@pulumi/aws 7.0.0-alpha.2 → 7.0.0-rc.1

package/ssoadmin/getApplicationAssignments.js

@@ -17,7 +17,7 @@ const utilities = require("../utilities");
  * import * as aws from "@pulumi/aws";
  *
  * const example = aws.ssoadmin.getApplicationAssignments({
- *     applicationArn: exampleAwsSsoadminApplication.applicationArn,
+ *     applicationArn: exampleAwsSsoadminApplication.arn,
  * });
  * ```
  */
@@ -41,7 +41,7 @@ exports.getApplicationAssignments = getApplicationAssignments;
  * import * as aws from "@pulumi/aws";
  *
  * const example = aws.ssoadmin.getApplicationAssignments({
- *     applicationArn: exampleAwsSsoadminApplication.applicationArn,
+ *     applicationArn: exampleAwsSsoadminApplication.arn,
  * });
  * ```
  */

package/types/input.d.ts

@@ -1336,33 +1336,63 @@ export interface ProviderIgnoreTags {
 export declare namespace accessanalyzer {
     interface AnalyzerConfiguration {
         /**
-         * A block that specifies the configuration of an unused access analyzer for an AWS organization or account. Documented below
+         * Specifies the configuration of an internal access analyzer for an AWS organization or account. This configuration determines how the analyzer evaluates access within your AWS environment. See `internalAccess` Block for details.
+         */
+        internalAccess?: pulumi.Input<inputs.accessanalyzer.AnalyzerConfigurationInternalAccess>;
+        /**
+         * Specifies the configuration of an unused access analyzer for an AWS organization or account. See `unusedAccess` Block for details.
          */
         unusedAccess?: pulumi.Input<inputs.accessanalyzer.AnalyzerConfigurationUnusedAccess>;
     }
+    interface AnalyzerConfigurationInternalAccess {
+        /**
+         * Information about analysis rules for the internal access analyzer. These rules determine which resources and access patterns will be analyzed. See `analysisRule` Block for Internal Access Analyzer for details.
+         */
+        analysisRule?: pulumi.Input<inputs.accessanalyzer.AnalyzerConfigurationInternalAccessAnalysisRule>;
+    }
+    interface AnalyzerConfigurationInternalAccessAnalysisRule {
+        /**
+         * List of rules for the internal access analyzer containing criteria to include in analysis. Only resources that meet the rule criteria will generate findings. See `inclusion` Block for details.
+         */
+        inclusions?: pulumi.Input<pulumi.Input<inputs.accessanalyzer.AnalyzerConfigurationInternalAccessAnalysisRuleInclusion>[]>;
+    }
+    interface AnalyzerConfigurationInternalAccessAnalysisRuleInclusion {
+        /**
+         * List of AWS account IDs to apply to the internal access analysis rule criteria. Account IDs can only be applied to the analysis rule criteria for organization-level analyzers.
+         */
+        accountIds?: pulumi.Input<pulumi.Input<string>[]>;
+        /**
+         * List of resource ARNs to apply to the internal access analysis rule criteria. The analyzer will only generate findings for resources that match these ARNs.
+         */
+        resourceArns?: pulumi.Input<pulumi.Input<string>[]>;
+        /**
+         * List of resource types to apply to the internal access analysis rule criteria. The analyzer will only generate findings for resources of these types. Refer to [InternalAccessAnalysisRuleCriteria](https://docs.aws.amazon.com/access-analyzer/latest/APIReference/API_InternalAccessAnalysisRuleCriteria.html) in the AWS IAM Access Analyzer API Reference for valid values.
+         */
+        resourceTypes?: pulumi.Input<pulumi.Input<string>[]>;
+    }
     interface AnalyzerConfigurationUnusedAccess {
         /**
-         * A block for analysis rules. Documented below
+         * Information about analysis rules for the analyzer. Analysis rules determine which entities will generate findings based on the criteria you define when you create the rule. See `analysisRule` Block for Unused Access Analyzer for details.
