npm - cdk-lambda-subminute - Versions diffs - 2.0.331 → 2.0.333 - Mend

cdk-lambda-subminute 2.0.331 → 2.0.333

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (45) hide show

package/node_modules/aws-sdk/clients/eks.d.ts CHANGED Viewed

@@ -220,6 +220,14 @@ declare class EKS extends Service {
    * Describes an identity provider configuration.
    */
   describeIdentityProviderConfig(callback?: (err: AWSError, data: EKS.Types.DescribeIdentityProviderConfigResponse) => void): Request<EKS.Types.DescribeIdentityProviderConfigResponse, AWSError>;
+  /**
+   * Returns details about an insight that you specify using its ID.
+   */
+  describeInsight(params: EKS.Types.DescribeInsightRequest, callback?: (err: AWSError, data: EKS.Types.DescribeInsightResponse) => void): Request<EKS.Types.DescribeInsightResponse, AWSError>;
+  /**
+   * Returns details about an insight that you specify using its ID.
+   */
+  describeInsight(callback?: (err: AWSError, data: EKS.Types.DescribeInsightResponse) => void): Request<EKS.Types.DescribeInsightResponse, AWSError>;
   /**
    * Describes a managed node group.
    */
@@ -324,6 +332,14 @@ declare class EKS extends Service {
    * Lists the identity provider configurations for your cluster.
    */
   listIdentityProviderConfigs(callback?: (err: AWSError, data: EKS.Types.ListIdentityProviderConfigsResponse) => void): Request<EKS.Types.ListIdentityProviderConfigsResponse, AWSError>;
+  /**
+   * Returns a list of all insights checked for against the specified cluster. You can filter which insights are returned by category, associated Kubernetes version, and status.
+   */
+  listInsights(params: EKS.Types.ListInsightsRequest, callback?: (err: AWSError, data: EKS.Types.ListInsightsResponse) => void): Request<EKS.Types.ListInsightsResponse, AWSError>;
+  /**
+   * Returns a list of all insights checked for against the specified cluster. You can filter which insights are returned by category, associated Kubernetes version, and status.
+   */
+  listInsights(callback?: (err: AWSError, data: EKS.Types.ListInsightsResponse) => void): Request<EKS.Types.ListInsightsResponse, AWSError>;
   /**
    * Lists the managed node groups associated with the specified cluster in your Amazon Web Services account in the specified Amazon Web Services Region. Self-managed node groups aren't listed.
    */
@@ -581,6 +597,7 @@ declare namespace EKS {
     namespaces?: StringList;
   }
   export type AccessScopeType = "cluster"|"namespace"|string;
+  export type AdditionalInfoMap = {[key: string]: String};
   export interface Addon {
     /**
      * The name of the add-on.
@@ -814,12 +831,29 @@ declare namespace EKS {
   export type BoxedInteger = number;
   export type Capacity = number;
   export type CapacityTypes = "ON_DEMAND"|"SPOT"|string;
+  export type Category = "UPGRADE_READINESS"|string;
+  export type CategoryList = Category[];
   export interface Certificate {
     /**
      * The Base64-encoded certificate data required to communicate with your cluster. Add this to the certificate-authority-data section of the kubeconfig file for your cluster.
      */
     data?: String;
   }
+  export interface ClientStat {
+    /**
+     * The user agent of the Kubernetes client using the deprecated resource.
+     */
+    userAgent?: String;
+    /**
+     * The number of requests from the Kubernetes client seen over the last 30 days.
+     */
+    numberOfRequestsLast30Days?: Integer;
+    /**
+     * The timestamp of the last request seen from the Kubernetes client.
+     */
+    lastRequestTime?: Timestamp;
+  }
+  export type ClientStats = ClientStat[];
   export interface Cluster {
     /**
      * The name of your cluster.
@@ -1006,7 +1040,7 @@ declare namespace EKS {
      */
     clusterName: String;
     /**
-     * The ARN of the IAM principal for the AccessEntry. You can specify one ARN for each access entry. You can't specify the same ARN in more than one access entry. This value can't be changed after access entry creation.  IAM best practices recommend using IAM roles with temporary credentials, rather than IAM users with long-term credentials.
+     * The ARN of the IAM principal for the AccessEntry. You can specify one ARN for each access entry. You can't specify the same ARN in more than one access entry. This value can't be changed after access entry creation. The valid principals differ depending on the type of the access entry in the type field. The only valid ARN is IAM roles for the types of access entries for nodes:  . You can use every IAM principal type for STANDARD access entries. You can't use the STS session principal type with access entries because this is a temporary principal for each session and not a permanent identity that can be assigned permissions.  IAM best practices recommend using IAM roles with temporary credentials, rather than IAM users with long-term credentials.
