npm - @aws-sdk/client-waf - Versions diffs - 3.379.1 → 3.385.0 - Mend

@aws-sdk/client-waf 3.379.1 → 3.385.0

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (2) hide show

package/dist-types/models/models_0.d.ts +412 -0
package/package.json +5 -5

package/dist-types/models/models_0.d.ts CHANGED Viewed

@@ -29,6 +29,7 @@ export type WafActionType = (typeof WafActionType)[keyof typeof WafActionType];
  */
 export interface WafAction {
     /**
+     * @public
      * <p>Specifies how you want AWS WAF to respond to requests that match the settings in a <code>Rule</code>. Valid settings include the following:</p>
      * 		       <ul>
      *             <li>
@@ -65,6 +66,7 @@ export interface WafAction {
  */
 export interface ExcludedRule {
     /**
+     * @public
      * <p>The unique identifier for the rule to exclude from the rule group.</p>
      */
     RuleId: string | undefined;
@@ -95,6 +97,7 @@ export type WafOverrideActionType = (typeof WafOverrideActionType)[keyof typeof
  */
 export interface WafOverrideAction {
     /**
+     * @public
      * <p>
      *             <code>COUNT</code> overrides the action specified by the individual rule within a <code>RuleGroup</code> . If set to <code>NONE</code>, the rule's action will take place.</p>
      */
@@ -130,12 +133,14 @@ export type WafRuleType = (typeof WafRuleType)[keyof typeof WafRuleType];
  */
 export interface ActivatedRule {
     /**
+     * @public
      * <p>Specifies the order in which the <code>Rules</code> in a <code>WebACL</code> are evaluated. Rules with a lower value for
      * 			<code>Priority</code> are evaluated before <code>Rules</code> with a higher value. The value must be a unique integer. If you add multiple
      * 			<code>Rules</code> to a <code>WebACL</code>, the values don't need to be consecutive.</p>
      */
     Priority: number | undefined;
     /**
+     * @public
      * <p>The <code>RuleId</code> for a <code>Rule</code>. You use <code>RuleId</code> to get more information about a <code>Rule</code> (see <a>GetRule</a>),
      * 			update a <code>Rule</code> (see <a>UpdateRule</a>), insert a <code>Rule</code> into a <code>WebACL</code> or delete a
      * 			one from a <code>WebACL</code> (see <a>UpdateWebACL</a>), or delete a <code>Rule</code> from AWS WAF (see <a>DeleteRule</a>).</p>
@@ -144,6 +149,7 @@ export interface ActivatedRule {
      */
     RuleId: string | undefined;
     /**
+     * @public
      * <p>Specifies the action that CloudFront or AWS WAF takes when a web request matches the conditions in the <code>Rule</code>.
      * 			Valid values for <code>Action</code> include the following:</p>
      * 			      <ul>
@@ -171,6 +177,7 @@ export interface ActivatedRule {
      */
     Action?: WafAction;
     /**
+     * @public
      * <p>Use the <code>OverrideAction</code> to test your <code>RuleGroup</code>.</p>
      *          <p>Any rule in a <code>RuleGroup</code> can potentially block a request. If you set the <code>OverrideAction</code> to <code>None</code>, the <code>RuleGroup</code> will block a request if any individual rule in the <code>RuleGroup</code> matches the request and is configured to block that request. However if you first want to test the <code>RuleGroup</code>, set the  <code>OverrideAction</code> to <code>Count</code>. The <code>RuleGroup</code> will then override any block action specified by individual rules contained within the group. Instead of blocking matching requests, those requests will be counted. You can view a record of counted requests using  <a>GetSampledRequests</a>. </p>
      * 	        <p>
@@ -178,11 +185,13 @@ export interface ActivatedRule {
      */
     OverrideAction?: WafOverrideAction;
     /**
+     * @public
      * <p>The rule type, either <code>REGULAR</code>, as defined by <a>Rule</a>, <code>RATE_BASED</code>, as defined by <a>RateBasedRule</a>, or <code>GROUP</code>, as defined by <a>RuleGroup</a>. The default is REGULAR. Although this field is optional, be aware that if you try to add a RATE_BASED rule to a web ACL without setting the type, the  <a>UpdateWebACL</a> request will fail because the request tries to add a REGULAR rule with the specified ID, which does not exist.
      * 			</p>
      */
     Type?: WafRuleType | string;
     /**
+     * @public
      * <p>An array of rules to exclude from a rule group. This is applicable only when the <code>ActivatedRule</code> refers to a <code>RuleGroup</code>.</p>
      *          <p>Sometimes it is necessary to troubleshoot rule groups that are blocking traffic
      *          unexpectedly (false positives). One troubleshooting technique is to identify the specific
@@ -232,11 +241,13 @@ export interface ActivatedRule {
  */
 export interface CreateByteMatchSetRequest {
     /**
+     * @public
      * <p>A friendly name or description of the <a>ByteMatchSet</a>. You can't change <code>Name</code> after you create a
      * 			<code>ByteMatchSet</code>.</p>
      */
     Name: string | undefined;
     /**
+     * @public
      * <p>The value returned by the most recent call to <a>GetChangeToken</a>.</p>
      */
     ChangeToken: string | undefined;
@@ -272,6 +283,7 @@ export type MatchFieldType = (typeof MatchFieldType)[keyof typeof MatchFieldType
  */
 export interface FieldToMatch {
     /**
+     * @public
      * <p>The part of the web request that you want AWS WAF to search for a specified string. Parts of a request that you can search include the following:</p>
      * 		       <ul>
      *             <li>
@@ -314,6 +326,7 @@ export interface FieldToMatch {
      */
     Type: MatchFieldType | string | undefined;
     /**
+     * @public
      * <p>When the value of <code>Type</code> is <code>HEADER</code>, enter the name of the header that you want AWS WAF to search,
      * 			for example, <code>User-Agent</code> or <code>Referer</code>. The name of the header is not case sensitive.</p>
      * 	        <p>When the value of <code>Type</code> is <code>SINGLE_QUERY_ARG</code>, enter the name of the parameter that you want AWS WAF to search,
@@ -367,11 +380,13 @@ export type TextTransformation = (typeof TextTransformation)[keyof typeof TextTr
  */
 export interface ByteMatchTuple {
     /**
+     * @public
      * <p>The part of a web request that you want AWS WAF to search, such as a specified header or a query string. For more information, see
      * 			<a>FieldToMatch</a>.</p>
      */
     FieldToMatch: FieldToMatch | undefined;
     /**
+     * @public
      * <p>The value that you want AWS WAF to search for. AWS WAF searches for the specified string in the part of web requests that you
      * 			specified in <code>FieldToMatch</code>. The maximum length of the value is 50 bytes.</p>
      * 		       <p>Valid values depend on the values that you specified for <code>FieldToMatch</code>:</p>
@@ -437,6 +452,7 @@ export interface ByteMatchTuple {
      */
     TargetString: Uint8Array | undefined;
     /**
+     * @public
      * <p>Text transformations eliminate some of the unusual formatting that attackers use in web requests in an effort to bypass AWS WAF.
      * 			If you specify a transformation, AWS WAF performs the transformation on <code>FieldToMatch</code> before inspecting it for a match.</p>
      *          <p>You can only specify a single type of TextTransformation.</p>
@@ -534,6 +550,7 @@ export interface ByteMatchTuple {
      */
     TextTransformation: TextTransformation | string | undefined;
     /**
+     * @public
      * <p>Within the portion of a web request that you want to search (for example, in the query string, if any), specify where you want AWS WAF to search. Valid values include the following:</p>
      * 		       <p>
      *             <b>CONTAINS</b>
@@ -601,6 +618,7 @@ export interface ByteMatchTuple {
  */
 export interface ByteMatchSet {
     /**
+     * @public
      * <p>The <code>ByteMatchSetId</code> for a <code>ByteMatchSet</code>. You use <code>ByteMatchSetId</code> to get information about a
      * 			<code>ByteMatchSet</code> (see <a>GetByteMatchSet</a>), update a <code>ByteMatchSet</code> (see <a>UpdateByteMatchSet</a>),
      * 			insert a <code>ByteMatchSet</code> into a <code>Rule</code> or delete one from a <code>Rule</code> (see <a>UpdateRule</a>), and
@@ -610,10 +628,12 @@ export interface ByteMatchSet {
      */
     ByteMatchSetId: string | undefined;
     /**
+     * @public
      * <p>A friendly name or description of the <a>ByteMatchSet</a>. You can't change <code>Name</code> after you create a <code>ByteMatchSet</code>.</p>
      */
     Name?: string;
     /**
+     * @public
      * <p>Specifies the bytes (typically a string that corresponds with ASCII characters) that you want AWS WAF to search for in web requests, the location in requests that you want AWS WAF to search, and other settings.</p>
      */
     ByteMatchTuples: ByteMatchTuple[] | undefined;
@@ -623,10 +643,12 @@ export interface ByteMatchSet {
  */
 export interface CreateByteMatchSetResponse {
     /**
+     * @public
      * <p>A <a>ByteMatchSet</a> that contains no <code>ByteMatchTuple</code> objects.</p>
      */
     ByteMatchSet?: ByteMatchSet;
     /**
+     * @public
      * <p>The <code>ChangeToken</code> that you used to submit the <code>CreateByteMatchSet</code> request. You can also use this value
      * 			to query the status of the request. For more information, see <a>GetChangeTokenStatus</a>.</p>
      */
@@ -793,10 +815,12 @@ export declare class WAFStaleDataException extends __BaseException {
  */
 export interface CreateGeoMatchSetRequest {
     /**
+     * @public
      * <p>A friendly name or description of the <a>GeoMatchSet</a>. You can't change <code>Name</code> after you create the <code>GeoMatchSet</code>.</p>
      */
     Name: string | undefined;
     /**
+     * @public
      * <p>The value returned by the most recent call to <a>GetChangeToken</a>.</p>
      */
     ChangeToken: string | undefined;
@@ -1085,10 +1109,12 @@ export type GeoMatchConstraintValue = (typeof GeoMatchConstraintValue)[keyof typ
  */
 export interface GeoMatchConstraint {
     /**
+     * @public
      * <p>The type of geographical area you want AWS WAF to search for. Currently <code>Country</code> is the only valid value.</p>
      */
     Type: GeoMatchConstraintType | string | undefined;
     /**
+     * @public
      * <p>The country that you want AWS WAF to search for.</p>
      */
     Value: GeoMatchConstraintValue | string | undefined;
@@ -1107,6 +1133,7 @@ export interface GeoMatchConstraint {
  */
 export interface GeoMatchSet {
     /**
+     * @public
      * <p>The <code>GeoMatchSetId</code> for an <code>GeoMatchSet</code>. You use <code>GeoMatchSetId</code> to get information about a
      * 			<code>GeoMatchSet</code> (see <a>GeoMatchSet</a>), update a <code>GeoMatchSet</code> (see <a>UpdateGeoMatchSet</a>), insert a <code>GeoMatchSet</code> into a <code>Rule</code> or delete one from a <code>Rule</code> (see <a>UpdateRule</a>), and delete a <code>GeoMatchSet</code> from AWS WAF (see <a>DeleteGeoMatchSet</a>).</p>
      * 		       <p>
@@ -1114,10 +1141,12 @@ export interface GeoMatchSet {
      */
     GeoMatchSetId: string | undefined;
     /**
+     * @public
      * <p>A friendly name or description of the <a>GeoMatchSet</a>. You can't change the name of an <code>GeoMatchSet</code> after you create it.</p>
      */
     Name?: string;
     /**
+     * @public
      * <p>An array of <a>GeoMatchConstraint</a> objects, which contain the country that you want AWS WAF to search for.</p>
      */
     GeoMatchConstraints: GeoMatchConstraint[] | undefined;
@@ -1127,10 +1156,12 @@ export interface GeoMatchSet {
  */
 export interface CreateGeoMatchSetResponse {
     /**
+     * @public
      * <p>The <a>GeoMatchSet</a> returned in the <code>CreateGeoMatchSet</code> response. The <code>GeoMatchSet</code> contains no <code>GeoMatchConstraints</code>.</p>
      */
     GeoMatchSet?: GeoMatchSet;
     /**
+     * @public
      * <p>The <code>ChangeToken</code> that you used to submit the <code>CreateGeoMatchSet</code> request. You can also use this value
      * 			to query the status of the request. For more information, see <a>GetChangeTokenStatus</a>.</p>
      */
@@ -1141,10 +1172,12 @@ export interface CreateGeoMatchSetResponse {
  */
 export interface CreateIPSetRequest {
     /**
+     * @public
      * <p>A friendly name or description of the <a>IPSet</a>. You can't change <code>Name</code> after you create the <code>IPSet</code>.</p>
      */
     Name: string | undefined;
     /**
+     * @public
      * <p>The value returned by the most recent call to <a>GetChangeToken</a>.</p>
      */
     ChangeToken: string | undefined;
@@ -1175,10 +1208,12 @@ export type IPSetDescriptorType = (typeof IPSetDescriptorType)[keyof typeof IPSe
  */
 export interface IPSetDescriptor {
     /**
+     * @public
      * <p>Specify <code>IPV4</code> or <code>IPV6</code>.</p>
      */
     Type: IPSetDescriptorType | string | undefined;
     /**
+     * @public
      * <p>Specify an IPv4 address by using CIDR notation. For example:</p>
      * 		       <ul>
      *             <li>
@@ -1223,6 +1258,7 @@ export interface IPSetDescriptor {
  */
 export interface IPSet {
     /**
+     * @public
      * <p>The <code>IPSetId</code> for an <code>IPSet</code>. You use <code>IPSetId</code> to get information about an
      * 			<code>IPSet</code> (see <a>GetIPSet</a>), update an <code>IPSet</code> (see <a>UpdateIPSet</a>),
      * 			insert an <code>IPSet</code> into a <code>Rule</code> or delete one from a <code>Rule</code> (see <a>UpdateRule</a>), and
@@ -1232,10 +1268,12 @@ export interface IPSet {
      */
     IPSetId: string | undefined;
     /**
+     * @public
      * <p>A friendly name or description of the <a>IPSet</a>. You can't change the name of an <code>IPSet</code> after you create it.</p>
      */
     Name?: string;
     /**
+     * @public
      * <p>The IP address type (<code>IPV4</code> or <code>IPV6</code>) and the IP address range (in CIDR notation) that web requests originate from.
      * 			If the <code>WebACL</code> is associated with a CloudFront distribution and the viewer did not use an HTTP proxy or a load balancer to send the request, this is the value of the c-ip field in the CloudFront access logs.</p>
      */
@@ -1246,10 +1284,12 @@ export interface IPSet {
  */
 export interface CreateIPSetResponse {
     /**
+     * @public
      * <p>The <a>IPSet</a> returned in the <code>CreateIPSet</code> response.</p>
      */
     IPSet?: IPSet;
     /**
+     * @public
      * <p>The <code>ChangeToken</code> that you used to submit the <code>CreateIPSet</code> request. You can also use this value
      * 			to query the status of the request. For more information, see <a>GetChangeTokenStatus</a>.</p>
      */
@@ -1281,10 +1321,12 @@ export type RateKey = (typeof RateKey)[keyof typeof RateKey];
  */
 export interface Tag {
     /**
+     * @public
      * <p></p>
      */
     Key: string | undefined;
     /**
+     * @public
      * <p></p>
      */
     Value: string | undefined;
@@ -1294,11 +1336,13 @@ export interface Tag {
  */
 export interface CreateRateBasedRuleRequest {
     /**
+     * @public
      * <p>A friendly name or description of the <a>RateBasedRule</a>. You can't
      *          change the name of a <code>RateBasedRule</code> after you create it.</p>
      */
     Name: string | undefined;
     /**
+     * @public
      * <p>A friendly name or description for the metrics for this <code>RateBasedRule</code>.
      *           The name can contain only alphanumeric characters (A-Z, a-z, 0-9), with maximum length 128 and minimum length one. It can't contain
      *           whitespace or metric names reserved for AWS WAF, including "All" and "Default_Action." You can't change the name of the metric after you create the
@@ -1306,6 +1350,7 @@ export interface CreateRateBasedRuleRequest {
      */
     MetricName: string | undefined;
     /**
+     * @public
      * <p>The field that AWS WAF uses to determine if requests are likely arriving from a single
      *          source and thus subject to rate monitoring. The only valid value for <code>RateKey</code>
      *          is <code>IP</code>. <code>IP</code> indicates that requests that arrive from the same IP
@@ -1314,6 +1359,7 @@ export interface CreateRateBasedRuleRequest {
      */
     RateKey: RateKey | string | undefined;
     /**
+     * @public
      * <p>The maximum number of requests, which have an identical value in the field that is
      *          specified by <code>RateKey</code>, allowed in a five-minute period. If the number of
      *          requests exceeds the <code>RateLimit</code> and the other predicates specified in the rule
@@ -1321,12 +1367,14 @@ export interface CreateRateBasedRuleRequest {
      */
     RateLimit: number | undefined;
     /**
+     * @public
      * <p>The <code>ChangeToken</code> that you used to submit the
      *             <code>CreateRateBasedRule</code> request. You can also use this value to query the
      *          status of the request. For more information, see <a>GetChangeTokenStatus</a>.</p>
      */
     ChangeToken: string | undefined;
     /**
+     * @public
      * <p></p>
      */
     Tags?: Tag[];
@@ -1364,6 +1412,7 @@ export type PredicateType = (typeof PredicateType)[keyof typeof PredicateType];
  */
 export interface Predicate {
     /**
+     * @public
      * <p>Set <code>Negated</code> to <code>False</code> if you want AWS WAF to allow, block, or count requests based on the settings in the
      * 		       specified <a>ByteMatchSet</a>, <a>IPSet</a>, <a>SqlInjectionMatchSet</a>, <a>XssMatchSet</a>, <a>RegexMatchSet</a>,  <a>GeoMatchSet</a>,  or <a>SizeConstraintSet</a>.
