@intentius/chant-lexicon-aws 0.0.11 → 0.0.12

package/dist/types/index.d.ts

@@ -2645,35 +2645,6 @@ export declare class AutomatedReasoningPolicyVersion {
   readonly Version: string;
 }
 
-export declare class AutomationRule {
-  constructor(props: {
-    /** One or more actions to update finding fields if a finding matches the conditions specified in ``Criteria``. */
-    Actions: AutomationRule_AutomationRulesAction[];
-    /** A set of [Security Finding Format (ASFF)](https://docs.aws.amazon.com/securityhub/latest/userguide/securityhub-findings-format.html) finding field attributes and corresponding expected values that ASH uses to filter findings. If a rule is enabled and a finding matches the criteria specified in this parameter, ASH applies the rule action to the finding. */
-    Criteria: AutomationRule_AutomationRulesFindingFilters;
-    /** A description of the rule. */
-    Description: string;
-    /** The name of the rule. */
-    RuleName: string;
-    /** An integer ranging from 1 to 1000 that represents the order in which the rule action is applied to findings. Security Hub CSPM applies rules with lower values for this parameter first. */
-    RuleOrder: number;
-    CreatedAt?: string;
-    CreatedBy?: string;
-    /** Specifies whether a rule is the last to be applied with respect to a finding that matches the rule criteria. This is useful when a finding matches the criteria for multiple rules, and each rule has different actions. If a rule is terminal, Security Hub CSPM applies the rule action to a finding that matches the rule criteria and doesn't evaluate other rules for the finding. By default, a rule isn't terminal. */
-    IsTerminal?: boolean;
-    RuleArn?: string;
-    /** Whether the rule is active after it is created. If this parameter is equal to ``ENABLED``, ASH applies the rule to findings and finding updates after the rule is created. */
-    RuleStatus?: "DISABLED" | "ENABLED";
-    /** User-defined tags associated with an automation rule. */
-    Tags?: Record<string, unknown>;
-    UpdatedAt?: string;
-  }, attributes?: CFResourceAttributes);
-  readonly CreatedAt: string;
-  readonly CreatedBy: string;
-  readonly RuleArn: string;
-  readonly UpdatedAt: string;
-}
-
 export declare class AutomationRuleV2 {
   constructor(props: {
     /** A list of actions to be performed when the rule criteria is met */
@@ -2758,6 +2729,7 @@ export declare class AutoScalingGroup {
   To manage various warm-up settings at the group level, we recommend that you set the default instance warmup, *even if it is set to 0 seconds*. To remove a value that you previously set, include the property but specify ``-1`` for the value. However, we strongly recommend keeping the default instance warmup enabled by specifying a value of ``0`` or other nominal value.
   Default: None */
     DefaultInstanceWarmup?: number;
+    /** The deletion protection setting for the Auto Scaling group. */
     DeletionProtection?: string;
     /** The desired capacity is the initial capacity of the Auto Scaling group at the time of its creation and the capacity it attempts to maintain. It can scale beyond this capacity if you configure automatic scaling.
  The number must be greater than or equal to the minimum size of the group and less than or equal to the maximum size of the group. If you do not specify a desired capacity when creating the stack, the default is the minimum size of the group.
@@ -5273,6 +5245,26 @@ export declare class Collaboration {
   readonly CollaborationIdentifier: string;
 }
 
+export declare class CollectionGroup {
+  constructor(props: {
+    /** The name of the collection group. */
+    Name: string;
+    /** Indicates whether standby replicas are used for the collection group. */
+    StandbyReplicas: "DISABLED" | "ENABLED";
+    /** The Amazon Resource Name (ARN) of the collection group. */
+    Arn?: string;
+    CapacityLimits?: CollectionGroup_CapacityLimits;
+    /** The description of the collection group. */
+    Description?: string;
+    /** The unique identifier of the collection group. */
+    Id?: string;
+    /** An array of key-value pairs to apply to this resource. */
+    Tags?: CollectionGroup_Tag[];
+  }, attributes?: CFResourceAttributes);
+  readonly Arn: string;
+  readonly Id: string;
+}
+
 export declare class Command {
   constructor(props: {
     /** The unique identifier for the command. */
@@ -5477,6 +5469,49 @@ export declare class ComputeNodeGroup {
   readonly Status: "ACTIVE" | "CREATE_FAILED" | "CREATING" | "DELETE_FAILED" | "DELETING" | "UPDATE_FAILED" | "UPDATING";
 }
 
+export declare class ComputeOptimizerAutomationRule {
+  constructor(props: {
+    /** The name of the automation rule. */
+    Name: string;
+    /** The types of recommended actions this rule will implement. */
+    RecommendedActionTypes: "SnapshotAndDeleteUnattachedEbsVolume" | "UpgradeEbsVolumeType"[];
+    /** The type of automation rule. */
+    RuleType: "AccountRule" | "OrganizationRule";
+    /** The schedule configuration for when the rule runs. */
+    Schedule: ComputeOptimizerAutomationRule_Schedule;
+    /** The status of the automation rule. */
+    Status: "Active" | "Inactive";
+    /** The AWS account ID that owns the automation rule. */
+    AccountId?: string;
+    /** The timestamp when the automation rule was created. */
+    CreatedTimestamp?: string;
+    /** Filter criteria that specify which recommended actions qualify for implementation. */
+    Criteria?: ComputeOptimizerAutomationRule_Criteria;
+    /** The description of the automation rule. */
+    Description?: string;
+    /** The timestamp when the automation rule was last updated. */
+    LastUpdatedTimestamp?: string;
+    /** Organization configuration for organization rules, including rule apply order and account scope. */
+    OrganizationConfiguration?: ComputeOptimizerAutomationRule_OrganizationConfiguration;
+    /** Rule priority within its group */
+    Priority?: string;
+    /** The Amazon Resource Name (ARN) of the automation rule. */
+    RuleArn?: string;
+    /** The unique identifier of the automation rule. */
+    RuleId?: string;
+    /** The revision number of the automation rule. */
+    RuleRevision?: string;
+    /** Tags associated with the automation rule. */
+    Tags?: ComputeOptimizerAutomationRule_Tag[];
+  }, attributes?: CFResourceAttributes);
+  readonly AccountId: string;
+  readonly CreatedTimestamp: string;
+  readonly LastUpdatedTimestamp: string;
+  readonly RuleArn: string;
+  readonly RuleId: string;
+  readonly RuleRevision: string;
+}
+
 export declare class Config {
   constructor(props: {
     ConfigData: Config_ConfigData;
@@ -6920,6 +6955,8 @@ export declare class CustomerProfilesIntegration {
     ObjectTypeName?: string;
     /** The mapping between 3rd party event types and ObjectType names */
     ObjectTypeNames?: CustomerProfilesIntegration_ObjectTypeMapping[];
+    /** Scope of the integration, such as 'PROFILE' or 'DOMAIN' */
+    Scope?: "DOMAIN" | "PROFILE";
     /** The tags (keys and values) associated with the integration */
     Tags?: CustomerProfilesIntegration_Tag[];
     /** The URI of the S3 bucket or any other type of data source. */
@@ -10675,9 +10712,10 @@ export declare class EC2Volume {
     SourceVolumeId?: string;
     /** The tags to apply to the volume during creation. */
     Tags?: EC2Volume_Tag[];
-    /** The throughput to provision for a volume, with a maximum of 1,000 MiB/s.
+    /** The throughput to provision for a volume, with a maximum of 2,000 MiB/s.
  This parameter is valid only for ``gp3`` volumes. The default value is 125.
- Valid Range: Minimum value of 125. Maximum value of 1000. */
+ Valid Range: Minimum value of 125. Maximum value of 2000.
+ The maximum ratio of throughput to IOPS is 0.25 MiB/s per IOPS. For example, a volume with 3,000 IOPS can have a maximum throughput of 750 MiB/s (3,000 x 0.25). */
     Throughput?: number;
     VolumeId?: string;
     /** Specifies the Amazon EBS Provisioned Rate for Volume Initialization (volume initialization rate), in MiB/s, at which to download the snapshot blocks from Amazon S3 to the volume. This is also known as *volume initialization*. Specifying a volume initialization rate ensures that the volume is initialized at a predictable and consistent rate after creation.
@@ -12751,6 +12789,8 @@ export declare class Field {
     /** The display name of the field as it appears to agents in the case interface. Should be descriptive and user-friendly (e.g., 'Customer Priority Level', 'Issue Category'). */
     Name: string;
     Type: Field_FieldType;
+    /** Field-type specific attributes that control rendering and validation behavior */
+    Attributes?: Field_FieldAttributes;
     /** The time at which the field was created. */
     CreatedTime?: string;
     /** A description explaining the purpose and usage of this field in cases. Helps agents and administrators understand what information should be captured in this field. */
@@ -17734,12 +17774,19 @@ export declare class LaunchNotificationConstraint {
 
 export declare class LaunchRoleConstraint {
   constructor(props: {
+    /** The ID of the portfolio to which this launch role constraint applies. */
     PortfolioId: string;
+    /** The ID of the product to which this launch role constraint applies. */
     ProductId: string;
+    /** The language code for the constraint. */
     AcceptLanguage?: string;
+    /** The description of the launch role constraint. */
     Description?: string;
+    /** The unique identifier for the launch role constraint. */
     Id?: string;
+    /** The local IAM role name to use in the launch constraint. */
     LocalRoleName?: string;
+    /** The ARN of the IAM role used for the launch constraint. */
     RoleArn?: string;
   }, attributes?: CFResourceAttributes);
   readonly Id: string;
@@ -22062,6 +22109,8 @@ export declare class ObjectType {
     MaxProfileObjectCount?: number;
     /** The format of your sourceLastUpdatedTimestamp that was previously set up. */
     SourceLastUpdatedTimestampFormat?: string;
+    /** Defines the priority order of object types. Lower value indicates higher priority. */
+    SourcePriority?: number;
     /** The tags (keys and values) associated with the integration. */
     Tags?: ObjectType_Tag[];
     /** A unique identifier for the object template. */
@@ -23174,6 +23223,7 @@ export declare class PCAConnectorSCEPConnector {
     OpenIdConfiguration?: PCAConnectorSCEPConnector_OpenIdConfiguration;
     Tags?: Record<string, unknown>;
     Type?: PCAConnectorSCEPConnector_ConnectorType;
+    VpcEndpointId?: string;
   }, attributes?: CFResourceAttributes);
   readonly ConnectorArn: string;
   readonly Endpoint: string;
@@ -25834,96 +25884,57 @@ export declare class ReplicationConfiguration {
 
