aws-sdk-ecr 1.21.0 → 1.22.0

checksums.yaml

@@ -1,7 +1,7 @@
 ---
 SHA1:
-  metadata.gz: c3581778c9338105a07323ab10bcf661561d4dfe
-  data.tar.gz: dc63c12efb943b78d2ecd1e822fb414879acfbdb
+  metadata.gz: 3c18bffad069aff09045c8769558305309fea1d1
+  data.tar.gz: 93a4ea1b0a9d28d13d160af2f5d335d86b26a739
 SHA512:
-  metadata.gz: a82d7167f67a24effde8847223b64b61ac2a8b63d10efb786448cf6c435c7915700b52e833955fbba5f4a3f638a042e67114e6d989c9059f8e5992c3b4a7583e
-  data.tar.gz: 48f508e895809fd81dd82eabd98587d7ef6bb1ac9aacf79dad6a5a1e03d90eea76f72394c9c2aa4484b87128d3fbae6c0ad0d415da6b59d833caddc10e6beec5
+  metadata.gz: 72ff38325d14e000925d8776f7801c9e71cd073dc663a1d67ab1e656683e6ca9f200a00c8154a8ddc8d3ff365d80694bfd79f2535990dd25fed5c6cc652ff2e6
+  data.tar.gz: fa40575c998c9a0b01a5efc7303cdf9344e36f0853f2d779f8d13cd4a112d644c8dfa2793c3293b8ec44b12b940975644a57d8eefffbd643c8e3ef342b0f6a25

data/lib/aws-sdk-ecr.rb

@@ -42,6 +42,6 @@ require_relative 'aws-sdk-ecr/customizations'
 # @service
 module Aws::ECR
 
-  GEM_VERSION = '1.21.0'
+  GEM_VERSION = '1.22.0'
 
 end

data/lib/aws-sdk-ecr/client.rb

@@ -563,7 +563,14 @@ module Aws::ECR
       req.send_request(options)
     end
 
-    # Creates an image repository.
+    # Creates an Amazon Elastic Container Registry (Amazon ECR) repository,
+    # where users can push and pull Docker images. For more information, see
+    # [Amazon ECR Repositories][1] in the *Amazon Elastic Container Registry
+    # User Guide*.
+    #
+    #
+    #
+    # [1]: https://docs.aws.amazon.com/AmazonECR/latest/userguide/Repositories.html
     #
     # @option params [required, String] :repository_name
     #   The name to use for the repository. The repository name may be
@@ -585,6 +592,11 @@ module Aws::ECR
     #   image tags within the repository will be immutable which will prevent
     #   them from being overwritten.
     #
+    # @option params [Types::ImageScanningConfiguration] :image_scanning_configuration
+    #   The image scanning configuration for the repository. This setting
+    #   determines whether images are scanned for known vulnerabilities after
+    #   being pushed to the repository.
+    #
     # @return [Types::CreateRepositoryResponse] Returns a {Seahorse::Client::Response response} object which responds to the following methods:
     #
     #   * {Types::CreateRepositoryResponse#repository #repository} => Types::Repository
@@ -619,6 +631,9 @@ module Aws::ECR
     #       },
     #     ],
     #     image_tag_mutability: "MUTABLE", # accepts MUTABLE, IMMUTABLE
+    #     image_scanning_configuration: {
+    #       scan_on_push: false,
+    #     },
     #   })
     #
     # @example Response structure
@@ -629,6 +644,7 @@ module Aws::ECR
     #   resp.repository.repository_uri #=> String
     #   resp.repository.created_at #=> Time
     #   resp.repository.image_tag_mutability #=> String, one of "MUTABLE", "IMMUTABLE"
+    #   resp.repository.image_scanning_configuration.scan_on_push #=> Boolean
     #
     # @see http://docs.aws.amazon.com/goto/WebAPI/ecr-2015-09-21/CreateRepository AWS API Documentation
     #
@@ -733,6 +749,7 @@ module Aws::ECR
     #   resp.repository.repository_uri #=> String
     #   resp.repository.created_at #=> Time
     #   resp.repository.image_tag_mutability #=> String, one of "MUTABLE", "IMMUTABLE"
+    #   resp.repository.image_scanning_configuration.scan_on_push #=> Boolean
     #
     # @see http://docs.aws.amazon.com/goto/WebAPI/ecr-2015-09-21/DeleteRepository AWS API Documentation
     #
@@ -798,6 +815,90 @@ module Aws::ECR
       req.send_request(options)
     end
 
