cdk-iam-floyd 0.799.0 → 0.800.0

package/README.md

@@ -16,8 +16,8 @@
 Support for:
 
 - 450 Services
-- 21072 Actions
-- 2230 Resource Types
+- 21083 Actions
+- 2232 Resource Types
 - 2360 Condition keys
 <!-- /stats -->
 

package/lib/generated/policy-statements/ec2.d.ts

@@ -44,6 +44,17 @@ export declare class Ec2 extends PolicyStatement {
      * https://docs.aws.amazon.com/AWSEC2/latest/APIReference/API_AcceptReservedInstancesExchangeQuote.html
      */
     toAcceptReservedInstancesExchangeQuote(): this;
+    /**
+     * Grants permission to accept a transit gateway attachment request for a Client VPN endpoint
+     *
+     * Access Level: Write
+     *
+     * Possible conditions:
+     * - .ifRegion()
+     *
+     * https://docs.aws.amazon.com/AWSEC2/latest/APIReference/API_AcceptTransitGatewayClientVpnAttachment.html
+     */
+    toAcceptTransitGatewayClientVpnAttachment(): this;
     /**
      * Grants permission to accept a request to associate subnets with a transit gateway multicast domain
      *
@@ -146,6 +157,9 @@ export declare class Ec2 extends PolicyStatement {
      * Possible conditions:
      * - .ifRegion()
      *
+     * Dependent actions:
+     * - ec2:CreateTags
+     *
      * https://docs.aws.amazon.com/AWSEC2/latest/APIReference/API_AllocateIpamPoolCidr.html
      */
     toAllocateIpamPoolCidr(): this;
@@ -787,6 +801,20 @@ export declare class Ec2 extends PolicyStatement {
      * https://docs.aws.amazon.com/AWSEC2/latest/APIReference/API_CreateCapacityReservationBySplitting.html
      */
     toCreateCapacityReservationBySplitting(): this;
+    /**
+     * Grants permission to generate a cancellation quote for a future-dated Capacity Reservation
+     *
+     * Access Level: Write
+     *
+     * Possible conditions:
+     * - .ifRegion()
+     *
+     * Dependent actions:
+     * - ec2:CreateTags
+     *
+     * https://docs.aws.amazon.com/AWSEC2/latest/APIReference/API_CreateCapacityReservationCancellationQuote.html
+     */
+    toCreateCapacityReservationCancellationQuote(): this;
     /**
      * Grants permission to create a Capacity Reservation Fleet
      *
@@ -2967,6 +2995,17 @@ export declare class Ec2 extends PolicyStatement {
      * https://docs.aws.amazon.com/AWSEC2/latest/APIReference/API_DeleteTransitGateway.html
      */
     toDeleteTransitGateway(): this;
+    /**
+     * Grants permission to delete a transit gateway attachment for a Client VPN endpoint
+     *
+     * Access Level: Write
+     *
+     * Possible conditions:
+     * - .ifRegion()
+     *
+     * https://docs.aws.amazon.com/AWSEC2/latest/APIReference/API_DeleteTransitGatewayClientVpnAttachment.html
+     */
+    toDeleteTransitGatewayClientVpnAttachment(): this;
     /**
      * Grants permission to delete a transit gateway connect attachment
      *
@@ -3539,6 +3578,17 @@ export declare class Ec2 extends PolicyStatement {
      * https://docs.aws.amazon.com/AWSEC2/latest/APIReference/API_DescribeCapacityReservationBillingRequests.html
      */
     toDescribeCapacityReservationBillingRequests(): this;
+    /**
+     * Grants permission to describe one or more Capacity Reservation cancellation quotes
+     *
+     * Access Level: List
+     *
+     * Possible conditions:
+     * - .ifRegion()
+     *
+     * https://docs.aws.amazon.com/AWSEC2/latest/APIReference/API_DescribeCapacityReservationCancellationQuotes.html
+     */
+    toDescribeCapacityReservationCancellationQuotes(): this;
     /**
      * Grants permission to describe one or more Capacity Reservation Fleets
      *
@@ -4166,6 +4216,17 @@ export declare class Ec2 extends PolicyStatement {