 export declare class ReplicationGroup {
   constructor(props: {
-    /** A user-created description for the replication group. */
     ReplicationGroupDescription: string;
-    /** A flag that enables encryption at rest when set to true.AtRestEncryptionEnabled after the replication group is created. To enable encryption at rest on a replication group you must set AtRestEncryptionEnabled to true when you create the replication group. */
     AtRestEncryptionEnabled?: boolean;
-    /** Reserved parameter. The password used to access a password protected server.AuthToken can be specified only on replication groups where TransitEncryptionEnabled is true. For more information. */
     AuthToken?: string;
-    /** Specifies whether a read-only replica is automatically promoted to read/write primary if the existing primary fails. AutomaticFailoverEnabled must be enabled for Redis (cluster mode enabled) replication groups. */
     AutomaticFailoverEnabled?: boolean;
-    /** This parameter is currently disabled. */
     AutoMinorVersionUpgrade?: boolean;
-    /** The compute and memory capacity of the nodes in the node group (shard). */
     CacheNodeType?: string;
-    /** The name of the parameter group to associate with this replication group. If this argument is omitted, the default cache parameter group for the specified engine is used. */
     CacheParameterGroupName?: string;
-    /** A list of cache security group names to associate with this replication group. */
     CacheSecurityGroupNames?: string[];
-    /** The name of the cache subnet group to be used for the replication group. */
     CacheSubnetGroupName?: string;
-    /** Enabled or Disabled. To modify cluster mode from Disabled to Enabled, you must first set the cluster mode to Compatible. Compatible mode allows your Redis OSS clients to connect using both cluster mode enabled and cluster mode disabled. After you migrate all Redis OSS clients to use cluster mode enabled, you can then complete cluster mode configuration and set the cluster mode to Enabled. For more information, see Modify cluster mode. */
     ClusterMode?: string;
-    /** The configuration details of the replication group. */
-    ConfigurationEndPoint?: ReplicationGroup_Endpoint;
-    /** Enables data tiering. Data tiering is only supported for replication groups using the r6gd node type. This parameter must be set to true when using r6gd nodes. */
+    ConfigurationEndPointAddress?: string;
+    ConfigurationEndPointPort?: string;
     DataTieringEnabled?: boolean;
-    /** The name of the cache engine to be used for the clusters in this replication group. */
     Engine?: string;
-    /** The version number of the cache engine to be used for the clusters in this replication group. To view the supported cache engine versions, use the DescribeCacheEngineVersions operation. */
     EngineVersion?: string;
-    /** The name of the Global datastore */
     GlobalReplicationGroupId?: string;
-    /** The network type you choose when creating a replication group, either ipv4 | ipv6. IPv6 is supported for workloads using Redis OSS engine version 6.2 onward or Memcached engine version 1.6.6 on all instances built on the Nitro system. */
     IpDiscovery?: string;
-    /** The ID of the KMS key used to encrypt the disk on the cluster. */
     KmsKeyId?: string;
-    /** Specifies the destination, format and type of the logs. */
     LogDeliveryConfigurations?: ReplicationGroup_LogDeliveryConfigurationRequest[];
-    /** A flag indicating if you have Multi-AZ enabled to enhance fault tolerance. For more information, see Minimizing Downtime: Multi-AZ. */
     MultiAZEnabled?: boolean;
-    /** Must be either ipv4 | ipv6 | dual_stack. IPv6 is supported for workloads using Redis OSS engine version 6.2 onward or Memcached engine version 1.6.6 on all instances built on the Nitro system */
     NetworkType?: string;
-    /** NodeGroupConfiguration is a property of the AWS::ElastiCache::ReplicationGroup resource that configures an Amazon ElastiCache (ElastiCache) Redis cluster node group. */
     NodeGroupConfiguration?: ReplicationGroup_NodeGroupConfiguration[];
-    /** The Amazon Resource Name (ARN) of the Amazon Simple Notification Service (SNS) topic to which notifications are sent. */
     NotificationTopicArn?: string;
-    /** The number of clusters this replication group initially has.This parameter is not used if there is more than one node group (shard). You should use ReplicasPerNodeGroup instead. */
     NumCacheClusters?: number;
-    /** An optional parameter that specifies the number of node groups (shards) for this Redis (cluster mode enabled) replication group. For Redis (cluster mode disabled) either omit this parameter or set it to 1. */
     NumNodeGroups?: number;
-    /** The port number on which each member of the replication group accepts connections. */
     Port?: number;
-    /** A list of EC2 Availability Zones in which the replication group's clusters are created. The order of the Availability Zones in the list is the order in which clusters are allocated. The primary cluster is created in the first AZ in the list. This parameter is not used if there is more than one node group (shard). You should use NodeGroupConfiguration instead. */
     PreferredCacheClusterAZs?: string[];
-    /** Specifies the weekly time range during which maintenance on the cluster is performed. It is specified as a range in the format ddd:hh24:mi-ddd:hh24:mi (24H Clock UTC). The minimum maintenance window is a 60 minute period. */
     PreferredMaintenanceWindow?: string;
-    /** The identifier of the cluster that serves as the primary for this replication group. This cluster must already exist and have a status of available. */
     PrimaryClusterId?: string;
-    /** The primary endpoint configuration */
-    PrimaryEndPoint?: ReplicationGroup_Endpoint;
-    ReadEndPoint?: Record<string, unknown>;
-    /** The endpoint of the reader node in the replication group. */
-    ReaderEndPoint?: ReplicationGroup_Endpoint;
-    /** An optional parameter that specifies the number of replica nodes in each node group (shard). Valid values are 0 to 5. */
+    PrimaryEndPointAddress?: string;
+    PrimaryEndPointPort?: string;
+    ReadEndPointAddresses?: string;
+    ReadEndPointAddressesList?: string[];
+    ReadEndPointPorts?: string;
+    ReadEndPointPortsList?: string[];
+    ReaderEndPointAddress?: string;
+    ReaderEndPointPort?: string;
     ReplicasPerNodeGroup?: number;
-    /** The replication group identifier. This parameter is stored as a lowercase string. */
     ReplicationGroupId?: string;
-    /** One or more Amazon VPC security groups associated with this replication group. */
     SecurityGroupIds?: string[];
-    /** A list of Amazon Resource Names (ARN) that uniquely identify the Redis RDB snapshot files stored in Amazon S3. */
     SnapshotArns?: string[];
-    /** The name of a snapshot from which to restore data into the new replication group. The snapshot status changes to restoring while the new replication group is being created. */
     SnapshotName?: string;
-    /** The number of days for which ElastiCache retains automatic snapshots before deleting them. For example, if you set SnapshotRetentionLimit to 5, a snapshot that was taken today is retained for 5 days before being deleted. */
     SnapshotRetentionLimit?: number;
-    /** The cluster ID that is used as the daily snapshot source for the replication group. This parameter cannot be set for Redis (cluster mode enabled) replication groups. */
     SnapshottingClusterId?: string;
-    /** The daily time range (in UTC) during which ElastiCache begins taking a daily snapshot of your node group (shard). */
     SnapshotWindow?: string;
-    /** A list of cost allocation tags to be added to this resource. Tags are comma-separated key,value pairs (e.g. Key=myKey, Value=myKeyValue. You can include multiple tags as shown following: Key=myKey, Value=myKeyValue Key=mySecondKey, Value=mySecondKeyValue. */
     Tags?: ReplicationGroup_Tag[];
-    /** A flag that enables in-transit encryption when set to true. */
     TransitEncryptionEnabled?: boolean;
-    /** A setting that allows you to migrate your clients to use in-transit encryption, with no downtime. When setting TransitEncryptionEnabled to true, you can set your TransitEncryptionMode to preferred in the same request, to allow both encrypted and unencrypted connections at the same time. Once you migrate all your Redis OSS clients to use encrypted connections you can modify the value to required to allow encrypted connections only. Setting TransitEncryptionMode to required is a two-step process that requires you to first set the TransitEncryptionMode to preferred, after that you can set TransitEncryptionMode to required. This process will not trigger the replacement of the replication group. */
     TransitEncryptionMode?: string;
-    /** The ID of user group to associate with the replication group. */
     UserGroupIds?: string[];
   }, attributes?: CFResourceAttributes);
-  readonly ConfigurationEndPoint: ReplicationGroup_Endpoint;
-  readonly PrimaryEndPoint: ReplicationGroup_Endpoint;
-  readonly ReadEndPoint: Record<string, unknown>;
-  readonly ReaderEndPoint: ReplicationGroup_Endpoint;
+  readonly ReplicationGroupId: string;
 }
 
 export declare class ReplicationInstance {
@@ -28573,6 +28584,35 @@ export declare class SecurityGroupVpcAssociation {
   readonly VpcOwnerId: string;
 }
 
+export declare class SecurityHubAutomationRule {
+  constructor(props: {
+    /** One or more actions to update finding fields if a finding matches the conditions specified in ``Criteria``. */
+    Actions: SecurityHubAutomationRule_AutomationRulesAction[];
+    /** A set of [Security Finding Format (ASFF)](https://docs.aws.amazon.com/securityhub/latest/userguide/securityhub-findings-format.html) finding field attributes and corresponding expected values that ASH uses to filter findings. If a rule is enabled and a finding matches the criteria specified in this parameter, ASH applies the rule action to the finding. */
+    Criteria: SecurityHubAutomationRule_AutomationRulesFindingFilters;
+    /** A description of the rule. */
+    Description: string;
+    /** The name of the rule. */
+    RuleName: string;
+    /** An integer ranging from 1 to 1000 that represents the order in which the rule action is applied to findings. Security Hub CSPM applies rules with lower values for this parameter first. */
+    RuleOrder: number;
+    CreatedAt?: string;
+    CreatedBy?: string;
+    /** Specifies whether a rule is the last to be applied with respect to a finding that matches the rule criteria. This is useful when a finding matches the criteria for multiple rules, and each rule has different actions. If a rule is terminal, Security Hub CSPM applies the rule action to a finding that matches the rule criteria and doesn't evaluate other rules for the finding. By default, a rule isn't terminal. */
+    IsTerminal?: boolean;
+    RuleArn?: string;
+    /** Whether the rule is active after it is created. If this parameter is equal to ``ENABLED``, ASH applies the rule to findings and finding updates after the rule is created. */
+    RuleStatus?: "DISABLED" | "ENABLED";
+    /** User-defined tags associated with an automation rule. */
+    Tags?: Record<string, unknown>;
+    UpdatedAt?: string;
+  }, attributes?: CFResourceAttributes);
+  readonly CreatedAt: string;
+  readonly CreatedBy: string;
+  readonly RuleArn: string;
+  readonly UpdatedAt: string;
+}
+
 export declare class SecurityKey {
   constructor(props: {
     InstanceId: string;
@@ -47425,308 +47465,10 @@ export declare class AutomaticInputFailoverSettings {
   });
 }
 