      */
     principalArn: String;
     /**
@@ -1026,7 +1060,7 @@ declare namespace EKS {
      */
     username?: String;
     /**
-     * If the principalArn is for an IAM role that's used for self-managed Amazon EC2 nodes, specify EC2_LINUX or EC2_WINDOWS. Amazon EKS grants the necessary permissions to the node for you. If the principalArn is for any other purpose, specify STANDARD. If you don't specify a value, Amazon EKS sets the value to STANDARD. It's unnecessary to create access entries for IAM roles used with Fargate profiles or managed Amazon EC2 nodes, because Amazon EKS creates entries in the aws-auth ConfigMap for the roles. You can't change this value once you've created the access entry. If you set the value to EC2_LINUX or EC2_WINDOWS, you can't specify values for kubernetesGroups, or associate an AccessPolicy to the access entry.
+     * The type of the new access entry. Valid values are Standard, FARGATE_LINUX, EC2_LINUX, and EC2_WINDOWS. If the principalArn is for an IAM role that's used for self-managed Amazon EC2 nodes, specify EC2_LINUX or EC2_WINDOWS. Amazon EKS grants the necessary permissions to the node for you. If the principalArn is for any other purpose, specify STANDARD. If you don't specify a value, Amazon EKS sets the value to STANDARD. It's unnecessary to create access entries for IAM roles used with Fargate profiles or managed Amazon EC2 nodes, because Amazon EKS creates entries in the aws-auth ConfigMap for the roles. You can't change this value once you've created the access entry. If you set the value to EC2_LINUX or EC2_WINDOWS, you can't specify values for kubernetesGroups, or associate an AccessPolicy to the access entry.
      */
     type?: String;
   }
@@ -1407,6 +1441,29 @@ declare namespace EKS {
      */
     association?: PodIdentityAssociation;
   }
+  export interface DeprecationDetail {
+    /**
+     * The deprecated version of the resource.
+     */
+    usage?: String;
+    /**
+     * The newer version of the resource to migrate to if applicable.
+     */
+    replacedWith?: String;
+    /**
+     * The version of the software where the deprecated resource version will stop being served.
+     */
+    stopServingVersion?: String;
+    /**
+     * The version of the software where the newer resource version became available to migrate to if applicable.
+     */
+    startServingReplacementVersion?: String;
+    /**
+     * Details about Kubernetes clients using the deprecated resources.
+     */
+    clientStats?: ClientStats;
+  }
+  export type DeprecationDetails = DeprecationDetail[];
   export interface DeregisterClusterRequest {
     /**
      * The name of the connected cluster to deregister.
@@ -1566,6 +1623,22 @@ declare namespace EKS {
      */
     identityProviderConfig?: IdentityProviderConfigResponse;
   }
+  export interface DescribeInsightRequest {
+    /**
+     * The name of the cluster to describe the insight for.
+     */
+    clusterName: String;
+    /**
+     * The identity of the insight to describe.
+     */
+    id: String;
+  }
+  export interface DescribeInsightResponse {
+    /**
+     * The full description of the insight.
+     */
+    insight?: Insight;
+  }
   export interface DescribeNodegroupRequest {
     /**
      * The name of your cluster.
@@ -1824,6 +1897,138 @@ declare namespace EKS {
   }
   export type IdentityProviderConfigs = IdentityProviderConfig[];
   export type IncludeClustersList = String[];
+  export interface Insight {
+    /**
+     * The ID of the insight.
+     */
+    id?: String;
+    /**
+     * The name of the insight.
+     */
+    name?: String;
+    /**
+     * The category of the insight.
+     */
+    category?: Category;
+    /**
+     * The Kubernetes minor version associated with an insight if applicable.
+     */
+    kubernetesVersion?: String;
+    /**
+     * The time Amazon EKS last successfully completed a refresh of this insight check on the cluster.
+     */
+    lastRefreshTime?: Timestamp;
+    /**
+     * The time the status of the insight last changed.
+     */
+    lastTransitionTime?: Timestamp;
+    /**
+     * The description of the insight which includes alert criteria, remediation recommendation, and additional resources (contains Markdown).
+     */
+    description?: String;
+    /**
+     * An object containing more detail on the status of the insight resource.
+     */
+    insightStatus?: InsightStatus;
+    /**
+     * A summary of how to remediate the finding of this insight if applicable.
+     */
+    recommendation?: String;
+    /**
+     * Links to sources that provide additional context on the insight.
+     */
+    additionalInfo?: AdditionalInfoMap;
+    /**
+     * The details about each resource listed in the insight check result.
+     */
+    resources?: InsightResourceDetails;
+    /**
+     * Summary information that relates to the category of the insight. Currently only returned with certain insights having category UPGRADE_READINESS.
+     */
+    categorySpecificSummary?: InsightCategorySpecificSummary;
+  }
+  export interface InsightCategorySpecificSummary {
+    /**
+     * The summary information about deprecated resource usage for an insight check in the UPGRADE_READINESS category.
+     */
+    deprecationDetails?: DeprecationDetails;
+  }
+  export interface InsightResourceDetail {
+    /**
+     * An object containing more detail on the status of the insight resource.
+     */
+    insightStatus?: InsightStatus;
+    /**
+     * The Kubernetes resource URI if applicable.
