@aws-sdk/client-securitylake 3.370.0 → 3.377.0

package/dist-types/commands/UntagResourceCommand.d.ts

@@ -0,0 +1,100 @@
+import { EndpointParameterInstructions } from "@smithy/middleware-endpoint";
+import { Command as $Command } from "@smithy/smithy-client";
+import { Handler, HttpHandlerOptions as __HttpHandlerOptions, MetadataBearer as __MetadataBearer, MiddlewareStack } from "@smithy/types";
+import { UntagResourceRequest, UntagResourceResponse } from "../models/models_0";
+import { SecurityLakeClientResolvedConfig, ServiceInputTypes, ServiceOutputTypes } from "../SecurityLakeClient";
+/**
+ * @public
+ */
+export { __MetadataBearer, $Command };
+/**
+ * @public
+ *
+ * The input for {@link UntagResourceCommand}.
+ */
+export interface UntagResourceCommandInput extends UntagResourceRequest {
+}
+/**
+ * @public
+ *
+ * The output of {@link UntagResourceCommand}.
+ */
+export interface UntagResourceCommandOutput extends UntagResourceResponse, __MetadataBearer {
+}
+/**
+ * @public
+ * <p>Removes one or more tags (keys and values) from an Amazon Security Lake resource: a subscriber, or the data lake configuration for your
+ *          Amazon Web Services account in a particular Amazon Web Services Region.</p>
+ * @example
+ * Use a bare-bones client and the command you need to make an API call.
+ * ```javascript
+ * import { SecurityLakeClient, UntagResourceCommand } from "@aws-sdk/client-securitylake"; // ES Modules import
+ * // const { SecurityLakeClient, UntagResourceCommand } = require("@aws-sdk/client-securitylake"); // CommonJS import
+ * const client = new SecurityLakeClient(config);
+ * const input = { // UntagResourceRequest
+ *   resourceArn: "STRING_VALUE", // required
+ *   tagKeys: [ // TagKeyList // required
+ *     "STRING_VALUE",
+ *   ],
+ * };
+ * const command = new UntagResourceCommand(input);
+ * const response = await client.send(command);
+ * // {};
+ *
+ * ```
+ *
+ * @param UntagResourceCommandInput - {@link UntagResourceCommandInput}
+ * @returns {@link UntagResourceCommandOutput}
+ * @see {@link UntagResourceCommandInput} for command's `input` shape.
+ * @see {@link UntagResourceCommandOutput} for command's `response` shape.
+ * @see {@link SecurityLakeClientResolvedConfig | config} for SecurityLakeClient's `config` shape.
+ *
+ * @throws {@link AccessDeniedException} (client fault)
+ *  <p>You do not have sufficient access to perform this action. Access denied errors appear when Amazon Security Lake explicitly or implicitly denies an authorization
+ *          request. An explicit denial occurs when a policy contains a Deny statement for the specific
+ *          Amazon Web Services action. An implicit denial occurs when there is no applicable Deny statement and also
+ *          no applicable Allow statement.</p>
+ *
+ * @throws {@link BadRequestException} (client fault)
+ *  <p>The request is malformed or contains an error such as an invalid parameter value or a missing required parameter.</p>
+ *
+ * @throws {@link ConflictException} (client fault)
+ *  <p>Occurs when a conflict with a previous successful write is detected. This generally
+ *          occurs when the previous write did not have time to propagate to the host serving the
+ *          current request. A retry (with appropriate backoff logic) is the recommended response to
+ *          this exception.</p>
+ *
+ * @throws {@link InternalServerException} (server fault)
+ *  <p>Internal service exceptions are sometimes caused by transient issues. Before you start
+ *          troubleshooting, perform the operation again.</p>
+ *
+ * @throws {@link ResourceNotFoundException} (client fault)
+ *  <p>The resource could not be found.</p>
+ *
+ * @throws {@link ThrottlingException} (client fault)
+ *  <p>The limit on the number of requests per second was exceeded.</p>
+ *
+ * @throws {@link SecurityLakeServiceException}
+ * <p>Base exception class for all service exceptions from SecurityLake service.</p>
+ *
+ */
+export declare class UntagResourceCommand extends $Command<UntagResourceCommandInput, UntagResourceCommandOutput, SecurityLakeClientResolvedConfig> {
+    readonly input: UntagResourceCommandInput;
+    static getEndpointParameterInstructions(): EndpointParameterInstructions;
+    /**
+     * @public
+     */
+    constructor(input: UntagResourceCommandInput);
+    /**
+     * @internal
+     */
+    resolveMiddleware(clientStack: MiddlewareStack<ServiceInputTypes, ServiceOutputTypes>, configuration: SecurityLakeClientResolvedConfig, options?: __HttpHandlerOptions): Handler<UntagResourceCommandInput, UntagResourceCommandOutput>;
+    /**
+     * @internal
+     */
+    private serialize;
+    /**
+     * @internal
+     */
+    private deserialize;
+}

