aws-sdk-guardduty 1.149.0 → 1.151.0

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.
Files changed (9) hide show
  1. checksums.yaml +4 -4
  2. data/CHANGELOG.md +10 -0
  3. data/VERSION +1 -1
  4. data/lib/aws-sdk-guardduty/client.rb +12 -15
  5. data/lib/aws-sdk-guardduty.rb +1 -1
  6. data/sig/client.rbs +20 -168
  7. data/sig/params.rbs +73 -0
  8. data/sig/types.rbs +1 -1
  9. metadata +4 -3
checksums.yaml CHANGED
@@ -1,7 +1,7 @@
1
1
  ---
2
2
  SHA256:
3
- metadata.gz: 0ac446955c8bfa6196ce4a09c6e9e11bde1084253ad4eddad2256c14f1dfad68
4
- data.tar.gz: 764f8d3fc4a29c273cf7b9ce0c11f4684e647eec7d970759031231e12fb1fe7d
3
+ metadata.gz: 968ac7495e15e2a99f1deac42b8069aa6600735fd17f7a4bc8270aae1a14f2eb
4
+ data.tar.gz: e85766b49cea51baea08cbfb99796e35744151eb916eb3e1dcecc87cfee503d4
5
5
  SHA512:
6
- metadata.gz: a95a36709b44702c03f90c4182ef93395d13dcf200ff767050334fdb6fcc23ed6160279269498798699a5aba32cecea41a644c3e6185c7ec5bcf2df6189a87a7
7
- data.tar.gz: 9460622f7c3a6ef003162c34ebe9b8e567d0259c8e14b1cc57f60c1f0f37dba0f5b4dbbf2f915b7188d90f157a8374a04da4a00a823b9d6aa367f52287678ecb
6
+ metadata.gz: 4e6389c6e37b35bb750db5b71c6f59d9aab5aa30a43534cd946eb0b7e3e37e8f5f33ab2e961e669e33b425beb65bcac2ada05c6885ff73233883ee888f93e7cc
7
+ data.tar.gz: 01ef7f3e3f8e430d778a512de25bdb1771c5ca05f3a749026d0c97b150fb09f989d8cb0798d1ba30b041bddfbe94914daa314966ef0fd999684a21df6958e921
data/CHANGELOG.md CHANGED
@@ -1,6 +1,16 @@
1
1
  Unreleased Changes
2
2
  ------------------
3
3
 
4
+ 1.151.0 (2026-05-21)
5
+ ------------------
6
+
7
+ * Feature - Adding new BDD representation of endpoint ruleset
8
+
9
+ 1.150.0 (2026-05-19)
10
+ ------------------
11
+
12
+ * Feature - Adding support for exposure and vulnerability context from AWS Security Hub in GuardDuty Extended Threat Detection attack sequence findings.
13
+
4
14
  1.149.0 (2026-05-13)
5
15
  ------------------
6
16
 
data/VERSION CHANGED
@@ -1 +1 @@
1
- 1.149.0
1
+ 1.151.0
data/lib/aws-sdk-guardduty/client.rb CHANGED
@@ -199,7 +199,7 @@ module Aws::GuardDuty
199
199
  # the required types.
200
200
  #
201
201
  # @option options [Boolean] :correct_clock_skew (true)
202
- # Used only in `standard` and adaptive retry modes. Specifies whether to apply
202
+ # Used only in `standard` and `adaptive` retry modes. Specifies whether to apply
203
203
  # a clock skew correction and retry requests with skewed client clocks.
204
204
  #
205
205
  # @option options [String] :defaults_mode ("legacy")
@@ -323,17 +323,15 @@ module Aws::GuardDuty
323
323
  # @option options [String] :retry_mode ("legacy")
324
324
  # Specifies which retry algorithm to use. Values are:
325
325
  #
326
- # * `legacy` - The pre-existing retry behavior. This is default value if
327
- # no retry mode is provided.
326
+ # * `legacy` - The pre-existing retry behavior. This is the default
327
+ # value if no retry mode is provided.
