aws-sdk-guardduty 1.3.0 → 1.4.0

checksums.yaml

@@ -1,7 +1,7 @@
 ---
 SHA1:
-  metadata.gz: efa5fd7d86024c8cb5c34b84c8b03206575921dd
-  data.tar.gz: 469e4ba1f4ebe504ac0915c044f2d46f22e61813
+  metadata.gz: a07ca2c24b16cd4ef9105c985071e8ec24a941f7
+  data.tar.gz: 760b5280b9be348ab677ab62509f066fe2947ce8
 SHA512:
-  metadata.gz: 95e4e0302530c2782d7cac5863f129d260864d881d98d18f07c92a04b36637759094a71d3ca931d794ddb21bb9f917f43ad038b6da2d47c13d061e17a6798683
-  data.tar.gz: 89c867f9d4c08c7c6175335fa51bf8f5a4a76003664d9208f0b81530475d6df5b21da937ba5268a9cafd9980fb3b893bc2ed6f136098186b5939e196f7b869ff
+  metadata.gz: fabf4a6b19626f7c49e6c1b0199d6ca767e67f2043b0eb27f18b0881672243cd253ffea65b9a17d1bb9ccb44e811c6c2f0f4d59d5249c0533bc75ca8c8961ee6
+  data.tar.gz: 287a60622b46dbdd4f0d67db9016563ec7e1ce4b6741b0eb7a4b24a1a84a4a8a2b0bf6ddd8be6cf4729d47d8d811c875fa262b8b3cf1fbde477562b20ad0dbce

data/lib/aws-sdk-guardduty.rb

@@ -42,6 +42,6 @@ require_relative 'aws-sdk-guardduty/customizations'
 # @service
 module Aws::GuardDuty
 
-  GEM_VERSION = '1.3.0'
+  GEM_VERSION = '1.4.0'
 
 end

data/lib/aws-sdk-guardduty/client.rb

@@ -232,6 +232,73 @@ module Aws::GuardDuty
       req.send_request(options)
     end
 
+    # Creates a filter using the specified finding criteria.
+    #
+    # @option params [String] :action
+    #   Specifies the action that is to be applied to the findings that match
+    #   the filter.
+    #
+    # @option params [String] :client_token
+    #   The idempotency token for the create request.**A suitable default value is auto-generated.** You should normally
+    #   not need to pass this option.**
+    #
+    # @option params [String] :description
+    #   The description of the filter.
+    #
+    # @option params [required, String] :detector_id
+    #
+    # @option params [Types::FindingCriteria] :finding_criteria
+    #   Represents the criteria to be used in the filter for querying
+    #   findings.
+    #
+    # @option params [String] :name
+    #   The name of the filter.
+    #
+    # @option params [Integer] :rank
+    #   Specifies the position of the filter in the list of current filters.
+    #   Also specifies the order in which this filter is applied to the
+    #   findings.
+    #
+    # @return [Types::CreateFilterResponse] Returns a {Seahorse::Client::Response response} object which responds to the following methods:
+    #
+    #   * {Types::CreateFilterResponse#name #name} => String
+    #
+    # @example Request syntax with placeholder values
+    #
+    #   resp = client.create_filter({
+    #     action: "NOOP", # accepts NOOP, ARCHIVE
+    #     client_token: "__stringMin0Max64",
+    #     description: "FilterDescription",
+    #     detector_id: "__string", # required
+    #     finding_criteria: {
+    #       criterion: {
+    #         "__string" => {
+    #           eq: ["__string"],
+    #           gt: 1,
+    #           gte: 1,
+    #           lt: 1,
+    #           lte: 1,
+    #           neq: ["__string"],
+    #         },
+    #       },
+    #     },
+    #     name: "FilterName",
+    #     rank: 1,
+    #   })
+    #
+    # @example Response structure
+    #
+    #   resp.name #=> String
+    #
+    # @see http://docs.aws.amazon.com/goto/WebAPI/guardduty-2017-11-28/CreateFilter AWS API Documentation
+    #
+    # @overload create_filter(params = {})
+    # @param [Hash] params ({})
+    def create_filter(params = {}, options = {})
+      req = build_request(:create_filter, params)
+      req.send_request(options)
+    end
+
     # Creates a new IPSet - a list of trusted IP addresses that have been
     # whitelisted for secure communication with AWS infrastructure and
     # applications.
@@ -451,6 +518,30 @@ module Aws::GuardDuty
       req.send_request(options)
     end
 
+    # Deletes the filter specified by the filter name.
+    #
+    # @option params [required, String] :detector_id
+    #
+    # @option params [required, String] :filter_name
+    #
+    # @return [Struct] Returns an empty {Seahorse::Client::Response response}.
+    #
+    # @example Request syntax with placeholder values
+    #
+    #   resp = client.delete_filter({
+    #     detector_id: "__string", # required
+    #     filter_name: "__string", # required
+    #   })
+    #
+    # @see http://docs.aws.amazon.com/goto/WebAPI/guardduty-2017-11-28/DeleteFilter AWS API Documentation
+    #
+    # @overload delete_filter(params = {})
+    # @param [Hash] params ({})
+    def delete_filter(params = {}, options = {})
+      req = build_request(:delete_filter, params)
+      req.send_request(options)
+    end
+
     # Deletes the IPSet specified by the IPSet ID.
     #
     # @option params [required, String] :detector_id
@@ -656,6 +747,52 @@ module Aws::GuardDuty
       req.send_request(options)
     end
 
