@pulumi/aws 7.2.0-alpha.1753487600 → 7.2.0-alpha.1753734409

package/types/output.d.ts

@@ -18668,6 +18668,48 @@ export declare namespace cognito {
          */
         value: string;
     }
+    interface LogDeliveryConfigurationLogConfiguration {
+        /**
+         * Configuration for CloudWatch Logs delivery. See CloudWatch Logs Configuration below.
+         */
+        cloudWatchLogsConfiguration?: outputs.cognito.LogDeliveryConfigurationLogConfigurationCloudWatchLogsConfiguration;
+        /**
+         * The event source to configure logging for. Valid values are `userNotification` and `userAuthEvents`.
+         */
+        eventSource: string;
+        /**
+         * Configuration for Kinesis Data Firehose delivery. See Firehose Configuration below.
+         */
+        firehoseConfiguration?: outputs.cognito.LogDeliveryConfigurationLogConfigurationFirehoseConfiguration;
+        /**
+         * The log level to set for the event source. Valid values are `ERROR` and `INFO`.
+         */
+        logLevel: string;
+        /**
+         * Configuration for S3 delivery. See S3 Configuration below.
+         *
+         * > **Note:** At least one destination configuration (`cloudWatchLogsConfiguration`, `firehoseConfiguration`, or `s3Configuration`) must be specified for each log configuration.
+         */
+        s3Configuration?: outputs.cognito.LogDeliveryConfigurationLogConfigurationS3Configuration;
+    }
+    interface LogDeliveryConfigurationLogConfigurationCloudWatchLogsConfiguration {
+        /**
+         * The ARN of the CloudWatch Logs log group to which the logs should be delivered.
+         */
+        logGroupArn?: string;
+    }
+    interface LogDeliveryConfigurationLogConfigurationFirehoseConfiguration {
+        /**
+         * The ARN of the Kinesis Data Firehose delivery stream to which the logs should be delivered.
+         */
+        streamArn?: string;
+    }
+    interface LogDeliveryConfigurationLogConfigurationS3Configuration {
+        /**
+         * The ARN of the S3 bucket to which the logs should be delivered.
+         */
+        bucketArn?: string;
+    }
     interface ManagedUserPoolClientAnalyticsConfiguration {
         /**
          * Application ARN for an Amazon Pinpoint application. It conflicts with `externalId` and `roleArn`.
@@ -25511,11 +25553,21 @@ export declare namespace dms {
          */
         nestingLevel?: string;
     }
+    interface EndpointOracleSettings {
+        /**
+         * Authentication mechanism to access the Oracle source endpoint. Default is `password`. Valid values are `password` and `kerberos`.
+         */
+        authenticationMethod: string;
+    }
     interface EndpointPostgresSettings {
         /**
          * For use with change data capture (CDC) only, this attribute has AWS DMS bypass foreign keys and user triggers to reduce the time it takes to bulk load data.
          */
         afterConnectScript?: string;
+        /**
+         * Specifies the authentication method. Valid values: `password`, `iam`.
+         */
+        authenticationMethod: string;
         /**
          * The Babelfish for Aurora PostgreSQL database name for the endpoint.
          */
@@ -25572,6 +25624,10 @@ export declare namespace dms {
          * Specifies the plugin to use to create a replication slot. Valid values: `pglogical`, `testDecoding`.
          */
         pluginName?: string;
+        /**
+         * Specifies the IAM role to use to authenticate the connection.
+         */
+        serviceAccessRoleArn?: string;
         /**
          * Sets the name of a previously created logical replication slot for a CDC load of the PostgreSQL source instance.
          */
@@ -25678,6 +25734,7 @@ export declare namespace dms {
     }
     interface GetEndpointPostgresSetting {
         afterConnectScript: string;
+        authenticationMethod: string;
         babelfishDatabaseName: string;
         captureDdls: boolean;
         databaseMode: string;
@@ -25692,6 +25749,7 @@ export declare namespace dms {
         mapLongVarcharAs: string;
         maxFileSize: number;
         pluginName: string;
+        serviceAccessRoleArn: string;
         slotName: string;
     }
     interface GetEndpointRedisSetting {
@@ -25794,6 +25852,20 @@ export declare namespace dms {
          */
         vpcSecurityGroupIds: string[];
     }
+    interface ReplicationInstanceKerberosAuthenticationSettings {
+        /**
+         * ARN of the IAM role that grants AWS DMS access to the secret containing key cache file for the Kerberos authentication.
+         */
+        keyCacheSecretIamArn: string;
+        /**
+         * Secret ID that stores the key cache file required for Kerberos authentication.
+         */
+        keyCacheSecretId: string;
+        /**
+         * Contents of krb5 configuration file required for Kerberos authentication.
+         */
+        krb5FileContents: string;
+    }
 }
 export declare namespace docdb {
     interface ClusterMasterUserSecret {
@@ -32577,6 +32649,16 @@ export declare namespace ec2transitgateway {
     }
 }
 export declare namespace ecr {
+    interface GetImagesImageId {
+        /**
+         * The sha256 digest of the image manifest.
+         */
+        imageDigest: string;
+        /**
+         * The tag associated with the image.
