@propulsionworks/cloudformation 0.1.15 → 0.1.16

package/out/exports/resources.generated/aws-b2bi-partnership.d.ts

@@ -20,6 +20,7 @@ export type B2BIPartnershipProps = {
      */
     CapabilityOptions?: CapabilityOptions | undefined;
     /**
+     * Specifies the email address associated with this trading partner.
      * @minLength 5
      * @maxLength 254
      * @pattern ^[\w\.\-]+@[\w\.\-]+$
@@ -34,6 +35,7 @@ export type B2BIPartnershipProps = {
      */
     Name: string;
     /**
+     * Specifies the phone number associated with the partnership.
      * @minLength 7
      * @maxLength 22
      * @pattern ^\+?([0-9 \t\-()\/]{7,})(?:\s*(?:#|x\.?|ext\.?|extension) \t*(\d+))?$
@@ -100,6 +102,7 @@ export type B2BIPartnershipAttribs = {
  */
 export type CapabilityOptions = {
     /**
+     * A structure that contains the inbound EDI options for the capability.
      * @see {@link https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-b2bi-partnership-capabilityoptions.html#cfn-b2bi-partnership-capabilityoptions-inboundedi}
      */
     InboundEdi?: InboundEdiOptions | undefined;
@@ -110,10 +113,12 @@ export type CapabilityOptions = {
     OutboundEdi?: OutboundEdiOptions | undefined;
 };
 /**
+ * Contains options for processing inbound EDI files. These options allow for customizing how incoming EDI documents are processed.
  * @see {@link https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-b2bi-partnership-inboundedioptions.html}
  */
 export type InboundEdiOptions = {
     /**
+     * A structure that contains X12-specific options for processing inbound X12 EDI files.
      * @see {@link https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-b2bi-partnership-inboundedioptions.html#cfn-b2bi-partnership-inboundedioptions-x12}
      */
     X12?: X12InboundEdiOptions | undefined;
@@ -269,10 +274,12 @@ export type X12FunctionalGroupHeaders = {
  */
 export type X12GS05TimeFormat = "HHMM" | "HHMMSS" | "HHMMSSDD";
 /**
+ * Contains options specific to processing inbound X12 EDI files.
  * @see {@link https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-b2bi-partnership-x12inboundedioptions.html}
  */
 export type X12InboundEdiOptions = {
     /**
+     * Specifies acknowledgment options for inbound X12 EDI files. These options control how functional and technical acknowledgments are handled.
      * @see {@link https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-b2bi-partnership-x12inboundedioptions.html#cfn-b2bi-partnership-x12inboundedioptions-acknowledgmentoptions}
      */
     AcknowledgmentOptions?: X12AcknowledgmentOptions | undefined;
@@ -336,6 +343,7 @@ export type X12InterchangeControlHeaders = {
  */
 export type X12OutboundEdiHeaders = {
     /**
+     * Specifies control number configuration for outbound X12 EDI headers. These settings determine the starting values for interchange, functional group, and transaction set control numbers.
      * @see {@link https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-b2bi-partnership-x12outboundediheaders.html#cfn-b2bi-partnership-x12outboundediheaders-controlnumbers}
      */
     ControlNumbers?: X12ControlNumbers | undefined;

package/out/exports/resources.generated/aws-bedrock-datasource.d.ts

@@ -551,7 +551,7 @@ export type S3DataSourceConfiguration = {
      */
     BucketOwnerAccountId?: string | undefined;
     /**
-     * A list of S3 prefixes to include certain files or content. For more information, see [Organizing objects using prefixes](https://docs.aws.amazon.com/AmazonS3/latest/userguide/using-prefixes.html) .
+     * A list of S3 prefixes to include certain files or content. This field is an array with a maximum of one item, which can contain a string that has a maximum length of 300 characters. For more information, see [Organizing objects using prefixes](https://docs.aws.amazon.com/AmazonS3/latest/userguide/using-prefixes.html) .
      * @see {@link https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-bedrock-datasource-s3datasourceconfiguration.html#cfn-bedrock-datasource-s3datasourceconfiguration-inclusionprefixes}
      */
     InclusionPrefixes?: string[] | undefined;

package/out/exports/resources.generated/aws-bedrock-guardrail.d.ts

@@ -219,11 +219,23 @@ export type ContentFilterConfig = {
  * @see {@link https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-bedrock-guardrail-contentfiltertype.html}
  */
 export type ContentFilterType = "SEXUAL" | "VIOLENCE" | "HATE" | "INSULTS" | "MISCONDUCT" | "PROMPT_ATTACK";
+/**
+ * Tier name for tier configuration in content filters policy
+ * @see {@link https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-bedrock-guardrail-contentfilterstiername.html}
+ */
+export type ContentFiltersTierName = "CLASSIC" | "STANDARD";
 /**
  * Contains details about how to handle harmful content.
  * @see {@link https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-bedrock-guardrail-contentpolicyconfig.html}
  */
 export type ContentPolicyConfig = {
+    /**
+     * Guardrail tier config for content policy
+     * @see {@link https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-bedrock-guardrail-contentpolicyconfig.html#cfn-bedrock-guardrail-contentpolicyconfig-contentfilterstierconfig}
+     */
+    ContentFiltersTierConfig?: {
+        TierName: ContentFiltersTierName;
+    } | undefined;
     /**
      * Contains the type of the content filter and how strongly it should apply to prompts and model responses.
      * @see {@link https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-bedrock-guardrail-contentpolicyconfig.html#cfn-bedrock-guardrail-contentpolicyconfig-filtersconfig}
@@ -625,12 +637,24 @@ export type TopicPolicyConfig = {
      * @see {@link https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-bedrock-guardrail-topicpolicyconfig.html#cfn-bedrock-guardrail-topicpolicyconfig-topicsconfig}
      */
     TopicsConfig: TopicConfig[];
+    /**
+     * Guardrail tier config for topic policy
+     * @see {@link https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-bedrock-guardrail-topicpolicyconfig.html#cfn-bedrock-guardrail-topicpolicyconfig-topicstierconfig}
+     */
+    TopicsTierConfig?: {
+        TierName: TopicsTierName;
+    } | undefined;
 };
 /**
  * Type of topic in a policy
  * @see {@link https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-bedrock-guardrail-topictype.html}
  */
 export type TopicType = "DENY";
+/**
+ * Tier name for tier configuration in topic policy
+ * @see {@link https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-bedrock-guardrail-topicstiername.html}
+ */
+export type TopicsTierName = "CLASSIC" | "STANDARD";
 /**
  * @see {@link https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-bedrock-guardrail-wordaction.html}
  */

