aws-sdk-guardduty 1.49.0 → 1.53.0
Sign up to get free protection for your applications and to get access to all the features.
- checksums.yaml +4 -4
- data/CHANGELOG.md +20 -0
- data/VERSION +1 -1
- data/lib/aws-sdk-guardduty/client.rb +71 -41
- data/lib/aws-sdk-guardduty/client_api.rb +6 -0
- data/lib/aws-sdk-guardduty/types.rb +82 -42
- data/lib/aws-sdk-guardduty.rb +1 -1
- metadata +4 -4
checksums.yaml
CHANGED
@@ -1,7 +1,7 @@
|
|
1
1
|
---
|
2
2
|
SHA256:
|
3
|
-
metadata.gz:
|
4
|
-
data.tar.gz:
|
3
|
+
metadata.gz: 17b3f3bea4ddcd2bc98bb6358d91e3deeacbdcc1624ebc046970b8f2ec814498
|
4
|
+
data.tar.gz: 4a2a233baf7377d8ca1d48fb0ca6f1330a7ac1db47dbb99a229f744ffe5d5cda
|
5
5
|
SHA512:
|
6
|
-
metadata.gz:
|
7
|
-
data.tar.gz:
|
6
|
+
metadata.gz: 19541da8bdeb995280d58b013c01a97d77e0624f78e95e7221de1f1e6c1a517abfea62c3ed45f5489c83096fdb0a02a1d599292ff845b5b1461b16fb107c9076
|
7
|
+
data.tar.gz: b3aa2a323a1eb62110fa1e15ffd30cedc5ad428b400447e282e03cd73fdfcf94278aad93978fe8c78fc1926a3edb3dcd24298f0df7f5766f1a8cb00e36e65a92
|
data/CHANGELOG.md
CHANGED
@@ -1,6 +1,26 @@
|
|
1
1
|
Unreleased Changes
|
2
2
|
------------------
|
3
3
|
|
4
|
+
1.53.0 (2022-01-20)
|
5
|
+
------------------
|
6
|
+
|
7
|
+
* Feature - Amazon GuardDuty findings now include remoteAccountDetails under AwsApiCallAction section if instance credential is exfiltrated.
|
8
|
+
|
9
|
+
1.52.0 (2021-12-21)
|
10
|
+
------------------
|
11
|
+
|
12
|
+
* Feature - Code Generated Changes, see `./build_tools` or `aws-sdk-core`'s CHANGELOG.md for details.
|
13
|
+
|
14
|
+
1.51.0 (2021-11-30)
|
15
|
+
------------------
|
16
|
+
|
17
|
+
* Feature - Code Generated Changes, see `./build_tools` or `aws-sdk-core`'s CHANGELOG.md for details.
|
18
|
+
|
19
|
+
1.50.0 (2021-11-04)
|
20
|
+
------------------
|
21
|
+
|
22
|
+
* Feature - Code Generated Changes, see `./build_tools` or `aws-sdk-core`'s CHANGELOG.md for details.
|
23
|
+
|
4
24
|
1.49.0 (2021-10-18)
|
5
25
|
------------------
|
6
26
|
|
data/VERSION
CHANGED
@@ -1 +1 @@
|
|
1
|
-
1.
|
1
|
+
1.53.0
|
@@ -27,6 +27,7 @@ require 'aws-sdk-core/plugins/client_metrics_plugin.rb'
|
|
27
27
|
require 'aws-sdk-core/plugins/client_metrics_send_plugin.rb'
|
28
28
|
require 'aws-sdk-core/plugins/transfer_encoding.rb'
|
29
29
|
require 'aws-sdk-core/plugins/http_checksum.rb'
|
30
|
+
require 'aws-sdk-core/plugins/defaults_mode.rb'
|
30
31
|
require 'aws-sdk-core/plugins/signature_v4.rb'
|
31
32
|
require 'aws-sdk-core/plugins/protocols/rest_json.rb'
|
32
33
|
|
@@ -73,6 +74,7 @@ module Aws::GuardDuty
|
|
73
74
|
add_plugin(Aws::Plugins::ClientMetricsSendPlugin)
|
74
75
|
add_plugin(Aws::Plugins::TransferEncoding)
|
75
76
|
add_plugin(Aws::Plugins::HttpChecksum)
|
77
|
+
add_plugin(Aws::Plugins::DefaultsMode)
|
76
78
|
add_plugin(Aws::Plugins::SignatureV4)
|
77
79
|
add_plugin(Aws::Plugins::Protocols::RestJson)