      * 			For example, if an <code>IPSet</code> includes the IP address <code>192.0.2.44</code>, AWS WAF will allow or block requests based on that IP address.</p>
@@ -1375,10 +1424,12 @@ export interface Predicate {
      */
     Negated: boolean | undefined;
     /**
+     * @public
      * <p>The type of predicate in a <code>Rule</code>, such as <code>ByteMatch</code> or <code>IPSet</code>.</p>
      */
     Type: PredicateType | string | undefined;
     /**
+     * @public
      * <p>A unique identifier for a predicate in a <code>Rule</code>, such as <code>ByteMatchSetId</code> or <code>IPSetId</code>.
      * 			The ID is returned by the corresponding <code>Create</code> or <code>List</code> command.</p>
      */
@@ -1415,29 +1466,34 @@ export interface Predicate {
  */
 export interface RateBasedRule {
     /**
+     * @public
      * <p>A unique identifier for a <code>RateBasedRule</code>. You use <code>RuleId</code> to
      *          get more information about a <code>RateBasedRule</code> (see <a>GetRateBasedRule</a>), update a <code>RateBasedRule</code> (see <a>UpdateRateBasedRule</a>), insert a <code>RateBasedRule</code> into a
      *             <code>WebACL</code> or delete one from a <code>WebACL</code> (see <a>UpdateWebACL</a>), or delete a <code>RateBasedRule</code> from AWS WAF (see <a>DeleteRateBasedRule</a>).</p>
      */
     RuleId: string | undefined;
     /**
+     * @public
      * <p>A friendly name or description for a <code>RateBasedRule</code>. You can't change the
      *          name of a <code>RateBasedRule</code> after you create it.</p>
      */
     Name?: string;
     /**
+     * @public
      * <p>A friendly name or description for the metrics for a <code>RateBasedRule</code>. The name can contain only alphanumeric characters (A-Z, a-z, 0-9), with maximum length 128 and minimum length one. It can't contain
      *          whitespace or metric names reserved for AWS WAF, including "All" and "Default_Action." You can't change the name of the metric after you create the
      *             <code>RateBasedRule</code>.</p>
      */
     MetricName?: string;
     /**
+     * @public
      * <p>The <code>Predicates</code> object contains one <code>Predicate</code> element for
      *          each <a>ByteMatchSet</a>, <a>IPSet</a>, or <a>SqlInjectionMatchSet</a> object that you want to include in a
      *             <code>RateBasedRule</code>.</p>
      */
     MatchPredicates: Predicate[] | undefined;
     /**
+     * @public
      * <p>The field that AWS WAF uses to determine if requests are likely arriving from single
      *          source and thus subject to rate monitoring. The only valid value for <code>RateKey</code>
      *          is <code>IP</code>. <code>IP</code> indicates that requests arriving from the same IP
@@ -1446,6 +1502,7 @@ export interface RateBasedRule {
      */
     RateKey: RateKey | string | undefined;
     /**
+     * @public
      * <p>The maximum number of requests, which have an identical value in the field specified
      *          by the <code>RateKey</code>, allowed in a five-minute period. If the number of requests
      *          exceeds the <code>RateLimit</code> and the other predicates specified in the rule are also
@@ -1458,11 +1515,13 @@ export interface RateBasedRule {
  */
 export interface CreateRateBasedRuleResponse {
     /**
+     * @public
      * <p>The <a>RateBasedRule</a>
      *          that is returned in the <code>CreateRateBasedRule</code> response.</p>
      */
     Rule?: RateBasedRule;
     /**
+     * @public
      * <p>The <code>ChangeToken</code> that you used to submit the
      *             <code>CreateRateBasedRule</code> request. You can also use this value to query the
      *          status of the request. For more information, see <a>GetChangeTokenStatus</a>.</p>
@@ -1510,11 +1569,13 @@ export declare class WAFTagOperationInternalErrorException extends __BaseExcepti
  */
 export interface CreateRegexMatchSetRequest {
     /**
+     * @public
      * <p>A friendly name or description of the <a>RegexMatchSet</a>. You can't change <code>Name</code> after you create a
      * 			<code>RegexMatchSet</code>.</p>
      */
     Name: string | undefined;
     /**
+     * @public
      * <p>The value returned by the most recent call to <a>GetChangeToken</a>.</p>
      */
     ChangeToken: string | undefined;
@@ -1544,10 +1605,12 @@ export interface CreateRegexMatchSetRequest {
  */
 export interface RegexMatchTuple {
     /**
+     * @public
      * <p>Specifies where in a web request to look for the <code>RegexPatternSet</code>.</p>
      */
     FieldToMatch: FieldToMatch | undefined;
     /**
+     * @public
      * <p>Text transformations eliminate some of the unusual formatting that attackers use in web requests in an effort to bypass AWS WAF.
      * 			If you specify a transformation, AWS WAF performs the transformation on <code>RegexPatternSet</code> before inspecting a request for a match.</p>
      *          <p>You can only specify a single type of TextTransformation.</p>
@@ -1643,6 +1706,7 @@ export interface RegexMatchTuple {
      */
     TextTransformation: TextTransformation | string | undefined;
     /**
+     * @public
      * <p>The <code>RegexPatternSetId</code> for a <code>RegexPatternSet</code>. You use <code>RegexPatternSetId</code> to get information about a
      * 			<code>RegexPatternSet</code> (see <a>GetRegexPatternSet</a>), update a <code>RegexPatternSet</code> (see <a>UpdateRegexPatternSet</a>),
      * 			insert a <code>RegexPatternSet</code> into a <code>RegexMatchSet</code> or delete one from a <code>RegexMatchSet</code> (see <a>UpdateRegexMatchSet</a>), and
@@ -1670,6 +1734,7 @@ export interface RegexMatchTuple {
  */
 export interface RegexMatchSet {
     /**
+     * @public
      * <p>The <code>RegexMatchSetId</code> for a <code>RegexMatchSet</code>. You use <code>RegexMatchSetId</code> to get information about a
      * 			<code>RegexMatchSet</code> (see <a>GetRegexMatchSet</a>), update a <code>RegexMatchSet</code> (see <a>UpdateRegexMatchSet</a>),
      * 			insert a <code>RegexMatchSet</code> into a <code>Rule</code> or delete one from a <code>Rule</code> (see <a>UpdateRule</a>), and
@@ -1679,11 +1744,13 @@ export interface RegexMatchSet {
      */
     RegexMatchSetId?: string;
     /**
+     * @public
      * <p>A friendly name or description of the <a>RegexMatchSet</a>. You can't change <code>Name</code> after you create a
      * 			<code>RegexMatchSet</code>.</p>
      */
     Name?: string;
     /**
+     * @public
      * <p>Contains an array of <a>RegexMatchTuple</a> objects. Each <code>RegexMatchTuple</code>
      * 				object contains: </p>
      * 		       <ul>
@@ -1705,10 +1772,12 @@ export interface RegexMatchSet {
  */
 export interface CreateRegexMatchSetResponse {
     /**
+     * @public
      * <p>A <a>RegexMatchSet</a> that contains no <code>RegexMatchTuple</code> objects.</p>
      */
     RegexMatchSet?: RegexMatchSet;
     /**
+     * @public
      * <p>The <code>ChangeToken</code> that you used to submit the <code>CreateRegexMatchSet</code> request. You can also use this value
      * 			to query the status of the request. For more information, see <a>GetChangeTokenStatus</a>.</p>
      */
@@ -1719,11 +1788,13 @@ export interface CreateRegexMatchSetResponse {
  */
 export interface CreateRegexPatternSetRequest {
     /**
+     * @public
      * <p>A friendly name or description of the <a>RegexPatternSet</a>. You can't change <code>Name</code> after you create a
      * 			<code>RegexPatternSet</code>.</p>
      */
     Name: string | undefined;
     /**
+     * @public
      * <p>The value returned by the most recent call to <a>GetChangeToken</a>.</p>
      */
     ChangeToken: string | undefined;
@@ -1742,6 +1813,7 @@ export interface CreateRegexPatternSetRequest {
  */
 export interface RegexPatternSet {
     /**
+     * @public
      * <p>The identifier for the <code>RegexPatternSet</code>. You use <code>RegexPatternSetId</code> to get information about a <code>RegexPatternSet</code>,
      *          update a <code>RegexPatternSet</code>, remove a <code>RegexPatternSet</code> from a <code>RegexMatchSet</code>, and delete a <code>RegexPatternSet</code> from AWS WAF.</p>
      *          <p>
@@ -1749,10 +1821,12 @@ export interface RegexPatternSet {
      */
     RegexPatternSetId: string | undefined;
     /**
+     * @public
      * <p>A friendly name or description of the <a>RegexPatternSet</a>. You can't change <code>Name</code> after you create a <code>RegexPatternSet</code>.</p>
      */
     Name?: string;
     /**
+     * @public
      * <p>Specifies the regular expression (regex) patterns that you want AWS WAF to search for, such as <code>B[a@]dB[o0]t</code>.</p>
      */
     RegexPatternStrings: string[] | undefined;
@@ -1762,10 +1836,12 @@ export interface RegexPatternSet {
  */
 export interface CreateRegexPatternSetResponse {
     /**
+     * @public
      * <p>A <a>RegexPatternSet</a> that contains no objects.</p>
      */
     RegexPatternSet?: RegexPatternSet;
     /**
+     * @public
      * <p>The <code>ChangeToken</code> that you used to submit the <code>CreateRegexPatternSet</code> request. You can also use this value
      * 			to query the status of the request. For more information, see <a>GetChangeTokenStatus</a>.</p>
      */
@@ -1776,20 +1852,24 @@ export interface CreateRegexPatternSetResponse {
  */
 export interface CreateRuleRequest {
     /**
+     * @public
      * <p>A friendly name or description of the <a>Rule</a>. You can't change the name of a <code>Rule</code> after you create it.</p>
      */
     Name: string | undefined;
     /**
+     * @public
      * <p>A friendly name or description for the metrics for this <code>Rule</code>. The name can contain only alphanumeric characters (A-Z, a-z, 0-9), with maximum length 128 and minimum length one. It can't contain
      * 	        whitespace or metric names reserved for AWS WAF, including "All" and "Default_Action." You can't change the name of the metric after you create the
      *             <code>Rule</code>.</p>
      */
     MetricName: string | undefined;
     /**
+     * @public
      * <p>The value returned by the most recent call to <a>GetChangeToken</a>.</p>
      */
     ChangeToken: string | undefined;
     /**
+     * @public
      * <p></p>
      */
     Tags?: Tag[];
@@ -1821,6 +1901,7 @@ export interface CreateRuleRequest {
  */
 export interface Rule {
     /**
+     * @public
      * <p>A unique identifier for a <code>Rule</code>. You use <code>RuleId</code> to get more information about a <code>Rule</code> (see <a>GetRule</a>),
      * 			update a <code>Rule</code> (see <a>UpdateRule</a>), insert a <code>Rule</code> into a <code>WebACL</code> or delete a
      * 			one from a <code>WebACL</code> (see <a>UpdateWebACL</a>), or delete a <code>Rule</code> from AWS WAF (see <a>DeleteRule</a>).</p>
@@ -1829,15 +1910,18 @@ export interface Rule {
      */
     RuleId: string | undefined;
     /**
+     * @public
      * <p>The friendly name or description for the <code>Rule</code>. You can't change the name of a <code>Rule</code> after you create it.</p>
      */
     Name?: string;
     /**
+     * @public
      * <p>A friendly name or description for the metrics for this <code>Rule</code>. The name can contain only alphanumeric characters (A-Z, a-z, 0-9), with maximum length 128 and minimum length one. It can't contain
      *          whitespace or metric names reserved for AWS WAF, including "All" and "Default_Action." You can't change <code>MetricName</code> after you create the <code>Rule</code>.</p>
      */
     MetricName?: string;
     /**
+     * @public
      * <p>The <code>Predicates</code> object contains one <code>Predicate</code> element for each <a>ByteMatchSet</a>, <a>IPSet</a>, or
      * 			<a>SqlInjectionMatchSet</a> object that you want to include in a <code>Rule</code>.</p>
      */
@@ -1848,10 +1932,12 @@ export interface Rule {
  */
 export interface CreateRuleResponse {
     /**
+     * @public
      * <p>The <a>Rule</a> returned in the <code>CreateRule</code> response.</p>
      */
     Rule?: Rule;
     /**
+     * @public
      * <p>The <code>ChangeToken</code> that you used to submit the <code>CreateRule</code> request. You can also use this value
      * 			to query the status of the request. For more information, see <a>GetChangeTokenStatus</a>.</p>
      */
@@ -1862,20 +1948,24 @@ export interface CreateRuleResponse {
  */
 export interface CreateRuleGroupRequest {
     /**
+     * @public
      * <p>A friendly name or description of the <a>RuleGroup</a>. You can't change <code>Name</code> after you create a
      *          <code>RuleGroup</code>.</p>
      */
     Name: string | undefined;
     /**
+     * @public
      * <p>A friendly name or description for the metrics for this <code>RuleGroup</code>. The name can contain only alphanumeric characters (A-Z, a-z, 0-9), with maximum length 128 and minimum length one. It can't contain
      *          whitespace or metric names reserved for AWS WAF, including "All" and "Default_Action." You can't change the name of the metric after you create the <code>RuleGroup</code>.</p>
      */
     MetricName: string | undefined;
     /**
+     * @public
      * <p>The value returned by the most recent call to <a>GetChangeToken</a>.</p>
      */
     ChangeToken: string | undefined;
     /**
+     * @public
      * <p></p>
      */
     Tags?: Tag[];
@@ -1906,6 +1996,7 @@ export interface CreateRuleGroupRequest {
  */
 export interface RuleGroup {
     /**
+     * @public
      * <p>A unique identifier for a <code>RuleGroup</code>. You use <code>RuleGroupId</code> to get more information about a <code>RuleGroup</code> (see <a>GetRuleGroup</a>),
      *          update a <code>RuleGroup</code> (see <a>UpdateRuleGroup</a>), insert a <code>RuleGroup</code> into a <code>WebACL</code> or delete a
      *          one from a <code>WebACL</code> (see <a>UpdateWebACL</a>), or delete a <code>RuleGroup</code> from AWS WAF (see <a>DeleteRuleGroup</a>).</p>
@@ -1914,10 +2005,12 @@ export interface RuleGroup {
      */
     RuleGroupId: string | undefined;
     /**
+     * @public
      * <p>The friendly name or description for the <code>RuleGroup</code>. You can't change the name of a <code>RuleGroup</code> after you create it.</p>
      */
     Name?: string;
     /**
+     * @public
      * <p>A friendly name or description for the metrics for this <code>RuleGroup</code>. The name can contain only alphanumeric characters (A-Z, a-z, 0-9), with maximum length 128 and minimum length one. It can't contain
      *          whitespace or metric names reserved for AWS WAF, including "All" and "Default_Action." You can't change the name of the metric after you create the <code>RuleGroup</code>.</p>
      */
@@ -1928,10 +2021,12 @@ export interface RuleGroup {
  */
 export interface CreateRuleGroupResponse {
     /**
+     * @public
      * <p>An empty  <a>RuleGroup</a>.</p>
      */
     RuleGroup?: RuleGroup;
     /**
+     * @public
      * <p>The <code>ChangeToken</code> that you used to submit the <code>CreateRuleGroup</code> request. You can also use this value
      *          to query the status of the request. For more information, see <a>GetChangeTokenStatus</a>.</p>
      */
@@ -1942,11 +2037,13 @@ export interface CreateRuleGroupResponse {
  */
 export interface CreateSizeConstraintSetRequest {
     /**
+     * @public
      * <p>A friendly name or description of the <a>SizeConstraintSet</a>. You can't change <code>Name</code> after you create a
      * 			<code>SizeConstraintSet</code>.</p>
      */
     Name: string | undefined;
     /**
+     * @public
      * <p>The value returned by the most recent call to <a>GetChangeToken</a>.</p>
      */
     ChangeToken: string | undefined;
@@ -1984,10 +2081,12 @@ export type ComparisonOperator = (typeof ComparisonOperator)[keyof typeof Compar
  */
 export interface SizeConstraint {
     /**
+     * @public
      * <p>Specifies where in a web request to look for the size constraint.</p>
      */
     FieldToMatch: FieldToMatch | undefined;
     /**
+     * @public
      * <p>Text transformations eliminate some of the unusual formatting that attackers use in web requests in an effort to bypass AWS WAF.
