cdk-lambda-subminute 2.0.270 → 2.0.272

package/node_modules/aws-sdk/apis/route53-recovery-cluster-2019-12-02.min.json

@@ -62,7 +62,8 @@
                 "ControlPanelName": {},
                 "RoutingControlArn": {},
                 "RoutingControlName": {},
-                "RoutingControlState": {}
+                "RoutingControlState": {},
+                "Owner": {}
               }
             }
           },
@@ -81,7 +82,7 @@
           "RoutingControlArn": {},
           "RoutingControlState": {},
           "SafetyRulesToOverride": {
-            "shape": "Se"
+            "shape": "Sf"
           }
         }
       },
@@ -112,7 +113,7 @@
             }
           },
           "SafetyRulesToOverride": {
-            "shape": "Se"
+            "shape": "Sf"
           }
         }
       },
@@ -123,7 +124,7 @@
     }
   },
   "shapes": {
-    "Se": {
+    "Sf": {
       "type": "list",
       "member": {}
     }

package/node_modules/aws-sdk/apis/route53-recovery-control-config-2020-11-02.min.json

@@ -66,7 +66,7 @@
         "type": "structure",
         "members": {
           "ControlPanel": {
-            "shape": "Sg"
+            "shape": "Sh"
           }
         }
       }
@@ -95,7 +95,7 @@
         "type": "structure",
         "members": {
           "RoutingControl": {
-            "shape": "Sl"
+            "shape": "Sm"
           }
         }
       }
@@ -112,12 +112,12 @@
             "type": "structure",
             "members": {
               "AssertedControls": {
-                "shape": "So"
+                "shape": "Sp"
               },
               "ControlPanelArn": {},
               "Name": {},
               "RuleConfig": {
-                "shape": "Sp"
+                "shape": "Sq"
               },
               "WaitPeriodMs": {
                 "type": "integer"
@@ -139,14 +139,14 @@
             "members": {
               "ControlPanelArn": {},
               "GatingControls": {
-                "shape": "So"
+                "shape": "Sp"
               },
               "Name": {},
               "RuleConfig": {
-                "shape": "Sp"
+                "shape": "Sq"
               },
               "TargetControls": {
-                "shape": "So"
+                "shape": "Sp"
               },
               "WaitPeriodMs": {
                 "type": "integer"
@@ -170,10 +170,10 @@
         "type": "structure",
         "members": {
           "AssertionRule": {
-            "shape": "St"
+            "shape": "Su"
           },
           "GatingRule": {
-            "shape": "Su"
+            "shape": "Sv"
           }
         }
       }
@@ -319,7 +319,7 @@
         "type": "structure",
         "members": {
           "ControlPanel": {
-            "shape": "Sg"
+            "shape": "Sh"
           }
         }
       }
@@ -346,7 +346,7 @@
         "type": "structure",
         "members": {
           "RoutingControl": {
-            "shape": "Sl"
+            "shape": "Sm"
           }
         }
       }
@@ -373,14 +373,39 @@
         "type": "structure",
         "members": {
           "AssertionRule": {
-            "shape": "St"
+            "shape": "Su"
           },
           "GatingRule": {
-            "shape": "Su"
+            "shape": "Sv"
           }
         }
       }
     },
+    "GetResourcePolicy": {
+      "http": {
+        "method": "GET",
+        "requestUri": "/resourcePolicy/{ResourceArn}",
+        "responseCode": 200
+      },
+      "input": {
+        "type": "structure",
+        "members": {
+          "ResourceArn": {
+            "location": "uri",
+            "locationName": "ResourceArn"
+          }
+        },
+        "required": [
+          "ResourceArn"
