@propulsionworks/cloudformation 0.1.20 → 0.1.22

package/out/exports/resources.generated/aws-networkfirewall-loggingconfiguration.d.ts

@@ -1,10 +1,10 @@
 import type { ResourceDefinition } from "../main.ts";
 /**
- * Use the `LoggingConfiguration` to define the destinations and logging options for an `Firewall` .
+ * Use the logging configuration to define the destinations and logging options for an firewall.
  *
  * You must change the logging configuration by changing one `LogDestinationConfig` setting at a time in your `LogDestinationConfigs` .
  *
- * You can make only one of the following changes to your `LoggingConfiguration` resource:
+ * You can make only one of the following changes to your logging configuration resource:
  *
  * - Create a new log destination object by adding a single `LogDestinationConfig` array element to `LogDestinationConfigs` .
  * - Delete a log destination object by removing a single `LogDestinationConfig` array element from `LogDestinationConfigs` .
@@ -15,11 +15,11 @@ import type { ResourceDefinition } from "../main.ts";
  */
 export type NetworkFirewallLoggingConfiguration = ResourceDefinition<"AWS::NetworkFirewall::LoggingConfiguration", NetworkFirewallLoggingConfigurationProps>;
 /**
- * Use the `LoggingConfiguration` to define the destinations and logging options for an `Firewall` .
+ * Use the logging configuration to define the destinations and logging options for an firewall.
  *
  * You must change the logging configuration by changing one `LogDestinationConfig` setting at a time in your `LogDestinationConfigs` .
  *
- * You can make only one of the following changes to your `LoggingConfiguration` resource:
+ * You can make only one of the following changes to your logging configuration resource:
  *
  * - Create a new log destination object by adding a single `LogDestinationConfig` array element to `LogDestinationConfigs` .
  * - Delete a log destination object by removing a single `LogDestinationConfig` array element from `LogDestinationConfigs` .
@@ -34,7 +34,7 @@ export type NetworkFirewallLoggingConfigurationProps = {
      */
     EnableMonitoringDashboard?: boolean | undefined;
     /**
-     * The Amazon Resource Name (ARN) of the `Firewall` that the logging configuration is associated with. You can't change the firewall specification after you create the logging configuration.
+     * The Amazon Resource Name (ARN) of the firewallthat the logging configuration is associated with. You can't change the firewall specification after you create the logging configuration.
      * @see {@link https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-networkfirewall-loggingconfiguration.html#cfn-networkfirewall-loggingconfiguration-firewallarn}
      */
     FirewallArn: string;
@@ -47,13 +47,13 @@ export type NetworkFirewallLoggingConfigurationProps = {
      */
     FirewallName?: string | undefined;
     /**
-     * Defines how AWS Network Firewall performs logging for a `Firewall` .
+     * Defines how AWS Network Firewall performs logging for a firewall.
      * @see {@link https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-networkfirewall-loggingconfiguration.html#cfn-networkfirewall-loggingconfiguration-loggingconfiguration}
      */
     LoggingConfiguration: LoggingConfiguration;
 };
 /**
- * Defines where AWS Network Firewall sends logs for the firewall for one log type. This is used in `LoggingConfiguration` . You can send each type of log to an Amazon S3 bucket, a CloudWatch log group, or a Kinesis Data Firehose delivery stream.
+ * Defines where AWS Network Firewall sends logs for the firewall for one log type. This is used in logging configuration. You can send each type of log to an Amazon S3 bucket, a CloudWatch log group, or a Kinesis Data Firehose delivery stream.
  *
  * Network Firewall generates logs for stateful rule groups. You can save alert and flow log types. The stateful rules engine records flow logs for all network traffic that it receives. It records alert logs for traffic that matches stateful rules that have the rule action set to `DROP` or `ALERT` .
  * @see {@link https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-networkfirewall-loggingconfiguration-logdestinationconfig.html}
@@ -92,7 +92,7 @@ export type LogDestinationConfig = {
     LogType: "ALERT" | "FLOW" | "TLS";
 };
 /**
- * Defines how AWS Network Firewall performs logging for a `Firewall` .
+ * Defines how AWS Network Firewall performs logging for a firewall.
  * @see {@link https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-networkfirewall-loggingconfiguration-loggingconfiguration.html}
  */
 export type LoggingConfiguration = {

package/out/exports/resources.generated/aws-networkfirewall-rulegroup.d.ts

@@ -1,11 +1,11 @@
 import type { ResourceDefinitionWithAttributes, Tag } from "../main.ts";
 /**
- * Use the `RuleGroup` to define a reusable collection of stateless or stateful network traffic filtering rules. You use rule groups in an `FirewallPolicy` to specify the filtering behavior of an `Firewall` .
+ * Use the [](https://docs.aws.amazon.com/RuleGroup) to define a reusable collection of stateless or stateful network traffic filtering rules. You use rule groups in an firewall policy to specify the filtering behavior of an firewall.
  * @see {@link https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-networkfirewall-rulegroup.html}
  */
 export type NetworkFirewallRuleGroup = ResourceDefinitionWithAttributes<"AWS::NetworkFirewall::RuleGroup", NetworkFirewallRuleGroupProps, NetworkFirewallRuleGroupAttribs>;
 /**
- * Use the `RuleGroup` to define a reusable collection of stateless or stateful network traffic filtering rules. You use rule groups in an `FirewallPolicy` to specify the filtering behavior of an `Firewall` .
