@azure/arm-security 5.0.1-alpha.20220921.1 → 6.0.0-beta.1

package/types/arm-security.d.ts

@@ -22,13 +22,14 @@ export declare interface AadConnectivityStateAutoGenerated {
 }
 
 /** Represents an AAD identity protection solution which sends logs to an OMS workspace. */
-export declare type AadExternalSecuritySolution = ExternalSecuritySolution & {
+export declare interface AadExternalSecuritySolution extends ExternalSecuritySolution {
     /** The external security solution properties for AAD solutions */
     properties?: AadSolutionProperties;
-};
+}
 
 /** The external security solution properties for AAD solutions */
-export declare type AadSolutionProperties = ExternalSecuritySolutionProperties & AadConnectivityStateAutoGenerated & {};
+export declare interface AadSolutionProperties extends ExternalSecuritySolutionProperties, AadConnectivityStateAutoGenerated {
+}
 
 /**
  * Defines values for ActionType. \
@@ -42,12 +43,12 @@ export declare type AadSolutionProperties = ExternalSecuritySolutionProperties &
 export declare type ActionType = string;
 
 /** Number of active connections is not in allowed range. */
-export declare type ActiveConnectionsNotInAllowedRange = TimeWindowCustomAlertRule & {
+export declare interface ActiveConnectionsNotInAllowedRange extends TimeWindowCustomAlertRule {
     /** Polymorphic discriminator, which specifies the different types this object can be */
     ruleType: "ActiveConnectionsNotInAllowedRange";
-};
+}
 
-export declare type AdaptiveApplicationControlGroup = Resource & Location_2 & {
+export declare interface AdaptiveApplicationControlGroup extends Resource, Location_2 {
     /** The application control policy enforcement/protection mode of the machine group */
     enforcementMode?: EnforcementMode;
     /** The protection mode of the collection/file types. Exe/Msi/Script are used for Windows, Executable is used for Linux. */
@@ -71,9 +72,9 @@ export declare type AdaptiveApplicationControlGroup = Resource & Location_2 & {
     readonly sourceSystem?: SourceSystem;
     vmRecommendations?: VmRecommendation[];
     pathRecommendations?: PathRecommendation[];
-};
+}
 
-/** Represents a list of machine groups and set of rules that are recommended by Azure Security Center to be allowed */
+/** Represents a list of VM/server groups and set of rules that are Recommended by Microsoft Defender for Cloud to be allowed */
 export declare interface AdaptiveApplicationControlGroups {
     value?: AdaptiveApplicationControlGroup[];
 }
@@ -164,14 +165,14 @@ export declare interface AdaptiveApplicationControlsPutOptionalParams extends co
 export declare type AdaptiveApplicationControlsPutResponse = AdaptiveApplicationControlGroup;
 
 /** The resource whose properties describes the Adaptive Network Hardening settings for some Azure resource */
-export declare type AdaptiveNetworkHardening = Resource & {
+export declare interface AdaptiveNetworkHardening extends Resource {
     /** The security rules which are recommended to be effective on the VM */
     rules?: Rule[];
     /** The UTC time on which the rules were calculated */
     rulesCalculationTime?: Date;
     /** The Network Security Groups effective on the network interfaces of the protected resource */
     effectiveNetworkSecurityGroups?: EffectiveNetworkSecurityGroups[];
-};
+}
 
 export declare interface AdaptiveNetworkHardeningEnforceRequest {
     /** The rules to enforce */
@@ -335,13 +336,18 @@ export declare interface AdvancedThreatProtectionGetOptionalParams extends coreC
 export declare type AdvancedThreatProtectionGetResponse = AdvancedThreatProtectionSetting;
 
 /** The Advanced Threat Protection resource. */
-export declare type AdvancedThreatProtectionSetting = Resource & {
+export declare interface AdvancedThreatProtectionSetting extends Resource {
     /** Indicates whether Advanced Threat Protection is enabled. */
     isEnabled?: boolean;
-};
+}
 
 /** Security alert */
-export declare type Alert = Resource & {
+export declare interface Alert extends Resource {
+    /**
+     * Schema version.
+     * NOTE: This property will not be serialized. It can only be populated by the server.
+     */
+    readonly version?: string;
     /**
      * Unique identifier for the detection logic (all alert instances from the same detection logic will have the same alertType).
      * NOTE: This property will not be serialized. It can only be populated by the server.
@@ -458,7 +464,19 @@ export declare type Alert = Resource & {
      * NOTE: This property will not be serialized. It can only be populated by the server.
      */
     readonly compromisedEntity?: string;
-};
+    /**
+     * kill chain related techniques behind the alert.
+     * NOTE: This property will not be serialized. It can only be populated by the server.
+     */
+    readonly techniques?: string[];
+    /**
+     * Kill chain related sub-techniques behind the alert.
+     * NOTE: This property will not be serialized. It can only be populated by the server.
+     */
+    readonly subTechniques?: string[];
+    /** Changing set of properties depending on the supportingEvidence type. */
+    supportingEvidence?: AlertPropertiesSupportingEvidence;
+}
 
 /** Changing set of properties depending on the entity type. */
 export declare interface AlertEntity {
@@ -482,15 +500,16 @@ export declare interface AlertList {
     readonly nextLink?: string;
 }
 
-/**
- * Defines values for AlertNotifications. \
- * {@link KnownAlertNotifications} can be used interchangeably with AlertNotifications,
- *  this enum contains the known values that the service supports.
- * ### Known values supported by the service
- * **On**: Get notifications on new alerts \
- * **Off**: Don't get notifications on new alerts
- */
-export declare type AlertNotifications = string;
+/** Changing set of properties depending on the supportingEvidence type. */
+export declare interface AlertPropertiesSupportingEvidence {
+    /** Describes unknown properties. The value of an unknown property can be of "any" type. */
+    [property: string]: any;
+    /**
+     * Type of the supportingEvidence
+     * NOTE: This property will not be serialized. It can only be populated by the server.
+     */
+    readonly type?: string;
+}
 
 /** Interface representing a Alerts. */
 export declare interface Alerts {
@@ -533,14 +552,14 @@ export declare interface Alerts {
     getSubscriptionLevel(ascLocation: string, alertName: string, options?: AlertsGetSubscriptionLevelOptionalParams): Promise<AlertsGetSubscriptionLevelResponse>;
     /**
      * Get an alert that is associated a resource group or a resource in a resource group
+     * @param resourceGroupName The name of the resource group within the user's subscription. The name is
+     *                          case insensitive.
      * @param ascLocation The location where ASC stores the data of the subscription. can be retrieved from
      *                    Get locations
      * @param alertName Name of the alert object
-     * @param resourceGroupName The name of the resource group within the user's subscription. The name is
-     *                          case insensitive.
      * @param options The options parameters.
      */
-    getResourceGroupLevel(ascLocation: string, alertName: string, resourceGroupName: string, options?: AlertsGetResourceGroupLevelOptionalParams): Promise<AlertsGetResourceGroupLevelResponse>;
+    getResourceGroupLevel(resourceGroupName: string, ascLocation: string, alertName: string, options?: AlertsGetResourceGroupLevelOptionalParams): Promise<AlertsGetResourceGroupLevelResponse>;
     /**
      * Update the alert's state
      * @param ascLocation The location where ASC stores the data of the subscription. can be retrieved from
@@ -570,31 +589,57 @@ export declare interface Alerts {
      * @param ascLocation The location where ASC stores the data of the subscription. can be retrieved from
      *                    Get locations
      * @param alertName Name of the alert object
-     * @param resourceGroupName The name of the resource group within the user's subscription. The name is
-     *                          case insensitive.
      * @param options The options parameters.
      */
-    updateResourceGroupLevelStateToResolve(ascLocation: string, alertName: string, resourceGroupName: string, options?: AlertsUpdateResourceGroupLevelStateToResolveOptionalParams): Promise<void>;
+    updateSubscriptionLevelStateToInProgress(ascLocation: string, alertName: string, options?: AlertsUpdateSubscriptionLevelStateToInProgressOptionalParams): Promise<void>;
     /**
      * Update the alert's state
+     * @param resourceGroupName The name of the resource group within the user's subscription. The name is
+     *                          case insensitive.
      * @param ascLocation The location where ASC stores the data of the subscription. can be retrieved from
      *                    Get locations
      * @param alertName Name of the alert object
+     * @param options The options parameters.
+     */
+    updateResourceGroupLevelStateToResolve(resourceGroupName: string, ascLocation: string, alertName: string, options?: AlertsUpdateResourceGroupLevelStateToResolveOptionalParams): Promise<void>;
+    /**
+     * Update the alert's state
      * @param resourceGroupName The name of the resource group within the user's subscription. The name is
      *                          case insensitive.
+     * @param ascLocation The location where ASC stores the data of the subscription. can be retrieved from
+     *                    Get locations
+     * @param alertName Name of the alert object
      * @param options The options parameters.
      */
-    updateResourceGroupLevelStateToDismiss(ascLocation: string, alertName: string, resourceGroupName: string, options?: AlertsUpdateResourceGroupLevelStateToDismissOptionalParams): Promise<void>;
+    updateResourceGroupLevelStateToDismiss(resourceGroupName: string, ascLocation: string, alertName: string, options?: AlertsUpdateResourceGroupLevelStateToDismissOptionalParams): Promise<void>;
     /**
      * Update the alert's state
+     * @param resourceGroupName The name of the resource group within the user's subscription. The name is
+     *                          case insensitive.
      * @param ascLocation The location where ASC stores the data of the subscription. can be retrieved from
      *                    Get locations
      * @param alertName Name of the alert object
+     * @param options The options parameters.
+     */
+    updateResourceGroupLevelStateToActivate(resourceGroupName: string, ascLocation: string, alertName: string, options?: AlertsUpdateResourceGroupLevelStateToActivateOptionalParams): Promise<void>;
+    /**
+     * Update the alert's state
      * @param resourceGroupName The name of the resource group within the user's subscription. The name is
      *                          case insensitive.
+     * @param ascLocation The location where ASC stores the data of the subscription. can be retrieved from
+     *                    Get locations
+     * @param alertName Name of the alert object
+     * @param options The options parameters.
+     */
+    updateResourceGroupLevelStateToInProgress(resourceGroupName: string, ascLocation: string, alertName: string, options?: AlertsUpdateResourceGroupLevelStateToInProgressOptionalParams): Promise<void>;
+    /**
+     * Simulate security alerts
+     * @param ascLocation The location where ASC stores the data of the subscription. can be retrieved from
+     *                    Get locations
+     * @param alertSimulatorRequestBody Alert Simulator Request Properties
      * @param options The options parameters.
      */
-    updateResourceGroupLevelStateToActivate(ascLocation: string, alertName: string, resourceGroupName: string, options?: AlertsUpdateResourceGroupLevelStateToActivateOptionalParams): Promise<void>;
+    beginSimulate(ascLocation: string, alertSimulatorRequestBody: AlertSimulatorRequestBody, options?: AlertsSimulateOptionalParams): Promise<PollerLike<PollOperationState<void>, void>>;
     /**
      * Simulate security alerts
      * @param ascLocation The location where ASC stores the data of the subscription. can be retrieved from
@@ -602,7 +647,7 @@ export declare interface Alerts {
      * @param alertSimulatorRequestBody Alert Simulator Request Properties
      * @param options The options parameters.
      */
-    simulate(ascLocation: string, alertSimulatorRequestBody: AlertSimulatorRequestBody, options?: AlertsSimulateOptionalParams): Promise<void>;
+    beginSimulateAndWait(ascLocation: string, alertSimulatorRequestBody: AlertSimulatorRequestBody, options?: AlertsSimulateOptionalParams): Promise<void>;
 }
 
 /**
@@ -632,12 +677,12 @@ export declare interface AlertsGetSubscriptionLevelOptionalParams extends coreCl
 export declare type AlertsGetSubscriptionLevelResponse = Alert;
 
 /** Simulate alerts according to this bundles. */
-export declare type AlertSimulatorBundlesRequestProperties = AlertSimulatorRequestProperties & {
+export declare interface AlertSimulatorBundlesRequestProperties extends AlertSimulatorRequestProperties {
     /** Polymorphic discriminator, which specifies the different types this object can be */
     kind: "Bundles";
     /** Bundles list. */
     bundles?: BundleType[];
-};
+}
 
 /** Alert Simulator request body. */
 export declare interface AlertSimulatorRequestBody {
@@ -713,10 +758,14 @@ export declare type AlertsListSubscriptionLevelByRegionResponse = AlertList;
 
 /** Optional parameters. */
 export declare interface AlertsSimulateOptionalParams extends coreClient.OperationOptions {
+    /** Delay to wait until next poll, in milliseconds. */
+    updateIntervalInMs?: number;
+    /** A serialized poller which can be used to resume an existing paused Long-Running-Operation. */
+    resumeFrom?: string;
 }
 
 /** Describes the suppression rule */
-export declare type AlertsSuppressionRule = Resource & {
+export declare interface AlertsSuppressionRule extends Resource {
     /** Type of the alert to automatically suppress. For all alert types, use '*' */
     alertType?: string;
     /**
@@ -734,7 +783,7 @@ export declare type AlertsSuppressionRule = Resource & {
     comment?: string;
     /** The suppression conditions */
     suppressionAlertsScope?: SuppressionAlertsScope;
-};
+}
 
 /** Interface representing a AlertsSuppressionRules. */
 export declare interface AlertsSuppressionRules {
@@ -816,21 +865,12 @@ export declare type AlertsSuppressionRulesUpdateResponse = AlertsSuppressionRule
  *  this enum contains the known values that the service supports.
  * ### Known values supported by the service
  * **Active**: An alert which doesn't specify a value is assigned the status 'Active' \
+ * **InProgress**: An alert which is in handling state \
  * **Resolved**: Alert closed after handling \
  * **Dismissed**: Alert dismissed as false positive
  */
 export declare type AlertStatus = string;
 
-/**
- * Defines values for AlertsToAdmins. \
- * {@link KnownAlertsToAdmins} can be used interchangeably with AlertsToAdmins,
- *  this enum contains the known values that the service supports.
- * ### Known values supported by the service
- * **On**: Send notification on new alerts to the subscription's admins \
- * **Off**: Don't send notification on new alerts to the subscription's admins
- */
-export declare type AlertsToAdmins = string;
-
 /** Optional parameters. */
 export declare interface AlertsUpdateResourceGroupLevelStateToActivateOptionalParams extends coreClient.OperationOptions {
 }
@@ -839,6 +879,10 @@ export declare interface AlertsUpdateResourceGroupLevelStateToActivateOptionalPa
 export declare interface AlertsUpdateResourceGroupLevelStateToDismissOptionalParams extends coreClient.OperationOptions {
 }
 
+/** Optional parameters. */
+export declare interface AlertsUpdateResourceGroupLevelStateToInProgressOptionalParams extends coreClient.OperationOptions {
+}
+
 /** Optional parameters. */
 export declare interface AlertsUpdateResourceGroupLevelStateToResolveOptionalParams extends coreClient.OperationOptions {
 }
@@ -851,15 +895,21 @@ export declare interface AlertsUpdateSubscriptionLevelStateToActivateOptionalPar
 export declare interface AlertsUpdateSubscriptionLevelStateToDismissOptionalParams extends coreClient.OperationOptions {
 }
 
+/** Optional parameters. */
+export declare interface AlertsUpdateSubscriptionLevelStateToInProgressOptionalParams extends coreClient.OperationOptions {
+}
+
 /** Optional parameters. */
 export declare interface AlertsUpdateSubscriptionLevelStateToResolveOptionalParams extends coreClient.OperationOptions {
 }
 
 /** Represents an alert sync setting */
-export declare type AlertSyncSettings = Setting & {
+export declare interface AlertSyncSettings extends Setting {
+    /** Polymorphic discriminator, which specifies the different types this object can be */
+    kind: "AlertSyncSettings";
     /** Is the alert sync setting enabled */
     enabled?: boolean;
-};
+}
 
 /** Interface representing a AllowedConnections. */
 export declare interface AllowedConnections {
@@ -935,7 +985,7 @@ export declare interface AllowedConnectionsListOptionalParams extends coreClient
 export declare type AllowedConnectionsListResponse = AllowedConnectionsList;
 
 /** The resource whose properties describes the allowed traffic between Azure resources */
-export declare type AllowedConnectionsResource = Resource & Location_2 & {
+export declare interface AllowedConnectionsResource extends Resource, Location_2 {
     /**
      * The UTC time on which the allowed connections resource was calculated
      * NOTE: This property will not be serialized. It can only be populated by the server.
@@ -946,41 +996,160 @@ export declare type AllowedConnectionsResource = Resource & Location_2 & {
      * NOTE: This property will not be serialized. It can only be populated by the server.
      */
     readonly connectableResources?: ConnectableResource[];
-};
+}
 
 /** A custom alert rule that checks if a value (depends on the custom alert type) is allowed. */
-export declare type AllowlistCustomAlertRule = ListCustomAlertRule & {
+export declare interface AllowlistCustomAlertRule extends ListCustomAlertRule {
     /** Polymorphic discriminator, which specifies the different types this object can be */
     ruleType: "AllowlistCustomAlertRule" | "ConnectionToIpNotAllowed" | "ConnectionFromIpNotAllowed" | "LocalUserNotAllowed" | "ProcessNotAllowed";
     /** The values to allow. The format of the values depends on the rule type. */
     allowlistValues: string[];
-};
+}
 
 export declare type AllowlistCustomAlertRuleUnion = AllowlistCustomAlertRule | ConnectionToIpNotAllowed | ConnectionFromIpNotAllowed | LocalUserNotAllowed | ProcessNotAllowed;
 
 /** Number of cloud to device messages (AMQP protocol) is not in allowed range. */
-export declare type AmqpC2DMessagesNotInAllowedRange = TimeWindowCustomAlertRule & {
+export declare interface AmqpC2DMessagesNotInAllowedRange extends TimeWindowCustomAlertRule {
     /** Polymorphic discriminator, which specifies the different types this object can be */
     ruleType: "AmqpC2DMessagesNotInAllowedRange";
-};
+}
 
 /** Number of rejected cloud to device messages (AMQP protocol) is not in allowed range. */
-export declare type AmqpC2DRejectedMessagesNotInAllowedRange = TimeWindowCustomAlertRule & {
+export declare interface AmqpC2DRejectedMessagesNotInAllowedRange extends TimeWindowCustomAlertRule {
     /** Polymorphic discriminator, which specifies the different types this object can be */
     ruleType: "AmqpC2DRejectedMessagesNotInAllowedRange";
-};
+}
 
 /** Number of device to cloud messages (AMQP protocol) is not in allowed range. */
-export declare type AmqpD2CMessagesNotInAllowedRange = TimeWindowCustomAlertRule & {
+export declare interface AmqpD2CMessagesNotInAllowedRange extends TimeWindowCustomAlertRule {
     /** Polymorphic discriminator, which specifies the different types this object can be */
     ruleType: "AmqpD2CMessagesNotInAllowedRange";
-};
+}
+
+/** Security Application over a given scope */
+export declare interface Application extends Resource {
+    /** display name of the application */
+    displayName?: string;
+    /** description of the application */
+    description?: string;
+    /** The application source, what it affects, e.g. Assessments */
+    sourceResourceType?: ApplicationSourceResourceType;
+    /** The application conditionSets - see examples */
+    conditionSets?: Record<string, unknown>[];
+}
+
+/** Application's condition */
+export declare interface ApplicationCondition {
+    /** The application Condition's Property, e.g. ID, see examples */
+    property?: string;
+    /** The application Condition's Value like IDs that contain some string, see examples */
+    value?: string;
+    /** The application Condition's Operator, for example Contains for id or In for list of possible IDs, see examples */
+    operator?: ApplicationConditionOperator;
+}
+
+/**
+ * Defines values for ApplicationConditionOperator. \
+ * {@link KnownApplicationConditionOperator} can be used interchangeably with ApplicationConditionOperator,
+ *  this enum contains the known values that the service supports.
+ * ### Known values supported by the service
+ * **Contains**: Checks that the string value of the data defined in Property contains the given value \
+ * **In**: Checks that the string value of the data defined in Property equals any of the given values (exact fit)
+ */
+export declare type ApplicationConditionOperator = string;
+
+/** Optional parameters. */
+export declare interface ApplicationCreateOrUpdateOptionalParams extends coreClient.OperationOptions {
+}
+
+/** Contains response data for the createOrUpdate operation. */
+export declare type ApplicationCreateOrUpdateResponse = Application;
+
+/** Optional parameters. */
+export declare interface ApplicationDeleteOptionalParams extends coreClient.OperationOptions {
+}
+
+/** Optional parameters. */
+export declare interface ApplicationGetOptionalParams extends coreClient.OperationOptions {
+}
+
+/** Contains response data for the get operation. */
+export declare type ApplicationGetResponse = Application;
+
+/** Interface representing a ApplicationOperations. */
+export declare interface ApplicationOperations {
+    /**
+     * Get a specific application for the requested scope by applicationId
+     * @param applicationId The security Application key - unique key for the standard application
+     * @param options The options parameters.
+     */
+    get(applicationId: string, options?: ApplicationGetOptionalParams): Promise<ApplicationGetResponse>;
+    /**
+     * Creates or update a security application on the given subscription.
+     * @param applicationId The security Application key - unique key for the standard application
+     * @param application Application over a subscription scope
+     * @param options The options parameters.
+     */
+    createOrUpdate(applicationId: string, application: Application, options?: ApplicationCreateOrUpdateOptionalParams): Promise<ApplicationCreateOrUpdateResponse>;
+    /**
+     * Delete an Application over a given scope
+     * @param applicationId The security Application key - unique key for the standard application
+     * @param options The options parameters.
+     */
+    delete(applicationId: string, options?: ApplicationDeleteOptionalParams): Promise<void>;
+}
+
+/** Interface representing a Applications. */
+export declare interface Applications {
+    /**
+     * Get a list of all relevant applications over a subscription level scope
+     * @param options The options parameters.
+     */
+    list(options?: ApplicationsListOptionalParams): PagedAsyncIterableIterator<Application>;
+}
+
+/** Page of a security applications list */
+export declare interface ApplicationsList {
+    /**
+     * Collection of applications in this page
+     * NOTE: This property will not be serialized. It can only be populated by the server.
+     */
+    readonly value?: Application[];
+    /**
+     * The URI to fetch the next page
+     * NOTE: This property will not be serialized. It can only be populated by the server.
+     */
+    readonly nextLink?: string;
+}
+
+/** Optional parameters. */
+export declare interface ApplicationsListNextOptionalParams extends coreClient.OperationOptions {
+}
+
+/** Contains response data for the listNext operation. */
+export declare type ApplicationsListNextResponse = ApplicationsList;
+
+/** Optional parameters. */
+export declare interface ApplicationsListOptionalParams extends coreClient.OperationOptions {
+}
+
+/** Contains response data for the list operation. */
+export declare type ApplicationsListResponse = ApplicationsList;
+
+/**
+ * Defines values for ApplicationSourceResourceType. \
+ * {@link KnownApplicationSourceResourceType} can be used interchangeably with ApplicationSourceResourceType,
+ *  this enum contains the known values that the service supports.
+ * ### Known values supported by the service
+ * **Assessments**: The source of the application is assessments
+ */
+export declare type ApplicationSourceResourceType = string;
 
 /** The ASC location of the subscription is in the "name" field */
-export declare type AscLocation = Resource & {
-    /** Any object */
+export declare interface AscLocation extends Resource {
+    /** An empty set of properties */
     properties?: Record<string, unknown>;
-};
+}
 
 /** List of locations where ASC saves your data */
 export declare interface AscLocationList {
@@ -1198,7 +1367,7 @@ export declare interface AssessmentStatus {
 export declare type AssessmentStatusCode = string;
 
 /** The result of the assessment */
-export declare type AssessmentStatusResponse = AssessmentStatus & {
+export declare interface AssessmentStatusResponse extends AssessmentStatus {
     /**
      * The time that the assessment was created and first evaluated. Returned as UTC time in ISO 8601 format
      * NOTE: This property will not be serialized. It can only be populated by the server.
@@ -1209,30 +1378,30 @@ export declare type AssessmentStatusResponse = AssessmentStatus & {
      * NOTE: This property will not be serialized. It can only be populated by the server.
      */
     readonly statusChangeDate?: Date;
-};
+}
 
