@propulsionworks/cloudformation 0.1.22 → 0.1.24

package/out/exports/resources.generated/aws-ecs-service.d.ts

@@ -126,6 +126,11 @@ export type ECSServiceProps = {
      * @see {@link https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ecs-service.html#cfn-ecs-service-enableexecutecommand}
      */
     EnableExecuteCommand?: boolean | undefined;
+    /**
+     * Determines whether to force a new deployment of the service. By default, deployments aren't forced. You can use this option to start a new deployment with no service definition changes. For example, you can update a service's tasks to use a newer Docker image with the same image/tag combination ( `my_image:latest` ) or to roll Fargate tasks onto a newer platform version.
+     * @see {@link https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ecs-service.html#cfn-ecs-service-forcenewdeployment}
+     */
+    ForceNewDeployment?: ForceNewDeployment | undefined;
     /**
      * The period of time, in seconds, that the Amazon ECS service scheduler ignores unhealthy Elastic Load Balancing, VPC Lattice, and container health checks after a task has first started. If you don't specify a health check grace period value, the default value of `0` is used. If you don't use any of the health checks, then `healthCheckGracePeriodSeconds` is unused.
      *
@@ -341,7 +346,14 @@ export type AwsVpcConfiguration = {
  */
 export type CapacityProviderStrategyItem = {
     /**
-     * The *base* value designates how many tasks, at a minimum, to run on the specified capacity provider. Only one capacity provider in a capacity provider strategy can have a *base* defined. If no value is specified, the default value of `0` is used.
+     * The *base* value designates how many tasks, at a minimum, to run on the specified capacity provider for each service. Only one capacity provider in a capacity provider strategy can have a *base* defined. If no value is specified, the default value of `0` is used.
+     *
+     * Base value characteristics:
+     *
+     * - Only one capacity provider in a strategy can have a base defined
+     * - Default value is `0` if not specified
+     * - Valid range: 0 to 100,000
+     * - Base requirements are satisfied first before weight distribution
      * @see {@link https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ecs-service-capacityproviderstrategyitem.html#cfn-ecs-service-capacityproviderstrategyitem-base}
      */
     Base?: number | undefined;
@@ -355,7 +367,24 @@ export type CapacityProviderStrategyItem = {
      *
      * If no `weight` value is specified, the default value of `0` is used. When multiple capacity providers are specified within a capacity provider strategy, at least one of the capacity providers must have a weight value greater than zero and any capacity providers with a weight of `0` can't be used to place tasks. If you specify multiple capacity providers in a strategy that all have a weight of `0` , any `RunTask` or `CreateService` actions using the capacity provider strategy will fail.
      *
-     * An example scenario for using weights is defining a strategy that contains two capacity providers and both have a weight of `1` , then when the `base` is satisfied, the tasks will be split evenly across the two capacity providers. Using that same logic, if you specify a weight of `1` for *capacityProviderA* and a weight of `4` for *capacityProviderB* , then for every one task that's run using *capacityProviderA* , four tasks would use *capacityProviderB* .
+     * Weight value characteristics:
+     *
+     * - Weight is considered after the base value is satisfied
+     * - Default value is `0` if not specified
+     * - Valid range: 0 to 1,000
+     * - At least one capacity provider must have a weight greater than zero
+     * - Capacity providers with weight of `0` cannot place tasks
+     *
+     * Task distribution logic:
+     *
+     * - Base satisfaction: The minimum number of tasks specified by the base value are placed on that capacity provider
+     * - Weight distribution: After base requirements are met, additional tasks are distributed according to weight ratios
+     *
+     * Examples:
+     *
+     * Equal Distribution: Two capacity providers both with weight `1` will split tasks evenly after base requirements are met.
+     *
+     * Weighted Distribution: If capacityProviderA has weight `1` and capacityProviderB has weight `4` , then for every 1 task on A, 4 tasks will run on B.
      * @see {@link https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ecs-service-capacityproviderstrategyitem.html#cfn-ecs-service-capacityproviderstrategyitem-weight}
      */
     Weight?: number | undefined;
@@ -632,6 +661,21 @@ export type EBSTagSpecification = {
      */
     Tags?: Tag[] | undefined;
 };
+/**
+ * @see {@link https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ecs-service-forcenewdeployment.html}
+ */
+export type ForceNewDeployment = {
+    /**
+     * @see {@link https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ecs-service-forcenewdeployment.html#cfn-ecs-service-forcenewdeployment-enableforcenewdeployment}
+     */
+    EnableForceNewDeployment: boolean;
+    /**
+     * @minLength 1
+     * @maxLength 255
+     * @see {@link https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ecs-service-forcenewdeployment.html#cfn-ecs-service-forcenewdeployment-forcenewdeploymentnonce}
+     */
+    ForceNewDeploymentNonce?: string | undefined;
+};
 /**
  * The `LoadBalancer` property specifies details on a load balancer that is used with a service.
  *
@@ -780,7 +824,7 @@ export type LogConfiguration = {
      * > - Set the `defaultLogDriverMode` account setting to `blocking` .
      * - **max-buffer-size** - Required: No
      *
-     * Default value: `1m`
+     * Default value: `10m`
      *
      * When `non-blocking` mode is used, the `max-buffer-size` log option controls the size of the buffer that's used for intermediate message storage. Make sure to specify an adequate buffer size based on your application. When the buffer fills up, further logs cannot be stored. Logs that cannot be stored are lost.
      *