+ * Use the [](https://docs.aws.amazon.com/RuleGroup) to define a reusable collection of stateless or stateful network traffic filtering rules. You use rule groups in an firewall policy to specify the filtering behavior of an firewall.
  * @see {@link https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-networkfirewall-rulegroup.html}
  */
 export type NetworkFirewallRuleGroupProps = {
@@ -35,6 +35,16 @@ export type NetworkFirewallRuleGroupProps = {
      * @see {@link https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-networkfirewall-rulegroup.html#cfn-networkfirewall-rulegroup-rulegroupname}
      */
     RuleGroupName: string;
+    /**
+     * A complex type containing the currently selected rule option fields that will be displayed for rule summarization returned by `DescribeRuleGroupSummary` .
+     *
+     * - The `RuleOptions` specified in `SummaryConfiguration`
+     * - Rule metadata organization preferences
+     * @see {@link https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-networkfirewall-rulegroup.html#cfn-networkfirewall-rulegroup-summaryconfiguration}
+     */
+    SummaryConfiguration?: {
+        RuleOptions?: SummaryRuleOption[] | undefined;
+    } | undefined;
     /**
      * An array of key-value pairs to apply to this resource.
      *
@@ -54,12 +64,12 @@ export type NetworkFirewallRuleGroupProps = {
  */
 export type NetworkFirewallRuleGroupAttribs = {
     /**
-     * The Amazon Resource Name (ARN) of the `RuleGroup` .
+     * The Amazon Resource Name (ARN) of the rule group.
      * @see {@link https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-networkfirewall-rulegroup.html#cfn-networkfirewall-rulegroup-rulegrouparn}
      */
     RuleGroupArn: string;
     /**
-     * The unique ID of the `RuleGroup` resource.
+     * The unique ID of the rule group resource.
      * @minLength 36
      * @maxLength 36
      * @pattern ^([0-9a-f]{8})-([0-9a-f]{4}-){3}([0-9a-f]{12})$
@@ -81,7 +91,7 @@ export type ActionDefinition = {
     PublishMetricAction?: PublishMetricAction | undefined;
 };
 /**
- * A single IP address specification. This is used in the `RuleGroup.MatchAttributes` source and destination specifications.
+ * A single IP address specification. This is used in the match attributes source and destination specifications.
  * @see {@link https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-networkfirewall-rulegroup-address.html}
  */
 export type Address = {
@@ -110,8 +120,8 @@ export type Address = {
  *
  * You can use custom actions in the following places:
  *
- * - In an `RuleGroup.StatelessRulesAndCustomActions` . The custom actions are available for use by name inside the `StatelessRulesAndCustomActions` where you define them. You can use them for your stateless rule actions to specify what to do with a packet that matches the rule's match attributes.
- * - In an `FirewallPolicy` specification, in `StatelessCustomActions` . The custom actions are available for use inside the policy where you define them. You can use them for the policy's default stateless actions settings to specify what to do with packets that don't match any of the policy's stateless rules.
+ * - In a `StatelessRulesAndCustomActions` . The custom actions are available for use by name inside the `StatelessRulesAndCustomActions` where you define them. You can use them for your stateless rule actions to specify what to do with a packet that matches the rule's match attributes.
+ * - In an firewall policy specification, in `StatelessCustomActions` . The custom actions are available for use inside the policy where you define them. You can use them for the policy's default stateless actions settings to specify what to do with packets that don't match any of the policy's stateless rules.
  * @see {@link https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-networkfirewall-rulegroup-customaction.html}
  */
 export type CustomAction = {
@@ -216,7 +226,7 @@ export type Header = {
     SourcePort: string;
 };
 /**
- * A list of IP addresses and address ranges, in CIDR notation. This is part of a `RuleGroup.RuleVariables` .
+ * A list of IP addresses and address ranges, in CIDR notation. This is part of a `RuleVariables` .
  * @see {@link https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-networkfirewall-rulegroup-ipset.html}
  */
 export type IPSet = {
@@ -227,12 +237,12 @@ export type IPSet = {
     Definition?: string[] | undefined;
 };
 /**
- * Configures one or more `IPSetReferences` for a Suricata-compatible rule group. An IP set reference is a rule variable that references a resource that you create and manage in another AWS service, such as an Amazon VPC prefix list. Network Firewall IP set references enable you to dynamically update the contents of your rules. When you create, update, or delete the IP set you are referencing in your rule, Network Firewall automatically updates the rule's content with the changes. For more information about IP set references in Network Firewall , see [Using IP set references](https://docs.aws.amazon.com/network-firewall/latest/developerguide/rule-groups-ip-set-references.html) in the *Network Firewall Developer Guide* .
+ * Configures one or more IP set references for a Suricata-compatible rule group. An IP set reference is a rule variable that references a resource that you create and manage in another AWS service, such as an Amazon VPC prefix list. Network Firewall IP set references enable you to dynamically update the contents of your rules. When you create, update, or delete the IP set you are referencing in your rule, Network Firewall automatically updates the rule's content with the changes. For more information about IP set references in Network Firewall , see [Using IP set references](https://docs.aws.amazon.com/network-firewall/latest/developerguide/rule-groups-ip-set-references.html) in the *Network Firewall Developer Guide* .
