aws-sdk-guardduty 1.131.0 → 1.133.0

checksums.yaml

@@ -1,7 +1,7 @@
 ---
 SHA256:
-  metadata.gz: a4da201be0e65934042fa4612f70e57d8b09aa6e873cc00b630a77e359980017
-  data.tar.gz: fdc302e48e089772bc1c5d4e62ab044533808fab65da3391bce4aeb6e7e338ba
+  metadata.gz: 41daf82129584712a773fc6943032cba32b4d4e3c9e9b9c67d3462a442e5b01b
+  data.tar.gz: efd660bf5a66d97ecaf5ffde04aa3ebf302987a97c1c00fb07606a586fc878c9
 SHA512:
-  metadata.gz: 725cc6805fca147ad3f66de4df049072ac1e43838f92f6d0a6e787c2df8e31fae24bf76a28f98b4ccdc9ae778bc519046ef87be7705baefb60d0766fdbca4c40
-  data.tar.gz: a6632906aa37475ef0f3c44ea64f856837a9ebad4ab1c87f7bc940f9241bdf2814bb7883ed1352bcd87141d34c338c6db2c97dcf58bfd409351035edf02011fa
+  metadata.gz: 6084704b0a8b3962752af1d607ac94fae4689bf68c5d4f5997c809ce2acf7d51363cd8a1819c93b992a10baa727d26fab50cddb546cb213b2875798324e37a54
+  data.tar.gz: 11fb445e4bfabd649a01d572aefdeee476ff3bd0605e50c6407eea840f78778837caa0f137cc1166927a612b0c642ee759f39905c3715600d827111630090da4

data/CHANGELOG.md

@@ -1,6 +1,16 @@
 Unreleased Changes
 ------------------
 
+1.133.0 (2025-11-17)
+------------------
+
+* Feature - Add S3 On-Demand Object Scanning
+
+1.132.0 (2025-11-10)
+------------------
+
+* Feature - Include tags filed in CreatePublishingDestinationRequest and DescribePublishingDestinationResponse.
+
 1.131.0 (2025-10-21)
 ------------------
 

data/VERSION

@@ -1 +1 @@
-1.131.0
+1.133.0

data/lib/aws-sdk-guardduty/client.rb

@@ -1287,6 +1287,9 @@ module Aws::GuardDuty
     #   **A suitable default value is auto-generated.** You should normally
     #   not need to pass this option.**
     #
+    # @option params [Hash<String,String>] :tags
+    #   The tags to be added to a new publishing destination resource.
+    #
     # @return [Types::CreatePublishingDestinationResponse] Returns a {Seahorse::Client::Response response} object which responds to the following methods:
     #
     #   * {Types::CreatePublishingDestinationResponse#destination_id #destination_id} => String
@@ -1301,6 +1304,9 @@ module Aws::GuardDuty
     #       kms_key_arn: "String",
     #     },
     #     client_token: "ClientToken",
+    #     tags: {
+    #       "TagKey" => "TagValue",
+    #     },
     #   })
     #
     # @example Response structure
@@ -2200,6 +2206,7 @@ module Aws::GuardDuty
     #   * {Types::DescribePublishingDestinationResponse#status #status} => String
     #   * {Types::DescribePublishingDestinationResponse#publishing_failure_start_timestamp #publishing_failure_start_timestamp} => Integer
     #   * {Types::DescribePublishingDestinationResponse#destination_properties #destination_properties} => Types::DestinationProperties
+    #   * {Types::DescribePublishingDestinationResponse#tags #tags} => Hash&lt;String,String&gt;
     #
     # @example Request syntax with placeholder values
     #
@@ -2216,6 +2223,8 @@ module Aws::GuardDuty
     #   resp.publishing_failure_start_timestamp #=> Integer
     #   resp.destination_properties.destination_arn #=> String
     #   resp.destination_properties.kms_key_arn #=> String
+    #   resp.tags #=> Hash
+    #   resp.tags["TagKey"] #=> String
     #
     # @see http://docs.aws.amazon.com/goto/WebAPI/guardduty-2017-11-28/DescribePublishingDestination AWS API Documentation
     #
@@ -5150,6 +5159,43 @@ module Aws::GuardDuty
       req.send_request(options)
     end
 