      * https://docs.aws.amazon.com/AWSEC2/latest/APIReference/API_DescribeIpamPolicies.html
      */
     toDescribeIpamPolicies(): this;
+    /**
+     * Grants permission to describe IPAM pool allocations
+     *
+     * Access Level: List
+     *
+     * Possible conditions:
+     * - .ifRegion()
+     *
+     * https://docs.aws.amazon.com/AWSEC2/latest/APIReference/API_DescribeIpamPoolAllocations.html
+     */
+    toDescribeIpamPoolAllocations(): this;
     /**
      * Grants permission to describe Amazon VPC IP Address Manager (IPAM) pools
      *
@@ -6381,6 +6442,17 @@ export declare class Ec2 extends PolicyStatement {
      * https://docs.aws.amazon.com/AWSEC2/latest/APIReference/API_GetCapacityManagerMetricDimensions.html
      */
     toGetCapacityManagerMetricDimensions(): this;
+    /**
+     * Grants permission to retrieve the tag keys that are currently being monitored by EC2 Capacity Manager
+     *
+     * Access Level: List
+     *
+     * Possible conditions:
+     * - .ifRegion()
+     *
+     * https://docs.aws.amazon.com/AWSEC2/latest/APIReference/API_GetCapacityManagerMonitoredTagKeys.html
+     */
+    toGetCapacityManagerMonitoredTagKeys(): this;
     /**
      * Grants permission to get usage information about a Capacity Reservation
      *
@@ -6744,6 +6816,17 @@ export declare class Ec2 extends PolicyStatement {
      * https://docs.aws.amazon.com/AWSEC2/latest/APIReference/API_GetManagedPrefixListEntries.html
      */
     toGetManagedPrefixListEntries(): this;
+    /**
+     * Grants permission to retrieve the managed resource visibility configuration for the account
+     *
+     * Access Level: List
+     *
+     * Possible conditions:
+     * - .ifRegion()
+     *
+     * https://docs.aws.amazon.com/AWSEC2/latest/APIReference/API_GetManagedResourceVisibility.html
+     */
+    toGetManagedResourceVisibility(): this;
     /**
      * Grants permission to get the findings for one or more Network Access Scope analyses
      *
@@ -7529,6 +7612,17 @@ export declare class Ec2 extends PolicyStatement {
      * https://docs.aws.amazon.com/AWSEC2/latest/APIReference/API_ModifyIpamPool.html
      */
     toModifyIpamPool(): this;
+    /**
+     * Grants permission to modify the description of an IPAM pool allocation
+     *
+     * Access Level: Write
+     *
+     * Possible conditions:
+     * - .ifRegion()
+     *
+     * https://docs.aws.amazon.com/AWSEC2/latest/APIReference/API_ModifyIpamPoolAllocation.html
+     */
+    toModifyIpamPoolAllocation(): this;
     /**
      * Grants permission to modify an IPAM prefix list resolver
      *
@@ -7617,6 +7711,17 @@ export declare class Ec2 extends PolicyStatement {
      * https://docs.aws.amazon.com/AWSEC2/latest/APIReference/API_ModifyManagedPrefixList.html
      */
     toModifyManagedPrefixList(): this;
+    /**
+     * Grants permission to modify the managed resource visibility configuration for the account
+     *
+     * Access Level: Write
+     *
+     * Possible conditions:
+     * - .ifRegion()
+     *
+     * https://docs.aws.amazon.com/AWSEC2/latest/APIReference/API_ModifyManagedResourceVisibility.html
+     */
+    toModifyManagedResourceVisibility(): this;
     /**
      * Grants permission to modify an attribute of a network interface
      *
@@ -8319,6 +8424,17 @@ export declare class Ec2 extends PolicyStatement {
      * https://docs.aws.amazon.com/AWSEC2/latest/APIReference/API_RejectCapacityReservationBillingOwnership.html
      */
     toRejectCapacityReservationBillingOwnership(): this;
+    /**