package/out/exports/resources.generated/aws-ecs-taskdefinition.d.ts

@@ -1088,7 +1088,7 @@ export type LogConfiguration = {
      * > - Set the `defaultLogDriverMode` account setting to `blocking` .
      * - **max-buffer-size** - Required: No
      *
-     * Default value: `1m`
+     * Default value: `10m`
      *
      * When `non-blocking` mode is used, the `max-buffer-size` log option controls the size of the buffer that's used for intermediate message storage. Make sure to specify an adequate buffer size based on your application. When the buffer fills up, further logs cannot be stored. Logs that cannot be stored are lost.
      *

package/out/exports/resources.generated/aws-ecs-taskset.d.ts

@@ -146,7 +146,14 @@ export type AwsVpcConfiguration = {
  */
 export type CapacityProviderStrategyItem = {
     /**
-     * The *base* value designates how many tasks, at a minimum, to run on the specified capacity provider. Only one capacity provider in a capacity provider strategy can have a *base* defined. If no value is specified, the default value of `0` is used.
+     * The *base* value designates how many tasks, at a minimum, to run on the specified capacity provider for each service. Only one capacity provider in a capacity provider strategy can have a *base* defined. If no value is specified, the default value of `0` is used.
+     *
+     * Base value characteristics:
+     *
+     * - Only one capacity provider in a strategy can have a base defined
+     * - Default value is `0` if not specified
+     * - Valid range: 0 to 100,000
+     * - Base requirements are satisfied first before weight distribution
      * @see {@link https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ecs-taskset-capacityproviderstrategyitem.html#cfn-ecs-taskset-capacityproviderstrategyitem-base}
      */
     Base?: number | undefined;
@@ -160,7 +167,24 @@ export type CapacityProviderStrategyItem = {
      *
      * If no `weight` value is specified, the default value of `0` is used. When multiple capacity providers are specified within a capacity provider strategy, at least one of the capacity providers must have a weight value greater than zero and any capacity providers with a weight of `0` can't be used to place tasks. If you specify multiple capacity providers in a strategy that all have a weight of `0` , any `RunTask` or `CreateService` actions using the capacity provider strategy will fail.
      *
-     * An example scenario for using weights is defining a strategy that contains two capacity providers and both have a weight of `1` , then when the `base` is satisfied, the tasks will be split evenly across the two capacity providers. Using that same logic, if you specify a weight of `1` for *capacityProviderA* and a weight of `4` for *capacityProviderB* , then for every one task that's run using *capacityProviderA* , four tasks would use *capacityProviderB* .
+     * Weight value characteristics:
+     *
+     * - Weight is considered after the base value is satisfied
+     * - Default value is `0` if not specified
+     * - Valid range: 0 to 1,000
+     * - At least one capacity provider must have a weight greater than zero
+     * - Capacity providers with weight of `0` cannot place tasks
+     *
+     * Task distribution logic:
+     *
+     * - Base satisfaction: The minimum number of tasks specified by the base value are placed on that capacity provider
+     * - Weight distribution: After base requirements are met, additional tasks are distributed according to weight ratios
+     *
+     * Examples:
+     *
+     * Equal Distribution: Two capacity providers both with weight `1` will split tasks evenly after base requirements are met.
+     *
+     * Weighted Distribution: If capacityProviderA has weight `1` and capacityProviderB has weight `4` , then for every 1 task on A, 4 tasks will run on B.
      * @see {@link https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ecs-taskset-capacityproviderstrategyitem.html#cfn-ecs-taskset-capacityproviderstrategyitem-weight}
      */
     Weight?: number | undefined;