+         */
+        imageTag: string;
+    }
     interface GetLifecyclePolicyDocumentRule {
         /**
          * Specifies the action type.
@@ -33966,7 +34048,7 @@ export declare namespace eks {
          */
         authenticationMode: string;
         /**
-         * Whether or not to bootstrap the access config values to the cluster. Default is `false`.
+         * Whether or not to bootstrap the access config values to the cluster. Default is `true`.
          */
         bootstrapClusterCreatorAdminPermissions?: boolean;
     }
@@ -42765,6 +42847,10 @@ export declare namespace inspector2 {
         value: string;
     }
     interface OrganizationConfigurationAutoEnable {
+        /**
+         * Whether code repository scans are automatically enabled for new members of your Amazon Inspector organization.
+         */
+        codeRepository?: boolean;
         /**
          * Whether Amazon EC2 scans are automatically enabled for new members of your Amazon Inspector organization.
          */
@@ -65994,6 +66080,12 @@ export declare namespace neptunegraph {
     }
 }
 export declare namespace networkfirewall {
+    interface FirewallAvailabilityZoneMapping {
+        /**
+         * The ID of the Availability Zone where the firewall endpoint is located..
+         */
+        availabilityZoneId: string;
+    }
     interface FirewallEncryptionConfiguration {
         /**
          * The ID of the customer managed key. You can use any of the [key identifiers](https://docs.aws.amazon.com/kms/latest/developerguide/concepts.html#key-id) that KMS supports, unless you're using a key that's managed by another account. If you're using a key managed by another account, then specify the key ARN.
@@ -66009,6 +66101,10 @@ export declare namespace networkfirewall {
          * Set of subnets configured for use by the firewall.
          */
         syncStates: outputs.networkfirewall.FirewallFirewallStatusSyncState[];
+        /**
+         * Set of transit gateway configured for use by the firewall.
+         */
+        transitGatewayAttachmentSyncStates: outputs.networkfirewall.FirewallFirewallStatusTransitGatewayAttachmentSyncState[];
     }
     interface FirewallFirewallStatusSyncState {
         /**
@@ -66030,6 +66126,12 @@ export declare namespace networkfirewall {
          */
         subnetId: string;
     }
+    interface FirewallFirewallStatusTransitGatewayAttachmentSyncState {
+        /**
+         * The unique identifier of the transit gateway attachment.
+         */
+        attachmentId: string;
+    }
     interface FirewallPolicyEncryptionConfiguration {
         /**
          * The ID of the customer managed key. You can use any of the [key identifiers](https://docs.aws.amazon.com/kms/latest/developerguide/concepts.html#key-id) that KMS supports, unless you're using a key that's managed by another account. If you're using a key managed by another account, then specify the key ARN.
@@ -66193,6 +66295,22 @@ export declare namespace networkfirewall {
          */
         subnetId: string;
     }
+    interface FirewallTransitGatewayAttachmentAccepterTimeouts {
+        /**
+         * A string that can be [parsed as a duration](https://pkg.go.dev/time#ParseDuration) consisting of numbers and unit suffixes, such as "30s" or "2h45m". Valid time units are "s" (seconds), "m" (minutes), "h" (hours).
+         */
+        create?: string;
+        /**
+         * A string that can be [parsed as a duration](https://pkg.go.dev/time#ParseDuration) consisting of numbers and unit suffixes, such as "30s" or "2h45m". Valid time units are "s" (seconds), "m" (minutes), "h" (hours). Setting a timeout for a Delete operation is only applicable if changes are saved into state before the destroy operation occurs.
+         */
+        delete?: string;
+    }
+    interface GetFirewallAvailabilityZoneMapping {
+        /**
+         * The ID of the Availability Zone where the firewall endpoint is located.
+         */
+        availabilityZoneId: string;
+    }
     interface GetFirewallEncryptionConfiguration {
         /**
          * The ID of the AWS Key Management Service (AWS KMS) customer managed key.
@@ -66212,11 +66330,18 @@ export declare namespace networkfirewall {
          * Summary of sync states for all availability zones in which the firewall is configured.
          */
         configurationSyncStateSummary: string;
+        /**
+         * The current status of the firewall endpoint instantiation in the subnet.
+         */
         status: string;
         /**
          * Set of subnets configured for use by the firewall.
          */
         syncStates: outputs.networkfirewall.GetFirewallFirewallStatusSyncState[];
+        /**
+         * Set of transit gateway configured for use by the firewall.
+         */
+        transitGatewayAttachmentSyncStates: outputs.networkfirewall.GetFirewallFirewallStatusTransitGatewayAttachmentSyncState[];
     }
     interface GetFirewallFirewallStatusCapacityUsageSummary {
         /**
@@ -66259,12 +66384,33 @@ export declare namespace networkfirewall {
          * The identifier of the firewall endpoint that AWS Network Firewall has instantiated in the subnet. You use this to identify the firewall endpoint in the VPC route tables, when you redirect the VPC traffic through the endpoint.
          */
         endpointId: string;
+        /**
+         * The current status of the firewall endpoint instantiation in the subnet.
+         */
         status: string;
+        /**
+         * A message providing additional information about the current status.
+         */
+        statusMessage: string;
         /**
          * The unique identifier for the subnet.
