RubyGems - aws-sdk-ecr - Versions diffs - 1.49.0 → 1.50.0 - Mend

aws-sdk-ecr 1.49.0 → 1.50.0

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (9) hide show

checksums.yaml +4 -4
data/CHANGELOG.md +5 -0
data/VERSION +1 -1
data/lib/aws-sdk-ecr/client.rb +347 -9
data/lib/aws-sdk-ecr/client_api.rb +373 -1
data/lib/aws-sdk-ecr/errors.rb +48 -0
data/lib/aws-sdk-ecr/types.rb +973 -15
data/lib/aws-sdk-ecr.rb +1 -1
metadata +2 -2

data/lib/aws-sdk-ecr/types.rb CHANGED Viewed

@@ -60,6 +60,56 @@ module Aws::ECR
       include Aws::Structure
     end
+    # The image details of the Amazon ECR container image.
+    #
+    # @!attribute [rw] architecture
+    #   The architecture of the Amazon ECR container image.
+    #   @return [String]
+    #
+    # @!attribute [rw] author
+    #   The image author of the Amazon ECR container image.
+    #   @return [String]
+    #
+    # @!attribute [rw] image_hash
+    #   The image hash of the Amazon ECR container image.
+    #   @return [String]
+    #
+    # @!attribute [rw] image_tags
+    #   The image tags attached to the Amazon ECR container image.
+    #   @return [Array<String>]
+    #
+    # @!attribute [rw] platform
+    #   The platform of the Amazon ECR container image.
+    #   @return [String]
+    #
+    # @!attribute [rw] pushed_at
+    #   The date and time the Amazon ECR container image was pushed.
+    #   @return [Time]
+    #
+    # @!attribute [rw] registry
+    #   The registry the Amazon ECR container image belongs to.
+    #   @return [String]
+    #
+    # @!attribute [rw] repository_name
+    #   The name of the repository the Amazon ECR container image resides
+    #   in.
+    #   @return [String]
+    #
+    # @see http://docs.aws.amazon.com/goto/WebAPI/ecr-2015-09-21/AwsEcrContainerImageDetails AWS API Documentation
+    #
+    class AwsEcrContainerImageDetails < Struct.new(
+      :architecture,
+      :author,
+      :image_hash,
+      :image_tags,
+      :platform,
+      :pushed_at,
+      :registry,
+      :repository_name)
+      SENSITIVE = []
+      include Aws::Structure
+    end
     # @note When making an API call, you may pass BatchCheckLayerAvailabilityRequest
     #   data as a hash:
     #
@@ -240,6 +290,42 @@ module Aws::ECR
       include Aws::Structure
     end
+    # @note When making an API call, you may pass BatchGetRepositoryScanningConfigurationRequest
+    #   data as a hash:
+    #
+    #       {
+    #         repository_names: ["RepositoryName"], # required
+    #       }
+    #
+    # @!attribute [rw] repository_names
+    #   One or more repository names to get the scanning configuration for.
+    #   @return [Array<String>]
+    #
+    # @see http://docs.aws.amazon.com/goto/WebAPI/ecr-2015-09-21/BatchGetRepositoryScanningConfigurationRequest AWS API Documentation
+    #
+    class BatchGetRepositoryScanningConfigurationRequest < Struct.new(
+      :repository_names)
+      SENSITIVE = []
+      include Aws::Structure
+    end
+    # @!attribute [rw] scanning_configurations
+    #   The scanning configuration for the requested repositories.
+    #   @return [Array<Types::RepositoryScanningConfiguration>]
+    #
+    # @!attribute [rw] failures
+    #   Any failures associated with the call.
+    #   @return [Array<Types::RepositoryScanningConfigurationFailure>]
+    #
+    # @see http://docs.aws.amazon.com/goto/WebAPI/ecr-2015-09-21/BatchGetRepositoryScanningConfigurationResponse AWS API Documentation
+    #
+    class BatchGetRepositoryScanningConfigurationResponse < Struct.new(
+      :scanning_configurations,
+      :failures)
+      SENSITIVE = []
+      include Aws::Structure
+    end
     # @note When making an API call, you may pass CompleteLayerUploadRequest
     #   data as a hash:
     #
@@ -307,6 +393,71 @@ module Aws::ECR
       include Aws::Structure
     end
+    # @note When making an API call, you may pass CreatePullThroughCacheRuleRequest
+    #   data as a hash:
+    #
+    #       {
+    #         ecr_repository_prefix: "PullThroughCacheRuleRepositoryPrefix", # required
+    #         upstream_registry_url: "Url", # required
+    #         registry_id: "RegistryId",
+    #       }
+    #
+    # @!attribute [rw] ecr_repository_prefix
+    #   The repository name prefix to use when caching images from the
+    #   source registry.
+    #   @return [String]
+    #
+    # @!attribute [rw] upstream_registry_url
+    #   The registry URL of the upstream public registry to use as the
+    #   source for the pull through cache rule.
