@propulsionworks/cloudformation 0.1.36 → 0.1.38

package/out/exports/resources.generated/aws-ec2-vpcencryptioncontrol.d.ts

@@ -1,64 +1,70 @@
 import type { ResourceDefinitionWithAttributes, Tag } from "../main.ts";
 /**
+ * Describes the configuration and state of VPC encryption controls.
+ *
+ * For more information, see [Enforce VPC encryption in transit](https://docs.aws.amazon.com/vpc/latest/userguide/vpc-encryption-controls.html) in the *Amazon VPC User Guide* .
  * @see {@link https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ec2-vpcencryptioncontrol.html}
  */
 export type EC2VPCEncryptionControl = ResourceDefinitionWithAttributes<"AWS::EC2::VPCEncryptionControl", EC2VPCEncryptionControlProps, EC2VPCEncryptionControlAttribs>;
 /**
+ * Describes the configuration and state of VPC encryption controls.
+ *
+ * For more information, see [Enforce VPC encryption in transit](https://docs.aws.amazon.com/vpc/latest/userguide/vpc-encryption-controls.html) in the *Amazon VPC User Guide* .
  * @see {@link https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ec2-vpcencryptioncontrol.html}
  */
 export type EC2VPCEncryptionControlProps = {
     /**
-     * Used to enable or disable EIGW exclusion
+     * Specifies whether to exclude egress-only internet gateway traffic from encryption enforcement.
      * @see {@link https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ec2-vpcencryptioncontrol.html#cfn-ec2-vpcencryptioncontrol-egressonlyinternetgatewayexclusioninput}
      */
     EgressOnlyInternetGatewayExclusionInput?: "enable" | "disable" | undefined;
     /**
-     * Used to enable or disable EFS exclusion
+     * Specifies whether to exclude Elastic File System traffic from encryption enforcement.
      * @see {@link https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ec2-vpcencryptioncontrol.html#cfn-ec2-vpcencryptioncontrol-elasticfilesystemexclusioninput}
      */
     ElasticFileSystemExclusionInput?: "enable" | "disable" | undefined;
     /**
-     * Used to enable or disable IGW exclusion
+     * Specifies whether to exclude internet gateway traffic from encryption enforcement.
      * @see {@link https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ec2-vpcencryptioncontrol.html#cfn-ec2-vpcencryptioncontrol-internetgatewayexclusioninput}
      */
     InternetGatewayExclusionInput?: "enable" | "disable" | undefined;
     /**
-     * Used to enable or disable Lambda exclusion
+     * Specifies whether to exclude Lambda function traffic from encryption enforcement.
      * @see {@link https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ec2-vpcencryptioncontrol.html#cfn-ec2-vpcencryptioncontrol-lambdaexclusioninput}
      */
     LambdaExclusionInput?: "enable" | "disable" | undefined;
     /**
-     * The VPC encryption control mode, either monitor or enforce.
+     * The encryption mode for the VPC Encryption Control configuration.
      * @see {@link https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ec2-vpcencryptioncontrol.html#cfn-ec2-vpcencryptioncontrol-mode}
      */
     Mode?: "monitor" | "enforce" | undefined;
     /**
-     * Used to enable or disable Nat gateway exclusion
+     * Specifies whether to exclude NAT gateway traffic from encryption enforcement.
      * @see {@link https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ec2-vpcencryptioncontrol.html#cfn-ec2-vpcencryptioncontrol-natgatewayexclusioninput}
      */
     NatGatewayExclusionInput?: "enable" | "disable" | undefined;
     /**
-     * The tags to assign to the VPC encryption control.
+     * The tags assigned to the VPC Encryption Control configuration.
      * @see {@link https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ec2-vpcencryptioncontrol.html#cfn-ec2-vpcencryptioncontrol-tags}
      */
     Tags?: Tag[] | undefined;
     /**
-     * Used to enable or disable VGW exclusion
+     * Specifies whether to exclude virtual private gateway traffic from encryption enforcement.
      * @see {@link https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ec2-vpcencryptioncontrol.html#cfn-ec2-vpcencryptioncontrol-virtualprivategatewayexclusioninput}
      */
     VirtualPrivateGatewayExclusionInput?: "enable" | "disable" | undefined;
     /**
-     * The VPC on which this VPC encryption control is applied.
+     * The ID of the VPC for which to create the encryption control configuration.
      * @see {@link https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ec2-vpcencryptioncontrol.html#cfn-ec2-vpcencryptioncontrol-vpcid}
      */
     VpcId?: string | undefined;
     /**
-     * Used to enable or disable Vpc Lattice exclusion
+     * Specifies whether to exclude VPC Lattice traffic from encryption enforcement.