          */
         subnetId: string;
     }
+    interface GetFirewallFirewallStatusTransitGatewayAttachmentSyncState {
+        /**
+         * The unique identifier of the transit gateway attachment.
+         */
+        attachmentId: string;
+        /**
+         * A message providing additional information about the current status.
+         */
+        statusMessage: string;
+        /**
+         * The current status of the transit gateway attachment.
+         */
+        transitGatewayAttachmentStatus: string;
+    }
     interface GetFirewallPolicyFirewallPolicy {
         policyVariables: outputs.networkfirewall.GetFirewallPolicyFirewallPolicyPolicyVariable[];
         statefulDefaultActions: string[];
@@ -74653,6 +74799,106 @@ export declare namespace s3 {
     }
     interface BucketLoggingV2TargetObjectKeyFormatSimplePrefix {
     }
+    interface BucketMetadataConfigurationMetadataConfiguration {
+        /**
+         * Destination information for the S3 Metadata configuration.
+         */
+        destinations: outputs.s3.BucketMetadataConfigurationMetadataConfigurationDestination[];
+        /**
+         * Inventory table configuration. See `inventoryTableConfiguration` Block for details.
+         */
+        inventoryTableConfiguration?: outputs.s3.BucketMetadataConfigurationMetadataConfigurationInventoryTableConfiguration;
+        /**
+         * Journal table configuration. See `journalTableConfiguration` Block for details.
+         */
+        journalTableConfiguration?: outputs.s3.BucketMetadataConfigurationMetadataConfigurationJournalTableConfiguration;
+    }
+    interface BucketMetadataConfigurationMetadataConfigurationDestination {
+        /**
+         * ARN of the table bucket where the metadata configuration is stored.
+         */
+        tableBucketArn: string;
+        /**
+         * Type of the table bucket where the metadata configuration is stored.
+         */
+        tableBucketType: string;
+        /**
+         * Namespace in the table bucket where the metadata tables for the metadata configuration are stored.
+         */
+        tableNamespace: string;
+    }
+    interface BucketMetadataConfigurationMetadataConfigurationInventoryTableConfiguration {
+        /**
+         * Configuration state of the inventory table, indicating whether the inventory table is enabled or disabled. Valid values: `ENABLED`, `DISABLED`.
+         */
+        configurationState: string;
+        /**
+         * Encryption configuration for the inventory table. See `encryptionConfiguration` Block for details.
+         */
+        encryptionConfiguration?: outputs.s3.BucketMetadataConfigurationMetadataConfigurationInventoryTableConfigurationEncryptionConfiguration;
+        /**
+         * Inventory table ARN.
+         */
+        tableArn: string;
+        /**
+         * Inventory table name.
+         */
+        tableName: string;
+    }
+    interface BucketMetadataConfigurationMetadataConfigurationInventoryTableConfigurationEncryptionConfiguration {
+        /**
+         * KMS key ARN when `sseAlgorithm` is `aws:kms`.
+         */
+        kmsKeyArn?: string;
+        /**
+         * Encryption type for the metadata table. Valid values: `aws:kms`, `AES256`.
+         */
+        sseAlgorithm: string;
+    }
+    interface BucketMetadataConfigurationMetadataConfigurationJournalTableConfiguration {
+        /**
+         * Encryption configuration for the journal table. See `encryptionConfiguration` Block for details.
+         */
+        encryptionConfiguration?: outputs.s3.BucketMetadataConfigurationMetadataConfigurationJournalTableConfigurationEncryptionConfiguration;
+        /**
+         * Journal table record expiration settings. See `recordExpiration` Block for details.
+         */
+        recordExpiration?: outputs.s3.BucketMetadataConfigurationMetadataConfigurationJournalTableConfigurationRecordExpiration;
+        /**
+         * Journal table ARN.
+         */
+        tableArn: string;
+        /**
+         * Journal table name.
+         */
+        tableName: string;
+    }
+    interface BucketMetadataConfigurationMetadataConfigurationJournalTableConfigurationEncryptionConfiguration {
+        /**
+         * KMS key ARN when `sseAlgorithm` is `aws:kms`.
+         */
+        kmsKeyArn?: string;
+        /**
+         * Encryption type for the metadata table. Valid values: `aws:kms`, `AES256`.
+         */
+        sseAlgorithm: string;
+    }
+    interface BucketMetadataConfigurationMetadataConfigurationJournalTableConfigurationRecordExpiration {
+        /**
+         * Number of days to retain journal table records.
+         */
+        days?: number;
+        /**
+         * Whether journal table record expiration is enabled or disabled. Valid values: `ENABLED`, `DISABLED`.
+         */
+        expiration: string;
+    }
+    interface BucketMetadataConfigurationTimeouts {
+        /**
+         * A string that can be [parsed as a duration](https://pkg.go.dev/time#ParseDuration) consisting of numbers and unit suffixes, such as "30s" or "2h45m". Valid time units are "s" (seconds), "m" (minutes), "h" (hours).
+         */
+        create?: string;
+    }
     interface BucketMetricFilter {
         /**
          * S3 Access Point ARN for filtering (singular).
