn: (0, smithy_client_1.expectString)(output.s3BucketArn),
         snsArn: (0, smithy_client_1.expectString)(output.snsArn),
@@ -2721,6 +2739,15 @@ const deserializeAws_restJson1TwoDimensionsMap = (output, context) => {
         return acc;
     }, {});
 };
+const deserializeAws_restJson1UpdateStatus = (output, context) => {
+    return {
+        lastUpdateFailure: output.lastUpdateFailure != null
+            ? deserializeAws_restJson1LastUpdateFailure(output.lastUpdateFailure, context)
+            : undefined,
+        lastUpdateRequestId: (0, smithy_client_1.expectString)(output.lastUpdateRequestId),
+        lastUpdateStatus: (0, smithy_client_1.expectString)(output.lastUpdateStatus),
+    };
+};
 const deserializeAws_restJson1ValidationExceptionField = (output, context) => {
     return {
         message: (0, smithy_client_1.expectString)(output.message),

package/dist-es/endpoint/ruleset.js

@@ -1,4 +1,4 @@
-const q = "fn", r = "argv", s = "ref";
-const a = true, b = false, c = "String", d = "PartitionResult", e = "tree", f = "error", g = "endpoint", h = { "required": true, "default": false, "type": "Boolean" }, i = { [s]: "Endpoint" }, j = { [q]: "booleanEquals", [r]: [{ [s]: "UseFIPS" }, true] }, k = { [q]: "booleanEquals", [r]: [{ [s]: "UseDualStack" }, true] }, l = {}, m = { [q]: "booleanEquals", [r]: [true, { [q]: "getAttr", [r]: [{ [s]: d }, "supportsFIPS"] }] }, n = { [q]: "booleanEquals", [r]: [true, { [q]: "getAttr", [r]: [{ [s]: d }, "supportsDualStack"] }] }, o = [j], p = [k];
-const _data = { version: "1.0", parameters: { Region: { required: a, type: c }, UseDualStack: h, UseFIPS: h, Endpoint: { required: b, type: c } }, rules: [{ conditions: [{ [q]: "aws.partition", [r]: [{ [s]: "Region" }], assign: d }], type: e, rules: [{ conditions: [{ [q]: "isSet", [r]: [i] }], type: e, rules: [{ conditions: o, error: "Invalid Configuration: FIPS and custom endpoint are not supported", type: f }, { type: e, rules: [{ conditions: p, error: "Invalid Configuration: Dualstack and custom endpoint are not supported", type: f }, { endpoint: { url: i, properties: l, headers: l }, type: g }] }] }, { conditions: [j, k], type: e, rules: [{ conditions: [m, n], type: e, rules: [{ endpoint: { url: "https://securitylake-fips.{Region}.{PartitionResult#dualStackDnsSuffix}", properties: l, headers: l }, type: g }] }, { error: "FIPS and DualStack are enabled, but this partition does not support one or both", type: f }] }, { conditions: o, type: e, rules: [{ conditions: [m], type: e, rules: [{ endpoint: { url: "https://securitylake-fips.{Region}.{PartitionResult#dnsSuffix}", properties: l, headers: l }, type: g }] }, { error: "FIPS is enabled but this partition does not support FIPS", type: f }] }, { conditions: p, type: e, rules: [{ conditions: [n], type: e, rules: [{ endpoint: { url: "https://securitylake.{Region}.{PartitionResult#dualStackDnsSuffix}", properties: l, headers: l }, type: g }] }, { error: "DualStack is enabled but this partition does not support DualStack", type: f }] }, { endpoint: { url: "https://securitylake.{Region}.{PartitionResult#dnsSuffix}", properties: l, headers: l }, type: g }] }] };