|
78
80
|
|
@@ -119,7 +121,9 @@ module Aws::GuardDuty
|
|
119
121
|
# * EC2/ECS IMDS instance profile - When used by default, the timeouts
|
120
122
|
# are very aggressive. Construct and pass an instance of
|
121
123
|
# `Aws::InstanceProfileCredentails` or `Aws::ECSCredentials` to
|
122
|
-
# enable retries and extended timeouts.
|
124
|
+
# enable retries and extended timeouts. Instance profile credential
|
125
|
+
# fetching can be disabled by setting ENV['AWS_EC2_METADATA_DISABLED']
|
126
|
+
# to true.
|
123
127
|
#
|
124
128
|
# @option options [required, String] :region
|
125
129
|
# The AWS region to connect to. The configured `:region` is
|
@@ -173,6 +177,10 @@ module Aws::GuardDuty
|
|
173
177
|
# Used only in `standard` and adaptive retry modes. Specifies whether to apply
|
174
178
|
# a clock skew correction and retry requests with skewed client clocks.
|
175
179
|
#
|
180
|
+
# @option options [String] :defaults_mode ("legacy")
|
181
|
+
# See {Aws::DefaultsModeConfiguration} for a list of the
|
182
|
+
# accepted modes and the configuration defaults that are included.
|
183
|
+
#
|
176
184
|
# @option options [Boolean] :disable_host_prefix_injection (false)
|
177
185
|
# Set to true to disable SDK automatically adding host prefix
|
178
186
|
# to default service endpoint when available.
|
@@ -275,6 +283,15 @@ module Aws::GuardDuty
|
|
275
283
|
# ** Please note ** When response stubbing is enabled, no HTTP
|
276
284
|
# requests are made, and retries are disabled.
|
277
285
|
#
|
286
|
+
# @option options [Boolean] :use_dualstack_endpoint
|
287
|
+
# When set to `true`, dualstack enabled endpoints (with `.aws` TLD)
|
288
|
+
# will be used if available.
|
289
|
+
#
|
290
|
+
# @option options [Boolean] :use_fips_endpoint
|
291
|
+
# When set to `true`, fips compatible endpoints will be used if available.
|
292
|
+
# When a `fips` region is used, the region is normalized and this config
|
293
|
+
# is set to `true`.
|
294
|
+
#
|
278
295
|
# @option options [Boolean] :validate_params (true)
|
279
296
|
# When `true`, request parameters are validated before
|
280
297
|
# sending the request.
|
@@ -286,7 +303,7 @@ module Aws::GuardDuty
|
|
286
303
|
# seconds to wait when opening a HTTP session before raising a
|
287
304
|
# `Timeout::Error`.
|
288
305
|
#
|
289
|
-
# @option options [
|
306
|
+
# @option options [Float] :http_read_timeout (60) The default
|
290
307
|
# number of seconds to wait for response data. This value can
|
291
308
|
# safely be set per-request on the session.
|
292
309
|
#
|
@@ -302,6 +319,9 @@ module Aws::GuardDuty
|
|
302
319
|
# disables this behaviour. This value can safely be set per
|
303
320
|
# request on the session.
|
304
321
|
#
|
322
|
+
# @option options [Float] :ssl_timeout (nil) Sets the SSL timeout
|
323
|
+
# in seconds.
|
324
|
+
#
|
305
325
|
# @option options [Boolean] :http_wire_trace (false) When `true`,
|
306
326
|
# HTTP debug output will be sent to the `:logger`.
|
307
327
|
#
|
@@ -571,6 +591,16 @@ module Aws::GuardDuty
|
|
571
591
|
#
|
572
592
|
# * service.additionalInfo.threatListName
|
573
593
|
#
|
594
|
+
# * resource.s3BucketDetails.publicAccess.effectivePermissions
|
595
|
+
#
|
596
|
+
# * resource.s3BucketDetails.name
|
597
|
+
#
|
598
|
+
# * resource.s3BucketDetails.tags.key
|
599
|
+
#
|
600
|
+
# * resource.s3BucketDetails.tags.value
|
601
|
+
#
|
602
|
+
# * resource.s3BucketDetails.type
|
603
|
+
#
|
574
604
|
# * service.archived
|
575
605
|
#
|
576
606
|
# When this attribute is set to TRUE, only archived findings are
|
@@ -650,10 +680,10 @@ module Aws::GuardDuty
|
|
650
680
|
|
651
681
|
# Creates a new IPSet, which is called a trusted IP list in the console
|
652
682
|
# user interface. An IPSet is a list of IP addresses that are trusted
|
653
|
-
# for secure communication with
|
654
|
-
# GuardDuty doesn't generate findings for IP addresses
|
655
|
-
# included in IPSets. Only users from the administrator account
|
656
|
-
# this operation.
|
683
|
+
# for secure communication with Amazon Web Services infrastructure and
|
684
|
+
# applications. GuardDuty doesn't generate findings for IP addresses
|
685
|
+
# that are included in IPSets. Only users from the administrator account
|
686
|
+
# can use this operation.
|
657
687
|
#
|
658
688
|
# @option params [required, String] :detector_id
|
659
689
|
# The unique ID of the detector of the GuardDuty account that you want
|
@@ -669,8 +699,7 @@ module Aws::GuardDuty
|
|
669
699
|
# The format of the file that contains the IPSet.
|
670
700
|
#
|
671
701
|
# @option params [required, String] :location
|
672
|
-
# The URI of the file that contains the IPSet.
|
673
|
-
# https://s3.us-west-2.amazonaws.com/my-bucket/my-object-key.
|
702
|
+
# The URI of the file that contains the IPSet.
|
674
703
|
#
|
675
704
|
# @option params [required, Boolean] :activate
|
676
705
|
# A Boolean value that indicates whether GuardDuty is to start using the
|
@@ -716,10 +745,10 @@ module Aws::GuardDuty
|
|
716
745
|
req.send_request(options)
