cdk-comprehend-s3olap 2.0.142 → 2.0.144

package/node_modules/aws-sdk/clients/inspector2.d.ts

@@ -12,11 +12,11 @@ declare class Inspector2 extends Service {
   constructor(options?: Inspector2.Types.ClientConfiguration)
   config: Config & Inspector2.Types.ClientConfiguration;
   /**
-   * Associates an Amazon Web Services account with an Amazon Inspector delegated administrator.
+   * Associates an Amazon Web Services account with an Amazon Inspector delegated administrator. An HTTP 200 response indicates the association was successfully started, but doesn’t indicate whether it was completed. You can check if the association completed by using ListMembers for multiple accounts or GetMembers for a single account.
    */
   associateMember(params: Inspector2.Types.AssociateMemberRequest, callback?: (err: AWSError, data: Inspector2.Types.AssociateMemberResponse) => void): Request<Inspector2.Types.AssociateMemberResponse, AWSError>;
   /**
-   * Associates an Amazon Web Services account with an Amazon Inspector delegated administrator.
+   * Associates an Amazon Web Services account with an Amazon Inspector delegated administrator. An HTTP 200 response indicates the association was successfully started, but doesn’t indicate whether it was completed. You can check if the association completed by using ListMembers for multiple accounts or GetMembers for a single account.
    */
   associateMember(callback?: (err: AWSError, data: Inspector2.Types.AssociateMemberResponse) => void): Request<Inspector2.Types.AssociateMemberResponse, AWSError>;
   /**
@@ -35,6 +35,22 @@ declare class Inspector2 extends Service {
    * Gets free trial status for multiple Amazon Web Services accounts.
    */
   batchGetFreeTrialInfo(callback?: (err: AWSError, data: Inspector2.Types.BatchGetFreeTrialInfoResponse) => void): Request<Inspector2.Types.BatchGetFreeTrialInfoResponse, AWSError>;
+  /**
+   * Retrieves Amazon Inspector deep inspection activation status of multiple member accounts within your organization. You must be the delegated administrator of an organization in Amazon Inspector to use this API.
+   */
+  batchGetMemberEc2DeepInspectionStatus(params: Inspector2.Types.BatchGetMemberEc2DeepInspectionStatusRequest, callback?: (err: AWSError, data: Inspector2.Types.BatchGetMemberEc2DeepInspectionStatusResponse) => void): Request<Inspector2.Types.BatchGetMemberEc2DeepInspectionStatusResponse, AWSError>;
+  /**
+   * Retrieves Amazon Inspector deep inspection activation status of multiple member accounts within your organization. You must be the delegated administrator of an organization in Amazon Inspector to use this API.
+   */
+  batchGetMemberEc2DeepInspectionStatus(callback?: (err: AWSError, data: Inspector2.Types.BatchGetMemberEc2DeepInspectionStatusResponse) => void): Request<Inspector2.Types.BatchGetMemberEc2DeepInspectionStatusResponse, AWSError>;
+  /**
+   * Activates or deactivates Amazon Inspector deep inspection for the provided member accounts in your organization. You must be the delegated administrator of an organization in Amazon Inspector to use this API.
+   */
+  batchUpdateMemberEc2DeepInspectionStatus(params: Inspector2.Types.BatchUpdateMemberEc2DeepInspectionStatusRequest, callback?: (err: AWSError, data: Inspector2.Types.BatchUpdateMemberEc2DeepInspectionStatusResponse) => void): Request<Inspector2.Types.BatchUpdateMemberEc2DeepInspectionStatusResponse, AWSError>;
+  /**
+   * Activates or deactivates Amazon Inspector deep inspection for the provided member accounts in your organization. You must be the delegated administrator of an organization in Amazon Inspector to use this API.
+   */
+  batchUpdateMemberEc2DeepInspectionStatus(callback?: (err: AWSError, data: Inspector2.Types.BatchUpdateMemberEc2DeepInspectionStatusResponse) => void): Request<Inspector2.Types.BatchUpdateMemberEc2DeepInspectionStatusResponse, AWSError>;
   /**
    * Cancels the given findings report.
    */
@@ -52,11 +68,11 @@ declare class Inspector2 extends Service {
    */
   createFilter(callback?: (err: AWSError, data: Inspector2.Types.CreateFilterResponse) => void): Request<Inspector2.Types.CreateFilterResponse, AWSError>;
   /**
-   * Creates a finding report.
+   * Creates a finding report. By default only ACTIVE findings are returned in the report. To see SUPRESSED or CLOSED findings you must specify a value for the findingStatus filter criteria. 
    */
   createFindingsReport(params: Inspector2.Types.CreateFindingsReportRequest, callback?: (err: AWSError, data: Inspector2.Types.CreateFindingsReportResponse) => void): Request<Inspector2.Types.CreateFindingsReportResponse, AWSError>;
   /**
-   * Creates a finding report.
+   * Creates a finding report. By default only ACTIVE findings are returned in the report. To see SUPRESSED or CLOSED findings you must specify a value for the findingStatus filter criteria. 
