aws-sdk-detective 1.45.0 → 1.46.0

Sign up to get free protection for your applications and to get access to all the features.
checksums.yaml CHANGED
@@ -1,7 +1,7 @@
1
1
  ---
2
2
  SHA256:
3
- metadata.gz: 257387829f039feb5112a5b8db08fbbfd2bc8f56d2d23e58f885d4febb9ba28d
4
- data.tar.gz: 18ec55a03157b73b6b3cbd86ae81ec0de0ca8978248f36e58e54b14f739c8f29
3
+ metadata.gz: 0b6b861cd6ce01a1c51b27ef839fbabe37f70700872e9210c4d897d98a5b370f
4
+ data.tar.gz: 00e8310db79a69c5b6bee907743dda97dbb3d7035a7546d772f9a63bbbd7e703
5
5
  SHA512:
6
- metadata.gz: 860141ace9ae092d305837d383da622d257d76a6abd984e37dabd07f5fc91dda5b98e5625a4d8786cd43e96cbeebd896ad477a1dca8cf6b917f8284ba1429d8b
7
- data.tar.gz: 5ac61ad61fb0fe4325d396af1b78497bebd86c2a515c8fee7b394f60d8e85da9a9495d4649d9b0133680f44cff7ac8653d5540dd64daed4cdcdcd7ebcd5db00a
6
+ metadata.gz: ffdcd95c12166920c357fa7c6d18e76b10cdf843c03d7de8e026360b7b1cf275f9a4f61214335636d5c210e6ed5eb8184677af10d397988eeb29a0e0a74b49ee
7
+ data.tar.gz: 1d8a835d1b7b558df8a733c3813d619cdb433bdd80026624d12e3254d47ecb31d5e40609404a63ef8794ef3fb206da364e6c36b94d7ab77adcf2bc720a2790d2
data/CHANGELOG.md CHANGED
@@ -1,6 +1,11 @@
1
1
  Unreleased Changes
2
2
  ------------------
3
3
 
4
+ 1.46.0 (2024-02-15)
5
+ ------------------
6
+
7
+ * Feature - Doc only updates for content enhancement
8
+
4
9
  1.45.0 (2024-01-26)
5
10
  ------------------
6
11
 
data/VERSION CHANGED
@@ -1 +1 @@
1
- 1.45.0
1
+ 1.46.0
@@ -502,13 +502,6 @@ module Aws::Detective
502
502
  # account as the administrator account. This operation is called by the
503
503
  # account that is enabling Detective.
504
504
  #
505
- # Before you try to enable Detective, make sure that your account has
506
- # been enrolled in Amazon GuardDuty for at least 48 hours. If you do not
507
- # meet this requirement, you cannot enable Detective. If you do meet the
508
- # GuardDuty prerequisite, then when you make the request to enable
509
- # Detective, it checks whether your data volume is within the Detective
510
- # quota. If it exceeds the quota, then you cannot enable Detective.
511
- #
512
505
  # The operation also enables Detective for the calling account in the
513
506
  # currently selected Region. It returns the ARN of the new behavior
514
507
  # graph.
@@ -877,11 +870,15 @@ module Aws::Detective
877
870
  req.send_request(options)
878
871
  end
879
872
 
880
- # Returns the investigation results of an investigation for a behavior
881
- # graph.
873
+ # Detective investigations lets you investigate IAM users and IAM roles
874
+ # using indicators of compromise. An indicator of compromise (IOC) is an
875
+ # artifact observed in or on a network, system, or environment that can
876
+ # (with a high level of confidence) identify malicious activity or a
877
+ # security incident. `GetInvestigation` returns the investigation
878
+ # results of an investigation for a behavior graph.
882
879
  #
883
880
  # @option params [required, String] :graph_arn
884
- # The ARN of the behavior graph.
881
+ # The Amazon Resource Name (ARN) of the behavior graph.
885
882
  #
886
883
  # @option params [required, String] :investigation_id
887
884
  # The investigation ID of the investigation report.
@@ -1082,23 +1079,27 @@ module Aws::Detective
1082
1079
  req.send_request(options)
1083
1080
  end
1084
1081
 
