cdk-lambda-subminute 2.0.438 → 2.0.439

package/node_modules/aws-sdk/apis/ssm-2014-11-06.paginators.json

@@ -78,6 +78,12 @@
       "output_token": "NextToken",
       "result_key": "Patches"
     },
+    "DescribeInstanceProperties": {
+      "input_token": "NextToken",
+      "limit_key": "MaxResults",
+      "output_token": "NextToken",
+      "result_key": "InstanceProperties"
+    },
     "DescribeInventoryDeletions": {
       "input_token": "NextToken",
       "limit_key": "MaxResults",

package/node_modules/aws-sdk/clients/datasync.d.ts

@@ -124,11 +124,11 @@ declare class DataSync extends Service {
    */
   createLocationSmb(callback?: (err: AWSError, data: DataSync.Types.CreateLocationSmbResponse) => void): Request<DataSync.Types.CreateLocationSmbResponse, AWSError>;
   /**
-   * Configures a transfer task, which defines where and how DataSync moves your data. A task includes a source location, destination location, and the options for how and when you want to transfer your data (such as bandwidth limits, scheduling, among other options).  If you're planning to transfer data to or from an Amazon S3 location, review how DataSync can affect your S3 request charges and the DataSync pricing page before you begin. 
+   * Configures a task, which defines where and how DataSync transfers your data. A task includes a source location, destination location, and transfer options (such as bandwidth limits, scheduling, and more).  If you're planning to transfer data to or from an Amazon S3 location, review how DataSync can affect your S3 request charges and the DataSync pricing page before you begin. 
    */
   createTask(params: DataSync.Types.CreateTaskRequest, callback?: (err: AWSError, data: DataSync.Types.CreateTaskResponse) => void): Request<DataSync.Types.CreateTaskResponse, AWSError>;
   /**
-   * Configures a transfer task, which defines where and how DataSync moves your data. A task includes a source location, destination location, and the options for how and when you want to transfer your data (such as bandwidth limits, scheduling, among other options).  If you're planning to transfer data to or from an Amazon S3 location, review how DataSync can affect your S3 request charges and the DataSync pricing page before you begin. 
+   * Configures a task, which defines where and how DataSync transfers your data. A task includes a source location, destination location, and transfer options (such as bandwidth limits, scheduling, and more).  If you're planning to transfer data to or from an Amazon S3 location, review how DataSync can affect your S3 request charges and the DataSync pricing page before you begin. 
    */
   createTask(callback?: (err: AWSError, data: DataSync.Types.CreateTaskResponse) => void): Request<DataSync.Types.CreateTaskResponse, AWSError>;
   /**
@@ -284,11 +284,11 @@ declare class DataSync extends Service {
    */
   describeStorageSystemResources(callback?: (err: AWSError, data: DataSync.Types.DescribeStorageSystemResourcesResponse) => void): Request<DataSync.Types.DescribeStorageSystemResourcesResponse, AWSError>;
   /**
-   * Provides information about an DataSync transfer task.
+   * Provides information about a task, which defines where and how DataSync transfers your data.
    */
   describeTask(params: DataSync.Types.DescribeTaskRequest, callback?: (err: AWSError, data: DataSync.Types.DescribeTaskResponse) => void): Request<DataSync.Types.DescribeTaskResponse, AWSError>;
   /**
-   * Provides information about an DataSync transfer task.
+   * Provides information about a task, which defines where and how DataSync transfers your data.
    */
   describeTask(callback?: (err: AWSError, data: DataSync.Types.DescribeTaskResponse) => void): Request<DataSync.Types.DescribeTaskResponse, AWSError>;
   /**
@@ -476,11 +476,11 @@ declare class DataSync extends Service {
    */
   updateStorageSystem(callback?: (err: AWSError, data: DataSync.Types.UpdateStorageSystemResponse) => void): Request<DataSync.Types.UpdateStorageSystemResponse, AWSError>;
   /**
-   * Updates the configuration of an DataSync transfer task.
+   * Updates the configuration of a task, which defines where and how DataSync transfers your data.
    */
   updateTask(params: DataSync.Types.UpdateTaskRequest, callback?: (err: AWSError, data: DataSync.Types.UpdateTaskResponse) => void): Request<DataSync.Types.UpdateTaskResponse, AWSError>;
   /**
-   * Updates the configuration of an DataSync transfer task.
+   * Updates the configuration of a task, which defines where and how DataSync transfers your data.
