@pulumi/aws-native 1.28.0-alpha.1747200851 → 1.28.0-alpha.1747224599

package/types/output.d.ts

@@ -2174,6 +2174,28 @@ export declare namespace apigatewayv2 {
          */
         required: boolean;
     }
+    interface RoutingRuleAction {
+        invokeApi: outputs.apigatewayv2.RoutingRuleActionInvokeApi;
+    }
+    interface RoutingRuleActionInvokeApi {
+        apiId: string;
+        stage: string;
+        stripBasePath?: boolean;
+    }
+    interface RoutingRuleCondition {
+        matchBasePaths?: outputs.apigatewayv2.RoutingRuleMatchBasePaths;
+        matchHeaders?: outputs.apigatewayv2.RoutingRuleMatchHeaders;
+    }
+    interface RoutingRuleMatchBasePaths {
+        anyOf: string[];
+    }
+    interface RoutingRuleMatchHeaderValue {
+        header: string;
+        valueGlob: string;
+    }
+    interface RoutingRuleMatchHeaders {
+        anyOf: outputs.apigatewayv2.RoutingRuleMatchHeaderValue[];
+    }
 }
 export declare namespace appconfig {
     /**
@@ -7686,6 +7708,14 @@ export declare namespace backup {
          * Enables continuous backup and point-in-time restores (PITR).
          */
         enableContinuousBackup?: boolean;
+        /**
+         * There can up to one IndexAction in each BackupRule, as each backup can have 0 or 1 backup index associated with it.
+         *
+         * Within the array is ResourceTypes. Only 1 resource type will be accepted for each BackupRule. Valid values:
+         *
+         * - `EBS` for Amazon Elastic Block Store
+         * - `S3` for Amazon Simple Storage Service (Amazon S3)
+         */
         indexActions?: outputs.backup.BackupPlanIndexActionsResourceType[];
         /**
          * The lifecycle defines when a protected resource is transitioned to cold storage and when it expires. AWS Backup transitions and expires backups automatically according to the lifecycle that you define.
@@ -7733,15 +7763,23 @@ export declare namespace backup {
         lifecycle?: outputs.backup.BackupPlanLifecycleResourceType;
     }
     interface BackupPlanIndexActionsResourceType {
+        /**
+         * 0 or 1 index action will be accepted for each BackupRule.
+         *
+         * Valid values:
+         *
+         * - `EBS` for Amazon Elastic Block Store
+         * - `S3` for Amazon Simple Storage Service (Amazon S3)
+         */
         resourceTypes?: string[];
     }
     interface BackupPlanLifecycleResourceType {
         /**
-         * Specifies the number of days after creation that a recovery point is deleted. Must be greater than `MoveToColdStorageAfterDays` .
+         * The number of days after creation that a recovery point is deleted. This value must be at least 90 days after the number of days specified in `MoveToColdStorageAfterDays` .
          */
         deleteAfterDays?: number;
         /**
-         * Specifies the number of days after creation that a recovery point is moved to cold storage.
+         * The number of days after creation that a recovery point is moved to cold storage.
          */
         moveToColdStorageAfterDays?: number;
         /**
@@ -12021,6 +12059,9 @@ export declare namespace bedrock {
      * Represents the criteria used for routing requests.
      */
     interface IntelligentPromptRouterRoutingCriteria {
+        /**
+         * The criteria's response quality difference.
+         */
         responseQualityDifference: number;
     }
     /**
@@ -16123,6 +16164,11 @@ export declare namespace cloudfront {
          * The origin protocol policy for the CloudFront VPC origin endpoint configuration.
          */
         originProtocolPolicy?: string;
+        /**
+         * Specifies the minimum SSL/TLS protocol that CloudFront uses when connecting to your origin over HTTPS. Valid values include `SSLv3` , `TLSv1` , `TLSv1.1` , and `TLSv1.2` .
+         *
+         * For more information, see [Minimum Origin SSL Protocol](https://docs.aws.amazon.com/AmazonCloudFront/latest/DeveloperGuide/distribution-web-values-specify.html#DownloadDistValuesOriginSSLProtocols) in the *Amazon CloudFront Developer Guide* .
+         */
         originSslProtocols?: string[];
     }
 }
@@ -16506,6 +16552,10 @@ export declare namespace codebuild {
          * The amount of disk space of the instance type included in your fleet.
          */
         disk?: number;
+        /**
+         * The EC2 instance type to be launched in your fleet.
+         */
+        instanceType?: string;
         /**
          * The machine type of the instance type included in your fleet.
          */
@@ -18424,8 +18474,8 @@ export declare namespace connect {
         minValue: number;
         /**
          * The score assigned to answer values within the range option.
-         *   *Minimum*: 0
-         *   *Maximum*: 10
+         *  *Minimum*: 0
+         *  *Maximum*: 10
          */
         score?: number;
     }
@@ -18465,7 +18515,7 @@ export declare namespace connect {
     interface EvaluationFormQuestion {
         /**
          * The instructions of the section.
-         *   *Length Constraints*: Minimum length of 0. Maximum length of 1024.
+         *  *Length Constraints*: Minimum length of 0. Maximum length of 1024.
          */
         instructions?: string;
         /**
@@ -18474,7 +18524,7 @@ export declare namespace connect {
         notApplicableEnabled?: boolean;
         /**
          * The type of the question.
-         *   *Allowed values*: ``NUMERIC`` | ``SINGLESELECT`` | ``TEXT``
+         *  *Allowed values*: ``NUMERIC`` | ``SINGLESELECT`` | ``TEXT``
          */
         questionType: enums.connect.EvaluationFormQuestionQuestionType;
         /**
@@ -18483,18 +18533,18 @@ export declare namespace connect {
         questionTypeProperties?: outputs.connect.EvaluationFormQuestionTypeProperties;
         /**
          * The identifier of the question. An identifier must be unique within the evaluation form.
-         *   *Length Constraints*: Minimum length of 1. Maximum length of 40.
+         *  *Length Constraints*: Minimum length of 1. Maximum length of 40.
          */
         refId: string;
         /**
          * The title of the question.
-         *   *Length Constraints*: Minimum length of 1. Maximum length of 350.
+         *  *Length Constraints*: Minimum length of 1. Maximum length of 350.
          */
         title: string;
         /**
          * The scoring weight of the section.
-         *   *Minimum*: 0
-         *   *Maximum*: 100
+         *  *Minimum*: 0
+         *  *Maximum*: 100
          */
         weight?: number;
     }
@@ -18517,12 +18567,12 @@ export declare namespace connect {
     interface EvaluationFormScoringStrategy {
         /**
          * The scoring mode of the evaluation form.
-         *   *Allowed values*: ``QUESTION_ONLY`` | ``SECTION_ONLY``
+         *  *Allowed values*: ``QUESTION_ONLY`` | ``SECTION_ONLY``
          */
         mode: enums.connect.EvaluationFormScoringStrategyMode;
         /**
          * The scoring status of the evaluation form.
-         *   *Allowed values*: ``ENABLED`` | ``DISABLED``
+         *  *Allowed values*: ``ENABLED`` | ``DISABLED``
          */
         status: enums.connect.EvaluationFormScoringStrategyStatus;
     }
@@ -18536,23 +18586,23 @@ export declare namespace connect {
         instructions?: string;
         /**
          * The items of the section.
-         *   *Minimum*: 1
+         *  *Minimum*: 1
          */
         items?: outputs.connect.EvaluationFormItem[];
         /**
          * The identifier of the section. An identifier must be unique within the evaluation form.
-         *   *Length Constraints*: Minimum length of 1. Maximum length of 40.
+         *  *Length Constraints*: Minimum length of 1. Maximum length of 40.
          */
         refId: string;
         /**
          * The title of the section.
-         *   *Length Constraints*: Minimum length of 1. Maximum length of 128.
+         *  *Length Constraints*: Minimum length of 1. Maximum length of 128.
          */
         title: string;
         /**
          * The scoring weight of the section.
-         *   *Minimum*: 0
-         *   *Maximum*: 100
+         *  *Minimum*: 0
+         *  *Maximum*: 100
          */
         weight?: number;
     }
@@ -18562,13 +18612,13 @@ export declare namespace connect {
     interface EvaluationFormSingleSelectQuestionAutomation {
         /**
          * The identifier of the default answer option, when none of the automation options match the criteria.
-         *   *Length Constraints*: Minimum length of 1. Maximum length of 40.
+         *  *Length Constraints*: Minimum length of 1. Maximum length of 40.
          */
         defaultOptionRefId?: string;
         /**
          * The automation options of the single select question.
-         *   *Minimum*: 1
-         *   *Maximum*: 20
+         *  *Minimum*: 1
+         *  *Maximum*: 20
          */
         options: outputs.connect.EvaluationFormSingleSelectQuestionAutomationOption[];
     }
@@ -18591,18 +18641,18 @@ export declare namespace connect {
         automaticFail?: boolean;
         /**
          * The identifier of the answer option. An identifier must be unique within the question.
-         *   *Length Constraints*: Minimum length of 1. Maximum length of 40.
+         *  *Length Constraints*: Minimum length of 1. Maximum length of 40.
          */
         refId: string;
         /**
          * The score assigned to the answer option.
-         *   *Minimum*: 0
-         *   *Maximum*: 10
+         *  *Minimum*: 0
+         *  *Maximum*: 10
          */
         score?: number;
         /**
          * The title of the answer option.
-         *   *Length Constraints*: Minimum length of 1. Maximum length of 128.
+         *  *Length Constraints*: Minimum length of 1. Maximum length of 128.
          */
         text: string;
     }
@@ -18616,36 +18666,36 @@ export declare namespace connect {
         automation?: outputs.connect.EvaluationFormSingleSelectQuestionAutomation;
         /**
          * The display mode of the single select question.
-         *   *Allowed values*: ``DROPDOWN`` | ``RADIO``
+         *  *Allowed values*: ``DROPDOWN`` | ``RADIO``
          */
         displayAs?: enums.connect.EvaluationFormSingleSelectQuestionPropertiesDisplayAs;
         /**
          * The answer options of the single select question.
-         *   *Minimum*: 2
-         *   *Maximum*: 256
+         *  *Minimum*: 2
+         *  *Maximum*: 256
          */
         options: outputs.connect.EvaluationFormSingleSelectQuestionOption[];
     }
     /**
      * Information about the automation option based on a rule category for a single select question.