          */
         analysisRule?: pulumi.Input<inputs.accessanalyzer.AnalyzerConfigurationUnusedAccessAnalysisRule>;
         /**
-         * The specified access age in days for which to generate findings for unused access.
+         * Specified access age in days for which to generate findings for unused access.
          */
         unusedAccessAge?: pulumi.Input<number>;
     }
     interface AnalyzerConfigurationUnusedAccessAnalysisRule {
         /**
-         * A block for the analyzer rules containing criteria to exclude from analysis. Documented below
+         * List of rules for the analyzer containing criteria to exclude from analysis. Entities that meet the rule criteria will not generate findings. See `exclusion` Block for details.
          */
         exclusions?: pulumi.Input<pulumi.Input<inputs.accessanalyzer.AnalyzerConfigurationUnusedAccessAnalysisRuleExclusion>[]>;
     }
     interface AnalyzerConfigurationUnusedAccessAnalysisRuleExclusion {
         /**
-         * A list of account IDs to exclude from the analysis.
+         * List of AWS account IDs to apply to the analysis rule criteria. The accounts cannot include the organization analyzer owner account. Account IDs can only be applied to the analysis rule criteria for organization-level analyzers.
          */
         accountIds?: pulumi.Input<pulumi.Input<string>[]>;
         /**
-         * A list of key-value pairs for resource tags to exclude from the analysis.
+         * List of key-value pairs for resource tags to exclude from the analysis.
          */
         resourceTags?: pulumi.Input<pulumi.Input<{
             [key: string]: pulumi.Input<string>;
@@ -2222,6 +2252,42 @@ export declare namespace alb {
     }
 }
 export declare namespace amp {
+    interface QueryLoggingConfigurationDestination {
+        /**
+         * Configuration block for CloudWatch Logs destination. See `cloudwatchLogs`.
+         */
+        cloudwatchLogs?: pulumi.Input<inputs.amp.QueryLoggingConfigurationDestinationCloudwatchLogs>;
+        /**
+         * A list of filter configurations that specify which logs should be sent to the destination. See `filters`.
+         */
+        filters?: pulumi.Input<inputs.amp.QueryLoggingConfigurationDestinationFilters>;
+    }
+    interface QueryLoggingConfigurationDestinationCloudwatchLogs {
+        /**
+         * The ARN of the CloudWatch log group to which query logs will be sent.
+         */
+        logGroupArn: pulumi.Input<string>;
+    }
+    interface QueryLoggingConfigurationDestinationFilters {
+        /**
+         * The Query Samples Processed (QSP) threshold above which queries will be logged. Queries processing more samples than this threshold will be captured in logs.
+         */
+        qspThreshold: pulumi.Input<number>;
+    }
+    interface QueryLoggingConfigurationTimeouts {
+        /**
+         * A string that can be [parsed as a duration](https://pkg.go.dev/time#ParseDuration) consisting of numbers and unit suffixes, such as "30s" or "2h45m". Valid time units are "s" (seconds), "m" (minutes), "h" (hours).
+         */
+        create?: pulumi.Input<string>;
+        /**
+         * A string that can be [parsed as a duration](https://pkg.go.dev/time#ParseDuration) consisting of numbers and unit suffixes, such as "30s" or "2h45m". Valid time units are "s" (seconds), "m" (minutes), "h" (hours). Setting a timeout for a Delete operation is only applicable if changes are saved into state before the destroy operation occurs.
+         */
+        delete?: pulumi.Input<string>;
+        /**
+         * A string that can be [parsed as a duration](https://pkg.go.dev/time#ParseDuration) consisting of numbers and unit suffixes, such as "30s" or "2h45m". Valid time units are "s" (seconds), "m" (minutes), "h" (hours).
+         */
+        update?: pulumi.Input<string>;
+    }
     interface ScraperDestination {
         /**
          * Configuration block for an Amazon Managed Prometheus workspace destination. See `amp`.