+        ]
+      },
+      "output": {
+        "type": "structure",
+        "members": {
+          "Policy": {}
+        }
+      }
+    },
     "ListAssociatedRoute53HealthChecks": {
       "http": {
         "method": "GET",
@@ -482,7 +507,7 @@
           "ControlPanels": {
             "type": "list",
             "member": {
-              "shape": "Sg"
+              "shape": "Sh"
             }
           },
           "NextToken": {}
@@ -523,7 +548,7 @@
           "RoutingControls": {
             "type": "list",
             "member": {
-              "shape": "Sl"
+              "shape": "Sm"
             }
           }
         }
@@ -566,10 +591,10 @@
               "type": "structure",
               "members": {
                 "ASSERTION": {
-                  "shape": "St"
+                  "shape": "Su"
                 },
                 "GATING": {
-                  "shape": "Su"
+                  "shape": "Sv"
                 }
               }
             }
@@ -681,7 +706,7 @@
         "type": "structure",
         "members": {
           "ControlPanel": {
-            "shape": "Sg"
+            "shape": "Sh"
           }
         }
       }
@@ -707,7 +732,7 @@
         "type": "structure",
         "members": {
           "RoutingControl": {
-            "shape": "Sl"
+            "shape": "Sm"
           }
         }
       }
@@ -757,10 +782,10 @@
         "type": "structure",
         "members": {
           "AssertionRule": {
-            "shape": "St"
+            "shape": "Su"
           },
           "GatingRule": {
-            "shape": "Su"
+            "shape": "Sv"
           }
         }
       }
@@ -787,10 +812,11 @@
           }
         },
         "Name": {},
-        "Status": {}
+        "Status": {},
+        "Owner": {}
       }
     },
-    "Sg": {
+    "Sh": {
       "type": "structure",
       "members": {
         "ClusterArn": {},
@@ -802,23 +828,25 @@
         "RoutingControlCount": {
           "type": "integer"
         },
-        "Status": {}
+        "Status": {},
+        "Owner": {}
       }
     },
-    "Sl": {
+    "Sm": {
       "type": "structure",
       "members": {
         "ControlPanelArn": {},
         "Name": {},
         "RoutingControlArn": {},
-        "Status": {}
+        "Status": {},
+        "Owner": {}
       }
     },
-    "So": {
+    "Sp": {
       "type": "list",
       "member": {}
     },
-    "Sp": {
+    "Sq": {
       "type": "structure",
       "members": {
         "Inverted": {
@@ -835,22 +863,23 @@
         "Threshold"
       ]
     },
-    "St": {
+    "Su": {
       "type": "structure",
       "members": {
         "AssertedControls": {
-          "shape": "So"
+          "shape": "Sp"
         },
         "ControlPanelArn": {},
         "Name": {},
         "RuleConfig": {
-          "shape": "Sp"
+          "shape": "Sq"
         },
         "SafetyRuleArn": {},
         "Status": {},
         "WaitPeriodMs": {
           "type": "integer"
-        }
+        },
+        "Owner": {}
       },
       "required": [
         "Status",
@@ -862,25 +891,26 @@
         "Name"
       ]
     },
-    "Su": {
+    "Sv": {
       "type": "structure",
       "members": {
         "ControlPanelArn": {},
         "GatingControls": {
-          "shape": "So"
+          "shape": "Sp"
         },
         "Name": {},
         "RuleConfig": {
-          "shape": "Sp"
+          "shape": "Sq"
         },
         "SafetyRuleArn": {},
         "Status": {},
         "TargetControls": {
-          "shape": "So"
+          "shape": "Sp"
         },
         "WaitPeriodMs": {
           "type": "integer"
-        }
+        },
+        "Owner": {}
       },
       "required": [
         "Status",