-     *   *Length Constraints*: Minimum length of 1. Maximum length of 50.
+     *  *Length Constraints*: Minimum length of 1. Maximum length of 50.
      */
     interface EvaluationFormSingleSelectQuestionRuleCategoryAutomation {
         /**
          * The category name, as defined in Rules.
-         *   *Minimum*: 1
-         *   *Maximum*: 50
+         *  *Minimum*: 1
+         *  *Maximum*: 50
          */
         category: string;
         /**
          * The condition to apply for the automation option. If the condition is PRESENT, then the option is applied when the contact data includes the category. Similarly, if the condition is NOT_PRESENT, then the option is applied when the contact data does not include the category.
-         *   *Allowed values*: ``PRESENT`` | ``NOT_PRESENT``
-         *   *Maximum*: 50
+         *  *Allowed values*: ``PRESENT`` | ``NOT_PRESENT``
+         *  *Maximum*: 50
          */
         condition: enums.connect.EvaluationFormSingleSelectQuestionRuleCategoryAutomationCondition;
         /**
          * The identifier of the answer option. An identifier must be unique within the question.
-         *   *Length Constraints*: Minimum length of 1. Maximum length of 40.
+         *  *Length Constraints*: Minimum length of 1. Maximum length of 40.
          */
         optionRefId: string;
     }
@@ -22251,6 +22301,9 @@ export declare namespace datazone {
      * The single-sign on configuration of the Amazon DataZone domain.
      */
     interface DomainSingleSignOn {
+        /**
+         * The ARN of the IDC instance.
+         */
         idcInstanceArn?: string;
         /**
          * The type of single sign-on in Amazon DataZone.
@@ -24833,7 +24886,7 @@ export declare namespace ec2 {
     }
     /**
      * Specifies a block device mapping for a launch template. You must specify ``DeviceName`` plus exactly one of the following properties: ``Ebs``, ``NoDevice``, or ``VirtualName``.
-     *   ``BlockDeviceMapping`` is a property of [AWS::EC2::LaunchTemplate LaunchTemplateData](https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-launchtemplate-launchtemplatedata.html).
+     *  ``BlockDeviceMapping`` is a property of [AWS::EC2::LaunchTemplate LaunchTemplateData](https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-launchtemplate-launchtemplatedata.html).
      */
     interface LaunchTemplateBlockDeviceMapping {
         /**
@@ -24855,14 +24908,14 @@ export declare namespace ec2 {
     }
     /**
      * Specifies an instance's Capacity Reservation targeting option. You can specify only one option at a time.
-     *   ``CapacityReservationSpecification`` is a property of [AWS::EC2::LaunchTemplate LaunchTemplateData](https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-launchtemplate-launchtemplatedata.html).
+     *  ``CapacityReservationSpecification`` is a property of [AWS::EC2::LaunchTemplate LaunchTemplateData](https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-launchtemplate-launchtemplatedata.html).
      */
     interface LaunchTemplateCapacityReservationSpecification {
         /**
          * Indicates the instance's Capacity Reservation preferences. Possible preferences include:
-         *   +   ``capacity-reservations-only`` - The instance will only run in a Capacity Reservation or Capacity Reservation group. If capacity isn't available, the instance will fail to launch.
-         *   +   ``open`` - The instance can run in any ``open`` Capacity Reservation that has matching attributes (instance type, platform, Availability Zone, tenancy).
-         *   +   ``none`` - The instance avoids running in a Capacity Reservation even if one is available. The instance runs in On-Demand capacity.
+         *   +  ``capacity-reservations-only`` - The instance will only run in a Capacity Reservation or Capacity Reservation group. If capacity isn't available, the instance will fail to launch.
+         *   +  ``open`` - The instance can run in any ``open`` Capacity Reservation that has matching attributes (instance type, platform, Availability Zone, tenancy).
+         *   +  ``none`` - The instance avoids running in a Capacity Reservation even if one is available. The instance runs in On-Demand capacity.
          */
         capacityReservationPreference?: string;
         /**
@@ -24872,7 +24925,7 @@ export declare namespace ec2 {
     }
     /**
      * Specifies a target Capacity Reservation.
-     *   ``CapacityReservationTarget`` is a property of the [Amazon EC2 LaunchTemplate LaunchTemplateData](https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-launchtemplate-launchtemplatedata.html) property type.
+     *  ``CapacityReservationTarget`` is a property of the [Amazon EC2 LaunchTemplate LaunchTemplateData](https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-launchtemplate-launchtemplatedata.html) property type.
      */
     interface LaunchTemplateCapacityReservationTarget {
         /**
@@ -24912,7 +24965,7 @@ export declare namespace ec2 {
     }
     /**
      * Specifies the CPU options for an instance. For more information, see [Optimize CPU options](https://docs.aws.amazon.com/AWSEC2/latest/UserGuide/instance-optimize-cpu.html) in the *User Guide*.
-     *   ``CpuOptions`` is a property of [AWS::EC2::LaunchTemplate LaunchTemplateData](https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-launchtemplate-launchtemplatedata.html).
+     *  ``CpuOptions`` is a property of [AWS::EC2::LaunchTemplate LaunchTemplateData](https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-launchtemplate-launchtemplatedata.html).
      */
     interface LaunchTemplateCpuOptions {
         /**
@@ -24930,7 +24983,7 @@ export declare namespace ec2 {
     }
     /**
      * Specifies the credit option for CPU usage of a T2, T3, or T3a instance.
-     *   ``CreditSpecification`` is a property of [AWS::EC2::LaunchTemplate LaunchTemplateData](https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-launchtemplate-launchtemplatedata.html).
+     *  ``CreditSpecification`` is a property of [AWS::EC2::LaunchTemplate LaunchTemplateData](https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-launchtemplate-launchtemplatedata.html).
      */
     interface LaunchTemplateCreditSpecification {
         /**
@@ -25021,11 +25074,11 @@ export declare namespace ec2 {
          *  You must specify ``VCpuCount`` and ``MemoryMiB``. All other attributes are optional. Any unspecified optional attribute is set to its default.
          *  When you specify multiple attributes, you get instance types that satisfy all of the specified attributes. If you specify multiple values for an attribute, you get instance types that satisfy any of the specified values.
          *  To limit the list of instance types from which Amazon EC2 can identify matching instance types, you can use one of the following parameters, but not both in the same request:
-         *   +   ``AllowedInstanceTypes`` - The instance types to include in the list. All other instance types are ignored, even if they match your specified attributes.
-         *   +   ``ExcludedInstanceTypes`` - The instance types to exclude from the list, even if they match your specified attributes.
+         *   +  ``AllowedInstanceTypes`` - The instance types to include in the list. All other instance types are ignored, even if they match your specified attributes.
+         *   +  ``ExcludedInstanceTypes`` - The instance types to exclude from the list, even if they match your specified attributes.
          *
          *   If you specify ``InstanceRequirements``, you can't specify ``InstanceType``.
-         *  Attribute-based instance type selection is only supported when using Auto Scaling groups, EC2 Fleet, and Spot Fleet to launch instances. If you plan to use the launch template in the [launch instance wizard](https://docs.aws.amazon.com/AWSEC2/latest/UserGuide/ec2-launch-instance-wizard.html), or with the [RunInstances](https://docs.aws.amazon.com/AWSEC2/latest/APIReference/API_RunInstances.html) API or [AWS::EC2::Instance](https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-instance.html) AWS CloudFormation resource, you can't specify ``InstanceRequirements``.
+         *  Attribute-based instance type selection is only supported when using Auto Scaling groups, EC2 Fleet, and Spot Fleet to launch instances. If you plan to use the launch template in the [launch instance wizard](https://docs.aws.amazon.com/AWSEC2/latest/UserGuide/ec2-launch-instance-wizard.html), or with the [RunInstances](https://docs.aws.amazon.com/AWSEC2/latest/APIReference/API_RunInstances.html) API or [AWS::EC2::Instance](https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-instance.html)AWS CloudFormation resource, you can't specify ``InstanceRequirements``.
          *   For more information, see [Specify attributes for instance type selection for EC2 Fleet or Spot Fleet](https://docs.aws.amazon.com/AWSEC2/latest/UserGuide/ec2-fleet-attribute-based-instance-type-selection.html) and [Spot placement score](https://docs.aws.amazon.com/AWSEC2/latest/UserGuide/spot-placement-score.html) in the *Amazon EC2 User Guide*.
          */
         instanceRequirements?: outputs.ec2.LaunchTemplateInstanceRequirements;
@@ -25104,7 +25157,7 @@ export declare namespace ec2 {
     }
     /**
      * Parameters for a block device for an EBS volume in an Amazon EC2 launch template.
-     *   ``Ebs`` is a property of [AWS::EC2::LaunchTemplate BlockDeviceMapping](https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-launchtemplate-blockdevicemapping.html).
+     *  ``Ebs`` is a property of [AWS::EC2::LaunchTemplate BlockDeviceMapping](https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-launchtemplate-blockdevicemapping.html).
      */
     interface LaunchTemplateEbs {
         /**
@@ -25118,9 +25171,9 @@ export declare namespace ec2 {
         /**
          * The number of I/O operations per second (IOPS). For ``gp3``, ``io1``, and ``io2`` volumes, this represents the number of IOPS that are provisioned for the volume. For ``gp2`` volumes, this represents the baseline performance of the volume and the rate at which the volume accumulates I/O credits for bursting.
          *  The following are the supported values for each volume type:
-         *   +   ``gp3``: 3,000 - 16,000 IOPS
-         *   +   ``io1``: 100 - 64,000 IOPS
-         *   +   ``io2``: 100 - 256,000 IOPS
+         *   +  ``gp3``: 3,000 - 16,000 IOPS
+         *   +  ``io1``: 100 - 64,000 IOPS
+         *   +  ``io2``: 100 - 256,000 IOPS
          *
          *  For ``io2`` volumes, you can achieve up to 256,000 IOPS on [instances built on the Nitro System](https://docs.aws.amazon.com/ec2/latest/instancetypes/ec2-nitro-instances.html). On other instances, you can achieve performance up to 32,000 IOPS.
          *  This parameter is supported for ``io1``, ``io2``, and ``gp3`` volumes only.