    */
   createFindingsReport(callback?: (err: AWSError, data: Inspector2.Types.CreateFindingsReportResponse) => void): Request<Inspector2.Types.CreateFindingsReportResponse, AWSError>;
   /**
@@ -131,6 +147,14 @@ declare class Inspector2 extends Service {
    * Retrieves information about the Amazon Inspector delegated administrator for your organization.
    */
   getDelegatedAdminAccount(callback?: (err: AWSError, data: Inspector2.Types.GetDelegatedAdminAccountResponse) => void): Request<Inspector2.Types.GetDelegatedAdminAccountResponse, AWSError>;
+  /**
+   * Retrieves the activation status of Amazon Inspector deep inspection and custom paths associated with your account. 
+   */
+  getEc2DeepInspectionConfiguration(params: Inspector2.Types.GetEc2DeepInspectionConfigurationRequest, callback?: (err: AWSError, data: Inspector2.Types.GetEc2DeepInspectionConfigurationResponse) => void): Request<Inspector2.Types.GetEc2DeepInspectionConfigurationResponse, AWSError>;
+  /**
+   * Retrieves the activation status of Amazon Inspector deep inspection and custom paths associated with your account. 
+   */
+  getEc2DeepInspectionConfiguration(callback?: (err: AWSError, data: Inspector2.Types.GetEc2DeepInspectionConfigurationResponse) => void): Request<Inspector2.Types.GetEc2DeepInspectionConfigurationResponse, AWSError>;
   /**
    * Gets the status of a findings report.
    */
@@ -251,6 +275,14 @@ declare class Inspector2 extends Service {
    * Updates setting configurations for your Amazon Inspector account. When you use this API as an Amazon Inspector delegated administrator this updates the setting for all accounts you manage. Member accounts in an organization cannot update this setting.
    */
   updateConfiguration(callback?: (err: AWSError, data: Inspector2.Types.UpdateConfigurationResponse) => void): Request<Inspector2.Types.UpdateConfigurationResponse, AWSError>;
+  /**
+   * Activates, deactivates Amazon Inspector deep inspection, or updates custom paths for your account. 
+   */
+  updateEc2DeepInspectionConfiguration(params: Inspector2.Types.UpdateEc2DeepInspectionConfigurationRequest, callback?: (err: AWSError, data: Inspector2.Types.UpdateEc2DeepInspectionConfigurationResponse) => void): Request<Inspector2.Types.UpdateEc2DeepInspectionConfigurationResponse, AWSError>;
+  /**
+   * Activates, deactivates Amazon Inspector deep inspection, or updates custom paths for your account. 
+   */
+  updateEc2DeepInspectionConfiguration(callback?: (err: AWSError, data: Inspector2.Types.UpdateEc2DeepInspectionConfigurationResponse) => void): Request<Inspector2.Types.UpdateEc2DeepInspectionConfigurationResponse, AWSError>;
   /**
    * Specifies the action that is to be applied to the findings that match the filter.
    */
@@ -259,6 +291,14 @@ declare class Inspector2 extends Service {
    * Specifies the action that is to be applied to the findings that match the filter.
    */
   updateFilter(callback?: (err: AWSError, data: Inspector2.Types.UpdateFilterResponse) => void): Request<Inspector2.Types.UpdateFilterResponse, AWSError>;
+  /**
+   * Updates the Amazon Inspector deep inspection custom paths for your organization. You must be an Amazon Inspector delegated administrator to use this API.
+   */
+  updateOrgEc2DeepInspectionConfiguration(params: Inspector2.Types.UpdateOrgEc2DeepInspectionConfigurationRequest, callback?: (err: AWSError, data: Inspector2.Types.UpdateOrgEc2DeepInspectionConfigurationResponse) => void): Request<Inspector2.Types.UpdateOrgEc2DeepInspectionConfigurationResponse, AWSError>;
+  /**
+   * Updates the Amazon Inspector deep inspection custom paths for your organization. You must be an Amazon Inspector delegated administrator to use this API.
+   */
+  updateOrgEc2DeepInspectionConfiguration(callback?: (err: AWSError, data: Inspector2.Types.UpdateOrgEc2DeepInspectionConfigurationResponse) => void): Request<Inspector2.Types.UpdateOrgEc2DeepInspectionConfigurationResponse, AWSError>;
   /**
    * Updates the configurations for your Amazon Inspector organization.
    */
@@ -486,7 +526,7 @@ declare namespace Inspector2 {
      */
     ecr: Boolean;
     /**
-     * Represents whether AWS Lambda scans are automatically enabled for new members of your Amazon Inspector organization. 
+     * Represents whether AWS Lambda standard scans are automatically enabled for new members of your Amazon Inspector organization. 
