aws-sdk-guardduty 1.107.0 → 1.108.0

Sign up to get free protection for your applications and to get access to all the features.
Files changed (9) hide show
  1. checksums.yaml +4 -4
  2. data/CHANGELOG.md +5 -0
  3. data/VERSION +1 -1
  4. data/lib/aws-sdk-guardduty/client.rb +113 -1
  5. data/lib/aws-sdk-guardduty/client_api.rb +205 -0
  6. data/lib/aws-sdk-guardduty/types.rb +801 -3
  7. data/lib/aws-sdk-guardduty.rb +1 -1
  8. data/sig/types.rbs +179 -0
  9. metadata +2 -2
data/lib/aws-sdk-guardduty.rb CHANGED
@@ -54,7 +54,7 @@ module Aws::GuardDuty
54
54
  autoload :EndpointProvider, 'aws-sdk-guardduty/endpoint_provider'
55
55
  autoload :Endpoints, 'aws-sdk-guardduty/endpoints'
56
56
 
57
- GEM_VERSION = '1.107.0'
57
+ GEM_VERSION = '1.108.0'
58
58
 
59
59
  end
60
60
 
data/sig/types.rbs CHANGED
@@ -40,6 +40,13 @@ module Aws::GuardDuty
40
40
  SENSITIVE: []
41
41
  end
42
42
 
43
+ class AccessKey
44
+ attr_accessor principal_id: ::String
45
+ attr_accessor user_name: ::String
46
+ attr_accessor user_type: ::String
47
+ SENSITIVE: []
48
+ end
49
+
43
50
  class AccessKeyDetails
44
51
  attr_accessor access_key_id: ::String
45
52
  attr_accessor principal_id: ::String
@@ -48,6 +55,12 @@ module Aws::GuardDuty
48
55
  SENSITIVE: []
49
56
  end
50
57
 
58
+ class Account
59
+ attr_accessor uid: ::String
60
+ attr_accessor name: ::String
61
+ SENSITIVE: []
62
+ end
63
+
51
64
  class AccountDetail
52
65
  attr_accessor account_id: ::String
53
66
  attr_accessor email: ::String
@@ -87,6 +100,13 @@ module Aws::GuardDuty
87
100
  SENSITIVE: []
88
101
  end
89
102
 
103
+ class Actor
104
+ attr_accessor id: ::String
105
+ attr_accessor user: Types::User
106
+ attr_accessor session: Types::Session
107
+ SENSITIVE: []
108
+ end
109
+
90
110
  class AddonDetails
91
111
  attr_accessor addon_version: ::String
92
112
  attr_accessor addon_status: ::String
@@ -139,6 +159,12 @@ module Aws::GuardDuty
139
159
  class ArchiveFindingsResponse < Aws::EmptyStructure
140
160
  end
141
161
 
162
+ class AutonomousSystem
163
+ attr_accessor name: ::String
164
+ attr_accessor number: ::Integer
165
+ SENSITIVE: []
166
+ end
167
+
142
168
  class AwsApiCallAction
143
169
  attr_accessor api: ::String
144
170
  attr_accessor caller_type: ::String
@@ -623,6 +649,7 @@ module Aws::GuardDuty
623
649
 
624
650
  class Detection
625
651
  attr_accessor anomaly: Types::Anomaly
652
+ attr_accessor sequence: Types::Sequence
626
653
  SENSITIVE: []
627
654
  end
628
655
 
@@ -725,6 +752,29 @@ module Aws::GuardDuty
725
752
  SENSITIVE: []
726
753
  end
727
754
 