 /**
  * Defines values for AssessmentType. \
  * {@link KnownAssessmentType} can be used interchangeably with AssessmentType,
  *  this enum contains the known values that the service supports.
  * ### Known values supported by the service
- * **BuiltIn**: Azure Security Center managed assessments \
- * **CustomPolicy**: User defined policies that are automatically ingested from Azure Policy to Azure Security Center \
- * **CustomerManaged**: User assessments pushed directly by the user or other third party to Azure Security Center \
+ * **BuiltIn**: Microsoft Defender for Cloud managed assessments \
+ * **CustomPolicy**: User defined policies that are automatically ingested from Azure Policy to Microsoft Defender for Cloud \
+ * **CustomerManaged**: User assessments pushed directly by the user or other third party to Microsoft Defender for Cloud \
  * **VerifiedPartner**: An assessment that was created by a verified 3rd party if the user connected it to ASC
  */
 export declare type AssessmentType = string;
 
 /** Represents an ATA security solution which sends logs to an OMS workspace */
-export declare type AtaExternalSecuritySolution = ExternalSecuritySolution & {
+export declare interface AtaExternalSecuritySolution extends ExternalSecuritySolution {
     /** The external security solution properties for ATA solutions */
     properties?: AtaSolutionProperties;
-};
+}
 
 /** The external security solution properties for ATA solutions */
-export declare type AtaSolutionProperties = ExternalSecuritySolutionProperties & {
+export declare interface AtaSolutionProperties extends ExternalSecuritySolutionProperties {
     lastEventReceived?: string;
-};
+}
 
 /** Settings for cloud authentication management */
 export declare interface AuthenticationDetailsProperties {
@@ -1276,7 +1445,7 @@ export declare type AuthenticationProvisioningState = string;
 export declare type AuthenticationType = string;
 
 /** The security automation resource. */
-export declare type Automation = TrackedResource & {
+export declare interface Automation extends TrackedResource {
     /** The security automation description. */
     description?: string;
     /** Indicates whether the security automation is enabled. */
@@ -1287,7 +1456,7 @@ export declare type Automation = TrackedResource & {
     sources?: AutomationSource[];
     /** A collection of the actions which are triggered if all the configured rules evaluations, within at least one rule set, are true. */
     actions?: AutomationActionUnion[];
-};
+}
 
 /** The action that should be triggered. */
 export declare interface AutomationAction {
@@ -1295,8 +1464,8 @@ export declare interface AutomationAction {
     actionType: "LogicApp" | "EventHub" | "Workspace";
 }
 
-/** The target Event Hub to which event data will be exported. To learn more about Security Center continuous export capabilities, visit https://aka.ms/ASCExportLearnMore */
-export declare type AutomationActionEventHub = AutomationAction & {
+/** The target Event Hub to which event data will be exported. To learn more about Microsoft Defender for Cloud continuous export capabilities, visit https://aka.ms/ASCExportLearnMore */
+export declare interface AutomationActionEventHub extends AutomationAction {
     /** Polymorphic discriminator, which specifies the different types this object can be */
     actionType: "EventHub";
     /** The target Event Hub Azure Resource ID. */
@@ -1308,27 +1477,27 @@ export declare type AutomationActionEventHub = AutomationAction & {
     readonly sasPolicyName?: string;
     /** The target Event Hub connection string (it will not be included in any response). */
     connectionString?: string;
-};
+}
 
-/** The logic app action that should be triggered. To learn more about Security Center's Workflow Automation capabilities, visit https://aka.ms/ASCWorkflowAutomationLearnMore */
-export declare type AutomationActionLogicApp = AutomationAction & {
+/** The logic app action that should be triggered. To learn more about Microsoft Defender for Cloud's Workflow Automation capabilities, visit https://aka.ms/ASCWorkflowAutomationLearnMore */
+export declare interface AutomationActionLogicApp extends AutomationAction {
     /** Polymorphic discriminator, which specifies the different types this object can be */
     actionType: "LogicApp";
     /** The triggered Logic App Azure Resource ID. This can also reside on other subscriptions, given that you have permissions to trigger the Logic App */
     logicAppResourceId?: string;
     /** The Logic App trigger URI endpoint (it will not be included in any response). */
     uri?: string;
-};
+}
 
 export declare type AutomationActionUnion = AutomationAction | AutomationActionLogicApp | AutomationActionEventHub | AutomationActionWorkspace;
 
-/** The Log Analytics Workspace to which event data will be exported. Security alerts data will reside in the 'SecurityAlert' table and the assessments data will reside in the 'SecurityRecommendation' table (under the 'Security'/'SecurityCenterFree' solutions). Note that in order to view the data in the workspace, the Security Center Log Analytics free/standard solution needs to be enabled on that workspace. To learn more about Security Center continuous export capabilities, visit https://aka.ms/ASCExportLearnMore */
-export declare type AutomationActionWorkspace = AutomationAction & {
+/** The Log Analytics Workspace to which event data will be exported. Security alerts data will reside in the 'SecurityAlert' table and the assessments data will reside in the 'SecurityRecommendation' table (under the 'Security'/'SecurityCenterFree' solutions). Note that in order to view the data in the workspace, the Security Center Log Analytics free/standard solution needs to be enabled on that workspace. To learn more about Microsoft Defender for Cloud continuous export capabilities, visit https://aka.ms/ASCExportLearnMore */
+export declare interface AutomationActionWorkspace extends AutomationAction {
     /** Polymorphic discriminator, which specifies the different types this object can be */
     actionType: "Workspace";
     /** The fully qualified Log Analytics Workspace Azure Resource ID. */
     workspaceResourceId?: string;
-};
+}
 
 /** List of security automations response. */
 export declare interface AutomationList {
@@ -1500,10 +1669,10 @@ export declare interface AutomationValidationStatus {
 export declare type AutoProvision = string;
 
 /** Auto provisioning setting */
-export declare type AutoProvisioningSetting = Resource & {
+export declare interface AutoProvisioningSetting extends Resource {
     /** Describes what kind of security agent provisioning action to take */
     autoProvision?: AutoProvision;
-};
+}
 
 /** List of all the auto provisioning settings response */
 export declare interface AutoProvisioningSettingList {
@@ -1567,7 +1736,7 @@ export declare interface AutoProvisioningSettingsListOptionalParams extends core
 export declare type AutoProvisioningSettingsListResponse = AutoProvisioningSettingList;
 
 /** AWS cloud account connector based assume role, the role enables delegating access to your AWS resources. The role is composed of role Amazon Resource Name (ARN) and external ID. For more details, refer to <a href="https://docs.aws.amazon.com/IAM/latest/UserGuide/id_roles_create_for-user.html">Creating a Role to Delegate Permissions to an IAM User (write only)</a> */
-export declare type AwAssumeRoleAuthenticationDetailsProperties = AuthenticationDetailsProperties & {
+export declare interface AwAssumeRoleAuthenticationDetailsProperties extends AuthenticationDetailsProperties {
     /** Polymorphic discriminator, which specifies the different types this object can be */
     authenticationType: "awsAssumeRole";
     /**
@@ -1579,10 +1748,10 @@ export declare type AwAssumeRoleAuthenticationDetailsProperties = Authentication
     awsAssumeRoleArn: string;
     /** A unique identifier that is required when you assume a role in another account. */
     awsExternalId: string;
-};
+}
 
 /** AWS cloud account connector based credentials, the credentials is composed of access key ID and secret key, for more details, refer to <a href="https://docs.aws.amazon.com/IAM/latest/UserGuide/id_users_create.html">Creating an IAM User in Your AWS Account (write only)</a> */
-export declare type AwsCredsAuthenticationDetailsProperties = AuthenticationDetailsProperties & {
+export declare interface AwsCredsAuthenticationDetailsProperties extends AuthenticationDetailsProperties {
     /** Polymorphic discriminator, which specifies the different types this object can be */
     authenticationType: "awsCreds";
     /**
@@ -1594,10 +1763,50 @@ export declare type AwsCredsAuthenticationDetailsProperties = AuthenticationDeta
     awsAccessKeyId: string;
     /** Secret key element of the AWS credential object (write only) */
     awsSecretAccessKey: string;
-};
+}
+
+/** The aws connector environment data */
+export declare interface AWSEnvironmentData extends EnvironmentData {
+    /** Polymorphic discriminator, which specifies the different types this object can be */
+    environmentType: "AwsAccount";
+    /** The AWS account's organizational data */
+    organizationalData?: AwsOrganizationalDataUnion;
+}
+
+/** The awsOrganization data */
+export declare interface AwsOrganizationalData {
+    /** Polymorphic discriminator, which specifies the different types this object can be */
+    organizationMembershipType: "Organization" | "Member";
+}
+
+/** The awsOrganization data for the master account */
+export declare interface AwsOrganizationalDataMaster extends AwsOrganizationalData {
+    /** Polymorphic discriminator, which specifies the different types this object can be */
+    organizationMembershipType: "Organization";
+    /** If the multi cloud account is of membership type organization, this will be the name of the onboarding stackset */
+    stacksetName?: string;
+    /** If the multi cloud account is of membership type organization, list of accounts excluded from offering */
+    excludedAccountIds?: string[];
+}
+
+/** The awsOrganization data for the member account */
+export declare interface AwsOrganizationalDataMember extends AwsOrganizationalData {
+    /** Polymorphic discriminator, which specifies the different types this object can be */
+    organizationMembershipType: "Member";
+    /** If the multi cloud account is not of membership type organization, this will be the ID of the account's parent */
+    parentHierarchyId?: string;
+}
+
+export declare type AwsOrganizationalDataUnion = AwsOrganizationalData | AwsOrganizationalDataMaster | AwsOrganizationalDataMember;
+
+/** The AzureDevOps scope connector's environment data */
+export declare interface AzureDevOpsScopeEnvironmentData extends EnvironmentData {
+    /** Polymorphic discriminator, which specifies the different types this object can be */
+    environmentType: "AzureDevOpsScope";
+}
 
 /** Details of the Azure resource that was assessed */
-export declare type AzureResourceDetails = ResourceDetails & {
+export declare interface AzureResourceDetails extends ResourceDetails {
     /** Polymorphic discriminator, which specifies the different types this object can be */
     source: "Azure";
     /**
@@ -1605,10 +1814,10 @@ export declare type AzureResourceDetails = ResourceDetails & {
      * NOTE: This property will not be serialized. It can only be populated by the server.
      */
     readonly id?: string;
-};
+}
 
 /** Azure resource identifier. */
-export declare type AzureResourceIdentifier = ResourceIdentifier & {
+export declare interface AzureResourceIdentifier extends ResourceIdentifier {
     /** Polymorphic discriminator, which specifies the different types this object can be */
     type: "AzureResource";
     /**
@@ -1616,7 +1825,7 @@ export declare type AzureResourceIdentifier = ResourceIdentifier & {
      * NOTE: This property will not be serialized. It can only be populated by the server.
      */
     readonly azureResourceId?: string;
-};
+}
 
 /** Describes an Azure resource with kind */
 export declare interface AzureResourceLink {
@@ -1673,7 +1882,8 @@ export declare interface BenchmarkReference {
  * **ResourceManager** \
  * **SqlServers** \
  * **StorageAccounts** \
- * **VirtualMachines**
+ * **VirtualMachines** \
+ * **CosmosDbs**
  */
 export declare type BundleType = string;
 
@@ -1691,17 +1901,17 @@ export declare type BundleType = string;
 export declare type Categories = string;
 
 /** Represents a security solution which sends CEF logs to an OMS workspace */
-export declare type CefExternalSecuritySolution = ExternalSecuritySolution & {
+export declare interface CefExternalSecuritySolution extends ExternalSecuritySolution {
     /** The external security solution properties for CEF solutions */
     properties?: CefSolutionProperties;
-};
+}
 
 /** The external security solution properties for CEF solutions */
-export declare type CefSolutionProperties = ExternalSecuritySolutionProperties & {
+export declare interface CefSolutionProperties extends ExternalSecuritySolutionProperties {
     hostname?: string;
     agent?: string;
     lastEventReceived?: string;
-};
+}
 
 /** Common error response for all Azure Resource Manager APIs to return error details for failed operations. (This also follows the OData error response format.). */
 export declare interface CloudError {
@@ -1768,14 +1978,16 @@ export declare interface CloudErrorBody {
  * ### Known values supported by the service
  * **Azure** \
  * **AWS** \
- * **GCP**
+ * **GCP** \
+ * **Github** \
+ * **AzureDevOps**
  */
 export declare type CloudName = string;
 
 /** The security offering details */
 export declare interface CloudOffering {
     /** Polymorphic discriminator, which specifies the different types this object can be */
-    offeringType: "CspmMonitorAws" | "DefenderForContainersAws" | "DefenderForServersAws" | "InformationProtectionAws";
+    offeringType: "CspmMonitorAws" | "DefenderForContainersAws" | "DefenderForServersAws" | "DefenderForDatabasesAws" | "InformationProtectionAws" | "CspmMonitorGcp" | "DefenderForServersGcp" | "DefenderForDatabasesGcp" | "DefenderForContainersGcp" | "CspmMonitorGithub" | "CspmMonitorAzureDevOps";
     /**
      * The offering description.
      * NOTE: This property will not be serialized. It can only be populated by the server.
@@ -1783,10 +1995,10 @@ export declare interface CloudOffering {
     readonly description?: string;
 }
 
-export declare type CloudOfferingUnion = CloudOffering | CspmMonitorAwsOffering | DefenderForContainersAwsOffering | DefenderForServersAwsOffering | InformationProtectionAwsOffering;
+export declare type CloudOfferingUnion = CloudOffering | CspmMonitorAwsOffering | DefenderForContainersAwsOffering | DefenderForServersAwsOffering | DefenderFoDatabasesAwsOffering | InformationProtectionAwsOffering | CspmMonitorGcpOffering | DefenderForServersGcpOffering | DefenderForDatabasesGcpOffering | DefenderForContainersGcpOffering | CspmMonitorGithubOffering | CspmMonitorAzureDevOpsOffering;
 
 /** Compliance of a scope */
-export declare type Compliance = Resource & {
+export declare interface Compliance extends Resource {
     /**
      * The timestamp when the Compliance calculation was conducted.
      * NOTE: This property will not be serialized. It can only be populated by the server.
@@ -1802,7 +2014,7 @@ export declare type Compliance = Resource & {
      * NOTE: This property will not be serialized. It can only be populated by the server.
      */
     readonly assessmentResult?: ComplianceSegment[];
-};
+}
 
 /** List of Compliance objects response */
 export declare interface ComplianceList {
@@ -1816,13 +2028,13 @@ export declare interface ComplianceList {
 }
 
 /** a compliance result */
-export declare type ComplianceResult = Resource & {
+export declare interface ComplianceResult extends Resource {
     /**
      * The status of the resource regarding a single assessment
      * NOTE: This property will not be serialized. It can only be populated by the server.
      */
     readonly resourceStatus?: ResourceStatus;
-};
+}
 
 /** List of compliance results response */
 export declare interface ComplianceResultList {
@@ -1931,6 +2143,16 @@ export declare interface CompliancesListOptionalParams extends coreClient.Operat
 /** Contains response data for the list operation. */
 export declare type CompliancesListResponse = ComplianceList;
 
+/** Governance rule's condition */
+export declare interface Condition {
+    /** The governance rule Condition's Property, e.g. Severity or AssessmentKey, see examples */
+    property?: string;
+    /** The governance rule Condition's Value like severity Low, High or assessments keys, see examples */
+    value?: string;
+    /** The governance rule Condition's Operator, for example Equals for severity or In for list of assessments, see examples */
+    operator?: GovernanceRuleConditionOperator;
+}
+
 /**
  * Defines values for ConfigurationStatus. \
  * {@link KnownConfigurationStatus} can be used interchangeably with ConfigurationStatus,
@@ -1989,10 +2211,10 @@ export declare interface ConnectedWorkspace {
 }
 
 /** Inbound connection from an ip that isn't allowed. Allow list consists of ipv4 or ipv6 range in CIDR notation. */
-export declare type ConnectionFromIpNotAllowed = AllowlistCustomAlertRule & {
+export declare interface ConnectionFromIpNotAllowed extends AllowlistCustomAlertRule {
     /** Polymorphic discriminator, which specifies the different types this object can be */
     ruleType: "ConnectionFromIpNotAllowed";
-};
+}
 
 /** Connection string for ingesting security data and logs */
 export declare interface ConnectionStrings {
@@ -2001,10 +2223,10 @@ export declare interface ConnectionStrings {
 }
 
 /** Outbound connection to an ip that isn't allowed. Allow list consists of ipv4 or ipv6 range in CIDR notation. */
-export declare type ConnectionToIpNotAllowed = AllowlistCustomAlertRule & {
+export declare interface ConnectionToIpNotAllowed extends AllowlistCustomAlertRule {
     /** Polymorphic discriminator, which specifies the different types this object can be */
     ruleType: "ConnectionToIpNotAllowed";
-};
+}
 
 /**
  * Defines values for ConnectionType. \
@@ -2059,12 +2281,12 @@ export declare interface ConnectorsDeleteOptionalParams extends coreClient.Opera
 }
 
 /** The connector setting */
-export declare type ConnectorSetting = Resource & {
+export declare interface ConnectorSetting extends Resource {
     /** Settings for hybrid compute management. These settings are relevant only for Arc autoProvision (Hybrid Compute). */
     hybridComputeSettings?: HybridComputeSettingsProperties;
     /** Settings for authentication management, these settings are relevant only for the cloud connector. */
     authenticationDetails?: AuthenticationDetailsPropertiesUnion;
-};
+}
 
 /** For a subscription, list of all cloud account connectors and their settings */
 export declare interface ConnectorSettingList {
@@ -2099,7 +2321,7 @@ export declare interface ConnectorsListOptionalParams extends coreClient.Operati
 export declare type ConnectorsListResponse = ConnectorSettingList;
 
 /** Additional context fields for container registry Vulnerability assessment */
-export declare type ContainerRegistryVulnerabilityProperties = AdditionalData & {
+export declare interface ContainerRegistryVulnerabilityProperties extends AdditionalData {
     /** Polymorphic discriminator, which specifies the different types this object can be */
     assessedResourceType: "ContainerRegistryVulnerability";
     /**
@@ -2141,15 +2363,15 @@ export declare type ContainerRegistryVulnerabilityProperties = AdditionalData &
      * NOTE: This property will not be serialized. It can only be populated by the server.
      */
     readonly imageDigest?: string;
-};
+}
 
 /**
  * Defines values for ControlType. \
  * {@link KnownControlType} can be used interchangeably with ControlType,
  *  this enum contains the known values that the service supports.
  * ### Known values supported by the service
- * **BuiltIn**: Azure Security Center managed assessments \
- * **Custom**: Non Azure Security Center managed assessments
+ * **BuiltIn**: Microsoft Defender for Cloud managed assessments \
+ * **Custom**: Non Microsoft Defender for Cloud managed assessments
  */
 export declare type ControlType = string;
 
@@ -2165,13 +2387,13 @@ export declare type ControlType = string;
  */
 export declare type CreatedByType = string;
 
-/** The CSPM monitoring for AWS offering configurations */
-export declare type CspmMonitorAwsOffering = CloudOffering & {
+/** The CSPM monitoring for AWS offering */
+export declare interface CspmMonitorAwsOffering extends CloudOffering {
     /** Polymorphic discriminator, which specifies the different types this object can be */
     offeringType: "CspmMonitorAws";
     /** The native cloud connection configuration */
     nativeCloudConnection?: CspmMonitorAwsOfferingNativeCloudConnection;
-};
+}
 
 /** The native cloud connection configuration */
 export declare interface CspmMonitorAwsOfferingNativeCloudConnection {
@@ -2179,6 +2401,34 @@ export declare interface CspmMonitorAwsOfferingNativeCloudConnection {
     cloudRoleArn?: string;
 }
 
+/** The CSPM monitoring for AzureDevOps offering */
+export declare interface CspmMonitorAzureDevOpsOffering extends CloudOffering {
+    /** Polymorphic discriminator, which specifies the different types this object can be */
+    offeringType: "CspmMonitorAzureDevOps";
+}
+
+/** The CSPM monitoring for GCP offering */
+export declare interface CspmMonitorGcpOffering extends CloudOffering {
+    /** Polymorphic discriminator, which specifies the different types this object can be */
+    offeringType: "CspmMonitorGcp";
+    /** The native cloud connection configuration */
+    nativeCloudConnection?: CspmMonitorGcpOfferingNativeCloudConnection;
+}
+
+/** The native cloud connection configuration */
+export declare interface CspmMonitorGcpOfferingNativeCloudConnection {
+    /** The GCP workload identity provider id for the offering */
+    workloadIdentityProviderId?: string;
+    /** The service account email address in GCP for this offering */
+    serviceAccountEmailAddress?: string;
+}
+
+/** The CSPM monitoring for github offering */
+export declare interface CspmMonitorGithubOffering extends CloudOffering {
+    /** Polymorphic discriminator, which specifies the different types this object can be */
+    offeringType: "CspmMonitorGithub";
+}
+
 /** A custom alert rule. */
 export declare interface CustomAlertRule {
     /** Polymorphic discriminator, which specifies the different types this object can be */
@@ -2200,7 +2450,7 @@ export declare interface CustomAlertRule {
 export declare type CustomAlertRuleUnion = CustomAlertRule | ThresholdCustomAlertRuleUnion | ListCustomAlertRuleUnion;
 
 /** Custom Assessment Automation */
-export declare type CustomAssessmentAutomation = Resource & {
+export declare interface CustomAssessmentAutomation extends Resource {
     /**
      * Azure Resource Manager metadata containing createdBy and modifiedBy information.
      * NOTE: This property will not be serialized. It can only be populated by the server.
@@ -2220,10 +2470,10 @@ export declare type CustomAssessmentAutomation = Resource & {
     remediationDescription?: string;
     /** The assessment metadata key used when an assessment is generated for this assessment automation. */
     assessmentKey?: string;
-};
+}
 
 /** Custom Assessment Automation request */
-export declare type CustomAssessmentAutomationRequest = Resource & {
+export declare interface CustomAssessmentAutomationRequest extends Resource {
     /** Base 64 encoded KQL query representing the assessment automation results required. */
     compressedQuery?: string;
     /** Relevant cloud for the custom assessment automation. */
@@ -2236,7 +2486,7 @@ export declare type CustomAssessmentAutomationRequest = Resource & {
     description?: string;
     /** The remediation description to relate to the assessments generated by this assessment automation. */
     remediationDescription?: string;
-};
+}
 
 /** Interface representing a CustomAssessmentAutomations. */
 export declare interface CustomAssessmentAutomations {
@@ -2338,7 +2588,7 @@ export declare interface CustomAssessmentAutomationsListResult {
 }
 
 /** Custom entity store assignment */
-export declare type CustomEntityStoreAssignment = Resource & {
+export declare interface CustomEntityStoreAssignment extends Resource {
     /**
      * Azure Resource Manager metadata containing createdBy and modifiedBy information.
      * NOTE: This property will not be serialized. It can only be populated by the server.
@@ -2348,7 +2598,7 @@ export declare type CustomEntityStoreAssignment = Resource & {
     principal?: string;
     /** The link to entity store database. */
     entityStoreDatabaseLink?: string;
-};
+}
 
 /** describes the custom entity store assignment request */
 export declare interface CustomEntityStoreAssignmentRequest {
@@ -2482,10 +2732,12 @@ export declare interface Cvss {
 }
 
 /** Represents a data export setting */
-export declare type DataExportSettings = Setting & {
+export declare interface DataExportSettings extends Setting {
+    /** Polymorphic discriminator, which specifies the different types this object can be */
+    kind: "DataExportSettings";
     /** Is the data export setting enabled */
     enabled?: boolean;
-};
+}
 
 /**
  * Defines values for DataSource. \
@@ -2496,8 +2748,36 @@ export declare type DataExportSettings = Setting & {
  */
 export declare type DataSource = string;
 