package/out/exports/resources.generated/aws-eks-addon.d.ts

@@ -38,7 +38,7 @@ export type EKSAddonProps = {
      */
     ConfigurationValues?: string | undefined;
     /**
-     * The custom namespace configuration to use with the add-on
+     * The namespace configuration for the addon. This specifies the Kubernetes namespace where the addon is installed.
      * @see {@link https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-eks-addon.html#cfn-eks-addon-namespaceconfig}
      */
     NamespaceConfig?: {

package/out/exports/resources.generated/aws-elasticloadbalancingv2-truststore.d.ts

@@ -1,11 +1,11 @@
 import type { ResourceDefinitionWithAttributes, Tag } from "../main.ts";
 /**
- * Creates a trust store. You must specify `CaCertificatesBundleS3Bucket` and `CaCertificatesBundleS3Key` .
+ * Creates a trust store. You must specify `CaCertificatesBundleS3Bucket` and `CaCertificatesBundleS3Key` . When you create a trust store, you must specify `Name` .
  * @see {@link https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-elasticloadbalancingv2-truststore.html}
  */
 export type ElasticLoadBalancingV2TrustStore = ResourceDefinitionWithAttributes<"AWS::ElasticLoadBalancingV2::TrustStore", ElasticLoadBalancingV2TrustStoreProps, ElasticLoadBalancingV2TrustStoreAttribs>;
 /**
- * Creates a trust store. You must specify `CaCertificatesBundleS3Bucket` and `CaCertificatesBundleS3Key` .
+ * Creates a trust store. You must specify `CaCertificatesBundleS3Bucket` and `CaCertificatesBundleS3Key` . When you create a trust store, you must specify `Name` .
  * @see {@link https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-elasticloadbalancingv2-truststore.html}
  */
 export type ElasticLoadBalancingV2TrustStoreProps = {
@@ -45,7 +45,7 @@ export type ElasticLoadBalancingV2TrustStoreAttribs = {
      */
     NumberOfCaCertificates: number;
     /**
-     * The current status of the trust store.
+     * The status of the trust store. The possible values are `CREATING` and `ACTIVE` .
      * @see {@link https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-elasticloadbalancingv2-truststore.html#cfn-elasticloadbalancingv2-truststore-status}
      */
     Status: string;

package/out/exports/resources.generated/aws-entityresolution-idmappingworkflow.d.ts

@@ -18,6 +18,10 @@ export type EntityResolutionIdMappingWorkflowProps = {
      * @see {@link https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-entityresolution-idmappingworkflow.html#cfn-entityresolution-idmappingworkflow-description}
      */
     Description?: string | undefined;
+    /**
+     * @see {@link https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-entityresolution-idmappingworkflow.html#cfn-entityresolution-idmappingworkflow-idmappingincrementalrunconfig}
+     */
+    IdMappingIncrementalRunConfig?: IdMappingIncrementalRunConfig | undefined;
     /**
      * An object which defines the ID mapping technique and any additional configurations.
      * @see {@link https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-entityresolution-idmappingworkflow.html#cfn-entityresolution-idmappingworkflow-idmappingtechniques}
@@ -70,6 +74,15 @@ export type EntityResolutionIdMappingWorkflowAttribs = {
      */
     WorkflowArn: string;
 };
+/**
+ * @see {@link https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-entityresolution-idmappingworkflow-idmappingincrementalrunconfig.html}
+ */
+export type IdMappingIncrementalRunConfig = {
+    /**
+     * @see {@link https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-entityresolution-idmappingworkflow-idmappingincrementalrunconfig.html#cfn-entityresolution-idmappingworkflow-idmappingincrementalrunconfig-incrementalruntype}
+     */
+    IncrementalRunType: "ON_DEMAND";
+};
 /**
  * An object that defines the list of matching rules to run in an ID mapping workflow.
  * @see {@link https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-entityresolution-idmappingworkflow-idmappingrulebasedproperties.html}