+const q = "required", r = "fn", s = "argv", t = "ref";
+const a = "isSet", b = "tree", c = "error", d = "endpoint", e = "PartitionResult", f = { [q]: false, "type": "String" }, g = { [q]: true, "default": false, "type": "Boolean" }, h = { [t]: "Endpoint" }, i = { [r]: "booleanEquals", [s]: [{ [t]: "UseFIPS" }, true] }, j = { [r]: "booleanEquals", [s]: [{ [t]: "UseDualStack" }, true] }, k = {}, l = { [r]: "booleanEquals", [s]: [true, { [r]: "getAttr", [s]: [{ [t]: e }, "supportsFIPS"] }] }, m = { [r]: "booleanEquals", [s]: [true, { [r]: "getAttr", [s]: [{ [t]: e }, "supportsDualStack"] }] }, n = [i], o = [j], p = [{ [t]: "Region" }];
+const _data = { version: "1.0", parameters: { Region: f, UseDualStack: g, UseFIPS: g, Endpoint: f }, rules: [{ conditions: [{ [r]: a, [s]: [h] }], type: b, rules: [{ conditions: n, error: "Invalid Configuration: FIPS and custom endpoint are not supported", type: c }, { type: b, rules: [{ conditions: o, error: "Invalid Configuration: Dualstack and custom endpoint are not supported", type: c }, { endpoint: { url: h, properties: k, headers: k }, type: d }] }] }, { type: b, rules: [{ conditions: [{ [r]: a, [s]: p }], type: b, rules: [{ conditions: [{ [r]: "aws.partition", [s]: p, assign: e }], type: b, rules: [{ conditions: [i, j], type: b, rules: [{ conditions: [l, m], type: b, rules: [{ type: b, rules: [{ endpoint: { url: "https://securitylake-fips.{Region}.{PartitionResult#dualStackDnsSuffix}", properties: k, headers: k }, type: d }] }] }, { error: "FIPS and DualStack are enabled, but this partition does not support one or both", type: c }] }, { conditions: n, type: b, rules: [{ conditions: [l], type: b, rules: [{ type: b, rules: [{ endpoint: { url: "https://securitylake-fips.{Region}.{PartitionResult#dnsSuffix}", properties: k, headers: k }, type: d }] }] }, { error: "FIPS is enabled but this partition does not support FIPS", type: c }] }, { conditions: o, type: b, rules: [{ conditions: [m], type: b, rules: [{ type: b, rules: [{ endpoint: { url: "https://securitylake.{Region}.{PartitionResult#dualStackDnsSuffix}", properties: k, headers: k }, type: d }] }] }, { error: "DualStack is enabled but this partition does not support DualStack", type: c }] }, { type: b, rules: [{ endpoint: { url: "https://securitylake.{Region}.{PartitionResult#dnsSuffix}", properties: k, headers: k }, type: d }] }] }] }, { error: "Invalid Configuration: Missing Region", type: c }] }] };
 export const ruleSet = _data;