-/** The Defender for Containers AWS offering configurations */
-export declare type DefenderForContainersAwsOffering = CloudOffering & {
+/** The Defender for Databases AWS offering */
+export declare interface DefenderFoDatabasesAwsOffering extends CloudOffering {
+    /** Polymorphic discriminator, which specifies the different types this object can be */
+    offeringType: "DefenderForDatabasesAws";
+    /** The ARC autoprovisioning configuration */
+    arcAutoProvisioning?: DefenderFoDatabasesAwsOfferingArcAutoProvisioning;
+}
+
+/** The ARC autoprovisioning configuration */
+export declare interface DefenderFoDatabasesAwsOfferingArcAutoProvisioning {
+    /** Is arc auto provisioning enabled */
+    enabled?: boolean;
+    /** The cloud role ARN in AWS for this feature */
+    cloudRoleArn?: string;
+    /** Metadata of Service Principal secret for autoprovisioning */
+    servicePrincipalSecretMetadata?: DefenderFoDatabasesAwsOfferingArcAutoProvisioningServicePrincipalSecretMetadata;
+}
+
+/** Metadata of Service Principal secret for autoprovisioning */
+export declare interface DefenderFoDatabasesAwsOfferingArcAutoProvisioningServicePrincipalSecretMetadata {
+    /** expiration date of service principal secret */
+    expiryDate?: Date;
+    /** region of parameter store where secret is kept */
+    parameterStoreRegion?: string;
+    /** name of secret resource in parameter store */
+    parameterNameInStore?: string;
+}
+
+/** The Defender for Containers AWS offering */
+export declare interface DefenderForContainersAwsOffering extends CloudOffering {
     /** Polymorphic discriminator, which specifies the different types this object can be */
     offeringType: "DefenderForContainersAws";
     /** The kubernetes service connection configuration */
@@ -2508,47 +2788,147 @@ export declare type DefenderForContainersAwsOffering = CloudOffering & {
     cloudWatchToKinesis?: DefenderForContainersAwsOfferingCloudWatchToKinesis;
     /** The kinesis to s3 connection configuration */
     kinesisToS3?: DefenderForContainersAwsOfferingKinesisToS3;
-};
+    /** The container vulnerability assessment configuration */
+    containerVulnerabilityAssessment?: DefenderForContainersAwsOfferingContainerVulnerabilityAssessment;
+    /** The container vulnerability assessment task configuration */
+    containerVulnerabilityAssessmentTask?: DefenderForContainersAwsOfferingContainerVulnerabilityAssessmentTask;
+    /** Enable container vulnerability assessment feature */
+    enableContainerVulnerabilityAssessment?: boolean;
+    /** Is audit logs pipeline auto provisioning enabled */
+    autoProvisioning?: boolean;
+    /** The retention time in days of kube audit logs set on the CloudWatch log group */
+    kubeAuditRetentionTime?: number;
+    /** The externalId used by the data reader to prevent the confused deputy attack */
+    scubaExternalId?: string;
+}
 
 /** The cloudwatch to kinesis connection configuration */
 export declare interface DefenderForContainersAwsOfferingCloudWatchToKinesis {
+    /** The cloud role ARN in AWS used by CloudWatch to transfer data into Kinesis */
+    cloudRoleArn?: string;
+}
+
+/** The container vulnerability assessment configuration */
+export declare interface DefenderForContainersAwsOfferingContainerVulnerabilityAssessment {
+    /** The cloud role ARN in AWS for this feature */
+    cloudRoleArn?: string;
+}
+
+/** The container vulnerability assessment task configuration */
+export declare interface DefenderForContainersAwsOfferingContainerVulnerabilityAssessmentTask {
     /** The cloud role ARN in AWS for this feature */
     cloudRoleArn?: string;
 }
 
 /** The kinesis to s3 connection configuration */
 export declare interface DefenderForContainersAwsOfferingKinesisToS3 {
-    /** The cloud role ARN in AWS for this feature */
+    /** The cloud role ARN in AWS used by Kinesis to transfer data into S3 */
     cloudRoleArn?: string;
 }
 
 /** The kubernetes to scuba connection configuration */
 export declare interface DefenderForContainersAwsOfferingKubernetesScubaReader {
-    /** The cloud role ARN in AWS for this feature */
+    /** The cloud role ARN in AWS for this feature used for reading data */
     cloudRoleArn?: string;
 }
 
 /** The kubernetes service connection configuration */
 export declare interface DefenderForContainersAwsOfferingKubernetesService {
-    /** The cloud role ARN in AWS for this feature */
+    /** The cloud role ARN in AWS for this feature used for provisioning resources */
     cloudRoleArn?: string;
 }
 
-/** The Defender for Servers AWS offering configurations */
-export declare type DefenderForServersAwsOffering = CloudOffering & {
+/** The containers GCP offering */
+export declare interface DefenderForContainersGcpOffering extends CloudOffering {
     /** Polymorphic discriminator, which specifies the different types this object can be */
-    offeringType: "DefenderForServersAws";
-    /** The Defender for servers connection configuration */
-    defenderForServers?: DefenderForServersAwsOfferingDefenderForServers;
-    /** The ARC autoprovisioning configuration */
-    arcAutoProvisioning?: DefenderForServersAwsOfferingArcAutoProvisioning;
-};
+    offeringType: "DefenderForContainersGcp";
+    /** The native cloud connection configuration */
+    nativeCloudConnection?: DefenderForContainersGcpOfferingNativeCloudConnection;
+    /** The native cloud connection configuration */
+    dataPipelineNativeCloudConnection?: DefenderForContainersGcpOfferingDataPipelineNativeCloudConnection;
+    /** Is audit logs data collection enabled */
+    auditLogsAutoProvisioningFlag?: boolean;
+    /** Is Microsoft Defender for Cloud Kubernetes agent auto provisioning enabled */
+    defenderAgentAutoProvisioningFlag?: boolean;
+    /** Is Policy Kubernetes agent auto provisioning enabled */
+    policyAgentAutoProvisioningFlag?: boolean;
+}
 
-/** The ARC autoprovisioning configuration */
-export declare interface DefenderForServersAwsOfferingArcAutoProvisioning {
-    /** Is arc auto provisioning enabled */
-    enabled?: boolean;
-    /** Metadata of Service Principal secret for autoprovisioning */
+/** The native cloud connection configuration */
+export declare interface DefenderForContainersGcpOfferingDataPipelineNativeCloudConnection {
+    /** The data collection service account email address in GCP for this offering */
+    serviceAccountEmailAddress?: string;
+    /** The data collection GCP workload identity provider id for this offering */
+    workloadIdentityProviderId?: string;
+}
+
+/** The native cloud connection configuration */
+export declare interface DefenderForContainersGcpOfferingNativeCloudConnection {
+    /** The service account email address in GCP for this offering */
+    serviceAccountEmailAddress?: string;
+    /** The GCP workload identity provider id for this offering */
+    workloadIdentityProviderId?: string;
+}
+
+/** The Defender for Databases GCP offering configurations */
+export declare interface DefenderForDatabasesGcpOffering extends CloudOffering {
+    /** Polymorphic discriminator, which specifies the different types this object can be */
+    offeringType: "DefenderForDatabasesGcp";
+    /** The ARC autoprovisioning configuration */
+    arcAutoProvisioning?: DefenderForDatabasesGcpOfferingArcAutoProvisioning;
+    /** The native cloud connection configuration */
+    defenderForDatabasesArcAutoProvisioning?: DefenderForDatabasesGcpOfferingDefenderForDatabasesArcAutoProvisioning;
+}
+
+/** The ARC autoprovisioning configuration */
+export declare interface DefenderForDatabasesGcpOfferingArcAutoProvisioning {
+    /** Is arc auto provisioning enabled */
+    enabled?: boolean;
+    /** Configuration for ARC autoprovisioning */
+    configuration?: DefenderForDatabasesGcpOfferingArcAutoProvisioningConfiguration;
+}
+
+/** Configuration for ARC autoprovisioning */
+export declare interface DefenderForDatabasesGcpOfferingArcAutoProvisioningConfiguration {
+    /** The Azure service principal client id for agent onboarding */
+    clientId?: string;
+    /** The agent onboarding service account numeric id */
+    agentOnboardingServiceAccountNumericId?: string;
+}
+
+/** The native cloud connection configuration */
+export declare interface DefenderForDatabasesGcpOfferingDefenderForDatabasesArcAutoProvisioning {
+    /** The service account email address in GCP for this offering */
+    serviceAccountEmailAddress?: string;
+    /** The GCP workload identity provider id for this offering */
+    workloadIdentityProviderId?: string;
+}
+
+/** The Defender for Servers AWS offering */
+export declare interface DefenderForServersAwsOffering extends CloudOffering {
+    /** Polymorphic discriminator, which specifies the different types this object can be */
+    offeringType: "DefenderForServersAws";
+    /** The Defender for servers connection configuration */
+    defenderForServers?: DefenderForServersAwsOfferingDefenderForServers;
+    /** The ARC autoprovisioning configuration */
+    arcAutoProvisioning?: DefenderForServersAwsOfferingArcAutoProvisioning;
+    /** The Vulnerability Assessment autoprovisioning configuration */
+    vaAutoProvisioning?: DefenderForServersAwsOfferingVaAutoProvisioning;
+    /** The Microsoft Defender for Endpoint autoprovisioning configuration */
+    mdeAutoProvisioning?: DefenderForServersAwsOfferingMdeAutoProvisioning;
+    /** configuration for the servers offering subPlan */
+    subPlan?: DefenderForServersAwsOfferingSubPlan;
+    /** The Microsoft Defender for Server VM scanning configuration */
+    vmScanners?: DefenderForServersAwsOfferingVmScanners;
+}
+
+/** The ARC autoprovisioning configuration */
+export declare interface DefenderForServersAwsOfferingArcAutoProvisioning {
+    /** Is arc auto provisioning enabled */
+    enabled?: boolean;
+    /** The cloud role ARN in AWS for this feature */
+    cloudRoleArn?: string;
+    /** Metadata of Service Principal secret for autoprovisioning */
     servicePrincipalSecretMetadata?: DefenderForServersAwsOfferingArcAutoProvisioningServicePrincipalSecretMetadata;
 }
 
@@ -2568,16 +2948,130 @@ export declare interface DefenderForServersAwsOfferingDefenderForServers {
     cloudRoleArn?: string;
 }
 
+/** The Microsoft Defender for Endpoint autoprovisioning configuration */
+export declare interface DefenderForServersAwsOfferingMdeAutoProvisioning {
+    /** Is Microsoft Defender for Endpoint auto provisioning enabled */
+    enabled?: boolean;
+    /** configuration for Microsoft Defender for Endpoint autoprovisioning */
+    configuration?: Record<string, unknown>;
+}
+
+/** configuration for the servers offering subPlan */
+export declare interface DefenderForServersAwsOfferingSubPlan {
+    /** The available sub plans */
+    type?: SubPlan;
+}
+
+/** The Vulnerability Assessment autoprovisioning configuration */
+export declare interface DefenderForServersAwsOfferingVaAutoProvisioning {
+    /** Is Vulnerability Assessment auto provisioning enabled */
+    enabled?: boolean;
+    /** configuration for Vulnerability Assessment autoprovisioning */
+    configuration?: DefenderForServersAwsOfferingVaAutoProvisioningConfiguration;
+}
+
+/** configuration for Vulnerability Assessment autoprovisioning */
+export declare interface DefenderForServersAwsOfferingVaAutoProvisioningConfiguration {
+    /** The Vulnerability Assessment solution to be provisioned. Can be either 'TVM' or 'Qualys' */
+    type?: Type;
+}
+
+/** The Microsoft Defender for Server VM scanning configuration */
+export declare interface DefenderForServersAwsOfferingVmScanners {
+    /** Is Microsoft Defender for Server VM scanning enabled */
+    enabled?: boolean;
+    /** configuration for Microsoft Defender for Server VM scanning */
+    configuration?: DefenderForServersAwsOfferingVmScannersConfiguration;
+}
+
+/** configuration for Microsoft Defender for Server VM scanning */
+export declare interface DefenderForServersAwsOfferingVmScannersConfiguration {
+    /** The cloud role ARN in AWS for this feature */
+    cloudRoleArn?: string;
+    /** The scanning mode for the vm scan. */
+    scanningMode?: ScanningMode;
+    /** VM tags that indicates that VM should not be scanned */
+    exclusionTags?: Record<string, unknown>;
+}
+
+/** The Defender for Servers GCP offering configurations */
+export declare interface DefenderForServersGcpOffering extends CloudOffering {
+    /** Polymorphic discriminator, which specifies the different types this object can be */
+    offeringType: "DefenderForServersGcp";
+    /** The Defender for servers connection configuration */
+    defenderForServers?: DefenderForServersGcpOfferingDefenderForServers;
+    /** The ARC autoprovisioning configuration */
+    arcAutoProvisioning?: DefenderForServersGcpOfferingArcAutoProvisioning;
+    /** The Vulnerability Assessment autoprovisioning configuration */
+    vaAutoProvisioning?: DefenderForServersGcpOfferingVaAutoProvisioning;
+    /** The Microsoft Defender for Endpoint autoprovisioning configuration */
+    mdeAutoProvisioning?: DefenderForServersGcpOfferingMdeAutoProvisioning;
+    /** configuration for the servers offering subPlan */
+    subPlan?: DefenderForServersGcpOfferingSubPlan;
+}
+
+/** The ARC autoprovisioning configuration */
+export declare interface DefenderForServersGcpOfferingArcAutoProvisioning {
+    /** Is arc auto provisioning enabled */
+    enabled?: boolean;
+    /** Configuration for ARC autoprovisioning */
+    configuration?: DefenderForServersGcpOfferingArcAutoProvisioningConfiguration;
+}
+
+/** Configuration for ARC autoprovisioning */
+export declare interface DefenderForServersGcpOfferingArcAutoProvisioningConfiguration {
+    /** The Azure service principal client id for agent onboarding */
+    clientId?: string;
+    /** The agent onboarding service account numeric id */
+    agentOnboardingServiceAccountNumericId?: string;
+}
+
+/** The Defender for servers connection configuration */
+export declare interface DefenderForServersGcpOfferingDefenderForServers {
+    /** The workload identity provider id in GCP for this feature */
+    workloadIdentityProviderId?: string;
+    /** The service account email address in GCP for this feature */
+    serviceAccountEmailAddress?: string;
+}
+
+/** The Microsoft Defender for Endpoint autoprovisioning configuration */
+export declare interface DefenderForServersGcpOfferingMdeAutoProvisioning {
+    /** Is Microsoft Defender for Endpoint auto provisioning enabled */
+    enabled?: boolean;
+    /** configuration for Microsoft Defender for Endpoint autoprovisioning */
+    configuration?: Record<string, unknown>;
+}
+
+/** configuration for the servers offering subPlan */
+export declare interface DefenderForServersGcpOfferingSubPlan {
+    /** The available sub plans */
+    type?: SubPlan;
+}
+
+/** The Vulnerability Assessment autoprovisioning configuration */
+export declare interface DefenderForServersGcpOfferingVaAutoProvisioning {
+    /** Is Vulnerability Assessment auto provisioning enabled */
+    enabled?: boolean;
+    /** configuration for Vulnerability Assessment autoprovisioning */
+    configuration?: DefenderForServersGcpOfferingVaAutoProvisioningConfiguration;
+}
+
+/** configuration for Vulnerability Assessment autoprovisioning */
+export declare interface DefenderForServersGcpOfferingVaAutoProvisioningConfiguration {
+    /** The Vulnerability Assessment solution to be provisioned. Can be either 'TVM' or 'Qualys' */
+    type?: Type;
+}
+
 /** A custom alert rule that checks if a value (depends on the custom alert type) is denied. */
-export declare type DenylistCustomAlertRule = ListCustomAlertRule & {
+export declare interface DenylistCustomAlertRule extends ListCustomAlertRule {
     /** Polymorphic discriminator, which specifies the different types this object can be */
     ruleType: "DenylistCustomAlertRule";
     /** The values to deny. The format of the values depends on the rule type. */
     denylistValues: string[];
-};
+}
 
 /** The device security group resource */
-export declare type DeviceSecurityGroup = Resource & {
+export declare interface DeviceSecurityGroup extends Resource {
     /** The list of custom alert threshold rules. */
     thresholdRules?: ThresholdCustomAlertRuleUnion[];
     /** The list of custom alert time-window rules. */
@@ -2586,7 +3080,7 @@ export declare type DeviceSecurityGroup = Resource & {
     allowlistRules?: AllowlistCustomAlertRuleUnion[];
     /** The deny-list custom alert rules. */
     denylistRules?: DenylistCustomAlertRule[];
-};
+}
 
 /** List of device security groups */
 export declare interface DeviceSecurityGroupList {
@@ -2677,12 +3171,12 @@ export declare type DeviceSecurityGroupsListResponse = DeviceSecurityGroupList;
 export declare type Direction = string;
 
 /** Number of direct method invokes is not in allowed range. */
-export declare type DirectMethodInvokesNotInAllowedRange = TimeWindowCustomAlertRule & {
+export declare interface DirectMethodInvokesNotInAllowedRange extends TimeWindowCustomAlertRule {
     /** Polymorphic discriminator, which specifies the different types this object can be */
     ruleType: "DirectMethodInvokesNotInAllowedRange";
-};
+}
 
-export declare type DiscoveredSecuritySolution = Resource & Location_2 & {
+export declare interface DiscoveredSecuritySolution extends Resource, Location_2 {
     /** The security family of the discovered solution */
     securityFamily: SecurityFamily;
     /** The security solutions' image offer */
@@ -2691,7 +3185,7 @@ export declare type DiscoveredSecuritySolution = Resource & Location_2 & {
     publisher: string;
     /** The security solutions' image sku */
     sku: string;
-};
+}
 
 export declare interface DiscoveredSecuritySolutionList {
     value?: DiscoveredSecuritySolution[];
@@ -2806,6 +3300,26 @@ export declare type EnforcementMode = string;
  */
 export declare type EnforcementSupport = string;
 
+/** The security connector environment data. */
+export declare interface EnvironmentData {
+    /** Polymorphic discriminator, which specifies the different types this object can be */
+    environmentType: "AwsAccount" | "GcpProject" | "GithubScope" | "AzureDevOpsScope";
+}
+
+export declare type EnvironmentDataUnion = EnvironmentData | AWSEnvironmentData | GcpProjectEnvironmentData | GithubScopeEnvironmentData | AzureDevOpsScopeEnvironmentData;
+
+/**
+ * Defines values for EnvironmentType. \
+ * {@link KnownEnvironmentType} can be used interchangeably with EnvironmentType,
+ *  this enum contains the known values that the service supports.
+ * ### Known values supported by the service
+ * **AwsAccount** \
+ * **GcpProject** \
+ * **GithubScope** \
+ * **AzureDevOpsScope**
+ */
+export declare type EnvironmentType = string;
+
 /** The resource management error additional info. */
 export declare interface ErrorAdditionalInfo {
     /**
@@ -2846,6 +3360,21 @@ export declare interface ETag {
 declare type EventSource_2 = string;
 export { EventSource_2 as EventSource }
 
+/** Governance rule execution parameters */
+export declare interface ExecuteGovernanceRuleParams {
+    /** Describe if governance rule should be override */
+    override?: boolean;
+}
+
+/** Execute status of Security GovernanceRule over a given scope */
+export declare interface ExecuteRuleStatus {
+    /**
+     * Unique key for the execution of GovernanceRule
+     * NOTE: This property will not be serialized. It can only be populated by the server.
+     */
+    readonly operationId?: string;
+}
+
 /**
  * Defines values for ExpandControlsEnum. \
  * {@link KnownExpandControlsEnum} can be used interchangeably with ExpandControlsEnum,
@@ -2874,8 +3403,9 @@ export declare type ExpandEnum = string;
  */
 export declare type ExportData = string;
 
-/** Represents a security solution external to Azure Security Center which sends information to an OMS workspace and whose data is displayed by Azure Security Center. */
-export declare type ExternalSecuritySolution = Resource & ExternalSecuritySolutionKindAutoGenerated & Location_2 & {};
+/** Represents a security solution external to Microsoft Defender for Cloud which sends information to an OMS workspace and whose data is displayed by Microsoft Defender for Cloud. */
+export declare interface ExternalSecuritySolution extends Resource, ExternalSecuritySolutionKindAutoGenerated, Location_2 {
+}
 
 /**
  * Defines values for ExternalSecuritySolutionKind. \
@@ -2895,7 +3425,7 @@ export declare interface ExternalSecuritySolutionKindAutoGenerated {
 }
 
 export declare interface ExternalSecuritySolutionList {
-    value?: ExternalSecuritySolutionUnion[];
+    value?: ExternalSecuritySolution[];
     /**
      * The URI to fetch the next page.
      * NOTE: This property will not be serialized. It can only be populated by the server.
@@ -2919,14 +3449,14 @@ export declare interface ExternalSecuritySolutions {
      * Gets a list of external security solutions for the subscription.
      * @param options The options parameters.
      */
-    list(options?: ExternalSecuritySolutionsListOptionalParams): PagedAsyncIterableIterator<ExternalSecuritySolutionUnion>;
+    list(options?: ExternalSecuritySolutionsListOptionalParams): PagedAsyncIterableIterator<ExternalSecuritySolution>;
     /**
      * Gets a list of external Security Solutions for the subscription and location.
      * @param ascLocation The location where ASC stores the data of the subscription. can be retrieved from
      *                    Get locations
      * @param options The options parameters.
      */
-    listByHomeRegion(ascLocation: string, options?: ExternalSecuritySolutionsListByHomeRegionOptionalParams): PagedAsyncIterableIterator<ExternalSecuritySolutionUnion>;
+    listByHomeRegion(ascLocation: string, options?: ExternalSecuritySolutionsListByHomeRegionOptionalParams): PagedAsyncIterableIterator<ExternalSecuritySolution>;
     /**
      * Gets a specific external Security Solution.
      * @param resourceGroupName The name of the resource group within the user's subscription. The name is
@@ -2944,7 +3474,7 @@ export declare interface ExternalSecuritySolutionsGetOptionalParams extends core
 }
 
 /** Contains response data for the get operation. */
-export declare type ExternalSecuritySolutionsGetResponse = ExternalSecuritySolutionUnion;
+export declare type ExternalSecuritySolutionsGetResponse = ExternalSecuritySolution;
 
 /** Optional parameters. */
 export declare interface ExternalSecuritySolutionsListByHomeRegionNextOptionalParams extends coreClient.OperationOptions {
@@ -2974,13 +3504,11 @@ export declare interface ExternalSecuritySolutionsListOptionalParams extends cor
 /** Contains response data for the list operation. */
 export declare type ExternalSecuritySolutionsListResponse = ExternalSecuritySolutionList;
 
-export declare type ExternalSecuritySolutionUnion = ExternalSecuritySolution | CefExternalSecuritySolution | AtaExternalSecuritySolution | AadExternalSecuritySolution;
-
 /** Number of failed local logins is not in allowed range. */
-export declare type FailedLocalLoginsNotInAllowedRange = TimeWindowCustomAlertRule & {
+export declare interface FailedLocalLoginsNotInAllowedRange extends TimeWindowCustomAlertRule {
     /** Polymorphic discriminator, which specifies the different types this object can be */
     ruleType: "FailedLocalLoginsNotInAllowedRange";
-};
+}
 
 /**
  * Defines values for FileType. \
@@ -2997,13 +3525,13 @@ export declare type FailedLocalLoginsNotInAllowedRange = TimeWindowCustomAlertRu
 export declare type FileType = string;
 
 /** Number of file uploads is not in allowed range. */
-export declare type FileUploadsNotInAllowedRange = TimeWindowCustomAlertRule & {
+export declare interface FileUploadsNotInAllowedRange extends TimeWindowCustomAlertRule {
     /** Polymorphic discriminator, which specifies the different types this object can be */
     ruleType: "FileUploadsNotInAllowedRange";
-};
+}
 