+    #   @return [String]
+    #
+    # @!attribute [rw] registry_id
+    #   The Amazon Web Services account ID associated with the registry to
+    #   create the pull through cache rule for. If you do not specify a
+    #   registry, the default registry is assumed.
+    #   @return [String]
+    #
+    # @see http://docs.aws.amazon.com/goto/WebAPI/ecr-2015-09-21/CreatePullThroughCacheRuleRequest AWS API Documentation
+    #
+    class CreatePullThroughCacheRuleRequest < Struct.new(
+      :ecr_repository_prefix,
+      :upstream_registry_url,
+      :registry_id)
+      SENSITIVE = []
+      include Aws::Structure
+    end
+    # @!attribute [rw] ecr_repository_prefix
+    #   The Amazon ECR repository prefix associated with the pull through
+    #   cache rule.
+    #   @return [String]
+    #
+    # @!attribute [rw] upstream_registry_url
+    #   The upstream registry URL associated with the pull through cache
+    #   rule.
+    #   @return [String]
+    #
+    # @!attribute [rw] created_at
+    #   The date and time, in JavaScript date format, when the pull through
+    #   cache rule was created.
+    #   @return [Time]
+    #
+    # @!attribute [rw] registry_id
+    #   The registry ID associated with the request.
+    #   @return [String]
+    #
+    # @see http://docs.aws.amazon.com/goto/WebAPI/ecr-2015-09-21/CreatePullThroughCacheRuleResponse AWS API Documentation
+    #
+    class CreatePullThroughCacheRuleResponse < Struct.new(
+      :ecr_repository_prefix,
+      :upstream_registry_url,
+      :created_at,
+      :registry_id)
+      SENSITIVE = []
+      include Aws::Structure
+    end
     # @note When making an API call, you may pass CreateRepositoryRequest
     #   data as a hash:
     #
@@ -330,9 +481,9 @@ module Aws::ECR
     #       }
     #
     # @!attribute [rw] registry_id
-    #   The AWS account ID associated with the registry to create the
-    #   repository. If you do not specify a registry, the default registry
-    #   is assumed.
+    #   The Amazon Web Services account ID associated with the registry to
+    #   create the repository. If you do not specify a registry, the default
+    #   registry is assumed.
     #   @return [String]
     #
     # @!attribute [rw] repository_name
@@ -394,6 +545,90 @@ module Aws::ECR
       include Aws::Structure
     end
+    # The CVSS score for a finding.
+    #
+    # @!attribute [rw] base_score
+    #   The base CVSS score used for the finding.
+    #   @return [Float]
+    #
+    # @!attribute [rw] scoring_vector
+    #   The vector string of the CVSS score.
+    #   @return [String]
+    #
+    # @!attribute [rw] source
+    #   The source of the CVSS score.
+    #   @return [String]
+    #
+    # @!attribute [rw] version
+    #   The version of CVSS used for the score.
+    #   @return [String]
+    #
+    # @see http://docs.aws.amazon.com/goto/WebAPI/ecr-2015-09-21/CvssScore AWS API Documentation
+    #
+    class CvssScore < Struct.new(
+      :base_score,
+      :scoring_vector,
+      :source,
+      :version)
+      SENSITIVE = []
+      include Aws::Structure
+    end
+    # Details on adjustments Amazon Inspector made to the CVSS score for a
+    # finding.
+    #
+    # @!attribute [rw] metric
+    #   The metric used to adjust the CVSS score.
+    #   @return [String]
+    #
+    # @!attribute [rw] reason
+    #   The reason the CVSS score has been adjustment.
+    #   @return [String]
+    #
+    # @see http://docs.aws.amazon.com/goto/WebAPI/ecr-2015-09-21/CvssScoreAdjustment AWS API Documentation
+    #
+    class CvssScoreAdjustment < Struct.new(
+      :metric,
+      :reason)
+      SENSITIVE = []
+      include Aws::Structure
+    end
+    # Information about the CVSS score.
+    #
+    # @!attribute [rw] adjustments
+    #   An object that contains details about adjustment Amazon Inspector
+    #   made to the CVSS score.
+    #   @return [Array<Types::CvssScoreAdjustment>]
+    #
+    # @!attribute [rw] score
+    #   The CVSS score.
+    #   @return [Float]
+    #
+    # @!attribute [rw] score_source
+    #   The source for the CVSS score.
+    #   @return [String]
+    #
+    # @!attribute [rw] scoring_vector
+    #   The vector for the CVSS score.
+    #   @return [String]
+    #
+    # @!attribute [rw] version
+    #   The CVSS version used in scoring.
+    #   @return [String]
+    #
+    # @see http://docs.aws.amazon.com/goto/WebAPI/ecr-2015-09-21/CvssScoreDetails AWS API Documentation
+    #
+    class CvssScoreDetails < Struct.new(
+      :adjustments,
+      :score,
+      :score_source,
+      :scoring_vector,
+      :version)
+      SENSITIVE = []
+      include Aws::Structure
+    end
     # @note When making an API call, you may pass DeleteLifecyclePolicyRequest
     #   data as a hash:
     #
@@ -448,6 +683,62 @@ module Aws::ECR
       include Aws::Structure
     end
+    # @note When making an API call, you may pass DeletePullThroughCacheRuleRequest
+    #   data as a hash:
+    #
+    #       {
+    #         ecr_repository_prefix: "PullThroughCacheRuleRepositoryPrefix", # required
+    #         registry_id: "RegistryId",
+    #       }
+    #
+    # @!attribute [rw] ecr_repository_prefix
+    #   The Amazon ECR repository prefix associated with the pull through
+    #   cache rule to delete.