755
+ class Ec2Instance
756
+ attr_accessor availability_zone: ::String
757
+ attr_accessor image_description: ::String
758
+ attr_accessor instance_state: ::String
759
+ attr_accessor iam_instance_profile: Types::IamInstanceProfile
760
+ attr_accessor instance_type: ::String
761
+ attr_accessor outpost_arn: ::String
762
+ attr_accessor platform: ::String
763
+ attr_accessor product_codes: ::Array[Types::ProductCode]
764
+ attr_accessor ec2_network_interface_uids: ::Array[::String]
765
+ SENSITIVE: []
766
+ end
767
+
768
+ class Ec2NetworkInterface
769
+ attr_accessor ipv_6_addresses: ::Array[::String]
770
+ attr_accessor private_ip_addresses: ::Array[Types::PrivateIpAddressDetails]
771
+ attr_accessor public_ip: ::String
772
+ attr_accessor security_groups: ::Array[Types::SecurityGroup]
773
+ attr_accessor sub_net_id: ::String
774
+ attr_accessor vpc_id: ::String
775
+ SENSITIVE: []
776
+ end
777
+
728
778
  class EcsClusterDetails
729
779
  attr_accessor name: ::String
730
780
  attr_accessor arn: ::String
@@ -815,6 +865,7 @@ module Aws::GuardDuty
815
865
  attr_accessor title: ::String
816
866
  attr_accessor type: ::String
817
867
  attr_accessor updated_at: ::String
868
+ attr_accessor associated_attack_sequence_arn: ::String
818
869
  SENSITIVE: []
819
870
  end
820
871
 
@@ -1097,6 +1148,13 @@ module Aws::GuardDuty
1097
1148
  SENSITIVE: []
1098
1149
  end
1099
1150
 
1151
+ class Indicator
1152
+ attr_accessor key: ("SUSPICIOUS_USER_AGENT" | "SUSPICIOUS_NETWORK" | "MALICIOUS_IP" | "TOR_IP" | "ATTACK_TACTIC" | "HIGH_RISK_API" | "ATTACK_TECHNIQUE" | "UNUSUAL_API_FOR_ACCOUNT" | "UNUSUAL_ASN_FOR_ACCOUNT" | "UNUSUAL_ASN_FOR_USER")
1153
+ attr_accessor values: ::Array[::String]
1154
+ attr_accessor title: ::String
1155
+ SENSITIVE: []
1156
+ end
1157
+
1100
1158
  class InstanceDetails
1101
1159
  attr_accessor availability_zone: ::String
1102
1160
  attr_accessor iam_instance_profile: Types::IamInstanceProfile
@@ -1536,6 +1594,11 @@ module Aws::GuardDuty
1536
1594
  SENSITIVE: []
1537
1595
  end
1538
1596
 
1597
+ class NetworkConnection
1598
+ attr_accessor direction: ("INBOUND" | "OUTBOUND")
1599
+ SENSITIVE: []
1600
+ end
1601
+
1539
1602
  class NetworkConnectionAction
1540
1603
  attr_accessor blocked: bool
1541
1604
  attr_accessor connection_direction: ::String
@@ -1548,6 +1611,25 @@ module Aws::GuardDuty
1548
1611
  SENSITIVE: []
1549
1612
  end
1550
1613
 
1614
+ class NetworkEndpoint
1615
+ attr_accessor id: ::String
1616
+ attr_accessor ip: ::String
1617
+ attr_accessor domain: ::String
1618
+ attr_accessor port: ::Integer
1619
+ attr_accessor location: Types::NetworkGeoLocation
1620
+ attr_accessor autonomous_system: Types::AutonomousSystem
1621
+ attr_accessor connection: Types::NetworkConnection
1622
+ SENSITIVE: []
1623
+ end
1624
+
1625
+ class NetworkGeoLocation
1626
+ attr_accessor city: ::String
1627
+ attr_accessor country: ::String
1628
+ attr_accessor latitude: ::Float
1629
+ attr_accessor longitude: ::Float
1630
+ SENSITIVE: []
1631
+ end
1632
+
1551
1633
  class NetworkInterface
1552
1634
  attr_accessor ipv_6_addresses: ::Array[::String]
1553
1635
  attr_accessor network_interface_id: ::String
@@ -1762,6 +1844,14 @@ module Aws::GuardDuty
1762
1844
  SENSITIVE: []
1763
1845
  end
1764
1846
 