package/out/exports/resources.generated/aws-events-rule.d.ts

@@ -92,6 +92,11 @@ export type EventsRuleProps = {
      * @see {@link https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-events-rule.html#cfn-events-rule-state}
      */
     State?: "DISABLED" | "ENABLED" | "ENABLED_WITH_ALL_CLOUDTRAIL_MANAGEMENT_EVENTS" | undefined;
+    /**
+     * Any tags assigned to the event rule.
+     * @see {@link https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-events-rule.html#cfn-events-rule-tags}
+     */
+    Tags?: Tag[] | undefined;
     /**
      * Adds the specified targets to the specified rule, or updates the targets if they are already associated with the rule.
      *

package/out/exports/resources.generated/aws-fsx-filesystem.d.ts

@@ -70,6 +70,7 @@ export type FSxFileSystemProps = {
      */
     LustreConfiguration?: LustreConfiguration | undefined;
     /**
+     * The network type of the file system.
      * @see {@link https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-fsx-filesystem.html#cfn-fsx-filesystem-networktype}
      */
     NetworkType?: string | undefined;
@@ -587,6 +588,7 @@ export type OpenZFSConfiguration = {
      */
     EndpointIpAddressRange?: string | undefined;
     /**
+     * (Multi-AZ only) Specifies the IP address range in which the endpoints to access your file system will be created. By default in the Amazon FSx API and Amazon FSx console, Amazon FSx selects an available /118 IP address range for you from one of the VPC's CIDR ranges. You can have overlapping endpoint IP addresses for file systems deployed in the same VPC/route tables, as long as they don't overlap with any subnet.
      * @see {@link https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-fsx-filesystem-openzfsconfiguration.html#cfn-fsx-filesystem-openzfsconfiguration-endpointipv6addressrange}
      */
     EndpointIpv6AddressRange?: string | undefined;

package/out/exports/resources.generated/aws-glue-connection.d.ts

@@ -176,10 +176,40 @@ export type ConnectionInput = {
      * - `SAPODATA` - Designates a connection to SAP OData.
      * - `SERVICENOW` - Designates a connection to ServiceNow.
      * - `SLACK` - Designates a connection to Slack.
+     * - `SNOWFLAKE` - Designates a connection to Snowflake.
      * - `SNAPCHATADS` - Designates a connection to Snapchat Ads.
      * - `STRIPE` - Designates a connection to Stripe.
      * - `ZENDESK` - Designates a connection to Zendesk.
      * - `ZOHOCRM` - Designates a connection to Zoho CRM.
+     * - `ADOBEANALYTICS` - Designates a connection to Adobe Analytics.
+     * - `LINKEDIN` - Designates a connection to LinkedIn.
+     * - `MIXPANEL` - Designates a connection to Mixpanel.
+     * - `ASANA` - Designates a connection to Asana.
+     * - `SMARTSHEET` - Designates a connection to Smartsheet.
+     * - `DATADOG` - Designates a connection to Datadog.
+     * - `WOOCOMMERCE` - Designates a connection to WooCommerce.
+     * - `PAYPAL` - Designates a connection to PayPal.
+     * - `QUICKBOOKS` - Designates a connection to QuickBooks.
+     * - `FACEBOOKPAGEINSIGHTS` - Designates a connection to Facebook Page Insights.
+     * - `FRESHDESK` - Designates a connection to Freshdesk.
+     * - `TWILIO` - Designates a connection to Twilio.
+     * - `DOCUSIGNMONITOR` - Designates a connection to DocuSign Monitor.
+     * - `FRESHSALES` - Designates a connection to Freshsales.
+     * - `ZOOM` - Designates a connection to Zoom.
+     * - `GOOGLESEARCHCONSOLE` - Designates a connection to Google Search Console.
+     * - `SALESFORCECOMMERCECLOUD` - Designates a connection to Salesforce Commerce Cloud.
+     * - `SAPCONCUR` - Designates a connection to SAP Concur.
+     * - `DYNATRACE` - Designates a connection to Dynatrace.
+     * - `MICROSOFTDYNAMIC365FINANCEANDOPS` - Designates a connection to Microsoft Dynamics 365 Finance and Operations.
+     * - `MICROSOFTTEAMS` - Designates a connection to Microsoft Teams.
+     * - `BLACKBAUDRAISEREDGENXT` - Designates a connection to Blackbaud Raiser's Edge NXT.
+     * - `MAILCHIMP` - Designates a connection to Mailchimp.
+     * - `GITLAB` - Designates a connection to GitLab.
+     * - `PENDO` - Designates a connection to Pendo.
+     * - `PRODUCTBOARD` - Designates a connection to Productboard.
+     * - `CIRCLECI` - Designates a connection to CircleCI.
+     * - `PIPEDIVE` - Designates a connection to Pipedrive.
+     * - `SENDGRID` - Designates a connection to SendGrid.
      *
      * For more information on the connection parameters needed for a particular connector, see the documentation for the connector in [Adding an AWS Glue connection](https://docs.aws.amazon.com/glue/latest/dg/console-connections.html) in the AWS Glue User Guide.
      *