-export declare class AutomationRule_AutomationRulesAction {
-  constructor(props: {
-    /** Specifies that the automation rule action is an update to a finding field. */
-    FindingFieldsUpdate: AutomationRule_AutomationRulesFindingFieldsUpdate;
-    /** Specifies the type of action that Security Hub CSPM takes when a finding matches the defined criteria of a rule. */
-    Type: "FINDING_FIELDS_UPDATE";
-  });
-}
-
-export declare class AutomationRule_AutomationRulesFindingFieldsUpdate {
-  constructor(props: {
-    /** The rule action updates the ``Confidence`` field of a finding. */
-    Confidence?: number;
-    /** The rule action updates the ``Criticality`` field of a finding. */
-    Criticality?: number;
-    /** The rule action will update the ``Note`` field of a finding. */
-    Note?: AutomationRule_NoteUpdate;
-    /** The rule action will update the ``RelatedFindings`` field of a finding. */
-    RelatedFindings?: AutomationRule_RelatedFinding[];
-    /** The rule action will update the ``Severity`` field of a finding. */
-    Severity?: AutomationRule_SeverityUpdate;
-    /** The rule action updates the ``Types`` field of a finding. */
-    Types?: string[];
-    /** The rule action updates the ``UserDefinedFields`` field of a finding. */
-    UserDefinedFields?: Record<string, unknown>;
-    /** The rule action updates the ``VerificationState`` field of a finding. */
-    VerificationState?: "BENIGN_POSITIVE" | "FALSE_POSITIVE" | "TRUE_POSITIVE" | "UNKNOWN";
-    /** The rule action will update the ``Workflow`` field of a finding. */
-    Workflow?: AutomationRule_WorkflowUpdate;
-  });
-}
-
-export declare class AutomationRule_AutomationRulesFindingFilters {
-  constructor(props: {
-    /** The AWS-account ID in which a finding was generated.
-  Array Members: Minimum number of 1 item. Maximum number of 100 items. */
-    AwsAccountId?: AutomationRule_StringFilter[];
-    /** The name of the company for the product that generated the finding. For control-based findings, the company is AWS. 
-  Array Members: Minimum number of 1 item. Maximum number of 20 items. */
-    CompanyName?: AutomationRule_StringFilter[];
-    /** The unique identifier of a standard in which a control is enabled. This field consists of the resource portion of the Amazon Resource Name (ARN) returned for a standard in the [DescribeStandards](https://docs.aws.amazon.com/securityhub/1.0/APIReference/API_DescribeStandards.html) API response.
-  Array Members: Minimum number of 1 item. Maximum number of 20 items. */
-    ComplianceAssociatedStandardsId?: AutomationRule_StringFilter[];
-    /** The security control ID for which a finding was generated. Security control IDs are the same across standards.
-  Array Members: Minimum number of 1 item. Maximum number of 20 items. */
-    ComplianceSecurityControlId?: AutomationRule_StringFilter[];
-    /** The result of a security check. This field is only used for findings generated from controls. 
-  Array Members: Minimum number of 1 item. Maximum number of 20 items. */
-    ComplianceStatus?: AutomationRule_StringFilter[];
-    /** The likelihood that a finding accurately identifies the behavior or issue that it was intended to identify. ``Confidence`` is scored on a 0–100 basis using a ratio scale. A value of ``0`` means 0 percent confidence, and a value of ``100`` means 100 percent confidence. For example, a data exfiltration detection based on a statistical deviation of network traffic has low confidence because an actual exfiltration hasn't been verified. For more information, see [Confidence](https://docs.aws.amazon.com/securityhub/latest/userguide/asff-top-level-attributes.html#asff-confidence) in the *User Guide*.
-  Array Members: Minimum number of 1 item. Maximum number of 20 items. */
-    Confidence?: AutomationRule_NumberFilter[];
-    /** A timestamp that indicates when this finding record was created. 
- For more information about the validation and formatting of timestamp fields in ASHlong, see [Timestamps](https://docs.aws.amazon.com/securityhub/1.0/APIReference/Welcome.html#timestamps).
-  Array Members: Minimum number of 1 item. Maximum number of 20 items. */
-    CreatedAt?: AutomationRule_DateFilter[];
-    /** The level of importance that is assigned to the resources that are associated with a finding. ``Criticality`` is scored on a 0–100 basis, using a ratio scale that supports only full integers. A score of ``0`` means that the underlying resources have no criticality, and a score of ``100`` is reserved for the most critical resources. For more information, see [Criticality](https://docs.aws.amazon.com/securityhub/latest/userguide/asff-top-level-attributes.html#asff-criticality) in the *User Guide*.
-  Array Members: Minimum number of 1 item. Maximum number of 20 items. */
-    Criticality?: AutomationRule_NumberFilter[];
-    /** A finding's description. 
-  Array Members: Minimum number of 1 item. Maximum number of 20 items. */
-    Description?: AutomationRule_StringFilter[];
-    /** A timestamp that indicates when the potential security issue captured by a finding was first observed by the security findings product. 
- For more information about the validation and formatting of timestamp fields in ASHlong, see [Timestamps](https://docs.aws.amazon.com/securityhub/1.0/APIReference/Welcome.html#timestamps).
-  Array Members: Minimum number of 1 item. Maximum number of 20 items. */
-    FirstObservedAt?: AutomationRule_DateFilter[];
-    /** The identifier for the solution-specific component that generated a finding. 
-  Array Members: Minimum number of 1 item. Maximum number of 100 items. */
-    GeneratorId?: AutomationRule_StringFilter[];
-    /** The product-specific identifier for a finding. 
-  Array Members: Minimum number of 1 item. Maximum number of 20 items. */
-    Id?: AutomationRule_StringFilter[];
-    /** A timestamp that indicates when the security findings provider most recently observed a change in the resource that is involved in the finding. 
- For more information about the validation and formatting of timestamp fields in ASHlong, see [Timestamps](https://docs.aws.amazon.com/securityhub/1.0/APIReference/Welcome.html#timestamps).
-  Array Members: Minimum number of 1 item. Maximum number of 20 items. */
-    LastObservedAt?: AutomationRule_DateFilter[];
-    /** The text of a user-defined note that's added to a finding. 
-  Array Members: Minimum number of 1 item. Maximum number of 20 items. */
-    NoteText?: AutomationRule_StringFilter[];
-    /** The timestamp of when the note was updated.
- For more information about the validation and formatting of timestamp fields in ASHlong, see [Timestamps](https://docs.aws.amazon.com/securityhub/1.0/APIReference/Welcome.html#timestamps).
-  Array Members: Minimum number of 1 item. Maximum number of 20 items. */
-    NoteUpdatedAt?: AutomationRule_DateFilter[];
-    /** The principal that created a note. 
-  Array Members: Minimum number of 1 item. Maximum number of 20 items. */
-    NoteUpdatedBy?: AutomationRule_StringFilter[];
-    /** The Amazon Resource Name (ARN) for a third-party product that generated a finding in Security Hub CSPM. 
-  Array Members: Minimum number of 1 item. Maximum number of 20 items. */
-    ProductArn?: AutomationRule_StringFilter[];
-    /** Provides the name of the product that generated the finding. For control-based findings, the product name is Security Hub CSPM. 
-  Array Members: Minimum number of 1 item. Maximum number of 20 items. */
-    ProductName?: AutomationRule_StringFilter[];
-    /** Provides the current state of a finding. 
-  Array Members: Minimum number of 1 item. Maximum number of 20 items. */
-    RecordState?: AutomationRule_StringFilter[];
-    /** The product-generated identifier for a related finding. 
-  Array Members: Minimum number of 1 item. Maximum number of 20 items. */
-    RelatedFindingsId?: AutomationRule_StringFilter[];
-    /** The ARN for the product that generated a related finding. 
-  Array Members: Minimum number of 1 item. Maximum number of 20 items. */
-    RelatedFindingsProductArn?: AutomationRule_StringFilter[];
-    /** Custom fields and values about the resource that a finding pertains to. 
-  Array Members: Minimum number of 1 item. Maximum number of 20 items. */
-    ResourceDetailsOther?: AutomationRule_MapFilter[];
-    /** The identifier for the given resource type. For AWS resources that are identified by Amazon Resource Names (ARNs), this is the ARN. For AWS resources that lack ARNs, this is the identifier as defined by the AWS-service that created the resource. For non-AWS resources, this is a unique identifier that is associated with the resource. 
-  Array Members: Minimum number of 1 item. Maximum number of 100 items. */
-    ResourceId?: AutomationRule_StringFilter[];
-    /** The partition in which the resource that the finding pertains to is located. A partition is a group of AWS-Regions. Each AWS-account is scoped to one partition. 
-  Array Members: Minimum number of 1 item. Maximum number of 20 items. */
-    ResourcePartition?: AutomationRule_StringFilter[];
-    /** The AWS-Region where the resource that a finding pertains to is located. 
-  Array Members: Minimum number of 1 item. Maximum number of 20 items. */
-    ResourceRegion?: AutomationRule_StringFilter[];
-    /** A list of AWS tags associated with a resource at the time the finding was processed. 
-  Array Members: Minimum number of 1 item. Maximum number of 20 items. */
-    ResourceTags?: AutomationRule_MapFilter[];
-    /** A finding's title. 
-  Array Members: Minimum number of 1 item. Maximum number of 100 items. */
-    ResourceType?: AutomationRule_StringFilter[];
-    /** The severity value of the finding. 
-  Array Members: Minimum number of 1 item. Maximum number of 20 items. */
-    SeverityLabel?: AutomationRule_StringFilter[];
-    /** Provides a URL that links to a page about the current finding in the finding product. 
-  Array Members: Minimum number of 1 item. Maximum number of 20 items. */
-    SourceUrl?: AutomationRule_StringFilter[];
-    /** A finding's title. 
-  Array Members: Minimum number of 1 item. Maximum number of 100 items. */
-    Title?: AutomationRule_StringFilter[];
-    /** One or more finding types in the format of namespace/category/classifier that classify a finding. For a list of namespaces, classifiers, and categories, see [Types taxonomy for ASFF](https://docs.aws.amazon.com/securityhub/latest/userguide/securityhub-findings-format-type-taxonomy.html) in the *User Guide*.
-  Array Members: Minimum number of 1 item. Maximum number of 20 items. */
-    Type?: AutomationRule_StringFilter[];
-    /** A timestamp that indicates when the finding record was most recently updated. 
- For more information about the validation and formatting of timestamp fields in ASHlong, see [Timestamps](https://docs.aws.amazon.com/securityhub/1.0/APIReference/Welcome.html#timestamps).
-  Array Members: Minimum number of 1 item. Maximum number of 20 items. */
-    UpdatedAt?: AutomationRule_DateFilter[];
-    /** A list of user-defined name and value string pairs added to a finding. 
-  Array Members: Minimum number of 1 item. Maximum number of 20 items. */
-    UserDefinedFields?: AutomationRule_MapFilter[];
-    /** Provides the veracity of a finding. 
-  Array Members: Minimum number of 1 item. Maximum number of 20 items. */
-    VerificationState?: AutomationRule_StringFilter[];
-    /** Provides information about the status of the investigation into a finding. 
-  Array Members: Minimum number of 1 item. Maximum number of 20 items. */
-    WorkflowStatus?: AutomationRule_StringFilter[];
-  });
-}
-
-export declare class AutomationRule_BooleanFilter {
-  constructor(props: {
-    /** The value of the boolean. */
-    Value: boolean;
-  });
-}
-
-export declare class AutomationRule_DateFilter {
-  constructor(props: {
-    /** A date range for the date filter. */
-    DateRange?: AutomationRule_DateRange;
-    /** A timestamp that provides the end date for the date filter.
- For more information about the validation and formatting of timestamp fields in ASHlong, see [Timestamps](https://docs.aws.amazon.com/securityhub/1.0/APIReference/Welcome.html#timestamps). */
-    End?: string;
-    /** A timestamp that provides the start date for the date filter.
- For more information about the validation and formatting of timestamp fields in ASHlong, see [Timestamps](https://docs.aws.amazon.com/securityhub/1.0/APIReference/Welcome.html#timestamps). */
-    Start?: string;
-  });
-}
-
-export declare class AutomationRule_DateRange {
-  constructor(props: {
-    /** A date range unit for the date filter. */
-    Unit: "DAYS";
-    /** A date range value for the date filter. */
-    Value: number;
-  });
-}
-
-export declare class AutomationRule_MapFilter {
-  constructor(props: {
-    /** The condition to apply to the key value when filtering Security Hub CSPM findings with a map filter.
- To search for values that have the filter value, use one of the following comparison operators:
-  +  To search for values that include the filter value, use ``CONTAINS``. For example, for the ``ResourceTags`` field, the filter ``Department CONTAINS Security`` matches findings that include the value ``Security`` for the ``Department`` tag. In the same example, a finding with a value of ``Security team`` for the ``Department`` tag is a match.
-  +  To search for values that exactly match the filter value, use ``EQUALS``. For example, for the ``ResourceTags`` field, the filter ``Department EQUALS Security`` matches findings that have the value ``Security`` for the ``Department`` tag.
-  
- ``CONTAINS`` and ``EQUALS`` filters on the same field are joined by ``OR``. A finding matches if it matches any one of those filters. For example, the filters ``Department CONTAINS Security OR Department CONTAINS Finance`` match a finding that includes either ``Security``, ``Finance``, or both values.
- To search for values that don't have the filter value, use one of the following comparison operators:
-  +  To search for values that exclude the filter value, use ``NOT_CONTAINS``. For example, for the ``ResourceTags`` field, the filter ``Department NOT_CONTAINS Finance`` matches findings that exclude the value ``Finance`` for the ``Department`` tag.
-  +  To search for values other than the filter value, use ``NOT_EQUALS``. For example, for the ``ResourceTags`` field, the filter ``Department NOT_EQUALS Finance`` matches findings that don’t have the value ``Finance`` for the ``Department`` tag.
-  
- ``NOT_CONTAINS`` and ``NOT_EQUALS`` filters on the same field are joined by ``AND``. A finding matches only if it matches all of those filters. For example, the filters ``Department NOT_CONTAINS Security AND Department NOT_CONTAINS Finance`` match a finding that excludes both the ``Security`` and ``Finance`` values.
- ``CONTAINS`` filters can only be used with other ``CONTAINS`` filters. ``NOT_CONTAINS`` filters can only be used with other ``NOT_CONTAINS`` filters.
- You can’t have both a ``CONTAINS`` filter and a ``NOT_CONTAINS`` filter on the same field. Similarly, you can’t have both an ``EQUALS`` filter and a ``NOT_EQUALS`` filter on the same field. Combining filters in this way returns an error. 
- ``CONTAINS`` and ``NOT_CONTAINS`` operators can be used only with automation rules. For more information, see [Automation rules](https://docs.aws.amazon.com/securityhub/latest/userguide/automation-rules.html) in the *User Guide*. */
-    Comparison: "CONTAINS" | "EQUALS" | "NOT_CONTAINS" | "NOT_EQUALS";
-    /** The key of the map filter. For example, for ``ResourceTags``, ``Key`` identifies the name of the tag. For ``UserDefinedFields``, ``Key`` is the name of the field. */
-    Key: string;
-    /** The value for the key in the map filter. Filter values are case sensitive. For example, one of the values for a tag called ``Department`` might be ``Security``. If you provide ``security`` as the filter value, then there's no match. */
-    Value: string;
-  });
-}
-
-export declare class AutomationRule_NoteUpdate {
-  constructor(props: {
-    /** The updated note text. */
-    Text: string;
-    /** The principal that updated the note. */
-    UpdatedBy: any;
-  });
-}
-
-export declare class AutomationRule_NumberFilter {
-  constructor(props: {
-    /** The equal-to condition to be applied to a single field when querying for findings. */
-    Eq?: number;
-    /** The greater-than-equal condition to be applied to a single field when querying for findings. */
-    Gte?: number;
-    /** The less-than-equal condition to be applied to a single field when querying for findings. */
-    Lte?: number;
-  });
-}
-
-export declare class AutomationRule_RelatedFinding {
-  constructor(props: {
-    /** The product-generated identifier for a related finding. 
-  Array Members: Minimum number of 1 item. Maximum number of 20 items. */
-    Id: any;
-    /** The Amazon Resource Name (ARN) for the product that generated a related finding. */
-    ProductArn: string;
-  });
-}
-
-export declare class AutomationRule_SeverityUpdate {
-  constructor(props: {
-    /** The severity value of the finding. The allowed values are the following.
-  +  ``INFORMATIONAL`` - No issue was found.
-  +  ``LOW`` - The issue does not require action on its own.
-  +  ``MEDIUM`` - The issue must be addressed but not urgently.
-  +  ``HIGH`` - The issue must be addressed as a priority.
-  +  ``CRITICAL`` - The issue must be remediated immediately to avoid it escalating. */
-    Label?: "CRITICAL" | "HIGH" | "INFORMATIONAL" | "LOW" | "MEDIUM";
-    /** The normalized severity for the finding. This attribute is to be deprecated in favor of ``Label``.
- If you provide ``Normalized`` and don't provide ``Label``, ``Label`` is set automatically as follows.
-  +  0 - ``INFORMATIONAL``
-  +  1–39 - ``LOW``
-  +  40–69 - ``MEDIUM``
-  +  70–89 - ``HIGH``
-  +  90–100 - ``CRITICAL`` */
-    Normalized?: number;
-    /** The native severity as defined by the AWS service or integrated partner product that generated the finding. */
-    Product?: number;
-  });
-}
-
-export declare class AutomationRule_StringFilter {
-  constructor(props: {
-    /** The condition to apply to a string value when filtering Security Hub CSPM findings.
- To search for values that have the filter value, use one of the following comparison operators:
-  +  To search for values that include the filter value, use ``CONTAINS``. For example, the filter ``Title CONTAINS CloudFront`` matches findings that have a ``Title`` that includes the string CloudFront.
-  +  To search for values that exactly match the filter value, use ``EQUALS``. For example, the filter ``AwsAccountId EQUALS 123456789012`` only matches findings that have an account ID of ``123456789012``.
-  +  To search for values that start with the filter value, use ``PREFIX``. For example, the filter ``ResourceRegion PREFIX us`` matches findings that have a ``ResourceRegion`` that starts with ``us``. A ``ResourceRegion`` that starts with a different value, such as ``af``, ``ap``, or ``ca``, doesn't match.
-  
- ``CONTAINS``, ``EQUALS``, and ``PREFIX`` filters on the same field are joined by ``OR``. A finding matches if it matches any one of those filters. For example, the filters ``Title CONTAINS CloudFront OR Title CONTAINS CloudWatch`` match a finding that includes either ``CloudFront``, ``CloudWatch``, or both strings in the title.
- To search for values that don’t have the filter value, use one of the following comparison operators:
-  +  To search for values that exclude the filter value, use ``NOT_CONTAINS``. For example, the filter ``Title NOT_CONTAINS CloudFront`` matches findings that have a ``Title`` that excludes the string CloudFront.
-  +  To search for values other than the filter value, use ``NOT_EQUALS``. For example, the filter ``AwsAccountId NOT_EQUALS 123456789012`` only matches findings that have an account ID other than ``123456789012``.
-  +  To search for values that don't start with the filter value, use ``PREFIX_NOT_EQUALS``. For example, the filter ``ResourceRegion PREFIX_NOT_EQUALS us`` matches findings with a ``ResourceRegion`` that starts with a value other than ``us``.
-  
- ``NOT_CONTAINS``, ``NOT_EQUALS``, and ``PREFIX_NOT_EQUALS`` filters on the same field are joined by ``AND``. A finding matches only if it matches all of those filters. For example, the filters ``Title NOT_CONTAINS CloudFront AND Title NOT_CONTAINS CloudWatch`` match a finding that excludes both ``CloudFront`` and ``CloudWatch`` in the title.
- You can’t have both a ``CONTAINS`` filter and a ``NOT_CONTAINS`` filter on the same field. Similarly, you can't provide both an ``EQUALS`` filter and a ``NOT_EQUALS`` or ``PREFIX_NOT_EQUALS`` filter on the same field. Combining filters in this way returns an error. ``CONTAINS`` filters can only be used with other ``CONTAINS`` filters. ``NOT_CONTAINS`` filters can only be used with other ``NOT_CONTAINS`` filters. 
- You can combine ``PREFIX`` filters with ``NOT_EQUALS`` or ``PREFIX_NOT_EQUALS`` filters for the same field. Security Hub CSPM first processes the ``PREFIX`` filters, and then the ``NOT_EQUALS`` or ``PREFIX_NOT_EQUALS`` filters.
- For example, for the following filters, Security Hub CSPM first identifies findings that have resource types that start with either ``AwsIam`` or ``AwsEc2``. It then excludes findings that have a resource type of ``AwsIamPolicy`` and findings that have a resource type of ``AwsEc2NetworkInterface``.
-  +   ``ResourceType PREFIX AwsIam`` 
-  +   ``ResourceType PREFIX AwsEc2`` 
-  +   ``ResourceType NOT_EQUALS AwsIamPolicy`` 
-  +   ``ResourceType NOT_EQUALS AwsEc2NetworkInterface`` 
-  
- ``CONTAINS`` and ``NOT_CONTAINS`` operators can be used only with automation rules V1. ``CONTAINS_WORD`` operator is only supported in ``GetFindingsV2``, ``GetFindingStatisticsV2``, ``GetResourcesV2``, and ``GetResourceStatisticsV2`` APIs. For more information, see [Automation rules](https://docs.aws.amazon.com/securityhub/latest/userguide/automation-rules.html) in the *User Guide*. */
-    Comparison: AutomationRule_StringFilterComparison;
-    /** The string filter value. Filter values are case sensitive. For example, the product name for control-based findings is ``Security Hub CSPM``. If you provide ``security hub`` as the filter value, there's no match. */
-    Value: string;
-  });
-}
-
-export declare class AutomationRule_WorkflowUpdate {
-  constructor(props: {
-    /** The status of the investigation into the finding. The workflow status is specific to an individual finding. It does not affect the generation of new findings. For example, setting the workflow status to ``SUPPRESSED`` or ``RESOLVED`` does not prevent a new finding for the same issue.
- The allowed values are the following.
-  +  ``NEW`` - The initial state of a finding, before it is reviewed.
- Security Hub CSPM also resets ``WorkFlowStatus`` from ``NOTIFIED`` or ``RESOLVED`` to ``NEW`` in the following cases:
-  +  The record state changes from ``ARCHIVED`` to ``ACTIVE``.
-  +  The compliance status changes from ``PASSED`` to either ``WARNING``, ``FAILED``, or ``NOT_AVAILABLE``.
-  
-  +  ``NOTIFIED`` - Indicates that you notified the resource owner about the security issue. Used when the initial reviewer is not the resource owner, and needs intervention from the resource owner.
-  +  ``RESOLVED`` - The finding was reviewed and remediated and is now considered resolved.
-  +  ``SUPPRESSED`` - Indicates that you reviewed the finding and don't believe that any action is needed. The finding is no longer updated. */
-    Status: "NEW" | "NOTIFIED" | "RESOLVED" | "SUPPRESSED";
-  });
-}
-
 export declare class AutomationRulesAction {
   constructor(props: {
     /** Specifies that the automation rule action is an update to a finding field. */
-    FindingFieldsUpdate: AutomationRule_AutomationRulesFindingFieldsUpdate;
+    FindingFieldsUpdate: SecurityHubAutomationRule_AutomationRulesFindingFieldsUpdate;
     /** Specifies the type of action that Security Hub CSPM takes when a finding matches the defined criteria of a rule. */
     Type: "FINDING_FIELDS_UPDATE";
   });
@@ -47748,11 +47490,11 @@ export declare class AutomationRulesFindingFieldsUpdate {
     /** The rule action updates the ``Criticality`` field of a finding. */
     Criticality?: number;
     /** The rule action will update the ``Note`` field of a finding. */
-    Note?: AutomationRule_NoteUpdate;
+    Note?: SecurityHubAutomationRule_NoteUpdate;
     /** The rule action will update the ``RelatedFindings`` field of a finding. */
-    RelatedFindings?: AutomationRule_RelatedFinding[];
+    RelatedFindings?: SecurityHubAutomationRule_RelatedFinding[];
     /** The rule action will update the ``Severity`` field of a finding. */
-    Severity?: AutomationRule_SeverityUpdate;
+    Severity?: SecurityHubAutomationRule_SeverityUpdate;
     /** The rule action updates the ``Types`` field of a finding. */
     Types?: string[];
     /** The rule action updates the ``UserDefinedFields`` field of a finding. */
@@ -47760,7 +47502,7 @@ export declare class AutomationRulesFindingFieldsUpdate {
     /** The rule action updates the ``VerificationState`` field of a finding. */
     VerificationState?: "BENIGN_POSITIVE" | "FALSE_POSITIVE" | "TRUE_POSITIVE" | "UNKNOWN";
     /** The rule action will update the ``Workflow`` field of a finding. */
-    Workflow?: AutomationRule_WorkflowUpdate;
+    Workflow?: SecurityHubAutomationRule_WorkflowUpdate;
   });
 }
 
