aws-sdk-guardduty 1.32.0 → 1.37.0

data/lib/aws-sdk-guardduty/errors.rb

@@ -1,3 +1,5 @@
+# frozen_string_literal: true
+
 # WARNING ABOUT GENERATED CODE
 #
 # This file is generated. See the contributing guide for more information:

data/lib/aws-sdk-guardduty/resource.rb

@@ -1,3 +1,5 @@
+# frozen_string_literal: true
+
 # WARNING ABOUT GENERATED CODE
 #
 # This file is generated. See the contributing guide for more information:

data/lib/aws-sdk-guardduty/types.rb

@@ -1,3 +1,5 @@
+# frozen_string_literal: true
+
 # WARNING ABOUT GENERATED CODE
 #
 # This file is generated. See the contributing guide for more information:
@@ -37,6 +39,7 @@ module Aws::GuardDuty
       :detector_id,
       :master_id,
       :invitation_id)
+      SENSITIVE = []
       include Aws::Structure
     end
 
@@ -44,6 +47,28 @@ module Aws::GuardDuty
     #
     class AcceptInvitationResponse < Aws::EmptyStructure; end
 
+    # Contains information on the current access control policies for the
+    # bucket.
+    #
+    # @!attribute [rw] allows_public_read_access
+    #   A value that indicates whether public read access for the bucket is
+    #   enabled through an Access Control List (ACL).
+    #   @return [Boolean]
+    #
+    # @!attribute [rw] allows_public_write_access
+    #   A value that indicates whether public write access for the bucket is
+    #   enabled through an Access Control List (ACL).
+    #   @return [Boolean]
+    #
+    # @see http://docs.aws.amazon.com/goto/WebAPI/guardduty-2017-11-28/AccessControlList AWS API Documentation
+    #
+    class AccessControlList < Struct.new(
+      :allows_public_read_access,
+      :allows_public_write_access)
+      SENSITIVE = []
+      include Aws::Structure
+    end
+
     # Contains information about the access keys.
     #
     # @!attribute [rw] access_key_id
@@ -69,6 +94,7 @@ module Aws::GuardDuty
       :principal_id,
       :user_name,
       :user_type)
+      SENSITIVE = []
       include Aws::Structure
     end
 
@@ -95,6 +121,23 @@ module Aws::GuardDuty
     class AccountDetail < Struct.new(
       :account_id,
       :email)
+      SENSITIVE = []
+      include Aws::Structure
+    end
+
+    # Contains information about the account level permissions on the S3
+    # bucket.
+    #
+    # @!attribute [rw] block_public_access
+    #   Describes the S3 Block Public Access settings of the bucket's
+    #   parent account.
+    #   @return [Types::BlockPublicAccess]
+    #
+    # @see http://docs.aws.amazon.com/goto/WebAPI/guardduty-2017-11-28/AccountLevelPermissions AWS API Documentation
+    #
+    class AccountLevelPermissions < Struct.new(
+      :block_public_access)
+      SENSITIVE = []
       include Aws::Structure
     end
 
@@ -130,6 +173,7 @@ module Aws::GuardDuty
       :dns_request_action,
       :network_connection_action,
       :port_probe_action)
+      SENSITIVE = []
       include Aws::Structure
     end
 
@@ -150,6 +194,7 @@ module Aws::GuardDuty
     class AdminAccount < Struct.new(
       :admin_account_id,
       :admin_status)
+      SENSITIVE = []
       include Aws::Structure
     end
 
@@ -175,6 +220,7 @@ module Aws::GuardDuty
     class ArchiveFindingsRequest < Struct.new(
       :detector_id,
       :finding_ids)
+      SENSITIVE = []
       include Aws::Structure
     end
 
@@ -212,6 +258,7 @@ module Aws::GuardDuty
       :domain_details,
       :remote_ip_details,
       :service_name)
+      SENSITIVE = []
       include Aws::Structure
     end
 
@@ -230,6 +277,91 @@ module Aws::GuardDuty
     class BadRequestException < Struct.new(
       :message,
       :type)
+      SENSITIVE = []
+      include Aws::Structure
+    end
+
+    # Contains information on how the bucker owner's S3 Block Public Access
+    # settings are being applied to the S3 bucket. See [S3 Block Public
+    # Access][1] for more information.
+    #
+    #
+    #
+    # [1]: https://docs.aws.amazon.com/AmazonS3/latest/dev/access-control-block-public-access.html
+    #
+    # @!attribute [rw] ignore_public_acls
+    #   Indicates if S3 Block Public Access is set to `IgnorePublicAcls`.
+    #   @return [Boolean]
+    #
+    # @!attribute [rw] restrict_public_buckets
+    #   Indicates if S3 Block Public Access is set to
+    #   `RestrictPublicBuckets`.
+    #   @return [Boolean]
+    #
+    # @!attribute [rw] block_public_acls
+    #   Indicates if S3 Block Public Access is set to `BlockPublicAcls`.
+    #   @return [Boolean]
+    #
+    # @!attribute [rw] block_public_policy
+    #   Indicates if S3 Block Public Access is set to `BlockPublicPolicy`.
+    #   @return [Boolean]
+    #
+    # @see http://docs.aws.amazon.com/goto/WebAPI/guardduty-2017-11-28/BlockPublicAccess AWS API Documentation
+    #
+    class BlockPublicAccess < Struct.new(
+      :ignore_public_acls,
+      :restrict_public_buckets,
+      :block_public_acls,
+      :block_public_policy)
+      SENSITIVE = []
+      include Aws::Structure
+    end
+
+    # Contains information about the bucket level permissions for the S3
+    # bucket.
+    #
+    # @!attribute [rw] access_control_list
+    #   Contains information on how Access Control Policies are applied to
+    #   the bucket.
+    #   @return [Types::AccessControlList]
+    #
+    # @!attribute [rw] bucket_policy
+    #   Contains information on the bucket policies for the S3 bucket.
+    #   @return [Types::BucketPolicy]
+    #
+    # @!attribute [rw] block_public_access
+    #   Contains information on which account level S3 Block Public Access
+    #   settings are applied to the S3 bucket.
+    #   @return [Types::BlockPublicAccess]
+    #
+    # @see http://docs.aws.amazon.com/goto/WebAPI/guardduty-2017-11-28/BucketLevelPermissions AWS API Documentation
+    #
+    class BucketLevelPermissions < Struct.new(
+      :access_control_list,
+      :bucket_policy,
+      :block_public_access)
+      SENSITIVE = []
+      include Aws::Structure
+    end
+
+    # Contains information on the current bucket policies for the S3 bucket.
+    #
+    # @!attribute [rw] allows_public_read_access
+    #   A value that indicates whether public read access for the bucket is
+    #   enabled through a bucket policy.
+    #   @return [Boolean]
+    #
+    # @!attribute [rw] allows_public_write_access
+    #   A value that indicates whether public write access for the bucket is
+    #   enabled through a bucket policy.
+    #   @return [Boolean]
+    #
+    # @see http://docs.aws.amazon.com/goto/WebAPI/guardduty-2017-11-28/BucketPolicy AWS API Documentation
+    #
+    class BucketPolicy < Struct.new(
+      :allows_public_read_access,
+      :allows_public_write_access)
+      SENSITIVE = []
       include Aws::Structure
     end
 