+     */
+    kubernetesResourceUri?: String;
+    /**
+     * The Amazon Resource Name (ARN) if applicable.
+     */
+    arn?: String;
+  }
+  export type InsightResourceDetails = InsightResourceDetail[];
+  export interface InsightStatus {
+    /**
+     * The status of the resource.
+     */
+    status?: InsightStatusValue;
+    /**
+     * Explanation on the reasoning for the status of the resource.
+     */
+    reason?: String;
+  }
+  export type InsightStatusValue = "PASSING"|"WARNING"|"ERROR"|"UNKNOWN"|string;
+  export type InsightStatusValueList = InsightStatusValue[];
+  export type InsightSummaries = InsightSummary[];
+  export interface InsightSummary {
+    /**
+     * The ID of the insight.
+     */
+    id?: String;
+    /**
+     * The name of the insight.
+     */
+    name?: String;
+    /**
+     * The category of the insight.
+     */
+    category?: Category;
+    /**
+     * The Kubernetes minor version associated with an insight if applicable.
+     */
+    kubernetesVersion?: String;
+    /**
+     * The time Amazon EKS last successfully completed a refresh of this insight check on the cluster.
+     */
+    lastRefreshTime?: Timestamp;
+    /**
+     * The time the status of the insight last changed.
+     */
+    lastTransitionTime?: Timestamp;
+    /**
+     * The description of the insight which includes alert criteria, remediation recommendation, and additional resources (contains Markdown).
+     */
+    description?: String;
+    /**
+     * An object containing more detail on the status of the insight.
+     */
+    insightStatus?: InsightStatus;
+  }
+  export interface InsightsFilter {
+    /**
+     * The categories to use to filter insights.
+     */
+    categories?: CategoryList;
+    /**
+     * The Kubernetes versions to use to filter the insights.
+     */
+    kubernetesVersions?: StringList;
+    /**
+     * The statuses to use to filter the insights.
+     */
+    statuses?: InsightStatusValueList;
+  }
   export type Integer = number;
   export type IpFamily = "ipv4"|"ipv6"|string;
   export interface Issue {
@@ -2086,7 +2291,36 @@ declare namespace EKS {
      */
     identityProviderConfigs?: IdentityProviderConfigs;
     /**
-     * The nextToken value to include in a future ListIdentityProviderConfigsResponse request. When the results of a ListIdentityProviderConfigsResponse request exceed maxResults, you can use this value to retrieve the next page of results. This value is null when there are no more results to return.
+     * The nextToken value to include in a future ListIdentityProviderConfigsResponse request. When the results of a ListIdentityProviderConfigsResponse request exceed maxResults, you can use this value to retrieve the next page of results. This value is null when there are no more results to return.  This token should be treated as an opaque identifier that is used only to retrieve the next items in a list and not for other programmatic purposes.
+     */
+    nextToken?: String;
+  }
+  export type ListInsightsMaxResults = number;
+  export interface ListInsightsRequest {
+    /**
+     * The name of the Amazon EKS cluster associated with the insights.
+     */
+    clusterName: String;
+    /**
+     * The criteria to filter your list of insights for your cluster. You can filter which insights are returned by category, associated Kubernetes version, and status.
+     */
+    filter?: InsightsFilter;
+    /**
+     * The maximum number of identity provider configurations returned by ListInsights in paginated output. When you use this parameter, ListInsights returns only maxResults results in a single page along with a nextToken response element. You can see the remaining results of the initial request by sending another ListInsights request with the returned nextToken value. This value can be between 1 and 100. If you don't use this parameter, ListInsights returns up to 100 results and a nextToken value, if applicable.
+     */
+    maxResults?: ListInsightsMaxResults;
+    /**
+     * The nextToken value returned from a previous paginated ListInsights request. When the results of a ListInsights request exceed maxResults, you can use this value to retrieve the next page of results. This value is null when there are no more results to return.
+     */
+    nextToken?: String;
+  }
+  export interface ListInsightsResponse {
+    /**
+     * The returned list of insights.
+     */
+    insights?: InsightSummaries;
+    /**
+     * The nextToken value to include in a future ListInsights request. When the results of a ListInsights request exceed maxResults, you can use this value to retrieve the next page of results. This value is null when there are no more results to return.
      */
     nextToken?: String;
   }

package/node_modules/aws-sdk/clients/guardduty.d.ts CHANGED Viewed

@@ -60,11 +60,11 @@ declare class GuardDuty extends Service {
    */
   createIPSet(callback?: (err: AWSError, data: GuardDuty.Types.CreateIPSetResponse) => void): Request<GuardDuty.Types.CreateIPSetResponse, AWSError>;
   /**
-   * Creates member accounts of the current Amazon Web Services account by specifying a list of Amazon Web Services account IDs. This step is a prerequisite for managing the associated member accounts either by invitation or through an organization. As a delegated administrator, using CreateMembers will enable GuardDuty in the added member accounts, with the exception of the organization delegated administrator account. A delegated administrator must enable GuardDuty prior to being added as a member. If you are adding accounts by invitation, before using InviteMembers, use CreateMembers after GuardDuty has been enabled in potential member accounts. If you disassociate a member from a GuardDuty delegated administrator, the member account details obtained from this API, including the associated email addresses, will be retained. This is done so that the delegated administrator can invoke the InviteMembers API without the need to invoke the CreateMembers API again. To remove the details associated with a member account, the delegated administrator must invoke the DeleteMembers API.