1085
- # Get the indicators from an investigation
1082
+ # Gets the indicators from an investigation. You can use the information
1083
+ # from the indicators to determine if an IAM user and/or IAM role is
1084
+ # involved in an unusual activity that could indicate malicious behavior
1085
+ # and its impact.
1086
1086
  #
1087
1087
  # @option params [required, String] :graph_arn
1088
- # The ARN of the behavior graph.
1088
+ # The Amazon Resource Name (ARN) of the behavior graph.
1089
1089
  #
1090
1090
  # @option params [required, String] :investigation_id
1091
1091
  # The investigation ID of the investigation report.
1092
1092
  #
1093
1093
  # @option params [String] :indicator_type
1094
- # See [Detective investigations.][1].
1094
+ # For the list of indicators of compromise that are generated by
1095
+ # Detective investigations, see [Detective investigations][1].
1095
1096
  #
1096
1097
  #
1097
1098
  #
1098
1099
  # [1]: https://docs.aws.amazon.com/detective/latest/userguide/detective-investigations.html
1099
1100
  #
1100
1101
  # @option params [String] :next_token
1101
- # List if there are more results available. The value of nextToken is a
1102
+ # Lists if there are more results available. The value of nextToken is a
1102
1103
  # unique pagination token for each page. Repeat the call using the
1103
1104
  # returned token to retrieve the next page. Keep all other arguments
1104
1105
  # unchanged.
@@ -1107,7 +1108,7 @@ module Aws::Detective
1107
1108
  # pagination token will return a Validation Exception error.
1108
1109
  #
1109
1110
  # @option params [Integer] :max_results
1110
- # List the maximum number of indicators in a page.
1111
+ # Lists the maximum number of indicators in a page.
1111
1112
  #
1112
1113
  # @return [Types::ListIndicatorsResponse] Returns a {Seahorse::Client::Response response} object which responds to the following methods:
1113
1114
  #
@@ -1168,13 +1169,18 @@ module Aws::Detective
1168
1169
  req.send_request(options)
1169
1170
  end
1170
1171
 
1171
- # List all Investigations.
1172
+ # Detective investigations lets you investigate IAM users and IAM roles
1173
+ # using indicators of compromise. An indicator of compromise (IOC) is an
1174
+ # artifact observed in or on a network, system, or environment that can
1175
+ # (with a high level of confidence) identify malicious activity or a
1176
+ # security incident. `ListInvestigations` lists all active Detective
1177
+ # investigations.
1172
1178
  #
1173
1179
  # @option params [required, String] :graph_arn
1174
- # The ARN of the behavior graph.
1180
+ # The Amazon Resource Name (ARN) of the behavior graph.
1175
1181
  #
1176
1182
  # @option params [String] :next_token
1177
- # List if there are more results available. The value of nextToken is a
1183
+ # Lists if there are more results available. The value of nextToken is a
1178
1184
  # unique pagination token for each page. Repeat the call using the
1179
1185
  # returned token to retrieve the next page. Keep all other arguments
1180
1186
  # unchanged.
@@ -1183,10 +1189,10 @@ module Aws::Detective
1183
1189
  # pagination token will return a Validation Exception error.
1184
1190
  #
1185
1191
  # @option params [Integer] :max_results
1186
- # List the maximum number of investigations in a page.
1192
+ # Lists the maximum number of investigations in a page.
1187
1193
  #
1188
1194
  # @option params [Types::FilterCriteria] :filter_criteria
1189
- # Filter the investigation results based on a criteria.
1195
+ # Filters the investigation results based on a criteria.
1190
1196
  #
1191
1197
  # @option params [Types::SortCriteria] :sort_criteria
1192
1198
  # Sorts the investigation results based on a criteria.
@@ -1490,10 +1496,15 @@ module Aws::Detective
1490
1496
  req.send_request(options)
1491
1497
  end
1492
1498
 