package/out/exports/resources.generated/aws-cassandra-table.d.ts

@@ -25,6 +25,7 @@ export type CassandraTableProps = {
      */
     BillingMode?: BillingMode | undefined;
     /**
+     * Represents the CDC configuration for the table
      * @see {@link https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-cassandra-table.html#cfn-cassandra-table-cdcspecification}
      */
     CdcSpecification?: CdcSpecification | undefined;
@@ -200,10 +201,12 @@ export type BillingMode = {
  */
 export type CdcSpecification = {
     /**
+     * Indicates whether CDC is enabled or disabled for the table
      * @see {@link https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-cassandra-table-cdcspecification.html#cfn-cassandra-table-cdcspecification-status}
      */
     Status: CdcStatus;
     /**
+     * Specifies what data should be captured in the change data stream
      * @see {@link https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-cassandra-table-cdcspecification.html#cfn-cassandra-table-cdcspecification-viewtype}
      */
     ViewType?: CdcViewType | undefined;

package/out/exports/resources.generated/aws-cloudformation-stackset.d.ts

@@ -359,7 +359,7 @@ export type OperationPreferences = {
      */
     ConcurrencyMode?: ConcurrencyMode | undefined;
     /**
-     * The number of accounts, per Region, for which this operation can fail before CloudFormation stops the operation in that Region. If the operation is stopped in a Region, CloudFormation doesn't attempt the operation in any subsequent Regions.
+     * The number of accounts per Region this operation can fail in before CloudFormation stops the operation in that Region. If the operation is stopped in a Region, CloudFormation doesn't attempt the operation in any subsequent Regions.
      *
      * Conditional: You must specify either `FailureToleranceCount` or `FailureTolerancePercentage` (but not both).
      * @min 0
@@ -367,7 +367,7 @@ export type OperationPreferences = {
      */
     FailureToleranceCount?: number | undefined;
     /**
-     * The percentage of accounts, per Region, for which this stack operation can fail before CloudFormation stops the operation in that Region. If the operation is stopped in a Region, CloudFormation doesn't attempt the operation in any subsequent Regions.
+     * The percentage of accounts per Region this stack operation can fail in before CloudFormation stops the operation in that Region. If the operation is stopped in a Region, CloudFormation doesn't attempt the operation in any subsequent Regions.
      *
      * When calculating the number of accounts based on the specified percentage, CloudFormation rounds *down* to the next whole number.
      *

