aws-sdk 2.1424.0 → 2.1426.0

package/clients/cloudformation.d.ts

@@ -1090,6 +1090,10 @@ declare namespace CloudFormation {
      * Whether to enable termination protection on the specified stack. If a user attempts to delete a stack with termination protection enabled, the operation fails and the stack remains unchanged. For more information, see Protecting a Stack From Being Deleted in the CloudFormation User Guide. Termination protection is deactivated on stacks by default. For nested stacks, termination protection is set on the root stack and can't be changed directly on the nested stack.
      */
     EnableTerminationProtection?: EnableTerminationProtection;
+    /**
+     * This deletion policy deletes newly created resources, but retains existing resources, when a stack operation is rolled back. This ensures new, empty, and unused resources are deleted, while critical resources and their data are retained. RetainExceptOnCreate can be specified for any resource that supports the  DeletionPolicy attribute.
+     */
+    RetainExceptOnCreate?: RetainExceptOnCreate;
   }
   export interface CreateStackInstancesInput {
     /**
@@ -2006,6 +2010,10 @@ declare namespace CloudFormation {
      * Preserves the state of previously provisioned resources when an operation fails. This parameter can't be specified when the OnStackFailure parameter to the CreateChangeSet API operation was specified.    True - if the stack creation fails, do nothing. This is equivalent to specifying DO_NOTHING for the OnStackFailure parameter to the CreateChangeSet API operation.    False - if the stack creation fails, roll back the stack. This is equivalent to specifying ROLLBACK for the OnStackFailure parameter to the CreateChangeSet API operation.   Default: True 
      */
     DisableRollback?: DisableRollback;
+    /**
+     * This deletion policy deletes newly created resources, but retains existing resources, when a stack operation is rolled back. This ensures new, empty, and unused resources are deleted, while critical resources and their data are retained. RetainExceptOnCreate can be specified for any resource that supports the  DeletionPolicy attribute.
+     */
+    RetainExceptOnCreate?: RetainExceptOnCreate;
   }
   export interface ExecuteChangeSetOutput {
   }
@@ -3013,6 +3021,7 @@ declare namespace CloudFormation {
   export type ResourceTypes = ResourceType[];
   export type ResourcesToImport = ResourceToImport[];
   export type ResourcesToSkip = ResourceToSkip[];
+  export type RetainExceptOnCreate = boolean;
   export type RetainResources = LogicalResourceId[];
   export type RetainStacks = boolean;
   export type RetainStacksNullable = boolean;
@@ -3042,6 +3051,10 @@ declare namespace CloudFormation {
      * A unique identifier for this RollbackStack request.
      */
     ClientRequestToken?: ClientRequestToken;
+    /**
+     * This deletion policy deletes newly created resources, but retains existing resources, when a stack operation is rolled back. This ensures new, empty, and unused resources are deleted, while critical resources and their data are retained. RetainExceptOnCreate can be specified for any resource that supports the  DeletionPolicy attribute.
+     */
+    RetainExceptOnCreate?: RetainExceptOnCreate;
   }
   export interface RollbackStackOutput {
     /**
@@ -3232,6 +3245,10 @@ declare namespace CloudFormation {
      * Information about whether a stack's actual configuration differs, or has drifted, from its expected configuration, as defined in the stack template and any values specified as template parameters. For more information, see Detecting Unregulated Configuration Changes to Stacks and Resources.
      */
     DriftInformation?: StackDriftInformation;
+    /**
+     * This deletion policy deletes newly created resources, but retains existing resources, when a stack operation is rolled back. This ensures new, empty, and unused resources are deleted, while critical resources and their data are retained. RetainExceptOnCreate can be specified for any resource that supports the  DeletionPolicy attribute.