+    # Returns the details of the filter specified by the filter name.
+    #
+    # @option params [required, String] :detector_id
+    #
+    # @option params [required, String] :filter_name
+    #
+    # @return [Types::GetFilterResponse] Returns a {Seahorse::Client::Response response} object which responds to the following methods:
+    #
+    #   * {Types::GetFilterResponse#action #action} => String
+    #   * {Types::GetFilterResponse#description #description} => String
+    #   * {Types::GetFilterResponse#finding_criteria #finding_criteria} => Types::FindingCriteria
+    #   * {Types::GetFilterResponse#name #name} => String
+    #   * {Types::GetFilterResponse#rank #rank} => Integer
+    #
+    # @example Request syntax with placeholder values
+    #
+    #   resp = client.get_filter({
+    #     detector_id: "__string", # required
+    #     filter_name: "__string", # required
+    #   })
+    #
+    # @example Response structure
+    #
+    #   resp.action #=> String, one of "NOOP", "ARCHIVE"
+    #   resp.description #=> String
+    #   resp.finding_criteria.criterion #=> Hash
+    #   resp.finding_criteria.criterion["__string"].eq #=> Array
+    #   resp.finding_criteria.criterion["__string"].eq[0] #=> String
+    #   resp.finding_criteria.criterion["__string"].gt #=> Integer
+    #   resp.finding_criteria.criterion["__string"].gte #=> Integer
+    #   resp.finding_criteria.criterion["__string"].lt #=> Integer
+    #   resp.finding_criteria.criterion["__string"].lte #=> Integer
+    #   resp.finding_criteria.criterion["__string"].neq #=> Array
+    #   resp.finding_criteria.criterion["__string"].neq[0] #=> String
+    #   resp.name #=> String
+    #   resp.rank #=> Integer
+    #
+    # @see http://docs.aws.amazon.com/goto/WebAPI/guardduty-2017-11-28/GetFilter AWS API Documentation
+    #
+    # @overload get_filter(params = {})
+    # @param [Hash] params ({})
+    def get_filter(params = {}, options = {})
+      req = build_request(:get_filter, params)
+      req.send_request(options)
+    end
+
     # Describes Amazon GuardDuty findings specified by finding IDs.
     #
     # @option params [required, String] :detector_id
@@ -699,6 +836,7 @@ module Aws::GuardDuty
     #   resp.findings[0].resource.instance_details.availability_zone #=> String
     #   resp.findings[0].resource.instance_details.iam_instance_profile.arn #=> String
     #   resp.findings[0].resource.instance_details.iam_instance_profile.id #=> String
+    #   resp.findings[0].resource.instance_details.image_description #=> String
     #   resp.findings[0].resource.instance_details.image_id #=> String
     #   resp.findings[0].resource.instance_details.instance_id #=> String
     #   resp.findings[0].resource.instance_details.instance_state #=> String
@@ -707,6 +845,7 @@ module Aws::GuardDuty
     #   resp.findings[0].resource.instance_details.network_interfaces #=> Array
     #   resp.findings[0].resource.instance_details.network_interfaces[0].ipv_6_addresses #=> Array
     #   resp.findings[0].resource.instance_details.network_interfaces[0].ipv_6_addresses[0] #=> String
+    #   resp.findings[0].resource.instance_details.network_interfaces[0].network_interface_id #=> String
     #   resp.findings[0].resource.instance_details.network_interfaces[0].private_dns_name #=> String
     #   resp.findings[0].resource.instance_details.network_interfaces[0].private_ip_address #=> String
     #   resp.findings[0].resource.instance_details.network_interfaces[0].private_ip_addresses #=> Array
@@ -1025,7 +1164,9 @@ module Aws::GuardDuty
     # @option params [required, String] :detector_id
     #
     # @option params [Boolean] :disable_email_notification
-    #   Indicates whether invite member email notification is disabled
+    #   A boolean value that specifies whether you want to disable email
+    #   notification to the accounts that you’re inviting to GuardDuty as
+    #   members.
     #
     # @option params [String] :message
     #   The invitation message that you want to send to the accounts that
@@ -1095,6 +1236,44 @@ module Aws::GuardDuty
       req.send_request(options)
     end
 
+    # Returns a paginated list of the current filters.
+    #
+    # @option params [required, String] :detector_id
+    #
+    # @option params [Integer] :max_results
+    #   You can use this parameter to indicate the maximum number of items
+    #   that you want in the response.
+    #
+    # @option params [String] :next_token
+    #
+    # @return [Types::ListFiltersResponse] Returns a {Seahorse::Client::Response response} object which responds to the following methods:
+    #
+    #   * {Types::ListFiltersResponse#filter_names #filter_names} => Array<String>
+    #   * {Types::ListFiltersResponse#next_token #next_token} => String
+    #
+    # @example Request syntax with placeholder values
+    #
+    #   resp = client.list_filters({
+    #     detector_id: "__string", # required
+    #     max_results: 1,
+    #     next_token: "__string",
+    #   })
+    #
+    # @example Response structure
+    #
+    #   resp.filter_names #=> Array
+    #   resp.filter_names[0] #=> String
+    #   resp.next_token #=> String
+    #
+    # @see http://docs.aws.amazon.com/goto/WebAPI/guardduty-2017-11-28/ListFilters AWS API Documentation
+    #
+    # @overload list_filters(params = {})
+    # @param [Hash] params ({})
+    def list_filters(params = {}, options = {})
+      req = build_request(:list_filters, params)
+      req.send_request(options)
+    end
+
     # Lists Amazon GuardDuty findings for the specified detector ID.
     #
     # @option params [required, String] :detector_id
@@ -1452,6 +1631,67 @@ module Aws::GuardDuty
       req.send_request(options)
     end
 