@@ -25139,13 +25192,14 @@ export declare namespace ec2 {
          *  Valid Range: Minimum value of 125. Maximum value of 1000.
          */
         throughput?: number;
+        volumeInitializationRate?: number;
         /**
          * The size of the volume, in GiBs. You must specify either a snapshot ID or a volume size. The following are the supported volumes sizes for each volume type:
-         *   +   ``gp2`` and ``gp3``: 1 - 16,384 GiB
-         *   +   ``io1``: 4 - 16,384 GiB
-         *   +   ``io2``: 4 - 65,536 GiB
-         *   +   ``st1`` and ``sc1``: 125 - 16,384 GiB
-         *   +   ``standard``: 1 - 1024 GiB
+         *   +  ``gp2`` and ``gp3``: 1 - 16,384 GiB
+         *   +  ``io1``: 4 - 16,384 GiB
+         *   +  ``io2``: 4 - 65,536 GiB
+         *   +  ``st1`` and ``sc1``: 125 - 16,384 GiB
+         *   +  ``standard``: 1 - 1024 GiB
          */
         volumeSize?: number;
         /**
@@ -25156,7 +25210,7 @@ export declare namespace ec2 {
     /**
      * Amazon Elastic Graphics reached end of life on January 8, 2024.
      *   Specifies a specification for an Elastic GPU for an Amazon EC2 launch template.
-     *   ``ElasticGpuSpecification`` is a property of [AWS::EC2::LaunchTemplate LaunchTemplateData](https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-launchtemplate-launchtemplatedata.html).
+     *  ``ElasticGpuSpecification`` is a property of [AWS::EC2::LaunchTemplate LaunchTemplateData](https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-launchtemplate-launchtemplatedata.html).
      */
     interface LaunchTemplateElasticGpuSpecification {
         /**
@@ -25167,7 +25221,7 @@ export declare namespace ec2 {
     /**
      * Amazon Elastic Inference is no longer available.
      *   Specifies an elastic inference accelerator.
-     *   ``LaunchTemplateElasticInferenceAccelerator`` is a property of [AWS::EC2::LaunchTemplate LaunchTemplateData](https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-launchtemplate-launchtemplatedata.html).
+     *  ``LaunchTemplateElasticInferenceAccelerator`` is a property of [AWS::EC2::LaunchTemplate LaunchTemplateData](https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-launchtemplate-launchtemplatedata.html).
      */
     interface LaunchTemplateElasticInferenceAccelerator {
         /**
@@ -25214,7 +25268,7 @@ export declare namespace ec2 {
     }
     /**
      * Specifies whether your instance is configured for hibernation. This parameter is valid only if the instance meets the [hibernation prerequisites](https://docs.aws.amazon.com/AWSEC2/latest/UserGuide/Hibernate.html#hibernating-prerequisites). For more information, see [Hibernate Your Instance](https://docs.aws.amazon.com/AWSEC2/latest/UserGuide/Hibernate.html) in the *Amazon EC2 User Guide*.
-     *   ``HibernationOptions`` is a property of [AWS::EC2::LaunchTemplate LaunchTemplateData](https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-launchtemplate-launchtemplatedata.html).
+     *  ``HibernationOptions`` is a property of [AWS::EC2::LaunchTemplate LaunchTemplateData](https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-launchtemplate-launchtemplatedata.html).
      */
     interface LaunchTemplateHibernationOptions {
         /**
@@ -25226,7 +25280,7 @@ export declare namespace ec2 {
     /**
      * Specifies an IAM instance profile, which is a container for an IAM role for your instance. You can use an IAM role to distribute your AWS credentials to your instances.
      *  If you are creating the launch template for use with an ASlong group, you can specify either the name or the ARN of the instance profile, but not both.
-     *   ``IamInstanceProfile`` is a property of [AWS::EC2::LaunchTemplate LaunchTemplateData](https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-launchtemplate-launchtemplatedata.html).
+     *  ``IamInstanceProfile`` is a property of [AWS::EC2::LaunchTemplate LaunchTemplateData](https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-launchtemplate-launchtemplatedata.html).
      */
     interface LaunchTemplateIamInstanceProfile {
         /**
@@ -25240,7 +25294,7 @@ export declare namespace ec2 {
     }
     /**
      * Specifies the market (purchasing) option for an instance.
-     *   ``InstanceMarketOptions`` is a property of the [AWS::EC2::LaunchTemplate LaunchTemplateData](https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-launchtemplate-launchtemplatedata.html).
+     *  ``InstanceMarketOptions`` is a property of the [AWS::EC2::LaunchTemplate LaunchTemplateData](https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-launchtemplate-launchtemplatedata.html).
      */
     interface LaunchTemplateInstanceMarketOptions {
         /**
@@ -25257,11 +25311,11 @@ export declare namespace ec2 {
      *  You must specify ``VCpuCount`` and ``MemoryMiB``. All other attributes are optional. Any unspecified optional attribute is set to its default.
      *  When you specify multiple attributes, you get instance types that satisfy all of the specified attributes. If you specify multiple values for an attribute, you get instance types that satisfy any of the specified values.
      *  To limit the list of instance types from which Amazon EC2 can identify matching instance types, you can use one of the following parameters, but not both in the same request:
-     *   +   ``AllowedInstanceTypes`` - The instance types to include in the list. All other instance types are ignored, even if they match your specified attributes.
-     *   +   ``ExcludedInstanceTypes`` - The instance types to exclude from the list, even if they match your specified attributes.
+     *   +  ``AllowedInstanceTypes`` - The instance types to include in the list. All other instance types are ignored, even if they match your specified attributes.
+     *   +  ``ExcludedInstanceTypes`` - The instance types to exclude from the list, even if they match your specified attributes.
      *
      *   If you specify ``InstanceRequirements``, you can't specify ``InstanceType``.
-     *  Attribute-based instance type selection is only supported when using Auto Scaling groups, EC2 Fleet, and Spot Fleet to launch instances. If you plan to use the launch template in the [launch instance wizard](https://docs.aws.amazon.com/AWSEC2/latest/UserGuide/ec2-launch-instance-wizard.html), or with the [RunInstances](https://docs.aws.amazon.com/AWSEC2/latest/APIReference/API_RunInstances.html) API or [AWS::EC2::Instance](https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-instance.html) AWS CloudFormation resource, you can't specify ``InstanceRequirements``.
+     *  Attribute-based instance type selection is only supported when using Auto Scaling groups, EC2 Fleet, and Spot Fleet to launch instances. If you plan to use the launch template in the [launch instance wizard](https://docs.aws.amazon.com/AWSEC2/latest/UserGuide/ec2-launch-instance-wizard.html), or with the [RunInstances](https://docs.aws.amazon.com/AWSEC2/latest/APIReference/API_RunInstances.html) API or [AWS::EC2::Instance](https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-instance.html)AWS CloudFormation resource, you can't specify ``InstanceRequirements``.
      *   For more information, see [Specify attributes for instance type selection for EC2 Fleet or Spot Fleet](https://docs.aws.amazon.com/AWSEC2/latest/UserGuide/ec2-fleet-attribute-based-instance-type-selection.html) and [Spot placement score](https://docs.aws.amazon.com/AWSEC2/latest/UserGuide/spot-placement-score.html) in the *Amazon EC2 User Guide*.
      */
     interface LaunchTemplateInstanceRequirements {
@@ -25309,6 +25363,7 @@ export declare namespace ec2 {
          * The accelerator types that must be on the instance type.
          *   +  For instance types with FPGA accelerators, specify ``fpga``.
          *   +  For instance types with GPU accelerators, specify ``gpu``.
+         *   +  For instance types with Inference accelerators, specify ``inference``.
          *
          *  Default: Any accelerator type
          */
@@ -25453,7 +25508,7 @@ export declare namespace ec2 {
     }
     /**
      * Specifies an IPv4 prefix for a network interface.
-     *   ``Ipv4PrefixSpecification`` is a property of [AWS::EC2::LaunchTemplate NetworkInterface](https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-launchtemplate-networkinterface.html).
+     *  ``Ipv4PrefixSpecification`` is a property of [AWS::EC2::LaunchTemplate NetworkInterface](https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-launchtemplate-networkinterface.html).
      */
     interface LaunchTemplateIpv4PrefixSpecification {
         /**
@@ -25463,7 +25518,7 @@ export declare namespace ec2 {
     }
     /**
      * Specifies an IPv6 address in an Amazon EC2 launch template.
-     *   ``Ipv6Add`` is a property of [AWS::EC2::LaunchTemplate NetworkInterface](https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-launchtemplate-networkinterface.html).
+     *  ``Ipv6Add`` is a property of [AWS::EC2::LaunchTemplate NetworkInterface](https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-launchtemplate-networkinterface.html).
      */
     interface LaunchTemplateIpv6Add {
         /**
@@ -25473,7 +25528,7 @@ export declare namespace ec2 {
     }
     /**
      * Specifies an IPv6 prefix for a network interface.
-     *   ``Ipv6PrefixSpecification`` is a property of [AWS::EC2::LaunchTemplate NetworkInterface](https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-launchtemplate-networkinterface.html).
+     *  ``Ipv6PrefixSpecification`` is a property of [AWS::EC2::LaunchTemplate NetworkInterface](https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-launchtemplate-networkinterface.html).
      */
     interface LaunchTemplateIpv6PrefixSpecification {
         /**
@@ -25483,7 +25538,7 @@ export declare namespace ec2 {
     }
     /**
      * Specifies a license configuration for an instance.
-     *   ``LicenseSpecification`` is a property of [AWS::EC2::LaunchTemplate LaunchTemplateData](https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-launchtemplate-launchtemplatedata.html).
+     *  ``LicenseSpecification`` is a property of [AWS::EC2::LaunchTemplate LaunchTemplateData](https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-launchtemplate-launchtemplatedata.html).
      */
     interface LaunchTemplateLicenseSpecification {
         /**
@@ -25528,7 +25583,7 @@ export declare namespace ec2 {
     }
     /**
      * The metadata options for the instance. For more information, see [Instance metadata and user data](https://docs.aws.amazon.com/AWSEC2/latest/UserGuide/ec2-instance-metadata.html) in the *Amazon EC2 User Guide*.
-     *   ``MetadataOptions`` is a property of [AWS::EC2::LaunchTemplate LaunchTemplateData](https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-launchtemplate-launchtemplatedata.html).