328
328
  #
329
329
  # * `standard` - A standardized set of retry rules across the AWS SDKs.
330
330
  # This includes support for retry quotas, which limit the number of
331
331
  # unsuccessful retries a client can make.
332
332
  #
333
- # * `adaptive` - An experimental retry mode that includes all the
334
- # functionality of `standard` mode along with automatic client side
335
- # throttling. This is a provisional mode that may change behavior
336
- # in the future.
333
+ # * `adaptive` - A retry mode that includes all the functionality of
334
+ # `standard` mode along with automatic client side throttling.
337
335
  #
338
336
  # @option options [String] :sdk_ua_app_id
339
337
  # A unique and opaque application ID that is appended to the
@@ -2476,11 +2474,10 @@ module Aws::GuardDuty
2476
2474
  end
2477
2475
 
2478
2476
  # Creates a new threat entity set. In a threat entity set, you can
2479
- # provide known malicious IP addresses and domains for your Amazon Web
2480
- # Services environment. GuardDuty generates findings based on the
2481
- # entries in the threat entity sets. Only users of the administrator
2482
- # account can manage entity sets, which automatically apply to member
2483
- # accounts.
2477
+ # provide known malicious threat entities for your Amazon Web Services
2478
+ # environment. GuardDuty generates findings based on the entries in the
2479
+ # threat entity sets. Only users of the administrator account can manage
2480
+ # entity sets, which automatically apply to member accounts.
2484
2481
  #
2485
2482
  # @option params [required, String] :detector_id
2486
2483
  # The unique ID of the detector of the GuardDuty account for which you
@@ -4457,12 +4454,12 @@ module Aws::GuardDuty
4457
4454
  # resp.findings[0].service.detection.sequence.signals[0].endpoint_ids #=> Array
4458
4455
  # resp.findings[0].service.detection.sequence.signals[0].endpoint_ids[0] #=> String
4459
4456
  # resp.findings[0].service.detection.sequence.signals[0].signal_indicators #=> Array
4460
- # resp.findings[0].service.detection.sequence.signals[0].signal_indicators[0].key #=> String, one of "SUSPICIOUS_USER_AGENT", "SUSPICIOUS_NETWORK", "MALICIOUS_IP", "TOR_IP", "ATTACK_TACTIC", "HIGH_RISK_API", "ATTACK_TECHNIQUE", "UNUSUAL_API_FOR_ACCOUNT", "UNUSUAL_ASN_FOR_ACCOUNT", "UNUSUAL_ASN_FOR_USER", "SUSPICIOUS_PROCESS", "MALICIOUS_DOMAIN", "MALICIOUS_PROCESS", "CRYPTOMINING_IP", "CRYPTOMINING_DOMAIN", "CRYPTOMINING_PROCESS", "MALICIOUS_FILE"
4457
+ # resp.findings[0].service.detection.sequence.signals[0].signal_indicators[0].key #=> String, one of "SUSPICIOUS_USER_AGENT", "SUSPICIOUS_NETWORK", "MALICIOUS_IP", "TOR_IP", "ATTACK_TACTIC", "HIGH_RISK_API", "ATTACK_TECHNIQUE", "UNUSUAL_API_FOR_ACCOUNT", "UNUSUAL_ASN_FOR_ACCOUNT", "UNUSUAL_ASN_FOR_USER", "SUSPICIOUS_PROCESS", "MALICIOUS_DOMAIN", "MALICIOUS_PROCESS", "CRYPTOMINING_IP", "CRYPTOMINING_DOMAIN", "CRYPTOMINING_PROCESS", "MALICIOUS_FILE", "VULNERABILITY", "MALICIOUS_PACKAGE", "MISCONFIGURATION", "REACHABILITY", "SENSITIVE_DATA"
4461
4458
  # resp.findings[0].service.detection.sequence.signals[0].signal_indicators[0].values #=> Array
4462
4459