+    # Describes the image scan findings for the specified image.
+    #
+    # @option params [String] :registry_id
+    #   The AWS account ID associated with the registry that contains the
+    #   repository in which to describe the image scan findings for. If you do
+    #   not specify a registry, the default registry is assumed.
+    #
+    # @option params [required, String] :repository_name
+    #   The repository for the image for which to describe the scan findings.
+    #
+    # @option params [required, Types::ImageIdentifier] :image_id
+    #   An object with identifying information for an Amazon ECR image.
+    #
+    # @option params [String] :next_token
+    #   The `nextToken` value returned from a previous paginated
+    #   `DescribeImageScanFindings` request where `maxResults` was used and
+    #   the results exceeded the value of that parameter. Pagination continues
+    #   from the end of the previous results that returned the `nextToken`
+    #   value. This value is null when there are no more results to return.
+    #
+    # @option params [Integer] :max_results
+    #   The maximum number of image scan results returned by
+    #   `DescribeImageScanFindings` in paginated output. When this parameter
+    #   is used, `DescribeImageScanFindings` only returns `maxResults` results
+    #   in a single page along with a `nextToken` response element. The
+    #   remaining results of the initial request can be seen by sending
+    #   another `DescribeImageScanFindings` request with the returned
+    #   `nextToken` value. This value can be between 1 and 1000. If this
+    #   parameter is not used, then `DescribeImageScanFindings` returns up to
+    #   100 results and a `nextToken` value, if applicable.
+    #
+    # @return [Types::DescribeImageScanFindingsResponse] Returns a {Seahorse::Client::Response response} object which responds to the following methods:
+    #
+    #   * {Types::DescribeImageScanFindingsResponse#registry_id #registry_id} => String
+    #   * {Types::DescribeImageScanFindingsResponse#repository_name #repository_name} => String
+    #   * {Types::DescribeImageScanFindingsResponse#image_id #image_id} => Types::ImageIdentifier
+    #   * {Types::DescribeImageScanFindingsResponse#image_scan_status #image_scan_status} => Types::ImageScanStatus
+    #   * {Types::DescribeImageScanFindingsResponse#image_scan_findings #image_scan_findings} => Types::ImageScanFindings
+    #   * {Types::DescribeImageScanFindingsResponse#next_token #next_token} => String
+    #
+    # @example Request syntax with placeholder values
+    #
+    #   resp = client.describe_image_scan_findings({
+    #     registry_id: "RegistryId",
+    #     repository_name: "RepositoryName", # required
+    #     image_id: { # required
+    #       image_digest: "ImageDigest",
+    #       image_tag: "ImageTag",
+    #     },
+    #     next_token: "NextToken",
+    #     max_results: 1,
+    #   })
+    #
+    # @example Response structure
+    #
+    #   resp.registry_id #=> String
+    #   resp.repository_name #=> String
+    #   resp.image_id.image_digest #=> String
+    #   resp.image_id.image_tag #=> String
+    #   resp.image_scan_status.status #=> String, one of "IN_PROGRESS", "COMPLETE", "FAILED"
+    #   resp.image_scan_status.description #=> String
+    #   resp.image_scan_findings.image_scan_completed_at #=> Time
+    #   resp.image_scan_findings.vulnerability_source_updated_at #=> Time
+    #   resp.image_scan_findings.findings #=> Array
+    #   resp.image_scan_findings.findings[0].name #=> String
+    #   resp.image_scan_findings.findings[0].description #=> String
+    #   resp.image_scan_findings.findings[0].uri #=> String
+    #   resp.image_scan_findings.findings[0].severity #=> String, one of "INFORMATIONAL", "LOW", "MEDIUM", "HIGH", "CRITICAL", "UNDEFINED"
+    #   resp.image_scan_findings.findings[0].attributes #=> Array
+    #   resp.image_scan_findings.findings[0].attributes[0].key #=> String
+    #   resp.image_scan_findings.findings[0].attributes[0].value #=> <Hash,Array,String,Numeric,Boolean,IO,Set,nil>
+    #   resp.image_scan_findings.finding_severity_counts #=> Hash
+    #   resp.image_scan_findings.finding_severity_counts["FindingSeverity"] #=> Integer
+    #   resp.next_token #=> String
+    #
+    # @see http://docs.aws.amazon.com/goto/WebAPI/ecr-2015-09-21/DescribeImageScanFindings AWS API Documentation
+    #
+    # @overload describe_image_scan_findings(params = {})
+    # @param [Hash] params ({})
+    def describe_image_scan_findings(params = {}, options = {})
+      req = build_request(:describe_image_scan_findings, params)
+      req.send_request(options)
+    end
+
     # Returns metadata about the images in a repository, including image
     # size, image tags, and creation date.
     #
@@ -876,6 +977,12 @@ module Aws::ECR
     #   resp.image_details[0].image_tags[0] #=> String
     #   resp.image_details[0].image_size_in_bytes #=> Integer
     #   resp.image_details[0].image_pushed_at #=> Time
+    #   resp.image_details[0].image_scan_status.status #=> String, one of "IN_PROGRESS", "COMPLETE", "FAILED"
+    #   resp.image_details[0].image_scan_status.description #=> String
+    #   resp.image_details[0].image_scan_findings_summary.image_scan_completed_at #=> Time
+    #   resp.image_details[0].image_scan_findings_summary.vulnerability_source_updated_at #=> Time
+    #   resp.image_details[0].image_scan_findings_summary.finding_severity_counts #=> Hash
+    #   resp.image_details[0].image_scan_findings_summary.finding_severity_counts["FindingSeverity"] #=> Integer
     #   resp.next_token #=> String
     #
     # @see http://docs.aws.amazon.com/goto/WebAPI/ecr-2015-09-21/DescribeImages AWS API Documentation
@@ -973,6 +1080,7 @@ module Aws::ECR
     #   resp.repositories[0].repository_uri #=> String
     #   resp.repositories[0].created_at #=> Time
     #   resp.repositories[0].image_tag_mutability #=> String, one of "MUTABLE", "IMMUTABLE"
+    #   resp.repositories[0].image_scanning_configuration.scan_on_push #=> Boolean
     #   resp.next_token #=> String
     #
     # @see http://docs.aws.amazon.com/goto/WebAPI/ecr-2015-09-21/DescribeRepositories AWS API Documentation
@@ -1504,6 +1612,54 @@ module Aws::ECR
       req.send_request(options)
     end
 
+    # Updates the image scanning configuration for a repository.
+    #
+    # @option params [String] :registry_id
+    #   The AWS account ID associated with the registry that contains the
+    #   repository in which to update the image scanning configuration
+    #   setting. If you do not specify a registry, the default registry is
+    #   assumed.
+    #
+    # @option params [required, String] :repository_name
+    #   The name of the repository in which to update the image scanning
+    #   configuration setting.
+    #
+    # @option params [required, Types::ImageScanningConfiguration] :image_scanning_configuration
+    #   The image scanning configuration for the repository. This setting
+    #   determines whether images are scanned for known vulnerabilities after
+    #   being pushed to the repository.
+    #
+    # @return [Types::PutImageScanningConfigurationResponse] Returns a {Seahorse::Client::Response response} object which responds to the following methods:
+    #
+    #   * {Types::PutImageScanningConfigurationResponse#registry_id #registry_id} => String
+    #   * {Types::PutImageScanningConfigurationResponse#repository_name #repository_name} => String
+    #   * {Types::PutImageScanningConfigurationResponse#image_scanning_configuration #image_scanning_configuration} => Types::ImageScanningConfiguration
+    #
+    # @example Request syntax with placeholder values
+    #
+    #   resp = client.put_image_scanning_configuration({
+    #     registry_id: "RegistryId",
+    #     repository_name: "RepositoryName", # required
+    #     image_scanning_configuration: { # required
+    #       scan_on_push: false,
+    #     },
+    #   })
+    #
+    # @example Response structure
+    #
+    #   resp.registry_id #=> String
+    #   resp.repository_name #=> String
+    #   resp.image_scanning_configuration.scan_on_push #=> Boolean
+    #
+    # @see http://docs.aws.amazon.com/goto/WebAPI/ecr-2015-09-21/PutImageScanningConfiguration AWS API Documentation
+    #
+    # @overload put_image_scanning_configuration(params = {})
+    # @param [Hash] params ({})
+    def put_image_scanning_configuration(params = {}, options = {})
+      req = build_request(:put_image_scanning_configuration, params)
+      req.send_request(options)
+    end
+
     # Updates the image tag mutability settings for a repository.
     #
     # @option params [String] :registry_id
@@ -1658,6 +1814,55 @@ module Aws::ECR
       req.send_request(options)
     end
 
+    # Starts an image vulnerability scan.
+    #
+    # @option params [String] :registry_id
+    #   The AWS account ID associated with the registry that contains the
+    #   repository in which to start an image scan request. If you do not
+    #   specify a registry, the default registry is assumed.
+    #
+    # @option params [required, String] :repository_name
+    #   The name of the repository that contains the images to scan.
+    #
+    # @option params [required, Types::ImageIdentifier] :image_id
+    #   An object with identifying information for an Amazon ECR image.
+    #
+    # @return [Types::StartImageScanResponse] Returns a {Seahorse::Client::Response response} object which responds to the following methods:
+    #
+    #   * {Types::StartImageScanResponse#registry_id #registry_id} => String
+    #   * {Types::StartImageScanResponse#repository_name #repository_name} => String
+    #   * {Types::StartImageScanResponse#image_id #image_id} => Types::ImageIdentifier
+    #   * {Types::StartImageScanResponse#image_scan_status #image_scan_status} => Types::ImageScanStatus
+    #
+    # @example Request syntax with placeholder values
+    #
+    #   resp = client.start_image_scan({
+    #     registry_id: "RegistryId",
+    #     repository_name: "RepositoryName", # required
+    #     image_id: { # required
+    #       image_digest: "ImageDigest",
+    #       image_tag: "ImageTag",
+    #     },
+    #   })
+    #
+    # @example Response structure
+    #
+    #   resp.registry_id #=> String
+    #   resp.repository_name #=> String
+    #   resp.image_id.image_digest #=> String
+    #   resp.image_id.image_tag #=> String
+    #   resp.image_scan_status.status #=> String, one of "IN_PROGRESS", "COMPLETE", "FAILED"
+    #   resp.image_scan_status.description #=> String
+    #
+    # @see http://docs.aws.amazon.com/goto/WebAPI/ecr-2015-09-21/StartImageScan AWS API Documentation
+    #
+    # @overload start_image_scan(params = {})
+    # @param [Hash] params ({})
+    def start_image_scan(params = {}, options = {})
+      req = build_request(:start_image_scan, params)
+      req.send_request(options)
+    end
+
     # Starts a preview of the specified lifecycle policy. This allows you to
     # see the results before creating the lifecycle policy.
     #
@@ -1845,7 +2050,7 @@ module Aws::ECR
         params: params,
         config: config)
       context[:gem_name] = 'aws-sdk-ecr'
-      context[:gem_version] = '1.21.0'
+      context[:gem_version] = '1.22.0'
       Seahorse::Client::Request.new(handlers, context)
     end
 