      */
     lambda?: Boolean;
   }
@@ -702,6 +742,38 @@ declare namespace Inspector2 {
      */
     failedAccounts: FreeTrialInfoErrorList;
   }
+  export interface BatchGetMemberEc2DeepInspectionStatusRequest {
+    /**
+     * The unique identifiers for the Amazon Web Services accounts to retrieve Amazon Inspector deep inspection activation status for.  &lt;/p&gt; 
+     */
+    accountIds?: AccountIdSet;
+  }
+  export interface BatchGetMemberEc2DeepInspectionStatusResponse {
+    /**
+     * An array of objects that provide details on the activation status of Amazon Inspector deep inspection for each of the requested accounts.  &lt;/p&gt; 
+     */
+    accountIds?: MemberAccountEc2DeepInspectionStatusStateList;
+    /**
+     * An array of objects that provide details on any accounts that failed to activate Amazon Inspector deep inspection and why.  &lt;/p&gt; 
+     */
+    failedAccountIds?: FailedMemberAccountEc2DeepInspectionStatusStateList;
+  }
+  export interface BatchUpdateMemberEc2DeepInspectionStatusRequest {
+    /**
+     * The unique identifiers for the Amazon Web Services accounts to change Amazon Inspector deep inspection status for.
+     */
+    accountIds: MemberAccountEc2DeepInspectionStatusList;
+  }
+  export interface BatchUpdateMemberEc2DeepInspectionStatusResponse {
+    /**
+     * An array of objects that provide details for each of the accounts that Amazon Inspector deep inspection status was successfully changed for. 
+     */
+    accountIds?: MemberAccountEc2DeepInspectionStatusStateList;
+    /**
+     * An array of objects that provide details for each of the accounts that Amazon Inspector deep inspection status could not be successfully changed for. 
+     */
+    failedAccountIds?: FailedMemberAccountEc2DeepInspectionStatusStateList;
+  }
   export type Boolean = boolean;
   export interface CancelFindingsReportRequest {
     /**
@@ -1009,7 +1081,7 @@ declare namespace Inspector2 {
      */
     bucketName: String;
     /**
-     * The prefix of the KMS key used to export findings.
+     * The prefix of the Amazon S3 bucket used to export findings.
      */
     keyPrefix?: String;
     /**
@@ -1063,6 +1135,7 @@ declare namespace Inspector2 {
     accountId: AccountId;
   }
   export type Double = number;
+  export type Ec2DeepInspectionStatus = "ACTIVATED"|"DEACTIVATED"|"PENDING"|"FAILED"|string;
   export interface Ec2InstanceAggregation {
     /**
      * The AMI IDs associated with the Amazon EC2 instances to aggregate findings for.
@@ -1255,6 +1328,21 @@ declare namespace Inspector2 {
     status?: Status;
   }
   export type FailedAccountList = FailedAccount[];
+  export interface FailedMemberAccountEc2DeepInspectionStatusState {
+    /**
+     * The unique identifier for the Amazon Web Services account of the organization member that failed to activate Amazon Inspector deep inspection.
+     */
+    accountId: AccountId;
+    /**
+     * The status of EC2 scanning in the account that failed to activate Amazon Inspector deep inspection.
+     */
+    ec2ScanStatus?: Status;
+    /**
+     * The error message explaining why the account failed to activate Amazon Inspector deep inspection.
+     */
+    errorMessage?: NonEmptyString;
+  }
+  export type FailedMemberAccountEc2DeepInspectionStatusStateList = FailedMemberAccountEc2DeepInspectionStatusState[];
   export type FilePath = string;
   export interface Filter {
     /**
@@ -1638,6 +1726,26 @@ declare namespace Inspector2 {
      */
     delegatedAdmin?: DelegatedAdmin;
   }
+  export interface GetEc2DeepInspectionConfigurationRequest {
+  }
+  export interface GetEc2DeepInspectionConfigurationResponse {
+    /**
+     * An error message explaining why Amazon Inspector deep inspection configurations could not be retrieved for your account.
+     */
+    errorMessage?: NonEmptyString;
+    /**
+     * The Amazon Inspector deep inspection custom paths for your organization.
+     */
+    orgPackagePaths?: PathList;
+    /**
+     * The Amazon Inspector deep inspection custom paths for your account.
+     */
+    packagePaths?: PathList;
+    /**
+     * The activation status of Amazon Inspector deep inspection in your account.
+     */
+    status?: Ec2DeepInspectionStatus;
+  }
   export interface GetFindingsReportStatusRequest {
     /**
      * The ID of the report to retrieve the status of.
@@ -2165,6 +2273,32 @@ declare namespace Inspector2 {
      */
     updatedAt?: DateTimeTimestamp;
   }
+  export interface MemberAccountEc2DeepInspectionStatus {
+    /**
+     * The unique identifier for the Amazon Web Services account of the organization member.
+     */
+    accountId: AccountId;
+    /**
+     * Whether Amazon Inspector deep inspection is active in the account. If TRUE Amazon Inspector deep inspection is active, if FALSE it is not active.