  * @see {@link https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-networkfirewall-rulegroup-ipsetreference.html}
  */
 export type IPSetReference = {
     /**
-     * The Amazon Resource Name (ARN) of the resource to include in the `RuleGroup.IPSetReference` .
+     * The Amazon Resource Name (ARN) of the resource to include in the IP set reference.
      * @see {@link https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-networkfirewall-rulegroup-ipsetreference.html#cfn-networkfirewall-rulegroup-ipsetreference-referencearn}
      */
     ReferenceArn?: string | undefined;
@@ -280,7 +290,7 @@ export type MatchAttributes = {
     TCPFlags?: TCPFlagField[] | undefined;
 };
 /**
- * A single port range specification. This is used for source and destination port ranges in the stateless `RuleGroup.MatchAttributes` .
+ * A single port range specification. This is used for source and destination port ranges in the stateless match attributes.
  * @see {@link https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-networkfirewall-rulegroup-portrange.html}
  */
 export type PortRange = {
@@ -317,7 +327,7 @@ export type PublishMetricAction = {
     Dimensions: Dimension[];
 };
 /**
- * Configures the `ReferenceSets` for a stateful rule group. For more information, see the [Using IP set references in Suricata compatible rule groups](https://docs.aws.amazon.com/network-firewall/latest/developerguide/rule-groups-ip-set-references.html) in the *Network Firewall User Guide* .
+ * Configures the reference sets for a stateful rule group. For more information, see the [Using IP set references in Suricata compatible rule groups](https://docs.aws.amazon.com/network-firewall/latest/developerguide/rule-groups-ip-set-references.html) in the *Network Firewall User Guide* .
  * @see {@link https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-networkfirewall-rulegroup-referencesets.html}
  */
 export type ReferenceSets = {
@@ -335,7 +345,7 @@ export type RuleDefinition = {
     /**
      * The actions to take on a packet that matches one of the stateless rule definition's match attributes. You must specify a standard action and you can add custom actions.
      *
-     * > Network Firewall only forwards a packet for stateful rule inspection if you specify `aws:forward_to_sfe` for a rule that the packet matches, or if the packet doesn't match any stateless rule and you specify `aws:forward_to_sfe` for the `StatelessDefaultActions` setting for the `FirewallPolicy` .
+     * > Network Firewall only forwards a packet for stateful rule inspection if you specify `aws:forward_to_sfe` for a rule that the packet matches, or if the packet doesn't match any stateless rule and you specify `aws:forward_to_sfe` for the `StatelessDefaultActions` setting for the firewall policy.
      *
      * For every rule, you must specify exactly one of the following standard actions.
      *
@@ -409,7 +419,7 @@ export type RuleOption = {
  */
 export type RuleOrder = "DEFAULT_ACTION_ORDER" | "STRICT_ORDER";
 /**
- * Settings that are available for use in the rules in the `RuleGroup` where this is defined. See `CreateRuleGroup` or `UpdateRuleGroup` for usage.
+ * Settings that are available for use in the rules in the rule group where this is defined.
  * @see {@link https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-networkfirewall-rulegroup-rulevariables.html}
  */
 export type RuleVariables = {
@@ -439,7 +449,7 @@ export type RulesSource = {
      *
      * These rules contain the inspection criteria and the action to take for traffic that matches the criteria, so this type of rule group doesn't have a separate action setting.
      *
-     * > You can't use the `priority` keyword if the `RuleOrder` option in `StatefulRuleOptions` is set to `STRICT_ORDER` .
+     * > You can't use the `priority` keyword if the `RuleOrder` option in StatefulRuleOptions is set to `STRICT_ORDER` .
      * @see {@link https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-networkfirewall-rulegroup-rulessource.html#cfn-networkfirewall-rulegroup-rulessource-rulesstring}
      */
     RulesString?: string | undefined;
@@ -459,7 +469,7 @@ export type RulesSource = {
  *
  * For HTTPS traffic, domain filtering is SNI-based. It uses the server name indicator extension of the TLS handshake.
  *
- * By default, Network Firewall domain list inspection only includes traffic coming from the VPC where you deploy the firewall. To inspect traffic from IP addresses outside of the deployment VPC, you set the `HOME_NET` rule variable to include the CIDR range of the deployment VPC plus the other CIDR ranges. For more information, see `RuleGroup.RuleVariables` in this guide and [Stateful domain list rule groups in AWS Network Firewall](https://docs.aws.amazon.com/network-firewall/latest/developerguide/stateful-rule-groups-domain-names.html) in the *Network Firewall Developer Guide*
+ * By default, Network Firewall domain list inspection only includes traffic coming from the VPC where you deploy the firewall. To inspect traffic from IP addresses outside of the deployment VPC, you set the `HOME_NET` rule variable to include the CIDR range of the deployment VPC plus the other CIDR ranges. For more information, see `RuleVariables` in this guide and [Stateful domain list rule groups in AWS Network Firewall](https://docs.aws.amazon.com/network-firewall/latest/developerguide/stateful-rule-groups-domain-names.html) in the *Network Firewall Developer Guide*
  * @see {@link https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-networkfirewall-rulegroup-rulessourcelist.html}
  */
 export type RulesSourceList = {
@@ -493,12 +503,12 @@ export type StatefulRule = {
      * The actions for a stateful rule are defined as follows:
      *
      * - *PASS* - Permits the packets to go to the intended destination.
