@propulsionworks/cloudformation 0.1.11 → 0.1.12

package/out/exports/resources.generated/aws-evs-environment.d.ts

@@ -1,33 +1,54 @@
 import type { ResourceDefinitionWithAttributes, Tag } from "../main.ts";
 /**
- * An environment created within the EVS service
+ * > Amazon EVS is in public preview release and is subject to change.
+ *
+ * Creates an Amazon EVS environment that runs VCF software, such as SDDC Manager, NSX Manager, and vCenter Server.
+ *
+ * During environment creation, Amazon EVS performs validations on DNS settings, provisions VLAN subnets and hosts, and deploys the supplied version of VCF.
+ *
+ * It can take several hours to create an environment. After the deployment completes, you can configure VCF in the vSphere user interface according to your needs.
+ *
+ * > You cannot use the `dedicatedHostId` and `placementGroupId` parameters together in the same `CreateEnvironment` action. This results in a `ValidationException` response.
  * @see {@link https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-evs-environment.html}
  */
 export type EVSEnvironment = ResourceDefinitionWithAttributes<"AWS::EVS::Environment", EVSEnvironmentProps, EVSEnvironmentAttribs>;
 /**
- * An environment created within the EVS service
+ * > Amazon EVS is in public preview release and is subject to change.
+ *
+ * Creates an Amazon EVS environment that runs VCF software, such as SDDC Manager, NSX Manager, and vCenter Server.
+ *
+ * During environment creation, Amazon EVS performs validations on DNS settings, provisions VLAN subnets and hosts, and deploys the supplied version of VCF.
+ *
+ * It can take several hours to create an environment. After the deployment completes, you can configure VCF in the vSphere user interface according to your needs.
+ *
+ * > You cannot use the `dedicatedHostId` and `placementGroupId` parameters together in the same `CreateEnvironment` action. This results in a `ValidationException` response.
  * @see {@link https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-evs-environment.html}
  */
 export type EVSEnvironmentProps = {
     /**
+     * The connectivity configuration for the environment. Amazon EVS requires that you specify two route server peer IDs. During environment creation, the route server endpoints peer with the NSX uplink VLAN for connectivity to the NSX overlay network.
      * @see {@link https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-evs-environment.html#cfn-evs-environment-connectivityinfo}
      */
     ConnectivityInfo: {
         PrivateRouteServerPeerings: string[];
     };
     /**
-     * The name of an EVS environment
+     * The name of the environment.
      * @pattern ^[a-zA-Z0-9_-]{1,100}$
      * @see {@link https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-evs-environment.html#cfn-evs-environment-environmentname}
      */
     EnvironmentName?: string | undefined;
     /**
-     * The initial hosts for environment only required upon creation. Modification after creation will have no effect
+     * Required for environment resource creation.
      * @see {@link https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-evs-environment.html#cfn-evs-environment-hosts}
      */
     Hosts?: HostInfoForCreate[] | undefined;
     /**
-     * The initial Vlan configuration only required upon creation. Modification after creation will have no effect
+     * > Amazon EVS is in public preview release and is subject to change.
+     *
+     * The initial VLAN subnets for the environment. Amazon EVS VLAN subnets have a minimum CIDR block size of /28 and a maximum size of /24. Amazon EVS VLAN subnet CIDR blocks must not overlap with other subnets in the VPC.
+     *
+     * Required for environment resource creation.
      * @see {@link https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-evs-environment.html#cfn-evs-environment-initialvlans}
      */
     InitialVlans?: {
@@ -43,11 +64,14 @@ export type EVSEnvironmentProps = {
         VmkManagement: InitialVlanInfo;
     } | undefined;
     /**
+     * The AWS KMS key ID that AWS Secrets Manager uses to encrypt secrets that are associated with the environment. These secrets contain the VCF credentials that are needed to install vCenter Server, NSX, and SDDC Manager.
+     *
+     * By default, Amazon EVS use the AWS Secrets Manager managed key `aws/secretsmanager` . You can also specify a customer managed key.
      * @see {@link https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-evs-environment.html#cfn-evs-environment-kmskeyid}
      */
     KmsKeyId?: string | undefined;
     /**
-     * The license information for an EVS environment
+     * The license information that Amazon EVS requires to create an environment. Amazon EVS requires two license keys: a VCF solution key and a vSAN license key.
      * @see {@link https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-evs-environment.html#cfn-evs-environment-licenseinfo}
      */
     LicenseInfo: {
@@ -61,12 +85,14 @@ export type EVSEnvironmentProps = {
         VsanKey: string;
     };
     /**
+     * The security groups that allow traffic between the Amazon EVS control plane and your VPC for service access. If a security group is not specified, Amazon EVS uses the default security group in your account for service access.
      * @see {@link https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-evs-environment.html#cfn-evs-environment-serviceaccesssecuritygroups}
      */
     ServiceAccessSecurityGroups?: {
         SecurityGroups?: string[] | undefined;
     } | undefined;
     /**
+     * The subnet that is used to establish connectivity between the Amazon EVS control plane and VPC. Amazon EVS uses this subnet to perform validations and create the environment.
      * @minLength 15
      * @maxLength 24
      * @pattern ^subnet-[a-f0-9]{8}([a-f0-9]{9})?$
@@ -74,19 +100,24 @@ export type EVSEnvironmentProps = {
      */
     ServiceAccessSubnetId: string;
     /**
+     * The Broadcom Site ID that is associated with your Amazon EVS environment. Amazon EVS uses the Broadcom Site ID that you provide to meet Broadcom VCF license usage reporting requirements for Amazon EVS.
      * @see {@link https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-evs-environment.html#cfn-evs-environment-siteid}
      */
     SiteId: string;
     /**
-     * An array of key-value pairs to apply to this resource.
+     * Metadata that assists with categorization and organization. Each tag consists of a key and an optional value. You define both. Tags don't propagate to any other cluster or AWS resources.
      * @see {@link https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-evs-environment.html#cfn-evs-environment-tags}
      */
