aws-sdk-guardduty 1.51.0 → 1.55.0
Sign up to get free protection for your applications and to get access to all the features.
- checksums.yaml +4 -4
- data/CHANGELOG.md +20 -0
- data/VERSION +1 -1
- data/lib/aws-sdk-guardduty/client.rb +134 -42
- data/lib/aws-sdk-guardduty/client_api.rb +129 -0
- data/lib/aws-sdk-guardduty/types.rb +608 -49
- data/lib/aws-sdk-guardduty.rb +1 -1
- metadata +4 -4
checksums.yaml
CHANGED
|
@@ -1,7 +1,7 @@
|
|
|
1
1
|
---
|
|
2
2
|
SHA256:
|
|
3
|
-
metadata.gz:
|
|
4
|
-
data.tar.gz:
|
|
3
|
+
metadata.gz: b619e9ca9f9dac75c0278a7fd1e1dff6b6393dd6acf1b0d0739421fdc2956b43
|
|
4
|
+
data.tar.gz: 40dba48313e8760ed519bbf2760fd66001a2c5748038339c0721a85d8d952525
|
|
5
5
|
SHA512:
|
|
6
|
-
metadata.gz:
|
|
7
|
-
data.tar.gz:
|
|
6
|
+
metadata.gz: 285c83c544eb818ada3868fe069ef8fa3fed90a4a1f336e9342d2eccb440bb9c8d6377ff158b4f002cd8be04f5a1de9c7d852e05ef7efe57b4058e3fdd9881b4
|
|
7
|
+
data.tar.gz: bd63364fa49aac816aad967e2811a1ddc71ead27a6cd5ac803ad3ebb18ad340f4b830597c9b9429e29bb0318322089bb83658f369cb4f312442fd38db4f77575
|
data/CHANGELOG.md
CHANGED
|
@@ -1,6 +1,26 @@
|
|
|
1
1
|
Unreleased Changes
|
|
2
2
|
------------------
|
|
3
3
|
|
|
4
|
+
1.55.0 (2022-02-03)
|
|
5
|
+
------------------
|
|
6
|
+
|
|
7
|
+
* Feature - Code Generated Changes, see `./build_tools` or `aws-sdk-core`'s CHANGELOG.md for details.
|
|
8
|
+
|
|
9
|
+
1.54.0 (2022-01-25)
|
|
10
|
+
------------------
|
|
11
|
+
|
|
12
|
+
* Feature - Amazon GuardDuty expands threat detection coverage to protect Amazon Elastic Kubernetes Service (EKS) workloads.
|
|
13
|
+
|
|
14
|
+
1.53.0 (2022-01-20)
|
|
15
|
+
------------------
|
|
16
|
+
|
|
17
|
+
* Feature - Amazon GuardDuty findings now include remoteAccountDetails under AwsApiCallAction section if instance credential is exfiltrated.
|
|
18
|
+
|
|
19
|
+
1.52.0 (2021-12-21)
|
|
20
|
+
------------------
|
|
21
|
+
|
|
22
|
+
* Feature - Code Generated Changes, see `./build_tools` or `aws-sdk-core`'s CHANGELOG.md for details.
|
|
23
|
+
|
|
4
24
|
1.51.0 (2021-11-30)
|
|
5
25
|
------------------
|
|
6
26
|
|
data/VERSION
CHANGED
|
@@ -1 +1 @@
|
|
|
1
|
-
1.