@@ -47779,114 +47521,114 @@ export declare class AutomationRulesFindingFilters {
   constructor(props: {
     /** The AWS-account ID in which a finding was generated.
   Array Members: Minimum number of 1 item. Maximum number of 100 items. */
-    AwsAccountId?: AutomationRule_StringFilter[];
+    AwsAccountId?: SecurityHubAutomationRule_StringFilter[];
     /** The name of the company for the product that generated the finding. For control-based findings, the company is AWS. 
   Array Members: Minimum number of 1 item. Maximum number of 20 items. */
-    CompanyName?: AutomationRule_StringFilter[];
+    CompanyName?: SecurityHubAutomationRule_StringFilter[];
     /** The unique identifier of a standard in which a control is enabled. This field consists of the resource portion of the Amazon Resource Name (ARN) returned for a standard in the [DescribeStandards](https://docs.aws.amazon.com/securityhub/1.0/APIReference/API_DescribeStandards.html) API response.
   Array Members: Minimum number of 1 item. Maximum number of 20 items. */
-    ComplianceAssociatedStandardsId?: AutomationRule_StringFilter[];
+    ComplianceAssociatedStandardsId?: SecurityHubAutomationRule_StringFilter[];
     /** The security control ID for which a finding was generated. Security control IDs are the same across standards.
   Array Members: Minimum number of 1 item. Maximum number of 20 items. */
-    ComplianceSecurityControlId?: AutomationRule_StringFilter[];
+    ComplianceSecurityControlId?: SecurityHubAutomationRule_StringFilter[];
     /** The result of a security check. This field is only used for findings generated from controls. 
   Array Members: Minimum number of 1 item. Maximum number of 20 items. */
-    ComplianceStatus?: AutomationRule_StringFilter[];
+    ComplianceStatus?: SecurityHubAutomationRule_StringFilter[];
     /** The likelihood that a finding accurately identifies the behavior or issue that it was intended to identify. ``Confidence`` is scored on a 0–100 basis using a ratio scale. A value of ``0`` means 0 percent confidence, and a value of ``100`` means 100 percent confidence. For example, a data exfiltration detection based on a statistical deviation of network traffic has low confidence because an actual exfiltration hasn't been verified. For more information, see [Confidence](https://docs.aws.amazon.com/securityhub/latest/userguide/asff-top-level-attributes.html#asff-confidence) in the *User Guide*.
   Array Members: Minimum number of 1 item. Maximum number of 20 items. */
-    Confidence?: AutomationRule_NumberFilter[];
+    Confidence?: SecurityHubAutomationRule_NumberFilter[];
     /** A timestamp that indicates when this finding record was created. 
  For more information about the validation and formatting of timestamp fields in ASHlong, see [Timestamps](https://docs.aws.amazon.com/securityhub/1.0/APIReference/Welcome.html#timestamps).
   Array Members: Minimum number of 1 item. Maximum number of 20 items. */
-    CreatedAt?: AutomationRule_DateFilter[];
+    CreatedAt?: SecurityHubAutomationRule_DateFilter[];
     /** The level of importance that is assigned to the resources that are associated with a finding. ``Criticality`` is scored on a 0–100 basis, using a ratio scale that supports only full integers. A score of ``0`` means that the underlying resources have no criticality, and a score of ``100`` is reserved for the most critical resources. For more information, see [Criticality](https://docs.aws.amazon.com/securityhub/latest/userguide/asff-top-level-attributes.html#asff-criticality) in the *User Guide*.
   Array Members: Minimum number of 1 item. Maximum number of 20 items. */
-    Criticality?: AutomationRule_NumberFilter[];
+    Criticality?: SecurityHubAutomationRule_NumberFilter[];
     /** A finding's description. 
   Array Members: Minimum number of 1 item. Maximum number of 20 items. */
-    Description?: AutomationRule_StringFilter[];
+    Description?: SecurityHubAutomationRule_StringFilter[];
     /** A timestamp that indicates when the potential security issue captured by a finding was first observed by the security findings product. 
  For more information about the validation and formatting of timestamp fields in ASHlong, see [Timestamps](https://docs.aws.amazon.com/securityhub/1.0/APIReference/Welcome.html#timestamps).
   Array Members: Minimum number of 1 item. Maximum number of 20 items. */
-    FirstObservedAt?: AutomationRule_DateFilter[];
+    FirstObservedAt?: SecurityHubAutomationRule_DateFilter[];
     /** The identifier for the solution-specific component that generated a finding. 
   Array Members: Minimum number of 1 item. Maximum number of 100 items. */
-    GeneratorId?: AutomationRule_StringFilter[];
+    GeneratorId?: SecurityHubAutomationRule_StringFilter[];
     /** The product-specific identifier for a finding. 
   Array Members: Minimum number of 1 item. Maximum number of 20 items. */
-    Id?: AutomationRule_StringFilter[];
+    Id?: SecurityHubAutomationRule_StringFilter[];
     /** A timestamp that indicates when the security findings provider most recently observed a change in the resource that is involved in the finding. 
  For more information about the validation and formatting of timestamp fields in ASHlong, see [Timestamps](https://docs.aws.amazon.com/securityhub/1.0/APIReference/Welcome.html#timestamps).
   Array Members: Minimum number of 1 item. Maximum number of 20 items. */
-    LastObservedAt?: AutomationRule_DateFilter[];
+    LastObservedAt?: SecurityHubAutomationRule_DateFilter[];
     /** The text of a user-defined note that's added to a finding. 
   Array Members: Minimum number of 1 item. Maximum number of 20 items. */
-    NoteText?: AutomationRule_StringFilter[];
+    NoteText?: SecurityHubAutomationRule_StringFilter[];
     /** The timestamp of when the note was updated.
  For more information about the validation and formatting of timestamp fields in ASHlong, see [Timestamps](https://docs.aws.amazon.com/securityhub/1.0/APIReference/Welcome.html#timestamps).
   Array Members: Minimum number of 1 item. Maximum number of 20 items. */
-    NoteUpdatedAt?: AutomationRule_DateFilter[];
+    NoteUpdatedAt?: SecurityHubAutomationRule_DateFilter[];
     /** The principal that created a note. 
   Array Members: Minimum number of 1 item. Maximum number of 20 items. */
-    NoteUpdatedBy?: AutomationRule_StringFilter[];
+    NoteUpdatedBy?: SecurityHubAutomationRule_StringFilter[];
     /** The Amazon Resource Name (ARN) for a third-party product that generated a finding in Security Hub CSPM. 
   Array Members: Minimum number of 1 item. Maximum number of 20 items. */
-    ProductArn?: AutomationRule_StringFilter[];
+    ProductArn?: SecurityHubAutomationRule_StringFilter[];
     /** Provides the name of the product that generated the finding. For control-based findings, the product name is Security Hub CSPM. 
   Array Members: Minimum number of 1 item. Maximum number of 20 items. */
-    ProductName?: AutomationRule_StringFilter[];
+    ProductName?: SecurityHubAutomationRule_StringFilter[];
     /** Provides the current state of a finding. 
   Array Members: Minimum number of 1 item. Maximum number of 20 items. */
-    RecordState?: AutomationRule_StringFilter[];
+    RecordState?: SecurityHubAutomationRule_StringFilter[];
     /** The product-generated identifier for a related finding. 
   Array Members: Minimum number of 1 item. Maximum number of 20 items. */
-    RelatedFindingsId?: AutomationRule_StringFilter[];
+    RelatedFindingsId?: SecurityHubAutomationRule_StringFilter[];
     /** The ARN for the product that generated a related finding. 
   Array Members: Minimum number of 1 item. Maximum number of 20 items. */
-    RelatedFindingsProductArn?: AutomationRule_StringFilter[];
+    RelatedFindingsProductArn?: SecurityHubAutomationRule_StringFilter[];
     /** Custom fields and values about the resource that a finding pertains to. 
   Array Members: Minimum number of 1 item. Maximum number of 20 items. */
-    ResourceDetailsOther?: AutomationRule_MapFilter[];
+    ResourceDetailsOther?: SecurityHubAutomationRule_MapFilter[];
     /** The identifier for the given resource type. For AWS resources that are identified by Amazon Resource Names (ARNs), this is the ARN. For AWS resources that lack ARNs, this is the identifier as defined by the AWS-service that created the resource. For non-AWS resources, this is a unique identifier that is associated with the resource. 
   Array Members: Minimum number of 1 item. Maximum number of 100 items. */
-    ResourceId?: AutomationRule_StringFilter[];
+    ResourceId?: SecurityHubAutomationRule_StringFilter[];
     /** The partition in which the resource that the finding pertains to is located. A partition is a group of AWS-Regions. Each AWS-account is scoped to one partition. 
   Array Members: Minimum number of 1 item. Maximum number of 20 items. */
-    ResourcePartition?: AutomationRule_StringFilter[];
+    ResourcePartition?: SecurityHubAutomationRule_StringFilter[];
     /** The AWS-Region where the resource that a finding pertains to is located. 
   Array Members: Minimum number of 1 item. Maximum number of 20 items. */
-    ResourceRegion?: AutomationRule_StringFilter[];
+    ResourceRegion?: SecurityHubAutomationRule_StringFilter[];
     /** A list of AWS tags associated with a resource at the time the finding was processed. 
   Array Members: Minimum number of 1 item. Maximum number of 20 items. */
-    ResourceTags?: AutomationRule_MapFilter[];
+    ResourceTags?: SecurityHubAutomationRule_MapFilter[];
     /** A finding's title. 
   Array Members: Minimum number of 1 item. Maximum number of 100 items. */
-    ResourceType?: AutomationRule_StringFilter[];
+    ResourceType?: SecurityHubAutomationRule_StringFilter[];
     /** The severity value of the finding. 
   Array Members: Minimum number of 1 item. Maximum number of 20 items. */
-    SeverityLabel?: AutomationRule_StringFilter[];
+    SeverityLabel?: SecurityHubAutomationRule_StringFilter[];
     /** Provides a URL that links to a page about the current finding in the finding product. 
   Array Members: Minimum number of 1 item. Maximum number of 20 items. */
-    SourceUrl?: AutomationRule_StringFilter[];
+    SourceUrl?: SecurityHubAutomationRule_StringFilter[];
     /** A finding's title. 
   Array Members: Minimum number of 1 item. Maximum number of 100 items. */
-    Title?: AutomationRule_StringFilter[];
+    Title?: SecurityHubAutomationRule_StringFilter[];
     /** One or more finding types in the format of namespace/category/classifier that classify a finding. For a list of namespaces, classifiers, and categories, see [Types taxonomy for ASFF](https://docs.aws.amazon.com/securityhub/latest/userguide/securityhub-findings-format-type-taxonomy.html) in the *User Guide*.
   Array Members: Minimum number of 1 item. Maximum number of 20 items. */
-    Type?: AutomationRule_StringFilter[];
+    Type?: SecurityHubAutomationRule_StringFilter[];
     /** A timestamp that indicates when the finding record was most recently updated. 
  For more information about the validation and formatting of timestamp fields in ASHlong, see [Timestamps](https://docs.aws.amazon.com/securityhub/1.0/APIReference/Welcome.html#timestamps).
   Array Members: Minimum number of 1 item. Maximum number of 20 items. */
-    UpdatedAt?: AutomationRule_DateFilter[];
+    UpdatedAt?: SecurityHubAutomationRule_DateFilter[];
     /** A list of user-defined name and value string pairs added to a finding. 
   Array Members: Minimum number of 1 item. Maximum number of 20 items. */
-    UserDefinedFields?: AutomationRule_MapFilter[];
+    UserDefinedFields?: SecurityHubAutomationRule_MapFilter[];
     /** Provides the veracity of a finding. 
   Array Members: Minimum number of 1 item. Maximum number of 20 items. */
-    VerificationState?: AutomationRule_StringFilter[];
+    VerificationState?: SecurityHubAutomationRule_StringFilter[];
     /** Provides information about the status of the investigation into a finding. 
   Array Members: Minimum number of 1 item. Maximum number of 20 items. */
-    WorkflowStatus?: AutomationRule_StringFilter[];
+    WorkflowStatus?: SecurityHubAutomationRule_StringFilter[];
   });
 }
 