+     */
+    RetainExceptOnCreate?: RetainExceptOnCreate;
   }
   export type StackDriftDetectionId = string;
   export type StackDriftDetectionStatus = "DETECTION_IN_PROGRESS"|"DETECTION_FAILED"|"DETECTION_COMPLETE"|string;
@@ -4382,6 +4399,10 @@ declare namespace CloudFormation {
      * A unique identifier for this UpdateStack request. Specify this token if you plan to retry requests so that CloudFormation knows that you're not attempting to update a stack with the same name. You might retry UpdateStack requests to ensure that CloudFormation successfully received them. All events triggered by a given stack operation are assigned the same client request token, which you can use to track operations. For example, if you execute a CreateStack operation with the token token1, then all the StackEvents generated by that operation will have ClientRequestToken set as token1. In the console, stack operations display the client request token on the Events tab. Stack operations that are initiated from the console use the token format Console-StackOperation-ID, which helps you easily identify the stack operation . For example, if you create a stack using the console, each stack event would be assigned the same token in the following format: Console-CreateStack-7f59c3cf-00d2-40c7-b2ff-e75db0987002.
      */
     ClientRequestToken?: ClientRequestToken;
+    /**
+     * This deletion policy deletes newly created resources, but retains existing resources, when a stack operation is rolled back. This ensures new, empty, and unused resources are deleted, while critical resources and their data are retained. RetainExceptOnCreate can be specified for any resource that supports the  DeletionPolicy attribute.
+     */
+    RetainExceptOnCreate?: RetainExceptOnCreate;
   }
   export interface UpdateStackInstancesInput {
     /**

package/clients/cloudfront.d.ts

@@ -22,11 +22,11 @@ declare class CloudFront extends CloudFrontCustomizations {
    */
   associateAlias(callback?: (err: AWSError, data: {}) => void): Request<{}, AWSError>;
   /**
-   * Creates a staging distribution using the configuration of the provided primary distribution. A staging distribution is a copy of an existing distribution (called the primary distribution) that you can use in a continuous deployment workflow. After you create a staging distribution, you can use UpdateDistribution to modify the staging distribution's configuration. Then you can use CreateContinuousDeploymentPolicy to incrementally move traffic to the staging distribution.
+   * Creates a staging distribution using the configuration of the provided primary distribution. A staging distribution is a copy of an existing distribution (called the primary distribution) that you can use in a continuous deployment workflow. After you create a staging distribution, you can use UpdateDistribution to modify the staging distribution's configuration. Then you can use CreateContinuousDeploymentPolicy to incrementally move traffic to the staging distribution. This API operation requires the following IAM permissions:    GetDistribution     CreateDistribution     CopyDistribution   
    */
   copyDistribution(params: CloudFront.Types.CopyDistributionRequest, callback?: (err: AWSError, data: CloudFront.Types.CopyDistributionResult) => void): Request<CloudFront.Types.CopyDistributionResult, AWSError>;
   /**
-   * Creates a staging distribution using the configuration of the provided primary distribution. A staging distribution is a copy of an existing distribution (called the primary distribution) that you can use in a continuous deployment workflow. After you create a staging distribution, you can use UpdateDistribution to modify the staging distribution's configuration. Then you can use CreateContinuousDeploymentPolicy to incrementally move traffic to the staging distribution.
+   * Creates a staging distribution using the configuration of the provided primary distribution. A staging distribution is a copy of an existing distribution (called the primary distribution) that you can use in a continuous deployment workflow. After you create a staging distribution, you can use UpdateDistribution to modify the staging distribution's configuration. Then you can use CreateContinuousDeploymentPolicy to incrementally move traffic to the staging distribution. This API operation requires the following IAM permissions:    GetDistribution     CreateDistribution     CopyDistribution   
    */
   copyDistribution(callback?: (err: AWSError, data: CloudFront.Types.CopyDistributionResult) => void): Request<CloudFront.Types.CopyDistributionResult, AWSError>;
   /**
@@ -62,11 +62,11 @@ declare class CloudFront extends CloudFrontCustomizations {
    */
   createDistribution(callback?: (err: AWSError, data: CloudFront.Types.CreateDistributionResult) => void): Request<CloudFront.Types.CreateDistributionResult, AWSError>;
   /**
-   * Create a new distribution with tags.
