@ibm-cloud/secrets-manager 2.0.4 → 2.0.6

package/secrets-manager/v2.d.ts

@@ -133,7 +133,7 @@ declare class SecretsManagerV2 extends BaseService {
      * Delete a secret group by specifying the ID of the secret group.
      *
      * **Note:** To delete a secret group, it must be empty. If you need to remove a secret group that contains secrets,
-     * you must first [delete the secrets](#delete-secret) that are associated with the group.
+     * you must first delete the secrets that are associated with the group.
      *
      * @param {Object} params - The parameters to send to the service.
      * @param {string} params.id - The v4 UUID that uniquely identifies your secret group.
@@ -223,8 +223,7 @@ declare class SecretsManagerV2 extends BaseService {
      * Get a secret and its details by specifying the ID of the secret.
      *
      * A successful request returns the secret data that is associated with your secret, along with other metadata. To
-     * view only the details of a specified secret without retrieving its value, use the [Get secret
-     * metadata](#get-secret-metadata) operation.
+     * view only the details of a specified secret without retrieving its value, use the Get secret metadata operation.
      *
      * @param {Object} params - The parameters to send to the service.
      * @param {string} params.id - The v4 UUID that uniquely identifies your secret.
@@ -284,8 +283,7 @@ declare class SecretsManagerV2 extends BaseService {
      * Get a secret and its details by specifying the Name and Type of the secret.
      *
      * A successful request returns the secret data that is associated with your secret, along with other metadata. To
-     * view only the details of a specified secret without retrieving its value, use the [Get secret
-     * metadata](#get-secret-metadata) operation.
+     * view only the details of a specified secret without retrieving its value, use the Get secret metadata operation.
      *
      * @param {Object} params - The parameters to send to the service.
      * @param {string} params.secretType - The secret type. Supported types are arbitrary, imported_cert, public_cert,
@@ -662,6 +660,13 @@ declare class SecretsManagerV2 extends BaseService {
      *
      * **Usage:** If you want to list only the configurations that contain the string `text`, use
      * `../configurations?search=text`.
+     * @param {string[]} [params.secretTypes] - Filter configurations by secret types, iam_credentials, public_cert or
+     * private_cert.
+     *
+     * You can apply multiple filters by using a comma-separated list of secret types.
+     *
+     * **Usage:** To retrieve a list of configurations that are associated with all secret types, use
+     * `..?secret_types=iam_credentials,public_cert,private_cert`.
      * @param {OutgoingHttpHeaders} [params.headers] - Custom request headers
      * @returns {Promise<SecretsManagerV2.Response<SecretsManagerV2.ConfigurationMetadataPaginatedCollection>>}
      */
@@ -1281,8 +1286,25 @@ declare namespace SecretsManagerV2 {
          *  `../configurations?search=text`.
          */
         search?: string;
+        /** Filter configurations by secret types, iam_credentials, public_cert or private_cert.
+         *
+         *  You can apply multiple filters by using a comma-separated list of secret types.
+         *
+         *  **Usage:** To retrieve a list of configurations that are associated with all secret types, use
+         *  `..?secret_types=iam_credentials,public_cert,private_cert`.
+         */
+        secretTypes?: ListConfigurationsConstants.SecretTypes[] | string[];
         headers?: OutgoingHttpHeaders;
     }
+    /** Constants for the `listConfigurations` operation. */
+    namespace ListConfigurationsConstants {
+        /** Filter configurations by secret types, iam_credentials, public_cert or private_cert. You can apply multiple filters by using a comma-separated list of secret types. **Usage:** To retrieve a list of configurations that are associated with all secret types, use `..?secret_types=iam_credentials,public_cert,private_cert`. */
+        enum SecretTypes {
+            IAM_CREDENTIALS = "iam_credentials",
+            PRIVATE_CERT = "private_cert",
+            PUBLIC_CERT = "public_cert"
+        }
+    }
     /** Parameters for the `getConfiguration` operation. */
     interface GetConfigurationParams {
         /** The name that uniquely identifies a configuration. */
@@ -1295,13 +1317,13 @@ declare namespace SecretsManagerV2 {
     namespace GetConfigurationConstants {
         /** The configuration type of this configuration - use this header to resolve 300 error responses. */
         enum XSmAcceptConfigurationType {
-            PUBLIC_CERT_CONFIGURATION_CA_LETS_ENCRYPT = "public_cert_configuration_ca_lets_encrypt",
-            PUBLIC_CERT_CONFIGURATION_DNS_CLASSIC_INFRASTRUCTURE = "public_cert_configuration_dns_classic_infrastructure",
             PUBLIC_CERT_CONFIGURATION_DNS_CLOUD_INTERNET_SERVICES = "public_cert_configuration_dns_cloud_internet_services",
-            IAM_CREDENTIALS_CONFIGURATION = "iam_credentials_configuration",
+            PUBLIC_CERT_CONFIGURATION_DNS_CLASSIC_INFRASTRUCTURE = "public_cert_configuration_dns_classic_infrastructure",
+            PUBLIC_CERT_CONFIGURATION_CA_LETS_ENCRYPT = "public_cert_configuration_ca_lets_encrypt",
             PRIVATE_CERT_CONFIGURATION_ROOT_CA = "private_cert_configuration_root_ca",
             PRIVATE_CERT_CONFIGURATION_INTERMEDIATE_CA = "private_cert_configuration_intermediate_ca",
-            PRIVATE_CERT_CONFIGURATION_TEMPLATE = "private_cert_configuration_template"
+            PRIVATE_CERT_CONFIGURATION_TEMPLATE = "private_cert_configuration_template",
+            IAM_CREDENTIALS_CONFIGURATION = "iam_credentials_configuration"
         }
     }
     /** Parameters for the `updateConfiguration` operation. */
@@ -1317,13 +1339,13 @@ declare namespace SecretsManagerV2 {
     namespace UpdateConfigurationConstants {
         /** The configuration type of this configuration - use this header to resolve 300 error responses. */
         enum XSmAcceptConfigurationType {
-            PUBLIC_CERT_CONFIGURATION_CA_LETS_ENCRYPT = "public_cert_configuration_ca_lets_encrypt",
-            PUBLIC_CERT_CONFIGURATION_DNS_CLASSIC_INFRASTRUCTURE = "public_cert_configuration_dns_classic_infrastructure",
             PUBLIC_CERT_CONFIGURATION_DNS_CLOUD_INTERNET_SERVICES = "public_cert_configuration_dns_cloud_internet_services",
-            IAM_CREDENTIALS_CONFIGURATION = "iam_credentials_configuration",
+            PUBLIC_CERT_CONFIGURATION_DNS_CLASSIC_INFRASTRUCTURE = "public_cert_configuration_dns_classic_infrastructure",
+            PUBLIC_CERT_CONFIGURATION_CA_LETS_ENCRYPT = "public_cert_configuration_ca_lets_encrypt",
             PRIVATE_CERT_CONFIGURATION_ROOT_CA = "private_cert_configuration_root_ca",
             PRIVATE_CERT_CONFIGURATION_INTERMEDIATE_CA = "private_cert_configuration_intermediate_ca",
-            PRIVATE_CERT_CONFIGURATION_TEMPLATE = "private_cert_configuration_template"
+            PRIVATE_CERT_CONFIGURATION_TEMPLATE = "private_cert_configuration_template",
+            IAM_CREDENTIALS_CONFIGURATION = "iam_credentials_configuration"
         }
     }
     /** Parameters for the `deleteConfiguration` operation. */
@@ -1338,13 +1360,13 @@ declare namespace SecretsManagerV2 {
     namespace DeleteConfigurationConstants {
         /** The configuration type of this configuration - use this header to resolve 300 error responses. */
         enum XSmAcceptConfigurationType {
-            PUBLIC_CERT_CONFIGURATION_CA_LETS_ENCRYPT = "public_cert_configuration_ca_lets_encrypt",
-            PUBLIC_CERT_CONFIGURATION_DNS_CLASSIC_INFRASTRUCTURE = "public_cert_configuration_dns_classic_infrastructure",
             PUBLIC_CERT_CONFIGURATION_DNS_CLOUD_INTERNET_SERVICES = "public_cert_configuration_dns_cloud_internet_services",
-            IAM_CREDENTIALS_CONFIGURATION = "iam_credentials_configuration",
+            PUBLIC_CERT_CONFIGURATION_DNS_CLASSIC_INFRASTRUCTURE = "public_cert_configuration_dns_classic_infrastructure",
+            PUBLIC_CERT_CONFIGURATION_CA_LETS_ENCRYPT = "public_cert_configuration_ca_lets_encrypt",
             PRIVATE_CERT_CONFIGURATION_ROOT_CA = "private_cert_configuration_root_ca",
             PRIVATE_CERT_CONFIGURATION_INTERMEDIATE_CA = "private_cert_configuration_intermediate_ca",
-            PRIVATE_CERT_CONFIGURATION_TEMPLATE = "private_cert_configuration_template"
+            PRIVATE_CERT_CONFIGURATION_TEMPLATE = "private_cert_configuration_template",
+            IAM_CREDENTIALS_CONFIGURATION = "iam_credentials_configuration"
         }
     }
     /** Parameters for the `createConfigurationAction` operation. */
@@ -1360,13 +1382,13 @@ declare namespace SecretsManagerV2 {
     namespace CreateConfigurationActionConstants {
         /** The configuration type of this configuration - use this header to resolve 300 error responses. */
         enum XSmAcceptConfigurationType {
-            PUBLIC_CERT_CONFIGURATION_CA_LETS_ENCRYPT = "public_cert_configuration_ca_lets_encrypt",
-            PUBLIC_CERT_CONFIGURATION_DNS_CLASSIC_INFRASTRUCTURE = "public_cert_configuration_dns_classic_infrastructure",
             PUBLIC_CERT_CONFIGURATION_DNS_CLOUD_INTERNET_SERVICES = "public_cert_configuration_dns_cloud_internet_services",
-            IAM_CREDENTIALS_CONFIGURATION = "iam_credentials_configuration",
+            PUBLIC_CERT_CONFIGURATION_DNS_CLASSIC_INFRASTRUCTURE = "public_cert_configuration_dns_classic_infrastructure",
+            PUBLIC_CERT_CONFIGURATION_CA_LETS_ENCRYPT = "public_cert_configuration_ca_lets_encrypt",
             PRIVATE_CERT_CONFIGURATION_ROOT_CA = "private_cert_configuration_root_ca",
             PRIVATE_CERT_CONFIGURATION_INTERMEDIATE_CA = "private_cert_configuration_intermediate_ca",
-            PRIVATE_CERT_CONFIGURATION_TEMPLATE = "private_cert_configuration_template"
+            PRIVATE_CERT_CONFIGURATION_TEMPLATE = "private_cert_configuration_template",
+            IAM_CREDENTIALS_CONFIGURATION = "iam_credentials_configuration"
         }
     }
     /** Parameters for the `createNotificationsRegistration` operation. */
@@ -1394,7 +1416,9 @@ declare namespace SecretsManagerV2 {
     /*************************
      * model interfaces
      ************************/
-    /** Issuance information that is associated with your certificate. */
+    /**
+     * Issuance information that is associated with your certificate.
+     */
     interface CertificateIssuanceInfo {
         /** This parameter indicates whether the issued certificate is configured with an automatic rotation policy. */
         auto_rotated?: boolean;
@@ -1435,14 +1459,18 @@ declare namespace SecretsManagerV2 {
             }
         }
     }
-    /** The date and time that the certificate validity period begins and ends. */
+    /**
+     * The date and time that the certificate validity period begins and ends.
+     */
     interface CertificateValidity {
         /** The date-time format follows `RFC 3339`. */
         not_before: string;
         /** The date-time format follows `RFC 3339`. */
         not_after: string;
     }
-    /** Properties that describe a challenge. */
+    /**
+     * Properties that describe a challenge.
+     */
     interface ChallengeResource {
         /** The challenge domain. */
         domain?: string;
@@ -1455,19 +1483,29 @@ declare namespace SecretsManagerV2 {
         /** The TXT record value. */
         txt_record_value?: string;
     }
-    /** Your configuration. */
+    /**
+     * Your configuration.
+     */
     interface Configuration {
     }
-    /** The response body to specify the properties of the action to create a configuration. */
+    /**
+     * The response body to specify the properties of the action to create a configuration.
+     */
     interface ConfigurationAction {
     }
-    /** The request body to specify the properties of the action to create a configuration. */
+    /**
+     * The request body to specify the properties of the action to create a configuration.
+     */
     interface ConfigurationActionPrototype {
     }
-    /** Your configuration metadata properties. */
+    /**
+     * Your configuration metadata properties.
+     */
     interface ConfigurationMetadata {
     }
-    /** Properties that describe a paginated collection of secret locks. */
+    /**
+     * Properties that describe a paginated collection of secret locks.
+     */
     interface ConfigurationMetadataPaginatedCollection {
         /** The total number of resources in a collection. */
         total_count: number;
@@ -1486,38 +1524,54 @@ declare namespace SecretsManagerV2 {
         /** A collection of configuration metadata. */
         configurations: ConfigurationMetadata[];
     }
-    /** Your configuration update data. */
+    /**
+     * Your configuration update data.
+     */
     interface ConfigurationPatch {
     }
-    /** The details of your configuration. */
+    /**
+     * The details of your configuration.
+     */
     interface ConfigurationPrototype {
     }
-    /** The details of the Event Notifications registration. */
+    /**
+     * The details of the Event Notifications registration.
+     */
     interface NotificationsRegistration {
         /** A CRN that uniquely identifies an IBM Cloud resource. */
         event_notifications_instance_crn: string;
     }
-    /** A URL that points to the first page in a collection. */
+    /**
+     * A URL that points to the first page in a collection.
+     */
     interface PaginatedCollectionFirst {
         /** A URL that points to a page in a collection. */
         href: string;
     }
-    /** A URL that points to the last page in a collection. */
+    /**
+     * A URL that points to the last page in a collection.
+     */
     interface PaginatedCollectionLast {
         /** A URL that points to a page in a collection. */
         href: string;
     }
-    /** A URL that points to the next page in a collection. */
+    /**
+     * A URL that points to the next page in a collection.
+     */
     interface PaginatedCollectionNext {
         /** A URL that points to a page in a collection. */
         href: string;
     }
-    /** A URL that points to the previous page in a collection. */
+    /**
+     * A URL that points to the previous page in a collection.
+     */
     interface PaginatedCollectionPrevious {
         /** A URL that points to a page in a collection. */
         href: string;
     }
-    /** Policy for auto-generated passwords. */
+    /**
+     * Policy for auto-generated passwords.
+     */
     interface PasswordGenerationPolicy {
         /** The length of auto-generated passwords. */
         length?: number;
@@ -1528,7 +1582,10 @@ declare namespace SecretsManagerV2 {
         /** Include uppercase letters in auto-generated passwords. */
         include_uppercase?: boolean;
     }
-    /** Policy patch for auto-generated passwords. Policy properties that are included in the patch are updated. Properties that are not included in the patch remain unchanged. */
+    /**
+     * Policy patch for auto-generated passwords. Policy properties that are included in the patch are updated. Properties
+     * that are not included in the patch remain unchanged.
+     */
     interface PasswordGenerationPolicyPatch {
         /** The length of auto-generated passwords. */
         length?: number;
@@ -1539,7 +1596,9 @@ declare namespace SecretsManagerV2 {
         /** Include uppercase letters in auto-generated passwords. */
         include_uppercase?: boolean;
     }
-    /** Policy for auto-generated passwords. */
+    /**
+     * Policy for auto-generated passwords.
+     */
     interface PasswordGenerationPolicyRO {
         /** The length of auto-generated passwords. */
         length?: number;
@@ -1550,10 +1609,40 @@ declare namespace SecretsManagerV2 {
         /** Include uppercase letters in auto-generated passwords. */
         include_uppercase?: boolean;
     }
-    /** The configuration data of your Private Certificate. */
+    /**
+     * The configuration data of your Private Certificate.
+     */
     interface PrivateCertificateCAData {
     }
-    /** Defines the rotation object that is used to manually rotate public certificates. */
+    /**
+     * The data that is associated with a cryptographic key.
+     */
+    interface PrivateCertificateCryptoKey {
+        /** The ID of a PKCS#11 key to use. If the key does not exist and generation is enabled, this ID is given to the
+         *  generated key.  If the key exists, and generation is disabled, then this ID is used to look up the key. This
+         *  value or the crypto key label must be specified.
+         */
+        id?: string;
+        /** The label of the key to use. If the key does not exist and generation is enabled, this field is the label
+         *  that is given to the generated key.  If the key exists, and generation is disabled, then this label is used to
+         *  look up the key. This value or the crypto key ID must be specified.
+         */
+        label?: string;
+        /** The indication of whether a new key is generated by the crypto provider if the given key name cannot be
+         *  found.
+         */
+        allow_generate_key?: boolean;
+        /** The data that is associated with a cryptographic provider. */
+        provider: PrivateCertificateCryptoProvider;
+    }
+    /**
+     * The data that is associated with a cryptographic provider.
+     */
+    interface PrivateCertificateCryptoProvider {
+    }
+    /**
+     * Defines the rotation object that is used to manually rotate public certificates.