@@ -54479,6 +54221,19 @@ export declare class CapacityLimit {
   });
 }
 
+export declare class CapacityLimits {
+  constructor(props: {
+    /** The maximum indexing capacity for collections in the group. */
+    MaxIndexingCapacityInOcu?: number;
+    /** The maximum search capacity for collections in the group. */
+    MaxSearchCapacityInOcu?: number;
+    /** The minimum indexing capacity for collections in the group. */
+    MinIndexingCapacityInOcu?: number;
+    /** The minimum search capacity for collections in the group. */
+    MinSearchCapacityInOcu?: number;
+  });
+}
+
 export declare class CapacityManagerDataExport_Tag {
   constructor(props: {
     /** The key name of the tag. You can specify a value that is 1 to 128 Unicode characters in length and cannot be prefixed with aws:. You can use any of the following characters: the set of Unicode letters, digits, whitespace, _, ., /, =, +, and -. */
@@ -58144,6 +57899,28 @@ export declare class Collaboration_Tag {
   });
 }
 
+export declare class CollectionGroup_CapacityLimits {
+  constructor(props: {
+    /** The maximum indexing capacity for collections in the group. */
+    MaxIndexingCapacityInOcu?: number;
+    /** The maximum search capacity for collections in the group. */
+    MaxSearchCapacityInOcu?: number;
+    /** The minimum indexing capacity for collections in the group. */
+    MinIndexingCapacityInOcu?: number;
+    /** The minimum search capacity for collections in the group. */
+    MinSearchCapacityInOcu?: number;
+  });
+}
+
+export declare class CollectionGroup_Tag {
+  constructor(props: {
+    /** The key in the key-value pair */
+    Key: string;
+    /** The value in the key-value pair */
+    Value: string;
+  });
+}
+
 export declare class CollectiveConstant {
   constructor(props: {
     ValueList?: string[];
@@ -59078,6 +58855,75 @@ export declare class ComputeNodeGroupConfiguration {
   });
 }
 