1493
- # initiate an investigation on an entity in a graph
1499
+ # Detective investigations lets you investigate IAM users and IAM roles
1500
+ # using indicators of compromise. An indicator of compromise (IOC) is an
1501
+ # artifact observed in or on a network, system, or environment that can
1502
+ # (with a high level of confidence) identify malicious activity or a
1503
+ # security incident. `StartInvestigation` initiates an investigation on
1504
+ # an entity in a behavior graph.
1494
1505
  #
1495
1506
  # @option params [required, String] :graph_arn
1496
- # The ARN of the behavior graph.
1507
+ # The Amazon Resource Name (ARN) of the behavior graph.
1497
1508
  #
1498
1509
  # @option params [required, String] :entity_arn
1499
1510
  # The unique Amazon Resource Name (ARN) of the IAM user and IAM role.
@@ -1503,7 +1514,7 @@ module Aws::Detective
1503
1514
  # ISO8601 formatted string. For example, `2021-08-18T16:35:56.284Z`.
1504
1515
  #
1505
1516
  # @option params [required, Time,DateTime,Date,Integer,String] :scope_end_time
1506
- # The data and time when the investigation began. The value is an UTC
1517
+ # The data and time when the investigation ended. The value is an UTC
1507
1518
  # ISO8601 formatted string. For example, `2021-08-18T16:35:56.284Z`.
1508
1519
  #
1509
1520
  # @return [Types::StartInvestigationResponse] Returns a {Seahorse::Client::Response response} object which responds to the following methods:
@@ -1654,10 +1665,10 @@ module Aws::Detective
1654
1665
  req.send_request(options)
1655
1666
  end
1656
1667
 
1657
- # Update the state of an investigation.
1668
+ # Updates the state of an investigation.
1658
1669
  #
1659
1670
  # @option params [required, String] :graph_arn
1660
- # The ARN of the behavior graph.
1671
+ # The Amazon Resource Name (ARN) of the behavior graph.
1661
1672
  #
1662
1673
  # @option params [required, String] :investigation_id
1663
1674
  # The investigation ID of the investigation report.
@@ -1727,7 +1738,7 @@ module Aws::Detective
1727
1738
  params: params,
1728
1739
  config: config)
1729
1740
  context[:gem_name] = 'aws-sdk-detective'
1730
- context[:gem_version] = '1.45.0'
1741
+ context[:gem_version] = '1.46.0'
1731
1742
  Seahorse::Client::Request.new(handlers, context)
1732
1743
  end
1733
1744
 
@@ -332,7 +332,7 @@ module Aws::Detective
332
332
  #
333
333
  # @!attribute [rw] end_inclusive
334
334
  # A timestamp representing the end date of the time period until when
335
- # data is filtered , including the end date.
335
+ # data is filtered, including the end date.
336
336
  # @return [Time]
337
337
  #
338
338
  # @see http://docs.aws.amazon.com/goto/WebAPI/detective-2018-10-26/DateFilter AWS API Documentation
@@ -509,7 +509,7 @@ module Aws::Detective
509
509
  end
510
510
 
511
511
  # @!attribute [rw] graph_arn
512
- # The ARN of the behavior graph.
512
+ # The Amazon Resource Name (ARN) of the behavior graph.
513
513
  # @return [String]
514
514
  #
515
515
  # @!attribute [rw] investigation_id
@@ -526,7 +526,7 @@ module Aws::Detective
526
526
  end
527
527
 