+     */
     interface PublicCertificateRotationObject {
         /** This field indicates whether Secrets Manager rotates the private key for your public certificate
          *  automatically.
@@ -1563,19 +1652,30 @@ declare namespace SecretsManagerV2 {
          */
         rotate_keys?: boolean;
     }
-    /** This field indicates whether Secrets Manager rotates your secrets automatically. Supported secret types: username_password, private_cert, public_cert, iam_credentials. */
+    /**
+     * This field indicates whether Secrets Manager rotates your secrets automatically. Supported secret types:
+     * username_password, private_cert, public_cert, iam_credentials.
+     */
     interface RotationPolicy {
     }
-    /** Your secret. */
+    /**
+     * Your secret.
+     */
     interface Secret {
     }
-    /** The response body to specify the properties of the action to create a secret. */
+    /**
+     * The response body to specify the properties of the action to create a secret.
+     */
     interface SecretAction {
     }
-    /** The request body to specify the properties for your secret action. */
+    /**
+     * The request body to specify the properties for your secret action.
+     */
     interface SecretActionPrototype {
     }
-    /** Properties that describe a secret group. */
+    /**
+     * Properties that describe a secret group.
+     */
     interface SecretGroup {
         /** A v4 UUID identifier, or `default` secret group. */
         id: string;
@@ -1594,14 +1694,18 @@ declare namespace SecretsManagerV2 {
         /** The date when a resource was modified. The date format follows `RFC 3339`. */
         updated_at: string;
     }
-    /** Properties that describe a collection of secret groups. */
+    /**
+     * Properties that describe a collection of secret groups.
+     */
     interface SecretGroupCollection {
         /** A collection of secret groups. */
         secret_groups: SecretGroup[];
         /** The total number of resources in a collection. */
         total_count: number;
     }
-    /** SecretLock. */
+    /**
+     * SecretLock.
+     */
     interface SecretLock {
         /** A human-readable name to assign to the lock. The lock name must be unique per secret version.
          *
@@ -1643,7 +1747,9 @@ declare namespace SecretsManagerV2 {
             }
         }
     }
-    /** SecretLockPrototype. */
+    /**
+     * SecretLockPrototype.
+     */
     interface SecretLockPrototype {
         /** A human-readable name to assign to the lock. The lock name must be unique per secret version.
          *
@@ -1660,7 +1766,9 @@ declare namespace SecretsManagerV2 {
         /** Optional information to associate with a lock, such as resources CRNs to be used by automation. */
         attributes?: JsonObject;
     }
-    /** Create locks response body containing a collection of locks that are attached to a secret. */
+    /**
+     * Create locks response body containing a collection of locks that are attached to a secret.
+     */
     interface SecretLocks {
         /** A v4 UUID identifier. */
         secret_id: string;
@@ -1690,7 +1798,9 @@ declare namespace SecretsManagerV2 {
             }
         }
     }
-    /** Properties that describe a paginated collection of your secret locks. */
+    /**
+     * Properties that describe a paginated collection of your secret locks.
+     */
     interface SecretLocksPaginatedCollection {
         /** The total number of resources in a collection. */
         total_count: number;
@@ -1709,10 +1819,14 @@ declare namespace SecretsManagerV2 {
         /** A collection of secret locks. */
         locks: SecretLock[];
     }
-    /** Properties of your secret metadata. */
+    /**
+     * Properties of your secret metadata.
+     */
     interface SecretMetadata {
     }
-    /** Properties that describe a paginated collection of your secret metadata. */
+    /**
+     * Properties that describe a paginated collection of your secret metadata.
+     */
     interface SecretMetadataPaginatedCollection {
         /** The total number of resources in a collection. */
         total_count: number;
@@ -1731,19 +1845,29 @@ declare namespace SecretsManagerV2 {
         /** A collection of secret metadata. */
         secrets: SecretMetadata[];
     }
-    /** Update your secret metadata. */
+    /**
+     * Update your secret metadata.
+     */
     interface SecretMetadataPatch {
     }
-    /** Specify the properties for your secret. */
+    /**
+     * Specify the properties for your secret.
+     */
     interface SecretPrototype {
     }
-    /** Your secret version. */
+    /**
+     * Your secret version.
+     */
     interface SecretVersion {
     }
-    /** The request body to specify the properties of the action to create a secret version. */
+    /**
+     * The request body to specify the properties of the action to create a secret version.
+     */
     interface SecretVersionActionPrototype {
     }
-    /** SecretVersionLocks. */
+    /**
+     * SecretVersionLocks.
+     */
     interface SecretVersionLocks {
         /** A v4 UUID identifier. */
         version_id: string;
@@ -1765,7 +1889,9 @@ declare namespace SecretsManagerV2 {
             }
         }
     }
-    /** Properties that describe a paginated collection of your secret version locks. */
+    /**
+     * Properties that describe a paginated collection of your secret version locks.
+     */
     interface SecretVersionLocksPaginatedCollection {
         /** The total number of resources in a collection. */
         total_count: number;
@@ -1784,20 +1910,28 @@ declare namespace SecretsManagerV2 {
         /** A collection of secret version locks. */
         locks: SecretLock[];
     }
-    /** Properties of the version metadata of your secret. */
+    /**
+     * Properties of the version metadata of your secret.
+     */
     interface SecretVersionMetadata {
     }
-    /** Properties that describe a collection of your secret version metadata. */
+    /**
+     * Properties that describe a collection of your secret version metadata.
+     */
     interface SecretVersionMetadataCollection {
         /** A collection of secret version metadata. */
         versions: SecretVersionMetadata[];
         /** The total number of resources in a collection. */
         total_count: number;
     }
-    /** Specify the properties for your new secret version. */
+    /**
+     * Specify the properties for your new secret version.
+     */
     interface SecretVersionPrototype {
     }
-    /** Properties that describe a paginated collection of your secrets locks. */
+    /**
+     * Properties that describe a paginated collection of your secrets locks.
+     */
     interface SecretsLocksPaginatedCollection {
         /** The total number of resources in a collection. */
         total_count: number;
@@ -1816,14 +1950,20 @@ declare namespace SecretsManagerV2 {
         /** A collection of secrets and their locks. */
         secrets_locks: SecretLocks[];
     }
-    /** The source service resource key data of the generated service credentials. */
+    /**
+     * The source service resource key data of the generated service credentials.
+     */
     interface ServiceCredentialsResourceKey {
         /** The resource key CRN of the generated service credentials. */
         crn?: string;
         /** The resource key name of the generated service credentials. */
         name?: string;
     }
-    /** The properties of the service credentials secret payload. */
+    /**
+     * The properties of the service credentials secret payload.
+     *
+     * This type supports additional properties of type any.
+     */
     interface ServiceCredentialsSecretCredentials {
         /** The API key that is generated for this secret.
          *
@@ -1841,10 +1981,14 @@ declare namespace SecretsManagerV2 {
         iam_role_crn?: string;
         /** The IAM Service ID CRN. */
         iam_serviceid_crn?: string;
-        /** ServiceCredentialsSecretCredentials accepts additional properties. */
+        /**
+         * ServiceCredentialsSecretCredentials accepts additional properties of type any.
+         */
         [propName: string]: any;
     }
-    /** The properties that are required to create the service credentials for the specified source service instance. */
+    /**
+     * The properties that are required to create the service credentials for the specified source service instance.
+     */
     interface ServiceCredentialsSecretSourceService {
         /** The source service instance identifier. */
         instance: ServiceCredentialsSourceServiceInstance;
@@ -1861,7 +2005,9 @@ declare namespace SecretsManagerV2 {
          */
         role?: ServiceCredentialsSourceServiceRole;
     }
-    /** The properties of the resource key that was created for this source service instance. */
+    /**
+     * The properties of the resource key that was created for this source service instance.
+     */
     interface ServiceCredentialsSecretSourceServiceRO {
         /** The source service instance identifier. */
         instance: ServiceCredentialsSourceServiceInstance;
@@ -1882,7 +2028,9 @@ declare namespace SecretsManagerV2 {
         /** The source service resource key data of the generated service credentials. */
         resource_key?: ServiceCredentialsResourceKey;
     }
-    /** The source service IAM data is returned in case IAM credentials where created for this secret. */
+    /**
+     * The source service IAM data is returned in case IAM credentials where created for this secret.
+     */
     interface ServiceCredentialsSourceServiceIam {
         /** The IAM apikey metadata for the IAM credentials that were generated. */
         apikey?: ServiceCredentialsSourceServiceIamApikey;
@@ -1891,7 +2039,9 @@ declare namespace SecretsManagerV2 {
         /** The IAM serviceid for the generated service credentials. */
         serviceid?: ServiceCredentialsSourceServiceIamServiceid;
     }
-    /** The IAM apikey metadata for the IAM credentials that were generated. */
+    /**
+     * The IAM apikey metadata for the IAM credentials that were generated.
+     */
     interface ServiceCredentialsSourceServiceIamApikey {
         /** The IAM API key description for the generated service credentials. */
         description?: string;
@@ -1900,37 +2050,60 @@ declare namespace SecretsManagerV2 {
         /** The IAM API key name for the generated service credentials. */
         name?: string;
     }
-    /** The IAM role for the generate service credentials. */
+    /**
+     * The IAM role for the generate service credentials.
+     */
     interface ServiceCredentialsSourceServiceIamRole {
         /** The IAM role CRN assigned to the generated service credentials. */
         crn?: string;
     }
-    /** The IAM serviceid for the generated service credentials. */
+    /**
+     * The IAM serviceid for the generated service credentials.
+     */
     interface ServiceCredentialsSourceServiceIamServiceid {
         /** The IAM Service ID CRN. */
         crn?: string;
     }
-    /** The source service instance identifier. */
+    /**
+     * The source service instance identifier.
+     */
     interface ServiceCredentialsSourceServiceInstance {
         /** A CRN that uniquely identifies a service credentials source. */
         crn?: string;
     }
-    /** Configuration options represented as key-value pairs. Service-defined options are used in the generation of credentials for some services. For example, Cloud Object Storage accepts the optional boolean parameter HMAC for creating specific kind of credentials. */
+    /**
+     * Configuration options represented as key-value pairs. Service-defined options are used in the generation of
+     * credentials for some services. For example, Cloud Object Storage accepts the optional boolean parameter HMAC for
+     * creating specific kind of credentials.
+     *
+     * This type supports additional properties of type any.
+     */
     interface ServiceCredentialsSourceServiceParameters {
         /** An optional platform defined option to reuse an existing IAM Service ID for the role assignment. */
         serviceid_crn?: string;
-        /** ServiceCredentialsSourceServiceParameters accepts additional properties. */
+        /**
+         * ServiceCredentialsSourceServiceParameters accepts additional properties of type any.
+         */
         [propName: string]: any;
     }
-    /** The service-specific custom role. CRN is accepted. The role is assigned as part of an access policy to any auto-generated IAM service ID.  If you provide an existing service ID, it is added to the access policy for that ID.  If a role is not provided, any new service IDs that are autogenerated, will not have an assigned access policy and provided service IDs are not changed in any way.  Refer to the service documentation for supported roles. */
+    /**
+     * The service-specific custom role. CRN is accepted. The role is assigned as part of an access policy to any
+     * auto-generated IAM service ID.  If you provide an existing service ID, it is added to the access policy for that
+     * ID.  If a role is not provided, any new service IDs that are autogenerated, will not have an assigned access policy
+     * and provided service IDs are not changed in any way.  Refer to the service documentation for supported roles.
+     */
     interface ServiceCredentialsSourceServiceRole {
         /** The service role CRN. */
         crn: string;
     }
-    /** The request body to specify the properties of the action to create a secret version. */
+    /**
+     * The request body to specify the properties of the action to create a secret version.
+     */
     interface VersionAction {
     }
-    /** Your arbitrary secret. */
+    /**
+     * Your arbitrary secret.
+     */
     interface ArbitrarySecret extends Secret {
         /** The unique identifier that is associated with the entity that created the secret. */
         created_by: string;
@@ -1979,6 +2152,8 @@ declare namespace SecretsManagerV2 {
         updated_at: string;
         /** The number of versions of your secret. */
         versions_total: number;
+        /** The list of configurations that have a reference to the secret. */
+        referenced_by?: string[];
         /** The date when the secret material expires. The date format follows the `RFC 3339` format. Supported secret
          *  types: Arbitrary, username_password.
          */
@@ -2009,7 +2184,9 @@ declare namespace SecretsManagerV2 {
             }
         }
     }
-    /** Properties of the metadata of your arbitrary secret.. */
+    /**
+     * Properties of the metadata of your arbitrary secret..
+     */
     interface ArbitrarySecretMetadata extends SecretMetadata {
         /** The unique identifier that is associated with the entity that created the secret. */
         created_by: string;
@@ -2058,6 +2235,8 @@ declare namespace SecretsManagerV2 {
         updated_at: string;
         /** The number of versions of your secret. */
         versions_total: number;
+        /** The list of configurations that have a reference to the secret. */
+        referenced_by?: string[];
         /** The date when the secret material expires. The date format follows the `RFC 3339` format. Supported secret
          *  types: Arbitrary, username_password.
          */
@@ -2086,7 +2265,9 @@ declare namespace SecretsManagerV2 {
             }
         }
     }
-    /** ArbitrarySecretMetadataPatch. */
+    /**
+     * ArbitrarySecretMetadataPatch.
+     */
     interface ArbitrarySecretMetadataPatch extends SecretMetadataPatch {
         /** A human-readable name to assign to your secret.
          *
@@ -2113,7 +2294,9 @@ declare namespace SecretsManagerV2 {
          */
         expiration_date?: string;
     }
-    /** ArbitrarySecretPrototype. */
+    /**
+     * ArbitrarySecretPrototype.
+     */
     interface ArbitrarySecretPrototype extends SecretPrototype {
         /** The secret metadata that a user can customize. */
         custom_metadata?: JsonObject;
@@ -2165,7 +2348,9 @@ declare namespace SecretsManagerV2 {
             }
         }
     }
-    /** Your arbitrary secret version. */
+    /**
+     * Your arbitrary secret version.
+     */
     interface ArbitrarySecretVersion extends SecretVersion {
         /** Indicates whether the version of the secret was created by automatic rotation. */
         auto_rotated?: boolean;
@@ -2224,7 +2409,9 @@ declare namespace SecretsManagerV2 {
             }
         }
     }
-    /** Properties of the version metadata of your arbitrary secret. */
+    /**
+     * Properties of the version metadata of your arbitrary secret.
+     */
     interface ArbitrarySecretVersionMetadata extends SecretVersionMetadata {
         /** Indicates whether the version of the secret was created by automatic rotation. */
         auto_rotated?: boolean;
@@ -2281,7 +2468,9 @@ declare namespace SecretsManagerV2 {
             }
         }
     }
-    /** ArbitrarySecretVersionPrototype. */
+    /**
+     * ArbitrarySecretVersionPrototype.
+     */
     interface ArbitrarySecretVersionPrototype extends SecretVersionPrototype {
         /** The secret data that is assigned to an `arbitrary` secret. */
         payload: string;
@@ -2290,7 +2479,9 @@ declare namespace SecretsManagerV2 {
         /** The secret version metadata that a user can customize. */
         version_custom_metadata?: JsonObject;
     }
-    /** This field indicates whether Secrets Manager rotates your secrets automatically. */
+    /**
+     * This field indicates whether Secrets Manager rotates your secrets automatically.
+     */
     interface CommonRotationPolicy extends RotationPolicy {
         /** This field indicates whether Secrets Manager rotates your secret automatically.
          *
@@ -2312,7 +2503,9 @@ declare namespace SecretsManagerV2 {
             }
         }
     }
-    /** Properties that describe a Classic Infrastructure DNS configuration. */
+    /**
+     * Properties that describe a Classic Infrastructure DNS configuration.
+     */
     interface IAMCredentialsConfiguration extends Configuration {
         /** The configuration type. Can be one of: iam_credentials_configuration,
          *  public_cert_configuration_ca_lets_encrypt, public_cert_configuration_dns_classic_infrastructure,
@@ -2343,13 +2536,13 @@ declare namespace SecretsManagerV2 {
         namespace Constants {
             /** The configuration type. Can be one of: iam_credentials_configuration, public_cert_configuration_ca_lets_encrypt, public_cert_configuration_dns_classic_infrastructure, public_cert_configuration_dns_cloud_internet_services, private_cert_configuration_root_ca, private_cert_configuration_intermediate_ca, private_cert_configuration_template. */
             enum ConfigType {
-                PUBLIC_CERT_CONFIGURATION_CA_LETS_ENCRYPT = "public_cert_configuration_ca_lets_encrypt",
-                PUBLIC_CERT_CONFIGURATION_DNS_CLASSIC_INFRASTRUCTURE = "public_cert_configuration_dns_classic_infrastructure",
                 PUBLIC_CERT_CONFIGURATION_DNS_CLOUD_INTERNET_SERVICES = "public_cert_configuration_dns_cloud_internet_services",
-                IAM_CREDENTIALS_CONFIGURATION = "iam_credentials_configuration",
+                PUBLIC_CERT_CONFIGURATION_DNS_CLASSIC_INFRASTRUCTURE = "public_cert_configuration_dns_classic_infrastructure",
+                PUBLIC_CERT_CONFIGURATION_CA_LETS_ENCRYPT = "public_cert_configuration_ca_lets_encrypt",
                 PRIVATE_CERT_CONFIGURATION_ROOT_CA = "private_cert_configuration_root_ca",
                 PRIVATE_CERT_CONFIGURATION_INTERMEDIATE_CA = "private_cert_configuration_intermediate_ca",
-                PRIVATE_CERT_CONFIGURATION_TEMPLATE = "private_cert_configuration_template"
+                PRIVATE_CERT_CONFIGURATION_TEMPLATE = "private_cert_configuration_template",
+                IAM_CREDENTIALS_CONFIGURATION = "iam_credentials_configuration"
             }
             /** The secret type. Supported types are arbitrary, imported_cert, public_cert, private_cert, iam_credentials, service_credentials, kv, and username_password. */
             enum SecretType {
@@ -2364,7 +2557,9 @@ declare namespace SecretsManagerV2 {
             }
         }
     }
-    /** Your IAMCredentials Configuration metadata properties. */
+    /**
+     * Your IAMCredentials Configuration metadata properties.