     Tags?: Tag[] | undefined;
     /**
+     * Customer confirmation that the customer has purchased and will continue to maintain the required number of VCF software licenses to cover all physical processor cores in the Amazon EVS environment. Information about your VCF software in Amazon EVS will be shared with Broadcom to verify license compliance.
      * @see {@link https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-evs-environment.html#cfn-evs-environment-termsaccepted}
      */
     TermsAccepted: boolean;
     /**
+     * The DNS hostnames to be used by the VCF management appliances in your environment.
+     *
+     * For environment creation to be successful, each hostname entry must resolve to a domain name that you've registered in your DNS service of choice and configured in the DHCP option set of your VPC. DNS hostnames cannot be changed after environment creation has started.
      * @see {@link https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-evs-environment.html#cfn-evs-environment-vcfhostnames}
      */
     VcfHostnames: {
@@ -101,10 +132,12 @@ export type EVSEnvironmentProps = {
         VCenter: string;
     };
     /**
+     * The VCF version of the environment.
      * @see {@link https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-evs-environment.html#cfn-evs-environment-vcfversion}
      */
     VcfVersion: "VCF-5.2.1";
     /**
+     * The VPC associated with the environment.
      * @minLength 12
      * @maxLength 21
      * @pattern ^vpc-[a-f0-9]{8}([a-f0-9]{9})?$
@@ -117,10 +150,12 @@ export type EVSEnvironmentProps = {
  */
 export type EVSEnvironmentAttribs = {
     /**
+     * The date and time that the environment was created. For example: `1749081600.000` .
      * @see {@link https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-evs-environment.html#cfn-evs-environment-createdat}
      */
     CreatedAt: string;
     /**
+     * The Amazon Resource Name (ARN) that is associated with the environment. For example: `arn:aws:evs:us-east-1:000000000000:environment/env-1234567890` .
      * @minLength 1
      * @maxLength 1011
      * @pattern ^arn:aws:evs:[a-z]{2}-[a-z]+-[0-9]:[0-9]{12}:environment/[a-zA-Z0-9_-]+$
@@ -128,19 +163,23 @@ export type EVSEnvironmentAttribs = {
      */
     EnvironmentArn: string;
     /**
+     * The unique ID for the environment. For example: `env-1234567890` .
      * @pattern ^(env-[a-zA-Z0-9]{10})$
      * @see {@link https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-evs-environment.html#cfn-evs-environment-environmentid}
      */
     EnvironmentId: string;
     /**
+     * The state of an environment. For example: `CREATED` .
      * @see {@link https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-evs-environment.html#cfn-evs-environment-environmentstate}
      */
     EnvironmentState: EnvironmentState;
     /**
+     * The date and time that the environment was modified. For example: `1749081600.000` .
      * @see {@link https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-evs-environment.html#cfn-evs-environment-modifiedat}
      */
     ModifiedAt: string;
     /**
+     * A detailed description of the `environmentState` of an environment. For example: `Environment successfully created` .
      * @see {@link https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-evs-environment.html#cfn-evs-environment-statedetails}
      */
     StateDetails: string;
@@ -150,10 +189,16 @@ export type EVSEnvironmentAttribs = {
  */
 export type EnvironmentState = "CREATING" | "CREATED" | "DELETING" | "DELETED" | "CREATE_FAILED";
 /**
+ * > Amazon EVS is in public preview release and is subject to change.
+ *
+ * An object that represents a host.
+ *
+ * > You cannot use `dedicatedHostId` and `placementGroupId` together in the same `HostInfoForCreate` object. This results in a `ValidationException` response.
  * @see {@link https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-evs-environment-hostinfoforcreate.html}
  */
 export type HostInfoForCreate = {
     /**
+     * The unique ID of the Amazon EC2 Dedicated Host.
      * @minLength 1
      * @maxLength 25
      * @pattern ^h-[a-f0-9]{8}([a-f0-9]{9})?$
@@ -161,14 +206,17 @@ export type HostInfoForCreate = {
      */
     DedicatedHostId?: string | undefined;
     /**
+     * The DNS hostname of the host. DNS hostnames for hosts must be unique across Amazon EVS environments and within VCF.
      * @see {@link https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-evs-environment-hostinfoforcreate.html#cfn-evs-environment-hostinfoforcreate-hostname}
      */
     HostName: string;
     /**
+     * The EC2 instance type that represents the host.
      * @see {@link https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-evs-environment-hostinfoforcreate.html#cfn-evs-environment-hostinfoforcreate-instancetype}
      */
     InstanceType: "i4i.metal";
     /**
+     * The name of the SSH key that is used to access the host.
      * @minLength 1
      * @maxLength 255
      * @pattern ^[a-zA-Z0-9_-]+$
@@ -176,6 +224,7 @@ export type HostInfoForCreate = {
      */
     KeyName: string;
     /**
+     * The unique ID of the placement group where the host is placed.
      * @minLength 1
      * @maxLength 25
      * @pattern ^pg-[a-f0-9]{8}([a-f0-9]{9})?$
@@ -184,10 +233,16 @@ export type HostInfoForCreate = {
     PlacementGroupId?: string | undefined;
 };
 /**
+ * > Amazon EVS is in public preview release and is subject to change.
+ *
+ * An object that represents an initial VLAN subnet for the Amazon EVS environment. Amazon EVS creates initial VLAN subnets when you first create the environment. Amazon EVS creates the following 10 VLAN subnets: host management VLAN, vMotion VLAN, vSAN VLAN, VTEP VLAN, Edge VTEP VLAN, Management VM VLAN, HCX uplink VLAN, NSX uplink VLAN, expansion VLAN 1, expansion VLAN 2.
+ *
+ * > For each Amazon EVS VLAN subnet, you must specify a non-overlapping CIDR block. Amazon EVS VLAN subnets have a minimum CIDR block size of /28 and a maximum size of /24.
  * @see {@link https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-evs-environment-initialvlaninfo.html}
  */
 export type InitialVlanInfo = {
     /**
+     * The CIDR block that you provide to create an Amazon EVS VLAN subnet. Amazon EVS VLAN subnets have a minimum CIDR block size of /28 and a maximum size of /24. Amazon EVS VLAN subnet CIDR blocks must not overlap with other subnets in the VPC.
      * @pattern ^((25[0-5]|2[0-4][0-9]|[01]?[0-9][0-9]?)\.){3}(25[0-5]|2[0-4][0-9]|[01]?[0-9][0-9]?)/(3[0-2]|[1-2][0-9]|[0-9])$
      * @see {@link https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-evs-environment-initialvlaninfo.html#cfn-evs-environment-initialvlaninfo-cidr}
      */