528
528
  # @!attribute [rw] graph_arn
529
- # The ARN of the behavior graph.
529
+ # The Amazon Resource Name (ARN) of the behavior graph.
530
530
  # @return [String]
531
531
  #
532
532
  # @!attribute [rw] investigation_id
@@ -534,40 +534,43 @@ module Aws::Detective
534
534
  # @return [String]
535
535
  #
536
536
  # @!attribute [rw] entity_arn
537
- # The unique Amazon Resource Name (ARN) of the IAM user and IAM role.
537
+ # The unique Amazon Resource Name (ARN). Detective supports IAM user
538
+ # ARNs and IAM role ARNs.
538
539
  # @return [String]
539
540
  #
540
541
  # @!attribute [rw] entity_type
541
542
  # Type of entity. For example, Amazon Web Services accounts, such as
542
- # IAM user and role.
543
+ # an IAM user and/or IAM role.
543
544
  # @return [String]
544
545
  #
545
546
  # @!attribute [rw] created_time
546
- # The UTC time stamp of the creation time of the investigation report.
547
+ # The creation time of the investigation report in UTC time stamp
548
+ # format.
547
549
  # @return [Time]
548
550
  #
549
551
  # @!attribute [rw] scope_start_time
550
- # The start date and time for the scope time set to generate the
551
- # investigation report.
552
+ # The start date and time used to set the scope time within which you
553
+ # want to generate the investigation report. The value is an UTC
554
+ # ISO8601 formatted string. For example, `2021-08-18T16:35:56.284Z`.
552
555
  # @return [Time]
553
556
  #
554
557
  # @!attribute [rw] scope_end_time
555
558
  # The data and time when the investigation began. The value is an UTC
556
- # ISO8601 formatted string. For example, 2021-08-18T16:35:56.284Z.
559
+ # ISO8601 formatted string. For example, `2021-08-18T16:35:56.284Z`.
557
560
  # @return [Time]
558
561
  #
559
562
  # @!attribute [rw] status
560
- # Status based on the completion status of the investigation.
563
+ # The status based on the completion status of the investigation.
561
564
  # @return [String]
562
565
  #
563
566
  # @!attribute [rw] severity
564
- # Severity based on the likelihood and impact of the indicators of
565
- # compromise discovered in the investigation.
567
+ # The severity assigned is based on the likelihood and impact of the
568
+ # indicators of compromise discovered in the investigation.
566
569
  # @return [String]
567
570
  #
568
571
  # @!attribute [rw] state
569
572
  # The current state of the investigation. An archived investigation
570
- # indicates you have completed reviewing the investigation.
573
+ # indicates that you have completed reviewing the investigation.
571
574
  # @return [String]
572
575
  #
573
576
  # @see http://docs.aws.amazon.com/goto/WebAPI/detective-2018-10-26/GetInvestigationResponse AWS API Documentation
@@ -657,7 +660,7 @@ module Aws::Detective
657
660
  #
658
661
  # @!attribute [rw] starting_ip_address
659
662
  # IP address where the resource was first used in the impossible
660
- # travel
663
+ # travel.
661
664
  # @return [String]
662
665
  #
663
666
  # @!attribute [rw] ending_ip_address
@@ -666,7 +669,7 @@ module Aws::Detective
666
669
  # @return [String]
667
670
  #
668
671
  # @!attribute [rw] starting_location
669
- # Location where the resource was first used in the impossible travel
672
+ # Location where the resource was first used in the impossible travel.
670
673
  # @return [String]
671
674
  #
672
675
  # @!attribute [rw] ending_location
@@ -690,16 +693,22 @@ module Aws::Detective
690
693
  include Aws::Structure
691
694
  end
692
695
 
693
- # Investigations triages indicators of compromises such as a finding and
694
- # surfaces only the most critical and suspicious issues, so you can
695
- # focus on high-level investigations.
696
+ # Detective investigations triages indicators of compromises such as a
697
+ # finding and surfaces only the most critical and suspicious issues, so
698
+ # you can focus on high-level investigations. An `Indicator` lets you
699
+ # determine if an Amazon Web Services resource is involved in unusual
700
+ # activity that could indicate malicious behavior and its impact.
696
701
  #
697
702
  # @!attribute [rw] indicator_type
698
703
  # The type of indicator.
699
704
  # @return [String]
700
705
  #
701
706
  # @!attribute [rw] indicator_detail
702
- # Details about the indicator of compromise.
707
+ # Details about the indicators of compromise that are used to
708
+ # determine if a resource is involved in a security incident. An
709
+ # indicator of compromise (IOC) is an artifact observed in or on a
710
+ # network, system, or environment that can (with a high level of
711
+ # confidence) identify malicious activity or a security incident.
703
712
  # @return [Types::IndicatorDetail]
704
713
  #
705
714
  # @see http://docs.aws.amazon.com/goto/WebAPI/detective-2018-10-26/Indicator AWS API Documentation
@@ -712,7 +721,16 @@ module Aws::Detective
712
721
  end
713
722
 