+   * Creates member accounts of the current Amazon Web Services account by specifying a list of Amazon Web Services account IDs. This step is a prerequisite for managing the associated member accounts either by invitation or through an organization. As a delegated administrator, using CreateMembers will enable GuardDuty in the added member accounts, with the exception of the organization delegated administrator account. A delegated administrator must enable GuardDuty prior to being added as a member. When you use CreateMembers as an Organizations delegated administrator, GuardDuty applies your organization's auto-enable settings to the member accounts in this request, irrespective of the accounts being new or existing members. For more information about the existing auto-enable settings for your organization, see DescribeOrganizationConfiguration. If you are adding accounts by invitation, before using InviteMembers, use CreateMembers after GuardDuty has been enabled in potential member accounts. If you disassociate a member from a GuardDuty delegated administrator, the member account details obtained from this API, including the associated email addresses, will be retained. This is done so that the delegated administrator can invoke the InviteMembers API without the need to invoke the CreateMembers API again. To remove the details associated with a member account, the delegated administrator must invoke the DeleteMembers API.
    */
   createMembers(params: GuardDuty.Types.CreateMembersRequest, callback?: (err: AWSError, data: GuardDuty.Types.CreateMembersResponse) => void): Request<GuardDuty.Types.CreateMembersResponse, AWSError>;
   /**
-   * Creates member accounts of the current Amazon Web Services account by specifying a list of Amazon Web Services account IDs. This step is a prerequisite for managing the associated member accounts either by invitation or through an organization. As a delegated administrator, using CreateMembers will enable GuardDuty in the added member accounts, with the exception of the organization delegated administrator account. A delegated administrator must enable GuardDuty prior to being added as a member. If you are adding accounts by invitation, before using InviteMembers, use CreateMembers after GuardDuty has been enabled in potential member accounts. If you disassociate a member from a GuardDuty delegated administrator, the member account details obtained from this API, including the associated email addresses, will be retained. This is done so that the delegated administrator can invoke the InviteMembers API without the need to invoke the CreateMembers API again. To remove the details associated with a member account, the delegated administrator must invoke the DeleteMembers API.
+   * Creates member accounts of the current Amazon Web Services account by specifying a list of Amazon Web Services account IDs. This step is a prerequisite for managing the associated member accounts either by invitation or through an organization. As a delegated administrator, using CreateMembers will enable GuardDuty in the added member accounts, with the exception of the organization delegated administrator account. A delegated administrator must enable GuardDuty prior to being added as a member. When you use CreateMembers as an Organizations delegated administrator, GuardDuty applies your organization's auto-enable settings to the member accounts in this request, irrespective of the accounts being new or existing members. For more information about the existing auto-enable settings for your organization, see DescribeOrganizationConfiguration. If you are adding accounts by invitation, before using InviteMembers, use CreateMembers after GuardDuty has been enabled in potential member accounts. If you disassociate a member from a GuardDuty delegated administrator, the member account details obtained from this API, including the associated email addresses, will be retained. This is done so that the delegated administrator can invoke the InviteMembers API without the need to invoke the CreateMembers API again. To remove the details associated with a member account, the delegated administrator must invoke the DeleteMembers API.
    */
   createMembers(callback?: (err: AWSError, data: GuardDuty.Types.CreateMembersResponse) => void): Request<GuardDuty.Types.CreateMembersResponse, AWSError>;
   /**
@@ -228,11 +228,11 @@ declare class GuardDuty extends Service {
    */
   getAdministratorAccount(callback?: (err: AWSError, data: GuardDuty.Types.GetAdministratorAccountResponse) => void): Request<GuardDuty.Types.GetAdministratorAccountResponse, AWSError>;
   /**
-   * Retrieves aggregated statistics for your account. If you are a GuardDuty administrator, you can retrieve the statistics for all the resources associated with the active member accounts in your organization who have enabled EKS Runtime Monitoring and have the GuardDuty agent running on their EKS nodes.
+   * Retrieves aggregated statistics for your account. If you are a GuardDuty administrator, you can retrieve the statistics for all the resources associated with the active member accounts in your organization who have enabled Runtime Monitoring and have the GuardDuty security agent running on their resources.
    */
   getCoverageStatistics(params: GuardDuty.Types.GetCoverageStatisticsRequest, callback?: (err: AWSError, data: GuardDuty.Types.GetCoverageStatisticsResponse) => void): Request<GuardDuty.Types.GetCoverageStatisticsResponse, AWSError>;
   /**
-   * Retrieves aggregated statistics for your account. If you are a GuardDuty administrator, you can retrieve the statistics for all the resources associated with the active member accounts in your organization who have enabled EKS Runtime Monitoring and have the GuardDuty agent running on their EKS nodes.
