aws
diff --git a/‎clients/client-securityhub/src/commands/BatchUpdateFindingsV2Command.ts‎
Lines changed: 1 addition & 1 deletion b/‎clients/client-securityhub/src/commands/BatchUpdateFindingsV2Command.ts‎
Lines changed: 1 addition & 1 deletion
diff --git a/‎clients/client-securityhub/src/commands/CreateAggregatorV2Command.ts‎
Lines changed: 1 addition & 1 deletion b/‎clients/client-securityhub/src/commands/CreateAggregatorV2Command.ts‎
Lines changed: 1 addition & 1 deletion
diff --git a/‎clients/client-securityhub/src/commands/CreateAutomationRuleV2Command.ts‎
Lines changed: 81 additions & 6 deletions b/‎clients/client-securityhub/src/commands/CreateAutomationRuleV2Command.ts‎
Lines changed: 81 additions & 6 deletions
diff --git a/‎clients/client-securityhub/src/commands/DeleteAggregatorV2Command.ts‎
Lines changed: 1 addition & 1 deletion b/‎clients/client-securityhub/src/commands/DeleteAggregatorV2Command.ts‎
Lines changed: 1 addition & 1 deletion
diff --git a/‎clients/client-securityhub/src/commands/DeleteAutomationRuleV2Command.ts‎
Lines changed: 1 addition & 1 deletion b/‎clients/client-securityhub/src/commands/DeleteAutomationRuleV2Command.ts‎
Lines changed: 1 addition & 1 deletion
diff --git a/‎clients/client-securityhub/src/commands/DescribeProductsV2Command.ts‎
Lines changed: 1 addition & 1 deletion b/‎clients/client-securityhub/src/commands/DescribeProductsV2Command.ts‎
Lines changed: 1 addition & 1 deletion
diff --git a/‎clients/client-securityhub/src/commands/DescribeSecurityHubV2Command.ts‎
Lines changed: 1 addition & 1 deletion b/‎clients/client-securityhub/src/commands/DescribeSecurityHubV2Command.ts‎
Lines changed: 1 addition & 1 deletion
diff --git a/‎clients/client-securityhub/src/commands/DisableSecurityHubV2Command.ts‎
Lines changed: 1 addition & 1 deletion b/‎clients/client-securityhub/src/commands/DisableSecurityHubV2Command.ts‎
Lines changed: 1 addition & 1 deletion
diff --git a/‎clients/client-securityhub/src/commands/EnableSecurityHubV2Command.ts‎
Lines changed: 1 addition & 1 deletion b/‎clients/client-securityhub/src/commands/EnableSecurityHubV2Command.ts‎
Lines changed: 1 addition & 1 deletion
diff --git a/‎clients/client-securityhub/src/commands/GetAggregatorV2Command.ts‎
Lines changed: 1 addition & 1 deletion b/‎clients/client-securityhub/src/commands/GetAggregatorV2Command.ts‎
Lines changed: 1 addition & 1 deletion
@@ -33,7 +33,7 @@ export interface BatchUpdateFindingsV2CommandOutput extends BatchUpdateFindingsV
  *          Delegated administrator accounts can update findings for their account and their member accounts.
  *          Member accounts can update findings for their account. <code>BatchUpdateFindings</code> and <code>BatchUpdateFindingV2</code> both use <code>securityhub:BatchUpdateFindings</code> in the <code>Action</code> element of an IAM policy statement.
  *          You must have permission to perform the <code>securityhub:BatchUpdateFindings</code> action.
- *          Updates from <code>BatchUpdateFindingsV2</code> don't affect the value of f<code>inding_info.modified_time</code>, <code>finding_info.modified_time_dt</code>, <code>time</code>, <code>time_dt for a finding</code>. This API is in private preview and subject to change.</p>
+ *          Updates from <code>BatchUpdateFindingsV2</code> don't affect the value of f<code>inding_info.modified_time</code>, <code>finding_info.modified_time_dt</code>, <code>time</code>, <code>time_dt for a finding</code>. This API is in public preview and subject to change.</p>
  * @example
  * Use a bare-bones client and the command you need to make an API call.
  * ```javascript
 
@@ -28,7 +28,7 @@ export interface CreateAggregatorV2CommandInput extends CreateAggregatorV2Reques
 export interface CreateAggregatorV2CommandOutput extends CreateAggregatorV2Response, __MetadataBearer {}
 
 /**
- * <p>Enables aggregation across Amazon Web Services Regions. This API is in private preview and subject to change.</p>
+ * <p>Enables aggregation across Amazon Web Services Regions. This API is in public preview and subject to change.</p>
  * @example
  * Use a bare-bones client and the command you need to make an API call.
  * ```javascript
 