    */
   updateTask(callback?: (err: AWSError, data: DataSync.Types.UpdateTaskResponse) => void): Request<DataSync.Types.UpdateTaskResponse, AWSError>;
   /**
@@ -1026,39 +1026,39 @@ declare namespace DataSync {
   }
   export interface CreateTaskRequest {
     /**
-     * The Amazon Resource Name (ARN) of the source location for the task.
+     * Specifies the ARN of your transfer's source location.
      */
     SourceLocationArn: LocationArn;
     /**
-     * The Amazon Resource Name (ARN) of an Amazon Web Services storage resource's location. 
+     * Specifies the ARN of your transfer's destination location. 
      */
     DestinationLocationArn: LocationArn;
     /**
-     * The Amazon Resource Name (ARN) of the Amazon CloudWatch log group that is used to monitor and log events in the task. 
+     * Specifies the Amazon Resource Name (ARN) of an Amazon CloudWatch log group for monitoring your task.
      */
     CloudWatchLogGroupArn?: LogGroupArn;
     /**
-     * The name of a task. This value is a text reference that is used to identify the task in the console. 
+     * Specifies the name of your task.
      */
     Name?: TagValue;
     /**
-     * Specifies the configuration options for a task. Some options include preserving file or object metadata and verifying data integrity. You can also override these options before starting an individual run of a task (also known as a task execution). For more information, see StartTaskExecution.
+     * Specifies your task's settings, such as preserving file metadata, verifying data integrity, among other options.
      */
     Options?: Options;
     /**
-     * Specifies a list of filter rules that exclude specific data during your transfer. For more information and examples, see Filtering data transferred by DataSync.
+     * Specifies exclude filters that define the files, objects, and folders in your source location that you don't want DataSync to transfer. For more information and examples, see Specifying what DataSync transfers by using filters.
      */
     Excludes?: FilterList;
     /**
-     * Specifies a schedule used to periodically transfer files from a source to a destination location. The schedule should be specified in UTC time. For more information, see Scheduling your task.
+     * Specifies a schedule for when you want your task to run. For more information, see Scheduling your task.
      */
     Schedule?: TaskSchedule;
     /**
-     * Specifies the tags that you want to apply to the Amazon Resource Name (ARN) representing the task.  Tags are key-value pairs that help you manage, filter, and search for your DataSync resources.
+     * Specifies the tags that you want to apply to your task.  Tags are key-value pairs that help you manage, filter, and search for your DataSync resources.
      */
     Tags?: InputTagList;
     /**
-     * Specifies a list of filter rules that include specific data during your transfer. For more information and examples, see Filtering data transferred by DataSync.
+     * Specifies include filters define the files, objects, and folders in your source location that you want DataSync to transfer. For more information and examples, see Specifying what DataSync transfers by using filters.
      */
     Includes?: FilterList;
     /**
@@ -1765,65 +1765,65 @@ declare namespace DataSync {
   }
   export interface DescribeTaskRequest {
     /**
-     * Specifies the Amazon Resource Name (ARN) of the transfer task.
+     * Specifies the Amazon Resource Name (ARN) of the transfer task that you want information about.
      */
     TaskArn: TaskArn;
   }
   export interface DescribeTaskResponse {
     /**
-     * The Amazon Resource Name (ARN) of the task that was described.
+     * The ARN of your task.
      */
     TaskArn?: TaskArn;
     /**
-     * The status of the task that was described. For detailed information about task execution statuses, see Understanding Task Statuses in the DataSync User Guide.
+     * The status of your task. For information about what each status means, see Task statuses.
      */
     Status?: TaskStatus;
     /**
-     * The name of the task that was described.
+     * The name of your task.
      */
     Name?: TagValue;
     /**
-     * The Amazon Resource Name (ARN) of the task execution that is transferring files.
+     * The ARN of the most recent task execution.
      */
     CurrentTaskExecutionArn?: TaskExecutionArn;
     /**
-     * The Amazon Resource Name (ARN) of the source file system's location.
+     * The ARN of your transfer's source location.
      */
     SourceLocationArn?: LocationArn;
     /**
-     * The Amazon Resource Name (ARN) of the Amazon Web Services storage resource's location.
+     * The ARN of your transfer's destination location.
      */
     DestinationLocationArn?: LocationArn;
     /**
-     * The Amazon Resource Name (ARN) of the Amazon CloudWatch log group that was used to monitor and log events in the task. For more information on these groups, see Working with Log Groups and Log Streams in the Amazon CloudWatch User Guide.
+     * The Amazon Resource Name (ARN) of an Amazon CloudWatch log group for monitoring your task. For more information, see Monitoring DataSync with Amazon CloudWatch.