+    #   @return [String]
+    #
+    # @!attribute [rw] registry_id
+    #   The Amazon Web Services account ID associated with the registry that
+    #   contains the pull through cache rule. If you do not specify a
+    #   registry, the default registry is assumed.
+    #   @return [String]
+    #
+    # @see http://docs.aws.amazon.com/goto/WebAPI/ecr-2015-09-21/DeletePullThroughCacheRuleRequest AWS API Documentation
+    #
+    class DeletePullThroughCacheRuleRequest < Struct.new(
+      :ecr_repository_prefix,
+      :registry_id)
+      SENSITIVE = []
+      include Aws::Structure
+    end
+    # @!attribute [rw] ecr_repository_prefix
+    #   The Amazon ECR repository prefix associated with the request.
+    #   @return [String]
+    #
+    # @!attribute [rw] upstream_registry_url
+    #   The upstream registry URL associated with the pull through cache
+    #   rule.
+    #   @return [String]
+    #
+    # @!attribute [rw] created_at
+    #   The timestamp associated with the pull through cache rule.
+    #   @return [Time]
+    #
+    # @!attribute [rw] registry_id
+    #   The registry ID associated with the request.
+    #   @return [String]
+    #
+    # @see http://docs.aws.amazon.com/goto/WebAPI/ecr-2015-09-21/DeletePullThroughCacheRuleResponse AWS API Documentation
+    #
+    class DeletePullThroughCacheRuleResponse < Struct.new(
+      :ecr_repository_prefix,
+      :upstream_registry_url,
+      :created_at,
+      :registry_id)
+      SENSITIVE = []
+      include Aws::Structure
+    end
     # @api private
     #
     # @see http://docs.aws.amazon.com/goto/WebAPI/ecr-2015-09-21/DeleteRegistryPolicyRequest AWS API Documentation
@@ -848,6 +1139,83 @@ module Aws::ECR
       include Aws::Structure
     end
+    # @note When making an API call, you may pass DescribePullThroughCacheRulesRequest
+    #   data as a hash:
+    #
+    #       {
+    #         registry_id: "RegistryId",
+    #         ecr_repository_prefixes: ["PullThroughCacheRuleRepositoryPrefix"],
+    #         next_token: "NextToken",
+    #         max_results: 1,
+    #       }
+    #
+    # @!attribute [rw] registry_id
+    #   The Amazon Web Services account ID associated with the registry to
+    #   return the pull through cache rules for. If you do not specify a
+    #   registry, the default registry is assumed.
+    #   @return [String]
+    #
+    # @!attribute [rw] ecr_repository_prefixes
+    #   The Amazon ECR repository prefixes associated with the pull through
+    #   cache rules to return. If no repository prefix value is specified,
+    #   all pull through cache rules are returned.
+    #   @return [Array<String>]
+    #
+    # @!attribute [rw] next_token
+    #   The `nextToken` value returned from a previous paginated
+    #   `DescribePullThroughCacheRulesRequest` request where `maxResults`
+    #   was used and the results exceeded the value of that parameter.
+    #   Pagination continues from the end of the previous results that
+    #   returned the `nextToken` value. This value is null when there are no
+    #   more results to return.
+    #   @return [String]
+    #
+    # @!attribute [rw] max_results
+    #   The maximum number of pull through cache rules returned by
+    #   `DescribePullThroughCacheRulesRequest` in paginated output. When
+    #   this parameter is used, `DescribePullThroughCacheRulesRequest` only
+    #   returns `maxResults` results in a single page along with a
+    #   `nextToken` response element. The remaining results of the initial
+    #   request can be seen by sending another
+    #   `DescribePullThroughCacheRulesRequest` request with the returned
+    #   `nextToken` value. This value can be between 1 and 1000. If this
+    #   parameter is not used, then `DescribePullThroughCacheRulesRequest`
+    #   returns up to 100 results and a `nextToken` value, if applicable.
+    #   @return [Integer]
+    #
+    # @see http://docs.aws.amazon.com/goto/WebAPI/ecr-2015-09-21/DescribePullThroughCacheRulesRequest AWS API Documentation
+    #
+    class DescribePullThroughCacheRulesRequest < Struct.new(
+      :registry_id,
+      :ecr_repository_prefixes,
+      :next_token,
+      :max_results)
+      SENSITIVE = []
+      include Aws::Structure
+    end
+    # @!attribute [rw] pull_through_cache_rules
+    #   The details of the pull through cache rules.