package/out/exports/resources.generated/aws-fis-experimenttemplate.d.ts

@@ -64,7 +64,7 @@ export type FISExperimentTemplateProps = {
      * The tags for the experiment template.
      * @see {@link https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-fis-experimenttemplate.html#cfn-fis-experimenttemplate-tags}
      */
-    Tags: Record<string, string>;
+    Tags?: Record<string, string> | undefined;
     /**
      * The targets for the experiment.
      * @see {@link https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-fis-experimenttemplate.html#cfn-fis-experimenttemplate-targets}

package/out/exports/resources.generated/aws-kms-key.d.ts

@@ -142,7 +142,7 @@ export type KMSKeyProps = {
      * @default "SYMMETRIC_DEFAULT"
      * @see {@link https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-kms-key.html#cfn-kms-key-keyspec}
      */
-    KeySpec?: "SYMMETRIC_DEFAULT" | "RSA_2048" | "RSA_3072" | "RSA_4096" | "ECC_NIST_P256" | "ECC_NIST_P384" | "ECC_NIST_P521" | "ECC_SECG_P256K1" | "HMAC_224" | "HMAC_256" | "HMAC_384" | "HMAC_512" | "SM2" | undefined;
+    KeySpec?: "SYMMETRIC_DEFAULT" | "RSA_2048" | "RSA_3072" | "RSA_4096" | "ECC_NIST_P256" | "ECC_NIST_P384" | "ECC_NIST_P521" | "ECC_SECG_P256K1" | "HMAC_224" | "HMAC_256" | "HMAC_384" | "HMAC_512" | "SM2" | "ML_DSA_44" | "ML_DSA_65" | "ML_DSA_87" | undefined;
     /**
      * Determines the [cryptographic operations](https://docs.aws.amazon.com/kms/latest/developerguide/concepts.html#cryptographic-operations) for which you can use the KMS key. The default value is `ENCRYPT_DECRYPT` . This property is required for asymmetric KMS keys and HMAC KMS keys. You can't change the `KeyUsage` value after the KMS key is created.
      *