@@ -243,6 +375,23 @@ module Aws::GuardDuty
     #
     class City < Struct.new(
       :city_name)
+      SENSITIVE = []
+      include Aws::Structure
+    end
+
+    # Contains information on the status of CloudTrail as a data source for
+    # the detector.
+    #
+    # @!attribute [rw] status
+    #   Describes whether CloudTrail is enabled as a data source for the
+    #   detector.
+    #   @return [String]
+    #
+    # @see http://docs.aws.amazon.com/goto/WebAPI/guardduty-2017-11-28/CloudTrailConfigurationResult AWS API Documentation
+    #
+    class CloudTrailConfigurationResult < Struct.new(
+      :status)
+      SENSITIVE = []
       include Aws::Structure
     end
 
@@ -341,6 +490,7 @@ module Aws::GuardDuty
       :greater_than_or_equal,
       :less_than,
       :less_than_or_equal)
+      SENSITIVE = []
       include Aws::Structure
     end
 
@@ -360,6 +510,7 @@ module Aws::GuardDuty
     class Country < Struct.new(
       :country_code,
       :country_name)
+      SENSITIVE = []
       include Aws::Structure
     end
 
@@ -370,6 +521,11 @@ module Aws::GuardDuty
     #         enable: false, # required
     #         client_token: "ClientToken",
     #         finding_publishing_frequency: "FIFTEEN_MINUTES", # accepts FIFTEEN_MINUTES, ONE_HOUR, SIX_HOURS
+    #         data_sources: {
+    #           s3_logs: {
+    #             enable: false, # required
+    #           },
+    #         },
     #         tags: {
     #           "TagKey" => "TagValue",
     #         },
@@ -392,6 +548,11 @@ module Aws::GuardDuty
     #   exported.
     #   @return [String]
     #
+    # @!attribute [rw] data_sources
+    #   An object that describes which data sources will be enabled for the
+    #   detector.
+    #   @return [Types::DataSourceConfigurations]
+    #
     # @!attribute [rw] tags
     #   The tags to be added to a new detector resource.
     #   @return [Hash<String,String>]
@@ -402,7 +563,9 @@ module Aws::GuardDuty
       :enable,
       :client_token,
       :finding_publishing_frequency,
+      :data_sources,
       :tags)
+      SENSITIVE = []
       include Aws::Structure
     end
 
@@ -414,6 +577,7 @@ module Aws::GuardDuty
     #
     class CreateDetectorResponse < Struct.new(
       :detector_id)
+      SENSITIVE = []
       include Aws::Structure
     end
 
@@ -612,6 +776,7 @@ module Aws::GuardDuty
       :finding_criteria,
       :client_token,
       :tags)
+      SENSITIVE = []
       include Aws::Structure
     end
 
@@ -623,6 +788,7 @@ module Aws::GuardDuty
     #
     class CreateFilterResponse < Struct.new(
       :name)
+      SENSITIVE = []
       include Aws::Structure
     end
 
@@ -687,6 +853,7 @@ module Aws::GuardDuty
       :activate,
       :client_token,
       :tags)
+      SENSITIVE = []
       include Aws::Structure
     end
 
@@ -698,6 +865,7 @@ module Aws::GuardDuty
     #
     class CreateIPSetResponse < Struct.new(
       :ip_set_id)
+      SENSITIVE = []
       include Aws::Structure
     end
 
@@ -729,6 +897,7 @@ module Aws::GuardDuty
     class CreateMembersRequest < Struct.new(
       :detector_id,
       :account_details)
+      SENSITIVE = []
       include Aws::Structure
     end
 
@@ -741,6 +910,7 @@ module Aws::GuardDuty
     #
     class CreateMembersResponse < Struct.new(
       :unprocessed_accounts)
+      SENSITIVE = []
       include Aws::Structure
     end
 
@@ -786,6 +956,7 @@ module Aws::GuardDuty
       :destination_type,
       :destination_properties,
       :client_token)
+      SENSITIVE = []
       include Aws::Structure
     end
 
@@ -797,6 +968,7 @@ module Aws::GuardDuty
     #
     class CreatePublishingDestinationResponse < Struct.new(
       :destination_id)
+      SENSITIVE = []
       include Aws::Structure
     end
 
@@ -821,6 +993,7 @@ module Aws::GuardDuty
     class CreateSampleFindingsRequest < Struct.new(
       :detector_id,
       :finding_types)
+      SENSITIVE = []
       include Aws::Structure
     end
 
@@ -888,6 +1061,7 @@ module Aws::GuardDuty
       :activate,
       :client_token,
       :tags)
+      SENSITIVE = []
       include Aws::Structure
     end
 
@@ -899,6 +1073,77 @@ module Aws::GuardDuty
     #
     class CreateThreatIntelSetResponse < Struct.new(
       :threat_intel_set_id)
+      SENSITIVE = []
+      include Aws::Structure
+    end
+
+    # Contains information on the status of DNS logs as a data source.
+    #
+    # @!attribute [rw] status
+    #   Denotes whether DNS logs is enabled as a data source.
+    #   @return [String]
+    #
+    # @see http://docs.aws.amazon.com/goto/WebAPI/guardduty-2017-11-28/DNSLogsConfigurationResult AWS API Documentation
+    #
+    class DNSLogsConfigurationResult < Struct.new(
+      :status)
+      SENSITIVE = []
+      include Aws::Structure
+    end
+
+    # Contains information about which data sources are enabled.
+    #
+    # @note When making an API call, you may pass DataSourceConfigurations
+    #   data as a hash:
+    #
+    #       {
+    #         s3_logs: {
+    #           enable: false, # required
+    #         },
+    #       }
+    #
+    # @!attribute [rw] s3_logs
+    #   Describes whether S3 data event logs are enabled as a data source.
+    #   @return [Types::S3LogsConfiguration]
+    #
+    # @see http://docs.aws.amazon.com/goto/WebAPI/guardduty-2017-11-28/DataSourceConfigurations AWS API Documentation
+    #
+    class DataSourceConfigurations < Struct.new(
+      :s3_logs)
+      SENSITIVE = []
+      include Aws::Structure
+    end
+
+    # Contains information on the status of data sources for the detector.
+    #
+    # @!attribute [rw] cloud_trail
+    #   An object that contains information on the status of CloudTrail as a
+    #   data source.
+    #   @return [Types::CloudTrailConfigurationResult]
+    #
+    # @!attribute [rw] dns_logs
+    #   An object that contains information on the status of DNS logs as a
+    #   data source.
+    #   @return [Types::DNSLogsConfigurationResult]
+    #
+    # @!attribute [rw] flow_logs
+    #   An object that contains information on the status of VPC flow logs
+    #   as a data source.
+    #   @return [Types::FlowLogsConfigurationResult]
+    #
+    # @!attribute [rw] s3_logs
+    #   An object that contains information on the status of S3 Data event
+    #   logs as a data source.
+    #   @return [Types::S3LogsConfigurationResult]
+    #
+    # @see http://docs.aws.amazon.com/goto/WebAPI/guardduty-2017-11-28/DataSourceConfigurationsResult AWS API Documentation
+    #
+    class DataSourceConfigurationsResult < Struct.new(
+      :cloud_trail,
+      :dns_logs,
+      :flow_logs,
+      :s3_logs)
+      SENSITIVE = []
       include Aws::Structure
     end
 