+     * Grants permission to reject a transit gateway attachment request for a Client VPN endpoint
+     *
+     * Access Level: Write
+     *
+     * Possible conditions:
+     * - .ifRegion()
+     *
+     * https://docs.aws.amazon.com/AWSEC2/latest/APIReference/API_RejectTransitGatewayClientVpnAttachment.html
+     */
+    toRejectTransitGatewayClientVpnAttachment(): this;
     /**
      * Grants permission to reject requests to associate cross-account subnets with a transit gateway multicast domain
      *
@@ -8945,6 +9061,17 @@ export declare class Ec2 extends PolicyStatement {
      * https://docs.aws.amazon.com/AWSEC2/latest/APIReference/API_UnmonitorInstances.html
      */
     toUnmonitorInstances(): this;
+    /**
+     * Grants permission to activate or deactivate tag keys for monitoring by EC2 Capacity Manager
+     *
+     * Access Level: Write
+     *
+     * Possible conditions:
+     * - .ifRegion()
+     *
+     * https://docs.aws.amazon.com/AWSEC2/latest/APIReference/API_UpdateCapacityManagerMonitoredTagKeys.html
+     */
+    toUpdateCapacityManagerMonitoredTagKeys(): this;
     /**
      * Grants permission to update the Organizations access setting for EC2 Capacity Manager
      *
@@ -9064,6 +9191,26 @@ export declare class Ec2 extends PolicyStatement {
      * - .ifResourceTag()
      */
     onCapacityManagerDataExport(capacityManagerDataExportId: string, account?: string, region?: string, partition?: string): this;
+    /**
+     * Adds a resource of type capacity-reservation-cancellation-quote to the statement
+     *
+     * https://docs.aws.amazon.com/AWSEC2/latest/UserGuide/iam-policies-for-amazon-ec2.html#EC2_ARN_Format
+     *
+     * @param capacityReservationCancellationQuoteId - Identifier for the capacityReservationCancellationQuoteId.
+     * @param account - Account of the resource; defaults to `*`, unless using the CDK, where the default is the current Stack's account.
+     * @param region - Region of the resource; defaults to `*`, unless using the CDK, where the default is the current Stack's region.
+     * @param partition - Partition of the AWS account [aws, aws-cn, aws-us-gov]; defaults to `aws`, unless using the CDK, where the default is the current Stack's partition.
+     *
+     * Possible conditions:
+     * - .ifAwsRequestTag()
+     * - .ifAwsResourceTag()
+     * - .ifAwsTagKeys()
+     * - .ifAttribute()
+     * - .ifAttribute()
+     * - .ifRegion()
+     * - .ifResourceTag()
+     */
+    onCapacityReservationCancellationQuote(capacityReservationCancellationQuoteId: string, account?: string, region?: string, partition?: string): this;
     /**
      * Adds a resource of type capacity-reservation-fleet to the statement
      *
@@ -9652,6 +9799,26 @@ export declare class Ec2 extends PolicyStatement {
      * - .ifResourceTag()
      */
     onIpamPolicy(ipamPolicyId: string, account?: string, partition?: string): this;
+    /**
+     * Adds a resource of type ipam-pool-allocation to the statement
+     *
+     * https://docs.aws.amazon.com/AWSEC2/latest/UserGuide/iam-policies-for-amazon-ec2.html#EC2_ARN_Format
+     *
+     * @param ipamPoolAllocationId - Identifier for the ipamPoolAllocationId.
+     * @param account - Account of the resource; defaults to `*`, unless using the CDK, where the default is the current Stack's account.
+     * @param region - Region of the resource; defaults to `*`, unless using the CDK, where the default is the current Stack's region.
+     * @param partition - Partition of the AWS account [aws, aws-cn, aws-us-gov]; defaults to `aws`, unless using the CDK, where the default is the current Stack's partition.