      * @see {@link https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ec2-vpcencryptioncontrol.html#cfn-ec2-vpcencryptioncontrol-vpclatticeexclusioninput}
      */
     VpcLatticeExclusionInput?: "enable" | "disable" | undefined;
     /**
-     * Used to enable or disable VPC peering exclusion
+     * Specifies whether to exclude VPC peering connection traffic from encryption enforcement.
      * @see {@link https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ec2-vpcencryptioncontrol.html#cfn-ec2-vpcencryptioncontrol-vpcpeeringexclusioninput}
      */
     VpcPeeringExclusionInput?: "enable" | "disable" | undefined;
@@ -68,81 +74,97 @@ export type EC2VPCEncryptionControlProps = {
  */
 export type EC2VPCEncryptionControlAttribs = {
     /**
+     * The current state of the exclusion configuration.
      * @see {@link https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-vpcencryptioncontrol-vpcencryptioncontrolexclusion.html#cfn-ec2-vpcencryptioncontrol-vpcencryptioncontrolexclusion-state}
      */
     "ResourceExclusions.EgressOnlyInternetGateway.State": string;
     /**
+     * A message providing additional information about the exclusion state.
      * @see {@link https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-vpcencryptioncontrol-vpcencryptioncontrolexclusion.html#cfn-ec2-vpcencryptioncontrol-vpcencryptioncontrolexclusion-statemessage}
      */
     "ResourceExclusions.EgressOnlyInternetGateway.StateMessage": string;
     /**
+     * The current state of the exclusion configuration.
      * @see {@link https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-vpcencryptioncontrol-vpcencryptioncontrolexclusion.html#cfn-ec2-vpcencryptioncontrol-vpcencryptioncontrolexclusion-state}
      */
     "ResourceExclusions.ElasticFileSystem.State": string;
     /**
+     * A message providing additional information about the exclusion state.
      * @see {@link https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-vpcencryptioncontrol-vpcencryptioncontrolexclusion.html#cfn-ec2-vpcencryptioncontrol-vpcencryptioncontrolexclusion-statemessage}
      */
     "ResourceExclusions.ElasticFileSystem.StateMessage": string;
     /**
+     * The current state of the exclusion configuration.
      * @see {@link https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-vpcencryptioncontrol-vpcencryptioncontrolexclusion.html#cfn-ec2-vpcencryptioncontrol-vpcencryptioncontrolexclusion-state}
      */
     "ResourceExclusions.InternetGateway.State": string;
     /**
+     * A message providing additional information about the exclusion state.
      * @see {@link https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-vpcencryptioncontrol-vpcencryptioncontrolexclusion.html#cfn-ec2-vpcencryptioncontrol-vpcencryptioncontrolexclusion-statemessage}
      */
     "ResourceExclusions.InternetGateway.StateMessage": string;
     /**
+     * The current state of the exclusion configuration.
      * @see {@link https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-vpcencryptioncontrol-vpcencryptioncontrolexclusion.html#cfn-ec2-vpcencryptioncontrol-vpcencryptioncontrolexclusion-state}
      */
     "ResourceExclusions.Lambda.State": string;
     /**
+     * A message providing additional information about the exclusion state.
      * @see {@link https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-vpcencryptioncontrol-vpcencryptioncontrolexclusion.html#cfn-ec2-vpcencryptioncontrol-vpcencryptioncontrolexclusion-statemessage}
      */
     "ResourceExclusions.Lambda.StateMessage": string;
     /**
+     * The current state of the exclusion configuration.
      * @see {@link https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-vpcencryptioncontrol-vpcencryptioncontrolexclusion.html#cfn-ec2-vpcencryptioncontrol-vpcencryptioncontrolexclusion-state}
      */
     "ResourceExclusions.NatGateway.State": string;
     /**
+     * A message providing additional information about the exclusion state.
      * @see {@link https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-vpcencryptioncontrol-vpcencryptioncontrolexclusion.html#cfn-ec2-vpcencryptioncontrol-vpcencryptioncontrolexclusion-statemessage}
      */
     "ResourceExclusions.NatGateway.StateMessage": string;
     /**
+     * The current state of the exclusion configuration.
      * @see {@link https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-vpcencryptioncontrol-vpcencryptioncontrolexclusion.html#cfn-ec2-vpcencryptioncontrol-vpcencryptioncontrolexclusion-state}
      */
     "ResourceExclusions.VirtualPrivateGateway.State": string;
     /**
+     * A message providing additional information about the exclusion state.