@@ -919,6 +1164,7 @@ module Aws::GuardDuty
     #
     class DeclineInvitationsRequest < Struct.new(
       :account_ids)
+      SENSITIVE = []
       include Aws::Structure
     end
 
@@ -931,6 +1177,32 @@ module Aws::GuardDuty
     #
     class DeclineInvitationsResponse < Struct.new(
       :unprocessed_accounts)
+      SENSITIVE = []
+      include Aws::Structure
+    end
+
+    # Contains information on the server side encryption method used in the
+    # S3 bucket. See [S3 Server-Side Encryption][1] for more information.
+    #
+    #
+    #
+    # [1]: https://docs.aws.amazon.com/AmazonS3/atest/dev/serv-side-encryption.html
+    #
+    # @!attribute [rw] encryption_type
+    #   The type of encryption used for objects within the S3 bucket.
+    #   @return [String]
+    #
+    # @!attribute [rw] kms_master_key_arn
+    #   The Amazon Resource Name (ARN) of the KMS encryption key. Only
+    #   available if the bucket `EncryptionType` is `aws:kms`.
+    #   @return [String]
+    #
+    # @see http://docs.aws.amazon.com/goto/WebAPI/guardduty-2017-11-28/DefaultServerSideEncryption AWS API Documentation
+    #
+    class DefaultServerSideEncryption < Struct.new(
+      :encryption_type,
+      :kms_master_key_arn)
+      SENSITIVE = []
       include Aws::Structure
     end
 
@@ -949,6 +1221,7 @@ module Aws::GuardDuty
     #
     class DeleteDetectorRequest < Struct.new(
       :detector_id)
+      SENSITIVE = []
       include Aws::Structure
     end
 
@@ -977,6 +1250,7 @@ module Aws::GuardDuty
     class DeleteFilterRequest < Struct.new(
       :detector_id,
       :filter_name)
+      SENSITIVE = []
       include Aws::Structure
     end
 
@@ -1005,6 +1279,7 @@ module Aws::GuardDuty
     class DeleteIPSetRequest < Struct.new(
       :detector_id,
       :ip_set_id)
+      SENSITIVE = []
       include Aws::Structure
     end
 
@@ -1028,6 +1303,7 @@ module Aws::GuardDuty
     #
     class DeleteInvitationsRequest < Struct.new(
       :account_ids)
+      SENSITIVE = []
       include Aws::Structure
     end
 
@@ -1040,6 +1316,7 @@ module Aws::GuardDuty
     #
     class DeleteInvitationsResponse < Struct.new(
       :unprocessed_accounts)
+      SENSITIVE = []
       include Aws::Structure
     end
 
@@ -1066,6 +1343,7 @@ module Aws::GuardDuty
     class DeleteMembersRequest < Struct.new(
       :detector_id,
       :account_ids)
+      SENSITIVE = []
       include Aws::Structure
     end
 
@@ -1077,6 +1355,7 @@ module Aws::GuardDuty
     #
     class DeleteMembersResponse < Struct.new(
       :unprocessed_accounts)
+      SENSITIVE = []
       include Aws::Structure
     end
 
@@ -1102,6 +1381,7 @@ module Aws::GuardDuty
     class DeletePublishingDestinationRequest < Struct.new(
       :detector_id,
       :destination_id)
+      SENSITIVE = []
       include Aws::Structure
     end
 
@@ -1131,6 +1411,7 @@ module Aws::GuardDuty
     class DeleteThreatIntelSetRequest < Struct.new(
       :detector_id,
       :threat_intel_set_id)
+      SENSITIVE = []
       include Aws::Structure
     end
 
@@ -1154,6 +1435,7 @@ module Aws::GuardDuty
     #
     class DescribeOrganizationConfigurationRequest < Struct.new(
       :detector_id)
+      SENSITIVE = []
       include Aws::Structure
     end
 
@@ -1167,11 +1449,18 @@ module Aws::GuardDuty
     #   already associated with the delegated administrator master account.
     #   @return [Boolean]
     #
+    # @!attribute [rw] data_sources
+    #   An object that describes which data sources are enabled
+    #   automatically for member accounts.
+    #   @return [Types::OrganizationDataSourceConfigurationsResult]
+    #
     # @see http://docs.aws.amazon.com/goto/WebAPI/guardduty-2017-11-28/DescribeOrganizationConfigurationResponse AWS API Documentation
     #
     class DescribeOrganizationConfigurationResponse < Struct.new(
       :auto_enable,
-      :member_account_limit_reached)
+      :member_account_limit_reached,
+      :data_sources)
+      SENSITIVE = []
       include Aws::Structure
     end
 
@@ -1197,6 +1486,7 @@ module Aws::GuardDuty
     class DescribePublishingDestinationRequest < Struct.new(
       :detector_id,
       :destination_id)
+      SENSITIVE = []
       include Aws::Structure
     end
 
@@ -1231,6 +1521,7 @@ module Aws::GuardDuty
       :status,
       :publishing_failure_start_timestamp,
       :destination_properties)
+      SENSITIVE = []
       include Aws::Structure
     end
 
@@ -1256,6 +1547,7 @@ module Aws::GuardDuty
       :destination_id,
       :destination_type,
       :status)
+      SENSITIVE = []
       include Aws::Structure
     end
 
@@ -1284,6 +1576,7 @@ module Aws::GuardDuty
     class DestinationProperties < Struct.new(
       :destination_arn,
       :kms_key_arn)
+      SENSITIVE = []
       include Aws::Structure
     end
 
@@ -1303,6 +1596,7 @@ module Aws::GuardDuty
     #
     class DisableOrganizationAdminAccountRequest < Struct.new(
       :admin_account_id)
+      SENSITIVE = []
       include Aws::Structure
     end
 
@@ -1325,6 +1619,7 @@ module Aws::GuardDuty
     #
     class DisassociateFromMasterAccountRequest < Struct.new(
       :detector_id)
+      SENSITIVE = []
       include Aws::Structure
     end
 