package/out/exports/resources.generated/aws-lambda-eventinvokeconfig.d.ts

@@ -64,7 +64,7 @@ export type LambdaEventInvokeConfigProps = {
     Qualifier: string;
 };
 /**
- * A configuration object that specifies the destination of an event after Lambda processes it.
+ * A configuration object that specifies the destination of an event after Lambda processes it. For more information, see [Adding a destination](https://docs.aws.amazon.com/lambda/latest/dg/invocation-async-retain-records.html#invocation-async-destinations) .
  * @see {@link https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-lambda-eventinvokeconfig-destinationconfig.html}
  */
 export type DestinationConfig = {
@@ -84,7 +84,7 @@ export type DestinationConfig = {
     OnSuccess?: OnSuccess | undefined;
 };
 /**
- * A destination for events that failed processing. See [Capturing records of Lambda asynchronous invocations](https://docs.aws.amazon.com/lambda/latest/dg/invocation-async-retain-records.html) for more information.
+ * A destination for events that failed processing. For more information, see [Adding a destination](https://docs.aws.amazon.com/lambda/latest/dg/invocation-async-retain-records.html#invocation-async-destinations) .
  * @see {@link https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-lambda-eventinvokeconfig-onfailure.html}
  */
 export type OnFailure = {
@@ -105,6 +105,8 @@ export type OnFailure = {
  * A destination for events that were processed successfully.
  *
  * To retain records of successful [asynchronous invocations](https://docs.aws.amazon.com/lambda/latest/dg/invocation-async.html#invocation-async-destinations) , you can configure an Amazon SNS topic, Amazon SQS queue, Lambda function, or Amazon EventBridge event bus as the destination.
+ *
+ * > `OnSuccess` is not supported in `CreateEventSourceMapping` or `UpdateEventSourceMapping` requests.
  * @see {@link https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-lambda-eventinvokeconfig-onsuccess.html}
  */
 export type OnSuccess = {

package/out/exports/resources.generated/aws-lambda-eventsourcemapping.d.ts

@@ -270,7 +270,7 @@ export type AmazonManagedKafkaEventSourceConfig = {
     SchemaRegistryConfig?: SchemaRegistryConfig | undefined;
 };
 /**
- * A configuration object that specifies the destination of an event after Lambda processes it.
+ * A configuration object that specifies the destination of an event after Lambda processes it. For more information, see [Adding a destination](https://docs.aws.amazon.com/lambda/latest/dg/invocation-async-retain-records.html#invocation-async-destinations) .
  * @see {@link https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-lambda-eventsourcemapping-destinationconfig.html}
  */
 export type DestinationConfig = {
@@ -353,7 +353,7 @@ export type MetricsConfig = {
     Metrics?: "EventCount"[] | undefined;
 };
 /**
- * A destination for events that failed processing. See [Capturing records of Lambda asynchronous invocations](https://docs.aws.amazon.com/lambda/latest/dg/invocation-async-retain-records.html) for more information.
+ * A destination for events that failed processing. For more information, see [Adding a destination](https://docs.aws.amazon.com/lambda/latest/dg/invocation-async-retain-records.html#invocation-async-destinations) .
  * @see {@link https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-lambda-eventsourcemapping-onfailure.html}
  */
 export type OnFailure = {

package/out/exports/resources.generated/aws-msk-cluster.d.ts

@@ -140,7 +140,21 @@ export type BrokerNodeGroupInfo = {
      */
     ConnectivityInfo?: ConnectivityInfo | undefined;
     /**
-     * The type of Amazon EC2 instances to use for brokers. The following instance types are allowed: kafka.m5.large, kafka.m5.xlarge, kafka.m5.2xlarge, kafka.m5.4xlarge, kafka.m5.8xlarge, kafka.m5.12xlarge, kafka.m5.16xlarge, kafka.m5.24xlarge, and kafka.t3.small.
+     * The type of Amazon EC2 instances to use for brokers. Depending on the [broker type](https://docs.aws.amazon.com/msk/latest/developerguide/broker-instance-types.html) , Amazon MSK supports the following broker sizes:
+     *
+     * *Standard broker sizes*
+     *
+     * - kafka.t3.small
+     *
+     * > You can't select the kafka.t3.small instance type when the metadata mode is KRaft.
+     * - kafka.m5.large, kafka.m5.xlarge, kafka.m5.2xlarge, kafka.m5.4xlarge, kafka.m5.8xlarge, kafka.m5.12xlarge, kafka.m5.16xlarge, kafka.m5.24xlarge
+     * - kafka.m7g.large, kafka.m7g.xlarge, kafka.m7g.2xlarge, kafka.m7g.4xlarge, kafka.m7g.8xlarge, kafka.m7g.12xlarge, kafka.m7g.16xlarge
+     *
+     * *Express broker sizes*
+     *
+     * - express.m7g.large, express.m7g.xlarge, express.m7g.2xlarge, express.m7g.4xlarge, express.m7g.8xlarge, express.m7g.12xlarge, express.m7g.16xlarge
+     *
+     * > Some broker sizes might not be available in certian AWS Regions. See the updated [Pricing tools](https://docs.aws.amazon.com/msk/pricing/) section on the Amazon MSK pricing page for the latest list of available instances by Region.
      * @minLength 5
      * @maxLength 32
      * @see {@link https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-msk-cluster-brokernodegroupinfo.html#cfn-msk-cluster-brokernodegroupinfo-instancetype}