+     *
+     * Possible conditions:
+     * - .ifAwsRequestTag()
+     * - .ifAwsResourceTag()
+     * - .ifAwsTagKeys()
+     * - .ifAttribute()
+     * - .ifAttribute()
+     * - .ifRegion()
+     * - .ifResourceTag()
+     */
+    onIpamPoolAllocation(ipamPoolAllocationId: string, account?: string, region?: string, partition?: string): this;
     /**
      * Adds a resource of type ipam-pool to the statement
      *
@@ -11237,6 +11404,7 @@ export declare class Ec2 extends PolicyStatement {
      * - .toAcceptAddressTransfer()
      * - .toAllocateAddress()
      * - .toAllocateHosts()
+     * - .toAllocateIpamPoolCidr()
      * - .toAssociateIpamResourceDiscovery()
      * - .toAuthorizeSecurityGroupEgress()
      * - .toAuthorizeSecurityGroupIngress()
@@ -11245,6 +11413,7 @@ export declare class Ec2 extends PolicyStatement {
      * - .toCopyVolumes()
      * - .toCreateCapacityManagerDataExport()
      * - .toCreateCapacityReservation()
+     * - .toCreateCapacityReservationCancellationQuote()
      * - .toCreateCapacityReservationFleet()
      * - .toCreateCarrierGateway()
      * - .toCreateClientVpnEndpoint()
@@ -11345,6 +11514,7 @@ export declare class Ec2 extends PolicyStatement {
      * - elastic-ip
      * - capacity-block
      * - capacity-manager-data-export
+     * - capacity-reservation-cancellation-quote
      * - capacity-reservation-fleet
      * - capacity-reservation
      * - carrier-gateway
@@ -11371,6 +11541,7 @@ export declare class Ec2 extends PolicyStatement {
      * - ipam-external-resource-verification-token
      * - ipam
      * - ipam-policy
+     * - ipam-pool-allocation
      * - ipam-pool
      * - ipam-prefix-list-resolver
      * - ipam-prefix-list-resolver-target
@@ -11460,6 +11631,7 @@ export declare class Ec2 extends PolicyStatement {
      * Applies to actions:
      * - .toAcceptCapacityReservationBillingOwnership()
      * - .toAcceptReservedInstancesExchangeQuote()
+     * - .toAcceptTransitGatewayClientVpnAttachment()
      * - .toAcceptTransitGatewayMulticastDomainAssociations()
      * - .toAcceptTransitGatewayPeeringAttachment()
      * - .toAcceptTransitGatewayVpcAttachment()
@@ -11649,6 +11821,7 @@ export declare class Ec2 extends PolicyStatement {
      * - .toDeleteTrafficMirrorSession()
      * - .toDeleteTrafficMirrorTarget()
      * - .toDeleteTransitGateway()
+     * - .toDeleteTransitGatewayClientVpnAttachment()
      * - .toDeleteTransitGatewayConnect()
      * - .toDeleteTransitGatewayConnectPeer()
      * - .toDeleteTransitGatewayMeteringPolicy()
@@ -11830,6 +12003,7 @@ export declare class Ec2 extends PolicyStatement {
      * - .toModifyIpam()
      * - .toModifyIpamPolicyAllocationRules()
      * - .toModifyIpamPool()
+     * - .toModifyIpamPoolAllocation()
      * - .toModifyIpamPrefixListResolver()
      * - .toModifyIpamPrefixListResolverTarget()
      * - .toModifyIpamResourceCidr()
@@ -11894,6 +12068,7 @@ export declare class Ec2 extends PolicyStatement {
      * - .toRegisterTransitGatewayMulticastGroupMembers()
      * - .toRegisterTransitGatewayMulticastGroupSources()
      * - .toRejectCapacityReservationBillingOwnership()
+     * - .toRejectTransitGatewayClientVpnAttachment()
      * - .toRejectTransitGatewayMulticastDomainAssociations()
      * - .toRejectTransitGatewayPeeringAttachment()