+    #   @return [Array<Types::PullThroughCacheRule>]
+    #
+    # @!attribute [rw] next_token
+    #   The `nextToken` value to include in a future
+    #   `DescribePullThroughCacheRulesRequest` request. When the results of
+    #   a `DescribePullThroughCacheRulesRequest` request exceed
+    #   `maxResults`, this value can be used to retrieve the next page of
+    #   results. This value is null when there are no more results to
+    #   return.
+    #   @return [String]
+    #
+    # @see http://docs.aws.amazon.com/goto/WebAPI/ecr-2015-09-21/DescribePullThroughCacheRulesResponse AWS API Documentation
+    #
+    class DescribePullThroughCacheRulesResponse < Struct.new(
+      :pull_through_cache_rules,
+      :next_token)
+      SENSITIVE = []
+      include Aws::Structure
+    end
     # @api private
     #
     # @see http://docs.aws.amazon.com/goto/WebAPI/ecr-2015-09-21/DescribeRegistryRequest AWS API Documentation
@@ -1005,14 +1373,14 @@ module Aws::ECR
     #   created. For more information, see [Protecting data using
     #   server-side encryption with an KMS key stored in Key Management
     #   Service (SSE-KMS)][1] in the *Amazon Simple Storage Service Console
-    #   Developer Guide.*.
+    #   Developer Guide*.
     #
     #   If you use the `AES256` encryption type, Amazon ECR uses server-side
     #   encryption with Amazon S3-managed encryption keys which encrypts the
     #   images in the repository using an AES-256 encryption algorithm. For
     #   more information, see [Protecting data using server-side encryption
     #   with Amazon S3-managed encryption keys (SSE-S3)][2] in the *Amazon
-    #   Simple Storage Service Console Developer Guide.*.
+    #   Simple Storage Service Console Developer Guide*.
     #
     #
     #
@@ -1037,6 +1405,93 @@ module Aws::ECR
       include Aws::Structure
     end
+    # The details of an enhanced image scan. This is returned when enhanced
+    # scanning is enabled for your private registry.
+    #
+    # @!attribute [rw] aws_account_id
+    #   The Amazon Web Services account ID associated with the image.
+    #   @return [String]
+    #
+    # @!attribute [rw] description
+    #   The description of the finding.
+    #   @return [String]
+    #
+    # @!attribute [rw] finding_arn
+    #   The Amazon Resource Number (ARN) of the finding.
+    #   @return [String]
+    #
+    # @!attribute [rw] first_observed_at
+    #   The date and time that the finding was first observed.
+    #   @return [Time]
+    #
+    # @!attribute [rw] last_observed_at
+    #   The date and time that the finding was last observed.
+    #   @return [Time]
+    #
+    # @!attribute [rw] package_vulnerability_details
+    #   An object that contains the details of a package vulnerability
+    #   finding.
+    #   @return [Types::PackageVulnerabilityDetails]
+    #
+    # @!attribute [rw] remediation
+    #   An object that contains the details about how to remediate a
+    #   finding.
+    #   @return [Types::Remediation]
+    #
+    # @!attribute [rw] resources
+    #   Contains information on the resources involved in a finding.
+    #   @return [Array<Types::Resource>]
+    #
+    # @!attribute [rw] score
+    #   The Amazon Inspector score given to the finding.
+    #   @return [Float]
+    #
+    # @!attribute [rw] score_details
+    #   An object that contains details of the Amazon Inspector score.
+    #   @return [Types::ScoreDetails]
+    #
+    # @!attribute [rw] severity
+    #   The severity of the finding.
+    #   @return [String]
+    #
+    # @!attribute [rw] status
+    #   The status of the finding.
+    #   @return [String]
+    #
+    # @!attribute [rw] title
+    #   The title of the finding.
+    #   @return [String]
+    #
+    # @!attribute [rw] type
+    #   The type of the finding.
+    #   @return [String]
+    #
+    # @!attribute [rw] updated_at
+    #   The date and time the finding was last updated at.
+    #   @return [Time]
+    #
+    # @see http://docs.aws.amazon.com/goto/WebAPI/ecr-2015-09-21/EnhancedImageScanFinding AWS API Documentation
+    #
+    class EnhancedImageScanFinding < Struct.new(
+      :aws_account_id,
+      :description,
+      :finding_arn,
+      :first_observed_at,
+      :last_observed_at,
+      :package_vulnerability_details,
+      :remediation,
+      :resources,
+      :score,
+      :score_details,
+      :severity,
+      :status,
+      :title,
+      :type,
+      :updated_at)
+      SENSITIVE = []
+      include Aws::Structure
+    end
     # @note When making an API call, you may pass GetAuthorizationTokenRequest
     #   data as a hash:
     #
@@ -1320,11 +1775,34 @@ module Aws::ECR
       include Aws::Structure
     end
-    # @note When making an API call, you may pass GetRepositoryPolicyRequest
-    #   data as a hash:
+    # @api private
     #
-    #       {
-    #         registry_id: "RegistryId",
+    # @see http://docs.aws.amazon.com/goto/WebAPI/ecr-2015-09-21/GetRegistryScanningConfigurationRequest AWS API Documentation
+    #
+    class GetRegistryScanningConfigurationRequest < Aws::EmptyStructure; end
+    # @!attribute [rw] registry_id
+    #   The ID of the registry.