package/node_modules/aws-sdk/clients/cloud9.d.ts

@@ -143,7 +143,7 @@ declare namespace Cloud9 {
      */
     subnetId?: SubnetId;
     /**
-     * The identifier for the Amazon Machine Image (AMI) that's used to create the EC2 instance. To choose an AMI for the instance, you must specify a valid AMI alias or a valid Amazon EC2 Systems Manager (SSM) path. The default Amazon Linux AMI is currently used if the parameter isn't explicitly assigned a value in the request. Because Amazon Linux AMI has ended standard support as of December 31, 2020, we recommend you choose Amazon Linux 2, which includes long term support through 2023. From December 31, 2023, the parameter for Amazon Linux will no longer be available when you specify an AMI for your instance. Amazon Linux 2 will then become the default AMI, which is used to launch your instance if no parameter is explicitly defined. Since Ubuntu 18.04 has ended standard support as of May 31, 2023, we recommend you choose Ubuntu 22.04.  AMI aliases      Amazon Linux (default): amazonlinux-1-x86_64     Amazon Linux 2: amazonlinux-2-x86_64    Ubuntu 18.04: ubuntu-18.04-x86_64    Ubuntu 22.04: ubuntu-22.04-x86_64     SSM paths     Amazon Linux (default): resolve:ssm:/aws/service/cloud9/amis/amazonlinux-1-x86_64     Amazon Linux 2: resolve:ssm:/aws/service/cloud9/amis/amazonlinux-2-x86_64    Ubuntu 18.04: resolve:ssm:/aws/service/cloud9/amis/ubuntu-18.04-x86_64    Ubuntu 22.04: resolve:ssm:/aws/service/cloud9/amis/ubuntu-22.04-x86_64   
+     * The identifier for the Amazon Machine Image (AMI) that's used to create the EC2 instance. To choose an AMI for the instance, you must specify a valid AMI alias or a valid Amazon EC2 Systems Manager (SSM) path. From November 20, 2023, you will be required to include the imageId parameter for the CreateEnvironmentEC2 action. This change will be reflected across all direct methods of communicating with the API, such as Amazon Web Services SDK, Amazon Web Services CLI and Amazon Web Services CloudFormation. This change will only affect direct API consumers, and not Cloud9 console users. From January 22, 2024, Amazon Linux (AL1) will be removed from the list of available image IDs for Cloud9. This is necessary as AL1 will reach the end of maintenance support in December 2023, and as a result will no longer receive security updates. We recommend using Amazon Linux 2 as the AMI to create your environment as it is fully supported. This change will only affect direct API consumers, and not Cloud9 console users. Since Ubuntu 18.04 has ended standard support as of May 31, 2023, we recommend you choose Ubuntu 22.04.  AMI aliases      Amazon Linux (default): amazonlinux-1-x86_64     Amazon Linux 2: amazonlinux-2-x86_64    Ubuntu 18.04: ubuntu-18.04-x86_64    Ubuntu 22.04: ubuntu-22.04-x86_64     SSM paths     Amazon Linux (default): resolve:ssm:/aws/service/cloud9/amis/amazonlinux-1-x86_64     Amazon Linux 2: resolve:ssm:/aws/service/cloud9/amis/amazonlinux-2-x86_64    Ubuntu 18.04: resolve:ssm:/aws/service/cloud9/amis/ubuntu-18.04-x86_64    Ubuntu 22.04: resolve:ssm:/aws/service/cloud9/amis/ubuntu-22.04-x86_64   
      */
     imageId?: ImageId;
     /**

package/node_modules/aws-sdk/clients/codepipeline.d.ts

@@ -268,11 +268,11 @@ declare class CodePipeline extends Service {
    */
   registerWebhookWithThirdParty(callback?: (err: AWSError, data: CodePipeline.Types.RegisterWebhookWithThirdPartyOutput) => void): Request<CodePipeline.Types.RegisterWebhookWithThirdPartyOutput, AWSError>;
   /**
-   * Resumes the pipeline execution by retrying the last failed actions in a stage. You can retry a stage immediately if any of the actions in the stage fail. When you retry, all actions that are still in progress continue working, and failed actions are triggered again.
+   * You can retry a stage that has failed without having to run a pipeline again from the beginning. You do this by either retrying the failed actions in a stage or by retrying all actions in the stage starting from the first action in the stage. When you retry the failed actions in a stage, all actions that are still in progress continue working, and failed actions are triggered again. When you retry a failed stage from the first action in the stage, the stage cannot have any actions in progress. Before a stage can be retried, it must either have all actions failed or some actions failed and some succeeded.
    */
   retryStageExecution(params: CodePipeline.Types.RetryStageExecutionInput, callback?: (err: AWSError, data: CodePipeline.Types.RetryStageExecutionOutput) => void): Request<CodePipeline.Types.RetryStageExecutionOutput, AWSError>;
   /**
-   * Resumes the pipeline execution by retrying the last failed actions in a stage. You can retry a stage immediately if any of the actions in the stage fail. When you retry, all actions that are still in progress continue working, and failed actions are triggered again.
+   * You can retry a stage that has failed without having to run a pipeline again from the beginning. You do this by either retrying the failed actions in a stage or by retrying all actions in the stage starting from the first action in the stage. When you retry the failed actions in a stage, all actions that are still in progress continue working, and failed actions are triggered again. When you retry a failed stage from the first action in the stage, the stage cannot have any actions in progress. Before a stage can be retried, it must either have all actions failed or some actions failed and some succeeded.
    */
   retryStageExecution(callback?: (err: AWSError, data: CodePipeline.Types.RetryStageExecutionOutput) => void): Request<CodePipeline.Types.RetryStageExecutionOutput, AWSError>;
   /**
@@ -1966,7 +1966,7 @@ declare namespace CodePipeline {
      */
     pipelineExecutionId: PipelineExecutionId;
     /**
-     * The scope of the retry attempt. Currently, the only supported value is FAILED_ACTIONS.
+     * The scope of the retry attempt.
      */
     retryMode: StageRetryMode;
   }
@@ -2060,7 +2060,7 @@ declare namespace CodePipeline {
   }
   export type StageExecutionStatus = "Cancelled"|"InProgress"|"Failed"|"Stopped"|"Stopping"|"Succeeded"|string;
   export type StageName = string;
-  export type StageRetryMode = "FAILED_ACTIONS"|string;
+  export type StageRetryMode = "FAILED_ACTIONS"|"ALL_ACTIONS"|string;
   export interface StageState {
     /**
      * The name of the stage.