+     *  ``MetadataOptions`` is a property of [AWS::EC2::LaunchTemplate LaunchTemplateData](https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-launchtemplate-launchtemplatedata.html).
      */
     interface LaunchTemplateMetadataOptions {
         /**
@@ -25549,8 +25604,8 @@ export declare namespace ec2 {
         httpPutResponseHopLimit?: number;
         /**
          * Indicates whether IMDSv2 is required.
-         *   +   ``optional`` - IMDSv2 is optional. You can choose whether to send a session token in your instance metadata retrieval requests. If you retrieve IAM role credentials without a session token, you receive the IMDSv1 role credentials. If you retrieve IAM role credentials using a valid session token, you receive the IMDSv2 role credentials.
-         *   +   ``required`` - IMDSv2 is required. You must send a session token in your instance metadata retrieval requests. With this option, retrieving the IAM role credentials always returns IMDSv2 credentials; IMDSv1 credentials are not available.
+         *   +  ``optional`` - IMDSv2 is optional. You can choose whether to send a session token in your instance metadata retrieval requests. If you retrieve IAM role credentials without a session token, you receive the IMDSv1 role credentials. If you retrieve IAM role credentials using a valid session token, you receive the IMDSv2 role credentials.
+         *   +  ``required`` - IMDSv2 is required. You must send a session token in your instance metadata retrieval requests. With this option, retrieving the IAM role credentials always returns IMDSv2 credentials; IMDSv1 credentials are not available.
          *
          *  Default: If the value of ``ImdsSupport`` for the Amazon Machine Image (AMI) for your instance is ``v2.0``, the default is ``required``.
          */
@@ -25563,7 +25618,7 @@ export declare namespace ec2 {
     }
     /**
      * Specifies whether detailed monitoring is enabled for an instance. For more information about detailed monitoring, see [Enable or turn off detailed monitoring for your instances](https://docs.aws.amazon.com/AWSEC2/latest/UserGuide/using-cloudwatch-new.html) in the *User Guide*.
-     *   ``Monitoring`` is a property of [AWS::EC2::LaunchTemplate LaunchTemplateData](https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-launchtemplate-launchtemplatedata.html).
+     *  ``Monitoring`` is a property of [AWS::EC2::LaunchTemplate LaunchTemplateData](https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-launchtemplate-launchtemplatedata.html).
      */
     interface LaunchTemplateMonitoring {
         /**
@@ -25587,7 +25642,7 @@ export declare namespace ec2 {
     }
     /**
      * Specifies the parameters for a network interface.
-     *   ``NetworkInterface`` is a property of [AWS::EC2::LaunchTemplate LaunchTemplateData](https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-launchtemplate-launchtemplatedata.html).
+     *  ``NetworkInterface`` is a property of [AWS::EC2::LaunchTemplate LaunchTemplateData](https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-launchtemplate-launchtemplatedata.html).
      */
     interface LaunchTemplateNetworkInterface {
         /**
@@ -25597,7 +25652,7 @@ export declare namespace ec2 {
         associateCarrierIpAddress?: boolean;
         /**
          * Associates a public IPv4 address with eth0 for a new network interface.
-         *   AWS charges for all public IPv4 addresses, including public IPv4 addresses associated with running instances and Elastic IP addresses. For more information, see the *Public IPv4 Address* tab on the [Amazon VPC pricing page](https://docs.aws.amazon.com/vpc/pricing/).
+         *  AWS charges for all public IPv4 addresses, including public IPv4 addresses associated with running instances and Elastic IP addresses. For more information, see the *Public IPv4 Address* tab on the [Amazon VPC pricing page](https://docs.aws.amazon.com/vpc/pricing/).
          */
         associatePublicIpAddress?: boolean;
         /**
@@ -25710,7 +25765,7 @@ export declare namespace ec2 {
     }
     /**
      * Specifies the placement of an instance.
-     *   ``Placement`` is a property of [AWS::EC2::LaunchTemplate LaunchTemplateData](https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-launchtemplate-launchtemplatedata.html).
+     *  ``Placement`` is a property of [AWS::EC2::LaunchTemplate LaunchTemplateData](https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-launchtemplate-launchtemplatedata.html).
      */
     interface LaunchTemplatePlacement {
         /**
@@ -25769,7 +25824,7 @@ export declare namespace ec2 {
     }
     /**
      * Specifies a secondary private IPv4 address for a network interface.
-     *   ``PrivateIpAdd`` is a property of [AWS::EC2::LaunchTemplate NetworkInterface](https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-launchtemplate-networkinterface.html).
+     *  ``PrivateIpAdd`` is a property of [AWS::EC2::LaunchTemplate NetworkInterface](https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-launchtemplate-networkinterface.html).
      */
     interface LaunchTemplatePrivateIpAdd {
         /**
@@ -25790,13 +25845,13 @@ export declare namespace ec2 {
          *   Ensure that you specify the correct value for the instance family. The instance family is everything before the period (``.``) in the instance type name. For example, in the instance type ``c6i.large``, the instance family is ``c6i``, not ``c6``. For more information, see [Amazon EC2 instance type naming conventions](https://docs.aws.amazon.com/ec2/latest/instancetypes/instance-type-names.html) in *Amazon EC2 Instance Types*.
          *   The following instance families are *not supported* for performance protection:
          *   +   ``c1``
-         *   +   ``g3`` | ``g3s``
+         *   +  ``g3`` | ``g3s``
          *   +   ``hpc7g``
-         *   +   ``m1`` | ``m2``
-         *   +   ``mac1`` | ``mac2`` | ``mac2-m1ultra`` | ``mac2-m2`` | ``mac2-m2pro``
-         *   +   ``p3dn`` | ``p4d`` | ``p5``
+         *   +  ``m1`` | ``m2``
+         *   +  ``mac1`` | ``mac2`` | ``mac2-m1ultra`` | ``mac2-m2`` | ``mac2-m2pro``
+         *   +  ``p3dn`` | ``p4d`` | ``p5``
          *   +   ``t1``
-         *   +   ``u-12tb1`` | ``u-18tb1`` | ``u-24tb1`` | ``u-3tb1`` | ``u-6tb1`` | ``u-9tb1`` | ``u7i-12tb`` | ``u7in-16tb`` | ``u7in-24tb`` | ``u7in-32tb``
+         *   +  ``u-12tb1`` | ``u-18tb1`` | ``u-24tb1`` | ``u-3tb1`` | ``u-6tb1`` | ``u-9tb1`` | ``u7i-12tb`` | ``u7in-16tb`` | ``u7in-24tb`` | ``u7in-32tb``
          *
          *  If you enable performance protection by specifying a supported instance family, the returned instance types will exclude the above unsupported instance families.
          */
@@ -25804,7 +25859,7 @@ export declare namespace ec2 {
     }
     /**
      * Specifies options for Spot Instances.
-     *   ``SpotOptions`` is a property of [AWS::EC2::LaunchTemplate InstanceMarketOptions](https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-launchtemplate-launchtemplatedata-instancemarketoptions.html).
+     *  ``SpotOptions`` is a property of [AWS::EC2::LaunchTemplate InstanceMarketOptions](https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-launchtemplate-launchtemplatedata-instancemarketoptions.html).
      */
     interface LaunchTemplateSpotOptions {
         /**
@@ -25850,7 +25905,7 @@ export declare namespace ec2 {
     /**
      * Specifies the tags to apply to the launch template during creation.
      *  To specify the tags for the resources that are created during instance launch, use [AWS::EC2::LaunchTemplate TagSpecification](https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-launchtemplate-tagspecification.html).
-     *   ``LaunchTemplateTagSpecification`` is a property of [AWS::EC2::LaunchTemplate](https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ec2-launchtemplate.html).
+     *  ``LaunchTemplateTagSpecification`` is a property of [AWS::EC2::LaunchTemplate](https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ec2-launchtemplate.html).
      */
     interface LaunchTemplateTagSpecification {
         /**
@@ -27649,7 +27704,7 @@ export declare namespace ec2 {
     }
     /**
      * Specifies the tags to apply to resources that are created during instance launch.
-     *   ``TagSpecification`` is a property type of [TagSpecifications](https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-launchtemplate-launchtemplatedata.html#cfn-ec2-launchtemplate-launchtemplatedata-tagspecifications). [TagSpecifications](https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-launchtemplate-launchtemplatedata.html#cfn-ec2-launchtemplate-launchtemplatedata-tagspecifications) is a property of [AWS::EC2::LaunchTemplate LaunchTemplateData](https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-launchtemplate-launchtemplatedata.html).
+     *  ``TagSpecification`` is a property type of [TagSpecifications](https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-launchtemplate-launchtemplatedata.html#cfn-ec2-launchtemplate-launchtemplatedata-tagspecifications). [TagSpecifications](https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-launchtemplate-launchtemplatedata.html#cfn-ec2-launchtemplate-launchtemplatedata-tagspecifications) is a property of [AWS::EC2::LaunchTemplate LaunchTemplateData](https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-launchtemplate-launchtemplatedata.html).
      */
     interface TagSpecification {
         /**
@@ -28222,20 +28277,29 @@ export declare namespace ec2 {
 }
 export declare namespace ecr {
     /**
-     * The details of a scanning repository filter.
+     * The filter settings used with image replication. Specifying a repository filter to a replication rule provides a method for controlling which repositories in a private registry are replicated. If no filters are added, the contents of all repositories are replicated.
      */
     interface RegistryScanningConfigurationRepositoryFilter {
+        /**
+         * The filter to use when scanning.
+         */
         filter: string;
+        /**
+         * The type associated with the filter.
+         */
         filterType: enums.ecr.RegistryScanningConfigurationFilterType;
     }
     /**
-     * A rule representing the details of a scanning configuration.
+     * The scanning rules associated with the registry.
      */
     interface RegistryScanningConfigurationScanningRule {
         /**
-         * The repository filters associated with the scanning configuration for a private registry.
+         * The details of a scanning repository filter. For more information on how to use filters, see [Using filters](https://docs.aws.amazon.com/AmazonECR/latest/userguide/image-scanning.html#image-scanning-filters) in the *Amazon Elastic Container Registry User Guide*.