package/dist-types/commands/index.d.ts

@@ -21,7 +21,10 @@ export * from "./ListDataLakeExceptionsCommand";
 export * from "./ListDataLakesCommand";
 export * from "./ListLogSourcesCommand";
 export * from "./ListSubscribersCommand";
+export * from "./ListTagsForResourceCommand";
 export * from "./RegisterDataLakeDelegatedAdministratorCommand";
+export * from "./TagResourceCommand";
+export * from "./UntagResourceCommand";
 export * from "./UpdateDataLakeCommand";
 export * from "./UpdateDataLakeExceptionSubscriptionCommand";
 export * from "./UpdateSubscriberCommand";

package/dist-types/models/models_0.d.ts

@@ -581,6 +581,29 @@ export interface DataLakeConfiguration {
      */
     replicationConfiguration?: DataLakeReplicationConfiguration;
 }
+/**
+ * @public
+ * <p>A <i>tag</i> is a label that you can define and associate with Amazon Web Services resources, including certain types of Amazon Security Lake resources.
+ *          Tags can help you identify, categorize, and manage resources in different ways, such as by owner, environment, or other criteria. You can associate tags with
+ *          the following types of Security Lake resources: subscribers, and the data lake configuration for your Amazon Web Services account in individual Amazon Web Services Regions.</p>
+ *          <p>A resource can have up to 50 tags. Each tag consists of a required <i>tag key</i> and an associated <i>tag value</i>. A
+ *          <i>tag key</i> is a general label that acts as a category for a more specific tag value. Each tag key must be unique and it can have only one tag
+ *          value. A <i>tag value</i> acts as a descriptor for a tag key. Tag keys and values are case sensitive. They can contain letters, numbers, spaces,
+ *          or the following symbols: _ . : / = + @ -</p>
+ *          <p>For more information, see <a href="https://docs.aws.amazon.com/security-lake/latest/userguide/tagging-resources.html">Tagging Amazon Security Lake resources</a> in
+ *          the <i>Amazon Security Lake User Guide</i>.</p>
+ */
+export interface Tag {
+    /**
+     * <p>The  name of the tag. This is a general label that acts as a category for a more specific tag value (<code>value</code>).</p>
+     */
+    key: string | undefined;
+    /**
+     * <p>The value that’s associated with the specified tag key (<code>key</code>). This value acts as a descriptor for the tag key. A tag value cannot be
+     *          null, but it can be an empty string.</p>
+     */
+    value: string | undefined;
+}
 /**
  * @public
  */
@@ -595,6 +618,11 @@ export interface CreateDataLakeRequest {
      *           Amazon Web Services log sources and custom sources.</p>
      */
     metaStoreManagerRoleArn: string | undefined;
+    /**
+     * <p>An array of objects, one for each tag to associate with the data lake configuration. For each tag, you must specify both a tag key and a tag value. A tag
+     *          value cannot be null, but it can be an empty string.</p>
+     */
+    tags?: Tag[];
 }
 /**
  * @public
@@ -753,7 +781,7 @@ export interface CreateDataLakeOrganizationConfigurationResponse {
 /**
  * @public