 /** GCP cloud account connector based service to service credentials, the credentials are composed of the organization ID and a JSON API key (write only) */
-export declare type GcpCredentialsDetailsProperties = AuthenticationDetailsProperties & {
+export declare interface GcpCredentialsDetailsProperties extends AuthenticationDetailsProperties {
     /** Polymorphic discriminator, which specifies the different types this object can be */
     authenticationType: "gcpCredentials";
     /** The organization ID of the GCP cloud account */
@@ -3028,25 +3556,438 @@ export declare type GcpCredentialsDetailsProperties = AuthenticationDetailsPrope
     authProviderX509CertUrl: string;
     /** Client x509 certificate URL field of the API key (write only) */
     clientX509CertUrl: string;
-};
+}
+
+/** The gcpOrganization data */
+export declare interface GcpOrganizationalData {
+    /** Polymorphic discriminator, which specifies the different types this object can be */
+    organizationMembershipType: "Organization" | "Member";
+}
+
+/** The gcpOrganization data for the member account */
+export declare interface GcpOrganizationalDataMember extends GcpOrganizationalData {
+    /** Polymorphic discriminator, which specifies the different types this object can be */
+    organizationMembershipType: "Member";
+    /** If the multi cloud account is not of membership type organization, this will be the ID of the project's parent */
+    parentHierarchyId?: string;
+    /** The GCP management project number from organizational onboarding */
+    managementProjectNumber?: string;
+}
+
+/** The gcpOrganization data for the parent account */
+export declare interface GcpOrganizationalDataOrganization extends GcpOrganizationalData {
+    /** Polymorphic discriminator, which specifies the different types this object can be */
+    organizationMembershipType: "Organization";
+    /** If the multi cloud account is of membership type organization, list of accounts excluded from offering */
+    excludedProjectNumbers?: string[];
+    /** The service account email address which represents the organization level permissions container. */
+    serviceAccountEmailAddress?: string;
+    /** The GCP workload identity provider id which represents the permissions required to auto provision security connectors */
+    workloadIdentityProviderId?: string;
+}
+
+export declare type GcpOrganizationalDataUnion = GcpOrganizationalData | GcpOrganizationalDataOrganization | GcpOrganizationalDataMember;
+
+/** The details about the project represented by the security connector */
+export declare interface GcpProjectDetails {
+    /** The unique GCP Project number */
+    projectNumber?: string;
+    /** The GCP Project id */
+    projectId?: string;
+    /**
+     * The GCP workload identity federation pool id
+     * NOTE: This property will not be serialized. It can only be populated by the server.
+     */
+    readonly workloadIdentityPoolId?: string;
+}
+
+/** The GCP project connector environment data */
+export declare interface GcpProjectEnvironmentData extends EnvironmentData {
+    /** Polymorphic discriminator, which specifies the different types this object can be */
+    environmentType: "GcpProject";
+    /** The Gcp project's organizational data */
+    organizationalData?: GcpOrganizationalDataUnion;
+    /** The Gcp project's details */
+    projectDetails?: GcpProjectDetails;
+}
+
+/** The github scope connector's environment data */
+export declare interface GithubScopeEnvironmentData extends EnvironmentData {
+    /** Polymorphic discriminator, which specifies the different types this object can be */
+    environmentType: "GithubScope";
+}
+
+/** Security GovernanceAssignment over a given scope */
+export declare interface GovernanceAssignment extends Resource {
+    /** The Owner for the governance assignment - e.g. user@contoso.com - see example */
+    owner?: string;
+    /** The remediation due-date - after this date Secure Score will be affected (in case of  active grace-period) */
+    remediationDueDate?: Date;
+    /** The ETA (estimated time of arrival) for remediation (optional), see example */
+    remediationEta?: RemediationEta;
+    /** Defines whether there is a grace period on the governance assignment */
+    isGracePeriod?: boolean;
+    /** The email notifications settings for the governance rule, states whether to disable notifications for mangers and owners */
+    governanceEmailNotification?: GovernanceEmailNotification;
+    /** The additional data for the governance assignment - e.g. links to ticket (optional), see example */
+    additionalData?: GovernanceAssignmentAdditionalData;
+}
+
+/** Describe the additional data of GovernanceAssignment - optional */
+export declare interface GovernanceAssignmentAdditionalData {
+    /** Ticket number associated with this GovernanceAssignment */
+    ticketNumber?: number;
+    /** Ticket link associated with this GovernanceAssignment - for example: https://snow.com */
+    ticketLink?: string;
+    /** The ticket status associated with this GovernanceAssignment - for example: Active */
+    ticketStatus?: string;
+}
+
+/** Interface representing a GovernanceAssignments. */
+export declare interface GovernanceAssignments {
+    /**
+     * Get security governanceAssignments on all your resources inside a scope
+     * @param scope Scope of the query, can be subscription
+     *              (/subscriptions/0b06d9ea-afe6-4779-bd59-30e5c2d9d13f) or management group
+     *              (/providers/Microsoft.Management/managementGroups/mgName).
+     * @param assessmentName The Assessment Key - Unique key for the assessment type
+     * @param options The options parameters.
+     */
+    list(scope: string, assessmentName: string, options?: GovernanceAssignmentsListOptionalParams): PagedAsyncIterableIterator<GovernanceAssignment>;
+    /**
+     * Get a specific governanceAssignment for the requested scope by AssignmentKey
+     * @param scope Scope of the query, can be subscription
+     *              (/subscriptions/0b06d9ea-afe6-4779-bd59-30e5c2d9d13f) or management group
+     *              (/providers/Microsoft.Management/managementGroups/mgName).
+     * @param assessmentName The Assessment Key - Unique key for the assessment type
+     * @param assignmentKey The security governance assignment key - the assessment key of the required
+     *                      governance assignment
+     * @param options The options parameters.
+     */
+    get(scope: string, assessmentName: string, assignmentKey: string, options?: GovernanceAssignmentsGetOptionalParams): Promise<GovernanceAssignmentsGetResponse>;
+    /**
+     * Creates or update a security GovernanceAssignment on the given subscription.
+     * @param scope Scope of the query, can be subscription
+     *              (/subscriptions/0b06d9ea-afe6-4779-bd59-30e5c2d9d13f) or management group
+     *              (/providers/Microsoft.Management/managementGroups/mgName).
+     * @param assessmentName The Assessment Key - Unique key for the assessment type
+     * @param assignmentKey The security governance assignment key - the assessment key of the required
+     *                      governance assignment
+     * @param governanceAssignment GovernanceAssignment over a subscription scope
+     * @param options The options parameters.
+     */
+    createOrUpdate(scope: string, assessmentName: string, assignmentKey: string, governanceAssignment: GovernanceAssignment, options?: GovernanceAssignmentsCreateOrUpdateOptionalParams): Promise<GovernanceAssignmentsCreateOrUpdateResponse>;
+    /**
+     * Delete a GovernanceAssignment over a given scope
+     * @param scope Scope of the query, can be subscription
+     *              (/subscriptions/0b06d9ea-afe6-4779-bd59-30e5c2d9d13f) or management group
+     *              (/providers/Microsoft.Management/managementGroups/mgName).
+     * @param assessmentName The Assessment Key - Unique key for the assessment type
+     * @param assignmentKey The security governance assignment key - the assessment key of the required
+     *                      governance assignment
+     * @param options The options parameters.
+     */
+    delete(scope: string, assessmentName: string, assignmentKey: string, options?: GovernanceAssignmentsDeleteOptionalParams): Promise<void>;
+}
+
+/** Optional parameters. */
+export declare interface GovernanceAssignmentsCreateOrUpdateOptionalParams extends coreClient.OperationOptions {
+}
+
+/** Contains response data for the createOrUpdate operation. */
+export declare type GovernanceAssignmentsCreateOrUpdateResponse = GovernanceAssignment;
+
+/** Optional parameters. */
+export declare interface GovernanceAssignmentsDeleteOptionalParams extends coreClient.OperationOptions {
+}
+
+/** Optional parameters. */
+export declare interface GovernanceAssignmentsGetOptionalParams extends coreClient.OperationOptions {
+}
+
+/** Contains response data for the get operation. */
+export declare type GovernanceAssignmentsGetResponse = GovernanceAssignment;
+
+/** Page of a security governance assignments list */
+export declare interface GovernanceAssignmentsList {
+    /**
+     * Collection of governance assignments in this page
+     * NOTE: This property will not be serialized. It can only be populated by the server.
+     */
+    readonly value?: GovernanceAssignment[];
+    /**
+     * The URI to fetch the next page
+     * NOTE: This property will not be serialized. It can only be populated by the server.
+     */
+    readonly nextLink?: string;
+}
+
+/** Optional parameters. */
+export declare interface GovernanceAssignmentsListNextOptionalParams extends coreClient.OperationOptions {
+}
+
+/** Contains response data for the listNext operation. */
+export declare type GovernanceAssignmentsListNextResponse = GovernanceAssignmentsList;
+
+/** Optional parameters. */
+export declare interface GovernanceAssignmentsListOptionalParams extends coreClient.OperationOptions {
+}
+
+/** Contains response data for the list operation. */
+export declare type GovernanceAssignmentsListResponse = GovernanceAssignmentsList;
+
+/** The governance email weekly notification configuration. */
+export declare interface GovernanceEmailNotification {
+    /** Exclude manager from weekly email notification. */
+    disableManagerEmailNotification?: boolean;
+    /** Exclude  owner from weekly email notification. */
+    disableOwnerEmailNotification?: boolean;
+}
+
+/** Security GovernanceRule over a given scope */
+export declare interface GovernanceRule extends Resource {
+    /** display name of the governanceRule */
+    displayName?: string;
+    /** description of the governanceRule */
+    description?: string;
+    /** Governance rule remediation timeframe - this is the time that will affect on the grace-period duration e.g. 7.00:00:00 - means 7 days */
+    remediationTimeframe?: string;
+    /** Defines whether there is a grace period on the governance rule */
+    isGracePeriod?: boolean;
+    /** The governance rule priority, priority to the lower number. Rules with the same priority on the same subscription will not be allowed */
+    rulePriority?: number;
+    /** Defines whether the rule is active/inactive */
+    isDisabled?: boolean;
+    /** The rule type of the governance rule, defines the source of the rule e.g. Integrated */
+    ruleType?: GovernanceRuleType;
+    /** The governance rule source, what the rule affects, e.g. Assessments */
+    sourceResourceType?: GovernanceRuleSourceResourceType;
+    /** The governance rule conditionSets - see examples */
+    conditionSets?: Record<string, unknown>[];
+    /** The Owner source for the governance rule - e.g. Manually by user@contoso.com - see example */
+    ownerSource?: GovernanceRuleOwnerSource;
+    /** The email notifications settings for the governance rule, states whether to disable notifications for mangers and owners */
+    governanceEmailNotification?: GovernanceRuleEmailNotification;
+}
+
+/**
+ * Defines values for GovernanceRuleConditionOperator. \
+ * {@link KnownGovernanceRuleConditionOperator} can be used interchangeably with GovernanceRuleConditionOperator,
+ *  this enum contains the known values that the service supports.
+ * ### Known values supported by the service
+ * **Equals**: Checks that the string value of the data defined in Property equals the given value - exact fit \
+ * **In**: Checks that the string value of the data defined in Property equals any of the given values (exact fit)
+ */
+export declare type GovernanceRuleConditionOperator = string;
+
+/** The governance email weekly notification configuration. */
+export declare interface GovernanceRuleEmailNotification {
+    /** Defines whether manager email notifications are disabled. */
+    disableManagerEmailNotification?: boolean;
+    /** Defines whether owner email notifications are disabled. */
+    disableOwnerEmailNotification?: boolean;
+}
+
+/** Page of a security governanceRules list */
+export declare interface GovernanceRuleList {
+    /**
+     * Collection of governanceRules in this page
+     * NOTE: This property will not be serialized. It can only be populated by the server.
+     */
+    readonly value?: GovernanceRule[];
+    /**
+     * The URI to fetch the next page
+     * NOTE: This property will not be serialized. It can only be populated by the server.
+     */
+    readonly nextLink?: string;
+}
+
+/** Optional parameters. */
+export declare interface GovernanceRuleListNextOptionalParams extends coreClient.OperationOptions {
+}
+
+/** Contains response data for the listNext operation. */
+export declare type GovernanceRuleListNextResponse = GovernanceRuleList;
+
+/** Optional parameters. */
+export declare interface GovernanceRuleListOptionalParams extends coreClient.OperationOptions {
+}
+
+/** Contains response data for the list operation. */
+export declare type GovernanceRuleListResponse = GovernanceRuleList;
+
+/** Interface representing a GovernanceRuleOperations. */
+export declare interface GovernanceRuleOperations {
+    /**
+     * Get a list of all relevant governanceRules over a subscription level scope
+     * @param options The options parameters.
+     */
+    list(options?: GovernanceRuleListOptionalParams): PagedAsyncIterableIterator<GovernanceRule>;
+}
+
+/** Describe the owner source of governance rule */
+export declare interface GovernanceRuleOwnerSource {
+    /** The owner type for the governance rule owner source */
+    type?: GovernanceRuleOwnerSourceType;
+    /** The source value e.g. tag key like owner name or email address */
+    value?: string;
+}
+
+/**
+ * Defines values for GovernanceRuleOwnerSourceType. \
+ * {@link KnownGovernanceRuleOwnerSourceType} can be used interchangeably with GovernanceRuleOwnerSourceType,
+ *  this enum contains the known values that the service supports.
+ * ### Known values supported by the service
+ * **ByTag**: The rule source type defined using resource tag \
+ * **Manually**: The rule source type defined manually
+ */
+export declare type GovernanceRuleOwnerSourceType = string;
+
+/** Interface representing a GovernanceRules. */
+export declare interface GovernanceRules {
+    /**
+     * Get a specific governanceRule for the requested scope by ruleId
+     * @param ruleId The security GovernanceRule key - unique key for the standard GovernanceRule
+     * @param options The options parameters.
+     */
+    get(ruleId: string, options?: GovernanceRulesGetOptionalParams): Promise<GovernanceRulesGetResponse>;
+    /**
+     * Creates or update a security GovernanceRule on the given subscription.
+     * @param ruleId The security GovernanceRule key - unique key for the standard GovernanceRule
+     * @param governanceRule GovernanceRule over a subscription scope
+     * @param options The options parameters.
+     */
+    createOrUpdate(ruleId: string, governanceRule: GovernanceRule, options?: GovernanceRulesCreateOrUpdateOptionalParams): Promise<GovernanceRulesCreateOrUpdateResponse>;
+    /**
+     * Delete a GovernanceRule over a given scope
+     * @param ruleId The security GovernanceRule key - unique key for the standard GovernanceRule
+     * @param options The options parameters.
+     */
+    delete(ruleId: string, options?: GovernanceRulesDeleteOptionalParams): Promise<void>;
+    /**
+     * Execute a security GovernanceRule on the given subscription.
+     * @param ruleId The security GovernanceRule key - unique key for the standard GovernanceRule
+     * @param options The options parameters.
+     */
+    beginRuleIdExecuteSingleSubscription(ruleId: string, options?: GovernanceRulesRuleIdExecuteSingleSubscriptionOptionalParams): Promise<PollerLike<PollOperationState<GovernanceRulesRuleIdExecuteSingleSubscriptionResponse>, GovernanceRulesRuleIdExecuteSingleSubscriptionResponse>>;
+    /**
+     * Execute a security GovernanceRule on the given subscription.
+     * @param ruleId The security GovernanceRule key - unique key for the standard GovernanceRule
+     * @param options The options parameters.
+     */
+    beginRuleIdExecuteSingleSubscriptionAndWait(ruleId: string, options?: GovernanceRulesRuleIdExecuteSingleSubscriptionOptionalParams): Promise<GovernanceRulesRuleIdExecuteSingleSubscriptionResponse>;
+    /**
+     * Execute a security GovernanceRule on the given security connector.
+     * @param resourceGroupName The name of the resource group within the user's subscription. The name is
+     *                          case insensitive.
+     * @param securityConnectorName The security connector name.
+     * @param ruleId The security GovernanceRule key - unique key for the standard GovernanceRule
+     * @param options The options parameters.
+     */
+    beginRuleIdExecuteSingleSecurityConnector(resourceGroupName: string, securityConnectorName: string, ruleId: string, options?: GovernanceRulesRuleIdExecuteSingleSecurityConnectorOptionalParams): Promise<PollerLike<PollOperationState<GovernanceRulesRuleIdExecuteSingleSecurityConnectorResponse>, GovernanceRulesRuleIdExecuteSingleSecurityConnectorResponse>>;
+    /**
+     * Execute a security GovernanceRule on the given security connector.
+     * @param resourceGroupName The name of the resource group within the user's subscription. The name is
+     *                          case insensitive.
+     * @param securityConnectorName The security connector name.
+     * @param ruleId The security GovernanceRule key - unique key for the standard GovernanceRule
+     * @param options The options parameters.
+     */
+    beginRuleIdExecuteSingleSecurityConnectorAndWait(resourceGroupName: string, securityConnectorName: string, ruleId: string, options?: GovernanceRulesRuleIdExecuteSingleSecurityConnectorOptionalParams): Promise<GovernanceRulesRuleIdExecuteSingleSecurityConnectorResponse>;
+}
+
+/** Optional parameters. */
+export declare interface GovernanceRulesCreateOrUpdateOptionalParams extends coreClient.OperationOptions {
+}
+
+/** Contains response data for the createOrUpdate operation. */
+export declare type GovernanceRulesCreateOrUpdateResponse = GovernanceRule;
+
+/** Optional parameters. */
+export declare interface GovernanceRulesDeleteOptionalParams extends coreClient.OperationOptions {
+}
+
+/** Optional parameters. */
+export declare interface GovernanceRulesGetOptionalParams extends coreClient.OperationOptions {
+}
+
+/** Contains response data for the get operation. */
+export declare type GovernanceRulesGetResponse = GovernanceRule;
+
+/**
+ * Defines values for GovernanceRuleSourceResourceType. \
+ * {@link KnownGovernanceRuleSourceResourceType} can be used interchangeably with GovernanceRuleSourceResourceType,
+ *  this enum contains the known values that the service supports.
+ * ### Known values supported by the service
+ * **Assessments**: The source of the governance rule is assessments
+ */
+export declare type GovernanceRuleSourceResourceType = string;
+
+/** Defines headers for GovernanceRules_ruleIdExecuteSingleSecurityConnector operation. */
+export declare interface GovernanceRulesRuleIdExecuteSingleSecurityConnectorHeaders {
+    /** Location URL for the execution status */
+    location?: string;
+}
+
+/** Optional parameters. */
+export declare interface GovernanceRulesRuleIdExecuteSingleSecurityConnectorOptionalParams extends coreClient.OperationOptions {
+    /** GovernanceRule over a subscription scope */
+    executeGovernanceRuleParams?: ExecuteGovernanceRuleParams;
+    /** Delay to wait until next poll, in milliseconds. */
+    updateIntervalInMs?: number;
+    /** A serialized poller which can be used to resume an existing paused Long-Running-Operation. */
+    resumeFrom?: string;
+}
+
+/** Contains response data for the ruleIdExecuteSingleSecurityConnector operation. */
+export declare type GovernanceRulesRuleIdExecuteSingleSecurityConnectorResponse = GovernanceRulesRuleIdExecuteSingleSecurityConnectorHeaders;
+
+/** Defines headers for GovernanceRules_ruleIdExecuteSingleSubscription operation. */
+export declare interface GovernanceRulesRuleIdExecuteSingleSubscriptionHeaders {
+    /** Location URL for the execution status */
+    location?: string;
+}
+
+/** Optional parameters. */
+export declare interface GovernanceRulesRuleIdExecuteSingleSubscriptionOptionalParams extends coreClient.OperationOptions {
+    /** GovernanceRule over a subscription scope */
+    executeGovernanceRuleParams?: ExecuteGovernanceRuleParams;
+    /** Delay to wait until next poll, in milliseconds. */
+    updateIntervalInMs?: number;
+    /** A serialized poller which can be used to resume an existing paused Long-Running-Operation. */
+    resumeFrom?: string;
+}
+
+/** Contains response data for the ruleIdExecuteSingleSubscription operation. */
+export declare type GovernanceRulesRuleIdExecuteSingleSubscriptionResponse = GovernanceRulesRuleIdExecuteSingleSubscriptionHeaders;
+
+/**
+ * Defines values for GovernanceRuleType. \
+ * {@link KnownGovernanceRuleType} can be used interchangeably with GovernanceRuleType,
+ *  this enum contains the known values that the service supports.
+ * ### Known values supported by the service
+ * **Integrated**: The source of the rule type definition is integrated \
+ * **ServiceNow**: The source of the rule type definition is ServiceNow
+ */
+export declare type GovernanceRuleType = string;
 
 /** Number of cloud to device messages (HTTP protocol) is not in allowed range. */
-export declare type HttpC2DMessagesNotInAllowedRange = TimeWindowCustomAlertRule & {
+export declare interface HttpC2DMessagesNotInAllowedRange extends TimeWindowCustomAlertRule {
     /** Polymorphic discriminator, which specifies the different types this object can be */
     ruleType: "HttpC2DMessagesNotInAllowedRange";
-};
+}
 
 /** Number of rejected cloud to device messages (HTTP protocol) is not in allowed range. */
-export declare type HttpC2DRejectedMessagesNotInAllowedRange = TimeWindowCustomAlertRule & {
+export declare interface HttpC2DRejectedMessagesNotInAllowedRange extends TimeWindowCustomAlertRule {
     /** Polymorphic discriminator, which specifies the different types this object can be */
     ruleType: "HttpC2DRejectedMessagesNotInAllowedRange";
-};
+}
 
 /** Number of device to cloud messages (HTTP protocol) is not in allowed range. */
-export declare type HttpD2CMessagesNotInAllowedRange = TimeWindowCustomAlertRule & {
+export declare interface HttpD2CMessagesNotInAllowedRange extends TimeWindowCustomAlertRule {
     /** Polymorphic discriminator, which specifies the different types this object can be */
     ruleType: "HttpD2CMessagesNotInAllowedRange";
-};
+}
 
 /**
  * Defines values for HybridComputeProvisioningState. \
@@ -3089,13 +4030,13 @@ export declare interface HybridComputeSettingsProperties {
  */
 export declare type ImplementationEffort = string;
 
-/** The information protection for AWS offering configurations */
-export declare type InformationProtectionAwsOffering = CloudOffering & {
+/** The information protection for AWS offering */
+export declare interface InformationProtectionAwsOffering extends CloudOffering {
     /** Polymorphic discriminator, which specifies the different types this object can be */
     offeringType: "InformationProtectionAws";
     /** The native cloud connection configuration */
     informationProtection?: InformationProtectionAwsOfferingInformationProtection;
-};
+}
 
 /** The native cloud connection configuration */
 export declare interface InformationProtectionAwsOfferingInformationProtection {
@@ -3175,7 +4116,7 @@ export declare interface InformationProtectionPoliciesListOptionalParams extends
 export declare type InformationProtectionPoliciesListResponse = InformationProtectionPolicyList;
 
 /** Information protection policy. */
-export declare type InformationProtectionPolicy = Resource & {
+export declare interface InformationProtectionPolicy extends Resource {
     /**
      * Describes the last UTC time the policy was modified.
      * NOTE: This property will not be serialized. It can only be populated by the server.
@@ -3194,7 +4135,7 @@ export declare type InformationProtectionPolicy = Resource & {
     informationTypes?: {
         [propertyName: string]: InformationType;
     };
-};
+}
 
 /** Information protection policies response. */
 export declare interface InformationProtectionPolicyList {
@@ -3250,10 +4191,10 @@ export declare interface IngestionConnectionString {
 }
 
 /** Configures how to correlate scan data and logs with resources associated with the subscription. */
-export declare type IngestionSetting = Resource & {
+export declare interface IngestionSetting extends Resource {
     /** Ingestion setting data */
     properties?: Record<string, unknown>;
-};
+}
 
 /** List of ingestion settings */
 export declare interface IngestionSettingList {
@@ -3393,7 +4334,7 @@ export declare interface IngestionSettingToken {
 export declare type Intent = string;
 
 /** Security Solution Aggregated Alert information */
-export declare type IoTSecurityAggregatedAlert = Resource & TagsResource & {
+export declare interface IoTSecurityAggregatedAlert extends Resource, TagsResource {
     /**
      * Name of the alert type.
      * NOTE: This property will not be serialized. It can only be populated by the server.
@@ -3459,7 +4400,7 @@ export declare type IoTSecurityAggregatedAlert = Resource & TagsResource & {
      * NOTE: This property will not be serialized. It can only be populated by the server.
      */
     readonly topDevicesList?: IoTSecurityAggregatedAlertPropertiesTopDevicesListItem[];
-};
+}
 
 /** List of IoT Security solution aggregated alert data. */
 export declare interface IoTSecurityAggregatedAlertList {
@@ -3491,7 +4432,7 @@ export declare interface IoTSecurityAggregatedAlertPropertiesTopDevicesListItem
 }
 
 /** IoT Security solution recommendation information. */
-export declare type IoTSecurityAggregatedRecommendation = Resource & TagsResource & {
+export declare interface IoTSecurityAggregatedRecommendation extends Resource, TagsResource {
     /** Name of the recommendation. */
     recommendationName?: string;
     /**
@@ -3539,7 +4480,7 @@ export declare type IoTSecurityAggregatedRecommendation = Resource & TagsResourc
      * NOTE: This property will not be serialized. It can only be populated by the server.
      */
     readonly logAnalyticsQuery?: string;
-};
+}
 
 /** List of IoT Security solution aggregated recommendations. */
 export declare interface IoTSecurityAggregatedRecommendationList {
@@ -3690,7 +4631,7 @@ export declare interface IotSecuritySolutionAnalyticsListOptionalParams extends
 export declare type IotSecuritySolutionAnalyticsListResponse = IoTSecuritySolutionAnalyticsModelList;
 
 /** Security analytics of your IoT Security solution */
-export declare type IoTSecuritySolutionAnalyticsModel = Resource & {
+export declare interface IoTSecuritySolutionAnalyticsModel extends Resource {
     /**
      * Security analytics of your IoT Security solution.
      * NOTE: This property will not be serialized. It can only be populated by the server.
@@ -3712,7 +4653,7 @@ export declare type IoTSecuritySolutionAnalyticsModel = Resource & {
     mostPrevalentDeviceAlerts?: IoTSecurityDeviceAlert[];
     /** List of the 3 most prevalent device recommendations. */
     mostPrevalentDeviceRecommendations?: IoTSecurityDeviceRecommendation[];
-};
+}
 