  # resp.findings[0].service.detection.sequence.signals[0].signal_indicators[0].values[0] #=> String
4463
4460
  # resp.findings[0].service.detection.sequence.signals[0].signal_indicators[0].title #=> String
4464
4461
  # resp.findings[0].service.detection.sequence.sequence_indicators #=> Array
4465
- # resp.findings[0].service.detection.sequence.sequence_indicators[0].key #=> String, one of "SUSPICIOUS_USER_AGENT", "SUSPICIOUS_NETWORK", "MALICIOUS_IP", "TOR_IP", "ATTACK_TACTIC", "HIGH_RISK_API", "ATTACK_TECHNIQUE", "UNUSUAL_API_FOR_ACCOUNT", "UNUSUAL_ASN_FOR_ACCOUNT", "UNUSUAL_ASN_FOR_USER", "SUSPICIOUS_PROCESS", "MALICIOUS_DOMAIN", "MALICIOUS_PROCESS", "CRYPTOMINING_IP", "CRYPTOMINING_DOMAIN", "CRYPTOMINING_PROCESS", "MALICIOUS_FILE"
4462
+ # resp.findings[0].service.detection.sequence.sequence_indicators[0].key #=> String, one of "SUSPICIOUS_USER_AGENT", "SUSPICIOUS_NETWORK", "MALICIOUS_IP", "TOR_IP", "ATTACK_TACTIC", "HIGH_RISK_API", "ATTACK_TECHNIQUE", "UNUSUAL_API_FOR_ACCOUNT", "UNUSUAL_ASN_FOR_ACCOUNT", "UNUSUAL_ASN_FOR_USER", "SUSPICIOUS_PROCESS", "MALICIOUS_DOMAIN", "MALICIOUS_PROCESS", "CRYPTOMINING_IP", "CRYPTOMINING_DOMAIN", "CRYPTOMINING_PROCESS", "MALICIOUS_FILE", "VULNERABILITY", "MALICIOUS_PACKAGE", "MISCONFIGURATION", "REACHABILITY", "SENSITIVE_DATA"
4466
4463
  # resp.findings[0].service.detection.sequence.sequence_indicators[0].values #=> Array
4467
4464
  # resp.findings[0].service.detection.sequence.sequence_indicators[0].values[0] #=> String
4468
4465
  # resp.findings[0].service.detection.sequence.sequence_indicators[0].title #=> String
@@ -8965,7 +8962,7 @@ module Aws::GuardDuty
8965
8962
  tracer: tracer
8966
8963
  )
8967
8964
  context[:gem_name] = 'aws-sdk-guardduty'
8968
- context[:gem_version] = '1.149.0'
8965
+ context[:gem_version] = '1.151.0'
8969
8966
  Seahorse::Client::Request.new(handlers, context)
8970
8967
  end
8971
8968
 
data/lib/aws-sdk-guardduty.rb CHANGED
@@ -54,7 +54,7 @@ module Aws::GuardDuty
54
54
  autoload :EndpointProvider, 'aws-sdk-guardduty/endpoint_provider'
55
55
  autoload :Endpoints, 'aws-sdk-guardduty/endpoints'
56
56
 
57
- GEM_VERSION = '1.149.0'
57
+ GEM_VERSION = '1.151.0'
58
58
 
59
59
  end
60
60
 
data/sig/client.rbs CHANGED
@@ -120,33 +120,10 @@ module Aws
120
120
  enable: bool,
121
121
  ?client_token: ::String,
122
122
  ?finding_publishing_frequency: ("FIFTEEN_MINUTES" | "ONE_HOUR" | "SIX_HOURS"),
123
- ?data_sources: {
124
- s3_logs: {
125
- enable: bool
126
- }?,
127
- kubernetes: {
128
- audit_logs: {
129
- enable: bool
130
- }
131
- }?,
132
- malware_protection: {
133
- scan_ec2_instance_with_findings: {
134
- ebs_volumes: bool?
135
- }?
136
- }?
137
- },
123
+ ?data_sources: Params::data_source_configurations,
138
124
  ?tags: Hash[::String, ::String],
139
125
  ?features: Array[
140
- {
141
- name: ("S3_DATA_EVENTS" | "EKS_AUDIT_LOGS" | "EBS_MALWARE_PROTECTION" | "RDS_LOGIN_EVENTS" | "LAMBDA_NETWORK_LOGS" | "EKS_RUNTIME_MONITORING" | "RUNTIME_MONITORING")?,
142
- status: ("ENABLED" | "DISABLED")?,
143
- additional_configuration: Array[
144
- {
145
- name: ("EKS_ADDON_MANAGEMENT" | "ECS_FARGATE_AGENT_MANAGEMENT" | "EC2_AGENT_MANAGEMENT")?,
146
- status: ("ENABLED" | "DISABLED")?