package/node_modules/aws-sdk/clients/dynamodb.d.ts

@@ -1643,7 +1643,7 @@ declare namespace DynamoDB {
      */
     ItemCount?: ItemCount;
     /**
-     * Choice of whether to execute as a full export or incremental export. Valid values are FULL_EXPORT or INCREMENTAL_EXPORT. If INCREMENTAL_EXPORT is provided, the IncrementalExportSpecification must also be used.
+     * The type of export that was performed. Valid values are FULL_EXPORT or INCREMENTAL_EXPORT.
      */
     ExportType?: ExportType;
     /**
@@ -1669,7 +1669,7 @@ declare namespace DynamoDB {
      */
     ExportStatus?: ExportStatus;
     /**
-     * Choice of whether to execute as a full export or incremental export. Valid values are FULL_EXPORT or INCREMENTAL_EXPORT. If INCREMENTAL_EXPORT is provided, the IncrementalExportSpecification must also be used.
+     * The type of export that was performed. Valid values are FULL_EXPORT or INCREMENTAL_EXPORT.
      */
     ExportType?: ExportType;
   }
@@ -1711,7 +1711,7 @@ declare namespace DynamoDB {
      */
     ExportFormat?: ExportFormat;
     /**
-     * Choice of whether to execute as a full export or incremental export. Valid values are FULL_EXPORT or INCREMENTAL_EXPORT. If INCREMENTAL_EXPORT is provided, the IncrementalExportSpecification must also be used.
+     * Choice of whether to execute as a full export or incremental export. Valid values are FULL_EXPORT or INCREMENTAL_EXPORT. The default value is FULL_EXPORT. If INCREMENTAL_EXPORT is provided, the IncrementalExportSpecification must also be used.
      */
     ExportType?: ExportType;
     /**
@@ -2112,7 +2112,7 @@ declare namespace DynamoDB {
      */
     ExportToTime?: ExportToTime;
     /**
-     * Choice of whether to output the previous item image prior to the start time of the incremental export. Valid values are NEW_AND_OLD_IMAGES and NEW_IMAGES.
+     * The view type that was chosen for the export. Valid values are NEW_AND_OLD_IMAGES and NEW_IMAGES. The default value is NEW_AND_OLD_IMAGES.
      */
     ExportViewType?: ExportViewType;
   }