+    # Updates the filter specified by the filter name.
+    #
+    # @option params [String] :action
+    #   Specifies the action that is to be applied to the findings that match
+    #   the filter.
+    #
+    # @option params [String] :description
+    #   The description of the filter.
+    #
+    # @option params [required, String] :detector_id
+    #
+    # @option params [required, String] :filter_name
+    #
+    # @option params [Types::FindingCriteria] :finding_criteria
+    #   Represents the criteria to be used in the filter for querying
+    #   findings.
+    #
+    # @option params [Integer] :rank
+    #   Specifies the position of the filter in the list of current filters.
+    #   Also specifies the order in which this filter is applied to the
+    #   findings.
+    #
+    # @return [Types::UpdateFilterResponse] Returns a {Seahorse::Client::Response response} object which responds to the following methods:
+    #
+    #   * {Types::UpdateFilterResponse#name #name} => String
+    #
+    # @example Request syntax with placeholder values
+    #
+    #   resp = client.update_filter({
+    #     action: "NOOP", # accepts NOOP, ARCHIVE
+    #     description: "FilterDescription",
+    #     detector_id: "__string", # required
+    #     filter_name: "__string", # required
+    #     finding_criteria: {
+    #       criterion: {
+    #         "__string" => {
+    #           eq: ["__string"],
+    #           gt: 1,
+    #           gte: 1,
+    #           lt: 1,
+    #           lte: 1,
+    #           neq: ["__string"],
+    #         },
+    #       },
+    #     },
+    #     rank: 1,
+    #   })
+    #
+    # @example Response structure
+    #
+    #   resp.name #=> String
+    #
+    # @see http://docs.aws.amazon.com/goto/WebAPI/guardduty-2017-11-28/UpdateFilter AWS API Documentation
+    #
+    # @overload update_filter(params = {})
+    # @param [Hash] params ({})
+    def update_filter(params = {}, options = {})
+      req = build_request(:update_filter, params)
+      req.send_request(options)
+    end
+
     # Marks specified Amazon GuardDuty findings as useful or not useful.
     #
     # @option params [String] :comments
@@ -1575,7 +1815,7 @@ module Aws::GuardDuty
         params: params,
         config: config)
       context[:gem_name] = 'aws-sdk-guardduty'
-      context[:gem_version] = '1.3.0'
+      context[:gem_version] = '1.4.0'
       Seahorse::Client::Request.new(handlers, context)
     end
 

data/lib/aws-sdk-guardduty/client_api.rb

@@ -31,6 +31,8 @@ module Aws::GuardDuty
     Country = Shapes::StructureShape.new(name: 'Country')
     CreateDetectorRequest = Shapes::StructureShape.new(name: 'CreateDetectorRequest')
     CreateDetectorResponse = Shapes::StructureShape.new(name: 'CreateDetectorResponse')
+    CreateFilterRequest = Shapes::StructureShape.new(name: 'CreateFilterRequest')
+    CreateFilterResponse = Shapes::StructureShape.new(name: 'CreateFilterResponse')
     CreateIPSetRequest = Shapes::StructureShape.new(name: 'CreateIPSetRequest')
     CreateIPSetResponse = Shapes::StructureShape.new(name: 'CreateIPSetResponse')
     CreateMembersRequest = Shapes::StructureShape.new(name: 'CreateMembersRequest')
@@ -44,6 +46,8 @@ module Aws::GuardDuty
     DeclineInvitationsResponse = Shapes::StructureShape.new(name: 'DeclineInvitationsResponse')
     DeleteDetectorRequest = Shapes::StructureShape.new(name: 'DeleteDetectorRequest')
     DeleteDetectorResponse = Shapes::StructureShape.new(name: 'DeleteDetectorResponse')
+    DeleteFilterRequest = Shapes::StructureShape.new(name: 'DeleteFilterRequest')
+    DeleteFilterResponse = Shapes::StructureShape.new(name: 'DeleteFilterResponse')
     DeleteIPSetRequest = Shapes::StructureShape.new(name: 'DeleteIPSetRequest')
     DeleteIPSetResponse = Shapes::StructureShape.new(name: 'DeleteIPSetResponse')
     DeleteInvitationsRequest = Shapes::StructureShape.new(name: 'DeleteInvitationsRequest')
@@ -67,6 +71,11 @@ module Aws::GuardDuty
     Eq = Shapes::ListShape.new(name: 'Eq')
     ErrorResponse = Shapes::StructureShape.new(name: 'ErrorResponse')
     Feedback = Shapes::StringShape.new(name: 'Feedback')
+    FilterAction = Shapes::StringShape.new(name: 'FilterAction')
+    FilterDescription = Shapes::StringShape.new(name: 'FilterDescription')
+    FilterName = Shapes::StringShape.new(name: 'FilterName')
+    FilterNames = Shapes::ListShape.new(name: 'FilterNames')
+    FilterRank = Shapes::IntegerShape.new(name: 'FilterRank')
     Finding = Shapes::StructureShape.new(name: 'Finding')
     FindingCriteria = Shapes::StructureShape.new(name: 'FindingCriteria')
     FindingId = Shapes::StringShape.new(name: 'FindingId')
@@ -80,6 +89,8 @@ module Aws::GuardDuty
     GeoLocation = Shapes::StructureShape.new(name: 'GeoLocation')
     GetDetectorRequest = Shapes::StructureShape.new(name: 'GetDetectorRequest')
     GetDetectorResponse = Shapes::StructureShape.new(name: 'GetDetectorResponse')
+    GetFilterRequest = Shapes::StructureShape.new(name: 'GetFilterRequest')
+    GetFilterResponse = Shapes::StructureShape.new(name: 'GetFilterResponse')
     GetFindingsRequest = Shapes::StructureShape.new(name: 'GetFindingsRequest')
     GetFindingsResponse = Shapes::StructureShape.new(name: 'GetFindingsResponse')
     GetFindingsStatisticsRequest = Shapes::StructureShape.new(name: 'GetFindingsStatisticsRequest')
@@ -111,6 +122,8 @@ module Aws::GuardDuty
     Ipv6Addresses = Shapes::ListShape.new(name: 'Ipv6Addresses')
     ListDetectorsRequest = Shapes::StructureShape.new(name: 'ListDetectorsRequest')
     ListDetectorsResponse = Shapes::StructureShape.new(name: 'ListDetectorsResponse')
+    ListFiltersRequest = Shapes::StructureShape.new(name: 'ListFiltersRequest')
+    ListFiltersResponse = Shapes::StructureShape.new(name: 'ListFiltersResponse')
     ListFindingsRequest = Shapes::StructureShape.new(name: 'ListFindingsRequest')
     ListFindingsResponse = Shapes::StructureShape.new(name: 'ListFindingsResponse')
     ListIPSetsRequest = Shapes::StructureShape.new(name: 'ListIPSetsRequest')
@@ -133,6 +146,7 @@ module Aws::GuardDuty
     Neq = Shapes::ListShape.new(name: 'Neq')
     NetworkConnectionAction = Shapes::StructureShape.new(name: 'NetworkConnectionAction')
     NetworkInterface = Shapes::StructureShape.new(name: 'NetworkInterface')
+    NetworkInterfaceId = Shapes::StringShape.new(name: 'NetworkInterfaceId')
     NetworkInterfaces = Shapes::ListShape.new(name: 'NetworkInterfaces')
     NextToken = Shapes::StringShape.new(name: 'NextToken')
     OrderBy = Shapes::StringShape.new(name: 'OrderBy')
@@ -169,6 +183,8 @@ module Aws::GuardDuty
     UnprocessedAccounts = Shapes::ListShape.new(name: 'UnprocessedAccounts')
     UpdateDetectorRequest = Shapes::StructureShape.new(name: 'UpdateDetectorRequest')
     UpdateDetectorResponse = Shapes::StructureShape.new(name: 'UpdateDetectorResponse')
+    UpdateFilterRequest = Shapes::StructureShape.new(name: 'UpdateFilterRequest')
+    UpdateFilterResponse = Shapes::StructureShape.new(name: 'UpdateFilterResponse')
     UpdateFindingsFeedbackRequest = Shapes::StructureShape.new(name: 'UpdateFindingsFeedbackRequest')
     UpdateFindingsFeedbackResponse = Shapes::StructureShape.new(name: 'UpdateFindingsFeedbackResponse')
     UpdateIPSetRequest = Shapes::StructureShape.new(name: 'UpdateIPSetRequest')
@@ -184,6 +200,7 @@ module Aws::GuardDuty
     __mapOfCondition = Shapes::MapShape.new(name: '__mapOfCondition')
     __mapOfCountBySeverityFindingStatistic = Shapes::MapShape.new(name: '__mapOfCountBySeverityFindingStatistic')
     __string = Shapes::StringShape.new(name: '__string')
+    __stringMin0Max64 = Shapes::StringShape.new(name: '__stringMin0Max64')
     __timestamp = Shapes::TimestampShape.new(name: '__timestamp')
 