@@ -2379,6 +2445,12 @@ export declare namespace amplify {
          */
         target: pulumi.Input<string>;
     }
+    interface AppJobConfig {
+        /**
+         * Size of the build instance. Valid values: `STANDARD_8GB`, `LARGE_16GB`, and `XLARGE_72GB`. Default: `STANDARD_8GB`.
+         */
+        buildComputeType?: pulumi.Input<string>;
+    }
     interface AppProductionBranch {
         /**
          * Branch name for the production branch.
@@ -14481,6 +14553,10 @@ export declare namespace codebuild {
          * the [CodeBuild User Guide](https://docs.aws.amazon.com/codebuild/latest/userguide/build-env-ref-compute-types.html).
          */
         computeType: pulumi.Input<string>;
+        /**
+         * Configuration block. Detailed below.
+         */
+        dockerServer?: pulumi.Input<inputs.codebuild.ProjectEnvironmentDockerServer>;
         /**
          * Configuration block. Detailed below.
          */
@@ -14520,6 +14596,16 @@ export declare namespace codebuild {
          */
         type: pulumi.Input<string>;
     }
+    interface ProjectEnvironmentDockerServer {
+        /**
+         * Compute type for the Docker server. Valid values: `BUILD_GENERAL1_SMALL`, `BUILD_GENERAL1_MEDIUM`, `BUILD_GENERAL1_LARGE`, `BUILD_GENERAL1_XLARGE`, and `BUILD_GENERAL1_2XLARGE`.
+         */
+        computeType: pulumi.Input<string>;
+        /**
+         * List of security group IDs to assign to the Docker server.
+         */
+        securityGroupIds?: pulumi.Input<pulumi.Input<string>[]>;
+    }
     interface ProjectEnvironmentEnvironmentVariable {
         /**
          * Environment variable's name or key.
@@ -21014,6 +21100,10 @@ export declare namespace dynamodb {
          * ARN of the table
          */
         arn?: pulumi.Input<string>;
+        /**
+         * Whether this global table will be using `STRONG` consistency mode or `EVENTUAL` consistency mode. Default value is `EVENTUAL`.
+         */
+        consistencyMode?: pulumi.Input<string>;
         /**
          * ARN of the CMK that should be used for the AWS KMS encryption.
          * This argument should only be used if the key is different from the default KMS-managed DynamoDB key, `alias/aws/dynamodb`.
@@ -26638,7 +26728,7 @@ export declare namespace ecr {
         /**
          * A list of image tag prefixes on which to take action.
          */
-        tagPrefixList?: pulumi.Input<string | pulumi.Input<string>[]>;
+        tagPrefixList?: pulumi.Input<pulumi.Input<string>[]>;
         /**
          * The tag status of the image. Either 'tagged', 'untagged', or 'any'.
          */
@@ -53770,25 +53860,23 @@ export declare namespace lightsail {
          */
         cidrListAliases?: pulumi.Input<pulumi.Input<string>[]>;
         /**
-         * Set of CIDR blocks.
+         * Set of IPv4 addresses or ranges of IPv4 addresses (in CIDR notation) that are allowed to connect to an instance through the ports, and the protocol.
          */
         cidrs?: pulumi.Input<pulumi.Input<string>[]>;
         /**
-         * First port in a range of open ports on an instance.
+         * First port in a range of open ports on an instance. See [PortInfo](https://docs.aws.amazon.com/lightsail/2016-11-28/api-reference/API_PortInfo.html) for details.
          */
         fromPort: pulumi.Input<number>;
         /**
-         * Set of IPv6 CIDR blocks.
+         * Set of IPv6 addresses or ranges of IPv6 addresses (in CIDR notation) that are allowed to connect to an instance through the ports, and the protocol.
          */
         ipv6Cidrs?: pulumi.Input<pulumi.Input<string>[]>;
         /**
-         * IP protocol name. Valid values: `tcp`, `all`, `udp`, `icmp`.