      * 			If you specify a transformation, AWS WAF performs the transformation on <code>FieldToMatch</code> before inspecting it for a match.</p>
      *          <p>You can only specify a single type of TextTransformation.</p>
@@ -2084,6 +2183,7 @@ export interface SizeConstraint {
      */
     TextTransformation: TextTransformation | string | undefined;
     /**
+     * @public
      * <p>The type of comparison you want AWS WAF to perform. AWS WAF uses this in combination with the provided <code>Size</code> and <code>FieldToMatch</code>
      * 			to build an expression in the form of "<code>Size</code>
      *             <code>ComparisonOperator</code> size in bytes of <code>FieldToMatch</code>". If that expression
@@ -2109,6 +2209,7 @@ export interface SizeConstraint {
      */
     ComparisonOperator: ComparisonOperator | string | undefined;
     /**
+     * @public
      * <p>The size in bytes that you want AWS WAF to compare against the size of the specified <code>FieldToMatch</code>. AWS WAF uses this in combination
      * 			with <code>ComparisonOperator</code> and <code>FieldToMatch</code> to build an expression in the form of "<code>Size</code>
      *             <code>ComparisonOperator</code> size
@@ -2135,6 +2236,7 @@ export interface SizeConstraint {
  */
 export interface SizeConstraintSet {
     /**
+     * @public
      * <p>A unique identifier for a <code>SizeConstraintSet</code>. You use <code>SizeConstraintSetId</code> to get information about a
      * 			<code>SizeConstraintSet</code> (see <a>GetSizeConstraintSet</a>), update a <code>SizeConstraintSet</code>
      * 			(see <a>UpdateSizeConstraintSet</a>), insert a <code>SizeConstraintSet</code> into a <code>Rule</code> or
@@ -2145,10 +2247,12 @@ export interface SizeConstraintSet {
      */
     SizeConstraintSetId: string | undefined;
     /**
+     * @public
      * <p>The name, if any, of the <code>SizeConstraintSet</code>.</p>
      */
     Name?: string;
     /**
+     * @public
      * <p>Specifies the parts of web requests that you want to inspect the size of.</p>
      */
     SizeConstraints: SizeConstraint[] | undefined;
@@ -2158,10 +2262,12 @@ export interface SizeConstraintSet {
  */
 export interface CreateSizeConstraintSetResponse {
     /**
+     * @public
      * <p>A <a>SizeConstraintSet</a> that contains no <code>SizeConstraint</code> objects.</p>
      */
     SizeConstraintSet?: SizeConstraintSet;
     /**
+     * @public
      * <p>The <code>ChangeToken</code> that you used to submit the <code>CreateSizeConstraintSet</code> request. You can also use this value
      * 			to query the status of the request. For more information, see <a>GetChangeTokenStatus</a>.</p>
      */
@@ -2173,11 +2279,13 @@ export interface CreateSizeConstraintSetResponse {
  */
 export interface CreateSqlInjectionMatchSetRequest {
     /**
+     * @public
      * <p>A friendly name or description for the <a>SqlInjectionMatchSet</a> that you're creating. You can't change <code>Name</code>
      * 			after you create the <code>SqlInjectionMatchSet</code>.</p>
      */
     Name: string | undefined;
     /**
+     * @public
      * <p>The value returned by the most recent call to <a>GetChangeToken</a>.</p>
      */
     ChangeToken: string | undefined;
@@ -2196,10 +2304,12 @@ export interface CreateSqlInjectionMatchSetRequest {
  */
 export interface SqlInjectionMatchTuple {
     /**
+     * @public
      * <p>Specifies where in a web request to look for snippets of malicious SQL code.</p>
      */
     FieldToMatch: FieldToMatch | undefined;
     /**
+     * @public
      * <p>Text transformations eliminate some of the unusual formatting that attackers use in web requests in an effort to bypass AWS WAF.
      * 			If you specify a transformation, AWS WAF performs the transformation on <code>FieldToMatch</code> before inspecting it for a match.</p>
      *          <p>You can only specify a single type of TextTransformation.</p>
@@ -2313,6 +2423,7 @@ export interface SqlInjectionMatchTuple {
  */
 export interface SqlInjectionMatchSet {
     /**
+     * @public
      * <p>A unique identifier for a <code>SqlInjectionMatchSet</code>. You use <code>SqlInjectionMatchSetId</code> to get information about a
      * 			<code>SqlInjectionMatchSet</code> (see <a>GetSqlInjectionMatchSet</a>), update a <code>SqlInjectionMatchSet</code>
      * 			(see <a>UpdateSqlInjectionMatchSet</a>), insert a <code>SqlInjectionMatchSet</code> into a <code>Rule</code> or
@@ -2323,10 +2434,12 @@ export interface SqlInjectionMatchSet {
      */
     SqlInjectionMatchSetId: string | undefined;
     /**
+     * @public
      * <p>The name, if any, of the <code>SqlInjectionMatchSet</code>.</p>
      */
     Name?: string;
     /**
+     * @public
      * <p>Specifies the parts of web requests that you want to inspect for snippets of malicious SQL code.</p>
      */
     SqlInjectionMatchTuples: SqlInjectionMatchTuple[] | undefined;
@@ -2337,10 +2450,12 @@ export interface SqlInjectionMatchSet {
  */
 export interface CreateSqlInjectionMatchSetResponse {
     /**
+     * @public
      * <p>A <a>SqlInjectionMatchSet</a>.</p>
      */
     SqlInjectionMatchSet?: SqlInjectionMatchSet;
     /**
+     * @public
      * <p>The <code>ChangeToken</code> that you used to submit the <code>CreateSqlInjectionMatchSet</code> request. You can also use this value
      * 			to query the status of the request. For more information, see <a>GetChangeTokenStatus</a>.</p>
      */
@@ -2351,25 +2466,30 @@ export interface CreateSqlInjectionMatchSetResponse {
  */
 export interface CreateWebACLRequest {
     /**
+     * @public
      * <p>A friendly name or description of the <a>WebACL</a>. You can't change <code>Name</code> after you create the <code>WebACL</code>.</p>
      */
     Name: string | undefined;
     /**
+     * @public
      * <p>A friendly name or description for the metrics for this <code>WebACL</code>.The name can contain only alphanumeric characters (A-Z, a-z, 0-9), with maximum length 128 and minimum length one. It can't contain
      * 	        whitespace or metric names reserved for AWS WAF, including "All" and "Default_Action." You can't change <code>MetricName</code> after you create the
      *             <code>WebACL</code>.</p>
      */
     MetricName: string | undefined;
     /**
+     * @public
      * <p>The action that you want  AWS WAF to take when a request doesn't match the criteria specified in any of the <code>Rule</code>
      * 			objects that are associated with the <code>WebACL</code>.</p>
      */
     DefaultAction: WafAction | undefined;
     /**
+     * @public
      * <p>The value returned by the most recent call to <a>GetChangeToken</a>.</p>
      */
     ChangeToken: string | undefined;
     /**
+     * @public
      * <p></p>
      */
     Tags?: Tag[];
@@ -2393,6 +2513,7 @@ export interface CreateWebACLRequest {
  */
 export interface WebACL {
     /**
+     * @public
      * <p>A unique identifier for a <code>WebACL</code>. You use <code>WebACLId</code> to get information about a <code>WebACL</code>
      * 			(see <a>GetWebACL</a>), update a <code>WebACL</code> (see <a>UpdateWebACL</a>), and delete a <code>WebACL</code> from AWS WAF
      * 			(see <a>DeleteWebACL</a>).</p>
@@ -2401,25 +2522,30 @@ export interface WebACL {
      */
     WebACLId: string | undefined;
     /**
+     * @public
      * <p>A friendly name or description of the <code>WebACL</code>. You can't change the name of a <code>WebACL</code> after you create it.</p>
      */
     Name?: string;
     /**
+     * @public
      * <p>A friendly name or description for the metrics for this <code>WebACL</code>. The name can contain only alphanumeric characters (A-Z, a-z, 0-9), with maximum length 128 and minimum length one. It can't contain
      *          whitespace or metric names reserved for AWS WAF, including "All" and "Default_Action." You can't change <code>MetricName</code> after you create the <code>WebACL</code>.</p>
      */
     MetricName?: string;
     /**
+     * @public
      * <p>The action to perform if none of the <code>Rules</code> contained in the <code>WebACL</code> match. The action is specified by the
      * 			<a>WafAction</a> object.</p>
      */
     DefaultAction: WafAction | undefined;
     /**
+     * @public
      * <p>An array that contains the action for each <code>Rule</code> in a <code>WebACL</code>, the priority of the <code>Rule</code>,
      * 			and the ID of the <code>Rule</code>.</p>
      */
     Rules: ActivatedRule[] | undefined;
     /**
+     * @public
      * <p>Tha Amazon Resource Name (ARN) of the web ACL.</p>
      */
     WebACLArn?: string;
@@ -2429,10 +2555,12 @@ export interface WebACL {
  */
 export interface CreateWebACLResponse {
     /**
+     * @public
      * <p>The <a>WebACL</a> returned in the <code>CreateWebACL</code> response.</p>
      */
     WebACL?: WebACL;
     /**
+     * @public
      * <p>The <code>ChangeToken</code> that you used to submit the <code>CreateWebACL</code> request. You can also use this value
      * 			to query the status of the request. For more information, see <a>GetChangeTokenStatus</a>.</p>
      */
@@ -2443,10 +2571,12 @@ export interface CreateWebACLResponse {
  */
 export interface CreateWebACLMigrationStackRequest {
     /**
+     * @public
      * <p>The UUID of the WAF Classic web ACL that you want to migrate to WAF v2.</p>
      */
     WebACLId: string | undefined;
     /**
+     * @public
      * <p>The name of the Amazon S3 bucket to store the CloudFormation template in. The S3 bucket must be
      *            configured as follows for the migration:  </p>
      *          <ul>
@@ -2464,6 +2594,7 @@ export interface CreateWebACLMigrationStackRequest {
      */
     S3BucketName: string | undefined;
     /**
+     * @public
      * <p>Indicates whether to exclude entities that can't be migrated or to stop the migration.
      *            Set this to true to ignore unsupported entities in the web ACL during the migration. Otherwise, if AWS WAF encounters unsupported
      *            entities, it stops the process and throws an exception. </p>
@@ -2475,6 +2606,7 @@ export interface CreateWebACLMigrationStackRequest {
  */
 export interface CreateWebACLMigrationStackResponse {
     /**
+     * @public
      * <p>The URL of the template created in Amazon S3. </p>
      */
     S3ObjectUrl: string | undefined;
@@ -2590,11 +2722,13 @@ export declare class WAFNonexistentItemException extends __BaseException {
  */
 export interface CreateXssMatchSetRequest {
     /**
+     * @public
      * <p>A friendly name or description for the <a>XssMatchSet</a> that you're creating. You can't change <code>Name</code>
      * 			after you create the <code>XssMatchSet</code>.</p>
      */
     Name: string | undefined;
     /**
+     * @public
      * <p>The value returned by the most recent call to <a>GetChangeToken</a>.</p>
      */
     ChangeToken: string | undefined;
@@ -2613,10 +2747,12 @@ export interface CreateXssMatchSetRequest {
  */
 export interface XssMatchTuple {
     /**
+     * @public
      * <p>Specifies where in a web request to look for cross-site scripting attacks.</p>
      */
     FieldToMatch: FieldToMatch | undefined;
     /**
+     * @public
      * <p>Text transformations eliminate some of the unusual formatting that attackers use in web requests in an effort to bypass AWS WAF.
      * 			If you specify a transformation, AWS WAF performs the transformation on <code>FieldToMatch</code> before inspecting it for a match.</p>
      *          <p>You can only specify a single type of TextTransformation.</p>
@@ -2730,6 +2866,7 @@ export interface XssMatchTuple {
  */
 export interface XssMatchSet {
     /**
+     * @public
      * <p>A unique identifier for an <code>XssMatchSet</code>. You use <code>XssMatchSetId</code> to get information about an
      * 			<code>XssMatchSet</code> (see <a>GetXssMatchSet</a>), update an <code>XssMatchSet</code>
      * 			(see <a>UpdateXssMatchSet</a>), insert an <code>XssMatchSet</code> into a <code>Rule</code> or
@@ -2740,10 +2877,12 @@ export interface XssMatchSet {
      */
     XssMatchSetId: string | undefined;
     /**
+     * @public
      * <p>The name, if any, of the <code>XssMatchSet</code>.</p>
      */
     Name?: string;
     /**
+     * @public
      * <p>Specifies the parts of web requests that you want to inspect for cross-site scripting attacks.</p>
      */
     XssMatchTuples: XssMatchTuple[] | undefined;
@@ -2754,10 +2893,12 @@ export interface XssMatchSet {
  */
 export interface CreateXssMatchSetResponse {
     /**
+     * @public
      * <p>An <a>XssMatchSet</a>.</p>
      */
     XssMatchSet?: XssMatchSet;
     /**
+     * @public
      * <p>The <code>ChangeToken</code> that you used to submit the <code>CreateXssMatchSet</code> request. You can also use this value
      * 			to query the status of the request. For more information, see <a>GetChangeTokenStatus</a>.</p>
      */
@@ -2768,11 +2909,13 @@ export interface CreateXssMatchSetResponse {
  */
 export interface DeleteByteMatchSetRequest {
     /**
+     * @public
      * <p>The <code>ByteMatchSetId</code> of the <a>ByteMatchSet</a> that you want to delete. <code>ByteMatchSetId</code> is returned by <a>CreateByteMatchSet</a> and by
      * 			<a>ListByteMatchSets</a>.</p>
      */
     ByteMatchSetId: string | undefined;
     /**
+     * @public
      * <p>The value returned by the most recent call to <a>GetChangeToken</a>.</p>
      */
     ChangeToken: string | undefined;
@@ -2782,6 +2925,7 @@ export interface DeleteByteMatchSetRequest {
  */
 export interface DeleteByteMatchSetResponse {
     /**
+     * @public
      * <p>The <code>ChangeToken</code> that you used to submit the <code>DeleteByteMatchSet</code> request. You can also use this value
      * 			to query the status of the request. For more information, see <a>GetChangeTokenStatus</a>.</p>
      */
@@ -2839,11 +2983,13 @@ export declare class WAFReferencedItemException extends __BaseException {
  */
 export interface DeleteGeoMatchSetRequest {
     /**
+     * @public
      * <p>The <code>GeoMatchSetID</code> of the <a>GeoMatchSet</a> that you want to delete. <code>GeoMatchSetId</code> is returned by <a>CreateGeoMatchSet</a> and by
      * 			<a>ListGeoMatchSets</a>.</p>
      */
     GeoMatchSetId: string | undefined;
     /**
+     * @public
      * <p>The value returned by the most recent call to <a>GetChangeToken</a>.</p>
      */
     ChangeToken: string | undefined;
@@ -2853,6 +2999,7 @@ export interface DeleteGeoMatchSetRequest {
  */
 export interface DeleteGeoMatchSetResponse {
     /**
+     * @public
      * <p>The <code>ChangeToken</code> that you used to submit the <code>DeleteGeoMatchSet</code> request. You can also use this value
      * 			to query the status of the request. For more information, see <a>GetChangeTokenStatus</a>.</p>
      */
@@ -2863,11 +3010,13 @@ export interface DeleteGeoMatchSetResponse {
  */
 export interface DeleteIPSetRequest {
     /**
+     * @public
      * <p>The <code>IPSetId</code> of the <a>IPSet</a> that you want to delete. <code>IPSetId</code> is returned by <a>CreateIPSet</a> and by
      * 			<a>ListIPSets</a>.</p>
      */
     IPSetId: string | undefined;
     /**
+     * @public
      * <p>The value returned by the most recent call to <a>GetChangeToken</a>.</p>
      */
     ChangeToken: string | undefined;
@@ -2877,6 +3026,7 @@ export interface DeleteIPSetRequest {
  */
 export interface DeleteIPSetResponse {
     /**
+     * @public
      * <p>The <code>ChangeToken</code> that you used to submit the <code>DeleteIPSet</code> request. You can also use this value
      * 			to query the status of the request. For more information, see <a>GetChangeTokenStatus</a>.</p>
      */
@@ -2887,6 +3037,7 @@ export interface DeleteIPSetResponse {
  */
 export interface DeleteLoggingConfigurationRequest {
     /**
+     * @public
      * <p>The Amazon Resource Name (ARN) of the web ACL from which you want to delete the <a>LoggingConfiguration</a>.</p>
      */
     ResourceArn: string | undefined;
@@ -2901,6 +3052,7 @@ export interface DeleteLoggingConfigurationResponse {
  */
 export interface DeletePermissionPolicyRequest {
     /**
+     * @public
      * <p>The Amazon Resource Name (ARN) of the RuleGroup from which you want to delete the policy.</p>
      *          <p>The user making the request must be the owner of the RuleGroup.</p>
      */
@@ -2916,12 +3068,14 @@ export interface DeletePermissionPolicyResponse {
  */
 export interface DeleteRateBasedRuleRequest {
     /**
+     * @public
      * <p>The <code>RuleId</code> of the <a>RateBasedRule</a> that you want to
      *          delete. <code>RuleId</code> is returned by <a>CreateRateBasedRule</a> and by
      *             <a>ListRateBasedRules</a>.</p>
      */
     RuleId: string | undefined;
     /**
+     * @public
      * <p>The value returned by the most recent call to <a>GetChangeToken</a>.</p>
      */
     ChangeToken: string | undefined;
@@ -2931,6 +3085,7 @@ export interface DeleteRateBasedRuleRequest {
  */
 export interface DeleteRateBasedRuleResponse {
     /**
+     * @public
      * <p>The <code>ChangeToken</code> that you used to submit the
      *             <code>DeleteRateBasedRule</code> request. You can also use this value to query the
      *          status of the request. For more information, see <a>GetChangeTokenStatus</a>.</p>
@@ -2942,11 +3097,13 @@ export interface DeleteRateBasedRuleResponse {
  */
 export interface DeleteRegexMatchSetRequest {
     /**
+     * @public
      * <p>The <code>RegexMatchSetId</code> of the <a>RegexMatchSet</a> that you want to delete. <code>RegexMatchSetId</code> is returned by <a>CreateRegexMatchSet</a> and by
      * 			<a>ListRegexMatchSets</a>.</p>
      */
     RegexMatchSetId: string | undefined;
     /**
+     * @public
      * <p>The value returned by the most recent call to <a>GetChangeToken</a>.</p>
      */
     ChangeToken: string | undefined;
@@ -2956,6 +3113,7 @@ export interface DeleteRegexMatchSetRequest {
  */
 export interface DeleteRegexMatchSetResponse {
     /**
+     * @public
      * <p>The <code>ChangeToken</code> that you used to submit the <code>DeleteRegexMatchSet</code> request. You can also use this value
      * 			to query the status of the request. For more information, see <a>GetChangeTokenStatus</a>.</p>
      */
@@ -2966,11 +3124,13 @@ export interface DeleteRegexMatchSetResponse {
  */
 export interface DeleteRegexPatternSetRequest {
     /**
+     * @public
      * <p>The <code>RegexPatternSetId</code> of the <a>RegexPatternSet</a> that you want to delete. <code>RegexPatternSetId</code> is returned by <a>CreateRegexPatternSet</a> and by
      * 			<a>ListRegexPatternSets</a>.</p>
      */
     RegexPatternSetId: string | undefined;
     /**
+     * @public
      * <p>The value returned by the most recent call to <a>GetChangeToken</a>.</p>
      */
     ChangeToken: string | undefined;
@@ -2980,6 +3140,7 @@ export interface DeleteRegexPatternSetRequest {
  */
 export interface DeleteRegexPatternSetResponse {
     /**
+     * @public
      * <p>The <code>ChangeToken</code> that you used to submit the <code>DeleteRegexPatternSet</code> request. You can also use this value
      * 			to query the status of the request. For more information, see <a>GetChangeTokenStatus</a>.</p>
      */
@@ -2990,11 +3151,13 @@ export interface DeleteRegexPatternSetResponse {
  */
 export interface DeleteRuleRequest {
     /**
+     * @public
      * <p>The <code>RuleId</code> of the <a>Rule</a> that you want to delete. <code>RuleId</code> is returned by <a>CreateRule</a> and by
      * 			<a>ListRules</a>.</p>
      */
     RuleId: string | undefined;
     /**
+     * @public
      * <p>The value returned by the most recent call to <a>GetChangeToken</a>.</p>
      */
     ChangeToken: string | undefined;
@@ -3004,6 +3167,7 @@ export interface DeleteRuleRequest {
  */
 export interface DeleteRuleResponse {
     /**
+     * @public
      * <p>The <code>ChangeToken</code> that you used to submit the <code>DeleteRule</code> request. You can also use this value
      * 			to query the status of the request. For more information, see <a>GetChangeTokenStatus</a>.</p>
      */
@@ -3014,11 +3178,13 @@ export interface DeleteRuleResponse {
  */
 export interface DeleteRuleGroupRequest {
     /**
+     * @public
      * <p>The <code>RuleGroupId</code> of the <a>RuleGroup</a> that you want to delete. <code>RuleGroupId</code> is returned by <a>CreateRuleGroup</a> and by
      *          <a>ListRuleGroups</a>.</p>
      */
     RuleGroupId: string | undefined;
     /**
+     * @public
      * <p>The value returned by the most recent call to <a>GetChangeToken</a>.</p>
      */
     ChangeToken: string | undefined;
@@ -3028,6 +3194,7 @@ export interface DeleteRuleGroupRequest {
  */
 export interface DeleteRuleGroupResponse {
     /**
+     * @public
      * <p>The <code>ChangeToken</code> that you used to submit the <code>DeleteRuleGroup</code> request. You can also use this value
      *          to query the status of the request. For more information, see <a>GetChangeTokenStatus</a>.</p>
      */
@@ -3038,11 +3205,13 @@ export interface DeleteRuleGroupResponse {
  */
 export interface DeleteSizeConstraintSetRequest {
     /**
+     * @public
      * <p>The <code>SizeConstraintSetId</code> of the <a>SizeConstraintSet</a> that you want to delete. <code>SizeConstraintSetId</code>
      * 			is returned by <a>CreateSizeConstraintSet</a> and by <a>ListSizeConstraintSets</a>.</p>
      */
     SizeConstraintSetId: string | undefined;
     /**
+     * @public
      * <p>The value returned by the most recent call to <a>GetChangeToken</a>.</p>
      */
     ChangeToken: string | undefined;
@@ -3052,6 +3221,7 @@ export interface DeleteSizeConstraintSetRequest {
  */
 export interface DeleteSizeConstraintSetResponse {
     /**
+     * @public
      * <p>The <code>ChangeToken</code> that you used to submit the <code>DeleteSizeConstraintSet</code> request. You can also use this value
      * 			to query the status of the request. For more information, see <a>GetChangeTokenStatus</a>.</p>
      */
@@ -3063,11 +3233,13 @@ export interface DeleteSizeConstraintSetResponse {
  */
 export interface DeleteSqlInjectionMatchSetRequest {
     /**
+     * @public
      * <p>The <code>SqlInjectionMatchSetId</code> of the <a>SqlInjectionMatchSet</a> that you want to delete.