     AcceptInvitationRequest.add_member(:detector_id, Shapes::ShapeRef.new(shape: __string, required: true, location: "uri", location_name: "detectorId"))
@@ -248,6 +265,18 @@ module Aws::GuardDuty
     CreateDetectorResponse.add_member(:detector_id, Shapes::ShapeRef.new(shape: DetectorId, location_name: "detectorId"))
     CreateDetectorResponse.struct_class = Types::CreateDetectorResponse
 
+    CreateFilterRequest.add_member(:action, Shapes::ShapeRef.new(shape: FilterAction, location_name: "action"))
+    CreateFilterRequest.add_member(:client_token, Shapes::ShapeRef.new(shape: __stringMin0Max64, location_name: "clientToken", metadata: {"idempotencyToken"=>true}))
+    CreateFilterRequest.add_member(:description, Shapes::ShapeRef.new(shape: FilterDescription, location_name: "description"))
+    CreateFilterRequest.add_member(:detector_id, Shapes::ShapeRef.new(shape: __string, required: true, location: "uri", location_name: "detectorId"))
+    CreateFilterRequest.add_member(:finding_criteria, Shapes::ShapeRef.new(shape: FindingCriteria, location_name: "findingCriteria"))
+    CreateFilterRequest.add_member(:name, Shapes::ShapeRef.new(shape: FilterName, location_name: "name"))
+    CreateFilterRequest.add_member(:rank, Shapes::ShapeRef.new(shape: FilterRank, location_name: "rank"))
+    CreateFilterRequest.struct_class = Types::CreateFilterRequest
+
+    CreateFilterResponse.add_member(:name, Shapes::ShapeRef.new(shape: FilterName, location_name: "name"))
+    CreateFilterResponse.struct_class = Types::CreateFilterResponse
+
     CreateIPSetRequest.add_member(:activate, Shapes::ShapeRef.new(shape: Activate, location_name: "activate"))
     CreateIPSetRequest.add_member(:detector_id, Shapes::ShapeRef.new(shape: __string, required: true, location: "uri", location_name: "detectorId"))
     CreateIPSetRequest.add_member(:format, Shapes::ShapeRef.new(shape: IpSetFormat, location_name: "format"))
@@ -292,6 +321,12 @@ module Aws::GuardDuty
 
     DeleteDetectorResponse.struct_class = Types::DeleteDetectorResponse
 
+    DeleteFilterRequest.add_member(:detector_id, Shapes::ShapeRef.new(shape: __string, required: true, location: "uri", location_name: "detectorId"))
+    DeleteFilterRequest.add_member(:filter_name, Shapes::ShapeRef.new(shape: __string, required: true, location: "uri", location_name: "filterName"))
+    DeleteFilterRequest.struct_class = Types::DeleteFilterRequest
+
+    DeleteFilterResponse.struct_class = Types::DeleteFilterResponse
+
     DeleteIPSetRequest.add_member(:detector_id, Shapes::ShapeRef.new(shape: __string, required: true, location: "uri", location_name: "detectorId"))
     DeleteIPSetRequest.add_member(:ip_set_id, Shapes::ShapeRef.new(shape: __string, required: true, location: "uri", location_name: "ipSetId"))
     DeleteIPSetRequest.struct_class = Types::DeleteIPSetRequest
@@ -342,6 +377,8 @@ module Aws::GuardDuty
     ErrorResponse.add_member(:type, Shapes::ShapeRef.new(shape: __string, location_name: "__type"))
     ErrorResponse.struct_class = Types::ErrorResponse
 
+    FilterNames.member = Shapes::ShapeRef.new(shape: FilterName)
+
     Finding.add_member(:account_id, Shapes::ShapeRef.new(shape: __string, required: true, location_name: "accountId"))
     Finding.add_member(:arn, Shapes::ShapeRef.new(shape: __string, required: true, location_name: "arn"))
     Finding.add_member(:confidence, Shapes::ShapeRef.new(shape: __double, location_name: "confidence"))
@@ -386,6 +423,17 @@ module Aws::GuardDuty
     GetDetectorResponse.add_member(:updated_at, Shapes::ShapeRef.new(shape: UpdatedAt, location_name: "updatedAt"))
     GetDetectorResponse.struct_class = Types::GetDetectorResponse
 