714
723
  # Details about the indicators of compromise which are used to determine
715
- # if a resource is involved in a security incident.
724
+ # if a resource is involved in a security incident. An indicator of
725
+ # compromise (IOC) is an artifact observed in or on a network, system,
726
+ # or environment that can (with a high level of confidence) identify
727
+ # malicious activity or a security incident. For the list of indicators
728
+ # of compromise that are generated by Detective investigations, see
729
+ # [Detective investigations][1].
730
+ #
731
+ #
732
+ #
733
+ # [1]: https://docs.aws.amazon.com/detective/latest/userguide/detective-investigations.html
716
734
  #
717
735
  # @!attribute [rw] tt_ps_observed_detail
718
736
  # Details about the indicator of compromise.
@@ -725,7 +743,7 @@ module Aws::Detective
725
743
  # @!attribute [rw] flagged_ip_address_detail
726
744
  # Suspicious IP addresses that are flagged, which indicates critical
727
745
  # or severe threats based on threat intelligence by Detective. This
728
- # indicator is derived from AWS threat intelligence.
746
+ # indicator is derived from Amazon Web Services threat intelligence.
729
747
  # @return [Types::FlaggedIpAddressDetail]
730
748
  #
731
749
  # @!attribute [rw] new_geolocation_detail
@@ -778,7 +796,7 @@ module Aws::Detective
778
796
  end
779
797
 
780
798
  # Details about the investigation related to a potential security event
781
- # identified by Detective
799
+ # identified by Detective.
782
800
  #
783
801
  # @!attribute [rw] investigation_id
784
802
  # The investigation ID of the investigation report.
@@ -799,7 +817,9 @@ module Aws::Detective
799
817
  # @return [String]
800
818
  #
801
819
  # @!attribute [rw] created_time
802
- # The UTC time stamp of the creation time of the investigation report.
820
+ # The time stamp of the creation time of the investigation report. The
821
+ # value is an UTC ISO8601 formatted string. For example,
822
+ # `2021-08-18T16:35:56.284Z`.
803
823
  # @return [Time]
804
824
  #
805
825
  # @!attribute [rw] entity_arn
@@ -910,7 +930,7 @@ module Aws::Detective
910
930
  end
911
931
 
912
932
  # @!attribute [rw] graph_arn
913
- # The ARN of the behavior graph.
933
+ # The Amazon Resource Name (ARN) of the behavior graph.
914
934
  # @return [String]
915
935
  #
916
936
  # @!attribute [rw] investigation_id
@@ -918,7 +938,8 @@ module Aws::Detective
918
938
  # @return [String]
919
939
  #
920
940
  # @!attribute [rw] indicator_type
921
- # See [Detective investigations.][1].
941
+ # For the list of indicators of compromise that are generated by
942
+ # Detective investigations, see [Detective investigations][1].
922
943
  #
923
944
  #
924
945
  #
@@ -926,7 +947,7 @@ module Aws::Detective
926
947
  # @return [String]
927
948
  #
928
949
  # @!attribute [rw] next_token
929
- # List if there are more results available. The value of nextToken is
950
+ # Lists if there are more results available. The value of nextToken is
930
951
  # a unique pagination token for each page. Repeat the call using the
931
952
  # returned token to retrieve the next page. Keep all other arguments
932
953
  # unchanged.
@@ -936,7 +957,7 @@ module Aws::Detective
936
957
  # @return [String]
937
958
  #
938
959
  # @!attribute [rw] max_results
939
- # List the maximum number of indicators in a page.
960
+ # Lists the maximum number of indicators in a page.
940
961
  # @return [Integer]
941
962
  #
942
963
  # @see http://docs.aws.amazon.com/goto/WebAPI/detective-2018-10-26/ListIndicatorsRequest AWS API Documentation
@@ -952,7 +973,7 @@ module Aws::Detective
952
973
  end
953
974
 
954
975
  # @!attribute [rw] graph_arn
955
- # The ARN of the behavior graph.
976
+ # The Amazon Resource Name (ARN) of the behavior graph.
956
977
  # @return [String]
957
978
  #
958
979
  # @!attribute [rw] investigation_id
@@ -960,7 +981,7 @@ module Aws::Detective
960
981
  # @return [String]
961
982
  #
962
983
  # @!attribute [rw] next_token
963
- # List if there are more results available. The value of nextToken is
984
+ # Lists if there are more results available. The value of nextToken is
964
985
  # a unique pagination token for each page. Repeat the call using the
965
986
  # returned token to retrieve the next page. Keep all other arguments
966
987
  # unchanged.
@@ -970,7 +991,7 @@ module Aws::Detective
970
991
  # @return [String]
971
992
  #
972
993
  # @!attribute [rw] indicators
973
- # Indicators of compromise listed based on severity.
994
+ # Lists the indicators of compromise.
974
995
  # @return [Array<Types::Indicator>]
975
996
  #
976
997
  # @see http://docs.aws.amazon.com/goto/WebAPI/detective-2018-10-26/ListIndicatorsResponse AWS API Documentation
@@ -985,11 +1006,11 @@ module Aws::Detective
985
1006
  end
986
1007
 