package/out/exports/resources.generated/aws-mwaa-environment.d.ts

@@ -157,6 +157,11 @@ export type MWAAEnvironmentProps = {
      * @see {@link https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-mwaa-environment.html#cfn-mwaa-environment-weeklymaintenancewindowstart}
      */
     WeeklyMaintenanceWindowStart?: string | undefined;
+    /**
+     * The worker replacement strategy to use when updating the environment. Valid values: `FORCED`, `GRACEFUL`. FORCED means Apache Airflow workers will be stopped and replaced without waiting for tasks to complete before an update. GRACEFUL means Apache Airflow workers will be able to complete running tasks for up to 12 hours during an update before being stopped and replaced.
+     * @see {@link https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-mwaa-environment.html#cfn-mwaa-environment-workerreplacementstrategy}
+     */
+    WorkerReplacementStrategy?: WorkerReplacementStrategy | undefined;
 };
 /**
  * @see {@link https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-mwaa-environment.html#aws-resource-mwaa-environment-return-values}
@@ -290,4 +295,9 @@ export type NetworkConfiguration = {
  * @see {@link https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-mwaa-environment-webserveraccessmode.html}
  */
 export type WebserverAccessMode = "PRIVATE_ONLY" | "PUBLIC_ONLY";
+/**
+ * The worker replacement strategy to use when updating the environment. Valid values: `FORCED`, `GRACEFUL`. FORCED means Apache Airflow workers will be stopped and replaced without waiting for tasks to complete before an update. GRACEFUL means Apache Airflow workers will be able to complete running tasks for up to 12 hours during an update before being stopped and replaced.
+ * @see {@link https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-mwaa-environment-workerreplacementstrategy.html}
+ */
+export type WorkerReplacementStrategy = "FORCED" | "GRACEFUL";
 //# sourceMappingURL=aws-mwaa-environment.d.ts.map

package/out/exports/resources.generated/aws-networkfirewall-loggingconfiguration.d.ts

@@ -29,6 +29,10 @@ export type NetworkFirewallLoggingConfiguration = ResourceDefinition<"AWS::Netwo
  * @see {@link https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-networkfirewall-loggingconfiguration.html}
  */
 export type NetworkFirewallLoggingConfigurationProps = {
+    /**
+     * @see {@link https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-networkfirewall-loggingconfiguration.html#cfn-networkfirewall-loggingconfiguration-enablemonitoringdashboard}
+     */
+    EnableMonitoringDashboard?: boolean | undefined;
     /**
      * The Amazon Resource Name (ARN) of the `Firewall` that the logging configuration is associated with. You can't change the firewall specification after you create the logging configuration.
      * @see {@link https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-networkfirewall-loggingconfiguration.html#cfn-networkfirewall-loggingconfiguration-firewallarn}

package/out/exports/resources.generated/aws-networkfirewall-vpcendpointassociation.d.ts