+     */
+    activateDeepInspection: Boolean;
+  }
+  export type MemberAccountEc2DeepInspectionStatusList = MemberAccountEc2DeepInspectionStatus[];
+  export interface MemberAccountEc2DeepInspectionStatusState {
+    /**
+     * The unique identifier for the Amazon Web Services account of the organization member
+     */
+    accountId: AccountId;
+    /**
+     * The error message explaining why the account failed to activate Amazon Inspector deep inspection.
+     */
+    errorMessage?: NonEmptyString;
+    /**
+     * The state of Amazon Inspector deep inspection in the member account.
+     */
+    status?: Ec2DeepInspectionStatus;
+  }
+  export type MemberAccountEc2DeepInspectionStatusStateList = MemberAccountEc2DeepInspectionStatusState[];
   export type MemberList = Member[];
   export type MeteringAccountId = string;
   export type MonthlyCostEstimate = number;
@@ -2263,7 +2397,7 @@ declare namespace Inspector2 {
     version?: StringFilter;
   }
   export type PackageFilterList = PackageFilter[];
-  export type PackageManager = "BUNDLER"|"CARGO"|"COMPOSER"|"NPM"|"NUGET"|"PIPENV"|"POETRY"|"YARN"|"GOBINARY"|"GOMOD"|"JAR"|"OS"|"PIP"|"PYTHONPKG"|"NODEPKG"|"POM"|string;
+  export type PackageManager = "BUNDLER"|"CARGO"|"COMPOSER"|"NPM"|"NUGET"|"PIPENV"|"POETRY"|"YARN"|"GOBINARY"|"GOMOD"|"JAR"|"OS"|"PIP"|"PYTHONPKG"|"NODEPKG"|"POM"|"GEMSPEC"|string;
   export type PackageName = string;
   export type PackageRelease = string;
   export type PackageSortBy = "CRITICAL"|"HIGH"|"ALL"|string;
@@ -2311,6 +2445,8 @@ declare namespace Inspector2 {
      */
     vulnerablePackages?: VulnerablePackageList;
   }
+  export type Path = string;
+  export type PathList = Path[];
   export interface Permission {
     /**
      * The operations that can be performed with the given permissions.
@@ -2480,7 +2616,7 @@ declare namespace Inspector2 {
      */
     ecr: Status;
     /**
-     * The status of Amazon Inspector scanning for AWS Lambda function resources.
+     * The status of Amazon Inspector scanning for AWS Lambda function.
      */
     lambda?: Status;
   }
@@ -2497,7 +2633,7 @@ declare namespace Inspector2 {
     statusCode: ScanStatusCode;
   }
   export type ScanStatusCode = "ACTIVE"|"INACTIVE"|string;
-  export type ScanStatusReason = "PENDING_INITIAL_SCAN"|"ACCESS_DENIED"|"INTERNAL_ERROR"|"UNMANAGED_EC2_INSTANCE"|"UNSUPPORTED_OS"|"SCAN_ELIGIBILITY_EXPIRED"|"RESOURCE_TERMINATED"|"SUCCESSFUL"|"NO_RESOURCES_FOUND"|"IMAGE_SIZE_EXCEEDED"|"SCAN_FREQUENCY_MANUAL"|"SCAN_FREQUENCY_SCAN_ON_PUSH"|"EC2_INSTANCE_STOPPED"|"PENDING_DISABLE"|"NO_INVENTORY"|"STALE_INVENTORY"|"EXCLUDED_BY_TAG"|"UNSUPPORTED_RUNTIME"|string;
+  export type ScanStatusReason = "PENDING_INITIAL_SCAN"|"ACCESS_DENIED"|"INTERNAL_ERROR"|"UNMANAGED_EC2_INSTANCE"|"UNSUPPORTED_OS"|"SCAN_ELIGIBILITY_EXPIRED"|"RESOURCE_TERMINATED"|"SUCCESSFUL"|"NO_RESOURCES_FOUND"|"IMAGE_SIZE_EXCEEDED"|"SCAN_FREQUENCY_MANUAL"|"SCAN_FREQUENCY_SCAN_ON_PUSH"|"EC2_INSTANCE_STOPPED"|"PENDING_DISABLE"|"NO_INVENTORY"|"STALE_INVENTORY"|"EXCLUDED_BY_TAG"|"UNSUPPORTED_RUNTIME"|"UNSUPPORTED_MEDIA_TYPE"|"UNSUPPORTED_CONFIG_FILE"|"DEEP_INSPECTION_PACKAGE_COLLECTION_LIMIT_EXCEEDED"|"DEEP_INSPECTION_DAILY_SSM_INVENTORY_LIMIT_EXCEEDED"|"DEEP_INSPECTION_COLLECTION_TIME_LIMIT_EXCEEDED"|"DEEP_INSPECTION_NO_INVENTORY"|string;
   export type ScanType = "NETWORK"|"PACKAGE"|string;
   export type SecurityGroupId = string;
   export type SecurityGroupIdList = SecurityGroupId[];
@@ -2655,6 +2791,34 @@ declare namespace Inspector2 {
   }
   export interface UpdateConfigurationResponse {
   }
+  export interface UpdateEc2DeepInspectionConfigurationRequest {
+    /**
+     * Specify TRUE to activate Amazon Inspector deep inspection in your account, or FALSE to deactivate. Member accounts in an organization cannot deactivate deep inspection, instead the delegated administrator for the organization can deactivate a member account using BatchUpdateMemberEc2DeepInspectionStatus.
