From 511c677be3b02d3055323c1cbfccb410fb1e2154 Mon Sep 17 00:00:00 2001
From: awstools <awstools@amazon.com>
Date: Wed, 15 May 2024 18:11:49 +0000
Subject: [PATCH] docs(client-securityhub): Documentation-only update for AWS
 Security Hub

---
 .../client-securityhub/src/models/models_0.ts |   8 ++
 .../client-securityhub/src/models/models_1.ts |  30 +++-
 .../client-securityhub/src/models/models_2.ts |  53 +++++--
 .../sdk-codegen/aws-models/securityhub.json   | 132 +++++++++---------
 4 files changed, 141 insertions(+), 82 deletions(-)

diff --git a/clients/client-securityhub/src/models/models_0.ts b/clients/client-securityhub/src/models/models_0.ts
index 4fe4bb2f75480..8489b4880398a 100644
--- a/clients/client-securityhub/src/models/models_0.ts
+++ b/clients/client-securityhub/src/models/models_0.ts
@@ -219,6 +219,7 @@ export interface AccountDetails {
 export interface AwsApiCallActionDomainDetails {
   /**
    * <p>The name of the DNS domain that issued the API call.</p>
+   *          <p>Length Constraints: 128.</p>
    * @public
    */
   Domain?: string;
@@ -349,12 +350,14 @@ export interface ActionRemoteIpDetails {
 export interface AwsApiCallAction {
   /**
    * <p>The name of the API method that was issued.</p>
+   *          <p>Length Constraints: 128.</p>
    * @public
    */
   Api?: string;
 
   /**
    * <p>The name of the Amazon Web Services service that the API method belongs to.</p>
+   *          <p>Length Constraints: 128.</p>
    * @public
    */
   ServiceName?: string;
@@ -459,12 +462,14 @@ export interface AwsApiCallAction {
 export interface DnsRequestAction {
   /**
    * <p>The DNS domain that is associated with the DNS request.</p>
+   *          <p>Length Constraints: 128.</p>
    * @public
    */
   Domain?: string;
 
   /**
    * <p>The protocol that was used for the DNS request.</p>
+   *          <p>Length Constraints: Minimum length of 1. Maximum length of 64.</p>
    * @public
    */
   Protocol?: string;
@@ -491,6 +496,7 @@ export interface ActionLocalPortDetails {
 
   /**
    * <p>The port name of the local connection.</p>
+   *          <p>Length Constraints: 128.</p>
    * @public
    */
   PortName?: string;
@@ -510,6 +516,7 @@ export interface ActionRemotePortDetails {
 
   /**
    * <p>The port name of the remote connection.</p>
+   *          <p>Length Constraints: 128.</p>
    * @public
    */
   PortName?: string;
@@ -549,6 +556,7 @@ export interface NetworkConnectionAction {
 
   /**
    * <p>The protocol used to make the network connection request.</p>
+   *          <p>Length Constraints: Minimum length of 1. Maximum length of 64.</p>
    * @public
    */
   Protocol?: string;
diff --git a/clients/client-securityhub/src/models/models_1.ts b/clients/client-securityhub/src/models/models_1.ts
index 1181930860af2..d796507f2298c 100644
--- a/clients/client-securityhub/src/models/models_1.ts
+++ b/clients/client-securityhub/src/models/models_1.ts
@@ -10016,8 +10016,8 @@ export interface Compliance {
    *                         <code>NOT_AVAILABLE</code> - Check could not be performed due to a service
    *                      outage, API error, or because the result of the Config evaluation was
    *                         <code>NOT_APPLICABLE</code>. If the Config evaluation result was
-   *                      <code>NOT_APPLICABLE</code>, then after 3 days, Security Hub automatically archives
-   *                      the finding.</p>
+   *                      <code>NOT_APPLICABLE</code> for a Security Hub control, Security Hub automatically archives
+   *                      the finding after 3 days.</p>
    *                   </li>
    *                </ul>
    *             </li>
@@ -10029,6 +10029,7 @@ export interface Compliance {
   /**
    * <p>For a control, the industry or regulatory framework requirements that are related to the
    *          control. The check for that control is aligned with these requirements.</p>
+   *          <p>Array Members: Maximum number of 32 items.</p>
    * @public
    */
   RelatedRequirements?: string[];
@@ -10079,6 +10080,7 @@ export interface FindingProviderSeverity {
 
   /**
    * <p>The finding provider's original value for the severity.</p>
+   *          <p>Length Constraints: Minimum length of 1. Maximum length of 64.</p>
    * @public
    */
   Original?: string;
@@ -10158,6 +10160,7 @@ export interface GeneratorDetails {
    * <p>
    *             An array of tags used to identify the detector associated with the finding.
    *         </p>
+   *          <p>Array Members: Minimum number of 0 items. Maximum number of 10 items.</p>
    * @public
    */
   Labels?: string[];
@@ -10212,6 +10215,7 @@ export type MalwareType = (typeof MalwareType)[keyof typeof MalwareType];
 export interface Malware {
   /**
    * <p>The name of the malware that was observed.</p>
+   *          <p>Length Constraints: Minimum of 1. Maximum of 64.</p>
    * @public
    */
   Name: string | undefined;
@@ -10224,6 +10228,7 @@ export interface Malware {
 
   /**
    * <p>The file system path of the malware that was observed.</p>
+   *          <p>Length Constraints: Minimum of 1. Maximum of 512.</p>
    * @public
    */
   Path?: string;
@@ -10280,6 +10285,7 @@ export interface Network {
 
   /**
    * <p>The protocol of network-related information about a finding.</p>
+   *          <p>Length Constraints: Minimum of 1. Maximum of 16.</p>
    * @public
    */
   Protocol?: string;
@@ -10310,6 +10316,7 @@ export interface Network {
 
   /**
    * <p>The source domain of network-related information about a finding.</p>
+   *          <p>Length Constraints: Minimum of 1. Maximum of 128.</p>
    * @public
    */
   SourceDomain?: string;
@@ -10341,6 +10348,7 @@ export interface Network {
 
   /**
    * <p>The destination domain of network-related information about a finding.</p>
+   *          <p>Length Constraints: Minimum of 1. Maximum of 128.</p>
    * @public
    */
   DestinationDomain?: string;
@@ -10372,6 +10380,7 @@ export interface NetworkPathComponentDetails {
 export interface NetworkHeader {
   /**
    * <p>The protocol used for the component.</p>
+   *          <p>Length Constraints: Minimum of 1. Maximum of 16.</p>
    * @public
    */
   Protocol?: string;
@@ -10396,12 +10405,14 @@ export interface NetworkHeader {
 export interface NetworkPathComponent {
   /**
    * <p>The identifier of a component in the network path.</p>
+   *          <p>Length Constraints: Minimum of 1. Maximum of 32.</p>
    * @public
    */
   ComponentId?: string;
 
   /**
    * <p>The type of component.</p>
+   *          <p>Length Constraints: Minimum of 1. Maximum of 32.</p>
    * @public
    */
   ComponentType?: string;
@@ -10428,6 +10439,7 @@ export interface NetworkPathComponent {
 export interface Note {
   /**
    * <p>The text of a note.</p>
+   *          <p>Length Constraints: Minimum of 1. Maximum of 512.</p>
    * @public
    */
   Text: string | undefined;
@@ -10479,6 +10491,7 @@ export interface PatchSummary {
   /**
    * <p>The identifier of the compliance standard that was used to determine the patch
    *          compliance status.</p>
+   *          <p>Length Constraints: Minimum length of 1. Maximum length of 256.</p>
    * @public
    */
   Id: string | undefined;
@@ -10486,6 +10499,7 @@ export interface PatchSummary {
   /**
    * <p>The number of patches from the compliance standard that were installed
    *          successfully.</p>
+   *          <p>The value can be an integer from <code>0</code> to <code>100000</code>.</p>
    * @public
    */
   InstalledCount?: number;
@@ -10493,18 +10507,21 @@ export interface PatchSummary {
   /**
    * <p>The number of patches that are part of the compliance standard but are not installed.
    *          The count includes patches that failed to install.</p>
+   *          <p>The value can be an integer from <code>0</code> to <code>100000</code>.</p>
    * @public
    */
   MissingCount?: number;
 