      * @see {@link https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-vpcencryptioncontrol-vpcencryptioncontrolexclusion.html#cfn-ec2-vpcencryptioncontrol-vpcencryptioncontrolexclusion-statemessage}
      */
     "ResourceExclusions.VirtualPrivateGateway.StateMessage": string;
     /**
+     * The current state of the exclusion configuration.
      * @see {@link https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-vpcencryptioncontrol-vpcencryptioncontrolexclusion.html#cfn-ec2-vpcencryptioncontrol-vpcencryptioncontrolexclusion-state}
      */
     "ResourceExclusions.VpcLattice.State": string;
     /**
+     * A message providing additional information about the exclusion state.
      * @see {@link https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-vpcencryptioncontrol-vpcencryptioncontrolexclusion.html#cfn-ec2-vpcencryptioncontrol-vpcencryptioncontrolexclusion-statemessage}
      */
     "ResourceExclusions.VpcLattice.StateMessage": string;
     /**
+     * The current state of the exclusion configuration.
      * @see {@link https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-vpcencryptioncontrol-vpcencryptioncontrolexclusion.html#cfn-ec2-vpcencryptioncontrol-vpcencryptioncontrolexclusion-state}
      */
     "ResourceExclusions.VpcPeering.State": string;
     /**
+     * A message providing additional information about the exclusion state.
      * @see {@link https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-vpcencryptioncontrol-vpcencryptioncontrolexclusion.html#cfn-ec2-vpcencryptioncontrol-vpcencryptioncontrolexclusion-statemessage}
      */
     "ResourceExclusions.VpcPeering.StateMessage": string;
     /**
-     * The current state of the VPC encryption control.
+     * The current state of the VPC Encryption Control configuration.
      * @see {@link https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ec2-vpcencryptioncontrol.html#cfn-ec2-vpcencryptioncontrol-state}
      */
     State: "creating" | "available" | "monitor-in-progress" | "enforce-in-progress" | "monitor-failed" | "enforce-failed" | "deleting" | "deleted" | "delete-failed";
     /**
-     * Provides additional context on the state of the VPC encryption control.
+     * A message providing additional information about the encryption control state.
      * @see {@link https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ec2-vpcencryptioncontrol.html#cfn-ec2-vpcencryptioncontrol-statemessage}
      */
     StateMessage: string;
     /**
-     * The VPC encryption control resource id.
+     * The ID of the VPC Encryption Control configuration.
      * @see {@link https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ec2-vpcencryptioncontrol.html#cfn-ec2-vpcencryptioncontrol-vpcencryptioncontrolid}
      */
     VpcEncryptionControlId: string;

package/out/exports/resources.generated/aws-ec2-vpnconnection.d.ts

@@ -151,14 +151,21 @@ export type EC2VPNConnectionAttribs = {
  */
 export type CloudwatchLogOptionsSpecification = {
     /**
+     * Specifies whether to enable BGP logging for the VPN connection. Default value is `False` .
+     *
+     * Valid values: `True` | `False`
      * @see {@link https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-vpnconnection-cloudwatchlogoptionsspecification.html#cfn-ec2-vpnconnection-cloudwatchlogoptionsspecification-bgplogenabled}
      */
     BgpLogEnabled?: boolean | undefined;
     /**
+     * The Amazon Resource Name (ARN) of the CloudWatch log group where BGP logs will be sent.
      * @see {@link https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-vpnconnection-cloudwatchlogoptionsspecification.html#cfn-ec2-vpnconnection-cloudwatchlogoptionsspecification-bgploggrouparn}
      */
     BgpLogGroupArn?: string | undefined;
     /**
+     * The desired output format for BGP logs to be sent to CloudWatch. Default format is `json` .
+     *
+     * Valid values: `json` | `text`
      * @see {@link https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-vpnconnection-cloudwatchlogoptionsspecification.html#cfn-ec2-vpnconnection-cloudwatchlogoptionsspecification-bgplogoutputformat}
      */
     BgpLogOutputFormat?: "json" | "text" | undefined;

package/out/exports/resources.generated/aws-ecr-pulltimeupdateexclusion.d.ts

@@ -1,13 +1,16 @@
 import type { ResourceDefinition } from "../main.ts";
 /**
+ * Resource Type definition for AWS::ECR::PullTimeUpdateExclusion controls the exclusion configuration for ecr image pull time update.
  * @see {@link https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ecr-pulltimeupdateexclusion.html}
  */
 export type ECRPullTimeUpdateExclusion = ResourceDefinition<"AWS::ECR::PullTimeUpdateExclusion", ECRPullTimeUpdateExclusionProps>;
 /**
+ * Resource Type definition for AWS::ECR::PullTimeUpdateExclusion controls the exclusion configuration for ecr image pull time update.