|
|
1
|
+
1.55.0
|
|
@@ -27,6 +27,8 @@ require 'aws-sdk-core/plugins/client_metrics_plugin.rb'
|
|
|
27
27
|
require 'aws-sdk-core/plugins/client_metrics_send_plugin.rb'
|
|
28
28
|
require 'aws-sdk-core/plugins/transfer_encoding.rb'
|
|
29
29
|
require 'aws-sdk-core/plugins/http_checksum.rb'
|
|
30
|
+
require 'aws-sdk-core/plugins/defaults_mode.rb'
|
|
31
|
+
require 'aws-sdk-core/plugins/recursion_detection.rb'
|
|
30
32
|
require 'aws-sdk-core/plugins/signature_v4.rb'
|
|
31
33
|
require 'aws-sdk-core/plugins/protocols/rest_json.rb'
|
|
32
34
|
|
|
@@ -73,6 +75,8 @@ module Aws::GuardDuty
|
|
|
73
75
|
add_plugin(Aws::Plugins::ClientMetricsSendPlugin)
|
|
74
76
|
add_plugin(Aws::Plugins::TransferEncoding)
|
|
75
77
|
add_plugin(Aws::Plugins::HttpChecksum)
|
|
78
|
+
add_plugin(Aws::Plugins::DefaultsMode)
|
|
79
|
+
add_plugin(Aws::Plugins::RecursionDetection)
|
|
76
80
|
add_plugin(Aws::Plugins::SignatureV4)
|
|
77
81
|
add_plugin(Aws::Plugins::Protocols::RestJson)