@@ -79876,8 +80122,17 @@ export declare namespace scheduler {
 }
 export declare namespace secretsmanager {
     interface GetSecretRotationRotationRule {
+        /**
+         * Number of days between automatic scheduled rotations of the secret.
+         */
         automaticallyAfterDays: number;
+        /**
+         * Length of the rotation window in hours.
+         */
         duration: string;
+        /**
+         * A `cron()` or `rate()` expression that defines the schedule for rotating the secret.
+         */
         scheduleExpression: string;
     }
     interface GetSecretVersionsVersion {
@@ -87456,6 +87711,7 @@ export declare namespace wafv2 {
         scopeDownStatement?: outputs.wafv2.RuleGroupRuleStatementRateBasedStatementScopeDownStatement;
     }
     interface RuleGroupRuleStatementRateBasedStatementCustomKey {
+        asn?: outputs.wafv2.RuleGroupRuleStatementRateBasedStatementCustomKeyAsn;
         /**
          * (Optional) Use the value of a cookie in the request as an aggregate key. See RateLimit `cookie` below for details.
          */
@@ -87501,6 +87757,8 @@ export declare namespace wafv2 {
          */
         uriPath?: outputs.wafv2.RuleGroupRuleStatementRateBasedStatementCustomKeyUriPath;
     }
+    interface RuleGroupRuleStatementRateBasedStatementCustomKeyAsn {
+    }
     interface RuleGroupRuleStatementRateBasedStatementCustomKeyCookie {
         /**
          * A friendly name of the rule group.
@@ -92969,6 +93227,10 @@ export declare namespace wafv2 {
         scopeDownStatement?: outputs.wafv2.WebAclRuleStatementRateBasedStatementScopeDownStatement;
     }
     interface WebAclRuleStatementRateBasedStatementCustomKey {
+        /**
+         * Use an Autonomous System Number (ASN) derived from the request's originating or forwarded IP address as an aggregate key. See RateLimit `asn` below for details.
+         */
+        asn?: outputs.wafv2.WebAclRuleStatementRateBasedStatementCustomKeyAsn;
         /**
          * Use the value of a cookie in the request as an aggregate key. See RateLimit `cookie` below for details.
          */
@@ -93014,6 +93276,8 @@ export declare namespace wafv2 {
          */
         uriPath?: outputs.wafv2.WebAclRuleStatementRateBasedStatementCustomKeyUriPath;
     }
+    interface WebAclRuleStatementRateBasedStatementCustomKeyAsn {
+    }
     interface WebAclRuleStatementRateBasedStatementCustomKeyCookie {
         /**
          * The name of the cookie to use.

package/types/output.js.map

@@ -1 +1 @@
-{"version":3,"file":"output.js","sourceRoot":"","sources":["../../types/output.ts"],"names":[],"mappings":";AAAA,sEAAsE;AACtE,iFAAiF;;;AAs81EjF,IAAiB,GAAG,CA4cnB;AA5cD,WAAiB,GAAG;IA4XhB;;OAEG;IACH,SAAgB,sCAAsC,CAAC,GAA4B;;QAC/E,uCACO,GAAG,KACN,WAAW,EAAE,MAAA,CAAC,GAAG,CAAC,WAAW,CAAC,mCAAI,WAAW,IAC/C;IACN,CAAC;IALe,0CAAsC,yCAKrD,CAAA;AAwEL,CAAC,EA5cgB,GAAG,GAAH,WAAG,KAAH,WAAG,QA4cnB"}
+{"version":3,"file":"output.js","sourceRoot":"","sources":["../../types/output.ts"],"names":[],"mappings":";AAAA,sEAAsE;AACtE,iFAAiF;;;AAom2EjF,IAAiB,GAAG,CA4cnB;AA5cD,WAAiB,GAAG;IA4XhB;;OAEG;IACH,SAAgB,sCAAsC,CAAC,GAA4B;;QAC/E,uCACO,GAAG,KACN,WAAW,EAAE,MAAA,CAAC,GAAG,CAAC,WAAW,CAAC,mCAAI,WAAW,IAC/C;IACN,CAAC;IALe,0CAAsC,yCAKrD,CAAA;AAwEL,CAAC,EA5cgB,GAAG,GAAH,WAAG,KAAH,WAAG,QA4cnB"}

package/wafv2/ruleGroup.d.ts

@@ -50,6 +50,7 @@ export declare class RuleGroup extends pulumi.CustomResource {
      * The rule blocks used to identify the web requests that you want to `allow`, `block`, or `count`. See Rules below for details.
      */
     readonly rules: pulumi.Output<outputs.wafv2.RuleGroupRule[] | undefined>;
+    readonly rulesJson: pulumi.Output<string | undefined>;
     /**
      * Specifies whether this is for an AWS CloudFront distribution or for a regional application. Valid values are `CLOUDFRONT` or `REGIONAL`. To work with CloudFront, you must also specify the region `us-east-1` (N. Virginia) on the AWS provider.
      */
@@ -116,6 +117,7 @@ export interface RuleGroupState {
      * The rule blocks used to identify the web requests that you want to `allow`, `block`, or `count`. See Rules below for details.