+   * Retrieves aggregated statistics for your account. If you are a GuardDuty administrator, you can retrieve the statistics for all the resources associated with the active member accounts in your organization who have enabled Runtime Monitoring and have the GuardDuty security agent running on their resources.
    */
   getCoverageStatistics(callback?: (err: AWSError, data: GuardDuty.Types.GetCoverageStatisticsResponse) => void): Request<GuardDuty.Types.GetCoverageStatisticsResponse, AWSError>;
   /**
@@ -315,6 +315,10 @@ declare class GuardDuty extends Service {
    * Retrieves GuardDuty member accounts (of the current GuardDuty administrator account) specified by the account IDs.
    */
   getMembers(callback?: (err: AWSError, data: GuardDuty.Types.GetMembersResponse) => void): Request<GuardDuty.Types.GetMembersResponse, AWSError>;
+  /**
+   * Retrieves how many active member accounts in your Amazon Web Services organization have each feature enabled within GuardDuty. Only a delegated GuardDuty administrator of an organization can run this API. When you create a new Amazon Web Services organization, it might take up to 24 hours to generate the statistics for the entire organization.
+   */
+  getOrganizationStatistics(callback?: (err: AWSError, data: GuardDuty.Types.GetOrganizationStatisticsResponse) => void): Request<GuardDuty.Types.GetOrganizationStatisticsResponse, AWSError>;
   /**
    * Provides the number of days left for each data source used in the free trial period.
    */
@@ -348,11 +352,11 @@ declare class GuardDuty extends Service {
    */
   inviteMembers(callback?: (err: AWSError, data: GuardDuty.Types.InviteMembersResponse) => void): Request<GuardDuty.Types.InviteMembersResponse, AWSError>;
   /**
-   * Lists coverage details for your GuardDuty account. If you're a GuardDuty administrator, you can retrieve all resources associated with the active member accounts in your organization. Make sure the accounts have EKS Runtime Monitoring enabled and GuardDuty agent running on their EKS nodes.
+   * Lists coverage details for your GuardDuty account. If you're a GuardDuty administrator, you can retrieve all resources associated with the active member accounts in your organization. Make sure the accounts have Runtime Monitoring enabled and GuardDuty agent running on their resources.
    */
   listCoverage(params: GuardDuty.Types.ListCoverageRequest, callback?: (err: AWSError, data: GuardDuty.Types.ListCoverageResponse) => void): Request<GuardDuty.Types.ListCoverageResponse, AWSError>;
   /**
-   * Lists coverage details for your GuardDuty account. If you're a GuardDuty administrator, you can retrieve all resources associated with the active member accounts in your organization. Make sure the accounts have EKS Runtime Monitoring enabled and GuardDuty agent running on their EKS nodes.
+   * Lists coverage details for your GuardDuty account. If you're a GuardDuty administrator, you can retrieve all resources associated with the active member accounts in your organization. Make sure the accounts have Runtime Monitoring enabled and GuardDuty agent running on their resources.
    */
   listCoverage(callback?: (err: AWSError, data: GuardDuty.Types.ListCoverageResponse) => void): Request<GuardDuty.Types.ListCoverageResponse, AWSError>;
   /**
@@ -1004,7 +1008,7 @@ declare namespace GuardDuty {
      */
     AgentDetails?: AgentDetails;
     /**
-     * Indicates how the GuardDuty security agent is managed for this resource.    AUTO_MANAGED indicates that GuardDuty deploys and manages updates for this resource.    MANUAL indicates that you are responsible to deploy, update, and manage the GuardDuty security agent updates for this resource.    The DISABLED status doesn't apply to Amazon EC2 instances and Amazon EKS clusters that run on Amazon EC2 instances.
+     * Indicates how the GuardDuty security agent is managed for this resource.    AUTO_MANAGED indicates that GuardDuty deploys and manages updates for this resource.    MANUAL indicates that you are responsible to deploy, update, and manage the GuardDuty security agent updates for this resource.    The DISABLED status doesn't apply to Amazon EC2 instances and Amazon EKS clusters.
      */
     ManagementType?: ManagementType;
   }
@@ -1116,7 +1120,7 @@ declare namespace GuardDuty {
      */
     EcsClusterDetails?: CoverageEcsClusterDetails;
     /**
-     *  This API is also used when you use GuardDuty Runtime Monitoring for your Amazon EC2 instances (currently in preview release) and is subject to change.  Information about the Amazon EC2 instance assessed for runtime coverage.
+     *  This API is also used when you use GuardDuty Runtime Monitoring for your Amazon EC2 instances (currently in preview release) and is subject to change. The use of this API is subject to Section 2 of the Amazon Web Services Service Terms ("Betas and Previews").  Information about the Amazon EC2 instance assessed for runtime coverage.
      */
     Ec2InstanceDetails?: CoverageEc2InstanceDetails;
   }
@@ -1972,11 +1976,11 @@ declare namespace GuardDuty {
   }
   export interface FargateDetails {
     /**
-     * Runtime coverage issues identified for the resource running on AWS Fargate.