      * 			<code>SqlInjectionMatchSetId</code> is returned by <a>CreateSqlInjectionMatchSet</a> and by <a>ListSqlInjectionMatchSets</a>.</p>
      */
     SqlInjectionMatchSetId: string | undefined;
     /**
+     * @public
      * <p>The value returned by the most recent call to <a>GetChangeToken</a>.</p>
      */
     ChangeToken: string | undefined;
@@ -3078,6 +3250,7 @@ export interface DeleteSqlInjectionMatchSetRequest {
  */
 export interface DeleteSqlInjectionMatchSetResponse {
     /**
+     * @public
      * <p>The <code>ChangeToken</code> that you used to submit the <code>DeleteSqlInjectionMatchSet</code> request. You can also use this value
      * 			to query the status of the request. For more information, see <a>GetChangeTokenStatus</a>.</p>
      */
@@ -3088,11 +3261,13 @@ export interface DeleteSqlInjectionMatchSetResponse {
  */
 export interface DeleteWebACLRequest {
     /**
+     * @public
      * <p>The <code>WebACLId</code> of the <a>WebACL</a> that you want to delete. <code>WebACLId</code> is returned by <a>CreateWebACL</a> and by
      * 			<a>ListWebACLs</a>.</p>
      */
     WebACLId: string | undefined;
     /**
+     * @public
      * <p>The value returned by the most recent call to <a>GetChangeToken</a>.</p>
      */
     ChangeToken: string | undefined;
@@ -3102,6 +3277,7 @@ export interface DeleteWebACLRequest {
  */
 export interface DeleteWebACLResponse {
     /**
+     * @public
      * <p>The <code>ChangeToken</code> that you used to submit the <code>DeleteWebACL</code> request. You can also use this value
      * 			to query the status of the request. For more information, see <a>GetChangeTokenStatus</a>.</p>
      */
@@ -3113,11 +3289,13 @@ export interface DeleteWebACLResponse {
  */
 export interface DeleteXssMatchSetRequest {
     /**
+     * @public
      * <p>The <code>XssMatchSetId</code> of the <a>XssMatchSet</a> that you want to delete.
      * 			<code>XssMatchSetId</code> is returned by <a>CreateXssMatchSet</a> and by <a>ListXssMatchSets</a>.</p>
      */
     XssMatchSetId: string | undefined;
     /**
+     * @public
      * <p>The value returned by the most recent call to <a>GetChangeToken</a>.</p>
      */
     ChangeToken: string | undefined;
@@ -3128,6 +3306,7 @@ export interface DeleteXssMatchSetRequest {
  */
 export interface DeleteXssMatchSetResponse {
     /**
+     * @public
      * <p>The <code>ChangeToken</code> that you used to submit the <code>DeleteXssMatchSet</code> request. You can also use this value
      * 			to query the status of the request. For more information, see <a>GetChangeTokenStatus</a>.</p>
      */
@@ -3138,6 +3317,7 @@ export interface DeleteXssMatchSetResponse {
  */
 export interface GetByteMatchSetRequest {
     /**
+     * @public
      * <p>The <code>ByteMatchSetId</code> of the <a>ByteMatchSet</a> that you want to get. <code>ByteMatchSetId</code> is returned by
      * 			<a>CreateByteMatchSet</a> and by <a>ListByteMatchSets</a>.</p>
      */
@@ -3148,6 +3328,7 @@ export interface GetByteMatchSetRequest {
  */
 export interface GetByteMatchSetResponse {
     /**
+     * @public
      * <p>Information about the <a>ByteMatchSet</a> that you specified in the <code>GetByteMatchSet</code> request. For more information, see the
      * 			following topics:</p>
      * 		       <ul>
@@ -3182,6 +3363,7 @@ export interface GetChangeTokenRequest {
  */
 export interface GetChangeTokenResponse {
     /**
+     * @public
      * <p>The <code>ChangeToken</code> that you used in the request. Use this value in a <code>GetChangeTokenStatus</code> request
      * 			to get the current status of the request. </p>
      */
@@ -3192,6 +3374,7 @@ export interface GetChangeTokenResponse {
  */
 export interface GetChangeTokenStatusRequest {
     /**
+     * @public
      * <p>The change token for which you want to get the status. This change token was previously returned in the <code>GetChangeToken</code> response.</p>
      */
     ChangeToken: string | undefined;
@@ -3214,6 +3397,7 @@ export type ChangeTokenStatus = (typeof ChangeTokenStatus)[keyof typeof ChangeTo
  */
 export interface GetChangeTokenStatusResponse {
     /**
+     * @public
      * <p>The status of the change token.</p>
      */
     ChangeTokenStatus?: ChangeTokenStatus | string;
@@ -3223,6 +3407,7 @@ export interface GetChangeTokenStatusResponse {
  */
 export interface GetGeoMatchSetRequest {
     /**
+     * @public
      * <p>The <code>GeoMatchSetId</code> of the <a>GeoMatchSet</a> that you want to get. <code>GeoMatchSetId</code> is returned by <a>CreateGeoMatchSet</a> and by
      * 			<a>ListGeoMatchSets</a>.</p>
      */
@@ -3233,6 +3418,7 @@ export interface GetGeoMatchSetRequest {
  */
 export interface GetGeoMatchSetResponse {
     /**
+     * @public
      * <p>Information about the <a>GeoMatchSet</a> that you specified in the <code>GetGeoMatchSet</code> request. This includes the <code>Type</code>, which for a <code>GeoMatchContraint</code> is always <code>Country</code>, as well as the <code>Value</code>, which is the identifier for a specific country.</p>
      */
     GeoMatchSet?: GeoMatchSet;
@@ -3242,6 +3428,7 @@ export interface GetGeoMatchSetResponse {
  */
 export interface GetIPSetRequest {
     /**
+     * @public
      * <p>The <code>IPSetId</code> of the <a>IPSet</a> that you want to get. <code>IPSetId</code> is returned by <a>CreateIPSet</a> and by
      * 			<a>ListIPSets</a>.</p>
      */
@@ -3252,6 +3439,7 @@ export interface GetIPSetRequest {
  */
 export interface GetIPSetResponse {
     /**
+     * @public
      * <p>Information about the <a>IPSet</a> that you specified in the <code>GetIPSet</code> request. For more information, see the
      * 			following topics:</p>
      * 		       <ul>
@@ -3275,6 +3463,7 @@ export interface GetIPSetResponse {
  */
 export interface GetLoggingConfigurationRequest {
     /**
+     * @public
      * <p>The Amazon Resource Name (ARN) of the web ACL for which you want to get the <a>LoggingConfiguration</a>.</p>
      */
     ResourceArn: string | undefined;
@@ -3294,15 +3483,18 @@ export interface GetLoggingConfigurationRequest {
  */
 export interface LoggingConfiguration {
     /**
+     * @public
      * <p>The Amazon Resource Name (ARN) of the web ACL that you want to associate with
      *             <code>LogDestinationConfigs</code>.</p>
      */
     ResourceArn: string | undefined;
     /**
+     * @public
      * <p>An array of Amazon Kinesis Data Firehose ARNs.</p>
      */
     LogDestinationConfigs: string[] | undefined;
     /**
+     * @public
      * <p>The parts of the request that you want redacted from the logs. For
      *          example,
      *          if you redact the cookie field, the cookie field in the firehose will be
@@ -3315,6 +3507,7 @@ export interface LoggingConfiguration {
  */
 export interface GetLoggingConfigurationResponse {
     /**
+     * @public
      * <p>The <a>LoggingConfiguration</a> for the specified web ACL.</p>
      */
     LoggingConfiguration?: LoggingConfiguration;
@@ -3324,6 +3517,7 @@ export interface GetLoggingConfigurationResponse {
  */
 export interface GetPermissionPolicyRequest {
     /**
+     * @public
      * <p>The Amazon Resource Name (ARN) of the RuleGroup for which you want to get the policy.</p>
      */
     ResourceArn: string | undefined;
@@ -3333,6 +3527,7 @@ export interface GetPermissionPolicyRequest {
  */
 export interface GetPermissionPolicyResponse {
     /**
+     * @public
      * <p>The IAM policy attached to the specified RuleGroup.</p>
      */
     Policy?: string;
@@ -3342,6 +3537,7 @@ export interface GetPermissionPolicyResponse {
  */
 export interface GetRateBasedRuleRequest {
     /**
+     * @public
      * <p>The <code>RuleId</code> of the <a>RateBasedRule</a> that you want to get.
      *             <code>RuleId</code> is returned by <a>CreateRateBasedRule</a> and by <a>ListRateBasedRules</a>.</p>
      */
@@ -3352,6 +3548,7 @@ export interface GetRateBasedRuleRequest {
  */
 export interface GetRateBasedRuleResponse {
     /**
+     * @public
      * <p>Information about the <a>RateBasedRule</a> that you specified in the
      *             <code>GetRateBasedRule</code> request.</p>
      */
@@ -3362,11 +3559,13 @@ export interface GetRateBasedRuleResponse {
  */
 export interface GetRateBasedRuleManagedKeysRequest {
     /**
+     * @public
      * <p>The <code>RuleId</code> of the <a>RateBasedRule</a> for which you want to
      *          get a list of <code>ManagedKeys</code>. <code>RuleId</code> is returned by <a>CreateRateBasedRule</a> and by <a>ListRateBasedRules</a>.</p>
      */
     RuleId: string | undefined;
     /**
+     * @public
      * <p>A null value and not currently used. Do not include this in your request.</p>
      */
     NextMarker?: string;
@@ -3376,10 +3575,12 @@ export interface GetRateBasedRuleManagedKeysRequest {
  */
 export interface GetRateBasedRuleManagedKeysResponse {
     /**
+     * @public
      * <p>An array of IP addresses that currently are blocked by the specified <a>RateBasedRule</a>. </p>
      */
     ManagedKeys?: string[];
     /**
+     * @public
      * <p>A null value and not currently used.</p>
      */
     NextMarker?: string;
@@ -3389,6 +3590,7 @@ export interface GetRateBasedRuleManagedKeysResponse {
  */
 export interface GetRegexMatchSetRequest {
     /**
+     * @public
      * <p>The <code>RegexMatchSetId</code> of the <a>RegexMatchSet</a> that you want to get. <code>RegexMatchSetId</code> is returned by
      * 			<a>CreateRegexMatchSet</a> and by <a>ListRegexMatchSets</a>.</p>
      */
@@ -3399,6 +3601,7 @@ export interface GetRegexMatchSetRequest {
  */
 export interface GetRegexMatchSetResponse {
     /**
+     * @public
      * <p>Information about the <a>RegexMatchSet</a> that you specified in the <code>GetRegexMatchSet</code> request. For more information, see <a>RegexMatchTuple</a>.</p>
      */
     RegexMatchSet?: RegexMatchSet;
@@ -3408,6 +3611,7 @@ export interface GetRegexMatchSetResponse {
  */
 export interface GetRegexPatternSetRequest {
     /**
+     * @public
      * <p>The <code>RegexPatternSetId</code> of the <a>RegexPatternSet</a> that you want to get. <code>RegexPatternSetId</code> is returned by
      * 			<a>CreateRegexPatternSet</a> and by <a>ListRegexPatternSets</a>.</p>
      */
@@ -3418,6 +3622,7 @@ export interface GetRegexPatternSetRequest {
  */
 export interface GetRegexPatternSetResponse {
     /**
+     * @public
      * <p>Information about the <a>RegexPatternSet</a> that you specified in the <code>GetRegexPatternSet</code> request, including the identifier of the pattern set and the regular expression patterns you want AWS WAF to search for. </p>
      */
     RegexPatternSet?: RegexPatternSet;
@@ -3427,6 +3632,7 @@ export interface GetRegexPatternSetResponse {
  */
 export interface GetRuleRequest {
     /**
+     * @public
      * <p>The <code>RuleId</code> of the <a>Rule</a> that you want to get. <code>RuleId</code> is returned by <a>CreateRule</a> and by
      * 			<a>ListRules</a>.</p>
      */
@@ -3437,6 +3643,7 @@ export interface GetRuleRequest {
  */
 export interface GetRuleResponse {
     /**
+     * @public
      * <p>Information about the <a>Rule</a> that you specified in the <code>GetRule</code> request.
      * 			For more information, see the following topics:</p>
      * 		       <ul>
@@ -3461,6 +3668,7 @@ export interface GetRuleResponse {
  */
 export interface GetRuleGroupRequest {
     /**
+     * @public
      * <p>The <code>RuleGroupId</code> of the <a>RuleGroup</a> that you want to get. <code>RuleGroupId</code> is returned by <a>CreateRuleGroup</a> and by
      *          <a>ListRuleGroups</a>.</p>
      */
@@ -3471,6 +3679,7 @@ export interface GetRuleGroupRequest {
  */
 export interface GetRuleGroupResponse {
     /**
+     * @public
      * <p>Information about the <a>RuleGroup</a> that you specified in the <code>GetRuleGroup</code> request. </p>
      */
     RuleGroup?: RuleGroup;
@@ -3497,6 +3706,7 @@ export interface GetRuleGroupResponse {
  */
 export interface TimeWindow {
     /**
+     * @public
      * <p>The beginning of the time range from which you want <code>GetSampledRequests</code> to return a sample of the
      *                   requests that your AWS resource received. You must specify the date and time in Coordinated Universal Time (UTC) format.
      *                   UTC format includes the special designator, <code>Z</code>. For example, <code>"2016-09-27T14:50Z"</code>.
@@ -3504,6 +3714,7 @@ export interface TimeWindow {
      */
     StartTime: Date | undefined;
     /**
+     * @public
      * <p>The end of the time range from which you want <code>GetSampledRequests</code> to return a sample of the
      *                   requests that your AWS resource received. You must specify the date and time in Coordinated Universal Time (UTC) format.
      *                   UTC format includes the special designator, <code>Z</code>. For example, <code>"2016-09-27T14:50Z"</code>.