@@ -1355,6 +1650,7 @@ module Aws::GuardDuty
     class DisassociateMembersRequest < Struct.new(
       :detector_id,
       :account_ids)
+      SENSITIVE = []
       include Aws::Structure
     end
 
@@ -1367,6 +1663,7 @@ module Aws::GuardDuty
     #
     class DisassociateMembersResponse < Struct.new(
       :unprocessed_accounts)
+      SENSITIVE = []
       include Aws::Structure
     end
 
@@ -1381,6 +1678,7 @@ module Aws::GuardDuty
     #
     class DnsRequestAction < Struct.new(
       :domain)
+      SENSITIVE = []
       include Aws::Structure
     end
 
@@ -1394,6 +1692,7 @@ module Aws::GuardDuty
     #
     class DomainDetails < Struct.new(
       :domain)
+      SENSITIVE = []
       include Aws::Structure
     end
 
@@ -1413,6 +1712,7 @@ module Aws::GuardDuty
     #
     class EnableOrganizationAdminAccountRequest < Struct.new(
       :admin_account_id)
+      SENSITIVE = []
       include Aws::Structure
     end
 
@@ -1430,6 +1730,7 @@ module Aws::GuardDuty
     #
     class Evidence < Struct.new(
       :threat_intelligence_details)
+      SENSITIVE = []
       include Aws::Structure
     end
 
@@ -1515,6 +1816,7 @@ module Aws::GuardDuty
       :title,
       :type,
       :updated_at)
+      SENSITIVE = []
       include Aws::Structure
     end
 
@@ -1551,6 +1853,7 @@ module Aws::GuardDuty
     #
     class FindingCriteria < Struct.new(
       :criterion)
+      SENSITIVE = []
       include Aws::Structure
     end
 
@@ -1565,6 +1868,21 @@ module Aws::GuardDuty
     #
     class FindingStatistics < Struct.new(
       :count_by_severity)
+      SENSITIVE = []
+      include Aws::Structure
+    end
+
+    # Contains information on the status of VPC flow logs as a data source.
+    #
+    # @!attribute [rw] status
+    #   Denotes whether VPC flow logs is enabled as a data source.
+    #   @return [String]
+    #
+    # @see http://docs.aws.amazon.com/goto/WebAPI/guardduty-2017-11-28/FlowLogsConfigurationResult AWS API Documentation
+    #
+    class FlowLogsConfigurationResult < Struct.new(
+      :status)
+      SENSITIVE = []
       include Aws::Structure
     end
 
@@ -1583,6 +1901,7 @@ module Aws::GuardDuty
     class GeoLocation < Struct.new(
       :lat,
       :lon)
+      SENSITIVE = []
       include Aws::Structure
     end
 
@@ -1601,6 +1920,7 @@ module Aws::GuardDuty
     #
     class GetDetectorRequest < Struct.new(
       :detector_id)
+      SENSITIVE = []
       include Aws::Structure
     end
 
@@ -1624,6 +1944,11 @@ module Aws::GuardDuty
     #   The last-updated timestamp for the detector.
     #   @return [String]
     #
+    # @!attribute [rw] data_sources
+    #   An object that describes which data sources are enabled for the
+    #   detector.
+    #   @return [Types::DataSourceConfigurationsResult]
+    #
     # @!attribute [rw] tags
     #   The tags of the detector resource.
     #   @return [Hash<String,String>]
@@ -1636,7 +1961,9 @@ module Aws::GuardDuty
       :service_role,
       :status,
       :updated_at,
+      :data_sources,
       :tags)
+      SENSITIVE = []
       include Aws::Structure
     end
 
@@ -1661,6 +1988,7 @@ module Aws::GuardDuty
     class GetFilterRequest < Struct.new(
       :detector_id,
       :filter_name)
+      SENSITIVE = []
       include Aws::Structure
     end
 
@@ -1701,6 +2029,7 @@ module Aws::GuardDuty
       :rank,
       :finding_criteria,
       :tags)
+      SENSITIVE = []
       include Aws::Structure
     end
 
@@ -1735,6 +2064,7 @@ module Aws::GuardDuty
       :detector_id,
       :finding_ids,
       :sort_criteria)
+      SENSITIVE = []
       include Aws::Structure
     end
 
@@ -1746,6 +2076,7 @@ module Aws::GuardDuty
     #
     class GetFindingsResponse < Struct.new(
       :findings)
+      SENSITIVE = []
       include Aws::Structure
     end
 
@@ -1794,6 +2125,7 @@ module Aws::GuardDuty
       :detector_id,
       :finding_statistic_types,
       :finding_criteria)
+      SENSITIVE = []
       include Aws::Structure
     end
 
@@ -1805,6 +2137,7 @@ module Aws::GuardDuty
     #
     class GetFindingsStatisticsResponse < Struct.new(
       :finding_statistics)
+      SENSITIVE = []
       include Aws::Structure
     end
 
@@ -1829,6 +2162,7 @@ module Aws::GuardDuty
     class GetIPSetRequest < Struct.new(
       :detector_id,
       :ip_set_id)
+      SENSITIVE = []
       include Aws::Structure
     end
 
@@ -1860,6 +2194,7 @@ module Aws::GuardDuty
       :location,
       :status,
       :tags)
+      SENSITIVE = []
       include Aws::Structure
     end
 
@@ -1877,6 +2212,7 @@ module Aws::GuardDuty
     #
     class GetInvitationsCountResponse < Struct.new(
       :invitations_count)
+      SENSITIVE = []
       include Aws::Structure
     end
 
@@ -1895,6 +2231,7 @@ module Aws::GuardDuty
     #
     class GetMasterAccountRequest < Struct.new(
       :detector_id)
+      SENSITIVE = []
       include Aws::Structure
     end
 
@@ -1906,6 +2243,51 @@ module Aws::GuardDuty
     #
     class GetMasterAccountResponse < Struct.new(
       :master)
+      SENSITIVE = []
+      include Aws::Structure
+    end
+
+    # @note When making an API call, you may pass GetMemberDetectorsRequest
+    #   data as a hash:
+    #
+    #       {
+    #         detector_id: "DetectorId", # required
+    #         account_ids: ["AccountId"], # required
+    #       }
+    #
+    # @!attribute [rw] detector_id
+    #   The detector ID for the master account.
+    #   @return [String]
+    #
+    # @!attribute [rw] account_ids
+    #   The account ID of the member account.
+    #   @return [Array<String>]
+    #
+    # @see http://docs.aws.amazon.com/goto/WebAPI/guardduty-2017-11-28/GetMemberDetectorsRequest AWS API Documentation
+    #
+    class GetMemberDetectorsRequest < Struct.new(
+      :detector_id,
+      :account_ids)
+      SENSITIVE = []
+      include Aws::Structure
+    end
+
+    # @!attribute [rw] member_data_source_configurations
+    #   An object that describes which data sources are enabled for a member
+    #   account.
+    #   @return [Array<Types::MemberDataSourceConfiguration>]
+    #
+    # @!attribute [rw] unprocessed_accounts
+    #   A list of member account IDs that were unable to be processed along
+    #   with an explanation for why they were not processed.
+    #   @return [Array<Types::UnprocessedAccount>]
+    #
+    # @see http://docs.aws.amazon.com/goto/WebAPI/guardduty-2017-11-28/GetMemberDetectorsResponse AWS API Documentation
+    #
+    class GetMemberDetectorsResponse < Struct.new(
+      :member_data_source_configurations,
+      :unprocessed_accounts)
+      SENSITIVE = []
       include Aws::Structure
     end
 