@@ -5,7 +5,8 @@ import { Command as $Command } from "@smithy/smithy-client";
 import { MetadataBearer as __MetadataBearer } from "@smithy/types";
 
 import { commonParams } from "../endpoint/EndpointParameters";
-import { CreateAutomationRuleV2Request, CreateAutomationRuleV2Response } from "../models/models_2";
+import { CreateAutomationRuleV2Response } from "../models/models_2";
+import { CreateAutomationRuleV2Request } from "../models/models_3";
 import { de_CreateAutomationRuleV2Command, se_CreateAutomationRuleV2Command } from "../protocols/Aws_restJson1";
 import { SecurityHubClientResolvedConfig, ServiceInputTypes, ServiceOutputTypes } from "../SecurityHubClient";
 
@@ -28,7 +29,7 @@ export interface CreateAutomationRuleV2CommandInput extends CreateAutomationRule
 export interface CreateAutomationRuleV2CommandOutput extends CreateAutomationRuleV2Response, __MetadataBearer {}
 
 /**
- * <p>Creates a V2 automation rule. This API is in private preview and subject to change.</p>
+ * <p>Creates a V2 automation rule. This API is in public preview and subject to change.</p>
  * @example
  * Use a bare-bones client and the command you need to make an API call.
  * ```javascript
@@ -48,7 +49,7 @@ export interface CreateAutomationRuleV2CommandOutput extends CreateAutomationRul
  *         { // CompositeFilter
  *           StringFilters: [ // OcsfStringFilterList
  *             { // OcsfStringFilter
- *               FieldName: "metadata.uid" || "activity_name" || "cloud.account.uid" || "cloud.provider" || "cloud.region" || "compliance.assessments.category" || "compliance.assessments.name" || "compliance.control" || "compliance.status" || "compliance.standards" || "finding_info.desc" || "finding_info.src_url" || "finding_info.title" || "finding_info.types" || "finding_info.uid" || "finding_info.related_events.uid" || "finding_info.related_events.product.uid" || "finding_info.related_events.title" || "metadata.product.name" || "metadata.product.uid" || "metadata.product.vendor_name" || "remediation.desc" || "remediation.references" || "resources.cloud_partition" || "resources.region" || "resources.type" || "resources.uid" || "severity" || "status" || "comment" || "vulnerabilities.fix_coverage" || "class_name",
+ *               FieldName: "metadata.uid" || "activity_name" || "cloud.account.uid" || "cloud.provider" || "cloud.region" || "compliance.assessments.category" || "compliance.assessments.name" || "compliance.control" || "compliance.status" || "compliance.standards" || "finding_info.desc" || "finding_info.src_url" || "finding_info.title" || "finding_info.types" || "finding_info.uid" || "finding_info.related_events.uid" || "finding_info.related_events.product.uid" || "finding_info.related_events.title" || "metadata.product.name" || "metadata.product.uid" || "metadata.product.vendor_name" || "remediation.desc" || "remediation.references" || "resources.cloud_partition" || "resources.region" || "resources.type" || "resources.uid" || "severity" || "status" || "comment" || "vulnerabilities.fix_coverage" || "class_name" || "databucket.encryption_details.algorithm" || "databucket.encryption_details.key_uid" || "databucket.file.data_classifications.classifier_details.type" || "evidences.actor.user.account.uid" || "evidences.api.operation" || "evidences.api.response.error_message" || "evidences.api.service.name" || "evidences.connection_info.direction" || "evidences.connection_info.protocol_name" || "evidences.dst_endpoint.autonomous_system.name" || "evidences.dst_endpoint.location.city" || "evidences.dst_endpoint.location.country" || "evidences.src_endpoint.autonomous_system.name" || "evidences.src_endpoint.hostname" || "evidences.src_endpoint.location.city" || "evidences.src_endpoint.location.country" || "finding_info.analytic.name" || "malware.name" || "malware_scan_info.uid" || "malware.severity" || "resources.cloud_function.layers.uid_alt" || "resources.cloud_function.runtime" || "resources.cloud_function.user.uid" || "resources.device.encryption_details.key_uid" || "resources.device.image.uid" || "resources.image.architecture" || "resources.image.registry_uid" || "resources.image.repository_name" || "resources.image.uid" || "resources.subnet_info.uid" || "resources.vpc_uid" || "vulnerabilities.affected_code.file.path" || "vulnerabilities.affected_packages.name" || "vulnerabilities.cve.epss.score" || "vulnerabilities.cve.uid" || "vulnerabilities.related_vulnerabilities" || "cloud.account.name",