package/out/exports/resources.generated/aws-glue-crawler.d.ts

@@ -149,6 +149,20 @@ export type DynamoDBTarget = {
      * @see {@link https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-glue-crawler-dynamodbtarget.html#cfn-glue-crawler-dynamodbtarget-path}
      */
     Path?: string | undefined;
+    /**
+     * Indicates whether to scan all the records, or to sample rows from the table. Scanning all the records can take a long time when the table is not a high throughput table.
+     *
+     * A value of `true` means to scan all records, while a value of `false` means to sample the records. If no value is specified, the value defaults to `true` .
+     * @see {@link https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-glue-crawler-dynamodbtarget.html#cfn-glue-crawler-dynamodbtarget-scanall}
+     */
+    ScanAll?: boolean | undefined;
+    /**
+     * The percentage of the configured read capacity units to use by the AWS Glue crawler. Read capacity units is a term defined by DynamoDB, and is a numeric value that acts as rate limiter for the number of reads that can be performed on that table per second.
+     *
+     * The valid values are null or a value between 0.1 to 1.5. A null value is used when user does not provide a value, and defaults to 0.5 of the configured Read Capacity Unit (for provisioned tables), or 0.25 of the max configured Read Capacity Unit (for tables using on-demand mode).
+     * @see {@link https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-glue-crawler-dynamodbtarget.html#cfn-glue-crawler-dynamodbtarget-scanrate}
+     */
+    ScanRate?: number | undefined;
 };
 /**
  * Specifies an Apache Hudi data source.

package/out/exports/resources.generated/aws-guardduty-ipset.d.ts

@@ -1,16 +1,20 @@
 import type { ResourceDefinitionWithAttributes } from "../main.ts";
 /**
- * The `AWS::GuardDuty::IPSet` resource specifies a new `IPSet` . An `IPSet` is a list of trusted IP addresses from which secure communication is allowed with AWS infrastructure and applications.
+ * The `AWS::GuardDuty::IPSet` resource helps you create a list of trusted IP addresses that you can use for secure communication with AWS infrastructure and applications. Once you activate this list, GuardDuty will not generate findings when there is an activity associated with these safe IP addresses.
+ *
+ * Only the users of the GuardDuty administrator account can manage this list. These settings are also applied to the member accounts.
  * @see {@link https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-guardduty-ipset.html}
  */
 export type GuardDutyIPSet = ResourceDefinitionWithAttributes<"AWS::GuardDuty::IPSet", GuardDutyIPSetProps, GuardDutyIPSetAttribs>;
 /**
- * The `AWS::GuardDuty::IPSet` resource specifies a new `IPSet` . An `IPSet` is a list of trusted IP addresses from which secure communication is allowed with AWS infrastructure and applications.
+ * The `AWS::GuardDuty::IPSet` resource helps you create a list of trusted IP addresses that you can use for secure communication with AWS infrastructure and applications. Once you activate this list, GuardDuty will not generate findings when there is an activity associated with these safe IP addresses.
+ *
+ * Only the users of the GuardDuty administrator account can manage this list. These settings are also applied to the member accounts.
  * @see {@link https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-guardduty-ipset.html}
  */
 export type GuardDutyIPSetProps = {
     /**
-     * Indicates whether or not GuardDuty uses the `IPSet` .
+     * A boolean value that determines if GuardDuty can start using this list for custom threat detection. For GuardDuty to prevent generating findings based on an activity associated with these entries, this list must be active.
      * @see {@link https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-guardduty-ipset.html#cfn-guardduty-ipset-activate}
      */
     Activate?: boolean | undefined;
@@ -32,7 +36,7 @@ export type GuardDutyIPSetProps = {
      */
     ExpectedBucketOwner?: string | undefined;
     /**
-     * The format of the file that contains the IPSet.
+     * The format of the file that contains the IPSet. For information about supported formats, see [List formats](https://docs.aws.amazon.com/guardduty/latest/ug/guardduty_upload-lists.html#prepare_list) in the *Amazon GuardDuty User Guide* .
      * @see {@link https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-guardduty-ipset.html#cfn-guardduty-ipset-format}
      */
     Format: string;
@@ -46,14 +50,14 @@ export type GuardDutyIPSetProps = {
     /**
      * The user-friendly name to identify the IPSet.
      *
-     * Allowed characters are alphanumeric, whitespace, dash (-), and underscores (_).
+     * The name of your list must be unique within an AWS account and Region. Valid characters are alphanumeric, whitespace, dash (-), and underscores (_).
      * @minLength 1
      * @maxLength 300
      * @see {@link https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-guardduty-ipset.html#cfn-guardduty-ipset-name}
      */
     Name?: string | undefined;
     /**
-     * The tags to be added to a new IP set resource. Each tag consists of a key and an optional value, both of which you define.
+     * The tags to be added to a new threat entity set resource. Each tag consists of a key and an optional value, both of which you define.
      *
      * For more information, see [Tag](https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-resource-tags.html) .
      * @see {@link https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-guardduty-ipset.html#cfn-guardduty-ipset-tags}