data/lib/aws-sdk-ecr/client_api.rb

@@ -12,6 +12,10 @@ module Aws::ECR
     include Seahorse::Model
 
     Arn = Shapes::StringShape.new(name: 'Arn')
+    Attribute = Shapes::StructureShape.new(name: 'Attribute')
+    AttributeKey = Shapes::StringShape.new(name: 'AttributeKey')
+    AttributeList = Shapes::ListShape.new(name: 'AttributeList')
+    AttributeValue = Shapes::StringShape.new(name: 'AttributeValue')
     AuthorizationData = Shapes::StructureShape.new(name: 'AuthorizationData')
     AuthorizationDataList = Shapes::ListShape.new(name: 'AuthorizationDataList')
     Base64 = Shapes::StringShape.new(name: 'Base64')
@@ -34,6 +38,8 @@ module Aws::ECR
     DeleteRepositoryPolicyResponse = Shapes::StructureShape.new(name: 'DeleteRepositoryPolicyResponse')
     DeleteRepositoryRequest = Shapes::StructureShape.new(name: 'DeleteRepositoryRequest')
     DeleteRepositoryResponse = Shapes::StructureShape.new(name: 'DeleteRepositoryResponse')
+    DescribeImageScanFindingsRequest = Shapes::StructureShape.new(name: 'DescribeImageScanFindingsRequest')
+    DescribeImageScanFindingsResponse = Shapes::StructureShape.new(name: 'DescribeImageScanFindingsResponse')
     DescribeImagesFilter = Shapes::StructureShape.new(name: 'DescribeImagesFilter')
     DescribeImagesRequest = Shapes::StructureShape.new(name: 'DescribeImagesRequest')
     DescribeImagesResponse = Shapes::StructureShape.new(name: 'DescribeImagesResponse')
@@ -43,6 +49,10 @@ module Aws::ECR
     EvaluationTimestamp = Shapes::TimestampShape.new(name: 'EvaluationTimestamp')
     ExceptionMessage = Shapes::StringShape.new(name: 'ExceptionMessage')
     ExpirationTimestamp = Shapes::TimestampShape.new(name: 'ExpirationTimestamp')
+    FindingDescription = Shapes::StringShape.new(name: 'FindingDescription')
+    FindingName = Shapes::StringShape.new(name: 'FindingName')
+    FindingSeverity = Shapes::StringShape.new(name: 'FindingSeverity')
+    FindingSeverityCounts = Shapes::MapShape.new(name: 'FindingSeverityCounts')
     ForceFlag = Shapes::BooleanShape.new(name: 'ForceFlag')
     GetAuthorizationTokenRegistryIdList = Shapes::ListShape.new(name: 'GetAuthorizationTokenRegistryIdList')
     GetAuthorizationTokenRequest = Shapes::StructureShape.new(name: 'GetAuthorizationTokenRequest')
@@ -71,6 +81,12 @@ module Aws::ECR
     ImageList = Shapes::ListShape.new(name: 'ImageList')
     ImageManifest = Shapes::StringShape.new(name: 'ImageManifest')
     ImageNotFoundException = Shapes::StructureShape.new(name: 'ImageNotFoundException')
+    ImageScanFinding = Shapes::StructureShape.new(name: 'ImageScanFinding')
+    ImageScanFindingList = Shapes::ListShape.new(name: 'ImageScanFindingList')
+    ImageScanFindings = Shapes::StructureShape.new(name: 'ImageScanFindings')
+    ImageScanFindingsSummary = Shapes::StructureShape.new(name: 'ImageScanFindingsSummary')
+    ImageScanStatus = Shapes::StructureShape.new(name: 'ImageScanStatus')
+    ImageScanningConfiguration = Shapes::StructureShape.new(name: 'ImageScanningConfiguration')
     ImageSizeInBytes = Shapes::IntegerShape.new(name: 'ImageSizeInBytes')
     ImageTag = Shapes::StringShape.new(name: 'ImageTag')
     ImageTagAlreadyExistsException = Shapes::StructureShape.new(name: 'ImageTagAlreadyExistsException')
@@ -124,6 +140,8 @@ module Aws::ECR
     PushTimestamp = Shapes::TimestampShape.new(name: 'PushTimestamp')
     PutImageRequest = Shapes::StructureShape.new(name: 'PutImageRequest')
     PutImageResponse = Shapes::StructureShape.new(name: 'PutImageResponse')
+    PutImageScanningConfigurationRequest = Shapes::StructureShape.new(name: 'PutImageScanningConfigurationRequest')
+    PutImageScanningConfigurationResponse = Shapes::StructureShape.new(name: 'PutImageScanningConfigurationResponse')
     PutImageTagMutabilityRequest = Shapes::StructureShape.new(name: 'PutImageTagMutabilityRequest')
     PutImageTagMutabilityResponse = Shapes::StructureShape.new(name: 'PutImageTagMutabilityResponse')
     PutLifecyclePolicyRequest = Shapes::StructureShape.new(name: 'PutLifecyclePolicyRequest')
@@ -138,9 +156,17 @@ module Aws::ECR
     RepositoryNotFoundException = Shapes::StructureShape.new(name: 'RepositoryNotFoundException')
     RepositoryPolicyNotFoundException = Shapes::StructureShape.new(name: 'RepositoryPolicyNotFoundException')
     RepositoryPolicyText = Shapes::StringShape.new(name: 'RepositoryPolicyText')
+    ScanNotFoundException = Shapes::StructureShape.new(name: 'ScanNotFoundException')
+    ScanOnPushFlag = Shapes::BooleanShape.new(name: 'ScanOnPushFlag')
+    ScanStatus = Shapes::StringShape.new(name: 'ScanStatus')
+    ScanStatusDescription = Shapes::StringShape.new(name: 'ScanStatusDescription')
+    ScanTimestamp = Shapes::TimestampShape.new(name: 'ScanTimestamp')
     ServerException = Shapes::StructureShape.new(name: 'ServerException')
     SetRepositoryPolicyRequest = Shapes::StructureShape.new(name: 'SetRepositoryPolicyRequest')
     SetRepositoryPolicyResponse = Shapes::StructureShape.new(name: 'SetRepositoryPolicyResponse')
+    SeverityCount = Shapes::IntegerShape.new(name: 'SeverityCount')
+    StartImageScanRequest = Shapes::StructureShape.new(name: 'StartImageScanRequest')
+    StartImageScanResponse = Shapes::StructureShape.new(name: 'StartImageScanResponse')
     StartLifecyclePolicyPreviewRequest = Shapes::StructureShape.new(name: 'StartLifecyclePolicyPreviewRequest')
     StartLifecyclePolicyPreviewResponse = Shapes::StructureShape.new(name: 'StartLifecyclePolicyPreviewResponse')
     Tag = Shapes::StructureShape.new(name: 'Tag')
@@ -159,6 +185,13 @@ module Aws::ECR
     UploadLayerPartResponse = Shapes::StructureShape.new(name: 'UploadLayerPartResponse')
     UploadNotFoundException = Shapes::StructureShape.new(name: 'UploadNotFoundException')
     Url = Shapes::StringShape.new(name: 'Url')
+    VulnerabilitySourceUpdateTimestamp = Shapes::TimestampShape.new(name: 'VulnerabilitySourceUpdateTimestamp')
+
+    Attribute.add_member(:key, Shapes::ShapeRef.new(shape: AttributeKey, required: true, location_name: "key"))
+    Attribute.add_member(:value, Shapes::ShapeRef.new(shape: AttributeValue, location_name: "value"))
+    Attribute.struct_class = Types::Attribute
+
+    AttributeList.member = Shapes::ShapeRef.new(shape: Attribute)
 