@@ -1,32 +1,62 @@
 import type { ResourceDefinitionWithAttributes, Tag } from "../main.ts";
 /**
- * Resource type definition for AWS::NetworkFirewall::VpcEndpointAssociation
+ * A VPC endpoint association defines a single subnet to use for a firewall endpoint for a `Firewall` . You can define VPC endpoint associations only in the Availability Zones that already have a subnet mapping defined in the `Firewall` resource.
+ *
+ * > You can retrieve the list of Availability Zones that are available for use by calling `DescribeFirewallMetadata` .
+ *
+ * To manage firewall endpoints, first, in the `Firewall` specification, you specify a single VPC and one subnet for each of the Availability Zones where you want to use the firewall. Then you can define additional endpoints as VPC endpoint associations.
+ *
+ * You can use VPC endpoint associations to expand the protections of the firewall as follows:
+ *
+ * - *Protect multiple VPCs with a single firewall* - You can use the firewall to protect other VPCs, either in your account or in accounts where the firewall is shared. You can only specify Availability Zones that already have a firewall endpoint defined in the `Firewall` subnet mappings.
+ * - *Define multiple firewall endpoints for a VPC in an Availability Zone* - You can create additional firewall endpoints for the VPC that you have defined in the firewall, in any Availability Zone that already has an endpoint defined in the `Firewall` subnet mappings. You can create multiple VPC endpoint associations for any other VPC where you use the firewall.
+ *
+ * You can use AWS Resource Access Manager to share a `Firewall` that you own with other accounts, which gives them the ability to use the firewall to create VPC endpoint associations. For information about sharing a firewall, see `PutResourcePolicy` in this guide and see [Sharing Network Firewall resources](https://docs.aws.amazon.com/network-firewall/latest/developerguide/sharing.html) in the *AWS Network Firewall Developer Guide* .
+ *
+ * The status of the VPC endpoint association, which indicates whether it's ready to filter network traffic, is provided in the corresponding `VpcEndpointAssociationStatus` . You can retrieve both the association and its status by calling `DescribeVpcEndpointAssociation` .
  * @see {@link https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-networkfirewall-vpcendpointassociation.html}
  */
 export type NetworkFirewallVpcEndpointAssociation = ResourceDefinitionWithAttributes<"AWS::NetworkFirewall::VpcEndpointAssociation", NetworkFirewallVpcEndpointAssociationProps, NetworkFirewallVpcEndpointAssociationAttribs>;
 /**
- * Resource type definition for AWS::NetworkFirewall::VpcEndpointAssociation
+ * A VPC endpoint association defines a single subnet to use for a firewall endpoint for a `Firewall` . You can define VPC endpoint associations only in the Availability Zones that already have a subnet mapping defined in the `Firewall` resource.
+ *
+ * > You can retrieve the list of Availability Zones that are available for use by calling `DescribeFirewallMetadata` .
+ *
+ * To manage firewall endpoints, first, in the `Firewall` specification, you specify a single VPC and one subnet for each of the Availability Zones where you want to use the firewall. Then you can define additional endpoints as VPC endpoint associations.
+ *
+ * You can use VPC endpoint associations to expand the protections of the firewall as follows:
+ *
+ * - *Protect multiple VPCs with a single firewall* - You can use the firewall to protect other VPCs, either in your account or in accounts where the firewall is shared. You can only specify Availability Zones that already have a firewall endpoint defined in the `Firewall` subnet mappings.
+ * - *Define multiple firewall endpoints for a VPC in an Availability Zone* - You can create additional firewall endpoints for the VPC that you have defined in the firewall, in any Availability Zone that already has an endpoint defined in the `Firewall` subnet mappings. You can create multiple VPC endpoint associations for any other VPC where you use the firewall.
+ *
+ * You can use AWS Resource Access Manager to share a `Firewall` that you own with other accounts, which gives them the ability to use the firewall to create VPC endpoint associations. For information about sharing a firewall, see `PutResourcePolicy` in this guide and see [Sharing Network Firewall resources](https://docs.aws.amazon.com/network-firewall/latest/developerguide/sharing.html) in the *AWS Network Firewall Developer Guide* .
+ *
+ * The status of the VPC endpoint association, which indicates whether it's ready to filter network traffic, is provided in the corresponding `VpcEndpointAssociationStatus` . You can retrieve both the association and its status by calling `DescribeVpcEndpointAssociation` .
  * @see {@link https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-networkfirewall-vpcendpointassociation.html}
  */
 export type NetworkFirewallVpcEndpointAssociationProps = {
     /**
+     * A description of the VPC endpoint association.
      * @see {@link https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-networkfirewall-vpcendpointassociation.html#cfn-networkfirewall-vpcendpointassociation-description}
      */
     Description?: string | undefined;
     /**
-     * A resource ARN.
+     * The Amazon Resource Name (ARN) of the firewall.
      * @see {@link https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-networkfirewall-vpcendpointassociation.html#cfn-networkfirewall-vpcendpointassociation-firewallarn}
      */
     FirewallArn: string;
     /**
+     * The ID for a subnet that's used in an association with a firewall. This is used in `CreateFirewall` , `AssociateSubnets` , and `CreateVpcEndpointAssociation` . AWS Network Firewall creates an instance of the associated firewall in each subnet that you specify, to filter traffic in the subnet's Availability Zone.
      * @see {@link https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-networkfirewall-vpcendpointassociation.html#cfn-networkfirewall-vpcendpointassociation-subnetmapping}
      */
     SubnetMapping: SubnetMapping;
     /**
+     * The key:value pairs to associate with the resource.
      * @see {@link https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-networkfirewall-vpcendpointassociation.html#cfn-networkfirewall-vpcendpointassociation-tags}
      */
     Tags?: Tag[] | undefined;
     /**
+     * The unique identifier of the VPC for the endpoint association.
      * @see {@link https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-networkfirewall-vpcendpointassociation.html#cfn-networkfirewall-vpcendpointassociation-vpcid}
      */
     VpcId: string;
@@ -41,26 +71,28 @@ export type NetworkFirewallVpcEndpointAssociationAttribs = {
      */
     EndpointId: string;
     /**
-     * A resource ARN.
+     * The Amazon Resource Name (ARN) of a VPC endpoint association.
      * @see {@link https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-networkfirewall-vpcendpointassociation.html#cfn-networkfirewall-vpcendpointassociation-vpcendpointassociationarn}
      */
     VpcEndpointAssociationArn: string;
     /**
+     * The unique identifier of the VPC endpoint association.
      * @see {@link https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-networkfirewall-vpcendpointassociation.html#cfn-networkfirewall-vpcendpointassociation-vpcendpointassociationid}
      */
     VpcEndpointAssociationId: string;
 };
 /**
+ * The ID for a subnet that's used in an association with a firewall. This is used in `CreateFirewall` , `AssociateSubnets` , and `CreateVpcEndpointAssociation` . AWS Network Firewall creates an instance of the associated firewall in each subnet that you specify, to filter traffic in the subnet's Availability Zone.
  * @see {@link https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-networkfirewall-vpcendpointassociation-subnetmapping.html}
  */
 export type SubnetMapping = {
     /**
-     * A IPAddressType
+     * The subnet's IP address type. You can't change the IP address type after you create the subnet.
      * @see {@link https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-networkfirewall-vpcendpointassociation-subnetmapping.html#cfn-networkfirewall-vpcendpointassociation-subnetmapping-ipaddresstype}
      */
     IPAddressType?: string | undefined;
     /**
-     * A SubnetId.
+     * The unique identifier for the subnet.
      * @see {@link https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-networkfirewall-vpcendpointassociation-subnetmapping.html#cfn-networkfirewall-vpcendpointassociation-subnetmapping-subnetid}
      */
     SubnetId: string;