987
1008
  # @!attribute [rw] graph_arn
988
- # The ARN of the behavior graph.
1009
+ # The Amazon Resource Name (ARN) of the behavior graph.
989
1010
  # @return [String]
990
1011
  #
991
1012
  # @!attribute [rw] next_token
992
- # List if there are more results available. The value of nextToken is
1013
+ # Lists if there are more results available. The value of nextToken is
993
1014
  # a unique pagination token for each page. Repeat the call using the
994
1015
  # returned token to retrieve the next page. Keep all other arguments
995
1016
  # unchanged.
@@ -999,11 +1020,11 @@ module Aws::Detective
999
1020
  # @return [String]
1000
1021
  #
1001
1022
  # @!attribute [rw] max_results
1002
- # List the maximum number of investigations in a page.
1023
+ # Lists the maximum number of investigations in a page.
1003
1024
  # @return [Integer]
1004
1025
  #
1005
1026
  # @!attribute [rw] filter_criteria
1006
- # Filter the investigation results based on a criteria.
1027
+ # Filters the investigation results based on a criteria.
1007
1028
  # @return [Types::FilterCriteria]
1008
1029
  #
1009
1030
  # @!attribute [rw] sort_criteria
@@ -1023,18 +1044,17 @@ module Aws::Detective
1023
1044
  end
1024
1045
 
1025
1046
  # @!attribute [rw] investigation_details
1026
- # Investigations details lists the summary of uncommon behavior or
1027
- # malicious activity which indicates a compromise.
1047
+ # Lists the summary of uncommon behavior or malicious activity which
1048
+ # indicates a compromise.
1028
1049
  # @return [Array<Types::InvestigationDetail>]
1029
1050
  #
1030
1051
  # @!attribute [rw] next_token
1031
- # List if there are more results available. The value of nextToken is
1052
+ # Lists if there are more results available. The value of nextToken is
1032
1053
  # a unique pagination token for each page. Repeat the call using the
1033
1054
  # returned token to retrieve the next page. Keep all other arguments
1034
1055
  # unchanged.
1035
1056
  #
1036
- # Each pagination token expires after 24 hours. Using an expired
1037
- # pagination token will return an HTTP 400 InvalidToken error.
1057
+ # Each pagination token expires after 24 hours.
1038
1058
  # @return [String]
1039
1059
  #
1040
1060
  # @see http://docs.aws.amazon.com/goto/WebAPI/detective-2018-10-26/ListInvestigationsResponse AWS API Documentation
@@ -1400,7 +1420,8 @@ module Aws::Detective
1400
1420
  # @return [String]
1401
1421
  #
1402
1422
  # @!attribute [rw] is_new_for_entire_account
1403
- # Checks if the ASO is for new for the entire account.
1423
+ # Checks if the Autonomous System Organization (ASO) is new for the
1424
+ # entire account.
1404
1425
  # @return [Boolean]
1405
1426
  #
1406
1427
  # @see http://docs.aws.amazon.com/goto/WebAPI/detective-2018-10-26/NewAsoDetail AWS API Documentation
@@ -1425,7 +1446,7 @@ module Aws::Detective
1425
1446
  # @return [String]
1426
1447
  #
1427
1448
  # @!attribute [rw] is_new_for_entire_account
1428
- # Checks if the gelocation is new for the entire account.
1449
+ # Checks if the geolocation is new for the entire account.
1429
1450
  # @return [Boolean]
1430
1451
  #
1431
1452
  # @see http://docs.aws.amazon.com/goto/WebAPI/detective-2018-10-26/NewGeolocationDetail AWS API Documentation
@@ -1477,7 +1498,7 @@ module Aws::Detective
1477
1498
  # resource or the finding group.
1478
1499
  #
1479
1500
  # @!attribute [rw] arn
1480
- # The ARN of the related finding.
1501
+ # The Amazon Resource Name (ARN) of the related finding.
1481
1502
  # @return [String]
1482
1503
  #
1483
1504
  # @!attribute [rw] type
@@ -1530,16 +1551,13 @@ module Aws::Detective
1530
1551
 