package/dist-es/models/models_0.js

@@ -9,6 +9,7 @@ export class AccessDeniedException extends __BaseException {
         this.name = "AccessDeniedException";
         this.$fault = "client";
         Object.setPrototypeOf(this, AccessDeniedException.prototype);
+        this.errorCode = opts.errorCode;
     }
 }
 export var AccessType;
@@ -463,6 +464,12 @@ export const FailuresResponseFilterSensitiveLog = (obj) => ({
 export const GetDatalakeRequestFilterSensitiveLog = (obj) => ({
     ...obj,
 });
+export const LastUpdateFailureFilterSensitiveLog = (obj) => ({
+    ...obj,
+});
+export const UpdateStatusFilterSensitiveLog = (obj) => ({
+    ...obj,
+});
 export const LakeConfigurationResponseFilterSensitiveLog = (obj) => ({
     ...obj,
 });

package/dist-es/protocols/Aws_restJson1.js

@@ -936,6 +936,12 @@ export const deserializeAws_restJson1CreateSubscriberCommand = async (output, co
         $metadata: deserializeMetadata(output),
     });
     const data = __expectNonNull(__expectObject(await parseBody(output.body, context)), "body");
+    if (data.resourceShareArn != null) {
+        contents.resourceShareArn = __expectString(data.resourceShareArn);
+    }
+    if (data.resourceShareName != null) {
+        contents.resourceShareName = __expectString(data.resourceShareName);
+    }
     if (data.roleArn != null) {
         contents.roleArn = __expectString(data.roleArn);
     }
@@ -2036,6 +2042,9 @@ const map = __map;
 const deserializeAws_restJson1AccessDeniedExceptionResponse = async (parsedOutput, context) => {
     const contents = map({});
     const data = parsedOutput.body;
+    if (data.errorCode != null) {
+        contents.errorCode = __expectString(data.errorCode);
+    }
     if (data.message != null) {
         contents.message = __expectString(data.message);
     }
@@ -2516,6 +2525,7 @@ const deserializeAws_restJson1LakeConfigurationResponse = (output, context) => {
         s3BucketArn: __expectString(output.s3BucketArn),
         status: __expectString(output.status),
         tagsMap: output.tagsMap != null ? deserializeAws_restJson1TagsMap(output.tagsMap, context) : undefined,
+        updateStatus: output.updateStatus != null ? deserializeAws_restJson1UpdateStatus(output.updateStatus, context) : undefined,
     };
 };
 const deserializeAws_restJson1LakeConfigurationResponseMap = (output, context) => {
@@ -2527,6 +2537,12 @@ const deserializeAws_restJson1LakeConfigurationResponseMap = (output, context) =
         return acc;
     }, {});
 };
+const deserializeAws_restJson1LastUpdateFailure = (output, context) => {
+    return {
+        code: __expectString(output.code),
+        reason: __expectString(output.reason),
+    };
+};
 const deserializeAws_restJson1LogsStatus = (output, context) => {
     return {
         healthStatus: __expectString(output.healthStatus),
@@ -2626,6 +2642,8 @@ const deserializeAws_restJson1SubscriberResource = (output, context) => {
         accountId: __expectString(output.accountId),
         createdAt: output.createdAt != null ? __expectNonNull(__parseRfc3339DateTimeWithOffset(output.createdAt)) : undefined,
         externalId: __expectString(output.externalId),
+        resourceShareArn: __expectString(output.resourceShareArn),
+        resourceShareName: __expectString(output.resourceShareName),
         roleArn: __expectString(output.roleArn),
         s3BucketArn: __expectString(output.s3BucketArn),
         snsArn: __expectString(output.snsArn),
@@ -2657,6 +2675,15 @@ const deserializeAws_restJson1TwoDimensionsMap = (output, context) => {
         return acc;
     }, {});
 };
+const deserializeAws_restJson1UpdateStatus = (output, context) => {
+    return {
+        lastUpdateFailure: output.lastUpdateFailure != null
+            ? deserializeAws_restJson1LastUpdateFailure(output.lastUpdateFailure, context)
+            : undefined,
+        lastUpdateRequestId: __expectString(output.lastUpdateRequestId),
+        lastUpdateStatus: __expectString(output.lastUpdateStatus),
+    };
+};
 const deserializeAws_restJson1ValidationExceptionField = (output, context) => {
     return {
         message: __expectString(output.message),