1847
+ class PublicAccessConfiguration
1848
+ attr_accessor public_acl_access: ("BLOCKED" | "ALLOWED")
1849
+ attr_accessor public_policy_access: ("BLOCKED" | "ALLOWED")
1850
+ attr_accessor public_acl_ignore_behavior: ("IGNORED" | "NOT_IGNORED")
1851
+ attr_accessor public_bucket_restrict_behavior: ("RESTRICTED" | "NOT_RESTRICTED")
1852
+ SENSITIVE: []
1853
+ end
1854
+
1765
1855
  class RdsDbInstanceDetails
1766
1856
  attr_accessor db_instance_identifier: ::String
1767
1857
  attr_accessor engine: ::String
@@ -1837,6 +1927,15 @@ module Aws::GuardDuty
1837
1927
  SENSITIVE: []
1838
1928
  end
1839
1929
 
1930
+ class ResourceData
1931
+ attr_accessor s3_bucket: Types::S3Bucket
1932
+ attr_accessor ec2_instance: Types::Ec2Instance
1933
+ attr_accessor access_key: Types::AccessKey
1934
+ attr_accessor ec2_network_interface: Types::Ec2NetworkInterface
1935
+ attr_accessor s3_object: Types::S3Object
1936
+ SENSITIVE: []
1937
+ end
1938
+
1840
1939
  class ResourceDetails
1841
1940
  attr_accessor instance_arn: ::String
1842
1941
  SENSITIVE: []
@@ -1857,6 +1956,19 @@ module Aws::GuardDuty
1857
1956
  SENSITIVE: []
1858
1957
  end
1859
1958
 
1959
+ class ResourceV2
1960
+ attr_accessor uid: ::String
1961
+ attr_accessor name: ::String
1962
+ attr_accessor account_id: ::String
1963
+ attr_accessor resource_type: ("EC2_INSTANCE" | "EC2_NETWORK_INTERFACE" | "S3_BUCKET" | "S3_OBJECT" | "ACCESS_KEY")
1964
+ attr_accessor region: ::String
1965
+ attr_accessor service: ::String
1966
+ attr_accessor cloud_partition: ::String
1967
+ attr_accessor tags: ::Array[Types::Tag]
1968
+ attr_accessor data: Types::ResourceData
1969
+ SENSITIVE: []
1970
+ end
1971
+
1860
1972
  class RuntimeContext
1861
1973
  attr_accessor modifying_process: Types::ProcessDetails
1862
1974
  attr_accessor modified_at: ::Time
@@ -1892,6 +2004,20 @@ module Aws::GuardDuty
1892
2004
  SENSITIVE: []
1893
2005
  end
1894
2006
 
2007
+ class S3Bucket
2008
+ attr_accessor owner_id: ::String
2009
+ attr_accessor created_at: ::Time
2010
+ attr_accessor encryption_type: ::String
2011
+ attr_accessor encryption_key_arn: ::String
2012
+ attr_accessor effective_permission: ::String
2013
+ attr_accessor public_read_access: ("BLOCKED" | "ALLOWED")
2014
+ attr_accessor public_write_access: ("BLOCKED" | "ALLOWED")
2015
+ attr_accessor account_public_access: Types::PublicAccessConfiguration
2016
+ attr_accessor bucket_public_access: Types::PublicAccessConfiguration
2017
+ attr_accessor s3_object_uids: ::Array[::String]
2018
+ SENSITIVE: []
2019
+ end
2020
+
1895
2021
  class S3BucketDetail
1896
2022
  attr_accessor arn: ::String
1897
2023
  attr_accessor name: ::String
@@ -1915,6 +2041,13 @@ module Aws::GuardDuty
1915
2041
  SENSITIVE: []
1916
2042
  end
1917
2043
 
2044
+ class S3Object
2045
+ attr_accessor etag: ::String
2046
+ attr_accessor key: ::String
2047
+ attr_accessor version_id: ::String
2048
+ SENSITIVE: []
2049
+ end
2050
+
1918
2051
  class S3ObjectDetail
1919
2052
  attr_accessor object_arn: ::String
1920
2053
  attr_accessor key: ::String
@@ -2018,6 +2151,17 @@ module Aws::GuardDuty
2018
2151
  SENSITIVE: []
2019
2152
  end
2020
2153
 