|
717
746
|
end
|
718
747
|
|
719
|
-
# Creates member accounts of the current
|
720
|
-
# list of
|
721
|
-
# associated member accounts either by
|
722
|
-
# organization.
|
748
|
+
# Creates member accounts of the current Amazon Web Services account by
|
749
|
+
# specifying a list of Amazon Web Services account IDs. This step is a
|
750
|
+
# prerequisite for managing the associated member accounts either by
|
751
|
+
# invitation or through an organization.
|
723
752
|
#
|
724
753
|
# When using `Create Members` as an organizations delegated
|
725
754
|
# administrator this action will enable GuardDuty in the added member
|
@@ -870,8 +899,7 @@ module Aws::GuardDuty
|
|
870
899
|
# The format of the file that contains the ThreatIntelSet.
|
871
900
|
#
|
872
901
|
# @option params [required, String] :location
|
873
|
-
# The URI of the file that contains the ThreatIntelSet.
|
874
|
-
# https://s3.us-west-2.amazonaws.com/my-bucket/my-object-key.
|
902
|
+
# The URI of the file that contains the ThreatIntelSet.
|
875
903
|
#
|
876
904
|
# @option params [required, Boolean] :activate
|
877
905
|
# A Boolean value that indicates whether GuardDuty is to start using the
|
@@ -917,12 +945,13 @@ module Aws::GuardDuty
|
|
917
945
|
req.send_request(options)
|
918
946
|
end
|
919
947
|
|
920
|
-
# Declines invitations sent to the current member account by
|
921
|
-
# accounts specified by their account IDs.
|
948
|
+
# Declines invitations sent to the current member account by Amazon Web
|
949
|
+
# Services accounts specified by their account IDs.
|
922
950
|
#
|
923
951
|
# @option params [required, Array<String>] :account_ids
|
924
|
-
# A list of account IDs of the
|
925
|
-
# current member account that you want to decline
|
952
|
+
# A list of account IDs of the Amazon Web Services accounts that sent
|
953
|
+
# invitations to the current member account that you want to decline
|
954
|
+
# invitations from.
|
926
955
|
#
|
927
956
|
# @return [Types::DeclineInvitationsResponse] Returns a {Seahorse::Client::Response response} object which responds to the following methods:
|
928
957
|
#
|
@@ -1025,12 +1054,13 @@ module Aws::GuardDuty
|
|
1025
1054
|
req.send_request(options)
|
1026
1055
|
end
|
1027
1056
|
|
1028
|
-
# Deletes invitations sent to the current member account by
|
1029
|
-
# specified by their account IDs.
|
1057
|
+
# Deletes invitations sent to the current member account by Amazon Web
|
1058
|
+
# Services accounts specified by their account IDs.
|
1030
1059
|
#
|
1031
1060
|
# @option params [required, Array<String>] :account_ids
|
1032
|
-
# A list of account IDs of the
|
1033
|
-
# current member account that you want to delete
|
1061
|
+
# A list of account IDs of the Amazon Web Services accounts that sent
|
1062
|
+
# invitations to the current member account that you want to delete
|
1063
|
+
# invitations from.
|
1034
1064
|
#
|
1035
1065
|
# @return [Types::DeleteInvitationsResponse] Returns a {Seahorse::Client::Response response} object which responds to the following methods:
|
1036
1066
|
#
|
@@ -1225,12 +1255,12 @@ module Aws::GuardDuty
|
|
1225
1255
|
req.send_request(options)
|
1226
1256
|
end
|
1227
1257
|
|
1228
|
-
# Disables an
|
1229
|
-
# delegated administrator.
|
1258
|
+
# Disables an Amazon Web Services account within the Organization as the
|
1259
|
+
# GuardDuty delegated administrator.
|
1230
1260
|
#
|
1231
1261
|
# @option params [required, String] :admin_account_id
|
1232
|
-
# The
|
1233
|
-
# GuardDuty delegated administrator.
|
1262
|
+
# The Amazon Web Services Account ID for the organizations account to be
|
1263
|
+
# disabled as a GuardDuty delegated administrator.
|
1234
1264
|
#
|
1235
1265
|
# @return [Struct] Returns an empty {Seahorse::Client::Response response}.
|
1236
1266
|
#
|
@@ -1309,12 +1339,12 @@ module Aws::GuardDuty
|
|
1309
1339
|
req.send_request(options)