+     */
     interface IAMCredentialsConfigurationMetadata extends ConfigurationMetadata {
         /** The configuration type. Can be one of: iam_credentials_configuration,
          *  public_cert_configuration_ca_lets_encrypt, public_cert_configuration_dns_classic_infrastructure,
@@ -2389,13 +2584,13 @@ declare namespace SecretsManagerV2 {
         namespace Constants {
             /** The configuration type. Can be one of: iam_credentials_configuration, public_cert_configuration_ca_lets_encrypt, public_cert_configuration_dns_classic_infrastructure, public_cert_configuration_dns_cloud_internet_services, private_cert_configuration_root_ca, private_cert_configuration_intermediate_ca, private_cert_configuration_template. */
             enum ConfigType {
-                PUBLIC_CERT_CONFIGURATION_CA_LETS_ENCRYPT = "public_cert_configuration_ca_lets_encrypt",
-                PUBLIC_CERT_CONFIGURATION_DNS_CLASSIC_INFRASTRUCTURE = "public_cert_configuration_dns_classic_infrastructure",
                 PUBLIC_CERT_CONFIGURATION_DNS_CLOUD_INTERNET_SERVICES = "public_cert_configuration_dns_cloud_internet_services",
-                IAM_CREDENTIALS_CONFIGURATION = "iam_credentials_configuration",
+                PUBLIC_CERT_CONFIGURATION_DNS_CLASSIC_INFRASTRUCTURE = "public_cert_configuration_dns_classic_infrastructure",
+                PUBLIC_CERT_CONFIGURATION_CA_LETS_ENCRYPT = "public_cert_configuration_ca_lets_encrypt",
                 PRIVATE_CERT_CONFIGURATION_ROOT_CA = "private_cert_configuration_root_ca",
                 PRIVATE_CERT_CONFIGURATION_INTERMEDIATE_CA = "private_cert_configuration_intermediate_ca",
-                PRIVATE_CERT_CONFIGURATION_TEMPLATE = "private_cert_configuration_template"
+                PRIVATE_CERT_CONFIGURATION_TEMPLATE = "private_cert_configuration_template",
+                IAM_CREDENTIALS_CONFIGURATION = "iam_credentials_configuration"
             }
             /** The secret type. Supported types are arbitrary, imported_cert, public_cert, private_cert, iam_credentials, service_credentials, kv, and username_password. */
             enum SecretType {
@@ -2410,7 +2605,9 @@ declare namespace SecretsManagerV2 {
             }
         }
     }
-    /** The configuration update of the IAM Credentials engine. */
+    /**
+     * The configuration update of the IAM Credentials engine.
+     */
     interface IAMCredentialsConfigurationPatch extends ConfigurationPatch {
         /** An IBM Cloud API key that can create and manage service IDs. The API key must be assigned the Editor
          *  platform role on the Access Groups Service and the Operator platform role on the IAM Identity Service.  For more
@@ -2419,7 +2616,9 @@ declare namespace SecretsManagerV2 {
          */
         api_key: string;
     }
-    /** IAMCredentialsConfigurationPrototype. */
+    /**
+     * IAMCredentialsConfigurationPrototype.
+     */
     interface IAMCredentialsConfigurationPrototype extends ConfigurationPrototype {
         /** A human-readable unique name to assign to your configuration.
          *
@@ -2439,17 +2638,19 @@ declare namespace SecretsManagerV2 {
         namespace Constants {
             /** The configuration type. Can be one of: iam_credentials_configuration, public_cert_configuration_ca_lets_encrypt, public_cert_configuration_dns_classic_infrastructure, public_cert_configuration_dns_cloud_internet_services, private_cert_configuration_root_ca, private_cert_configuration_intermediate_ca, private_cert_configuration_template. */
             enum ConfigType {
-                PUBLIC_CERT_CONFIGURATION_CA_LETS_ENCRYPT = "public_cert_configuration_ca_lets_encrypt",
-                PUBLIC_CERT_CONFIGURATION_DNS_CLASSIC_INFRASTRUCTURE = "public_cert_configuration_dns_classic_infrastructure",
                 PUBLIC_CERT_CONFIGURATION_DNS_CLOUD_INTERNET_SERVICES = "public_cert_configuration_dns_cloud_internet_services",
-                IAM_CREDENTIALS_CONFIGURATION = "iam_credentials_configuration",
+                PUBLIC_CERT_CONFIGURATION_DNS_CLASSIC_INFRASTRUCTURE = "public_cert_configuration_dns_classic_infrastructure",
+                PUBLIC_CERT_CONFIGURATION_CA_LETS_ENCRYPT = "public_cert_configuration_ca_lets_encrypt",
                 PRIVATE_CERT_CONFIGURATION_ROOT_CA = "private_cert_configuration_root_ca",
                 PRIVATE_CERT_CONFIGURATION_INTERMEDIATE_CA = "private_cert_configuration_intermediate_ca",
-                PRIVATE_CERT_CONFIGURATION_TEMPLATE = "private_cert_configuration_template"
+                PRIVATE_CERT_CONFIGURATION_TEMPLATE = "private_cert_configuration_template",
+                IAM_CREDENTIALS_CONFIGURATION = "iam_credentials_configuration"
             }
         }
     }
-    /** Your IAM credentials secret. */
+    /**
+     * Your IAM credentials secret.
+     */
     interface IAMCredentialsSecret extends Secret {
         /** The unique identifier that is associated with the entity that created the secret. */
         created_by: string;
@@ -2498,12 +2699,15 @@ declare namespace SecretsManagerV2 {
         updated_at: string;
         /** The number of versions of your secret. */
         versions_total: number;
+        /** The list of configurations that have a reference to the secret. */
+        referenced_by?: string[];
         /** The time-to-live (TTL) or lease duration to assign to credentials that are generated. Supported secret
          *  types: iam_credentials, service_credentials. The TTL defines how long generated credentials remain valid. The
          *  value can be either an integer that specifies the number of seconds, or the string  representation of a
          *  duration, such as `1440m` or `24h`. For the iam_credentials secret type, the TTL field is mandatory. The minimum
          *  duration is 1 minute. The maximum is 90 days. For the service_credentials secret type, the TTL field is
          *  optional. If it is set the minimum duration is 1 day. The maximum is 90 days. By default, the TTL is set to 0.
+         *  After the TTL is modified, it will be applied only on the next secret rotation.
          */
         ttl: string;
         /** Access Groups that you can use for an `iam_credentials` secret.
@@ -2581,7 +2785,9 @@ declare namespace SecretsManagerV2 {
             }
         }
     }
-    /** Properties of the metadata of your IAM credentials secret. */
+    /**
+     * Properties of the metadata of your IAM credentials secret.
+     */
     interface IAMCredentialsSecretMetadata extends SecretMetadata {
         /** The unique identifier that is associated with the entity that created the secret. */
         created_by: string;
@@ -2630,12 +2836,15 @@ declare namespace SecretsManagerV2 {
         updated_at: string;
         /** The number of versions of your secret. */
         versions_total: number;
+        /** The list of configurations that have a reference to the secret. */
+        referenced_by?: string[];
         /** The time-to-live (TTL) or lease duration to assign to credentials that are generated. Supported secret
          *  types: iam_credentials, service_credentials. The TTL defines how long generated credentials remain valid. The
          *  value can be either an integer that specifies the number of seconds, or the string  representation of a
          *  duration, such as `1440m` or `24h`. For the iam_credentials secret type, the TTL field is mandatory. The minimum
          *  duration is 1 minute. The maximum is 90 days. For the service_credentials secret type, the TTL field is
          *  optional. If it is set the minimum duration is 1 day. The maximum is 90 days. By default, the TTL is set to 0.
+         *  After the TTL is modified, it will be applied only on the next secret rotation.
          */
         ttl: string;
         /** Access Groups that you can use for an `iam_credentials` secret.
@@ -2706,7 +2915,9 @@ declare namespace SecretsManagerV2 {
             }
         }
     }
-    /** IAMCredentialsSecretMetadataPatch. */
+    /**
+     * IAMCredentialsSecretMetadataPatch.
+     */
     interface IAMCredentialsSecretMetadataPatch extends SecretMetadataPatch {
         /** A human-readable name to assign to your secret.
          *
@@ -2734,6 +2945,7 @@ declare namespace SecretsManagerV2 {
          *  duration, such as `1440m` or `24h`. For the iam_credentials secret type, the TTL field is mandatory. The minimum
          *  duration is 1 minute. The maximum is 90 days. For the service_credentials secret type, the TTL field is
          *  optional. If it is set the minimum duration is 1 day. The maximum is 90 days. By default, the TTL is set to 0.
+         *  After the TTL is modified, it will be applied only on the next secret rotation.
          */
         ttl?: string;
         /** This field indicates whether Secrets Manager rotates your secrets automatically. Supported secret types:
@@ -2741,7 +2953,9 @@ declare namespace SecretsManagerV2 {
          */
         rotation?: RotationPolicy;
     }
-    /** IAMCredentialsSecretPrototype. */
+    /**
+     * IAMCredentialsSecretPrototype.
+     */
     interface IAMCredentialsSecretPrototype extends SecretPrototype {
         /** The secret type. Supported types are arbitrary, imported_cert, public_cert, private_cert, iam_credentials,
          *  service_credentials, kv, and username_password.
@@ -2773,6 +2987,7 @@ declare namespace SecretsManagerV2 {
          *  duration, such as `1440m` or `24h`. For the iam_credentials secret type, the TTL field is mandatory. The minimum
          *  duration is 1 minute. The maximum is 90 days. For the service_credentials secret type, the TTL field is
          *  optional. If it is set the minimum duration is 1 day. The maximum is 90 days. By default, the TTL is set to 0.
+         *  After the TTL is modified, it will be applied only on the next secret rotation.
          */
         ttl: string;
         /** Access Groups that you can use for an `iam_credentials` secret.
@@ -2821,7 +3036,9 @@ declare namespace SecretsManagerV2 {
             }
         }
     }
-    /** IAMCredentialsSecretRestoreFromVersionPrototype. */
+    /**
+     * IAMCredentialsSecretRestoreFromVersionPrototype.
+     */
     interface IAMCredentialsSecretRestoreFromVersionPrototype extends SecretVersionPrototype {
         /** A v4 UUID identifier, or `current` or `previous` secret version aliases. */
         restore_from_version: string;
@@ -2830,7 +3047,9 @@ declare namespace SecretsManagerV2 {
         /** The secret version metadata that a user can customize. */
         version_custom_metadata?: JsonObject;
     }
-    /** Your IAM credentials version. */
+    /**
+     * Your IAM credentials version.
+     */
     interface IAMCredentialsSecretVersion extends SecretVersion {
         /** Indicates whether the version of the secret was created by automatic rotation. */
         auto_rotated?: boolean;
@@ -2862,6 +3081,10 @@ declare namespace SecretsManagerV2 {
         version_custom_metadata?: JsonObject;
         /** A v4 UUID identifier. */
         secret_id: string;
+        /** The date when the secret material expires. The date format follows the `RFC 3339` format. Supported secret
+         *  types: Arbitrary, username_password.
+         */
+        expiration_date?: string;
         /** The ID of the API key that is generated for this secret. */
         api_key_id?: string;
         /** The service ID under which the API key (see the `api_key` field) is created.
@@ -2902,7 +3125,9 @@ declare namespace SecretsManagerV2 {
             }
         }
     }
-    /** Properties of the version metadata of your IAM credentials secret. */
+    /**
+     * Properties of the version metadata of your IAM credentials secret.
+     */
     interface IAMCredentialsSecretVersionMetadata extends SecretVersionMetadata {
         /** Indicates whether the version of the secret was created by automatic rotation. */
         auto_rotated?: boolean;
@@ -2934,6 +3159,10 @@ declare namespace SecretsManagerV2 {
         version_custom_metadata?: JsonObject;
         /** A v4 UUID identifier. */
         secret_id: string;
+        /** The date when the secret material expires. The date format follows the `RFC 3339` format. Supported secret
+         *  types: Arbitrary, username_password.
+         */
+        expiration_date?: string;
         /** The ID of the API key that is generated for this secret. */
         api_key_id?: string;
         /** The service ID under which the API key (see the `api_key` field) is created.
@@ -2967,14 +3196,18 @@ declare namespace SecretsManagerV2 {
             }
         }
     }
-    /** IAMCredentialsSecretVersionPrototype. */
+    /**
+     * IAMCredentialsSecretVersionPrototype.
+     */
     interface IAMCredentialsSecretVersionPrototype extends SecretVersionPrototype {
         /** The secret metadata that a user can customize. */
         custom_metadata?: JsonObject;
         /** The secret version metadata that a user can customize. */
         version_custom_metadata?: JsonObject;
     }
-    /** Your imported certificate. */
+    /**
+     * Your imported certificate.
+     */
     interface ImportedCertificate extends Secret {
         /** The unique identifier that is associated with the entity that created the secret. */
         created_by: string;
@@ -3023,6 +3256,8 @@ declare namespace SecretsManagerV2 {
         updated_at: string;
         /** The number of versions of your secret. */
         versions_total: number;
+        /** The list of configurations that have a reference to the secret. */
+        referenced_by?: string[];
         /** The identifier for the cryptographic algorithm that is used by the issuing certificate authority to sign a
          *  certificate.
          */
@@ -3085,7 +3320,9 @@ declare namespace SecretsManagerV2 {
             }
         }
     }
-    /** Properties of the secret metadata of your imported certificate. */
+    /**
+     * Properties of the secret metadata of your imported certificate.
+     */
     interface ImportedCertificateMetadata extends SecretMetadata {
         /** The unique identifier that is associated with the entity that created the secret. */
         created_by: string;
@@ -3134,6 +3371,8 @@ declare namespace SecretsManagerV2 {
         updated_at: string;
         /** The number of versions of your secret. */
         versions_total: number;
+        /** The list of configurations that have a reference to the secret. */
+        referenced_by?: string[];
         /** The identifier for the cryptographic algorithm that is used by the issuing certificate authority to sign a
          *  certificate.
          */
@@ -3186,7 +3425,9 @@ declare namespace SecretsManagerV2 {
             }
         }
     }
-    /** ImportedCertificateMetadataPatch. */
+    /**
+     * ImportedCertificateMetadataPatch.
+     */
     interface ImportedCertificateMetadataPatch extends SecretMetadataPatch {
         /** A human-readable name to assign to your secret.
          *
@@ -3209,7 +3450,9 @@ declare namespace SecretsManagerV2 {
         /** The secret metadata that a user can customize. */
         custom_metadata?: JsonObject;
     }
-    /** ImportedCertificatePrototype. */
+    /**
+     * ImportedCertificatePrototype.
+     */
     interface ImportedCertificatePrototype extends SecretPrototype {
         /** The secret type. Supported types are arbitrary, imported_cert, public_cert, private_cert, iam_credentials,
          *  service_credentials, kv, and username_password.
@@ -3265,7 +3508,9 @@ declare namespace SecretsManagerV2 {
             }
         }
     }
-    /** Versions of your imported certificate. */
+    /**
+     * Versions of your imported certificate.
+     */
     interface ImportedCertificateVersion extends SecretVersion {
         /** Indicates whether the version of the secret was created by automatic rotation. */
         auto_rotated?: boolean;
@@ -3300,7 +3545,7 @@ declare namespace SecretsManagerV2 {
         /** The date when the secret material expires. The date format follows the `RFC 3339` format. Supported secret
          *  types: Arbitrary, username_password.
          */
-        expiration_date: string;
+        expiration_date?: string;
         /** The unique serial number that was assigned to a certificate by the issuing certificate authority. */
         serial_number: string;
         /** The date and time that the certificate validity period begins and ends. */
@@ -3336,7 +3581,9 @@ declare namespace SecretsManagerV2 {
             }
         }
     }
-    /** Properties of the version metadata of your imported certificate. */
+    /**
+     * Properties of the version metadata of your imported certificate.