      * - .toRejectTransitGatewayVpcAttachment()
@@ -11951,6 +12126,7 @@ export declare class Ec2 extends PolicyStatement {
      * - elastic-ip
      * - capacity-block
      * - capacity-manager-data-export
+     * - capacity-reservation-cancellation-quote
      * - capacity-reservation-fleet
      * - capacity-reservation
      * - carrier-gateway
@@ -11977,6 +12153,7 @@ export declare class Ec2 extends PolicyStatement {
      * - ipam-external-resource-verification-token
      * - ipam
      * - ipam-policy
+     * - ipam-pool-allocation
      * - ipam-pool
      * - ipam-prefix-list-resolver
      * - ipam-prefix-list-resolver-target
@@ -12067,6 +12244,7 @@ export declare class Ec2 extends PolicyStatement {
      * - .toAcceptAddressTransfer()
      * - .toAllocateAddress()
      * - .toAllocateHosts()
+     * - .toAllocateIpamPoolCidr()
      * - .toAssociateIpamResourceDiscovery()
      * - .toAuthorizeSecurityGroupEgress()
      * - .toAuthorizeSecurityGroupIngress()
@@ -12075,6 +12253,7 @@ export declare class Ec2 extends PolicyStatement {
      * - .toCopyVolumes()
      * - .toCreateCapacityManagerDataExport()
      * - .toCreateCapacityReservation()
+     * - .toCreateCapacityReservationCancellationQuote()
      * - .toCreateCapacityReservationFleet()
      * - .toCreateCarrierGateway()
      * - .toCreateClientVpnEndpoint()
@@ -12175,6 +12354,7 @@ export declare class Ec2 extends PolicyStatement {
      * - elastic-ip
      * - capacity-block
      * - capacity-manager-data-export
+     * - capacity-reservation-cancellation-quote
      * - capacity-reservation-fleet
      * - capacity-reservation
      * - carrier-gateway
@@ -12201,6 +12381,7 @@ export declare class Ec2 extends PolicyStatement {
      * - ipam-external-resource-verification-token
      * - ipam
      * - ipam-policy
+     * - ipam-pool-allocation
      * - ipam-pool
      * - ipam-prefix-list-resolver
      * - ipam-prefix-list-resolver-target
@@ -12398,6 +12579,7 @@ export declare class Ec2 extends PolicyStatement {
      * - .toModifyInstancePlacement()
      * - .toModifyIpam()
      * - .toModifyIpamPool()
+     * - .toModifyIpamPoolAllocation()
      * - .toModifyIpamPrefixListResolver()
      * - .toModifyIpamResourceCidr()
      * - .toModifyIpamResourceDiscovery()
@@ -12444,6 +12626,7 @@ export declare class Ec2 extends PolicyStatement {
      * - elastic-ip
      * - capacity-block
      * - capacity-manager-data-export
+     * - capacity-reservation-cancellation-quote
      * - capacity-reservation-fleet
      * - capacity-reservation
      * - client-vpn-endpoint
@@ -12457,6 +12640,7 @@ export declare class Ec2 extends PolicyStatement {
      * - ipam-external-resource-verification-token
      * - ipam
      * - ipam-policy
+     * - ipam-pool-allocation
      * - ipam-pool
      * - ipam-prefix-list-resolver
      * - ipam-prefix-list-resolver-target
@@ -12518,6 +12702,7 @@ export declare class Ec2 extends PolicyStatement {
      * - .toModifyInstancePlacement()
      * - .toModifyIpam()
      * - .toModifyIpamPool()
+     * - .toModifyIpamPoolAllocation()
      * - .toModifyIpamPrefixListResolver()
      * - .toModifyIpamResourceCidr()
      * - .toModifyIpamResourceDiscovery()
@@ -12572,6 +12757,7 @@ export declare class Ec2 extends PolicyStatement {
      * - elastic-ip