+    # Initiates a malware scan for a specific S3 object. This API allows you
+    # to perform on-demand malware scanning of individual objects in S3
+    # buckets that have Malware Protection for S3 enabled.
+    #
+    # When you use this API, the Amazon Web Services service terms for
+    # GuardDuty Malware Protection apply. For more information, see [Amazon
+    # Web Services service terms for GuardDuty Malware Protection][1].
+    #
+    #
+    #
+    # [1]: http://aws.amazon.com/service-terms/#87._Amazon_GuardDuty
+    #
+    # @option params [Types::S3ObjectForSendObjectMalwareScan] :s3_object
+    #   The S3 object information for the object you want to scan. The bucket
+    #   must have a Malware Protection plan configured to use this API.
+    #
+    # @return [Struct] Returns an empty {Seahorse::Client::Response response}.
+    #
+    # @example Request syntax with placeholder values
+    #
+    #   resp = client.send_object_malware_scan({
+    #     s3_object: {
+    #       bucket: "String",
+    #       key: "String",
+    #       version_id: "String",
+    #     },
+    #   })
+    #
+    # @see http://docs.aws.amazon.com/goto/WebAPI/guardduty-2017-11-28/SendObjectMalwareScan AWS API Documentation
+    #
+    # @overload send_object_malware_scan(params = {})
+    # @param [Hash] params ({})
+    def send_object_malware_scan(params = {}, options = {})
+      req = build_request(:send_object_malware_scan, params)
+      req.send_request(options)
+    end
+
     # Initiates the malware scan. Invoking this API will automatically
     # create the [Service-linked role][1] in the corresponding account.
     #
@@ -6209,7 +6255,7 @@ module Aws::GuardDuty
         tracer: tracer
       )
       context[:gem_name] = 'aws-sdk-guardduty'
-      context[:gem_version] = '1.131.0'
+      context[:gem_version] = '1.133.0'
       Seahorse::Client::Request.new(handlers, context)
     end
 

data/lib/aws-sdk-guardduty/client_api.rb

@@ -492,6 +492,7 @@ module Aws::GuardDuty
     S3Object = Shapes::StructureShape.new(name: 'S3Object')
     S3ObjectDetail = Shapes::StructureShape.new(name: 'S3ObjectDetail')
     S3ObjectDetails = Shapes::ListShape.new(name: 'S3ObjectDetails')
+    S3ObjectForSendObjectMalwareScan = Shapes::StructureShape.new(name: 'S3ObjectForSendObjectMalwareScan')
     S3ObjectUids = Shapes::ListShape.new(name: 'S3ObjectUids')
     Scan = Shapes::StructureShape.new(name: 'Scan')
     ScanCondition = Shapes::StructureShape.new(name: 'ScanCondition')
@@ -514,6 +515,8 @@ module Aws::GuardDuty
     SecurityContext = Shapes::StructureShape.new(name: 'SecurityContext')
     SecurityGroup = Shapes::StructureShape.new(name: 'SecurityGroup')
     SecurityGroups = Shapes::ListShape.new(name: 'SecurityGroups')
+    SendObjectMalwareScanRequest = Shapes::StructureShape.new(name: 'SendObjectMalwareScanRequest')
+    SendObjectMalwareScanResponse = Shapes::StructureShape.new(name: 'SendObjectMalwareScanResponse')
     SensitiveString = Shapes::StringShape.new(name: 'SensitiveString')
     Sequence = Shapes::StructureShape.new(name: 'Sequence')
     SequenceDescription = Shapes::StringShape.new(name: 'SequenceDescription')
@@ -978,6 +981,7 @@ module Aws::GuardDuty
     CreatePublishingDestinationRequest.add_member(:destination_type, Shapes::ShapeRef.new(shape: DestinationType, required: true, location_name: "destinationType"))
     CreatePublishingDestinationRequest.add_member(:destination_properties, Shapes::ShapeRef.new(shape: DestinationProperties, required: true, location_name: "destinationProperties"))
     CreatePublishingDestinationRequest.add_member(:client_token, Shapes::ShapeRef.new(shape: ClientToken, location_name: "clientToken", metadata: {"idempotencyToken" => true}))
+    CreatePublishingDestinationRequest.add_member(:tags, Shapes::ShapeRef.new(shape: TagMap, location_name: "tags"))
     CreatePublishingDestinationRequest.struct_class = Types::CreatePublishingDestinationRequest
 