 /** List of Security analytics of your IoT Security solution */
 export declare interface IoTSecuritySolutionAnalyticsModelList {
@@ -3787,7 +4728,7 @@ export declare interface IotSecuritySolutionListBySubscriptionOptionalParams ext
 export declare type IotSecuritySolutionListBySubscriptionResponse = IoTSecuritySolutionsList;
 
 /** IoT Security solution configuration and resource information. */
-export declare type IoTSecuritySolutionModel = Resource & TagsResource & {
+export declare interface IoTSecuritySolutionModel extends Resource, TagsResource {
     /** The resource location. */
     location?: string;
     /**
@@ -3820,7 +4761,7 @@ export declare type IoTSecuritySolutionModel = Resource & TagsResource & {
     unmaskedIpLoggingStatus?: UnmaskedIpLoggingStatus;
     /** List of additional workspaces */
     additionalWorkspaces?: AdditionalWorkspacesProperties[];
-};
+}
 
 /** Interface representing a IotSecuritySolutionsAnalyticsAggregatedAlert. */
 export declare interface IotSecuritySolutionsAnalyticsAggregatedAlert {
@@ -4122,7 +5063,7 @@ export declare interface JitNetworkAccessPoliciesListOptionalParams extends core
 /** Contains response data for the list operation. */
 export declare type JitNetworkAccessPoliciesListResponse = JitNetworkAccessPoliciesList;
 
-export declare type JitNetworkAccessPolicy = Resource & KindAutoGenerated & Location_2 & {
+export declare interface JitNetworkAccessPolicy extends Resource, KindAutoGenerated, Location_2 {
     /** Configurations for Microsoft.Compute/virtualMachines resource type. */
     virtualMachines: JitNetworkAccessPolicyVirtualMachine[];
     requests?: JitNetworkAccessRequest[];
@@ -4131,7 +5072,7 @@ export declare type JitNetworkAccessPolicy = Resource & KindAutoGenerated & Loca
      * NOTE: This property will not be serialized. It can only be populated by the server.
      */
     readonly provisioningState?: string;
-};
+}
 
 export declare interface JitNetworkAccessPolicyInitiatePort {
     number: number;
@@ -4225,47 +5166,54 @@ export declare interface KindAutoGenerated {
 
 /** Known values of {@link AadConnectivityState} that the service accepts. */
 export declare enum KnownAadConnectivityState {
+    /** Discovered */
     Discovered = "Discovered",
+    /** NotLicensed */
     NotLicensed = "NotLicensed",
+    /** Connected */
     Connected = "Connected"
 }
 
 /** Known values of {@link ActionType} that the service accepts. */
 export declare enum KnownActionType {
+    /** LogicApp */
     LogicApp = "LogicApp",
+    /** EventHub */
     EventHub = "EventHub",
+    /** Workspace */
     Workspace = "Workspace"
 }
 
 /** Known values of {@link AdaptiveApplicationControlIssue} that the service accepts. */
 export declare enum KnownAdaptiveApplicationControlIssue {
+    /** ViolationsAudited */
     ViolationsAudited = "ViolationsAudited",
+    /** ViolationsBlocked */
     ViolationsBlocked = "ViolationsBlocked",
+    /** MsiAndScriptViolationsAudited */
     MsiAndScriptViolationsAudited = "MsiAndScriptViolationsAudited",
+    /** MsiAndScriptViolationsBlocked */
     MsiAndScriptViolationsBlocked = "MsiAndScriptViolationsBlocked",
+    /** ExecutableViolationsAudited */
     ExecutableViolationsAudited = "ExecutableViolationsAudited",
+    /** RulesViolatedManually */
     RulesViolatedManually = "RulesViolatedManually"
 }
 
 /** Known values of {@link AdditionalWorkspaceDataType} that the service accepts. */
 export declare enum KnownAdditionalWorkspaceDataType {
+    /** Alerts */
     Alerts = "Alerts",
+    /** RawEvents */
     RawEvents = "RawEvents"
 }
 
 /** Known values of {@link AdditionalWorkspaceType} that the service accepts. */
 export declare enum KnownAdditionalWorkspaceType {
+    /** Sentinel */
     Sentinel = "Sentinel"
 }
 
-/** Known values of {@link AlertNotifications} that the service accepts. */
-export declare enum KnownAlertNotifications {
-    /** Get notifications on new alerts */
-    On = "On",
-    /** Don't get notifications on new alerts */
-    Off = "Off"
-}
-
 /** Known values of {@link AlertSeverity} that the service accepts. */
 export declare enum KnownAlertSeverity {
     /** Informational */
@@ -4282,24 +5230,35 @@ export declare enum KnownAlertSeverity {
 export declare enum KnownAlertStatus {
     /** An alert which doesn't specify a value is assigned the status 'Active' */
     Active = "Active",
+    /** An alert which is in handling state */
+    InProgress = "InProgress",
     /** Alert closed after handling */
     Resolved = "Resolved",
     /** Alert dismissed as false positive */
     Dismissed = "Dismissed"
 }
 
-/** Known values of {@link AlertsToAdmins} that the service accepts. */
-export declare enum KnownAlertsToAdmins {
-    /** Send notification on new alerts to the subscription's admins */
-    On = "On",
-    /** Don't send notification on new alerts to the subscription's admins */
-    Off = "Off"
+/** Known values of {@link ApplicationConditionOperator} that the service accepts. */
+export declare enum KnownApplicationConditionOperator {
+    /** Checks that the string value of the data defined in Property contains the given value */
+    Contains = "Contains",
+    /** Checks that the string value of the data defined in Property equals any of the given values (exact fit) */
+    In = "In"
+}
+
+/** Known values of {@link ApplicationSourceResourceType} that the service accepts. */
+export declare enum KnownApplicationSourceResourceType {
+    /** The source of the application is assessments */
+    Assessments = "Assessments"
 }
 
 /** Known values of {@link AssessedResourceType} that the service accepts. */
 export declare enum KnownAssessedResourceType {
+    /** SqlServerVulnerability */
     SqlServerVulnerability = "SqlServerVulnerability",
+    /** ContainerRegistryVulnerability */
     ContainerRegistryVulnerability = "ContainerRegistryVulnerability",
+    /** ServerVulnerability */
     ServerVulnerability = "ServerVulnerability"
 }
 
@@ -4315,11 +5274,11 @@ export declare enum KnownAssessmentStatusCode {
 
 /** Known values of {@link AssessmentType} that the service accepts. */
 export declare enum KnownAssessmentType {
-    /** Azure Security Center managed assessments */
+    /** Microsoft Defender for Cloud managed assessments */
     BuiltIn = "BuiltIn",
-    /** User defined policies that are automatically ingested from Azure Policy to Azure Security Center */
+    /** User defined policies that are automatically ingested from Azure Policy to Microsoft Defender for Cloud */
     CustomPolicy = "CustomPolicy",
-    /** User assessments pushed directly by the user or other third party to Azure Security Center */
+    /** User assessments pushed directly by the user or other third party to Microsoft Defender for Cloud */
     CustomerManaged = "CustomerManaged",
     /** An assessment that was created by a verified 3rd party if the user connected it to ASC */
     VerifiedPartner = "VerifiedPartner"
@@ -4357,60 +5316,93 @@ export declare enum KnownAutoProvision {
 
 /** Known values of {@link BundleType} that the service accepts. */
 export declare enum KnownBundleType {
+    /** AppServices */
     AppServices = "AppServices",
+    /** DNS */
     DNS = "DNS",
+    /** KeyVaults */
     KeyVaults = "KeyVaults",
+    /** KubernetesService */
     KubernetesService = "KubernetesService",
+    /** ResourceManager */
     ResourceManager = "ResourceManager",
+    /** SqlServers */
     SqlServers = "SqlServers",
+    /** StorageAccounts */
     StorageAccounts = "StorageAccounts",
-    VirtualMachines = "VirtualMachines"
+    /** VirtualMachines */
+    VirtualMachines = "VirtualMachines",
+    /** CosmosDbs */
+    CosmosDbs = "CosmosDbs"
 }
 
 /** Known values of {@link Categories} that the service accepts. */
 export declare enum KnownCategories {
+    /** Compute */
     Compute = "Compute",
+    /** Networking */
     Networking = "Networking",
+    /** Data */
     Data = "Data",
+    /** IdentityAndAccess */
     IdentityAndAccess = "IdentityAndAccess",
+    /** IoT */
     IoT = "IoT"
 }
 
 /** Known values of {@link CloudName} that the service accepts. */
 export declare enum KnownCloudName {
+    /** Azure */
     Azure = "Azure",
+    /** AWS */
     AWS = "AWS",
-    GCP = "GCP"
+    /** GCP */
+    GCP = "GCP",
+    /** Github */
+    Github = "Github",
+    /** AzureDevOps */
+    AzureDevOps = "AzureDevOps"
 }
 
 /** Known values of {@link ConfigurationStatus} that the service accepts. */
 export declare enum KnownConfigurationStatus {
+    /** Configured */
     Configured = "Configured",
+    /** NotConfigured */
     NotConfigured = "NotConfigured",
+    /** InProgress */
     InProgress = "InProgress",
+    /** Failed */
     Failed = "Failed",
+    /** NoStatus */
     NoStatus = "NoStatus"
 }
 
 /** Known values of {@link ConnectionType} that the service accepts. */
 export declare enum KnownConnectionType {
+    /** Internal */
     Internal = "Internal",
+    /** External */
     External = "External"
 }
 
 /** Known values of {@link ControlType} that the service accepts. */
 export declare enum KnownControlType {
-    /** Azure Security Center managed assessments */
+    /** Microsoft Defender for Cloud managed assessments */
     BuiltIn = "BuiltIn",
-    /** Non Azure Security Center managed assessments */
+    /** Non Microsoft Defender for Cloud managed assessments */
     Custom = "Custom"
 }
 
 /** Known values of {@link CreatedByType} that the service accepts. */
 export declare enum KnownCreatedByType {
+    /** User */
     User = "User",
+    /** Application */
     Application = "Application",
+    /** ManagedIdentity */
     ManagedIdentity = "ManagedIdentity",
+    /** Key */
     Key = "Key"
 }
 
@@ -4422,45 +5414,81 @@ export declare enum KnownDataSource {
 
 /** Known values of {@link Direction} that the service accepts. */
 export declare enum KnownDirection {
+    /** Inbound */
     Inbound = "Inbound",
+    /** Outbound */
     Outbound = "Outbound"
 }
 
 /** Known values of {@link EndOfSupportStatus} that the service accepts. */
 export declare enum KnownEndOfSupportStatus {
+    /** None */
     None = "None",
+    /** NoLongerSupported */
     NoLongerSupported = "noLongerSupported",
+    /** VersionNoLongerSupported */
     VersionNoLongerSupported = "versionNoLongerSupported",
+    /** UpcomingNoLongerSupported */
     UpcomingNoLongerSupported = "upcomingNoLongerSupported",
+    /** UpcomingVersionNoLongerSupported */
     UpcomingVersionNoLongerSupported = "upcomingVersionNoLongerSupported"
 }
 
 /** Known values of {@link EnforcementMode} that the service accepts. */
 export declare enum KnownEnforcementMode {
+    /** Audit */
     Audit = "Audit",
+    /** Enforce */
     Enforce = "Enforce",
+    /** None */
     None = "None"
 }
 
 /** Known values of {@link EnforcementSupport} that the service accepts. */
 export declare enum KnownEnforcementSupport {
+    /** Supported */
     Supported = "Supported",
+    /** NotSupported */
     NotSupported = "NotSupported",
+    /** Unknown */
     Unknown = "Unknown"
 }
 
+/** Known values of {@link EnvironmentType} that the service accepts. */
+export declare enum KnownEnvironmentType {
+    /** AwsAccount */
+    AwsAccount = "AwsAccount",
+    /** GcpProject */
+    GcpProject = "GcpProject",
+    /** GithubScope */
+    GithubScope = "GithubScope",
+    /** AzureDevOpsScope */
+    AzureDevOpsScope = "AzureDevOpsScope"
+}
+
 /** Known values of {@link EventSource} that the service accepts. */
 export declare enum KnownEventSource {
+    /** Assessments */
     Assessments = "Assessments",
+    /** AssessmentsSnapshot */
     AssessmentsSnapshot = "AssessmentsSnapshot",
+    /** SubAssessments */
     SubAssessments = "SubAssessments",
+    /** SubAssessmentsSnapshot */
     SubAssessmentsSnapshot = "SubAssessmentsSnapshot",
+    /** Alerts */
     Alerts = "Alerts",
+    /** SecureScores */
     SecureScores = "SecureScores",
+    /** SecureScoresSnapshot */
     SecureScoresSnapshot = "SecureScoresSnapshot",
+    /** SecureScoreControls */
     SecureScoreControls = "SecureScoreControls",
+    /** SecureScoreControlsSnapshot */
     SecureScoreControlsSnapshot = "SecureScoreControlsSnapshot",
+    /** RegulatoryComplianceAssessment */
     RegulatoryComplianceAssessment = "RegulatoryComplianceAssessment",
+    /** RegulatoryComplianceAssessmentSnapshot */
     RegulatoryComplianceAssessmentSnapshot = "RegulatoryComplianceAssessmentSnapshot"
 }
 
@@ -4486,21 +5514,60 @@ export declare enum KnownExportData {
 
 /** Known values of {@link ExternalSecuritySolutionKind} that the service accepts. */
 export declare enum KnownExternalSecuritySolutionKind {
+    /** CEF */
     CEF = "CEF",
+    /** ATA */
     ATA = "ATA",
+    /** AAD */
     AAD = "AAD"
 }
 
 /** Known values of {@link FileType} that the service accepts. */
 export declare enum KnownFileType {
+    /** Exe */
     Exe = "Exe",
+    /** Dll */
     Dll = "Dll",
+    /** Msi */
     Msi = "Msi",
+    /** Script */
     Script = "Script",
+    /** Executable */
     Executable = "Executable",
+    /** Unknown */
     Unknown = "Unknown"
 }
 
+/** Known values of {@link GovernanceRuleConditionOperator} that the service accepts. */
+export declare enum KnownGovernanceRuleConditionOperator {
+    /** Checks that the string value of the data defined in Property equals the given value - exact fit */
+    Equals = "Equals",
+    /** Checks that the string value of the data defined in Property equals any of the given values (exact fit) */
+    In = "In"
+}
+
+/** Known values of {@link GovernanceRuleOwnerSourceType} that the service accepts. */
+export declare enum KnownGovernanceRuleOwnerSourceType {
+    /** The rule source type defined using resource tag */
+    ByTag = "ByTag",
+    /** The rule source type defined manually */
+    Manually = "Manually"
+}
+
+/** Known values of {@link GovernanceRuleSourceResourceType} that the service accepts. */
+export declare enum KnownGovernanceRuleSourceResourceType {
+    /** The source of the governance rule is assessments */
+    Assessments = "Assessments"
+}
+
+/** Known values of {@link GovernanceRuleType} that the service accepts. */
+export declare enum KnownGovernanceRuleType {
+    /** The source of the rule type definition is integrated */
+    Integrated = "Integrated",
+    /** The source of the rule type definition is ServiceNow */
+    ServiceNow = "ServiceNow"
+}
+
 /** Known values of {@link HybridComputeProvisioningState} that the service accepts. */
 export declare enum KnownHybridComputeProvisioningState {
     /** Valid service principal details. */
@@ -4513,14 +5580,19 @@ export declare enum KnownHybridComputeProvisioningState {
 
 /** Known values of {@link ImplementationEffort} that the service accepts. */
 export declare enum KnownImplementationEffort {
+    /** Low */
     Low = "Low",
+    /** Moderate */
     Moderate = "Moderate",
+    /** High */
     High = "High"
 }
 
 /** Known values of {@link InformationProtectionPolicyName} that the service accepts. */
 export declare enum KnownInformationProtectionPolicyName {
+    /** Effective */
     Effective = "effective",
+    /** Custom */
     Custom = "custom"
 }
 
@@ -4566,12 +5638,40 @@ export declare enum KnownKind {
     Bundles = "Bundles"
 }
 
+/** Known values of {@link MinimalSeverity} that the service accepts. */
+export declare enum KnownMinimalSeverity {
+    /** Get notifications on new alerts with High severity */
+    High = "High",
+    /** Get notifications on new alerts with medium or high severity */
+    Medium = "Medium",
+    /** Don't get notifications on new alerts with low, medium or high severity */
+    Low = "Low"
+}
+
 /** Known values of {@link OfferingType} that the service accepts. */
 export declare enum KnownOfferingType {
+    /** CspmMonitorAws */
     CspmMonitorAws = "CspmMonitorAws",
+    /** DefenderForContainersAws */
     DefenderForContainersAws = "DefenderForContainersAws",
+    /** DefenderForServersAws */
     DefenderForServersAws = "DefenderForServersAws",
-    InformationProtectionAws = "InformationProtectionAws"
+    /** DefenderForDatabasesAws */
+    DefenderForDatabasesAws = "DefenderForDatabasesAws",
+    /** InformationProtectionAws */
+    InformationProtectionAws = "InformationProtectionAws",
+    /** CspmMonitorGcp */
+    CspmMonitorGcp = "CspmMonitorGcp",
+    /** CspmMonitorGithub */
+    CspmMonitorGithub = "CspmMonitorGithub",
+    /** CspmMonitorAzureDevOps */
+    CspmMonitorAzureDevOps = "CspmMonitorAzureDevOps",
+    /** DefenderForServersGcp */
+    DefenderForServersGcp = "DefenderForServersGcp",
+    /** DefenderForContainersGcp */
+    DefenderForContainersGcp = "DefenderForContainersGcp",
+    /** DefenderForDatabasesGcp */
+    DefenderForDatabasesGcp = "DefenderForDatabasesGcp"
 }
 
 /** Known values of {@link Operator} that the service accepts. */
@@ -4598,7 +5698,9 @@ export declare enum KnownOperator {
 
 /** Known values of {@link OrganizationMembershipType} that the service accepts. */
 export declare enum KnownOrganizationMembershipType {
+    /** Member */
     Member = "Member",
+    /** Organization */
     Organization = "Organization"
 }
 
@@ -4616,52 +5718,71 @@ export declare enum KnownPermissionProperty {
 
 /** Known values of {@link PricingTier} that the service accepts. */
 export declare enum KnownPricingTier {
-    /** Get free Azure security center experience with basic security features */
+    /** Get free Microsoft Defender for Cloud experience with basic security features */
     Free = "Free",
-    /** Get the standard Azure security center experience with advanced security features */
+    /** Get the standard Microsoft Defender for Cloud experience with advanced security features */
     Standard = "Standard"
 }
 
 /** Known values of {@link PropertyType} that the service accepts. */
 export declare enum KnownPropertyType {
+    /** String */
     String = "String",
+    /** Integer */
     Integer = "Integer",
+    /** Number */
     Number = "Number",
+    /** Boolean */
     Boolean = "Boolean"
 }
 
 /** Known values of {@link Protocol} that the service accepts. */
 export declare enum KnownProtocol {
+    /** TCP */
     TCP = "TCP",
+    /** UDP */
     UDP = "UDP",
+    /** All */
     All = "*"
 }
 
 /** Known values of {@link ProvisioningState} that the service accepts. */
 export declare enum KnownProvisioningState {
+    /** Succeeded */
     Succeeded = "Succeeded",
+    /** Failed */
     Failed = "Failed",
+    /** Updating */
     Updating = "Updating"
 }
 
 /** Known values of {@link RecommendationAction} that the service accepts. */
 export declare enum KnownRecommendationAction {
+    /** Recommended */
     Recommended = "Recommended",
+    /** Add */
     Add = "Add",
+    /** Remove */
     Remove = "Remove"
 }
 
 /** Known values of {@link RecommendationConfigStatus} that the service accepts. */
 export declare enum KnownRecommendationConfigStatus {
+    /** Disabled */
     Disabled = "Disabled",
+    /** Enabled */
     Enabled = "Enabled"
 }
 
 /** Known values of {@link RecommendationStatus} that the service accepts. */
 export declare enum KnownRecommendationStatus {
+    /** Recommended */
     Recommended = "Recommended",
+    /** NotRecommended */
     NotRecommended = "NotRecommended",
+    /** NotAvailable */
     NotAvailable = "NotAvailable",
+    /** NoStatus */
     NoStatus = "NoStatus"
 }
 
@@ -4703,15 +5824,21 @@ export declare enum KnownRecommendationType {
 
 /** Known values of {@link ReportedSeverity} that the service accepts. */
 export declare enum KnownReportedSeverity {
+    /** Informational */
     Informational = "Informational",
+    /** Low */
     Low = "Low",
+    /** Medium */
     Medium = "Medium",
+    /** High */
     High = "High"
 }
 
 /** Known values of {@link ResourceIdentifierType} that the service accepts. */
 export declare enum KnownResourceIdentifierType {
+    /** AzureResource */
     AzureResource = "AzureResource",
+    /** LogAnalytics */
     LogAnalytics = "LogAnalytics"
 }
 
@@ -4727,6 +5854,18 @@ export declare enum KnownResourceStatus {
     NotHealthy = "NotHealthy"
 }
 
+/** Known values of {@link Roles} that the service accepts. */
+export declare enum KnownRoles {
+    /** If enabled, send notification on new alerts to the account admins */
+    AccountAdmin = "AccountAdmin",
+    /** If enabled, send notification on new alerts to the service admins */
+    ServiceAdmin = "ServiceAdmin",
+    /** If enabled, send notification on new alerts to the subscription owners */
+    Owner = "Owner",
+    /** If enabled, send notification on new alerts to the subscription contributors */
+    Contributor = "Contributor"
+}
+
 /** Known values of {@link RuleSeverity} that the service accepts. */
 export declare enum KnownRuleSeverity {
     /** High */
@@ -4763,6 +5902,12 @@ export declare enum KnownRuleType {
     NegativeList = "NegativeList"
 }
 
+/** Known values of {@link ScanningMode} that the service accepts. */
+export declare enum KnownScanningMode {
+    /** Default */
+    Default = "Default"
+}
+
 /** Known values of {@link ScanState} that the service accepts. */
 export declare enum KnownScanState {
     /** Failed */
@@ -4785,53 +5930,79 @@ export declare enum KnownScanTriggerType {
 
 /** Known values of {@link SecurityFamily} that the service accepts. */
 export declare enum KnownSecurityFamily {
+    /** Waf */
     Waf = "Waf",
+    /** Ngfw */
     Ngfw = "Ngfw",
+    /** SaasWaf */
     SaasWaf = "SaasWaf",
+    /** Va */
     Va = "Va"
 }
 
 /** Known values of {@link SecuritySolutionStatus} that the service accepts. */
 export declare enum KnownSecuritySolutionStatus {
+    /** Enabled */
     Enabled = "Enabled",
+    /** Disabled */
     Disabled = "Disabled"
 }
 
 /** Known values of {@link ServerVulnerabilityAssessmentPropertiesProvisioningState} that the service accepts. */
 export declare enum KnownServerVulnerabilityAssessmentPropertiesProvisioningState {
+    /** Succeeded */
     Succeeded = "Succeeded",
+    /** Failed */
     Failed = "Failed",
+    /** Canceled */
     Canceled = "Canceled",
+    /** Provisioning */
     Provisioning = "Provisioning",
+    /** Deprovisioning */
     Deprovisioning = "Deprovisioning"
 }
 
 /** Known values of {@link SettingKind} that the service accepts. */
 export declare enum KnownSettingKind {
+    /** DataExportSettings */
     DataExportSettings = "DataExportSettings",
+    /** AlertSuppressionSetting */
     AlertSuppressionSetting = "AlertSuppressionSetting",
+    /** AlertSyncSettings */
     AlertSyncSettings = "AlertSyncSettings"
 }
 
 /** Known values of {@link SettingName} that the service accepts. */
 export declare enum KnownSettingName {
+    /** Mcas */
     Mcas = "MCAS",
+    /** Wdatp */
     Wdatp = "WDATP",
+    /** WdatpExcludeLinuxPublicPreview */
     WdatpExcludeLinuxPublicPreview = "WDATP_EXCLUDE_LINUX_PUBLIC_PREVIEW",
+    /** WdatpUnifiedSolution */
+    WdatpUnifiedSolution = "WDATP_UNIFIED_SOLUTION",
+    /** Sentinel */
     Sentinel = "Sentinel"
 }
 
 /** Known values of {@link Severity} that the service accepts. */
 export declare enum KnownSeverity {
+    /** Low */
     Low = "Low",
+    /** Medium */
     Medium = "Medium",
+    /** High */
     High = "High"
 }
 
 /** Known values of {@link SeverityEnum} that the service accepts. */
 export declare enum KnownSeverityEnum {
+    /** High */
     High = "High",
+    /** Medium */
     Medium = "Medium",
+    /** Low */
     Low = "Low"
 }
 