  *               Filter: { // StringFilter
  *                 Value: "STRING_VALUE",
  *                 Comparison: "EQUALS" || "PREFIX" || "NOT_EQUALS" || "PREFIX_NOT_EQUALS" || "CONTAINS" || "NOT_CONTAINS" || "CONTAINS_WORD",
@@ -57,7 +58,7 @@ export interface CreateAutomationRuleV2CommandOutput extends CreateAutomationRul
  *           ],
  *           DateFilters: [ // OcsfDateFilterList
  *             { // OcsfDateFilter
- *               FieldName: "finding_info.created_time_dt" || "finding_info.first_seen_time_dt" || "finding_info.last_seen_time_dt" || "finding_info.modified_time_dt",
+ *               FieldName: "finding_info.created_time_dt" || "finding_info.first_seen_time_dt" || "finding_info.last_seen_time_dt" || "finding_info.modified_time_dt" || "resources.image.created_time_dt" || "resources.image.last_used_time_dt" || "resources.modified_time_dt",
  *               Filter: { // DateFilter
  *                 Start: "STRING_VALUE",
  *                 End: "STRING_VALUE",
@@ -78,7 +79,7 @@ export interface CreateAutomationRuleV2CommandOutput extends CreateAutomationRul
  *           ],
  *           NumberFilters: [ // OcsfNumberFilterList
  *             { // OcsfNumberFilter
- *               FieldName: "activity_id" || "compliance.status_id" || "confidence_score" || "severity_id" || "status_id" || "finding_info.related_events_count",
+ *               FieldName: "activity_id" || "compliance.status_id" || "confidence_score" || "severity_id" || "status_id" || "finding_info.related_events_count" || "evidences.api.response.code" || "evidences.dst_endpoint.autonomous_system.number" || "evidences.dst_endpoint.port" || "evidences.src_endpoint.autonomous_system.number" || "evidences.src_endpoint.port" || "resources.image.in_use_count",
  *               Filter: { // NumberFilter
  *                 Gte: Number("double"),
  *                 Lte: Number("double"),
@@ -90,14 +91,88 @@ export interface CreateAutomationRuleV2CommandOutput extends CreateAutomationRul
  *           ],
  *           MapFilters: [ // OcsfMapFilterList
  *             { // OcsfMapFilter
- *               FieldName: "resources.tags",
+ *               FieldName: "resources.tags" || "compliance.control_parameters" || "databucket.tags" || "finding_info.tags",
  *               Filter: { // MapFilter
  *                 Key: "STRING_VALUE",
  *                 Value: "STRING_VALUE",
  *                 Comparison: "EQUALS" || "NOT_EQUALS" || "CONTAINS" || "NOT_CONTAINS",
  *               },
  *             },
  *           ],
+ *           IpFilters: [ // OcsfIpFilterList
+ *             { // OcsfIpFilter
+ *               FieldName: "evidences.dst_endpoint.ip" || "evidences.src_endpoint.ip",
+ *               Filter: { // IpFilter
+ *                 Cidr: "STRING_VALUE",
+ *               },
+ *             },
+ *           ],
+ *           NestedCompositeFilters: [
+ *             {
+ *               StringFilters: [
+ *                 {
+ *                   FieldName: "metadata.uid" || "activity_name" || "cloud.account.uid" || "cloud.provider" || "cloud.region" || "compliance.assessments.category" || "compliance.assessments.name" || "compliance.control" || "compliance.status" || "compliance.standards" || "finding_info.desc" || "finding_info.src_url" || "finding_info.title" || "finding_info.types" || "finding_info.uid" || "finding_info.related_events.uid" || "finding_info.related_events.product.uid" || "finding_info.related_events.title" || "metadata.product.name" || "metadata.product.uid" || "metadata.product.vendor_name" || "remediation.desc" || "remediation.references" || "resources.cloud_partition" || "resources.region" || "resources.type" || "resources.uid" || "severity" || "status" || "comment" || "vulnerabilities.fix_coverage" || "class_name" || "databucket.encryption_details.algorithm" || "databucket.encryption_details.key_uid" || "databucket.file.data_classifications.classifier_details.type" || "evidences.actor.user.account.uid" || "evidences.api.operation" || "evidences.api.response.error_message" || "evidences.api.service.name" || "evidences.connection_info.direction" || "evidences.connection_info.protocol_name" || "evidences.dst_endpoint.autonomous_system.name" || "evidences.dst_endpoint.location.city" || "evidences.dst_endpoint.location.country" || "evidences.src_endpoint.autonomous_system.name" || "evidences