  * <p>The supported source types from which logs and events are collected in Amazon Security Lake.
- *          For the list of supported Amazon Web Services, see the <a href="https://docs.aws.amazon.com/security-lake/latest/userguide/internal-sources.html">Amazon Security Lake User Guide</a>.</p>
+ *          For a list of supported Amazon Web Services, see the <a href="https://docs.aws.amazon.com/security-lake/latest/userguide/internal-sources.html">Amazon Security Lake User Guide</a>.</p>
  */
 export type LogSourceResource = LogSourceResource.AwsLogSourceMember | LogSourceResource.CustomLogSourceMember | LogSourceResource.$UnknownMember;
 /**
@@ -761,7 +789,7 @@ export type LogSourceResource = LogSourceResource.AwsLogSourceMember | LogSource
  */
 export declare namespace LogSourceResource {
     /**
-     * <p>Amazon Security Lake supports log and event collection for natively supported Amazon Web Services.</p>
+     * <p>Amazon Security Lake supports log and event collection for natively supported Amazon Web Services. For more information, see the <a href="https://docs.aws.amazon.com/security-lake/latest/userguide/internal-sources.html">Amazon Security Lake User Guide</a>.</p>
      */
     interface AwsLogSourceMember {
         awsLogSource: AwsLogSourceResource;
@@ -769,8 +797,7 @@ export declare namespace LogSourceResource {
         $unknown?: never;
     }
     /**
-     * <p>Amazon Security Lake supports custom source types. For a detailed list, see the Amazon Security Lake
-     *          User Guide.</p>
+     * <p>Amazon Security Lake supports custom source types. For more information, see the <a href="https://docs.aws.amazon.com/security-lake/latest/userguide/custom-sources.html">Amazon Security Lake User Guide</a>.</p>
      */
     interface CustomLogSourceMember {
         awsLogSource?: never;
@@ -814,6 +841,11 @@ export interface CreateSubscriberRequest {
      * <p>The Amazon S3 or Lake Formation access type.</p>
      */
     accessTypes?: (AccessType | string)[];
+    /**
+     * <p>An array of objects, one for each tag to associate with the subscriber. For each tag, you must specify both a tag key and a tag value. A tag
+     *          value cannot be null, but it can be an empty string.</p>
+     */
+    tags?: Tag[];
 }
 /**
  * @public
@@ -859,7 +891,7 @@ export interface SubscriberResource {
      */
     subscriberDescription?: string;
     /**
-     * <p>Amazon Security Lake supports log and event collection for natively supported Amazon Web Services. For more information, see the Amazon Security Lake User Guide.</p>
+     * <p>Amazon Security Lake supports log and event collection for natively supported Amazon Web Services. For more information, see the <a href="https://docs.aws.amazon.com/security-lake/latest/userguide/source-management.html">Amazon Security Lake User Guide</a>.</p>
      */
     sources: LogSourceResource[] | undefined;
     /**
@@ -954,7 +986,7 @@ export interface HttpsNotificationConfiguration {
     /**
      * <p>The Amazon Resource Name (ARN) of the EventBridge API destinations IAM role that you