+     */
+    activateDeepInspection?: Boolean;
+    /**
+     * The Amazon Inspector deep inspection custom paths you are adding for your account.
+     */
+    packagePaths?: PathList;
+  }
+  export interface UpdateEc2DeepInspectionConfigurationResponse {
+    /**
+     * An error message explaining why new Amazon Inspector deep inspection custom paths could not be added.
+     */
+    errorMessage?: NonEmptyString;
+    /**
+     * The current Amazon Inspector deep inspection custom paths for the organization.
+     */
+    orgPackagePaths?: PathList;
+    /**
+     * The current Amazon Inspector deep inspection custom paths for your account.
+     */
+    packagePaths?: PathList;
+    /**
+     * The status of Amazon Inspector deep inspection in your account.
+     */
+    status?: Ec2DeepInspectionStatus;
+  }
   export interface UpdateFilterRequest {
     /**
      * Specifies the action that is to be applied to the findings that match the filter.
@@ -2687,6 +2851,14 @@ declare namespace Inspector2 {
      */
     arn: FilterArn;
   }
+  export interface UpdateOrgEc2DeepInspectionConfigurationRequest {
+    /**
+     * The Amazon Inspector deep inspection custom paths you are adding for your organization.
+     */
+    orgPackagePaths: PathList;
+  }
+  export interface UpdateOrgEc2DeepInspectionConfigurationResponse {
+  }
   export interface UpdateOrganizationConfigurationRequest {
     /**
      * Defines which scan types are enabled automatically for new members of your Amazon Inspector organization.

package/node_modules/aws-sdk/clients/iottwinmaker.d.ts

@@ -1305,6 +1305,10 @@ declare namespace IoTTwinMaker {
      * The generated scene metadata.
      */
     generatedSceneMetadata?: GeneratedSceneMetadataMap;
+    /**
+     * The SceneResponse error.
+     */
+    error?: SceneError;
   }
   export interface GetSyncJobRequest {
     /**
@@ -1920,6 +1924,17 @@ declare namespace IoTTwinMaker {
   export type S3Url = string;
   export type SceneCapabilities = SceneCapability[];
   export type SceneCapability = string;
+  export interface SceneError {
+    /**
+     * The SceneError code.
+     */
+    code?: SceneErrorCode;
+    /**
+     * The SceneError message.
+     */
+    message?: ErrorMessage;
+  }
+  export type SceneErrorCode = "MATTERPORT_ERROR"|string;
   export type SceneMetadataMap = {[key: string]: SceneMetadataValue};
   export type SceneMetadataValue = string;
   export type SceneSummaries = SceneSummary[];

package/node_modules/aws-sdk/clients/kendra.d.ts

@@ -516,11 +516,11 @@ declare class Kendra extends Service {
    */
   updateQuerySuggestionsBlockList(callback?: (err: AWSError, data: {}) => void): Request<{}, AWSError>;
   /**
-   * Updates the settings of query suggestions for an index. Amazon Kendra supports partial updates, so you only need to provide the fields you want to update. If an update is currently processing (i.e. 'happening'), you need to wait for the update to finish before making another update. Updates to query suggestions settings might not take effect right away. The time for your updated settings to take effect depends on the updates made and the number of search queries in your index. You can still enable/disable query suggestions at any time.  UpdateQuerySuggestionsConfig is currently not supported in the Amazon Web Services GovCloud (US-West) region.
+   * Updates the settings of query suggestions for an index. Amazon Kendra supports partial updates, so you only need to provide the fields you want to update. If an update is currently processing, you need to wait for the update to finish before making another update. Updates to query suggestions settings might not take effect right away. The time for your updated settings to take effect depends on the updates made and the number of search queries in your index. You can still enable/disable query suggestions at any time.  UpdateQuerySuggestionsConfig is currently not supported in the Amazon Web Services GovCloud (US-West) region.
    */
   updateQuerySuggestionsConfig(params: Kendra.Types.UpdateQuerySuggestionsConfigRequest, callback?: (err: AWSError, data: {}) => void): Request<{}, AWSError>;
   /**
-   * Updates the settings of query suggestions for an index. Amazon Kendra supports partial updates, so you only need to provide the fields you want to update. If an update is currently processing (i.e. 'happening'), you need to wait for the update to finish before making another update. Updates to query suggestions settings might not take effect right away. The time for your updated settings to take effect depends on the updates made and the number of search queries in your index. You can still enable/disable query suggestions at any time.  UpdateQuerySuggestionsConfig is currently not supported in the Amazon Web Services GovCloud (US-West) region.