     CreatePublishingDestinationResponse.add_member(:destination_id, Shapes::ShapeRef.new(shape: String, required: true, location_name: "destinationId"))
@@ -1170,6 +1174,7 @@ module Aws::GuardDuty
     DescribePublishingDestinationResponse.add_member(:status, Shapes::ShapeRef.new(shape: PublishingStatus, required: true, location_name: "status"))
     DescribePublishingDestinationResponse.add_member(:publishing_failure_start_timestamp, Shapes::ShapeRef.new(shape: Long, required: true, location_name: "publishingFailureStartTimestamp"))
     DescribePublishingDestinationResponse.add_member(:destination_properties, Shapes::ShapeRef.new(shape: DestinationProperties, required: true, location_name: "destinationProperties"))
+    DescribePublishingDestinationResponse.add_member(:tags, Shapes::ShapeRef.new(shape: TagMap, location_name: "tags"))
     DescribePublishingDestinationResponse.struct_class = Types::DescribePublishingDestinationResponse
 
     Destination.add_member(:destination_id, Shapes::ShapeRef.new(shape: String, required: true, location_name: "destinationId"))
@@ -2400,6 +2405,11 @@ module Aws::GuardDuty
 
     S3ObjectDetails.member = Shapes::ShapeRef.new(shape: S3ObjectDetail)
 
+    S3ObjectForSendObjectMalwareScan.add_member(:bucket, Shapes::ShapeRef.new(shape: String, location_name: "bucket"))
+    S3ObjectForSendObjectMalwareScan.add_member(:key, Shapes::ShapeRef.new(shape: String, location_name: "key"))
+    S3ObjectForSendObjectMalwareScan.add_member(:version_id, Shapes::ShapeRef.new(shape: String, location_name: "versionId"))
+    S3ObjectForSendObjectMalwareScan.struct_class = Types::S3ObjectForSendObjectMalwareScan
+
     S3ObjectUids.member = Shapes::ShapeRef.new(shape: String)
 
     Scan.add_member(:detector_id, Shapes::ShapeRef.new(shape: DetectorId, location_name: "detectorId"))
@@ -2479,6 +2489,11 @@ module Aws::GuardDuty
 
     SecurityGroups.member = Shapes::ShapeRef.new(shape: SecurityGroup)
 
+    SendObjectMalwareScanRequest.add_member(:s3_object, Shapes::ShapeRef.new(shape: S3ObjectForSendObjectMalwareScan, location_name: "s3Object"))
+    SendObjectMalwareScanRequest.struct_class = Types::SendObjectMalwareScanRequest
+
+    SendObjectMalwareScanResponse.struct_class = Types::SendObjectMalwareScanResponse
+
     Sequence.add_member(:uid, Shapes::ShapeRef.new(shape: String, required: true, location_name: "uid"))
     Sequence.add_member(:description, Shapes::ShapeRef.new(shape: SequenceDescription, required: true, location_name: "description"))
     Sequence.add_member(:actors, Shapes::ShapeRef.new(shape: Actors, location_name: "actors"))
@@ -3631,6 +3646,17 @@ module Aws::GuardDuty
         )
       end)
 
+      api.add_operation(:send_object_malware_scan, Seahorse::Model::Operation.new.tap do |o|
+        o.name = "SendObjectMalwareScan"
+        o.http_method = "POST"
+        o.http_request_uri = "/object-malware-scan/send"
+        o.input = Shapes::ShapeRef.new(shape: SendObjectMalwareScanRequest)
+        o.output = Shapes::ShapeRef.new(shape: SendObjectMalwareScanResponse)
+        o.errors << Shapes::ShapeRef.new(shape: BadRequestException)
+        o.errors << Shapes::ShapeRef.new(shape: AccessDeniedException)
+        o.errors << Shapes::ShapeRef.new(shape: InternalServerErrorException)
+      end)
+
       api.add_operation(:start_malware_scan, Seahorse::Model::Operation.new.tap do |o|
         o.name = "StartMalwareScan"
         o.http_method = "POST"