package/out/exports/resources.generated/aws-guardduty-threatentityset.d.ts

@@ -1,45 +1,62 @@
 import type { ResourceDefinitionWithAttributes } from "../main.ts";
 /**
- * Resource Type definition for AWS::GuardDuty::ThreatEntitySet
+ * The `AWS::GuardDuty::ThreatEntitySet` resource helps you create a list of known malicious IP addresses and domain names in your AWS environment. Once you activate this list, GuardDuty will use the entries in this list as an additional source of threat detection and generate findings when there is an activity associated with these known malicious IP addresses and domain names. GuardDuty continues to monitor independently of this custom threat entity set.
+ *
+ * Only the users of the GuardDuty administrator account can manage this list. These settings automatically apply to the member accounts.
  * @see {@link https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-guardduty-threatentityset.html}
  */
 export type GuardDutyThreatEntitySet = ResourceDefinitionWithAttributes<"AWS::GuardDuty::ThreatEntitySet", GuardDutyThreatEntitySetProps, GuardDutyThreatEntitySetAttribs>;
 /**
- * Resource Type definition for AWS::GuardDuty::ThreatEntitySet
+ * The `AWS::GuardDuty::ThreatEntitySet` resource helps you create a list of known malicious IP addresses and domain names in your AWS environment. Once you activate this list, GuardDuty will use the entries in this list as an additional source of threat detection and generate findings when there is an activity associated with these known malicious IP addresses and domain names. GuardDuty continues to monitor independently of this custom threat entity set.
+ *
+ * Only the users of the GuardDuty administrator account can manage this list. These settings automatically apply to the member accounts.
  * @see {@link https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-guardduty-threatentityset.html}
  */
 export type GuardDutyThreatEntitySetProps = {
     /**
+     * A boolean value that determines if GuardDuty can start using this list for custom threat detection. For GuardDuty to consider the entries in this list and generate findings based on associated activity, this list must be active.
      * @see {@link https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-guardduty-threatentityset.html#cfn-guardduty-threatentityset-activate}
      */
     Activate?: boolean | undefined;
     /**
+     * The unique regional detector ID of the GuardDuty account for which you want to create a threat entity set.
+     *
+     * To find the `detectorId` in the current Region, see the Settings page in the GuardDuty console, or run the [ListDetectors](https://docs.aws.amazon.com/guardduty/latest/APIReference/API_ListDetectors.html) API.
      * @minLength 1
      * @maxLength 32
      * @see {@link https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-guardduty-threatentityset.html#cfn-guardduty-threatentityset-detectorid}
      */
     DetectorId?: string | undefined;
     /**
+     * The AWS account ID that owns the Amazon S3 bucket specified in the *Location* field.
+     *
+     * Whether or not you provide the account ID for this optional field, GuardDuty validates that the account ID associated with the `DetectorId` owns the S3 bucket in the `Location` field. If GuardDuty finds that this S3 bucket doesn't belong to the specified account ID, you will get an error at the time of activating this list.
      * @see {@link https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-guardduty-threatentityset.html#cfn-guardduty-threatentityset-expectedbucketowner}
      */
     ExpectedBucketOwner?: string | undefined;
     /**
+     * The format of the file that contains the threat entity set. For information about supported formats, see [List formats](https://docs.aws.amazon.com/guardduty/latest/ug/guardduty_upload-lists.html#prepare_list) in the *Amazon GuardDuty User Guide* .