|
1310
1340
|
end
|
1311
1341
|
|
1312
|
-
# Enables an
|
1313
|
-
# delegated administrator.
|
1342
|
+
# Enables an Amazon Web Services account within the organization as the
|
1343
|
+
# GuardDuty delegated administrator.
|
1314
1344
|
#
|
1315
1345
|
# @option params [required, String] :admin_account_id
|
1316
|
-
# The
|
1317
|
-
# GuardDuty delegated administrator.
|
1346
|
+
# The Amazon Web Services Account ID for the organization account to be
|
1347
|
+
# enabled as a GuardDuty delegated administrator.
|
1318
1348
|
#
|
1319
1349
|
# @return [Struct] Returns an empty {Seahorse::Client::Response response}.
|
1320
1350
|
#
|
@@ -1553,6 +1583,8 @@ module Aws::GuardDuty
|
|
1553
1583
|
# resp.findings[0].service.action.aws_api_call_action.remote_ip_details.organization.isp #=> String
|
1554
1584
|
# resp.findings[0].service.action.aws_api_call_action.remote_ip_details.organization.org #=> String
|
1555
1585
|
# resp.findings[0].service.action.aws_api_call_action.service_name #=> String
|
1586
|
+
# resp.findings[0].service.action.aws_api_call_action.remote_account_details.account_id #=> String
|
1587
|
+
# resp.findings[0].service.action.aws_api_call_action.remote_account_details.affiliated #=> Boolean
|
1556
1588
|
# resp.findings[0].service.action.dns_request_action.domain #=> String
|
1557
1589
|
# resp.findings[0].service.action.network_connection_action.blocked #=> Boolean
|
1558
1590
|
# resp.findings[0].service.action.network_connection_action.connection_direction #=> String
|
@@ -1980,10 +2012,11 @@ module Aws::GuardDuty
|
|
1980
2012
|
req.send_request(options)
|
1981
2013
|
end
|
1982
2014
|
|
1983
|
-
# Invites other
|
1984
|
-
# account by CreateMembers) to enable
|
1985
|
-
#
|
1986
|
-
# behalf as the GuardDuty
|
2015
|
+
# Invites other Amazon Web Services accounts (created as members of the
|
2016
|
+
# current Amazon Web Services account by CreateMembers) to enable
|
2017
|
+
# GuardDuty, and allow the current Amazon Web Services account to view
|
2018
|
+
# and manage these accounts' findings on their behalf as the GuardDuty
|
2019
|
+
# administrator account.
|
1987
2020
|
#
|
1988
2021
|
# @option params [required, String] :detector_id
|
1989
2022
|
# The unique ID of the detector of the GuardDuty account that you want
|
@@ -2205,8 +2238,6 @@ module Aws::GuardDuty
|
|
2205
2238
|
#
|
2206
2239
|
# * service.action.networkConnectionAction.protocol
|
2207
2240
|
#
|
2208
|
-
# * service.action.networkConnectionAction.remoteIpDetails.city.cityName
|
2209
|
-
#
|
2210
2241
|
# * service.action.networkConnectionAction.remoteIpDetails.country.countryName
|
2211
2242
|
#
|
2212
2243
|
# * service.action.networkConnectionAction.remoteIpDetails.ipAddressV4
|
@@ -2353,7 +2384,7 @@ module Aws::GuardDuty
|
|
2353
2384
|
end
|
2354
2385
|
|
2355
2386
|
# Lists all GuardDuty membership invitations that were sent to the
|
2356
|
-
# current
|
2387
|
+
# current Amazon Web Services account.
|
2357
2388
|
#
|
2358
2389
|
# @option params [Integer] :max_results
|
2359
2390
|
# You can use this parameter to indicate the maximum number of items
|
@@ -2502,7 +2533,7 @@ module Aws::GuardDuty
|
|
2502
2533
|
end
|
2503
2534
|
|
2504
2535
|
# Returns a list of publishing destinations associated with the
|
2505
|
-
# specified `
|
2536
|
+
# specified `detectorId`.
|
2506
2537
|
#
|
2507
2538
|
# @option params [required, String] :detector_id
|
2508
2539
|
# The ID of the detector to retrieve publishing destinations for.
|
@@ -2945,8 +2976,7 @@ module Aws::GuardDuty
|
|
2945
2976
|
# The unique ID that specifies the IPSet that you want to update.
|
2946
2977
|
#
|
2947
2978
|
# @option params [String] :location
|
2948
|
-
# The updated URI of the file that contains the IPSet.
|
2949
|
-
# https://s3.us-west-2.amazonaws.com/my-bucket/my-object-key.
|
2979
|
+
# The updated URI of the file that contains the IPSet.
|
2950
2980
|
#
|
2951
2981
|
# @option params [Boolean] :activate
|
2952
2982
|
# The updated Boolean value that specifies whether the IPSet is active
|
@@ -3141,7 +3171,7 @@ module Aws::GuardDuty
|
|
3141
3171
|
params: params,
|
3142
3172
|
config: config)
|
3143
3173
|
context[:gem_name] = 'aws-sdk-guardduty'
|
3144
|
-
context[:gem_version] = '1.