1531
1552
  # This request cannot be completed for one of the following reasons.
1532
1553
  #
1533
- # * The request would cause the number of member accounts in the
1534
- # behavior graph to exceed the maximum allowed. A behavior graph
1535
- # cannot have more than 1200 member accounts.
1536
- #
1537
- # * The request would cause the data rate for the behavior graph to
1538
- # exceed the maximum allowed.
1554
+ # * This request cannot be completed if it would cause the number of
1555
+ # member accounts in the behavior graph to exceed the maximum allowed.
1556
+ # A behavior graph cannot have more than 1,200 member accounts.
1539
1557
  #
1540
- # * Detective is unable to verify the data rate for the member account.
1541
- # This is usually because the member account is not enrolled in Amazon
1542
- # GuardDuty.
1558
+ # * This request cannot be completed if the current volume ingested is
1559
+ # above the limit of 10 TB per day. Detective will not allow you to
1560
+ # add additional member accounts.
1543
1561
  #
1544
1562
  # @!attribute [rw] message
1545
1563
  # @return [String]
@@ -1577,7 +1595,7 @@ module Aws::Detective
1577
1595
  end
1578
1596
 
1579
1597
  # @!attribute [rw] graph_arn
1580
- # The ARN of the behavior graph.
1598
+ # The Amazon Resource Name (ARN) of the behavior graph.
1581
1599
  # @return [String]
1582
1600
  #
1583
1601
  # @!attribute [rw] entity_arn
@@ -1590,7 +1608,7 @@ module Aws::Detective
1590
1608
  # @return [Time]
1591
1609
  #
1592
1610
  # @!attribute [rw] scope_end_time
1593
- # The data and time when the investigation began. The value is an UTC
1611
+ # The data and time when the investigation ended. The value is an UTC
1594
1612
  # ISO8601 formatted string. For example, `2021-08-18T16:35:56.284Z`.
1595
1613
  # @return [Time]
1596
1614
  #
@@ -1672,11 +1690,13 @@ module Aws::Detective
1672
1690
  # @return [String]
1673
1691
  #
1674
1692
  # @!attribute [rw] ip_address
1675
- # The IP address where the TTP was observed.
1693
+ # The IP address where the tactics, techniques, and procedure (TTP)
1694
+ # was observed.
1676
1695
  # @return [String]
1677
1696
  #
1678
1697
  # @!attribute [rw] api_name
1679
- # The name of the API where the TTP was observed.
1698
+ # The name of the API where the tactics, techniques, and procedure
1699
+ # (TTP) was observed.
1680
1700
  # @return [String]
1681
1701
  #
1682
1702
  # @!attribute [rw] api_success_count
@@ -1836,7 +1856,7 @@ module Aws::Detective
1836
1856
  end
1837
1857
 
1838
1858
  # @!attribute [rw] graph_arn
1839
- # The ARN of the behavior graph.
1859
+ # The Amazon Resource Name (ARN) of the behavior graph.
1840
1860
  # @return [String]
1841
1861
  #
1842
1862
  # @!attribute [rw] investigation_id
@@ -52,6 +52,6 @@ require_relative 'aws-sdk-detective/customizations'
52
52
  # @!group service
53
53
  module Aws::Detective
54
54
 
55
- GEM_VERSION = '1.45.0'
55
+ GEM_VERSION = '1.46.0'
56
56
 
57
57
  end
metadata CHANGED
@@ -1,14 +1,14 @@
1
1
  --- !ruby/object:Gem::Specification
2
2
  name: aws-sdk-detective
3
3
  version: !ruby/object:Gem::Version
4
- version: 1.45.0
4
+ version: 1.46.0
5
5
  platform: ruby
6
6
  authors:
7
7
  - Amazon Web Services
8
8
  autorequire:
9
9
  bindir: bin
10
10
  cert_chain: []
11
- date: 2024-01-26 00:00:00.000000000 Z
11
+ date: 2024-02-15 00:00:00.000000000 Z
12
12
  dependencies:
13
13
  - !ruby/object:Gem::Dependency
14
14
  name: aws-sdk-core