      * @minLength 1
      * @maxLength 300
      * @see {@link https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-guardduty-threatentityset.html#cfn-guardduty-threatentityset-format}
      */
     Format: string;
     /**
+     * The URI of the file that contains the threat entity set.
      * @minLength 1
      * @maxLength 300
      * @see {@link https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-guardduty-threatentityset.html#cfn-guardduty-threatentityset-location}
      */
     Location: string;
     /**
+     * The user-friendly name to identify the threat entity set. Valid characters are alphanumeric, whitespace, dash (-), and underscores (_).
      * @see {@link https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-guardduty-threatentityset.html#cfn-guardduty-threatentityset-name}
      */
     Name?: string | undefined;
     /**
+     * The tags to be added to a new threat entity set resource. Each tag consists of a key and an optional value, both of which you define.
+     *
+     * For more information, see [Tag](https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-resource-tags.html) .
      * @see {@link https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-guardduty-threatentityset.html#cfn-guardduty-threatentityset-tags}
      */
     Tags?: TagItem[] | undefined;
@@ -49,37 +66,45 @@ export type GuardDutyThreatEntitySetProps = {
  */
 export type GuardDutyThreatEntitySetAttribs = {
     /**
+     * The timestamp when the threat entity set was created.
      * @see {@link https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-guardduty-threatentityset.html#cfn-guardduty-threatentityset-createdat}
      */
     CreatedAt: string;
     /**
+     * The details associated with the *Error* status of your threat entity list.
      * @see {@link https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-guardduty-threatentityset.html#cfn-guardduty-threatentityset-errordetails}
      */
     ErrorDetails: string;
     /**
+     * Returns the unique ID associated with the newly created threat entity set.
      * @see {@link https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-guardduty-threatentityset.html#cfn-guardduty-threatentityset-id}
      */
     Id: string;
     /**
+     * The status of your `ThreatEntitySet` . For information about valid status values, see [Understanding list statuses](https://docs.aws.amazon.com/guardduty/latest/ug/guardduty_upload-lists.html#guardduty-entity-list-statuses) in the *Amazon GuardDuty User Guide* .
      * @see {@link https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-guardduty-threatentityset.html#cfn-guardduty-threatentityset-status}
      */
     Status: "INACTIVE" | "ACTIVATING" | "ACTIVE" | "DEACTIVATING" | "ERROR" | "DELETE_PENDING" | "DELETED";
     /**
+     * The timestamp when the threat entity set was updated.
      * @see {@link https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-guardduty-threatentityset.html#cfn-guardduty-threatentityset-updatedat}
      */
     UpdatedAt: string;
 };
 /**
+ * Describes a tag. For more information, see [Tag](https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-resource-tags.html) .
  * @see {@link https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-guardduty-threatentityset-tagitem.html}
  */
 export type TagItem = {
     /**
+     * The tag key.
      * @minLength 1
      * @maxLength 128
      * @see {@link https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-guardduty-threatentityset-tagitem.html#cfn-guardduty-threatentityset-tagitem-key}
      */
     Key: string;
     /**
+     * The tag value. This is optional.
      * @minLength 0
      * @maxLength 256
      * @see {@link https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-guardduty-threatentityset-tagitem.html#cfn-guardduty-threatentityset-tagitem-value}