@@ -1932,6 +2314,7 @@ module Aws::GuardDuty
     class GetMembersRequest < Struct.new(
       :detector_id,
       :account_ids)
+      SENSITIVE = []
       include Aws::Structure
     end
 
@@ -1949,6 +2332,7 @@ module Aws::GuardDuty
     class GetMembersResponse < Struct.new(
       :members,
       :unprocessed_accounts)
+      SENSITIVE = []
       include Aws::Structure
     end
 
@@ -1974,6 +2358,7 @@ module Aws::GuardDuty
     class GetThreatIntelSetRequest < Struct.new(
       :detector_id,
       :threat_intel_set_id)
+      SENSITIVE = []
       include Aws::Structure
     end
 
@@ -2007,6 +2392,7 @@ module Aws::GuardDuty
       :location,
       :status,
       :tags)
+      SENSITIVE = []
       include Aws::Structure
     end
 
@@ -2025,6 +2411,7 @@ module Aws::GuardDuty
     class IamInstanceProfile < Struct.new(
       :arn,
       :id)
+      SENSITIVE = []
       include Aws::Structure
     end
 
@@ -2099,6 +2486,7 @@ module Aws::GuardDuty
       :platform,
       :product_codes,
       :tags)
+      SENSITIVE = []
       include Aws::Structure
     end
 
@@ -2117,6 +2505,7 @@ module Aws::GuardDuty
     class InternalServerErrorException < Struct.new(
       :message,
       :type)
+      SENSITIVE = []
       include Aws::Structure
     end
 
@@ -2147,6 +2536,7 @@ module Aws::GuardDuty
       :invitation_id,
       :relationship_status,
       :invited_at)
+      SENSITIVE = []
       include Aws::Structure
     end
 
@@ -2188,6 +2578,7 @@ module Aws::GuardDuty
       :account_ids,
       :disable_email_notification,
       :message)
+      SENSITIVE = []
       include Aws::Structure
     end
 
@@ -2200,6 +2591,7 @@ module Aws::GuardDuty
     #
     class InviteMembersResponse < Struct.new(
       :unprocessed_accounts)
+      SENSITIVE = []
       include Aws::Structure
     end
 
@@ -2230,6 +2622,7 @@ module Aws::GuardDuty
     class ListDetectorsRequest < Struct.new(
       :max_results,
       :next_token)
+      SENSITIVE = []
       include Aws::Structure
     end
 
@@ -2247,6 +2640,7 @@ module Aws::GuardDuty
     class ListDetectorsResponse < Struct.new(
       :detector_ids,
       :next_token)
+      SENSITIVE = []
       include Aws::Structure
     end
 
@@ -2283,6 +2677,7 @@ module Aws::GuardDuty
       :detector_id,
       :max_results,
       :next_token)
+      SENSITIVE = []
       include Aws::Structure
     end
 
@@ -2300,6 +2695,7 @@ module Aws::GuardDuty
     class ListFiltersResponse < Struct.new(
       :filter_names,
       :next_token)
+      SENSITIVE = []
       include Aws::Structure
     end
 
@@ -2479,6 +2875,7 @@ module Aws::GuardDuty
       :sort_criteria,
       :max_results,
       :next_token)
+      SENSITIVE = []
       include Aws::Structure
     end
 
@@ -2496,6 +2893,7 @@ module Aws::GuardDuty
     class ListFindingsResponse < Struct.new(
       :finding_ids,
       :next_token)
+      SENSITIVE = []
       include Aws::Structure
     end
 
@@ -2532,6 +2930,7 @@ module Aws::GuardDuty
       :detector_id,
       :max_results,
       :next_token)
+      SENSITIVE = []
       include Aws::Structure
     end
 
@@ -2549,6 +2948,7 @@ module Aws::GuardDuty
     class ListIPSetsResponse < Struct.new(
       :ip_set_ids,
       :next_token)
+      SENSITIVE = []
       include Aws::Structure
     end
 
@@ -2579,6 +2979,7 @@ module Aws::GuardDuty
     class ListInvitationsRequest < Struct.new(
       :max_results,
       :next_token)
+      SENSITIVE = []
       include Aws::Structure
     end
 
@@ -2596,6 +2997,7 @@ module Aws::GuardDuty
     class ListInvitationsResponse < Struct.new(
       :invitations,
       :next_token)
+      SENSITIVE = []
       include Aws::Structure
     end
 
@@ -2642,6 +3044,7 @@ module Aws::GuardDuty
       :max_results,
       :next_token,
       :only_associated)
+      SENSITIVE = []
       include Aws::Structure
     end
 
@@ -2659,6 +3062,7 @@ module Aws::GuardDuty
     class ListMembersResponse < Struct.new(
       :members,
       :next_token)
+      SENSITIVE = []
       include Aws::Structure
     end
 
@@ -2687,6 +3091,7 @@ module Aws::GuardDuty
     class ListOrganizationAdminAccountsRequest < Struct.new(
       :max_results,
       :next_token)
+      SENSITIVE = []
       include Aws::Structure
     end
 
@@ -2705,6 +3110,7 @@ module Aws::GuardDuty
     class ListOrganizationAdminAccountsResponse < Struct.new(
       :admin_accounts,
       :next_token)
+      SENSITIVE = []
       include Aws::Structure
     end
 
@@ -2739,6 +3145,7 @@ module Aws::GuardDuty
       :detector_id,
       :max_results,
       :next_token)
+      SENSITIVE = []
       include Aws::Structure
     end
 
@@ -2760,6 +3167,7 @@ module Aws::GuardDuty
     class ListPublishingDestinationsResponse < Struct.new(
       :destinations,
       :next_token)
+      SENSITIVE = []
       include Aws::Structure
     end
 
@@ -2778,6 +3186,7 @@ module Aws::GuardDuty
     #
     class ListTagsForResourceRequest < Struct.new(
       :resource_arn)
+      SENSITIVE = []
       include Aws::Structure
     end
 
@@ -2789,6 +3198,7 @@ module Aws::GuardDuty
     #
     class ListTagsForResourceResponse < Struct.new(
       :tags)
+      SENSITIVE = []
       include Aws::Structure
     end
 
@@ -2826,6 +3236,7 @@ module Aws::GuardDuty
       :detector_id,
       :max_results,
       :next_token)
+      SENSITIVE = []
       include Aws::Structure
     end
 