package/node_modules/aws-sdk/clients/ecs.d.ts

@@ -723,7 +723,7 @@ declare namespace ECS {
   }
   export interface ClusterServiceConnectDefaultsRequest {
     /**
-     * The namespace name or full Amazon Resource Name (ARN) of the Cloud Map namespace that's used when you create a service and don't specify a Service Connect configuration. The namespace name can include up to 1024 characters. The name is case-sensitive. The name can't include hyphens (-), tilde (~), greater than (>), less than (<), or slash (/). If you enter an existing namespace name or ARN, then that namespace will be used. Any namespace type is supported. The namespace must be in this account and this Amazon Web Services Region. If you enter a new name, a Cloud Map namespace will be created. Amazon ECS creates a Cloud Map namespace with the "API calls" method of instance discovery only. This instance discovery method is the "HTTP" namespace type in the Command Line Interface. Other types of instance discovery aren't used by Service Connect. If you update the service with an empty string "" for the namespace name, the cluster configuration for Service Connect is removed. Note that the namespace will remain in Cloud Map and must be deleted separately. For more information about Cloud Map, see Working with Services in the Cloud Map Developer Guide.
+     * The namespace name or full Amazon Resource Name (ARN) of the Cloud Map namespace that's used when you create a service and don't specify a Service Connect configuration. The namespace name can include up to 1024 characters. The name is case-sensitive. The name can't include hyphens (-), tilde (~), greater than (>), less than (<), or slash (/). If you enter an existing namespace name or ARN, then that namespace will be used. Any namespace type is supported. The namespace must be in this account and this Amazon Web Services Region. If you enter a new name, a Cloud Map namespace will be created. Amazon ECS creates a Cloud Map namespace with the "API calls" method of instance discovery only. This instance discovery method is the "HTTP" namespace type in the Command Line Interface. Other types of instance discovery aren't used by Service Connect. If you update the cluster with an empty string "" for the namespace name, the cluster configuration for Service Connect is removed. Note that the namespace will remain in Cloud Map and must be deleted separately. For more information about Cloud Map, see Working with Services in the Cloud Map Developer Guide.
      */
     namespace: String;
   }
@@ -2651,7 +2651,7 @@ declare namespace ECS {
      */
     protocol?: TransportProtocol;
     /**
-     * The port number range on the container that's bound to the dynamically mapped host port range. The following rules apply when you specify a containerPortRange:   You must use either the bridge network mode or the awsvpc network mode.   This parameter is available for both the EC2 and Fargate launch types.   This parameter is available for both the Linux and Windows operating systems.   The container instance must have at least version 1.67.0 of the container agent and at least version 1.67.0-1 of the ecs-init package    You can specify a maximum of 100 port ranges per container.   You do not specify a hostPortRange. The value of the hostPortRange is set as follows:   For containers in a task with the awsvpc network mode, the hostPort is set to the same value as the containerPort. This is a static mapping strategy.   For containers in a task with the bridge network mode, the Amazon ECS agent finds open host ports from the default ephemeral range and passes it to docker to bind them to the container ports.     The containerPortRange valid values are between 1 and 65535.   A port can only be included in one port mapping per container.   You cannot specify overlapping port ranges.   The first port in the range must be less than last port in the range.   Docker recommends that you turn off the docker-proxy in the Docker daemon config file when you have a large number of ports. For more information, see  Issue #11185 on the Github website. For information about how to turn off the docker-proxy in the Docker daemon config file, see Docker daemon in the Amazon ECS Developer Guide.   You can call  DescribeTasks  to view the hostPortRange which are the host ports that are bound to the container ports.