147
- },
148
- ]?
149
- },
126
+ Params::detector_feature_configuration
150
127
  ]
151
128
  ) -> _CreateDetectorResponseSuccess
152
129
  | (Hash[Symbol, untyped] params, ?Hash[Symbol, untyped] options) -> _CreateDetectorResponseSuccess
@@ -162,24 +139,7 @@ module Aws
162
139
  ?description: ::String,
163
140
  ?action: ("NOOP" | "ARCHIVE"),
164
141
  ?rank: ::Integer,
165
- finding_criteria: {
166
- criterion: Hash[::String, {
167
- eq: Array[::String]?,
168
- neq: Array[::String]?,
169
- gt: ::Integer?,
170
- gte: ::Integer?,
171
- lt: ::Integer?,
172
- lte: ::Integer?,
173
- equals: Array[::String]?,
174
- not_equals: Array[::String]?,
175
- greater_than: ::Integer?,
176
- greater_than_or_equal: ::Integer?,
177
- less_than: ::Integer?,
178
- less_than_or_equal: ::Integer?,
179
- matches: Array[::String]?,
180
- not_matches: Array[::String]?
181
- }]?
182
- },
142
+ finding_criteria: Params::finding_criteria,
183
143
  ?client_token: ::String,
184
144
  ?tags: Hash[::String, ::String]
185
145
  ) -> _CreateFilterResponseSuccess
@@ -236,7 +196,7 @@ module Aws
236
196
  {
237
197
  account_id: ::String,
238
198
  email: ::String
239
- },
199
+ }
240
200
  ]
241
201
  ) -> _CreateMembersResponseSuccess
242
202
  | (Hash[Symbol, untyped] params, ?Hash[Symbol, untyped] options) -> _CreateMembersResponseSuccess
@@ -444,7 +404,7 @@ module Aws
444
404
  greater_than: ::Integer?,
445
405
  less_than: ::Integer?
446
406
  }?
447
- },
407
+ }
448
408
  ]?
449
409
  },
450
410
  ?sort_criteria: {
@@ -551,17 +511,7 @@ module Aws
551
511
  # https://docs.aws.amazon.com/sdk-for-ruby/v3/api/Aws/GuardDuty/Client.html#get_coverage_statistics-instance_method
552
512
  def get_coverage_statistics: (
553
513
  detector_id: ::String,
554
- ?filter_criteria: {
555
- filter_criterion: Array[
556
- {
557
- criterion_key: ("ACCOUNT_ID" | "RESOURCE_TYPE" | "COVERAGE_STATUS" | "ADDON_VERSION" | "CLUSTER_NAME" | "ECS_CLUSTER_NAME" | "MANAGEMENT_TYPE" | "EKS_CLUSTER_NAME" | "AGENT_VERSION" | "INSTANCE_ID" | "CLUSTER_ARN")?,
558
- filter_condition: {
559
- equals: Array[::String]?,
560
- not_equals: Array[::String]?
561
- }?
562
- },
563
- ]?
564
- },
514
+ ?filter_criteria: Params::coverage_filter_criteria,
565
515
  statistics_type: Array[("COUNT_BY_RESOURCE_TYPE" | "COUNT_BY_COVERAGE_STATUS")]
566
516
  ) -> _GetCoverageStatisticsResponseSuccess
567
517
  | (Hash[Symbol, untyped] params, ?Hash[Symbol, untyped] options) -> _GetCoverageStatisticsResponseSuccess
@@ -623,24 +573,7 @@ module Aws
623
573
  def get_findings_statistics: (
624
574
  detector_id: ::String,
625
575
  ?finding_statistic_types: Array[("COUNT_BY_SEVERITY")],
626
- ?finding_criteria: {
627
- criterion: Hash[::String, {
628
- eq: Array[::String]?,
629
- neq: Array[::String]?,
630
- gt: ::Integer?,
631
- gte: ::Integer?,
632
- lt: ::Integer?,
633
- lte: ::Integer?,
634
- equals: Array[::String]?,
635
- not_equals: Array[::String]?,
636
- greater_than: ::Integer?,
637
- greater_than_or_equal: ::Integer?,
638
- less_than: ::Integer?,
639
- less_than_or_equal: ::Integer?,
640
- matches: Array[::String]?,
641
- not_matches: Array[::String]?