      */
     CloudWatchLogGroupArn?: LogGroupArn;
     /**
-     * The Amazon Resource Names (ARNs) of the network interfaces created for your source location. For more information, see Network interface requirements.
+     * The ARNs of the network interfaces that DataSync created for your source location.
      */
     SourceNetworkInterfaceArns?: SourceNetworkInterfaceArns;
     /**
-     * The Amazon Resource Names (ARNs) of the network interfaces created for your destination location. For more information, see Network interface requirements.
+     * The ARNs of the network interfaces that DataSync created for your destination location.
      */
     DestinationNetworkInterfaceArns?: DestinationNetworkInterfaceArns;
     /**
-     * The configuration options that control the behavior of the StartTaskExecution operation. Some options include preserving file or object metadata and verifying data integrity. You can override these options for each task execution. For more information, see StartTaskExecution.
+     * The task's settings. For example, what file metadata gets preserved, how data integrity gets verified at the end of your transfer, bandwidth limits, among other options.
      */
     Options?: Options;
     /**
-     * A list of filter rules that exclude specific data during your transfer. For more information and examples, see Filtering data transferred by DataSync.
+     * The exclude filters that define the files, objects, and folders in your source location that you don't want DataSync to transfer. For more information and examples, see Specifying what DataSync transfers by using filters.
      */
     Excludes?: FilterList;
     /**
-     * The schedule used to periodically transfer files from a source to a destination location.
+     * The schedule for when you want your task to run. For more information, see Scheduling your task.
      */
     Schedule?: TaskSchedule;
     /**
-     * Errors that DataSync encountered during execution of the task. You can use this error code to help troubleshoot issues.
+     * If there's an issue with your task, you can use the error code to help you troubleshoot the problem. For more information, see Troubleshooting issues with DataSync transfers.
      */
     ErrorCode?: string;
     /**
-     * Detailed description of an error that was encountered during the task execution. You can use this information to help troubleshoot issues. 
+     * If there's an issue with your task, you can use the error details to help you troubleshoot the problem. For more information, see Troubleshooting issues with DataSync transfers.
      */
     ErrorDetail?: string;
     /**
@@ -1831,17 +1831,21 @@ declare namespace DataSync {
      */
     CreationTime?: Time;
     /**
-     * A list of filter rules that include specific data during your transfer. For more information and examples, see Filtering data transferred by DataSync.
+     * The include filters that define the files, objects, and folders in your source location that you want DataSync to transfer. For more information and examples, see Specifying what DataSync transfers by using filters.
      */
     Includes?: FilterList;
     /**
-     * The configuration of the manifest that lists the files or objects to transfer. For more information, see Specifying what DataSync transfers by using a manifest.
+     * The configuration of the manifest that lists the files or objects that you want DataSync to transfer. For more information, see Specifying what DataSync transfers by using a manifest.
      */
     ManifestConfig?: ManifestConfig;
     /**
-     * The configuration of your task report, which provides detailed information about for your DataSync transfer. For more information, see Creating a task report.
+     * The configuration of your task report, which provides detailed information about your DataSync transfer. For more information, see Monitoring your DataSync transfers with task reports.
      */
     TaskReportConfig?: TaskReportConfig;
+    /**
+     * The details about your task schedule.
+     */
+    ScheduleDetails?: TaskScheduleDetails;
   }
   export type DestinationNetworkInterfaceArns = NetworkInterfaceArn[];
   export type DiscoveryAgentArnList = AgentArn[];
@@ -2481,7 +2485,7 @@ declare namespace DataSync {
   export type Operator = "Equals"|"NotEquals"|"In"|"LessThanOrEqual"|"LessThan"|"GreaterThanOrEqual"|"GreaterThan"|"Contains"|"NotContains"|"BeginsWith"|string;
   export interface Options {
     /**
-     * Specifies how and when DataSync checks the integrity of your data during a transfer.    ONLY_FILES_TRANSFERRED (recommended) - DataSync calculates the checksum of transferred files and metadata at the source location. At the end of the transfer, DataSync then compares this checksum to the checksum calculated on those files at the destination. We recommend this option when transferring to S3 Glacier Flexible Retrieval or S3 Glacier Deep Archive storage classes. For more information, see Storage class considerations with Amazon S3 locations.    POINT_IN_TIME_CONSISTENT (default) - At the end of the transfer, DataSync scans the entire source and destination to verify that both locations are fully synchronized. You can't use this option when transferring to S3 Glacier Flexible Retrieval or S3 Glacier Deep Archive storage classes. For more information, see Storage class considerations with Amazon S3 locations.    NONE - DataSync doesn't run additional verification at the end of the transfer. All data transmissions are still integrity-checked with checksum verification during the transfer.  
+     * Specifies how and when DataSync checks the integrity of your data during a transfer.    ONLY_FILES_TRANSFERRED (recommended) - DataSync calculates the checksum of transferred files and metadata at the source location. At the end of the transfer, DataSync then compares this checksum to the checksum calculated on those files at the destination. We recommend this option when transferring to S3 Glacier Flexible Retrieval or S3 Glacier Deep Archive storage classes. For more information, see Storage class considerations with Amazon S3 locations.    POINT_IN_TIME_CONSISTENT (default) - At the end of the transfer, DataSync scans the entire source and destination to verify that both locations are fully synchronized. If you use a manifest, DataSync only scans and verifies what's listed in the manifest. You can't use this option when transferring to S3 Glacier Flexible Retrieval or S3 Glacier Deep Archive storage classes. For more information, see Storage class considerations with Amazon S3 locations.    NONE - DataSync doesn't run additional verification at the end of the transfer. All data transmissions are still integrity-checked with checksum verification during the transfer.  
      */
     VerifyMode?: VerifyMode;
     /**
@@ -2562,7 +2566,7 @@ declare namespace DataSync {
   export type PhaseStatus = "PENDING"|"SUCCESS"|"ERROR"|string;
   export interface Platform {
     /**
-     * The version of the DataSync agent.  On December 7, 2023, we discontinued version 1 DataSync agents. Check the DataSync console to see if you have affected agents. If you do, replace those agents or delete them if they aren't in use. If you need more help, contact Amazon Web Services Support. 
+     * The version of the DataSync agent.
      */
     Version?: AgentVersion;
   }
@@ -2754,7 +2758,10 @@ declare namespace DataSync {
   export type S3ObjectVersionId = string;
   export type S3StorageClass = "STANDARD"|"STANDARD_IA"|"ONEZONE_IA"|"INTELLIGENT_TIERING"|"GLACIER"|"DEEP_ARCHIVE"|"OUTPOSTS"|"GLACIER_INSTANT_RETRIEVAL"|string;
   export type S3Subdirectory = string;
+  export type ScheduleDisabledBy = "USER"|"SERVICE"|string;
+  export type ScheduleDisabledReason = string;
   export type ScheduleExpressionCron = string;
+  export type ScheduleStatus = "ENABLED"|"DISABLED"|string;
   export type SecretsManagerArn = string;
   export type ServerHostname = string;
   export type SmbDomain = string;
@@ -2989,9 +2996,27 @@ declare namespace DataSync {
   }
   export interface TaskSchedule {
     /**
-     * A cron expression that specifies when DataSync initiates a scheduled transfer from a source to a destination location. 
+     * Specifies your task schedule by using a cron expression in UTC time. For information about cron expression syntax, see the  Amazon EventBridge User Guide .
      */
     ScheduleExpression: ScheduleExpressionCron;
+    /**
+     * Specifies whether to enable or disable your task schedule. Your schedule is enabled by default, but there can be situations where you need to disable it. For example, you might need to pause a recurring transfer or fix an issue with your task or perform maintenance on your storage system. DataSync might disable your schedule automatically if your task fails repeatedly with the same error. For more information, see TaskScheduleDetails.
+     */
+    Status?: ScheduleStatus;
+  }
+  export interface TaskScheduleDetails {
+    /**
+     * Indicates the last time the status of your task schedule changed. For example, if DataSync automatically disables your schedule because of a repeated error, you can see when the schedule was disabled.
+     */
+    StatusUpdateTime?: Time;
+    /**
+     * Provides a reason if the task schedule is disabled. If your schedule is disabled by USER, you see a Manually disabled by user. message. If your schedule is disabled by SERVICE, you see an error message to help you understand why the task keeps failing. For information on resolving DataSync errors, see Troubleshooting issues with DataSync transfers.
+     */
+    DisabledReason?: ScheduleDisabledReason;
+    /**
+     * Indicates how your task schedule was disabled.    USER - Your schedule was manually disabled by using the UpdateTask operation or DataSync console.    SERVICE - Your schedule was automatically disabled by DataSync because the task failed repeatedly with the same error.  
+     */
+    DisabledBy?: ScheduleDisabledBy;
   }
   export type TaskStatus = "AVAILABLE"|"CREATING"|"QUEUED"|"RUNNING"|"UNAVAILABLE"|string;
   export interface Throughput {
@@ -3258,28 +3283,28 @@ declare namespace DataSync {
   }
   export interface UpdateTaskRequest {
     /**
-     * The Amazon Resource Name (ARN) of the resource name of the task to update.
+     * Specifies the ARN of the task that you want to update.
      */
     TaskArn: TaskArn;
     Options?: Options;
     /**
-     * Specifies a list of filter rules that exclude specific data during your transfer. For more information and examples, see Filtering data transferred by DataSync.
+     * Specifies exclude filters that define the files, objects, and folders in your source location that you don't want DataSync to transfer. For more information and examples, see Specifying what DataSync transfers by using filters.
      */
     Excludes?: FilterList;
     /**
-     * Specifies a schedule used to periodically transfer files from a source to a destination location. You can configure your task to execute hourly, daily, weekly or on specific days of the week. You control when in the day or hour you want the task to execute. The time you specify is UTC time. For more information, see Scheduling your task.
+     * Specifies a schedule for when you want your task to run. For more information, see Scheduling your task.
      */
     Schedule?: TaskSchedule;
     /**
-     * The name of the task to update.
+     * Specifies the name of your task.
      */
     Name?: TagValue;
     /**
-     * The Amazon Resource Name (ARN) of the resource name of the Amazon CloudWatch log group.
+     * Specifies the Amazon Resource Name (ARN) of an Amazon CloudWatch log group for monitoring your task.
      */
     CloudWatchLogGroupArn?: LogGroupArn;
     /**
-     * Specifies a list of filter rules that include specific data during your transfer. For more information and examples, see Filtering data transferred by DataSync.
+     * Specifies include filters define the files, objects, and folders in your source location that you want DataSync to transfer. For more information and examples, see Specifying what DataSync transfers by using filters.
      */
     Includes?: FilterList;
     /**

package/node_modules/aws-sdk/clients/ec2.d.ts

@@ -16227,6 +16227,10 @@ declare namespace EC2 {
      * Indicates whether source/destination checking is enabled.
      */
     SourceDestCheck?: AttributeBooleanValue;
+    /**
+     * Indicates whether to assign a public IPv4 address to a network interface. This option can be enabled for any network interface but will only apply to the primary network interface (eth0).
+     */
+    AssociatePublicIpAddress?: Boolean;
   }
   export type DescribeNetworkInterfacePermissionsMaxResults = number;
   export interface DescribeNetworkInterfacePermissionsRequest {
@@ -29048,6 +29052,10 @@ declare namespace EC2 {
      * A connection tracking specification.
      */
     ConnectionTrackingSpecification?: ConnectionTrackingSpecificationRequest;
+    /**
+     * Indicates whether to assign a public IPv4 address to a network interface. This option can be enabled for any network interface but will only apply to the primary network interface (eth0).
+     */
+    AssociatePublicIpAddress?: Boolean;
   }
   export interface ModifyPrivateDnsNameOptionsRequest {
     /**
@@ -31062,7 +31070,7 @@ declare namespace EC2 {
     DeleteOnTermination?: Boolean;
   }
   export type NetworkInterfaceAttachmentId = string;
-  export type NetworkInterfaceAttribute = "description"|"groupSet"|"sourceDestCheck"|"attachment"|string;
+  export type NetworkInterfaceAttribute = "description"|"groupSet"|"sourceDestCheck"|"attachment"|"associatePublicIpAddress"|string;
   export interface NetworkInterfaceCount {
     /**
      * The minimum number of network interfaces. If this parameter is not specified, there is no minimum limit.

package/node_modules/aws-sdk/clients/emrcontainers.d.ts

@@ -35,6 +35,14 @@ declare class EMRcontainers extends Service {
    * Creates a managed endpoint. A managed endpoint is a gateway that connects Amazon EMR Studio to Amazon EMR on EKS so that Amazon EMR Studio can communicate with your virtual cluster.
    */
   createManagedEndpoint(callback?: (err: AWSError, data: EMRcontainers.Types.CreateManagedEndpointResponse) => void): Request<EMRcontainers.Types.CreateManagedEndpointResponse, AWSError>;
+  /**
+   * Creates a security configuration. Security configurations in Amazon EMR on EKS are templates for different security setups. You can use security configurations to configure the Lake Formation integration setup. You can also create a security configuration to re-use a security setup each time you create a virtual cluster.
+   */
+  createSecurityConfiguration(params: EMRcontainers.Types.CreateSecurityConfigurationRequest, callback?: (err: AWSError, data: EMRcontainers.Types.CreateSecurityConfigurationResponse) => void): Request<EMRcontainers.Types.CreateSecurityConfigurationResponse, AWSError>;
+  /**
+   * Creates a security configuration. Security configurations in Amazon EMR on EKS are templates for different security setups. You can use security configurations to configure the Lake Formation integration setup. You can also create a security configuration to re-use a security setup each time you create a virtual cluster.
+   */
+  createSecurityConfiguration(callback?: (err: AWSError, data: EMRcontainers.Types.CreateSecurityConfigurationResponse) => void): Request<EMRcontainers.Types.CreateSecurityConfigurationResponse, AWSError>;
   /**
    * Creates a virtual cluster. Virtual cluster is a managed entity on Amazon EMR on EKS. You can create, describe, list and delete virtual clusters. They do not consume any additional resource in your system. A single virtual cluster maps to a single Kubernetes namespace. Given this relationship, you can model virtual clusters the same way you model Kubernetes namespaces to meet your requirements.
    */
@@ -91,6 +99,14 @@ declare class EMRcontainers extends Service {
    * Displays detailed information about a managed endpoint. A managed endpoint is a gateway that connects Amazon EMR Studio to Amazon EMR on EKS so that Amazon EMR Studio can communicate with your virtual cluster.
    */
   describeManagedEndpoint(callback?: (err: AWSError, data: EMRcontainers.Types.DescribeManagedEndpointResponse) => void): Request<EMRcontainers.Types.DescribeManagedEndpointResponse, AWSError>;
+  /**
+   * Displays detailed information about a specified security configuration. Security configurations in Amazon EMR on EKS are templates for different security setups. You can use security configurations to configure the Lake Formation integration setup. You can also create a security configuration to re-use a security setup each time you create a virtual cluster.
+   */
+  describeSecurityConfiguration(params: EMRcontainers.Types.DescribeSecurityConfigurationRequest, callback?: (err: AWSError, data: EMRcontainers.Types.DescribeSecurityConfigurationResponse) => void): Request<EMRcontainers.Types.DescribeSecurityConfigurationResponse, AWSError>;
+  /**
+   * Displays detailed information about a specified security configuration. Security configurations in Amazon EMR on EKS are templates for different security setups. You can use security configurations to configure the Lake Formation integration setup. You can also create a security configuration to re-use a security setup each time you create a virtual cluster.
+   */
+  describeSecurityConfiguration(callback?: (err: AWSError, data: EMRcontainers.Types.DescribeSecurityConfigurationResponse) => void): Request<EMRcontainers.Types.DescribeSecurityConfigurationResponse, AWSError>;
   /**
    * Displays detailed information about a specified virtual cluster. Virtual cluster is a managed entity on Amazon EMR on EKS. You can create, describe, list and delete virtual clusters. They do not consume any additional resource in your system. A single virtual cluster maps to a single Kubernetes namespace. Given this relationship, you can model virtual clusters the same way you model Kubernetes namespaces to meet your requirements.
    */
@@ -131,6 +147,14 @@ declare class EMRcontainers extends Service {
    * Lists managed endpoints based on a set of parameters. A managed endpoint is a gateway that connects Amazon EMR Studio to Amazon EMR on EKS so that Amazon EMR Studio can communicate with your virtual cluster.
    */
   listManagedEndpoints(callback?: (err: AWSError, data: EMRcontainers.Types.ListManagedEndpointsResponse) => void): Request<EMRcontainers.Types.ListManagedEndpointsResponse, AWSError>;
+  /**
+   * Lists security configurations based on a set of parameters. Security configurations in Amazon EMR on EKS are templates for different security setups. You can use security configurations to configure the Lake Formation integration setup. You can also create a security configuration to re-use a security setup each time you create a virtual cluster.
+   */
+  listSecurityConfigurations(params: EMRcontainers.Types.ListSecurityConfigurationsRequest, callback?: (err: AWSError, data: EMRcontainers.Types.ListSecurityConfigurationsResponse) => void): Request<EMRcontainers.Types.ListSecurityConfigurationsResponse, AWSError>;
+  /**
+   * Lists security configurations based on a set of parameters. Security configurations in Amazon EMR on EKS are templates for different security setups. You can use security configurations to configure the Lake Formation integration setup. You can also create a security configuration to re-use a security setup each time you create a virtual cluster.
+   */
+  listSecurityConfigurations(callback?: (err: AWSError, data: EMRcontainers.Types.ListSecurityConfigurationsResponse) => void): Request<EMRcontainers.Types.ListSecurityConfigurationsResponse, AWSError>;
   /**
    * Lists the tags assigned to the resources.
    */
@@ -174,6 +198,16 @@ declare class EMRcontainers extends Service {
 }
 declare namespace EMRcontainers {
   export type ACMCertArn = string;
+  export interface AuthorizationConfiguration {
+    /**
+     * Lake Formation related configuration inputs for the security configuration.
+     */
+    lakeFormationConfiguration?: LakeFormationConfiguration;
+    /**
+     * Encryption-related configuration input for the security configuration.
+     */
+    encryptionConfiguration?: EncryptionConfiguration;
+  }
   export type Base64Encoded = string;
   export type Boolean = boolean;
   export interface CancelJobRunRequest {
@@ -206,6 +240,7 @@ declare namespace EMRcontainers {
      */
     certificateData?: Base64Encoded;
   }
+  export type CertificateProviderType = "PEM"|string;
   export type ClientToken = string;
   export interface CloudWatchMonitoringConfiguration {
     /**
@@ -370,6 +405,38 @@ declare namespace EMRcontainers {
      */
     virtualClusterId?: ResourceIdString;
   }
+  export interface CreateSecurityConfigurationRequest {
+    /**
+     * The client idempotency token to use when creating the security configuration.
+     */
+    clientToken: ClientToken;
+    /**
+     * The name of the security configuration.
+     */
+    name: ResourceNameString;
+    /**
+     * Security configuration input for the request.
+     */
+    securityConfigurationData: SecurityConfigurationData;
+    /**
+     * The tags to add to the security configuration.
+     */
+    tags?: TagMap;
+  }
+  export interface CreateSecurityConfigurationResponse {
+    /**
+     * The ID of the security configuration.
+     */
+    id?: ResourceIdString;
+    /**
+     * The name of the security configuration.
+     */
+    name?: ResourceNameString;
+    /**
+     * The ARN (Amazon Resource Name) of the security configuration.
+     */
+    arn?: SecurityConfigurationArn;
+  }
   export interface CreateVirtualClusterRequest {
     /**
      * The specified name of the virtual cluster.
@@ -387,6 +454,10 @@ declare namespace EMRcontainers {
      * The tags assigned to the virtual cluster.
      */
     tags?: TagMap;
+    /**
+     * The ID of the security configuration.
+     */
+    securityConfigurationId?: ResourceIdString;
   }
   export interface CreateVirtualClusterResponse {
     /**
@@ -498,6 +569,18 @@ declare namespace EMRcontainers {
      */
     endpoint?: Endpoint;
   }
+  export interface DescribeSecurityConfigurationRequest {
+    /**
+     * The ID of the security configuration.
+     */
+    id: ResourceIdString;
+  }
+  export interface DescribeSecurityConfigurationResponse {
+    /**
+     * Details of the security configuration.
+     */
+    securityConfiguration?: SecurityConfiguration;
+  }
   export interface DescribeVirtualClusterRequest {
     /**
      * The ID of the virtual cluster that will be described.
@@ -516,6 +599,12 @@ declare namespace EMRcontainers {
      */
     namespace?: KubernetesNamespace;
   }
+  export interface EncryptionConfiguration {
+    /**
+     * In-transit encryption-related input for the security configuration.
+     */
+    inTransitEncryptionConfiguration?: InTransitEncryptionConfiguration;
+  }
   export interface Endpoint {
     /**
      * The ID of the endpoint.
@@ -645,6 +734,12 @@ declare namespace EMRcontainers {
     expiresAt?: _Date;
   }
   export type IAMRoleArn = string;
+  export interface InTransitEncryptionConfiguration {
+    /**
+     * TLS certificate-related configuration input for the security configuration.
+     */
+    tlsCertificateConfiguration?: TLSCertificateConfiguration;
+  }
   export type JavaInteger = number;
   export type JobArn = string;
   export interface JobDriver {
@@ -799,6 +894,20 @@ declare namespace EMRcontainers {
   export type JobTemplates = JobTemplate[];
   export type KmsKeyArn = string;
   export type KubernetesNamespace = string;
+  export interface LakeFormationConfiguration {
+    /**
+     * The session tag to authorize Amazon EMR on EKS for API calls to Lake Formation.
+     */
+    authorizedSessionTagValue?: SessionTagValue;
+    /**
+     * The namespace input of the system job.
+     */
+    secureNamespaceInfo?: SecureNamespaceInfo;
+    /**
+     * The query engine IAM role ARN that is tied to the secure Spark job. The QueryEngine role assumes the JobExecutionRole to execute all the Lake Formation calls.
+     */
+    queryEngineRoleArn?: IAMRoleArn;
+  }
   export interface ListJobRunsRequest {
     /**
      * The ID of the virtual cluster for which to list the job run. 
@@ -907,6 +1016,34 @@ declare namespace EMRcontainers {
      */
     nextToken?: NextToken;
   }
+  export interface ListSecurityConfigurationsRequest {
+    /**
+     * The date and time after which the security configuration was created.
+     */
+    createdAfter?: _Date;
+    /**
+     * The date and time before which the security configuration was created.
+     */
+    createdBefore?: _Date;
+    /**
+     * The maximum number of security configurations the operation can list.
+     */
+    maxResults?: JavaInteger;
+    /**
+     * The token for the next set of security configurations to return.
+     */
+    nextToken?: NextToken;
+  }
+  export interface ListSecurityConfigurationsResponse {
+    /**
+     * The list of returned security configurations.
+     */
+    securityConfigurations?: SecurityConfigurations;
+    /**
+     * The token for the next set of security configurations to return.
+     */
+    nextToken?: NextToken;
+  }
   export interface ListTagsForResourceRequest {
     /**
      * The ARN of tagged resources.
@@ -1052,7 +1189,57 @@ declare namespace EMRcontainers {
      */
     logUri: UriString;
   }
+  export type SecretsManagerArn = string;
+  export interface SecureNamespaceInfo {
+    /**
+     * The ID of the Amazon EKS cluster where Amazon EMR on EKS jobs run.
+     */
+    clusterId?: ClusterId;
+    /**
+     * The namespace of the Amazon EKS cluster where the system jobs run.
+     */
+    namespace?: KubernetesNamespace;
+  }
+  export interface SecurityConfiguration {
+    /**
+     * The ID of the security configuration.
+     */
+    id?: ResourceIdString;
+    /**
+     * The name of the security configuration.
+     */
+    name?: ResourceNameString;
+    /**
+     * The ARN (Amazon Resource Name) of the security configuration.
+     */
+    arn?: SecurityConfigurationArn;
+    /**
+     * The date and time that the job run was created.
+     */
+    createdAt?: _Date;
+    /**
+     * The user who created the job run.
+     */
+    createdBy?: RequestIdentityUserArn;
+    /**
+     * Security configuration inputs for the request.
+     */
+    securityConfigurationData?: SecurityConfigurationData;
+    /**
+     * The tags to assign to the security configuration.
+     */
+    tags?: TagMap;
+  }
+  export type SecurityConfigurationArn = string;
+  export interface SecurityConfigurationData {
+    /**
+     * Authorization-related configuration input for the security configuration.
+     */
+    authorizationConfiguration?: AuthorizationConfiguration;
+  }
+  export type SecurityConfigurations = SecurityConfiguration[];
   export type SensitivePropertiesMap = {[key: string]: String1024};
+  export type SessionTagValue = string;
   export interface SparkSqlJobDriver {
     /**
      * The SQL file to be executed.
@@ -1149,6 +1336,20 @@ declare namespace EMRcontainers {
   export type String256 = string;
   export type StringEmpty256 = string;
   export type SubnetIds = String256[];
+  export interface TLSCertificateConfiguration {
+    /**
+     * The TLS certificate type. Acceptable values: PEM or Custom.
+     */
+    certificateProviderType?: CertificateProviderType;
+    /**
+     * Secrets Manager ARN that contains the public TLS certificate contents, used for communication between the user job and the system job.
+     */
+    publicCertificateSecretArn?: SecretsManagerArn;
+    /**
+     * Secrets Manager ARN that contains the private TLS certificate contents, used for communication between the user job and the system job.
+     */
+    privateCertificateSecretArn?: SecretsManagerArn;
+  }
   export type TagKeyList = String128[];
   export type TagMap = {[key: string]: StringEmpty256};
   export interface TagResourceRequest {
@@ -1221,6 +1422,10 @@ declare namespace EMRcontainers {
      * The assigned tags of the virtual cluster.
      */
     tags?: TagMap;
+    /**
+     * The ID of the security configuration.
+     */
+    securityConfigurationId?: ResourceIdString;
   }
   export type VirtualClusterArn = string;
   export type VirtualClusterState = "RUNNING"|"TERMINATING"|"TERMINATED"|"ARRESTED"|string;