+     */
     interface ImportedCertificateVersionMetadata extends SecretVersionMetadata {
         /** Indicates whether the version of the secret was created by automatic rotation. */
         auto_rotated?: boolean;
@@ -3371,7 +3618,7 @@ declare namespace SecretsManagerV2 {
         /** The date when the secret material expires. The date format follows the `RFC 3339` format. Supported secret
          *  types: Arbitrary, username_password.
          */
-        expiration_date: string;
+        expiration_date?: string;
         /** The unique serial number that was assigned to a certificate by the issuing certificate authority. */
         serial_number: string;
         /** The date and time that the certificate validity period begins and ends. */
@@ -3397,7 +3644,9 @@ declare namespace SecretsManagerV2 {
             }
         }
     }
-    /** ImportedCertificateVersionPrototype. */
+    /**
+     * ImportedCertificateVersionPrototype.
+     */
     interface ImportedCertificateVersionPrototype extends SecretVersionPrototype {
         /** Your PEM-encoded certificate. The data must be formatted on a single line with embedded newline characters. */
         certificate: string;
@@ -3414,7 +3663,9 @@ declare namespace SecretsManagerV2 {
         /** The secret version metadata that a user can customize. */
         version_custom_metadata?: JsonObject;
     }
-    /** Your key-value secret. */
+    /**
+     * Your key-value secret.
+     */
     interface KVSecret extends Secret {
         /** The unique identifier that is associated with the entity that created the secret. */
         created_by: string;
@@ -3463,6 +3714,8 @@ declare namespace SecretsManagerV2 {
         updated_at: string;
         /** The number of versions of your secret. */
         versions_total: number;
+        /** The list of configurations that have a reference to the secret. */
+        referenced_by?: string[];
         /** The payload data of a key-value secret. */
         data: JsonObject;
     }
@@ -3489,7 +3742,9 @@ declare namespace SecretsManagerV2 {
             }
         }
     }
-    /** Properties of the metadata of your key-value secret metadata. */
+    /**
+     * Properties of the metadata of your key-value secret metadata.
+     */
     interface KVSecretMetadata extends SecretMetadata {
         /** The unique identifier that is associated with the entity that created the secret. */
         created_by: string;
@@ -3538,6 +3793,8 @@ declare namespace SecretsManagerV2 {
         updated_at: string;
         /** The number of versions of your secret. */
         versions_total: number;
+        /** The list of configurations that have a reference to the secret. */
+        referenced_by?: string[];
     }
     namespace KVSecretMetadata {
         namespace Constants {
@@ -3562,7 +3819,9 @@ declare namespace SecretsManagerV2 {
             }
         }
     }
-    /** KVSecretMetadataPatch. */
+    /**
+     * KVSecretMetadataPatch.
+     */
     interface KVSecretMetadataPatch extends SecretMetadataPatch {
         /** A human-readable name to assign to your secret.
          *
@@ -3585,7 +3844,9 @@ declare namespace SecretsManagerV2 {
         /** The secret metadata that a user can customize. */
         custom_metadata?: JsonObject;
     }
-    /** KVSecretPrototype. */
+    /**
+     * KVSecretPrototype.
+     */
     interface KVSecretPrototype extends SecretPrototype {
         /** The secret type. Supported types are arbitrary, imported_cert, public_cert, private_cert, iam_credentials,
          *  service_credentials, kv, and username_password.
@@ -3633,7 +3894,9 @@ declare namespace SecretsManagerV2 {
             }
         }
     }
-    /** Your key-value secret version. */
+    /**
+     * Your key-value secret version.
+     */
     interface KVSecretVersion extends SecretVersion {
         /** Indicates whether the version of the secret was created by automatic rotation. */
         auto_rotated?: boolean;
@@ -3665,6 +3928,10 @@ declare namespace SecretsManagerV2 {
         version_custom_metadata?: JsonObject;
         /** A v4 UUID identifier. */
         secret_id: string;
+        /** The date when the secret material expires. The date format follows the `RFC 3339` format. Supported secret
+         *  types: Arbitrary, username_password.
+         */
+        expiration_date?: string;
         /** The payload data of a key-value secret. */
         data: JsonObject;
     }
@@ -3688,7 +3955,9 @@ declare namespace SecretsManagerV2 {
             }
         }
     }
-    /** Properties of the version metadata of your key-value secret. */
+    /**
+     * Properties of the version metadata of your key-value secret.
+     */
     interface KVSecretVersionMetadata extends SecretVersionMetadata {
         /** Indicates whether the version of the secret was created by automatic rotation. */
         auto_rotated?: boolean;
@@ -3720,6 +3989,10 @@ declare namespace SecretsManagerV2 {
         version_custom_metadata?: JsonObject;
         /** A v4 UUID identifier. */
         secret_id: string;
+        /** The date when the secret material expires. The date format follows the `RFC 3339` format. Supported secret
+         *  types: Arbitrary, username_password.
+         */
+        expiration_date?: string;
     }
     namespace KVSecretVersionMetadata {
         namespace Constants {
@@ -3741,7 +4014,9 @@ declare namespace SecretsManagerV2 {
             }
         }
     }
-    /** KVSecretVersionPrototype. */
+    /**
+     * KVSecretVersionPrototype.
+     */
     interface KVSecretVersionPrototype extends SecretVersionPrototype {
         /** The payload data of a key-value secret. */
         data: JsonObject;
@@ -3750,7 +4025,9 @@ declare namespace SecretsManagerV2 {
         /** The secret version metadata that a user can customize. */
         version_custom_metadata?: JsonObject;
     }
-    /** Your private certificate. */
+    /**
+     * Your private certificate.
+     */
     interface PrivateCertificate extends Secret {
         /** The unique identifier that is associated with the entity that created the secret. */
         created_by: string;
@@ -3799,6 +4076,8 @@ declare namespace SecretsManagerV2 {
         updated_at: string;
         /** The number of versions of your secret. */
         versions_total: number;
+        /** The list of configurations that have a reference to the secret. */
+        referenced_by?: string[];
         /** The identifier for the cryptographic algorithm that is used by the issuing certificate authority to sign a
          *  certificate.
          */
@@ -3875,7 +4154,9 @@ declare namespace SecretsManagerV2 {
             }
         }
     }
-    /** The response body of the action to revoke the private certificate. */
+    /**
+     * The response body of the action to revoke the private certificate.
+     */
     interface PrivateCertificateActionRevoke extends SecretAction {
         /** The type of secret action. */
         action_type: PrivateCertificateActionRevoke.Constants.ActionType | string;
@@ -3891,7 +4172,9 @@ declare namespace SecretsManagerV2 {
             }
         }
     }
-    /** The request body to specify the properties of the action to revoke the private certificate. */
+    /**
+     * The request body to specify the properties of the action to revoke the private certificate.
+     */
     interface PrivateCertificateActionRevokePrototype extends SecretActionPrototype {
         /** The type of secret action. */
         action_type: PrivateCertificateActionRevokePrototype.Constants.ActionType | string;
@@ -3905,7 +4188,9 @@ declare namespace SecretsManagerV2 {
             }
         }
     }
-    /** The response body to specify the properties of the action to revoke the private certificate. */
+    /**
+     * The response body to specify the properties of the action to revoke the private certificate.
+     */
     interface PrivateCertificateConfigurationActionRevoke extends ConfigurationAction {
         /** The type of configuration action. */
         action_type: PrivateCertificateConfigurationActionRevoke.Constants.ActionType | string;
@@ -3924,7 +4209,9 @@ declare namespace SecretsManagerV2 {
             }
         }
     }
-    /** The request body to specify the properties of the action to revoke the private certificate configuration. */
+    /**
+     * The request body to specify the properties of the action to revoke the private certificate configuration.
+     */
     interface PrivateCertificateConfigurationActionRevokePrototype extends ConfigurationActionPrototype {
         /** The type of configuration action. */
         action_type: PrivateCertificateConfigurationActionRevokePrototype.Constants.ActionType | string;
@@ -3941,7 +4228,10 @@ declare namespace SecretsManagerV2 {
             }
         }
     }
-    /** The response body of the action to rotate the CRL of an intermediate certificate authority for the private certificate configuration. */
+    /**
+     * The response body of the action to rotate the CRL of an intermediate certificate authority for the private
+     * certificate configuration.
+     */
     interface PrivateCertificateConfigurationActionRotateCRL extends ConfigurationAction {
         /** The type of configuration action. */
         action_type: PrivateCertificateConfigurationActionRotateCRL.Constants.ActionType | string;
@@ -3962,7 +4252,10 @@ declare namespace SecretsManagerV2 {
             }
         }
     }
-    /** The request body of the action to rotate the CRL of an intermediate certificate authority for the private certificate configuration. */
+    /**
+     * The request body of the action to rotate the CRL of an intermediate certificate authority for the private
+     * certificate configuration.
+     */
     interface PrivateCertificateConfigurationActionRotateCRLPrototype extends ConfigurationActionPrototype {
         /** The type of configuration action. */
         action_type: PrivateCertificateConfigurationActionRotateCRLPrototype.Constants.ActionType | string;
@@ -3979,7 +4272,10 @@ declare namespace SecretsManagerV2 {
             }
         }
     }
-    /** The response body of the action to set a signed intermediate certificate authority for the private certificate configuration. */
+    /**
+     * The response body of the action to set a signed intermediate certificate authority for the private certificate
+     * configuration.
+     */
     interface PrivateCertificateConfigurationActionSetSigned extends ConfigurationAction {
         /** The type of configuration action. */
         action_type: PrivateCertificateConfigurationActionSetSigned.Constants.ActionType | string;
@@ -3998,7 +4294,10 @@ declare namespace SecretsManagerV2 {
             }
         }
     }
-    /** The request body of the action to set a signed intermediate certificate authority for the private certificate consideration. */
+    /**
+     * The request body of the action to set a signed intermediate certificate authority for the private certificate
+     * consideration.
+     */
     interface PrivateCertificateConfigurationActionSetSignedPrototype extends ConfigurationActionPrototype {
         /** The type of configuration action. */
         action_type: PrivateCertificateConfigurationActionSetSignedPrototype.Constants.ActionType | string;
@@ -4017,7 +4316,9 @@ declare namespace SecretsManagerV2 {
             }
         }
     }
-    /** The response body of the action to sign the CSR for the private certificate configuration. */
+    /**
+     * The response body of the action to sign the CSR for the private certificate configuration.
+     */
     interface PrivateCertificateConfigurationActionSignCSR extends ConfigurationAction {
         /** The Common Name (CN) represents the server name that is protected by the SSL certificate. */
         common_name?: string;
@@ -4118,7 +4419,9 @@ declare namespace SecretsManagerV2 {
             }
         }
     }
-    /** The request body to specify the properties of the action to sign a CSR for the private certificate configuration. */
+    /**
+     * The request body to specify the properties of the action to sign a CSR for the private certificate configuration.
+     */
     interface PrivateCertificateConfigurationActionSignCSRPrototype extends ConfigurationActionPrototype {
         /** The Common Name (CN) represents the server name that is protected by the SSL certificate. */
         common_name?: string;
@@ -4217,7 +4520,10 @@ declare namespace SecretsManagerV2 {
             }
         }
     }
-    /** The response body of the action to sign the intermediate certificate authority for the private certificate configuration. */
+    /**
+     * The response body of the action to sign the intermediate certificate authority for the private certificate
+     * configuration.
+     */
     interface PrivateCertificateConfigurationActionSignIntermediate extends ConfigurationAction {
         /** The Common Name (CN) represents the server name that is protected by the SSL certificate. */
         common_name?: string;
@@ -4316,7 +4622,10 @@ declare namespace SecretsManagerV2 {
             }
         }
     }
-    /** The request body to specify the properties of the action to sign an intermediate certificate authority for the private certificate configuration. */
+    /**
+     * The request body to specify the properties of the action to sign an intermediate certificate authority for the
+     * private certificate configuration.
+     */
     interface PrivateCertificateConfigurationActionSignIntermediatePrototype extends ConfigurationActionPrototype {
         /** The Common Name (CN) represents the server name that is protected by the SSL certificate. */
         common_name?: string;
@@ -4415,7 +4724,9 @@ declare namespace SecretsManagerV2 {
             }
         }
     }
-    /** The data that is associated with the root certificate authority. */
+    /**
+     * The data that is associated with the root certificate authority.
+     */
     interface PrivateCertificateConfigurationCACertificate extends PrivateCertificateCAData {
         /** Your PEM-encoded certificate. The data must be formatted on a single line with embedded newline characters. */
         certificate: string;
@@ -4426,7 +4737,9 @@ declare namespace SecretsManagerV2 {
         /** The certificate expiration time. */
         expiration?: number;
     }
-    /** The configuration of the root certificate authority. */
+    /**
+     * The configuration of the root certificate authority.
+     */
     interface PrivateCertificateConfigurationIntermediateCA extends Configuration {
         /** The configuration type. Can be one of: iam_credentials_configuration,
          *  public_cert_configuration_ca_lets_encrypt, public_cert_configuration_dns_classic_infrastructure,
@@ -4477,6 +4790,8 @@ declare namespace SecretsManagerV2 {
          *  `signed_certificate_required`, `certificate_template_required`, `configured`, `expired` or `revoked`.
          */
         status?: PrivateCertificateConfigurationIntermediateCA.Constants.Status | string;
+        /** The data that is associated with a cryptographic key. */
+        crypto_key?: PrivateCertificateCryptoKey;
         /** The maximum time-to-live (TTL) for certificates that are created by this CA in seconds. */
         max_ttl_seconds?: number;
         /** The time until the certificate revocation list (CRL) expires, in seconds. */
@@ -4540,13 +4855,13 @@ declare namespace SecretsManagerV2 {
         namespace Constants {
             /** The configuration type. Can be one of: iam_credentials_configuration, public_cert_configuration_ca_lets_encrypt, public_cert_configuration_dns_classic_infrastructure, public_cert_configuration_dns_cloud_internet_services, private_cert_configuration_root_ca, private_cert_configuration_intermediate_ca, private_cert_configuration_template. */
             enum ConfigType {
-                PUBLIC_CERT_CONFIGURATION_CA_LETS_ENCRYPT = "public_cert_configuration_ca_lets_encrypt",
-                PUBLIC_CERT_CONFIGURATION_DNS_CLASSIC_INFRASTRUCTURE = "public_cert_configuration_dns_classic_infrastructure",
                 PUBLIC_CERT_CONFIGURATION_DNS_CLOUD_INTERNET_SERVICES = "public_cert_configuration_dns_cloud_internet_services",
-                IAM_CREDENTIALS_CONFIGURATION = "iam_credentials_configuration",
+                PUBLIC_CERT_CONFIGURATION_DNS_CLASSIC_INFRASTRUCTURE = "public_cert_configuration_dns_classic_infrastructure",
+                PUBLIC_CERT_CONFIGURATION_CA_LETS_ENCRYPT = "public_cert_configuration_ca_lets_encrypt",
                 PRIVATE_CERT_CONFIGURATION_ROOT_CA = "private_cert_configuration_root_ca",
                 PRIVATE_CERT_CONFIGURATION_INTERMEDIATE_CA = "private_cert_configuration_intermediate_ca",
-                PRIVATE_CERT_CONFIGURATION_TEMPLATE = "private_cert_configuration_template"
+                PRIVATE_CERT_CONFIGURATION_TEMPLATE = "private_cert_configuration_template",
+                IAM_CREDENTIALS_CONFIGURATION = "iam_credentials_configuration"
             }
             /** The secret type. Supported types are arbitrary, imported_cert, public_cert, private_cert, iam_credentials, service_credentials, kv, and username_password. */
             enum SecretType {
@@ -4590,7 +4905,9 @@ declare namespace SecretsManagerV2 {
             }
         }
     }
-    /** The data that is associated with the intermediate certificate authority. */
+    /**
+     * The data that is associated with the intermediate certificate authority.
+     */
     interface PrivateCertificateConfigurationIntermediateCACSR extends PrivateCertificateCAData {
         /** The certificate signing request. */
         csr?: string;
@@ -4612,7 +4929,9 @@ declare namespace SecretsManagerV2 {
             }
         }
     }
-    /** The configuration of the metadata properties of the intermediate certificate authority. */
+    /**
+     * The configuration of the metadata properties of the intermediate certificate authority.
+     */
     interface PrivateCertificateConfigurationIntermediateCAMetadata extends ConfigurationMetadata {
         /** The configuration type. Can be one of: iam_credentials_configuration,
          *  public_cert_configuration_ca_lets_encrypt, public_cert_configuration_dns_classic_infrastructure,
@@ -4663,18 +4982,20 @@ declare namespace SecretsManagerV2 {
          *  `signed_certificate_required`, `certificate_template_required`, `configured`, `expired` or `revoked`.