+     * Runtime coverage issues identified for the resource running on Amazon Web Services Fargate.
      */
     Issues?: Issues;
     /**
-     * Indicates how the GuardDuty security agent is managed for this resource.    AUTO_MANAGED indicates that GuardDuty deploys and manages updates for this resource.    MANUAL indicates that you are responsible to deploy, update, and manage the GuardDuty security agent updates for this resource.    DISABLED indicates that the deployment of the GuardDuty security agent is disabled for this resource.
+     * Indicates how the GuardDuty security agent is managed for this resource.    AUTO_MANAGED indicates that GuardDuty deploys and manages updates for this resource.    DISABLED indicates that the deployment of the GuardDuty security agent is disabled for this resource.    The MANUAL status doesn't apply to the Amazon Web Services Fargate (Amazon ECS only) woprkloads.
      */
     ManagementType?: ManagementType;
   }
@@ -2381,6 +2385,12 @@ declare namespace GuardDuty {
      */
     UnprocessedAccounts: UnprocessedAccounts;
   }
+  export interface GetOrganizationStatisticsResponse {
+    /**
+     * Information about the statistics report for your organization.
+     */
+    OrganizationDetails?: OrganizationDetails;
+  }
   export interface GetRemainingFreeTrialDaysRequest {
     /**
      * The unique ID of the detector of the GuardDuty member account.
@@ -3502,6 +3512,16 @@ declare namespace GuardDuty {
      */
     MalwareProtection?: OrganizationMalwareProtectionConfigurationResult;
   }
+  export interface OrganizationDetails {
+    /**
+     * The timestamp at which the organization statistics was last updated. This is in UTC format.
+     */
+    UpdatedAt?: Timestamp;
+    /**
+     * Information about the GuardDuty coverage statistics for members in your Amazon Web Services organization.
+     */
+    OrganizationStatistics?: OrganizationStatistics;
+  }
   export interface OrganizationEbsVolumes {
     /**
      * Whether scanning EBS volumes should be auto-enabled for new members joining the organization.
@@ -3542,6 +3562,32 @@ declare namespace GuardDuty {
      */
     AdditionalConfiguration?: OrganizationAdditionalConfigurationResults;
   }
+  export interface OrganizationFeatureStatistics {
+    /**
+     * Name of the feature.
+     */
+    Name?: OrgFeature;
+    /**
+     * Total number of accounts that have enabled a specific feature.
+     */
+    EnabledAccountsCount?: Integer;
+    /**
+     * Name of the additional configuration.
+     */
+    AdditionalConfiguration?: OrganizationFeatureStatisticsAdditionalConfigurations;
+  }
+  export interface OrganizationFeatureStatisticsAdditionalConfiguration {
+    /**
+     * Name of the additional configuration within a feature.
+     */
+    Name?: OrgFeatureAdditionalConfiguration;
+    /**
+     * Total number of accounts that have enabled the additional configuration.
+     */
+    EnabledAccountsCount?: Integer;
+  }
+  export type OrganizationFeatureStatisticsAdditionalConfigurations = OrganizationFeatureStatisticsAdditionalConfiguration[];
+  export type OrganizationFeatureStatisticsResults = OrganizationFeatureStatistics[];
   export type OrganizationFeaturesConfigurations = OrganizationFeatureConfiguration[];
   export type OrganizationFeaturesConfigurationsResults = OrganizationFeatureConfigurationResult[];
   export interface OrganizationKubernetesAuditLogsConfiguration {
@@ -3604,6 +3650,28 @@ declare namespace GuardDuty {
      */
     EbsVolumes?: OrganizationEbsVolumesResult;
   }
+  export interface OrganizationStatistics {
+    /**
+     * Total number of accounts in your Amazon Web Services organization.
+     */
+    TotalAccountsCount?: Integer;
+    /**
+     * Total number of accounts in your Amazon Web Services organization that are associated with GuardDuty.
+     */
+    MemberAccountsCount?: Integer;
+    /**
+     * Total number of active accounts in your Amazon Web Services organization that are associated with GuardDuty.
+     */
+    ActiveAccountsCount?: Integer;
+    /**
+     * Total number of accounts that have enabled GuardDuty.
+     */
+    EnabledAccountsCount?: Integer;
+    /**
+     * Retrieves the coverage statistics for each feature.
+     */
+    CountByFeature?: OrganizationFeatureStatisticsResults;
+  }
   export interface Owner {
     /**
      * The canonical user ID of the bucket owner. For information about locating your canonical user ID see Finding Your Account Canonical User ID.