package/dist-types/SecurityLake.d.ts

@@ -148,7 +148,8 @@ export declare class SecurityLake extends SecurityLakeClient {
     createSubscriber(args: CreateSubscriberCommandInput, options: __HttpHandlerOptions, cb: (err: any, data?: CreateSubscriberCommandOutput) => void): void;
     /**
      * <p>Notifies the subscriber when new data is written to the data lake for the sources that
-     *          the subscriber consumes in Security Lake.</p>
+     *          the subscriber consumes in Security Lake. You can create only one subscriber notification per
+     *          subscriber.</p>
      */
     createSubscriptionNotificationConfiguration(args: CreateSubscriptionNotificationConfigurationCommandInput, options?: __HttpHandlerOptions): Promise<CreateSubscriptionNotificationConfigurationCommandOutput>;
     createSubscriptionNotificationConfiguration(args: CreateSubscriptionNotificationConfigurationCommandInput, cb: (err: any, data?: CreateSubscriptionNotificationConfigurationCommandOutput) => void): void;
@@ -193,15 +194,12 @@ export declare class SecurityLake extends SecurityLakeClient {
     deleteDatalake(args: DeleteDatalakeCommandInput, cb: (err: any, data?: DeleteDatalakeCommandOutput) => void): void;
     deleteDatalake(args: DeleteDatalakeCommandInput, options: __HttpHandlerOptions, cb: (err: any, data?: DeleteDatalakeCommandOutput) => void): void;
     /**
-     * <p>Automatically deletes Amazon Security Lake to stop collecting security data. When you delete
-     *          Amazon Security Lake from your account, Security Lake is disabled in all Regions. Also, this API
-     *          automatically takes steps to remove the account from Security Lake . </p>
-     *          <p>This operation disables security data collection from sources, deletes data stored, and
-     *          stops making data accessible to subscribers. Security Lake also deletes all the existing
-     *          settings and resources that it stores or maintains for your Amazon Web Services account in
-     *          the current Region, including security log and event data. The <code>DeleteDatalake</code>
-     *          operation does not delete the Amazon S3 bucket, which is owned by your Amazon Web Services account. For more information, see the <a href="https://docs.aws.amazon.com/security-lake/latest/userguide/disable-security-lake.html">Amazon Security Lake User
-     *             Guide</a>.</p>
+     * <p>
+     *             <code>DeleteDatalakeAutoEnable</code> removes automatic enablement of configuration
+     *          settings for new member accounts (but keeps settings for the delegated administrator) from
+     *          Amazon Security Lake.  You must run this API using credentials of the delegated administrator.
+     *          When you run this API, new member accounts that are added after the organization enables
+     *          Security Lake won't contribute to the data lake.</p>
      */
     deleteDatalakeAutoEnable(args: DeleteDatalakeAutoEnableCommandInput, options?: __HttpHandlerOptions): Promise<DeleteDatalakeAutoEnableCommandOutput>;
     deleteDatalakeAutoEnable(args: DeleteDatalakeAutoEnableCommandInput, cb: (err: any, data?: DeleteDatalakeAutoEnableCommandOutput) => void): void;
@@ -329,8 +327,8 @@ export declare class SecurityLake extends SecurityLakeClient {
     updateSubscriber(args: UpdateSubscriberCommandInput, cb: (err: any, data?: UpdateSubscriberCommandOutput) => void): void;
     updateSubscriber(args: UpdateSubscriberCommandInput, options: __HttpHandlerOptions, cb: (err: any, data?: UpdateSubscriberCommandOutput) => void): void;
     /**
-     * <p>Creates a new subscription notification or adds the existing subscription notification
-     *          setting for the specified subscription ID.</p>
+     * <p>Updates an existing notification method for the subscription (SQS or HTTPs endpoint) or
+     *          switches the notification subscription endpoint for a subscriber.</p>
      */
     updateSubscriptionNotificationConfiguration(args: UpdateSubscriptionNotificationConfigurationCommandInput, options?: __HttpHandlerOptions): Promise<UpdateSubscriptionNotificationConfigurationCommandOutput>;
     updateSubscriptionNotificationConfiguration(args: UpdateSubscriptionNotificationConfigurationCommandInput, cb: (err: any, data?: UpdateSubscriptionNotificationConfigurationCommandOutput) => void): void;

package/dist-types/commands/CreateAwsLogSourceCommand.d.ts

@@ -43,6 +43,34 @@ export interface CreateAwsLogSourceCommandOutput extends CreateAwsLogSourceRespo
  * @see {@link CreateAwsLogSourceCommandOutput} for command's `response` shape.
  * @see {@link SecurityLakeClientResolvedConfig | config} for SecurityLakeClient's `config` shape.
  *
+ * @throws {@link AccessDeniedException} (client fault)
+ *  <p>You do not have sufficient access to perform this action. Access denied errors appear when Amazon Security Lake explicitly or implicitly denies an authorization
+ *          request. An explicit denial occurs when a policy contains a Deny statement for the specific
+ *          Amazon Web Services action. An implicit denial occurs when there is no applicable Deny statement and also
+ *          no applicable Allow statement.</p>
+ *
+ * @throws {@link AccountNotFoundException} (client fault)
+ *  <p>Amazon Security Lake cannot find an Amazon Web Services account with the accountID that you
+ *          specified, or the account whose credentials you used to make this request isn't a member of
+ *          an organization.</p>
+ *
+ * @throws {@link InternalServerException} (server fault)
+ *  <p>Internal service exceptions are sometimes caused by transient issues. Before you start
+ *          troubleshooting, perform the operation again. </p>
+ *
+ * @throws {@link ResourceNotFoundException} (client fault)
+ *  <p>The resource could not be found.</p>
+ *
+ * @throws {@link S3Exception} (client fault)
+ *  <p>Provides an extension of the AmazonServiceException for errors reported by Amazon S3 while processing a request. In particular, this class provides access to the
+ *             Amazon S3 extended request ID. If Amazon S3 is incorrectly handling a
+ *          request and you need to contact Amazon, this extended request ID may provide useful
+ *          debugging information. </p>
+ *
+ * @throws {@link ValidationException} (client fault)
+ *  <p>Your signing certificate could not be validated. </p>
+ *
+ *
  */
 export declare class CreateAwsLogSourceCommand extends $Command<CreateAwsLogSourceCommandInput, CreateAwsLogSourceCommandOutput, SecurityLakeClientResolvedConfig> {
     readonly input: CreateAwsLogSourceCommandInput;