642
- }]?
643
- },
576
+ ?finding_criteria: Params::finding_criteria,
644
577
  ?group_by: ("ACCOUNT" | "DATE" | "FINDING_TYPE" | "RESOURCE" | "SEVERITY"),
645
578
  ?order_by: ("ASC" | "DESC"),
646
579
  ?max_results: ::Integer
@@ -878,17 +811,7 @@ module Aws
878
811
  detector_id: ::String,
879
812
  ?next_token: ::String,
880
813
  ?max_results: ::Integer,
881
- ?filter_criteria: {
882
- filter_criterion: Array[
883
- {
884
- criterion_key: ("ACCOUNT_ID" | "RESOURCE_TYPE" | "COVERAGE_STATUS" | "ADDON_VERSION" | "CLUSTER_NAME" | "ECS_CLUSTER_NAME" | "MANAGEMENT_TYPE" | "EKS_CLUSTER_NAME" | "AGENT_VERSION" | "INSTANCE_ID" | "CLUSTER_ARN")?,
885
- filter_condition: {
886
- equals: Array[::String]?,
887
- not_equals: Array[::String]?
888
- }?
889
- },
890
- ]?
891
- },
814
+ ?filter_criteria: Params::coverage_filter_criteria,
892
815
  ?sort_criteria: {
893
816
  attribute_name: ("ACCOUNT_ID" | "COVERAGE_STATUS" | "ISSUE" | "ADDON_VERSION" | "UPDATED_AT" | "CLUSTER_NAME" | "EKS_CLUSTER_NAME" | "ECS_CLUSTER_NAME" | "INSTANCE_ID")?,
894
817
  order_by: ("ASC" | "DESC")?
@@ -929,24 +852,7 @@ module Aws
929
852
  # https://docs.aws.amazon.com/sdk-for-ruby/v3/api/Aws/GuardDuty/Client.html#list_findings-instance_method
930
853
  def list_findings: (
931
854
  detector_id: ::String,
932
- ?finding_criteria: {
933
- criterion: Hash[::String, {
934
- eq: Array[::String]?,
935
- neq: Array[::String]?,
936
- gt: ::Integer?,
937
- gte: ::Integer?,
938
- lt: ::Integer?,
939
- lte: ::Integer?,
940
- equals: Array[::String]?,
941
- not_equals: Array[::String]?,
942
- greater_than: ::Integer?,
943
- greater_than_or_equal: ::Integer?,
944
- less_than: ::Integer?,
945
- less_than_or_equal: ::Integer?,
946
- matches: Array[::String]?,
947
- not_matches: Array[::String]?
948
- }]?
949
- },
855
+ ?finding_criteria: Params::finding_criteria,
950
856
  ?sort_criteria: {
951
857
  attribute_name: ::String?,
952
858
  order_by: ("ASC" | "DESC")?
@@ -1010,7 +916,7 @@ module Aws
1010
916
  greater_than: ::Integer?,
1011
917
  less_than: ::Integer?
1012
918
  }?
1013
- },
919
+ }
1014
920
  ]?
1015
921
  },
1016
922
  ?sort_criteria: {
@@ -1201,32 +1107,9 @@ module Aws
1201
1107
  detector_id: ::String,
1202
1108
  ?enable: bool,
1203
1109
  ?finding_publishing_frequency: ("FIFTEEN_MINUTES" | "ONE_HOUR" | "SIX_HOURS"),
1204
- ?data_sources: {
1205
- s3_logs: {
1206
- enable: bool
1207
- }?,
1208
- kubernetes: {
1209
- audit_logs: {
1210
- enable: bool
1211
- }
1212
- }?,
1213
- malware_protection: {
1214
- scan_ec2_instance_with_findings: {
1215
- ebs_volumes: bool?