|
3174
|
+
context[:gem_version] = '1.53.0'
|
3145
3175
|
Seahorse::Client::Request.new(handlers, context)
|
3146
3176
|
end
|
3147
3177
|
|
@@ -211,6 +211,7 @@ module Aws::GuardDuty
|
|
211
211
|
ProductCodes = Shapes::ListShape.new(name: 'ProductCodes')
|
212
212
|
PublicAccess = Shapes::StructureShape.new(name: 'PublicAccess')
|
213
213
|
PublishingStatus = Shapes::StringShape.new(name: 'PublishingStatus')
|
214
|
+
RemoteAccountDetails = Shapes::StructureShape.new(name: 'RemoteAccountDetails')
|
214
215
|
RemoteIpDetails = Shapes::StructureShape.new(name: 'RemoteIpDetails')
|
215
216
|
RemotePortDetails = Shapes::StructureShape.new(name: 'RemotePortDetails')
|
216
217
|
Resource = Shapes::StructureShape.new(name: 'Resource')
|
@@ -329,6 +330,7 @@ module Aws::GuardDuty
|
|
329
330
|
AwsApiCallAction.add_member(:error_code, Shapes::ShapeRef.new(shape: String, location_name: "errorCode"))
|
330
331
|
AwsApiCallAction.add_member(:remote_ip_details, Shapes::ShapeRef.new(shape: RemoteIpDetails, location_name: "remoteIpDetails"))
|
331
332
|
AwsApiCallAction.add_member(:service_name, Shapes::ShapeRef.new(shape: String, location_name: "serviceName"))
|
333
|
+
AwsApiCallAction.add_member(:remote_account_details, Shapes::ShapeRef.new(shape: RemoteAccountDetails, location_name: "remoteAccountDetails"))
|
332
334
|
AwsApiCallAction.struct_class = Types::AwsApiCallAction
|
333
335
|
|
334
336
|
BadRequestException.add_member(:message, Shapes::ShapeRef.new(shape: String, location_name: "message"))
|
@@ -963,6 +965,10 @@ module Aws::GuardDuty
|
|
963
965
|
PublicAccess.add_member(:effective_permission, Shapes::ShapeRef.new(shape: String, location_name: "effectivePermission"))
|
964
966
|
PublicAccess.struct_class = Types::PublicAccess
|
965
967
|
|
968
|
+
RemoteAccountDetails.add_member(:account_id, Shapes::ShapeRef.new(shape: String, location_name: "accountId"))
|
969
|
+
RemoteAccountDetails.add_member(:affiliated, Shapes::ShapeRef.new(shape: Boolean, location_name: "affiliated"))
|
970
|
+
RemoteAccountDetails.struct_class = Types::RemoteAccountDetails
|
971
|
+
|
966
972
|
RemoteIpDetails.add_member(:city, Shapes::ShapeRef.new(shape: City, location_name: "city"))
|
967
973
|
RemoteIpDetails.add_member(:country, Shapes::ShapeRef.new(shape: Country, location_name: "country"))
|
968
974
|
RemoteIpDetails.add_member(:geo_location, Shapes::ShapeRef.new(shape: GeoLocation, location_name: "geoLocation"))
|
@@ -181,7 +181,7 @@ module Aws::GuardDuty
|
|
181
181
|
# delegated administrator.
|
182
182
|
#
|
183
183
|
# @!attribute [rw] admin_account_id
|
184
|
-
# The
|
184
|
+
# The Amazon Web Services account ID for the account.
|
185
185
|
# @return [String]
|
186
186
|
#
|
187
187
|
# @!attribute [rw] admin_status
|
@@ -231,30 +231,36 @@ module Aws::GuardDuty
|
|
231
231
|
# Contains information about the API action.
|
232
232
|
#
|
233
233
|
# @!attribute [rw] api
|
234
|
-
# The
|
234
|
+
# The Amazon Web Services API name.
|
235
235
|
# @return [String]
|
236
236
|
#
|
237
237
|
# @!attribute [rw] caller_type
|
238
|
-
# The
|
238
|
+
# The Amazon Web Services API caller type.
|
239
239
|
# @return [String]
|
240
240
|
#
|
241
241
|
# @!attribute [rw] domain_details
|
242
|
-
# The domain information for the
|
242
|
+
# The domain information for the Amazon Web Services API call.
|
243
243
|
# @return [Types::DomainDetails]
|
244
244
|
#
|
245
245
|
# @!attribute [rw] error_code
|
246
|
-
# The error code of the failed
|
246
|
+
# The error code of the failed Amazon Web Services API action.
|
247
247
|
# @return [String]
|
248
248
|
#
|
249
249
|
# @!attribute [rw] remote_ip_details
|
250
|
-
# The remote IP information of the connection that initiated the
|
251
|
-
# API call.
|
250
|
+
# The remote IP information of the connection that initiated the
|
251
|
+
# Amazon Web Services API call.
|
252
252
|
# @return [Types::RemoteIpDetails]
|
253
253
|
#
|
254
254
|
# @!attribute [rw] service_name
|
255
|
-
# The
|
255
|
+
# The Amazon Web Services service name whose API was invoked.
|
256
256
|
# @return [String]
|
257
257
|
#
|
258
|
+
# @!attribute [rw] remote_account_details
|
259
|
+
# The details of the Amazon Web Services account that made the API
|
260
|
+
# call. This field appears if the call was made from outside your
|
261
|
+
# account.
|
262
|
+
# @return [Types::RemoteAccountDetails]
|
263
|
+
#
|
258
264
|
# @see http://docs.aws.amazon.com/goto/WebAPI/guardduty-2017-11-28/AwsApiCallAction AWS API Documentation
|
259
265
|
#
|
260
266
|
class AwsApiCallAction < Struct.new(
|
@@ -263,7 +269,8 @@ module Aws::GuardDuty
|
|
263
269
|
:domain_details,
|
264
270
|
:error_code,
|
265
271
|
:remote_ip_details,
|
266
|
-
:service_name
|
272
|
+
:service_name,
|
273
|
+
:remote_account_details)
|
267
274
|
SENSITIVE = []