@@ -3516,10 +3727,12 @@ export interface TimeWindow {
  */
 export interface GetSampledRequestsRequest {
     /**
+     * @public
      * <p>The <code>WebACLId</code> of the <code>WebACL</code> for which you want <code>GetSampledRequests</code> to return a sample of requests.</p>
      */
     WebAclId: string | undefined;
     /**
+     * @public
      * <p>
      *             <code>RuleId</code> is one of three values:</p>
      * 			      <ul>
@@ -3535,12 +3748,14 @@ export interface GetSampledRequestsRequest {
      */
     RuleId: string | undefined;
     /**
+     * @public
      * <p>The start date and time and the end date and time of the range for which you want <code>GetSampledRequests</code> to return a
      *                         sample of requests. You must specify the times in Coordinated Universal Time (UTC) format. UTC format includes the special
      *                         designator, <code>Z</code>. For example, <code>"2016-09-27T14:50Z"</code>. You can specify any time range in the previous three hours.</p>
      */
     TimeWindow: TimeWindow | undefined;
     /**
+     * @public
      * <p>The number of requests that you want AWS WAF to return from among the first 5,000 requests that your AWS resource received
      * 			during the time range. If your resource received fewer requests than the value of <code>MaxItems</code>, <code>GetSampledRequests</code>
      * 			returns information about all of them. </p>
@@ -3563,10 +3778,12 @@ export interface GetSampledRequestsRequest {
  */
 export interface HTTPHeader {
     /**
+     * @public
      * <p>The name of one of the headers in the sampled web request.</p>
      */
     Name?: string;
     /**
+     * @public
      * <p>The value of one of the headers in the sampled web request.</p>
      */
     Value?: string;
@@ -3587,6 +3804,7 @@ export interface HTTPHeader {
  */
 export interface HTTPRequest {
     /**
+     * @public
      * <p>The IP address that the request originated from. If the <code>WebACL</code> is associated with a CloudFront distribution,
      * 			this is the value of one of the following fields in CloudFront access logs:</p>
      * 		       <ul>
@@ -3602,24 +3820,29 @@ export interface HTTPRequest {
      */
     ClientIP?: string;
     /**
+     * @public
      * <p>The two-letter country code for the country that the request originated from. For a current list of country codes,
      * 			see the Wikipedia entry <a href="https://en.wikipedia.org/wiki/ISO_3166-1_alpha-2">ISO 3166-1 alpha-2</a>.</p>
      */
     Country?: string;
     /**
+     * @public
      * <p>The part of a web request that identifies the resource, for example, <code>/images/daily-ad.jpg</code>.</p>
      */
     URI?: string;
     /**
+     * @public
      * <p>The HTTP method specified in the sampled web request. CloudFront supports the following methods: <code>DELETE</code>,
      * 			<code>GET</code>, <code>HEAD</code>, <code>OPTIONS</code>, <code>PATCH</code>, <code>POST</code>, and <code>PUT</code>. </p>
      */
     Method?: string;
     /**
+     * @public
      * <p>The HTTP version specified in the sampled web request, for example, <code>HTTP/1.1</code>.</p>
      */
     HTTPVersion?: string;
     /**
+     * @public
      * <p>A complex type that contains two values for each header in the sampled web request: the name of the header and the value of the header.</p>
      */
     Headers?: HTTPHeader[];
@@ -3640,24 +3863,29 @@ export interface HTTPRequest {
  */
 export interface SampledHTTPRequest {
     /**
+     * @public
      * <p>A complex type that contains detailed information about the request.</p>
      */
     Request: HTTPRequest | undefined;
     /**
+     * @public
      * <p>A value that indicates how one result in the response relates proportionally to other results in the response.
      * 			A result that has a weight of <code>2</code> represents roughly twice as many CloudFront web requests as a result
      * 			that has a weight of <code>1</code>.</p>
      */
     Weight: number | undefined;
     /**
+     * @public
      * <p>The time at which AWS WAF received the request from your AWS resource, in Unix time format (in seconds).</p>
      */
     Timestamp?: Date;
     /**
+     * @public
      * <p>The action for the <code>Rule</code> that the request matched: <code>ALLOW</code>, <code>BLOCK</code>, or <code>COUNT</code>.</p>
      */
     Action?: string;
     /**
+     * @public
      * <p>This value is returned if the <code>GetSampledRequests</code>  request specifies the ID of a <code>RuleGroup</code> rather than the ID of an individual rule. <code>RuleWithinRuleGroup</code> is the rule within the specified <code>RuleGroup</code> that matched the request listed in the response.</p>
      */
     RuleWithinRuleGroup?: string;
@@ -3667,16 +3895,19 @@ export interface SampledHTTPRequest {
  */
 export interface GetSampledRequestsResponse {
     /**
+     * @public
      * <p>A complex type that contains detailed information about each of the requests in the sample.</p>
      */
     SampledRequests?: SampledHTTPRequest[];
     /**
+     * @public
      * <p>The total number of requests from which <code>GetSampledRequests</code> got a sample of <code>MaxItems</code> requests.
      * 			If <code>PopulationSize</code> is less than <code>MaxItems</code>, the sample includes every request that your AWS resource
      * 			received during the specified time range.</p>
      */
     PopulationSize?: number;
     /**
+     * @public
      * <p>Usually, <code>TimeWindow</code> is the time range that you specified in the <code>GetSampledRequests</code> request. However,
      * 			if your AWS resource received more than 5,000 requests during the time range that you specified in the request,
      * 			<code>GetSampledRequests</code> returns the time range for the first 5,000 requests. Times are in Coordinated Universal Time (UTC) format.</p>
@@ -3688,6 +3919,7 @@ export interface GetSampledRequestsResponse {
  */
 export interface GetSizeConstraintSetRequest {
     /**
+     * @public
      * <p>The <code>SizeConstraintSetId</code> of the <a>SizeConstraintSet</a> that you want to get. <code>SizeConstraintSetId</code> is returned by
      * 			<a>CreateSizeConstraintSet</a> and by <a>ListSizeConstraintSets</a>.</p>
      */
@@ -3698,6 +3930,7 @@ export interface GetSizeConstraintSetRequest {
  */
 export interface GetSizeConstraintSetResponse {
     /**
+     * @public
      * <p>Information about the <a>SizeConstraintSet</a> that you specified in the <code>GetSizeConstraintSet</code> request. For more information, see the
      * 			following topics:</p>
      * 		       <ul>
@@ -3728,6 +3961,7 @@ export interface GetSizeConstraintSetResponse {
  */
 export interface GetSqlInjectionMatchSetRequest {
     /**
+     * @public
      * <p>The <code>SqlInjectionMatchSetId</code> of the <a>SqlInjectionMatchSet</a> that you want to get. <code>SqlInjectionMatchSetId</code>
      * 			is returned by <a>CreateSqlInjectionMatchSet</a> and by <a>ListSqlInjectionMatchSets</a>.</p>
      */
@@ -3739,6 +3973,7 @@ export interface GetSqlInjectionMatchSetRequest {
  */
 export interface GetSqlInjectionMatchSetResponse {
     /**
+     * @public
      * <p>Information about the <a>SqlInjectionMatchSet</a> that you specified in the <code>GetSqlInjectionMatchSet</code> request.
      * 			For more information, see the following topics:</p>
      * 		       <ul>
@@ -3767,6 +4002,7 @@ export interface GetSqlInjectionMatchSetResponse {
  */
 export interface GetWebACLRequest {
     /**
+     * @public
      * <p>The <code>WebACLId</code> of the <a>WebACL</a> that you want to get. <code>WebACLId</code> is returned by <a>CreateWebACL</a> and by
      * 			<a>ListWebACLs</a>.</p>
      */
@@ -3777,6 +4013,7 @@ export interface GetWebACLRequest {
  */
 export interface GetWebACLResponse {
     /**
+     * @public
      * <p>Information about the <a>WebACL</a> that you specified in the <code>GetWebACL</code> request.
      * 			For more information, see the following topics:</p>
      * 		       <ul>
@@ -3812,6 +4049,7 @@ export interface GetWebACLResponse {
  */
 export interface GetXssMatchSetRequest {
     /**
+     * @public
      * <p>The <code>XssMatchSetId</code> of the <a>XssMatchSet</a> that you want to get. <code>XssMatchSetId</code>
      * 			is returned by <a>CreateXssMatchSet</a> and by <a>ListXssMatchSets</a>.</p>
      */
@@ -3823,6 +4061,7 @@ export interface GetXssMatchSetRequest {
  */
 export interface GetXssMatchSetResponse {
     /**
+     * @public
      * <p>Information about the <a>XssMatchSet</a> that you specified in the <code>GetXssMatchSet</code> request.
      * 			For more information, see the following topics:</p>
      * 		       <ul>
@@ -3851,10 +4090,12 @@ export interface GetXssMatchSetResponse {
  */
 export interface ListActivatedRulesInRuleGroupRequest {
     /**
+     * @public
      * <p>The <code>RuleGroupId</code> of the <a>RuleGroup</a> for which you want to get a list of <a>ActivatedRule</a> objects.</p>
      */
     RuleGroupId?: string;
     /**
+     * @public
      * <p>If you specify a value for <code>Limit</code> and you have more <code>ActivatedRules</code> than the value of <code>Limit</code>,
      *          AWS WAF returns a <code>NextMarker</code> value in the response that allows you to list another group of <code>ActivatedRules</code>.
      *          For the second and subsequent <code>ListActivatedRulesInRuleGroup</code> requests, specify the value of <code>NextMarker</code>
@@ -3862,6 +4103,7 @@ export interface ListActivatedRulesInRuleGroupRequest {
      */
     NextMarker?: string;
     /**
+     * @public
      * <p>Specifies the number of <code>ActivatedRules</code> that you want AWS WAF to return for this request. If you have more <code>ActivatedRules</code> than the number that you specify for <code>Limit</code>, the response includes a
      *          <code>NextMarker</code> value that you can use to get another batch of <code>ActivatedRules</code>.</p>
      */
@@ -3872,10 +4114,12 @@ export interface ListActivatedRulesInRuleGroupRequest {
  */
 export interface ListActivatedRulesInRuleGroupResponse {
     /**
+     * @public
      * <p>If you have more <code>ActivatedRules</code> than the number that you specified for <code>Limit</code> in the request, the response includes a <code>NextMarker</code> value. To list more <code>ActivatedRules</code>, submit another <code>ListActivatedRulesInRuleGroup</code> request, and specify the <code>NextMarker</code> value from the response in the <code>NextMarker</code> value in the next request.</p>
      */
     NextMarker?: string;
     /**
+     * @public
      * <p>An array of <code>ActivatedRules</code> objects.</p>
      */
     ActivatedRules?: ActivatedRule[];
@@ -3885,6 +4129,7 @@ export interface ListActivatedRulesInRuleGroupResponse {
  */
 export interface ListByteMatchSetsRequest {
     /**
+     * @public
      * <p>If you specify a value for <code>Limit</code> and you have more <code>ByteMatchSets</code> than the value of <code>Limit</code>,
      * 			AWS WAF returns a <code>NextMarker</code> value in the response that allows you to list another group of <code>ByteMatchSets</code>.
      * 			For the second and subsequent <code>ListByteMatchSets</code> requests, specify the value of <code>NextMarker</code>
@@ -3892,6 +4137,7 @@ export interface ListByteMatchSetsRequest {
      */
     NextMarker?: string;
     /**
+     * @public
      * <p>Specifies the number of <code>ByteMatchSet</code> objects that you want AWS WAF to return for this request. If you have more
      * 			<code>ByteMatchSets</code> objects than the number you specify for <code>Limit</code>, the response includes a
      * 			<code>NextMarker</code> value that you can use to get another batch of <code>ByteMatchSet</code> objects.</p>
@@ -3913,6 +4159,7 @@ export interface ListByteMatchSetsRequest {
  */
 export interface ByteMatchSetSummary {
     /**
+     * @public
      * <p>The <code>ByteMatchSetId</code> for a <code>ByteMatchSet</code>. You use <code>ByteMatchSetId</code> to get information about a <code>ByteMatchSet</code>,
      * 			update a <code>ByteMatchSet</code>, remove a <code>ByteMatchSet</code> from a <code>Rule</code>, and delete a <code>ByteMatchSet</code> from AWS WAF.</p>
      * 		       <p>
@@ -3920,6 +4167,7 @@ export interface ByteMatchSetSummary {
      */
     ByteMatchSetId: string | undefined;
     /**
+     * @public
      * <p>A friendly name or description of the <a>ByteMatchSet</a>. You can't change <code>Name</code> after you create a <code>ByteMatchSet</code>.</p>
      */
     Name: string | undefined;
@@ -3929,6 +4177,7 @@ export interface ByteMatchSetSummary {
  */
 export interface ListByteMatchSetsResponse {
     /**
+     * @public
      * <p>If you have more <code>ByteMatchSet</code> objects than the number that you specified for <code>Limit</code> in the request,
      * 			the response includes a <code>NextMarker</code> value. To list more <code>ByteMatchSet</code> objects, submit another
      * 			<code>ListByteMatchSets</code> request, and specify the <code>NextMarker</code> value from the response in the
@@ -3936,6 +4185,7 @@ export interface ListByteMatchSetsResponse {
      */
     NextMarker?: string;
     /**
+     * @public
      * <p>An array of <a>ByteMatchSetSummary</a> objects.</p>
      */
     ByteMatchSets?: ByteMatchSetSummary[];
@@ -3945,6 +4195,7 @@ export interface ListByteMatchSetsResponse {
  */
 export interface ListGeoMatchSetsRequest {
     /**
+     * @public
      * <p>If you specify a value for <code>Limit</code> and you have more <code>GeoMatchSet</code>s than the value of <code>Limit</code>,
      * 			AWS WAF returns a <code>NextMarker</code> value in the response that allows you to list another group of <code>GeoMatchSet</code> objects.
      * 			For the second and subsequent <code>ListGeoMatchSets</code> requests, specify the value of <code>NextMarker</code>
@@ -3952,6 +4203,7 @@ export interface ListGeoMatchSetsRequest {
      */
     NextMarker?: string;
     /**
+     * @public
      * <p>Specifies the number of <code>GeoMatchSet</code> objects that you want AWS WAF to return for this request. If you have more
      * 			<code>GeoMatchSet</code> objects than the number you specify for <code>Limit</code>, the response includes a
      * 			<code>NextMarker</code> value that you can use to get another batch of <code>GeoMatchSet</code> objects.</p>
@@ -3972,10 +4224,12 @@ export interface ListGeoMatchSetsRequest {
  */
 export interface GeoMatchSetSummary {
     /**
+     * @public
      * <p>The <code>GeoMatchSetId</code> for an <a>GeoMatchSet</a>. You can use <code>GeoMatchSetId</code> in a <a>GetGeoMatchSet</a> request to get detailed	information about an <a>GeoMatchSet</a>.</p>
      */
     GeoMatchSetId: string | undefined;
     /**
+     * @public
      * <p>A friendly name or description of the <a>GeoMatchSet</a>. You can't change the name of an <code>GeoMatchSet</code> after you create it.</p>
      */
     Name: string | undefined;
@@ -3985,6 +4239,7 @@ export interface GeoMatchSetSummary {
  */
 export interface ListGeoMatchSetsResponse {
     /**
+     * @public
      * <p>If you have more <code>GeoMatchSet</code> objects than the number that you specified for <code>Limit</code> in the request,
      * 			the response includes a <code>NextMarker</code> value. To list more <code>GeoMatchSet</code> objects, submit another
      * 			<code>ListGeoMatchSets</code> request, and specify the <code>NextMarker</code> value from the response in the
@@ -3992,6 +4247,7 @@ export interface ListGeoMatchSetsResponse {
      */
     NextMarker?: string;
     /**
+     * @public
      * <p>An array of <a>GeoMatchSetSummary</a> objects.</p>
      */
     GeoMatchSets?: GeoMatchSetSummary[];
@@ -4001,6 +4257,7 @@ export interface ListGeoMatchSetsResponse {
  */
 export interface ListIPSetsRequest {
     /**
+     * @public
      * <p>AWS WAF returns a <code>NextMarker</code> value in the response that allows you to
      *          list another group of <code>IPSets</code>. For the second and subsequent
      *             <code>ListIPSets</code> requests, specify the value of <code>NextMarker</code> from the
@@ -4008,6 +4265,7 @@ export interface ListIPSetsRequest {
      */
     NextMarker?: string;
     /**
+     * @public
      * <p>Specifies the number of <code>IPSet</code> objects that you want AWS WAF to return for this request. If you have more
      * 			<code>IPSet</code> objects than the number you specify for <code>Limit</code>, the response includes a
      * 			<code>NextMarker</code> value that you can use to get another batch of <code>IPSet</code> objects.</p>
@@ -4028,11 +4286,13 @@ export interface ListIPSetsRequest {
  */
 export interface IPSetSummary {
     /**
+     * @public
      * <p>The <code>IPSetId</code> for an <a>IPSet</a>. You can use <code>IPSetId</code> in a <a>GetIPSet</a> request to get detailed
      * 			information about an <a>IPSet</a>.</p>
      */
     IPSetId: string | undefined;
     /**
+     * @public
      * <p>A friendly name or description of the <a>IPSet</a>. You can't change the name of an <code>IPSet</code> after you create it.</p>
      */
     Name: string | undefined;
@@ -4042,12 +4302,14 @@ export interface IPSetSummary {
  */
 export interface ListIPSetsResponse {
     /**
+     * @public
      * <p>To list more <code>IPSet</code> objects, submit another <code>ListIPSets</code>
      *          request, and in the next request use the <code>NextMarker</code> response value as the
      *             <code>NextMarker</code> value.</p>
      */
     NextMarker?: string;
     /**
+     * @public
      * <p>An array of <a>IPSetSummary</a> objects.</p>
      */
     IPSets?: IPSetSummary[];
@@ -4057,6 +4319,7 @@ export interface ListIPSetsResponse {
  */
 export interface ListLoggingConfigurationsRequest {
     /**
+     * @public
      * <p>If you specify a value for <code>Limit</code> and you have more <code>LoggingConfigurations</code> than the value of <code>Limit</code>,
      * 			AWS WAF returns a <code>NextMarker</code> value in the response that allows you to list another group of <code>LoggingConfigurations</code>.