1216
- }?
1217
- }?
1218
- },
1110
+ ?data_sources: Params::data_source_configurations,
1219
1111
  ?features: Array[
1220
- {
1221
- name: ("S3_DATA_EVENTS" | "EKS_AUDIT_LOGS" | "EBS_MALWARE_PROTECTION" | "RDS_LOGIN_EVENTS" | "LAMBDA_NETWORK_LOGS" | "EKS_RUNTIME_MONITORING" | "RUNTIME_MONITORING")?,
1222
- status: ("ENABLED" | "DISABLED")?,
1223
- additional_configuration: Array[
1224
- {
1225
- name: ("EKS_ADDON_MANAGEMENT" | "ECS_FARGATE_AGENT_MANAGEMENT" | "EC2_AGENT_MANAGEMENT")?,
1226
- status: ("ENABLED" | "DISABLED")?
1227
- },
1228
- ]?
1229
- },
1112
+ Params::detector_feature_configuration
1230
1113
  ]
1231
1114
  ) -> _UpdateDetectorResponseSuccess
1232
1115
  | (Hash[Symbol, untyped] params, ?Hash[Symbol, untyped] options) -> _UpdateDetectorResponseSuccess
@@ -1242,24 +1125,7 @@ module Aws
1242
1125
  ?description: ::String,
1243
1126
  ?action: ("NOOP" | "ARCHIVE"),
1244
1127
  ?rank: ::Integer,
1245
- ?finding_criteria: {
1246
- criterion: Hash[::String, {
1247
- eq: Array[::String]?,
1248
- neq: Array[::String]?,
1249
- gt: ::Integer?,
1250
- gte: ::Integer?,
1251
- lt: ::Integer?,
1252
- lte: ::Integer?,
1253
- equals: Array[::String]?,
1254
- not_equals: Array[::String]?,
1255
- greater_than: ::Integer?,
1256
- greater_than_or_equal: ::Integer?,
1257
- less_than: ::Integer?,
1258
- less_than_or_equal: ::Integer?,
1259
- matches: Array[::String]?,
1260
- not_matches: Array[::String]?
1261
- }]?
1262
- }
1128
+ ?finding_criteria: Params::finding_criteria
1263
1129
  ) -> _UpdateFilterResponseSuccess
1264
1130
  | (Hash[Symbol, untyped] params, ?Hash[Symbol, untyped] options) -> _UpdateFilterResponseSuccess
1265
1131
 
@@ -1318,7 +1184,7 @@ module Aws
1318
1184
  {
1319
1185
  key: ::String,
1320
1186
  value: ::String?
1321
- },
1187
+ }
1322
1188
  ]
1323
1189
  }]?,
1324
1190
  exclude: Hash[("EC2_INSTANCE_TAG"), {
@@ -1326,7 +1192,7 @@ module Aws
1326
1192
  {
1327
1193
  key: ::String,
1328
1194
  value: ::String?
1329
- },
1195
+ }
1330
1196
  ]
1331
1197
  }]?
1332
1198
  },
@@ -1342,21 +1208,7 @@ module Aws
1342
1208
  def update_member_detectors: (
1343
1209
  detector_id: ::String,
1344
1210
  account_ids: Array[::String],
1345
- ?data_sources: {
1346
- s3_logs: {
1347
- enable: bool
1348
- }?,
1349
- kubernetes: {
1350
- audit_logs: {
1351
- enable: bool
1352
- }
1353
- }?,
1354
- malware_protection: {
1355
- scan_ec2_instance_with_findings: {
1356
- ebs_volumes: bool?
1357
- }?
1358
- }?