package/dist-types/commands/CreateCustomLogSourceCommand.d.ts

@@ -34,6 +34,35 @@ export interface CreateCustomLogSourceCommandOutput extends CreateCustomLogSourc
  * @see {@link CreateCustomLogSourceCommandOutput} for command's `response` shape.
  * @see {@link SecurityLakeClientResolvedConfig | config} for SecurityLakeClient's `config` shape.
  *
+ * @throws {@link AccessDeniedException} (client fault)
+ *  <p>You do not have sufficient access to perform this action. Access denied errors appear when Amazon Security Lake explicitly or implicitly denies an authorization
+ *          request. An explicit denial occurs when a policy contains a Deny statement for the specific
+ *          Amazon Web Services action. An implicit denial occurs when there is no applicable Deny statement and also
+ *          no applicable Allow statement.</p>
+ *
+ * @throws {@link AccountNotFoundException} (client fault)
+ *  <p>Amazon Security Lake cannot find an Amazon Web Services account with the accountID that you
+ *          specified, or the account whose credentials you used to make this request isn't a member of
+ *          an organization.</p>
+ *
+ * @throws {@link BucketNotFoundException} (client fault)
+ *  <p>Amazon Security Lake  generally returns 404 errors if the requested object is missing from the
+ *          bucket.</p>
+ *
+ * @throws {@link ConflictSourceNamesException} (client fault)
+ *  <p>There was a conflict when you attempted to modify a Security Lake source name. </p>
+ *
+ * @throws {@link InternalServerException} (server fault)
+ *  <p>Internal service exceptions are sometimes caused by transient issues. Before you start
+ *          troubleshooting, perform the operation again. </p>
+ *
+ * @throws {@link ResourceNotFoundException} (client fault)
+ *  <p>The resource could not be found.</p>
+ *
+ * @throws {@link ValidationException} (client fault)
+ *  <p>Your signing certificate could not be validated. </p>
+ *
+ *
  */
 export declare class CreateCustomLogSourceCommand extends $Command<CreateCustomLogSourceCommandInput, CreateCustomLogSourceCommandOutput, SecurityLakeClientResolvedConfig> {
     readonly input: CreateCustomLogSourceCommandInput;

package/dist-types/commands/CreateDatalakeAutoEnableCommand.d.ts

@@ -31,6 +31,25 @@ export interface CreateDatalakeAutoEnableCommandOutput extends CreateDatalakeAut
  * @see {@link CreateDatalakeAutoEnableCommandOutput} for command's `response` shape.
  * @see {@link SecurityLakeClientResolvedConfig | config} for SecurityLakeClient's `config` shape.
  *
+ * @throws {@link AccessDeniedException} (client fault)
+ *  <p>You do not have sufficient access to perform this action. Access denied errors appear when Amazon Security Lake explicitly or implicitly denies an authorization
+ *          request. An explicit denial occurs when a policy contains a Deny statement for the specific
+ *          Amazon Web Services action. An implicit denial occurs when there is no applicable Deny statement and also
+ *          no applicable Allow statement.</p>
+ *
+ * @throws {@link AccountNotFoundException} (client fault)
+ *  <p>Amazon Security Lake cannot find an Amazon Web Services account with the accountID that you
+ *          specified, or the account whose credentials you used to make this request isn't a member of
+ *          an organization.</p>
+ *
+ * @throws {@link InternalServerException} (server fault)
+ *  <p>Internal service exceptions are sometimes caused by transient issues. Before you start
+ *          troubleshooting, perform the operation again. </p>
+ *
+ * @throws {@link ValidationException} (client fault)
+ *  <p>Your signing certificate could not be validated. </p>
+ *
+ *
  */
 export declare class CreateDatalakeAutoEnableCommand extends $Command<CreateDatalakeAutoEnableCommandInput, CreateDatalakeAutoEnableCommandOutput, SecurityLakeClientResolvedConfig> {
     readonly input: CreateDatalakeAutoEnableCommandInput;