+   * Updates the settings of query suggestions for an index. Amazon Kendra supports partial updates, so you only need to provide the fields you want to update. If an update is currently processing, you need to wait for the update to finish before making another update. Updates to query suggestions settings might not take effect right away. The time for your updated settings to take effect depends on the updates made and the number of search queries in your index. You can still enable/disable query suggestions at any time.  UpdateQuerySuggestionsConfig is currently not supported in the Amazon Web Services GovCloud (US-West) region.
    */
   updateQuerySuggestionsConfig(callback?: (err: AWSError, data: {}) => void): Request<{}, AWSError>;
   /**
@@ -717,6 +717,45 @@ declare namespace Kendra {
     LessThanOrEquals?: DocumentAttribute;
   }
   export type AttributeFilterList = AttributeFilter[];
+  export interface AttributeSuggestionsDescribeConfig {
+    /**
+     * The list of fields/attributes that you want to set as suggestible for query suggestions.
+     */
+    SuggestableConfigList?: SuggestableConfigList;
+    /**
+     * The mode is set to either ACTIVE or INACTIVE. If the Mode for query history is set to ENABLED when calling UpdateQuerySuggestionsConfig and AttributeSuggestionsMode to use fields/attributes is set to ACTIVE, and you haven't set your SuggestionTypes preference to DOCUMENT_ATTRIBUTES, then Amazon Kendra uses the query history.
+     */
+    AttributeSuggestionsMode?: AttributeSuggestionsMode;
+  }
+  export interface AttributeSuggestionsGetConfig {
+    /**
+     * The list of document field/attribute keys or field names to use for query suggestions. If the content within any of the fields match what your user starts typing as their query, then the field content is returned as a query suggestion.
+     */
+    SuggestionAttributes?: DocumentAttributeKeyList;
+    /**
+     * The list of additional document field/attribute keys or field names to include in the response. You can use additional fields to provide extra information in the response. Additional fields are not used to based suggestions on.
+     */
+    AdditionalResponseAttributes?: DocumentAttributeKeyList;
+    /**
+     * Filters the search results based on document fields/attributes.
+     */
+    AttributeFilter?: AttributeFilter;
+    /**
+     * Applies user context filtering so that only users who are given access to certain documents see these document in their search results.
+     */
+    UserContext?: UserContext;
+  }
+  export type AttributeSuggestionsMode = "ACTIVE"|"INACTIVE"|string;
+  export interface AttributeSuggestionsUpdateConfig {
+    /**
+     * The list of fields/attributes that you want to set as suggestible for query suggestions.
+     */
+    SuggestableConfigList?: SuggestableConfigList;
+    /**
+     * You can set the mode to ACTIVE or INACTIVE. You must also set SuggestionTypes as either QUERY or DOCUMENT_ATTRIBUTES and then call GetQuerySuggestions. If Mode to use query history is set to ENABLED when calling UpdateQuerySuggestionsConfig and AttributeSuggestionsMode to use fields/attributes is set to ACTIVE, and you haven't set your SuggestionTypes preference to DOCUMENT_ATTRIBUTES, then Amazon Kendra uses the query history.
+     */
+    AttributeSuggestionsMode?: AttributeSuggestionsMode;
+  }
   export interface AuthenticationConfiguration {
     /**
      * The list of configuration information that's required to connect to and crawl a website host using basic authentication credentials. The list includes the name and port number of the website host.
@@ -2338,7 +2377,7 @@ declare namespace Kendra {
      */
     MinimumQueryCount?: MinimumQueryCount;
     /**
-     * The Unix timestamp when query suggestions for an index was last updated.
+     * The Unix timestamp when query suggestions for an index was last updated. Amazon Kendra automatically updates suggestions every 24 hours, after you change a setting or after you apply a block list.
      */
     LastSuggestionsBuildTime?: Timestamp;
     /**
@@ -2346,9 +2385,13 @@ declare namespace Kendra {
      */
     LastClearTime?: Timestamp;
     /**
-     * The current total count of query suggestions for an index. This count can change when you update your query suggestions settings, if you filter out certain queries from suggestions using a block list, and as the query log accumulates more queries for Amazon Kendra to learn from.
+     * The current total count of query suggestions for an index. This count can change when you update your query suggestions settings, if you filter out certain queries from suggestions using a block list, and as the query log accumulates more queries for Amazon Kendra to learn from. If the count is much lower than you expected, it could be because Amazon Kendra needs more queries in the query history to learn from or your current query suggestions settings are too strict.
      */
     TotalSuggestionsCount?: Integer;
+    /**
+     * Configuration information for the document fields/attributes that you want to base query suggestions on.
+     */
+    AttributeSuggestionsConfig?: AttributeSuggestionsDescribeConfig;
   }
   export interface DescribeThesaurusRequest {
     /**
@@ -2994,6 +3037,14 @@ declare namespace Kendra {
      * The maximum number of query suggestions you want to show to your users.