+         * IP protocol name. Valid values: `tcp`, `all`, `udp`, `icmp`, `icmpv6`. See [PortInfo](https://docs.aws.amazon.com/lightsail/2016-11-28/api-reference/API_PortInfo.html) for details.
          */
         protocol: pulumi.Input<string>;
         /**
-         * Last port in a range of open ports on an instance.
-         *
-         * The following arguments are optional:
+         * Last port in a range of open ports on an instance. See [PortInfo](https://docs.aws.amazon.com/lightsail/2016-11-28/api-reference/API_PortInfo.html) for details.
          */
         toPort: pulumi.Input<number>;
     }
@@ -57791,6 +57879,12 @@ export declare namespace networkfirewall {
         tcpIdleTimeoutSeconds?: pulumi.Input<number>;
     }
     interface FirewallPolicyFirewallPolicyStatefulRuleGroupReference {
+        /**
+         * Whether to enable deep threat inspection, which allows AWS to analyze service logs of network traffic processed by these rule groups to identify threat indicators across customers. AWS will use these threat indicators to improve the active threat defense managed rule groups and protect the security of AWS customers and services. This only applies to active threat defense maanaged rule groups.
+         *
+         * For details, refer to [AWS active threat defense for AWS Network Firewall](https://docs.aws.amazon.com/network-firewall/latest/developerguide/aws-managed-rule-groups-atd.html) in the AWS Network Firewall Developer Guide.
+         */
+        deepThreatInspection?: pulumi.Input<string>;
         /**
          * Configuration block for override values
          */
@@ -58578,6 +58672,10 @@ export declare namespace networkmanager {
          * List of strings containing Autonomous System Numbers (ASNs) to assign to Core Network Edges. By default, the core network automatically assigns an ASN for each Core Network Edge but you can optionally define the ASN in the edge-locations for each Region. The ASN uses an array of integer ranges only from `64512` to `65534` and `4200000000` to `4294967294` expressed as a string like `"64512-65534"`. No other ASN ranges can be used.
          */
         asnRanges: string[];
+        /**
+         * Indicates whether DNS resolution is enabled for the core network. The value can be either `true` or `false`. When set to `true`, DNS resolution is enabled for VPCs attached to the core network, allowing resources in different VPCs to resolve each other's domain names. The default is `true`.
+         */
+        dnsSupport?: boolean;
         /**
          * A block value of AWS Region locations where you're creating Core Network Edges. Detailed below.
          */
@@ -58586,6 +58684,10 @@ export declare namespace networkmanager {
          * The Classless Inter-Domain Routing (CIDR) block range used to create tunnels for AWS Transit Gateway Connect. The format is standard AWS CIDR range (for example, `10.0.1.0/24`). You can optionally define the inside CIDR in the Core Network Edges section per Region. The minimum is a `/24` for IPv4 or `/64` for IPv6. You can provide multiple `/24` subnets or a larger CIDR range. If you define a larger CIDR range, new Core Network Edges will be automatically assigned `/24` and `/64` subnets from the larger CIDR. an Inside CIDR block is required for attaching Connect attachments to a Core Network Edge.
          */
         insideCidrBlocks?: string[];
+        /**
+         * — (Optional) Indicates whether security group referencing is enabled for the core network. The value can be either `true` or `false`. When set to `true`, security groups in one VPC can reference security groups in another VPC attached to the core network, enabling more flexible security configurations across your network. The default is `false`.
+         */
+        securityGroupReferencingSupport?: boolean;
         /**
          * Indicates whether the core network forwards traffic over multiple equal-cost routes using VPN. The value can be either `true` or `false`. The default is `true`.
          */
@@ -58596,6 +58698,10 @@ export declare namespace networkmanager {
          * List of strings containing Autonomous System Numbers (ASNs) to assign to Core Network Edges. By default, the core network automatically assigns an ASN for each Core Network Edge but you can optionally define the ASN in the edge-locations for each Region. The ASN uses an array of integer ranges only from `64512` to `65534` and `4200000000` to `4294967294` expressed as a string like `"64512-65534"`. No other ASN ranges can be used.