      *          created. For more information about ARNs and how to use them in policies, see <a href="https://docs.aws.amazon.com//security-lake/latest/userguide/subscriber-data-access.html">Managing data access</a> and <a href="https://docs.aws.amazon.com/security-lake/latest/userguide/security-iam-awsmanpol.html">Amazon Web Services
-     *             Managed Policies</a> in the Amazon Security Lake User Guide.</p>
+     *             Managed Policies</a> in the <i>Amazon Security Lake User Guide</i>.</p>
      */
     targetRoleArn: string | undefined;
 }
@@ -1083,8 +1115,7 @@ export interface DeleteDataLakeResponse {
  */
 export interface DeleteDataLakeOrganizationConfigurationRequest {
     /**
-     * <p>Removes the automatic enablement of configuration settings for new member accounts in
-     *          Security Lake.</p>
+     * <p>Turns off automatic enablement of Security Lake for member accounts that are added to an organization.</p>
      */
     autoEnableNewAccount: DataLakeAutoEnableNewAccountConfiguration[] | undefined;
 }
@@ -1446,7 +1477,7 @@ export interface UpdateDataLakeResponse {
 }
 /**
  * @public
- * <p>The details for a Security Lake exception</p>
+ * <p>The details for an Amazon Security Lake exception.</p>
  */
 export interface DataLakeException {
     /**
@@ -1621,6 +1652,24 @@ export interface ListSubscribersResponse {
      */
     nextToken?: string;
 }
+/**
+ * @public
+ */
+export interface ListTagsForResourceRequest {
+    /**
+     * <p>The Amazon Resource Name (ARN) of the Amazon Security Lake resource to retrieve the tags for.</p>
+     */
+    resourceArn: string | undefined;
+}
+/**
+ * @public
+ */
+export interface ListTagsForResourceResponse {
+    /**
+     * <p>An array of objects, one for each tag (key and value) that’s associated with the Amazon Security Lake resource.</p>
+     */
+    tags?: Tag[];
+}
 /**
  * @public
  */
@@ -1692,6 +1741,43 @@ export interface UpdateSubscriberNotificationResponse {
      */
     subscriberEndpoint?: string;
 }
+/**
+ * @public
+ */
+export interface TagResourceRequest {
+    /**
+     * <p>The Amazon Resource Name (ARN) of the Amazon Security Lake resource to add or update the tags for.</p>
+     */
+    resourceArn: string | undefined;
+    /**
+     * <p>An array of objects, one for each tag (key and value) to associate with the Amazon Security Lake resource. For each tag, you must
+     *          specify both a tag key and a tag value. A tag value cannot be null, but it can be an empty string.</p>
+     */
+    tags: Tag[] | undefined;
+}
+/**
+ * @public
+ */
+export interface TagResourceResponse {
+}
+/**
+ * @public
+ */
+export interface UntagResourceRequest {
+    /**
+     * <p>The Amazon Resource Name (ARN) of the Amazon Security Lake resource to remove one or more tags from.</p>
+     */
+    resourceArn: string | undefined;
+    /**
+     * <p>A list of one or more tag keys. For each value in the list, specify the tag key for a tag to remove from the Amazon Security Lake resource.</p>
+     */
+    tagKeys: string[] | undefined;
+}
+/**
+ * @public
+ */
+export interface UntagResourceResponse {
+}
 /**
  * @public
  */