      */
     MaxSuggestionsCount?: Integer;
+    /**
+     * The suggestions type to base query suggestions on. The suggestion types are query history or document fields/attributes. You can set one type or the other. If you set query history as your suggestions type, Amazon Kendra suggests queries relevant to your users based on popular queries in the query history. If you set document fields/attributes as your suggestions type, Amazon Kendra suggests queries relevant to your users based on the contents of document fields.
+     */
+    SuggestionTypes?: SuggestionTypes;
+    /**
+     * Configuration information for the document fields/attributes that you want to base query suggestions on.
+     */
+    AttributeSuggestionsConfig?: AttributeSuggestionsGetConfig;
   }
   export interface GetQuerySuggestionsResponse {
     /**
@@ -4698,6 +4749,21 @@ declare namespace Kendra {
      */
     SortOrder: SortOrder;
   }
+  export interface SourceDocument {
+    /**
+     * The identifier of the document used for a query suggestion.
+     */
+    DocumentId?: String;
+    /**
+     * The document fields/attributes used for a query suggestion.
+     */
+    SuggestionAttributes?: DocumentAttributeKeyList;
+    /**
+     * The additional fields/attributes to include in the response. You can use additional fields to provide extra information in the response. Additional fields are not used to based suggestions on.
+     */
+    AdditionalAttributes?: DocumentAttributeList;
+  }
+  export type SourceDocuments = SourceDocument[];
   export interface SpellCorrectedQuery {
     /**
      * The query with the suggested spell corrections.
@@ -4788,6 +4854,17 @@ declare namespace Kendra {
   }
   export type SubnetId = string;
   export type SubnetIdList = SubnetId[];
+  export interface SuggestableConfig {
+    /**
+     * The name of the document field/attribute.
+     */
+    AttributeName?: DocumentAttributeKey;
+    /**
+     *  TRUE means the document field/attribute is suggestible, so the contents within the field can be used for query suggestions.
+     */
+    Suggestable?: ObjectBoolean;
+  }
+  export type SuggestableConfigList = SuggestableConfig[];
   export type SuggestedQueryText = string;
   export interface Suggestion {
     /**
@@ -4798,6 +4875,10 @@ declare namespace Kendra {
      * The value for the UUID (universally unique identifier) of a single query suggestion. The value is the text string of a suggestion.
      */
     Value?: SuggestionValue;
+    /**
+     * The list of document IDs and their fields/attributes that are used for a single query suggestion, if document fields set to use for query suggestions.
+     */
+    SourceDocuments?: SourceDocuments;
   }
   export interface SuggestionHighlight {
     /**
@@ -4822,6 +4903,8 @@ declare namespace Kendra {
      */
     Highlights?: SuggestionHighlightList;
   }
+  export type SuggestionType = "QUERY"|"DOCUMENT_ATTRIBUTES"|string;
+  export type SuggestionTypes = SuggestionType[];
   export interface SuggestionValue {
     /**
      * The SuggestionTextWithHighlights structure that contains the query suggestion text and highlights.
@@ -5076,7 +5159,7 @@ declare namespace Kendra {
      */
     IndexId: IndexId;
     /**
-     * The identifier of the index used for featuring results.
+     * The identifier of the set of featured results that you want to update.
      */
     FeaturedResultsSetId: FeaturedResultsSetId;
     /**
@@ -5195,6 +5278,10 @@ declare namespace Kendra {
      * The the minimum number of times a query must be searched in order to be eligible to suggest to your users. Decreasing this number increases the number of suggestions. However, this affects the quality of suggestions as it sets a low bar for a query to be considered popular to suggest to users. How you tune this setting depends on your specific needs.
      */
     MinimumQueryCount?: MinimumQueryCount;
+    /**
+     * Configuration information for the document fields/attributes that you want to base query suggestions on.
+     */
+    AttributeSuggestionsConfig?: AttributeSuggestionsUpdateConfig;
   }
   export interface UpdateThesaurusRequest {
     /**

package/node_modules/aws-sdk/clients/networkfirewall.d.ts

@@ -402,11 +402,11 @@ declare namespace NetworkFirewall {
      */
     Status?: AttachmentStatus;
     /**
-     * If Network Firewall fails to create or delete the firewall endpoint in the subnet, it populates this with the reason for the failure and how to resolve it. Depending on the error, it can take as many as 15 minutes to populate this field. For more information about the errors and solutions available for this field, see Troubleshooting firewall endpoint failures in the Network Firewall Developer Guide.
+     * If Network Firewall fails to create or delete the firewall endpoint in the subnet, it populates this with the reason for the error or failure and how to resolve it. A FAILED status indicates a non-recoverable state, and a ERROR status indicates an issue that you can fix. Depending on the error, it can take as many as 15 minutes to populate this field. For more information about the causes for failiure or errors and solutions available for this field, see Troubleshooting firewall endpoint failures in the Network Firewall Developer Guide.