          */
         repositoryFilters: outputs.ecr.RegistryScanningConfigurationRepositoryFilter[];
+        /**
+         * The frequency that scans are performed at for a private registry. When the ``ENHANCED`` scan type is specified, the supported scan frequencies are ``CONTINUOUS_SCAN`` and ``SCAN_ON_PUSH``. When the ``BASIC`` scan type is specified, the ``SCAN_ON_PUSH`` scan frequency is supported. If scan on push is not specified, then the ``MANUAL`` scan frequency is set by default.
+         */
         scanFrequency: enums.ecr.RegistryScanningConfigurationScanFrequency;
     }
     /**
@@ -28470,9 +28534,9 @@ export declare namespace ecs {
         logConfiguration?: outputs.ecs.ClusterExecuteCommandLogConfiguration;
         /**
          * The log setting to use for redirecting logs for your execute command results. The following log settings are available.
-         *   +   ``NONE``: The execute command session is not logged.
-         *   +   ``DEFAULT``: The ``awslogs`` configuration in the task definition is used. If no logging parameter is specified, it defaults to this value. If no ``awslogs`` log driver is configured in the task definition, the output won't be logged.
-         *   +   ``OVERRIDE``: Specify the logging details as a part of ``logConfiguration``. If the ``OVERRIDE`` logging option is specified, the ``logConfiguration`` is required.
+         *   +  ``NONE``: The execute command session is not logged.
+         *   +  ``DEFAULT``: The ``awslogs`` configuration in the task definition is used. If no logging parameter is specified, it defaults to this value. If no ``awslogs`` log driver is configured in the task definition, the output won't be logged.
+         *   +  ``OVERRIDE``: Specify the logging details as a part of ``logConfiguration``. If the ``OVERRIDE`` logging option is specified, the ``logConfiguration`` is required.
          */
         logging?: string;
     }
@@ -28941,6 +29005,7 @@ export declare namespace ecs {
          *   This parameter is only supported for the ``gp3`` volume type.
          */
         throughput?: number;
+        volumeInitializationRate?: number;
         /**
          * The volume type. This parameter maps 1:1 with the ``VolumeType`` parameter of the [CreateVolume API](https://docs.aws.amazon.com/AWSEC2/latest/APIReference/API_CreateVolume.html) in the *Amazon EC2 API Reference*. For more information, see [Amazon EBS volume types](https://docs.aws.amazon.com/AWSEC2/latest/UserGuide/ebs-volume-types.html) in the *Amazon EC2 User Guide*.
          *  The following are the supported volume types.
@@ -31000,28 +31065,28 @@ export declare namespace elasticloadbalancingv2 {
         /**
          * The name of the attribute.
          *  The following attribute is supported by Network Load Balancers, and Gateway Load Balancers.
-         *   +   ``tcp.idle_timeout.seconds`` - The tcp idle timeout value, in seconds. The valid range is 60-6000 seconds. The default is 350 seconds.
+         *   +  ``tcp.idle_timeout.seconds`` - The tcp idle timeout value, in seconds. The valid range is 60-6000 seconds. The default is 350 seconds.
          *
          *  The following attributes are only supported by Application Load Balancers.
-         *   +   ``routing.http.request.x_amzn_mtls_clientcert_serial_number.header_name`` - Enables you to modify the header name of the *X-Amzn-Mtls-Clientcert-Serial-Number* HTTP request header.
-         *   +   ``routing.http.request.x_amzn_mtls_clientcert_issuer.header_name`` - Enables you to modify the header name of the *X-Amzn-Mtls-Clientcert-Issuer* HTTP request header.
-         *   +   ``routing.http.request.x_amzn_mtls_clientcert_subject.header_name`` - Enables you to modify the header name of the *X-Amzn-Mtls-Clientcert-Subject* HTTP request header.
-         *   +   ``routing.http.request.x_amzn_mtls_clientcert_validity.header_name`` - Enables you to modify the header name of the *X-Amzn-Mtls-Clientcert-Validity* HTTP request header.
-         *   +   ``routing.http.request.x_amzn_mtls_clientcert_leaf.header_name`` - Enables you to modify the header name of the *X-Amzn-Mtls-Clientcert-Leaf* HTTP request header.
-         *   +   ``routing.http.request.x_amzn_mtls_clientcert.header_name`` - Enables you to modify the header name of the *X-Amzn-Mtls-Clientcert* HTTP request header.
-         *   +   ``routing.http.request.x_amzn_tls_version.header_name`` - Enables you to modify the header name of the *X-Amzn-Tls-Version* HTTP request header.
-         *   +   ``routing.http.request.x_amzn_tls_cipher_suite.header_name`` - Enables you to modify the header name of the *X-Amzn-Tls-Cipher-Suite* HTTP request header.
-         *   +   ``routing.http.response.server.enabled`` - Enables you to allow or remove the HTTP response server header.
-         *   +   ``routing.http.response.strict_transport_security.header_value`` - Informs browsers that the site should only be accessed using HTTPS, and that any future attempts to access it using HTTP should automatically be converted to HTTPS.
-         *   +   ``routing.http.response.access_control_allow_origin.header_value`` - Specifies which origins are allowed to access the server.
-         *   +   ``routing.http.response.access_control_allow_methods.header_value`` - Returns which HTTP methods are allowed when accessing the server from a different origin.
-         *   +   ``routing.http.response.access_control_allow_headers.header_value`` - Specifies which headers can be used during the request.
-         *   +   ``routing.http.response.access_control_allow_credentials.header_value`` - Indicates whether the browser should include credentials such as cookies or authentication when making requests.
-         *   +   ``routing.http.response.access_control_expose_headers.header_value`` - Returns which headers the browser can expose to the requesting client.
-         *   +   ``routing.http.response.access_control_max_age.header_value`` - Specifies how long the results of a preflight request can be cached, in seconds.
-         *   +   ``routing.http.response.content_security_policy.header_value`` - Specifies restrictions enforced by the browser to help minimize the risk of certain types of security threats.
-         *   +   ``routing.http.response.x_content_type_options.header_value`` - Indicates whether the MIME types advertised in the *Content-Type* headers should be followed and not be changed.
-         *   +   ``routing.http.response.x_frame_options.header_value`` - Indicates whether the browser is allowed to render a page in a *frame*, *iframe*, *embed* or *object*.
+         *   +  ``routing.http.request.x_amzn_mtls_clientcert_serial_number.header_name`` - Enables you to modify the header name of the *X-Amzn-Mtls-Clientcert-Serial-Number* HTTP request header.
+         *   +  ``routing.http.request.x_amzn_mtls_clientcert_issuer.header_name`` - Enables you to modify the header name of the *X-Amzn-Mtls-Clientcert-Issuer* HTTP request header.
+         *   +  ``routing.http.request.x_amzn_mtls_clientcert_subject.header_name`` - Enables you to modify the header name of the *X-Amzn-Mtls-Clientcert-Subject* HTTP request header.
+         *   +  ``routing.http.request.x_amzn_mtls_clientcert_validity.header_name`` - Enables you to modify the header name of the *X-Amzn-Mtls-Clientcert-Validity* HTTP request header.
+         *   +  ``routing.http.request.x_amzn_mtls_clientcert_leaf.header_name`` - Enables you to modify the header name of the *X-Amzn-Mtls-Clientcert-Leaf* HTTP request header.
+         *   +  ``routing.http.request.x_amzn_mtls_clientcert.header_name`` - Enables you to modify the header name of the *X-Amzn-Mtls-Clientcert* HTTP request header.
+         *   +  ``routing.http.request.x_amzn_tls_version.header_name`` - Enables you to modify the header name of the *X-Amzn-Tls-Version* HTTP request header.
+         *   +  ``routing.http.request.x_amzn_tls_cipher_suite.header_name`` - Enables you to modify the header name of the *X-Amzn-Tls-Cipher-Suite* HTTP request header.
+         *   +  ``routing.http.response.server.enabled`` - Enables you to allow or remove the HTTP response server header.
+         *   +  ``routing.http.response.strict_transport_security.header_value`` - Informs browsers that the site should only be accessed using HTTPS, and that any future attempts to access it using HTTP should automatically be converted to HTTPS.
+         *   +  ``routing.http.response.access_control_allow_origin.header_value`` - Specifies which origins are allowed to access the server.
+         *   +  ``routing.http.response.access_control_allow_methods.header_value`` - Returns which HTTP methods are allowed when accessing the server from a different origin.
+         *   +  ``routing.http.response.access_control_allow_headers.header_value`` - Specifies which headers can be used during the request.
+         *   +  ``routing.http.response.access_control_allow_credentials.header_value`` - Indicates whether the browser should include credentials such as cookies or authentication when making requests.
+         *   +  ``routing.http.response.access_control_expose_headers.header_value`` - Returns which headers the browser can expose to the requesting client.
+         *   +  ``routing.http.response.access_control_max_age.header_value`` - Specifies how long the results of a preflight request can be cached, in seconds.
+         *   +  ``routing.http.response.content_security_policy.header_value`` - Specifies restrictions enforced by the browser to help minimize the risk of certain types of security threats.
+         *   +  ``routing.http.response.x_content_type_options.header_value`` - Indicates whether the MIME types advertised in the *Content-Type* headers should be followed and not be changed.
+         *   +  ``routing.http.response.x_frame_options.header_value`` - Indicates whether the browser is allowed to render a page in a *frame*, *iframe*, *embed* or *object*.
          */
         key?: string;
         /**
@@ -31634,37 +31699,37 @@ export declare namespace elasticloadbalancingv2 {
         /**
          * The name of the attribute.
          *  The following attributes are supported by all load balancers:
-         *   +   ``deletion_protection.enabled`` - Indicates whether deletion protection is enabled. The value is ``true`` or ``false``. The default is ``false``.
-         *   +   ``load_balancing.cross_zone.enabled`` - Indicates whether cross-zone load balancing is enabled. The possible values are ``true`` and ``false``. The default for Network Load Balancers and Gateway Load Balancers is ``false``. The default for Application Load Balancers is ``true``, and can't be changed.
+         *   +  ``deletion_protection.enabled`` - Indicates whether deletion protection is enabled. The value is ``true`` or ``false``. The default is ``false``.
+         *   +  ``load_balancing.cross_zone.enabled`` - Indicates whether cross-zone load balancing is enabled. The possible values are ``true`` and ``false``. The default for Network Load Balancers and Gateway Load Balancers is ``false``. The default for Application Load Balancers is ``true``, and can't be changed.