      * - capacity-block
      * - capacity-manager-data-export
+     * - capacity-reservation-cancellation-quote
      * - capacity-reservation-fleet
      * - capacity-reservation
      * - client-vpn-endpoint
@@ -12585,6 +12771,7 @@ export declare class Ec2 extends PolicyStatement {
      * - ipam-external-resource-verification-token
      * - ipam
      * - ipam-policy
+     * - ipam-pool-allocation
      * - ipam-pool
      * - ipam-prefix-list-resolver
      * - ipam-prefix-list-resolver-target
@@ -15434,6 +15621,7 @@ export declare class Ec2 extends PolicyStatement {
      * - .toAcceptAddressTransfer()
      * - .toAcceptCapacityReservationBillingOwnership()
      * - .toAcceptReservedInstancesExchangeQuote()
+     * - .toAcceptTransitGatewayClientVpnAttachment()
      * - .toAcceptTransitGatewayMulticastDomainAssociations()
      * - .toAcceptTransitGatewayPeeringAttachment()
      * - .toAcceptTransitGatewayVpcAttachment()
@@ -15498,6 +15686,7 @@ export declare class Ec2 extends PolicyStatement {
      * - .toCreateCapacityManagerDataExport()
      * - .toCreateCapacityReservation()
      * - .toCreateCapacityReservationBySplitting()
+     * - .toCreateCapacityReservationCancellationQuote()
      * - .toCreateCapacityReservationFleet()
      * - .toCreateCarrierGateway()
      * - .toCreateClientVpnEndpoint()
@@ -15670,6 +15859,7 @@ export declare class Ec2 extends PolicyStatement {
      * - .toDeleteTrafficMirrorSession()
      * - .toDeleteTrafficMirrorTarget()
      * - .toDeleteTransitGateway()
+     * - .toDeleteTransitGatewayClientVpnAttachment()
      * - .toDeleteTransitGatewayConnect()
      * - .toDeleteTransitGatewayConnectPeer()
      * - .toDeleteTransitGatewayMeteringPolicy()
@@ -15722,6 +15912,7 @@ export declare class Ec2 extends PolicyStatement {
      * - .toDescribeCapacityBlocks()
      * - .toDescribeCapacityManagerDataExports()
      * - .toDescribeCapacityReservationBillingRequests()
+     * - .toDescribeCapacityReservationCancellationQuotes()
      * - .toDescribeCapacityReservationFleets()
      * - .toDescribeCapacityReservationTopology()
      * - .toDescribeCapacityReservations()
@@ -15779,6 +15970,7 @@ export declare class Ec2 extends PolicyStatement {
      * - .toDescribeIpamByoasn()
      * - .toDescribeIpamExternalResourceVerificationTokens()
      * - .toDescribeIpamPolicies()
+     * - .toDescribeIpamPoolAllocations()
      * - .toDescribeIpamPools()
      * - .toDescribeIpamPrefixListResolverTargets()
      * - .toDescribeIpamPrefixListResolvers()
@@ -15977,6 +16169,7 @@ export declare class Ec2 extends PolicyStatement {
      * - .toGetCapacityManagerAttributes()
      * - .toGetCapacityManagerMetricData()
      * - .toGetCapacityManagerMetricDimensions()
+     * - .toGetCapacityManagerMonitoredTagKeys()
      * - .toGetCapacityReservationUsage()
      * - .toGetCoipPoolUsage()
      * - .toGetConsoleOutput()
@@ -16010,6 +16203,7 @@ export declare class Ec2 extends PolicyStatement {
      * - .toGetLaunchTemplateData()
      * - .toGetManagedPrefixListAssociations()
      * - .toGetManagedPrefixListEntries()
+     * - .toGetManagedResourceVisibility()
      * - .toGetNetworkInsightsAccessScopeAnalysisFindings()
      * - .toGetNetworkInsightsAccessScopeContent()
      * - .toGetPasswordData()