|
268
275
|
include Aws::Structure
|
269
276
|
end
|
@@ -742,6 +749,16 @@ module Aws::GuardDuty
|
|
742
749
|
#
|
743
750
|
# * service.additionalInfo.threatListName
|
744
751
|
#
|
752
|
+
# * resource.s3BucketDetails.publicAccess.effectivePermissions
|
753
|
+
#
|
754
|
+
# * resource.s3BucketDetails.name
|
755
|
+
#
|
756
|
+
# * resource.s3BucketDetails.tags.key
|
757
|
+
#
|
758
|
+
# * resource.s3BucketDetails.tags.value
|
759
|
+
#
|
760
|
+
# * resource.s3BucketDetails.type
|
761
|
+
#
|
745
762
|
# * service.archived
|
746
763
|
#
|
747
764
|
# When this attribute is set to TRUE, only archived findings are
|
@@ -832,8 +849,7 @@ module Aws::GuardDuty
|
|
832
849
|
# @return [String]
|
833
850
|
#
|
834
851
|
# @!attribute [rw] location
|
835
|
-
# The URI of the file that contains the IPSet.
|
836
|
-
# https://s3.us-west-2.amazonaws.com/my-bucket/my-object-key.
|
852
|
+
# The URI of the file that contains the IPSet.
|
837
853
|
# @return [String]
|
838
854
|
#
|
839
855
|
# @!attribute [rw] activate
|
@@ -1041,8 +1057,7 @@ module Aws::GuardDuty
|
|
1041
1057
|
# @return [String]
|
1042
1058
|
#
|
1043
1059
|
# @!attribute [rw] location
|
1044
|
-
# The URI of the file that contains the ThreatIntelSet.
|
1045
|
-
# https://s3.us-west-2.amazonaws.com/my-bucket/my-object-key.
|
1060
|
+
# The URI of the file that contains the ThreatIntelSet.
|
1046
1061
|
# @return [String]
|
1047
1062
|
#
|
1048
1063
|
# @!attribute [rw] activate
|
@@ -1165,9 +1180,9 @@ module Aws::GuardDuty
|
|
1165
1180
|
# }
|
1166
1181
|
#
|
1167
1182
|
# @!attribute [rw] account_ids
|
1168
|
-
# A list of account IDs of the
|
1169
|
-
# the current member account that you want to decline
|
1170
|
-
# from.
|
1183
|
+
# A list of account IDs of the Amazon Web Services accounts that sent
|
1184
|
+
# invitations to the current member account that you want to decline
|
1185
|
+
# invitations from.
|
1171
1186
|
# @return [Array<String>]
|
1172
1187
|
#
|
1173
1188
|
# @see http://docs.aws.amazon.com/goto/WebAPI/guardduty-2017-11-28/DeclineInvitationsRequest AWS API Documentation
|
@@ -1305,8 +1320,9 @@ module Aws::GuardDuty
|
|
1305
1320
|
# }
|
1306
1321
|
#
|
1307
1322
|
# @!attribute [rw] account_ids
|
1308
|
-
# A list of account IDs of the
|
1309
|
-
# the current member account that you want to delete
|
1323
|
+
# A list of account IDs of the Amazon Web Services accounts that sent
|
1324
|
+
# invitations to the current member account that you want to delete
|
1325
|
+
# invitations from.
|
1310
1326
|
# @return [Array<String>]
|
1311
1327
|
#
|
1312
1328
|
# @see http://docs.aws.amazon.com/goto/WebAPI/guardduty-2017-11-28/DeleteInvitationsRequest AWS API Documentation
|
@@ -1576,6 +1592,9 @@ module Aws::GuardDuty
|
|
1576
1592
|
#
|
1577
1593
|
# @!attribute [rw] destination_arn
|
1578
1594
|
# The ARN of the resource to publish to.
|
1595
|
+
#
|
1596
|
+
# To specify an S3 bucket folder use the following format:
|
1597
|
+
# `arn:aws:s3:::DOC-EXAMPLE-BUCKET/myFolder/`
|
1579
1598
|
# @return [String]
|
1580
1599
|
#
|
1581
1600
|
# @!attribute [rw] kms_key_arn
|
@@ -1599,8 +1618,8 @@ module Aws::GuardDuty
|
|
1599
1618
|
# }
|
1600
1619
|
#
|
1601
1620
|
# @!attribute [rw] admin_account_id
|
1602
|
-
# The
|
1603
|
-
# GuardDuty delegated administrator.
|
1621
|
+
# The Amazon Web Services Account ID for the organizations account to
|
1622
|
+
# be disabled as a GuardDuty delegated administrator.
|
1604
1623
|
# @return [String]
|
1605
1624
|
#
|
1606
1625
|
# @see http://docs.aws.amazon.com/goto/WebAPI/guardduty-2017-11-28/DisableOrganizationAdminAccountRequest AWS API Documentation