      * 			For the second and subsequent <code>ListLoggingConfigurations</code> requests, specify the value of <code>NextMarker</code>
@@ -4064,6 +4327,7 @@ export interface ListLoggingConfigurationsRequest {
      */
     NextMarker?: string;
     /**
+     * @public
      * <p>Specifies the number of <code>LoggingConfigurations</code> that you want AWS WAF to return for this request. If you have more <code>LoggingConfigurations</code> than the number that you specify for <code>Limit</code>, the response includes a <code>NextMarker</code> value that you can use to get another batch of <code>LoggingConfigurations</code>.</p>
      */
     Limit?: number;
@@ -4073,10 +4337,12 @@ export interface ListLoggingConfigurationsRequest {
  */
 export interface ListLoggingConfigurationsResponse {
     /**
+     * @public
      * <p>An array of <a>LoggingConfiguration</a> objects.</p>
      */
     LoggingConfigurations?: LoggingConfiguration[];
     /**
+     * @public
      * <p>If you have more <code>LoggingConfigurations</code> than the number that you specified for <code>Limit</code> in the request, the response includes a <code>NextMarker</code> value. To list more <code>LoggingConfigurations</code>, submit another <code>ListLoggingConfigurations</code> request, and specify the <code>NextMarker</code> value from the response in the <code>NextMarker</code> value in the next request.</p>
      */
     NextMarker?: string;
@@ -4086,6 +4352,7 @@ export interface ListLoggingConfigurationsResponse {
  */
 export interface ListRateBasedRulesRequest {
     /**
+     * @public
      * <p>If you specify a value for <code>Limit</code> and you have more <code>Rules</code>
      *          than the value of <code>Limit</code>, AWS WAF returns a <code>NextMarker</code> value in the
      *          response that allows you to list another group of <code>Rules</code>. For the second and
@@ -4095,6 +4362,7 @@ export interface ListRateBasedRulesRequest {
      */
     NextMarker?: string;
     /**
+     * @public
      * <p>Specifies the number of <code>Rules</code> that you want AWS WAF to return for this
      *          request. If you have more <code>Rules</code> than the number that you specify for
      *             <code>Limit</code>, the response includes a <code>NextMarker</code> value that you can
@@ -4116,6 +4384,7 @@ export interface ListRateBasedRulesRequest {
  */
 export interface RuleSummary {
     /**
+     * @public
      * <p>A unique identifier for a <code>Rule</code>. You use <code>RuleId</code> to get more information about a <code>Rule</code> (see <a>GetRule</a>),
      * 			update a <code>Rule</code> (see <a>UpdateRule</a>), insert a <code>Rule</code> into a <code>WebACL</code> or delete
      * 			one from a <code>WebACL</code> (see <a>UpdateWebACL</a>), or delete a <code>Rule</code> from AWS WAF (see <a>DeleteRule</a>).</p>
@@ -4124,6 +4393,7 @@ export interface RuleSummary {
      */
     RuleId: string | undefined;
     /**
+     * @public
      * <p>A friendly name or description of the <a>Rule</a>. You can't change the name of a <code>Rule</code> after you create it.</p>
      */
     Name: string | undefined;
@@ -4133,6 +4403,7 @@ export interface RuleSummary {
  */
 export interface ListRateBasedRulesResponse {
     /**
+     * @public
      * <p>If you have more <code>Rules</code> than the number that you specified for
      *             <code>Limit</code> in the request, the response includes a <code>NextMarker</code>
      *          value. To list more <code>Rules</code>, submit another <code>ListRateBasedRules</code>
@@ -4141,6 +4412,7 @@ export interface ListRateBasedRulesResponse {
      */
     NextMarker?: string;
     /**
+     * @public
      * <p>An array of <a>RuleSummary</a> objects.</p>
      */
     Rules?: RuleSummary[];
@@ -4150,6 +4422,7 @@ export interface ListRateBasedRulesResponse {
  */
 export interface ListRegexMatchSetsRequest {
     /**
+     * @public
      * <p>If you specify a value for <code>Limit</code> and you have more <code>RegexMatchSet</code> objects than the value of <code>Limit</code>,
      * 			AWS WAF returns a <code>NextMarker</code> value in the response that allows you to list another group of <code>ByteMatchSets</code>.
      * 			For the second and subsequent <code>ListRegexMatchSets</code> requests, specify the value of <code>NextMarker</code>
@@ -4157,6 +4430,7 @@ export interface ListRegexMatchSetsRequest {
      */
     NextMarker?: string;
     /**
+     * @public
      * <p>Specifies the number of <code>RegexMatchSet</code> objects that you want AWS WAF to return for this request. If you have more
      * 			<code>RegexMatchSet</code> objects than the number you specify for <code>Limit</code>, the response includes a
      * 			<code>NextMarker</code> value that you can use to get another batch of <code>RegexMatchSet</code> objects.</p>
@@ -4178,6 +4452,7 @@ export interface ListRegexMatchSetsRequest {
  */
 export interface RegexMatchSetSummary {
     /**
+     * @public
      * <p>The <code>RegexMatchSetId</code> for a <code>RegexMatchSet</code>. You use <code>RegexMatchSetId</code> to get information about a <code>RegexMatchSet</code>,
      * 			update a <code>RegexMatchSet</code>, remove a <code>RegexMatchSet</code> from a <code>Rule</code>, and delete a <code>RegexMatchSet</code> from AWS WAF.</p>
      * 		       <p>
@@ -4185,6 +4460,7 @@ export interface RegexMatchSetSummary {
      */
     RegexMatchSetId: string | undefined;
     /**
+     * @public
      * <p>A friendly name or description of the <a>RegexMatchSet</a>. You can't change <code>Name</code> after you create a <code>RegexMatchSet</code>.</p>
      */
     Name: string | undefined;
@@ -4194,6 +4470,7 @@ export interface RegexMatchSetSummary {
  */
 export interface ListRegexMatchSetsResponse {
     /**
+     * @public
      * <p>If you have more <code>RegexMatchSet</code> objects than the number that you specified for <code>Limit</code> in the request,
      * 			the response includes a <code>NextMarker</code> value. To list more <code>RegexMatchSet</code> objects, submit another
      * 			<code>ListRegexMatchSets</code> request, and specify the <code>NextMarker</code> value from the response in the
@@ -4201,6 +4478,7 @@ export interface ListRegexMatchSetsResponse {
      */
     NextMarker?: string;
     /**
+     * @public
      * <p>An array of <a>RegexMatchSetSummary</a> objects.</p>
      */
     RegexMatchSets?: RegexMatchSetSummary[];
@@ -4210,6 +4488,7 @@ export interface ListRegexMatchSetsResponse {
  */
 export interface ListRegexPatternSetsRequest {
     /**
+     * @public
      * <p>If you specify a value for <code>Limit</code> and you have more <code>RegexPatternSet</code> objects than the value of <code>Limit</code>,
      * 			AWS WAF returns a <code>NextMarker</code> value in the response that allows you to list another group of <code>RegexPatternSet</code> objects.
      * 			For the second and subsequent <code>ListRegexPatternSets</code> requests, specify the value of <code>NextMarker</code>
@@ -4217,6 +4496,7 @@ export interface ListRegexPatternSetsRequest {
      */
     NextMarker?: string;
     /**
+     * @public
      * <p>Specifies the number of <code>RegexPatternSet</code> objects that you want AWS WAF to return for this request. If you have more
      * 			<code>RegexPatternSet</code> objects than the number you specify for <code>Limit</code>, the response includes a
      * 			<code>NextMarker</code> value that you can use to get another batch of <code>RegexPatternSet</code> objects.</p>
@@ -4238,6 +4518,7 @@ export interface ListRegexPatternSetsRequest {
  */
 export interface RegexPatternSetSummary {
     /**
+     * @public
      * <p>The <code>RegexPatternSetId</code> for a <code>RegexPatternSet</code>. You use <code>RegexPatternSetId</code> to get information about a <code>RegexPatternSet</code>,
      *          update a <code>RegexPatternSet</code>, remove a <code>RegexPatternSet</code> from a <code>RegexMatchSet</code>, and delete a <code>RegexPatternSet</code> from AWS WAF.</p>
      *          <p>
@@ -4245,6 +4526,7 @@ export interface RegexPatternSetSummary {
      */
     RegexPatternSetId: string | undefined;
     /**
+     * @public
      * <p>A friendly name or description of the <a>RegexPatternSet</a>. You can't change <code>Name</code> after you create a <code>RegexPatternSet</code>.</p>
      */
     Name: string | undefined;
@@ -4254,6 +4536,7 @@ export interface RegexPatternSetSummary {
  */
 export interface ListRegexPatternSetsResponse {
     /**
+     * @public
      * <p>If you have more <code>RegexPatternSet</code> objects than the number that you specified for <code>Limit</code> in the request,
      * 			the response includes a <code>NextMarker</code> value. To list more <code>RegexPatternSet</code> objects, submit another
      * 			<code>ListRegexPatternSets</code> request, and specify the <code>NextMarker</code> value from the response in the
@@ -4261,6 +4544,7 @@ export interface ListRegexPatternSetsResponse {
      */
     NextMarker?: string;
     /**
+     * @public
      * <p>An array of <a>RegexPatternSetSummary</a> objects.</p>
      */
     RegexPatternSets?: RegexPatternSetSummary[];
@@ -4270,6 +4554,7 @@ export interface ListRegexPatternSetsResponse {
  */
 export interface ListRuleGroupsRequest {
     /**
+     * @public
      * <p>If you specify a value for <code>Limit</code> and you have more <code>RuleGroups</code> than the value of <code>Limit</code>,
      *          AWS WAF returns a <code>NextMarker</code> value in the response that allows you to list another group of <code>RuleGroups</code>.
      *          For the second and subsequent <code>ListRuleGroups</code> requests, specify the value of <code>NextMarker</code>
@@ -4277,6 +4562,7 @@ export interface ListRuleGroupsRequest {
      */
     NextMarker?: string;
     /**
+     * @public
      * <p>Specifies the number of <code>RuleGroups</code> that you want AWS WAF to return for this request. If you have more <code>RuleGroups</code> than the number that you specify for <code>Limit</code>, the response includes a <code>NextMarker</code> value that you can use to get another batch of <code>RuleGroups</code>.</p>
      */
     Limit?: number;
@@ -4295,6 +4581,7 @@ export interface ListRuleGroupsRequest {
  */
 export interface RuleGroupSummary {
     /**
+     * @public
      * <p>A unique identifier for a <code>RuleGroup</code>. You use <code>RuleGroupId</code> to get more information about a <code>RuleGroup</code> (see <a>GetRuleGroup</a>),
      *          update a <code>RuleGroup</code> (see <a>UpdateRuleGroup</a>), insert a <code>RuleGroup</code> into a <code>WebACL</code> or delete
      *          one from a <code>WebACL</code> (see <a>UpdateWebACL</a>), or delete a <code>RuleGroup</code> from AWS WAF (see <a>DeleteRuleGroup</a>).</p>
@@ -4303,6 +4590,7 @@ export interface RuleGroupSummary {
      */
     RuleGroupId: string | undefined;
     /**
+     * @public
      * <p>A friendly name or description of the <a>RuleGroup</a>. You can't change the name of a <code>RuleGroup</code> after you create it.</p>
      */
     Name: string | undefined;
@@ -4312,10 +4600,12 @@ export interface RuleGroupSummary {
  */
 export interface ListRuleGroupsResponse {
     /**
+     * @public
      * <p>If you have more <code>RuleGroups</code> than the number that you specified for <code>Limit</code> in the request, the response includes a <code>NextMarker</code> value. To list more <code>RuleGroups</code>, submit another <code>ListRuleGroups</code> request, and specify the <code>NextMarker</code> value from the response in the <code>NextMarker</code> value in the next request.</p>
      */
     NextMarker?: string;
     /**
+     * @public
      * <p>An array of <a>RuleGroup</a> objects.</p>
      */
     RuleGroups?: RuleGroupSummary[];
@@ -4325,6 +4615,7 @@ export interface ListRuleGroupsResponse {
  */
 export interface ListRulesRequest {
     /**
+     * @public
      * <p>If you specify a value for <code>Limit</code> and you have more <code>Rules</code> than the value of <code>Limit</code>,
      * 			AWS WAF returns a <code>NextMarker</code> value in the response that allows you to list another group of <code>Rules</code>.
      * 			For the second and subsequent <code>ListRules</code> requests, specify the value of <code>NextMarker</code>
@@ -4332,6 +4623,7 @@ export interface ListRulesRequest {
      */
     NextMarker?: string;
     /**
+     * @public
      * <p>Specifies the number of <code>Rules</code> that you want AWS WAF to return for this request. If you have more 			<code>Rules</code> than the number that you specify for <code>Limit</code>, the response includes a
      * 			<code>NextMarker</code> value that you can use to get another batch of <code>Rules</code>.</p>
      */
@@ -4342,12 +4634,14 @@ export interface ListRulesRequest {
  */
 export interface ListRulesResponse {
     /**
+     * @public
      * <p>If you have more <code>Rules</code> than the number that you specified for <code>Limit</code> in the request, 			the response includes a <code>NextMarker</code> value. To list more <code>Rules</code>, submit another
      * 			<code>ListRules</code> request, and specify the <code>NextMarker</code> value from the response in the
      * 			<code>NextMarker</code> value in the next request.</p>
      */
     NextMarker?: string;
     /**
+     * @public
      * <p>An array of <a>RuleSummary</a> objects.</p>
      */
     Rules?: RuleSummary[];
@@ -4357,12 +4651,14 @@ export interface ListRulesResponse {
  */
 export interface ListSizeConstraintSetsRequest {
     /**
+     * @public
      * <p>If you specify a value for <code>Limit</code> and you have more <code>SizeConstraintSets</code> than the value of <code>Limit</code>,
      * 			AWS WAF returns a <code>NextMarker</code> value in the response that allows you to list another group of <code>SizeConstraintSets</code>.
      * 			For the second and subsequent <code>ListSizeConstraintSets</code> requests, specify the value of <code>NextMarker</code> 			from the previous response to get information about another batch of <code>SizeConstraintSets</code>.</p>
      */
     NextMarker?: string;
     /**
+     * @public
      * <p>Specifies the number of <code>SizeConstraintSet</code> objects that you want AWS WAF to return for this request. If you have more
      * 			<code>SizeConstraintSets</code> objects than the number you specify for <code>Limit</code>, the response includes a
      * 			<code>NextMarker</code> value that you can use to get another batch of <code>SizeConstraintSet</code> objects.</p>
@@ -4383,6 +4679,7 @@ export interface ListSizeConstraintSetsRequest {
  */
 export interface SizeConstraintSetSummary {
     /**
+     * @public
      * <p>A unique identifier for a <code>SizeConstraintSet</code>. You use <code>SizeConstraintSetId</code> to get information about a
      * 			<code>SizeConstraintSet</code> (see <a>GetSizeConstraintSet</a>), update a <code>SizeConstraintSet</code>
      * 			(see <a>UpdateSizeConstraintSet</a>), insert a <code>SizeConstraintSet</code> into a <code>Rule</code> or
@@ -4393,6 +4690,7 @@ export interface SizeConstraintSetSummary {
      */
     SizeConstraintSetId: string | undefined;
     /**
+     * @public
      * <p>The name of the <code>SizeConstraintSet</code>, if any.</p>
      */
     Name: string | undefined;
@@ -4402,6 +4700,7 @@ export interface SizeConstraintSetSummary {
  */
 export interface ListSizeConstraintSetsResponse {
     /**
+     * @public
      * <p>If you have more <code>SizeConstraintSet</code> objects than the number that you specified for <code>Limit</code> in the request,
      * 			the response includes a <code>NextMarker</code> value. To list more <code>SizeConstraintSet</code> objects, submit another
      * 			<code>ListSizeConstraintSets</code> request, and specify the <code>NextMarker</code> value from the response in the
@@ -4409,6 +4708,7 @@ export interface ListSizeConstraintSetsResponse {
      */
     NextMarker?: string;
     /**
+     * @public
      * <p>An array of <a>SizeConstraintSetSummary</a> objects.</p>
      */
     SizeConstraintSets?: SizeConstraintSetSummary[];
@@ -4419,6 +4719,7 @@ export interface ListSizeConstraintSetsResponse {
  */
 export interface ListSqlInjectionMatchSetsRequest {
     /**
+     * @public
      * <p>If you specify a value for <code>Limit</code> and you have more <a>SqlInjectionMatchSet</a> objects than the value of
      * 			<code>Limit</code>, AWS WAF returns a <code>NextMarker</code> value in the response that allows you to list another group of
      * 			<code>SqlInjectionMatchSets</code>. For the second and subsequent <code>ListSqlInjectionMatchSets</code> requests, specify the
@@ -4426,6 +4727,7 @@ export interface ListSqlInjectionMatchSetsRequest {
      */
     NextMarker?: string;
     /**
+     * @public
      * <p>Specifies the number of <a>SqlInjectionMatchSet</a> objects that you want AWS WAF to return for this request. If you have more
      * 			<code>SqlInjectionMatchSet</code> objects than the number you specify for <code>Limit</code>, the response includes a
      * 			<code>NextMarker</code> value that you can use to get another batch of <code>Rules</code>.</p>
@@ -4446,6 +4748,7 @@ export interface ListSqlInjectionMatchSetsRequest {
  */
 export interface SqlInjectionMatchSetSummary {
     /**
+     * @public
      * <p>A unique identifier for a <code>SqlInjectionMatchSet</code>. You use <code>SqlInjectionMatchSetId</code> to get information about a
      * 			<code>SqlInjectionMatchSet</code> (see <a>GetSqlInjectionMatchSet</a>), update a <code>SqlInjectionMatchSet</code>
      * 			(see <a>UpdateSqlInjectionMatchSet</a>), insert a <code>SqlInjectionMatchSet</code> into a <code>Rule</code> or
@@ -4456,6 +4759,7 @@ export interface SqlInjectionMatchSetSummary {
      */
     SqlInjectionMatchSetId: string | undefined;
     /**
+     * @public
      * <p>The name of the <code>SqlInjectionMatchSet</code>, if any, specified by <code>Id</code>.</p>
      */
     Name: string | undefined;
@@ -4466,6 +4770,7 @@ export interface SqlInjectionMatchSetSummary {
  */
 export interface ListSqlInjectionMatchSetsResponse {
     /**
+     * @public
      * <p>If you have more <a>SqlInjectionMatchSet</a> objects than the number that you specified for <code>Limit</code> in the request,
      * 			the response includes a <code>NextMarker</code> value. To list more <code>SqlInjectionMatchSet</code> objects, submit another
      * 			<code>ListSqlInjectionMatchSets</code> request, and specify the <code>NextMarker</code> value from the response in the
@@ -4473,6 +4778,7 @@ export interface ListSqlInjectionMatchSetsResponse {
      */
     NextMarker?: string;
     /**
+     * @public
      * <p>An array of <a>SqlInjectionMatchSetSummary</a> objects.</p>
      */
     SqlInjectionMatchSets?: SqlInjectionMatchSetSummary[];
@@ -4482,6 +4788,7 @@ export interface ListSqlInjectionMatchSetsResponse {
  */
 export interface ListSubscribedRuleGroupsRequest {
     /**
+     * @public
      * <p>If you specify a value for <code>Limit</code> and you have more <code>ByteMatchSets</code>subscribed rule groups than the value of <code>Limit</code>,
      * 			AWS WAF returns a <code>NextMarker</code> value in the response that allows you to list another group of subscribed rule groups.