@@ -16080,6 +16274,7 @@ export declare class Ec2 extends PolicyStatement {
      * - .toModifyIpam()
      * - .toModifyIpamPolicyAllocationRules()
      * - .toModifyIpamPool()
+     * - .toModifyIpamPoolAllocation()
      * - .toModifyIpamPrefixListResolver()
      * - .toModifyIpamPrefixListResolverTarget()
      * - .toModifyIpamResourceCidr()
@@ -16088,6 +16283,7 @@ export declare class Ec2 extends PolicyStatement {
      * - .toModifyLaunchTemplate()
      * - .toModifyLocalGatewayRoute()
      * - .toModifyManagedPrefixList()
+     * - .toModifyManagedResourceVisibility()
      * - .toModifyNetworkInterfaceAttribute()
      * - .toModifyOdbNetworkPeering()
      * - .toModifyPrivateDnsNameOptions()
@@ -16151,6 +16347,7 @@ export declare class Ec2 extends PolicyStatement {
      * - .toRegisterTransitGatewayMulticastGroupMembers()
      * - .toRegisterTransitGatewayMulticastGroupSources()
      * - .toRejectCapacityReservationBillingOwnership()
+     * - .toRejectTransitGatewayClientVpnAttachment()
      * - .toRejectTransitGatewayMulticastDomainAssociations()
      * - .toRejectTransitGatewayPeeringAttachment()
      * - .toRejectTransitGatewayVpcAttachment()
@@ -16206,6 +16403,7 @@ export declare class Ec2 extends PolicyStatement {
      * - .toUnassignPrivateNatGatewayAddress()
      * - .toUnlockSnapshot()
      * - .toUnmonitorInstances()
+     * - .toUpdateCapacityManagerMonitoredTagKeys()
      * - .toUpdateCapacityManagerOrganizationsAccess()
      * - .toUpdateInterruptibleCapacityReservationAllocation()
      * - .toUpdateSecurityGroupRuleDescriptionsEgress()
@@ -16216,6 +16414,7 @@ export declare class Ec2 extends PolicyStatement {
      * - elastic-ip
      * - capacity-block
      * - capacity-manager-data-export
+     * - capacity-reservation-cancellation-quote
      * - capacity-reservation-fleet
      * - capacity-reservation
      * - carrier-gateway
@@ -16242,6 +16441,7 @@ export declare class Ec2 extends PolicyStatement {
      * - ipam-external-resource-verification-token
      * - ipam
      * - ipam-policy
+     * - ipam-pool-allocation
      * - ipam-pool
      * - ipam-prefix-list-resolver
      * - ipam-prefix-list-resolver-target
@@ -16453,6 +16653,7 @@ export declare class Ec2 extends PolicyStatement {
      * Applies to actions:
      * - .toAcceptCapacityReservationBillingOwnership()
      * - .toAcceptReservedInstancesExchangeQuote()
+     * - .toAcceptTransitGatewayClientVpnAttachment()
      * - .toAcceptTransitGatewayMulticastDomainAssociations()
      * - .toAcceptTransitGatewayPeeringAttachment()
      * - .toAcceptTransitGatewayVpcAttachment()
@@ -16492,6 +16693,7 @@ export declare class Ec2 extends PolicyStatement {
      * - .toAuthorizeClientVpnIngress()
      * - .toAuthorizeSecurityGroupEgress()
      * - .toAuthorizeSecurityGroupIngress()
+     * - .toCancelCapacityReservation()
      * - .toCancelCapacityReservationFleets()
      * - .toCancelDeclarativePoliciesReport()
      * - .toCancelExportTask()
@@ -16641,6 +16843,7 @@ export declare class Ec2 extends PolicyStatement {
      * - .toDeleteTrafficMirrorSession()
      * - .toDeleteTrafficMirrorTarget()
      * - .toDeleteTransitGateway()
+     * - .toDeleteTransitGatewayClientVpnAttachment()
      * - .toDeleteTransitGatewayConnect()
      * - .toDeleteTransitGatewayConnectPeer()