   /**
    * <p>The number of patches from the compliance standard that failed to install.</p>
+   *          <p>The value can be an integer from <code>0</code> to <code>100000</code>.</p>
    * @public
    */
   FailedCount?: number;
 
   /**
    * <p>The number of installed patches that are not part of the compliance standard.</p>
+   *          <p>The value can be an integer from <code>0</code> to <code>100000</code>.</p>
    * @public
    */
   InstalledOtherCount?: number;
@@ -10512,6 +10529,7 @@ export interface PatchSummary {
   /**
    * <p>The number of patches that are installed but are also on a list of patches that the
    *          customer rejected.</p>
+   *          <p>The value can be an integer from <code>0</code> to <code>100000</code>.</p>
    * @public
    */
   InstalledRejectedCount?: number;
@@ -10519,6 +10537,7 @@ export interface PatchSummary {
   /**
    * <p>The number of patches that were applied, but that require the instance to be rebooted in
    *          order to be marked as installed.</p>
+   *          <p>The value can be an integer from <code>0</code> to <code>100000</code>.</p>
    * @public
    */
   InstalledPendingReboot?: number;
@@ -10587,13 +10606,15 @@ export interface PatchSummary {
 
   /**
    * <p>The reboot option specified for the instance.</p>
+   *          <p>Length Constraints: Minimum length of 1. Maximum length of 256.</p>
    * @public
    */
   RebootOption?: string;
 
   /**
    * <p>The type of patch operation performed. For Patch Manager, the values are
-   *             <code>SCAN</code> and <code>INSTALL</code>. </p>
+   *             <code>SCAN</code> and <code>INSTALL</code>.</p>
+   *          <p>Length Constraints: Minimum length of 1. Maximum length of 256.</p>
    * @public
    */
   Operation?: string;
@@ -10606,12 +10627,14 @@ export interface PatchSummary {
 export interface ProcessDetails {
   /**
    * <p>The name of the process.</p>
+   *          <p>Length Constraints: Minimum of 1. Maximum of 64.</p>
    * @public
    */
   Name?: string;
 
   /**
    * <p>The path to the process executable.</p>
+   *          <p>Length Constraints: Minimum of 1. Maximum of 512.</p>
    * @public
    */
   Path?: string;
@@ -10712,6 +10735,7 @@ export type RecordState = (typeof RecordState)[keyof typeof RecordState];
 export interface Recommendation {
   /**
    * <p>Describes the recommended steps to take to remediate an issue identified in a finding.</p>
+   *          <p>Length Constraints: Minimum of 1 length. Maximum of 512 length.</p>
    * @public
    */
   Text?: string;
diff --git a/clients/client-securityhub/src/models/models_2.ts b/clients/client-securityhub/src/models/models_2.ts
index 0e29f28d9d885..7fa544de0c9a9 100644
--- a/clients/client-securityhub/src/models/models_2.ts
+++ b/clients/client-securityhub/src/models/models_2.ts
@@ -1851,6 +1851,7 @@ export interface Resource {
    *          is an EC2 instance, then set <code>Type</code> to <code>AwsEc2Instance</code>.</p>
    *          <p>If the resource does not match any of the provided types, then set <code>Type</code> to
    *             <code>Other</code>. </p>
+   *          <p>Length Constraints: Minimum length of 1. Maximum length of 256.</p>
    * @public
    */
   Type: string | undefined;
@@ -1869,6 +1870,7 @@ export interface Resource {
 
   /**
    * <p>The canonical Amazon Web Services external Region name where this resource is located.</p>
+   *          <p>Length Constraints: Minimum length of 1. Maximum length of 16.</p>
    * @public
    */
   Region?: string;
@@ -1881,7 +1883,7 @@ export interface Resource {
 
   /**
    * <p>A list of Amazon Web Services tags associated with a resource at the time the finding was
-   *          processed.</p>
+   *           processed. Tags must follow <a href="https://docs.aws.amazon.com/tag-editor/latest/userguide/tagging.html#tag-conventions">Amazon Web Services tag naming limits and requirements</a>.</p>
    * @public
    */
   Tags?: Record<string, string>;
@@ -1992,6 +1994,7 @@ export interface Severity {
   /**
    * <p>Deprecated. The normalized severity of a finding.
    *          Instead of providing <code>Normalized</code>, provide <code>Label</code>.</p>
+   *          <p>The value of <code>Normalized</code> can be an integer between <code>0</code> and <code>100</code>.</p>
    *          <p>If you provide <code>Label</code> and do not provide <code>Normalized</code>, then
    *             <code>Normalized</code> is set automatically as follows.</p>
    *          <ul>
@@ -2022,6 +2025,7 @@ export interface Severity {
 
   /**
    * <p>The native severity from the finding product that generated the finding.</p>
+   *          <p>Length Constraints: Minimum length of 1. Maximum length of 64.</p>
    * @public
    */
   Original?: string;
@@ -2082,6 +2086,7 @@ export interface ThreatIntelIndicator {
 
   /**
    * <p>The value of a threat intelligence indicator.</p>
+   *          <p>Length Constraints: Minimum of 1 length. Maximum of 512 length.</p>
    * @public
    */
   Value?: string;
@@ -2126,6 +2131,7 @@ export interface ThreatIntelIndicator {
 
   /**
    * <p>The source of the threat intelligence indicator.</p>
+   *          <p>Length Constraints: Minimum of 1 length. Maximum of 64 length.</p>
    * @public
    */
   Source?: string;
@@ -2147,6 +2153,7 @@ export interface FilePaths {
   /**
    * <p>Path to the infected or suspicious file on the resource it was detected on.
    * 		</p>
+   *          <p>Length Constraints: Minimum of 1 length. Maximum of 128 length.</p>
    * @public
    */
   FilePath?: string;
@@ -2154,6 +2161,7 @@ export interface FilePaths {
   /**
    * <p>The name of the infected or suspicious file corresponding to the hash.
    * 		</p>
+   *          <p>Length Constraints: Minimum of 1 length. Maximum of 128 length.</p>
    * @public
    */
   FileName?: string;
@@ -2161,6 +2169,7 @@ export interface FilePaths {
   /**
    * <p>The Amazon Resource Name (ARN) of the resource on which the threat was detected.
    * 		</p>
+   *          <p>Length Constraints: Minimum of 1 length. Maximum of 128 length.</p>
    * @public
    */
   ResourceId?: string;
@@ -2168,6 +2177,7 @@ export interface FilePaths {
   /**
    * <p>The hash value for the infected or suspicious file.
    * 		</p>
+   *          <p>Length Constraints: Minimum of 1 length. Maximum of 128 length.</p>
    * @public
    */
   Hash?: string;
@@ -2182,6 +2192,7 @@ export interface Threat {
   /**
    * <p>The name of the threat.
    * 		</p>
+   *          <p>Length Constraints: Minimum of 1 length. Maximum of 128 length.</p>
    * @public
    */
   Name?: string;
@@ -2189,6 +2200,7 @@ export interface Threat {
   /**
    * <p>The severity of the threat.
    * 		</p>
+   *          <p>Length Constraints: Minimum of 1 length. Maximum of 128 length.</p>
    * @public
    */
   Severity?: string;
@@ -2203,6 +2215,7 @@ export interface Threat {
   /**
    * <p>Provides information about the file paths that were affected by the threat.
    * 		</p>
+   *          <p>Array Members: Minimum number of 1 item. Maximum number of 5 items.</p>
    * @public
    */
   FilePaths?: FilePaths[];
@@ -2683,13 +2696,14 @@ export type WorkflowState = (typeof WorkflowState)[keyof typeof WorkflowState];
  */
 export interface AwsSecurityFinding {
   /**
-   * <p>The schema version that a finding is formatted for.</p>
+   * <p>The schema version that a finding is formatted for. The value is <code>2018-10-08</code>.</p>
    * @public
    */
   SchemaVersion: string | undefined;
 