-     * - *DROP* - Blocks the packets from going to the intended destination and sends an alert log message, if alert logging is configured in the `Firewall` `LoggingConfiguration` .
+     * - *DROP* - Blocks the packets from going to the intended destination and sends an alert log message, if alert logging is configured in the firewall logging configuration.
      * - *REJECT* - Drops traffic that matches the conditions of the stateful rule and sends a TCP reset packet back to sender of the packet. A TCP reset packet is a packet with no payload and a `RST` bit contained in the TCP header flags. `REJECT` is available only for TCP traffic.
-     * - *ALERT* - Permits the packets to go to the intended destination and sends an alert log message, if alert logging is configured in the `Firewall` `LoggingConfiguration` .
+     * - *ALERT* - Permits the packets to go to the intended destination and sends an alert log message, if alert logging is configured in the firewall logging configuration.
      *
      * You can use this action to test a rule that you intend to use to drop traffic. You can enable the rule with `ALERT` action, verify in the logs that the rule is filtering as you want, then change the action to `DROP` .
-     * - *REJECT* - Drops TCP traffic that matches the conditions of the stateful rule, and sends a TCP reset packet back to sender of the packet. A TCP reset packet is a packet with no payload and a `RST` bit contained in the TCP header flags. Also sends an alert log mesage if alert logging is configured in the `Firewall` `LoggingConfiguration` .
+     * - *REJECT* - Drops TCP traffic that matches the conditions of the stateful rule, and sends a TCP reset packet back to sender of the packet. A TCP reset packet is a packet with no payload and a `RST` bit contained in the TCP header flags. Also sends an alert log mesage if alert logging is configured in the firewall logging configuration.
      *
      * `REJECT` isn't currently available for use with IMAP and FTP protocols.
      * @see {@link https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-networkfirewall-rulegroup-statefulrule.html#cfn-networkfirewall-rulegroup-statefulrule-action}
@@ -527,7 +537,7 @@ export type StatefulRuleOptions = {
     RuleOrder?: RuleOrder | undefined;
 };
 /**
- * A single stateless rule. This is used in `RuleGroup.StatelessRulesAndCustomActions` .
+ * A single stateless rule. This is used in `StatelessRulesAndCustomActions` .
  * @see {@link https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-networkfirewall-rulegroup-statelessrule.html}
  */
 export type StatelessRule = {
@@ -554,7 +564,7 @@ export type StatelessRule = {
  */
 export type StatelessRulesAndCustomActions = {
     /**
-     * Defines an array of individual custom action definitions that are available for use by the stateless rules in this `StatelessRulesAndCustomActions` specification. You name each custom action that you define, and then you can use it by name in your stateless rule `RuleGroup.RuleDefinition` `Actions` specification.
+     * Defines an array of individual custom action definitions that are available for use by the stateless rules in this `StatelessRulesAndCustomActions` specification. You name each custom action that you define, and then you can use it by name in your stateless rule definition `Actions` specification.
      * @see {@link https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-networkfirewall-rulegroup-statelessrulesandcustomactions.html#cfn-networkfirewall-rulegroup-statelessrulesandcustomactions-customactions}
      */
     CustomActions?: CustomAction[] | undefined;
@@ -564,12 +574,16 @@ export type StatelessRulesAndCustomActions = {
      */
     StatelessRules: StatelessRule[];
 };
+/**
+ * @see {@link https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-networkfirewall-rulegroup-summaryruleoption.html}
+ */
+export type SummaryRuleOption = "SID" | "MSG" | "METADATA";
 /**
  * @see {@link https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-networkfirewall-rulegroup-tcpflag.html}
  */
 export type TCPFlag = "FIN" | "SYN" | "RST" | "PSH" | "ACK" | "URG" | "ECE" | "CWR";
 /**
- * TCP flags and masks to inspect packets for. This is used in the `RuleGroup.MatchAttributes` specification.
+ * TCP flags and masks to inspect packets for. This is used in the match attributes specification.
  *
  * For example:
  *

package/out/exports/resources.generated/aws-networkfirewall-vpcendpointassociation.d.ts

@@ -13,7 +13,7 @@ import type { ResourceDefinitionWithAttributes, Tag } from "../main.ts";
  *
  * You can use AWS Resource Access Manager to share a `Firewall` that you own with other accounts, which gives them the ability to use the firewall to create VPC endpoint associations. For information about sharing a firewall, see `PutResourcePolicy` in this guide and see [Sharing Network Firewall resources](https://docs.aws.amazon.com/network-firewall/latest/developerguide/sharing.html) in the *AWS Network Firewall Developer Guide* .
  *
- * The status of the VPC endpoint association, which indicates whether it's ready to filter network traffic, is provided in the corresponding `VpcEndpointAssociationStatus` . You can retrieve both the association and its status by calling `DescribeVpcEndpointAssociation` .
+ * The status of the VPC endpoint association, which indicates whether it's ready to filter network traffic, is provided in the corresponding VPC endpoint association status. You can retrieve both the association and its status by calling `DescribeVpcEndpointAssociation` .