     AuthorizationData.add_member(:authorization_token, Shapes::ShapeRef.new(shape: Base64, location_name: "authorizationToken"))
     AuthorizationData.add_member(:expires_at, Shapes::ShapeRef.new(shape: ExpirationTimestamp, location_name: "expiresAt"))
@@ -212,6 +245,7 @@ module Aws::ECR
     CreateRepositoryRequest.add_member(:repository_name, Shapes::ShapeRef.new(shape: RepositoryName, required: true, location_name: "repositoryName"))
     CreateRepositoryRequest.add_member(:tags, Shapes::ShapeRef.new(shape: TagList, location_name: "tags"))
     CreateRepositoryRequest.add_member(:image_tag_mutability, Shapes::ShapeRef.new(shape: ImageTagMutability, location_name: "imageTagMutability"))
+    CreateRepositoryRequest.add_member(:image_scanning_configuration, Shapes::ShapeRef.new(shape: ImageScanningConfiguration, location_name: "imageScanningConfiguration"))
     CreateRepositoryRequest.struct_class = Types::CreateRepositoryRequest
 
     CreateRepositoryResponse.add_member(:repository, Shapes::ShapeRef.new(shape: Repository, location_name: "repository"))
@@ -244,6 +278,21 @@ module Aws::ECR
     DeleteRepositoryResponse.add_member(:repository, Shapes::ShapeRef.new(shape: Repository, location_name: "repository"))
     DeleteRepositoryResponse.struct_class = Types::DeleteRepositoryResponse
 
+    DescribeImageScanFindingsRequest.add_member(:registry_id, Shapes::ShapeRef.new(shape: RegistryId, location_name: "registryId"))
+    DescribeImageScanFindingsRequest.add_member(:repository_name, Shapes::ShapeRef.new(shape: RepositoryName, required: true, location_name: "repositoryName"))
+    DescribeImageScanFindingsRequest.add_member(:image_id, Shapes::ShapeRef.new(shape: ImageIdentifier, required: true, location_name: "imageId"))
+    DescribeImageScanFindingsRequest.add_member(:next_token, Shapes::ShapeRef.new(shape: NextToken, location_name: "nextToken"))
+    DescribeImageScanFindingsRequest.add_member(:max_results, Shapes::ShapeRef.new(shape: MaxResults, location_name: "maxResults"))
+    DescribeImageScanFindingsRequest.struct_class = Types::DescribeImageScanFindingsRequest
+
+    DescribeImageScanFindingsResponse.add_member(:registry_id, Shapes::ShapeRef.new(shape: RegistryId, location_name: "registryId"))
+    DescribeImageScanFindingsResponse.add_member(:repository_name, Shapes::ShapeRef.new(shape: RepositoryName, location_name: "repositoryName"))
+    DescribeImageScanFindingsResponse.add_member(:image_id, Shapes::ShapeRef.new(shape: ImageIdentifier, location_name: "imageId"))
+    DescribeImageScanFindingsResponse.add_member(:image_scan_status, Shapes::ShapeRef.new(shape: ImageScanStatus, location_name: "imageScanStatus"))
+    DescribeImageScanFindingsResponse.add_member(:image_scan_findings, Shapes::ShapeRef.new(shape: ImageScanFindings, location_name: "imageScanFindings"))
+    DescribeImageScanFindingsResponse.add_member(:next_token, Shapes::ShapeRef.new(shape: NextToken, location_name: "nextToken"))
+    DescribeImageScanFindingsResponse.struct_class = Types::DescribeImageScanFindingsResponse
+
     DescribeImagesFilter.add_member(:tag_status, Shapes::ShapeRef.new(shape: TagStatus, location_name: "tagStatus"))
     DescribeImagesFilter.struct_class = Types::DescribeImagesFilter
 
@@ -272,6 +321,9 @@ module Aws::ECR
     EmptyUploadException.add_member(:message, Shapes::ShapeRef.new(shape: ExceptionMessage, location_name: "message"))
     EmptyUploadException.struct_class = Types::EmptyUploadException
 
+    FindingSeverityCounts.key = Shapes::ShapeRef.new(shape: FindingSeverity)
+    FindingSeverityCounts.value = Shapes::ShapeRef.new(shape: SeverityCount)
+
     GetAuthorizationTokenRegistryIdList.member = Shapes::ShapeRef.new(shape: RegistryId)
 
     GetAuthorizationTokenRequest.add_member(:registry_ids, Shapes::ShapeRef.new(shape: GetAuthorizationTokenRegistryIdList, location_name: "registryIds"))
@@ -340,6 +392,8 @@ module Aws::ECR
     ImageDetail.add_member(:image_tags, Shapes::ShapeRef.new(shape: ImageTagList, location_name: "imageTags"))
     ImageDetail.add_member(:image_size_in_bytes, Shapes::ShapeRef.new(shape: ImageSizeInBytes, location_name: "imageSizeInBytes"))
     ImageDetail.add_member(:image_pushed_at, Shapes::ShapeRef.new(shape: PushTimestamp, location_name: "imagePushedAt"))
+    ImageDetail.add_member(:image_scan_status, Shapes::ShapeRef.new(shape: ImageScanStatus, location_name: "imageScanStatus"))
+    ImageDetail.add_member(:image_scan_findings_summary, Shapes::ShapeRef.new(shape: ImageScanFindingsSummary, location_name: "imageScanFindingsSummary"))
     ImageDetail.struct_class = Types::ImageDetail
 
     ImageDetailList.member = Shapes::ShapeRef.new(shape: ImageDetail)
@@ -362,6 +416,33 @@ module Aws::ECR
     ImageNotFoundException.add_member(:message, Shapes::ShapeRef.new(shape: ExceptionMessage, location_name: "message"))
     ImageNotFoundException.struct_class = Types::ImageNotFoundException
 