+    GetFilterRequest.add_member(:detector_id, Shapes::ShapeRef.new(shape: __string, required: true, location: "uri", location_name: "detectorId"))
+    GetFilterRequest.add_member(:filter_name, Shapes::ShapeRef.new(shape: __string, required: true, location: "uri", location_name: "filterName"))
+    GetFilterRequest.struct_class = Types::GetFilterRequest
+
+    GetFilterResponse.add_member(:action, Shapes::ShapeRef.new(shape: FilterAction, location_name: "action"))
+    GetFilterResponse.add_member(:description, Shapes::ShapeRef.new(shape: FilterDescription, location_name: "description"))
+    GetFilterResponse.add_member(:finding_criteria, Shapes::ShapeRef.new(shape: FindingCriteria, location_name: "findingCriteria"))
+    GetFilterResponse.add_member(:name, Shapes::ShapeRef.new(shape: FilterName, location_name: "name"))
+    GetFilterResponse.add_member(:rank, Shapes::ShapeRef.new(shape: FilterRank, location_name: "rank"))
+    GetFilterResponse.struct_class = Types::GetFilterResponse
+
     GetFindingsRequest.add_member(:detector_id, Shapes::ShapeRef.new(shape: __string, required: true, location: "uri", location_name: "detectorId"))
     GetFindingsRequest.add_member(:finding_ids, Shapes::ShapeRef.new(shape: FindingIds, location_name: "findingIds"))
     GetFindingsRequest.add_member(:sort_criteria, Shapes::ShapeRef.new(shape: SortCriteria, location_name: "sortCriteria"))
@@ -447,6 +495,7 @@ module Aws::GuardDuty
 
     InstanceDetails.add_member(:availability_zone, Shapes::ShapeRef.new(shape: __string, location_name: "availabilityZone"))
     InstanceDetails.add_member(:iam_instance_profile, Shapes::ShapeRef.new(shape: IamInstanceProfile, location_name: "iamInstanceProfile"))
+    InstanceDetails.add_member(:image_description, Shapes::ShapeRef.new(shape: __string, location_name: "imageDescription"))
     InstanceDetails.add_member(:image_id, Shapes::ShapeRef.new(shape: __string, location_name: "imageId"))
     InstanceDetails.add_member(:instance_id, Shapes::ShapeRef.new(shape: __string, location_name: "instanceId"))
     InstanceDetails.add_member(:instance_state, Shapes::ShapeRef.new(shape: __string, location_name: "instanceState"))
@@ -487,6 +536,15 @@ module Aws::GuardDuty
     ListDetectorsResponse.add_member(:next_token, Shapes::ShapeRef.new(shape: NextToken, location_name: "nextToken"))
     ListDetectorsResponse.struct_class = Types::ListDetectorsResponse
 
+    ListFiltersRequest.add_member(:detector_id, Shapes::ShapeRef.new(shape: __string, required: true, location: "uri", location_name: "detectorId"))
+    ListFiltersRequest.add_member(:max_results, Shapes::ShapeRef.new(shape: MaxResults, location: "querystring", location_name: "maxResults"))
+    ListFiltersRequest.add_member(:next_token, Shapes::ShapeRef.new(shape: __string, location: "querystring", location_name: "nextToken"))
+    ListFiltersRequest.struct_class = Types::ListFiltersRequest
+
+    ListFiltersResponse.add_member(:filter_names, Shapes::ShapeRef.new(shape: FilterNames, location_name: "filterNames"))
+    ListFiltersResponse.add_member(:next_token, Shapes::ShapeRef.new(shape: NextToken, location_name: "nextToken"))
+    ListFiltersResponse.struct_class = Types::ListFiltersResponse
+
     ListFindingsRequest.add_member(:detector_id, Shapes::ShapeRef.new(shape: __string, required: true, location: "uri", location_name: "detectorId"))
     ListFindingsRequest.add_member(:finding_criteria, Shapes::ShapeRef.new(shape: FindingCriteria, location_name: "findingCriteria"))
     ListFindingsRequest.add_member(:max_results, Shapes::ShapeRef.new(shape: MaxResults, location_name: "maxResults"))
@@ -566,6 +624,7 @@ module Aws::GuardDuty
     NetworkConnectionAction.struct_class = Types::NetworkConnectionAction
 
     NetworkInterface.add_member(:ipv_6_addresses, Shapes::ShapeRef.new(shape: Ipv6Addresses, location_name: "ipv6Addresses"))
+    NetworkInterface.add_member(:network_interface_id, Shapes::ShapeRef.new(shape: NetworkInterfaceId, location_name: "networkInterfaceId"))
     NetworkInterface.add_member(:private_dns_name, Shapes::ShapeRef.new(shape: PrivateDnsName, location_name: "privateDnsName"))
     NetworkInterface.add_member(:private_ip_address, Shapes::ShapeRef.new(shape: PrivateIpAddress, location_name: "privateIpAddress"))
     NetworkInterface.add_member(:private_ip_addresses, Shapes::ShapeRef.new(shape: PrivateIpAddresses, location_name: "privateIpAddresses"))
@@ -681,6 +740,17 @@ module Aws::GuardDuty
 