  * @see {@link https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-networkfirewall-vpcendpointassociation.html}
  */
 export type NetworkFirewallVpcEndpointAssociation = ResourceDefinitionWithAttributes<"AWS::NetworkFirewall::VpcEndpointAssociation", NetworkFirewallVpcEndpointAssociationProps, NetworkFirewallVpcEndpointAssociationAttribs>;
@@ -31,7 +31,7 @@ export type NetworkFirewallVpcEndpointAssociation = ResourceDefinitionWithAttrib
  *
  * You can use AWS Resource Access Manager to share a `Firewall` that you own with other accounts, which gives them the ability to use the firewall to create VPC endpoint associations. For information about sharing a firewall, see `PutResourcePolicy` in this guide and see [Sharing Network Firewall resources](https://docs.aws.amazon.com/network-firewall/latest/developerguide/sharing.html) in the *AWS Network Firewall Developer Guide* .
  *
- * The status of the VPC endpoint association, which indicates whether it's ready to filter network traffic, is provided in the corresponding `VpcEndpointAssociationStatus` . You can retrieve both the association and its status by calling `DescribeVpcEndpointAssociation` .
+ * The status of the VPC endpoint association, which indicates whether it's ready to filter network traffic, is provided in the corresponding VPC endpoint association status. You can retrieve both the association and its status by calling `DescribeVpcEndpointAssociation` .
  * @see {@link https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-networkfirewall-vpcendpointassociation.html}
  */
 export type NetworkFirewallVpcEndpointAssociationProps = {
@@ -66,7 +66,7 @@ export type NetworkFirewallVpcEndpointAssociationProps = {
  */
 export type NetworkFirewallVpcEndpointAssociationAttribs = {
     /**
-     * An endpoint Id.
+     * The unique ID of the firewall endpoint for the subnet that you attached to the firewall.For example: "vpce-111122223333"
      * @see {@link https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-networkfirewall-vpcendpointassociation.html#cfn-networkfirewall-vpcendpointassociation-endpointid}
      */
     EndpointId: string;

package/out/exports/resources.generated/aws-observabilityadmin-organizationtelemetryrule.d.ts

@@ -0,0 +1,137 @@
+import type { ResourceDefinitionWithAttributes, Tag } from "../main.ts";
+/**
+ * The AWS::ObservabilityAdmin::OrganizationTelemetryRule resource defines a CloudWatch Observability Admin Organization Telemetry Rule.
+ * @see {@link https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-observabilityadmin-organizationtelemetryrule.html}
+ */
+export type ObservabilityAdminOrganizationTelemetryRule = ResourceDefinitionWithAttributes<"AWS::ObservabilityAdmin::OrganizationTelemetryRule", ObservabilityAdminOrganizationTelemetryRuleProps, ObservabilityAdminOrganizationTelemetryRuleAttribs>;
+/**
+ * The AWS::ObservabilityAdmin::OrganizationTelemetryRule resource defines a CloudWatch Observability Admin Organization Telemetry Rule.
+ * @see {@link https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-observabilityadmin-organizationtelemetryrule.html}
+ */
+export type ObservabilityAdminOrganizationTelemetryRuleProps = {
+    /**
+     * The telemetry rule
+     * @see {@link https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-observabilityadmin-organizationtelemetryrule.html#cfn-observabilityadmin-organizationtelemetryrule-rule}
+     */
+    Rule: TelemetryRule;
+    /**
+     * The name of the organization telemetry rule
+     * @minLength 1
+     * @maxLength 100
+     * @pattern ^[0-9A-Za-z-]+$
+     * @see {@link https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-observabilityadmin-organizationtelemetryrule.html#cfn-observabilityadmin-organizationtelemetryrule-rulename}
+     */
+    RuleName: string;
+    /**
+     * An array of key-value pairs to apply to this resource
+     * @see {@link https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-observabilityadmin-organizationtelemetryrule.html#cfn-observabilityadmin-organizationtelemetryrule-tags}
+     */
+    Tags?: Tag[] | undefined;
+};
+/**
+ * @see {@link https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-observabilityadmin-organizationtelemetryrule.html#aws-resource-observabilityadmin-organizationtelemetryrule-return-values}
+ */
+export type ObservabilityAdminOrganizationTelemetryRuleAttribs = {
+    /**
+     * The arn of the organization telemetry rule
+     * @minLength 1
+     * @maxLength 1011
+     * @pattern ^arn:aws([a-z0-9\-]+)?:([a-zA-Z0-9\-]+):([a-z0-9\-]+)?:([0-9]{12})?:(.+)$
+     * @see {@link https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-observabilityadmin-organizationtelemetryrule.html#cfn-observabilityadmin-organizationtelemetryrule-rulearn}
+     */
+    RuleArn: string;
+};
+/**
+ * Type of telemetry destination
+ * @see {@link https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-observabilityadmin-organizationtelemetryrule-destinationtype.html}
+ */
+export type DestinationType = "cloud-watch-logs";
+/**
+ * Resource Type associated with the Organization Telemetry Rule
+ * @see {@link https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-observabilityadmin-organizationtelemetryrule-resourcetype.html}
+ */
+export type ResourceType = "AWS::EC2::VPC";
+/**
+ * The destination configuration for telemetry data
+ * @see {@link https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-observabilityadmin-organizationtelemetryrule-telemetrydestinationconfiguration.html}
+ */
+export type TelemetryDestinationConfiguration = {
+    /**