          */
         status?: PrivateCertificateConfigurationIntermediateCAMetadata.Constants.Status | string;
+        /** The data that is associated with a cryptographic key. */
+        crypto_key?: PrivateCertificateCryptoKey;
     }
     namespace PrivateCertificateConfigurationIntermediateCAMetadata {
         namespace Constants {
             /** The configuration type. Can be one of: iam_credentials_configuration, public_cert_configuration_ca_lets_encrypt, public_cert_configuration_dns_classic_infrastructure, public_cert_configuration_dns_cloud_internet_services, private_cert_configuration_root_ca, private_cert_configuration_intermediate_ca, private_cert_configuration_template. */
             enum ConfigType {
-                PUBLIC_CERT_CONFIGURATION_CA_LETS_ENCRYPT = "public_cert_configuration_ca_lets_encrypt",
-                PUBLIC_CERT_CONFIGURATION_DNS_CLASSIC_INFRASTRUCTURE = "public_cert_configuration_dns_classic_infrastructure",
                 PUBLIC_CERT_CONFIGURATION_DNS_CLOUD_INTERNET_SERVICES = "public_cert_configuration_dns_cloud_internet_services",
-                IAM_CREDENTIALS_CONFIGURATION = "iam_credentials_configuration",
+                PUBLIC_CERT_CONFIGURATION_DNS_CLASSIC_INFRASTRUCTURE = "public_cert_configuration_dns_classic_infrastructure",
+                PUBLIC_CERT_CONFIGURATION_CA_LETS_ENCRYPT = "public_cert_configuration_ca_lets_encrypt",
                 PRIVATE_CERT_CONFIGURATION_ROOT_CA = "private_cert_configuration_root_ca",
                 PRIVATE_CERT_CONFIGURATION_INTERMEDIATE_CA = "private_cert_configuration_intermediate_ca",
-                PRIVATE_CERT_CONFIGURATION_TEMPLATE = "private_cert_configuration_template"
+                PRIVATE_CERT_CONFIGURATION_TEMPLATE = "private_cert_configuration_template",
+                IAM_CREDENTIALS_CONFIGURATION = "iam_credentials_configuration"
             }
             /** The secret type. Supported types are arbitrary, imported_cert, public_cert, private_cert, iam_credentials, service_credentials, kv, and username_password. */
             enum SecretType {
@@ -4708,7 +5029,9 @@ declare namespace SecretsManagerV2 {
             }
         }
     }
-    /** The configuration patch of the intermediate certificate authority. */
+    /**
+     * The configuration patch of the intermediate certificate authority.
+     */
     interface PrivateCertificateConfigurationIntermediateCAPatch extends ConfigurationPatch {
         /** The maximum time-to-live (TTL) for certificates that are created by this CA.
          *
@@ -4741,7 +5064,9 @@ declare namespace SecretsManagerV2 {
          */
         issuing_certificates_urls_encoded?: boolean;
     }
-    /** The configuration of the intermediate certificate authority. */
+    /**
+     * The configuration of the intermediate certificate authority.
+     */
     interface PrivateCertificateConfigurationIntermediateCAPrototype extends ConfigurationPrototype {
         /** The configuration type. Can be one of: iam_credentials_configuration,
          *  public_cert_configuration_ca_lets_encrypt, public_cert_configuration_dns_classic_infrastructure,
@@ -4754,6 +5079,8 @@ declare namespace SecretsManagerV2 {
          *  To protect your privacy, do not use personal data, such as your name or location, as an name for your secret.
          */
         name: string;
+        /** The data that is associated with a cryptographic key. */
+        crypto_key?: PrivateCertificateCryptoKey;
         /** The maximum time-to-live (TTL) for certificates that are created by this CA.
          *
          *  The value can be supplied as a string representation of a duration in hours, for example '8760h'. In the API
@@ -4854,13 +5181,13 @@ declare namespace SecretsManagerV2 {
         namespace Constants {
             /** The configuration type. Can be one of: iam_credentials_configuration, public_cert_configuration_ca_lets_encrypt, public_cert_configuration_dns_classic_infrastructure, public_cert_configuration_dns_cloud_internet_services, private_cert_configuration_root_ca, private_cert_configuration_intermediate_ca, private_cert_configuration_template. */
             enum ConfigType {
-                PUBLIC_CERT_CONFIGURATION_CA_LETS_ENCRYPT = "public_cert_configuration_ca_lets_encrypt",
-                PUBLIC_CERT_CONFIGURATION_DNS_CLASSIC_INFRASTRUCTURE = "public_cert_configuration_dns_classic_infrastructure",
                 PUBLIC_CERT_CONFIGURATION_DNS_CLOUD_INTERNET_SERVICES = "public_cert_configuration_dns_cloud_internet_services",
-                IAM_CREDENTIALS_CONFIGURATION = "iam_credentials_configuration",
+                PUBLIC_CERT_CONFIGURATION_DNS_CLASSIC_INFRASTRUCTURE = "public_cert_configuration_dns_classic_infrastructure",
+                PUBLIC_CERT_CONFIGURATION_CA_LETS_ENCRYPT = "public_cert_configuration_ca_lets_encrypt",
                 PRIVATE_CERT_CONFIGURATION_ROOT_CA = "private_cert_configuration_root_ca",
                 PRIVATE_CERT_CONFIGURATION_INTERMEDIATE_CA = "private_cert_configuration_intermediate_ca",
-                PRIVATE_CERT_CONFIGURATION_TEMPLATE = "private_cert_configuration_template"
+                PRIVATE_CERT_CONFIGURATION_TEMPLATE = "private_cert_configuration_template",
+                IAM_CREDENTIALS_CONFIGURATION = "iam_credentials_configuration"
             }
             /** The signing method to use with this certificate authority to generate private certificates. You can choose between internal or externally signed options. For more information, see the [docs](https://cloud.ibm.com/docs/secrets-manager?topic=secrets-manager-intermediate-certificate-authorities). */
             enum SigningMethod {
@@ -4884,7 +5211,9 @@ declare namespace SecretsManagerV2 {
             }
         }
     }
-    /** The root certificate authority . */
+    /**
+     * The root certificate authority .
+     */
     interface PrivateCertificateConfigurationRootCA extends Configuration {
         /** The configuration type. Can be one of: iam_credentials_configuration,
          *  public_cert_configuration_ca_lets_encrypt, public_cert_configuration_dns_classic_infrastructure,
@@ -4927,6 +5256,8 @@ declare namespace SecretsManagerV2 {
          *  `signed_certificate_required`, `certificate_template_required`, `configured`, `expired` or `revoked`.
          */
         status?: PrivateCertificateConfigurationRootCA.Constants.Status | string;
+        /** The data that is associated with a cryptographic key. */
+        crypto_key?: PrivateCertificateCryptoKey;
         /** The maximum time-to-live (TTL) for certificates that are created by this CA in seconds. */
         max_ttl_seconds?: number;
         /** The time until the certificate revocation list (CRL) expires, in seconds. */
@@ -5002,13 +5333,13 @@ declare namespace SecretsManagerV2 {
         namespace Constants {
             /** The configuration type. Can be one of: iam_credentials_configuration, public_cert_configuration_ca_lets_encrypt, public_cert_configuration_dns_classic_infrastructure, public_cert_configuration_dns_cloud_internet_services, private_cert_configuration_root_ca, private_cert_configuration_intermediate_ca, private_cert_configuration_template. */
             enum ConfigType {
-                PUBLIC_CERT_CONFIGURATION_CA_LETS_ENCRYPT = "public_cert_configuration_ca_lets_encrypt",
-                PUBLIC_CERT_CONFIGURATION_DNS_CLASSIC_INFRASTRUCTURE = "public_cert_configuration_dns_classic_infrastructure",
                 PUBLIC_CERT_CONFIGURATION_DNS_CLOUD_INTERNET_SERVICES = "public_cert_configuration_dns_cloud_internet_services",
-                IAM_CREDENTIALS_CONFIGURATION = "iam_credentials_configuration",
+                PUBLIC_CERT_CONFIGURATION_DNS_CLASSIC_INFRASTRUCTURE = "public_cert_configuration_dns_classic_infrastructure",
+                PUBLIC_CERT_CONFIGURATION_CA_LETS_ENCRYPT = "public_cert_configuration_ca_lets_encrypt",
                 PRIVATE_CERT_CONFIGURATION_ROOT_CA = "private_cert_configuration_root_ca",
                 PRIVATE_CERT_CONFIGURATION_INTERMEDIATE_CA = "private_cert_configuration_intermediate_ca",
-                PRIVATE_CERT_CONFIGURATION_TEMPLATE = "private_cert_configuration_template"
+                PRIVATE_CERT_CONFIGURATION_TEMPLATE = "private_cert_configuration_template",
+                IAM_CREDENTIALS_CONFIGURATION = "iam_credentials_configuration"
             }
             /** The secret type. Supported types are arbitrary, imported_cert, public_cert, private_cert, iam_credentials, service_credentials, kv, and username_password. */
             enum SecretType {
@@ -5047,7 +5378,9 @@ declare namespace SecretsManagerV2 {
             }
         }
     }
-    /** The configuration of the metadata properties of the root certificate authority. */
+    /**
+     * The configuration of the metadata properties of the root certificate authority.
+     */
     interface PrivateCertificateConfigurationRootCAMetadata extends ConfigurationMetadata {
         /** The configuration type. Can be one of: iam_credentials_configuration,
          *  public_cert_configuration_ca_lets_encrypt, public_cert_configuration_dns_classic_infrastructure,
@@ -5090,18 +5423,20 @@ declare namespace SecretsManagerV2 {
          *  `signed_certificate_required`, `certificate_template_required`, `configured`, `expired` or `revoked`.
          */
         status?: PrivateCertificateConfigurationRootCAMetadata.Constants.Status | string;
+        /** The data that is associated with a cryptographic key. */
+        crypto_key?: PrivateCertificateCryptoKey;
     }
     namespace PrivateCertificateConfigurationRootCAMetadata {
         namespace Constants {
             /** The configuration type. Can be one of: iam_credentials_configuration, public_cert_configuration_ca_lets_encrypt, public_cert_configuration_dns_classic_infrastructure, public_cert_configuration_dns_cloud_internet_services, private_cert_configuration_root_ca, private_cert_configuration_intermediate_ca, private_cert_configuration_template. */
             enum ConfigType {
-                PUBLIC_CERT_CONFIGURATION_CA_LETS_ENCRYPT = "public_cert_configuration_ca_lets_encrypt",
-                PUBLIC_CERT_CONFIGURATION_DNS_CLASSIC_INFRASTRUCTURE = "public_cert_configuration_dns_classic_infrastructure",
                 PUBLIC_CERT_CONFIGURATION_DNS_CLOUD_INTERNET_SERVICES = "public_cert_configuration_dns_cloud_internet_services",
-                IAM_CREDENTIALS_CONFIGURATION = "iam_credentials_configuration",
+                PUBLIC_CERT_CONFIGURATION_DNS_CLASSIC_INFRASTRUCTURE = "public_cert_configuration_dns_classic_infrastructure",
+                PUBLIC_CERT_CONFIGURATION_CA_LETS_ENCRYPT = "public_cert_configuration_ca_lets_encrypt",
                 PRIVATE_CERT_CONFIGURATION_ROOT_CA = "private_cert_configuration_root_ca",
                 PRIVATE_CERT_CONFIGURATION_INTERMEDIATE_CA = "private_cert_configuration_intermediate_ca",
-                PRIVATE_CERT_CONFIGURATION_TEMPLATE = "private_cert_configuration_template"
+                PRIVATE_CERT_CONFIGURATION_TEMPLATE = "private_cert_configuration_template",
+                IAM_CREDENTIALS_CONFIGURATION = "iam_credentials_configuration"
             }
             /** The secret type. Supported types are arbitrary, imported_cert, public_cert, private_cert, iam_credentials, service_credentials, kv, and username_password. */
             enum SecretType {
@@ -5130,7 +5465,9 @@ declare namespace SecretsManagerV2 {
             }
         }
     }
-    /** The configuration of the metadata patch for the root certificate authority. */
+    /**
+     * The configuration of the metadata patch for the root certificate authority.
+     */
     interface PrivateCertificateConfigurationRootCAPatch extends ConfigurationPatch {
         /** The maximum time-to-live (TTL) for certificates that are created by this CA.
          *
@@ -5163,7 +5500,9 @@ declare namespace SecretsManagerV2 {
          */
         issuing_certificates_urls_encoded?: boolean;
     }
-    /** The configuration of the root certificate authority. */
+    /**
+     * The configuration of the root certificate authority.
+     */
     interface PrivateCertificateConfigurationRootCAPrototype extends ConfigurationPrototype {
         /** The configuration type. Can be one of: iam_credentials_configuration,
          *  public_cert_configuration_ca_lets_encrypt, public_cert_configuration_dns_classic_infrastructure,
@@ -5176,6 +5515,8 @@ declare namespace SecretsManagerV2 {
          *  To protect your privacy, do not use personal data, such as your name or location, as an name for your secret.
          */
         name: string;
+        /** The data that is associated with a cryptographic key. */
+        crypto_key?: PrivateCertificateCryptoKey;
         /** The maximum time-to-live (TTL) for certificates that are created by this CA.
          *
          *  The value can be supplied as a string representation of a duration in hours, for example '8760h'. In the API
@@ -5285,13 +5626,13 @@ declare namespace SecretsManagerV2 {
         namespace Constants {
             /** The configuration type. Can be one of: iam_credentials_configuration, public_cert_configuration_ca_lets_encrypt, public_cert_configuration_dns_classic_infrastructure, public_cert_configuration_dns_cloud_internet_services, private_cert_configuration_root_ca, private_cert_configuration_intermediate_ca, private_cert_configuration_template. */
             enum ConfigType {
-                PUBLIC_CERT_CONFIGURATION_CA_LETS_ENCRYPT = "public_cert_configuration_ca_lets_encrypt",
-                PUBLIC_CERT_CONFIGURATION_DNS_CLASSIC_INFRASTRUCTURE = "public_cert_configuration_dns_classic_infrastructure",
                 PUBLIC_CERT_CONFIGURATION_DNS_CLOUD_INTERNET_SERVICES = "public_cert_configuration_dns_cloud_internet_services",
-                IAM_CREDENTIALS_CONFIGURATION = "iam_credentials_configuration",
+                PUBLIC_CERT_CONFIGURATION_DNS_CLASSIC_INFRASTRUCTURE = "public_cert_configuration_dns_classic_infrastructure",
+                PUBLIC_CERT_CONFIGURATION_CA_LETS_ENCRYPT = "public_cert_configuration_ca_lets_encrypt",
                 PRIVATE_CERT_CONFIGURATION_ROOT_CA = "private_cert_configuration_root_ca",
                 PRIVATE_CERT_CONFIGURATION_INTERMEDIATE_CA = "private_cert_configuration_intermediate_ca",
-                PRIVATE_CERT_CONFIGURATION_TEMPLATE = "private_cert_configuration_template"
+                PRIVATE_CERT_CONFIGURATION_TEMPLATE = "private_cert_configuration_template",
+                IAM_CREDENTIALS_CONFIGURATION = "iam_credentials_configuration"
             }
             /** The format of the returned data. */
             enum Format {
@@ -5310,7 +5651,9 @@ declare namespace SecretsManagerV2 {
             }
         }
     }
-    /** The configuration of the private certificate template. */
+    /**
+     * The configuration of the private certificate template.
+     */
     interface PrivateCertificateConfigurationTemplate extends Configuration {
         /** The configuration type. Can be one of: iam_credentials_configuration,
          *  public_cert_configuration_ca_lets_encrypt, public_cert_configuration_dns_classic_infrastructure,
@@ -5483,13 +5826,13 @@ declare namespace SecretsManagerV2 {
         namespace Constants {
             /** The configuration type. Can be one of: iam_credentials_configuration, public_cert_configuration_ca_lets_encrypt, public_cert_configuration_dns_classic_infrastructure, public_cert_configuration_dns_cloud_internet_services, private_cert_configuration_root_ca, private_cert_configuration_intermediate_ca, private_cert_configuration_template. */
             enum ConfigType {
-                PUBLIC_CERT_CONFIGURATION_CA_LETS_ENCRYPT = "public_cert_configuration_ca_lets_encrypt",
-                PUBLIC_CERT_CONFIGURATION_DNS_CLASSIC_INFRASTRUCTURE = "public_cert_configuration_dns_classic_infrastructure",
                 PUBLIC_CERT_CONFIGURATION_DNS_CLOUD_INTERNET_SERVICES = "public_cert_configuration_dns_cloud_internet_services",
-                IAM_CREDENTIALS_CONFIGURATION = "iam_credentials_configuration",
+                PUBLIC_CERT_CONFIGURATION_DNS_CLASSIC_INFRASTRUCTURE = "public_cert_configuration_dns_classic_infrastructure",
+                PUBLIC_CERT_CONFIGURATION_CA_LETS_ENCRYPT = "public_cert_configuration_ca_lets_encrypt",
                 PRIVATE_CERT_CONFIGURATION_ROOT_CA = "private_cert_configuration_root_ca",
                 PRIVATE_CERT_CONFIGURATION_INTERMEDIATE_CA = "private_cert_configuration_intermediate_ca",
-                PRIVATE_CERT_CONFIGURATION_TEMPLATE = "private_cert_configuration_template"
+                PRIVATE_CERT_CONFIGURATION_TEMPLATE = "private_cert_configuration_template",
+                IAM_CREDENTIALS_CONFIGURATION = "iam_credentials_configuration"
             }
             /** The secret type. Supported types are arbitrary, imported_cert, public_cert, private_cert, iam_credentials, service_credentials, kv, and username_password. */
             enum SecretType {
@@ -5509,7 +5852,9 @@ declare namespace SecretsManagerV2 {
             }
         }
     }
-    /** The metadata properties of the configuration of the private certificate template. */
+    /**
+     * The metadata properties of the configuration of the private certificate template.