     UpdateDetectorResponse.struct_class = Types::UpdateDetectorResponse
 
+    UpdateFilterRequest.add_member(:action, Shapes::ShapeRef.new(shape: FilterAction, location_name: "action"))
+    UpdateFilterRequest.add_member(:description, Shapes::ShapeRef.new(shape: FilterDescription, location_name: "description"))
+    UpdateFilterRequest.add_member(:detector_id, Shapes::ShapeRef.new(shape: __string, required: true, location: "uri", location_name: "detectorId"))
+    UpdateFilterRequest.add_member(:filter_name, Shapes::ShapeRef.new(shape: __string, required: true, location: "uri", location_name: "filterName"))
+    UpdateFilterRequest.add_member(:finding_criteria, Shapes::ShapeRef.new(shape: FindingCriteria, location_name: "findingCriteria"))
+    UpdateFilterRequest.add_member(:rank, Shapes::ShapeRef.new(shape: FilterRank, location_name: "rank"))
+    UpdateFilterRequest.struct_class = Types::UpdateFilterRequest
+
+    UpdateFilterResponse.add_member(:name, Shapes::ShapeRef.new(shape: FilterName, location_name: "name"))
+    UpdateFilterResponse.struct_class = Types::UpdateFilterResponse
+
     UpdateFindingsFeedbackRequest.add_member(:comments, Shapes::ShapeRef.new(shape: Comments, location_name: "comments"))
     UpdateFindingsFeedbackRequest.add_member(:detector_id, Shapes::ShapeRef.new(shape: __string, required: true, location: "uri", location_name: "detectorId"))
     UpdateFindingsFeedbackRequest.add_member(:feedback, Shapes::ShapeRef.new(shape: Feedback, location_name: "feedback"))
@@ -760,6 +830,16 @@ module Aws::GuardDuty
         o.errors << Shapes::ShapeRef.new(shape: InternalServerErrorException)
       end)
 
+      api.add_operation(:create_filter, Seahorse::Model::Operation.new.tap do |o|
+        o.name = "CreateFilter"
+        o.http_method = "POST"
+        o.http_request_uri = "/detector/{detectorId}/filter"
+        o.input = Shapes::ShapeRef.new(shape: CreateFilterRequest)
+        o.output = Shapes::ShapeRef.new(shape: CreateFilterResponse)
+        o.errors << Shapes::ShapeRef.new(shape: BadRequestException)
+        o.errors << Shapes::ShapeRef.new(shape: InternalServerErrorException)
+      end)
+
       api.add_operation(:create_ip_set, Seahorse::Model::Operation.new.tap do |o|
         o.name = "CreateIPSet"
         o.http_method = "POST"
@@ -820,6 +900,16 @@ module Aws::GuardDuty
         o.errors << Shapes::ShapeRef.new(shape: InternalServerErrorException)
       end)
 
+      api.add_operation(:delete_filter, Seahorse::Model::Operation.new.tap do |o|
+        o.name = "DeleteFilter"
+        o.http_method = "DELETE"
+        o.http_request_uri = "/detector/{detectorId}/filter/{filterName}"
+        o.input = Shapes::ShapeRef.new(shape: DeleteFilterRequest)
+        o.output = Shapes::ShapeRef.new(shape: DeleteFilterResponse)
+        o.errors << Shapes::ShapeRef.new(shape: BadRequestException)
+        o.errors << Shapes::ShapeRef.new(shape: InternalServerErrorException)
+      end)
+
       api.add_operation(:delete_ip_set, Seahorse::Model::Operation.new.tap do |o|
         o.name = "DeleteIPSet"
         o.http_method = "DELETE"
@@ -890,6 +980,16 @@ module Aws::GuardDuty
         o.errors << Shapes::ShapeRef.new(shape: InternalServerErrorException)
       end)
 
+      api.add_operation(:get_filter, Seahorse::Model::Operation.new.tap do |o|
+        o.name = "GetFilter"
+        o.http_method = "GET"
+        o.http_request_uri = "/detector/{detectorId}/filter/{filterName}"
+        o.input = Shapes::ShapeRef.new(shape: GetFilterRequest)
+        o.output = Shapes::ShapeRef.new(shape: GetFilterResponse)
+        o.errors << Shapes::ShapeRef.new(shape: BadRequestException)
+        o.errors << Shapes::ShapeRef.new(shape: InternalServerErrorException)
+      end)
+
       api.add_operation(:get_findings, Seahorse::Model::Operation.new.tap do |o|
         o.name = "GetFindings"
         o.http_method = "POST"
@@ -986,6 +1086,22 @@ module Aws::GuardDuty
         )
       end)
 
+      api.add_operation(:list_filters, Seahorse::Model::Operation.new.tap do |o|
+        o.name = "ListFilters"
+        o.http_method = "GET"
+        o.http_request_uri = "/detector/{detectorId}/filter"
+        o.input = Shapes::ShapeRef.new(shape: ListFiltersRequest)
+        o.output = Shapes::ShapeRef.new(shape: ListFiltersResponse)
+        o.errors << Shapes::ShapeRef.new(shape: BadRequestException)
+        o.errors << Shapes::ShapeRef.new(shape: InternalServerErrorException)
+        o[:pager] = Aws::Pager.new(
+          limit_key: "max_results",
+          tokens: {
+            "next_token" => "next_token"
+          }
+        )
+      end)
+
       api.add_operation(:list_findings, Seahorse::Model::Operation.new.tap do |o|
         o.name = "ListFindings"
         o.http_method = "POST"
@@ -1106,6 +1222,16 @@ module Aws::GuardDuty
         o.errors << Shapes::ShapeRef.new(shape: InternalServerErrorException)
       end)
 
+      api.add_operation(:update_filter, Seahorse::Model::Operation.new.tap do |o|
+        o.name = "UpdateFilter"
+        o.http_method = "POST"
+        o.http_request_uri = "/detector/{detectorId}/filter/{filterName}"
+        o.input = Shapes::ShapeRef.new(shape: UpdateFilterRequest)
+        o.output = Shapes::ShapeRef.new(shape: UpdateFilterResponse)
+        o.errors << Shapes::ShapeRef.new(shape: BadRequestException)
+        o.errors << Shapes::ShapeRef.new(shape: InternalServerErrorException)
+      end)
+
       api.add_operation(:update_findings_feedback, Seahorse::Model::Operation.new.tap do |o|
         o.name = "UpdateFindingsFeedback"
         o.http_method = "POST"

data/lib/aws-sdk-guardduty/types.rb

@@ -319,6 +319,90 @@ module Aws::GuardDuty
       include Aws::Structure
     end
 