          *
          *  The following attributes are supported by both Application Load Balancers and Network Load Balancers:
-         *   +   ``access_logs.s3.enabled`` - Indicates whether access logs are enabled. The value is ``true`` or ``false``. The default is ``false``.
-         *   +   ``access_logs.s3.bucket`` - The name of the S3 bucket for the access logs. This attribute is required if access logs are enabled. The bucket must exist in the same region as the load balancer and have a bucket policy that grants Elastic Load Balancing permissions to write to the bucket.
-         *   +   ``access_logs.s3.prefix`` - The prefix for the location in the S3 bucket for the access logs.
-         *   +   ``ipv6.deny_all_igw_traffic`` - Blocks internet gateway (IGW) access to the load balancer. It is set to ``false`` for internet-facing load balancers and ``true`` for internal load balancers, preventing unintended access to your internal load balancer through an internet gateway.
-         *   +   ``zonal_shift.config.enabled`` - Indicates whether zonal shift is enabled. The possible values are ``true`` and ``false``. The default is ``false``.
+         *   +  ``access_logs.s3.enabled`` - Indicates whether access logs are enabled. The value is ``true`` or ``false``. The default is ``false``.
+         *   +  ``access_logs.s3.bucket`` - The name of the S3 bucket for the access logs. This attribute is required if access logs are enabled. The bucket must exist in the same region as the load balancer and have a bucket policy that grants Elastic Load Balancing permissions to write to the bucket.
+         *   +  ``access_logs.s3.prefix`` - The prefix for the location in the S3 bucket for the access logs.
+         *   +  ``ipv6.deny_all_igw_traffic`` - Blocks internet gateway (IGW) access to the load balancer. It is set to ``false`` for internet-facing load balancers and ``true`` for internal load balancers, preventing unintended access to your internal load balancer through an internet gateway.
+         *   +  ``zonal_shift.config.enabled`` - Indicates whether zonal shift is enabled. The possible values are ``true`` and ``false``. The default is ``false``.
          *
          *  The following attributes are supported by only Application Load Balancers:
-         *   +   ``idle_timeout.timeout_seconds`` - The idle timeout value, in seconds. The valid range is 1-4000 seconds. The default is 60 seconds.
-         *   +   ``client_keep_alive.seconds`` - The client keep alive value, in seconds. The valid range is 60-604800 seconds. The default is 3600 seconds.
-         *   +   ``connection_logs.s3.enabled`` - Indicates whether connection logs are enabled. The value is ``true`` or ``false``. The default is ``false``.
-         *   +   ``connection_logs.s3.bucket`` - The name of the S3 bucket for the connection logs. This attribute is required if connection logs are enabled. The bucket must exist in the same region as the load balancer and have a bucket policy that grants Elastic Load Balancing permissions to write to the bucket.
-         *   +   ``connection_logs.s3.prefix`` - The prefix for the location in the S3 bucket for the connection logs.
-         *   +   ``routing.http.desync_mitigation_mode`` - Determines how the load balancer handles requests that might pose a security risk to your application. The possible values are ``monitor``, ``defensive``, and ``strictest``. The default is ``defensive``.
-         *   +   ``routing.http.drop_invalid_header_fields.enabled`` - Indicates whether HTTP headers with invalid header fields are removed by the load balancer (``true``) or routed to targets (``false``). The default is ``false``.
-         *   +   ``routing.http.preserve_host_header.enabled`` - Indicates whether the Application Load Balancer should preserve the ``Host`` header in the HTTP request and send it to the target without any change. The possible values are ``true`` and ``false``. The default is ``false``.
-         *   +   ``routing.http.x_amzn_tls_version_and_cipher_suite.enabled`` - Indicates whether the two headers (``x-amzn-tls-version`` and ``x-amzn-tls-cipher-suite``), which contain information about the negotiated TLS version and cipher suite, are added to the client request before sending it to the target. The ``x-amzn-tls-version`` header has information about the TLS protocol version negotiated with the client, and the ``x-amzn-tls-cipher-suite`` header has information about the cipher suite negotiated with the client. Both headers are in OpenSSL format. The possible values for the attribute are ``true`` and ``false``. The default is ``false``.
-         *   +   ``routing.http.xff_client_port.enabled`` - Indicates whether the ``X-Forwarded-For`` header should preserve the source port that the client used to connect to the load balancer. The possible values are ``true`` and ``false``. The default is ``false``.
-         *   +   ``routing.http.xff_header_processing.mode`` - Enables you to modify, preserve, or remove the ``X-Forwarded-For`` header in the HTTP request before the Application Load Balancer sends the request to the target. The possible values are ``append``, ``preserve``, and ``remove``. The default is ``append``.
+         *   +  ``idle_timeout.timeout_seconds`` - The idle timeout value, in seconds. The valid range is 1-4000 seconds. The default is 60 seconds.
+         *   +  ``client_keep_alive.seconds`` - The client keep alive value, in seconds. The valid range is 60-604800 seconds. The default is 3600 seconds.
+         *   +  ``connection_logs.s3.enabled`` - Indicates whether connection logs are enabled. The value is ``true`` or ``false``. The default is ``false``.
+         *   +  ``connection_logs.s3.bucket`` - The name of the S3 bucket for the connection logs. This attribute is required if connection logs are enabled. The bucket must exist in the same region as the load balancer and have a bucket policy that grants Elastic Load Balancing permissions to write to the bucket.
+         *   +  ``connection_logs.s3.prefix`` - The prefix for the location in the S3 bucket for the connection logs.
+         *   +  ``routing.http.desync_mitigation_mode`` - Determines how the load balancer handles requests that might pose a security risk to your application. The possible values are ``monitor``, ``defensive``, and ``strictest``. The default is ``defensive``.
+         *   +  ``routing.http.drop_invalid_header_fields.enabled`` - Indicates whether HTTP headers with invalid header fields are removed by the load balancer (``true``) or routed to targets (``false``). The default is ``false``.
+         *   +  ``routing.http.preserve_host_header.enabled`` - Indicates whether the Application Load Balancer should preserve the ``Host`` header in the HTTP request and send it to the target without any change. The possible values are ``true`` and ``false``. The default is ``false``.
+         *   +  ``routing.http.x_amzn_tls_version_and_cipher_suite.enabled`` - Indicates whether the two headers (``x-amzn-tls-version`` and ``x-amzn-tls-cipher-suite``), which contain information about the negotiated TLS version and cipher suite, are added to the client request before sending it to the target. The ``x-amzn-tls-version`` header has information about the TLS protocol version negotiated with the client, and the ``x-amzn-tls-cipher-suite`` header has information about the cipher suite negotiated with the client. Both headers are in OpenSSL format. The possible values for the attribute are ``true`` and ``false``. The default is ``false``.
+         *   +  ``routing.http.xff_client_port.enabled`` - Indicates whether the ``X-Forwarded-For`` header should preserve the source port that the client used to connect to the load balancer. The possible values are ``true`` and ``false``. The default is ``false``.
+         *   +  ``routing.http.xff_header_processing.mode`` - Enables you to modify, preserve, or remove the ``X-Forwarded-For`` header in the HTTP request before the Application Load Balancer sends the request to the target. The possible values are ``append``, ``preserve``, and ``remove``. The default is ``append``.
          *   +  If the value is ``append``, the Application Load Balancer adds the client IP address (of the last hop) to the ``X-Forwarded-For`` header in the HTTP request before it sends it to targets.
          *   +  If the value is ``preserve`` the Application Load Balancer preserves the ``X-Forwarded-For`` header in the HTTP request, and sends it to targets without any change.
          *   +  If the value is ``remove``, the Application Load Balancer removes the ``X-Forwarded-For`` header in the HTTP request before it sends it to targets.
          *
-         *   +   ``routing.http2.enabled`` - Indicates whether HTTP/2 is enabled. The possible values are ``true`` and ``false``. The default is ``true``. Elastic Load Balancing requires that message header names contain only alphanumeric characters and hyphens.
-         *   +   ``waf.fail_open.enabled`` - Indicates whether to allow a WAF-enabled load balancer to route requests to targets if it is unable to forward the request to AWS WAF. The possible values are ``true`` and ``false``. The default is ``false``.
+         *   +  ``routing.http2.enabled`` - Indicates whether HTTP/2 is enabled. The possible values are ``true`` and ``false``. The default is ``true``. Elastic Load Balancing requires that message header names contain only alphanumeric characters and hyphens.
+         *   +  ``waf.fail_open.enabled`` - Indicates whether to allow a WAF-enabled load balancer to route requests to targets if it is unable to forward the request to AWS WAF. The possible values are ``true`` and ``false``. The default is ``false``.
          *
          *  The following attributes are supported by only Network Load Balancers:
-         *   +   ``dns_record.client_routing_policy`` - Indicates how traffic is distributed among the load balancer Availability Zones. The possible values are ``availability_zone_affinity`` with 100 percent zonal affinity, ``partial_availability_zone_affinity`` with 85 percent zonal affinity, and ``any_availability_zone`` with 0 percent zonal affinity.
+         *   +  ``dns_record.client_routing_policy`` - Indicates how traffic is distributed among the load balancer Availability Zones. The possible values are ``availability_zone_affinity`` with 100 percent zonal affinity, ``partial_availability_zone_affinity`` with 85 percent zonal affinity, and ``any_availability_zone`` with 0 percent zonal affinity.
          */
         key?: string;
         /**
@@ -34834,11 +34899,11 @@ export declare namespace gameliftstreams {
     }
     interface StreamGroupDefaultApplication {
         /**
-         * An [Amazon Resource Name (ARN)](https://docs.aws.amazon.com/IAM/latest/UserGuide/reference-arns.html) that uniquely identifies the application resource. Format example: `arn:aws:gameliftstreams:us-west-2:123456789012:application/a-9ZY8X7Wv6` .
+         * An [Amazon Resource Name (ARN)](https://docs.aws.amazon.com/IAM/latest/UserGuide/reference-arns.html) that uniquely identifies the application resource. Example ARN: `arn:aws:gameliftstreams:us-west-2:111122223333:application/a-9ZY8X7Wv6` .
          */
         arn?: string;
         /**
-         * An ID that uniquely identifies the application resource. For example: `a-9ZY8X7Wv6` .
+         * An ID that uniquely identifies the application resource. Example ID: `a-9ZY8X7Wv6` .