package/dist-types/protocols/Aws_restJson1.d.ts

@@ -23,7 +23,10 @@ import { ListDataLakeExceptionsCommandInput, ListDataLakeExceptionsCommandOutput
 import { ListDataLakesCommandInput, ListDataLakesCommandOutput } from "../commands/ListDataLakesCommand";
 import { ListLogSourcesCommandInput, ListLogSourcesCommandOutput } from "../commands/ListLogSourcesCommand";
 import { ListSubscribersCommandInput, ListSubscribersCommandOutput } from "../commands/ListSubscribersCommand";
+import { ListTagsForResourceCommandInput, ListTagsForResourceCommandOutput } from "../commands/ListTagsForResourceCommand";
 import { RegisterDataLakeDelegatedAdministratorCommandInput, RegisterDataLakeDelegatedAdministratorCommandOutput } from "../commands/RegisterDataLakeDelegatedAdministratorCommand";
+import { TagResourceCommandInput, TagResourceCommandOutput } from "../commands/TagResourceCommand";
+import { UntagResourceCommandInput, UntagResourceCommandOutput } from "../commands/UntagResourceCommand";
 import { UpdateDataLakeCommandInput, UpdateDataLakeCommandOutput } from "../commands/UpdateDataLakeCommand";
 import { UpdateDataLakeExceptionSubscriptionCommandInput, UpdateDataLakeExceptionSubscriptionCommandOutput } from "../commands/UpdateDataLakeExceptionSubscriptionCommand";
 import { UpdateSubscriberCommandInput, UpdateSubscriberCommandOutput } from "../commands/UpdateSubscriberCommand";
@@ -120,10 +123,22 @@ export declare const se_ListLogSourcesCommand: (input: ListLogSourcesCommandInpu
  * serializeAws_restJson1ListSubscribersCommand
  */
 export declare const se_ListSubscribersCommand: (input: ListSubscribersCommandInput, context: __SerdeContext) => Promise<__HttpRequest>;
+/**
+ * serializeAws_restJson1ListTagsForResourceCommand
+ */
+export declare const se_ListTagsForResourceCommand: (input: ListTagsForResourceCommandInput, context: __SerdeContext) => Promise<__HttpRequest>;
 /**
  * serializeAws_restJson1RegisterDataLakeDelegatedAdministratorCommand
  */
 export declare const se_RegisterDataLakeDelegatedAdministratorCommand: (input: RegisterDataLakeDelegatedAdministratorCommandInput, context: __SerdeContext) => Promise<__HttpRequest>;
+/**
+ * serializeAws_restJson1TagResourceCommand
+ */
+export declare const se_TagResourceCommand: (input: TagResourceCommandInput, context: __SerdeContext) => Promise<__HttpRequest>;
+/**
+ * serializeAws_restJson1UntagResourceCommand
+ */
+export declare const se_UntagResourceCommand: (input: UntagResourceCommandInput, context: __SerdeContext) => Promise<__HttpRequest>;
 /**
  * serializeAws_restJson1UpdateDataLakeCommand
  */
@@ -232,10 +247,22 @@ export declare const de_ListLogSourcesCommand: (output: __HttpResponse, context:
  * deserializeAws_restJson1ListSubscribersCommand
  */
 export declare const de_ListSubscribersCommand: (output: __HttpResponse, context: __SerdeContext) => Promise<ListSubscribersCommandOutput>;
+/**
+ * deserializeAws_restJson1ListTagsForResourceCommand
+ */
+export declare const de_ListTagsForResourceCommand: (output: __HttpResponse, context: __SerdeContext) => Promise<ListTagsForResourceCommandOutput>;
 /**
  * deserializeAws_restJson1RegisterDataLakeDelegatedAdministratorCommand
  */
 export declare const de_RegisterDataLakeDelegatedAdministratorCommand: (output: __HttpResponse, context: __SerdeContext) => Promise<RegisterDataLakeDelegatedAdministratorCommandOutput>;
+/**
+ * deserializeAws_restJson1TagResourceCommand
+ */
+export declare const de_TagResourceCommand: (output: __HttpResponse, context: __SerdeContext) => Promise<TagResourceCommandOutput>;
+/**
+ * deserializeAws_restJson1UntagResourceCommand
+ */
+export declare const de_UntagResourceCommand: (output: __HttpResponse, context: __SerdeContext) => Promise<UntagResourceCommandOutput>;
 /**
  * deserializeAws_restJson1UpdateDataLakeCommand
  */