@@ -2843,6 +3254,7 @@ module Aws::GuardDuty
     class ListThreatIntelSetsResponse < Struct.new(
       :threat_intel_set_ids,
       :next_token)
+      SENSITIVE = []
       include Aws::Structure
     end
 
@@ -2856,6 +3268,7 @@ module Aws::GuardDuty
     #
     class LocalIpDetails < Struct.new(
       :ip_address_v4)
+      SENSITIVE = []
       include Aws::Structure
     end
 
@@ -2874,6 +3287,7 @@ module Aws::GuardDuty
     class LocalPortDetails < Struct.new(
       :port,
       :port_name)
+      SENSITIVE = []
       include Aws::Structure
     end
 
@@ -2903,6 +3317,7 @@ module Aws::GuardDuty
       :invitation_id,
       :relationship_status,
       :invited_at)
+      SENSITIVE = []
       include Aws::Structure
     end
 
@@ -2946,6 +3361,27 @@ module Aws::GuardDuty
       :relationship_status,
       :invited_at,
       :updated_at)
+      SENSITIVE = []
+      include Aws::Structure
+    end
+
+    # Contains information on which data sources are enabled for a member
+    # account.
+    #
+    # @!attribute [rw] account_id
+    #   The account ID for the member account.
+    #   @return [String]
+    #
+    # @!attribute [rw] data_sources
+    #   Contains information on the status of data sources for the account.
+    #   @return [Types::DataSourceConfigurationsResult]
+    #
+    # @see http://docs.aws.amazon.com/goto/WebAPI/guardduty-2017-11-28/MemberDataSourceConfiguration AWS API Documentation
+    #
+    class MemberDataSourceConfiguration < Struct.new(
+      :account_id,
+      :data_sources)
+      SENSITIVE = []
       include Aws::Structure
     end
 
@@ -2991,6 +3427,7 @@ module Aws::GuardDuty
       :local_ip_details,
       :remote_ip_details,
       :remote_port_details)
+      SENSITIVE = []
       include Aws::Structure
     end
 
@@ -3050,6 +3487,7 @@ module Aws::GuardDuty
       :security_groups,
       :subnet_id,
       :vpc_id)
+      SENSITIVE = []
       include Aws::Structure
     end
 
@@ -3080,6 +3518,129 @@ module Aws::GuardDuty
       :asn_org,
       :isp,
       :org)
+      SENSITIVE = []
+      include Aws::Structure
+    end
+
+    # An object that contains information on which data sources will be
+    # configured to be automatically enabled for new members within the
+    # organization.
+    #
+    # @note When making an API call, you may pass OrganizationDataSourceConfigurations
+    #   data as a hash:
+    #
+    #       {
+    #         s3_logs: {
+    #           auto_enable: false, # required
+    #         },
+    #       }
+    #
+    # @!attribute [rw] s3_logs
+    #   Describes whether S3 data event logs are enabled for new members of
+    #   the organization.
+    #   @return [Types::OrganizationS3LogsConfiguration]
+    #
+    # @see http://docs.aws.amazon.com/goto/WebAPI/guardduty-2017-11-28/OrganizationDataSourceConfigurations AWS API Documentation
+    #
+    class OrganizationDataSourceConfigurations < Struct.new(
+      :s3_logs)
+      SENSITIVE = []
+      include Aws::Structure
+    end
+
+    # An object that contains information on which data sources are
+    # automatically enabled for new members within the organization.
+    #
+    # @!attribute [rw] s3_logs
+    #   Describes whether S3 data event logs are enabled as a data source.
+    #   @return [Types::OrganizationS3LogsConfigurationResult]
+    #
+    # @see http://docs.aws.amazon.com/goto/WebAPI/guardduty-2017-11-28/OrganizationDataSourceConfigurationsResult AWS API Documentation
+    #
+    class OrganizationDataSourceConfigurationsResult < Struct.new(
+      :s3_logs)
+      SENSITIVE = []
+      include Aws::Structure
+    end
+
+    # Describes whether S3 data event logs will be automatically enabled for
+    # new members of the organization.
+    #
+    # @note When making an API call, you may pass OrganizationS3LogsConfiguration
+    #   data as a hash:
+    #
+    #       {
+    #         auto_enable: false, # required
+    #       }
+    #
+    # @!attribute [rw] auto_enable
+    #   A value that contains information on whether S3 data event logs will
+    #   be enabled automatically as a data source for the organization.
+    #   @return [Boolean]
+    #
+    # @see http://docs.aws.amazon.com/goto/WebAPI/guardduty-2017-11-28/OrganizationS3LogsConfiguration AWS API Documentation
+    #
+    class OrganizationS3LogsConfiguration < Struct.new(
+      :auto_enable)
+      SENSITIVE = []
+      include Aws::Structure
+    end
+
+    # The current configuration of S3 data event logs as a data source for
+    # the organization.
+    #
+    # @!attribute [rw] auto_enable
+    #   A value that describes whether S3 data event logs are automatically
+    #   enabled for new members of the organization.
+    #   @return [Boolean]
+    #
+    # @see http://docs.aws.amazon.com/goto/WebAPI/guardduty-2017-11-28/OrganizationS3LogsConfigurationResult AWS API Documentation
+    #
+    class OrganizationS3LogsConfigurationResult < Struct.new(
+      :auto_enable)
+      SENSITIVE = []
+      include Aws::Structure
+    end
+
+    # Contains information on the owner of the bucket.
+    #
+    # @!attribute [rw] id
+    #   The canonical user ID of the bucket owner. For information about
+    #   locating your canonical user ID see [Finding Your Account Canonical
+    #   User ID.][1]
+    #
+    #
+    #
+    #   [1]: https://docs.aws.amazon.com/general/latest/gr/acct-identifiers.html#FindingCanonicalId
+    #   @return [String]
+    #
+    # @see http://docs.aws.amazon.com/goto/WebAPI/guardduty-2017-11-28/Owner AWS API Documentation
+    #
+    class Owner < Struct.new(
+      :id)
+      SENSITIVE = []
+      include Aws::Structure
+    end
+
+    # Contains information about how permissions are configured for the S3
+    # bucket.
+    #
+    # @!attribute [rw] bucket_level_permissions
+    #   Contains information about the bucket level permissions for the S3
+    #   bucket.
+    #   @return [Types::BucketLevelPermissions]
+    #
+    # @!attribute [rw] account_level_permissions
+    #   Contains information about the account level permissions on the S3
+    #   bucket.
+    #   @return [Types::AccountLevelPermissions]
+    #
+    # @see http://docs.aws.amazon.com/goto/WebAPI/guardduty-2017-11-28/PermissionConfiguration AWS API Documentation
+    #
+    class PermissionConfiguration < Struct.new(
+      :bucket_level_permissions,
+      :account_level_permissions)
+      SENSITIVE = []
       include Aws::Structure
     end
 