          */
         asnRanges: pulumi.Input<pulumi.Input<string>[]>;
+        /**
+         * Indicates whether DNS resolution is enabled for the core network. The value can be either `true` or `false`. When set to `true`, DNS resolution is enabled for VPCs attached to the core network, allowing resources in different VPCs to resolve each other's domain names. The default is `true`.
+         */
+        dnsSupport?: pulumi.Input<boolean>;
         /**
          * A block value of AWS Region locations where you're creating Core Network Edges. Detailed below.
          */
@@ -58604,6 +58710,10 @@ export declare namespace networkmanager {
          * The Classless Inter-Domain Routing (CIDR) block range used to create tunnels for AWS Transit Gateway Connect. The format is standard AWS CIDR range (for example, `10.0.1.0/24`). You can optionally define the inside CIDR in the Core Network Edges section per Region. The minimum is a `/24` for IPv4 or `/64` for IPv6. You can provide multiple `/24` subnets or a larger CIDR range. If you define a larger CIDR range, new Core Network Edges will be automatically assigned `/24` and `/64` subnets from the larger CIDR. an Inside CIDR block is required for attaching Connect attachments to a Core Network Edge.
          */
         insideCidrBlocks?: pulumi.Input<pulumi.Input<string>[]>;
+        /**
+         * — (Optional) Indicates whether security group referencing is enabled for the core network. The value can be either `true` or `false`. When set to `true`, security groups in one VPC can reference security groups in another VPC attached to the core network, enabling more flexible security configurations across your network. The default is `false`.
+         */
+        securityGroupReferencingSupport?: pulumi.Input<boolean>;
         /**
          * Indicates whether the core network forwards traffic over multiple equal-cost routes using VPN. The value can be either `true` or `false`. The default is `true`.
          */
@@ -62227,6 +62337,18 @@ export declare namespace ram {
     }
 }
 export declare namespace rbin {
+    interface RuleExcludeResourceTag {
+        /**
+         * Tag key.
+         *
+         * The following argument is optional:
+         */
+        resourceTagKey: pulumi.Input<string>;
+        /**
+         * Tag value.
+         */
+        resourceTagValue?: pulumi.Input<string>;
+    }
     interface RuleLockConfiguration {
         /**
          * Information about the retention rule unlock delay. See `unlockDelay` below.
@@ -62235,33 +62357,33 @@ export declare namespace rbin {
     }
     interface RuleLockConfigurationUnlockDelay {
         /**
-         * The unit of time in which to measure the unlock delay. Currently, the unlock delay can be measure only in days.
+         * Unit of time in which to measure the unlock delay. Currently, the unlock delay can be measure only in days.
          */
         unlockDelayUnit: pulumi.Input<string>;
         /**
-         * The unlock delay period, measured in the unit specified for UnlockDelayUnit.
+         * Unlock delay period, measured in the unit specified for UnlockDelayUnit.
          */
         unlockDelayValue: pulumi.Input<number>;
     }
     interface RuleResourceTag {
         /**
-         * The tag key.
+         * Tag key.
          *
          * The following argument is optional:
          */
         resourceTagKey: pulumi.Input<string>;
         /**
-         * The tag value.
+         * Tag value.
          */
         resourceTagValue?: pulumi.Input<string>;
     }
     interface RuleRetentionPeriod {
         /**
-         * The unit of time in which the retention period is measured. Currently, only DAYS is supported.
+         * Unit of time in which the retention period is measured. Currently, only DAYS is supported.
          */
         retentionPeriodUnit: pulumi.Input<string>;
         /**
-         * The period value for which the retention rule is to retain resources. The period is measured using the unit specified for RetentionPeriodUnit.