   /**
    * <p>The security findings provider-specific identifier for a finding.</p>
+   *          <p>Length Constraints: Minimum length of 1. Maximum length of 512.</p>
    * @public
    */
   Id: string | undefined;
@@ -2698,6 +2712,7 @@ export interface AwsSecurityFinding {
    * <p>The ARN generated by Security Hub that uniquely identifies a product that generates findings.
    *          This can be the ARN for a third-party product that is integrated with Security Hub, or the ARN for
    *          a custom integration.</p>
+   *          <p>Length Constraints: Minimum length of 12. Maximum length of 2048.</p>
    * @public
    */
   ProductArn: string | undefined;
@@ -2706,6 +2721,7 @@ export interface AwsSecurityFinding {
    * <p>The name of the product that generated the finding.</p>
    *          <p>Security Hub populates this attribute automatically for each finding. You cannot update this attribute with <code>BatchImportFindings</code> or <code>BatchUpdateFindings</code>. The exception to this is a custom integration.</p>
    *          <p>When you use the Security Hub console or API to filter findings by product name, you use this attribute.</p>
+   *          <p>Length Constraints: Minimum length of 1. Maximum length of 128.</p>
    * @public
    */
   ProductName?: string;
@@ -2714,6 +2730,8 @@ export interface AwsSecurityFinding {
    * <p>The name of the company for the product that generated the finding.</p>
    *          <p>Security Hub populates this attribute automatically for each finding. You cannot update this attribute with <code>BatchImportFindings</code> or <code>BatchUpdateFindings</code>. The exception to this is a custom integration.</p>
    *          <p>When you use the Security Hub console or API to filter findings by company name, you use this attribute.</p>
+   *          <p>Length Constraints: Minimum length of 1. Maximum length of 128.
+   *        </p>
    * @public
    */
   CompanyName?: string;
@@ -2721,6 +2739,8 @@ export interface AwsSecurityFinding {
   /**
    * <p>The Region from which the finding was generated.</p>
    *          <p>Security Hub populates this attribute automatically for each finding. You cannot update it using <code>BatchImportFindings</code> or <code>BatchUpdateFindings</code>.</p>
+   *          <p>Length Constraints: Minimum length of 1. Maximum length of 16.
+   *        </p>
    * @public
    */
   Region?: string;
@@ -2728,13 +2748,15 @@ export interface AwsSecurityFinding {
   /**
    * <p>The identifier for the solution-specific component (a discrete unit of logic) that
    *          generated a finding. In various security findings providers' solutions, this generator can
-   *          be called a rule, a check, a detector, a plugin, etc. </p>
+   *          be called a rule, a check, a detector, a plugin, or something else.</p>
+   *          <p>Length Constraints: Minimum length of 1. Maximum length of 512.</p>
    * @public
    */
   GeneratorId: string | undefined;
 
   /**
    * <p>The Amazon Web Services account ID that a finding is generated in.</p>
+   *          <p>Length Constraints: 12.</p>
    * @public
    */
   AwsAccountId: string | undefined;
@@ -2744,6 +2766,7 @@ export interface AwsSecurityFinding {
    *          that classify a finding.</p>
    *          <p>Valid namespace values are: Software and Configuration Checks | TTPs | Effects | Unusual
    *          Behaviors | Sensitive Data Identifications</p>
+   *          <p>Array Members: Maximum number of 50 items.</p>
    * @public
    */
   Types?: string[];
@@ -2899,19 +2922,15 @@ export interface AwsSecurityFinding {
   Criticality?: number;
 
   /**
-   * <p>A finding's title.</p>
-   *          <note>
-   *             <p>In this release, <code>Title</code> is a required property.</p>
-   *          </note>
+   * <p>A finding's title. <code>Title</code> is a required property.</p>
+   *          <p>Length Constraints: Minimum length of 1. Maximum length of 256.</p>
    * @public
    */
   Title: string | undefined;
 
   /**
-   * <p>A finding's description.</p>
-   *          <note>
-   *             <p>In this release, <code>Description</code> is a required property.</p>
-   *          </note>
+   * <p>A finding's description. <code>Description</code> is a required property.</p>
+   *          <p>Length Constraints: Minimum length of 1. Maximum length of 1024.</p>
    * @public
    */
   Description: string | undefined;
@@ -2939,13 +2958,15 @@ export interface AwsSecurityFinding {
 
   /**
    * <p>A list of name/value string pairs associated with the finding. These are custom,
-   *          user-defined fields added to a finding. </p>
+   *          user-defined fields added to a finding.</p>
+   *          <p>Can contain up to 50 key-value pairs. For each key-value pair, the key can contain up to 128 characters, and the value can contain up to 1024 characters.</p>
    * @public
    */
   UserDefinedFields?: Record<string, string>;
 
   /**
    * <p>A list of malware related to a finding.</p>
+   *          <p>Array Members: Maximum number of 5 items.</p>
    * @public
    */
   Malware?: Malware[];
@@ -2972,12 +2993,14 @@ export interface AwsSecurityFinding {
   /**
    * <p>Details about the threat detected in a security finding and the file paths that were affected by the threat.
    *       </p>
+   *          <p>Array Members: Minimum number of 1 item. Maximum number of 32 items.</p>
    * @public
    */
   Threats?: Threat[];
 
   /**
    * <p>Threat intelligence details related to a finding.</p>
+   *          <p>Array Members: Minimum number of 1 item. Maximum number of 5 items.</p>
    * @public
    */
   ThreatIntelIndicators?: ThreatIntelIndicator[];
@@ -2985,6 +3008,7 @@ export interface AwsSecurityFinding {
   /**
    * <p>A set of resource data types that describe the resources that the finding refers
    *          to.</p>
+   *          <p>Array Members: Minimum number of 1 item. Maximum number of 32 items.</p>
    * @public
    */
   Resources: Resource[] | undefined;
@@ -3025,6 +3049,7 @@ export interface AwsSecurityFinding {
 
   /**
    * <p>A list of related findings.</p>
+   *          <p>Array Members: Minimum number of 1 item. Maximum number of 10 items.</p>
    * @public
    */
   RelatedFindings?: RelatedFinding[];
@@ -3077,7 +3102,7 @@ export interface AwsSecurityFinding {
   GeneratorDetails?: GeneratorDetails;
 