+     */
     interface PrivateCertificateConfigurationTemplateMetadata extends ConfigurationMetadata {
         /** The configuration type. Can be one of: iam_credentials_configuration,
          *  public_cert_configuration_ca_lets_encrypt, public_cert_configuration_dns_classic_infrastructure,
@@ -5536,13 +5881,13 @@ declare namespace SecretsManagerV2 {
         namespace Constants {
             /** The configuration type. Can be one of: iam_credentials_configuration, public_cert_configuration_ca_lets_encrypt, public_cert_configuration_dns_classic_infrastructure, public_cert_configuration_dns_cloud_internet_services, private_cert_configuration_root_ca, private_cert_configuration_intermediate_ca, private_cert_configuration_template. */
             enum ConfigType {
-                PUBLIC_CERT_CONFIGURATION_CA_LETS_ENCRYPT = "public_cert_configuration_ca_lets_encrypt",
-                PUBLIC_CERT_CONFIGURATION_DNS_CLASSIC_INFRASTRUCTURE = "public_cert_configuration_dns_classic_infrastructure",
                 PUBLIC_CERT_CONFIGURATION_DNS_CLOUD_INTERNET_SERVICES = "public_cert_configuration_dns_cloud_internet_services",
-                IAM_CREDENTIALS_CONFIGURATION = "iam_credentials_configuration",
+                PUBLIC_CERT_CONFIGURATION_DNS_CLASSIC_INFRASTRUCTURE = "public_cert_configuration_dns_classic_infrastructure",
+                PUBLIC_CERT_CONFIGURATION_CA_LETS_ENCRYPT = "public_cert_configuration_ca_lets_encrypt",
                 PRIVATE_CERT_CONFIGURATION_ROOT_CA = "private_cert_configuration_root_ca",
                 PRIVATE_CERT_CONFIGURATION_INTERMEDIATE_CA = "private_cert_configuration_intermediate_ca",
-                PRIVATE_CERT_CONFIGURATION_TEMPLATE = "private_cert_configuration_template"
+                PRIVATE_CERT_CONFIGURATION_TEMPLATE = "private_cert_configuration_template",
+                IAM_CREDENTIALS_CONFIGURATION = "iam_credentials_configuration"
             }
             /** The secret type. Supported types are arbitrary, imported_cert, public_cert, private_cert, iam_credentials, service_credentials, kv, and username_password. */
             enum SecretType {
@@ -5557,7 +5902,11 @@ declare namespace SecretsManagerV2 {
             }
         }
     }
-    /** Properties that describe a certificate template. You can use a certificate template to control the parameters that are applied to your issued private certificates. For more information, see the [docs](https://cloud.ibm.com/docs/secrets-manager?topic=secrets-manager-certificate-templates). */
+    /**
+     * Properties that describe a certificate template. You can use a certificate template to control the parameters that
+     * are applied to your issued private certificates. For more information, see the
+     * [docs](https://cloud.ibm.com/docs/secrets-manager?topic=secrets-manager-certificate-templates).
+     */
     interface PrivateCertificateConfigurationTemplatePatch extends ConfigurationPatch {
         /** This field scopes the creation of private certificates to only the secret groups that you specify.
          *
@@ -5730,7 +6079,11 @@ declare namespace SecretsManagerV2 {
             }
         }
     }
-    /** Properties that describe a certificate template. You can use a certificate template to control the parameters that are applied to your issued private certificates. For more information, see the [docs](https://cloud.ibm.com/docs/secrets-manager?topic=secrets-manager-certificate-templates). */
+    /**
+     * Properties that describe a certificate template. You can use a certificate template to control the parameters that
+     * are applied to your issued private certificates. For more information, see the
+     * [docs](https://cloud.ibm.com/docs/secrets-manager?topic=secrets-manager-certificate-templates).
+     */
     interface PrivateCertificateConfigurationTemplatePrototype extends ConfigurationPrototype {
         /** The configuration type. Can be one of: iam_credentials_configuration,
          *  public_cert_configuration_ca_lets_encrypt, public_cert_configuration_dns_classic_infrastructure,
@@ -5917,13 +6270,13 @@ declare namespace SecretsManagerV2 {
         namespace Constants {
             /** The configuration type. Can be one of: iam_credentials_configuration, public_cert_configuration_ca_lets_encrypt, public_cert_configuration_dns_classic_infrastructure, public_cert_configuration_dns_cloud_internet_services, private_cert_configuration_root_ca, private_cert_configuration_intermediate_ca, private_cert_configuration_template. */
             enum ConfigType {
-                PUBLIC_CERT_CONFIGURATION_CA_LETS_ENCRYPT = "public_cert_configuration_ca_lets_encrypt",
-                PUBLIC_CERT_CONFIGURATION_DNS_CLASSIC_INFRASTRUCTURE = "public_cert_configuration_dns_classic_infrastructure",
                 PUBLIC_CERT_CONFIGURATION_DNS_CLOUD_INTERNET_SERVICES = "public_cert_configuration_dns_cloud_internet_services",
-                IAM_CREDENTIALS_CONFIGURATION = "iam_credentials_configuration",
+                PUBLIC_CERT_CONFIGURATION_DNS_CLASSIC_INFRASTRUCTURE = "public_cert_configuration_dns_classic_infrastructure",
+                PUBLIC_CERT_CONFIGURATION_CA_LETS_ENCRYPT = "public_cert_configuration_ca_lets_encrypt",
                 PRIVATE_CERT_CONFIGURATION_ROOT_CA = "private_cert_configuration_root_ca",
                 PRIVATE_CERT_CONFIGURATION_INTERMEDIATE_CA = "private_cert_configuration_intermediate_ca",
-                PRIVATE_CERT_CONFIGURATION_TEMPLATE = "private_cert_configuration_template"
+                PRIVATE_CERT_CONFIGURATION_TEMPLATE = "private_cert_configuration_template",
+                IAM_CREDENTIALS_CONFIGURATION = "iam_credentials_configuration"
             }
             /** The type of private key to generate. */
             enum KeyType {
@@ -5932,7 +6285,30 @@ declare namespace SecretsManagerV2 {
             }
         }
     }
-    /** Properties of the metadata of your private certificate. */
+    /**
+     * The data that is associated with Hyper Protect Crypto Services as the cryptographic provider.
+     */
+    interface PrivateCertificateCryptoProviderHPCS extends PrivateCertificateCryptoProvider {
+        /** The type of cryptographic provider. */
+        type: PrivateCertificateCryptoProviderHPCS.Constants.Type | string;
+        /** The HPCS instance CRN. */
+        instance_crn: string;
+        /** The secret Id of iam credentials with api key to access HPCS instance. */
+        pin_iam_credentials_secret_id: string;
+        /** The HPCS private key store space id. */
+        private_keystore_id: string;
+    }
+    namespace PrivateCertificateCryptoProviderHPCS {
+        namespace Constants {
+            /** The type of cryptographic provider. */
+            enum Type {
+                HYPER_PROTECT_CRYPTO_SERVICES = "hyper_protect_crypto_services"
+            }
+        }
+    }
+    /**
+     * Properties of the metadata of your private certificate.
+     */
     interface PrivateCertificateMetadata extends SecretMetadata {
         /** The unique identifier that is associated with the entity that created the secret. */
         created_by: string;
@@ -5981,6 +6357,8 @@ declare namespace SecretsManagerV2 {
         updated_at: string;
         /** The number of versions of your secret. */
         versions_total: number;
+        /** The list of configurations that have a reference to the secret. */
+        referenced_by?: string[];
         /** The identifier for the cryptographic algorithm that is used by the issuing certificate authority to sign a
          *  certificate.
          */
@@ -6047,7 +6425,9 @@ declare namespace SecretsManagerV2 {
             }
         }
     }
-    /** PrivateCertificateMetadataPatch. */
+    /**
+     * PrivateCertificateMetadataPatch.
+     */
     interface PrivateCertificateMetadataPatch extends SecretMetadataPatch {
         /** A human-readable name to assign to your secret.
          *
@@ -6074,7 +6454,9 @@ declare namespace SecretsManagerV2 {
          */
         rotation?: RotationPolicy;
     }
-    /** PrivateCertificatePrototype. */
+    /**
+     * PrivateCertificatePrototype.
+     */
     interface PrivateCertificatePrototype extends SecretPrototype {
         /** The secret type. Supported types are arbitrary, imported_cert, public_cert, private_cert, iam_credentials,
          *  service_credentials, kv, and username_password.
@@ -6172,7 +6554,9 @@ declare namespace SecretsManagerV2 {
             }
         }
     }
-    /** Your private certificate version. */
+    /**
+     * Your private certificate version.
+     */
     interface PrivateCertificateVersion extends SecretVersion {
         /** Indicates whether the version of the secret was created by automatic rotation. */
         auto_rotated?: boolean;
@@ -6207,7 +6591,7 @@ declare namespace SecretsManagerV2 {
         /** The date when the secret material expires. The date format follows the `RFC 3339` format. Supported secret
          *  types: Arbitrary, username_password.
          */
-        expiration_date: string;
+        expiration_date?: string;
         /** The unique serial number that was assigned to a certificate by the issuing certificate authority. */
         serial_number: string;
         /** The date and time that the certificate validity period begins and ends. */
@@ -6243,7 +6627,9 @@ declare namespace SecretsManagerV2 {
             }
         }
     }
-    /** The response body to specify the properties of the action to revoke the private certificate. */
+    /**
+     * The response body to specify the properties of the action to revoke the private certificate.
+     */
     interface PrivateCertificateVersionActionRevoke extends VersionAction {
         /** The type of secret version action. */
         action_type: PrivateCertificateVersionActionRevoke.Constants.ActionType | string;
@@ -6258,7 +6644,9 @@ declare namespace SecretsManagerV2 {
             }
         }
     }
-    /** The request body to specify the properties of the action to revoke the private certificate. */
+    /**
+     * The request body to specify the properties of the action to revoke the private certificate.
+     */
     interface PrivateCertificateVersionActionRevokePrototype extends SecretVersionActionPrototype {
         /** The type of secret version action. */
         action_type: PrivateCertificateVersionActionRevokePrototype.Constants.ActionType | string;
@@ -6271,7 +6659,9 @@ declare namespace SecretsManagerV2 {
             }
         }
     }
-    /** Properties of the version metadata of your private certificate. */
+    /**
+     * Properties of the version metadata of your private certificate.
+     */
     interface PrivateCertificateVersionMetadata extends SecretVersionMetadata {
         /** Indicates whether the version of the secret was created by automatic rotation. */
         auto_rotated?: boolean;
@@ -6306,7 +6696,7 @@ declare namespace SecretsManagerV2 {
         /** The date when the secret material expires. The date format follows the `RFC 3339` format. Supported secret
          *  types: Arbitrary, username_password.
          */
-        expiration_date: string;
+        expiration_date?: string;
         /** The unique serial number that was assigned to a certificate by the issuing certificate authority. */
         serial_number: string;
         /** The date and time that the certificate validity period begins and ends. */
@@ -6332,7 +6722,9 @@ declare namespace SecretsManagerV2 {
             }
         }
     }
-    /** PrivateCertificateVersionPrototype. */
+    /**
+     * PrivateCertificateVersionPrototype.
+     */
     interface PrivateCertificateVersionPrototype extends SecretVersionPrototype {
         /** The secret metadata that a user can customize. */
         custom_metadata?: JsonObject;
@@ -6341,7 +6733,9 @@ declare namespace SecretsManagerV2 {
         /** The certificate signing request. */
         csr?: string;
     }
-    /** Your public certificate. */
+    /**
+     * Your public certificate.
+     */
     interface PublicCertificate extends Secret {
         /** The unique identifier that is associated with the entity that created the secret. */
         created_by: string;
@@ -6390,6 +6784,8 @@ declare namespace SecretsManagerV2 {
         updated_at: string;
         /** The number of versions of your secret. */
         versions_total: number;
+        /** The list of configurations that have a reference to the secret. */
+        referenced_by?: string[];
         /** The identifier for the cryptographic algorithm that is used by the issuing certificate authority to sign a
          *  certificate.
          */
@@ -6464,7 +6860,9 @@ declare namespace SecretsManagerV2 {
             }
         }
     }
-    /** The response body of the action to validate manual DNS challenges for the public certificate. */
+    /**
+     * The response body of the action to validate manual DNS challenges for the public certificate.
+     */
     interface PublicCertificateActionValidateManualDNS extends SecretAction {
         /** The type of secret action. */
         action_type: PublicCertificateActionValidateManualDNS.Constants.ActionType | string;
@@ -6478,7 +6876,10 @@ declare namespace SecretsManagerV2 {
             }
         }
     }
-    /** The request body to specify the properties of the action to validate manual DNS challenges for the public certificate. */
+    /**
+     * The request body to specify the properties of the action to validate manual DNS challenges for the public
+     * certificate.
+     */
     interface PublicCertificateActionValidateManualDNSPrototype extends SecretActionPrototype {
         /** The type of secret action. */
         action_type: PublicCertificateActionValidateManualDNSPrototype.Constants.ActionType | string;
@@ -6492,7 +6893,9 @@ declare namespace SecretsManagerV2 {
             }
         }
     }
-    /** Properties that describe a Let's Encrypt CA configuration. */
+    /**
+     * Properties that describe a Let's Encrypt CA configuration.
+     */
     interface PublicCertificateConfigurationCALetsEncrypt extends Configuration {
         /** The configuration type. Can be one of: iam_credentials_configuration,
          *  public_cert_configuration_ca_lets_encrypt, public_cert_configuration_dns_classic_infrastructure,
@@ -6527,13 +6930,13 @@ declare namespace SecretsManagerV2 {
         namespace Constants {
             /** The configuration type. Can be one of: iam_credentials_configuration, public_cert_configuration_ca_lets_encrypt, public_cert_configuration_dns_classic_infrastructure, public_cert_configuration_dns_cloud_internet_services, private_cert_configuration_root_ca, private_cert_configuration_intermediate_ca, private_cert_configuration_template. */
             enum ConfigType {
-                PUBLIC_CERT_CONFIGURATION_CA_LETS_ENCRYPT = "public_cert_configuration_ca_lets_encrypt",
-                PUBLIC_CERT_CONFIGURATION_DNS_CLASSIC_INFRASTRUCTURE = "public_cert_configuration_dns_classic_infrastructure",
                 PUBLIC_CERT_CONFIGURATION_DNS_CLOUD_INTERNET_SERVICES = "public_cert_configuration_dns_cloud_internet_services",
-                IAM_CREDENTIALS_CONFIGURATION = "iam_credentials_configuration",
+                PUBLIC_CERT_CONFIGURATION_DNS_CLASSIC_INFRASTRUCTURE = "public_cert_configuration_dns_classic_infrastructure",
+                PUBLIC_CERT_CONFIGURATION_CA_LETS_ENCRYPT = "public_cert_configuration_ca_lets_encrypt",
                 PRIVATE_CERT_CONFIGURATION_ROOT_CA = "private_cert_configuration_root_ca",
                 PRIVATE_CERT_CONFIGURATION_INTERMEDIATE_CA = "private_cert_configuration_intermediate_ca",
-                PRIVATE_CERT_CONFIGURATION_TEMPLATE = "private_cert_configuration_template"
+                PRIVATE_CERT_CONFIGURATION_TEMPLATE = "private_cert_configuration_template",
+                IAM_CREDENTIALS_CONFIGURATION = "iam_credentials_configuration"
             }
             /** The secret type. Supported types are arbitrary, imported_cert, public_cert, private_cert, iam_credentials, service_credentials, kv, and username_password. */
             enum SecretType {
@@ -6553,7 +6956,9 @@ declare namespace SecretsManagerV2 {
             }
         }
     }
-    /** Your Let's Encrypt CA metadata properties. */
+    /**
+     * Your Let's Encrypt CA metadata properties.