+     * The port number range on the container that's bound to the dynamically mapped host port range. The following rules apply when you specify a containerPortRange:   You must use either the bridge network mode or the awsvpc network mode.   This parameter is available for both the EC2 and Fargate launch types.   This parameter is available for both the Linux and Windows operating systems.   The container instance must have at least version 1.67.0 of the container agent and at least version 1.67.0-1 of the ecs-init package    You can specify a maximum of 100 port ranges per container.   You do not specify a hostPortRange. The value of the hostPortRange is set as follows:   For containers in a task with the awsvpc network mode, the hostPortRange is set to the same value as the containerPortRange. This is a static mapping strategy.   For containers in a task with the bridge network mode, the Amazon ECS agent finds open host ports from the default ephemeral range and passes it to docker to bind them to the container ports.     The containerPortRange valid values are between 1 and 65535.   A port can only be included in one port mapping per container.   You cannot specify overlapping port ranges.   The first port in the range must be less than last port in the range.   Docker recommends that you turn off the docker-proxy in the Docker daemon config file when you have a large number of ports. For more information, see  Issue #11185 on the Github website. For information about how to turn off the docker-proxy in the Docker daemon config file, see Docker daemon in the Amazon ECS Developer Guide.   You can call  DescribeTasks  to view the hostPortRange which are the host ports that are bound to the container ports.
      */
     containerPortRange?: String;
     /**
@@ -2742,7 +2742,7 @@ declare namespace ECS {
      */
     appProtocol?: ApplicationProtocol;
     /**
-     * The port number range on the container that's bound to the dynamically mapped host port range.  The following rules apply when you specify a containerPortRange:   You must use either the bridge network mode or the awsvpc network mode.   This parameter is available for both the EC2 and Fargate launch types.   This parameter is available for both the Linux and Windows operating systems.   The container instance must have at least version 1.67.0 of the container agent and at least version 1.67.0-1 of the ecs-init package    You can specify a maximum of 100 port ranges per container.   You do not specify a hostPortRange. The value of the hostPortRange is set as follows:   For containers in a task with the awsvpc network mode, the hostPort is set to the same value as the containerPort. This is a static mapping strategy.   For containers in a task with the bridge network mode, the Amazon ECS agent finds open host ports from the default ephemeral range and passes it to docker to bind them to the container ports.     The containerPortRange valid values are between 1 and 65535.   A port can only be included in one port mapping per container.   You cannot specify overlapping port ranges.   The first port in the range must be less than last port in the range.   Docker recommends that you turn off the docker-proxy in the Docker daemon config file when you have a large number of ports. For more information, see  Issue #11185 on the Github website. For information about how to turn off the docker-proxy in the Docker daemon config file, see Docker daemon in the Amazon ECS Developer Guide.   You can call  DescribeTasks  to view the hostPortRange which are the host ports that are bound to the container ports.
+     * The port number range on the container that's bound to the dynamically mapped host port range.  The following rules apply when you specify a containerPortRange:   You must use either the bridge network mode or the awsvpc network mode.   This parameter is available for both the EC2 and Fargate launch types.   This parameter is available for both the Linux and Windows operating systems.   The container instance must have at least version 1.67.0 of the container agent and at least version 1.67.0-1 of the ecs-init package    You can specify a maximum of 100 port ranges per container.   You do not specify a hostPortRange. The value of the hostPortRange is set as follows:   For containers in a task with the awsvpc network mode, the hostPortRange is set to the same value as the containerPortRange. This is a static mapping strategy.   For containers in a task with the bridge network mode, the Amazon ECS agent finds open host ports from the default ephemeral range and passes it to docker to bind them to the container ports.     The containerPortRange valid values are between 1 and 65535.   A port can only be included in one port mapping per container.   You cannot specify overlapping port ranges.   The first port in the range must be less than last port in the range.   Docker recommends that you turn off the docker-proxy in the Docker daemon config file when you have a large number of ports. For more information, see  Issue #11185 on the Github website. For information about how to turn off the docker-proxy in the Docker daemon config file, see Docker daemon in the Amazon ECS Developer Guide.   You can call  DescribeTasks  to view the hostPortRange which are the host ports that are bound to the container ports.
      */
     containerPortRange?: String;
   }