@@ -4750,12 +4818,16 @@ declare namespace GuardDuty {
     Total?: Total;
   }
   export type UsageResourceResultList = UsageResourceResult[];
-  export type UsageStatisticType = "SUM_BY_ACCOUNT"|"SUM_BY_DATA_SOURCE"|"SUM_BY_RESOURCE"|"TOP_RESOURCES"|"SUM_BY_FEATURES"|string;
+  export type UsageStatisticType = "SUM_BY_ACCOUNT"|"SUM_BY_DATA_SOURCE"|"SUM_BY_RESOURCE"|"TOP_RESOURCES"|"SUM_BY_FEATURES"|"TOP_ACCOUNTS_BY_FEATURE"|string;
   export interface UsageStatistics {
     /**
      * The usage statistic sum organized by account ID.
      */
     SumByAccount?: UsageAccountResultList;
+    /**
+     * Lists the top 50 accounts by feature that have generated the most GuardDuty usage, in the order from most to least expensive. Currently, this doesn't support RDS_LOGIN_EVENTS.
+     */
+    TopAccountsByFeature?: UsageTopAccountsResultList;
     /**
      * The usage statistic sum organized by on data source.
      */
@@ -4773,6 +4845,25 @@ declare namespace GuardDuty {
      */
     SumByFeature?: UsageFeatureResultList;
   }
+  export interface UsageTopAccountResult {
+    /**
+     * The unique account ID.
+     */
+    AccountId?: AccountId;
+    Total?: Total;
+  }
+  export type UsageTopAccountsByFeatureList = UsageTopAccountResult[];
+  export interface UsageTopAccountsResult {
+    /**
+     * Features by which you can generate the usage statistics.  RDS_LOGIN_EVENTS is currently not supported with topAccountsByFeature.
+     */
+    Feature?: UsageFeature;
+    /**
+     * The accounts that contributed to the total usage cost.
+     */
+    Accounts?: UsageTopAccountsByFeatureList;
+  }
+  export type UsageTopAccountsResultList = UsageTopAccountsResult[];
   export interface Volume {
     /**
      * Volume name.

package/node_modules/aws-sdk/clients/managedblockchainquery.d.ts CHANGED Viewed

@@ -150,6 +150,7 @@ declare namespace ManagedBlockchainQuery {
     time?: Timestamp;
   }
   export type ChainAddress = string;
+  export type ConfirmationStatus = "FINAL"|string;
   export interface ContractFilter {
     /**
      * The blockchain network of the contract.
@@ -189,6 +190,7 @@ declare namespace ManagedBlockchainQuery {
     decimals?: Integer;
   }
   export type ErrorType = "VALIDATION_EXCEPTION"|"RESOURCE_NOT_FOUND_EXCEPTION"|string;
+  export type ExecutionStatus = "FAILED"|"SUCCEEDED"|string;
   export interface GetAssetContractInput {
     /**
      * Contains the blockchain address and network information about the contract.
@@ -395,7 +397,7 @@ declare namespace ManagedBlockchainQuery {
      */
     address: ChainAddress;
   }
-  export type QueryNetwork = "ETHEREUM_MAINNET"|"BITCOIN_MAINNET"|"BITCOIN_TESTNET"|"ETHEREUM_SEPOLIA_TESTNET"|string;
+  export type QueryNetwork = "ETHEREUM_MAINNET"|"ETHEREUM_SEPOLIA_TESTNET"|"BITCOIN_MAINNET"|"BITCOIN_TESTNET"|string;
   export type QueryTokenId = string;
   export type QueryTokenStandard = "ERC20"|"ERC721"|"ERC1155"|string;
   export type QueryTransactionEventType = "ERC20_TRANSFER"|"ERC20_MINT"|"ERC20_BURN"|"ERC20_DEPOSIT"|"ERC20_WITHDRAWAL"|"ERC721_TRANSFER"|"ERC1155_TRANSFER"|"BITCOIN_VIN"|"BITCOIN_VOUT"|"INTERNAL_ETH_TRANSFER"|"ETH_TRANSFER"|string;
@@ -485,9 +487,9 @@ declare namespace ManagedBlockchainQuery {
      */
     numberOfTransactions: Long;
     /**
-     * The status of the transaction.
+     * The status of the transaction.  This property is deprecated. You must use the confirmationStatus and the executionStatus properties to determine if the status of the transaction is FINAL or FAILED.   Transactions with a status of FINAL will now have the confirmationStatus set to FINAL and the executionStatus set to SUCCEEDED.   Transactions with a status of FAILED will now have the confirmationStatus set to FINAL and the executionStatus set to FAILED.
      */
-    status: QueryTransactionStatus;
+    status?: QueryTransactionStatus;
     /**
      * The identifier of the transaction. It is generated whenever a transaction is verified and added to the blockchain.
      */
@@ -532,6 +534,14 @@ declare namespace ManagedBlockchainQuery {
      * The unique identifier of the transaction. It is generated whenever a transaction is verified and added to the blockchain.
      */
     transactionId?: String;
+    /**
+     * Specifies whether the transaction has reached Finality.
+     */
+    confirmationStatus?: ConfirmationStatus;
+    /**
+     * Identifies whether the transaction has succeeded or failed.