+export declare class ComputeOptimizerAutomationRule_Criteria {
+  constructor(props: {
+    EbsVolumeSizeInGib?: any;
+    EbsVolumeType?: any;
+    EstimatedMonthlySavings?: any;
+    LookBackPeriodInDays?: any;
+    Region?: any;
+    ResourceArn?: any;
+    ResourceTag?: any;
+    RestartNeeded?: any;
+  });
+}
+
+export declare class ComputeOptimizerAutomationRule_DoubleCriteriaCondition {
+  constructor(props: {
+    Comparison?: "NumericEquals" | "NumericGreaterThan" | "NumericGreaterThanEquals" | "NumericLessThan" | "NumericLessThanEquals" | "NumericNotEquals" | "StringEquals" | "StringEqualsIgnoreCase" | "StringLike" | "StringNotEquals" | "StringNotEqualsIgnoreCase" | "StringNotLike";
+    Values?: number[];
+  });
+}
+
+export declare class ComputeOptimizerAutomationRule_IntegerCriteriaCondition {
+  constructor(props: {
+    Comparison?: "NumericEquals" | "NumericGreaterThan" | "NumericGreaterThanEquals" | "NumericLessThan" | "NumericLessThanEquals" | "NumericNotEquals" | "StringEquals" | "StringEqualsIgnoreCase" | "StringLike" | "StringNotEquals" | "StringNotEqualsIgnoreCase" | "StringNotLike";
+    Values?: number[];
+  });
+}
+
+export declare class ComputeOptimizerAutomationRule_OrganizationConfiguration {
+  constructor(props: {
+    /** List of account IDs where the organization rule applies */
+    AccountIds?: string[];
+    /** When the rule should be applied relative to account rules */
+    RuleApplyOrder?: "AfterAccountRules" | "BeforeAccountRules";
+  });
+}
+
+export declare class ComputeOptimizerAutomationRule_ResourceTagsCriteriaCondition {
+  constructor(props: {
+    Comparison?: "NumericEquals" | "NumericGreaterThan" | "NumericGreaterThanEquals" | "NumericLessThan" | "NumericLessThanEquals" | "NumericNotEquals" | "StringEquals" | "StringEqualsIgnoreCase" | "StringLike" | "StringNotEquals" | "StringNotEqualsIgnoreCase" | "StringNotLike";
+    Key?: string;
+    Values?: string[];
+  });
+}
+
+export declare class ComputeOptimizerAutomationRule_Schedule {
+  constructor(props: {
+    /** Execution window duration in minutes */
+    ExecutionWindowInMinutes?: number;
+    /** Schedule expression (e.g., cron or rate expression) */
+    ScheduleExpression?: string;
+    /** IANA timezone identifier */
+    ScheduleExpressionTimezone?: string;
+  });
+}
+
+export declare class ComputeOptimizerAutomationRule_StringCriteriaCondition {
+  constructor(props: {
+    Comparison?: "NumericEquals" | "NumericGreaterThan" | "NumericGreaterThanEquals" | "NumericLessThan" | "NumericLessThanEquals" | "NumericNotEquals" | "StringEquals" | "StringEqualsIgnoreCase" | "StringLike" | "StringNotEquals" | "StringNotEqualsIgnoreCase" | "StringNotLike";
+    Values?: string[];
+  });
+}
+
+export declare class ComputeOptimizerAutomationRule_Tag {
+  constructor(props: {
+    Key: string;
+    Value: string;
+  });
+}
+
 export declare class ComputeResources {
   constructor(props: {
     MaxvCpus: number;
@@ -63001,12 +62847,6 @@ export declare class CreditSpecificationRequest {
   });
 }
 
-export declare class Criteria {
-  constructor(props: {
-    OcsfFindingCriteria?: AutomationRuleV2_OcsfFindingFilters;
-  });
-}
-
 export declare class CriterionAdditionalProperties {
   constructor(props: {
     eq?: string[];
@@ -73076,6 +72916,13 @@ export declare class DomainVerification_TxtMethodConfig {
   });
 }
 
+export declare class DoubleCriteriaCondition {
+  constructor(props: {
+    Comparison?: "NumericEquals" | "NumericGreaterThan" | "NumericGreaterThanEquals" | "NumericLessThan" | "NumericLessThanEquals" | "NumericNotEquals" | "StringEquals" | "StringEqualsIgnoreCase" | "StringLike" | "StringNotEquals" | "StringNotEqualsIgnoreCase" | "StringNotLike";
+    Values?: number[];
+  });
+}
+
 export declare class DownlinkAwsGroundStationAgentEndpoint {
   constructor(props: {
     DataflowDetails: DataflowEndpointGroupV2_DownlinkDataflowDetails;
@@ -80576,6 +80423,12 @@ export declare class FHIRDatastore_Tag {
   });
 }
 
+export declare class Field_FieldAttributes {
+  constructor(props: {
+    Text?: Field_TextAttributes;
+  });
+}
+
 export declare class Field_Tag {
   constructor(props: {
     /** The key name of the tag. You can specify a value that is 1 to 128 Unicode characters in length and cannot be prefixed with aws:. You can use any of the following characters: the set of Unicode letters, digits, whitespace, _, ., /, =, +, and -. */
@@ -80585,6 +80438,19 @@ export declare class Field_Tag {
   });
 }
 
+export declare class Field_TextAttributes {
+  constructor(props: {
+    /** Attribute that defines rendering component and validation */
+    IsMultiline: boolean;
+  });
+}
+
+export declare class FieldAttributes {
+  constructor(props: {
+    Text?: Field_TextAttributes;
+  });
+}
+
 export declare class FieldConfig {
   constructor(props: {
     Excluded?: boolean;
@@ -90207,6 +90073,13 @@ export declare class InstanceTypeSpecification {
   });
 }
 
+export declare class IntegerCriteriaCondition {
+  constructor(props: {
+    Comparison?: "NumericEquals" | "NumericGreaterThan" | "NumericGreaterThanEquals" | "NumericLessThan" | "NumericLessThanEquals" | "NumericNotEquals" | "StringEquals" | "StringEqualsIgnoreCase" | "StringLike" | "StringNotEquals" | "StringNotEqualsIgnoreCase" | "StringNotLike";
+    Values?: number[];
+  });
+}
+
 export declare class IntegerDatasetParameter {
   constructor(props: {
     /** <p>An identifier for the integer parameter created in the dataset.</p> */
@@ -108520,15 +108393,10 @@ export declare class Nodegroup_UpdateConfig {
 
 export declare class NodeGroupConfiguration {
   constructor(props: {
-    /** Either the ElastiCache for Redis supplied 4-digit id or a user supplied id for the node group these configuration values apply to. */
     NodeGroupId?: string;
-    /** The Availability Zone where the primary node of this node group (shard) is launched. */
     PrimaryAvailabilityZone?: string;
-    /** A list of Availability Zones to be used for the read replicas. The number of Availability Zones in this list must match the value of ReplicaCount or ReplicasPerNodeGroup if not specified. */
     ReplicaAvailabilityZones?: string[];
-    /** The number of read replica nodes in this node group (shard). */
     ReplicaCount?: number;
-    /** A string of comma-separated values where the first set of values are the slot numbers (zero based), and the second set of values are the keyspaces for each slot. The following example specifies three slots (numbered 0, 1, and 2): 0,1,2,0-4999,5000-9999,10000-16,383. */
     Slots?: string;
   });
 }
@@ -129340,7 +129208,6 @@ export declare class ReplicationConfiguration_RepositoryFilter {
 
 export declare class ReplicationGroup_CloudWatchLogsDestinationDetails {
   constructor(props: {
-    /** The name of the CloudWatch Logs log group. */
     LogGroup: string;
   });
 }
@@ -129352,18 +129219,8 @@ export declare class ReplicationGroup_DestinationDetails {
   });
 }
 
-export declare class ReplicationGroup_Endpoint {
-  constructor(props: {
-    /** The DNS hostname of the cache node. */
-    Address?: string;
-    /** The port number that the cache engine is listening on. */
-    Port?: string;
-  });
-}
-
 export declare class ReplicationGroup_KinesisFirehoseDestinationDetails {
   constructor(props: {
-    /** The name of the Kinesis Data Firehose delivery stream. */
     DeliveryStream: string;
   });
 }
@@ -129371,35 +129228,25 @@ export declare class ReplicationGroup_KinesisFirehoseDestinationDetails {
 export declare class ReplicationGroup_LogDeliveryConfigurationRequest {
   constructor(props: {
     DestinationDetails: ReplicationGroup_DestinationDetails;
-    /** Specify either CloudWatch Logs or Kinesis Data Firehose as the destination type. Valid values are either cloudwatch-logs or kinesis-firehose. */
     DestinationType: string;
-    /** Valid values are either json or text. */
     LogFormat: string;
-    /** Valid value is either slow-log, which refers to slow-log or engine-log. */
     LogType: string;
   });
 }
 
 export declare class ReplicationGroup_NodeGroupConfiguration {
   constructor(props: {
-    /** Either the ElastiCache for Redis supplied 4-digit id or a user supplied id for the node group these configuration values apply to. */
     NodeGroupId?: string;
-    /** The Availability Zone where the primary node of this node group (shard) is launched. */
     PrimaryAvailabilityZone?: string;
-    /** A list of Availability Zones to be used for the read replicas. The number of Availability Zones in this list must match the value of ReplicaCount or ReplicasPerNodeGroup if not specified. */
     ReplicaAvailabilityZones?: string[];
-    /** The number of read replica nodes in this node group (shard). */
     ReplicaCount?: number;
-    /** A string of comma-separated values where the first set of values are the slot numbers (zero based), and the second set of values are the keyspaces for each slot. The following example specifies three slots (numbered 0, 1, and 2): 0,1,2,0-4999,5000-9999,10000-16,383. */
     Slots?: string;
   });
 }
 
 export declare class ReplicationGroup_Tag {
   constructor(props: {
-    /** The key name of the tag. You can specify a value that is 1 to 128 Unicode characters in length and cannot be prefixed with aws:. You can use any of the following characters: the set of Unicode letters, digits, whitespace, _, ., /, =, +, and -. */
     Key: string;
-    /** The value for the tag. You can specify a value that is 0 to 256 Unicode characters in length and cannot be prefixed with aws:. You can use any of the following characters: the set of Unicode letters, digits, whitespace, _, ., /, =, +, and -. */
     Value: string;
   });
 }
@@ -130450,6 +130297,14 @@ export declare class ResourcesVpcConfig {
   });
 }
 
+export declare class ResourceTagsCriteriaCondition {
+  constructor(props: {
+    Comparison?: "NumericEquals" | "NumericGreaterThan" | "NumericGreaterThanEquals" | "NumericLessThan" | "NumericLessThanEquals" | "NumericNotEquals" | "StringEquals" | "StringEqualsIgnoreCase" | "StringLike" | "StringNotEquals" | "StringNotEqualsIgnoreCase" | "StringNotLike";
+    Key?: string;
+    Values?: string[];
+  });
+}
+
 export declare class ResourceVersion_LoggingConfig {
   constructor(props: {
     /** The Amazon CloudWatch log group to which CloudFormation sends error logging information when invoking the type's handlers. */
@@ -136228,6 +136083,304 @@ export declare class SecurityHeadersConfig {
   });
 }
 