package/out/exports/resources.generated/aws-cloudfront-distribution.d.ts

@@ -89,6 +89,8 @@ export type CacheBehavior = {
      */
     Compress?: boolean | undefined;
     /**
+     * > This field only supports standard distributions. You can't specify this field for multi-tenant distributions. For more information, see [Unsupported features for SaaS Manager for Amazon CloudFront](https://docs.aws.amazon.com/AmazonCloudFront/latest/DeveloperGuide/distribution-config-options.html#unsupported-saas) in the *Amazon CloudFront Developer Guide* .
+     *
      * This field is deprecated. We recommend that you use the `DefaultTTL` field in a cache policy instead of this field. For more information, see [Creating cache policies](https://docs.aws.amazon.com/AmazonCloudFront/latest/DeveloperGuide/controlling-the-cache-key.html#cache-key-create-cache-policy) or [Using the managed cache policies](https://docs.aws.amazon.com/AmazonCloudFront/latest/DeveloperGuide/using-managed-cache-policies.html) in the *Amazon CloudFront Developer Guide* .
      *
      * The default amount of time that you want objects to stay in CloudFront caches before CloudFront forwards another request to your origin to determine whether the object has been updated. The value that you specify applies only when your origin does not add HTTP headers such as `Cache-Control max-age` , `Cache-Control s-maxage` , and `Expires` to objects. For more information, see [Managing How Long Content Stays in an Edge Cache (Expiration)](https://docs.aws.amazon.com/AmazonCloudFront/latest/DeveloperGuide/Expiration.html) in the *Amazon CloudFront Developer Guide* .
@@ -131,6 +133,8 @@ export type CacheBehavior = {
      */
     LambdaFunctionAssociations?: LambdaFunctionAssociation[] | undefined;
     /**
+     * > This field only supports standard distributions. You can't specify this field for multi-tenant distributions. For more information, see [Unsupported features for SaaS Manager for Amazon CloudFront](https://docs.aws.amazon.com/AmazonCloudFront/latest/DeveloperGuide/distribution-config-options.html#unsupported-saas) in the *Amazon CloudFront Developer Guide* .
+     *
      * This field is deprecated. We recommend that you use the `MaxTTL` field in a cache policy instead of this field. For more information, see [Creating cache policies](https://docs.aws.amazon.com/AmazonCloudFront/latest/DeveloperGuide/controlling-the-cache-key.html#cache-key-create-cache-policy) or [Using the managed cache policies](https://docs.aws.amazon.com/AmazonCloudFront/latest/DeveloperGuide/using-managed-cache-policies.html) in the *Amazon CloudFront Developer Guide* .
      *
      * The maximum amount of time that you want objects to stay in CloudFront caches before CloudFront forwards another request to your origin to determine whether the object has been updated. The value that you specify applies only when your origin adds HTTP headers such as `Cache-Control max-age` , `Cache-Control s-maxage` , and `Expires` to objects. For more information, see [Managing How Long Content Stays in an Edge Cache (Expiration)](https://docs.aws.amazon.com/AmazonCloudFront/latest/DeveloperGuide/Expiration.html) in the *Amazon CloudFront Developer Guide* .
@@ -139,6 +143,8 @@ export type CacheBehavior = {
      */
     MaxTTL?: number | undefined;
     /**
+     * > This field only supports standard distributions. You can't specify this field for multi-tenant distributions. For more information, see [Unsupported features for SaaS Manager for Amazon CloudFront](https://docs.aws.amazon.com/AmazonCloudFront/latest/DeveloperGuide/distribution-config-options.html#unsupported-saas) in the *Amazon CloudFront Developer Guide* .
+     *
      * This field is deprecated. We recommend that you use the `MinTTL` field in a cache policy instead of this field. For more information, see [Creating cache policies](https://docs.aws.amazon.com/AmazonCloudFront/latest/DeveloperGuide/controlling-the-cache-key.html#cache-key-create-cache-policy) or [Using the managed cache policies](https://docs.aws.amazon.com/AmazonCloudFront/latest/DeveloperGuide/using-managed-cache-policies.html) in the *Amazon CloudFront Developer Guide* .
      *
      * The minimum amount of time that you want objects to stay in CloudFront caches before CloudFront forwards another request to your origin to determine whether the object has been updated. For more information, see [Managing How Long Content Stays in an Edge Cache (Expiration)](https://docs.aws.amazon.com/AmazonCloudFront/latest/DeveloperGuide/Expiration.html) in the *Amazon CloudFront Developer Guide* .
@@ -175,6 +181,8 @@ export type CacheBehavior = {
      */
     ResponseHeadersPolicyId?: string | undefined;
     /**
+     * > This field only supports standard distributions. You can't specify this field for multi-tenant distributions. For more information, see [Unsupported features for SaaS Manager for Amazon CloudFront](https://docs.aws.amazon.com/AmazonCloudFront/latest/DeveloperGuide/distribution-config-options.html#unsupported-saas) in the *Amazon CloudFront Developer Guide* .
+     *
      * Indicates whether you want to distribute media files in the Microsoft Smooth Streaming format using the origin that is associated with this cache behavior. If so, specify `true` ; if not, specify `false` . If you specify `true` for `SmoothStreaming` , you can still distribute other content using this cache behavior if the content matches the value of `PathPattern` .
      * @default false
      * @see {@link https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-cloudfront-distribution-cachebehavior.html#cfn-cloudfront-distribution-cachebehavior-smoothstreaming}
@@ -193,7 +201,7 @@ export type CacheBehavior = {
      */
     TrustedKeyGroups?: string[] | undefined;
     /**
-     * > We recommend using `TrustedKeyGroups` instead of `TrustedSigners` .
+     * > We recommend using `TrustedKeyGroups` instead of `TrustedSigners` . > This field only supports standard distributions. You can't specify this field for multi-tenant distributions. For more information, see [Unsupported features for SaaS Manager for Amazon CloudFront](https://docs.aws.amazon.com/AmazonCloudFront/latest/DeveloperGuide/distribution-config-options.html#unsupported-saas) in the *Amazon CloudFront Developer Guide* .
      *
      * A list of AWS account IDs whose public keys CloudFront can use to validate signed URLs or signed cookies.
      *
@@ -324,7 +332,7 @@ export type CustomOriginConfig = {
      */
     HTTPSPort?: number | undefined;
     /**
-     * Specifies how long, in seconds, CloudFront persists its connection to the origin. The minimum timeout is 1 second, the maximum is 60 seconds, and the default (if you don't specify otherwise) is 5 seconds.
+     * Specifies how long, in seconds, CloudFront persists its connection to the origin. The minimum timeout is 1 second, the maximum is 120 seconds, and the default (if you don't specify otherwise) is 5 seconds.
      *
      * For more information, see [Keep-alive timeout (custom origins only)](https://docs.aws.amazon.com/AmazonCloudFront/latest/DeveloperGuide/DownloadDistValuesOrigin.html#DownloadDistValuesOriginKeepaliveTimeout) in the *Amazon CloudFront Developer Guide* .
      * @default 5
@@ -341,7 +349,7 @@ export type CustomOriginConfig = {
      */
     OriginProtocolPolicy: string;
     /**
-     * Specifies how long, in seconds, CloudFront waits for a response from the origin. This is also known as the *origin response timeout* . The minimum timeout is 1 second, the maximum is 60 seconds, and the default (if you don't specify otherwise) is 30 seconds.
+     * Specifies how long, in seconds, CloudFront waits for a response from the origin. This is also known as the *origin response timeout* . The minimum timeout is 1 second, the maximum is 120 seconds, and the default (if you don't specify otherwise) is 30 seconds.
      *
      * For more information, see [Response timeout (custom origins only)](https://docs.aws.amazon.com/AmazonCloudFront/latest/DeveloperGuide/DownloadDistValuesOrigin.html#DownloadDistValuesOriginResponseTimeout) in the *Amazon CloudFront Developer Guide* .