          */
         id?: string;
     }
@@ -34848,7 +34913,7 @@ export declare namespace gameliftstreams {
          */
         alwaysOnCapacity?: number;
         /**
-         * A location's name. For example, `us-east-1` . For a complete list of locations that Amazon GameLift Streams supports, refer to [Regions and quotas](https://docs.aws.amazon.com/gameliftstreams/latest/developerguide/regions-quotas.html) in the *Amazon GameLift Streams Developer Guide* .
+         * A location's name. For example, `us-east-1` . For a complete list of locations that Amazon GameLift Streams supports, refer to [Regions, quotas, and limitations](https://docs.aws.amazon.com/gameliftstreams/latest/developerguide/regions-quotas.html) in the *Amazon GameLift Streams Developer Guide* .
          */
         locationName: string;
         /**
@@ -47974,11 +48039,11 @@ export declare namespace logs {
         /**
          * The name of the delivery destination to assign this policy to
          */
-        deliveryDestinationName: string;
+        deliveryDestinationName?: string;
         /**
          * The contents of the policy attached to the delivery destination
          */
-        deliveryDestinationPolicy: string;
+        deliveryDestinationPolicy?: any;
     }
     interface IntegrationOpenSearchResourceConfig {
         /**
@@ -53198,6 +53263,10 @@ export declare namespace omics {
          */
         optional?: boolean;
     }
+    interface WorkflowVersionWorkflowParameter {
+        description?: string;
+        optional?: boolean;
+    }
 }
 export declare namespace opensearchserverless {
     interface IndexPropertyMapping {
@@ -84903,8 +84972,8 @@ export declare namespace rds {
         secondsUntilAutoPause?: number;
         /**
          * The action to take when the timeout is reached, either ``ForceApplyCapacityChange`` or ``RollbackCapacityChange``.
-         *   ``ForceApplyCapacityChange`` sets the capacity to the specified value as soon as possible.
-         *   ``RollbackCapacityChange``, the default, ignores the capacity change if a scaling point isn't found in the timeout period.
+         *  ``ForceApplyCapacityChange`` sets the capacity to the specified value as soon as possible.
+         *  ``RollbackCapacityChange``, the default, ignores the capacity change if a scaling point isn't found in the timeout period.
          *   If you specify ``ForceApplyCapacityChange``, connections that prevent Aurora Serverless v1 from finding a scaling point might be dropped.
          *   For more information, see [Autoscaling for Aurora Serverless v1](https://docs.aws.amazon.com/AmazonRDS/latest/AuroraUserGuide/aurora-serverless.how-it-works.html#aurora-serverless.how-it-works.auto-scaling) in the *Amazon Aurora User Guide*.
          */
@@ -85339,7 +85408,7 @@ export declare namespace redshiftserverless {
     }
     interface WorkgroupConfigParameter {
         /**
-         * The key of the parameter. The options are `datestyle` , `enable_user_activity_logging` , `query_group` , `search_path` , `max_query_execution_time` , and `require_ssl` .
+         * The key of the parameter. The options are `auto_mv` , `datestyle` , `enable_case_sensitive_identifier` , `enable_user_activity_logging` , `query_group` , `search_path` , `require_ssl` , `use_fips_ssl` , and query monitoring metrics that let you define performance boundaries. For more information about query monitoring rules and available metrics, see [Query monitoring metrics for Amazon Redshift Serverless](https://docs.aws.amazon.com/redshift/latest/dg/cm-c-wlm-query-monitoring-rules.html#cm-c-wlm-query-monitoring-metrics-serverless) .
          */
         parameterKey?: string;
         /**
@@ -88873,6 +88942,10 @@ export declare namespace sagemaker {
          * Settings that are used to configure and manage the lifecycle of CodeEditor applications.
          */
         appLifecycleManagement?: outputs.sagemaker.DomainAppLifecycleManagement;
+        /**
+         * The lifecycle configuration that runs before the default lifecycle configuration.
+         */
+        builtInLifecycleConfigArn?: string;
         /**
          * A list of custom images for use for CodeEditor apps.
          */
@@ -89021,6 +89094,13 @@ export declare namespace sagemaker {
          */
         fileSystemPath?: string;
     }
+    interface DomainHiddenSageMakerImage {
+        /**
+         * The SageMaker image name that you are hiding from the Studio user interface.
+         */
+        sageMakerImageName?: enums.sagemaker.DomainHiddenSageMakerImageSageMakerImageName;
+        versionAliases?: string[];
+    }
     interface DomainIdleSettings {
         /**
          * The time that SageMaker waits after the application becomes idle before shutting it down.
@@ -89047,6 +89127,10 @@ export declare namespace sagemaker {
          * Indicates whether idle shutdown is activated for JupyterLab applications.
          */
         appLifecycleManagement?: outputs.sagemaker.DomainAppLifecycleManagement;
+        /**
+         * The lifecycle configuration that runs before the default lifecycle configuration.
+         */
+        builtInLifecycleConfigArn?: string;
         /**
          * A list of CodeRepositories available for use with JupyterLab apps.
          */
@@ -89205,15 +89289,27 @@ export declare namespace sagemaker {
          * Applications supported in Studio that are hidden from the Studio left navigation pane.
          */
         hiddenAppTypes?: enums.sagemaker.DomainAppType[];
+        /**
+         * The instance types you are hiding from the Studio user interface.
+         */
+        hiddenInstanceTypes?: enums.sagemaker.DomainAppInstanceType[];
         /**
          * The machine learning tools that are hidden from the Studio left navigation pane.
          */
         hiddenMlTools?: enums.sagemaker.DomainMlTools[];
+        /**
+         * The version aliases you are hiding from the Studio user interface.
+         */
+        hiddenSageMakerImageVersionAliases?: outputs.sagemaker.DomainHiddenSageMakerImage[];
     }
     /**
      * A collection of settings that apply to users of Amazon SageMaker Studio. These settings are specified when the CreateUserProfile API is called, and as DefaultUserSettings when the CreateDomain API is called.
      */
     interface DomainUserSettings {
+        /**
+         * Indicates whether auto-mounting of an EFS volume is supported for the user profile.
+         */
+        autoMountHomeEfs?: enums.sagemaker.DomainUserSettingsAutoMountHomeEfs;
         /**
          * The Code Editor application settings.
          *
@@ -92316,6 +92412,10 @@ export declare namespace sagemaker {
          * Settings that are used to configure and manage the lifecycle of CodeEditor applications.
          */
         appLifecycleManagement?: outputs.sagemaker.UserProfileAppLifecycleManagement;
+        /**
+         * The lifecycle configuration that runs before the default lifecycle configuration.
+         */
+        builtInLifecycleConfigArn?: string;
         /**
          * A list of custom images for use for CodeEditor apps.
          */
@@ -92414,6 +92514,13 @@ export declare namespace sagemaker {
          */
         fileSystemPath?: string;
     }
+    interface UserProfileHiddenSageMakerImage {
+        /**
+         * The SageMaker image name that you are hiding from the Studio user interface.
+         */
+        sageMakerImageName?: enums.sagemaker.UserProfileHiddenSageMakerImageSageMakerImageName;
+        versionAliases?: string[];
+    }
     interface UserProfileIdleSettings {
         /**
          * The time that SageMaker waits after the application becomes idle before shutting it down.
@@ -92440,6 +92547,10 @@ export declare namespace sagemaker {
          * Indicates whether idle shutdown is activated for JupyterLab applications.
          */
         appLifecycleManagement?: outputs.sagemaker.UserProfileAppLifecycleManagement;
+        /**
+         * The lifecycle configuration that runs before the default lifecycle configuration.
+         */
+        builtInLifecycleConfigArn?: string;
         /**
          * A list of CodeRepositories available for use with JupyterLab apps.
          */
@@ -92543,15 +92654,27 @@ export declare namespace sagemaker {
          * Applications supported in Studio that are hidden from the Studio left navigation pane.
          */
         hiddenAppTypes?: enums.sagemaker.UserProfileAppType[];
+        /**
+         * The instance types you are hiding from the Studio user interface.
+         */
+        hiddenInstanceTypes?: enums.sagemaker.UserProfileAppInstanceType[];
         /**
          * The machine learning tools that are hidden from the Studio left navigation pane.
          */
         hiddenMlTools?: enums.sagemaker.UserProfileMlTools[];
+        /**
+         * The version aliases you are hiding from the Studio user interface.
+         */
+        hiddenSageMakerImageVersionAliases?: outputs.sagemaker.UserProfileHiddenSageMakerImage[];
     }
     /**
      * A collection of settings that apply to users of Amazon SageMaker Studio. These settings are specified when the CreateUserProfile API is called, and as DefaultUserSettings when the CreateDomain API is called.
      */
     interface UserProfileUserSettings {
+        /**
+         * Indicates whether auto-mounting of an EFS volume is supported for the user profile.
+         */
+        autoMountHomeEfs?: enums.sagemaker.UserProfileUserSettingsAutoMountHomeEfs;
         /**
          * The Code Editor application settings.
          *
@@ -93053,15 +93176,15 @@ export declare namespace securityhub {
          *   +  To search for values that include the filter value, use ``CONTAINS``. For example, for the ``ResourceTags`` field, the filter ``Department CONTAINS Security`` matches findings that include the value ``Security`` for the ``Department`` tag. In the same example, a finding with a value of ``Security team`` for the ``Department`` tag is a match.
          *   +  To search for values that exactly match the filter value, use ``EQUALS``. For example, for the ``ResourceTags`` field, the filter ``Department EQUALS Security`` matches findings that have the value ``Security`` for the ``Department`` tag.
          *
-         *   ``CONTAINS`` and ``EQUALS`` filters on the same field are joined by ``OR``. A finding matches if it matches any one of those filters. For example, the filters ``Department CONTAINS Security OR Department CONTAINS Finance`` match a finding that includes either ``Security``, ``Finance``, or both values.
+         *  ``CONTAINS`` and ``EQUALS`` filters on the same field are joined by ``OR``. A finding matches if it matches any one of those filters. For example, the filters ``Department CONTAINS Security OR Department CONTAINS Finance`` match a finding that includes either ``Security``, ``Finance``, or both values.