+export declare class SecurityHubAutomationRule_AutomationRulesAction {
+  constructor(props: {
+    /** Specifies that the automation rule action is an update to a finding field. */
+    FindingFieldsUpdate: SecurityHubAutomationRule_AutomationRulesFindingFieldsUpdate;
+    /** Specifies the type of action that Security Hub CSPM takes when a finding matches the defined criteria of a rule. */
+    Type: "FINDING_FIELDS_UPDATE";
+  });
+}
+
+export declare class SecurityHubAutomationRule_AutomationRulesFindingFieldsUpdate {
+  constructor(props: {
+    /** The rule action updates the ``Confidence`` field of a finding. */
+    Confidence?: number;
+    /** The rule action updates the ``Criticality`` field of a finding. */
+    Criticality?: number;
+    /** The rule action will update the ``Note`` field of a finding. */
+    Note?: SecurityHubAutomationRule_NoteUpdate;
+    /** The rule action will update the ``RelatedFindings`` field of a finding. */
+    RelatedFindings?: SecurityHubAutomationRule_RelatedFinding[];
+    /** The rule action will update the ``Severity`` field of a finding. */
+    Severity?: SecurityHubAutomationRule_SeverityUpdate;
+    /** The rule action updates the ``Types`` field of a finding. */
+    Types?: string[];
+    /** The rule action updates the ``UserDefinedFields`` field of a finding. */
+    UserDefinedFields?: Record<string, unknown>;
+    /** The rule action updates the ``VerificationState`` field of a finding. */
+    VerificationState?: "BENIGN_POSITIVE" | "FALSE_POSITIVE" | "TRUE_POSITIVE" | "UNKNOWN";
+    /** The rule action will update the ``Workflow`` field of a finding. */
+    Workflow?: SecurityHubAutomationRule_WorkflowUpdate;
+  });
+}
+
+export declare class SecurityHubAutomationRule_AutomationRulesFindingFilters {
+  constructor(props: {
+    /** The AWS-account ID in which a finding was generated.
+  Array Members: Minimum number of 1 item. Maximum number of 100 items. */
+    AwsAccountId?: SecurityHubAutomationRule_StringFilter[];
+    /** The name of the company for the product that generated the finding. For control-based findings, the company is AWS. 
+  Array Members: Minimum number of 1 item. Maximum number of 20 items. */
+    CompanyName?: SecurityHubAutomationRule_StringFilter[];
+    /** The unique identifier of a standard in which a control is enabled. This field consists of the resource portion of the Amazon Resource Name (ARN) returned for a standard in the [DescribeStandards](https://docs.aws.amazon.com/securityhub/1.0/APIReference/API_DescribeStandards.html) API response.
+  Array Members: Minimum number of 1 item. Maximum number of 20 items. */
+    ComplianceAssociatedStandardsId?: SecurityHubAutomationRule_StringFilter[];
+    /** The security control ID for which a finding was generated. Security control IDs are the same across standards.
+  Array Members: Minimum number of 1 item. Maximum number of 20 items. */
+    ComplianceSecurityControlId?: SecurityHubAutomationRule_StringFilter[];
+    /** The result of a security check. This field is only used for findings generated from controls. 
+  Array Members: Minimum number of 1 item. Maximum number of 20 items. */
+    ComplianceStatus?: SecurityHubAutomationRule_StringFilter[];
+    /** The likelihood that a finding accurately identifies the behavior or issue that it was intended to identify. ``Confidence`` is scored on a 0–100 basis using a ratio scale. A value of ``0`` means 0 percent confidence, and a value of ``100`` means 100 percent confidence. For example, a data exfiltration detection based on a statistical deviation of network traffic has low confidence because an actual exfiltration hasn't been verified. For more information, see [Confidence](https://docs.aws.amazon.com/securityhub/latest/userguide/asff-top-level-attributes.html#asff-confidence) in the *User Guide*.
+  Array Members: Minimum number of 1 item. Maximum number of 20 items. */
+    Confidence?: SecurityHubAutomationRule_NumberFilter[];
+    /** A timestamp that indicates when this finding record was created. 
+ For more information about the validation and formatting of timestamp fields in ASHlong, see [Timestamps](https://docs.aws.amazon.com/securityhub/1.0/APIReference/Welcome.html#timestamps).
+  Array Members: Minimum number of 1 item. Maximum number of 20 items. */
+    CreatedAt?: SecurityHubAutomationRule_DateFilter[];
+    /** The level of importance that is assigned to the resources that are associated with a finding. ``Criticality`` is scored on a 0–100 basis, using a ratio scale that supports only full integers. A score of ``0`` means that the underlying resources have no criticality, and a score of ``100`` is reserved for the most critical resources. For more information, see [Criticality](https://docs.aws.amazon.com/securityhub/latest/userguide/asff-top-level-attributes.html#asff-criticality) in the *User Guide*.
+  Array Members: Minimum number of 1 item. Maximum number of 20 items. */
+    Criticality?: SecurityHubAutomationRule_NumberFilter[];
+    /** A finding's description. 
+  Array Members: Minimum number of 1 item. Maximum number of 20 items. */
+    Description?: SecurityHubAutomationRule_StringFilter[];
+    /** A timestamp that indicates when the potential security issue captured by a finding was first observed by the security findings product. 
+ For more information about the validation and formatting of timestamp fields in ASHlong, see [Timestamps](https://docs.aws.amazon.com/securityhub/1.0/APIReference/Welcome.html#timestamps).
+  Array Members: Minimum number of 1 item. Maximum number of 20 items. */
+    FirstObservedAt?: SecurityHubAutomationRule_DateFilter[];
+    /** The identifier for the solution-specific component that generated a finding. 
+  Array Members: Minimum number of 1 item. Maximum number of 100 items. */
+    GeneratorId?: SecurityHubAutomationRule_StringFilter[];
+    /** The product-specific identifier for a finding. 
+  Array Members: Minimum number of 1 item. Maximum number of 20 items. */
+    Id?: SecurityHubAutomationRule_StringFilter[];
+    /** A timestamp that indicates when the security findings provider most recently observed a change in the resource that is involved in the finding. 
+ For more information about the validation and formatting of timestamp fields in ASHlong, see [Timestamps](https://docs.aws.amazon.com/securityhub/1.0/APIReference/Welcome.html#timestamps).
+  Array Members: Minimum number of 1 item. Maximum number of 20 items. */
+    LastObservedAt?: SecurityHubAutomationRule_DateFilter[];
+    /** The text of a user-defined note that's added to a finding. 
+  Array Members: Minimum number of 1 item. Maximum number of 20 items. */
+    NoteText?: SecurityHubAutomationRule_StringFilter[];
+    /** The timestamp of when the note was updated.
+ For more information about the validation and formatting of timestamp fields in ASHlong, see [Timestamps](https://docs.aws.amazon.com/securityhub/1.0/APIReference/Welcome.html#timestamps).
+  Array Members: Minimum number of 1 item. Maximum number of 20 items. */
+    NoteUpdatedAt?: SecurityHubAutomationRule_DateFilter[];
+    /** The principal that created a note. 
+  Array Members: Minimum number of 1 item. Maximum number of 20 items. */
+    NoteUpdatedBy?: SecurityHubAutomationRule_StringFilter[];
+    /** The Amazon Resource Name (ARN) for a third-party product that generated a finding in Security Hub CSPM. 
+  Array Members: Minimum number of 1 item. Maximum number of 20 items. */
+    ProductArn?: SecurityHubAutomationRule_StringFilter[];
+    /** Provides the name of the product that generated the finding. For control-based findings, the product name is Security Hub CSPM. 
+  Array Members: Minimum number of 1 item. Maximum number of 20 items. */
+    ProductName?: SecurityHubAutomationRule_StringFilter[];
+    /** Provides the current state of a finding. 
+  Array Members: Minimum number of 1 item. Maximum number of 20 items. */
+    RecordState?: SecurityHubAutomationRule_StringFilter[];
+    /** The product-generated identifier for a related finding. 
+  Array Members: Minimum number of 1 item. Maximum number of 20 items. */
+    RelatedFindingsId?: SecurityHubAutomationRule_StringFilter[];
+    /** The ARN for the product that generated a related finding. 
+  Array Members: Minimum number of 1 item. Maximum number of 20 items. */
+    RelatedFindingsProductArn?: SecurityHubAutomationRule_StringFilter[];
+    /** Custom fields and values about the resource that a finding pertains to. 
+  Array Members: Minimum number of 1 item. Maximum number of 20 items. */
+    ResourceDetailsOther?: SecurityHubAutomationRule_MapFilter[];
+    /** The identifier for the given resource type. For AWS resources that are identified by Amazon Resource Names (ARNs), this is the ARN. For AWS resources that lack ARNs, this is the identifier as defined by the AWS-service that created the resource. For non-AWS resources, this is a unique identifier that is associated with the resource. 
+  Array Members: Minimum number of 1 item. Maximum number of 100 items. */
+    ResourceId?: SecurityHubAutomationRule_StringFilter[];
+    /** The partition in which the resource that the finding pertains to is located. A partition is a group of AWS-Regions. Each AWS-account is scoped to one partition. 
+  Array Members: Minimum number of 1 item. Maximum number of 20 items. */
+    ResourcePartition?: SecurityHubAutomationRule_StringFilter[];
+    /** The AWS-Region where the resource that a finding pertains to is located. 
+  Array Members: Minimum number of 1 item. Maximum number of 20 items. */
+    ResourceRegion?: SecurityHubAutomationRule_StringFilter[];
+    /** A list of AWS tags associated with a resource at the time the finding was processed. 
+  Array Members: Minimum number of 1 item. Maximum number of 20 items. */
+    ResourceTags?: SecurityHubAutomationRule_MapFilter[];
+    /** A finding's title. 
+  Array Members: Minimum number of 1 item. Maximum number of 100 items. */
+    ResourceType?: SecurityHubAutomationRule_StringFilter[];
+    /** The severity value of the finding. 
+  Array Members: Minimum number of 1 item. Maximum number of 20 items. */
+    SeverityLabel?: SecurityHubAutomationRule_StringFilter[];
+    /** Provides a URL that links to a page about the current finding in the finding product. 
+  Array Members: Minimum number of 1 item. Maximum number of 20 items. */
+    SourceUrl?: SecurityHubAutomationRule_StringFilter[];
+    /** A finding's title. 
+  Array Members: Minimum number of 1 item. Maximum number of 100 items. */
+    Title?: SecurityHubAutomationRule_StringFilter[];
+    /** One or more finding types in the format of namespace/category/classifier that classify a finding. For a list of namespaces, classifiers, and categories, see [Types taxonomy for ASFF](https://docs.aws.amazon.com/securityhub/latest/userguide/securityhub-findings-format-type-taxonomy.html) in the *User Guide*.
+  Array Members: Minimum number of 1 item. Maximum number of 20 items. */
+    Type?: SecurityHubAutomationRule_StringFilter[];
+    /** A timestamp that indicates when the finding record was most recently updated. 
+ For more information about the validation and formatting of timestamp fields in ASHlong, see [Timestamps](https://docs.aws.amazon.com/securityhub/1.0/APIReference/Welcome.html#timestamps).
+  Array Members: Minimum number of 1 item. Maximum number of 20 items. */
+    UpdatedAt?: SecurityHubAutomationRule_DateFilter[];
+    /** A list of user-defined name and value string pairs added to a finding. 
+  Array Members: Minimum number of 1 item. Maximum number of 20 items. */
+    UserDefinedFields?: SecurityHubAutomationRule_MapFilter[];
+    /** Provides the veracity of a finding. 
+  Array Members: Minimum number of 1 item. Maximum number of 20 items. */
+    VerificationState?: SecurityHubAutomationRule_StringFilter[];
+    /** Provides information about the status of the investigation into a finding. 
+  Array Members: Minimum number of 1 item. Maximum number of 20 items. */
+    WorkflowStatus?: SecurityHubAutomationRule_StringFilter[];
+  });
+}
+
+export declare class SecurityHubAutomationRule_BooleanFilter {
+  constructor(props: {
+    /** The value of the boolean. */
+    Value: boolean;
+  });
+}
+
+export declare class SecurityHubAutomationRule_DateFilter {
+  constructor(props: {
+    /** A date range for the date filter. */
+    DateRange?: SecurityHubAutomationRule_DateRange;
+    /** A timestamp that provides the end date for the date filter.
+ For more information about the validation and formatting of timestamp fields in ASHlong, see [Timestamps](https://docs.aws.amazon.com/securityhub/1.0/APIReference/Welcome.html#timestamps). */
+    End?: string;
+    /** A timestamp that provides the start date for the date filter.
+ For more information about the validation and formatting of timestamp fields in ASHlong, see [Timestamps](https://docs.aws.amazon.com/securityhub/1.0/APIReference/Welcome.html#timestamps). */
+    Start?: string;
+  });
+}
+
+export declare class SecurityHubAutomationRule_DateRange {
+  constructor(props: {
+    /** A date range unit for the date filter. */
+    Unit: "DAYS";
+    /** A date range value for the date filter. */
+    Value: number;
+  });
+}
+
+export declare class SecurityHubAutomationRule_MapFilter {
+  constructor(props: {
+    /** The condition to apply to the key value when filtering Security Hub CSPM findings with a map filter.
+ To search for values that have the filter value, use one of the following comparison operators:
+  +  To search for values that include the filter value, use ``CONTAINS``. For example, for the ``ResourceTags`` field, the filter ``Department CONTAINS Security`` matches findings that include the value ``Security`` for the ``Department`` tag. In the same example, a finding with a value of ``Security team`` for the ``Department`` tag is a match.
+  +  To search for values that exactly match the filter value, use ``EQUALS``. For example, for the ``ResourceTags`` field, the filter ``Department EQUALS Security`` matches findings that have the value ``Security`` for the ``Department`` tag.
+  
+ ``CONTAINS`` and ``EQUALS`` filters on the same field are joined by ``OR``. A finding matches if it matches any one of those filters. For example, the filters ``Department CONTAINS Security OR Department CONTAINS Finance`` match a finding that includes either ``Security``, ``Finance``, or both values.
+ To search for values that don't have the filter value, use one of the following comparison operators:
+  +  To search for values that exclude the filter value, use ``NOT_CONTAINS``. For example, for the ``ResourceTags`` field, the filter ``Department NOT_CONTAINS Finance`` matches findings that exclude the value ``Finance`` for the ``Department`` tag.
+  +  To search for values other than the filter value, use ``NOT_EQUALS``. For example, for the ``ResourceTags`` field, the filter ``Department NOT_EQUALS Finance`` matches findings that don’t have the value ``Finance`` for the ``Department`` tag.
+  
+ ``NOT_CONTAINS`` and ``NOT_EQUALS`` filters on the same field are joined by ``AND``. A finding matches only if it matches all of those filters. For example, the filters ``Department NOT_CONTAINS Security AND Department NOT_CONTAINS Finance`` match a finding that excludes both the ``Security`` and ``Finance`` values.
+ ``CONTAINS`` filters can only be used with other ``CONTAINS`` filters. ``NOT_CONTAINS`` filters can only be used with other ``NOT_CONTAINS`` filters.
+ You can’t have both a ``CONTAINS`` filter and a ``NOT_CONTAINS`` filter on the same field. Similarly, you can’t have both an ``EQUALS`` filter and a ``NOT_EQUALS`` filter on the same field. Combining filters in this way returns an error. 
+ ``CONTAINS`` and ``NOT_CONTAINS`` operators can be used only with automation rules. For more information, see [Automation rules](https://docs.aws.amazon.com/securityhub/latest/userguide/automation-rules.html) in the *User Guide*. */
+    Comparison: "CONTAINS" | "EQUALS" | "NOT_CONTAINS" | "NOT_EQUALS";
+    /** The key of the map filter. For example, for ``ResourceTags``, ``Key`` identifies the name of the tag. For ``UserDefinedFields``, ``Key`` is the name of the field. */
+    Key: string;
+    /** The value for the key in the map filter. Filter values are case sensitive. For example, one of the values for a tag called ``Department`` might be ``Security``. If you provide ``security`` as the filter value, then there's no match. */
+    Value: string;
+  });
+}
+
+export declare class SecurityHubAutomationRule_NoteUpdate {
+  constructor(props: {
+    /** The updated note text. */
+    Text: string;
+    /** The principal that updated the note. */
+    UpdatedBy: any;
+  });
+}
+
+export declare class SecurityHubAutomationRule_NumberFilter {
+  constructor(props: {
+    /** The equal-to condition to be applied to a single field when querying for findings. */
+    Eq?: number;
+    /** The greater-than-equal condition to be applied to a single field when querying for findings. */
+    Gte?: number;
+    /** The less-than-equal condition to be applied to a single field when querying for findings. */
+    Lte?: number;
+  });
+}
+
+export declare class SecurityHubAutomationRule_RelatedFinding {
+  constructor(props: {
+    /** The product-generated identifier for a related finding. 
+  Array Members: Minimum number of 1 item. Maximum number of 20 items. */
+    Id: any;
+    /** The Amazon Resource Name (ARN) for the product that generated a related finding. */
+    ProductArn: string;
+  });
+}
+
+export declare class SecurityHubAutomationRule_SeverityUpdate {
+  constructor(props: {
+    /** The severity value of the finding. The allowed values are the following.
+  +  ``INFORMATIONAL`` - No issue was found.
+  +  ``LOW`` - The issue does not require action on its own.
+  +  ``MEDIUM`` - The issue must be addressed but not urgently.
+  +  ``HIGH`` - The issue must be addressed as a priority.
+  +  ``CRITICAL`` - The issue must be remediated immediately to avoid it escalating. */
+    Label?: "CRITICAL" | "HIGH" | "INFORMATIONAL" | "LOW" | "MEDIUM";
+    /** The normalized severity for the finding. This attribute is to be deprecated in favor of ``Label``.
+ If you provide ``Normalized`` and don't provide ``Label``, ``Label`` is set automatically as follows.
+  +  0 - ``INFORMATIONAL``
+  +  1–39 - ``LOW``
+  +  40–69 - ``MEDIUM``
+  +  70–89 - ``HIGH``
+  +  90–100 - ``CRITICAL`` */
+    Normalized?: number;
+    /** The native severity as defined by the AWS service or integrated partner product that generated the finding. */
+    Product?: number;
+  });
+}
+
+export declare class SecurityHubAutomationRule_StringFilter {
+  constructor(props: {
+    /** The condition to apply to a string value when filtering Security Hub CSPM findings.
+ To search for values that have the filter value, use one of the following comparison operators:
+  +  To search for values that include the filter value, use ``CONTAINS``. For example, the filter ``Title CONTAINS CloudFront`` matches findings that have a ``Title`` that includes the string CloudFront.
+  +  To search for values that exactly match the filter value, use ``EQUALS``. For example, the filter ``AwsAccountId EQUALS 123456789012`` only matches findings that have an account ID of ``123456789012``.
+  +  To search for values that start with the filter value, use ``PREFIX``. For example, the filter ``ResourceRegion PREFIX us`` matches findings that have a ``ResourceRegion`` that starts with ``us``. A ``ResourceRegion`` that starts with a different value, such as ``af``, ``ap``, or ``ca``, doesn't match.
+  
+ ``CONTAINS``, ``EQUALS``, and ``PREFIX`` filters on the same field are joined by ``OR``. A finding matches if it matches any one of those filters. For example, the filters ``Title CONTAINS CloudFront OR Title CONTAINS CloudWatch`` match a finding that includes either ``CloudFront``, ``CloudWatch``, or both strings in the title.
+ To search for values that don’t have the filter value, use one of the following comparison operators:
+  +  To search for values that exclude the filter value, use ``NOT_CONTAINS``. For example, the filter ``Title NOT_CONTAINS CloudFront`` matches findings that have a ``Title`` that excludes the string CloudFront.
+  +  To search for values other than the filter value, use ``NOT_EQUALS``. For example, the filter ``AwsAccountId NOT_EQUALS 123456789012`` only matches findings that have an account ID other than ``123456789012``.
+  +  To search for values that don't start with the filter value, use ``PREFIX_NOT_EQUALS``. For example, the filter ``ResourceRegion PREFIX_NOT_EQUALS us`` matches findings with a ``ResourceRegion`` that starts with a value other than ``us``.
+  
+ ``NOT_CONTAINS``, ``NOT_EQUALS``, and ``PREFIX_NOT_EQUALS`` filters on the same field are joined by ``AND``. A finding matches only if it matches all of those filters. For example, the filters ``Title NOT_CONTAINS CloudFront AND Title NOT_CONTAINS CloudWatch`` match a finding that excludes both ``CloudFront`` and ``CloudWatch`` in the title.
+ You can’t have both a ``CONTAINS`` filter and a ``NOT_CONTAINS`` filter on the same field. Similarly, you can't provide both an ``EQUALS`` filter and a ``NOT_EQUALS`` or ``PREFIX_NOT_EQUALS`` filter on the same field. Combining filters in this way returns an error. ``CONTAINS`` filters can only be used with other ``CONTAINS`` filters. ``NOT_CONTAINS`` filters can only be used with other ``NOT_CONTAINS`` filters. 
+ You can combine ``PREFIX`` filters with ``NOT_EQUALS`` or ``PREFIX_NOT_EQUALS`` filters for the same field. Security Hub CSPM first processes the ``PREFIX`` filters, and then the ``NOT_EQUALS`` or ``PREFIX_NOT_EQUALS`` filters.
+ For example, for the following filters, Security Hub CSPM first identifies findings that have resource types that start with either ``AwsIam`` or ``AwsEc2``. It then excludes findings that have a resource type of ``AwsIamPolicy`` and findings that have a resource type of ``AwsEc2NetworkInterface``.
+  +   ``ResourceType PREFIX AwsIam`` 
+  +   ``ResourceType PREFIX AwsEc2`` 
+  +   ``ResourceType NOT_EQUALS AwsIamPolicy`` 
+  +   ``ResourceType NOT_EQUALS AwsEc2NetworkInterface`` 
+  
+ ``CONTAINS`` and ``NOT_CONTAINS`` operators can be used only with automation rules V1. ``CONTAINS_WORD`` operator is only supported in ``GetFindingsV2``, ``GetFindingStatisticsV2``, ``GetResourcesV2``, and ``GetResourceStatisticsV2`` APIs. For more information, see [Automation rules](https://docs.aws.amazon.com/securityhub/latest/userguide/automation-rules.html) in the *User Guide*. */
+    Comparison: SecurityHubAutomationRule_StringFilterComparison;
+    /** The string filter value. Filter values are case sensitive. For example, the product name for control-based findings is ``Security Hub CSPM``. If you provide ``security hub`` as the filter value, there's no match. */
+    Value: string;
+  });
+}
+
+export declare class SecurityHubAutomationRule_WorkflowUpdate {
+  constructor(props: {
+    /** The status of the investigation into the finding. The workflow status is specific to an individual finding. It does not affect the generation of new findings. For example, setting the workflow status to ``SUPPRESSED`` or ``RESOLVED`` does not prevent a new finding for the same issue.
+ The allowed values are the following.
+  +  ``NEW`` - The initial state of a finding, before it is reviewed.
+ Security Hub CSPM also resets ``WorkFlowStatus`` from ``NOTIFIED`` or ``RESOLVED`` to ``NEW`` in the following cases:
+  +  The record state changes from ``ARCHIVED`` to ``ACTIVE``.
+  +  The compliance status changes from ``PASSED`` to either ``WARNING``, ``FAILED``, or ``NOT_AVAILABLE``.
+  
+  +  ``NOTIFIED`` - Indicates that you notified the resource owner about the security issue. Used when the initial reviewer is not the resource owner, and needs intervention from the resource owner.
+  +  ``RESOLVED`` - The finding was reviewed and remediated and is now considered resolved.
+  +  ``SUPPRESSED`` - Indicates that you reviewed the finding and don't believe that any action is needed. The finding is no longer updated. */
+    Status: "NEW" | "NOTIFIED" | "RESOLVED" | "SUPPRESSED";
+  });
+}
+
 export declare class SecurityHubPolicy {
   constructor(props: {
     /** A list that defines which security standards are enabled in the configuration policy. */
@@ -141699,6 +141852,13 @@ export declare class StringAttributeConstraints {
   });
 }
 