package/dist-types/commands/CreateDatalakeCommand.d.ts

@@ -44,6 +44,36 @@ export interface CreateDatalakeCommandOutput extends CreateDatalakeResponse, __M
  * @see {@link CreateDatalakeCommandOutput} for command's `response` shape.
  * @see {@link SecurityLakeClientResolvedConfig | config} for SecurityLakeClient's `config` shape.
  *
+ * @throws {@link AccessDeniedException} (client fault)
+ *  <p>You do not have sufficient access to perform this action. Access denied errors appear when Amazon Security Lake explicitly or implicitly denies an authorization
+ *          request. An explicit denial occurs when a policy contains a Deny statement for the specific
+ *          Amazon Web Services action. An implicit denial occurs when there is no applicable Deny statement and also
+ *          no applicable Allow statement.</p>
+ *
+ * @throws {@link ConflictException} (client fault)
+ *  <p>Occurs when a conflict with a previous successful write is detected. This generally
+ *          occurs when the previous write did not have time to propagate to the host serving the
+ *          current request. A retry (with appropriate backoff logic) is the recommended response to
+ *          this exception.</p>
+ *
+ * @throws {@link InternalServerException} (server fault)
+ *  <p>Internal service exceptions are sometimes caused by transient issues. Before you start
+ *          troubleshooting, perform the operation again. </p>
+ *
+ * @throws {@link ResourceNotFoundException} (client fault)
+ *  <p>The resource could not be found.</p>
+ *
+ * @throws {@link ServiceQuotaExceededException} (client fault)
+ *  <p>You have exceeded your service quota. To perform the requested action, remove some of
+ *          the relevant resources, or use Service Quotas to request a service quota increase. </p>
+ *
+ * @throws {@link ThrottlingException} (client fault)
+ *  <p>The limit on the number of requests per second was exceeded. </p>
+ *
+ * @throws {@link ValidationException} (client fault)
+ *  <p>Your signing certificate could not be validated. </p>
+ *
+ *
  */
 export declare class CreateDatalakeCommand extends $Command<CreateDatalakeCommandInput, CreateDatalakeCommandOutput, SecurityLakeClientResolvedConfig> {
     readonly input: CreateDatalakeCommandInput;

package/dist-types/commands/CreateDatalakeDelegatedAdminCommand.d.ts

@@ -31,6 +31,23 @@ export interface CreateDatalakeDelegatedAdminCommandOutput extends CreateDatalak
  * @see {@link CreateDatalakeDelegatedAdminCommandOutput} for command's `response` shape.
  * @see {@link SecurityLakeClientResolvedConfig | config} for SecurityLakeClient's `config` shape.
  *
+ * @throws {@link AccessDeniedException} (client fault)
+ *  <p>You do not have sufficient access to perform this action. Access denied errors appear when Amazon Security Lake explicitly or implicitly denies an authorization
+ *          request. An explicit denial occurs when a policy contains a Deny statement for the specific
+ *          Amazon Web Services action. An implicit denial occurs when there is no applicable Deny statement and also
+ *          no applicable Allow statement.</p>
+ *
+ * @throws {@link InternalServerException} (server fault)
+ *  <p>Internal service exceptions are sometimes caused by transient issues. Before you start
+ *          troubleshooting, perform the operation again. </p>
+ *
+ * @throws {@link ThrottlingException} (client fault)
+ *  <p>The limit on the number of requests per second was exceeded. </p>
+ *
+ * @throws {@link ValidationException} (client fault)
+ *  <p>Your signing certificate could not be validated. </p>
+ *
+ *
  */
 export declare class CreateDatalakeDelegatedAdminCommand extends $Command<CreateDatalakeDelegatedAdminCommandInput, CreateDatalakeDelegatedAdminCommandOutput, SecurityLakeClientResolvedConfig> {
     readonly input: CreateDatalakeDelegatedAdminCommandInput;