|
@@ -1696,7 +1715,7 @@ module Aws::GuardDuty
|
|
1696
1715
|
# Contains information about the domain.
|
1697
1716
|
#
|
1698
1717
|
# @!attribute [rw] domain
|
1699
|
-
# The domain information for the
|
1718
|
+
# The domain information for the Amazon Web Services API call.
|
1700
1719
|
# @return [String]
|
1701
1720
|
#
|
1702
1721
|
# @see http://docs.aws.amazon.com/goto/WebAPI/guardduty-2017-11-28/DomainDetails AWS API Documentation
|
@@ -1715,8 +1734,8 @@ module Aws::GuardDuty
|
|
1715
1734
|
# }
|
1716
1735
|
#
|
1717
1736
|
# @!attribute [rw] admin_account_id
|
1718
|
-
# The
|
1719
|
-
# GuardDuty delegated administrator.
|
1737
|
+
# The Amazon Web Services Account ID for the organization account to
|
1738
|
+
# be enabled as a GuardDuty delegated administrator.
|
1720
1739
|
# @return [String]
|
1721
1740
|
#
|
1722
1741
|
# @see http://docs.aws.amazon.com/goto/WebAPI/guardduty-2017-11-28/EnableOrganizationAdminAccountRequest AWS API Documentation
|
@@ -1781,8 +1800,9 @@ module Aws::GuardDuty
|
|
1781
1800
|
# @return [String]
|
1782
1801
|
#
|
1783
1802
|
# @!attribute [rw] resource
|
1784
|
-
# Contains information about the
|
1785
|
-
# activity that prompted GuardDuty to generate a
|
1803
|
+
# Contains information about the Amazon Web Services resource
|
1804
|
+
# associated with the activity that prompted GuardDuty to generate a
|
1805
|
+
# finding.
|
1786
1806
|
# @return [Types::Resource]
|
1787
1807
|
#
|
1788
1808
|
# @!attribute [rw] schema_version
|
@@ -2185,8 +2205,7 @@ module Aws::GuardDuty
|
|
2185
2205
|
# @return [String]
|
2186
2206
|
#
|
2187
2207
|
# @!attribute [rw] location
|
2188
|
-
# The URI of the file that contains the IPSet.
|
2189
|
-
# https://s3.us-west-2.amazonaws.com/my-bucket/my-object-key.
|
2208
|
+
# The URI of the file that contains the IPSet.
|
2190
2209
|
# @return [String]
|
2191
2210
|
#
|
2192
2211
|
# @!attribute [rw] status
|
@@ -2384,8 +2403,7 @@ module Aws::GuardDuty
|
|
2384
2403
|
# @return [String]
|
2385
2404
|
#
|
2386
2405
|
# @!attribute [rw] location
|
2387
|
-
# The URI of the file that contains the ThreatIntelSet.
|
2388
|
-
# https://s3.us-west-2.amazonaws.com/my-bucket/my-object-key.
|
2406
|
+
# The URI of the file that contains the ThreatIntelSet.
|
2389
2407
|
# @return [String]
|
2390
2408
|
#
|
2391
2409
|
# @!attribute [rw] status
|
@@ -2536,8 +2554,8 @@ module Aws::GuardDuty
|
|
2536
2554
|
# @return [String]
|
2537
2555
|
#
|
2538
2556
|
# @!attribute [rw] outpost_arn
|
2539
|
-
# The Amazon Resource Name (ARN) of the
|
2540
|
-
# to
|
2557
|
+
# The Amazon Resource Name (ARN) of the Amazon Web Services Outpost.
|
2558
|
+
# Only applicable to Amazon Web Services Outposts instances.
|
2541
2559
|
# @return [String]
|
2542
2560
|
#
|
2543
2561
|
# @!attribute [rw] launch_time
|
@@ -2903,8 +2921,6 @@ module Aws::GuardDuty
|
|
2903
2921
|
#
|
2904
2922
|
# * service.action.networkConnectionAction.protocol
|
2905
2923
|
#
|
2906
|
-
# * service.action.networkConnectionAction.remoteIpDetails.city.cityName
|
2907
|
-
#
|
2908
2924
|
# * service.action.networkConnectionAction.remoteIpDetails.country.countryName
|
2909
2925
|
#
|
2910
2926
|
# * service.action.networkConnectionAction.remoteIpDetails.ipAddressV4
|
@@ -3833,6 +3849,29 @@ module Aws::GuardDuty
|
|
3833
3849
|
include Aws::Structure
|
3834
3850
|
end
|
3835
3851
|
|
3852
|
+
# Contains details about the remote Amazon Web Services account that
|
3853
|
+
# made the API call.
|
3854
|
+
#
|
3855
|
+
# @!attribute [rw] account_id
|
3856
|
+
# The Amazon Web Services account ID of the remote API caller.
|
3857
|
+
# @return [String]
|
3858
|
+
#
|
3859
|
+
# @!attribute [rw] affiliated
|
3860
|
+
# Details on whether the Amazon Web Services account of the remote API
|
3861
|
+
# caller is related to your GuardDuty environment. If this value is
|
3862
|
+
# `True` the API caller is affiliated to your account in some way. If
|
3863
|
+
# it is `False` the API caller is from outside your environment.
|
3864
|
+
# @return [Boolean]
|
3865
|
+
#
|
3866
|
+
# @see http://docs.aws.amazon.com/goto/WebAPI/guardduty-2017-11-28/RemoteAccountDetails AWS API Documentation
|
3867
|
+
#
|
3868
|
+
class RemoteAccountDetails < Struct.new(
|
3869
|
+
:account_id,
|
3870
|
+
:affiliated)
|
3871
|
+
SENSITIVE = []