package/out/exports/resources.generated/aws-opsworkscm-server.d.ts

@@ -120,6 +120,10 @@ export type OpsWorksCMServerProps = {
      * @see {@link https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-opsworkscm-server.html#cfn-opsworkscm-server-securitygroupids}
      */
     SecurityGroupIds?: string[] | undefined;
+    /**
+     * @see {@link https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-opsworkscm-server.html#cfn-opsworkscm-server-servername}
+     */
+    ServerName?: string | undefined;
     /**
      * The service role that the AWS OpsWorks CM service backend uses to work with your account. Although the AWS OpsWorks management console typically creates the service role for you, if you are using the AWS CLI or API commands, run the service-role-creation.yaml AWS CloudFormation template, located at https://s3.amazonaws.com/opsworks-cm-us-east-1-prod-default-assets/misc/opsworks-cm-roles.yaml. This template creates a CloudFormation stack that includes the service role and instance profile that you need.
      * @see {@link https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-opsworkscm-server.html#cfn-opsworkscm-server-servicerolearn}
@@ -163,14 +167,10 @@ export type OpsWorksCMServerAttribs = {
      */
     Endpoint: string;
     /**
+     * The ID of the server.
      * @see {@link https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-opsworkscm-server.html#cfn-opsworkscm-server-id}
      */
     Id: string;
-    /**
-     * The name of the server.
-     * @see {@link https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-opsworkscm-server.html#cfn-opsworkscm-server-servername}
-     */
-    ServerName: string;
 };
 /**
  * The `EngineAttribute` property type specifies administrator credentials for an AWS OpsWorks for Chef Automate or OpsWorks for Puppet Enterprise server. `EngineAttribute` is a property of the `AWS::OpsWorksCM::Server` resource type.

package/out/exports/resources.generated/aws-sagemaker-domain.d.ts

@@ -442,6 +442,11 @@ export type DomainSettings = {
      * @see {@link https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-sagemaker-domain-domainsettings.html#cfn-sagemaker-domain-domainsettings-securitygroupids}
      */
     SecurityGroupIds?: string[] | undefined;
+    /**
+     * The settings that apply to an SageMaker AI domain when you use it in Amazon SageMaker Unified Studio.
+     * @see {@link https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-sagemaker-domain-domainsettings.html#cfn-sagemaker-domain-domainsettings-unifiedstudiosettings}
+     */
+    UnifiedStudioSettings?: UnifiedStudioSettings | undefined;
 };
 /**
  * The settings for assigning a custom Amazon EFS file system to a user profile or space for an Amazon SageMaker AI Domain.
@@ -777,6 +782,66 @@ export type StudioWebPortalSettings = {
      */
     HiddenSageMakerImageVersionAliases?: HiddenSageMakerImage[] | undefined;
 };
+/**
+ * The settings that apply to an Amazon SageMaker AI domain when you use it in Amazon SageMaker Unified Studio.
+ * @see {@link https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-sagemaker-domain-unifiedstudiosettings.html}
+ */
+export type UnifiedStudioSettings = {
+    /**
+     * The ID of the AWS account that has the Amazon SageMaker Unified Studio domain. The default value, if you don't specify an ID, is the ID of the account that has the Amazon SageMaker AI domain.
+     * @minLength 12
+     * @maxLength 12
+     * @pattern ^\d+$
+     * @see {@link https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-sagemaker-domain-unifiedstudiosettings.html#cfn-sagemaker-domain-unifiedstudiosettings-domainaccountid}
+     */
+    DomainAccountId?: string | undefined;
+    /**
+     * The ID of the Amazon SageMaker Unified Studio domain associated with this domain.
+     * @minLength 1
+     * @maxLength 36
+     * @pattern ^dzd[-_][a-zA-Z0-9_-]{1,36}$
+     * @see {@link https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-sagemaker-domain-unifiedstudiosettings.html#cfn-sagemaker-domain-unifiedstudiosettings-domainid}
+     */
+    DomainId?: string | undefined;
+    /**
+     * The AWS Region where the domain is located in Amazon SageMaker Unified Studio. The default value, if you don't specify a Region, is the Region where the Amazon SageMaker AI domain is located.
+     * @pattern [a-zA-Z]{2}-[a-zA-Z\-]+-\d+
+     * @see {@link https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-sagemaker-domain-unifiedstudiosettings.html#cfn-sagemaker-domain-unifiedstudiosettings-domainregion}
+     */
+    DomainRegion?: string | undefined;
+    /**
+     * The ID of the environment that Amazon SageMaker Unified Studio associates with the domain.
+     * @minLength 1
+     * @maxLength 36
+     * @pattern ^[a-zA-Z0-9_-]{1,36}$
+     * @see {@link https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-sagemaker-domain-unifiedstudiosettings.html#cfn-sagemaker-domain-unifiedstudiosettings-environmentid}
+     */
+    EnvironmentId?: string | undefined;
+    /**
+     * The ID of the Amazon SageMaker Unified Studio project that corresponds to the domain.
+     * @pattern ^[a-zA-Z0-9_-]{1,36}$
+     * @see {@link https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-sagemaker-domain-unifiedstudiosettings.html#cfn-sagemaker-domain-unifiedstudiosettings-projectid}
+     */
+    ProjectId?: string | undefined;
+    /**
+     * The location where Amazon S3 stores temporary execution data and other artifacts for the project that corresponds to the domain.
+     * @minLength 1
+     * @maxLength 100
+     * @pattern [\w\.-]+$
+     * @see {@link https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-sagemaker-domain-unifiedstudiosettings.html#cfn-sagemaker-domain-unifiedstudiosettings-projects3path}
+     */
+    ProjectS3Path?: string | undefined;
+    /**
+     * Sets whether you can access the domain in Amazon SageMaker Studio:
+     *
+     * - **ENABLED** - You can access the domain in Amazon SageMaker Studio. If you migrate the domain to Amazon SageMaker Unified Studio, you can access it in both studio interfaces.
+     * - **DISABLED** - You can't access the domain in Amazon SageMaker Studio. If you migrate the domain to Amazon SageMaker Unified Studio, you can access it only in that studio interface.
+     *
+     * To migrate a domain to Amazon SageMaker Unified Studio, you specify the UnifiedStudioSettings data type when you use the UpdateDomain action.
+     * @see {@link https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-sagemaker-domain-unifiedstudiosettings.html#cfn-sagemaker-domain-unifiedstudiosettings-studiowebportalaccess}
+     */
+    StudioWebPortalAccess?: "ENABLED" | "DISABLED" | undefined;
+};
 /**
  * A collection of settings that apply to users of Amazon SageMaker Studio. These settings are specified when the [CreateUserProfile](https://docs.aws.amazon.com/sagemaker/latest/APIReference/API_CreateUserProfile.html) API is called, and as `DefaultUserSettings` when the [CreateDomain](https://docs.aws.amazon.com/sagemaker/latest/APIReference/API_CreateDomain.html) API is called.
  *