package/dist-types/commands/CreateDatalakeExceptionsSubscriptionCommand.d.ts

@@ -30,6 +30,25 @@ export interface CreateDatalakeExceptionsSubscriptionCommandOutput extends Creat
  * @see {@link CreateDatalakeExceptionsSubscriptionCommandOutput} for command's `response` shape.
  * @see {@link SecurityLakeClientResolvedConfig | config} for SecurityLakeClient's `config` shape.
  *
+ * @throws {@link AccessDeniedException} (client fault)
+ *  <p>You do not have sufficient access to perform this action. Access denied errors appear when Amazon Security Lake explicitly or implicitly denies an authorization
+ *          request. An explicit denial occurs when a policy contains a Deny statement for the specific
+ *          Amazon Web Services action. An implicit denial occurs when there is no applicable Deny statement and also
+ *          no applicable Allow statement.</p>
+ *
+ * @throws {@link AccountNotFoundException} (client fault)
+ *  <p>Amazon Security Lake cannot find an Amazon Web Services account with the accountID that you
+ *          specified, or the account whose credentials you used to make this request isn't a member of
+ *          an organization.</p>
+ *
+ * @throws {@link InternalServerException} (server fault)
+ *  <p>Internal service exceptions are sometimes caused by transient issues. Before you start
+ *          troubleshooting, perform the operation again. </p>
+ *
+ * @throws {@link ValidationException} (client fault)
+ *  <p>Your signing certificate could not be validated. </p>
+ *
+ *
  */
 export declare class CreateDatalakeExceptionsSubscriptionCommand extends $Command<CreateDatalakeExceptionsSubscriptionCommandInput, CreateDatalakeExceptionsSubscriptionCommandOutput, SecurityLakeClientResolvedConfig> {
     readonly input: CreateDatalakeExceptionsSubscriptionCommandInput;

package/dist-types/commands/CreateSubscriberCommand.d.ts

@@ -30,6 +30,39 @@ export interface CreateSubscriberCommandOutput extends CreateSubscriberResponse,
  * @see {@link CreateSubscriberCommandOutput} for command's `response` shape.
  * @see {@link SecurityLakeClientResolvedConfig | config} for SecurityLakeClient's `config` shape.
  *
+ * @throws {@link AccessDeniedException} (client fault)
+ *  <p>You do not have sufficient access to perform this action. Access denied errors appear when Amazon Security Lake explicitly or implicitly denies an authorization
+ *          request. An explicit denial occurs when a policy contains a Deny statement for the specific
+ *          Amazon Web Services action. An implicit denial occurs when there is no applicable Deny statement and also
+ *          no applicable Allow statement.</p>
+ *
+ * @throws {@link AccountNotFoundException} (client fault)
+ *  <p>Amazon Security Lake cannot find an Amazon Web Services account with the accountID that you
+ *          specified, or the account whose credentials you used to make this request isn't a member of
+ *          an organization.</p>
+ *
+ * @throws {@link BucketNotFoundException} (client fault)
+ *  <p>Amazon Security Lake  generally returns 404 errors if the requested object is missing from the
+ *          bucket.</p>
+ *
+ * @throws {@link ConflictSubscriptionException} (client fault)
+ *  <p>A conflicting subscription exception operation is in progress. </p>
+ *
+ * @throws {@link InternalServerException} (server fault)
+ *  <p>Internal service exceptions are sometimes caused by transient issues. Before you start
+ *          troubleshooting, perform the operation again. </p>
+ *
+ * @throws {@link InvalidInputException} (client fault)
+ *  <p>The request was rejected because a value that's not valid or is out of range was
+ *          supplied for an input parameter. </p>
+ *
+ * @throws {@link ResourceNotFoundException} (client fault)
+ *  <p>The resource could not be found.</p>
+ *
+ * @throws {@link ValidationException} (client fault)
+ *  <p>Your signing certificate could not be validated. </p>
+ *
+ *
  */
 export declare class CreateSubscriberCommand extends $Command<CreateSubscriberCommandInput, CreateSubscriberCommandOutput, SecurityLakeClientResolvedConfig> {
     readonly input: CreateSubscriberCommandInput;

package/dist-types/commands/CreateSubscriptionNotificationConfigurationCommand.d.ts