1359
- },
1211
+ ?data_sources: Params::data_source_configurations,
1360
1212
  ?features: Array[
1361
1213
  {
1362
1214
  name: ("S3_DATA_EVENTS" | "EKS_AUDIT_LOGS" | "EBS_MALWARE_PROTECTION" | "RDS_LOGIN_EVENTS" | "LAMBDA_NETWORK_LOGS" | "EKS_RUNTIME_MONITORING" | "RUNTIME_MONITORING")?,
@@ -1365,9 +1217,9 @@ module Aws
1365
1217
  {
1366
1218
  name: ("EKS_ADDON_MANAGEMENT" | "ECS_FARGATE_AGENT_MANAGEMENT" | "EC2_AGENT_MANAGEMENT")?,
1367
1219
  status: ("ENABLED" | "DISABLED")?
1368
- },
1220
+ }
1369
1221
  ]?
1370
- },
1222
+ }
1371
1223
  ]
1372
1224
  ) -> _UpdateMemberDetectorsResponseSuccess
1373
1225
  | (Hash[Symbol, untyped] params, ?Hash[Symbol, untyped] options) -> _UpdateMemberDetectorsResponseSuccess
@@ -1404,9 +1256,9 @@ module Aws
1404
1256
  {
1405
1257
  name: ("EKS_ADDON_MANAGEMENT" | "ECS_FARGATE_AGENT_MANAGEMENT" | "EC2_AGENT_MANAGEMENT")?,
1406
1258
  auto_enable: ("NEW" | "NONE" | "ALL")?
1407
- },
1259
+ }
1408
1260
  ]?
1409
- },
1261
+ }
1410
1262
  ],
1411
1263
  ?auto_enable_organization_members: ("NEW" | "ALL" | "NONE")
1412
1264
  ) -> _UpdateOrganizationConfigurationResponseSuccess
data/sig/params.rbs ADDED
@@ -0,0 +1,73 @@
1
+ # WARNING ABOUT GENERATED CODE
2
+ #
3
+ # This file is generated. See the contributing guide for more information:
4
+ # https://github.com/aws/aws-sdk-ruby/blob/version-3/CONTRIBUTING.md
5
+ #
6
+ # WARNING ABOUT GENERATED CODE
7
+
8
+ module Aws
9
+ module GuardDuty
10
+ module Params
11
+ type data_source_configurations = {
12
+ s3_logs: {
13
+ enable: bool
14
+ }?,
15
+ kubernetes: {
16
+ audit_logs: {
17
+ enable: bool
18
+ }
19
+ }?,
20
+ malware_protection: {
21
+ scan_ec2_instance_with_findings: {
22
+ ebs_volumes: bool?
23
+ }?
24
+ }?
25
+ }
26
+
27
+ type detector_feature_configuration = {
28
+ name: ("S3_DATA_EVENTS" | "EKS_AUDIT_LOGS" | "EBS_MALWARE_PROTECTION" | "RDS_LOGIN_EVENTS" | "LAMBDA_NETWORK_LOGS" | "EKS_RUNTIME_MONITORING" | "RUNTIME_MONITORING")?,
29
+ status: ("ENABLED" | "DISABLED")?,
30
+ additional_configuration: Array[
31
+ {
32
+ name: ("EKS_ADDON_MANAGEMENT" | "ECS_FARGATE_AGENT_MANAGEMENT" | "EC2_AGENT_MANAGEMENT")?,
33
+ status: ("ENABLED" | "DISABLED")?
34
+ }
35
+ ]?
36
+ }
37
+
38
+ type finding_criteria = {
39
+ criterion: Hash[::String, Params::condition]?
40
+ }
41
+
42
+ type condition = {
43
+ eq: Array[::String]?,
44
+ neq: Array[::String]?,
45
+ gt: ::Integer?,
46
+ gte: ::Integer?,
47
+ lt: ::Integer?,
48
+ lte: ::Integer?,
49
+ equals: Array[::String]?,
50
+ not_equals: Array[::String]?,
51
+ greater_than: ::Integer?,
52
+ greater_than_or_equal: ::Integer?,
53
+ less_than: ::Integer?,
54
+ less_than_or_equal: ::Integer?,
55
+ matches: Array[::String]?,
56
+ not_matches: Array[::String]?