+    # CreateFilter request object.
+    #
+    # @note When making an API call, you may pass CreateFilterRequest
+    #   data as a hash:
+    #
+    #       {
+    #         action: "NOOP", # accepts NOOP, ARCHIVE
+    #         client_token: "__stringMin0Max64",
+    #         description: "FilterDescription",
+    #         detector_id: "__string", # required
+    #         finding_criteria: {
+    #           criterion: {
+    #             "__string" => {
+    #               eq: ["__string"],
+    #               gt: 1,
+    #               gte: 1,
+    #               lt: 1,
+    #               lte: 1,
+    #               neq: ["__string"],
+    #             },
+    #           },
+    #         },
+    #         name: "FilterName",
+    #         rank: 1,
+    #       }
+    #
+    # @!attribute [rw] action
+    #   Specifies the action that is to be applied to the findings that
+    #   match the filter.
+    #   @return [String]
+    #
+    # @!attribute [rw] client_token
+    #   The idempotency token for the create request.**A suitable default value is auto-generated.** You should normally
+    #   not need to pass this option.
+    #   @return [String]
+    #
+    # @!attribute [rw] description
+    #   The description of the filter.
+    #   @return [String]
+    #
+    # @!attribute [rw] detector_id
+    #   @return [String]
+    #
+    # @!attribute [rw] finding_criteria
+    #   Represents the criteria to be used in the filter for querying
+    #   findings.
+    #   @return [Types::FindingCriteria]
+    #
+    # @!attribute [rw] name
+    #   The name of the filter.
+    #   @return [String]
+    #
+    # @!attribute [rw] rank
+    #   Specifies the position of the filter in the list of current filters.
+    #   Also specifies the order in which this filter is applied to the
+    #   findings.
+    #   @return [Integer]
+    #
+    # @see http://docs.aws.amazon.com/goto/WebAPI/guardduty-2017-11-28/CreateFilterRequest AWS API Documentation
+    #
+    class CreateFilterRequest < Struct.new(
+      :action,
+      :client_token,
+      :description,
+      :detector_id,
+      :finding_criteria,
+      :name,
+      :rank)
+      include Aws::Structure
+    end
+
+    # CreateFilter response object.
+    #
+    # @!attribute [rw] name
+    #   The name of the successfully created filter.
+    #   @return [String]
+    #
+    # @see http://docs.aws.amazon.com/goto/WebAPI/guardduty-2017-11-28/CreateFilterResponse AWS API Documentation
+    #
+    class CreateFilterResponse < Struct.new(
+      :name)
+      include Aws::Structure
+    end
+
     # Create IP Set Request
     #
     # @note When making an API call, you may pass CreateIPSetRequest
@@ -570,6 +654,32 @@ module Aws::GuardDuty
     #
     class DeleteDetectorResponse < Aws::EmptyStructure; end
 
+    # @note When making an API call, you may pass DeleteFilterRequest
+    #   data as a hash:
+    #
+    #       {
+    #         detector_id: "__string", # required
+    #         filter_name: "__string", # required
+    #       }
+    #
+    # @!attribute [rw] detector_id
+    #   @return [String]
+    #
+    # @!attribute [rw] filter_name
+    #   @return [String]
+    #
+    # @see http://docs.aws.amazon.com/goto/WebAPI/guardduty-2017-11-28/DeleteFilterRequest AWS API Documentation
+    #
+    class DeleteFilterRequest < Struct.new(
+      :detector_id,
+      :filter_name)
+      include Aws::Structure
+    end
+
+    # @see http://docs.aws.amazon.com/goto/WebAPI/guardduty-2017-11-28/DeleteFilterResponse AWS API Documentation
+    #
+    class DeleteFilterResponse < Aws::EmptyStructure; end
+
     # @note When making an API call, you may pass DeleteIPSetRequest
     #   data as a hash:
     #
@@ -990,6 +1100,65 @@ module Aws::GuardDuty
       include Aws::Structure
     end
 
+    # @note When making an API call, you may pass GetFilterRequest
+    #   data as a hash:
+    #
+    #       {
+    #         detector_id: "__string", # required
+    #         filter_name: "__string", # required
+    #       }
+    #
+    # @!attribute [rw] detector_id
+    #   @return [String]
+    #
+    # @!attribute [rw] filter_name
+    #   @return [String]
+    #
+    # @see http://docs.aws.amazon.com/goto/WebAPI/guardduty-2017-11-28/GetFilterRequest AWS API Documentation
+    #
+    class GetFilterRequest < Struct.new(
+      :detector_id,
+      :filter_name)
+      include Aws::Structure
+    end
+
+    # GetFilter response object.
+    #
+    # @!attribute [rw] action
+    #   Specifies the action that is to be applied to the findings that
+    #   match the filter.
+    #   @return [String]
+    #
+    # @!attribute [rw] description
+    #   The description of the filter.
+    #   @return [String]
+    #
+    # @!attribute [rw] finding_criteria
+    #   Represents the criteria to be used in the filter for querying
+    #   findings.
+    #   @return [Types::FindingCriteria]
+    #
+    # @!attribute [rw] name
+    #   The name of the filter.
+    #   @return [String]
+    #
+    # @!attribute [rw] rank
+    #   Specifies the position of the filter in the list of current filters.
+    #   Also specifies the order in which this filter is applied to the
+    #   findings.
+    #   @return [Integer]
+    #
+    # @see http://docs.aws.amazon.com/goto/WebAPI/guardduty-2017-11-28/GetFilterResponse AWS API Documentation
+    #
+    class GetFilterResponse < Struct.new(
+      :action,
+      :description,
+      :finding_criteria,
+      :name,
+      :rank)
+      include Aws::Structure
+    end
+
     # Get Findings Request
     #
     # @note When making an API call, you may pass GetFindingsRequest
@@ -1321,6 +1490,10 @@ module Aws::GuardDuty
     #   The profile information of the EC2 instance.
     #   @return [Types::IamInstanceProfile]
     #
+    # @!attribute [rw] image_description
+    #   The image description of the EC2 instance.
+    #   @return [String]
+    #
     # @!attribute [rw] image_id
     #   The image ID of the EC2 instance.
     #   @return [String]
@@ -1362,6 +1535,7 @@ module Aws::GuardDuty
     class InstanceDetails < Struct.new(
       :availability_zone,
       :iam_instance_profile,
+      :image_description,
       :image_id,
       :instance_id,
       :instance_state,
@@ -1426,7 +1600,9 @@ module Aws::GuardDuty
     #   @return [String]
     #
     # @!attribute [rw] disable_email_notification
-    #   Indicates whether invite member email notification is disabled
+    #   A boolean value that specifies whether you want to disable email
+    #   notification to the accounts that you’re inviting to GuardDuty as
+    #   members.
     #   @return [Boolean]
     #
     # @!attribute [rw] message
@@ -1504,6 +1680,57 @@ module Aws::GuardDuty
       include Aws::Structure
     end
 