+    ImageScanFinding.add_member(:name, Shapes::ShapeRef.new(shape: FindingName, location_name: "name"))
+    ImageScanFinding.add_member(:description, Shapes::ShapeRef.new(shape: FindingDescription, location_name: "description"))
+    ImageScanFinding.add_member(:uri, Shapes::ShapeRef.new(shape: Url, location_name: "uri"))
+    ImageScanFinding.add_member(:severity, Shapes::ShapeRef.new(shape: FindingSeverity, location_name: "severity"))
+    ImageScanFinding.add_member(:attributes, Shapes::ShapeRef.new(shape: AttributeList, location_name: "attributes"))
+    ImageScanFinding.struct_class = Types::ImageScanFinding
+
+    ImageScanFindingList.member = Shapes::ShapeRef.new(shape: ImageScanFinding)
+
+    ImageScanFindings.add_member(:image_scan_completed_at, Shapes::ShapeRef.new(shape: ScanTimestamp, location_name: "imageScanCompletedAt"))
+    ImageScanFindings.add_member(:vulnerability_source_updated_at, Shapes::ShapeRef.new(shape: VulnerabilitySourceUpdateTimestamp, location_name: "vulnerabilitySourceUpdatedAt"))
+    ImageScanFindings.add_member(:findings, Shapes::ShapeRef.new(shape: ImageScanFindingList, location_name: "findings"))
+    ImageScanFindings.add_member(:finding_severity_counts, Shapes::ShapeRef.new(shape: FindingSeverityCounts, location_name: "findingSeverityCounts"))
+    ImageScanFindings.struct_class = Types::ImageScanFindings
+
+    ImageScanFindingsSummary.add_member(:image_scan_completed_at, Shapes::ShapeRef.new(shape: ScanTimestamp, location_name: "imageScanCompletedAt"))
+    ImageScanFindingsSummary.add_member(:vulnerability_source_updated_at, Shapes::ShapeRef.new(shape: VulnerabilitySourceUpdateTimestamp, location_name: "vulnerabilitySourceUpdatedAt"))
+    ImageScanFindingsSummary.add_member(:finding_severity_counts, Shapes::ShapeRef.new(shape: FindingSeverityCounts, location_name: "findingSeverityCounts"))
+    ImageScanFindingsSummary.struct_class = Types::ImageScanFindingsSummary
+
+    ImageScanStatus.add_member(:status, Shapes::ShapeRef.new(shape: ScanStatus, location_name: "status"))
+    ImageScanStatus.add_member(:description, Shapes::ShapeRef.new(shape: ScanStatusDescription, location_name: "description"))
+    ImageScanStatus.struct_class = Types::ImageScanStatus
+
+    ImageScanningConfiguration.add_member(:scan_on_push, Shapes::ShapeRef.new(shape: ScanOnPushFlag, location_name: "scanOnPush"))
+    ImageScanningConfiguration.struct_class = Types::ImageScanningConfiguration
+
     ImageTagAlreadyExistsException.add_member(:message, Shapes::ShapeRef.new(shape: ExceptionMessage, location_name: "message"))
     ImageTagAlreadyExistsException.struct_class = Types::ImageTagAlreadyExistsException
 
@@ -481,6 +562,16 @@ module Aws::ECR
     PutImageResponse.add_member(:image, Shapes::ShapeRef.new(shape: Image, location_name: "image"))
     PutImageResponse.struct_class = Types::PutImageResponse
 
+    PutImageScanningConfigurationRequest.add_member(:registry_id, Shapes::ShapeRef.new(shape: RegistryId, location_name: "registryId"))
+    PutImageScanningConfigurationRequest.add_member(:repository_name, Shapes::ShapeRef.new(shape: RepositoryName, required: true, location_name: "repositoryName"))
+    PutImageScanningConfigurationRequest.add_member(:image_scanning_configuration, Shapes::ShapeRef.new(shape: ImageScanningConfiguration, required: true, location_name: "imageScanningConfiguration"))
+    PutImageScanningConfigurationRequest.struct_class = Types::PutImageScanningConfigurationRequest
+
+    PutImageScanningConfigurationResponse.add_member(:registry_id, Shapes::ShapeRef.new(shape: RegistryId, location_name: "registryId"))
+    PutImageScanningConfigurationResponse.add_member(:repository_name, Shapes::ShapeRef.new(shape: RepositoryName, location_name: "repositoryName"))
+    PutImageScanningConfigurationResponse.add_member(:image_scanning_configuration, Shapes::ShapeRef.new(shape: ImageScanningConfiguration, location_name: "imageScanningConfiguration"))
+    PutImageScanningConfigurationResponse.struct_class = Types::PutImageScanningConfigurationResponse
+
     PutImageTagMutabilityRequest.add_member(:registry_id, Shapes::ShapeRef.new(shape: RegistryId, location_name: "registryId"))
     PutImageTagMutabilityRequest.add_member(:repository_name, Shapes::ShapeRef.new(shape: RepositoryName, required: true, location_name: "repositoryName"))
     PutImageTagMutabilityRequest.add_member(:image_tag_mutability, Shapes::ShapeRef.new(shape: ImageTagMutability, required: true, location_name: "imageTagMutability"))
@@ -507,6 +598,7 @@ module Aws::ECR
     Repository.add_member(:repository_uri, Shapes::ShapeRef.new(shape: Url, location_name: "repositoryUri"))
     Repository.add_member(:created_at, Shapes::ShapeRef.new(shape: CreationTimestamp, location_name: "createdAt"))
     Repository.add_member(:image_tag_mutability, Shapes::ShapeRef.new(shape: ImageTagMutability, location_name: "imageTagMutability"))
+    Repository.add_member(:image_scanning_configuration, Shapes::ShapeRef.new(shape: ImageScanningConfiguration, location_name: "imageScanningConfiguration"))
     Repository.struct_class = Types::Repository
 
     RepositoryAlreadyExistsException.add_member(:message, Shapes::ShapeRef.new(shape: ExceptionMessage, location_name: "message"))
@@ -525,6 +617,9 @@ module Aws::ECR
     RepositoryPolicyNotFoundException.add_member(:message, Shapes::ShapeRef.new(shape: ExceptionMessage, location_name: "message"))
     RepositoryPolicyNotFoundException.struct_class = Types::RepositoryPolicyNotFoundException
 
+    ScanNotFoundException.add_member(:message, Shapes::ShapeRef.new(shape: ExceptionMessage, location_name: "message"))
+    ScanNotFoundException.struct_class = Types::ScanNotFoundException
+
     ServerException.add_member(:message, Shapes::ShapeRef.new(shape: ExceptionMessage, location_name: "message"))
     ServerException.struct_class = Types::ServerException
 
@@ -539,6 +634,17 @@ module Aws::ECR
     SetRepositoryPolicyResponse.add_member(:policy_text, Shapes::ShapeRef.new(shape: RepositoryPolicyText, location_name: "policyText"))
     SetRepositoryPolicyResponse.struct_class = Types::SetRepositoryPolicyResponse
 
+    StartImageScanRequest.add_member(:registry_id, Shapes::ShapeRef.new(shape: RegistryId, location_name: "registryId"))
+    StartImageScanRequest.add_member(:repository_name, Shapes::ShapeRef.new(shape: RepositoryName, required: true, location_name: "repositoryName"))
+    StartImageScanRequest.add_member(:image_id, Shapes::ShapeRef.new(shape: ImageIdentifier, required: true, location_name: "imageId"))
+    StartImageScanRequest.struct_class = Types::StartImageScanRequest
+
+    StartImageScanResponse.add_member(:registry_id, Shapes::ShapeRef.new(shape: RegistryId, location_name: "registryId"))
+    StartImageScanResponse.add_member(:repository_name, Shapes::ShapeRef.new(shape: RepositoryName, location_name: "repositoryName"))
+    StartImageScanResponse.add_member(:image_id, Shapes::ShapeRef.new(shape: ImageIdentifier, location_name: "imageId"))
+    StartImageScanResponse.add_member(:image_scan_status, Shapes::ShapeRef.new(shape: ImageScanStatus, location_name: "imageScanStatus"))
+    StartImageScanResponse.struct_class = Types::StartImageScanResponse
+
     StartLifecyclePolicyPreviewRequest.add_member(:registry_id, Shapes::ShapeRef.new(shape: RegistryId, location_name: "registryId"))
     StartLifecyclePolicyPreviewRequest.add_member(:repository_name, Shapes::ShapeRef.new(shape: RepositoryName, required: true, location_name: "repositoryName"))
     StartLifecyclePolicyPreviewRequest.add_member(:lifecycle_policy_text, Shapes::ShapeRef.new(shape: LifecyclePolicyText, location_name: "lifecyclePolicyText"))
@@ -709,6 +815,25 @@ module Aws::ECR
         o.errors << Shapes::ShapeRef.new(shape: RepositoryPolicyNotFoundException)
       end)
 