57
+ }
58
+
59
+ type coverage_filter_criteria = {
60
+ filter_criterion: Array[
61
+ {
62
+ criterion_key: ("ACCOUNT_ID" | "RESOURCE_TYPE" | "COVERAGE_STATUS" | "ADDON_VERSION" | "CLUSTER_NAME" | "ECS_CLUSTER_NAME" | "MANAGEMENT_TYPE" | "EKS_CLUSTER_NAME" | "AGENT_VERSION" | "INSTANCE_ID" | "CLUSTER_ARN")?,
63
+ filter_condition: {
64
+ equals: Array[::String]?,
65
+ not_equals: Array[::String]?
66
+ }?
67
+ }
68
+ ]?
69
+ }
70
+
71
+ end
72
+ end
73
+ end
data/sig/types.rbs CHANGED
@@ -1380,7 +1380,7 @@ module Aws::GuardDuty
1380
1380
  end
1381
1381
 
1382
1382
  class Indicator
1383
- attr_accessor key: ("SUSPICIOUS_USER_AGENT" | "SUSPICIOUS_NETWORK" | "MALICIOUS_IP" | "TOR_IP" | "ATTACK_TACTIC" | "HIGH_RISK_API" | "ATTACK_TECHNIQUE" | "UNUSUAL_API_FOR_ACCOUNT" | "UNUSUAL_ASN_FOR_ACCOUNT" | "UNUSUAL_ASN_FOR_USER" | "SUSPICIOUS_PROCESS" | "MALICIOUS_DOMAIN" | "MALICIOUS_PROCESS" | "CRYPTOMINING_IP" | "CRYPTOMINING_DOMAIN" | "CRYPTOMINING_PROCESS" | "MALICIOUS_FILE")
1383
+ attr_accessor key: ("SUSPICIOUS_USER_AGENT" | "SUSPICIOUS_NETWORK" | "MALICIOUS_IP" | "TOR_IP" | "ATTACK_TACTIC" | "HIGH_RISK_API" | "ATTACK_TECHNIQUE" | "UNUSUAL_API_FOR_ACCOUNT" | "UNUSUAL_ASN_FOR_ACCOUNT" | "UNUSUAL_ASN_FOR_USER" | "SUSPICIOUS_PROCESS" | "MALICIOUS_DOMAIN" | "MALICIOUS_PROCESS" | "CRYPTOMINING_IP" | "CRYPTOMINING_DOMAIN" | "CRYPTOMINING_PROCESS" | "MALICIOUS_FILE" | "VULNERABILITY" | "MALICIOUS_PACKAGE" | "MISCONFIGURATION" | "REACHABILITY" | "SENSITIVE_DATA")
1384
1384
  attr_accessor values: ::Array[::String]
1385
1385
  attr_accessor title: ::String
1386
1386
  SENSITIVE: []
metadata CHANGED
@@ -1,7 +1,7 @@
1
1
  --- !ruby/object:Gem::Specification
2
2
  name: aws-sdk-guardduty
3
3
  version: !ruby/object:Gem::Version
4
- version: 1.149.0
4
+ version: 1.151.0
5
5
  platform: ruby
6
6
  authors:
7
7
  - Amazon Web Services
@@ -18,7 +18,7 @@ dependencies:
18
18
  version: '3'
19
19
  - - ">="
20
20
  - !ruby/object:Gem::Version
21
- version: 3.247.0
21
+ version: 3.248.0
22
22
  type: :runtime
23
23
  prerelease: false
24
24
  version_requirements: !ruby/object:Gem::Requirement
@@ -28,7 +28,7 @@ dependencies:
28
28
  version: '3'
29
29
  - - ">="
30
30
  - !ruby/object:Gem::Version
31
- version: 3.247.0
31
+ version: 3.248.0
32
32
  - !ruby/object:Gem::Dependency
33
33
  name: aws-sigv4
34
34
  requirement: !ruby/object:Gem::Requirement
@@ -67,6 +67,7 @@ files:
67
67
  - lib/aws-sdk-guardduty/types.rb
68
68
  - sig/client.rbs
69
69
  - sig/errors.rbs
70
+ - sig/params.rbs
70
71
  - sig/resource.rbs
71
72
  - sig/types.rbs
72
73
  - sig/waiters.rbs