package/dist-types/ts3.4/SecurityLake.d.ts

@@ -91,10 +91,22 @@ import {
   ListSubscribersCommandInput,
   ListSubscribersCommandOutput,
 } from "./commands/ListSubscribersCommand";
+import {
+  ListTagsForResourceCommandInput,
+  ListTagsForResourceCommandOutput,
+} from "./commands/ListTagsForResourceCommand";
 import {
   RegisterDataLakeDelegatedAdministratorCommandInput,
   RegisterDataLakeDelegatedAdministratorCommandOutput,
 } from "./commands/RegisterDataLakeDelegatedAdministratorCommand";
+import {
+  TagResourceCommandInput,
+  TagResourceCommandOutput,
+} from "./commands/TagResourceCommand";
+import {
+  UntagResourceCommandInput,
+  UntagResourceCommandOutput,
+} from "./commands/UntagResourceCommand";
 import {
   UpdateDataLakeCommandInput,
   UpdateDataLakeCommandOutput,
@@ -448,6 +460,19 @@ export interface SecurityLake {
     options: __HttpHandlerOptions,
     cb: (err: any, data?: ListSubscribersCommandOutput) => void
   ): void;
+  listTagsForResource(
+    args: ListTagsForResourceCommandInput,
+    options?: __HttpHandlerOptions
+  ): Promise<ListTagsForResourceCommandOutput>;
+  listTagsForResource(
+    args: ListTagsForResourceCommandInput,
+    cb: (err: any, data?: ListTagsForResourceCommandOutput) => void
+  ): void;
+  listTagsForResource(
+    args: ListTagsForResourceCommandInput,
+    options: __HttpHandlerOptions,
+    cb: (err: any, data?: ListTagsForResourceCommandOutput) => void
+  ): void;
   registerDataLakeDelegatedAdministrator(
     args: RegisterDataLakeDelegatedAdministratorCommandInput,
     options?: __HttpHandlerOptions
@@ -467,6 +492,32 @@ export interface SecurityLake {
       data?: RegisterDataLakeDelegatedAdministratorCommandOutput
     ) => void
   ): void;
+  tagResource(
+    args: TagResourceCommandInput,
+    options?: __HttpHandlerOptions
+  ): Promise<TagResourceCommandOutput>;
+  tagResource(
+    args: TagResourceCommandInput,
+    cb: (err: any, data?: TagResourceCommandOutput) => void
+  ): void;
+  tagResource(
+    args: TagResourceCommandInput,
+    options: __HttpHandlerOptions,
+    cb: (err: any, data?: TagResourceCommandOutput) => void
+  ): void;
+  untagResource(
+    args: UntagResourceCommandInput,
+    options?: __HttpHandlerOptions
+  ): Promise<UntagResourceCommandOutput>;
+  untagResource(
+    args: UntagResourceCommandInput,
+    cb: (err: any, data?: UntagResourceCommandOutput) => void
+  ): void;
+  untagResource(
+    args: UntagResourceCommandInput,
+    options: __HttpHandlerOptions,
+    cb: (err: any, data?: UntagResourceCommandOutput) => void
+  ): void;
   updateDataLake(
     args: UpdateDataLakeCommandInput,
     options?: __HttpHandlerOptions

package/dist-types/ts3.4/SecurityLakeClient.d.ts

@@ -136,10 +136,22 @@ import {
   ListSubscribersCommandInput,
   ListSubscribersCommandOutput,
 } from "./commands/ListSubscribersCommand";
+import {
+  ListTagsForResourceCommandInput,
+  ListTagsForResourceCommandOutput,
+} from "./commands/ListTagsForResourceCommand";
 import {
   RegisterDataLakeDelegatedAdministratorCommandInput,
   RegisterDataLakeDelegatedAdministratorCommandOutput,
 } from "./commands/RegisterDataLakeDelegatedAdministratorCommand";
+import {
+  TagResourceCommandInput,
+  TagResourceCommandOutput,
+} from "./commands/TagResourceCommand";
+import {
+  UntagResourceCommandInput,
+  UntagResourceCommandOutput,
+} from "./commands/UntagResourceCommand";
 import {
   UpdateDataLakeCommandInput,
   UpdateDataLakeCommandOutput,
@@ -186,7 +198,10 @@ export type ServiceInputTypes =
   | ListDataLakesCommandInput
   | ListLogSourcesCommandInput
   | ListSubscribersCommandInput
+  | ListTagsForResourceCommandInput
   | RegisterDataLakeDelegatedAdministratorCommandInput
+  | TagResourceCommandInput
+  | UntagResourceCommandInput
   | UpdateDataLakeCommandInput
   | UpdateDataLakeExceptionSubscriptionCommandInput
   | UpdateSubscriberCommandInput
@@ -215,7 +230,10 @@ export type ServiceOutputTypes =
   | ListDataLakesCommandOutput
   | ListLogSourcesCommandOutput
   | ListSubscribersCommandOutput
+  | ListTagsForResourceCommandOutput
   | RegisterDataLakeDelegatedAdministratorCommandOutput
+  | TagResourceCommandOutput
+  | UntagResourceCommandOutput
   | UpdateDataLakeCommandOutput
   | UpdateDataLakeExceptionSubscriptionCommandOutput
   | UpdateSubscriberCommandOutput