      */
     rules?: pulumi.Input<pulumi.Input<inputs.wafv2.RuleGroupRule>[]>;
+    rulesJson?: pulumi.Input<string>;
     /**
      * Specifies whether this is for an AWS CloudFront distribution or for a regional application. Valid values are `CLOUDFRONT` or `REGIONAL`. To work with CloudFront, you must also specify the region `us-east-1` (N. Virginia) on the AWS provider.
      */
@@ -169,6 +171,7 @@ export interface RuleGroupArgs {
      * The rule blocks used to identify the web requests that you want to `allow`, `block`, or `count`. See Rules below for details.
      */
     rules?: pulumi.Input<pulumi.Input<inputs.wafv2.RuleGroupRule>[]>;
+    rulesJson?: pulumi.Input<string>;
     /**
      * Specifies whether this is for an AWS CloudFront distribution or for a regional application. Valid values are `CLOUDFRONT` or `REGIONAL`. To work with CloudFront, you must also specify the region `us-east-1` (N. Virginia) on the AWS provider.
      */

package/wafv2/ruleGroup.js

@@ -42,6 +42,7 @@ class RuleGroup extends pulumi.CustomResource {
             resourceInputs["namePrefix"] = state ? state.namePrefix : undefined;
             resourceInputs["region"] = state ? state.region : undefined;
             resourceInputs["rules"] = state ? state.rules : undefined;
+            resourceInputs["rulesJson"] = state ? state.rulesJson : undefined;
             resourceInputs["scope"] = state ? state.scope : undefined;
             resourceInputs["tags"] = state ? state.tags : undefined;
             resourceInputs["tagsAll"] = state ? state.tagsAll : undefined;
@@ -65,6 +66,7 @@ class RuleGroup extends pulumi.CustomResource {
             resourceInputs["namePrefix"] = args ? args.namePrefix : undefined;
             resourceInputs["region"] = args ? args.region : undefined;
             resourceInputs["rules"] = args ? args.rules : undefined;
+            resourceInputs["rulesJson"] = args ? args.rulesJson : undefined;
             resourceInputs["scope"] = args ? args.scope : undefined;
             resourceInputs["tags"] = args ? args.tags : undefined;
             resourceInputs["visibilityConfig"] = args ? args.visibilityConfig : undefined;

package/wafv2/ruleGroup.js.map

@@ -1 +1 @@
-{"version":3,"file":"ruleGroup.js","sourceRoot":"","sources":["../../wafv2/ruleGroup.ts"],"names":[],"mappings":";AAAA,sEAAsE;AACtE,iFAAiF;;;AAEjF,yCAAyC;AAIzC,0CAA0C;AAE1C,MAAa,SAAU,SAAQ,MAAM,CAAC,cAAc;IAChD;;;;;;;;OAQG;IACI,MAAM,CAAC,GAAG,CAAC,IAAY,EAAE,EAA2B,EAAE,KAAsB,EAAE,IAAmC;QACpH,OAAO,IAAI,SAAS,CAAC,IAAI,EAAO,KAAK,kCAAO,IAAI,KAAE,EAAE,EAAE,EAAE,IAAG,CAAC;IAChE,CAAC;IAKD;;;OAGG;IACI,MAAM,CAAC,UAAU,CAAC,GAAQ;QAC7B,IAAI,GAAG,KAAK,SAAS,IAAI,GAAG,KAAK,IAAI,EAAE;YACnC,OAAO,KAAK,CAAC;SAChB;QACD,OAAO,GAAG,CAAC,cAAc,CAAC,KAAK,SAAS,CAAC,YAAY,CAAC;IAC1D,CAAC;IA4DD,YAAY,IAAY,EAAE,WAA4C,EAAE,IAAmC;QACvG,IAAI,cAAc,GAAkB,EAAE,CAAC;QACvC,IAAI,GAAG,IAAI,IAAI,EAAE,CAAC;QAClB,IAAI,IAAI,CAAC,EAAE,EAAE;YACT,MAAM,KAAK,GAAG,WAAyC,CAAC;YACxD,cAAc,CAAC,KAAK,CAAC,GAAG,KAAK,CAAC,CAAC,CAAC,KAAK,CAAC,GAAG,CAAC,CAAC,CAAC,SAAS,CAAC;YACtD,cAAc,CAAC,UAAU,CAAC,GAAG,KAAK,CAAC,CAAC,CAAC,KAAK,CAAC,QAAQ,CAAC,CAAC,CAAC,SAAS,CAAC;YAChE,cAAc,CAAC,sBAAsB,CAAC,GAAG,KAAK,CAAC,CAAC,CAAC,KAAK,CAAC,oBAAoB,CAAC,CAAC,CAAC,SAAS,CAAC;YACxF,cAAc,CAAC,aAAa,CAAC,GAAG,KAAK,CAAC,CAAC,CAAC,KAAK,CAAC,WAAW,CAAC,CAAC,CAAC,SAAS,CAAC;YACtE,cAAc,CAAC,WAAW,CAAC,GAAG,KAAK,CAAC,CAAC,CAAC,KAAK,CAAC,SAAS,CAAC,CAAC,CAAC,SAAS,CAAC;YAClE,cAAc,CAAC,MAAM,CAAC,GAAG,KAAK,CAAC,CAAC,CAAC,KAAK,CAAC,IAAI,CAAC,CAAC,CAAC,SAAS,CAAC;YACxD,cAAc,CAAC,YAAY,CAAC,GAAG,KAAK,CAAC,CAAC,CAAC,KAAK,CAAC,UAAU,CAAC,CAAC,CAAC,SAAS,CAAC;YACpE,cAAc,CAAC,QAAQ,CAAC,GAAG,KAAK,CAAC,CAAC,CAAC,KAAK,CAAC,MAAM,CAAC,CAAC,CAAC,SAAS,CAAC;YAC5D,cAAc,CAAC,OAAO,CAAC,GAAG,KAAK,CAAC,CAAC,CAAC,KAAK,CAAC,KAAK,CAAC,CAAC,CAAC,SAAS,CAAC;YAC1D,cAAc,CAAC,OAAO,CAAC,GAAG,KAAK,CAAC,CAAC,CAAC,KAAK,CAAC,KAAK,CAAC,CAAC,CAAC,SAAS,CAAC;YAC1D,cAAc,CAAC,MAAM,CAAC,GAAG,KAAK,CAAC,CAAC,CAAC,KAAK,CAAC,IAAI,CAAC,CAAC,CAAC,SAAS,CAAC;YACxD,cAAc,CAAC,SAAS,CAAC,GAAG,KAAK,CAAC,CAAC,CAAC,KAAK,CAAC,OAAO,CAAC,CAAC,CAAC,SAAS,CAAC;YAC9D,cAAc,CAAC,kBAAkB,CAAC,GAAG,KAAK,CAAC,CAAC,CAAC,KAAK,CAAC,gBAAgB,CAAC,CAAC,CAAC,SAAS,CAAC;SACnF;aAAM;YACH,MAAM,IAAI,GAAG,WAAwC,CAAC;YACtD,IAAI,CAAC,CAAC,IAAI,IAAI,IAAI,CAAC,QAAQ,KAAK,SAAS,CAAC,IAAI,CAAC,IAAI,CAAC,GAAG,EAAE;gBACrD,MAAM,IAAI,KAAK,CAAC,sCAAsC,CAAC,CAAC;aAC3D;YACD,IAAI,CAAC,CAAC,IAAI,IAAI,IAAI,CAAC,KAAK,KAAK,SAAS,CAAC,IAAI,CAAC,IAAI,CAAC,GAAG,EAAE;gBAClD,MAAM,IAAI,KAAK,CAAC,mCAAmC,CAAC,CAAC;aACxD;YACD,IAAI,CAAC,CAAC,IAAI,IAAI,IAAI,CAAC,gBAAgB,KAAK,SAAS,CAAC,IAAI,CAAC,IAAI,CAAC,GAAG,EAAE;gBAC7D,MAAM,IAAI,KAAK,CAAC,8CAA8C,CAAC,CAAC;aACnE;YACD,cAAc,CAAC,UAAU,CAAC,GAAG,IAAI,CAAC,CAAC,CAAC,IAAI,CAAC,QAAQ,CAAC,CAAC,CAAC,SAAS,CAAC;YAC9D,cAAc,CAAC,sBAAsB,CAAC,GAAG,IAAI,CAAC,CAAC,CAAC,IAAI,CAAC,oBAAoB,CAAC,CAAC,CAAC,SAAS,CAAC;YACtF,cAAc,CAAC,aAAa,CAAC,GAAG,IAAI,CAAC,CAAC,CAAC,IAAI,CAAC,WAAW,CAAC,CAAC,CAAC,SAAS,CAAC;YACpE,cAAc,CAAC,MAAM,CAAC,GAAG,IAAI,CAAC,CAAC,CAAC,IAAI,CAAC,IAAI,CAAC,CAAC,CAAC,SAAS,CAAC;YACtD,cAAc,CAAC,YAAY,CAAC,GAAG,IAAI,CAAC,CAAC,CAAC,IAAI,CAAC,UAAU,CAAC,CAAC,CAAC,SAAS,CAAC;YAClE,cAAc,CAAC,QAAQ,CAAC,GAAG,IAAI,CAAC,CAAC,CAAC,IAAI,CAAC,MAAM,CAAC,CAAC,CAAC,SAAS,CAAC;YAC1D,cAAc,CAAC,OAAO,CAAC,GAAG,IAAI,CAAC,CAAC,CAAC,IAAI,CAAC,KAAK,CAAC,CAAC,CAAC,SAAS,CAAC;YACxD,cAAc,CAAC,OAAO,CAAC,GAAG,IAAI,CAAC,CAAC,CAAC,IAAI,CAAC,KAAK,CAAC,CAAC,CAAC,SAAS,CAAC;YACxD,cAAc,CAAC,MAAM,CAAC,GAAG,IAAI,CAAC,CAAC,CAAC,IAAI,CAAC,IAAI,CAAC,CAAC,CAAC,SAAS,CAAC;YACtD,cAAc,CAAC,kBAAkB,CAAC,GAAG,IAAI,CAAC,CAAC,CAAC,IAAI,CAAC,gBAAgB,CAAC,CAAC,CAAC,SAAS,CAAC;YAC9E,cAAc,CAAC,KAAK,CAAC,GAAG,SAAS,CAAC,OAAO,CAAC;YAC1C,cAAc,CAAC,WAAW,CAAC,GAAG,SAAS,CAAC,OAAO,CAAC;YAChD,cAAc,CAAC,SAAS,CAAC,GAAG,SAAS,CAAC,OAAO,CAAC;SACjD;QACD,IAAI,GAAG,MAAM,CAAC,YAAY,CAAC,SAAS,CAAC,oBAAoB,EAAE,EAAE,IAAI,CAAC,CAAC;QACnE,KAAK,CAAC,SAAS,CAAC,YAAY,EAAE,IAAI,EAAE,cAAc,EAAE,IAAI,CAAC,CAAC;IAC9D,CAAC;;AAnIL,8BAoIC;AAtHG,gBAAgB;AACO,sBAAY,GAAG,+BAA+B,CAAC"}
+{"version":3,"file":"ruleGroup.js","sourceRoot":"","sources":["../../wafv2/ruleGroup.ts"],"names":[],"mappings":";AAAA,sEAAsE;AACtE,iFAAiF;;;AAEjF,yCAAyC;AAIzC,0CAA0C;AAE1C,MAAa,SAAU,SAAQ,MAAM,CAAC,cAAc;IAChD;;;;;;;;OAQG;IACI,MAAM,CAAC,GAAG,CAAC,IAAY,EAAE,EAA2B,EAAE,KAAsB,EAAE,IAAmC;QACpH,OAAO,IAAI,SAAS,CAAC,IAAI,EAAO,KAAK,kCAAO,IAAI,KAAE,EAAE,EAAE,EAAE,IAAG,CAAC;IAChE,CAAC;IAKD;;;OAGG;IACI,MAAM,CAAC,UAAU,CAAC,GAAQ;QAC7B,IAAI,GAAG,KAAK,SAAS,IAAI,GAAG,KAAK,IAAI,EAAE;YACnC,OAAO,KAAK,CAAC;SAChB;QACD,OAAO,GAAG,CAAC,cAAc,CAAC,KAAK,SAAS,CAAC,YAAY,CAAC;IAC1D,CAAC;IA6DD,YAAY,IAAY,EAAE,WAA4C,EAAE,IAAmC;QACvG,IAAI,cAAc,GAAkB,EAAE,CAAC;QACvC,IAAI,GAAG,IAAI,IAAI,EAAE,CAAC;QAClB,IAAI,IAAI,CAAC,EAAE,EAAE;YACT,MAAM,KAAK,GAAG,WAAyC,CAAC;YACxD,cAAc,CAAC,KAAK,CAAC,GAAG,KAAK,CAAC,CAAC,CAAC,KAAK,CAAC,GAAG,CAAC,CAAC,CAAC,SAAS,CAAC;YACtD,cAAc,CAAC,UAAU,CAAC,GAAG,KAAK,CAAC,CAAC,CAAC,KAAK,CAAC,QAAQ,CAAC,CAAC,CAAC,SAAS,CAAC;YAChE,cAAc,CAAC,sBAAsB,CAAC,GAAG,KAAK,CAAC,CAAC,CAAC,KAAK,CAAC,oBAAoB,CAAC,CAAC,CAAC,SAAS,CAAC;YACxF,cAAc,CAAC,aAAa,CAAC,GAAG,KAAK,CAAC,CAAC,CAAC,KAAK,CAAC,WAAW,CAAC,CAAC,CAAC,SAAS,CAAC;YACtE,cAAc,CAAC,WAAW,CAAC,GAAG,KAAK,CAAC,CAAC,CAAC,KAAK,CAAC,SAAS,CAAC,CAAC,CAAC,SAAS,CAAC;YAClE,cAAc,CAAC,MAAM,CAAC,GAAG,KAAK,CAAC,CAAC,CAAC,KAAK,CAAC,IAAI,CAAC,CAAC,CAAC,SAAS,CAAC;YACxD,cAAc,CAAC,YAAY,CAAC,GAAG,KAAK,CAAC,CAAC,CAAC,KAAK,CAAC,UAAU,CAAC,CAAC,CAAC,SAAS,CAAC;YACpE,cAAc,CAAC,QAAQ,CAAC,GAAG,KAAK,CAAC,CAAC,CAAC,KAAK,CAAC,MAAM,CAAC,CAAC,CAAC,SAAS,CAAC;YAC5D,cAAc,CAAC,OAAO,CAAC,GAAG,KAAK,CAAC,CAAC,CAAC,KAAK,CAAC,KAAK,CAAC,CAAC,CAAC,SAAS,CAAC;YAC1D,cAAc,CAAC,WAAW,CAAC,GAAG,KAAK,CAAC,CAAC,CAAC,KAAK,CAAC,SAAS,CAAC,CAAC,CAAC,SAAS,CAAC;YAClE,cAAc,CAAC,OAAO,CAAC,GAAG,KAAK,CAAC,CAAC,CAAC,KAAK,CAAC,KAAK,CAAC,CAAC,CAAC,SAAS,CAAC;YAC1D,cAAc,CAAC,MAAM,CAAC,GAAG,KAAK,CAAC,CAAC,CAAC,KAAK,CAAC,IAAI,CAAC,CAAC,CAAC,SAAS,CAAC;YACxD,cAAc,CAAC,SAAS,CAAC,GAAG,KAAK,CAAC,CAAC,CAAC,KAAK,CAAC,OAAO,CAAC,CAAC,CAAC,SAAS,CAAC;YAC9D,cAAc,CAAC,kBAAkB,CAAC,GAAG,KAAK,CAAC,CAAC,CAAC,KAAK,CAAC,gBAAgB,CAAC,CAAC,CAAC,SAAS,CAAC;SACnF;aAAM;YACH,MAAM,IAAI,GAAG,WAAwC,CAAC;YACtD,IAAI,CAAC,CAAC,IAAI,IAAI,IAAI,CAAC,QAAQ,KAAK,SAAS,CAAC,IAAI,CAAC,IAAI,CAAC,GAAG,EAAE;gBACrD,MAAM,IAAI,KAAK,CAAC,sCAAsC,CAAC,CAAC;aAC3D;YACD,IAAI,CAAC,CAAC,IAAI,IAAI,IAAI,CAAC,KAAK,KAAK,SAAS,CAAC,IAAI,CAAC,IAAI,CAAC,GAAG,EAAE;gBAClD,MAAM,IAAI,KAAK,CAAC,mCAAmC,CAAC,CAAC;aACxD;YACD,IAAI,CAAC,CAAC,IAAI,IAAI,IAAI,CAAC,gBAAgB,KAAK,SAAS,CAAC,IAAI,CAAC,IAAI,CAAC,GAAG,EAAE;gBAC7D,MAAM,IAAI,KAAK,CAAC,8CAA8C,CAAC,CAAC;aACnE;YACD,cAAc,CAAC,UAAU,CAAC,GAAG,IAAI,CAAC,CAAC,CAAC,IAAI,CAAC,QAAQ,CAAC,CAAC,CAAC,SAAS,CAAC;YAC9D,cAAc,CAAC,sBAAsB,CAAC,GAAG,IAAI,CAAC,CAAC,CAAC,IAAI,CAAC,oBAAoB,CAAC,CAAC,CAAC,SAAS,CAAC;YACtF,cAAc,CAAC,aAAa,CAAC,GAAG,IAAI,CAAC,CAAC,CAAC,IAAI,CAAC,WAAW,CAAC,CAAC,CAAC,SAAS,CAAC;YACpE,cAAc,CAAC,MAAM,CAAC,GAAG,IAAI,CAAC,CAAC,CAAC,IAAI,CAAC,IAAI,CAAC,CAAC,CAAC,SAAS,CAAC;YACtD,cAAc,CAAC,YAAY,CAAC,GAAG,IAAI,CAAC,CAAC,CAAC,IAAI,CAAC,UAAU,CAAC,CAAC,CAAC,SAAS,CAAC;YAClE,cAAc,CAAC,QAAQ,CAAC,GAAG,IAAI,CAAC,CAAC,CAAC,IAAI,CAAC,MAAM,CAAC,CAAC,CAAC,SAAS,CAAC;YAC1D,cAAc,CAAC,OAAO,CAAC,GAAG,IAAI,CAAC,CAAC,CAAC,IAAI,CAAC,KAAK,CAAC,CAAC,CAAC,SAAS,CAAC;YACxD,cAAc,CAAC,WAAW,CAAC,GAAG,IAAI,CAAC,CAAC,CAAC,IAAI,CAAC,SAAS,CAAC,CAAC,CAAC,SAAS,CAAC;YAChE,cAAc,CAAC,OAAO,CAAC,GAAG,IAAI,CAAC,CAAC,CAAC,IAAI,CAAC,KAAK,CAAC,CAAC,CAAC,SAAS,CAAC;YACxD,cAAc,CAAC,MAAM,CAAC,GAAG,IAAI,CAAC,CAAC,CAAC,IAAI,CAAC,IAAI,CAAC,CAAC,CAAC,SAAS,CAAC;YACtD,cAAc,CAAC,kBAAkB,CAAC,GAAG,IAAI,CAAC,CAAC,CAAC,IAAI,CAAC,gBAAgB,CAAC,CAAC,CAAC,SAAS,CAAC;YAC9E,cAAc,CAAC,KAAK,CAAC,GAAG,SAAS,CAAC,OAAO,CAAC;YAC1C,cAAc,CAAC,WAAW,CAAC,GAAG,SAAS,CAAC,OAAO,CAAC;YAChD,cAAc,CAAC,SAAS,CAAC,GAAG,SAAS,CAAC,OAAO,CAAC;SACjD;QACD,IAAI,GAAG,MAAM,CAAC,YAAY,CAAC,SAAS,CAAC,oBAAoB,EAAE,EAAE,IAAI,CAAC,CAAC;QACnE,KAAK,CAAC,SAAS,CAAC,YAAY,EAAE,IAAI,EAAE,cAAc,EAAE,IAAI,CAAC,CAAC;IAC9D,CAAC;;AAtIL,8BAuIC;AAzHG,gBAAgB;AACO,sBAAY,GAAG,+BAA+B,CAAC"}