      * @default 30
@@ -400,6 +408,8 @@ export type DefaultCacheBehavior = {
      */
     Compress?: boolean | undefined;
     /**
+     * > This field only supports standard distributions. You can't specify this field for multi-tenant distributions. For more information, see [Unsupported features for SaaS Manager for Amazon CloudFront](https://docs.aws.amazon.com/AmazonCloudFront/latest/DeveloperGuide/distribution-config-options.html#unsupported-saas) in the *Amazon CloudFront Developer Guide* .
+     *
      * This field is deprecated. We recommend that you use the `DefaultTTL` field in a cache policy instead of this field. For more information, see [Creating cache policies](https://docs.aws.amazon.com/AmazonCloudFront/latest/DeveloperGuide/controlling-the-cache-key.html#cache-key-create-cache-policy) or [Using the managed cache policies](https://docs.aws.amazon.com/AmazonCloudFront/latest/DeveloperGuide/using-managed-cache-policies.html) in the *Amazon CloudFront Developer Guide* .
      *
      * The default amount of time that you want objects to stay in CloudFront caches before CloudFront forwards another request to your origin to determine whether the object has been updated. The value that you specify applies only when your origin does not add HTTP headers such as `Cache-Control max-age` , `Cache-Control s-maxage` , and `Expires` to objects. For more information, see [Managing How Long Content Stays in an Edge Cache (Expiration)](https://docs.aws.amazon.com/AmazonCloudFront/latest/DeveloperGuide/Expiration.html) in the *Amazon CloudFront Developer Guide* .
@@ -442,6 +452,8 @@ export type DefaultCacheBehavior = {
      */
     LambdaFunctionAssociations?: LambdaFunctionAssociation[] | undefined;
     /**
+     * > This field only supports standard distributions. You can't specify this field for multi-tenant distributions. For more information, see [Unsupported features for SaaS Manager for Amazon CloudFront](https://docs.aws.amazon.com/AmazonCloudFront/latest/DeveloperGuide/distribution-config-options.html#unsupported-saas) in the *Amazon CloudFront Developer Guide* .
+     *
      * This field is deprecated. We recommend that you use the `MaxTTL` field in a cache policy instead of this field. For more information, see [Creating cache policies](https://docs.aws.amazon.com/AmazonCloudFront/latest/DeveloperGuide/controlling-the-cache-key.html#cache-key-create-cache-policy) or [Using the managed cache policies](https://docs.aws.amazon.com/AmazonCloudFront/latest/DeveloperGuide/using-managed-cache-policies.html) in the *Amazon CloudFront Developer Guide* .
      *
      * The maximum amount of time that you want objects to stay in CloudFront caches before CloudFront forwards another request to your origin to determine whether the object has been updated. The value that you specify applies only when your origin adds HTTP headers such as `Cache-Control max-age` , `Cache-Control s-maxage` , and `Expires` to objects. For more information, see [Managing How Long Content Stays in an Edge Cache (Expiration)](https://docs.aws.amazon.com/AmazonCloudFront/latest/DeveloperGuide/Expiration.html) in the *Amazon CloudFront Developer Guide* .
@@ -450,6 +462,8 @@ export type DefaultCacheBehavior = {
      */
     MaxTTL?: number | undefined;
     /**
+     * > This field only supports standard distributions. You can't specify this field for multi-tenant distributions. For more information, see [Unsupported features for SaaS Manager for Amazon CloudFront](https://docs.aws.amazon.com/AmazonCloudFront/latest/DeveloperGuide/distribution-config-options.html#unsupported-saas) in the *Amazon CloudFront Developer Guide* .
+     *
      * This field is deprecated. We recommend that you use the `MinTTL` field in a cache policy instead of this field. For more information, see [Creating cache policies](https://docs.aws.amazon.com/AmazonCloudFront/latest/DeveloperGuide/controlling-the-cache-key.html#cache-key-create-cache-policy) or [Using the managed cache policies](https://docs.aws.amazon.com/AmazonCloudFront/latest/DeveloperGuide/using-managed-cache-policies.html) in the *Amazon CloudFront Developer Guide* .
      *
      * The minimum amount of time that you want objects to stay in CloudFront caches before CloudFront forwards another request to your origin to determine whether the object has been updated. For more information, see [Managing How Long Content Stays in an Edge Cache (Expiration)](https://docs.aws.amazon.com/AmazonCloudFront/latest/DeveloperGuide/Expiration.html) in the *Amazon CloudFront Developer Guide* .
@@ -478,6 +492,8 @@ export type DefaultCacheBehavior = {
      */
     ResponseHeadersPolicyId?: string | undefined;
     /**
+     * > This field only supports standard distributions. You can't specify this field for multi-tenant distributions. For more information, see [Unsupported features for SaaS Manager for Amazon CloudFront](https://docs.aws.amazon.com/AmazonCloudFront/latest/DeveloperGuide/distribution-config-options.html#unsupported-saas) in the *Amazon CloudFront Developer Guide* .
+     *
      * Indicates whether you want to distribute media files in the Microsoft Smooth Streaming format using the origin that is associated with this cache behavior. If so, specify `true` ; if not, specify `false` . If you specify `true` for `SmoothStreaming` , you can still distribute other content using this cache behavior if the content matches the value of `PathPattern` .
      * @default false
      * @see {@link https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-cloudfront-distribution-defaultcachebehavior.html#cfn-cloudfront-distribution-defaultcachebehavior-smoothstreaming}
@@ -496,7 +512,7 @@ export type DefaultCacheBehavior = {
      */
     TrustedKeyGroups?: string[] | undefined;
     /**
-     * > We recommend using `TrustedKeyGroups` instead of `TrustedSigners` .
+     * > We recommend using `TrustedKeyGroups` instead of `TrustedSigners` . > This field only supports standard distributions. You can't specify this field for multi-tenant distributions. For more information, see [Unsupported features for SaaS Manager for Amazon CloudFront](https://docs.aws.amazon.com/AmazonCloudFront/latest/DeveloperGuide/distribution-config-options.html#unsupported-saas) in the *Amazon CloudFront Developer Guide* .
      *
      * A list of AWS account IDs whose public keys CloudFront can use to validate signed URLs or signed cookies.
      *
@@ -524,11 +540,15 @@ export type DefaultCacheBehavior = {
  */
 export type DistributionConfig = {
     /**
+     * > This field only supports standard distributions. You can't specify this field for multi-tenant distributions. For more information, see [Unsupported features for SaaS Manager for Amazon CloudFront](https://docs.aws.amazon.com/AmazonCloudFront/latest/DeveloperGuide/distribution-config-options.html#unsupported-saas) in the *Amazon CloudFront Developer Guide* .
+     *
      * A complex type that contains information about CNAMEs (alternate domain names), if any, for this distribution.
      * @see {@link https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-cloudfront-distribution-distributionconfig.html#cfn-cloudfront-distribution-distributionconfig-aliases}
      */
     Aliases?: string[] | undefined;
     /**
+     * > To use this field for a multi-tenant distribution, use a connection group instead. For more information, see [ConnectionGroup](https://docs.aws.amazon.com/cloudfront/latest/APIReference/API_ConnectionGroup.html) .
+     *
      * ID of the Anycast static IP list that is associated with the distribution.
      * @see {@link https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-cloudfront-distribution-distributionconfig.html#cfn-cloudfront-distribution-distributionconfig-anycastiplistid}
      */
@@ -557,6 +577,8 @@ export type DistributionConfig = {
      */
     ConnectionMode?: ConnectionMode | undefined;
     /**
+     * > This field only supports standard distributions. You can't specify this field for multi-tenant distributions. For more information, see [Unsupported features for SaaS Manager for Amazon CloudFront](https://docs.aws.amazon.com/AmazonCloudFront/latest/DeveloperGuide/distribution-config-options.html#unsupported-saas) in the *Amazon CloudFront Developer Guide* .