  * @see {@link https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ecr-pulltimeupdateexclusion.html}
  */
 export type ECRPullTimeUpdateExclusionProps = {
     /**
+     * The ARN of the IAM principal to remove from the pull time update exclusion list.
      * @see {@link https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ecr-pulltimeupdateexclusion.html#cfn-ecr-pulltimeupdateexclusion-principalarn}
      */
     PrincipalArn: string;

package/out/exports/resources.generated/aws-ecr-signingconfiguration.d.ts

@@ -1,14 +1,16 @@
 import type { ResourceDefinitionWithAttributes } from "../main.ts";
 /**
+ * The signing configuration for a registry, which specifies rules for automatically signing images when pushed.
  * @see {@link https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ecr-signingconfiguration.html}
  */
 export type ECRSigningConfiguration = ResourceDefinitionWithAttributes<"AWS::ECR::SigningConfiguration", ECRSigningConfigurationProps, ECRSigningConfigurationAttribs>;
 /**
+ * The signing configuration for a registry, which specifies rules for automatically signing images when pushed.
  * @see {@link https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ecr-signingconfiguration.html}
  */
 export type ECRSigningConfigurationProps = {
     /**
-     * Array of signing rules that define which repositories should be signed and with which signing profiles.
+     * A list of signing rules. Each rule defines a signing profile and optional repository filters that determine which images are automatically signed.
      * @see {@link https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ecr-signingconfiguration.html#cfn-ecr-signingconfiguration-rules}
      */
     Rules: Rule[];
@@ -18,7 +20,7 @@ export type ECRSigningConfigurationProps = {
  */
 export type ECRSigningConfigurationAttribs = {
     /**
-     * 12-digit AWS account ID of the ECR registry.
+     * The account ID of the destination registry.
      * @pattern ^[0-9]{12}$
      * @see {@link https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ecr-signingconfiguration.html#cfn-ecr-signingconfiguration-registryid}
      */
@@ -30,30 +32,39 @@ export type ECRSigningConfigurationAttribs = {
  */
 export type FilterType = "WILDCARD_MATCH";
 /**
- * An array of objects representing the details of a repository filter.
+ * A repository filter used to determine which repositories have their images automatically signed on push. Each filter consists of a filter type and filter value.
  * @see {@link https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ecr-signingconfiguration-repositoryfilter.html}
  */
 export type RepositoryFilter = {
     /**
+     * The filter value used to match repository names. When using `WILDCARD_MATCH` , the `*` character matches any sequence of characters.
+     *
+     * Examples:
+     *
+     * - `myapp/*` - Matches all repositories starting with `myapp/`
+     * - `*‍/production` - Matches all repositories ending with `/production`
+     * - `*prod*` - Matches all repositories containing `prod`
      * @see {@link https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ecr-signingconfiguration-repositoryfilter.html#cfn-ecr-signingconfiguration-repositoryfilter-filter}
      */
     Filter: string;
     /**
+     * The type of filter to apply. Currently, only `WILDCARD_MATCH` is supported, which uses wildcard patterns to match repository names.
      * @see {@link https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ecr-signingconfiguration-repositoryfilter.html#cfn-ecr-signingconfiguration-repositoryfilter-filtertype}
      */
     FilterType: FilterType;
 };
 /**
+ * A signing rule that specifies a signing profile and optional repository filters. When an image is pushed to a matching repository, a signing job is created using the specified profile.
  * @see {@link https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ecr-signingconfiguration-rule.html}
  */
 export type Rule = {
     /**
-     * Optional array of repository filters. If omitted, the rule matches all repositories. If provided, must contain at least one filter. Empty arrays are not allowed.
+     * A list of repository filters that determine which repositories have their images signed on push. If no filters are specified, all images pushed to the registry are signed using the rule's signing profile. Maximum of 100 filters per rule.
      * @see {@link https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ecr-signingconfiguration-rule.html#cfn-ecr-signingconfiguration-rule-repositoryfilters}
      */
     RepositoryFilters?: RepositoryFilter[] | undefined;
     /**
-     * AWS Signer signing profile ARN to use for matched repositories.
+     * The ARN of the AWS Signer signing profile to use for signing images that match this rule. For more information about signing profiles, see [Signing profiles](https://docs.aws.amazon.com/signer/latest/developerguide/signing-profiles.html) in the *AWS Signer Developer Guide* .