   /**
-   * <p>A imestamp that indicates when Security Hub received a finding and begins to process it.</p>
+   * <p>A timestamp that indicates when Security Hub received a finding and begins to process it.</p>
    *          <p>This field accepts only the specified formats. Timestamps
    * can end with <code>Z</code> or <code>("+" / "-") time-hour [":" time-minute]</code>. The time-secfrac after seconds is limited
    * to a maximum of 9 digits. The offset is bounded by +/-18:00. Here are valid timestamp formats with examples:</p>
@@ -3110,6 +3135,8 @@ export interface AwsSecurityFinding {
   /**
    * <p>The name of the Amazon Web Services account from which a finding was generated.
    *         </p>
+   *          <p>Length Constraints: Minimum length of 1. Maximum length of 50.
+   *         </p>
    * @public
    */
   AwsAccountName?: string;
diff --git a/codegen/sdk-codegen/aws-models/securityhub.json b/codegen/sdk-codegen/aws-models/securityhub.json
index cb3ad20afa42b..1fdb08347ec55 100644
--- a/codegen/sdk-codegen/aws-models/securityhub.json
+++ b/codegen/sdk-codegen/aws-models/securityhub.json
@@ -307,7 +307,7 @@
         "PortName": {
           "target": "com.amazonaws.securityhub#NonEmptyString",
           "traits": {
-            "smithy.api#documentation": "<p>The port name of the local connection.</p>"
+            "smithy.api#documentation": "<p>The port name of the local connection.</p>\n         <p>Length Constraints: 128.</p>"
           }
         }
       },
@@ -365,7 +365,7 @@
         "PortName": {
           "target": "com.amazonaws.securityhub#NonEmptyString",
           "traits": {
-            "smithy.api#documentation": "<p>The port name of the remote connection.</p>"
+            "smithy.api#documentation": "<p>The port name of the remote connection.</p>\n         <p>Length Constraints: 128.</p>"
           }
         }
       },
@@ -1494,13 +1494,13 @@
         "Api": {
           "target": "com.amazonaws.securityhub#NonEmptyString",
           "traits": {
-            "smithy.api#documentation": "<p>The name of the API method that was issued.</p>"
+            "smithy.api#documentation": "<p>The name of the API method that was issued.</p>\n         <p>Length Constraints: 128.</p>"
           }
         },
         "ServiceName": {
           "target": "com.amazonaws.securityhub#NonEmptyString",
           "traits": {
-            "smithy.api#documentation": "<p>The name of the Amazon Web Services service that the API method belongs to.</p>"
+            "smithy.api#documentation": "<p>The name of the Amazon Web Services service that the API method belongs to.</p>\n         <p>Length Constraints: 128.</p>"
           }
         },
         "CallerType": {
@@ -1550,7 +1550,7 @@
         "Domain": {
           "target": "com.amazonaws.securityhub#NonEmptyString",
           "traits": {
-            "smithy.api#documentation": "<p>The name of the DNS domain that issued the API call.</p>"
+            "smithy.api#documentation": "<p>The name of the DNS domain that issued the API call.</p>\n         <p>Length Constraints: 128.</p>"
           }
         }
       },
@@ -18209,7 +18209,7 @@
           "target": "com.amazonaws.securityhub#NonEmptyString",
           "traits": {
             "smithy.api#clientOptional": {},
-            "smithy.api#documentation": "<p>The schema version that a finding is formatted for.</p>",
+            "smithy.api#documentation": "<p>The schema version that a finding is formatted for. The value is <code>2018-10-08</code>.</p>",
             "smithy.api#required": {}
           }
         },
@@ -18217,7 +18217,7 @@
           "target": "com.amazonaws.securityhub#NonEmptyString",
           "traits": {
             "smithy.api#clientOptional": {},
-            "smithy.api#documentation": "<p>The security findings provider-specific identifier for a finding.</p>",
+            "smithy.api#documentation": "<p>The security findings provider-specific identifier for a finding.</p>\n         <p>Length Constraints: Minimum length of 1. Maximum length of 512.</p>",
             "smithy.api#required": {}
           }
         },
@@ -18225,33 +18225,33 @@
           "target": "com.amazonaws.securityhub#NonEmptyString",
           "traits": {
             "smithy.api#clientOptional": {},
-            "smithy.api#documentation": "<p>The ARN generated by Security Hub that uniquely identifies a product that generates findings.\n         This can be the ARN for a third-party product that is integrated with Security Hub, or the ARN for\n         a custom integration.</p>",
+            "smithy.api#documentation": "<p>The ARN generated by Security Hub that uniquely identifies a product that generates findings.\n         This can be the ARN for a third-party product that is integrated with Security Hub, or the ARN for\n         a custom integration.</p>\n         <p>Length Constraints: Minimum length of 12. Maximum length of 2048.</p>",
             "smithy.api#required": {}
           }
         },
         "ProductName": {
           "target": "com.amazonaws.securityhub#NonEmptyString",
           "traits": {
-            "smithy.api#documentation": "<p>The name of the product that generated the finding.</p>\n         <p>Security Hub populates this attribute automatically for each finding. You cannot update this attribute with <code>BatchImportFindings</code> or <code>BatchUpdateFindings</code>. The exception to this is a custom integration.</p>\n         <p>When you use the Security Hub console or API to filter findings by product name, you use this attribute.</p>"
+            "smithy.api#documentation": "<p>The name of the product that generated the finding.</p>\n         <p>Security Hub populates this attribute automatically for each finding. You cannot update this attribute with <code>BatchImportFindings</code> or <code>BatchUpdateFindings</code>. The exception to this is a custom integration.</p>\n         <p>When you use the Security Hub console or API to filter findings by product name, you use this attribute.</p>\n         <p>Length Constraints: Minimum length of 1. Maximum length of 128.</p>"
           }
         },
         "CompanyName": {
           "target": "com.amazonaws.securityhub#NonEmptyString",
           "traits": {
-            "smithy.api#documentation": "<p>The name of the company for the product that generated the finding.</p>\n         <p>Security Hub populates this attribute automatically for each finding. You cannot update this attribute with <code>BatchImportFindings</code> or <code>BatchUpdateFindings</code>. The exception to this is a custom integration.</p>\n         <p>When you use the Security Hub console or API to filter findings by company name, you use this attribute.</p>"
+            "smithy.api#documentation": "<p>The name of the company for the product that generated the finding.</p>\n         <p>Security Hub populates this attribute automatically for each finding. You cannot update this attribute with <code>BatchImportFindings</code> or <code>BatchUpdateFindings</code>. The exception to this is a custom integration.</p>\n         <p>When you use the Security Hub console or API to filter findings by company name, you use this attribute.</p>\n         <p>Length Constraints: Minimum length of 1. Maximum length of 128.\n       </p>"
           }
         },
         "Region": {
           "target": "com.amazonaws.securityhub#NonEmptyString",
           "traits": {
-            "smithy.api#documentation": "<p>The Region from which the finding was generated.</p>\n         <p>Security Hub populates this attribute automatically for each finding. You cannot update it using <code>BatchImportFindings</code> or <code>BatchUpdateFindings</code>.</p>"
+            "smithy.api#documentation": "<p>The Region from which the finding was generated.</p>\n         <p>Security Hub populates this attribute automatically for each finding. You cannot update it using <code>BatchImportFindings</code> or <code>BatchUpdateFindings</code>.</p>\n         <p>Length Constraints: Minimum length of 1. Maximum length of 16.\n       </p>"
           }
         },
         "GeneratorId": {
           "target": "com.amazonaws.securityhub#NonEmptyString",
           "traits": {
             "smithy.api#clientOptional": {},
-            "smithy.api#documentation": "<p>The identifier for the solution-specific component (a discrete unit of logic) that\n         generated a finding. In various security findings providers' solutions, this generator can\n         be called a rule, a check, a detector, a plugin, etc. </p>",