+     *
      * The identifier of a continuous deployment policy. For more information, see `CreateContinuousDeploymentPolicy` .
      * @see {@link https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-cloudfront-distribution-distributionconfig.html#cfn-cloudfront-distribution-distributionconfig-continuousdeploymentpolicyid}
      */
@@ -615,6 +637,8 @@ export type DistributionConfig = {
      */
     HttpVersion?: string | undefined;
     /**
+     * > To use this field for a multi-tenant distribution, use a connection group instead. For more information, see [ConnectionGroup](https://docs.aws.amazon.com/cloudfront/latest/APIReference/API_ConnectionGroup.html) .
+     *
      * If you want CloudFront to respond to IPv6 DNS requests with an IPv6 address for your distribution, specify `true` . If you specify `false` , CloudFront responds to IPv6 DNS requests with the DNS response code `NOERROR` and with no IP addresses. This allows viewers to submit a second request, for an IPv4 address for your distribution.
      *
      * In general, you should enable IPv6 if you have users on IPv6 networks who want to access your content. However, if you're using signed URLs or signed cookies to restrict access to your content, and if you're using a custom policy that includes the `IpAddress` parameter to restrict the IP addresses that can access your content, don't enable IPv6. If you want to restrict access to some content by IP address and not restrict access to other content (or restrict access but not by IP address), you can create two distributions. For more information, see [Creating a Signed URL Using a Custom Policy](https://docs.aws.amazon.com/AmazonCloudFront/latest/DeveloperGuide/private-content-creating-signed-url-custom-policy.html) in the *Amazon CloudFront Developer Guide* .
@@ -652,6 +676,8 @@ export type DistributionConfig = {
      */
     Origins?: Origin[] | undefined;
     /**
+     * > This field only supports standard distributions. You can't specify this field for multi-tenant distributions. For more information, see [Unsupported features for SaaS Manager for Amazon CloudFront](https://docs.aws.amazon.com/AmazonCloudFront/latest/DeveloperGuide/distribution-config-options.html#unsupported-saas) in the *Amazon CloudFront Developer Guide* .
+     *
      * The price class that corresponds with the maximum price that you want to pay for CloudFront service. If you specify `PriceClass_All` , CloudFront responds to requests for your objects from all CloudFront edge locations.
      *
      * If you specify a price class other than `PriceClass_All` , CloudFront serves your objects from the CloudFront edge location that has the lowest latency among the edge locations in your price class. Viewers who are in or near regions that are excluded from your specified price class may encounter slower performance.
@@ -675,11 +701,15 @@ export type DistributionConfig = {
      */
     S3Origin?: LegacyS3Origin | undefined;
     /**
+     * > This field only supports standard distributions. You can't specify this field for multi-tenant distributions. For more information, see [Unsupported features for SaaS Manager for Amazon CloudFront](https://docs.aws.amazon.com/AmazonCloudFront/latest/DeveloperGuide/distribution-config-options.html#unsupported-saas) in the *Amazon CloudFront Developer Guide* .
+     *
      * A Boolean that indicates whether this is a staging distribution. When this value is `true` , this is a staging distribution. When this value is `false` , this is not a staging distribution.
      * @see {@link https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-cloudfront-distribution-distributionconfig.html#cfn-cloudfront-distribution-distributionconfig-staging}
      */
     Staging?: boolean | undefined;
     /**
+     * > This field only supports multi-tenant distributions. You can't specify this field for standard distributions. For more information, see [Unsupported features for SaaS Manager for Amazon CloudFront](https://docs.aws.amazon.com/AmazonCloudFront/latest/DeveloperGuide/distribution-config-options.html#unsupported-saas) in the *Amazon CloudFront Developer Guide* .
+     *
      * A distribution tenant configuration.
      * @see {@link https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-cloudfront-distribution-distributionconfig.html#cfn-cloudfront-distribution-distributionconfig-tenantconfig}
      */
@@ -702,6 +732,8 @@ export type DistributionConfig = {
     WebACLId?: string | undefined;
 };
 /**
+ * > This field only supports standard distributions. You can't specify this field for multi-tenant distributions. For more information, see [Unsupported features for SaaS Manager for Amazon CloudFront](https://docs.aws.amazon.com/AmazonCloudFront/latest/DeveloperGuide/distribution-config-options.html#unsupported-saas) in the *Amazon CloudFront Developer Guide* .
+ *
  * This field is deprecated. We recommend that you use a cache policy or an origin request policy instead of this field.
  *
  * If you want to include values in the cache key, use a cache policy. For more information, see [Creating cache policies](https://docs.aws.amazon.com/AmazonCloudFront/latest/DeveloperGuide/controlling-the-cache-key.html#cache-key-create-cache-policy) in the *Amazon CloudFront Developer Guide* .
@@ -1282,7 +1314,7 @@ export type ViewerCertificate = {
      */
     CloudFrontDefaultCertificate?: boolean | undefined;
     /**
-     * > In CloudFormation, this field name is `IamCertificateId` . Note the different capitalization.
+     * > This field only supports standard distributions. You can't specify this field for multi-tenant distributions. For more information, see [Unsupported features for SaaS Manager for Amazon CloudFront](https://docs.aws.amazon.com/AmazonCloudFront/latest/DeveloperGuide/distribution-config-options.html#unsupported-saas) in the *Amazon CloudFront Developer Guide* . > In CloudFormation, this field name is `IamCertificateId` . Note the different capitalization.
      *
      * If the distribution uses `Aliases` (alternate domain names or CNAMEs) and the SSL/TLS certificate is stored in [AWS Identity and Access Management (IAM)](https://docs.aws.amazon.com/IAM/latest/UserGuide/id_credentials_server-certs.html) , provide the ID of the IAM certificate.
      *
@@ -1326,7 +1358,7 @@ export type ViewerCertificate = {
  */
 export type VpcOriginConfig = {
     /**
-     * Specifies how long, in seconds, CloudFront persists its connection to the origin. The minimum timeout is 1 second, the maximum is 60 seconds, and the default (if you don't specify otherwise) is 5 seconds.
+     * Specifies how long, in seconds, CloudFront persists its connection to the origin. The minimum timeout is 1 second, the maximum is 120 seconds, and the default (if you don't specify otherwise) is 5 seconds.
      *
      * For more information, see [Keep-alive timeout (custom origins only)](https://docs.aws.amazon.com/AmazonCloudFront/latest/DeveloperGuide/DownloadDistValuesOrigin.html#DownloadDistValuesOriginKeepaliveTimeout) in the *Amazon CloudFront Developer Guide* .
      * @default 5
@@ -1334,7 +1366,7 @@ export type VpcOriginConfig = {
      */
     OriginKeepaliveTimeout?: number | undefined;
     /**
-     * Specifies how long, in seconds, CloudFront waits for a response from the origin. This is also known as the *origin response timeout* . The minimum timeout is 1 second, the maximum is 60 seconds, and the default (if you don't specify otherwise) is 30 seconds.
+     * Specifies how long, in seconds, CloudFront waits for a response from the origin. This is also known as the *origin response timeout* . The minimum timeout is 1 second, the maximum is 120 seconds, and the default (if you don't specify otherwise) is 30 seconds.
      *
      * For more information, see [Response timeout (custom origins only)](https://docs.aws.amazon.com/AmazonCloudFront/latest/DeveloperGuide/DownloadDistValuesOrigin.html#DownloadDistValuesOriginResponseTimeout) in the *Amazon CloudFront Developer Guide* .
      * @default 30