      * @maxLength 200
      * @pattern ^arn:aws(-[a-z]+)*:signer:[a-z0-9-]+:[0-9]{12}:\/signing-profiles\/[a-zA-Z0-9_]{2,}$
      * @see {@link https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ecr-signingconfiguration-rule.html#cfn-ecr-signingconfiguration-rule-signingprofilearn}

package/out/exports/resources.generated/aws-ecs-capacityprovider.d.ts

@@ -317,7 +317,7 @@ export type ManagedInstancesNetworkConfiguration = {
  */
 export type ManagedInstancesProvider = {
     /**
-     * Defines how Amazon ECS Managed Instances optimizes the infrastructure in your capacity provider. Configure it to turn on or off the infrastructure optimization in your capacity provider, and to control the idle EC2 instances optimization delay.
+     * Defines how Amazon ECS Managed Instances optimizes the infrastastructure in your capacity provider. Configure it to turn on or off the infrastructure optimization in your capacity provider, and to control the idle or underutilized EC2 instances optimization delay.
      * @see {@link https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ecs-capacityprovider-managedinstancesprovider.html#cfn-ecs-capacityprovider-managedinstancesprovider-infrastructureoptimization}
      */
     InfrastructureOptimization?: {

package/out/exports/resources.generated/aws-ecs-expressgatewayservice.d.ts

@@ -1,61 +1,83 @@
 import type { ResourceDefinitionWithAttributes, Tag } from "../main.ts";
 /**
+ * Creates an Express service that simplifies deploying containerized web applications on Amazon ECS with managed AWS infrastructure. This operation provisions and configures Application Load Balancers, target groups, security groups, and auto-scaling policies automatically.
+ *
+ * Specify a primary container configuration with your application image and basic settings. Amazon ECS creates the necessary AWS resources for traffic distribution, health monitoring, network access control, and capacity management.
+ *
+ * Provide an execution role for task operations and an infrastructure role for managing AWS resources on your behalf.
  * @see {@link https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ecs-expressgatewayservice.html}
  */
 export type ECSExpressGatewayService = ResourceDefinitionWithAttributes<"AWS::ECS::ExpressGatewayService", ECSExpressGatewayServiceProps, ECSExpressGatewayServiceAttribs>;
 /**
+ * Creates an Express service that simplifies deploying containerized web applications on Amazon ECS with managed AWS infrastructure. This operation provisions and configures Application Load Balancers, target groups, security groups, and auto-scaling policies automatically.
+ *
+ * Specify a primary container configuration with your application image and basic settings. Amazon ECS creates the necessary AWS resources for traffic distribution, health monitoring, network access control, and capacity management.
+ *
+ * Provide an execution role for task operations and an infrastructure role for managing AWS resources on your behalf.
  * @see {@link https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ecs-expressgatewayservice.html}
  */
 export type ECSExpressGatewayServiceProps = {
     /**
+     * The short name or full ARN of the cluster that hosts the Express service.
      * @default "default"
      * @see {@link https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ecs-expressgatewayservice.html#cfn-ecs-expressgatewayservice-cluster}
      */
     Cluster?: string | undefined;
     /**
+     * The CPU allocation for tasks in this service revision.
      * @default "256"
      * @see {@link https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ecs-expressgatewayservice.html#cfn-ecs-expressgatewayservice-cpu}
      */
     Cpu?: string | undefined;
     /**
+     * The ARN of the task execution role for the service revision.
      * @see {@link https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ecs-expressgatewayservice.html#cfn-ecs-expressgatewayservice-executionrolearn}
      */
     ExecutionRoleArn: string;
     /**
+     * The health check path for this service revision.
      * @default "HTTP:80/ping"
      * @see {@link https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ecs-expressgatewayservice.html#cfn-ecs-expressgatewayservice-healthcheckpath}
      */
     HealthCheckPath?: string | undefined;
     /**
+     * The ARN of the infrastructure role that manages AWS resources for the Express service.
      * @see {@link https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ecs-expressgatewayservice.html#cfn-ecs-expressgatewayservice-infrastructurerolearn}
      */
     InfrastructureRoleArn: string;
     /**
+     * The memory allocation for tasks in this service revision.
      * @default "512"
      * @see {@link https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ecs-expressgatewayservice.html#cfn-ecs-expressgatewayservice-memory}
      */
     Memory?: string | undefined;
     /**
+     * The network configuration for tasks in this service revision.
      * @see {@link https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ecs-expressgatewayservice.html#cfn-ecs-expressgatewayservice-networkconfiguration}
      */
     NetworkConfiguration?: ExpressGatewayServiceNetworkConfiguration | undefined;
     /**
+     * The primary container configuration for this service revision.