+      api.add_operation(:describe_image_scan_findings, Seahorse::Model::Operation.new.tap do |o|
+        o.name = "DescribeImageScanFindings"
+        o.http_method = "POST"
+        o.http_request_uri = "/"
+        o.input = Shapes::ShapeRef.new(shape: DescribeImageScanFindingsRequest)
+        o.output = Shapes::ShapeRef.new(shape: DescribeImageScanFindingsResponse)
+        o.errors << Shapes::ShapeRef.new(shape: ServerException)
+        o.errors << Shapes::ShapeRef.new(shape: InvalidParameterException)
+        o.errors << Shapes::ShapeRef.new(shape: RepositoryNotFoundException)
+        o.errors << Shapes::ShapeRef.new(shape: ImageNotFoundException)
+        o.errors << Shapes::ShapeRef.new(shape: ScanNotFoundException)
+        o[:pager] = Aws::Pager.new(
+          limit_key: "max_results",
+          tokens: {
+            "next_token" => "next_token"
+          }
+        )
+      end)
+
       api.add_operation(:describe_images, Seahorse::Model::Operation.new.tap do |o|
         o.name = "DescribeImages"
         o.http_method = "POST"
@@ -789,6 +914,12 @@ module Aws::ECR
         o.errors << Shapes::ShapeRef.new(shape: InvalidParameterException)
         o.errors << Shapes::ShapeRef.new(shape: RepositoryNotFoundException)
         o.errors << Shapes::ShapeRef.new(shape: LifecyclePolicyPreviewNotFoundException)
+        o[:pager] = Aws::Pager.new(
+          limit_key: "max_results",
+          tokens: {
+            "next_token" => "next_token"
+          }
+        )
       end)
 
       api.add_operation(:get_repository_policy, Seahorse::Model::Operation.new.tap do |o|
@@ -857,6 +988,17 @@ module Aws::ECR
         o.errors << Shapes::ShapeRef.new(shape: ImageTagAlreadyExistsException)
       end)
 
+      api.add_operation(:put_image_scanning_configuration, Seahorse::Model::Operation.new.tap do |o|
+        o.name = "PutImageScanningConfiguration"
+        o.http_method = "POST"
+        o.http_request_uri = "/"
+        o.input = Shapes::ShapeRef.new(shape: PutImageScanningConfigurationRequest)
+        o.output = Shapes::ShapeRef.new(shape: PutImageScanningConfigurationResponse)
+        o.errors << Shapes::ShapeRef.new(shape: ServerException)
+        o.errors << Shapes::ShapeRef.new(shape: InvalidParameterException)
+        o.errors << Shapes::ShapeRef.new(shape: RepositoryNotFoundException)
+      end)
+
       api.add_operation(:put_image_tag_mutability, Seahorse::Model::Operation.new.tap do |o|
         o.name = "PutImageTagMutability"
         o.http_method = "POST"
@@ -890,6 +1032,18 @@ module Aws::ECR
         o.errors << Shapes::ShapeRef.new(shape: RepositoryNotFoundException)
       end)
 
+      api.add_operation(:start_image_scan, Seahorse::Model::Operation.new.tap do |o|
+        o.name = "StartImageScan"
+        o.http_method = "POST"
+        o.http_request_uri = "/"
+        o.input = Shapes::ShapeRef.new(shape: StartImageScanRequest)
+        o.output = Shapes::ShapeRef.new(shape: StartImageScanResponse)
+        o.errors << Shapes::ShapeRef.new(shape: ServerException)
+        o.errors << Shapes::ShapeRef.new(shape: InvalidParameterException)
+        o.errors << Shapes::ShapeRef.new(shape: RepositoryNotFoundException)
+        o.errors << Shapes::ShapeRef.new(shape: ImageNotFoundException)
+      end)
+
       api.add_operation(:start_lifecycle_policy_preview, Seahorse::Model::Operation.new.tap do |o|
         o.name = "StartLifecyclePolicyPreview"
         o.http_method = "POST"

data/lib/aws-sdk-ecr/errors.rb

@@ -350,6 +350,22 @@ module Aws::ECR
 
     end
 
+    class ScanNotFoundException < ServiceError
+
+      # @param [Seahorse::Client::RequestContext] context
+      # @param [String] message
+      # @param [Aws::ECR::Types::ScanNotFoundException] data
+      def initialize(context, message, data = Aws::EmptyStructure.new)
+        super(context, message, data)
+      end
+
+      # @return [String]
+      def message
+        @message || @data[:message]
+      end
+
+    end
+
     class ServerException < ServiceError
 
       # @param [Seahorse::Client::RequestContext] context

data/lib/aws-sdk-ecr/types.rb

@@ -8,6 +8,24 @@
 module Aws::ECR
   module Types
 
+    # This data type is used in the ImageScanFinding data type.
+    #
+    # @!attribute [rw] key
+    #   The attribute key.
+    #   @return [String]
+    #
+    # @!attribute [rw] value
+    #   The value assigned to the attribute key.
+    #   @return [String]
+    #
+    # @see http://docs.aws.amazon.com/goto/WebAPI/ecr-2015-09-21/Attribute AWS API Documentation
+    #
+    class Attribute < Struct.new(
+      :key,
+      :value)
+      include Aws::Structure
+    end
+
     # An object representing authorization data for an Amazon ECR registry.
     #
     # @!attribute [rw] authorization_token
@@ -289,6 +307,9 @@ module Aws::ECR
     #           },
     #         ],
     #         image_tag_mutability: "MUTABLE", # accepts MUTABLE, IMMUTABLE
+    #         image_scanning_configuration: {
+    #           scan_on_push: false,
+    #         },
     #       }
     #
     # @!attribute [rw] repository_name
@@ -314,12 +335,19 @@ module Aws::ECR
     #   prevent them from being overwritten.
     #   @return [String]
     #
+    # @!attribute [rw] image_scanning_configuration
+    #   The image scanning configuration for the repository. This setting
+    #   determines whether images are scanned for known vulnerabilities
+    #   after being pushed to the repository.
+    #   @return [Types::ImageScanningConfiguration]
+    #
     # @see http://docs.aws.amazon.com/goto/WebAPI/ecr-2015-09-21/CreateRepositoryRequest AWS API Documentation
     #
     class CreateRepositoryRequest < Struct.new(
       :repository_name,
       :tags,
-      :image_tag_mutability)
+      :image_tag_mutability,
+      :image_scanning_configuration)
       include Aws::Structure
     end
 