+    #   @return [String]
+    #
+    # @!attribute [rw] scanning_configuration
+    #   The scanning configuration for the registry.
+    #   @return [Types::RegistryScanningConfiguration]
+    #
+    # @see http://docs.aws.amazon.com/goto/WebAPI/ecr-2015-09-21/GetRegistryScanningConfigurationResponse AWS API Documentation
+    #
+    class GetRegistryScanningConfigurationResponse < Struct.new(
+      :registry_id,
+      :scanning_configuration)
+      SENSITIVE = []
+      include Aws::Structure
+    end
+    # @note When making an API call, you may pass GetRepositoryPolicyRequest
+    #   data as a hash:
+    #
+    #       {
+    #         registry_id: "RegistryId",
     #         repository_name: "RepositoryName", # required
     #       }
     #
@@ -1579,8 +2057,8 @@ module Aws::ECR
     #   @return [String]
     #
     # @!attribute [rw] registry_id
-    #   The AWS account ID associated with the registry to which the image
-    #   belongs.
+    #   The Amazon Web Services account ID associated with the registry to
+    #   which the image belongs.
     #   @return [String]
     #
     # @!attribute [rw] status
@@ -1648,21 +2126,26 @@ module Aws::ECR
     #   The time when the vulnerability data was last scanned.
     #   @return [Time]
     #
+    # @!attribute [rw] finding_severity_counts
+    #   The image vulnerability counts, sorted by severity.
+    #   @return [Hash<String,Integer>]
+    #
     # @!attribute [rw] findings
     #   The findings from the image scan.
     #   @return [Array<Types::ImageScanFinding>]
     #
-    # @!attribute [rw] finding_severity_counts
-    #   The image vulnerability counts, sorted by severity.
-    #   @return [Hash<String,Integer>]
+    # @!attribute [rw] enhanced_findings
+    #   Details about the enhanced scan findings from Amazon Inspector.
+    #   @return [Array<Types::EnhancedImageScanFinding>]
     #
     # @see http://docs.aws.amazon.com/goto/WebAPI/ecr-2015-09-21/ImageScanFindings AWS API Documentation
     #
     class ImageScanFindings < Struct.new(
       :image_scan_completed_at,
       :vulnerability_source_updated_at,
+      :finding_severity_counts,
       :findings,
-      :finding_severity_counts)
+      :enhanced_findings)
       SENSITIVE = []
       include Aws::Structure
     end
@@ -2296,6 +2779,128 @@ module Aws::ECR
       include Aws::Structure
     end
+    # Information about a package vulnerability finding.
+    #
+    # @!attribute [rw] cvss
+    #   An object that contains details about the CVSS score of a finding.
+    #   @return [Array<Types::CvssScore>]
+    #
+    # @!attribute [rw] reference_urls
+    #   One or more URLs that contain details about this vulnerability type.
+    #   @return [Array<String>]
+    #
+    # @!attribute [rw] related_vulnerabilities
+    #   One or more vulnerabilities related to the one identified in this
+    #   finding.
+    #   @return [Array<String>]
+    #
+    # @!attribute [rw] source
+    #   The source of the vulnerability information.
+    #   @return [String]
+    #
+    # @!attribute [rw] source_url
+    #   A URL to the source of the vulnerability information.
+    #   @return [String]
+    #
+    # @!attribute [rw] vendor_created_at
+    #   The date and time that this vulnerability was first added to the
+    #   vendor's database.
+    #   @return [Time]
+    #
+    # @!attribute [rw] vendor_severity
+    #   The severity the vendor has given to this vulnerability type.
+    #   @return [String]
+    #
+    # @!attribute [rw] vendor_updated_at
+    #   The date and time the vendor last updated this vulnerability in
+    #   their database.
+    #   @return [Time]
+    #
+    # @!attribute [rw] vulnerability_id
+    #   The ID given to this vulnerability.
+    #   @return [String]
+    #
+    # @!attribute [rw] vulnerable_packages
+    #   The packages impacted by this vulnerability.
+    #   @return [Array<Types::VulnerablePackage>]
+    #
+    # @see http://docs.aws.amazon.com/goto/WebAPI/ecr-2015-09-21/PackageVulnerabilityDetails AWS API Documentation
+    #
+    class PackageVulnerabilityDetails < Struct.new(
+      :cvss,
+      :reference_urls,
+      :related_vulnerabilities,
+      :source,
+      :source_url,
+      :vendor_created_at,
+      :vendor_severity,
+      :vendor_updated_at,
+      :vulnerability_id,
+      :vulnerable_packages)
+      SENSITIVE = []
+      include Aws::Structure
+    end
+    # The details of a pull through cache rule.
+    #
+    # @!attribute [rw] ecr_repository_prefix
+    #   The Amazon ECR repository prefix associated with the pull through
+    #   cache rule.
+    #   @return [String]
+    #
+    # @!attribute [rw] upstream_registry_url
+    #   The upstream registry URL associated with the pull through cache
+    #   rule.