+export declare class StringCriteriaCondition {
+  constructor(props: {
+    Comparison?: "NumericEquals" | "NumericGreaterThan" | "NumericGreaterThanEquals" | "NumericLessThan" | "NumericLessThanEquals" | "NumericNotEquals" | "StringEquals" | "StringEqualsIgnoreCase" | "StringLike" | "StringNotEquals" | "StringNotEqualsIgnoreCase" | "StringNotLike";
+    Values?: string[];
+  });
+}
+
 export declare class StringDatasetParameter {
   constructor(props: {
     /** <p>An identifier for the string parameter that is created in the dataset.</p> */
@@ -144473,6 +144633,13 @@ export declare class TestCaseLatestVersion {
   });
 }
 
+export declare class TextAttributes {
+  constructor(props: {
+    /** Attribute that defines rendering component and validation */
+    IsMultiline: boolean;
+  });
+}
+
 export declare class TextDocumentStatistics {
   constructor(props: {
     IndexedTextBytes?: number;
@@ -154680,14 +154847,6 @@ export type AthenaCapacityReservation_CapacityReservationStatus =
   | "PENDING"
   | "UPDATE_PENDING";
 
-export type AutomationRule_StringFilterComparison =
-  | "CONTAINS"
-  | "EQUALS"
-  | "NOT_CONTAINS"
-  | "NOT_EQUALS"
-  | "PREFIX"
-  | "PREFIX_NOT_EQUALS";
-
 export type AutomationRuleV2_AllowedOperators = "AND" | "OR";
 
 export type AutomationRuleV2_OcsfStringField =
@@ -160135,6 +160294,14 @@ export type SecurityGroupVpcAssociation_SecurityGroupVpcAssociationState =
   | "disassociating"
   | "disassociation-failed";
 
+export type SecurityHubAutomationRule_StringFilterComparison =
+  | "CONTAINS"
+  | "EQUALS"
+  | "NOT_CONTAINS"
+  | "NOT_EQUALS"
+  | "PREFIX"
+  | "PREFIX_NOT_EQUALS";
+
 export type SecurityPolicy_SecurityPolicyType = "encryption" | "network";
 
 export type SegmentDefinition_AttributeDimensionType =