+         * Period value for which the retention rule is to retain resources. The period is measured using the unit specified for RetentionPeriodUnit.
          */
         retentionPeriodValue: pulumi.Input<number>;
     }
@@ -67132,6 +67254,41 @@ export declare namespace s3tables {
          */
         minSnapshotsToKeep: pulumi.Input<number>;
     }
+    interface TableMetadata {
+        /**
+         * Contains details about the metadata for an Iceberg table. This block defines the schema structure for the Apache Iceberg table format.
+         * See `iceberg` below.
+         */
+        iceberg: pulumi.Input<inputs.s3tables.TableMetadataIceberg>;
+    }
+    interface TableMetadataIceberg {
+        /**
+         * Schema configuration for the Iceberg table.
+         * See `schema` below.
+         */
+        schema: pulumi.Input<inputs.s3tables.TableMetadataIcebergSchema>;
+    }
+    interface TableMetadataIcebergSchema {
+        /**
+         * List of schema fields for the Iceberg table. Each field defines a column in the table schema.
+         * See `field` below.
+         */
+        fields?: pulumi.Input<pulumi.Input<inputs.s3tables.TableMetadataIcebergSchemaField>[]>;
+    }
+    interface TableMetadataIcebergSchemaField {
+        /**
+         * The name of the field.
+         */
+        name: pulumi.Input<string>;
+        /**
+         * A Boolean value that specifies whether values are required for each row in this field. Defaults to `false`.
+         */
+        required?: pulumi.Input<boolean>;
+        /**
+         * The field type. S3 Tables supports all Apache Iceberg primitive types including: `boolean`, `int`, `long`, `float`, `double`, `decimal(precision,scale)`, `date`, `time`, `timestamp`, `timestamptz`, `string`, `uuid`, `fixed(length)`, `binary`.
+         */
+        type: pulumi.Input<string>;
+    }
 }
 export declare namespace sagemaker {
     interface AppImageConfigCodeEditorAppImageConfig {
@@ -80920,6 +81077,10 @@ export declare namespace wafv2 {
          * Additional configuration for using the Account Creation Fraud Prevention managed rule group. Use this to specify information such as the registration page of your application and the type of content to accept or reject from the client.
          */
         awsManagedRulesAcfpRuleSet?: pulumi.Input<inputs.wafv2.WebAclRuleStatementManagedRuleGroupStatementManagedRuleGroupConfigAwsManagedRulesAcfpRuleSet>;
+        /**
+         * Configuration for using the anti-DDoS managed rule group. See `awsManagedRulesAntiDdosRuleSet` for more details.
+         */
+        awsManagedRulesAntiDdosRuleSet?: pulumi.Input<inputs.wafv2.WebAclRuleStatementManagedRuleGroupStatementManagedRuleGroupConfigAwsManagedRulesAntiDdosRuleSet>;
         /**
          * Additional configuration for using the Account Takeover Protection managed rule group. Use this to specify information such as the sign-in page of your application and the type of content to accept or reject from the client.
          */
@@ -81089,6 +81250,42 @@ export declare namespace wafv2 {
          */
         successCodes: pulumi.Input<pulumi.Input<number>[]>;
     }
+    interface WebAclRuleStatementManagedRuleGroupStatementManagedRuleGroupConfigAwsManagedRulesAntiDdosRuleSet {
+        /**
+         * Configuration for the request handling that's applied by the managed rule group rules `ChallengeAllDuringEvent` and `ChallengeDDoSRequests` during a distributed denial of service (DDoS) attack. See `clientSideActionConfig` for more details.
+         */
+        clientSideActionConfig: pulumi.Input<inputs.wafv2.WebAclRuleStatementManagedRuleGroupStatementManagedRuleGroupConfigAwsManagedRulesAntiDdosRuleSetClientSideActionConfig>;
+        /**
+         * Sensitivity that the rule group rule DDoSRequests uses when matching against the DDoS suspicion labeling on a request. Valid values are `LOW` (Default), `MEDIUM`, and `HIGH`.