      * - .toDeleteTransitGatewayMeteringPolicy()
@@ -16820,6 +17023,7 @@ export declare class Ec2 extends PolicyStatement {
      * - .toModifyIpam()
      * - .toModifyIpamPolicyAllocationRules()
      * - .toModifyIpamPool()
+     * - .toModifyIpamPoolAllocation()
      * - .toModifyIpamPrefixListResolver()
      * - .toModifyIpamPrefixListResolverTarget()
      * - .toModifyIpamResourceCidr()
@@ -16883,6 +17087,7 @@ export declare class Ec2 extends PolicyStatement {
      * - .toRegisterTransitGatewayMulticastGroupMembers()
      * - .toRegisterTransitGatewayMulticastGroupSources()
      * - .toRejectCapacityReservationBillingOwnership()
+     * - .toRejectTransitGatewayClientVpnAttachment()
      * - .toRejectTransitGatewayMulticastDomainAssociations()
      * - .toRejectTransitGatewayPeeringAttachment()
      * - .toRejectTransitGatewayVpcAttachment()
@@ -16940,6 +17145,7 @@ export declare class Ec2 extends PolicyStatement {
      * - elastic-ip
      * - capacity-block
      * - capacity-manager-data-export
+     * - capacity-reservation-cancellation-quote
      * - capacity-reservation-fleet
      * - capacity-reservation
      * - carrier-gateway
@@ -16966,6 +17172,7 @@ export declare class Ec2 extends PolicyStatement {
      * - ipam-external-resource-verification-token
      * - ipam
      * - ipam-policy
+     * - ipam-pool-allocation
      * - ipam-pool
      * - ipam-prefix-list-resolver
      * - ipam-prefix-list-resolver-target
@@ -18252,6 +18459,7 @@ export declare class Ec2 extends PolicyStatement {
      * Filters access by the ID of a transit gateway attachment
      *
      * Applies to actions:
+     * - .toAcceptTransitGatewayClientVpnAttachment()
      * - .toAcceptTransitGatewayMulticastDomainAssociations()
      * - .toAcceptTransitGatewayPeeringAttachment()
      * - .toAcceptTransitGatewayVpcAttachment()
@@ -18270,6 +18478,7 @@ export declare class Ec2 extends PolicyStatement {
      * - .toCreateTransitGatewayRouteTableAnnouncement()
      * - .toCreateTransitGatewayVpcAttachment()
      * - .toCreateVpnConnection()
+     * - .toDeleteTransitGatewayClientVpnAttachment()
      * - .toDeleteTransitGatewayConnect()
      * - .toDeleteTransitGatewayPeeringAttachment()
      * - .toDeleteTransitGatewayVpcAttachment()
@@ -18281,6 +18490,7 @@ export declare class Ec2 extends PolicyStatement {
      * - .toModifyTransitGatewayMeteringPolicy()
      * - .toModifyTransitGatewayPrefixListReference()
      * - .toModifyTransitGatewayVpcAttachment()
+     * - .toRejectTransitGatewayClientVpnAttachment()
      * - .toRejectTransitGatewayMulticastDomainAssociations()
      * - .toRejectTransitGatewayPeeringAttachment()
      * - .toRejectTransitGatewayVpcAttachment()
@@ -18312,6 +18522,7 @@ export declare class Ec2 extends PolicyStatement {
      * Filters access by the ID of a transit gateway
      *
      * Applies to actions:
+     * - .toCreateClientVpnEndpoint()
      * - .toCreateFlowLogs()
      * - .toCreateNetworkInsightsPath()
      * - .toCreateTags()
@@ -18325,6 +18536,7 @@ export declare class Ec2 extends PolicyStatement {
      * - .toCreateVpnConcentrator()
      * - .toCreateVpnConnection()
      * - .toDeleteTransitGateway()
+     * - .toModifyClientVpnEndpoint()
      * - .toModifyTransitGateway()
      *
      * Applies to resource types: