npm - iam-floyd - Versions diffs - 0.802.0 → 0.804.0 - Mend

iam-floyd 0.802.0 → 0.804.0

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (20) hide show

package/lib/generated/policy-statements/securityagent.d.ts CHANGED Viewed

@@ -21,6 +21,20 @@ export declare class Securityagent extends PolicyStatement {
      * https://docs.aws.amazon.com/securityagent/API_AddArtifact.html
      */
     toAddArtifact(): this;
+    /**
+     * Grants permission to batch create security requirements in a customer managed pack
+     *
+     * Access Level: Write
+     *
+     * Dependent actions:
+     * - kms:Decrypt
+     * - kms:GenerateDataKeyWithoutPlaintext
+     * - kms:ReEncryptFrom
+     * - kms:ReEncryptTo
+     *
+     * https://docs.aws.amazon.com/securityagent/API_BatchCreateSecurityRequirements.html
+     */
+    toBatchCreateSecurityRequirements(): this;
     /**
      * Grants permission to delete multiple code reviews in a single request
      *
@@ -43,6 +57,14 @@ export declare class Securityagent extends PolicyStatement {
      * https://docs.aws.amazon.com/securityagent/API_BatchDeletePentests.html
      */
     toBatchDeletePentests(): this;
+    /**
+     * Grants permission to batch delete security requirements from a customer managed pack
+     *
+     * Access Level: Write
+     *
+     * https://docs.aws.amazon.com/securityagent/API_BatchDeleteSecurityRequirements.html
+     */
+    toBatchDeleteSecurityRequirements(): this;
     /**
      * Grants permission to delete multiple threat models in a single request
      *
@@ -172,6 +194,20 @@ export declare class Securityagent extends PolicyStatement {
      * https://docs.aws.amazon.com/securityagent/API_BatchGetPentests.html
      */
     toBatchGetPentests(): this;
+    /**
+     * Grants permission to retrieve multiple security requirements in a single request
+     *
+     * Access Level: Read
+     *
+     * Dependent actions:
+     * - kms:Decrypt
+     * - kms:GenerateDataKeyWithoutPlaintext
+     * - kms:ReEncryptFrom
+     * - kms:ReEncryptTo
+     *
+     * https://docs.aws.amazon.com/securityagent/API_BatchGetSecurityRequirements.html
+     */
+    toBatchGetSecurityRequirements(): this;
     /**
      * Grants permission to retrieve multiple target domains in a single request
      *
@@ -224,6 +260,20 @@ export declare class Securityagent extends PolicyStatement {
      * https://docs.aws.amazon.com/securityagent/API_BatchGetThreats.html
      */
     toBatchGetThreats(): this;
+    /**
+     * Grants permission to batch update security requirements within a customer managed pack
+     *
+     * Access Level: Write
+     *
+     * Dependent actions:
+     * - kms:Decrypt
+     * - kms:GenerateDataKeyWithoutPlaintext
+     * - kms:ReEncryptFrom
+     * - kms:ReEncryptTo
+     *
+     * https://docs.aws.amazon.com/securityagent/API_BatchUpdateSecurityRequirements.html
+     */
+    toBatchUpdateSecurityRequirements(): this;
     /**
      * Grants permission to create an agent space record
      *
@@ -316,6 +366,18 @@ export declare class Securityagent extends PolicyStatement {
      * https://docs.aws.amazon.com/securityagent/API_CreatePentest.html
      */
     toCreatePentest(): this;
+    /**
+     * Grants permission to create a private connection for VPC Lattice integration
+     *
+     * Access Level: Write
+     *
+     * Possible conditions:
+     * - .ifAwsRequestTag()
+     * - .ifAwsTagKeys()
+     *
+     * https://docs.aws.amazon.com/securityagent/API_CreatePrivateConnection.html
+     */
+    toCreatePrivateConnection(): this;
     /**
      * Grants permission to add a customer managed Security Requirement
      *
@@ -324,6 +386,25 @@ export declare class Securityagent extends PolicyStatement {
      * https://docs.aws.amazon.com/securityagent/API_CreateSecurityRequirement.html
      */
     toCreateSecurityRequirement(): this;
+    /**
+     * Grants permission to create a customer managed security requirement pack
+     *
+     * Access Level: Write
+     *
+     * Possible conditions:
+     * - .ifAwsRequestTag()
+     * - .ifAwsTagKeys()
+     *
+     * Dependent actions:
+     * - kms:Decrypt
+     * - kms:DescribeKey
+     * - kms:GenerateDataKeyWithoutPlaintext
+     * - kms:ReEncryptFrom
+     * - kms:ReEncryptTo
+     *
+     * https://docs.aws.amazon.com/securityagent/API_CreateSecurityRequirementPack.html
+     */
+    toCreateSecurityRequirementPack(): this;
     /**
      * Grants permission to create a target domain record
      *
@@ -405,6 +486,14 @@ export declare class Securityagent extends PolicyStatement {
      * https://docs.aws.amazon.com/securityagent/API_DeleteMembership.html
      */
     toDeleteMembership(): this;
+    /**
+     * Grants permission to delete a private connection
+     *
+     * Access Level: Write
+     *
+     * https://docs.aws.amazon.com/securityagent/API_DeletePrivateConnection.html
+     */
+    toDeletePrivateConnection(): this;
     /**
      * Grants permission to delete a customer managed Security Requirement
      *
@@ -413,6 +502,14 @@ export declare class Securityagent extends PolicyStatement {
      * https://docs.aws.amazon.com/securityagent/API_DeleteSecurityRequirement.html
      */
     toDeleteSecurityRequirement(): this;
+    /**
+     * Grants permission to delete a customer managed security requirement pack and all its associated security requirements
+     *
+     * Access Level: Write
+     *
+     * https://docs.aws.amazon.com/securityagent/API_DeleteSecurityRequirementPack.html
+     */
+    toDeleteSecurityRequirementPack(): this;
     /**
      * Grants permission to delete a target domain record
      *
@@ -421,6 +518,14 @@ export declare class Securityagent extends PolicyStatement {
      * https://docs.aws.amazon.com/securityagent/API_DeleteTargetDomain.html
      */
     toDeleteTargetDomain(): this;
+    /**
+     * Grants permission to describe a private connection
+     *
+     * Access Level: Read
+     *
+     * https://docs.aws.amazon.com/securityagent/API_DescribePrivateConnection.html
+     */
+    toDescribePrivateConnection(): this;
     /**
      * Grants permission to get application details by application ID
      *
@@ -469,6 +574,14 @@ export declare class Securityagent extends PolicyStatement {
      * https://docs.aws.amazon.com/securityagent/API_GetIntegration.html
      */
     toGetIntegration(): this;
+    /**
+     * Grants permission to retrieve the provider registration manifest used for browser-based integration registration
+     *
+     * Access Level: Read
+     *
+     * https://docs.aws.amazon.com/securityagent/API_GetProviderRegistrationManifest.html
+     */
+    toGetProviderRegistrationManifest(): this;
     /**
      * Grants permission to retrieve a Security Requirement
      *
@@ -477,6 +590,36 @@ export declare class Securityagent extends PolicyStatement {
      * https://docs.aws.amazon.com/securityagent/API_GetSecurityRequirement.html
      */
     toGetSecurityRequirement(): this;
+    /**
+     * Grants permission to retrieve a security requirement pack
+     *
+     * Access Level: Read
+     *
+     * https://docs.aws.amazon.com/securityagent/API_GetSecurityRequirementPack.html
+     */
+    toGetSecurityRequirementPack(): this;
+    /**
+     * Grants permission to handle the provider OAuth registration callback that completes integration setup
+     *
+     * Access Level: Write
+     *
+     * https://docs.aws.amazon.com/securityagent/API_HandleProviderRegistrationCallback.html
+     */
+    toHandleProviderRegistrationCallback(): this;
+    /**
+     * Grants permission to import security requirements from uploaded documents for a customer managed security requirement pack
+     *
+     * Access Level: Write
+     *
+     * Dependent actions:
+     * - kms:Decrypt
+     * - kms:GenerateDataKeyWithoutPlaintext
+     * - kms:ReEncryptFrom
+     * - kms:ReEncryptTo
+     *
+     * https://docs.aws.amazon.com/securityagent/API_ImportSecurityRequirements.html
+     */
+    toImportSecurityRequirements(): this;
     /**
      * Grants permission to initiate the registration of Security Agent App for the given provider (eg: GitHub)
      *
@@ -637,6 +780,14 @@ export declare class Securityagent extends PolicyStatement {
      * https://docs.aws.amazon.com/securityagent/API_ListPentests.html
      */
     toListPentests(): this;
+    /**
+     * Grants permission to list private connections in the account
+     *
+     * Access Level: List
+     *
+     * https://docs.aws.amazon.com/securityagent/API_ListPrivateConnections.html
+     */
+    toListPrivateConnections(): this;
     /**
      * Grants permission to list resources from Integration
      *
@@ -645,11 +796,25 @@ export declare class Securityagent extends PolicyStatement {
      * https://docs.aws.amazon.com/securityagent/API_ListResourcesFromIntegration.html
      */
     toListResourcesFromIntegration(): this;
+    /**
+     * Grants permission to list all security requirement packs in the account
+     *
+     * Access Level: List
+     *
+     * https://docs.aws.amazon.com/securityagent/API_ListSecurityRequirementPacks.html
+     */
+    toListSecurityRequirementPacks(): this;
     /**
      * Grants permission to list all Security Requirements
      *
      * Access Level: List
      *
+     * Dependent actions:
+     * - kms:Decrypt
+     * - kms:GenerateDataKeyWithoutPlaintext
+     * - kms:ReEncryptFrom
+     * - kms:ReEncryptTo
+     *
      * https://docs.aws.amazon.com/securityagent/API_ListSecurityRequirements.html
      */
     toListSecurityRequirements(): this;
@@ -897,6 +1062,14 @@ export declare class Securityagent extends PolicyStatement {
      * https://docs.aws.amazon.com/securityagent/API_UpdatePentest.html
      */
     toUpdatePentest(): this;
+    /**
+     * Grants permission to update the certificate associated with a private connection
+     *
+     * Access Level: Write
+     *
+     * https://docs.aws.amazon.com/securityagent/API_UpdatePrivateConnectionCertificate.html
+     */
+    toUpdatePrivateConnectionCertificate(): this;
     /**
      * Grants permission to update a customer managed Security Requirement
      *
@@ -905,6 +1078,14 @@ export declare class Securityagent extends PolicyStatement {
      * https://docs.aws.amazon.com/securityagent/API_UpdateSecurityRequirement.html
      */
     toUpdateSecurityRequirement(): this;
+    /**
+     * Grants permission to update a security requirement pack
+     *
+     * Access Level: Write
+     *
+     * https://docs.aws.amazon.com/securityagent/API_UpdateSecurityRequirementPack.html
+     */
+    toUpdateSecurityRequirementPack(): this;
     /**
      * Grants permission to update a target domain record
      *
@@ -1014,6 +1195,20 @@ export declare class Securityagent extends PolicyStatement {
      * - .ifAwsResourceTag()
      */
     onTargetDomain(targetDomainId: string, account?: string, region?: string, partition?: string): this;
+    /**
+     * Adds a resource of type PrivateConnection to the statement
+     *
+     * https://docs.aws.amazon.com/securityagent/latest/userguide/auth-and-access-control-iam-access-control-identity-based.html#arn-formats
+     *
+     * @param privateConnectionName - Identifier for the privateConnectionName.
+     * @param account - Account of the resource; defaults to `*`, unless using the CDK, where the default is the current Stack's account.
+     * @param region - Region of the resource; defaults to `*`, unless using the CDK, where the default is the current Stack's region.
+     * @param partition - Partition of the AWS account [aws, aws-cn, aws-us-gov]; defaults to `aws`, unless using the CDK, where the default is the current Stack's partition.
+     *
+     * Possible conditions:
+     * - .ifAwsResourceTag()
+     */
+    onPrivateConnection(privateConnectionName: string, account?: string, region?: string, partition?: string): this;
     /**
      * Filters access by the tags that are passed in the request
      *
@@ -1023,6 +1218,8 @@ export declare class Securityagent extends PolicyStatement {
      * - .toCreateAgentSpace()
      * - .toCreateApplication()
      * - .toCreateIntegration()
+     * - .toCreatePrivateConnection()
+     * - .toCreateSecurityRequirementPack()
      * - .toTagResource()
      *
      * @param tagKey The tag key to check
@@ -1041,6 +1238,7 @@ export declare class Securityagent extends PolicyStatement {
      * - Integration
      * - AgentSpace
      * - TargetDomain
+     * - PrivateConnection
      *
      * @param tagKey The tag key to check
      * @param value The value(s) to check
@@ -1056,6 +1254,8 @@ export declare class Securityagent extends PolicyStatement {
      * - .toCreateAgentSpace()
      * - .toCreateApplication()
      * - .toCreateIntegration()
+     * - .toCreatePrivateConnection()
+     * - .toCreateSecurityRequirementPack()
      * - .toTagResource()
      * - .toUntagResource()
      *