package/out/exports/resources.generated/aws-dynamodb-globaltable.d.ts

@@ -10,45 +10,46 @@ import type { ResourceDefinitionWithAttributes, Tag, PolicyDocument } from "../m
  *
  * - The IAM Principal executing the stack operation must have the permissions listed below in all regions where you plan to have a global table replica. The IAM Principal's permissions should not have restrictions based on IP source address. Some global tables operations (for example, adding a replica) are asynchronous, and require that the IAM Principal is valid until they complete. You should not delete the Principal (user or IAM role) until CloudFormation has finished updating your stack.
  *
+ * - `application-autoscaling:DeleteScalingPolicy`
+ * - `application-autoscaling:DeleteScheduledAction`
+ * - `application-autoscaling:DeregisterScalableTarget`
+ * - `application-autoscaling:DescribeScalableTargets`
+ * - `application-autoscaling:DescribeScalingPolicies`
+ * - `application-autoscaling:PutScalingPolicy`
+ * - `application-autoscaling:PutScheduledAction`
+ * - `application-autoscaling:RegisterScalableTarget`
+ * - `dynamodb:BatchWriteItem`
+ * - `dynamodb:CreateGlobalTableWitness`
  * - `dynamodb:CreateTable`
- * - `dynamodb:UpdateTable`
+ * - `dynamodb:CreateTableReplica`
+ * - `dynamodb:DeleteGlobalTableWitness`
+ * - `dynamodb:DeleteItem`
  * - `dynamodb:DeleteTable`
+ * - `dynamodb:DeleteTableReplica`
  * - `dynamodb:DescribeContinuousBackups`
  * - `dynamodb:DescribeContributorInsights`
  * - `dynamodb:DescribeTable`
  * - `dynamodb:DescribeTableReplicaAutoScaling`
  * - `dynamodb:DescribeTimeToLive`
- * - `dynamodb:ListTables`
- * - `dynamodb:UpdateTimeToLive`
- * - `dynamodb:UpdateContributorInsights`
- * - `dynamodb:UpdateContinuousBackups`
- * - `dynamodb:ListTagsOfResource`
- * - `dynamodb:TagResource`
- * - `dynamodb:UntagResource`
- * - `dynamodb:BatchWriteItem`
- * - `dynamodb:CreateTableReplica`
- * - `dynamodb:DeleteItem`
- * - `dynamodb:DeleteTableReplica`
  * - `dynamodb:DisableKinesisStreamingDestination`
  * - `dynamodb:EnableKinesisStreamingDestination`
  * - `dynamodb:GetItem`
+ * - `dynamodb:ListTables`
+ * - `dynamodb:ListTagsOfResource`
  * - `dynamodb:PutItem`
  * - `dynamodb:Query`
  * - `dynamodb:Scan`
+ * - `dynamodb:TagResource`
+ * - `dynamodb:UntagResource`
+ * - `dynamodb:UpdateContinuousBackups`
+ * - `dynamodb:UpdateContributorInsights`
  * - `dynamodb:UpdateItem`
- * - `dynamodb:DescribeTableReplicaAutoScaling`
+ * - `dynamodb:UpdateTable`
  * - `dynamodb:UpdateTableReplicaAutoScaling`
+ * - `dynamodb:UpdateTimeToLive`
  * - `iam:CreateServiceLinkedRole`
  * - `kms:CreateGrant`
  * - `kms:DescribeKey`
- * - `application-autoscaling:DeleteScalingPolicy`
- * - `application-autoscaling:DeleteScheduledAction`
- * - `application-autoscaling:DeregisterScalableTarget`
- * - `application-autoscaling:DescribeScalingPolicies`
- * - `application-autoscaling:DescribeScalableTargets`
- * - `application-autoscaling:PutScalingPolicy`
- * - `application-autoscaling:PutScheduledAction`
- * - `application-autoscaling:RegisterScalableTarget`
  * - When using provisioned billing mode, CloudFormation will create an auto scaling policy on each of your replicas to control their write capacities. You must configure this policy using the `WriteProvisionedThroughputSettings` property. CloudFormation will ensure that all replicas have the same write capacity auto scaling property. You cannot directly specify a value for write capacity for a global table.
  * - If your table uses provisioned capacity, you must configure auto scaling directly in the `AWS::DynamoDB::GlobalTable` resource. You should not configure additional auto scaling policies on any of the table replicas or global secondary indexes, either via API or via `AWS::ApplicationAutoScaling::ScalableTarget` or `AWS::ApplicationAutoScaling::ScalingPolicy` . Doing so might result in unexpected behavior and is unsupported.
  * - In AWS CloudFormation , each global table is controlled by a single stack, in a single region, regardless of the number of replicas. When you deploy your template, CloudFormation will create/update all replicas as part of a single stack operation. You should not deploy the same `AWS::DynamoDB::GlobalTable` resource in multiple regions. Doing so will result in errors, and is unsupported. If you deploy your application template in multiple regions, you can use conditions to only create the resource in a single region. Alternatively, you can choose to define your `AWS::DynamoDB::GlobalTable` resources in a stack separate from your application stack, and make sure it is only deployed to a single region.
@@ -66,45 +67,46 @@ export type DynamoDBGlobalTable = ResourceDefinitionWithAttributes<"AWS::DynamoD
  *
  * - The IAM Principal executing the stack operation must have the permissions listed below in all regions where you plan to have a global table replica. The IAM Principal's permissions should not have restrictions based on IP source address. Some global tables operations (for example, adding a replica) are asynchronous, and require that the IAM Principal is valid until they complete. You should not delete the Principal (user or IAM role) until CloudFormation has finished updating your stack.
  *
+ * - `application-autoscaling:DeleteScalingPolicy`
+ * - `application-autoscaling:DeleteScheduledAction`
+ * - `application-autoscaling:DeregisterScalableTarget`
+ * - `application-autoscaling:DescribeScalableTargets`
+ * - `application-autoscaling:DescribeScalingPolicies`
+ * - `application-autoscaling:PutScalingPolicy`
+ * - `application-autoscaling:PutScheduledAction`
+ * - `application-autoscaling:RegisterScalableTarget`
+ * - `dynamodb:BatchWriteItem`
+ * - `dynamodb:CreateGlobalTableWitness`
  * - `dynamodb:CreateTable`
- * - `dynamodb:UpdateTable`
+ * - `dynamodb:CreateTableReplica`
+ * - `dynamodb:DeleteGlobalTableWitness`
+ * - `dynamodb:DeleteItem`
  * - `dynamodb:DeleteTable`
+ * - `dynamodb:DeleteTableReplica`
  * - `dynamodb:DescribeContinuousBackups`
  * - `dynamodb:DescribeContributorInsights`
  * - `dynamodb:DescribeTable`
  * - `dynamodb:DescribeTableReplicaAutoScaling`
  * - `dynamodb:DescribeTimeToLive`
- * - `dynamodb:ListTables`
- * - `dynamodb:UpdateTimeToLive`
- * - `dynamodb:UpdateContributorInsights`
- * - `dynamodb:UpdateContinuousBackups`
- * - `dynamodb:ListTagsOfResource`
- * - `dynamodb:TagResource`
- * - `dynamodb:UntagResource`
- * - `dynamodb:BatchWriteItem`
- * - `dynamodb:CreateTableReplica`
- * - `dynamodb:DeleteItem`
- * - `dynamodb:DeleteTableReplica`
  * - `dynamodb:DisableKinesisStreamingDestination`
  * - `dynamodb:EnableKinesisStreamingDestination`
  * - `dynamodb:GetItem`
+ * - `dynamodb:ListTables`
+ * - `dynamodb:ListTagsOfResource`
  * - `dynamodb:PutItem`
  * - `dynamodb:Query`
  * - `dynamodb:Scan`
+ * - `dynamodb:TagResource`
+ * - `dynamodb:UntagResource`
+ * - `dynamodb:UpdateContinuousBackups`
+ * - `dynamodb:UpdateContributorInsights`
  * - `dynamodb:UpdateItem`
- * - `dynamodb:DescribeTableReplicaAutoScaling`
+ * - `dynamodb:UpdateTable`
  * - `dynamodb:UpdateTableReplicaAutoScaling`
+ * - `dynamodb:UpdateTimeToLive`
  * - `iam:CreateServiceLinkedRole`
  * - `kms:CreateGrant`
  * - `kms:DescribeKey`
- * - `application-autoscaling:DeleteScalingPolicy`
- * - `application-autoscaling:DeleteScheduledAction`
- * - `application-autoscaling:DeregisterScalableTarget`
- * - `application-autoscaling:DescribeScalingPolicies`
- * - `application-autoscaling:DescribeScalableTargets`
- * - `application-autoscaling:PutScalingPolicy`
- * - `application-autoscaling:PutScheduledAction`
- * - `application-autoscaling:RegisterScalableTarget`
  * - When using provisioned billing mode, CloudFormation will create an auto scaling policy on each of your replicas to control their write capacities. You must configure this policy using the `WriteProvisionedThroughputSettings` property. CloudFormation will ensure that all replicas have the same write capacity auto scaling property. You cannot directly specify a value for write capacity for a global table.