|
|
78
82
|
|
|
@@ -175,6 +179,10 @@ module Aws::GuardDuty
|
|
|
175
179
|
# Used only in `standard` and adaptive retry modes. Specifies whether to apply
|
|
176
180
|
# a clock skew correction and retry requests with skewed client clocks.
|
|
177
181
|
#
|
|
182
|
+
# @option options [String] :defaults_mode ("legacy")
|
|
183
|
+
# See {Aws::DefaultsModeConfiguration} for a list of the
|
|
184
|
+
# accepted modes and the configuration defaults that are included.
|
|
185
|
+
#
|
|
178
186
|
# @option options [Boolean] :disable_host_prefix_injection (false)
|
|
179
187
|
# Set to true to disable SDK automatically adding host prefix
|
|
180
188
|
# to default service endpoint when available.
|
|
@@ -297,7 +305,7 @@ module Aws::GuardDuty
|
|
|
297
305
|
# seconds to wait when opening a HTTP session before raising a
|
|
298
306
|
# `Timeout::Error`.
|
|
299
307
|
#
|
|
300
|
-
# @option options [
|
|
308
|
+
# @option options [Float] :http_read_timeout (60) The default
|
|
301
309
|
# number of seconds to wait for response data. This value can
|
|
302
310
|
# safely be set per-request on the session.
|
|
303
311
|
#
|
|
@@ -313,6 +321,9 @@ module Aws::GuardDuty
|
|
|
313
321
|
# disables this behaviour. This value can safely be set per
|
|
314
322
|
# request on the session.
|
|
315
323
|
#
|
|
324
|
+
# @option options [Float] :ssl_timeout (nil) Sets the SSL timeout
|
|
325
|
+
# in seconds.
|
|
326
|
+
#
|
|
316
327
|
# @option options [Boolean] :http_wire_trace (false) When `true`,
|
|
317
328
|
# HTTP debug output will be sent to the `:logger`.
|
|
318
329
|
#
|
|
@@ -442,6 +453,11 @@ module Aws::GuardDuty
|
|
|
442
453
|
# s3_logs: {
|
|
443
454
|
# enable: false, # required
|
|
444
455
|
# },
|
|
456
|
+
# kubernetes: {
|
|
457
|
+
# audit_logs: { # required
|
|
458
|
+
# enable: false, # required
|
|
459
|
+
# },
|
|
460
|
+
# },
|
|
445
461
|
# },
|
|
446
462
|
# tags: {
|
|
447
463
|
# "TagKey" => "TagValue",
|
|
@@ -582,6 +598,16 @@ module Aws::GuardDuty
|
|
|
582
598
|
#
|
|
583
599
|
# * service.additionalInfo.threatListName
|
|
584
600
|
#
|
|
601
|
+
# * resource.s3BucketDetails.publicAccess.effectivePermissions
|
|
602
|
+
#
|
|
603
|
+
# * resource.s3BucketDetails.name
|
|
604
|
+
#
|
|
605
|
+
# * resource.s3BucketDetails.tags.key
|
|
606
|
+
#
|
|
607
|
+
# * resource.s3BucketDetails.tags.value
|
|
608
|
+
#
|
|
609
|
+
# * resource.s3BucketDetails.type
|
|
610
|
+
#
|
|
585
611
|
# * service.archived
|
|
586
612
|
#
|
|
587
613
|
# When this attribute is set to TRUE, only archived findings are
|
|
@@ -661,10 +687,10 @@ module Aws::GuardDuty
|
|
|
661
687
|
|
|
662
688
|
# Creates a new IPSet, which is called a trusted IP list in the console
|
|
663
689
|
# user interface. An IPSet is a list of IP addresses that are trusted
|
|
664
|
-
# for secure communication with
|
|
665
|
-
# GuardDuty doesn't generate findings for IP addresses
|
|
666
|
-
# included in IPSets. Only users from the administrator account
|
|
667
|
-
# this operation.
|
|
690
|
+
# for secure communication with Amazon Web Services infrastructure and
|
|
691
|
+
# applications. GuardDuty doesn't generate findings for IP addresses
|
|
692
|
+
# that are included in IPSets. Only users from the administrator account
|
|
693
|
+
# can use this operation.
|
|
668
694
|
#
|
|
669
695
|
# @option params [required, String] :detector_id
|
|
670
696
|
# The unique ID of the detector of the GuardDuty account that you want
|
|
@@ -680,8 +706,7 @@ module Aws::GuardDuty
|
|
|
680
706
|
# The format of the file that contains the IPSet.
|
|
681
707
|
#
|
|
682
708
|
# @option params [required, String] :location
|
|
683
|
-
# The URI of the file that contains the IPSet.
|
|
684
|
-
# https://s3.us-west-2.amazonaws.com/my-bucket/my-object-key.
|
|
709
|
+
# The URI of the file that contains the IPSet.
|
|
685
710
|
#
|
|
686
711
|
# @option params [required, Boolean] :activate
|
|
687
712
|
# A Boolean value that indicates whether GuardDuty is to start using the
|
|
@@ -727,10 +752,10 @@ module Aws::GuardDuty
|
|
|
727
752
|
req.send_request(options)
|
|
728
753
|
end
|
|
729
754
|
|
|
730
|
-
# Creates member accounts of the current
|
|
731
|
-
# list of
|
|
732
|
-
# associated member accounts either by
|
|
733
|
-
# organization.
|
|
755
|
+
# Creates member accounts of the current Amazon Web Services account by
|
|
756
|
+
# specifying a list of Amazon Web Services account IDs. This step is a
|
|
757
|
+
# prerequisite for managing the associated member accounts either by
|
|
758
|
+
# invitation or through an organization.
|
|
734
759
|
#
|
|
735
760
|
# When using `Create Members` as an organizations delegated
|
|
736
761
|
# administrator this action will enable GuardDuty in the added member
|
|
@@ -881,8 +906,7 @@ module Aws::GuardDuty
|
|
|
881
906
|
# The format of the file that contains the ThreatIntelSet.
|
|
882
907
|
#
|
|
883
908
|
# @option params [required, String] :location
|
|
884
|
-
# The URI of the file that contains the ThreatIntelSet.
|
|
885
|
-
# https://s3.us-west-2.amazonaws.com/my-bucket/my-object-key.
|
|
909
|
+
# The URI of the file that contains the ThreatIntelSet.
|
|
886
910
|
#
|
|
887
911
|
# @option params [required, Boolean] :activate
|
|
888
912
|
# A Boolean value that indicates whether GuardDuty is to start using the
|
|
@@ -928,12 +952,13 @@ module Aws::GuardDuty
|
|
|
928
952
|
req.send_request(options)