+            "smithy.api#documentation": "<p>The identifier for the solution-specific component (a discrete unit of logic) that\n         generated a finding. In various security findings providers' solutions, this generator can\n         be called a rule, a check, a detector, a plugin, or something else.</p>\n         <p>Length Constraints: Minimum length of 1. Maximum length of 512.</p>",
             "smithy.api#required": {}
           }
         },
@@ -18259,14 +18259,14 @@
           "target": "com.amazonaws.securityhub#NonEmptyString",
           "traits": {
             "smithy.api#clientOptional": {},
-            "smithy.api#documentation": "<p>The Amazon Web Services account ID that a finding is generated in.</p>",
+            "smithy.api#documentation": "<p>The Amazon Web Services account ID that a finding is generated in.</p>\n         <p>Length Constraints: 12.</p>",
             "smithy.api#required": {}
           }
         },
         "Types": {
           "target": "com.amazonaws.securityhub#TypeList",
           "traits": {
-            "smithy.api#documentation": "<p>One or more finding types in the format of <code>namespace/category/classifier</code>\n         that classify a finding.</p>\n         <p>Valid namespace values are: Software and Configuration Checks | TTPs | Effects | Unusual\n         Behaviors | Sensitive Data Identifications</p>"
+            "smithy.api#documentation": "<p>One or more finding types in the format of <code>namespace/category/classifier</code>\n         that classify a finding.</p>\n         <p>Valid namespace values are: Software and Configuration Checks | TTPs | Effects | Unusual\n         Behaviors | Sensitive Data Identifications</p>\n         <p>Array Members: Maximum number of 50 items.</p>"
           }
         },
         "FirstObservedAt": {
@@ -18319,7 +18319,7 @@
           "target": "com.amazonaws.securityhub#NonEmptyString",
           "traits": {
             "smithy.api#clientOptional": {},
-            "smithy.api#documentation": "<p>A finding's title.</p>\n         <note>\n            <p>In this release, <code>Title</code> is a required property.</p>\n         </note>",
+            "smithy.api#documentation": "<p>A finding's title. <code>Title</code> is a required property.</p>\n         <p>Length Constraints: Minimum length of 1. Maximum length of 256.</p>",
             "smithy.api#required": {}
           }
         },
@@ -18327,7 +18327,7 @@
           "target": "com.amazonaws.securityhub#NonEmptyString",
           "traits": {
             "smithy.api#clientOptional": {},
-            "smithy.api#documentation": "<p>A finding's description.</p>\n         <note>\n            <p>In this release, <code>Description</code> is a required property.</p>\n         </note>",
+            "smithy.api#documentation": "<p>A finding's description. <code>Description</code> is a required property.</p>\n         <p>Length Constraints: Minimum length of 1. Maximum length of 1024.</p>",
             "smithy.api#required": {}
           }
         },
@@ -18352,13 +18352,13 @@
         "UserDefinedFields": {
           "target": "com.amazonaws.securityhub#FieldMap",
           "traits": {
-            "smithy.api#documentation": "<p>A list of name/value string pairs associated with the finding. These are custom,\n         user-defined fields added to a finding. </p>"
+            "smithy.api#documentation": "<p>A list of name/value string pairs associated with the finding. These are custom,\n         user-defined fields added to a finding.</p>\n         <p>Can contain up to 50 key-value pairs. For each key-value pair, the key can contain up to 128 characters, and the value can contain up to 1024 characters.</p>"
           }
         },
         "Malware": {
           "target": "com.amazonaws.securityhub#MalwareList",
           "traits": {
-            "smithy.api#documentation": "<p>A list of malware related to a finding.</p>"
+            "smithy.api#documentation": "<p>A list of malware related to a finding.</p>\n         <p>Array Members: Maximum number of 5 items.</p>"
           }
         },
         "Network": {
@@ -18382,20 +18382,20 @@
         "Threats": {
           "target": "com.amazonaws.securityhub#ThreatList",
           "traits": {
-            "smithy.api#documentation": "<p>Details about the threat detected in a security finding and the file paths that were affected by the threat.\n      </p>"
+            "smithy.api#documentation": "<p>Details about the threat detected in a security finding and the file paths that were affected by the threat.\n      </p>\n         <p>Array Members: Minimum number of 1 item. Maximum number of 32 items.</p>"
           }
         },
         "ThreatIntelIndicators": {
           "target": "com.amazonaws.securityhub#ThreatIntelIndicatorList",
           "traits": {
-            "smithy.api#documentation": "<p>Threat intelligence details related to a finding.</p>"
+            "smithy.api#documentation": "<p>Threat intelligence details related to a finding.</p>\n         <p>Array Members: Minimum number of 1 item. Maximum number of 5 items.</p>"
           }
         },
         "Resources": {
           "target": "com.amazonaws.securityhub#ResourceList",
           "traits": {
             "smithy.api#clientOptional": {},
-            "smithy.api#documentation": "<p>A set of resource data types that describe the resources that the finding refers\n         to.</p>",
+            "smithy.api#documentation": "<p>A set of resource data types that describe the resources that the finding refers\n         to.</p>\n         <p>Array Members: Minimum number of 1 item. Maximum number of 32 items.</p>",
             "smithy.api#required": {}
           }
         },
@@ -18432,7 +18432,7 @@
         "RelatedFindings": {
           "target": "com.amazonaws.securityhub#RelatedFindingList",
           "traits": {
-            "smithy.api#documentation": "<p>A list of related findings.</p>"
+            "smithy.api#documentation": "<p>A list of related findings.</p>\n         <p>Array Members: Minimum number of 1 item. Maximum number of 10 items.</p>"
           }
         },
         "Note": {
@@ -18480,13 +18480,13 @@
         "ProcessedAt": {
           "target": "com.amazonaws.securityhub#NonEmptyString",
           "traits": {
-            "smithy.api#documentation": "<p>A imestamp that indicates when Security Hub received a finding and begins to process it.</p>\n         <p>This field accepts only the specified formats. Timestamps \ncan end with <code>Z</code> or <code>(\"+\" / \"-\") time-hour [\":\" time-minute]</code>. The time-secfrac after seconds is limited \nto a maximum of 9 digits. The offset is bounded by +/-18:00. Here are valid timestamp formats with examples:</p>\n         <ul>\n            <li>\n               <p>\n                  <code>YYYY-MM-DDTHH:MM:SSZ</code> (for example, <code>2019-01-31T23:00:00Z</code>)</p>\n            </li>\n            <li>\n               <p>\n                  <code>YYYY-MM-DDTHH:MM:SS.mmmmmmmmmZ</code> (for example, <code>2019-01-31T23:00:00.123456789Z</code>)</p>\n            </li>\n            <li>\n               <p>\n                  <code>YYYY-MM-DDTHH:MM:SS+HH:MM</code> (for example, <code>2024-01-04T15:25:10+17:59</code>)</p>\n            </li>\n            <li>\n               <p>\n                  <code>YYYY-MM-DDTHH:MM:SS-HHMM</code> (for example, <code>2024-01-04T15:25:10-1759</code>)</p>\n            </li>\n            <li>\n               <p>\n                  <code>YYYY-MM-DDTHH:MM:SS.mmmmmmmmm+HH:MM</code> (for example, <code>2024-01-04T15:25:10.123456789+17:59</code>)</p>\n            </li>\n         </ul>"
+            "smithy.api#documentation": "<p>A timestamp that indicates when Security Hub received a finding and begins to process it.</p>\n         <p>This field accepts only the specified formats. Timestamps \ncan end with <code>Z</code> or <code>(\"+\" / \"-\") time-hour [\":\" time-minute]</code>. The time-secfrac after seconds is limited \nto a maximum of 9 digits. The offset is bounded by +/-18:00. Here are valid timestamp formats with examples:</p>\n         <ul>\n            <li>\n               <p>\n                  <code>YYYY-MM-DDTHH:MM:SSZ</code> (for example, <code>2019-01-31T23:00:00Z</code>)</p>\n            </li>\n            <li>\n               <p>\n                  <code>YYYY-MM-DDTHH:MM:SS.mmmmmmmmmZ</code> (for example, <code>2019-01-31T23:00:00.123456789Z</code>)</p>\n            </li>\n            <li>\n               <p>\n                  <code>YYYY-MM-DDTHH:MM:SS+HH:MM</code> (for example, <code>2024-01-04T15:25:10+17:59</code>)</p>\n            </li>\n            <li>\n               <p>\n                  <code>YYYY-MM-DDTHH:MM:SS-HHMM</code> (for example, <code>2024-01-04T15:25:10-1759</code>)</p>\n            </li>\n            <li>\n               <p>\n                  <code>YYYY-MM-DDTHH:MM:SS.mmmmmmmmm+HH:MM</code> (for example, <code>2024-01-04T15:25:10.123456789+17:59</code>)</p>\n            </li>\n         </ul>"