      * @see {@link https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ecs-expressgatewayservice.html#cfn-ecs-expressgatewayservice-primarycontainer}
      */
     PrimaryContainer: ExpressGatewayContainer;
     /**
+     * The auto-scaling configuration for this service revision.
      * @see {@link https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ecs-expressgatewayservice.html#cfn-ecs-expressgatewayservice-scalingtarget}
      */
     ScalingTarget?: ExpressGatewayScalingTarget | undefined;
     /**
+     * The name of the Express service.
      * @see {@link https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ecs-expressgatewayservice.html#cfn-ecs-expressgatewayservice-servicename}
      */
     ServiceName?: string | undefined;
     /**
+     * The metadata applied to the Express service.
      * @see {@link https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ecs-expressgatewayservice.html#cfn-ecs-expressgatewayservice-tags}
      */
     Tags?: Tag[] | undefined;
     /**
+     * The ARN of the task role for the service revision.
      * @see {@link https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ecs-expressgatewayservice.html#cfn-ecs-expressgatewayservice-taskrolearn}
      */
     TaskRoleArn?: string | undefined;
@@ -65,110 +87,140 @@ export type ECSExpressGatewayServiceProps = {
  */
 export type ECSExpressGatewayServiceAttribs = {
     /**
+     * The Unix timestamp for when the Express service was created.
      * @format date-time
      * @see {@link https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ecs-expressgatewayservice.html#cfn-ecs-expressgatewayservice-createdat}
      */
     CreatedAt: string;
     /**
+     * The ARN that identifies the Express service.
      * @see {@link https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ecs-expressgatewayservice.html#cfn-ecs-expressgatewayservice-servicearn}
      */
     ServiceArn: string;
     /**
+     * The Unix timestamp for when the Express service was last updated.
      * @format date-time
      * @see {@link https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ecs-expressgatewayservice.html#cfn-ecs-expressgatewayservice-updatedat}
      */
     UpdatedAt: string;
 };
 /**
+ * Defines the configuration for the primary container in an Express service. This container receives traffic from the Application Load Balancer and runs your application code.
+ *
+ * The container configuration includes the container image, port mapping, logging settings, environment variables, and secrets. The container image is the only required parameter, with sensible defaults provided for other settings.
  * @see {@link https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ecs-expressgatewayservice-expressgatewaycontainer.html}
  */
 export type ExpressGatewayContainer = {
     /**
+     * The log configuration for the container.
      * @see {@link https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ecs-expressgatewayservice-expressgatewaycontainer.html#cfn-ecs-expressgatewayservice-expressgatewaycontainer-awslogsconfiguration}
      */
     AwsLogsConfiguration?: ExpressGatewayServiceAwsLogsConfiguration | undefined;
     /**
+     * The command that is passed to the container.
      * @see {@link https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ecs-expressgatewayservice-expressgatewaycontainer.html#cfn-ecs-expressgatewayservice-expressgatewaycontainer-command}
      */
     Command?: string[] | undefined;
     /**
+     * The port number on the container that receives traffic from the load balancer. Default is 80.
      * @default 80
      * @see {@link https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ecs-expressgatewayservice-expressgatewaycontainer.html#cfn-ecs-expressgatewayservice-expressgatewaycontainer-containerport}
      */
     ContainerPort?: number | undefined;
     /**
+     * The environment variables to pass to the container.
      * @see {@link https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ecs-expressgatewayservice-expressgatewaycontainer.html#cfn-ecs-expressgatewayservice-expressgatewaycontainer-environment}
      */
     Environment?: KeyValuePair[] | undefined;
     /**
+     * The image used to start a container. This string is passed directly to the Docker daemon. Images in the Docker Hub registry are available by default. Other repositories are specified with either `repository-url/image:tag` or `repository-url/image@digest` .
+     *
+     * For Express services, the image typically contains a web application that listens on the specified container port. The image can be stored in Amazon ECR, Docker Hub, or any other container registry accessible to your execution role.
      * @see {@link https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ecs-expressgatewayservice-expressgatewaycontainer.html#cfn-ecs-expressgatewayservice-expressgatewaycontainer-image}
      */
     Image: string;
     /**
+     * The configuration for repository credentials for private registry authentication.
      * @see {@link https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ecs-expressgatewayservice-expressgatewaycontainer.html#cfn-ecs-expressgatewayservice-expressgatewaycontainer-repositorycredentials}
      */
     RepositoryCredentials?: ExpressGatewayRepositoryCredentials | undefined;
     /**
+     * The secrets to pass to the container.