+     * Pattern for telemetry data destination
+     * @see {@link https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-observabilityadmin-organizationtelemetryrule-telemetrydestinationconfiguration.html#cfn-observabilityadmin-organizationtelemetryrule-telemetrydestinationconfiguration-destinationpattern}
+     */
+    DestinationPattern?: string | undefined;
+    /**
+     * Type of telemetry destination
+     * @see {@link https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-observabilityadmin-organizationtelemetryrule-telemetrydestinationconfiguration.html#cfn-observabilityadmin-organizationtelemetryrule-telemetrydestinationconfiguration-destinationtype}
+     */
+    DestinationType?: DestinationType | undefined;
+    /**
+     * Number of days to retain the telemetry data in the specified destination
+     * @see {@link https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-observabilityadmin-organizationtelemetryrule-telemetrydestinationconfiguration.html#cfn-observabilityadmin-organizationtelemetryrule-telemetrydestinationconfiguration-retentionindays}
+     */
+    RetentionInDays?: number | undefined;
+    /**
+     * Telemetry parameters for VPC Flow logs
+     * @see {@link https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-observabilityadmin-organizationtelemetryrule-telemetrydestinationconfiguration.html#cfn-observabilityadmin-organizationtelemetryrule-telemetrydestinationconfiguration-vpcflowlogparameters}
+     */
+    VPCFlowLogParameters?: VPCFlowLogParameters | undefined;
+};
+/**
+ * The telemetry rule
+ * @see {@link https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-observabilityadmin-organizationtelemetryrule-telemetryrule.html}
+ */
+export type TelemetryRule = {
+    /**
+     * The destination configuration for telemetry data
+     * @see {@link https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-observabilityadmin-organizationtelemetryrule-telemetryrule.html#cfn-observabilityadmin-organizationtelemetryrule-telemetryrule-destinationconfiguration}
+     */
+    DestinationConfiguration?: TelemetryDestinationConfiguration | undefined;
+    /**
+     * Resource Type associated with the Organization Telemetry Rule
+     * @see {@link https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-observabilityadmin-organizationtelemetryrule-telemetryrule.html#cfn-observabilityadmin-organizationtelemetryrule-telemetryrule-resourcetype}
+     */
+    ResourceType: ResourceType;
+    /**
+     * Selection Criteria on scope level for rule application
+     * @see {@link https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-observabilityadmin-organizationtelemetryrule-telemetryrule.html#cfn-observabilityadmin-organizationtelemetryrule-telemetryrule-scope}
+     */
+    Scope?: string | undefined;
+    /**
+     * Selection Criteria on resource level for rule application
+     * @see {@link https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-observabilityadmin-organizationtelemetryrule-telemetryrule.html#cfn-observabilityadmin-organizationtelemetryrule-telemetryrule-selectioncriteria}
+     */
+    SelectionCriteria?: string | undefined;
+    /**
+     * Telemetry Type associated with the Organization Telemetry Rule
+     * @see {@link https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-observabilityadmin-organizationtelemetryrule-telemetryrule.html#cfn-observabilityadmin-organizationtelemetryrule-telemetryrule-telemetrytype}
+     */
+    TelemetryType: TelemetryType;
+};
+/**
+ * Telemetry Type associated with the Organization Telemetry Rule
+ * @see {@link https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-observabilityadmin-organizationtelemetryrule-telemetrytype.html}
+ */
+export type TelemetryType = "Logs";
+/**
+ * Telemetry parameters for VPC Flow logs
+ * @see {@link https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-observabilityadmin-organizationtelemetryrule-vpcflowlogparameters.html}
+ */
+export type VPCFlowLogParameters = {
+    /**
+     * The fields to include in the flow log record. If you omit this parameter, the flow log is created using the default format.
+     * @see {@link https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-observabilityadmin-organizationtelemetryrule-vpcflowlogparameters.html#cfn-observabilityadmin-organizationtelemetryrule-vpcflowlogparameters-logformat}
+     */
+    LogFormat?: string | undefined;
+    /**
+     * The maximum interval of time, in seconds, during which a flow of packets is captured and aggregated into a flow log record. Default is 600s.
+     * @see {@link https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-observabilityadmin-organizationtelemetryrule-vpcflowlogparameters.html#cfn-observabilityadmin-organizationtelemetryrule-vpcflowlogparameters-maxaggregationinterval}
+     */
+    MaxAggregationInterval?: number | undefined;
+    /**
+     * The type of traffic captured for the flow log. Default is ALL
+     * @see {@link https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-observabilityadmin-organizationtelemetryrule-vpcflowlogparameters.html#cfn-observabilityadmin-organizationtelemetryrule-vpcflowlogparameters-traffictype}
+     */
+    TrafficType?: string | undefined;
+};
+//# sourceMappingURL=aws-observabilityadmin-organizationtelemetryrule.d.ts.map

package/out/exports/resources.generated/aws-observabilityadmin-telemetryrule.d.ts

@@ -0,0 +1,132 @@
+import type { ResourceDefinitionWithAttributes, Tag } from "../main.ts";
+/**
+ * The AWS::ObservabilityAdmin::TelemetryRule resource defines a CloudWatch Observability Admin Telemetry Rule.