      * 			For the second and subsequent <code>ListSubscribedRuleGroupsRequest</code> requests, specify the value of <code>NextMarker</code>
@@ -4489,6 +4796,7 @@ export interface ListSubscribedRuleGroupsRequest {
      */
     NextMarker?: string;
     /**
+     * @public
      * <p>Specifies the number of subscribed rule groups that you want AWS WAF to return for this request. If you have more
      * 			objects than the number you specify for <code>Limit</code>, the response includes a
      * 			<code>NextMarker</code> value that you can use to get another batch of objects.</p>
@@ -4509,14 +4817,17 @@ export interface ListSubscribedRuleGroupsRequest {
  */
 export interface SubscribedRuleGroupSummary {
     /**
+     * @public
      * <p>A unique identifier for a <code>RuleGroup</code>.</p>
      */
     RuleGroupId: string | undefined;
     /**
+     * @public
      * <p>A friendly name or description of the <code>RuleGroup</code>. You can't change the name of a <code>RuleGroup</code> after you create it.</p>
      */
     Name: string | undefined;
     /**
+     * @public
      * <p>A friendly name or description for the metrics for this <code>RuleGroup</code>. The name can contain only alphanumeric characters (A-Z, a-z, 0-9), with maximum length 128 and minimum length one. It can't contain
      *          whitespace or metric names reserved for AWS WAF, including "All" and "Default_Action." You can't change the name of the metric after you create the <code>RuleGroup</code>.</p>
      */
@@ -4527,6 +4838,7 @@ export interface SubscribedRuleGroupSummary {
  */
 export interface ListSubscribedRuleGroupsResponse {
     /**
+     * @public
      * <p>If you have more objects than the number that you specified for <code>Limit</code> in the request,
      * 			the response includes a <code>NextMarker</code> value. To list more objects, submit another
      * 			<code>ListSubscribedRuleGroups</code> request, and specify the <code>NextMarker</code> value from the response in the
@@ -4534,6 +4846,7 @@ export interface ListSubscribedRuleGroupsResponse {
      */
     NextMarker?: string;
     /**
+     * @public
      * <p>An array of <a>RuleGroup</a> objects.</p>
      */
     RuleGroups?: SubscribedRuleGroupSummary[];
@@ -4543,14 +4856,17 @@ export interface ListSubscribedRuleGroupsResponse {
  */
 export interface ListTagsForResourceRequest {
     /**
+     * @public
      * <p></p>
      */
     NextMarker?: string;
     /**
+     * @public
      * <p></p>
      */
     Limit?: number;
     /**
+     * @public
      * <p></p>
      */
     ResourceARN: string | undefined;
@@ -4570,10 +4886,12 @@ export interface ListTagsForResourceRequest {
  */
 export interface TagInfoForResource {
     /**
+     * @public
      * <p></p>
      */
     ResourceARN?: string;
     /**
+     * @public
      * <p></p>
      */
     TagList?: Tag[];
@@ -4583,10 +4901,12 @@ export interface TagInfoForResource {
  */
 export interface ListTagsForResourceResponse {
     /**
+     * @public
      * <p></p>
      */
     NextMarker?: string;
     /**
+     * @public
      * <p></p>
      */
     TagInfoForResource?: TagInfoForResource;
@@ -4596,6 +4916,7 @@ export interface ListTagsForResourceResponse {
  */
 export interface ListWebACLsRequest {
     /**
+     * @public
      * <p>If you specify a value for <code>Limit</code> and you have more <code>WebACL</code> objects than the number that you specify
      * 			for <code>Limit</code>, AWS WAF returns a <code>NextMarker</code> value in the response that allows you to list another group of
      * 			<code>WebACL</code> objects. For the second and subsequent <code>ListWebACLs</code> requests, specify the value of <code>NextMarker</code>
@@ -4603,6 +4924,7 @@ export interface ListWebACLsRequest {
      */
     NextMarker?: string;
     /**
+     * @public
      * <p>Specifies the number of <code>WebACL</code> objects that you want AWS WAF to return for this request. If you have more
      * 			<code>WebACL</code> objects than the number that you specify for <code>Limit</code>, the response includes a
      * 			<code>NextMarker</code> value that you can use to get another batch of <code>WebACL</code> objects.</p>
@@ -4623,6 +4945,7 @@ export interface ListWebACLsRequest {
  */
 export interface WebACLSummary {
     /**
+     * @public
      * <p>A unique identifier for a <code>WebACL</code>. You use <code>WebACLId</code> to get information about a <code>WebACL</code>
      * 			(see <a>GetWebACL</a>), update a <code>WebACL</code> (see <a>UpdateWebACL</a>), and delete a <code>WebACL</code> from AWS WAF
      * 			(see <a>DeleteWebACL</a>).</p>
@@ -4631,6 +4954,7 @@ export interface WebACLSummary {
      */
     WebACLId: string | undefined;
     /**
+     * @public
      * <p>A friendly name or description of the <a>WebACL</a>. You can't change the name of a <code>WebACL</code> after you create it.</p>
      */
     Name: string | undefined;
@@ -4640,6 +4964,7 @@ export interface WebACLSummary {
  */
 export interface ListWebACLsResponse {
     /**
+     * @public
      * <p>If you have more <code>WebACL</code> objects than the number that you specified for <code>Limit</code> in the request,
      * 			the response includes a <code>NextMarker</code> value. To list more <code>WebACL</code> objects, submit another
      * 			<code>ListWebACLs</code> request, and specify the <code>NextMarker</code> value from the response in the
@@ -4647,6 +4972,7 @@ export interface ListWebACLsResponse {
      */
     NextMarker?: string;
     /**
+     * @public
      * <p>An array of <a>WebACLSummary</a> objects.</p>
      */
     WebACLs?: WebACLSummary[];
@@ -4657,6 +4983,7 @@ export interface ListWebACLsResponse {
  */
 export interface ListXssMatchSetsRequest {
     /**
+     * @public
      * <p>If you specify a value for <code>Limit</code> and you have more <a>XssMatchSet</a> objects than the value of
      * 			<code>Limit</code>, AWS WAF returns a <code>NextMarker</code> value in the response that allows you to list another group of
      * 			<code>XssMatchSets</code>. For the second and subsequent <code>ListXssMatchSets</code> requests, specify the
@@ -4664,6 +4991,7 @@ export interface ListXssMatchSetsRequest {
      */
     NextMarker?: string;
     /**
+     * @public
      * <p>Specifies the number of <a>XssMatchSet</a> objects that you want AWS WAF to return for this request. If you have more
      * 			<code>XssMatchSet</code> objects than the number you specify for <code>Limit</code>, the response includes a
      * 			<code>NextMarker</code> value that you can use to get another batch of <code>Rules</code>.</p>
@@ -4684,6 +5012,7 @@ export interface ListXssMatchSetsRequest {
  */
 export interface XssMatchSetSummary {
     /**
+     * @public
      * <p>A unique identifier for an <code>XssMatchSet</code>. You use <code>XssMatchSetId</code> to get information about a
      * 			<code>XssMatchSet</code> (see <a>GetXssMatchSet</a>), update an <code>XssMatchSet</code>
      * 			(see <a>UpdateXssMatchSet</a>), insert an <code>XssMatchSet</code> into a <code>Rule</code> or
@@ -4694,6 +5023,7 @@ export interface XssMatchSetSummary {
      */
     XssMatchSetId: string | undefined;
     /**
+     * @public
      * <p>The name of the <code>XssMatchSet</code>, if any, specified by <code>Id</code>.</p>
      */
     Name: string | undefined;
@@ -4704,6 +5034,7 @@ export interface XssMatchSetSummary {
  */
 export interface ListXssMatchSetsResponse {
     /**
+     * @public
      * <p>If you have more <a>XssMatchSet</a> objects than the number that you specified for <code>Limit</code> in the request,
      * 			the response includes a <code>NextMarker</code> value. To list more <code>XssMatchSet</code> objects, submit another
      * 			<code>ListXssMatchSets</code> request, and specify the <code>NextMarker</code> value from the response in the
@@ -4711,6 +5042,7 @@ export interface ListXssMatchSetsResponse {
      */
     NextMarker?: string;
     /**
+     * @public
      * <p>An array of <a>XssMatchSetSummary</a> objects.</p>
      */
     XssMatchSets?: XssMatchSetSummary[];
@@ -4720,6 +5052,7 @@ export interface ListXssMatchSetsResponse {
  */
 export interface PutLoggingConfigurationRequest {
     /**
+     * @public
      * <p>The Amazon Kinesis Data Firehose that contains the inspected traffic
      *          information, the redacted fields details, and the Amazon Resource Name (ARN) of the web ACL
      *          to monitor.</p>
@@ -4736,6 +5069,7 @@ export interface PutLoggingConfigurationRequest {
  */
 export interface PutLoggingConfigurationResponse {
     /**
+     * @public
      * <p>The <a>LoggingConfiguration</a> that you submitted in the request.</p>
      */
     LoggingConfiguration?: LoggingConfiguration;
@@ -4757,10 +5091,12 @@ export declare class WAFServiceLinkedRoleErrorException extends __BaseException
  */
 export interface PutPermissionPolicyRequest {
     /**
+     * @public
      * <p>The Amazon Resource Name (ARN) of the RuleGroup to which you want to attach the policy.</p>
      */
     ResourceArn: string | undefined;
     /**
+     * @public
      * <p>The policy to attach to the specified RuleGroup.</p>
      */
     Policy: string | undefined;
@@ -4816,10 +5152,12 @@ export declare class WAFInvalidPermissionPolicyException extends __BaseException
  */
 export interface TagResourceRequest {
     /**
+     * @public
      * <p></p>
      */
     ResourceARN: string | undefined;
     /**
+     * @public
      * <p></p>
      */
     Tags: Tag[] | undefined;
@@ -4834,10 +5172,12 @@ export interface TagResourceResponse {
  */
 export interface UntagResourceRequest {
     /**
+     * @public
      * <p></p>
      */
     ResourceARN: string | undefined;
     /**
+     * @public
      * <p></p>
      */
     TagKeys: string[] | undefined;
@@ -4874,10 +5214,12 @@ export type ChangeAction = (typeof ChangeAction)[keyof typeof ChangeAction];
  */
 export interface ByteMatchSetUpdate {
     /**
+     * @public
      * <p>Specifies whether to insert or delete a <a>ByteMatchTuple</a>.</p>
      */
     Action: ChangeAction | string | undefined;
     /**
+     * @public
      * <p>Information about the part of a web request that you want AWS WAF to inspect and the value that you want AWS WAF to search for.
      * 			If you specify <code>DELETE</code> for the value of <code>Action</code>, the <code>ByteMatchTuple</code> values must
      * 			exactly match the values in the <code>ByteMatchTuple</code> that you want to delete from the <code>ByteMatchSet</code>.</p>
@@ -4889,15 +5231,18 @@ export interface ByteMatchSetUpdate {
  */
 export interface UpdateByteMatchSetRequest {
     /**
+     * @public
      * <p>The <code>ByteMatchSetId</code> of the <a>ByteMatchSet</a> that you want to update. <code>ByteMatchSetId</code> is returned by <a>CreateByteMatchSet</a> and by
      * 			<a>ListByteMatchSets</a>.</p>
      */
     ByteMatchSetId: string | undefined;
     /**
+     * @public
      * <p>The value returned by the most recent call to <a>GetChangeToken</a>.</p>
      */
     ChangeToken: string | undefined;
     /**
+     * @public
      * <p>An array of <code>ByteMatchSetUpdate</code> objects that you want to insert into or delete from a <a>ByteMatchSet</a>.
      * 			For more information, see the applicable data types:</p>
      * 		       <ul>
@@ -4926,6 +5271,7 @@ export interface UpdateByteMatchSetRequest {
  */
 export interface UpdateByteMatchSetResponse {
     /**
+     * @public
      * <p>The <code>ChangeToken</code> that you used to submit the <code>UpdateByteMatchSet</code> request. You can also use this value
      * 			to query the status of the request. For more information, see <a>GetChangeTokenStatus</a>.</p>
      */
@@ -4972,10 +5318,12 @@ export declare class WAFNonexistentContainerException extends __BaseException {
  */
 export interface GeoMatchSetUpdate {
     /**
+     * @public
      * <p>Specifies whether to insert or delete a country with <a>UpdateGeoMatchSet</a>.</p>
      */
     Action: ChangeAction | string | undefined;
     /**
+     * @public
      * <p>The country from which web requests originate that you want AWS WAF to search for.</p>
      */
     GeoMatchConstraint: GeoMatchConstraint | undefined;
@@ -4985,15 +5333,18 @@ export interface GeoMatchSetUpdate {
  */
 export interface UpdateGeoMatchSetRequest {
     /**
+     * @public
      * <p>The <code>GeoMatchSetId</code> of the <a>GeoMatchSet</a> that you want to update. <code>GeoMatchSetId</code> is returned by <a>CreateGeoMatchSet</a> and by
      * 			<a>ListGeoMatchSets</a>.</p>
      */
     GeoMatchSetId: string | undefined;
     /**
+     * @public
      * <p>The value returned by the most recent call to <a>GetChangeToken</a>.</p>
      */
     ChangeToken: string | undefined;
     /**
+     * @public
      * <p>An array of <code>GeoMatchSetUpdate</code> objects that you want to insert into or delete from an <a>GeoMatchSet</a>.
      * 			For more information, see the applicable data types:</p>
      * 		       <ul>
@@ -5017,6 +5368,7 @@ export interface UpdateGeoMatchSetRequest {
  */
 export interface UpdateGeoMatchSetResponse {
     /**
+     * @public
      * <p>The <code>ChangeToken</code> that you used to submit the <code>UpdateGeoMatchSet</code> request. You can also use this value
      * 			to query the status of the request. For more information, see <a>GetChangeTokenStatus</a>.</p>
      */
@@ -5036,10 +5388,12 @@ export interface UpdateGeoMatchSetResponse {
  */
 export interface IPSetUpdate {
     /**
+     * @public
      * <p>Specifies whether to insert or delete an IP address with <a>UpdateIPSet</a>.</p>
      */
     Action: ChangeAction | string | undefined;
     /**
+     * @public
      * <p>The IP address type (<code>IPV4</code> or <code>IPV6</code>) and the IP address range (in CIDR notation) that web requests originate from.</p>
      */
     IPSetDescriptor: IPSetDescriptor | undefined;
@@ -5049,15 +5403,18 @@ export interface IPSetUpdate {
  */
 export interface UpdateIPSetRequest {
     /**
+     * @public
      * <p>The <code>IPSetId</code> of the <a>IPSet</a> that you want to update. <code>IPSetId</code> is returned by <a>CreateIPSet</a> and by
      * 			<a>ListIPSets</a>.</p>
      */
     IPSetId: string | undefined;
     /**
+     * @public
      * <p>The value returned by the most recent call to <a>GetChangeToken</a>.</p>
      */
     ChangeToken: string | undefined;
     /**
+     * @public
      * <p>An array of <code>IPSetUpdate</code> objects that you want to insert into or delete from an <a>IPSet</a>.