data/lib/aws-sdk-guardduty/types.rb

@@ -1895,13 +1895,18 @@ module Aws::GuardDuty
     #   not need to pass this option.
     #   @return [String]
     #
+    # @!attribute [rw] tags
+    #   The tags to be added to a new publishing destination resource.
+    #   @return [Hash<String,String>]
+    #
     # @see http://docs.aws.amazon.com/goto/WebAPI/guardduty-2017-11-28/CreatePublishingDestinationRequest AWS API Documentation
     #
     class CreatePublishingDestinationRequest < Struct.new(
       :detector_id,
       :destination_type,
       :destination_properties,
-      :client_token)
+      :client_token,
+      :tags)
       SENSITIVE = []
       include Aws::Structure
     end
@@ -2938,6 +2943,10 @@ module Aws::GuardDuty
     #   and `KmsKeyArn` of the publishing destination.
     #   @return [Types::DestinationProperties]
     #
+    # @!attribute [rw] tags
+    #   The tags of the publishing destination resource.
+    #   @return [Hash<String,String>]
+    #
     # @see http://docs.aws.amazon.com/goto/WebAPI/guardduty-2017-11-28/DescribePublishingDestinationResponse AWS API Documentation
     #
     class DescribePublishingDestinationResponse < Struct.new(
@@ -2945,7 +2954,8 @@ module Aws::GuardDuty
       :destination_type,
       :status,
       :publishing_failure_start_timestamp,
-      :destination_properties)
+      :destination_properties,
+      :tags)
       SENSITIVE = []
       include Aws::Structure
     end
@@ -8959,6 +8969,34 @@ module Aws::GuardDuty
       include Aws::Structure
     end
 
+    # The S3 object path to initiate a scan, including bucket name, object
+    # key, and optional version ID.
+    #
+    # @!attribute [rw] bucket
+    #   The name of the S3 bucket containing the object to scan. The bucket
+    #   must have GuardDuty Malware Protection enabled.
+    #   @return [String]
+    #
+    # @!attribute [rw] key
+    #   The key (name) of the S3 object to scan for malware. This must be
+    #   the full key path of the object within the bucket.
+    #   @return [String]
+    #
+    # @!attribute [rw] version_id
+    #   The version ID of the S3 object to scan. If not specified, the
+    #   latest version of the object is scanned.
+    #   @return [String]
+    #
+    # @see http://docs.aws.amazon.com/goto/WebAPI/guardduty-2017-11-28/S3ObjectForSendObjectMalwareScan AWS API Documentation
+    #
+    class S3ObjectForSendObjectMalwareScan < Struct.new(
+      :bucket,
+      :key,
+      :version_id)
+      SENSITIVE = []
+      include Aws::Structure
+    end
+
     # Contains information about malware scans associated with GuardDuty
     # Malware Protection for EC2.
     #
@@ -9318,6 +9356,24 @@ module Aws::GuardDuty
       include Aws::Structure
     end
 
+    # @!attribute [rw] s3_object
+    #   The S3 object information for the object you want to scan. The
+    #   bucket must have a Malware Protection plan configured to use this
+    #   API.
+    #   @return [Types::S3ObjectForSendObjectMalwareScan]
+    #
+    # @see http://docs.aws.amazon.com/goto/WebAPI/guardduty-2017-11-28/SendObjectMalwareScanRequest AWS API Documentation
+    #
+    class SendObjectMalwareScanRequest < Struct.new(
+      :s3_object)
+      SENSITIVE = []
+      include Aws::Structure
+    end
+
+    # @see http://docs.aws.amazon.com/goto/WebAPI/guardduty-2017-11-28/SendObjectMalwareScanResponse AWS API Documentation
+    #
+    class SendObjectMalwareScanResponse < Aws::EmptyStructure; end
+
     # Contains information about the GuardDuty attack sequence finding.
     #
     # @!attribute [rw] uid

data/lib/aws-sdk-guardduty.rb

@@ -54,7 +54,7 @@ module Aws::GuardDuty
   autoload :EndpointProvider, 'aws-sdk-guardduty/endpoint_provider'
   autoload :Endpoints, 'aws-sdk-guardduty/endpoints'
 