package/out/exports/resources.generated/aws-wafv2-rulegroup.d.ts

@@ -121,6 +121,19 @@ export type AndStatement = {
      */
     Statements: Statement[];
 };
+/**
+ * @see {@link https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-wafv2-rulegroup-asnmatchstatement.html}
+ */
+export type AsnMatchStatement = {
+    /**
+     * @see {@link https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-wafv2-rulegroup-asnmatchstatement.html#cfn-wafv2-rulegroup-asnmatchstatement-asnlist}
+     */
+    AsnList?: number[] | undefined;
+    /**
+     * @see {@link https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-wafv2-rulegroup-asnmatchstatement.html#cfn-wafv2-rulegroup-asnmatchstatement-forwardedipconfig}
+     */
+    ForwardedIPConfig?: ForwardedIPConfiguration | undefined;
+};
 /**
  * Block traffic towards application.
  * @see {@link https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-wafv2-rulegroup-blockaction.html}
@@ -561,7 +574,7 @@ export type FieldToMatch = {
  *
  * > If the specified header isn't present in the request, AWS WAF doesn't apply the rule to the web request at all.
  *
- * This configuration is used for `GeoMatchStatement` and `RateBasedStatement` . For `IPSetReferenceStatement` , use `IPSetForwardedIPConfig` instead.
+ * This configuration is used for `GeoMatchStatement` , `AsnMatchStatement` , and `RateBasedStatement` . For `IPSetReferenceStatement` , use `IPSetForwardedIPConfig` instead.
  *
  * AWS WAF only evaluates the first IP address found in the specified HTTP header.
  * @see {@link https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-wafv2-rulegroup-forwardedipconfiguration.html}
@@ -1097,6 +1110,11 @@ export type RateBasedStatement = {
  * @see {@link https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-wafv2-rulegroup-ratebasedstatementcustomkey.html}
  */
 export type RateBasedStatementCustomKey = {
+    /**
+     * Specifies the request's ASN as an aggregate key for a rate-based rule.
+     * @see {@link https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-wafv2-rulegroup-ratebasedstatementcustomkey.html#cfn-wafv2-rulegroup-ratebasedstatementcustomkey-asn}
+     */
+    ASN?: Record<string, unknown> | undefined;
     /**
      * Use the value of a cookie in the request as an aggregate key. Each distinct value in the cookie contributes to the aggregation instance. If you use a single cookie as your custom key, then each value fully defines an aggregation instance.
      * @see {@link https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-wafv2-rulegroup-ratebasedstatementcustomkey.html#cfn-wafv2-rulegroup-ratebasedstatementcustomkey-cookie}
@@ -1527,6 +1545,10 @@ export type Statement = {
      * @see {@link https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-wafv2-rulegroup-statement.html#cfn-wafv2-rulegroup-statement-andstatement}
      */
     AndStatement?: AndStatement | undefined;
+    /**
+     * @see {@link https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-wafv2-rulegroup-statement.html#cfn-wafv2-rulegroup-statement-asnmatchstatement}
+     */
+    AsnMatchStatement?: AsnMatchStatement | undefined;
     /**
      * A rule statement that defines a string match search for AWS WAF to apply to web requests. The byte match statement provides the bytes to search for, the location in requests that you want AWS WAF to search, and other settings. The bytes to search for are typically a string that corresponds with ASCII characters. In the AWS WAF console and the developer guide, this is called a string match statement.
      * @see {@link https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-wafv2-rulegroup-statement.html#cfn-wafv2-rulegroup-statement-bytematchstatement}