|
3872
|
+
include Aws::Structure
|
3873
|
+
end
|
3874
|
+
|
3836
3875
|
# Contains information about the remote IP address of the connection.
|
3837
3876
|
#
|
3838
3877
|
# @!attribute [rw] city
|
@@ -3886,8 +3925,8 @@ module Aws::GuardDuty
|
|
3886
3925
|
include Aws::Structure
|
3887
3926
|
end
|
3888
3927
|
|
3889
|
-
# Contains information about the
|
3890
|
-
# activity that prompted GuardDuty to generate a finding.
|
3928
|
+
# Contains information about the Amazon Web Services resource associated
|
3929
|
+
# with the activity that prompted GuardDuty to generate a finding.
|
3891
3930
|
#
|
3892
3931
|
# @!attribute [rw] access_key_details
|
3893
3932
|
# The IAM access key details (IAM user information) of a user that
|
@@ -3905,7 +3944,7 @@ module Aws::GuardDuty
|
|
3905
3944
|
# @return [Types::InstanceDetails]
|
3906
3945
|
#
|
3907
3946
|
# @!attribute [rw] resource_type
|
3908
|
-
# The type of
|
3947
|
+
# The type of Amazon Web Services resource.
|
3909
3948
|
# @return [String]
|
3910
3949
|
#
|
3911
3950
|
# @see http://docs.aws.amazon.com/goto/WebAPI/guardduty-2017-11-28/Resource AWS API Documentation
|
@@ -4061,7 +4100,8 @@ module Aws::GuardDuty
|
|
4061
4100
|
# @return [String]
|
4062
4101
|
#
|
4063
4102
|
# @!attribute [rw] service_name
|
4064
|
-
# The name of the
|
4103
|
+
# The name of the Amazon Web Services service (GuardDuty) that
|
4104
|
+
# generated a finding.
|
4065
4105
|
# @return [String]
|
4066
4106
|
#
|
4067
4107
|
# @!attribute [rw] user_feedback
|
@@ -4317,7 +4357,7 @@ module Aws::GuardDuty
|
|
4317
4357
|
# Contains information about the accounts that weren't processed.
|
4318
4358
|
#
|
4319
4359
|
# @!attribute [rw] account_id
|
4320
|
-
# The
|
4360
|
+
# The Amazon Web Services account ID.
|
4321
4361
|
# @return [String]
|
4322
4362
|
#
|
4323
4363
|
# @!attribute [rw] result
|
@@ -4559,8 +4599,7 @@ module Aws::GuardDuty
|
|
4559
4599
|
# @return [String]
|
4560
4600
|
#
|
4561
4601
|
# @!attribute [rw] location
|
4562
|
-
# The updated URI of the file that contains the IPSet.
|
4563
|
-
# https://s3.us-west-2.amazonaws.com/my-bucket/my-object-key.
|
4602
|
+
# The updated URI of the file that contains the IPSet.
|
4564
4603
|
# @return [String]
|
4565
4604
|
#
|
4566
4605
|
# @!attribute [rw] activate
|
@@ -4836,10 +4875,11 @@ module Aws::GuardDuty
|
|
4836
4875
|
include Aws::Structure
|
4837
4876
|
end
|
4838
4877
|
|
4839
|
-
# Contains information on the sum of usage based on an
|
4878
|
+
# Contains information on the sum of usage based on an Amazon Web
|
4879
|
+
# Services resource.
|
4840
4880
|
#
|
4841
4881
|
# @!attribute [rw] resource
|
4842
|
-
# The
|
4882
|
+
# The Amazon Web Services resource that generated usage.
|
4843
4883
|
# @return [String]
|
4844
4884
|
#
|
4845
4885
|
# @!attribute [rw] total
|
data/lib/aws-sdk-guardduty.rb
CHANGED
metadata
CHANGED
@@ -1,14 +1,14 @@
|
|
1
1
|
--- !ruby/object:Gem::Specification
|
2
2
|
name: aws-sdk-guardduty
|
3
3
|
version: !ruby/object:Gem::Version
|
4
|
-
version: 1.
|
4
|
+
version: 1.53.0
|
5
5
|
platform: ruby
|
6
6
|
authors:
|
7
7
|
- Amazon Web Services
|
8
8
|
autorequire:
|
9
9
|
bindir: bin
|
10
10
|
cert_chain: []
|
11
|
-
date:
|
11
|
+
date: 2022-01-20 00:00:00.000000000 Z
|
12
12
|
dependencies:
|
13
13
|
- !ruby/object:Gem::Dependency
|
14
14
|
name: aws-sdk-core
|
@@ -19,7 +19,7 @@ dependencies:
|
|
19
19
|
version: '3'
|
20
20
|
- - ">="
|
21
21
|
- !ruby/object:Gem::Version
|
22
|
-
version: 3.
|
22
|
+
version: 3.125.0
|
23
23
|
type: :runtime
|
24
24
|
prerelease: false
|
25
25
|
version_requirements: !ruby/object:Gem::Requirement
|
@@ -29,7 +29,7 @@ dependencies:
|
|
29
29
|
version: '3'
|
30
30
|
- - ">="
|
31
31
|
- !ruby/object:Gem::Version
|
32
|
-
version: 3.
|
32
|
+
version: 3.125.0
|
33
33
|
- !ruby/object:Gem::Dependency
|
34
34
|
name: aws-sigv4
|
35
35
|
requirement: !ruby/object:Gem::Requirement
|