  * - If your table uses provisioned capacity, you must configure auto scaling directly in the `AWS::DynamoDB::GlobalTable` resource. You should not configure additional auto scaling policies on any of the table replicas or global secondary indexes, either via API or via `AWS::ApplicationAutoScaling::ScalableTarget` or `AWS::ApplicationAutoScaling::ScalingPolicy` . Doing so might result in unexpected behavior and is unsupported.
  * - In AWS CloudFormation , each global table is controlled by a single stack, in a single region, regardless of the number of replicas. When you deploy your template, CloudFormation will create/update all replicas as part of a single stack operation. You should not deploy the same `AWS::DynamoDB::GlobalTable` resource in multiple regions. Doing so will result in errors, and is unsupported. If you deploy your application template in multiple regions, you can use conditions to only create the resource in a single region. Alternatively, you can choose to define your `AWS::DynamoDB::GlobalTable` resources in a stack separate from your application stack, and make sure it is only deployed to a single region.
@@ -133,6 +135,11 @@ export type DynamoDBGlobalTableProps = {
      * @see {@link https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-dynamodb-globaltable.html#cfn-dynamodb-globaltable-globalsecondaryindexes}
      */
     GlobalSecondaryIndexes?: GlobalSecondaryIndex[] | undefined;
+    /**
+     * The list of witnesses of the MRSC global table. Only one witness Region can be configured per MRSC global table.
+     * @see {@link https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-dynamodb-globaltable.html#cfn-dynamodb-globaltable-globaltablewitnesses}
+     */
+    GlobalTableWitnesses?: GlobalTableWitness[] | undefined;
     /**
      * Specifies the attributes that make up the primary key for the table. The attributes in the `KeySchema` property must also be defined in the `AttributeDefinitions` property.
      * @see {@link https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-dynamodb-globaltable.html#cfn-dynamodb-globaltable-keyschema}
@@ -143,6 +150,18 @@ export type DynamoDBGlobalTableProps = {
      * @see {@link https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-dynamodb-globaltable.html#cfn-dynamodb-globaltable-localsecondaryindexes}
      */
     LocalSecondaryIndexes?: LocalSecondaryIndex[] | undefined;
+    /**
+     * Specifies the consistency mode for a new global table.
+     *
+     * You can specify one of the following consistency modes:
+     *
+     * - `EVENTUAL` : Configures a new global table for multi-Region eventual consistency (MREC).
+     * - `STRONG` : Configures a new global table for multi-Region strong consistency (MRSC).
+     *
+     * If you don't specify this field, the global table consistency mode defaults to `EVENTUAL` . For more information about global tables consistency modes, see [Consistency modes](https://docs.aws.amazon.com/V2globaltables_HowItWorks.html#V2globaltables_HowItWorks.consistency-modes) in DynamoDB developer guide.
+     * @see {@link https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-dynamodb-globaltable.html#cfn-dynamodb-globaltable-multiregionconsistency}
+     */
+    MultiRegionConsistency?: "EVENTUAL" | "STRONG" | undefined;
     /**
      * Specifies the list of replicas for your global table. The list must contain at least one element, the region where the stack defining the global table is deployed. For example, if you define your table in a stack deployed to us-east-1, you must have an entry in `Replicas` with the region us-east-1. You cannot remove the replica in the stack region.
      *
@@ -150,7 +169,7 @@ export type DynamoDBGlobalTableProps = {
      * >
      * > If you add or delete a replica during an update, we recommend that you don't update any other resources. If your stack fails to update and is rolled back while adding a new replica, you might need to manually delete the replica.
      *
-     * You can create a new global table with as many replicas as needed. You can add or remove replicas after table creation, but you can only add or remove a single replica in each update.
+     * You can create a new global table with as many replicas as needed. You can add or remove replicas after table creation, but you can only add or remove a single replica in each update. For Multi-Region Strong Consistency (MRSC), you can add or remove up to 3 replicas, or 2 replicas plus a witness Region.
      * @see {@link https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-dynamodb-globaltable.html#cfn-dynamodb-globaltable-replicas}
      */
     Replicas: ReplicaSpecification[];
@@ -160,7 +179,7 @@ export type DynamoDBGlobalTableProps = {
      */
     SSESpecification?: SSESpecification | undefined;
     /**
-     * Specifies the streams settings on your global table. You must provide a value for this property if your global table contains more than one replica. You can only change the streams settings if your global table has only one replica.
+     * Specifies the streams settings on your global table. You must provide a value for this property if your global table contains more than one replica. You can only change the streams settings if your global table has only one replica. For Multi-Region Strong Consistency (MRSC), you do not need to provide a value for this property and can change the settings at any time.
      * @see {@link https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-dynamodb-globaltable.html#cfn-dynamodb-globaltable-streamspecification}
      */
     StreamSpecification?: StreamSpecification | undefined;
@@ -325,6 +344,23 @@ export type GlobalSecondaryIndex = {
      */
     WriteProvisionedThroughputSettings?: WriteProvisionedThroughputSettings | undefined;
 };
+/**
+ * The witness Region for the MRSC global table. A MRSC global table can be configured with either three replicas, or with two replicas and one witness.
+ *
+ * The witness must be in a different Region than the replicas and within the same Region set:
+ *
+ * - US Region set: US East (N. Virginia), US East (Ohio), US West (Oregon)
+ * - EU Region set: Europe (Ireland), Europe (London), Europe (Paris), Europe (Frankfurt)
+ * - AP Region set: Asia Pacific (Tokyo), Asia Pacific (Seoul), Asia Pacific (Osaka)
+ * @see {@link https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-dynamodb-globaltable-globaltablewitness.html}
+ */
+export type GlobalTableWitness = {
+    /**
+     * The name of the AWS Region that serves as a witness for the MRSC global table.
+     * @see {@link https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-dynamodb-globaltable-globaltablewitness.html#cfn-dynamodb-globaltable-globaltablewitness-region}
+     */
+    Region?: string | undefined;
+};
 /**
  * Represents *a single element* of a key schema. A key schema specifies the attributes that make up the primary key of a table, or the key attributes of an index.
  *
@@ -646,9 +682,9 @@ export type SSESpecification = {
     SSEType?: string | undefined;
 };
 /**
- * Represents the DynamoDB Streams configuration for a table in DynamoDB.
+ * Represents the DynamoDB Streams configuration for a table in DynamoDB .
  *
- * You can only modify this value if your `AWS::DynamoDB::GlobalTable` contains only one entry in `Replicas` . You must specify a value for this property if your `AWS::DynamoDB::GlobalTable` contains more than one replica.
+ * You can only modify this value for a `AWS::DynamoDB::GlobalTable` resource configured for multi-Region eventual consistency (MREC, the default) if that resource contains only one entry in `Replicas` . You must specify a value for this property for a `AWS::DynamoDB::GlobalTable` resource configured for MREC with more than one entry in `Replicas` . For Multi-Region Strong Consistency (MRSC), Streams are not required and can be changed for existing tables.
  * @see {@link https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-dynamodb-globaltable-streamspecification.html}
  */
 export type StreamSpecification = {