package/out/exports/resources.generated/aws-guardduty-threatintelset.d.ts

@@ -1,21 +1,25 @@
 import type { ResourceDefinitionWithAttributes } from "../main.ts";
 /**
- * The `AWS::GuardDuty::ThreatIntelSet` resource specifies a new `ThreatIntelSet` . A `ThreatIntelSet` consists of known malicious IP addresses. GuardDuty generates findings based on the `ThreatIntelSet` after it is activated.
+ * The `AWS::GuardDuty::ThreatIntelSet` resource helps you create a list of known malicious IP addresses in your AWS environment. Once you activate this list, GuardDuty will use list the entries in this list as an additional source for threat detection and generate findings when there is an activity associated with these known malicious IP addresses. GuardDuty continues to monitor independently of this custom threat intelligence set.
+ *
+ * Only the users of the GuardDuty administrator account can manage this list. These settings automatically apply to the member accounts.
  * @see {@link https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-guardduty-threatintelset.html}
  */
 export type GuardDutyThreatIntelSet = ResourceDefinitionWithAttributes<"AWS::GuardDuty::ThreatIntelSet", GuardDutyThreatIntelSetProps, GuardDutyThreatIntelSetAttribs>;
 /**
- * The `AWS::GuardDuty::ThreatIntelSet` resource specifies a new `ThreatIntelSet` . A `ThreatIntelSet` consists of known malicious IP addresses. GuardDuty generates findings based on the `ThreatIntelSet` after it is activated.
+ * The `AWS::GuardDuty::ThreatIntelSet` resource helps you create a list of known malicious IP addresses in your AWS environment. Once you activate this list, GuardDuty will use list the entries in this list as an additional source for threat detection and generate findings when there is an activity associated with these known malicious IP addresses. GuardDuty continues to monitor independently of this custom threat intelligence set.
+ *
+ * Only the users of the GuardDuty administrator account can manage this list. These settings automatically apply to the member accounts.
  * @see {@link https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-guardduty-threatintelset.html}
  */
 export type GuardDutyThreatIntelSetProps = {
     /**
-     * A Boolean value that indicates whether GuardDuty is to start using the uploaded ThreatIntelSet.
+     * A boolean value that determines if GuardDuty can start using this list for custom threat detection. For GuardDuty to be able to generate findings based on an activity associated with these entries, this list must be active.
      * @see {@link https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-guardduty-threatintelset.html#cfn-guardduty-threatintelset-activate}
      */
     Activate?: boolean | undefined;
     /**
-     * The unique ID of the detector of the GuardDuty account for which you want to create a `ThreatIntelSet` .
+     * The unique ID of the detector of the GuardDuty account for which you want to create a `threatIntelSet` .
      *
      * To find the `detectorId` in the current Region, see the
      * Settings page in the GuardDuty console, or run the [ListDetectors](https://docs.aws.amazon.com/guardduty/latest/APIReference/API_ListDetectors.html) API.
@@ -32,7 +36,7 @@ export type GuardDutyThreatIntelSetProps = {
      */
     ExpectedBucketOwner?: string | undefined;
     /**
-     * The format of the file that contains the ThreatIntelSet.
+     * The format of the file that contains the `ThreatIntelSet` . For information about supported formats, see [List formats](https://docs.aws.amazon.com/guardduty/latest/ug/guardduty_upload-lists.html#prepare_list) in the *Amazon GuardDuty User Guide* .
      * @minLength 1
      * @maxLength 300
      * @see {@link https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-guardduty-threatintelset.html#cfn-guardduty-threatintelset-format}
@@ -46,12 +50,14 @@ export type GuardDutyThreatIntelSetProps = {
      */
     Location: string;
     /**
-     * A user-friendly ThreatIntelSet name displayed in all findings that are generated by activity that involves IP addresses included in this ThreatIntelSet.
+     * The user-friendly name to identify the ThreatIntelSet.
+     *
+     * The name of your list must be unique within an AWS account and Region. Valid characters are alphanumeric, whitespace, dash (-), and underscores (_).
      * @see {@link https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-guardduty-threatintelset.html#cfn-guardduty-threatintelset-name}
      */
     Name?: string | undefined;
     /**
-     * The tags to be added to a new threat list resource. Each tag consists of a key and an optional value, both of which you define.
+     * The tags to be added to a new threat entity set resource. Each tag consists of a key and an optional value, both of which you define.
      *
      * For more information, see [Tag](https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-resource-tags.html) .
      * @see {@link https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-guardduty-threatintelset.html#cfn-guardduty-threatintelset-tags}