package/dist-types/ts3.4/commands/ListTagsForResourceCommand.d.ts

@@ -0,0 +1,39 @@
+import { EndpointParameterInstructions } from "@smithy/middleware-endpoint";
+import { Command as $Command } from "@smithy/smithy-client";
+import {
+  Handler,
+  HttpHandlerOptions as __HttpHandlerOptions,
+  MetadataBearer as __MetadataBearer,
+  MiddlewareStack,
+} from "@smithy/types";
+import {
+  ListTagsForResourceRequest,
+  ListTagsForResourceResponse,
+} from "../models/models_0";
+import {
+  SecurityLakeClientResolvedConfig,
+  ServiceInputTypes,
+  ServiceOutputTypes,
+} from "../SecurityLakeClient";
+export { __MetadataBearer, $Command };
+export interface ListTagsForResourceCommandInput
+  extends ListTagsForResourceRequest {}
+export interface ListTagsForResourceCommandOutput
+  extends ListTagsForResourceResponse,
+    __MetadataBearer {}
+export declare class ListTagsForResourceCommand extends $Command<
+  ListTagsForResourceCommandInput,
+  ListTagsForResourceCommandOutput,
+  SecurityLakeClientResolvedConfig
+> {
+  readonly input: ListTagsForResourceCommandInput;
+  static getEndpointParameterInstructions(): EndpointParameterInstructions;
+  constructor(input: ListTagsForResourceCommandInput);
+  resolveMiddleware(
+    clientStack: MiddlewareStack<ServiceInputTypes, ServiceOutputTypes>,
+    configuration: SecurityLakeClientResolvedConfig,
+    options?: __HttpHandlerOptions
+  ): Handler<ListTagsForResourceCommandInput, ListTagsForResourceCommandOutput>;
+  private serialize;
+  private deserialize;
+}

package/dist-types/ts3.4/commands/TagResourceCommand.d.ts

@@ -0,0 +1,35 @@
+import { EndpointParameterInstructions } from "@smithy/middleware-endpoint";
+import { Command as $Command } from "@smithy/smithy-client";
+import {
+  Handler,
+  HttpHandlerOptions as __HttpHandlerOptions,
+  MetadataBearer as __MetadataBearer,
+  MiddlewareStack,
+} from "@smithy/types";
+import { TagResourceRequest, TagResourceResponse } from "../models/models_0";
+import {
+  SecurityLakeClientResolvedConfig,
+  ServiceInputTypes,
+  ServiceOutputTypes,
+} from "../SecurityLakeClient";
+export { __MetadataBearer, $Command };
+export interface TagResourceCommandInput extends TagResourceRequest {}
+export interface TagResourceCommandOutput
+  extends TagResourceResponse,
+    __MetadataBearer {}
+export declare class TagResourceCommand extends $Command<
+  TagResourceCommandInput,
+  TagResourceCommandOutput,
+  SecurityLakeClientResolvedConfig
+> {
+  readonly input: TagResourceCommandInput;
+  static getEndpointParameterInstructions(): EndpointParameterInstructions;
+  constructor(input: TagResourceCommandInput);
+  resolveMiddleware(
+    clientStack: MiddlewareStack<ServiceInputTypes, ServiceOutputTypes>,
+    configuration: SecurityLakeClientResolvedConfig,
+    options?: __HttpHandlerOptions
+  ): Handler<TagResourceCommandInput, TagResourceCommandOutput>;
+  private serialize;
+  private deserialize;
+}