@@ -477,6 +505,107 @@ module Aws::ECR
       include Aws::Structure
     end
 
+    # @note When making an API call, you may pass DescribeImageScanFindingsRequest
+    #   data as a hash:
+    #
+    #       {
+    #         registry_id: "RegistryId",
+    #         repository_name: "RepositoryName", # required
+    #         image_id: { # required
+    #           image_digest: "ImageDigest",
+    #           image_tag: "ImageTag",
+    #         },
+    #         next_token: "NextToken",
+    #         max_results: 1,
+    #       }
+    #
+    # @!attribute [rw] registry_id
+    #   The AWS account ID associated with the registry that contains the
+    #   repository in which to describe the image scan findings for. If you
+    #   do not specify a registry, the default registry is assumed.
+    #   @return [String]
+    #
+    # @!attribute [rw] repository_name
+    #   The repository for the image for which to describe the scan
+    #   findings.
+    #   @return [String]
+    #
+    # @!attribute [rw] image_id
+    #   An object with identifying information for an Amazon ECR image.
+    #   @return [Types::ImageIdentifier]
+    #
+    # @!attribute [rw] next_token
+    #   The `nextToken` value returned from a previous paginated
+    #   `DescribeImageScanFindings` request where `maxResults` was used and
+    #   the results exceeded the value of that parameter. Pagination
+    #   continues from the end of the previous results that returned the
+    #   `nextToken` value. This value is null when there are no more results
+    #   to return.
+    #   @return [String]
+    #
+    # @!attribute [rw] max_results
+    #   The maximum number of image scan results returned by
+    #   `DescribeImageScanFindings` in paginated output. When this parameter
+    #   is used, `DescribeImageScanFindings` only returns `maxResults`
+    #   results in a single page along with a `nextToken` response element.
+    #   The remaining results of the initial request can be seen by sending
+    #   another `DescribeImageScanFindings` request with the returned
+    #   `nextToken` value. This value can be between 1 and 1000. If this
+    #   parameter is not used, then `DescribeImageScanFindings` returns up
+    #   to 100 results and a `nextToken` value, if applicable.
+    #   @return [Integer]
+    #
+    # @see http://docs.aws.amazon.com/goto/WebAPI/ecr-2015-09-21/DescribeImageScanFindingsRequest AWS API Documentation
+    #
+    class DescribeImageScanFindingsRequest < Struct.new(
+      :registry_id,
+      :repository_name,
+      :image_id,
+      :next_token,
+      :max_results)
+      include Aws::Structure
+    end
+
+    # @!attribute [rw] registry_id
+    #   The registry ID associated with the request.
+    #   @return [String]
+    #
+    # @!attribute [rw] repository_name
+    #   The repository name associated with the request.
+    #   @return [String]
+    #
+    # @!attribute [rw] image_id
+    #   An object with identifying information for an Amazon ECR image.
+    #   @return [Types::ImageIdentifier]
+    #
+    # @!attribute [rw] image_scan_status
+    #   The current state of the scan.
+    #   @return [Types::ImageScanStatus]
+    #
+    # @!attribute [rw] image_scan_findings
+    #   The information contained in the image scan findings.
+    #   @return [Types::ImageScanFindings]
+    #
+    # @!attribute [rw] next_token
+    #   The `nextToken` value to include in a future
+    #   `DescribeImageScanFindings` request. When the results of a
+    #   `DescribeImageScanFindings` request exceed `maxResults`, this value
+    #   can be used to retrieve the next page of results. This value is null
+    #   when there are no more results to return.
+    #   @return [String]
+    #
+    # @see http://docs.aws.amazon.com/goto/WebAPI/ecr-2015-09-21/DescribeImageScanFindingsResponse AWS API Documentation
+    #
+    class DescribeImageScanFindingsResponse < Struct.new(
+      :registry_id,
+      :repository_name,
+      :image_id,
+      :image_scan_status,
+      :image_scan_findings,
+      :next_token)
+      include Aws::Structure
+    end
+
     # An object representing a filter on a DescribeImages operation.
     #
     # @note When making an API call, you may pass DescribeImagesFilter
@@ -1063,6 +1192,14 @@ module Aws::ECR
     #   which the current image was pushed to the repository.
     #   @return [Time]
     #
+    # @!attribute [rw] image_scan_status
+    #   The current state of the scan.
+    #   @return [Types::ImageScanStatus]
+    #
+    # @!attribute [rw] image_scan_findings_summary
+    #   A summary of the last completed image scan.
+    #   @return [Types::ImageScanFindingsSummary]
+    #
     # @see http://docs.aws.amazon.com/goto/WebAPI/ecr-2015-09-21/ImageDetail AWS API Documentation
     #
     class ImageDetail < Struct.new(
@@ -1071,7 +1208,9 @@ module Aws::ECR
       :image_digest,
       :image_tags,
       :image_size_in_bytes,
-      :image_pushed_at)
+      :image_pushed_at,
+      :image_scan_status,
+      :image_scan_findings_summary)
       include Aws::Structure
     end
 
@@ -1136,6 +1275,134 @@ module Aws::ECR
       include Aws::Structure
     end
 
+    # Contains information about an image scan finding.
+    #
+    # @!attribute [rw] name
+    #   The name associated with the finding, usually a CVE number.
+    #   @return [String]
+    #
+    # @!attribute [rw] description
+    #   The description of the finding.
+    #   @return [String]
+    #
+    # @!attribute [rw] uri
+    #   A link containing additional details about the security
+    #   vulnerability.
+    #   @return [String]
+    #
+    # @!attribute [rw] severity
+    #   The finding severity.
+    #   @return [String]
+    #
+    # @!attribute [rw] attributes
+    #   A collection of attributes of the host from which the finding is
+    #   generated.
+    #   @return [Array<Types::Attribute>]
+    #
+    # @see http://docs.aws.amazon.com/goto/WebAPI/ecr-2015-09-21/ImageScanFinding AWS API Documentation
+    #
+    class ImageScanFinding < Struct.new(
+      :name,
+      :description,
+      :uri,
+      :severity,
+      :attributes)
+      include Aws::Structure
+    end
+
+    # The details of an image scan.
+    #
+    # @!attribute [rw] image_scan_completed_at
+    #   The time of the last completed image scan.
+    #   @return [Time]
+    #
+    # @!attribute [rw] vulnerability_source_updated_at
+    #   The time when the vulnerability data was last scanned.
+    #   @return [Time]
+    #
+    # @!attribute [rw] findings
+    #   The findings from the image scan.
+    #   @return [Array<Types::ImageScanFinding>]
+    #
+    # @!attribute [rw] finding_severity_counts
+    #   The image vulnerability counts, sorted by severity.
+    #   @return [Hash<String,Integer>]
+    #
+    # @see http://docs.aws.amazon.com/goto/WebAPI/ecr-2015-09-21/ImageScanFindings AWS API Documentation
+    #
+    class ImageScanFindings < Struct.new(
+      :image_scan_completed_at,
+      :vulnerability_source_updated_at,
+      :findings,
+      :finding_severity_counts)
+      include Aws::Structure
+    end
+
+    # A summary of the last completed image scan.
+    #
+    # @!attribute [rw] image_scan_completed_at
+    #   The time of the last completed image scan.
+    #   @return [Time]
+    #
+    # @!attribute [rw] vulnerability_source_updated_at
+    #   The time when the vulnerability data was last scanned.
+    #   @return [Time]
+    #
+    # @!attribute [rw] finding_severity_counts
+    #   The image vulnerability counts, sorted by severity.
+    #   @return [Hash<String,Integer>]
+    #
+    # @see http://docs.aws.amazon.com/goto/WebAPI/ecr-2015-09-21/ImageScanFindingsSummary AWS API Documentation
+    #
+    class ImageScanFindingsSummary < Struct.new(
+      :image_scan_completed_at,
+      :vulnerability_source_updated_at,
+      :finding_severity_counts)
+      include Aws::Structure
+    end
+
+    # The current status of an image scan.
+    #
+    # @!attribute [rw] status
+    #   The current state of an image scan.
+    #   @return [String]
+    #
+    # @!attribute [rw] description
+    #   The description of the image scan status.
+    #   @return [String]
+    #
+    # @see http://docs.aws.amazon.com/goto/WebAPI/ecr-2015-09-21/ImageScanStatus AWS API Documentation
+    #
+    class ImageScanStatus < Struct.new(
+      :status,
+      :description)
+      include Aws::Structure
+    end
+
+    # The image scanning configuration for a repository.
+    #
+    # @note When making an API call, you may pass ImageScanningConfiguration
+    #   data as a hash:
+    #
+    #       {
+    #         scan_on_push: false,
+    #       }
+    #
+    # @!attribute [rw] scan_on_push
+    #   The setting that determines whether images are scanned after being
+    #   pushed to a repository. If set to `true`, images will be scanned
+    #   after being pushed. If this parameter is not specified, it will
+    #   default to `false` and images will not be scanned unless a scan is
+    #   manually started with the StartImageScan API.
+    #   @return [Boolean]
+    #
+    # @see http://docs.aws.amazon.com/goto/WebAPI/ecr-2015-09-21/ImageScanningConfiguration AWS API Documentation
+    #
+    class ImageScanningConfiguration < Struct.new(
+      :scan_on_push)
+      include Aws::Structure
+    end
+
     # The specified image is tagged with a tag that already exists. The
     # repository is configured for tag immutability.
     #
@@ -1701,6 +1968,65 @@ module Aws::ECR
       include Aws::Structure
     end
 