+    #   @return [String]
+    #
+    # @!attribute [rw] created_at
+    #   The date and time the pull through cache was created.
+    #   @return [Time]
+    #
+    # @!attribute [rw] registry_id
+    #   The Amazon Web Services account ID associated with the registry the
+    #   pull through cache rule is associated with.
+    #   @return [String]
+    #
+    # @see http://docs.aws.amazon.com/goto/WebAPI/ecr-2015-09-21/PullThroughCacheRule AWS API Documentation
+    #
+    class PullThroughCacheRule < Struct.new(
+      :ecr_repository_prefix,
+      :upstream_registry_url,
+      :created_at,
+      :registry_id)
+      SENSITIVE = []
+      include Aws::Structure
+    end
+    # A pull through cache rule with these settings already exists for the
+    # private registry.
+    #
+    # @!attribute [rw] message
+    #   @return [String]
+    #
+    # @see http://docs.aws.amazon.com/goto/WebAPI/ecr-2015-09-21/PullThroughCacheRuleAlreadyExistsException AWS API Documentation
+    #
+    class PullThroughCacheRuleAlreadyExistsException < Struct.new(
+      :message)
+      SENSITIVE = []
+      include Aws::Structure
+    end
+    # The pull through cache rule was not found. Specify a valid pull
+    # through cache rule and try again.
+    #
+    # @!attribute [rw] message
+    #   @return [String]
+    #
+    # @see http://docs.aws.amazon.com/goto/WebAPI/ecr-2015-09-21/PullThroughCacheRuleNotFoundException AWS API Documentation
+    #
+    class PullThroughCacheRuleNotFoundException < Struct.new(
+      :message)
+      SENSITIVE = []
+      include Aws::Structure
+    end
     # @note When making an API call, you may pass PutImageRequest
     #   data as a hash:
     #
@@ -2582,6 +3187,64 @@ module Aws::ECR
       include Aws::Structure
     end
+    # @note When making an API call, you may pass PutRegistryScanningConfigurationRequest
+    #   data as a hash:
+    #
+    #       {
+    #         scan_type: "BASIC", # accepts BASIC, ENHANCED
+    #         rules: [
+    #           {
+    #             scan_frequency: "SCAN_ON_PUSH", # required, accepts SCAN_ON_PUSH, CONTINUOUS_SCAN, MANUAL
+    #             repository_filters: [ # required
+    #               {
+    #                 filter: "ScanningRepositoryFilterValue", # required
+    #                 filter_type: "WILDCARD", # required, accepts WILDCARD
+    #               },
+    #             ],
+    #           },
+    #         ],
+    #       }
+    #
+    # @!attribute [rw] scan_type
+    #   The scanning type to set for the registry.
+    #
+    #   By default, the `BASIC` scan type is used. When basic scanning is
+    #   set, you may specify filters to determine which individual
+    #   repositories, or all repositories, are scanned when new images are
+    #   pushed. Alternatively, you can do manual scans of images with basic
+    #   scanning.
+    #
+    #   When the `ENHANCED` scan type is set, Amazon Inspector provides
+    #   automated, continuous scanning of all repositories in your registry.
+    #   @return [String]
+    #
+    # @!attribute [rw] rules
+    #   The scanning rules to use for the registry. A scanning rule is used
+    #   to determine which repository filters are used and at what frequency
+    #   scanning will occur.
+    #   @return [Array<Types::RegistryScanningRule>]
+    #
+    # @see http://docs.aws.amazon.com/goto/WebAPI/ecr-2015-09-21/PutRegistryScanningConfigurationRequest AWS API Documentation
+    #
+    class PutRegistryScanningConfigurationRequest < Struct.new(
+      :scan_type,
+      :rules)
+      SENSITIVE = []
+      include Aws::Structure
+    end
+    # @!attribute [rw] registry_scanning_configuration
+    #   The scanning configuration for your registry.
+    #   @return [Types::RegistryScanningConfiguration]
+    #
+    # @see http://docs.aws.amazon.com/goto/WebAPI/ecr-2015-09-21/PutRegistryScanningConfigurationResponse AWS API Documentation
+    #
+    class PutRegistryScanningConfigurationResponse < Struct.new(
+      :registry_scanning_configuration)
+      SENSITIVE = []
+      include Aws::Structure
+    end
     # @note When making an API call, you may pass PutReplicationConfigurationRequest
     #   data as a hash:
     #
@@ -2630,6 +3293,26 @@ module Aws::ECR
       include Aws::Structure
     end
+    # Details about the recommended course of action to remediate the
+    # finding.
+    #
+    # @!attribute [rw] url
+    #   The URL address to the CVE remediation recommendations.
+    #   @return [String]
+    #
+    # @!attribute [rw] text
+    #   The recommended course of action to remediate the finding.