      * @see {@link https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ecs-expressgatewayservice-expressgatewaycontainer.html#cfn-ecs-expressgatewayservice-expressgatewaycontainer-secrets}
      */
     Secrets?: Secret[] | undefined;
 };
 /**
+ * The repository credentials for private registry authentication to pass to the container.
  * @see {@link https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ecs-expressgatewayservice-expressgatewayrepositorycredentials.html}
  */
 export type ExpressGatewayRepositoryCredentials = {
     /**
+     * The Amazon Resource Name (ARN) of the secret containing the private repository credentials.
      * @see {@link https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ecs-expressgatewayservice-expressgatewayrepositorycredentials.html#cfn-ecs-expressgatewayservice-expressgatewayrepositorycredentials-credentialsparameter}
      */
     CredentialsParameter: string;
 };
 /**
+ * Defines the auto-scaling configuration for an Express service. This determines how the service automatically adjusts the number of running tasks based on demand metrics such as CPU utilization, memory utilization, or request count per target.
+ *
+ * Auto-scaling helps ensure your application can handle varying levels of traffic while optimizing costs by scaling down during low-demand periods. You can specify the minimum and maximum number of tasks, the scaling metric, and the target value for that metric.
  * @see {@link https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ecs-expressgatewayservice-expressgatewayscalingtarget.html}
  */
 export type ExpressGatewayScalingTarget = {
     /**
+     * The metric used for auto-scaling decisions. The default metric used for an Express service is `CPUUtilization` .
      * @see {@link https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ecs-expressgatewayservice-expressgatewayscalingtarget.html#cfn-ecs-expressgatewayservice-expressgatewayscalingtarget-autoscalingmetric}
      */
     AutoScalingMetric?: ExpressGatewayServiceScalingMetric | undefined;
     /**
+     * The target value for the auto-scaling metric. The default value for an Express service is 60.
      * @default 60
      * @see {@link https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ecs-expressgatewayservice-expressgatewayscalingtarget.html#cfn-ecs-expressgatewayservice-expressgatewayscalingtarget-autoscalingtargetvalue}
      */
     AutoScalingTargetValue?: number | undefined;
     /**
+     * The maximum number of tasks to run in the Express service.
      * @default 1
      * @see {@link https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ecs-expressgatewayservice-expressgatewayscalingtarget.html#cfn-ecs-expressgatewayservice-expressgatewayscalingtarget-maxtaskcount}
      */
     MaxTaskCount?: number | undefined;
     /**
+     * The minimum number of tasks to run in the Express service.
      * @default 1
      * @see {@link https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ecs-expressgatewayservice-expressgatewayscalingtarget.html#cfn-ecs-expressgatewayservice-expressgatewayscalingtarget-mintaskcount}
      */
     MinTaskCount?: number | undefined;
 };
 /**
+ * Specifies the Amazon CloudWatch Logs configuration for the Express service container.
  * @see {@link https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ecs-expressgatewayservice-expressgatewayserviceawslogsconfiguration.html}
  */
 export type ExpressGatewayServiceAwsLogsConfiguration = {
     /**
+     * The name of the CloudWatch Logs log group to send container logs to.
      * @see {@link https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ecs-expressgatewayservice-expressgatewayserviceawslogsconfiguration.html#cfn-ecs-expressgatewayservice-expressgatewayserviceawslogsconfiguration-loggroup}
      */
     LogGroup: string;
     /**
+     * The prefix for the CloudWatch Logs log stream names. The default for an Express service is `ecs` .
      * @default "ecs"
      * @see {@link https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ecs-expressgatewayservice-expressgatewayserviceawslogsconfiguration.html#cfn-ecs-expressgatewayservice-expressgatewayserviceawslogsconfiguration-logstreamprefix}
      */
     LogStreamPrefix: string;
 };
 /**
+ * The network configuration for an Express service. By default, an Express service utilizes subnets and security groups associated with the default VPC.
  * @see {@link https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ecs-expressgatewayservice-expressgatewayservicenetworkconfiguration.html}
  */
 export type ExpressGatewayServiceNetworkConfiguration = {
     /**
+     * The IDs of the security groups associated with the Express service.
      * @see {@link https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ecs-expressgatewayservice-expressgatewayservicenetworkconfiguration.html#cfn-ecs-expressgatewayservice-expressgatewayservicenetworkconfiguration-securitygroups}
      */
     SecurityGroups?: string[] | undefined;
     /**
+     * The IDs of the subnets associated with the Express service.