.src_endpoint.hostname" || "evidences.src_endpoint.location.city" || "evidences.src_endpoint.location.country" || "finding_info.analytic.name" || "malware.name" || "malware_scan_info.uid" || "malware.severity" || "resources.cloud_function.layers.uid_alt" || "resources.cloud_function.runtime" || "resources.cloud_function.user.uid" || "resources.device.encryption_details.key_uid" || "resources.device.image.uid" || "resources.image.architecture" || "resources.image.registry_uid" || "resources.image.repository_name" || "resources.image.uid" || "resources.subnet_info.uid" || "resources.vpc_uid" || "vulnerabilities.affected_code.file.path" || "vulnerabilities.affected_packages.name" || "vulnerabilities.cve.epss.score" || "vulnerabilities.cve.uid" || "vulnerabilities.related_vulnerabilities" || "cloud.account.name",
+ *                   Filter: {
+ *                     Value: "STRING_VALUE",
+ *                     Comparison: "EQUALS" || "PREFIX" || "NOT_EQUALS" || "PREFIX_NOT_EQUALS" || "CONTAINS" || "NOT_CONTAINS" || "CONTAINS_WORD",
+ *                   },
+ *                 },
+ *               ],
+ *               DateFilters: [
+ *                 {
+ *                   FieldName: "finding_info.created_time_dt" || "finding_info.first_seen_time_dt" || "finding_info.last_seen_time_dt" || "finding_info.modified_time_dt" || "resources.image.created_time_dt" || "resources.image.last_used_time_dt" || "resources.modified_time_dt",
+ *                   Filter: {
+ *                     Start: "STRING_VALUE",
+ *                     End: "STRING_VALUE",
+ *                     DateRange: {
+ *                       Value: Number("int"),
+ *                       Unit: "DAYS",
+ *                     },
+ *                   },
+ *                 },
+ *               ],
+ *               BooleanFilters: [
+ *                 {
+ *                   FieldName: "compliance.assessments.meets_criteria" || "vulnerabilities.is_exploit_available" || "vulnerabilities.is_fix_available",
+ *                   Filter: {
+ *                     Value: true || false,
+ *                   },
+ *                 },
+ *               ],
+ *               NumberFilters: [
+ *                 {
+ *                   FieldName: "activity_id" || "compliance.status_id" || "confidence_score" || "severity_id" || "status_id" || "finding_info.related_events_count" || "evidences.api.response.code" || "evidences.dst_endpoint.autonomous_system.number" || "evidences.dst_endpoint.port" || "evidences.src_endpoint.autonomous_system.number" || "evidences.src_endpoint.port" || "resources.image.in_use_count",
+ *                   Filter: {
+ *                     Gte: Number("double"),
+ *                     Lte: Number("double"),
+ *                     Eq: Number("double"),
+ *                     Gt: Number("double"),
+ *                     Lt: Number("double"),
+ *                   },
+ *                 },
+ *               ],
+ *               MapFilters: [
+ *                 {
+ *                   FieldName: "resources.tags" || "compliance.control_parameters" || "databucket.tags" || "finding_info.tags",
+ *                   Filter: {
+ *                     Key: "STRING_VALUE",
+ *                     Value: "STRING_VALUE",
+ *                     Comparison: "EQUALS" || "NOT_EQUALS" || "CONTAINS" || "NOT_CONTAINS",
+ *                   },
+ *                 },
+ *               ],
+ *               IpFilters: [
+ *                 {
+ *                   FieldName: "evidences.dst_endpoint.ip" || "evidences.src_endpoint.ip",
+ *                   Filter: {
+ *                     Cidr: "STRING_VALUE",
+ *                   },
+ *                 },
+ *               ],
+ *               NestedCompositeFilters: "<CompositeFilterList>",
+ *               Operator: "AND" || "OR",
+ *             },
+ *           ],
  *           Operator: "AND" || "OR",
  *         },
  *       ],
 
@@ -28,7 +28,7 @@ export interface DeleteAggregatorV2CommandInput extends DeleteAggregatorV2Reques
 export interface DeleteAggregatorV2CommandOutput extends DeleteAggregatorV2Response, __MetadataBearer {}
 
 /**
- * <p>Deletes the Aggregator V2. This API is in private preview and subject to change.</p>
+ * <p>Deletes the Aggregator V2. This API is in public preview and subject to change.</p>
  * @example
  * Use a bare-bones client and the command you need to make an API call.
  * ```javascript
 