+     */
     interface PublicCertificateConfigurationCALetsEncryptMetadata extends ConfigurationMetadata {
         /** The configuration type. Can be one of: iam_credentials_configuration,
          *  public_cert_configuration_ca_lets_encrypt, public_cert_configuration_dns_classic_infrastructure,
@@ -6584,13 +6989,13 @@ declare namespace SecretsManagerV2 {
         namespace Constants {
             /** The configuration type. Can be one of: iam_credentials_configuration, public_cert_configuration_ca_lets_encrypt, public_cert_configuration_dns_classic_infrastructure, public_cert_configuration_dns_cloud_internet_services, private_cert_configuration_root_ca, private_cert_configuration_intermediate_ca, private_cert_configuration_template. */
             enum ConfigType {
-                PUBLIC_CERT_CONFIGURATION_CA_LETS_ENCRYPT = "public_cert_configuration_ca_lets_encrypt",
-                PUBLIC_CERT_CONFIGURATION_DNS_CLASSIC_INFRASTRUCTURE = "public_cert_configuration_dns_classic_infrastructure",
                 PUBLIC_CERT_CONFIGURATION_DNS_CLOUD_INTERNET_SERVICES = "public_cert_configuration_dns_cloud_internet_services",
-                IAM_CREDENTIALS_CONFIGURATION = "iam_credentials_configuration",
+                PUBLIC_CERT_CONFIGURATION_DNS_CLASSIC_INFRASTRUCTURE = "public_cert_configuration_dns_classic_infrastructure",
+                PUBLIC_CERT_CONFIGURATION_CA_LETS_ENCRYPT = "public_cert_configuration_ca_lets_encrypt",
                 PRIVATE_CERT_CONFIGURATION_ROOT_CA = "private_cert_configuration_root_ca",
                 PRIVATE_CERT_CONFIGURATION_INTERMEDIATE_CA = "private_cert_configuration_intermediate_ca",
-                PRIVATE_CERT_CONFIGURATION_TEMPLATE = "private_cert_configuration_template"
+                PRIVATE_CERT_CONFIGURATION_TEMPLATE = "private_cert_configuration_template",
+                IAM_CREDENTIALS_CONFIGURATION = "iam_credentials_configuration"
             }
             /** The secret type. Supported types are arbitrary, imported_cert, public_cert, private_cert, iam_credentials, service_credentials, kv, and username_password. */
             enum SecretType {
@@ -6610,7 +7015,9 @@ declare namespace SecretsManagerV2 {
             }
         }
     }
-    /** The configuration update of the Let's Encrypt Certificate Authority. */
+    /**
+     * The configuration update of the Let's Encrypt Certificate Authority.
+     */
     interface PublicCertificateConfigurationCALetsEncryptPatch extends ConfigurationPatch {
         /** The configuration of the Let's Encrypt CA environment. */
         lets_encrypt_environment: PublicCertificateConfigurationCALetsEncryptPatch.Constants.LetsEncryptEnvironment | string;
@@ -6632,7 +7039,9 @@ declare namespace SecretsManagerV2 {
             }
         }
     }
-    /** The properties of the Let's Encrypt CA configuration. */
+    /**
+     * The properties of the Let's Encrypt CA configuration.
+     */
     interface PublicCertificateConfigurationCALetsEncryptPrototype extends ConfigurationPrototype {
         /** The configuration type. Can be one of: iam_credentials_configuration,
          *  public_cert_configuration_ca_lets_encrypt, public_cert_configuration_dns_classic_infrastructure,
@@ -6660,13 +7069,13 @@ declare namespace SecretsManagerV2 {
         namespace Constants {
             /** The configuration type. Can be one of: iam_credentials_configuration, public_cert_configuration_ca_lets_encrypt, public_cert_configuration_dns_classic_infrastructure, public_cert_configuration_dns_cloud_internet_services, private_cert_configuration_root_ca, private_cert_configuration_intermediate_ca, private_cert_configuration_template. */
             enum ConfigType {
-                PUBLIC_CERT_CONFIGURATION_CA_LETS_ENCRYPT = "public_cert_configuration_ca_lets_encrypt",
-                PUBLIC_CERT_CONFIGURATION_DNS_CLASSIC_INFRASTRUCTURE = "public_cert_configuration_dns_classic_infrastructure",
                 PUBLIC_CERT_CONFIGURATION_DNS_CLOUD_INTERNET_SERVICES = "public_cert_configuration_dns_cloud_internet_services",
-                IAM_CREDENTIALS_CONFIGURATION = "iam_credentials_configuration",
+                PUBLIC_CERT_CONFIGURATION_DNS_CLASSIC_INFRASTRUCTURE = "public_cert_configuration_dns_classic_infrastructure",
+                PUBLIC_CERT_CONFIGURATION_CA_LETS_ENCRYPT = "public_cert_configuration_ca_lets_encrypt",
                 PRIVATE_CERT_CONFIGURATION_ROOT_CA = "private_cert_configuration_root_ca",
                 PRIVATE_CERT_CONFIGURATION_INTERMEDIATE_CA = "private_cert_configuration_intermediate_ca",
-                PRIVATE_CERT_CONFIGURATION_TEMPLATE = "private_cert_configuration_template"
+                PRIVATE_CERT_CONFIGURATION_TEMPLATE = "private_cert_configuration_template",
+                IAM_CREDENTIALS_CONFIGURATION = "iam_credentials_configuration"
             }
             /** The configuration of the Let's Encrypt CA environment. */
             enum LetsEncryptEnvironment {
@@ -6675,7 +7084,9 @@ declare namespace SecretsManagerV2 {
             }
         }
     }
-    /** Properties that describe a Classic Infrastructure DNS configuration. */
+    /**
+     * Properties that describe a Classic Infrastructure DNS configuration.
+     */
     interface PublicCertificateConfigurationDNSClassicInfrastructure extends Configuration {
         /** The configuration type. Can be one of: iam_credentials_configuration,
          *  public_cert_configuration_ca_lets_encrypt, public_cert_configuration_dns_classic_infrastructure,
@@ -6712,13 +7123,13 @@ declare namespace SecretsManagerV2 {
         namespace Constants {
             /** The configuration type. Can be one of: iam_credentials_configuration, public_cert_configuration_ca_lets_encrypt, public_cert_configuration_dns_classic_infrastructure, public_cert_configuration_dns_cloud_internet_services, private_cert_configuration_root_ca, private_cert_configuration_intermediate_ca, private_cert_configuration_template. */
             enum ConfigType {
-                PUBLIC_CERT_CONFIGURATION_CA_LETS_ENCRYPT = "public_cert_configuration_ca_lets_encrypt",
-                PUBLIC_CERT_CONFIGURATION_DNS_CLASSIC_INFRASTRUCTURE = "public_cert_configuration_dns_classic_infrastructure",
                 PUBLIC_CERT_CONFIGURATION_DNS_CLOUD_INTERNET_SERVICES = "public_cert_configuration_dns_cloud_internet_services",
-                IAM_CREDENTIALS_CONFIGURATION = "iam_credentials_configuration",
+                PUBLIC_CERT_CONFIGURATION_DNS_CLASSIC_INFRASTRUCTURE = "public_cert_configuration_dns_classic_infrastructure",
+                PUBLIC_CERT_CONFIGURATION_CA_LETS_ENCRYPT = "public_cert_configuration_ca_lets_encrypt",
                 PRIVATE_CERT_CONFIGURATION_ROOT_CA = "private_cert_configuration_root_ca",
                 PRIVATE_CERT_CONFIGURATION_INTERMEDIATE_CA = "private_cert_configuration_intermediate_ca",
-                PRIVATE_CERT_CONFIGURATION_TEMPLATE = "private_cert_configuration_template"
+                PRIVATE_CERT_CONFIGURATION_TEMPLATE = "private_cert_configuration_template",
+                IAM_CREDENTIALS_CONFIGURATION = "iam_credentials_configuration"
             }
             /** The secret type. Supported types are arbitrary, imported_cert, public_cert, private_cert, iam_credentials, service_credentials, kv, and username_password. */
             enum SecretType {
@@ -6733,7 +7144,9 @@ declare namespace SecretsManagerV2 {
             }
         }
     }
-    /** Your Classic Infrastructure DNS metadata properties. */
+    /**
+     * Your Classic Infrastructure DNS metadata properties.
+     */
     interface PublicCertificateConfigurationDNSClassicInfrastructureMetadata extends ConfigurationMetadata {
         /** The configuration type. Can be one of: iam_credentials_configuration,
          *  public_cert_configuration_ca_lets_encrypt, public_cert_configuration_dns_classic_infrastructure,
@@ -6758,13 +7171,13 @@ declare namespace SecretsManagerV2 {
         namespace Constants {
             /** The configuration type. Can be one of: iam_credentials_configuration, public_cert_configuration_ca_lets_encrypt, public_cert_configuration_dns_classic_infrastructure, public_cert_configuration_dns_cloud_internet_services, private_cert_configuration_root_ca, private_cert_configuration_intermediate_ca, private_cert_configuration_template. */
             enum ConfigType {
-                PUBLIC_CERT_CONFIGURATION_CA_LETS_ENCRYPT = "public_cert_configuration_ca_lets_encrypt",
-                PUBLIC_CERT_CONFIGURATION_DNS_CLASSIC_INFRASTRUCTURE = "public_cert_configuration_dns_classic_infrastructure",
                 PUBLIC_CERT_CONFIGURATION_DNS_CLOUD_INTERNET_SERVICES = "public_cert_configuration_dns_cloud_internet_services",
-                IAM_CREDENTIALS_CONFIGURATION = "iam_credentials_configuration",
+                PUBLIC_CERT_CONFIGURATION_DNS_CLASSIC_INFRASTRUCTURE = "public_cert_configuration_dns_classic_infrastructure",
+                PUBLIC_CERT_CONFIGURATION_CA_LETS_ENCRYPT = "public_cert_configuration_ca_lets_encrypt",
                 PRIVATE_CERT_CONFIGURATION_ROOT_CA = "private_cert_configuration_root_ca",
                 PRIVATE_CERT_CONFIGURATION_INTERMEDIATE_CA = "private_cert_configuration_intermediate_ca",
-                PRIVATE_CERT_CONFIGURATION_TEMPLATE = "private_cert_configuration_template"
+                PRIVATE_CERT_CONFIGURATION_TEMPLATE = "private_cert_configuration_template",
+                IAM_CREDENTIALS_CONFIGURATION = "iam_credentials_configuration"
             }
             /** The secret type. Supported types are arbitrary, imported_cert, public_cert, private_cert, iam_credentials, service_credentials, kv, and username_password. */
             enum SecretType {
@@ -6779,7 +7192,9 @@ declare namespace SecretsManagerV2 {
             }
         }
     }
-    /** Properties that describe the configuration update of an IBM Cloud classic infrastructure (SoftLayer). */
+    /**
+     * Properties that describe the configuration update of an IBM Cloud classic infrastructure (SoftLayer).
+     */
     interface PublicCertificateConfigurationDNSClassicInfrastructurePatch extends ConfigurationPatch {
         /** The username that is associated with your classic infrastructure account.
          *
@@ -6794,7 +7209,9 @@ declare namespace SecretsManagerV2 {
          */
         classic_infrastructure_password?: string;
     }
-    /** PublicCertificateConfigurationDNSClassicInfrastructurePrototype. */
+    /**
+     * PublicCertificateConfigurationDNSClassicInfrastructurePrototype.
+     */
     interface PublicCertificateConfigurationDNSClassicInfrastructurePrototype extends ConfigurationPrototype {
         /** The configuration type. Can be one of: iam_credentials_configuration,
          *  public_cert_configuration_ca_lets_encrypt, public_cert_configuration_dns_classic_infrastructure,
@@ -6824,17 +7241,19 @@ declare namespace SecretsManagerV2 {
         namespace Constants {
             /** The configuration type. Can be one of: iam_credentials_configuration, public_cert_configuration_ca_lets_encrypt, public_cert_configuration_dns_classic_infrastructure, public_cert_configuration_dns_cloud_internet_services, private_cert_configuration_root_ca, private_cert_configuration_intermediate_ca, private_cert_configuration_template. */
             enum ConfigType {
-                PUBLIC_CERT_CONFIGURATION_CA_LETS_ENCRYPT = "public_cert_configuration_ca_lets_encrypt",
-                PUBLIC_CERT_CONFIGURATION_DNS_CLASSIC_INFRASTRUCTURE = "public_cert_configuration_dns_classic_infrastructure",
                 PUBLIC_CERT_CONFIGURATION_DNS_CLOUD_INTERNET_SERVICES = "public_cert_configuration_dns_cloud_internet_services",
-                IAM_CREDENTIALS_CONFIGURATION = "iam_credentials_configuration",
+                PUBLIC_CERT_CONFIGURATION_DNS_CLASSIC_INFRASTRUCTURE = "public_cert_configuration_dns_classic_infrastructure",
+                PUBLIC_CERT_CONFIGURATION_CA_LETS_ENCRYPT = "public_cert_configuration_ca_lets_encrypt",
                 PRIVATE_CERT_CONFIGURATION_ROOT_CA = "private_cert_configuration_root_ca",
                 PRIVATE_CERT_CONFIGURATION_INTERMEDIATE_CA = "private_cert_configuration_intermediate_ca",
-                PRIVATE_CERT_CONFIGURATION_TEMPLATE = "private_cert_configuration_template"
+                PRIVATE_CERT_CONFIGURATION_TEMPLATE = "private_cert_configuration_template",
+                IAM_CREDENTIALS_CONFIGURATION = "iam_credentials_configuration"
             }
         }
     }
-    /** Properties that describe a Cloud Internet Services DNS configuration. */
+    /**
+     * Properties that describe a Cloud Internet Services DNS configuration.
+     */
     interface PublicCertificateConfigurationDNSCloudInternetServices extends Configuration {
         /** The configuration type. Can be one of: iam_credentials_configuration,
          *  public_cert_configuration_ca_lets_encrypt, public_cert_configuration_dns_classic_infrastructure,
@@ -6879,13 +7298,13 @@ declare namespace SecretsManagerV2 {
         namespace Constants {
             /** The configuration type. Can be one of: iam_credentials_configuration, public_cert_configuration_ca_lets_encrypt, public_cert_configuration_dns_classic_infrastructure, public_cert_configuration_dns_cloud_internet_services, private_cert_configuration_root_ca, private_cert_configuration_intermediate_ca, private_cert_configuration_template. */
             enum ConfigType {
-                PUBLIC_CERT_CONFIGURATION_CA_LETS_ENCRYPT = "public_cert_configuration_ca_lets_encrypt",
-                PUBLIC_CERT_CONFIGURATION_DNS_CLASSIC_INFRASTRUCTURE = "public_cert_configuration_dns_classic_infrastructure",
                 PUBLIC_CERT_CONFIGURATION_DNS_CLOUD_INTERNET_SERVICES = "public_cert_configuration_dns_cloud_internet_services",
-                IAM_CREDENTIALS_CONFIGURATION = "iam_credentials_configuration",
+                PUBLIC_CERT_CONFIGURATION_DNS_CLASSIC_INFRASTRUCTURE = "public_cert_configuration_dns_classic_infrastructure",
+                PUBLIC_CERT_CONFIGURATION_CA_LETS_ENCRYPT = "public_cert_configuration_ca_lets_encrypt",
                 PRIVATE_CERT_CONFIGURATION_ROOT_CA = "private_cert_configuration_root_ca",
                 PRIVATE_CERT_CONFIGURATION_INTERMEDIATE_CA = "private_cert_configuration_intermediate_ca",
-                PRIVATE_CERT_CONFIGURATION_TEMPLATE = "private_cert_configuration_template"
+                PRIVATE_CERT_CONFIGURATION_TEMPLATE = "private_cert_configuration_template",
+                IAM_CREDENTIALS_CONFIGURATION = "iam_credentials_configuration"
             }
             /** The secret type. Supported types are arbitrary, imported_cert, public_cert, private_cert, iam_credentials, service_credentials, kv, and username_password. */
             enum SecretType {
@@ -6900,7 +7319,9 @@ declare namespace SecretsManagerV2 {
             }
         }
     }
-    /** Your Cloud Internet Services DNS metadata properties. */
+    /**
+     * Your Cloud Internet Services DNS metadata properties.
+     */
     interface PublicCertificateConfigurationDNSCloudInternetServicesMetadata extends ConfigurationMetadata {
         /** The configuration type. Can be one of: iam_credentials_configuration,
          *  public_cert_configuration_ca_lets_encrypt, public_cert_configuration_dns_classic_infrastructure,
@@ -6925,13 +7346,13 @@ declare namespace SecretsManagerV2 {
         namespace Constants {
             /** The configuration type. Can be one of: iam_credentials_configuration, public_cert_configuration_ca_lets_encrypt, public_cert_configuration_dns_classic_infrastructure, public_cert_configuration_dns_cloud_internet_services, private_cert_configuration_root_ca, private_cert_configuration_intermediate_ca, private_cert_configuration_template. */
             enum ConfigType {
-                PUBLIC_CERT_CONFIGURATION_CA_LETS_ENCRYPT = "public_cert_configuration_ca_lets_encrypt",
-                PUBLIC_CERT_CONFIGURATION_DNS_CLASSIC_INFRASTRUCTURE = "public_cert_configuration_dns_classic_infrastructure",
                 PUBLIC_CERT_CONFIGURATION_DNS_CLOUD_INTERNET_SERVICES = "public_cert_configuration_dns_cloud_internet_services",
-                IAM_CREDENTIALS_CONFIGURATION = "iam_credentials_configuration",
+                PUBLIC_CERT_CONFIGURATION_DNS_CLASSIC_INFRASTRUCTURE = "public_cert_configuration_dns_classic_infrastructure",
+                PUBLIC_CERT_CONFIGURATION_CA_LETS_ENCRYPT = "public_cert_configuration_ca_lets_encrypt",
                 PRIVATE_CERT_CONFIGURATION_ROOT_CA = "private_cert_configuration_root_ca",
                 PRIVATE_CERT_CONFIGURATION_INTERMEDIATE_CA = "private_cert_configuration_intermediate_ca",
-                PRIVATE_CERT_CONFIGURATION_TEMPLATE = "private_cert_configuration_template"
+                PRIVATE_CERT_CONFIGURATION_TEMPLATE = "private_cert_configuration_template",
+                IAM_CREDENTIALS_CONFIGURATION = "iam_credentials_configuration"
             }
             /** The secret type. Supported types are arbitrary, imported_cert, public_cert, private_cert, iam_credentials, service_credentials, kv, and username_password. */
             enum SecretType {
@@ -6946,7 +7367,9 @@ declare namespace SecretsManagerV2 {
             }
         }
     }
-    /** The configuration update of the Cloud Internet Services DNS. */
+    /**
+     * The configuration update of the Cloud Internet Services DNS.