2154
+ class Sequence
2155
+ attr_accessor uid: ::String
2156
+ attr_accessor description: ::String
2157
+ attr_accessor actors: ::Array[Types::Actor]
2158
+ attr_accessor resources: ::Array[Types::ResourceV2]
2159
+ attr_accessor endpoints: ::Array[Types::NetworkEndpoint]
2160
+ attr_accessor signals: ::Array[Types::Signal]
2161
+ attr_accessor sequence_indicators: ::Array[Types::Indicator]
2162
+ SENSITIVE: []
2163
+ end
2164
+
2021
2165
  class Service
2022
2166
  attr_accessor action: Types::Action
2023
2167
  attr_accessor evidence: Types::Evidence
@@ -2044,6 +2188,14 @@ module Aws::GuardDuty
2044
2188
  SENSITIVE: []
2045
2189
  end
2046
2190
 
2191
+ class Session
2192
+ attr_accessor uid: ::String
2193
+ attr_accessor mfa_status: ("ENABLED" | "DISABLED")
2194
+ attr_accessor created_time: ::Time
2195
+ attr_accessor issuer: ::String
2196
+ SENSITIVE: []
2197
+ end
2198
+
2047
2199
  class SeverityStatistics
2048
2200
  attr_accessor last_generated_at: ::Time
2049
2201
  attr_accessor severity: ::Float
@@ -2051,6 +2203,24 @@ module Aws::GuardDuty
2051
2203
  SENSITIVE: []
2052
2204
  end
2053
2205
 
2206
+ class Signal
2207
+ attr_accessor uid: ::String
2208
+ attr_accessor type: ("FINDING" | "CLOUD_TRAIL" | "S3_DATA_EVENTS")
2209
+ attr_accessor description: ::String
2210
+ attr_accessor name: ::String
2211
+ attr_accessor created_at: ::Time
2212
+ attr_accessor updated_at: ::Time
2213
+ attr_accessor first_seen_at: ::Time
2214
+ attr_accessor last_seen_at: ::Time
2215
+ attr_accessor severity: ::Float
2216
+ attr_accessor count: ::Integer
2217
+ attr_accessor resource_uids: ::Array[::String]
2218
+ attr_accessor actor_ids: ::Array[::String]
2219
+ attr_accessor endpoint_ids: ::Array[::String]
2220
+ attr_accessor signal_indicators: ::Array[Types::Indicator]
2221
+ SENSITIVE: []
2222
+ end
2223
+
2054
2224
  class SortCriteria
2055
2225
  attr_accessor attribute_name: ::String
2056
2226
  attr_accessor order_by: ("ASC" | "DESC")
@@ -2351,6 +2521,15 @@ module Aws::GuardDuty
2351
2521
  SENSITIVE: []
2352
2522
  end
2353
2523
 
2524
+ class User
2525
+ attr_accessor name: ::String
2526
+ attr_accessor uid: ::String
2527
+ attr_accessor type: ::String
2528
+ attr_accessor credential_uid: ::String
2529
+ attr_accessor account: Types::Account
2530
+ SENSITIVE: []
2531
+ end
2532
+
2354
2533
  class Volume
2355
2534
  attr_accessor name: ::String
2356
2535
  attr_accessor host_path: Types::HostPath
metadata CHANGED
@@ -1,14 +1,14 @@
1
1
  --- !ruby/object:Gem::Specification
2
2
  name: aws-sdk-guardduty
3
3
  version: !ruby/object:Gem::Version
4
- version: 1.107.0
4
+ version: 1.108.0
5
5
  platform: ruby
6
6
  authors:
7
7
  - Amazon Web Services
8
8
  autorequire:
9
9
  bindir: bin
10
10
  cert_chain: []
11
- date: 2024-11-18 00:00:00.000000000 Z
11
+ date: 2024-12-02 00:00:00.000000000 Z
12
12
  dependencies:
13
13
  - !ruby/object:Gem::Dependency
14
14
  name: aws-sdk-core