+    # @note When making an API call, you may pass ListFiltersRequest
+    #   data as a hash:
+    #
+    #       {
+    #         detector_id: "__string", # required
+    #         max_results: 1,
+    #         next_token: "__string",
+    #       }
+    #
+    # @!attribute [rw] detector_id
+    #   @return [String]
+    #
+    # @!attribute [rw] max_results
+    #   You can use this parameter to indicate the maximum number of items
+    #   that you want in the response.
+    #   @return [Integer]
+    #
+    # @!attribute [rw] next_token
+    #   @return [String]
+    #
+    # @see http://docs.aws.amazon.com/goto/WebAPI/guardduty-2017-11-28/ListFiltersRequest AWS API Documentation
+    #
+    class ListFiltersRequest < Struct.new(
+      :detector_id,
+      :max_results,
+      :next_token)
+      include Aws::Structure
+    end
+
+    # ListFilters response object.
+    #
+    # @!attribute [rw] filter_names
+    #   A list of filter names
+    #   @return [Array<String>]
+    #
+    # @!attribute [rw] next_token
+    #   You can use this parameter when paginating results. Set the value of
+    #   this parameter to null on your first call to the list action. For
+    #   subsequent calls to the action fill nextToken in the request with
+    #   the value of NextToken from the previous response to continue
+    #   listing data.
+    #   @return [String]
+    #
+    # @see http://docs.aws.amazon.com/goto/WebAPI/guardduty-2017-11-28/ListFiltersResponse AWS API Documentation
+    #
+    class ListFiltersResponse < Struct.new(
+      :filter_names,
+      :next_token)
+      include Aws::Structure
+    end
+
     # List Findings Request
     #
     # @note When making an API call, you may pass ListFindingsRequest
@@ -1929,6 +2156,10 @@ module Aws::GuardDuty
     #   A list of EC2 instance IPv6 address information.
     #   @return [Array<String>]
     #
+    # @!attribute [rw] network_interface_id
+    #   The ID of the network interface
+    #   @return [String]
+    #
     # @!attribute [rw] private_dns_name
     #   Private DNS name of the EC2 instance.
     #   @return [String]
@@ -1965,6 +2196,7 @@ module Aws::GuardDuty
     #
     class NetworkInterface < Struct.new(
       :ipv_6_addresses,
+      :network_interface_id,
       :private_dns_name,
       :private_ip_address,
       :private_ip_addresses,
@@ -2431,6 +2663,82 @@ module Aws::GuardDuty
     #
     class UpdateDetectorResponse < Aws::EmptyStructure; end
 
+    # UpdateFilter request object.
+    #
+    # @note When making an API call, you may pass UpdateFilterRequest
+    #   data as a hash:
+    #
+    #       {
+    #         action: "NOOP", # accepts NOOP, ARCHIVE
+    #         description: "FilterDescription",
+    #         detector_id: "__string", # required
+    #         filter_name: "__string", # required
+    #         finding_criteria: {
+    #           criterion: {
+    #             "__string" => {
+    #               eq: ["__string"],
+    #               gt: 1,
+    #               gte: 1,
+    #               lt: 1,
+    #               lte: 1,
+    #               neq: ["__string"],
+    #             },
+    #           },
+    #         },
+    #         rank: 1,
+    #       }
+    #
+    # @!attribute [rw] action
+    #   Specifies the action that is to be applied to the findings that
+    #   match the filter.
+    #   @return [String]
+    #
+    # @!attribute [rw] description
+    #   The description of the filter.
+    #   @return [String]
+    #
+    # @!attribute [rw] detector_id
+    #   @return [String]
+    #
+    # @!attribute [rw] filter_name
+    #   @return [String]
+    #
+    # @!attribute [rw] finding_criteria
+    #   Represents the criteria to be used in the filter for querying
+    #   findings.
+    #   @return [Types::FindingCriteria]
+    #
+    # @!attribute [rw] rank
+    #   Specifies the position of the filter in the list of current filters.
+    #   Also specifies the order in which this filter is applied to the
+    #   findings.
+    #   @return [Integer]
+    #
+    # @see http://docs.aws.amazon.com/goto/WebAPI/guardduty-2017-11-28/UpdateFilterRequest AWS API Documentation
+    #
+    class UpdateFilterRequest < Struct.new(
+      :action,
+      :description,
+      :detector_id,
+      :filter_name,
+      :finding_criteria,
+      :rank)
+      include Aws::Structure
+    end
+
+    # UpdateFilter response object.
+    #
+    # @!attribute [rw] name
+    #   The name of the filter.
+    #   @return [String]
+    #
+    # @see http://docs.aws.amazon.com/goto/WebAPI/guardduty-2017-11-28/UpdateFilterResponse AWS API Documentation
+    #
+    class UpdateFilterResponse < Struct.new(
+      :name)
+      include Aws::Structure
+    end
+
     # Update findings feedback body
     #
     # @note When making an API call, you may pass UpdateFindingsFeedbackRequest

metadata

@@ -1,14 +1,14 @@
 --- !ruby/object:Gem::Specification
 name: aws-sdk-guardduty
 version: !ruby/object:Gem::Version
-  version: 1.3.0
+  version: 1.4.0
 platform: ruby
 authors:
 - Amazon Web Services
 autorequire: 
 bindir: bin
 cert_chain: []
-date: 2018-04-30 00:00:00.000000000 Z
+date: 2018-05-04 00:00:00.000000000 Z
 dependencies:
 - !ruby/object:Gem::Dependency
   name: aws-sdk-core