@@ -3100,6 +3661,7 @@ module Aws::GuardDuty
     class PortProbeAction < Struct.new(
       :blocked,
       :port_probe_details)
+      SENSITIVE = []
       include Aws::Structure
     end
 
@@ -3123,6 +3685,7 @@ module Aws::GuardDuty
       :local_port_details,
       :local_ip_details,
       :remote_ip_details)
+      SENSITIVE = []
       include Aws::Structure
     end
 
@@ -3141,6 +3704,7 @@ module Aws::GuardDuty
     class PrivateIpAddressDetails < Struct.new(
       :private_dns_name,
       :private_ip_address)
+      SENSITIVE = []
       include Aws::Structure
     end
 
@@ -3159,6 +3723,28 @@ module Aws::GuardDuty
     class ProductCode < Struct.new(
       :code,
       :product_type)
+      SENSITIVE = []
+      include Aws::Structure
+    end
+
+    # Describes the public access policies that apply to the S3 bucket.
+    #
+    # @!attribute [rw] permission_configuration
+    #   Contains information about how permissions are configured for the S3
+    #   bucket.
+    #   @return [Types::PermissionConfiguration]
+    #
+    # @!attribute [rw] effective_permission
+    #   Describes the effective permission on this bucket after factoring
+    #   all attached policies.
+    #   @return [String]
+    #
+    # @see http://docs.aws.amazon.com/goto/WebAPI/guardduty-2017-11-28/PublicAccess AWS API Documentation
+    #
+    class PublicAccess < Struct.new(
+      :permission_configuration,
+      :effective_permission)
+      SENSITIVE = []
       include Aws::Structure
     end
 
@@ -3192,6 +3778,7 @@ module Aws::GuardDuty
       :geo_location,
       :ip_address_v4,
       :organization)
+      SENSITIVE = []
       include Aws::Structure
     end
 
@@ -3210,6 +3797,7 @@ module Aws::GuardDuty
     class RemotePortDetails < Struct.new(
       :port,
       :port_name)
+      SENSITIVE = []
       include Aws::Structure
     end
 
@@ -3222,6 +3810,10 @@ module Aws::GuardDuty
     #   finding.
     #   @return [Types::AccessKeyDetails]
     #
+    # @!attribute [rw] s3_bucket_details
+    #   Contains information on the S3 bucket.
+    #   @return [Array<Types::S3BucketDetail>]
+    #
     # @!attribute [rw] instance_details
     #   The information about the EC2 instance associated with the activity
     #   that prompted GuardDuty to generate a finding.
@@ -3235,8 +3827,95 @@ module Aws::GuardDuty
     #
     class Resource < Struct.new(
       :access_key_details,
+      :s3_bucket_details,
       :instance_details,
       :resource_type)
+      SENSITIVE = []
+      include Aws::Structure
+    end
+
+    # Contains information on the S3 bucket.
+    #
+    # @!attribute [rw] arn
+    #   The Amazon Resource Name (ARN) of the S3 bucket.
+    #   @return [String]
+    #
+    # @!attribute [rw] name
+    #   The name of the S3 bucket.
+    #   @return [String]
+    #
+    # @!attribute [rw] type
+    #   Describes whether the bucket is a source or destination bucket.
+    #   @return [String]
+    #
+    # @!attribute [rw] created_at
+    #   The date and time the bucket was created at.
+    #   @return [Time]
+    #
+    # @!attribute [rw] owner
+    #   The owner of the S3 bucket.
+    #   @return [Types::Owner]
+    #
+    # @!attribute [rw] tags
+    #   All tags attached to the S3 bucket
+    #   @return [Array<Types::Tag>]
+    #
+    # @!attribute [rw] default_server_side_encryption
+    #   Describes the server side encryption method used in the S3 bucket.
+    #   @return [Types::DefaultServerSideEncryption]
+    #
+    # @!attribute [rw] public_access
+    #   Describes the public access policies that apply to the S3 bucket.
+    #   @return [Types::PublicAccess]
+    #
+    # @see http://docs.aws.amazon.com/goto/WebAPI/guardduty-2017-11-28/S3BucketDetail AWS API Documentation
+    #
+    class S3BucketDetail < Struct.new(
+      :arn,
+      :name,
+      :type,
+      :created_at,
+      :owner,
+      :tags,
+      :default_server_side_encryption,
+      :public_access)
+      SENSITIVE = []
+      include Aws::Structure
+    end
+
+    # Describes whether S3 data event logs will be enabled as a data source.
+    #
+    # @note When making an API call, you may pass S3LogsConfiguration
+    #   data as a hash:
+    #
+    #       {
+    #         enable: false, # required
+    #       }
+    #
+    # @!attribute [rw] enable
+    #   The status of S3 data event logs as a data source.
+    #   @return [Boolean]
+    #
+    # @see http://docs.aws.amazon.com/goto/WebAPI/guardduty-2017-11-28/S3LogsConfiguration AWS API Documentation
+    #
+    class S3LogsConfiguration < Struct.new(
+      :enable)
+      SENSITIVE = []
+      include Aws::Structure
+    end
+
+    # Describes whether S3 data event logs will be enabled as a data source.
+    #
+    # @!attribute [rw] status
+    #   A value that describes whether S3 data event logs are automatically
+    #   enabled for new members of the organization.
+    #   @return [String]
+    #
+    # @see http://docs.aws.amazon.com/goto/WebAPI/guardduty-2017-11-28/S3LogsConfigurationResult AWS API Documentation
+    #
+    class S3LogsConfigurationResult < Struct.new(
+      :status)
+      SENSITIVE = []
       include Aws::Structure
     end
 
@@ -3256,6 +3935,7 @@ module Aws::GuardDuty
     class SecurityGroup < Struct.new(
       :group_id,
       :group_name)
+      SENSITIVE = []
       include Aws::Structure
     end
 
@@ -3316,6 +3996,7 @@ module Aws::GuardDuty
       :resource_role,
       :service_name,
       :user_feedback)
+      SENSITIVE = []
       include Aws::Structure
     end
 
@@ -3343,6 +4024,7 @@ module Aws::GuardDuty
     class SortCriteria < Struct.new(
       :attribute_name,
       :order_by)
+      SENSITIVE = []
       include Aws::Structure
     end
 
@@ -3369,6 +4051,7 @@ module Aws::GuardDuty
     class StartMonitoringMembersRequest < Struct.new(
       :detector_id,
       :account_ids)
+      SENSITIVE = []
       include Aws::Structure
     end
 
@@ -3381,6 +4064,7 @@ module Aws::GuardDuty
     #
     class StartMonitoringMembersResponse < Struct.new(
       :unprocessed_accounts)
+      SENSITIVE = []
       include Aws::Structure
     end
 
@@ -3406,6 +4090,7 @@ module Aws::GuardDuty
     class StopMonitoringMembersRequest < Struct.new(
       :detector_id,
       :account_ids)
+      SENSITIVE = []
       include Aws::Structure
     end
 