package/out/exports/resources.generated/aws-dynamodb-table.d.ts

@@ -106,9 +106,13 @@ export type DynamoDBTableProps = {
      */
     ProvisionedThroughput?: ProvisionedThroughput | undefined;
     /**
-     * A resource-based policy document that contains permissions to add to the specified table. In a CloudFormation template, you can provide the policy in JSON or YAML format because CloudFormation converts YAML to JSON before submitting it to DynamoDB . For more information about resource-based policies, see [Using resource-based policies for DynamoDB](https://docs.aws.amazon.com/amazondynamodb/latest/developerguide/access-control-resource-based.html) and [Resource-based policy examples](https://docs.aws.amazon.com/amazondynamodb/latest/developerguide/rbac-examples.html) .
+     * An AWS resource-based policy document in JSON format that will be attached to the table.
      *
-     * When you attach a resource-based policy while creating a table, the policy creation is *strongly consistent* . For information about the considerations that you should keep in mind while attaching a resource-based policy, see [Resource-based policy considerations](https://docs.aws.amazon.com/amazondynamodb/latest/developerguide/rbac-considerations.html) .
+     * When you attach a resource-based policy while creating a table, the policy application is *strongly consistent* .
+     *
+     * The maximum size supported for a resource-based policy document is 20 KB. DynamoDB counts whitespaces when calculating the size of a policy against this limit. For a full list of all considerations that apply for resource-based policies, see [Resource-based policy considerations](https://docs.aws.amazon.com/amazondynamodb/latest/developerguide/rbac-considerations.html) .
+     *
+     * > You need to specify the `CreateTable` and `PutResourcePolicy` IAM actions for authorizing a user to create a table with a resource-based policy.
      * @see {@link https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-dynamodb-table.html#cfn-dynamodb-table-resourcepolicy}
      */
     ResourcePolicy?: ResourcePolicy | undefined;

package/out/exports/resources.generated/aws-ec2-trafficmirrorfilterrule.d.ts

@@ -80,7 +80,7 @@ export type EC2TrafficMirrorFilterRuleProps = {
  */
 export type EC2TrafficMirrorFilterRuleAttribs = {
     /**
-     * The ID of the Traffic Mirror Filter rule.
+     * The ID of the Traffic Mirror rule.
      * @see {@link https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ec2-trafficmirrorfilterrule.html#cfn-ec2-trafficmirrorfilterrule-trafficmirrorfilterruleid}
      */
     TrafficMirrorFilterRuleId: string;