@@ -4847,10 +6018,15 @@ export declare enum KnownSource {
 
 /** Known values of {@link SourceSystem} that the service accepts. */
 export declare enum KnownSourceSystem {
+    /** AzureAppLocker */
     AzureAppLocker = "Azure_AppLocker",
+    /** AzureAuditD */
     AzureAuditD = "Azure_AuditD",
+    /** NonAzureAppLocker */
     NonAzureAppLocker = "NonAzure_AppLocker",
+    /** NonAzureAuditD */
     NonAzureAuditD = "NonAzure_AuditD",
+    /** None */
     None = "None"
 }
 
@@ -4868,14 +6044,19 @@ export declare enum KnownState {
 
 /** Known values of {@link Status} that the service accepts. */
 export declare enum KnownStatus {
+    /** Revoked */
     Revoked = "Revoked",
+    /** Initiated */
     Initiated = "Initiated"
 }
 
 /** Known values of {@link StatusReason} that the service accepts. */
 export declare enum KnownStatusReason {
+    /** Expired */
     Expired = "Expired",
+    /** UserRequested */
     UserRequested = "UserRequested",
+    /** NewerRequestInitiated */
     NewerRequestInitiated = "NewerRequestInitiated"
 }
 
@@ -4889,165 +6070,316 @@ export declare enum KnownSubAssessmentStatusCode {
     NotApplicable = "NotApplicable"
 }
 
+/** Known values of {@link SubPlan} that the service accepts. */
+export declare enum KnownSubPlan {
+    /** P1 */
+    P1 = "P1",
+    /** P2 */
+    P2 = "P2"
+}
+
 /** Known values of {@link SupportedCloudEnum} that the service accepts. */
 export declare enum KnownSupportedCloudEnum {
+    /** AWS */
     AWS = "AWS",
+    /** GCP */
     GCP = "GCP"
 }
 
 /** Known values of {@link Tactics} that the service accepts. */
 export declare enum KnownTactics {
+    /** Reconnaissance */
     Reconnaissance = "Reconnaissance",
+    /** ResourceDevelopment */
     ResourceDevelopment = "Resource Development",
+    /** InitialAccess */
     InitialAccess = "Initial Access",
+    /** Execution */
     Execution = "Execution",
+    /** Persistence */
     Persistence = "Persistence",
+    /** PrivilegeEscalation */
     PrivilegeEscalation = "Privilege Escalation",
+    /** DefenseEvasion */
     DefenseEvasion = "Defense Evasion",
+    /** CredentialAccess */
     CredentialAccess = "Credential Access",
+    /** Discovery */
     Discovery = "Discovery",
+    /** LateralMovement */
     LateralMovement = "Lateral Movement",
+    /** Collection */
     Collection = "Collection",
+    /** CommandAndControl */
     CommandAndControl = "Command and Control",
+    /** Exfiltration */
     Exfiltration = "Exfiltration",
+    /** Impact */
     Impact = "Impact"
 }
 
 /** Known values of {@link TaskUpdateActionType} that the service accepts. */
 export declare enum KnownTaskUpdateActionType {
+    /** Activate */
     Activate = "Activate",
+    /** Dismiss */
     Dismiss = "Dismiss",
+    /** Start */
     Start = "Start",
+    /** Resolve */
     Resolve = "Resolve",
+    /** Close */
     Close = "Close"
 }
 
 /** Known values of {@link Techniques} that the service accepts. */
 export declare enum KnownTechniques {
+    /** AbuseElevationControlMechanism */
     AbuseElevationControlMechanism = "Abuse Elevation Control Mechanism",
+    /** AccessTokenManipulation */
     AccessTokenManipulation = "Access Token Manipulation",
+    /** AccountDiscovery */
     AccountDiscovery = "Account Discovery",
+    /** AccountManipulation */
     AccountManipulation = "Account Manipulation",
+    /** ActiveScanning */
     ActiveScanning = "Active Scanning",
+    /** ApplicationLayerProtocol */
     ApplicationLayerProtocol = "Application Layer Protocol",
+    /** AudioCapture */
     AudioCapture = "Audio Capture",
+    /** BootOrLogonAutostartExecution */
     BootOrLogonAutostartExecution = "Boot or Logon Autostart Execution",
+    /** BootOrLogonInitializationScripts */
     BootOrLogonInitializationScripts = "Boot or Logon Initialization Scripts",
+    /** BruteForce */
     BruteForce = "Brute Force",
+    /** CloudInfrastructureDiscovery */
     CloudInfrastructureDiscovery = "Cloud Infrastructure Discovery",
+    /** CloudServiceDashboard */
     CloudServiceDashboard = "Cloud Service Dashboard",
+    /** CloudServiceDiscovery */
     CloudServiceDiscovery = "Cloud Service Discovery",
+    /** CommandAndScriptingInterpreter */
     CommandAndScriptingInterpreter = "Command and Scripting Interpreter",
+    /** CompromiseClientSoftwareBinary */
     CompromiseClientSoftwareBinary = "Compromise Client Software Binary",
+    /** CompromiseInfrastructure */
     CompromiseInfrastructure = "Compromise Infrastructure",
+    /** ContainerAndResourceDiscovery */
     ContainerAndResourceDiscovery = "Container and Resource Discovery",
+    /** CreateAccount */
     CreateAccount = "Create Account",
+    /** CreateOrModifySystemProcess */
     CreateOrModifySystemProcess = "Create or Modify System Process",
+    /** CredentialsFromPasswordStores */
     CredentialsFromPasswordStores = "Credentials from Password Stores",
+    /** DataDestruction */
     DataDestruction = "Data Destruction",
+    /** DataEncryptedForImpact */
     DataEncryptedForImpact = "Data Encrypted for Impact",
+    /** DataFromCloudStorageObject */
     DataFromCloudStorageObject = "Data from Cloud Storage Object",
+    /** DataFromConfigurationRepository */
     DataFromConfigurationRepository = "Data from Configuration Repository",
+    /** DataFromInformationRepositories */
     DataFromInformationRepositories = "Data from Information Repositories",
+    /** DataFromLocalSystem */
     DataFromLocalSystem = "Data from Local System",
+    /** DataManipulation */
     DataManipulation = "Data Manipulation",
+    /** DataStaged */
     DataStaged = "Data Staged",
+    /** Defacement */
     Defacement = "Defacement",
+    /** DeobfuscateDecodeFilesOrInformation */
     DeobfuscateDecodeFilesOrInformation = "Deobfuscate/Decode Files or Information",
+    /** DiskWipe */
     DiskWipe = "Disk Wipe",
+    /** DomainTrustDiscovery */
     DomainTrustDiscovery = "Domain Trust Discovery",
+    /** DriveByCompromise */
     DriveByCompromise = "Drive-by Compromise",
+    /** DynamicResolution */
     DynamicResolution = "Dynamic Resolution",
+    /** EndpointDenialOfService */
     EndpointDenialOfService = "Endpoint Denial of Service",
+    /** EventTriggeredExecution */
     EventTriggeredExecution = "Event Triggered Execution",
+    /** ExfiltrationOverAlternativeProtocol */
     ExfiltrationOverAlternativeProtocol = "Exfiltration Over Alternative Protocol",
+    /** ExploitPublicFacingApplication */
     ExploitPublicFacingApplication = "Exploit Public-Facing Application",
+    /** ExploitationForClientExecution */
     ExploitationForClientExecution = "Exploitation for Client Execution",
+    /** ExploitationForCredentialAccess */
     ExploitationForCredentialAccess = "Exploitation for Credential Access",
+    /** ExploitationForDefenseEvasion */
     ExploitationForDefenseEvasion = "Exploitation for Defense Evasion",
+    /** ExploitationForPrivilegeEscalation */
     ExploitationForPrivilegeEscalation = "Exploitation for Privilege Escalation",
+    /** ExploitationOfRemoteServices */
     ExploitationOfRemoteServices = "Exploitation of Remote Services",
+    /** ExternalRemoteServices */
     ExternalRemoteServices = "External Remote Services",
+    /** FallbackChannels */
     FallbackChannels = "Fallback Channels",
+    /** FileAndDirectoryDiscovery */
     FileAndDirectoryDiscovery = "File and Directory Discovery",
+    /** GatherVictimNetworkInformation */
     GatherVictimNetworkInformation = "Gather Victim Network Information",
+    /** HideArtifacts */
     HideArtifacts = "Hide Artifacts",
+    /** HijackExecutionFlow */
     HijackExecutionFlow = "Hijack Execution Flow",
+    /** ImpairDefenses */
     ImpairDefenses = "Impair Defenses",
+    /** ImplantContainerImage */
     ImplantContainerImage = "Implant Container Image",
+    /** IndicatorRemovalOnHost */
     IndicatorRemovalOnHost = "Indicator Removal on Host",
+    /** IndirectCommandExecution */
     IndirectCommandExecution = "Indirect Command Execution",
+    /** IngressToolTransfer */
     IngressToolTransfer = "Ingress Tool Transfer",
+    /** InputCapture */
     InputCapture = "Input Capture",
+    /** InterProcessCommunication */
     InterProcessCommunication = "Inter-Process Communication",
+    /** LateralToolTransfer */
     LateralToolTransfer = "Lateral Tool Transfer",
+    /** ManInTheMiddle */
     ManInTheMiddle = "Man-in-the-Middle",
+    /** Masquerading */
     Masquerading = "Masquerading",
+    /** ModifyAuthenticationProcess */
     ModifyAuthenticationProcess = "Modify Authentication Process",
+    /** ModifyRegistry */
     ModifyRegistry = "Modify Registry",
+    /** NetworkDenialOfService */
     NetworkDenialOfService = "Network Denial of Service",
+    /** NetworkServiceScanning */
     NetworkServiceScanning = "Network Service Scanning",
+    /** NetworkSniffing */
     NetworkSniffing = "Network Sniffing",
+    /** NonApplicationLayerProtocol */
     NonApplicationLayerProtocol = "Non-Application Layer Protocol",
+    /** NonStandardPort */
     NonStandardPort = "Non-Standard Port",
+    /** ObtainCapabilities */
     ObtainCapabilities = "Obtain Capabilities",
+    /** ObfuscatedFilesOrInformation */
     ObfuscatedFilesOrInformation = "Obfuscated Files or Information",
+    /** OfficeApplicationStartup */
     OfficeApplicationStartup = "Office Application Startup",
+    /** OSCredentialDumping */
     OSCredentialDumping = "OS Credential Dumping",
+    /** PermissionGroupsDiscovery */
     PermissionGroupsDiscovery = "Permission Groups Discovery",
+    /** Phishing */
     Phishing = "Phishing",
+    /** PreOSBoot */
     PreOSBoot = "Pre-OS Boot",
+    /** ProcessDiscovery */
     ProcessDiscovery = "Process Discovery",
+    /** ProcessInjection */
     ProcessInjection = "Process Injection",
+    /** ProtocolTunneling */
     ProtocolTunneling = "Protocol Tunneling",
+    /** Proxy */
     Proxy = "Proxy",
+    /** QueryRegistry */
     QueryRegistry = "Query Registry",
+    /** RemoteAccessSoftware */
     RemoteAccessSoftware = "Remote Access Software",
+    /** RemoteServiceSessionHijacking */
     RemoteServiceSessionHijacking = "Remote Service Session Hijacking",
+    /** RemoteServices */
     RemoteServices = "Remote Services",
+    /** RemoteSystemDiscovery */
     RemoteSystemDiscovery = "Remote System Discovery",
+    /** ResourceHijacking */
     ResourceHijacking = "Resource Hijacking",
+    /** ScheduledTaskJob */
     ScheduledTaskJob = "Scheduled Task/Job",
+    /** ScreenCapture */
     ScreenCapture = "Screen Capture",
+    /** SearchVictimOwnedWebsites */
     SearchVictimOwnedWebsites = "Search Victim-Owned Websites",
+    /** ServerSoftwareComponent */
     ServerSoftwareComponent = "Server Software Component",
+    /** ServiceStop */
     ServiceStop = "Service Stop",
+    /** SignedBinaryProxyExecution */
     SignedBinaryProxyExecution = "Signed Binary Proxy Execution",
+    /** SoftwareDeploymentTools */
     SoftwareDeploymentTools = "Software Deployment Tools",
+    /** SQLStoredProcedures */
     SQLStoredProcedures = "SQL Stored Procedures",
+    /** StealOrForgeKerberosTickets */
     StealOrForgeKerberosTickets = "Steal or Forge Kerberos Tickets",
+    /** SubvertTrustControls */
     SubvertTrustControls = "Subvert Trust Controls",
+    /** SupplyChainCompromise */
     SupplyChainCompromise = "Supply Chain Compromise",
+    /** SystemInformationDiscovery */
     SystemInformationDiscovery = "System Information Discovery",
+    /** TaintSharedContent */
     TaintSharedContent = "Taint Shared Content",
+    /** TrafficSignaling */
     TrafficSignaling = "Traffic Signaling",
+    /** TransferDataToCloudAccount */
     TransferDataToCloudAccount = "Transfer Data to Cloud Account",
+    /** TrustedRelationship */
     TrustedRelationship = "Trusted Relationship",
+    /** UnsecuredCredentials */
     UnsecuredCredentials = "Unsecured Credentials",
+    /** UserExecution */
     UserExecution = "User Execution",
+    /** ValidAccounts */
     ValidAccounts = "Valid Accounts",
+    /** WindowsManagementInstrumentation */
     WindowsManagementInstrumentation = "Windows Management Instrumentation",
+    /** FileAndDirectoryPermissionsModification */
     FileAndDirectoryPermissionsModification = "File and Directory Permissions Modification"
 }
 
 /** Known values of {@link Threats} that the service accepts. */
 export declare enum KnownThreats {
+    /** AccountBreach */
     AccountBreach = "accountBreach",
+    /** DataExfiltration */
     DataExfiltration = "dataExfiltration",
+    /** DataSpillage */
     DataSpillage = "dataSpillage",
+    /** MaliciousInsider */
     MaliciousInsider = "maliciousInsider",
+    /** ElevationOfPrivilege */
     ElevationOfPrivilege = "elevationOfPrivilege",
+    /** ThreatResistance */
     ThreatResistance = "threatResistance",
+    /** MissingCoverage */
     MissingCoverage = "missingCoverage",
+    /** DenialOfService */
     DenialOfService = "denialOfService"
 }
 
 /** Known values of {@link TransportProtocol} that the service accepts. */
 export declare enum KnownTransportProtocol {
+    /** TCP */
     TCP = "TCP",
+    /** UDP */
     UDP = "UDP"
 }
 
+/** Known values of {@link Type} that the service accepts. */
+export declare enum KnownType {
+    /** Qualys */
+    Qualys = "Qualys",
+    /** TVM */
+    TVM = "TVM"
+}
+
 /** Known values of {@link UnmaskedIpLoggingStatus} that the service accepts. */
 export declare enum KnownUnmaskedIpLoggingStatus {
     /** Unmasked IP logging is disabled */
@@ -5058,8 +6390,11 @@ export declare enum KnownUnmaskedIpLoggingStatus {
 
 /** Known values of {@link UserImpact} that the service accepts. */
 export declare enum KnownUserImpact {
+    /** Low */
     Low = "Low",
+    /** Moderate */
     Moderate = "Moderate",
+    /** High */
     High = "High"
 }
 
@@ -5072,7 +6407,7 @@ export declare enum KnownValueType {
 }
 
 /** A List custom alert rule. */
-export declare type ListCustomAlertRule = CustomAlertRule & {
+export declare interface ListCustomAlertRule extends CustomAlertRule {
     /** Polymorphic discriminator, which specifies the different types this object can be */
     ruleType: "ListCustomAlertRule" | "AllowlistCustomAlertRule" | "DenylistCustomAlertRule" | "ConnectionToIpNotAllowed" | "ConnectionFromIpNotAllowed" | "LocalUserNotAllowed" | "ProcessNotAllowed";
     /**
@@ -5080,15 +6415,15 @@ export declare type ListCustomAlertRule = CustomAlertRule & {
      * NOTE: This property will not be serialized. It can only be populated by the server.
      */
     readonly valueType?: ValueType;
-};
+}
 
 export declare type ListCustomAlertRuleUnion = ListCustomAlertRule | AllowlistCustomAlertRuleUnion | DenylistCustomAlertRule;
 
 /** Login by a local user that isn't allowed. Allow list consists of login names to allow. */
-export declare type LocalUserNotAllowed = AllowlistCustomAlertRule & {
+export declare interface LocalUserNotAllowed extends AllowlistCustomAlertRule {
     /** Polymorphic discriminator, which specifies the different types this object can be */
     ruleType: "LocalUserNotAllowed";
-};
+}
 
 /** Describes an Azure resource with location */
 declare interface Location_2 {
@@ -5140,7 +6475,7 @@ export declare interface LocationsListOptionalParams extends coreClient.Operatio
 export declare type LocationsListResponse = AscLocationList;
 
 /** Represents a Log Analytics workspace scope identifier. */
-export declare type LogAnalyticsIdentifier = ResourceIdentifier & {
+export declare interface LogAnalyticsIdentifier extends ResourceIdentifier {
     /** Polymorphic discriminator, which specifies the different types this object can be */
     type: "LogAnalytics";
     /**
@@ -5163,15 +6498,15 @@ export declare type LogAnalyticsIdentifier = ResourceIdentifier & {
      * NOTE: This property will not be serialized. It can only be populated by the server.
      */
     readonly agentId?: string;
-};
+}
 
 /** The resource of the configuration or data needed to onboard the machine to MDE */
-export declare type MdeOnboardingData = Resource & {
+export declare interface MdeOnboardingData extends Resource {
     /** The onboarding package used to onboard Windows machines to MDE, coded in base64. This can also be used for onboarding using the dedicated VM Extension */
     onboardingPackageWindows?: Uint8Array;
     /** The onboarding package used to onboard Linux machines to MDE, coded in base64. This can also be used for onboarding using the dedicated VM Extension */
     onboardingPackageLinux?: Uint8Array;
-};
+}
 
 /** List of all MDE onboarding data resources */
 export declare interface MdeOnboardingDataList {
@@ -5207,23 +6542,34 @@ export declare interface MdeOnboardingsListOptionalParams extends coreClient.Ope
 /** Contains response data for the list operation. */
 export declare type MdeOnboardingsListResponse = MdeOnboardingDataList;
 
+/**
+ * Defines values for MinimalSeverity. \
+ * {@link KnownMinimalSeverity} can be used interchangeably with MinimalSeverity,
+ *  this enum contains the known values that the service supports.
+ * ### Known values supported by the service
+ * **High**: Get notifications on new alerts with High severity \
+ * **Medium**: Get notifications on new alerts with medium or high severity \
+ * **Low**: Don't get notifications on new alerts with low, medium or high severity
+ */
+export declare type MinimalSeverity = string;
+
 /** Number of cloud to device messages (MQTT protocol) is not in allowed range. */
-export declare type MqttC2DMessagesNotInAllowedRange = TimeWindowCustomAlertRule & {
+export declare interface MqttC2DMessagesNotInAllowedRange extends TimeWindowCustomAlertRule {
     /** Polymorphic discriminator, which specifies the different types this object can be */
     ruleType: "MqttC2DMessagesNotInAllowedRange";
-};
+}
 
 /** Number of rejected cloud to device messages (MQTT protocol) is not in allowed range. */
-export declare type MqttC2DRejectedMessagesNotInAllowedRange = TimeWindowCustomAlertRule & {
+export declare interface MqttC2DRejectedMessagesNotInAllowedRange extends TimeWindowCustomAlertRule {
     /** Polymorphic discriminator, which specifies the different types this object can be */
     ruleType: "MqttC2DRejectedMessagesNotInAllowedRange";
-};
+}
 
 /** Number of device to cloud messages (MQTT protocol) is not in allowed range. */
-export declare type MqttD2CMessagesNotInAllowedRange = TimeWindowCustomAlertRule & {
+export declare interface MqttD2CMessagesNotInAllowedRange extends TimeWindowCustomAlertRule {
     /** Polymorphic discriminator, which specifies the different types this object can be */
     ruleType: "MqttD2CMessagesNotInAllowedRange";
-};
+}
 
 /**
  * Defines values for OfferingType. \
@@ -5233,12 +6579,19 @@ export declare type MqttD2CMessagesNotInAllowedRange = TimeWindowCustomAlertRule
  * **CspmMonitorAws** \
  * **DefenderForContainersAws** \
  * **DefenderForServersAws** \
- * **InformationProtectionAws**
+ * **DefenderForDatabasesAws** \
+ * **InformationProtectionAws** \
+ * **CspmMonitorGcp** \
+ * **CspmMonitorGithub** \
+ * **CspmMonitorAzureDevOps** \
+ * **DefenderForServersGcp** \
+ * **DefenderForContainersGcp** \
+ * **DefenderForDatabasesGcp**
  */
 export declare type OfferingType = string;
 
 /** Details of the On Premise resource that was assessed */
-export declare type OnPremiseResourceDetails = ResourceDetails & {
+export declare interface OnPremiseResourceDetails extends ResourceDetails {
     /** Polymorphic discriminator, which specifies the different types this object can be */
     source: "OnPremise" | "OnPremiseSql";
     /** Azure resource Id of the workspace the machine is attached to */
@@ -5249,19 +6602,19 @@ export declare type OnPremiseResourceDetails = ResourceDetails & {
     sourceComputerId: string;
     /** The name of the machine */
     machineName: string;
-};
+}
 
 export declare type OnPremiseResourceDetailsUnion = OnPremiseResourceDetails | OnPremiseSqlResourceDetails;
 
 /** Details of the On Premise Sql resource that was assessed */
-export declare type OnPremiseSqlResourceDetails = OnPremiseResourceDetails & {
+export declare interface OnPremiseSqlResourceDetails extends OnPremiseResourceDetails {
     /** Polymorphic discriminator, which specifies the different types this object can be */
     source: "OnPremiseSql";
     /** The Sql server name installed on the machine */
     serverName: string;
     /** The Sql database name installed on the machine */
     databaseName: string;
-};
+}
 
 /** Possible operation in the REST API of Microsoft.Security */
 export declare interface Operation {
@@ -5396,9 +6749,9 @@ export declare interface PathRecommendation {
  */
 export declare type PermissionProperty = string;
 
-/** Azure Security Center is provided in two pricing tiers: free and standard, with the standard tier available with a trial period. The standard tier offers advanced security capabilities, while the free tier offers basic security features. */
-export declare type Pricing = Resource & {
-    /** The pricing tier value. Azure Security Center is provided in two pricing tiers: free and standard, with the standard tier available with a trial period. The standard tier offers advanced security capabilities, while the free tier offers basic security features. */
+/** Microsoft Defender for Cloud is provided in two pricing tiers: free and standard, with the standard tier available with a trial period. The standard tier offers advanced security capabilities, while the free tier offers basic security features. */
+export declare interface Pricing extends Resource {
+    /** The pricing tier value. Microsoft Defender for Cloud is provided in two pricing tiers: free and standard, with the standard tier available with a trial period. The standard tier offers advanced security capabilities, while the free tier offers basic security features. */
     pricingTier?: PricingTier;
     /** The sub-plan selected for a Standard pricing configuration, when more than one sub-plan is available. Each sub-plan enables a set of security features. When not specified, full plan is applied. */
     subPlan?: string;
@@ -5407,7 +6760,17 @@ export declare type Pricing = Resource & {
      * NOTE: This property will not be serialized. It can only be populated by the server.
      */
     readonly freeTrialRemainingTime?: string;
-};
+    /**
+     * Optional. True if the plan is deprecated. If there are replacing plans they will appear in `replacedBy` property
+     * NOTE: This property will not be serialized. It can only be populated by the server.
+     */
+    readonly deprecated?: boolean;
+    /**
+     * Optional. List of plans that replace this plan. This property exists only if this plan is deprecated.
+     * NOTE: This property will not be serialized. It can only be populated by the server.
+     */
+    readonly replacedBy?: string[];
+}
 