           }
         },
         "AwsAccountName": {
           "target": "com.amazonaws.securityhub#NonEmptyString",
           "traits": {
-            "smithy.api#documentation": "<p>The name of the Amazon Web Services account from which a finding was generated.\n        </p>"
+            "smithy.api#documentation": "<p>The name of the Amazon Web Services account from which a finding was generated.\n        </p>\n         <p>Length Constraints: Minimum length of 1. Maximum length of 50.\n        </p>"
           }
         }
       },
@@ -22171,13 +22171,13 @@
         "Status": {
           "target": "com.amazonaws.securityhub#ComplianceStatus",
           "traits": {
-            "smithy.api#documentation": "<p>The result of a standards check.</p>\n         <p>The valid values for <code>Status</code> are as follows.</p>\n         <ul>\n            <li>\n               <ul>\n                  <li>\n                     <p>\n                        <code>PASSED</code> - Standards check passed for all evaluated\n                     resources.</p>\n                  </li>\n                  <li>\n                     <p>\n                        <code>WARNING</code> - Some information is missing or this check is not\n                     supported for your configuration.</p>\n                  </li>\n                  <li>\n                     <p>\n                        <code>FAILED</code> - Standards check failed for at least one evaluated\n                     resource.</p>\n                  </li>\n                  <li>\n                     <p>\n                        <code>NOT_AVAILABLE</code> - Check could not be performed due to a service\n                     outage, API error, or because the result of the Config evaluation was\n                        <code>NOT_APPLICABLE</code>. If the Config evaluation result was\n                     <code>NOT_APPLICABLE</code>, then after 3 days, Security Hub automatically archives\n                     the finding.</p>\n                  </li>\n               </ul>\n            </li>\n         </ul>"
+            "smithy.api#documentation": "<p>The result of a standards check.</p>\n         <p>The valid values for <code>Status</code> are as follows.</p>\n         <ul>\n            <li>\n               <ul>\n                  <li>\n                     <p>\n                        <code>PASSED</code> - Standards check passed for all evaluated\n                     resources.</p>\n                  </li>\n                  <li>\n                     <p>\n                        <code>WARNING</code> - Some information is missing or this check is not\n                     supported for your configuration.</p>\n                  </li>\n                  <li>\n                     <p>\n                        <code>FAILED</code> - Standards check failed for at least one evaluated\n                     resource.</p>\n                  </li>\n                  <li>\n                     <p>\n                        <code>NOT_AVAILABLE</code> - Check could not be performed due to a service\n                     outage, API error, or because the result of the Config evaluation was\n                        <code>NOT_APPLICABLE</code>. If the Config evaluation result was\n                     <code>NOT_APPLICABLE</code> for a Security Hub control, Security Hub automatically archives\n                     the finding after 3 days.</p>\n                  </li>\n               </ul>\n            </li>\n         </ul>"
           }
         },
         "RelatedRequirements": {
           "target": "com.amazonaws.securityhub#RelatedRequirementsList",
           "traits": {
-            "smithy.api#documentation": "<p>For a control, the industry or regulatory framework requirements that are related to the\n         control. The check for that control is aligned with these requirements.</p>"
+            "smithy.api#documentation": "<p>For a control, the industry or regulatory framework requirements that are related to the\n         control. The check for that control is aligned with these requirements.</p>\n         <p>Array Members: Maximum number of 32 items.</p>"
           }
         },
         "StatusReasons": {
@@ -25008,13 +25008,13 @@
         "Domain": {
           "target": "com.amazonaws.securityhub#NonEmptyString",
           "traits": {
-            "smithy.api#documentation": "<p>The DNS domain that is associated with the DNS request.</p>"
+            "smithy.api#documentation": "<p>The DNS domain that is associated with the DNS request.</p>\n         <p>Length Constraints: 128.</p>"
           }
         },
         "Protocol": {
           "target": "com.amazonaws.securityhub#NonEmptyString",
           "traits": {
-            "smithy.api#documentation": "<p>The protocol that was used for the DNS request.</p>"
+            "smithy.api#documentation": "<p>The protocol that was used for the DNS request.</p>\n         <p>Length Constraints: Minimum length of 1. Maximum length of 64.</p>"
           }
         },
         "Blocked": {
@@ -25357,25 +25357,25 @@
         "FilePath": {
           "target": "com.amazonaws.securityhub#NonEmptyString",
           "traits": {
-            "smithy.api#documentation": "<p>Path to the infected or suspicious file on the resource it was detected on.\n\t\t</p>"
+            "smithy.api#documentation": "<p>Path to the infected or suspicious file on the resource it was detected on.\n\t\t</p>\n         <p>Length Constraints: Minimum of 1 length. Maximum of 128 length.</p>"
           }
         },
         "FileName": {
           "target": "com.amazonaws.securityhub#NonEmptyString",
           "traits": {
-            "smithy.api#documentation": "<p>The name of the infected or suspicious file corresponding to the hash.\n\t\t</p>"
+            "smithy.api#documentation": "<p>The name of the infected or suspicious file corresponding to the hash.\n\t\t</p>\n         <p>Length Constraints: Minimum of 1 length. Maximum of 128 length.</p>"
           }
         },
         "ResourceId": {
           "target": "com.amazonaws.securityhub#NonEmptyString",
           "traits": {
-            "smithy.api#documentation": "<p>The Amazon Resource Name (ARN) of the resource on which the threat was detected.\n\t\t</p>"
+            "smithy.api#documentation": "<p>The Amazon Resource Name (ARN) of the resource on which the threat was detected.\n\t\t</p>\n         <p>Length Constraints: Minimum of 1 length. Maximum of 128 length.</p>"
           }
         },
         "Hash": {
           "target": "com.amazonaws.securityhub#NonEmptyString",
           "traits": {
-            "smithy.api#documentation": "<p>The hash value for the infected or suspicious file.\n\t\t</p>"
+            "smithy.api#documentation": "<p>The hash value for the infected or suspicious file.\n\t\t</p>\n         <p>Length Constraints: Minimum of 1 length. Maximum of 128 length.</p>"
           }
         }
       },
@@ -25569,7 +25569,7 @@
         "Original": {
           "target": "com.amazonaws.securityhub#NonEmptyString",
           "traits": {
-            "smithy.api#documentation": "<p>The finding provider's original value for the severity.</p>"
+            "smithy.api#documentation": "<p>The finding provider's original value for the severity.</p>\n         <p>Length Constraints: Minimum length of 1. Maximum length of 64.</p>"
           }
         }
       },
@@ -25705,7 +25705,7 @@
         "Labels": {
           "target": "com.amazonaws.securityhub#TypeList",
           "traits": {
-            "smithy.api#documentation": "<p>\n            An array of tags used to identify the detector associated with the finding.\n        </p>"
+            "smithy.api#documentation": "<p>\n            An array of tags used to identify the detector associated with the finding.\n        </p>\n         <p>Array Members: Minimum number of 0 items. Maximum number of 10 items.</p>"
           }
         }
       },
@@ -28682,7 +28682,7 @@
           "target": "com.amazonaws.securityhub#NonEmptyString",
           "traits": {
             "smithy.api#clientOptional": {},
-            "smithy.api#documentation": "<p>The name of the malware that was observed.</p>",
+            "smithy.api#documentation": "<p>The name of the malware that was observed.</p>\n         <p>Length Constraints: Minimum of 1. Maximum of 64.</p>",
             "smithy.api#required": {}
           }
         },
@@ -28695,7 +28695,7 @@