+ * @see {@link https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-observabilityadmin-telemetryrule.html}
+ */
+export type ObservabilityAdminTelemetryRule = ResourceDefinitionWithAttributes<"AWS::ObservabilityAdmin::TelemetryRule", ObservabilityAdminTelemetryRuleProps, ObservabilityAdminTelemetryRuleAttribs>;
+/**
+ * The AWS::ObservabilityAdmin::TelemetryRule resource defines a CloudWatch Observability Admin Telemetry Rule.
+ * @see {@link https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-observabilityadmin-telemetryrule.html}
+ */
+export type ObservabilityAdminTelemetryRuleProps = {
+    /**
+     * The telemetry rule
+     * @see {@link https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-observabilityadmin-telemetryrule.html#cfn-observabilityadmin-telemetryrule-rule}
+     */
+    Rule: TelemetryRule;
+    /**
+     * The name of the telemetry rule
+     * @minLength 1
+     * @maxLength 100
+     * @pattern ^[0-9A-Za-z-]+$
+     * @see {@link https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-observabilityadmin-telemetryrule.html#cfn-observabilityadmin-telemetryrule-rulename}
+     */
+    RuleName: string;
+    /**
+     * An array of key-value pairs to apply to this resource
+     * @see {@link https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-observabilityadmin-telemetryrule.html#cfn-observabilityadmin-telemetryrule-tags}
+     */
+    Tags?: Tag[] | undefined;
+};
+/**
+ * @see {@link https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-observabilityadmin-telemetryrule.html#aws-resource-observabilityadmin-telemetryrule-return-values}
+ */
+export type ObservabilityAdminTelemetryRuleAttribs = {
+    /**
+     * The arn of the telemetry rule
+     * @minLength 1
+     * @maxLength 1011
+     * @pattern ^arn:aws([a-z0-9\-]+)?:([a-zA-Z0-9\-]+):([a-z0-9\-]+)?:([0-9]{12})?:(.+)$
+     * @see {@link https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-observabilityadmin-telemetryrule.html#cfn-observabilityadmin-telemetryrule-rulearn}
+     */
+    RuleArn: string;
+};
+/**
+ * Type of telemetry destination
+ * @see {@link https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-observabilityadmin-telemetryrule-destinationtype.html}
+ */
+export type DestinationType = "cloud-watch-logs";
+/**
+ * Resource Type associated with the Telemetry Rule
+ * @see {@link https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-observabilityadmin-telemetryrule-resourcetype.html}
+ */
+export type ResourceType = "AWS::EC2::VPC";
+/**
+ * The destination configuration for telemetry data
+ * @see {@link https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-observabilityadmin-telemetryrule-telemetrydestinationconfiguration.html}
+ */
+export type TelemetryDestinationConfiguration = {
+    /**
+     * Pattern for telemetry data destination
+     * @see {@link https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-observabilityadmin-telemetryrule-telemetrydestinationconfiguration.html#cfn-observabilityadmin-telemetryrule-telemetrydestinationconfiguration-destinationpattern}
+     */
+    DestinationPattern?: string | undefined;
+    /**
+     * Type of telemetry destination
+     * @see {@link https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-observabilityadmin-telemetryrule-telemetrydestinationconfiguration.html#cfn-observabilityadmin-telemetryrule-telemetrydestinationconfiguration-destinationtype}
+     */
+    DestinationType?: DestinationType | undefined;
+    /**
+     * Number of days to retain the telemetry data in the specified destination
+     * @see {@link https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-observabilityadmin-telemetryrule-telemetrydestinationconfiguration.html#cfn-observabilityadmin-telemetryrule-telemetrydestinationconfiguration-retentionindays}
+     */
+    RetentionInDays?: number | undefined;
+    /**
+     * Telemetry parameters for VPC Flow logs
+     * @see {@link https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-observabilityadmin-telemetryrule-telemetrydestinationconfiguration.html#cfn-observabilityadmin-telemetryrule-telemetrydestinationconfiguration-vpcflowlogparameters}
+     */
+    VPCFlowLogParameters?: VPCFlowLogParameters | undefined;
+};
+/**
+ * The telemetry rule
+ * @see {@link https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-observabilityadmin-telemetryrule-telemetryrule.html}
+ */
+export type TelemetryRule = {
+    /**
+     * The destination configuration for telemetry data
+     * @see {@link https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-observabilityadmin-telemetryrule-telemetryrule.html#cfn-observabilityadmin-telemetryrule-telemetryrule-destinationconfiguration}
+     */
+    DestinationConfiguration?: TelemetryDestinationConfiguration | undefined;
+    /**
+     * Resource Type associated with the Telemetry Rule
+     * @see {@link https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-observabilityadmin-telemetryrule-telemetryrule.html#cfn-observabilityadmin-telemetryrule-telemetryrule-resourcetype}
+     */
+    ResourceType: ResourceType;
+    /**
+     * Selection Criteria on resource level for rule application
+     * @see {@link https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-observabilityadmin-telemetryrule-telemetryrule.html#cfn-observabilityadmin-telemetryrule-telemetryrule-selectioncriteria}
+     */
+    SelectionCriteria?: string | undefined;
+    /**
+     * Telemetry Type associated with the Telemetry Rule
+     * @see {@link https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-observabilityadmin-telemetryrule-telemetryrule.html#cfn-observabilityadmin-telemetryrule-telemetryrule-telemetrytype}
+     */
+    TelemetryType: TelemetryType;
+};
+/**
+ * Telemetry Type associated with the Telemetry Rule
+ * @see {@link https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-observabilityadmin-telemetryrule-telemetrytype.html}
+ */
+export type TelemetryType = "Logs";
+/**
+ * Telemetry parameters for VPC Flow logs
+ * @see {@link https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-observabilityadmin-telemetryrule-vpcflowlogparameters.html}
+ */
+export type VPCFlowLogParameters = {
+    /**
+     * The fields to include in the flow log record. If you omit this parameter, the flow log is created using the default format.