package/dist-types/ts3.4/commands/UntagResourceCommand.d.ts

@@ -0,0 +1,38 @@
+import { EndpointParameterInstructions } from "@smithy/middleware-endpoint";
+import { Command as $Command } from "@smithy/smithy-client";
+import {
+  Handler,
+  HttpHandlerOptions as __HttpHandlerOptions,
+  MetadataBearer as __MetadataBearer,
+  MiddlewareStack,
+} from "@smithy/types";
+import {
+  UntagResourceRequest,
+  UntagResourceResponse,
+} from "../models/models_0";
+import {
+  SecurityLakeClientResolvedConfig,
+  ServiceInputTypes,
+  ServiceOutputTypes,
+} from "../SecurityLakeClient";
+export { __MetadataBearer, $Command };
+export interface UntagResourceCommandInput extends UntagResourceRequest {}
+export interface UntagResourceCommandOutput
+  extends UntagResourceResponse,
+    __MetadataBearer {}
+export declare class UntagResourceCommand extends $Command<
+  UntagResourceCommandInput,
+  UntagResourceCommandOutput,
+  SecurityLakeClientResolvedConfig
+> {
+  readonly input: UntagResourceCommandInput;
+  static getEndpointParameterInstructions(): EndpointParameterInstructions;
+  constructor(input: UntagResourceCommandInput);
+  resolveMiddleware(
+    clientStack: MiddlewareStack<ServiceInputTypes, ServiceOutputTypes>,
+    configuration: SecurityLakeClientResolvedConfig,
+    options?: __HttpHandlerOptions
+  ): Handler<UntagResourceCommandInput, UntagResourceCommandOutput>;
+  private serialize;
+  private deserialize;
+}

package/dist-types/ts3.4/commands/index.d.ts

@@ -21,7 +21,10 @@ export * from "./ListDataLakeExceptionsCommand";
 export * from "./ListDataLakesCommand";
 export * from "./ListLogSourcesCommand";
 export * from "./ListSubscribersCommand";
+export * from "./ListTagsForResourceCommand";
 export * from "./RegisterDataLakeDelegatedAdministratorCommand";
+export * from "./TagResourceCommand";
+export * from "./UntagResourceCommand";
 export * from "./UpdateDataLakeCommand";
 export * from "./UpdateDataLakeExceptionSubscriptionCommand";
 export * from "./UpdateSubscriberCommand";

package/dist-types/ts3.4/models/models_0.d.ts

@@ -142,9 +142,14 @@ export interface DataLakeConfiguration {
   lifecycleConfiguration?: DataLakeLifecycleConfiguration;
   replicationConfiguration?: DataLakeReplicationConfiguration;
 }
+export interface Tag {
+  key: string | undefined;
+  value: string | undefined;
+}
 export interface CreateDataLakeRequest {
   configurations: DataLakeConfiguration[] | undefined;
   metaStoreManagerRoleArn: string | undefined;
+  tags?: Tag[];
 }
 export declare const DataLakeStatus: {
   readonly COMPLETED: "COMPLETED";
@@ -223,6 +228,7 @@ export interface CreateSubscriberRequest {
   subscriberDescription?: string;
   sources: LogSourceResource[] | undefined;
   accessTypes?: (AccessType | string)[];
+  tags?: Tag[];
 }
 export declare const SubscriberStatus: {
   readonly ACTIVE: "ACTIVE";
@@ -426,6 +432,12 @@ export interface ListSubscribersResponse {
   subscribers?: SubscriberResource[];
   nextToken?: string;
 }
+export interface ListTagsForResourceRequest {
+  resourceArn: string | undefined;
+}
+export interface ListTagsForResourceResponse {
+  tags?: Tag[];
+}
 export interface RegisterDataLakeDelegatedAdministratorRequest {
   accountId: string | undefined;
 }
@@ -447,6 +459,16 @@ export interface UpdateSubscriberNotificationRequest {
 export interface UpdateSubscriberNotificationResponse {
   subscriberEndpoint?: string;
 }
+export interface TagResourceRequest {
+  resourceArn: string | undefined;
+  tags: Tag[] | undefined;
+}
+export interface TagResourceResponse {}
+export interface UntagResourceRequest {
+  resourceArn: string | undefined;
+  tagKeys: string[] | undefined;
+}
+export interface UntagResourceResponse {}
 export interface UpdateDataLakeExceptionSubscriptionRequest {
   subscriptionProtocol: string | undefined;
   notificationEndpoint: string | undefined;