+    # @note When making an API call, you may pass PutImageScanningConfigurationRequest
+    #   data as a hash:
+    #
+    #       {
+    #         registry_id: "RegistryId",
+    #         repository_name: "RepositoryName", # required
+    #         image_scanning_configuration: { # required
+    #           scan_on_push: false,
+    #         },
+    #       }
+    #
+    # @!attribute [rw] registry_id
+    #   The AWS account ID associated with the registry that contains the
+    #   repository in which to update the image scanning configuration
+    #   setting. If you do not specify a registry, the default registry is
+    #   assumed.
+    #   @return [String]
+    #
+    # @!attribute [rw] repository_name
+    #   The name of the repository in which to update the image scanning
+    #   configuration setting.
+    #   @return [String]
+    #
+    # @!attribute [rw] image_scanning_configuration
+    #   The image scanning configuration for the repository. This setting
+    #   determines whether images are scanned for known vulnerabilities
+    #   after being pushed to the repository.
+    #   @return [Types::ImageScanningConfiguration]
+    #
+    # @see http://docs.aws.amazon.com/goto/WebAPI/ecr-2015-09-21/PutImageScanningConfigurationRequest AWS API Documentation
+    #
+    class PutImageScanningConfigurationRequest < Struct.new(
+      :registry_id,
+      :repository_name,
+      :image_scanning_configuration)
+      include Aws::Structure
+    end
+
+    # @!attribute [rw] registry_id
+    #   The registry ID associated with the request.
+    #   @return [String]
+    #
+    # @!attribute [rw] repository_name
+    #   The repository name associated with the request.
+    #   @return [String]
+    #
+    # @!attribute [rw] image_scanning_configuration
+    #   The image scanning configuration setting for the repository.
+    #   @return [Types::ImageScanningConfiguration]
+    #
+    # @see http://docs.aws.amazon.com/goto/WebAPI/ecr-2015-09-21/PutImageScanningConfigurationResponse AWS API Documentation
+    #
+    class PutImageScanningConfigurationResponse < Struct.new(
+      :registry_id,
+      :repository_name,
+      :image_scanning_configuration)
+      include Aws::Structure
+    end
+
     # @note When making an API call, you may pass PutImageTagMutabilityRequest
     #   data as a hash:
     #
@@ -1844,6 +2170,10 @@ module Aws::ECR
     #   The tag mutability setting for the repository.
     #   @return [String]
     #
+    # @!attribute [rw] image_scanning_configuration
+    #   The image scanning configuration for a repository.
+    #   @return [Types::ImageScanningConfiguration]
+    #
     # @see http://docs.aws.amazon.com/goto/WebAPI/ecr-2015-09-21/Repository AWS API Documentation
     #
     class Repository < Struct.new(
@@ -1852,7 +2182,8 @@ module Aws::ECR
       :repository_name,
       :repository_uri,
       :created_at,
-      :image_tag_mutability)
+      :image_tag_mutability,
+      :image_scanning_configuration)
       include Aws::Structure
     end
 
@@ -1913,6 +2244,19 @@ module Aws::ECR
       include Aws::Structure
     end
 
+    # The specified image scan could not be found. Ensure that image
+    # scanning is enabled on the repository and try again.
+    #
+    # @!attribute [rw] message
+    #   @return [String]
+    #
+    # @see http://docs.aws.amazon.com/goto/WebAPI/ecr-2015-09-21/ScanNotFoundException AWS API Documentation
+    #
+    class ScanNotFoundException < Struct.new(
+      :message)
+      include Aws::Structure
+    end
+
     # These errors are usually caused by a server-side issue.
     #
     # @!attribute [rw] message
@@ -1994,6 +2338,67 @@ module Aws::ECR
       include Aws::Structure
     end
 
+    # @note When making an API call, you may pass StartImageScanRequest
+    #   data as a hash:
+    #
+    #       {
+    #         registry_id: "RegistryId",
+    #         repository_name: "RepositoryName", # required
+    #         image_id: { # required
+    #           image_digest: "ImageDigest",
+    #           image_tag: "ImageTag",
+    #         },
+    #       }
+    #
+    # @!attribute [rw] registry_id
+    #   The AWS account ID associated with the registry that contains the
+    #   repository in which to start an image scan request. If you do not
+    #   specify a registry, the default registry is assumed.
+    #   @return [String]
+    #
+    # @!attribute [rw] repository_name
+    #   The name of the repository that contains the images to scan.
+    #   @return [String]
+    #
+    # @!attribute [rw] image_id
+    #   An object with identifying information for an Amazon ECR image.
+    #   @return [Types::ImageIdentifier]
+    #
+    # @see http://docs.aws.amazon.com/goto/WebAPI/ecr-2015-09-21/StartImageScanRequest AWS API Documentation
+    #
+    class StartImageScanRequest < Struct.new(
+      :registry_id,
+      :repository_name,
+      :image_id)
+      include Aws::Structure
+    end
+
+    # @!attribute [rw] registry_id
+    #   The registry ID associated with the request.
+    #   @return [String]
+    #
+    # @!attribute [rw] repository_name
+    #   The repository name associated with the request.
+    #   @return [String]
+    #
+    # @!attribute [rw] image_id
+    #   An object with identifying information for an Amazon ECR image.
+    #   @return [Types::ImageIdentifier]
+    #
+    # @!attribute [rw] image_scan_status
+    #   The current state of the scan.
+    #   @return [Types::ImageScanStatus]
+    #
+    # @see http://docs.aws.amazon.com/goto/WebAPI/ecr-2015-09-21/StartImageScanResponse AWS API Documentation
+    #
+    class StartImageScanResponse < Struct.new(
+      :registry_id,
+      :repository_name,
+      :image_id,
+      :image_scan_status)
+      include Aws::Structure
+    end
+
     # @note When making an API call, you may pass StartLifecyclePolicyPreviewRequest
     #   data as a hash:
     #

metadata

@@ -1,14 +1,14 @@
 --- !ruby/object:Gem::Specification
 name: aws-sdk-ecr
 version: !ruby/object:Gem::Version
-  version: 1.21.0
+  version: 1.22.0
 platform: ruby
 authors:
 - Amazon Web Services
 autorequire: 
 bindir: bin
 cert_chain: []
-date: 2019-10-23 00:00:00.000000000 Z
+date: 2019-10-28 00:00:00.000000000 Z
 dependencies:
 - !ruby/object:Gem::Dependency
   name: aws-sdk-core