@@ -15,7 +15,8 @@ export interface CreateSubscriptionNotificationConfigurationCommandOutput extend
 }
 /**
  * <p>Notifies the subscriber when new data is written to the data lake for the sources that
- *          the subscriber consumes in Security Lake.</p>
+ *          the subscriber consumes in Security Lake. You can create only one subscriber notification per
+ *          subscriber.</p>
  * @example
  * Use a bare-bones client and the command you need to make an API call.
  * ```javascript
@@ -30,6 +31,35 @@ export interface CreateSubscriptionNotificationConfigurationCommandOutput extend
  * @see {@link CreateSubscriptionNotificationConfigurationCommandOutput} for command's `response` shape.
  * @see {@link SecurityLakeClientResolvedConfig | config} for SecurityLakeClient's `config` shape.
  *
+ * @throws {@link AccessDeniedException} (client fault)
+ *  <p>You do not have sufficient access to perform this action. Access denied errors appear when Amazon Security Lake explicitly or implicitly denies an authorization
+ *          request. An explicit denial occurs when a policy contains a Deny statement for the specific
+ *          Amazon Web Services action. An implicit denial occurs when there is no applicable Deny statement and also
+ *          no applicable Allow statement.</p>
+ *
+ * @throws {@link AccountNotFoundException} (client fault)
+ *  <p>Amazon Security Lake cannot find an Amazon Web Services account with the accountID that you
+ *          specified, or the account whose credentials you used to make this request isn't a member of
+ *          an organization.</p>
+ *
+ * @throws {@link ConcurrentModificationException} (client fault)
+ *  <p>More than one process tried to modify a resource at the same time. </p>
+ *
+ * @throws {@link InternalServerException} (server fault)
+ *  <p>Internal service exceptions are sometimes caused by transient issues. Before you start
+ *          troubleshooting, perform the operation again. </p>
+ *
+ * @throws {@link InvalidInputException} (client fault)
+ *  <p>The request was rejected because a value that's not valid or is out of range was
+ *          supplied for an input parameter. </p>
+ *
+ * @throws {@link ResourceNotFoundException} (client fault)
+ *  <p>The resource could not be found.</p>
+ *
+ * @throws {@link ValidationException} (client fault)
+ *  <p>Your signing certificate could not be validated. </p>
+ *
+ *
  */
 export declare class CreateSubscriptionNotificationConfigurationCommand extends $Command<CreateSubscriptionNotificationConfigurationCommandInput, CreateSubscriptionNotificationConfigurationCommandOutput, SecurityLakeClientResolvedConfig> {
     readonly input: CreateSubscriptionNotificationConfigurationCommandInput;

package/dist-types/commands/DeleteAwsLogSourceCommand.d.ts

@@ -43,6 +43,25 @@ export interface DeleteAwsLogSourceCommandOutput extends DeleteAwsLogSourceRespo
  * @see {@link DeleteAwsLogSourceCommandOutput} for command's `response` shape.
  * @see {@link SecurityLakeClientResolvedConfig | config} for SecurityLakeClient's `config` shape.
  *
+ * @throws {@link AccessDeniedException} (client fault)
+ *  <p>You do not have sufficient access to perform this action. Access denied errors appear when Amazon Security Lake explicitly or implicitly denies an authorization
+ *          request. An explicit denial occurs when a policy contains a Deny statement for the specific
+ *          Amazon Web Services action. An implicit denial occurs when there is no applicable Deny statement and also
+ *          no applicable Allow statement.</p>
+ *
+ * @throws {@link AccountNotFoundException} (client fault)
+ *  <p>Amazon Security Lake cannot find an Amazon Web Services account with the accountID that you
+ *          specified, or the account whose credentials you used to make this request isn't a member of
+ *          an organization.</p>
+ *
+ * @throws {@link InternalServerException} (server fault)
+ *  <p>Internal service exceptions are sometimes caused by transient issues. Before you start
+ *          troubleshooting, perform the operation again. </p>
+ *
+ * @throws {@link ValidationException} (client fault)
+ *  <p>Your signing certificate could not be validated. </p>
+ *
+ *
  */
 export declare class DeleteAwsLogSourceCommand extends $Command<DeleteAwsLogSourceCommandInput, DeleteAwsLogSourceCommandOutput, SecurityLakeClientResolvedConfig> {
     readonly input: DeleteAwsLogSourceCommandInput;