      * 			For more information, see the applicable data types:</p>
      * 		       <ul>
@@ -5081,6 +5438,7 @@ export interface UpdateIPSetRequest {
  */
 export interface UpdateIPSetResponse {
     /**
+     * @public
      * <p>The <code>ChangeToken</code> that you used to submit the <code>UpdateIPSet</code> request. You can also use this value
      * 			to query the status of the request. For more information, see <a>GetChangeTokenStatus</a>.</p>
      */
@@ -5101,11 +5459,13 @@ export interface UpdateIPSetResponse {
  */
 export interface RuleUpdate {
     /**
+     * @public
      * <p>Specify <code>INSERT</code> to add a <code>Predicate</code> to a <code>Rule</code>. Use <code>DELETE</code> to remove a
      * 			<code>Predicate</code> from a <code>Rule</code>.</p>
      */
     Action: ChangeAction | string | undefined;
     /**
+     * @public
      * <p>The ID of the <code>Predicate</code> (such as an <code>IPSet</code>) that you want to add to a <code>Rule</code>.</p>
      */
     Predicate: Predicate | undefined;
@@ -5115,20 +5475,24 @@ export interface RuleUpdate {
  */
 export interface UpdateRateBasedRuleRequest {
     /**
+     * @public
      * <p>The <code>RuleId</code> of the <code>RateBasedRule</code> that you want to update.
      *             <code>RuleId</code> is returned by <code>CreateRateBasedRule</code> and by <a>ListRateBasedRules</a>.</p>
      */
     RuleId: string | undefined;
     /**
+     * @public
      * <p>The value returned by the most recent call to <a>GetChangeToken</a>.</p>
      */
     ChangeToken: string | undefined;
     /**
+     * @public
      * <p>An array of <code>RuleUpdate</code> objects that you want to insert into or delete
      *          from a <a>RateBasedRule</a>. </p>
      */
     Updates: RuleUpdate[] | undefined;
     /**
+     * @public
      * <p>The maximum number of requests, which have an identical value in the field specified by the <code>RateKey</code>, allowed in a
      *          five-minute period. If the number of requests exceeds the <code>RateLimit</code> and the other
      *          predicates specified in the rule are also met,
@@ -5141,6 +5505,7 @@ export interface UpdateRateBasedRuleRequest {
  */
 export interface UpdateRateBasedRuleResponse {
     /**
+     * @public
      * <p>The <code>ChangeToken</code> that you used to submit the
      *             <code>UpdateRateBasedRule</code> request. You can also use this value to query the
      *          status of the request. For more information, see <a>GetChangeTokenStatus</a>.</p>
@@ -5162,10 +5527,12 @@ export interface UpdateRateBasedRuleResponse {
  */
 export interface RegexMatchSetUpdate {
     /**
+     * @public
      * <p>Specifies whether to insert or delete a <a>RegexMatchTuple</a>.</p>
      */
     Action: ChangeAction | string | undefined;
     /**
+     * @public
      * <p>Information about the part of a web request that you want AWS WAF to inspect and the identifier of the regular expression (regex) pattern that you want AWS WAF to search for.
      *          If you specify <code>DELETE</code> for the value of <code>Action</code>, the <code>RegexMatchTuple</code> values must
      *          exactly match the values in the <code>RegexMatchTuple</code> that you want to delete from the <code>RegexMatchSet</code>.</p>
@@ -5177,16 +5544,19 @@ export interface RegexMatchSetUpdate {
  */
 export interface UpdateRegexMatchSetRequest {
     /**
+     * @public
      * <p>The <code>RegexMatchSetId</code> of the <a>RegexMatchSet</a> that you want to update. <code>RegexMatchSetId</code> is returned by <a>CreateRegexMatchSet</a> and by
      * 			<a>ListRegexMatchSets</a>.</p>
      */
     RegexMatchSetId: string | undefined;
     /**
+     * @public
      * <p>An array of <code>RegexMatchSetUpdate</code> objects that you want to insert into or delete from a <a>RegexMatchSet</a>.
      * 			For more information, see <a>RegexMatchTuple</a>.</p>
      */
     Updates: RegexMatchSetUpdate[] | undefined;
     /**
+     * @public
      * <p>The value returned by the most recent call to <a>GetChangeToken</a>.</p>
      */
     ChangeToken: string | undefined;
@@ -5196,6 +5566,7 @@ export interface UpdateRegexMatchSetRequest {
  */
 export interface UpdateRegexMatchSetResponse {
     /**
+     * @public
      * <p>The <code>ChangeToken</code> that you used to submit the <code>UpdateRegexMatchSet</code> request. You can also use this value
      * 			to query the status of the request. For more information, see <a>GetChangeTokenStatus</a>.</p>
      */
@@ -5216,10 +5587,12 @@ export interface UpdateRegexMatchSetResponse {
  */
 export interface RegexPatternSetUpdate {
     /**
+     * @public
      * <p>Specifies whether to insert or delete a <code>RegexPatternString</code>.</p>
      */
     Action: ChangeAction | string | undefined;
     /**
+     * @public
      * <p>Specifies the regular expression (regex) pattern that you want AWS WAF to search for, such as <code>B[a@]dB[o0]t</code>.</p>
      */
     RegexPatternString: string | undefined;
@@ -5229,15 +5602,18 @@ export interface RegexPatternSetUpdate {
  */
 export interface UpdateRegexPatternSetRequest {
     /**
+     * @public
      * <p>The <code>RegexPatternSetId</code> of the <a>RegexPatternSet</a> that you want to update. <code>RegexPatternSetId</code> is returned by <a>CreateRegexPatternSet</a> and by
      * 			<a>ListRegexPatternSets</a>.</p>
      */
     RegexPatternSetId: string | undefined;
     /**
+     * @public
      * <p>An array of <code>RegexPatternSetUpdate</code> objects that you want to insert into or delete from a <a>RegexPatternSet</a>.</p>
      */
     Updates: RegexPatternSetUpdate[] | undefined;
     /**
+     * @public
      * <p>The value returned by the most recent call to <a>GetChangeToken</a>.</p>
      */
     ChangeToken: string | undefined;
@@ -5247,6 +5623,7 @@ export interface UpdateRegexPatternSetRequest {
  */
 export interface UpdateRegexPatternSetResponse {
     /**
+     * @public
      * <p>The <code>ChangeToken</code> that you used to submit the <code>UpdateRegexPatternSet</code> request. You can also use this value
      * 			to query the status of the request. For more information, see <a>GetChangeTokenStatus</a>.</p>
      */
@@ -5269,15 +5646,18 @@ export declare class WAFInvalidRegexPatternException extends __BaseException {
  */
 export interface UpdateRuleRequest {
     /**
+     * @public
      * <p>The <code>RuleId</code> of the <code>Rule</code> that you want to update. <code>RuleId</code> is returned by
      * 			<code>CreateRule</code> and by <a>ListRules</a>.</p>
      */
     RuleId: string | undefined;
     /**
+     * @public
      * <p>The value returned by the most recent call to <a>GetChangeToken</a>.</p>
      */
     ChangeToken: string | undefined;
     /**
+     * @public
      * <p>An array of <code>RuleUpdate</code> objects that you want to insert into or delete from a
      * 			<a>Rule</a>. For more information, see the applicable data types:</p>
      * 		       <ul>
@@ -5305,6 +5685,7 @@ export interface UpdateRuleRequest {
  */
 export interface UpdateRuleResponse {
     /**
+     * @public
      * <p>The <code>ChangeToken</code> that you used to submit the <code>UpdateRule</code> request. You can also use this value
      * 			to query the status of the request. For more information, see <a>GetChangeTokenStatus</a>.</p>
      */
@@ -5325,11 +5706,13 @@ export interface UpdateRuleResponse {
  */
 export interface RuleGroupUpdate {
     /**
+     * @public
      * <p>Specify <code>INSERT</code> to add an <code>ActivatedRule</code> to a <code>RuleGroup</code>. Use <code>DELETE</code> to remove an
      *          <code>ActivatedRule</code> from a <code>RuleGroup</code>.</p>
      */
     Action: ChangeAction | string | undefined;
     /**
+     * @public
      * <p>The <code>ActivatedRule</code> object specifies a <code>Rule</code> that you want to insert or delete,
      *          the priority of the <code>Rule</code> in the <code>WebACL</code>, and the action that you want AWS WAF to take when a web request matches the <code>Rule</code>
      *          (<code>ALLOW</code>, <code>BLOCK</code>, or <code>COUNT</code>).</p>
@@ -5341,11 +5724,13 @@ export interface RuleGroupUpdate {
  */
 export interface UpdateRuleGroupRequest {
     /**
+     * @public
      * <p>The <code>RuleGroupId</code> of the <a>RuleGroup</a> that you want to update. <code>RuleGroupId</code> is returned by <a>CreateRuleGroup</a> and by
      *          <a>ListRuleGroups</a>.</p>
      */
     RuleGroupId: string | undefined;
     /**
+     * @public
      * <p>An array of <code>RuleGroupUpdate</code> objects that you want to insert into or delete from a
      *          <a>RuleGroup</a>.</p>
      * 		       <p>You can only insert <code>REGULAR</code> rules into a rule group.</p>
@@ -5354,6 +5739,7 @@ export interface UpdateRuleGroupRequest {
      */
     Updates: RuleGroupUpdate[] | undefined;
     /**
+     * @public
      * <p>The value returned by the most recent call to <a>GetChangeToken</a>.</p>
      */
     ChangeToken: string | undefined;
@@ -5363,6 +5749,7 @@ export interface UpdateRuleGroupRequest {
  */
 export interface UpdateRuleGroupResponse {
     /**
+     * @public
      * <p>The <code>ChangeToken</code> that you used to submit the <code>UpdateRuleGroup</code> request. You can also use this value
      *          to query the status of the request. For more information, see <a>GetChangeTokenStatus</a>.</p>
      */
@@ -5383,11 +5770,13 @@ export interface UpdateRuleGroupResponse {
  */
 export interface SizeConstraintSetUpdate {
     /**
+     * @public
      * <p>Specify <code>INSERT</code> to add a <a>SizeConstraintSetUpdate</a> to a <a>SizeConstraintSet</a>.
      * 			Use <code>DELETE</code> to remove a <code>SizeConstraintSetUpdate</code> from a <code>SizeConstraintSet</code>.</p>
      */
     Action: ChangeAction | string | undefined;
     /**
+     * @public
      * <p>Specifies a constraint on the size of a part of the web request. AWS WAF uses the <code>Size</code>, <code>ComparisonOperator</code>, and <code>FieldToMatch</code> to build
      * 			an expression in the form of "<code>Size</code>
      *             <code>ComparisonOperator</code> size in bytes of <code>FieldToMatch</code>". If that expression is true, the
@@ -5400,15 +5789,18 @@ export interface SizeConstraintSetUpdate {
  */
 export interface UpdateSizeConstraintSetRequest {
     /**
+     * @public
      * <p>The <code>SizeConstraintSetId</code> of the <a>SizeConstraintSet</a> that you want to update. <code>SizeConstraintSetId</code>
      * 			is returned by <a>CreateSizeConstraintSet</a> and by <a>ListSizeConstraintSets</a>.</p>
      */
     SizeConstraintSetId: string | undefined;
     /**
+     * @public
      * <p>The value returned by the most recent call to <a>GetChangeToken</a>.</p>
      */
     ChangeToken: string | undefined;
     /**
+     * @public
      * <p>An array of <code>SizeConstraintSetUpdate</code> objects that you want to insert into or delete from a <a>SizeConstraintSet</a>.
      * 			For more information, see the applicable data types:</p>
      * 		       <ul>
@@ -5437,6 +5829,7 @@ export interface UpdateSizeConstraintSetRequest {
  */
 export interface UpdateSizeConstraintSetResponse {
     /**
+     * @public
      * <p>The <code>ChangeToken</code> that you used to submit the <code>UpdateSizeConstraintSet</code> request. You can also use this value
      * 			to query the status of the request. For more information, see <a>GetChangeTokenStatus</a>.</p>
      */
@@ -5457,11 +5850,13 @@ export interface UpdateSizeConstraintSetResponse {
  */
 export interface SqlInjectionMatchSetUpdate {
     /**
+     * @public
      * <p>Specify <code>INSERT</code> to add a <a>SqlInjectionMatchSetUpdate</a> to a <a>SqlInjectionMatchSet</a>.
      * 			Use <code>DELETE</code> to remove a <code>SqlInjectionMatchSetUpdate</code> from a <code>SqlInjectionMatchSet</code>.</p>
      */
     Action: ChangeAction | string | undefined;
     /**
+     * @public
      * <p>Specifies the part of a web request that you want AWS WAF to inspect for snippets of malicious SQL code and, if you want AWS WAF to inspect a header, the name of the header.</p>
      */
     SqlInjectionMatchTuple: SqlInjectionMatchTuple | undefined;
@@ -5472,15 +5867,18 @@ export interface SqlInjectionMatchSetUpdate {
  */
 export interface UpdateSqlInjectionMatchSetRequest {
     /**
+     * @public
      * <p>The <code>SqlInjectionMatchSetId</code> of the <code>SqlInjectionMatchSet</code> that you want to update.
      * 			<code>SqlInjectionMatchSetId</code> is returned by <a>CreateSqlInjectionMatchSet</a> and by <a>ListSqlInjectionMatchSets</a>.</p>
      */
     SqlInjectionMatchSetId: string | undefined;
     /**
+     * @public
      * <p>The value returned by the most recent call to <a>GetChangeToken</a>.</p>
      */
     ChangeToken: string | undefined;
     /**
+     * @public
      * <p>An array of <code>SqlInjectionMatchSetUpdate</code> objects that you want to insert into or delete from a
      * 			<a>SqlInjectionMatchSet</a>. For more information, see the applicable data types:</p>
      * 		       <ul>
@@ -5509,6 +5907,7 @@ export interface UpdateSqlInjectionMatchSetRequest {
  */
 export interface UpdateSqlInjectionMatchSetResponse {
     /**
+     * @public
      * <p>The <code>ChangeToken</code> that you used to submit the <code>UpdateSqlInjectionMatchSet</code> request. You can also use this value
      * 			to query the status of the request. For more information, see <a>GetChangeTokenStatus</a>.</p>
      */
@@ -5528,10 +5927,12 @@ export interface UpdateSqlInjectionMatchSetResponse {
  */
 export interface WebACLUpdate {
     /**
+     * @public
      * <p>Specifies whether to insert a <code>Rule</code> into or delete a <code>Rule</code> from a <code>WebACL</code>.</p>
      */
     Action: ChangeAction | string | undefined;
     /**
+     * @public
      * <p>The <code>ActivatedRule</code> object in an <a>UpdateWebACL</a> request specifies a <code>Rule</code> that you want to insert or delete,
      *          the priority of the <code>Rule</code> in the <code>WebACL</code>, and the action that you want AWS WAF to take when a web request matches the <code>Rule</code>
      *          (<code>ALLOW</code>, <code>BLOCK</code>, or <code>COUNT</code>).</p>
@@ -5543,15 +5944,18 @@ export interface WebACLUpdate {
  */
 export interface UpdateWebACLRequest {
     /**
+     * @public
      * <p>The <code>WebACLId</code> of the <a>WebACL</a> that you want to update. <code>WebACLId</code> is returned by <a>CreateWebACL</a> and by
      * 			<a>ListWebACLs</a>.</p>
      */
     WebACLId: string | undefined;
     /**
+     * @public
      * <p>The value returned by the most recent call to <a>GetChangeToken</a>.</p>
      */
     ChangeToken: string | undefined;
     /**
+     * @public
      * <p>An array of updates to make to the <a>WebACL</a>.</p>
      * 		       <p>An array of <code>WebACLUpdate</code> objects that you want to insert into or delete from a
      * 			<a>WebACL</a>. For more information, see the applicable data types:</p>
@@ -5581,6 +5985,7 @@ export interface UpdateWebACLRequest {
      */
     Updates?: WebACLUpdate[];
     /**
+     * @public
      * <p>A default action for the web ACL, either ALLOW or BLOCK. AWS WAF performs the default
      *          action if a request doesn't match the criteria in any of the rules in a web ACL.</p>
      */
@@ -5591,6 +5996,7 @@ export interface UpdateWebACLRequest {
  */
 export interface UpdateWebACLResponse {
     /**
+     * @public
      * <p>The <code>ChangeToken</code> that you used to submit the <code>UpdateWebACL</code> request. You can also use this value
      * 			to query the status of the request. For more information, see <a>GetChangeTokenStatus</a>.</p>
      */
@@ -5623,6 +6029,7 @@ export declare class WAFSubscriptionNotFoundException extends __BaseException {
  */
 export interface XssMatchSetUpdate {
     /**
+     * @public
      * <p>Specify <code>INSERT</code> to add an
      *          <a>XssMatchSetUpdate</a> to an <a>XssMatchSet</a>. Use
      *             <code>DELETE</code> to remove an
@@ -5630,6 +6037,7 @@ export interface XssMatchSetUpdate {
      */
     Action: ChangeAction | string | undefined;
     /**
+     * @public
      * <p>Specifies the part of a web request that you want AWS WAF to inspect for cross-site scripting attacks and, if you want AWS WAF to inspect a header, the name of the header.</p>
      */
     XssMatchTuple: XssMatchTuple | undefined;
@@ -5640,15 +6048,18 @@ export interface XssMatchSetUpdate {
  */
 export interface UpdateXssMatchSetRequest {
     /**
+     * @public
      * <p>The <code>XssMatchSetId</code> of the <code>XssMatchSet</code> that you want to update.
      * 			<code>XssMatchSetId</code> is returned by <a>CreateXssMatchSet</a> and by <a>ListXssMatchSets</a>.</p>
      */
     XssMatchSetId: string | undefined;
     /**
+     * @public
      * <p>The value returned by the most recent call to <a>GetChangeToken</a>.</p>
      */
     ChangeToken: string | undefined;
     /**
+     * @public
      * <p>An array of <code>XssMatchSetUpdate</code> objects that you want to insert into or
      *          delete from an
      *          <a>XssMatchSet</a>. For more information, see the applicable data
@@ -5679,6 +6090,7 @@ export interface UpdateXssMatchSetRequest {
  */
 export interface UpdateXssMatchSetResponse {
     /**
+     * @public
      * <p>The <code>ChangeToken</code> that you used to submit the <code>UpdateXssMatchSet</code> request. You can also use this value
      * 			to query the status of the request. For more information, see <a>GetChangeTokenStatus</a>.</p>
      */