         "Path": {
           "target": "com.amazonaws.securityhub#NonEmptyString",
           "traits": {
-            "smithy.api#documentation": "<p>The file system path of the malware that was observed.</p>"
+            "smithy.api#documentation": "<p>The file system path of the malware that was observed.</p>\n         <p>Length Constraints: Minimum of 1. Maximum of 512.</p>"
           }
         },
         "State": {
@@ -28974,7 +28974,7 @@
         "Protocol": {
           "target": "com.amazonaws.securityhub#NonEmptyString",
           "traits": {
-            "smithy.api#documentation": "<p>The protocol of network-related information about a finding.</p>"
+            "smithy.api#documentation": "<p>The protocol of network-related information about a finding.</p>\n         <p>Length Constraints: Minimum of 1. Maximum of 16.</p>"
           }
         },
         "OpenPortRange": {
@@ -29004,7 +29004,7 @@
         "SourceDomain": {
           "target": "com.amazonaws.securityhub#NonEmptyString",
           "traits": {
-            "smithy.api#documentation": "<p>The source domain of network-related information about a finding.</p>"
+            "smithy.api#documentation": "<p>The source domain of network-related information about a finding.</p>\n         <p>Length Constraints: Minimum of 1. Maximum of 128.</p>"
           }
         },
         "SourceMac": {
@@ -29034,7 +29034,7 @@
         "DestinationDomain": {
           "target": "com.amazonaws.securityhub#NonEmptyString",
           "traits": {
-            "smithy.api#documentation": "<p>The destination domain of network-related information about a finding.</p>"
+            "smithy.api#documentation": "<p>The destination domain of network-related information about a finding.</p>\n         <p>Length Constraints: Minimum of 1. Maximum of 128.</p>"
           }
         }
       },
@@ -29072,7 +29072,7 @@
         "Protocol": {
           "target": "com.amazonaws.securityhub#NonEmptyString",
           "traits": {
-            "smithy.api#documentation": "<p>The protocol used to make the network connection request.</p>"
+            "smithy.api#documentation": "<p>The protocol used to make the network connection request.</p>\n         <p>Length Constraints: Minimum length of 1. Maximum length of 64.</p>"
           }
         },
         "Blocked": {
@@ -29109,7 +29109,7 @@
         "Protocol": {
           "target": "com.amazonaws.securityhub#NonEmptyString",
           "traits": {
-            "smithy.api#documentation": "<p>The protocol used for the component.</p>"
+            "smithy.api#documentation": "<p>The protocol used for the component.</p>\n         <p>Length Constraints: Minimum of 1. Maximum of 16.</p>"
           }
         },
         "Destination": {
@@ -29135,13 +29135,13 @@
         "ComponentId": {
           "target": "com.amazonaws.securityhub#NonEmptyString",
           "traits": {
-            "smithy.api#documentation": "<p>The identifier of a component in the network path.</p>"
+            "smithy.api#documentation": "<p>The identifier of a component in the network path.</p>\n         <p>Length Constraints: Minimum of 1. Maximum of 32.</p>"
           }
         },
         "ComponentType": {
           "target": "com.amazonaws.securityhub#NonEmptyString",
           "traits": {
-            "smithy.api#documentation": "<p>The type of component.</p>"
+            "smithy.api#documentation": "<p>The type of component.</p>\n         <p>Length Constraints: Minimum of 1. Maximum of 32.</p>"
           }
         },
         "Egress": {
@@ -29209,7 +29209,7 @@
           "target": "com.amazonaws.securityhub#NonEmptyString",
           "traits": {
             "smithy.api#clientOptional": {},
-            "smithy.api#documentation": "<p>The text of a note.</p>",
+            "smithy.api#documentation": "<p>The text of a note.</p>\n         <p>Length Constraints: Minimum of 1. Maximum of 512.</p>",
             "smithy.api#required": {}
           }
         },
@@ -29605,44 +29605,44 @@
           "target": "com.amazonaws.securityhub#NonEmptyString",
           "traits": {
             "smithy.api#clientOptional": {},
-            "smithy.api#documentation": "<p>The identifier of the compliance standard that was used to determine the patch\n         compliance status.</p>",
+            "smithy.api#documentation": "<p>The identifier of the compliance standard that was used to determine the patch\n         compliance status.</p>\n         <p>Length Constraints: Minimum length of 1. Maximum length of 256.</p>",
             "smithy.api#required": {}
           }
         },
         "InstalledCount": {
           "target": "com.amazonaws.securityhub#Integer",
           "traits": {
-            "smithy.api#documentation": "<p>The number of patches from the compliance standard that were installed\n         successfully.</p>"
+            "smithy.api#documentation": "<p>The number of patches from the compliance standard that were installed\n         successfully.</p>\n         <p>The value can be an integer from <code>0</code> to <code>100000</code>.</p>"
           }
         },
         "MissingCount": {
           "target": "com.amazonaws.securityhub#Integer",
           "traits": {
-            "smithy.api#documentation": "<p>The number of patches that are part of the compliance standard but are not installed.\n         The count includes patches that failed to install.</p>"
+            "smithy.api#documentation": "<p>The number of patches that are part of the compliance standard but are not installed.\n         The count includes patches that failed to install.</p>\n         <p>The value can be an integer from <code>0</code> to <code>100000</code>.</p>"
           }
         },
         "FailedCount": {
           "target": "com.amazonaws.securityhub#Integer",
           "traits": {
-            "smithy.api#documentation": "<p>The number of patches from the compliance standard that failed to install.</p>"
+            "smithy.api#documentation": "<p>The number of patches from the compliance standard that failed to install.</p>\n         <p>The value can be an integer from <code>0</code> to <code>100000</code>.</p>"
           }
         },
         "InstalledOtherCount": {
           "target": "com.amazonaws.securityhub#Integer",
           "traits": {
-            "smithy.api#documentation": "<p>The number of installed patches that are not part of the compliance standard.</p>"
+            "smithy.api#documentation": "<p>The number of installed patches that are not part of the compliance standard.</p>\n         <p>The value can be an integer from <code>0</code> to <code>100000</code>.</p>"
           }
         },
         "InstalledRejectedCount": {
           "target": "com.amazonaws.securityhub#Integer",
           "traits": {
-            "smithy.api#documentation": "<p>The number of patches that are installed but are also on a list of patches that the\n         customer rejected.</p>"
+            "smithy.api#documentation": "<p>The number of patches that are installed but are also on a list of patches that the\n         customer rejected.</p>\n         <p>The value can be an integer from <code>0</code> to <code>100000</code>.</p>"
           }
         },
         "InstalledPendingReboot": {
           "target": "com.amazonaws.securityhub#Integer",
           "traits": {
-            "smithy.api#documentation": "<p>The number of patches that were applied, but that require the instance to be rebooted in\n         order to be marked as installed.</p>"
+            "smithy.api#documentation": "<p>The number of patches that were applied, but that require the instance to be rebooted in\n         order to be marked as installed.</p>\n         <p>The value can be an integer from <code>0</code> to <code>100000</code>.</p>"
           }
         },
         "OperationStartTime": {
@@ -29660,13 +29660,13 @@
         "RebootOption": {
           "target": "com.amazonaws.securityhub#NonEmptyString",
           "traits": {
-            "smithy.api#documentation": "<p>The reboot option specified for the instance.</p>"
+            "smithy.api#documentation": "<p>The reboot option specified for the instance.</p>\n         <p>Length Constraints: Minimum length of 1. Maximum length of 256.</p>"
           }
         },
         "Operation": {
           "target": "com.amazonaws.securityhub#NonEmptyString",
           "traits": {
-            "smithy.api#documentation": "<p>The type of patch operation performed. For Patch Manager, the values are\n            <code>SCAN</code> and <code>INSTALL</code>. </p>"