 /** List of pricing configurations response. */
 export declare interface PricingList {
@@ -5418,18 +6781,18 @@ export declare interface PricingList {
 /** Interface representing a Pricings. */
 export declare interface Pricings {
     /**
-     * Lists Security Center pricing configurations in the subscription.
+     * Lists Microsoft Defender for Cloud pricing configurations in the subscription.
      * @param options The options parameters.
      */
     list(options?: PricingsListOptionalParams): Promise<PricingsListResponse>;
     /**
-     * Gets a provided Security Center pricing configuration in the subscription.
+     * Gets a provided Microsoft Defender for Cloud pricing configuration in the subscription.
      * @param pricingName name of the pricing configuration
      * @param options The options parameters.
      */
     get(pricingName: string, options?: PricingsGetOptionalParams): Promise<PricingsGetResponse>;
     /**
-     * Updates a provided Security Center pricing configuration in the subscription.
+     * Updates a provided Microsoft Defender for Cloud pricing configuration in the subscription.
      * @param pricingName name of the pricing configuration
      * @param pricing Pricing object
      * @param options The options parameters.
@@ -5463,16 +6826,16 @@ export declare type PricingsUpdateResponse = Pricing;
  * {@link KnownPricingTier} can be used interchangeably with PricingTier,
  *  this enum contains the known values that the service supports.
  * ### Known values supported by the service
- * **Free**: Get free Azure security center experience with basic security features \
- * **Standard**: Get the standard Azure security center experience with advanced security features
+ * **Free**: Get free Microsoft Defender for Cloud experience with basic security features \
+ * **Standard**: Get the standard Microsoft Defender for Cloud experience with advanced security features
  */
 export declare type PricingTier = string;
 
 /** Execution of a process that isn't allowed. Allow list consists of process names to allow. */
-export declare type ProcessNotAllowed = AllowlistCustomAlertRule & {
+export declare interface ProcessNotAllowed extends AllowlistCustomAlertRule {
     /** Polymorphic discriminator, which specifies the different types this object can be */
     ruleType: "ProcessNotAllowed";
-};
+}
 
 /**
  * Defines values for PropertyType. \
@@ -5551,10 +6914,10 @@ export declare interface QueryCheck {
 }
 
 /** Number of device queue purges is not in allowed range. */
-export declare type QueuePurgesNotInAllowedRange = TimeWindowCustomAlertRule & {
+export declare interface QueuePurgesNotInAllowedRange extends TimeWindowCustomAlertRule {
     /** Polymorphic discriminator, which specifies the different types this object can be */
     ruleType: "QueuePurgesNotInAllowedRange";
-};
+}
 
 /** Defines values for Rank. */
 export declare type Rank = "None" | "Low" | "Medium" | "High" | "Critical";
@@ -5627,7 +6990,7 @@ export declare type RecommendationStatus = string;
 export declare type RecommendationType = string;
 
 /** Regulatory compliance assessment details and state */
-export declare type RegulatoryComplianceAssessment = Resource & {
+export declare interface RegulatoryComplianceAssessment extends Resource {
     /**
      * The description of the regulatory compliance assessment
      * NOTE: This property will not be serialized. It can only be populated by the server.
@@ -5665,7 +7028,7 @@ export declare type RegulatoryComplianceAssessment = Resource & {
      * NOTE: This property will not be serialized. It can only be populated by the server.
      */
     readonly unsupportedResources?: number;
-};
+}
 
 /** List of regulatory compliance assessment response */
 export declare interface RegulatoryComplianceAssessmentList {
@@ -5722,7 +7085,7 @@ export declare interface RegulatoryComplianceAssessmentsListOptionalParams exten
 export declare type RegulatoryComplianceAssessmentsListResponse = RegulatoryComplianceAssessmentList;
 
 /** Regulatory compliance control details and state */
-export declare type RegulatoryComplianceControl = Resource & {
+export declare interface RegulatoryComplianceControl extends Resource {
     /**
      * The description of the regulatory compliance control
      * NOTE: This property will not be serialized. It can only be populated by the server.
@@ -5745,7 +7108,7 @@ export declare type RegulatoryComplianceControl = Resource & {
      * NOTE: This property will not be serialized. It can only be populated by the server.
      */
     readonly skippedAssessments?: number;
-};
+}
 
 /** List of regulatory compliance controls response */
 export declare interface RegulatoryComplianceControlList {
@@ -5801,7 +7164,7 @@ export declare interface RegulatoryComplianceControlsListOptionalParams extends
 export declare type RegulatoryComplianceControlsListResponse = RegulatoryComplianceControlList;
 
 /** Regulatory compliance standard details and state */
-export declare type RegulatoryComplianceStandard = Resource & {
+export declare interface RegulatoryComplianceStandard extends Resource {
     /** Aggregative state based on the standard's supported controls states */
     state?: State;
     /**
@@ -5824,7 +7187,7 @@ export declare type RegulatoryComplianceStandard = Resource & {
      * NOTE: This property will not be serialized. It can only be populated by the server.
      */
     readonly unsupportedControls?: number;
-};
+}
 
 /** List of regulatory compliance standards response */
 export declare interface RegulatoryComplianceStandardList {
@@ -5888,6 +7251,14 @@ export declare interface Remediation {
     portalLink?: string;
 }
 
+/** The ETA (estimated time of arrival) for remediation */
+export declare interface RemediationEta {
+    /** ETA for remediation. */
+    eta: Date;
+    /** Justification for change of Eta. */
+    justification: string;
+}
+
 /**
  * Defines values for ReportedSeverity. \
  * {@link KnownReportedSeverity} can be used interchangeably with ReportedSeverity,
@@ -5957,6 +7328,18 @@ export declare type ResourceIdentifierUnion = ResourceIdentifier | AzureResource
  */
 export declare type ResourceStatus = string;
 
+/**
+ * Defines values for Roles. \
+ * {@link KnownRoles} can be used interchangeably with Roles,
+ *  this enum contains the known values that the service supports.
+ * ### Known values supported by the service
+ * **AccountAdmin**: If enabled, send notification on new alerts to the account admins \
+ * **ServiceAdmin**: If enabled, send notification on new alerts to the service admins \
+ * **Owner**: If enabled, send notification on new alerts to the subscription owners \
+ * **Contributor**: If enabled, send notification on new alerts to the subscription contributors
+ */
+export declare type Roles = string;
+
 /** Describes remote addresses that is recommended to communicate with the Azure resource on some (Protocol, Port, Direction). All other remote addresses are recommended to be blocked */
 export declare interface Rule {
     /** The name of the rule */
@@ -5972,10 +7355,10 @@ export declare interface Rule {
 }
 
 /** Rule results. */
-export declare type RuleResults = Resource & {
+export declare interface RuleResults extends Resource {
     /** Rule results properties. */
     properties?: RuleResultsProperties;
-};
+}
 
 /** Rule results input. */
 export declare interface RuleResultsInput {
@@ -6053,10 +7436,19 @@ export declare type RuleStatus = string;
 export declare type RuleType = string;
 
 /** A vulnerability assessment scan record. */
-export declare type Scan = Resource & {
+export declare interface Scan extends Resource {
     /** A vulnerability assessment scan record properties. */
     properties?: ScanProperties;
-};
+}
+
+/**
+ * Defines values for ScanningMode. \
+ * {@link KnownScanningMode} can be used interchangeably with ScanningMode,
+ *  this enum contains the known values that the service supports.
+ * ### Known values supported by the service
+ * **Default**
+ */
+export declare type ScanningMode = string;
 
 /** A vulnerability assessment scan record properties. */
 export declare interface ScanProperties {
@@ -6091,10 +7483,10 @@ export declare interface ScanProperties {
 }
 
 /** A vulnerability assessment scan result for a single rule. */
-export declare type ScanResult = Resource & {
+export declare interface ScanResult extends Resource {
     /** A vulnerability assessment scan result properties for a single rule. */
     properties?: ScanResultProperties;
-};
+}
 
 /** A vulnerability assessment scan result properties for a single rule. */
 export declare interface ScanResultProperties {
@@ -6157,7 +7549,7 @@ export declare interface ScopeElement {
 }
 
 /** Information about the security control. */
-export declare type SecureScoreControlDefinitionItem = Resource & {
+export declare interface SecureScoreControlDefinitionItem extends Resource {
     /**
      * User friendly display name of the control
      * NOTE: This property will not be serialized. It can only be populated by the server.
@@ -6183,7 +7575,7 @@ export declare type SecureScoreControlDefinitionItem = Resource & {
      * NOTE: This property will not be serialized. It can only be populated by the server.
      */
     readonly assessmentDefinitions?: AzureResourceLink[];
-};
+}
 
 /** List of security controls definition */
 export declare interface SecureScoreControlDefinitionList {
@@ -6249,7 +7641,7 @@ export declare interface SecureScoreControlDefinitionSource {
 }
 
 /** Details of the security control, its score, and the health status of the relevant resources. */
-export declare type SecureScoreControlDetails = Resource & {
+export declare interface SecureScoreControlDetails extends Resource {
     /**
      * User friendly display name of the control
      * NOTE: This property will not be serialized. It can only be populated by the server.
@@ -6292,7 +7684,7 @@ export declare type SecureScoreControlDetails = Resource & {
      * NOTE: This property will not be serialized. It can only be populated by the server.
      */
     readonly percentage?: number;
-};
+}
 
 /** List of security controls */
 export declare interface SecureScoreControlList {
@@ -6380,7 +7772,7 @@ export declare interface SecureScoreControlsListOptionalParams extends coreClien
 export declare type SecureScoreControlsListResponse = SecureScoreControlList;
 
 /** Secure score item data model */
-export declare type SecureScoreItem = Resource & {
+export declare interface SecureScoreItem extends Resource {
     /**
      * The initiative’s name
      * NOTE: This property will not be serialized. It can only be populated by the server.
@@ -6406,18 +7798,18 @@ export declare type SecureScoreItem = Resource & {
      * NOTE: This property will not be serialized. It can only be populated by the server.
      */
     readonly percentage?: number;
-};
+}
 
 /** Interface representing a SecureScores. */
 export declare interface SecureScores {
     /**
-     * List secure scores for all your Security Center initiatives within your current scope.
+     * List secure scores for all your Microsoft Defender for Cloud initiatives within your current scope.
      * @param options The options parameters.
      */
     list(options?: SecureScoresListOptionalParams): PagedAsyncIterableIterator<SecureScoreItem>;
     /**
-     * Get secure score for a specific Security Center initiative within your current scope. For the ASC
-     * Default initiative, use 'ascScore'.
+     * Get secure score for a specific Microsoft Defender for Cloud initiative within your current scope.
+     * For the ASC Default initiative, use 'ascScore'.
      * @param secureScoreName The initiative name. For the ASC Default initiative, use 'ascScore' as in the
      *                        sample request below.
      * @param options The options parameters.
@@ -6461,7 +7853,7 @@ export declare interface SecureScoresListOptionalParams extends coreClient.Opera
 export declare type SecureScoresListResponse = SecureScoresList;
 
 /** Security assessment on a resource */
-export declare type SecurityAssessment = Resource & {
+export declare interface SecurityAssessment extends Resource {
     /** Details of the resource that was assessed */
     resourceDetails?: ResourceDetailsUnion;
     /**
@@ -6484,7 +7876,7 @@ export declare type SecurityAssessment = Resource & {
     partnersData?: SecurityAssessmentPartnerData;
     /** The result of the assessment */
     status?: AssessmentStatus;
-};
+}
 
 /** Page of a security assessments list */
 export declare interface SecurityAssessmentList {
@@ -6501,7 +7893,7 @@ export declare interface SecurityAssessmentList {
 }
 
 /** Security assessment metadata */
-export declare type SecurityAssessmentMetadata = Resource & {
+export declare interface SecurityAssessmentMetadata extends Resource {
     /** User friendly display name of the assessment */
     displayName?: string;
     /**
@@ -6527,7 +7919,7 @@ export declare type SecurityAssessmentMetadata = Resource & {
     assessmentType?: AssessmentType;
     /** Describes the partner that created the assessment */
     partnerData?: SecurityAssessmentMetadataPartnerData;
-};
+}
 
 /** Describes the partner that created the assessment */
 export declare interface SecurityAssessmentMetadataPartnerData {
@@ -6569,12 +7961,12 @@ export declare interface SecurityAssessmentMetadataProperties {
 }
 
 /** Describes properties of an assessment metadata response. */
-export declare type SecurityAssessmentMetadataPropertiesResponse = SecurityAssessmentMetadataProperties & {
+export declare interface SecurityAssessmentMetadataPropertiesResponse extends SecurityAssessmentMetadataProperties {
     publishDates?: SecurityAssessmentMetadataPropertiesResponsePublishDates;
     plannedDeprecationDate?: string;
     tactics?: Tactics[];
     techniques?: Techniques[];
-};
+}
 
 export declare interface SecurityAssessmentMetadataPropertiesResponsePublishDates {
     ga?: string;
@@ -6582,7 +7974,7 @@ export declare interface SecurityAssessmentMetadataPropertiesResponsePublishDate
 }
 
 /** Security assessment metadata response */
-export declare type SecurityAssessmentMetadataResponse = Resource & {
+export declare interface SecurityAssessmentMetadataResponse extends Resource {
     /** User friendly display name of the assessment */
     displayName?: string;
     /**
@@ -6612,7 +8004,7 @@ export declare type SecurityAssessmentMetadataResponse = Resource & {
     plannedDeprecationDate?: string;
     tactics?: Tactics[];
     techniques?: Techniques[];
-};
+}
 
 /** List of security assessment metadata */
 export declare interface SecurityAssessmentMetadataResponseList {
@@ -6634,10 +8026,10 @@ export declare interface SecurityAssessmentPartnerData {
 }
 
 /** Describes properties of an assessment. */
-export declare type SecurityAssessmentProperties = SecurityAssessmentPropertiesBase & {
+export declare interface SecurityAssessmentProperties extends SecurityAssessmentPropertiesBase {
     /** The result of the assessment */
     status: AssessmentStatus;
-};
+}
 
 /** Describes properties of an assessment. */
 export declare interface SecurityAssessmentPropertiesBase {
@@ -6664,13 +8056,13 @@ export declare interface SecurityAssessmentPropertiesBase {
 }
 
 /** Describes properties of an assessment. */
-export declare type SecurityAssessmentPropertiesResponse = SecurityAssessmentPropertiesBase & {
+export declare interface SecurityAssessmentPropertiesResponse extends SecurityAssessmentPropertiesBase {
     /** The result of the assessment */
     status: AssessmentStatusResponse;
-};
+}
 
 /** Security assessment on a resource - response format */
-export declare type SecurityAssessmentResponse = Resource & {
+export declare interface SecurityAssessmentResponse extends Resource {
     /** Details of the resource that was assessed */
     resourceDetails?: ResourceDetailsUnion;
     /**
@@ -6693,7 +8085,7 @@ export declare type SecurityAssessmentResponse = Resource & {
     partnersData?: SecurityAssessmentPartnerData;
     /** The result of the assessment */
     status?: AssessmentStatusResponse;
-};
+}
 
 export declare class SecurityCenter extends coreClient.ServiceClient {
     $host: string;
@@ -6754,6 +8146,17 @@ export declare class SecurityCenter extends coreClient.ServiceClient {
     ingestionSettings: IngestionSettings;
     softwareInventories: SoftwareInventories;
     securityConnectors: SecurityConnectors;
+    governanceRuleOperations: GovernanceRuleOperations;
+    governanceRules: GovernanceRules;
+    securityConnectorGovernanceRule: SecurityConnectorGovernanceRule;
+    securityConnectorGovernanceRules: SecurityConnectorGovernanceRules;
+    subscriptionGovernanceRulesExecuteStatus: SubscriptionGovernanceRulesExecuteStatus;
+    securityConnectorGovernanceRulesExecuteStatus: SecurityConnectorGovernanceRulesExecuteStatus;
+    governanceAssignments: GovernanceAssignments;
+    applications: Applications;
+    applicationOperations: ApplicationOperations;
+    securityConnectorApplications: SecurityConnectorApplications;
+    securityConnectorApplication: SecurityConnectorApplication;
 }
 
 /** Optional parameters. */
@@ -6765,34 +8168,222 @@ export declare interface SecurityCenterOptionalParams extends coreClient.Service
 }
 
 /** The security connector resource. */
-export declare type SecurityConnector = TrackedResource & {
+export declare interface SecurityConnector extends TrackedResource {
     /**
      * Azure Resource Manager metadata containing createdBy and modifiedBy information.
      * NOTE: This property will not be serialized. It can only be populated by the server.
      */
     readonly systemData?: SystemData;
-    /** The multi cloud resource identifier (account id in case of AWS connector). */
+    /** The multi cloud resource identifier (account id in case of AWS connector, project number in case of GCP connector). */
     hierarchyIdentifier?: string;
+    /**
+     * The date on which the trial period will end, if applicable. Trial period exists for 30 days after upgrading to payed offerings.
+     * NOTE: This property will not be serialized. It can only be populated by the server.
+     */
+    readonly hierarchyIdentifierTrialEndDate?: Date;
     /** The multi cloud resource's cloud name. */
-    cloudName?: CloudName;
+    environmentName?: CloudName;
     /** A collection of offerings for the security connector. */
     offerings?: CloudOfferingUnion[];
-    /** The multi cloud account's organizational data */
-    organizationalData?: SecurityConnectorPropertiesOrganizationalData;
-};
-
-/** The multi cloud account's organizational data */
-export declare interface SecurityConnectorPropertiesOrganizationalData {
-    /** The multi cloud account's membership type in the organization */
-    organizationMembershipType?: OrganizationMembershipType;
-    /** If the multi cloud account is not of membership type organization, this will be the ID of the account's parent */
-    parentHierarchyId?: string;
-    /** If the multi cloud account is of membership type organization, this will be the name of the onboarding stackset */
-    stacksetName?: string;
-    /** If the multi cloud account is of membership type organization, list of accounts excluded from offering */
-    excludedAccountIds?: string[];
+    /** The security connector environment data. */
+    environmentData?: EnvironmentDataUnion;
+}
+
+/** Interface representing a SecurityConnectorApplication. */
+export declare interface SecurityConnectorApplication {
+    /**
+     * Get a specific application for the requested scope by applicationId
+     * @param resourceGroupName The name of the resource group within the user's subscription. The name is
+     *                          case insensitive.
+     * @param securityConnectorName The security connector name.
+     * @param applicationId The security Application key - unique key for the standard application
+     * @param options The options parameters.
+     */
+    get(resourceGroupName: string, securityConnectorName: string, applicationId: string, options?: SecurityConnectorApplicationGetOptionalParams): Promise<SecurityConnectorApplicationGetResponse>;
+    /**
+     * Creates or update a security Application on the given security connector.
+     * @param resourceGroupName The name of the resource group within the user's subscription. The name is
+     *                          case insensitive.
+     * @param securityConnectorName The security connector name.
+     * @param applicationId The security Application key - unique key for the standard application
+     * @param application Application over a subscription scope
+     * @param options The options parameters.
+     */
+    createOrUpdate(resourceGroupName: string, securityConnectorName: string, applicationId: string, application: Application, options?: SecurityConnectorApplicationCreateOrUpdateOptionalParams): Promise<SecurityConnectorApplicationCreateOrUpdateResponse>;
+    /**
+     * Delete an Application over a given scope
+     * @param resourceGroupName The name of the resource group within the user's subscription. The name is
+     *                          case insensitive.
+     * @param securityConnectorName The security connector name.
+     * @param applicationId The security Application key - unique key for the standard application
+     * @param options The options parameters.
+     */
+    delete(resourceGroupName: string, securityConnectorName: string, applicationId: string, options?: SecurityConnectorApplicationDeleteOptionalParams): Promise<void>;
+}
+
+/** Optional parameters. */
+export declare interface SecurityConnectorApplicationCreateOrUpdateOptionalParams extends coreClient.OperationOptions {
+}
+
+/** Contains response data for the createOrUpdate operation. */
+export declare type SecurityConnectorApplicationCreateOrUpdateResponse = Application;
+
+/** Optional parameters. */
+export declare interface SecurityConnectorApplicationDeleteOptionalParams extends coreClient.OperationOptions {
+}
+
+/** Optional parameters. */
+export declare interface SecurityConnectorApplicationGetOptionalParams extends coreClient.OperationOptions {
+}
+
+/** Contains response data for the get operation. */
+export declare type SecurityConnectorApplicationGetResponse = Application;
+
+/** Interface representing a SecurityConnectorApplications. */
+export declare interface SecurityConnectorApplications {
+    /**
+     * Get a list of all relevant applications over a security connector level scope
+     * @param resourceGroupName The name of the resource group within the user's subscription. The name is
+     *                          case insensitive.
+     * @param securityConnectorName The security connector name.
+     * @param options The options parameters.
+     */
+    list(resourceGroupName: string, securityConnectorName: string, options?: SecurityConnectorApplicationsListOptionalParams): PagedAsyncIterableIterator<Application>;
+}
+
+/** Optional parameters. */
+export declare interface SecurityConnectorApplicationsListNextOptionalParams extends coreClient.OperationOptions {
+}
+
+/** Contains response data for the listNext operation. */
+export declare type SecurityConnectorApplicationsListNextResponse = ApplicationsList;
+
+/** Optional parameters. */
+export declare interface SecurityConnectorApplicationsListOptionalParams extends coreClient.OperationOptions {
+}
+
+/** Contains response data for the list operation. */
+export declare type SecurityConnectorApplicationsListResponse = ApplicationsList;
+
+/** Interface representing a SecurityConnectorGovernanceRule. */
+export declare interface SecurityConnectorGovernanceRule {
+    /**
+     * Get a list of all relevant governanceRules over a security connector level scope
+     * @param resourceGroupName The name of the resource group within the user's subscription. The name is
+     *                          case insensitive.
+     * @param securityConnectorName The security connector name.
+     * @param options The options parameters.
+     */
+    list(resourceGroupName: string, securityConnectorName: string, options?: SecurityConnectorGovernanceRuleListOptionalParams): PagedAsyncIterableIterator<GovernanceRule>;
+}
+
+/** Optional parameters. */
+export declare interface SecurityConnectorGovernanceRuleListNextOptionalParams extends coreClient.OperationOptions {
+}
+
+/** Contains response data for the listNext operation. */
+export declare type SecurityConnectorGovernanceRuleListNextResponse = GovernanceRuleList;
+
+/** Optional parameters. */
+export declare interface SecurityConnectorGovernanceRuleListOptionalParams extends coreClient.OperationOptions {
+}
+
+/** Contains response data for the list operation. */
+export declare type SecurityConnectorGovernanceRuleListResponse = GovernanceRuleList;
+
+/** Interface representing a SecurityConnectorGovernanceRules. */
+export declare interface SecurityConnectorGovernanceRules {
+    /**
+     * Get a specific governanceRule for the requested scope by ruleId
+     * @param resourceGroupName The name of the resource group within the user's subscription. The name is
+     *                          case insensitive.
+     * @param securityConnectorName The security connector name.
+     * @param ruleId The security GovernanceRule key - unique key for the standard GovernanceRule
+     * @param options The options parameters.
+     */
+    get(resourceGroupName: string, securityConnectorName: string, ruleId: string, options?: SecurityConnectorGovernanceRulesGetOptionalParams): Promise<SecurityConnectorGovernanceRulesGetResponse>;
+    /**
+     * Creates or update a security GovernanceRule on the given security connector.
+     * @param resourceGroupName The name of the resource group within the user's subscription. The name is
+     *                          case insensitive.
+     * @param securityConnectorName The security connector name.
+     * @param ruleId The security GovernanceRule key - unique key for the standard GovernanceRule
+     * @param governanceRule GovernanceRule over a subscription scope
+     * @param options The options parameters.
+     */
+    createOrUpdate(resourceGroupName: string, securityConnectorName: string, ruleId: string, governanceRule: GovernanceRule, options?: SecurityConnectorGovernanceRulesCreateOrUpdateOptionalParams): Promise<SecurityConnectorGovernanceRulesCreateOrUpdateResponse>;
+    /**
+     * Delete a GovernanceRule over a given scope
+     * @param resourceGroupName The name of the resource group within the user's subscription. The name is
+     *                          case insensitive.
+     * @param securityConnectorName The security connector name.
+     * @param ruleId The security GovernanceRule key - unique key for the standard GovernanceRule
+     * @param options The options parameters.
+     */
+    delete(resourceGroupName: string, securityConnectorName: string, ruleId: string, options?: SecurityConnectorGovernanceRulesDeleteOptionalParams): Promise<void>;
+}
+
+/** Optional parameters. */
+export declare interface SecurityConnectorGovernanceRulesCreateOrUpdateOptionalParams extends coreClient.OperationOptions {
+}
+
+/** Contains response data for the createOrUpdate operation. */
+export declare type SecurityConnectorGovernanceRulesCreateOrUpdateResponse = GovernanceRule;
+
+/** Optional parameters. */
+export declare interface SecurityConnectorGovernanceRulesDeleteOptionalParams extends coreClient.OperationOptions {
+}
+
+/** Interface representing a SecurityConnectorGovernanceRulesExecuteStatus. */
+export declare interface SecurityConnectorGovernanceRulesExecuteStatus {
+    /**
+     * Get a specific governanceRule execution status for the requested scope by ruleId and operationId
+     * @param resourceGroupName The name of the resource group within the user's subscription. The name is
+     *                          case insensitive.
+     * @param securityConnectorName The security connector name.
+     * @param ruleId The security GovernanceRule key - unique key for the standard GovernanceRule
+     * @param operationId The security GovernanceRule execution key - unique key for the execution of
+     *                    GovernanceRule
+     * @param options The options parameters.
+     */
+    beginGet(resourceGroupName: string, securityConnectorName: string, ruleId: string, operationId: string, options?: SecurityConnectorGovernanceRulesExecuteStatusGetOptionalParams): Promise<PollerLike<PollOperationState<SecurityConnectorGovernanceRulesExecuteStatusGetResponse>, SecurityConnectorGovernanceRulesExecuteStatusGetResponse>>;
+    /**
+     * Get a specific governanceRule execution status for the requested scope by ruleId and operationId
+     * @param resourceGroupName The name of the resource group within the user's subscription. The name is
+     *                          case insensitive.
+     * @param securityConnectorName The security connector name.
+     * @param ruleId The security GovernanceRule key - unique key for the standard GovernanceRule
+     * @param operationId The security GovernanceRule execution key - unique key for the execution of
+     *                    GovernanceRule
+     * @param options The options parameters.
+     */
+    beginGetAndWait(resourceGroupName: string, securityConnectorName: string, ruleId: string, operationId: string, options?: SecurityConnectorGovernanceRulesExecuteStatusGetOptionalParams): Promise<SecurityConnectorGovernanceRulesExecuteStatusGetResponse>;
+}
+
+/** Defines headers for SecurityConnectorGovernanceRulesExecuteStatus_get operation. */
+export declare interface SecurityConnectorGovernanceRulesExecuteStatusGetHeaders {
+    /** Location URL for the execution status */
+    location?: string;
+}
+
+/** Optional parameters. */
+export declare interface SecurityConnectorGovernanceRulesExecuteStatusGetOptionalParams extends coreClient.OperationOptions {
+    /** Delay to wait until next poll, in milliseconds. */
+    updateIntervalInMs?: number;
+    /** A serialized poller which can be used to resume an existing paused Long-Running-Operation. */
+    resumeFrom?: string;
+}
+
+/** Contains response data for the get operation. */
+export declare type SecurityConnectorGovernanceRulesExecuteStatusGetResponse = ExecuteRuleStatus;
+
+/** Optional parameters. */
+export declare interface SecurityConnectorGovernanceRulesGetOptionalParams extends coreClient.OperationOptions {
 }
 