@@ -3419,6 +4104,7 @@ module Aws::GuardDuty
     #
     class StopMonitoringMembersResponse < Struct.new(
       :unprocessed_accounts)
+      SENSITIVE = []
       include Aws::Structure
     end
 
@@ -3437,6 +4123,7 @@ module Aws::GuardDuty
     class Tag < Struct.new(
       :key,
       :value)
+      SENSITIVE = []
       include Aws::Structure
     end
 
@@ -3464,6 +4151,7 @@ module Aws::GuardDuty
     class TagResourceRequest < Struct.new(
       :resource_arn,
       :tags)
+      SENSITIVE = []
       include Aws::Structure
     end
 
@@ -3488,6 +4176,7 @@ module Aws::GuardDuty
     class ThreatIntelligenceDetail < Struct.new(
       :threat_list_name,
       :threat_names)
+      SENSITIVE = []
       include Aws::Structure
     end
 
@@ -3512,6 +4201,7 @@ module Aws::GuardDuty
     class UnarchiveFindingsRequest < Struct.new(
       :detector_id,
       :finding_ids)
+      SENSITIVE = []
       include Aws::Structure
     end
 
@@ -3534,6 +4224,7 @@ module Aws::GuardDuty
     class UnprocessedAccount < Struct.new(
       :account_id,
       :result)
+      SENSITIVE = []
       include Aws::Structure
     end
 
@@ -3558,6 +4249,7 @@ module Aws::GuardDuty
     class UntagResourceRequest < Struct.new(
       :resource_arn,
       :tag_keys)
+      SENSITIVE = []
       include Aws::Structure
     end
 
@@ -3572,6 +4264,11 @@ module Aws::GuardDuty
     #         detector_id: "DetectorId", # required
     #         enable: false,
     #         finding_publishing_frequency: "FIFTEEN_MINUTES", # accepts FIFTEEN_MINUTES, ONE_HOUR, SIX_HOURS
+    #         data_sources: {
+    #           s3_logs: {
+    #             enable: false, # required
+    #           },
+    #         },
     #       }
     #
     # @!attribute [rw] detector_id
@@ -3587,12 +4284,18 @@ module Aws::GuardDuty
     #   such as to CloudWatch Events.
     #   @return [String]
     #
+    # @!attribute [rw] data_sources
+    #   An object that describes which data sources will be updated.
+    #   @return [Types::DataSourceConfigurations]
+    #
     # @see http://docs.aws.amazon.com/goto/WebAPI/guardduty-2017-11-28/UpdateDetectorRequest AWS API Documentation
     #
     class UpdateDetectorRequest < Struct.new(
       :detector_id,
       :enable,
-      :finding_publishing_frequency)
+      :finding_publishing_frequency,
+      :data_sources)
+      SENSITIVE = []
       include Aws::Structure
     end
 
@@ -3667,6 +4370,7 @@ module Aws::GuardDuty
       :action,
       :rank,
       :finding_criteria)
+      SENSITIVE = []
       include Aws::Structure
     end
 
@@ -3678,6 +4382,7 @@ module Aws::GuardDuty
     #
     class UpdateFilterResponse < Struct.new(
       :name)
+      SENSITIVE = []
       include Aws::Structure
     end
 
@@ -3716,6 +4421,7 @@ module Aws::GuardDuty
       :finding_ids,
       :feedback,
       :comments)
+      SENSITIVE = []
       include Aws::Structure
     end
 
@@ -3764,6 +4470,7 @@ module Aws::GuardDuty
       :name,
       :location,
       :activate)
+      SENSITIVE = []
       include Aws::Structure
     end
 
@@ -3771,12 +4478,65 @@ module Aws::GuardDuty
     #
     class UpdateIPSetResponse < Aws::EmptyStructure; end
 
+    # @note When making an API call, you may pass UpdateMemberDetectorsRequest
+    #   data as a hash:
+    #
+    #       {
+    #         detector_id: "DetectorId", # required
+    #         account_ids: ["AccountId"], # required
+    #         data_sources: {
+    #           s3_logs: {
+    #             enable: false, # required
+    #           },
+    #         },
+    #       }
+    #
+    # @!attribute [rw] detector_id
+    #   The detector ID of the master account.
+    #   @return [String]
+    #
+    # @!attribute [rw] account_ids
+    #   A list of member account IDs to be updated.
+    #   @return [Array<String>]
+    #
+    # @!attribute [rw] data_sources
+    #   An object describes which data sources will be updated.
+    #   @return [Types::DataSourceConfigurations]
+    #
+    # @see http://docs.aws.amazon.com/goto/WebAPI/guardduty-2017-11-28/UpdateMemberDetectorsRequest AWS API Documentation
+    #
+    class UpdateMemberDetectorsRequest < Struct.new(
+      :detector_id,
+      :account_ids,
+      :data_sources)
+      SENSITIVE = []
+      include Aws::Structure
+    end
+
+    # @!attribute [rw] unprocessed_accounts
+    #   A list of member account IDs that were unable to be processed along
+    #   with an explanation for why they were not processed.
+    #   @return [Array<Types::UnprocessedAccount>]
+    #
+    # @see http://docs.aws.amazon.com/goto/WebAPI/guardduty-2017-11-28/UpdateMemberDetectorsResponse AWS API Documentation
+    #
+    class UpdateMemberDetectorsResponse < Struct.new(
+      :unprocessed_accounts)
+      SENSITIVE = []
+      include Aws::Structure
+    end
+
     # @note When making an API call, you may pass UpdateOrganizationConfigurationRequest
     #   data as a hash:
     #
     #       {
     #         detector_id: "DetectorId", # required
     #         auto_enable: false, # required
+    #         data_sources: {
+    #           s3_logs: {
+    #             auto_enable: false, # required
+    #           },
+    #         },
     #       }
     #
     # @!attribute [rw] detector_id
@@ -3788,11 +4548,17 @@ module Aws::GuardDuty
     #   organization.
     #   @return [Boolean]
     #
+    # @!attribute [rw] data_sources
+    #   An object describes which data sources will be updated.
+    #   @return [Types::OrganizationDataSourceConfigurations]
+    #
     # @see http://docs.aws.amazon.com/goto/WebAPI/guardduty-2017-11-28/UpdateOrganizationConfigurationRequest AWS API Documentation
     #
     class UpdateOrganizationConfigurationRequest < Struct.new(
       :detector_id,
-      :auto_enable)
+      :auto_enable,
+      :data_sources)
+      SENSITIVE = []
       include Aws::Structure
     end
 
@@ -3832,6 +4598,7 @@ module Aws::GuardDuty
       :detector_id,
       :destination_id,
       :destination_properties)
+      SENSITIVE = []
       include Aws::Structure
     end
 
@@ -3882,6 +4649,7 @@ module Aws::GuardDuty
       :name,
       :location,
       :activate)
+      SENSITIVE = []
       include Aws::Structure
     end