package/node_modules/aws-sdk/clients/guardduty.d.ts

@@ -1675,6 +1675,10 @@ declare namespace GuardDuty {
      * Indicates whether the targeted port is blocked.
      */
     Blocked?: Boolean;
+    /**
+     * The second and top level domain involved in the activity that prompted GuardDuty to generate this finding.
+     */
+    DomainWithSuffix?: String;
   }
   export interface DomainDetails {
     /**
@@ -2752,7 +2756,7 @@ declare namespace GuardDuty {
      */
     DetectorId: DetectorId;
     /**
-     * Represents the criteria used for querying findings. Valid values include:   JSON field name   accountId   region   confidence   id   resource.accessKeyDetails.accessKeyId   resource.accessKeyDetails.principalId   resource.accessKeyDetails.userName   resource.accessKeyDetails.userType   resource.instanceDetails.iamInstanceProfile.id   resource.instanceDetails.imageId   resource.instanceDetails.instanceId   resource.instanceDetails.networkInterfaces.ipv6Addresses   resource.instanceDetails.networkInterfaces.privateIpAddresses.privateIpAddress   resource.instanceDetails.networkInterfaces.publicDnsName   resource.instanceDetails.networkInterfaces.publicIp   resource.instanceDetails.networkInterfaces.securityGroups.groupId   resource.instanceDetails.networkInterfaces.securityGroups.groupName   resource.instanceDetails.networkInterfaces.subnetId   resource.instanceDetails.networkInterfaces.vpcId   resource.instanceDetails.tags.key   resource.instanceDetails.tags.value   resource.resourceType   service.action.actionType   service.action.awsApiCallAction.api   service.action.awsApiCallAction.callerType   service.action.awsApiCallAction.remoteIpDetails.city.cityName   service.action.awsApiCallAction.remoteIpDetails.country.countryName   service.action.awsApiCallAction.remoteIpDetails.ipAddressV4   service.action.awsApiCallAction.remoteIpDetails.organization.asn   service.action.awsApiCallAction.remoteIpDetails.organization.asnOrg   service.action.awsApiCallAction.serviceName   service.action.dnsRequestAction.domain   service.action.networkConnectionAction.blocked   service.action.networkConnectionAction.connectionDirection   service.action.networkConnectionAction.localPortDetails.port   service.action.networkConnectionAction.protocol   service.action.networkConnectionAction.remoteIpDetails.country.countryName   service.action.networkConnectionAction.remoteIpDetails.ipAddressV4   service.action.networkConnectionAction.remoteIpDetails.organization.asn   service.action.networkConnectionAction.remoteIpDetails.organization.asnOrg   service.action.networkConnectionAction.remotePortDetails.port   service.additionalInfo.threatListName   service.archived When this attribute is set to 'true', only archived findings are listed. When it's set to 'false', only unarchived findings are listed. When this attribute is not set, all existing findings are listed.   service.resourceRole   severity   type   updatedAt Type: Timestamp in Unix Epoch millisecond format: 1486685375000  
+     * Represents the criteria used for querying findings. Valid values include:   JSON field name   accountId   region   confidence   id   resource.accessKeyDetails.accessKeyId   resource.accessKeyDetails.principalId   resource.accessKeyDetails.userName   resource.accessKeyDetails.userType   resource.instanceDetails.iamInstanceProfile.id   resource.instanceDetails.imageId   resource.instanceDetails.instanceId   resource.instanceDetails.networkInterfaces.ipv6Addresses   resource.instanceDetails.networkInterfaces.privateIpAddresses.privateIpAddress   resource.instanceDetails.networkInterfaces.publicDnsName   resource.instanceDetails.networkInterfaces.publicIp   resource.instanceDetails.networkInterfaces.securityGroups.groupId   resource.instanceDetails.networkInterfaces.securityGroups.groupName   resource.instanceDetails.networkInterfaces.subnetId   resource.instanceDetails.networkInterfaces.vpcId   resource.instanceDetails.tags.key   resource.instanceDetails.tags.value   resource.resourceType   service.action.actionType   service.action.awsApiCallAction.api   service.action.awsApiCallAction.callerType   service.action.awsApiCallAction.remoteIpDetails.city.cityName   service.action.awsApiCallAction.remoteIpDetails.country.countryName   service.action.awsApiCallAction.remoteIpDetails.ipAddressV4   service.action.awsApiCallAction.remoteIpDetails.organization.asn   service.action.awsApiCallAction.remoteIpDetails.organization.asnOrg   service.action.awsApiCallAction.serviceName   service.action.dnsRequestAction.domain   service.action.dnsRequestAction.domainWithSuffix   service.action.networkConnectionAction.blocked   service.action.networkConnectionAction.connectionDirection   service.action.networkConnectionAction.localPortDetails.port   service.action.networkConnectionAction.protocol   service.action.networkConnectionAction.remoteIpDetails.country.countryName   service.action.networkConnectionAction.remoteIpDetails.ipAddressV4   service.action.networkConnectionAction.remoteIpDetails.organization.asn   service.action.networkConnectionAction.remoteIpDetails.organization.asnOrg   service.action.networkConnectionAction.remotePortDetails.port   service.additionalInfo.threatListName   service.archived When this attribute is set to 'true', only archived findings are listed. When it's set to 'false', only unarchived findings are listed. When this attribute is not set, all existing findings are listed.   service.resourceRole   severity   type   updatedAt Type: Timestamp in Unix Epoch millisecond format: 1486685375000  
      */
     FindingCriteria?: FindingCriteria;
     /**