+   * Create a new distribution with tags. This API operation requires the following IAM permissions:    CreateDistribution     TagResource   
    */
   createDistributionWithTags(params: CloudFront.Types.CreateDistributionWithTagsRequest, callback?: (err: AWSError, data: CloudFront.Types.CreateDistributionWithTagsResult) => void): Request<CloudFront.Types.CreateDistributionWithTagsResult, AWSError>;
   /**
-   * Create a new distribution with tags.
+   * Create a new distribution with tags. This API operation requires the following IAM permissions:    CreateDistribution     TagResource   
    */
   createDistributionWithTags(callback?: (err: AWSError, data: CloudFront.Types.CreateDistributionWithTagsResult) => void): Request<CloudFront.Types.CreateDistributionWithTagsResult, AWSError>;
   /**
@@ -774,11 +774,11 @@ declare class CloudFront extends CloudFrontCustomizations {
    */
   updateDistribution(callback?: (err: AWSError, data: CloudFront.Types.UpdateDistributionResult) => void): Request<CloudFront.Types.UpdateDistributionResult, AWSError>;
   /**
-   * Copies the staging distribution's configuration to its corresponding primary distribution. The primary distribution retains its Aliases (also known as alternate domain names or CNAMEs) and ContinuousDeploymentPolicyId value, but otherwise its configuration is overwritten to match the staging distribution. You can use this operation in a continuous deployment workflow after you have tested configuration changes on the staging distribution. After using a continuous deployment policy to move a portion of your domain name's traffic to the staging distribution and verifying that it works as intended, you can use this operation to copy the staging distribution's configuration to the primary distribution. This action will disable the continuous deployment policy and move your domain's traffic back to the primary distribution.
+   * Copies the staging distribution's configuration to its corresponding primary distribution. The primary distribution retains its Aliases (also known as alternate domain names or CNAMEs) and ContinuousDeploymentPolicyId value, but otherwise its configuration is overwritten to match the staging distribution. You can use this operation in a continuous deployment workflow after you have tested configuration changes on the staging distribution. After using a continuous deployment policy to move a portion of your domain name's traffic to the staging distribution and verifying that it works as intended, you can use this operation to copy the staging distribution's configuration to the primary distribution. This action will disable the continuous deployment policy and move your domain's traffic back to the primary distribution. This API operation requires the following IAM permissions:    GetDistribution     UpdateDistribution   
    */
   updateDistributionWithStagingConfig(params: CloudFront.Types.UpdateDistributionWithStagingConfigRequest, callback?: (err: AWSError, data: CloudFront.Types.UpdateDistributionWithStagingConfigResult) => void): Request<CloudFront.Types.UpdateDistributionWithStagingConfigResult, AWSError>;
   /**
-   * Copies the staging distribution's configuration to its corresponding primary distribution. The primary distribution retains its Aliases (also known as alternate domain names or CNAMEs) and ContinuousDeploymentPolicyId value, but otherwise its configuration is overwritten to match the staging distribution. You can use this operation in a continuous deployment workflow after you have tested configuration changes on the staging distribution. After using a continuous deployment policy to move a portion of your domain name's traffic to the staging distribution and verifying that it works as intended, you can use this operation to copy the staging distribution's configuration to the primary distribution. This action will disable the continuous deployment policy and move your domain's traffic back to the primary distribution.
+   * Copies the staging distribution's configuration to its corresponding primary distribution. The primary distribution retains its Aliases (also known as alternate domain names or CNAMEs) and ContinuousDeploymentPolicyId value, but otherwise its configuration is overwritten to match the staging distribution. You can use this operation in a continuous deployment workflow after you have tested configuration changes on the staging distribution. After using a continuous deployment policy to move a portion of your domain name's traffic to the staging distribution and verifying that it works as intended, you can use this operation to copy the staging distribution's configuration to the primary distribution. This action will disable the continuous deployment policy and move your domain's traffic back to the primary distribution. This API operation requires the following IAM permissions:    GetDistribution     UpdateDistribution   
    */
   updateDistributionWithStagingConfig(callback?: (err: AWSError, data: CloudFront.Types.UpdateDistributionWithStagingConfigResult) => void): Request<CloudFront.Types.UpdateDistributionWithStagingConfigResult, AWSError>;
   /**
@@ -910,7 +910,7 @@ declare namespace CloudFront {
   }
   export interface ActiveTrustedSigners {
     /**
-     * This field is true if any of the Amazon Web Services accounts in the list have active CloudFront key pairs that CloudFront can use to verify the signatures of signed URLs and signed cookies. If not, this field is false.
+     * This field is true if any of the Amazon Web Services accounts in the list are configured as trusted signers. If not, this field is false.
      */
     Enabled: boolean;
     /**
@@ -1400,6 +1400,10 @@ declare namespace CloudFront {
      * A value that uniquely identifies a request to create a resource. This helps to prevent CloudFront from creating a duplicate resource if you accidentally resubmit an identical request.
      */
     CallerReference: string;
+    /**
+     * A Boolean flag to specify the state of the staging distribution when it's created. When you set this value to True, the staging distribution is enabled. When you set this value to False, the staging distribution is disabled. If you omit this field, the default value is True.
+     */
+    Enabled?: boolean;
   }
   export interface CopyDistributionResult {
     Distribution?: Distribution;
@@ -2598,7 +2602,7 @@ declare namespace CloudFront {
      */
     Comment: string;
     /**
-     * The function's runtime environment. The only valid value is cloudfront-js-1.0.
+     * The function's runtime environment verion.
      */
     Runtime: FunctionRuntime;
   }
@@ -2641,7 +2645,7 @@ declare namespace CloudFront {
     LastModifiedTime: timestamp;
   }
   export type FunctionName = string;
-  export type FunctionRuntime = "cloudfront-js-1.0"|string;
+  export type FunctionRuntime = "cloudfront-js-1.0"|"cloudfront-js-2.0"|string;
   export type FunctionStage = "DEVELOPMENT"|"LIVE"|string;
   export interface FunctionSummary {
     /**
@@ -4940,7 +4944,7 @@ declare namespace CloudFront {
   }
   export interface TrustedSigners {
     /**
-     * This field is true if any of the Amazon Web Services accounts have public keys that CloudFront can use to verify the signatures of signed URLs and signed cookies. If not, this field is false.
+     * This field is true if any of the Amazon Web Services accounts in the list are configured as trusted signers. If not, this field is false.
      */
     Enabled: boolean;
     /**

package/clients/codestarconnections.d.ts

@@ -12,11 +12,11 @@ declare class CodeStarconnections extends Service {
   constructor(options?: CodeStarconnections.Types.ClientConfiguration)
   config: Config & CodeStarconnections.Types.ClientConfiguration;
   /**
-   * Creates a connection that can then be given to other AWS services like CodePipeline so that it can access third-party code repositories. The connection is in pending status until the third-party connection handshake is completed from the console.
+   * Creates a connection that can then be given to other Amazon Web Services services like CodePipeline so that it can access third-party code repositories. The connection is in pending status until the third-party connection handshake is completed from the console.
    */
   createConnection(params: CodeStarconnections.Types.CreateConnectionInput, callback?: (err: AWSError, data: CodeStarconnections.Types.CreateConnectionOutput) => void): Request<CodeStarconnections.Types.CreateConnectionOutput, AWSError>;
   /**
-   * Creates a connection that can then be given to other AWS services like CodePipeline so that it can access third-party code repositories. The connection is in pending status until the third-party connection handshake is completed from the console.
+   * Creates a connection that can then be given to other Amazon Web Services services like CodePipeline so that it can access third-party code repositories. The connection is in pending status until the third-party connection handshake is completed from the console.
    */
   createConnection(callback?: (err: AWSError, data: CodeStarconnections.Types.CreateConnectionOutput) => void): Request<CodeStarconnections.Types.CreateConnectionOutput, AWSError>;
   /**
@@ -92,11 +92,11 @@ declare class CodeStarconnections extends Service {
    */
   tagResource(callback?: (err: AWSError, data: CodeStarconnections.Types.TagResourceOutput) => void): Request<CodeStarconnections.Types.TagResourceOutput, AWSError>;
   /**
-   * Removes tags from an AWS resource.
+   * Removes tags from an Amazon Web Services resource.
    */
   untagResource(params: CodeStarconnections.Types.UntagResourceInput, callback?: (err: AWSError, data: CodeStarconnections.Types.UntagResourceOutput) => void): Request<CodeStarconnections.Types.UntagResourceOutput, AWSError>;
   /**
-   * Removes tags from an AWS resource.
+   * Removes tags from an Amazon Web Services resource.
    */
   untagResource(callback?: (err: AWSError, data: CodeStarconnections.Types.UntagResourceOutput) => void): Request<CodeStarconnections.Types.UntagResourceOutput, AWSError>;
   /**
@@ -113,11 +113,11 @@ declare namespace CodeStarconnections {
   export type AmazonResourceName = string;
   export interface Connection {
     /**
-     * The name of the connection. Connection names must be unique in an AWS user account.
+     * The name of the connection. Connection names must be unique in an Amazon Web Services account.
      */
     ConnectionName?: ConnectionName;
     /**
-     * The Amazon Resource Name (ARN) of the connection. The ARN is used as the connection reference when the connection is shared between AWS services.  The ARN is never reused if the connection is deleted. 
+     * The Amazon Resource Name (ARN) of the connection. The ARN is used as the connection reference when the connection is shared between Amazon Web Services.  The ARN is never reused if the connection is deleted. 
      */
     ConnectionArn?: ConnectionArn;
     /**
@@ -147,7 +147,7 @@ declare namespace CodeStarconnections {
      */
     ProviderType?: ProviderType;
     /**
-     * The name of the connection to be created. The name must be unique in the calling AWS account.
+     * The name of the connection to be created.
      */
     ConnectionName: ConnectionName;
     /**
@@ -161,7 +161,7 @@ declare namespace CodeStarconnections {
   }
   export interface CreateConnectionOutput {
     /**
-     * The Amazon Resource Name (ARN) of the connection to be created. The ARN is used as the connection reference when the connection is shared between AWS services.  The ARN is never reused if the connection is deleted. 
+     * The Amazon Resource Name (ARN) of the connection to be created. The ARN is used as the connection reference when the connection is shared between Amazon Web Services services.  The ARN is never reused if the connection is deleted. 
      */
     ConnectionArn: ConnectionArn;
     /**
@@ -171,7 +171,7 @@ declare namespace CodeStarconnections {
   }
   export interface CreateHostInput {
     /**
-     * The name of the host to be created. The name must be unique in the calling AWS account.
+     * The name of the host to be created.
      */
     Name: HostName;
     /**
@@ -348,7 +348,7 @@ declare namespace CodeStarconnections {
   }
   export type MaxResults = number;
   export type NextToken = string;
-  export type ProviderType = "Bitbucket"|"GitHub"|"GitHubEnterpriseServer"|string;
+  export type ProviderType = "Bitbucket"|"GitHub"|"GitHubEnterpriseServer"|"GitLab"|string;
   export type SecurityGroupId = string;
   export type SecurityGroupIds = SecurityGroupId[];
   export type SubnetId = string;

package/clients/connect.d.ts

@@ -6497,7 +6497,7 @@ declare namespace Connect {
     PhoneNumberCountryCode?: PhoneNumberCountryCode;
   }
   export type PhoneNumberSummaryList = PhoneNumberSummary[];
-  export type PhoneNumberType = "TOLL_FREE"|"DID"|string;
+  export type PhoneNumberType = "TOLL_FREE"|"DID"|"UIFN"|"SHARED"|"THIRD_PARTY_TF"|"THIRD_PARTY_DID"|string;
   export type PhoneNumberTypes = PhoneNumberType[];
   export type PhoneNumberWorkflowMessage = string;
   export type PhoneNumberWorkflowStatus = "CLAIMED"|"IN_PROGRESS"|"FAILED"|string;

package/clients/drs.d.ts

@@ -2300,7 +2300,7 @@ declare namespace Drs {
   }
   export type TagValue = string;
   export type TagsMap = {[key: string]: TagValue};
-  export type TargetInstanceTypeRightSizingMethod = "NONE"|"BASIC"|string;
+  export type TargetInstanceTypeRightSizingMethod = "NONE"|"BASIC"|"IN_AWS"|string;
   export interface TerminateRecoveryInstancesRequest {
     /**
      * The IDs of the Recovery Instances that should be terminated.

package/clients/inspector2.d.ts

@@ -35,6 +35,14 @@ declare class Inspector2 extends Service {
    * Retrieves code snippets from findings that Amazon Inspector detected code vulnerabilities in.
    */
   batchGetCodeSnippet(callback?: (err: AWSError, data: Inspector2.Types.BatchGetCodeSnippetResponse) => void): Request<Inspector2.Types.BatchGetCodeSnippetResponse, AWSError>;
+  /**
+   * Gets vulnerability details for findings.
+   */
+  batchGetFindingDetails(params: Inspector2.Types.BatchGetFindingDetailsRequest, callback?: (err: AWSError, data: Inspector2.Types.BatchGetFindingDetailsResponse) => void): Request<Inspector2.Types.BatchGetFindingDetailsResponse, AWSError>;
+  /**
+   * Gets vulnerability details for findings.
+   */
+  batchGetFindingDetails(callback?: (err: AWSError, data: Inspector2.Types.BatchGetFindingDetailsResponse) => void): Request<Inspector2.Types.BatchGetFindingDetailsResponse, AWSError>;
   /**
    * Gets free trial status for multiple Amazon Web Services accounts.
    */
@@ -828,6 +836,22 @@ declare namespace Inspector2 {
      */
     errors?: CodeSnippetErrorList;
   }
+  export interface BatchGetFindingDetailsRequest {
+    /**
+     * A list of finding ARNs.
+     */
+    findingArns: FindingArnList;
+  }
+  export interface BatchGetFindingDetailsResponse {
+    /**
+     * Error information for findings that details could not be returned for.
+     */
+    errors?: FindingDetailsErrorList;
+    /**
+     * A finding's vulnerability details.
+     */
+    findingDetails?: FindingDetails;
+  }
   export interface BatchGetFreeTrialInfoRequest {
     /**
      * The account IDs to get free trial status for.
@@ -1379,7 +1403,7 @@ declare namespace Inspector2 {
      */
     bucketName: String;
     /**
-     * The prefix of the Amazon S3 bucket used to export findings.
+     * The prefix that the findings will be written under.
      */
     keyPrefix?: String;
     /**
@@ -1610,6 +1634,24 @@ declare namespace Inspector2 {
   export type EpssScoreValue = number;
   export type ErrorCode = "ALREADY_ENABLED"|"ENABLE_IN_PROGRESS"|"DISABLE_IN_PROGRESS"|"SUSPEND_IN_PROGRESS"|"RESOURCE_NOT_FOUND"|"ACCESS_DENIED"|"INTERNAL_ERROR"|"SSM_UNAVAILABLE"|"SSM_THROTTLED"|"EVENTBRIDGE_UNAVAILABLE"|"EVENTBRIDGE_THROTTLED"|"RESOURCE_SCAN_NOT_DISABLED"|"DISASSOCIATE_ALL_MEMBERS"|"ACCOUNT_IS_ISOLATED"|string;
   export type ErrorMessage = string;
+  export interface Evidence {
+    /**
+     * The evidence details.
+     */
+    evidenceDetail?: EvidenceDetail;
+    /**
+     * The evidence rule.
+     */
+    evidenceRule?: EvidenceRule;
+    /**
+     * The evidence severity.