      */
     StatusMessage?: StatusMessage;
   }
-  export type AttachmentStatus = "CREATING"|"DELETING"|"SCALING"|"READY"|string;
+  export type AttachmentStatus = "CREATING"|"DELETING"|"SCALING"|"READY"|"FAILED"|"ERROR"|string;
   export type AvailabilityZone = string;
   export type AzSubnet = string;
   export type AzSubnets = AzSubnet[];
@@ -1011,6 +1011,10 @@ declare namespace NetworkFirewall {
      * The Amazon Resource Name (ARN) of the TLS inspection configuration.
      */
     TLSInspectionConfigurationArn?: ResourceArn;
+    /**
+     * Contains variables that you can use to override default Suricata settings in your firewall policy.
+     */
+    PolicyVariables?: PolicyVariables;
   }
   export interface FirewallPolicyMetadata {
     /**
@@ -1331,6 +1335,12 @@ declare namespace NetworkFirewall {
   }
   export type PerObjectSyncStatus = "PENDING"|"IN_SYNC"|"CAPACITY_CONSTRAINED"|string;
   export type PolicyString = string;
+  export interface PolicyVariables {
+    /**
+     * The IPv4 or IPv6 addresses in CIDR notation to use for the Suricata HOME_NET variable. If your firewall uses an inspection VPC, you might want to override the HOME_NET variable with the CIDRs of your home networks. If you don't override HOME_NET with your own CIDRs, Network Firewall by default uses the CIDR of your inspection VPC.
+     */
+    RuleVariables?: IPSets;
+  }
   export type Port = string;
   export interface PortRange {
     /**
@@ -1366,7 +1376,7 @@ declare namespace NetworkFirewall {
      */
     ResourceArn: ResourceArn;
     /**
-     * The IAM policy statement that lists the accounts that you want to share your rule group or firewall policy with and the operations that you want the accounts to be able to perform.  For a rule group resource, you can specify the following operations in the Actions section of the statement:   network-firewall:CreateFirewallPolicy   network-firewall:UpdateFirewallPolicy   network-firewall:ListRuleGroups   For a firewall policy resource, you can specify the following operations in the Actions section of the statement:   network-firewall:CreateFirewall   network-firewall:UpdateFirewall   network-firewall:AssociateFirewallPolicy   network-firewall:ListFirewallPolicies   In the Resource section of the statement, you specify the ARNs for the rule groups and firewall policies that you want to share with the account that you specified in Arn.
+     * The IAM policy statement that lists the accounts that you want to share your rule group or firewall policy with and the operations that you want the accounts to be able to perform.  For a rule group resource, you can specify the following operations in the Actions section of the statement:   network-firewall:CreateFirewallPolicy   network-firewall:UpdateFirewallPolicy   network-firewall:ListRuleGroups   For a firewall policy resource, you can specify the following operations in the Actions section of the statement:   network-firewall:AssociateFirewallPolicy   network-firewall:ListFirewallPolicies   In the Resource section of the statement, you specify the ARNs for the rule groups and firewall policies that you want to share with the account that you specified in Arn.
      */
     Policy: PolicyString;
   }
@@ -1608,7 +1618,7 @@ declare namespace NetworkFirewall {
   }
   export interface StatefulRule {
     /**
-     * Defines what Network Firewall should do with the packets in a traffic flow when the flow matches the stateful rule criteria. For all actions, Network Firewall performs the specified action and discontinues stateful inspection of the traffic flow.  The actions for a stateful rule are defined as follows:     PASS - Permits the packets to go to the intended destination.    DROP - Blocks the packets from going to the intended destination and sends an alert log message, if alert logging is configured in the Firewall LoggingConfiguration.     ALERT - Permits the packets to go to the intended destination and sends an alert log message, if alert logging is configured in the Firewall LoggingConfiguration.  You can use this action to test a rule that you intend to use to drop traffic. You can enable the rule with ALERT action, verify in the logs that the rule is filtering as you want, then change the action to DROP.    REJECT - Drops TCP traffic that matches the conditions of the stateful rule, and sends a TCP reset packet back to sender of the packet. A TCP reset packet is a packet with no payload and a RST bit contained in the TCP header flags. Also sends an alert log mesage if alert logging is configured in the Firewall LoggingConfiguration.  REJECT isn't currently available for use with IMAP and FTP protocols.  
+     * Defines what Network Firewall should do with the packets in a traffic flow when the flow matches the stateful rule criteria. For all actions, Network Firewall performs the specified action and discontinues stateful inspection of the traffic flow.  The actions for a stateful rule are defined as follows:     PASS - Permits the packets to go to the intended destination.    DROP - Blocks the packets from going to the intended destination and sends an alert log message, if alert logging is configured in the Firewall LoggingConfiguration.     ALERT - Permits the packets to go to the intended destination and sends an alert log message, if alert logging is configured in the Firewall LoggingConfiguration.  You can use this action to test a rule that you intend to use to drop traffic. You can enable the rule with ALERT action, verify in the logs that the rule is filtering as you want, then change the action to DROP.  
      */
     Action: StatefulAction;
     /**