+     * @see {@link https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-observabilityadmin-telemetryrule-vpcflowlogparameters.html#cfn-observabilityadmin-telemetryrule-vpcflowlogparameters-logformat}
+     */
+    LogFormat?: string | undefined;
+    /**
+     * The maximum interval of time, in seconds, during which a flow of packets is captured and aggregated into a flow log record. Default is 600s.
+     * @see {@link https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-observabilityadmin-telemetryrule-vpcflowlogparameters.html#cfn-observabilityadmin-telemetryrule-vpcflowlogparameters-maxaggregationinterval}
+     */
+    MaxAggregationInterval?: number | undefined;
+    /**
+     * The type of traffic captured for the flow log. Default is ALL
+     * @see {@link https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-observabilityadmin-telemetryrule-vpcflowlogparameters.html#cfn-observabilityadmin-telemetryrule-vpcflowlogparameters-traffictype}
+     */
+    TrafficType?: string | undefined;
+};
+//# sourceMappingURL=aws-observabilityadmin-telemetryrule.d.ts.map

package/out/exports/resources.generated/aws-omics-workflowversion.d.ts

@@ -6,7 +6,7 @@ import type { ResourceDefinitionWithAttributes } from "../main.ts";
  *
  * Provide a version name that is unique for this workflow. You cannot change the name after HealthOmics creates the version.
  *
- * > Don’t include any personally identifiable information (PII) in the version name. Version names appear in the workflow version ARN.
+ * > Don't include any personally identifiable information (PII) in the version name. Version names appear in the workflow version ARN.
  *
  * For more information, see [Workflow versioning in AWS HealthOmics](https://docs.aws.amazon.com/omics/latest/dev/workflow-versions.html) in the *AWS HealthOmics User Guide* .
  * @see {@link https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-omics-workflowversion.html}
@@ -19,7 +19,7 @@ export type OmicsWorkflowVersion = ResourceDefinitionWithAttributes<"AWS::Omics:
  *
  * Provide a version name that is unique for this workflow. You cannot change the name after HealthOmics creates the version.
  *
- * > Don’t include any personally identifiable information (PII) in the version name. Version names appear in the workflow version ARN.
+ * > Don't include any personally identifiable information (PII) in the version name. Version names appear in the workflow version ARN.
  *
  * For more information, see [Workflow versioning in AWS HealthOmics](https://docs.aws.amazon.com/omics/latest/dev/workflow-versions.html) in the *AWS HealthOmics User Guide* .
  * @see {@link https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-omics-workflowversion.html}

package/out/exports/resources.generated/aws-opensearchservice-domain.d.ts

@@ -182,6 +182,10 @@ export type AdvancedSecurityOptionsInput = {
      * @see {@link https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-opensearchservice-domain-advancedsecurityoptionsinput.html#cfn-opensearchservice-domain-advancedsecurityoptionsinput-enabled}
      */
     Enabled?: boolean | undefined;
+    /**
+     * @see {@link https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-opensearchservice-domain-advancedsecurityoptionsinput.html#cfn-opensearchservice-domain-advancedsecurityoptionsinput-iamfederationoptions}
+     */
+    IAMFederationOptions?: IAMFederationOptions | undefined;
     /**
      * True to enable the internal user database.
      * @see {@link https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-opensearchservice-domain-advancedsecurityoptionsinput.html#cfn-opensearchservice-domain-advancedsecurityoptionsinput-internaluserdatabaseenabled}
@@ -405,6 +409,23 @@ export type EncryptionAtRestOptions = {
      */
     KmsKeyId?: string | undefined;
 };
+/**
+ * @see {@link https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-opensearchservice-domain-iamfederationoptions.html}
+ */
+export type IAMFederationOptions = {
+    /**
+     * @see {@link https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-opensearchservice-domain-iamfederationoptions.html#cfn-opensearchservice-domain-iamfederationoptions-enabled}
+     */
+    Enabled?: boolean | undefined;
+    /**
+     * @see {@link https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-opensearchservice-domain-iamfederationoptions.html#cfn-opensearchservice-domain-iamfederationoptions-roleskey}
+     */
+    RolesKey?: string | undefined;
+    /**
+     * @see {@link https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-opensearchservice-domain-iamfederationoptions.html#cfn-opensearchservice-domain-iamfederationoptions-subjectkey}
+     */
+    SubjectKey?: string | undefined;
+};
 /**
  * Settings container for integrating IAM Identity Center with OpenSearch UI applications, which enables enabling secure user authentication and access control across multiple data sources. This setup supports single sign-on (SSO) through IAM Identity Center, allowing centralized user management.
  * @see {@link https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-opensearchservice-domain-identitycenteroptions.html}