+     */
     interface PublicCertificateConfigurationDNSCloudInternetServicesPatch extends ConfigurationPatch {
         /** An IBM Cloud API key that can list domains in your Cloud Internet Services instance and add DNS records.
          *
@@ -6969,7 +7392,9 @@ declare namespace SecretsManagerV2 {
         /** A CRN that uniquely identifies an IBM Cloud resource. */
         cloud_internet_services_crn?: string;
     }
-    /** Specify the properties for Cloud Internet Services DNS configuration. */
+    /**
+     * Specify the properties for Cloud Internet Services DNS configuration.
+     */
     interface PublicCertificateConfigurationDNSCloudInternetServicesPrototype extends ConfigurationPrototype {
         /** The configuration type. Can be one of: iam_credentials_configuration,
          *  public_cert_configuration_ca_lets_encrypt, public_cert_configuration_dns_classic_infrastructure,
@@ -7007,17 +7432,19 @@ declare namespace SecretsManagerV2 {
         namespace Constants {
             /** The configuration type. Can be one of: iam_credentials_configuration, public_cert_configuration_ca_lets_encrypt, public_cert_configuration_dns_classic_infrastructure, public_cert_configuration_dns_cloud_internet_services, private_cert_configuration_root_ca, private_cert_configuration_intermediate_ca, private_cert_configuration_template. */
             enum ConfigType {
-                PUBLIC_CERT_CONFIGURATION_CA_LETS_ENCRYPT = "public_cert_configuration_ca_lets_encrypt",
-                PUBLIC_CERT_CONFIGURATION_DNS_CLASSIC_INFRASTRUCTURE = "public_cert_configuration_dns_classic_infrastructure",
                 PUBLIC_CERT_CONFIGURATION_DNS_CLOUD_INTERNET_SERVICES = "public_cert_configuration_dns_cloud_internet_services",
-                IAM_CREDENTIALS_CONFIGURATION = "iam_credentials_configuration",
+                PUBLIC_CERT_CONFIGURATION_DNS_CLASSIC_INFRASTRUCTURE = "public_cert_configuration_dns_classic_infrastructure",
+                PUBLIC_CERT_CONFIGURATION_CA_LETS_ENCRYPT = "public_cert_configuration_ca_lets_encrypt",
                 PRIVATE_CERT_CONFIGURATION_ROOT_CA = "private_cert_configuration_root_ca",
                 PRIVATE_CERT_CONFIGURATION_INTERMEDIATE_CA = "private_cert_configuration_intermediate_ca",
-                PRIVATE_CERT_CONFIGURATION_TEMPLATE = "private_cert_configuration_template"
+                PRIVATE_CERT_CONFIGURATION_TEMPLATE = "private_cert_configuration_template",
+                IAM_CREDENTIALS_CONFIGURATION = "iam_credentials_configuration"
             }
         }
     }
-    /** Properties of the metadata of your public certificate. */
+    /**
+     * Properties of the metadata of your public certificate.
+     */
     interface PublicCertificateMetadata extends SecretMetadata {
         /** The unique identifier that is associated with the entity that created the secret. */
         created_by: string;
@@ -7066,6 +7493,8 @@ declare namespace SecretsManagerV2 {
         updated_at: string;
         /** The number of versions of your secret. */
         versions_total: number;
+        /** The list of configurations that have a reference to the secret. */
+        referenced_by?: string[];
         /** The identifier for the cryptographic algorithm that is used by the issuing certificate authority to sign a
          *  certificate.
          */
@@ -7130,7 +7559,9 @@ declare namespace SecretsManagerV2 {
             }
         }
     }
-    /** PublicCertificateMetadataPatch. */
+    /**
+     * PublicCertificateMetadataPatch.
+     */
     interface PublicCertificateMetadataPatch extends SecretMetadataPatch {
         /** A human-readable name to assign to your secret.
          *
@@ -7157,7 +7588,9 @@ declare namespace SecretsManagerV2 {
          */
         rotation?: RotationPolicy;
     }
-    /** PublicCertificatePrototype. */
+    /**
+     * PublicCertificatePrototype.
+     */
     interface PublicCertificatePrototype extends SecretPrototype {
         /** The secret type. Supported types are arbitrary, imported_cert, public_cert, private_cert, iam_credentials,
          *  service_credentials, kv, and username_password.
@@ -7229,7 +7662,12 @@ declare namespace SecretsManagerV2 {
             }
         }
     }
-    /** This field indicates whether Secrets Manager rotates your secrets automatically. For public certificates, if `auto_rotate` is set to `true`, the service reorders your certificate for 31 days, before it expires. */
+    /**
+     * This field indicates whether Secrets Manager rotates your secrets automatically.
+     *
+     * For public certificates, if `auto_rotate` is set to `true`, the service reorders your certificate for 31 days,
+     * before it expires.
+     */
     interface PublicCertificateRotationPolicy extends RotationPolicy {
         /** This field indicates whether Secrets Manager rotates your secret automatically.
          *
@@ -7245,7 +7683,9 @@ declare namespace SecretsManagerV2 {
          */
         rotate_keys: boolean;
     }
-    /** Versions of your public certificate. */
+    /**
+     * Versions of your public certificate.
+     */
     interface PublicCertificateVersion extends SecretVersion {
         /** Indicates whether the version of the secret was created by automatic rotation. */
         auto_rotated?: boolean;
@@ -7316,7 +7756,9 @@ declare namespace SecretsManagerV2 {
             }
         }
     }
-    /** Properties of the version metadata of your public certificate. */
+    /**
+     * Properties of the version metadata of your public certificate.
+     */
     interface PublicCertificateVersionMetadata extends SecretVersionMetadata {
         /** Indicates whether the version of the secret was created by automatic rotation. */
         auto_rotated?: boolean;
@@ -7377,7 +7819,9 @@ declare namespace SecretsManagerV2 {
             }
         }
     }
-    /** PublicCertificateVersionPrototype. */
+    /**
+     * PublicCertificateVersionPrototype.
+     */
     interface PublicCertificateVersionPrototype extends SecretVersionPrototype {
         /** Defines the rotation object that is used to manually rotate public certificates. */
         rotation: PublicCertificateRotationObject;
@@ -7386,7 +7830,9 @@ declare namespace SecretsManagerV2 {
         /** The secret version metadata that a user can customize. */
         version_custom_metadata?: JsonObject;
     }
-    /** Your service credentials secret. */
+    /**
+     * Your service credentials secret.
+     */
     interface ServiceCredentialsSecret extends Secret {
         /** The unique identifier that is associated with the entity that created the secret. */
         created_by: string;
@@ -7435,6 +7881,8 @@ declare namespace SecretsManagerV2 {
         updated_at: string;
         /** The number of versions of your secret. */
         versions_total: number;
+        /** The list of configurations that have a reference to the secret. */
+        referenced_by?: string[];
         /** The date that the secret is scheduled for automatic rotation.
          *
          *  The service automatically creates a new version of the secret on its next rotation date. This field exists only
@@ -7451,6 +7899,7 @@ declare namespace SecretsManagerV2 {
          *  duration, such as `1440m` or `24h`. For the iam_credentials secret type, the TTL field is mandatory. The minimum
          *  duration is 1 minute. The maximum is 90 days. For the service_credentials secret type, the TTL field is
          *  optional. If it is set the minimum duration is 1 day. The maximum is 90 days. By default, the TTL is set to 0.
+         *  After the TTL is modified, it will be applied only on the next secret rotation.
          */
         ttl?: string;
         /** The date when the secret material expires. The date format follows the `RFC 3339` format. Supported secret
@@ -7485,7 +7934,9 @@ declare namespace SecretsManagerV2 {
             }
         }
     }
-    /** The metadata properties for your service credentials secret. */
+    /**
+     * The metadata properties for your service credentials secret.
+     */
     interface ServiceCredentialsSecretMetadata extends SecretMetadata {
         /** The unique identifier that is associated with the entity that created the secret. */
         created_by: string;
@@ -7534,6 +7985,8 @@ declare namespace SecretsManagerV2 {
         updated_at: string;
         /** The number of versions of your secret. */
         versions_total: number;
+        /** The list of configurations that have a reference to the secret. */
+        referenced_by?: string[];
         /** The date that the secret is scheduled for automatic rotation.
          *
          *  The service automatically creates a new version of the secret on its next rotation date. This field exists only
@@ -7550,6 +8003,7 @@ declare namespace SecretsManagerV2 {
          *  duration, such as `1440m` or `24h`. For the iam_credentials secret type, the TTL field is mandatory. The minimum
          *  duration is 1 minute. The maximum is 90 days. For the service_credentials secret type, the TTL field is
          *  optional. If it is set the minimum duration is 1 day. The maximum is 90 days. By default, the TTL is set to 0.
+         *  After the TTL is modified, it will be applied only on the next secret rotation.
          */
         ttl?: string;
         /** The date when the secret material expires. The date format follows the `RFC 3339` format. Supported secret
@@ -7582,7 +8036,9 @@ declare namespace SecretsManagerV2 {
             }
         }
     }
-    /** ServiceCredentialsSecretMetadataPatch. */
+    /**
+     * ServiceCredentialsSecretMetadataPatch.
+     */
     interface ServiceCredentialsSecretMetadataPatch extends SecretMetadataPatch {
         /** The secret metadata that a user can customize. */
         custom_metadata?: JsonObject;
@@ -7614,10 +8070,13 @@ declare namespace SecretsManagerV2 {
          *  duration, such as `1440m` or `24h`. For the iam_credentials secret type, the TTL field is mandatory. The minimum
          *  duration is 1 minute. The maximum is 90 days. For the service_credentials secret type, the TTL field is
          *  optional. If it is set the minimum duration is 1 day. The maximum is 90 days. By default, the TTL is set to 0.
+         *  After the TTL is modified, it will be applied only on the next secret rotation.
          */
         ttl?: string;
     }
-    /** ServiceCredentialsSecretPrototype. */
+    /**
+     * ServiceCredentialsSecretPrototype.
+     */
     interface ServiceCredentialsSecretPrototype extends SecretPrototype {
         /** The secret metadata that a user can customize. */
         custom_metadata?: JsonObject;
@@ -7659,6 +8118,7 @@ declare namespace SecretsManagerV2 {
          *  duration, such as `1440m` or `24h`. For the iam_credentials secret type, the TTL field is mandatory. The minimum
          *  duration is 1 minute. The maximum is 90 days. For the service_credentials secret type, the TTL field is
          *  optional. If it is set the minimum duration is 1 day. The maximum is 90 days. By default, the TTL is set to 0.
+         *  After the TTL is modified, it will be applied only on the next secret rotation.
          */
         ttl?: string;
         /** The secret version metadata that a user can customize. */
@@ -7679,7 +8139,9 @@ declare namespace SecretsManagerV2 {
             }
         }
     }
-    /** Your service credentials secret version. */
+    /**
+     * Your service credentials secret version.
+     */
     interface ServiceCredentialsSecretVersion extends SecretVersion {
         /** Indicates whether the version of the secret was created by automatic rotation. */
         auto_rotated?: boolean;
@@ -7740,7 +8202,9 @@ declare namespace SecretsManagerV2 {
             }
         }
     }
-    /** The version metadata properties for your service credentials secret. */
+    /**
+     * The version metadata properties for your service credentials secret.
+     */
     interface ServiceCredentialsSecretVersionMetadata extends SecretVersionMetadata {
         /** Indicates whether the version of the secret was created by automatic rotation. */
         auto_rotated?: boolean;
@@ -7799,14 +8263,18 @@ declare namespace SecretsManagerV2 {
             }
         }
     }
-    /** ServiceCredentialsSecretVersionPrototype. */
+    /**
+     * ServiceCredentialsSecretVersionPrototype.
+     */
     interface ServiceCredentialsSecretVersionPrototype extends SecretVersionPrototype {
         /** The secret metadata that a user can customize. */
         custom_metadata?: JsonObject;
         /** The secret version metadata that a user can customize. */
         version_custom_metadata?: JsonObject;
     }
-    /** Your user credentials secret. */
+    /**
+     * Your user credentials secret.
+     */
     interface UsernamePasswordSecret extends Secret {
         /** The unique identifier that is associated with the entity that created the secret. */
         created_by: string;
@@ -7855,6 +8323,8 @@ declare namespace SecretsManagerV2 {
         updated_at: string;
         /** The number of versions of your secret. */
         versions_total: number;
+        /** The list of configurations that have a reference to the secret. */
+        referenced_by?: string[];
         /** This field indicates whether Secrets Manager rotates your secrets automatically. Supported secret types:
          *  username_password, private_cert, public_cert, iam_credentials.
          */
@@ -7899,7 +8369,9 @@ declare namespace SecretsManagerV2 {
             }
         }
     }
-    /** Properties of the metadata of your user credentials secret. */
+    /**
+     * Properties of the metadata of your user credentials secret.
+     */
     interface UsernamePasswordSecretMetadata extends SecretMetadata {
         /** The unique identifier that is associated with the entity that created the secret. */
         created_by: string;
@@ -7948,6 +8420,8 @@ declare namespace SecretsManagerV2 {
         updated_at: string;
         /** The number of versions of your secret. */
         versions_total: number;
+        /** The list of configurations that have a reference to the secret. */
+        referenced_by?: string[];
         /** This field indicates whether Secrets Manager rotates your secrets automatically. Supported secret types:
          *  username_password, private_cert, public_cert, iam_credentials.
          */
@@ -7988,7 +8462,9 @@ declare namespace SecretsManagerV2 {
             }
         }
     }
-    /** UsernamePasswordSecretMetadataPatch. */
+    /**
+     * UsernamePasswordSecretMetadataPatch.
+     */
     interface UsernamePasswordSecretMetadataPatch extends SecretMetadataPatch {
         /** A human-readable name to assign to your secret.
          *
@@ -8023,7 +8499,9 @@ declare namespace SecretsManagerV2 {
          */
         password_generation_policy?: PasswordGenerationPolicyPatch;
     }
-    /** UsernamePasswordSecretPrototype. */
+    /**
+     * UsernamePasswordSecretPrototype.
+     */
     interface UsernamePasswordSecretPrototype extends SecretPrototype {
         /** The secret type. Supported types are arbitrary, imported_cert, public_cert, private_cert, iam_credentials,
          *  service_credentials, kv, and username_password.
@@ -8085,7 +8563,9 @@ declare namespace SecretsManagerV2 {
             }
         }
     }
-    /** Your user credentials secret version. */
+    /**
+     * Your user credentials secret version.
+     */
     interface UsernamePasswordSecretVersion extends SecretVersion {
         /** Indicates whether the version of the secret was created by automatic rotation. */
         auto_rotated?: boolean;
@@ -8117,6 +8597,10 @@ declare namespace SecretsManagerV2 {
         version_custom_metadata?: JsonObject;
         /** A v4 UUID identifier. */
         secret_id: string;
+        /** The date when the secret material expires. The date format follows the `RFC 3339` format. Supported secret
+         *  types: Arbitrary, username_password.
+         */
+        expiration_date?: string;
         /** The username that is assigned to an `username_password` secret. */
         username: string;
         /** The password that is assigned to an `username_password` secret. */
@@ -8142,7 +8626,9 @@ declare namespace SecretsManagerV2 {
             }
         }
     }
-    /** Properties of the version metadata of your user credentials secret. */
+    /**
+     * Properties of the version metadata of your user credentials secret.
+     */
     interface UsernamePasswordSecretVersionMetadata extends SecretVersionMetadata {
         /** Indicates whether the version of the secret was created by automatic rotation. */
         auto_rotated?: boolean;
@@ -8174,6 +8660,10 @@ declare namespace SecretsManagerV2 {
         version_custom_metadata?: JsonObject;
         /** A v4 UUID identifier. */
         secret_id: string;
+        /** The date when the secret material expires. The date format follows the `RFC 3339` format. Supported secret
+         *  types: Arbitrary, username_password.
+         */
+        expiration_date?: string;
     }
     namespace UsernamePasswordSecretVersionMetadata {
         namespace Constants {
@@ -8195,7 +8685,9 @@ declare namespace SecretsManagerV2 {
             }
         }
     }
-    /** UsernamePasswordSecretVersionPrototype. */
+    /**
+     * UsernamePasswordSecretVersionPrototype.
+     */
     interface UsernamePasswordSecretVersionPrototype extends SecretVersionPrototype {
         /** The password that is assigned to an `username_password` secret. If you omit this parameter, Secrets Manager
          *  generates a new random password for your secret.