+         */
+        sensitivityToBlock?: pulumi.Input<string>;
+    }
+    interface WebAclRuleStatementManagedRuleGroupStatementManagedRuleGroupConfigAwsManagedRulesAntiDdosRuleSetClientSideActionConfig {
+        /**
+         * Configuration for the use of the `AWSManagedRulesAntiDDoSRuleSet` rules `ChallengeAllDuringEvent` and `ChallengeDDoSRequests`.
+         */
+        challenge: pulumi.Input<inputs.wafv2.WebAclRuleStatementManagedRuleGroupStatementManagedRuleGroupConfigAwsManagedRulesAntiDdosRuleSetClientSideActionConfigChallenge>;
+    }
+    interface WebAclRuleStatementManagedRuleGroupStatementManagedRuleGroupConfigAwsManagedRulesAntiDdosRuleSetClientSideActionConfigChallenge {
+        /**
+         * Block for the list of the regular expressions to match against the web request URI, used to identify requests that can't handle a silent browser challenge.
+         */
+        exemptUriRegularExpressions?: pulumi.Input<pulumi.Input<inputs.wafv2.WebAclRuleStatementManagedRuleGroupStatementManagedRuleGroupConfigAwsManagedRulesAntiDdosRuleSetClientSideActionConfigChallengeExemptUriRegularExpression>[]>;
+        /**
+         * Sensitivity that the rule group rule ChallengeDDoSRequests uses when matching against the DDoS suspicion labeling on a request. Valid values are `LOW`, `MEDIUM` and `HIGH` (Default).
+         */
+        sensitivity?: pulumi.Input<string>;
+        /**
+         * Configuration whether to use the `AWSManagedRulesAntiDDoSRuleSet` rules `ChallengeAllDuringEvent` and `ChallengeDDoSRequests` in the rule group evaluation. Valid values are `ENABLED` and `DISABLED`.
+         */
+        usageOfAction: pulumi.Input<string>;
+    }
+    interface WebAclRuleStatementManagedRuleGroupStatementManagedRuleGroupConfigAwsManagedRulesAntiDdosRuleSetClientSideActionConfigChallengeExemptUriRegularExpression {
+        /**
+         * Regular expression string.
+         */
+        regexString?: pulumi.Input<string>;
+    }
     interface WebAclRuleStatementManagedRuleGroupStatementManagedRuleGroupConfigAwsManagedRulesAtpRuleSet {
         /**
          * Whether or not to allow the use of regular expressions in the login page path.
@@ -81238,9 +81435,6 @@ export declare namespace wafv2 {
          * Instructs AWS WAF to run a Captcha check against the web request. See `captcha` below for details.
          */
         captcha?: pulumi.Input<inputs.wafv2.WebAclRuleStatementManagedRuleGroupStatementRuleActionOverrideActionToUseCaptcha>;
-        /**
-         * Instructs AWS WAF to run a check against the request to verify that the request is coming from a legitimate client session. See `challenge` below for details.
-         */
         challenge?: pulumi.Input<inputs.wafv2.WebAclRuleStatementManagedRuleGroupStatementRuleActionOverrideActionToUseChallenge>;
         count?: pulumi.Input<inputs.wafv2.WebAclRuleStatementManagedRuleGroupStatementRuleActionOverrideActionToUseCount>;
     }
@@ -84883,9 +85077,6 @@ export declare namespace wafv2 {
          * Instructs AWS WAF to run a Captcha check against the web request. See `captcha` below for details.
          */
         captcha?: pulumi.Input<inputs.wafv2.WebAclRuleStatementRuleGroupReferenceStatementRuleActionOverrideActionToUseCaptcha>;
-        /**
-         * Instructs AWS WAF to run a check against the request to verify that the request is coming from a legitimate client session. See `challenge` below for details.