+            "smithy.api#documentation": "<p>The type of patch operation performed. For Patch Manager, the values are\n            <code>SCAN</code> and <code>INSTALL</code>.</p>\n         <p>Length Constraints: Minimum length of 1. Maximum length of 256.</p>"
           }
         }
       },
@@ -29792,13 +29792,13 @@
         "Name": {
           "target": "com.amazonaws.securityhub#NonEmptyString",
           "traits": {
-            "smithy.api#documentation": "<p>The name of the process.</p>"
+            "smithy.api#documentation": "<p>The name of the process.</p>\n         <p>Length Constraints: Minimum of 1. Maximum of 64.</p>"
           }
         },
         "Path": {
           "target": "com.amazonaws.securityhub#NonEmptyString",
           "traits": {
-            "smithy.api#documentation": "<p>The path to the process executable.</p>"
+            "smithy.api#documentation": "<p>The path to the process executable.</p>\n         <p>Length Constraints: Minimum of 1. Maximum of 512.</p>"
           }
         },
         "Pid": {
@@ -29973,7 +29973,7 @@
         "Text": {
           "target": "com.amazonaws.securityhub#NonEmptyString",
           "traits": {
-            "smithy.api#documentation": "<p>Describes the recommended steps to take to remediate an issue identified in a finding.</p>"
+            "smithy.api#documentation": "<p>Describes the recommended steps to take to remediate an issue identified in a finding.</p>\n         <p>Length Constraints: Minimum of 1 length. Maximum of 512 length.</p>"
           }
         },
         "Url": {
@@ -30104,7 +30104,7 @@
           "target": "com.amazonaws.securityhub#NonEmptyString",
           "traits": {
             "smithy.api#clientOptional": {},
-            "smithy.api#documentation": "<p>The type of the resource that details are provided for. If possible, set\n            <code>Type</code> to one of the supported resource types. For example, if the resource\n         is an EC2 instance, then set <code>Type</code> to <code>AwsEc2Instance</code>.</p>\n         <p>If the resource does not match any of the provided types, then set <code>Type</code> to\n            <code>Other</code>. </p>",
+            "smithy.api#documentation": "<p>The type of the resource that details are provided for. If possible, set\n            <code>Type</code> to one of the supported resource types. For example, if the resource\n         is an EC2 instance, then set <code>Type</code> to <code>AwsEc2Instance</code>.</p>\n         <p>If the resource does not match any of the provided types, then set <code>Type</code> to\n            <code>Other</code>. </p>\n         <p>Length Constraints: Minimum length of 1. Maximum length of 256.</p>",
             "smithy.api#required": {}
           }
         },
@@ -30125,7 +30125,7 @@
         "Region": {
           "target": "com.amazonaws.securityhub#NonEmptyString",
           "traits": {
-            "smithy.api#documentation": "<p>The canonical Amazon Web Services external Region name where this resource is located.</p>"
+            "smithy.api#documentation": "<p>The canonical Amazon Web Services external Region name where this resource is located.</p>\n         <p>Length Constraints: Minimum length of 1. Maximum length of 16.</p>"
           }
         },
         "ResourceRole": {
@@ -30137,7 +30137,7 @@
         "Tags": {
           "target": "com.amazonaws.securityhub#FieldMap",
           "traits": {
-            "smithy.api#documentation": "<p>A list of Amazon Web Services tags associated with a resource at the time the finding was\n         processed.</p>"
+            "smithy.api#documentation": "<p>A list of Amazon Web Services tags associated with a resource at the time the finding was\n          processed. Tags must follow <a href=\"https://docs.aws.amazon.com/tag-editor/latest/userguide/tagging.html#tag-conventions\">Amazon Web Services tag naming limits and requirements</a>.</p>"
           }
         },
         "DataClassification": {
@@ -33077,13 +33077,13 @@
         "Normalized": {
           "target": "com.amazonaws.securityhub#Integer",
           "traits": {
-            "smithy.api#documentation": "<p>Deprecated. The normalized severity of a finding.\n         Instead of providing <code>Normalized</code>, provide <code>Label</code>.</p>\n         <p>If you provide <code>Label</code> and do not provide <code>Normalized</code>, then\n            <code>Normalized</code> is set automatically as follows.</p>\n         <ul>\n            <li>\n               <p>\n                  <code>INFORMATIONAL</code> - 0</p>\n            </li>\n            <li>\n               <p>\n                  <code>LOW</code> - 1</p>\n            </li>\n            <li>\n               <p>\n                  <code>MEDIUM</code> - 40</p>\n            </li>\n            <li>\n               <p>\n                  <code>HIGH</code> - 70</p>\n            </li>\n            <li>\n               <p>\n                  <code>CRITICAL</code> - 90</p>\n            </li>\n         </ul>"
+            "smithy.api#documentation": "<p>Deprecated. The normalized severity of a finding.\n         Instead of providing <code>Normalized</code>, provide <code>Label</code>.</p>\n         <p>The value of <code>Normalized</code> can be an integer between <code>0</code> and <code>100</code>.</p>\n         <p>If you provide <code>Label</code> and do not provide <code>Normalized</code>, then\n            <code>Normalized</code> is set automatically as follows.</p>\n         <ul>\n            <li>\n               <p>\n                  <code>INFORMATIONAL</code> - 0</p>\n            </li>\n            <li>\n               <p>\n                  <code>LOW</code> - 1</p>\n            </li>\n            <li>\n               <p>\n                  <code>MEDIUM</code> - 40</p>\n            </li>\n            <li>\n               <p>\n                  <code>HIGH</code> - 70</p>\n            </li>\n            <li>\n               <p>\n                  <code>CRITICAL</code> - 90</p>\n            </li>\n         </ul>"
           }
         },
         "Original": {
           "target": "com.amazonaws.securityhub#NonEmptyString",
           "traits": {
-            "smithy.api#documentation": "<p>The native severity from the finding product that generated the finding.</p>"
+            "smithy.api#documentation": "<p>The native severity from the finding product that generated the finding.</p>\n         <p>Length Constraints: Minimum length of 1. Maximum length of 64.</p>"
           }
         }
       },
@@ -34442,13 +34442,13 @@
         "Name": {
           "target": "com.amazonaws.securityhub#NonEmptyString",
           "traits": {
-            "smithy.api#documentation": "<p>The name of the threat.\n\t\t</p>"
+            "smithy.api#documentation": "<p>The name of the threat.\n\t\t</p>\n         <p>Length Constraints: Minimum of 1 length. Maximum of 128 length.</p>"
           }
         },
         "Severity": {
           "target": "com.amazonaws.securityhub#NonEmptyString",
           "traits": {
-            "smithy.api#documentation": "<p>The severity of the threat. \n\t\t</p>"
+            "smithy.api#documentation": "<p>The severity of the threat. \n\t\t</p>\n         <p>Length Constraints: Minimum of 1 length. Maximum of 128 length.</p>"
           }
         },
         "ItemCount": {
@@ -34460,7 +34460,7 @@
         "FilePaths": {
           "target": "com.amazonaws.securityhub#FilePathList",
           "traits": {
-            "smithy.api#documentation": "<p>Provides information about the file paths that were affected by the threat.\n\t\t</p>"
+            "smithy.api#documentation": "<p>Provides information about the file paths that were affected by the threat.\n\t\t</p>\n         <p>Array Members: Minimum number of 1 item. Maximum number of 5 items.</p>"
           }
         }
       },
@@ -34480,7 +34480,7 @@
         "Value": {
           "target": "com.amazonaws.securityhub#NonEmptyString",
           "traits": {
-            "smithy.api#documentation": "<p>The value of a threat intelligence indicator.</p>"
+            "smithy.api#documentation": "<p>The value of a threat intelligence indicator.</p>\n         <p>Length Constraints: Minimum of 1 length. Maximum of 512 length.</p>"
           }
         },
         "Category": {
@@ -34498,7 +34498,7 @@
         "Source": {
           "target": "com.amazonaws.securityhub#NonEmptyString",
           "traits": {
-            "smithy.api#documentation": "<p>The source of the threat intelligence indicator.</p>"
+            "smithy.api#documentation": "<p>The source of the threat intelligence indicator.</p>\n         <p>Length Constraints: Minimum of 1 length. Maximum of 64 length.</p>"
           }
         },
         "SourceUrl": {