          *  To search for values that don't have the filter value, use one of the following comparison operators:
          *   +  To search for values that exclude the filter value, use ``NOT_CONTAINS``. For example, for the ``ResourceTags`` field, the filter ``Department NOT_CONTAINS Finance`` matches findings that exclude the value ``Finance`` for the ``Department`` tag.
          *   +  To search for values other than the filter value, use ``NOT_EQUALS``. For example, for the ``ResourceTags`` field, the filter ``Department NOT_EQUALS Finance`` matches findings that don’t have the value ``Finance`` for the ``Department`` tag.
          *
-         *   ``NOT_CONTAINS`` and ``NOT_EQUALS`` filters on the same field are joined by ``AND``. A finding matches only if it matches all of those filters. For example, the filters ``Department NOT_CONTAINS Security AND Department NOT_CONTAINS Finance`` match a finding that excludes both the ``Security`` and ``Finance`` values.
-         *   ``CONTAINS`` filters can only be used with other ``CONTAINS`` filters. ``NOT_CONTAINS`` filters can only be used with other ``NOT_CONTAINS`` filters.
+         *  ``NOT_CONTAINS`` and ``NOT_EQUALS`` filters on the same field are joined by ``AND``. A finding matches only if it matches all of those filters. For example, the filters ``Department NOT_CONTAINS Security AND Department NOT_CONTAINS Finance`` match a finding that excludes both the ``Security`` and ``Finance`` values.
+         *  ``CONTAINS`` filters can only be used with other ``CONTAINS`` filters. ``NOT_CONTAINS`` filters can only be used with other ``NOT_CONTAINS`` filters.
          *  You can’t have both a ``CONTAINS`` filter and a ``NOT_CONTAINS`` filter on the same field. Similarly, you can’t have both an ``EQUALS`` filter and a ``NOT_EQUALS`` filter on the same field. Combining filters in this way returns an error.
-         *   ``CONTAINS`` and ``NOT_CONTAINS`` operators can be used only with automation rules. For more information, see [Automation rules](https://docs.aws.amazon.com/securityhub/latest/userguide/automation-rules.html) in the *User Guide*.
+         *  ``CONTAINS`` and ``NOT_CONTAINS`` operators can be used only with automation rules. For more information, see [Automation rules](https://docs.aws.amazon.com/securityhub/latest/userguide/automation-rules.html) in the *User Guide*.
          */
         comparison: enums.securityhub.AutomationRuleMapFilterComparison;
         /**
@@ -93123,11 +93246,11 @@ export declare namespace securityhub {
     interface AutomationRuleSeverityUpdate {
         /**
          * The severity value of the finding. The allowed values are the following.
-         *   +   ``INFORMATIONAL`` - No issue was found.
-         *   +   ``LOW`` - The issue does not require action on its own.
-         *   +   ``MEDIUM`` - The issue must be addressed but not urgently.
-         *   +   ``HIGH`` - The issue must be addressed as a priority.
-         *   +   ``CRITICAL`` - The issue must be remediated immediately to avoid it escalating.
+         *   +  ``INFORMATIONAL`` - No issue was found.
+         *   +  ``LOW`` - The issue does not require action on its own.
+         *   +  ``MEDIUM`` - The issue must be addressed but not urgently.
+         *   +  ``HIGH`` - The issue must be addressed as a priority.
+         *   +  ``CRITICAL`` - The issue must be remediated immediately to avoid it escalating.
          */
         label?: enums.securityhub.AutomationRuleSeverityUpdateLabel;
         /**
@@ -93156,13 +93279,13 @@ export declare namespace securityhub {
          *   +  To search for values that exactly match the filter value, use ``EQUALS``. For example, the filter ``AwsAccountId EQUALS 123456789012`` only matches findings that have an account ID of ``123456789012``.
          *   +  To search for values that start with the filter value, use ``PREFIX``. For example, the filter ``ResourceRegion PREFIX us`` matches findings that have a ``ResourceRegion`` that starts with ``us``. A ``ResourceRegion`` that starts with a different value, such as ``af``, ``ap``, or ``ca``, doesn't match.
          *
-         *   ``CONTAINS``, ``EQUALS``, and ``PREFIX`` filters on the same field are joined by ``OR``. A finding matches if it matches any one of those filters. For example, the filters ``Title CONTAINS CloudFront OR Title CONTAINS CloudWatch`` match a finding that includes either ``CloudFront``, ``CloudWatch``, or both strings in the title.
+         *  ``CONTAINS``, ``EQUALS``, and ``PREFIX`` filters on the same field are joined by ``OR``. A finding matches if it matches any one of those filters. For example, the filters ``Title CONTAINS CloudFront OR Title CONTAINS CloudWatch`` match a finding that includes either ``CloudFront``, ``CloudWatch``, or both strings in the title.
          *  To search for values that don’t have the filter value, use one of the following comparison operators:
          *   +  To search for values that exclude the filter value, use ``NOT_CONTAINS``. For example, the filter ``Title NOT_CONTAINS CloudFront`` matches findings that have a ``Title`` that excludes the string CloudFront.
          *   +  To search for values other than the filter value, use ``NOT_EQUALS``. For example, the filter ``AwsAccountId NOT_EQUALS 123456789012`` only matches findings that have an account ID other than ``123456789012``.
          *   +  To search for values that don't start with the filter value, use ``PREFIX_NOT_EQUALS``. For example, the filter ``ResourceRegion PREFIX_NOT_EQUALS us`` matches findings with a ``ResourceRegion`` that starts with a value other than ``us``.
          *
-         *   ``NOT_CONTAINS``, ``NOT_EQUALS``, and ``PREFIX_NOT_EQUALS`` filters on the same field are joined by ``AND``. A finding matches only if it matches all of those filters. For example, the filters ``Title NOT_CONTAINS CloudFront AND Title NOT_CONTAINS CloudWatch`` match a finding that excludes both ``CloudFront`` and ``CloudWatch`` in the title.
+         *  ``NOT_CONTAINS``, ``NOT_EQUALS``, and ``PREFIX_NOT_EQUALS`` filters on the same field are joined by ``AND``. A finding matches only if it matches all of those filters. For example, the filters ``Title NOT_CONTAINS CloudFront AND Title NOT_CONTAINS CloudWatch`` match a finding that excludes both ``CloudFront`` and ``CloudWatch`` in the title.
          *  You can’t have both a ``CONTAINS`` filter and a ``NOT_CONTAINS`` filter on the same field. Similarly, you can't provide both an ``EQUALS`` filter and a ``NOT_EQUALS`` or ``PREFIX_NOT_EQUALS`` filter on the same field. Combining filters in this way returns an error. ``CONTAINS`` filters can only be used with other ``CONTAINS`` filters. ``NOT_CONTAINS`` filters can only be used with other ``NOT_CONTAINS`` filters.
          *  You can combine ``PREFIX`` filters with ``NOT_EQUALS`` or ``PREFIX_NOT_EQUALS`` filters for the same field. Security Hub first processes the ``PREFIX`` filters, and then the ``NOT_EQUALS`` or ``PREFIX_NOT_EQUALS`` filters.
          *  For example, for the following filters, Security Hub first identifies findings that have resource types that start with either ``AwsIam`` or ``AwsEc2``. It then excludes findings that have a resource type of ``AwsIamPolicy`` and findings that have a resource type of ``AwsEc2NetworkInterface``.
@@ -93171,7 +93294,7 @@ export declare namespace securityhub {
          *   +   ``ResourceType NOT_EQUALS AwsIamPolicy``
          *   +   ``ResourceType NOT_EQUALS AwsEc2NetworkInterface``
          *
-         *   ``CONTAINS`` and ``NOT_CONTAINS`` operators can be used only with automation rules. For more information, see [Automation rules](https://docs.aws.amazon.com/securityhub/latest/userguide/automation-rules.html) in the *User Guide*.
+         *  ``CONTAINS`` and ``NOT_CONTAINS`` operators can be used only with automation rules. For more information, see [Automation rules](https://docs.aws.amazon.com/securityhub/latest/userguide/automation-rules.html) in the *User Guide*.
          */
         comparison: enums.securityhub.AutomationRuleStringFilterComparison;
         /**
@@ -93186,14 +93309,14 @@ export declare namespace securityhub {
         /**
          * The status of the investigation into the finding. The workflow status is specific to an individual finding. It does not affect the generation of new findings. For example, setting the workflow status to ``SUPPRESSED`` or ``RESOLVED`` does not prevent a new finding for the same issue.
          *  The allowed values are the following.
-         *   +   ``NEW`` - The initial state of a finding, before it is reviewed.
+         *   +  ``NEW`` - The initial state of a finding, before it is reviewed.
          *  Security Hub also resets ``WorkFlowStatus`` from ``NOTIFIED`` or ``RESOLVED`` to ``NEW`` in the following cases:
          *   +  The record state changes from ``ARCHIVED`` to ``ACTIVE``.
          *   +  The compliance status changes from ``PASSED`` to either ``WARNING``, ``FAILED``, or ``NOT_AVAILABLE``.
          *
-         *   +   ``NOTIFIED`` - Indicates that you notified the resource owner about the security issue. Used when the initial reviewer is not the resource owner, and needs intervention from the resource owner.
-         *   +   ``RESOLVED`` - The finding was reviewed and remediated and is now considered resolved.
-         *   +   ``SUPPRESSED`` - Indicates that you reviewed the finding and don't believe that any action is needed. The finding is no longer updated.
+         *   +  ``NOTIFIED`` - Indicates that you notified the resource owner about the security issue. Used when the initial reviewer is not the resource owner, and needs intervention from the resource owner.
+         *   +  ``RESOLVED`` - The finding was reviewed and remediated and is now considered resolved.
+         *   +  ``SUPPRESSED`` - Indicates that you reviewed the finding and don't believe that any action is needed. The finding is no longer updated.
          */
         status: enums.securityhub.AutomationRuleWorkflowUpdateStatus;
     }
@@ -97135,6 +97258,9 @@ export declare namespace verifiedpermissions {
         description?: string;
         statement: string;
     }
+    interface PolicyStoreDeletionProtection {
+        mode: enums.verifiedpermissions.PolicyStoreDeletionMode;
+    }
     interface PolicyStoreSchemaDefinition {
         /**
          * A JSON string representation of the schema supported by applications that use this policy store. For more information, see [Policy store schema](https://docs.aws.amazon.com/verifiedpermissions/latest/userguide/schema.html) in the AVP User Guide.