-  GEM_VERSION = '1.131.0'
+  GEM_VERSION = '1.133.0'
 
 end
 

data/sig/client.rbs

@@ -251,7 +251,8 @@ module Aws
                                              destination_arn: ::String?,
                                              kms_key_arn: ::String?
                                            },
-                                           ?client_token: ::String
+                                           ?client_token: ::String,
+                                           ?tags: Hash[::String, ::String]
                                          ) -> _CreatePublishingDestinationResponseSuccess
                                        | (Hash[Symbol, untyped] params, ?Hash[Symbol, untyped] options) -> _CreatePublishingDestinationResponseSuccess
 
@@ -475,6 +476,7 @@ module Aws
         def status: () -> ("PENDING_VERIFICATION" | "PUBLISHING" | "UNABLE_TO_PUBLISH_FIX_DESTINATION_PROPERTY" | "STOPPED")
         def publishing_failure_start_timestamp: () -> ::Integer
         def destination_properties: () -> Types::DestinationProperties
+        def tags: () -> ::Hash[::String, ::String]
       end
       # https://docs.aws.amazon.com/sdk-for-ruby/v3/api/Aws/GuardDuty/Client.html#describe_publishing_destination-instance_method
       def describe_publishing_destination: (
@@ -1046,6 +1048,19 @@ module Aws
                                     ) -> _ListTrustedEntitySetsResponseSuccess
                                   | (Hash[Symbol, untyped] params, ?Hash[Symbol, untyped] options) -> _ListTrustedEntitySetsResponseSuccess
 
+      interface _SendObjectMalwareScanResponseSuccess
+        include ::Seahorse::Client::_ResponseSuccess[Types::SendObjectMalwareScanResponse]
+      end
+      # https://docs.aws.amazon.com/sdk-for-ruby/v3/api/Aws/GuardDuty/Client.html#send_object_malware_scan-instance_method
+      def send_object_malware_scan: (
+                                      ?s3_object: {
+                                        bucket: ::String?,
+                                        key: ::String?,
+                                        version_id: ::String?
+                                      }
+                                    ) -> _SendObjectMalwareScanResponseSuccess
+                                  | (?Hash[Symbol, untyped] params, ?Hash[Symbol, untyped] options) -> _SendObjectMalwareScanResponseSuccess
+
       interface _StartMalwareScanResponseSuccess
         include ::Seahorse::Client::_ResponseSuccess[Types::StartMalwareScanResponse]
         def scan_id: () -> ::String

data/sig/types.rbs

@@ -432,6 +432,7 @@ module Aws::GuardDuty
       attr_accessor destination_type: ("S3")
       attr_accessor destination_properties: Types::DestinationProperties
       attr_accessor client_token: ::String
+      attr_accessor tags: ::Hash[::String, ::String]
       SENSITIVE: []
     end
 
@@ -699,6 +700,7 @@ module Aws::GuardDuty
       attr_accessor status: ("PENDING_VERIFICATION" | "PUBLISHING" | "UNABLE_TO_PUBLISH_FIX_DESTINATION_PROPERTY" | "STOPPED")
       attr_accessor publishing_failure_start_timestamp: ::Integer
       attr_accessor destination_properties: Types::DestinationProperties
+      attr_accessor tags: ::Hash[::String, ::String]
       SENSITIVE: []
     end
 
@@ -2211,6 +2213,13 @@ module Aws::GuardDuty
       SENSITIVE: []
     end
 
+    class S3ObjectForSendObjectMalwareScan
+      attr_accessor bucket: ::String
+      attr_accessor key: ::String
+      attr_accessor version_id: ::String
+      SENSITIVE: []
+    end
+
     class Scan
       attr_accessor detector_id: ::String
       attr_accessor admin_detector_id: ::String
@@ -2305,6 +2314,14 @@ module Aws::GuardDuty
       SENSITIVE: []
     end
 
+    class SendObjectMalwareScanRequest
+      attr_accessor s3_object: Types::S3ObjectForSendObjectMalwareScan
+      SENSITIVE: []
+    end
+
+    class SendObjectMalwareScanResponse < Aws::EmptyStructure
+    end
+
     class Sequence
       attr_accessor uid: ::String
       attr_accessor description: ::String

metadata

@@ -1,7 +1,7 @@
 --- !ruby/object:Gem::Specification
 name: aws-sdk-guardduty
 version: !ruby/object:Gem::Version
-  version: 1.131.0
+  version: 1.133.0
 platform: ruby
 authors:
 - Amazon Web Services