+     */
+    executionStatus?: ExecutionStatus;
   }
   export interface TransactionEvent {
     /**

package/node_modules/aws-sdk/clients/medialive.d.ts CHANGED Viewed

@@ -2902,10 +2902,6 @@ You specify only the font family. All other style information (color, bold, posi
      * Settings for caption decriptions
      */
     CaptionDescriptions?: __listOfCaptionDescription;
-    /**
-     * Color correction settings
-     */
-    ColorCorrectionSettings?: ColorCorrectionSettings;
     /**
      * Feature Activations
      */
@@ -2932,6 +2928,10 @@ You specify only the font family. All other style information (color, bold, posi
      * Thumbnail configuration settings.
      */
     ThumbnailConfiguration?: ThumbnailConfiguration;
+    /**
+     * Color Correction Settings
+     */
+    ColorCorrectionSettings?: ColorCorrectionSettings;
   }
   export interface EpochLockingSettings {
     /**
@@ -4120,6 +4120,10 @@ to.
      * To attach this device to a MediaConnect flow, specify these parameters. To detach an existing flow, enter {} for the value of mediaconnectSettings. Only UHD devices can specify this parameter.
      */
     MediaconnectSettings?: InputDeviceMediaConnectConfigurableSettings;
+    /**
+     * An array of eight audio configurations, one for each audio pair in the source. Set up each audio configuration either to exclude the pair, or to format it and include it in the output from the device. This parameter applies only to UHD devices, and only when the device is configured as the source for a MediaConnect flow. For an HD device, you configure the audio by setting up audio selectors in the channel configuration.
+     */
+    AudioChannelPairs?: __listOfInputDeviceConfigurableAudioChannelPairConfig;
   }
   export type InputDeviceConfiguredInput = "AUTO"|"HDMI"|"SDI"|string;
   export type InputDeviceConnectionState = "DISCONNECTED"|"CONNECTED"|string;
@@ -4348,6 +4352,10 @@ to.
      * Information about the MediaConnect flow attached to the device. Returned only if the outputType is MEDIACONNECT_FLOW.
      */
     MediaconnectSettings?: InputDeviceMediaConnectSettings;
+    /**
+     * An array of eight audio configurations, one for each audio pair in the source. Each audio configuration specifies either to exclude the pair, or to format it and include it in the output from the UHD device. Applies only when the device is configured as the source for a MediaConnect flow.
+     */
+    AudioChannelPairs?: __listOfInputDeviceUhdAudioChannelPairConfig;
   }
   export type InputFilter = "AUTO"|"DISABLED"|"FORCED"|string;
   export interface InputLocation {
@@ -7614,6 +7622,30 @@ If STANDARD channel, subnet IDs must be mapped to two unique availability zones
   export type AcceptHeader = "image/jpeg"|string;
   export type ContentType = "image/jpeg"|string;
   export type __timestamp = Date;
+  export interface InputDeviceConfigurableAudioChannelPairConfig {
+    /**
+     * The ID for one audio pair configuration, a value from 1 to 8.
+     */
+    Id?: __integer;
+    /**
+     * The profile to set for one audio pair configuration. Choose an enumeration value. Each value describes one audio configuration using the format (rate control algorithm)-(codec)_(quality)-(bitrate in bytes). For example, CBR-AAC_HQ-192000. Or choose DISABLED, in which case the device won't produce audio for this pair.
+     */
+    Profile?: InputDeviceConfigurableAudioChannelPairProfile;
+  }
+  export type InputDeviceConfigurableAudioChannelPairProfile = "DISABLED"|"VBR-AAC_HHE-16000"|"VBR-AAC_HE-64000"|"VBR-AAC_LC-128000"|"CBR-AAC_HQ-192000"|"CBR-AAC_HQ-256000"|"CBR-AAC_HQ-384000"|"CBR-AAC_HQ-512000"|string;
+  export interface InputDeviceUhdAudioChannelPairConfig {
+    /**
+     * The ID for one audio pair configuration, a value from 1 to 8.
+     */
+    Id?: __integer;
+    /**
+     * The profile for one audio pair configuration. This property describes one audio configuration in the format (rate control algorithm)-(codec)_(quality)-(bitrate in bytes). For example, CBR-AAC_HQ-192000. Or DISABLED, in which case the device won't produce audio for this pair.
+     */
+    Profile?: InputDeviceUhdAudioChannelPairProfile;
+  }
+  export type InputDeviceUhdAudioChannelPairProfile = "DISABLED"|"VBR-AAC_HHE-16000"|"VBR-AAC_HE-64000"|"VBR-AAC_LC-128000"|"CBR-AAC_HQ-192000"|"CBR-AAC_HQ-256000"|"CBR-AAC_HQ-384000"|"CBR-AAC_HQ-512000"|string;
+  export type __listOfInputDeviceConfigurableAudioChannelPairConfig = InputDeviceConfigurableAudioChannelPairConfig[];
+  export type __listOfInputDeviceUhdAudioChannelPairConfig = InputDeviceUhdAudioChannelPairConfig[];
   /**
    * A string in YYYY-MM-DD format that represents the latest possible API version that can be used in this service. Specify 'latest' to use the latest possible version.
    */