      * @see {@link https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ecs-expressgatewayservice-expressgatewayservicenetworkconfiguration.html#cfn-ecs-expressgatewayservice-expressgatewayservicenetworkconfiguration-subnets}
      */
     Subnets?: string[] | undefined;
@@ -179,27 +231,42 @@ export type ExpressGatewayServiceNetworkConfiguration = {
  */
 export type ExpressGatewayServiceScalingMetric = "AVERAGE_CPU" | "AVERAGE_MEMORY" | "REQUEST_COUNT_PER_TARGET";
 /**
+ * A key-value pair object.
  * @see {@link https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ecs-expressgatewayservice-keyvaluepair.html}
  */
 export type KeyValuePair = {
     /**
+     * The name of the key-value pair. For environment variables, this is the name of the environment variable.
      * @see {@link https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ecs-expressgatewayservice-keyvaluepair.html#cfn-ecs-expressgatewayservice-keyvaluepair-name}
      */
     Name: string;
     /**
+     * The value of the key-value pair. For environment variables, this is the value of the environment variable.
      * @see {@link https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ecs-expressgatewayservice-keyvaluepair.html#cfn-ecs-expressgatewayservice-keyvaluepair-value}
      */
     Value: string;
 };
 /**
+ * An object representing the secret to expose to your container. Secrets can be exposed to a container in the following ways:
+ *
+ * - To inject sensitive data into your containers as environment variables, use the `secrets` container definition parameter.
+ * - To reference sensitive information in the log configuration of a container, use the `secretOptions` container definition parameter.
+ *
+ * For more information, see [Specifying sensitive data](https://docs.aws.amazon.com/AmazonECS/latest/developerguide/specifying-sensitive-data.html) in the *Amazon Elastic Container Service Developer Guide* .
  * @see {@link https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ecs-expressgatewayservice-secret.html}
  */
 export type Secret = {
     /**
+     * The name of the secret.
      * @see {@link https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ecs-expressgatewayservice-secret.html#cfn-ecs-expressgatewayservice-secret-name}
      */
     Name: string;
     /**
+     * The secret to expose to the container. The supported values are either the full ARN of the AWS Secrets Manager secret or the full ARN of the parameter in the SSM Parameter Store.
+     *
+     * For information about the require AWS Identity and Access Management permissions, see [Required IAM permissions for Amazon ECS secrets](https://docs.aws.amazon.com/AmazonECS/latest/developerguide/specifying-sensitive-data-secrets.html#secrets-iam) (for Secrets Manager) or [Required IAM permissions for Amazon ECS secrets](https://docs.aws.amazon.com/AmazonECS/latest/developerguide/specifying-sensitive-data-parameters.html) (for Systems Manager Parameter store) in the *Amazon Elastic Container Service Developer Guide* .
+     *
+     * > If the SSM Parameter Store parameter exists in the same Region as the task you're launching, then you can use either the full ARN or name of the parameter. If the parameter exists in a different Region, then the full ARN must be specified.
      * @see {@link https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ecs-expressgatewayservice-secret.html#cfn-ecs-expressgatewayservice-secret-valuefrom}
      */
     ValueFrom: string;

package/out/exports/resources.generated/aws-ecs-service.d.ts

@@ -560,6 +560,8 @@ export type DeploymentConfiguration = {
      *
      * - `ROLLING` - When you create a service which uses the rolling update ( `ROLLING` ) deployment strategy, the Amazon ECS service scheduler replaces the currently running tasks with new tasks. The number of tasks that Amazon ECS adds or removes from the service during a rolling update is controlled by the service deployment configuration.
      * - `BLUE_GREEN` - A blue/green deployment strategy ( `BLUE_GREEN` ) is a release methodology that reduces downtime and risk by running two identical production environments called blue and green. With Amazon ECS blue/green deployments, you can validate new service revisions before directing production traffic to them. This approach provides a safer way to deploy changes with the ability to quickly roll back if needed.
+     * - `LINEAR` - A *linear* deployment strategy ( `LINEAR` ) gradually shifts traffic from the current production environment to a new environment in equal percentages over time. With Amazon ECS linear deployments, you can control the pace of traffic shifting and validate new service revisions with increasing amounts of production traffic.
+     * - `CANARY` - A *canary* deployment strategy ( `CANARY` ) shifts a small percentage of traffic to the new service revision first, then shifts the remaining traffic all at once after a specified time period. This allows you to test the new version with a subset of users before full deployment.
      * @see {@link https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ecs-service-deploymentconfiguration.html#cfn-ecs-service-deploymentconfiguration-strategy}
      */
     Strategy?: "ROLLING" | "BLUE_GREEN" | "LINEAR" | "CANARY" | undefined;