@@ -28,7 +28,7 @@ export interface DeleteAutomationRuleV2CommandInput extends DeleteAutomationRule
 export interface DeleteAutomationRuleV2CommandOutput extends DeleteAutomationRuleV2Response, __MetadataBearer {}
 
 /**
- * <p>Deletes a V2 automation rule. This API is in private preview and subject to change.</p>
+ * <p>Deletes a V2 automation rule. This API is in public preview and subject to change.</p>
  * @example
  * Use a bare-bones client and the command you need to make an API call.
  * ```javascript
 
@@ -28,7 +28,7 @@ export interface DescribeProductsV2CommandInput extends DescribeProductsV2Reques
 export interface DescribeProductsV2CommandOutput extends DescribeProductsV2Response, __MetadataBearer {}
 
 /**
- * <p>Gets information about the product integration. This API is in private preview and subject to change.</p>
+ * <p>Gets information about the product integration. This API is in public preview and subject to change.</p>
  * @example
  * Use a bare-bones client and the command you need to make an API call.
  * ```javascript
 
@@ -28,7 +28,7 @@ export interface DescribeSecurityHubV2CommandInput extends DescribeSecurityHubV2
 export interface DescribeSecurityHubV2CommandOutput extends DescribeSecurityHubV2Response, __MetadataBearer {}
 
 /**
- * <p>Returns details about the service resource in your account. This API is in private preview and subject to change.</p>
+ * <p>Returns details about the service resource in your account. This API is in public preview and subject to change.</p>
  * @example
  * Use a bare-bones client and the command you need to make an API call.
  * ```javascript
 
@@ -28,7 +28,7 @@ export interface DisableSecurityHubV2CommandInput extends DisableSecurityHubV2Re
 export interface DisableSecurityHubV2CommandOutput extends DisableSecurityHubV2Response, __MetadataBearer {}
 
 /**
- * <p>Disable the service for the current Amazon Web Services Region or specified Amazon Web Services Region. This API is in private preview and subject to change.</p>
+ * <p>Disable the service for the current Amazon Web Services Region or specified Amazon Web Services Region. This API is in public preview and subject to change.</p>
  * @example
  * Use a bare-bones client and the command you need to make an API call.
  * ```javascript
 
@@ -28,7 +28,7 @@ export interface EnableSecurityHubV2CommandInput extends EnableSecurityHubV2Requ
 export interface EnableSecurityHubV2CommandOutput extends EnableSecurityHubV2Response, __MetadataBearer {}
 
 /**
- * <p>Enables the service in account for the current Amazon Web Services Region or specified Amazon Web Services Region. This API is in private preview and subject to change.</p>
+ * <p>Enables the service in account for the current Amazon Web Services Region or specified Amazon Web Services Region. This API is in public preview and subject to change.</p>
  * @example
  * Use a bare-bones client and the command you need to make an API call.
  * ```javascript
 
@@ -28,7 +28,7 @@ export interface GetAggregatorV2CommandInput extends GetAggregatorV2Request {}
 export interface GetAggregatorV2CommandOutput extends GetAggregatorV2Response, __MetadataBearer {}
 
 /**
- * <p>Returns the configuration of the specified Aggregator V2. This API is in private preview and subject to change.</p>
+ * <p>Returns the configuration of the specified Aggregator V2. This API is in public preview and subject to change.</p>
  * @example
  * Use a bare-bones client and the command you need to make an API call.
  * ```javascript