+/** Contains response data for the get operation. */
+export declare type SecurityConnectorGovernanceRulesGetResponse = GovernanceRule;
+
 /** Interface representing a SecurityConnectors. */
 export declare interface SecurityConnectors {
     /**
@@ -6910,17 +8501,17 @@ export declare interface SecurityConnectorsUpdateOptionalParams extends coreClie
 /** Contains response data for the update operation. */
 export declare type SecurityConnectorsUpdateResponse = SecurityConnector;
 
-/** Contact details for security issues */
-export declare type SecurityContact = Resource & {
-    /** The email of this security contact */
-    email?: string;
-    /** The phone number of this security contact */
+/** Contact details and configurations for notifications coming from Microsoft Defender for Cloud. */
+export declare interface SecurityContact extends Resource {
+    /** List of email addresses which will get notifications from Microsoft Defender for Cloud by the configurations defined in this security contact. */
+    emails?: string;
+    /** The security contact's phone number */
     phone?: string;
-    /** Whether to send security alerts notifications to the security contact */
-    alertNotifications?: AlertNotifications;
-    /** Whether to send security alerts notifications to subscription admins */
-    alertsToAdmins?: AlertsToAdmins;
-};
+    /** Defines whether to send email notifications about new security alerts */
+    alertNotifications?: SecurityContactPropertiesAlertNotifications;
+    /** Defines whether to send email notifications from Microsoft Defender for Cloud to persons with specific RBAC roles on the subscription. */
+    notificationsByRole?: SecurityContactPropertiesNotificationsByRole;
+}
 
 /** List of security contacts response */
 export declare interface SecurityContactList {
@@ -6936,39 +8527,48 @@ export declare interface SecurityContactList {
     readonly nextLink?: string;
 }
 
+/** Defines whether to send email notifications about new security alerts */
+export declare interface SecurityContactPropertiesAlertNotifications {
+    /** Defines if email notifications will be sent about new security alerts */
+    state?: State;
+    /** Defines the minimal alert severity which will be sent as email notifications */
+    minimalSeverity?: MinimalSeverity;
+}
+
+/** Defines whether to send email notifications from Microsoft Defender for Cloud to persons with specific RBAC roles on the subscription. */
+export declare interface SecurityContactPropertiesNotificationsByRole {
+    /** Defines whether to send email notifications from AMicrosoft Defender for Cloud to persons with specific RBAC roles on the subscription. */
+    state?: State;
+    /** Defines which RBAC roles will get email notifications from Microsoft Defender for Cloud. List of allowed RBAC roles: */
+    roles?: Roles[];
+}
+
 /** Interface representing a SecurityContacts. */
 export declare interface SecurityContacts {
     /**
-     * Security contact configurations for the subscription
+     * List all security contact configurations for the subscription
      * @param options The options parameters.
      */
     list(options?: SecurityContactsListOptionalParams): PagedAsyncIterableIterator<SecurityContact>;
     /**
-     * Security contact configurations for the subscription
+     * Get Default Security contact configurations for the subscription
      * @param securityContactName Name of the security contact object
      * @param options The options parameters.
      */
     get(securityContactName: string, options?: SecurityContactsGetOptionalParams): Promise<SecurityContactsGetResponse>;
     /**
-     * Security contact configurations for the subscription
+     * Create security contact configurations for the subscription
      * @param securityContactName Name of the security contact object
      * @param securityContact Security contact object
      * @param options The options parameters.
      */
     create(securityContactName: string, securityContact: SecurityContact, options?: SecurityContactsCreateOptionalParams): Promise<SecurityContactsCreateResponse>;
     /**
-     * Security contact configurations for the subscription
+     * Delete security contact configurations for the subscription
      * @param securityContactName Name of the security contact object
      * @param options The options parameters.
      */
     delete(securityContactName: string, options?: SecurityContactsDeleteOptionalParams): Promise<void>;
-    /**
-     * Security contact configurations for the subscription
-     * @param securityContactName Name of the security contact object
-     * @param securityContact Security contact object
-     * @param options The options parameters.
-     */
-    update(securityContactName: string, securityContact: SecurityContact, options?: SecurityContactsUpdateOptionalParams): Promise<SecurityContactsUpdateResponse>;
 }
 
 /** Optional parameters. */
@@ -7003,13 +8603,6 @@ export declare interface SecurityContactsListOptionalParams extends coreClient.O
 /** Contains response data for the list operation. */
 export declare type SecurityContactsListResponse = SecurityContactList;
 
-/** Optional parameters. */
-export declare interface SecurityContactsUpdateOptionalParams extends coreClient.OperationOptions {
-}
-
-/** Contains response data for the update operation. */
-export declare type SecurityContactsUpdateResponse = SecurityContact;
-
 /**
  * Defines values for SecurityFamily. \
  * {@link KnownSecurityFamily} can be used interchangeably with SecurityFamily,
@@ -7022,7 +8615,7 @@ export declare type SecurityContactsUpdateResponse = SecurityContact;
  */
 export declare type SecurityFamily = string;
 
-export declare type SecuritySolution = Resource & Location_2 & {
+export declare interface SecuritySolution extends Resource, Location_2 {
     /** The security family of the security solution */
     securityFamily?: SecurityFamily;
     /** The security family provisioning State */
@@ -7031,7 +8624,7 @@ export declare type SecuritySolution = Resource & Location_2 & {
     template?: string;
     /** The security solutions' status */
     protectionStatus?: string;
-};
+}
 
 export declare interface SecuritySolutionList {
     value?: SecuritySolution[];
@@ -7082,7 +8675,7 @@ export declare interface SecuritySolutionsListOptionalParams extends coreClient.
 /** Contains response data for the list operation. */
 export declare type SecuritySolutionsListResponse = SecuritySolutionList;
 
-export declare type SecuritySolutionsReferenceData = Resource & Location_2 & {
+export declare interface SecuritySolutionsReferenceData extends Resource, Location_2 {
     /** The security family of the security solution */
     securityFamily: SecurityFamily;
     /** The security solutions' vendor name */
@@ -7097,7 +8690,7 @@ export declare type SecuritySolutionsReferenceData = Resource & Location_2 & {
     publisherDisplayName: string;
     /** The security solutions' template */
     template: string;
-};
+}
 
 export declare interface SecuritySolutionsReferenceDataList {
     value?: SecuritySolutionsReferenceData[];
@@ -7144,7 +8737,7 @@ export declare interface SecuritySolutionsReferenceDataOperations {
 export declare type SecuritySolutionStatus = string;
 
 /** Security sub-assessment on a resource */
-export declare type SecuritySubAssessment = Resource & {
+export declare interface SecuritySubAssessment extends Resource {
     /**
      * Vulnerability ID
      * NOTE: This property will not be serialized. It can only be populated by the server.
@@ -7186,7 +8779,7 @@ export declare type SecuritySubAssessment = Resource & {
     resourceDetails?: ResourceDetailsUnion;
     /** Details of the sub-assessment */
     additionalData?: AdditionalDataUnion;
-};
+}
 
 /** List of security sub-assessments */
 export declare interface SecuritySubAssessmentList {
@@ -7200,7 +8793,7 @@ export declare interface SecuritySubAssessmentList {
 }
 
 /** Security task that we recommend to do in order to strengthen security */
-export declare type SecurityTask = Resource & {
+export declare interface SecurityTask extends Resource {
     /**
      * State of the task (Active, Resolved etc.)
      * NOTE: This property will not be serialized. It can only be populated by the server.
@@ -7223,7 +8816,7 @@ export declare type SecurityTask = Resource & {
      * NOTE: This property will not be serialized. It can only be populated by the server.
      */
     readonly subState?: string;
-};
+}
 
 /** List of security task recommendations */
 export declare interface SecurityTaskList {
@@ -7262,13 +8855,13 @@ export declare interface SensitivityLabel {
 }
 
 /** Describes the server vulnerability assessment details on a resource */
-export declare type ServerVulnerabilityAssessment = Resource & {
+export declare interface ServerVulnerabilityAssessment extends Resource {
     /**
      * The provisioningState of the vulnerability assessment capability on the VM
      * NOTE: This property will not be serialized. It can only be populated by the server.
      */
     readonly provisioningState?: ServerVulnerabilityAssessmentPropertiesProvisioningState;
-};
+}
 
 /** Optional parameters. */
 export declare interface ServerVulnerabilityAssessmentCreateOrUpdateOptionalParams extends coreClient.OperationOptions {
@@ -7373,7 +8966,7 @@ export declare interface ServerVulnerabilityAssessmentsList {
 }
 
 /** Additional context fields for server vulnerability assessment */
-export declare type ServerVulnerabilityProperties = AdditionalData & {
+export declare interface ServerVulnerabilityProperties extends AdditionalData {
     /** Polymorphic discriminator, which specifies the different types this object can be */
     assessedResourceType: "ServerVulnerabilityAssessment";
     /**
@@ -7410,7 +9003,7 @@ export declare type ServerVulnerabilityProperties = AdditionalData & {
     readonly publishedTime?: Date;
     /** NOTE: This property will not be serialized. It can only be populated by the server. */
     readonly vendorReferences?: VendorReference[];
-};
+}
 
 /** Details of the service principal. */
 export declare interface ServicePrincipalProperties {
@@ -7421,10 +9014,10 @@ export declare interface ServicePrincipalProperties {
 }
 
 /** The kind of the security setting */
-export declare type Setting = Resource & {
+export declare interface Setting extends Resource {
     /** the kind of the settings string */
     kind: SettingKind;
-};
+}
 
 /**
  * Defines values for SettingKind. \
@@ -7445,6 +9038,7 @@ export declare type SettingKind = string;
  * **MCAS** \
  * **WDATP** \
  * **WDATP_EXCLUDE_LINUX_PUBLIC_PREVIEW** \
+ * **WDATP_UNIFIED_SOLUTION** \
  * **Sentinel**
  */
 export declare type SettingName = string;
@@ -7452,18 +9046,18 @@ export declare type SettingName = string;
 /** Interface representing a Settings. */
 export declare interface Settings {
     /**
-     * Settings about different configurations in security center
+     * Settings about different configurations in Microsoft Defender for Cloud
      * @param options The options parameters.
      */
     list(options?: SettingsListOptionalParams): PagedAsyncIterableIterator<SettingUnion>;
     /**
-     * Settings of different configurations in security center
+     * Settings of different configurations in Microsoft Defender for Cloud
      * @param settingName The name of the setting
      * @param options The options parameters.
      */
     get(settingName: SettingName, options?: SettingsGetOptionalParams): Promise<SettingsGetResponse>;
     /**
-     * updating settings about different configurations in security center
+     * updating settings about different configurations in Microsoft Defender for Cloud
      * @param settingName The name of the setting
      * @param setting Setting object
      * @param options The options parameters.
@@ -7535,7 +9129,7 @@ export declare type Severity = string;
 export declare type SeverityEnum = string;
 
 /** Represents a software data */
-export declare type Software = Resource & {
+export declare interface Software extends Resource {
     /** Unique identifier for the virtual machine in the service. */
     deviceId?: string;
     /** Platform of the operating system running on the device. */
@@ -7554,7 +9148,7 @@ export declare type Software = Resource & {
     numberOfKnownVulnerabilities?: number;
     /** First time that the software was seen in the device. */
     firstSeenAt?: string;
-};
+}
 
 /** Interface representing a SoftwareInventories. */
 export declare interface SoftwareInventories {
@@ -7656,7 +9250,7 @@ export declare type Source = string;
 export declare type SourceSystem = string;
 
 /** Details of the resource that was assessed */
-export declare type SqlServerVulnerabilityProperties = AdditionalData & {
+export declare interface SqlServerVulnerabilityProperties extends AdditionalData {
     /** Polymorphic discriminator, which specifies the different types this object can be */
     assessedResourceType: "SqlServerVulnerability";
     /**
@@ -7669,7 +9263,7 @@ export declare type SqlServerVulnerabilityProperties = AdditionalData & {
      * NOTE: This property will not be serialized. It can only be populated by the server.
      */
     readonly query?: string;
-};
+}
 
 /** Interface representing a SqlVulnerabilityAssessmentBaselineRules. */
 export declare interface SqlVulnerabilityAssessmentBaselineRules {
@@ -7951,6 +9545,53 @@ export declare interface SubAssessmentStatus {
  */
 export declare type SubAssessmentStatusCode = string;
 
+/**
+ * Defines values for SubPlan. \
+ * {@link KnownSubPlan} can be used interchangeably with SubPlan,
+ *  this enum contains the known values that the service supports.
+ * ### Known values supported by the service
+ * **P1** \
+ * **P2**
+ */
+export declare type SubPlan = string;
+
+/** Interface representing a SubscriptionGovernanceRulesExecuteStatus. */
+export declare interface SubscriptionGovernanceRulesExecuteStatus {
+    /**
+     * Get a specific governanceRule execution status for the requested scope by ruleId and operationId
+     * @param ruleId The security GovernanceRule key - unique key for the standard GovernanceRule
+     * @param operationId The security GovernanceRule execution key - unique key for the execution of
+     *                    GovernanceRule
+     * @param options The options parameters.
+     */
+    beginGet(ruleId: string, operationId: string, options?: SubscriptionGovernanceRulesExecuteStatusGetOptionalParams): Promise<PollerLike<PollOperationState<SubscriptionGovernanceRulesExecuteStatusGetResponse>, SubscriptionGovernanceRulesExecuteStatusGetResponse>>;
+    /**
+     * Get a specific governanceRule execution status for the requested scope by ruleId and operationId
+     * @param ruleId The security GovernanceRule key - unique key for the standard GovernanceRule
+     * @param operationId The security GovernanceRule execution key - unique key for the execution of
+     *                    GovernanceRule
+     * @param options The options parameters.
+     */
+    beginGetAndWait(ruleId: string, operationId: string, options?: SubscriptionGovernanceRulesExecuteStatusGetOptionalParams): Promise<SubscriptionGovernanceRulesExecuteStatusGetResponse>;
+}
+
+/** Defines headers for SubscriptionGovernanceRulesExecuteStatus_get operation. */
+export declare interface SubscriptionGovernanceRulesExecuteStatusGetHeaders {
+    /** Location URL for the execution status */
+    location?: string;
+}
+
+/** Optional parameters. */
+export declare interface SubscriptionGovernanceRulesExecuteStatusGetOptionalParams extends coreClient.OperationOptions {
+    /** Delay to wait until next poll, in milliseconds. */
+    updateIntervalInMs?: number;
+    /** A serialized poller which can be used to resume an existing paused Long-Running-Operation. */
+    resumeFrom?: string;
+}
+
+/** Contains response data for the get operation. */
+export declare type SubscriptionGovernanceRulesExecuteStatusGetResponse = ExecuteRuleStatus;
+
 /**
  * Defines values for SupportedCloudEnum. \
  * {@link KnownSupportedCloudEnum} can be used interchangeably with SupportedCloudEnum,
@@ -8301,24 +9942,24 @@ export declare type Techniques = string;
 export declare type Threats = string;
 
 /** A custom alert rule that checks if a value (depends on the custom alert type) is within the given range. */
-export declare type ThresholdCustomAlertRule = CustomAlertRule & {
+export declare interface ThresholdCustomAlertRule extends CustomAlertRule {
     /** Polymorphic discriminator, which specifies the different types this object can be */
     ruleType: "ThresholdCustomAlertRule" | "TimeWindowCustomAlertRule" | "ActiveConnectionsNotInAllowedRange" | "AmqpC2DMessagesNotInAllowedRange" | "MqttC2DMessagesNotInAllowedRange" | "HttpC2DMessagesNotInAllowedRange" | "AmqpC2DRejectedMessagesNotInAllowedRange" | "MqttC2DRejectedMessagesNotInAllowedRange" | "HttpC2DRejectedMessagesNotInAllowedRange" | "AmqpD2CMessagesNotInAllowedRange" | "MqttD2CMessagesNotInAllowedRange" | "HttpD2CMessagesNotInAllowedRange" | "DirectMethodInvokesNotInAllowedRange" | "FailedLocalLoginsNotInAllowedRange" | "FileUploadsNotInAllowedRange" | "QueuePurgesNotInAllowedRange" | "TwinUpdatesNotInAllowedRange" | "UnauthorizedOperationsNotInAllowedRange";
     /** The minimum threshold. */
     minThreshold: number;
     /** The maximum threshold. */
     maxThreshold: number;
-};
+}
 
 export declare type ThresholdCustomAlertRuleUnion = ThresholdCustomAlertRule | TimeWindowCustomAlertRuleUnion;
 
 /** A custom alert rule that checks if the number of activities (depends on the custom alert type) in a time window is within the given range. */
-export declare type TimeWindowCustomAlertRule = ThresholdCustomAlertRule & {
+export declare interface TimeWindowCustomAlertRule extends ThresholdCustomAlertRule {
     /** Polymorphic discriminator, which specifies the different types this object can be */
     ruleType: "TimeWindowCustomAlertRule" | "ActiveConnectionsNotInAllowedRange" | "AmqpC2DMessagesNotInAllowedRange" | "MqttC2DMessagesNotInAllowedRange" | "HttpC2DMessagesNotInAllowedRange" | "AmqpC2DRejectedMessagesNotInAllowedRange" | "MqttC2DRejectedMessagesNotInAllowedRange" | "HttpC2DRejectedMessagesNotInAllowedRange" | "AmqpD2CMessagesNotInAllowedRange" | "MqttD2CMessagesNotInAllowedRange" | "HttpD2CMessagesNotInAllowedRange" | "DirectMethodInvokesNotInAllowedRange" | "FailedLocalLoginsNotInAllowedRange" | "FileUploadsNotInAllowedRange" | "QueuePurgesNotInAllowedRange" | "TwinUpdatesNotInAllowedRange" | "UnauthorizedOperationsNotInAllowedRange";
     /** The time window size in iso8601 format. */
     timeWindowSize: string;
-};
+}
 
 export declare type TimeWindowCustomAlertRuleUnion = TimeWindowCustomAlertRule | ActiveConnectionsNotInAllowedRange | AmqpC2DMessagesNotInAllowedRange | MqttC2DMessagesNotInAllowedRange | HttpC2DMessagesNotInAllowedRange | AmqpC2DRejectedMessagesNotInAllowedRange | MqttC2DRejectedMessagesNotInAllowedRange | HttpC2DRejectedMessagesNotInAllowedRange | AmqpD2CMessagesNotInAllowedRange | MqttD2CMessagesNotInAllowedRange | HttpD2CMessagesNotInAllowedRange | DirectMethodInvokesNotInAllowedRange | FailedLocalLoginsNotInAllowedRange | FileUploadsNotInAllowedRange | QueuePurgesNotInAllowedRange | TwinUpdatesNotInAllowedRange | UnauthorizedOperationsNotInAllowedRange;
 
@@ -8393,7 +10034,7 @@ export declare interface TopologyListOptionalParams extends coreClient.Operation
 /** Contains response data for the list operation. */
 export declare type TopologyListResponse = TopologyList;
 
-export declare type TopologyResource = Resource & Location_2 & {
+export declare interface TopologyResource extends Resource, Location_2 {
     /**
      * The UTC time on which the topology was calculated
      * NOTE: This property will not be serialized. It can only be populated by the server.
@@ -8404,7 +10045,7 @@ export declare type TopologyResource = Resource & Location_2 & {
      * NOTE: This property will not be serialized. It can only be populated by the server.
      */
     readonly topologyResources?: TopologySingleResource[];
-};
+}
 
 export declare interface TopologySingleResource {
     /**
@@ -8466,7 +10107,8 @@ export declare interface TopologySingleResourceParent {
 }
 
 /** Describes an Azure tracked resource. */
-export declare type TrackedResource = Resource & AzureTrackedResourceLocation & KindAutoGenerated & ETag & Tags & {};
+export declare interface TrackedResource extends Resource, AzureTrackedResourceLocation, KindAutoGenerated, ETag, Tags {
+}
 
 /**
  * Defines values for TransportProtocol. \
@@ -8479,16 +10121,26 @@ export declare type TrackedResource = Resource & AzureTrackedResourceLocation &
 export declare type TransportProtocol = string;
 
 /** Number of twin updates is not in allowed range. */
-export declare type TwinUpdatesNotInAllowedRange = TimeWindowCustomAlertRule & {
+export declare interface TwinUpdatesNotInAllowedRange extends TimeWindowCustomAlertRule {
     /** Polymorphic discriminator, which specifies the different types this object can be */
     ruleType: "TwinUpdatesNotInAllowedRange";
-};
+}
+
+/**
+ * Defines values for Type. \
+ * {@link KnownType} can be used interchangeably with Type,
+ *  this enum contains the known values that the service supports.
+ * ### Known values supported by the service
+ * **Qualys** \
+ * **TVM**
+ */
+export declare type Type = string;
 
 /** Number of unauthorized operations is not in allowed range. */
-export declare type UnauthorizedOperationsNotInAllowedRange = TimeWindowCustomAlertRule & {
+export declare interface UnauthorizedOperationsNotInAllowedRange extends TimeWindowCustomAlertRule {
     /** Polymorphic discriminator, which specifies the different types this object can be */
     ruleType: "UnauthorizedOperationsNotInAllowedRange";
-};
+}
 
 /**
  * Defines values for UnmaskedIpLoggingStatus. \
@@ -8500,12 +10152,12 @@ export declare type UnauthorizedOperationsNotInAllowedRange = TimeWindowCustomAl
  */
 export declare type UnmaskedIpLoggingStatus = string;
 
-export declare type UpdateIotSecuritySolutionData = TagsResource & {
+export declare interface UpdateIotSecuritySolutionData extends TagsResource {
     /** Properties of the IoT Security solution's user defined resources. */
     userDefinedResources?: UserDefinedResourcesProperties;
     /** List of the configuration status for each recommendation type. */
     recommendationsConfiguration?: RecommendationConfigurationProperties[];
-};
+}
 
 /** Properties of the IoT Security solution's user defined resources. */
 export declare interface UserDefinedResourcesProperties {
@@ -8593,12 +10245,12 @@ export declare interface VmRecommendation {
 }
 
 /** Configures where to store the OMS agent data for workspaces under a scope */
-export declare type WorkspaceSetting = Resource & {
+export declare interface WorkspaceSetting extends Resource {
     /** The full Azure ID of the workspace to save the data in */
     workspaceId?: string;
     /** All the VMs in this scope will send their security data to the mentioned workspace unless overridden by a setting with more specific scope */
     scope?: string;
-};
+}
 
 /** List of workspace settings response */
 export declare interface WorkspaceSettingList {