-         */
         challenge?: pulumi.Input<inputs.wafv2.WebAclRuleStatementRuleGroupReferenceStatementRuleActionOverrideActionToUseChallenge>;
         count?: pulumi.Input<inputs.wafv2.WebAclRuleStatementRuleGroupReferenceStatementRuleActionOverrideActionToUseCount>;
     }

package/types/input.js.map

@@ -1 +1 @@
-{"version":3,"file":"input.js","sourceRoot":"","sources":["../../types/input.ts"],"names":[],"mappings":";AAAA,sEAAsE;AACtE,iFAAiF;;;AAmpsBjF,IAAiB,GAAG,CAqhKnB;AArhKD,WAAiB,GAAG;IAgmIhB;;OAEG;IACH,SAAgB,kCAAkC,CAAC,GAAwB;;QACvE,uCACO,GAAG,KACN,WAAW,EAAE,MAAA,CAAC,GAAG,CAAC,WAAW,CAAC,mCAAI,EAAE,IACtC;IACN,CAAC;IALe,sCAAkC,qCAKjD,CAAA;IA4CD;;OAEG;IACH,SAAgB,mCAAmC,CAAC,GAAyB;;QACzE,uCACO,GAAG,KACN,WAAW,EAAE,MAAA,CAAC,GAAG,CAAC,WAAW,CAAC,mCAAI,EAAE,IACtC;IACN,CAAC;IALe,uCAAmC,sCAKlD,CAAA;AAy3BL,CAAC,EArhKgB,GAAG,GAAH,WAAG,KAAH,WAAG,QAqhKnB;AAmhsCD,IAAiB,GAAG,CAwcnB;AAxcD,WAAiB,GAAG;IAyXhB;;OAEG;IACH,SAAgB,sCAAsC,CAAC,GAA4B;;QAC/E,uCACO,GAAG,KACN,WAAW,EAAE,MAAA,CAAC,GAAG,CAAC,WAAW,CAAC,mCAAI,WAAW,IAC/C;IACN,CAAC;IALe,0CAAsC,yCAKrD,CAAA;AAuEL,CAAC,EAxcgB,GAAG,GAAH,WAAG,KAAH,WAAG,QAwcnB"}
+{"version":3,"file":"input.js","sourceRoot":"","sources":["../../types/input.ts"],"names":[],"mappings":";AAAA,sEAAsE;AACtE,iFAAiF;;;AAsvsBjF,IAAiB,GAAG,CAqhKnB;AArhKD,WAAiB,GAAG;IAgmIhB;;OAEG;IACH,SAAgB,kCAAkC,CAAC,GAAwB;;QACvE,uCACO,GAAG,KACN,WAAW,EAAE,MAAA,CAAC,GAAG,CAAC,WAAW,CAAC,mCAAI,EAAE,IACtC;IACN,CAAC;IALe,sCAAkC,qCAKjD,CAAA;IA4CD;;OAEG;IACH,SAAgB,mCAAmC,CAAC,GAAyB;;QACzE,uCACO,GAAG,KACN,WAAW,EAAE,MAAA,CAAC,GAAG,CAAC,WAAW,CAAC,mCAAI,EAAE,IACtC;IACN,CAAC;IALe,uCAAmC,sCAKlD,CAAA;AAy3BL,CAAC,EArhKgB,GAAG,GAAH,WAAG,KAAH,WAAG,QAqhKnB;AAojsCD,IAAiB,GAAG,CAwcnB;AAxcD,WAAiB,GAAG;IAyXhB;;OAEG;IACH,SAAgB,sCAAsC,CAAC,GAA4B;;QAC/E,uCACO,GAAG,KACN,WAAW,EAAE,MAAA,CAAC,GAAG,CAAC,WAAW,CAAC,mCAAI,WAAW,IAC/C;IACN,CAAC;IALe,0CAAsC,yCAKrD,CAAA;AAuEL,CAAC,EAxcgB,GAAG,GAAH,WAAG,KAAH,WAAG,QAwcnB"}