+    #   @return [String]
+    #
+    # @see http://docs.aws.amazon.com/goto/WebAPI/ecr-2015-09-21/Recommendation AWS API Documentation
+    #
+    class Recommendation < Struct.new(
+      :url,
+      :text)
+      SENSITIVE = []
+      include Aws::Structure
+    end
     # The manifest list is referencing an image that does not exist.
     #
     # @!attribute [rw] message
@@ -2656,6 +3339,73 @@ module Aws::ECR
       include Aws::Structure
     end
+    # The scanning configuration for a private registry.
+    #
+    # @!attribute [rw] scan_type
+    #   The type of scanning configured for the registry.
+    #   @return [String]
+    #
+    # @!attribute [rw] rules
+    #   The scanning rules associated with the registry.
+    #   @return [Array<Types::RegistryScanningRule>]
+    #
+    # @see http://docs.aws.amazon.com/goto/WebAPI/ecr-2015-09-21/RegistryScanningConfiguration AWS API Documentation
+    #
+    class RegistryScanningConfiguration < Struct.new(
+      :scan_type,
+      :rules)
+      SENSITIVE = []
+      include Aws::Structure
+    end
+    # The details of a scanning rule for a private registry.
+    #
+    # @note When making an API call, you may pass RegistryScanningRule
+    #   data as a hash:
+    #
+    #       {
+    #         scan_frequency: "SCAN_ON_PUSH", # required, accepts SCAN_ON_PUSH, CONTINUOUS_SCAN, MANUAL
+    #         repository_filters: [ # required
+    #           {
+    #             filter: "ScanningRepositoryFilterValue", # required
+    #             filter_type: "WILDCARD", # required, accepts WILDCARD
+    #           },
+    #         ],
+    #       }
+    #
+    # @!attribute [rw] scan_frequency
+    #   The frequency that scans are performed at for a private registry.
+    #   @return [String]
+    #
+    # @!attribute [rw] repository_filters
+    #   The repository filters associated with the scanning configuration
+    #   for a private registry.
+    #   @return [Array<Types::ScanningRepositoryFilter>]
+    #
+    # @see http://docs.aws.amazon.com/goto/WebAPI/ecr-2015-09-21/RegistryScanningRule AWS API Documentation
+    #
+    class RegistryScanningRule < Struct.new(
+      :scan_frequency,
+      :repository_filters)
+      SENSITIVE = []
+      include Aws::Structure
+    end
+    # Information on how to remediate a finding.
+    #
+    # @!attribute [rw] recommendation
+    #   An object that contains information about the recommended course of
+    #   action to remediate the finding.
+    #   @return [Types::Recommendation]
+    #
+    # @see http://docs.aws.amazon.com/goto/WebAPI/ecr-2015-09-21/Remediation AWS API Documentation
+    #
+    class Remediation < Struct.new(
+      :recommendation)
+      SENSITIVE = []
+      include Aws::Structure
+    end
     # The replication configuration for a registry.
     #
     # @note When making an API call, you may pass ReplicationConfiguration
@@ -2918,6 +3668,110 @@ module Aws::ECR
       include Aws::Structure
     end
+    # The details of the scanning configuration for a repository.
+    #
+    # @!attribute [rw] repository_arn
+    #   The ARN of the repository.
+    #   @return [String]
+    #
+    # @!attribute [rw] repository_name
+    #   The name of the repository.
+    #   @return [String]
+    #
+    # @!attribute [rw] scan_on_push
+    #   Whether or not scan on push is configured for the repository.
+    #   @return [Boolean]
+    #
+    # @!attribute [rw] scan_frequency
+    #   The scan frequency for the repository.
+    #   @return [String]
+    #
+    # @!attribute [rw] applied_scan_filters
+    #   The scan filters applied to the repository.
+    #   @return [Array<Types::ScanningRepositoryFilter>]
+    #
+    # @see http://docs.aws.amazon.com/goto/WebAPI/ecr-2015-09-21/RepositoryScanningConfiguration AWS API Documentation
+    #
+    class RepositoryScanningConfiguration < Struct.new(
+      :repository_arn,
+      :repository_name,
+      :scan_on_push,
+      :scan_frequency,
+      :applied_scan_filters)
+      SENSITIVE = []
+      include Aws::Structure
+    end
+    # The details about any failures associated with the scanning
+    # configuration of a repository.
+    #
+    # @!attribute [rw] repository_name
+    #   The name of the repository.
+    #   @return [String]
+    #
+    # @!attribute [rw] failure_code
+    #   The failure code.
+    #   @return [String]
+    #
+    # @!attribute [rw] failure_reason
+    #   The reason for the failure.
+    #   @return [String]
+    #
+    # @see http://docs.aws.amazon.com/goto/WebAPI/ecr-2015-09-21/RepositoryScanningConfigurationFailure AWS API Documentation
+    #
+    class RepositoryScanningConfigurationFailure < Struct.new(
+      :repository_name,
+      :failure_code,
+      :failure_reason)
+      SENSITIVE = []
+      include Aws::Structure
+    end
+    # Details about the resource involved in a finding.
+    #
+    # @!attribute [rw] details
+    #   An object that contains details about the resource involved in a
+    #   finding.
+    #   @return [Types::ResourceDetails]
+    #
+    # @!attribute [rw] id
+    #   The ID of the resource.