+     */
+    severity?: EvidenceSeverity;
+  }
+  export type EvidenceDetail = string;
+  export type EvidenceList = Evidence[];
+  export type EvidenceRule = string;
+  export type EvidenceSeverity = string;
   export type ExecutionRoleArn = string;
   export type ExploitAvailable = "YES"|"NO"|string;
   export interface ExploitObserved {
@@ -1831,7 +1873,7 @@ declare namespace Inspector2 {
      */
     lastObservedAt?: DateFilterList;
     /**
-     * Details on the ingress source addresses used to filter findings.
+     * Details on network protocol used to filter findings.
      */
     networkProtocol?: StringFilterList;
     /**
@@ -1974,7 +2016,61 @@ declare namespace Inspector2 {
     updatedAt?: DateTimeTimestamp;
   }
   export type FindingArn = string;
+  export type FindingArnList = FindingArn[];
   export type FindingDescription = string;
+  export interface FindingDetail {
+    cisaData?: CisaData;
+    /**
+     * The Common Weakness Enumerations (CWEs) associated with the vulnerability.
+     */
+    cwes?: Cwes;
+    /**
+     * The Exploit Prediction Scoring System (EPSS) score of the vulnerability.
+     */
+    epssScore?: Double;
+    /**
+     * Information on the evidence of the vulnerability.
+     */
+    evidences?: EvidenceList;
+    exploitObserved?: ExploitObserved;
+    /**
+     * The finding ARN that the vulnerability details are associated with.
+     */
+    findingArn?: FindingArn;
+    /**
+     * The reference URLs for the vulnerability data.
+     */
+    referenceUrls?: VulnerabilityReferenceUrls;
+    /**
+     * The risk score of the vulnerability.
+     */
+    riskScore?: RiskScore;
+    /**
+     * The known malware tools or kits that can exploit the vulnerability.
+     */
+    tools?: Tools;
+    /**
+     * The MITRE adversary tactics, techniques, or procedures (TTPs) associated with the vulnerability.
+     */
+    ttps?: Ttps;
+  }
+  export type FindingDetails = FindingDetail[];
+  export interface FindingDetailsError {
+    /**
+     * The error code.
+     */
+    errorCode: FindingDetailsErrorCode;
+    /**
+     * The error message.
+     */
+    errorMessage: NonEmptyString;
+    /**
+     * The finding ARN that returned an error.
+     */
+    findingArn: FindingArn;
+  }
+  export type FindingDetailsErrorCode = "INTERNAL_ERROR"|"ACCESS_DENIED"|"FINDING_DETAILS_NOT_FOUND"|"INVALID_INPUT"|string;
+  export type FindingDetailsErrorList = FindingDetailsError[];
   export type FindingList = Finding[];
   export type FindingStatus = "ACTIVE"|"SUPPRESSED"|"CLOSED"|string;
   export type FindingTitle = string;
@@ -3105,6 +3201,7 @@ declare namespace Inspector2 {
   export type ResourceStringFilterList = ResourceStringFilter[];
   export type ResourceStringInput = string;
   export type ResourceType = "AWS_EC2_INSTANCE"|"AWS_ECR_CONTAINER_IMAGE"|"AWS_ECR_REPOSITORY"|"AWS_LAMBDA_FUNCTION"|string;
+  export type RiskScore = number;
   export type Runtime = "NODEJS"|"NODEJS_12_X"|"NODEJS_14_X"|"NODEJS_16_X"|"JAVA_8"|"JAVA_8_AL2"|"JAVA_11"|"PYTHON_3_7"|"PYTHON_3_8"|"PYTHON_3_9"|"UNSUPPORTED"|"NODEJS_18_X"|"GO_1_X"|"JAVA_17"|"PYTHON_3_10"|string;
   export type SbomReportFormat = "CYCLONEDX_1_4"|"SPDX_2_3"|string;
   export interface ScanStatus {
@@ -3301,6 +3398,8 @@ declare namespace Inspector2 {
     vulnerabilityId?: String;
   }
   export type TitleSortBy = "CRITICAL"|"HIGH"|"ALL"|string;
+  export type Tool = string;
+  export type Tools = Tool[];
   export type Ttp = string;
   export type Ttps = Ttp[];
   export interface UntagResourceRequest {