+    #   @return [String]
+    #
+    # @!attribute [rw] tags
+    #   The tags attached to the resource.
+    #   @return [Hash<String,String>]
+    #
+    # @!attribute [rw] type
+    #   The type of resource.
+    #   @return [String]
+    #
+    # @see http://docs.aws.amazon.com/goto/WebAPI/ecr-2015-09-21/Resource AWS API Documentation
+    #
+    class Resource < Struct.new(
+      :details,
+      :id,
+      :tags,
+      :type)
+      SENSITIVE = []
+      include Aws::Structure
+    end
+    # Contains details about the resource involved in the finding.
+    #
+    # @!attribute [rw] aws_ecr_container_image
+    #   An object that contains details about the Amazon ECR container image
+    #   involved in the finding.
+    #   @return [Types::AwsEcrContainerImageDetails]
+    #
+    # @see http://docs.aws.amazon.com/goto/WebAPI/ecr-2015-09-21/ResourceDetails AWS API Documentation
+    #
+    class ResourceDetails < Struct.new(
+      :aws_ecr_container_image)
+      SENSITIVE = []
+      include Aws::Structure
+    end
     # The specified image scan could not be found. Ensure that image
     # scanning is enabled on the repository and try again.
     #
@@ -2932,6 +3786,48 @@ module Aws::ECR
       include Aws::Structure
     end
+    # The details of a scanning repository filter.
+    #
+    # @note When making an API call, you may pass ScanningRepositoryFilter
+    #   data as a hash:
+    #
+    #       {
+    #         filter: "ScanningRepositoryFilterValue", # required
+    #         filter_type: "WILDCARD", # required, accepts WILDCARD
+    #       }
+    #
+    # @!attribute [rw] filter
+    #   The filter to use when scanning.
+    #   @return [String]
+    #
+    # @!attribute [rw] filter_type
+    #   The type associated with the filter.
+    #   @return [String]
+    #
+    # @see http://docs.aws.amazon.com/goto/WebAPI/ecr-2015-09-21/ScanningRepositoryFilter AWS API Documentation
+    #
+    class ScanningRepositoryFilter < Struct.new(
+      :filter,
+      :filter_type)
+      SENSITIVE = []
+      include Aws::Structure
+    end
+    # Information about the Amazon Inspector score given to a finding.
+    #
+    # @!attribute [rw] cvss
+    #   An object that contains details about the CVSS score given to a
+    #   finding.
+    #   @return [Types::CvssScoreDetails]
+    #
+    # @see http://docs.aws.amazon.com/goto/WebAPI/ecr-2015-09-21/ScoreDetails AWS API Documentation
+    #
+    class ScoreDetails < Struct.new(
+      :cvss)
+      SENSITIVE = []
+      include Aws::Structure
+    end
     # These errors are usually caused by a server-side issue.
     #
     # @!attribute [rw] message
@@ -3242,6 +4138,19 @@ module Aws::ECR
       include Aws::Structure
     end
+    # The specified upstream registry isn't supported.
+    #
+    # @!attribute [rw] message
+    #   @return [String]
+    #
+    # @see http://docs.aws.amazon.com/goto/WebAPI/ecr-2015-09-21/UnsupportedUpstreamRegistryException AWS API Documentation
+    #
+    class UnsupportedUpstreamRegistryException < Struct.new(
+      :message)
+      SENSITIVE = []
+      include Aws::Structure
+    end
     # @note When making an API call, you may pass UntagResourceRequest
     #   data as a hash:
     #
@@ -3382,5 +4291,54 @@ module Aws::ECR
       include Aws::Structure
     end
+    # Information on the vulnerable package identified by a finding.
+    #
+    # @!attribute [rw] arch
+    #   The architecture of the vulnerable package.
+    #   @return [String]
+    #
+    # @!attribute [rw] epoch
+    #   The epoch of the vulnerable package.
+    #   @return [Integer]
+    #
+    # @!attribute [rw] file_path
+    #   The file path of the vulnerable package.
+    #   @return [String]
+    #
+    # @!attribute [rw] name
+    #   The name of the vulnerable package.
+    #   @return [String]
+    #
+    # @!attribute [rw] package_manager
+    #   The package manager of the vulnerable package.
+    #   @return [String]
+    #
+    # @!attribute [rw] release
+    #   The release of the vulnerable package.
+    #   @return [String]
+    #
+    # @!attribute [rw] source_layer_hash
+    #   The source layer hash of the vulnerable package.
+    #   @return [String]
+    #
+    # @!attribute [rw] version
+    #   The version of the vulnerable package.
+    #   @return [String]
+    #
+    # @see http://docs.aws.amazon.com/goto/WebAPI/ecr-2015-09-21/VulnerablePackage AWS API Documentation
+    #
+    class VulnerablePackage < Struct.new(
+      :arch,
+      :epoch,
+      :file_path,
+      :name,
+      :package_manager,
+      :release,
+      :source_layer_hash,
+      :version)
+      SENSITIVE = []
+      include Aws::Structure
+    end
   end
 end