|
|
929
953
|
end
|
|
930
954
|
|
|
931
|
-
# Declines invitations sent to the current member account by
|
|
932
|
-
# accounts specified by their account IDs.
|
|
955
|
+
# Declines invitations sent to the current member account by Amazon Web
|
|
956
|
+
# Services accounts specified by their account IDs.
|
|
933
957
|
#
|
|
934
958
|
# @option params [required, Array<String>] :account_ids
|
|
935
|
-
# A list of account IDs of the
|
|
936
|
-
# current member account that you want to decline
|
|
959
|
+
# A list of account IDs of the Amazon Web Services accounts that sent
|
|
960
|
+
# invitations to the current member account that you want to decline
|
|
961
|
+
# invitations from.
|
|
937
962
|
#
|
|
938
963
|
# @return [Types::DeclineInvitationsResponse] Returns a {Seahorse::Client::Response response} object which responds to the following methods:
|
|
939
964
|
#
|
|
@@ -1036,12 +1061,13 @@ module Aws::GuardDuty
|
|
|
1036
1061
|
req.send_request(options)
|
|
1037
1062
|
end
|
|
1038
1063
|
|
|
1039
|
-
# Deletes invitations sent to the current member account by
|
|
1040
|
-
# specified by their account IDs.
|
|
1064
|
+
# Deletes invitations sent to the current member account by Amazon Web
|
|
1065
|
+
# Services accounts specified by their account IDs.
|
|
1041
1066
|
#
|
|
1042
1067
|
# @option params [required, Array<String>] :account_ids
|
|
1043
|
-
# A list of account IDs of the
|
|
1044
|
-
# current member account that you want to delete
|
|
1068
|
+
# A list of account IDs of the Amazon Web Services accounts that sent
|
|
1069
|
+
# invitations to the current member account that you want to delete
|
|
1070
|
+
# invitations from.
|
|
1045
1071
|
#
|
|
1046
1072
|
# @return [Types::DeleteInvitationsResponse] Returns a {Seahorse::Client::Response response} object which responds to the following methods:
|
|
1047
1073
|
#
|
|
@@ -1183,6 +1209,7 @@ module Aws::GuardDuty
|
|
|
1183
1209
|
# resp.auto_enable #=> Boolean
|
|
1184
1210
|
# resp.member_account_limit_reached #=> Boolean
|
|
1185
1211
|
# resp.data_sources.s3_logs.auto_enable #=> Boolean
|
|
1212
|
+
# resp.data_sources.kubernetes.audit_logs.auto_enable #=> Boolean
|
|
1186
1213
|
#
|
|
1187
1214
|
# @see http://docs.aws.amazon.com/goto/WebAPI/guardduty-2017-11-28/DescribeOrganizationConfiguration AWS API Documentation
|
|
1188
1215
|
#
|
|
@@ -1236,12 +1263,12 @@ module Aws::GuardDuty
|
|
|
1236
1263
|
req.send_request(options)
|
|
1237
1264
|
end
|
|
1238
1265
|
|
|
1239
|
-
# Disables an
|
|
1240
|
-
# delegated administrator.
|
|
1266
|
+
# Disables an Amazon Web Services account within the Organization as the
|
|
1267
|
+
# GuardDuty delegated administrator.
|
|
1241
1268
|
#
|
|
1242
1269
|
# @option params [required, String] :admin_account_id
|
|
1243
|
-
# The
|
|
1244
|
-
# GuardDuty delegated administrator.
|
|
1270
|
+
# The Amazon Web Services Account ID for the organizations account to be
|
|
1271
|
+
# disabled as a GuardDuty delegated administrator.
|
|
1245
1272
|
#
|
|
1246
1273
|
# @return [Struct] Returns an empty {Seahorse::Client::Response response}.
|
|
1247
1274
|
#
|
|
@@ -1320,12 +1347,12 @@ module Aws::GuardDuty
|
|
|
1320
1347
|
req.send_request(options)
|
|
1321
1348
|
end
|
|
1322
1349
|
|
|
1323
|
-
# Enables an
|
|
1324
|
-
# delegated administrator.
|
|
1350
|
+
# Enables an Amazon Web Services account within the organization as the
|
|
1351
|
+
# GuardDuty delegated administrator.
|
|
1325
1352
|
#
|
|
1326
1353
|
# @option params [required, String] :admin_account_id
|
|
1327
|
-
# The
|
|
1328
|
-
# GuardDuty delegated administrator.
|
|
1354
|
+
# The Amazon Web Services Account ID for the organization account to be
|
|
1355
|
+
# enabled as a GuardDuty delegated administrator.
|
|
1329
1356
|
#
|
|
1330
1357
|
# @return [Struct] Returns an empty {Seahorse::Client::Response response}.
|
|
1331
1358
|
#
|
|
@@ -1376,6 +1403,7 @@ module Aws::GuardDuty
|
|
|
1376
1403
|
# resp.data_sources.dns_logs.status #=> String, one of "ENABLED", "DISABLED"
|
|
1377
1404
|
# resp.data_sources.flow_logs.status #=> String, one of "ENABLED", "DISABLED"
|
|
1378
1405
|
# resp.data_sources.s3_logs.status #=> String, one of "ENABLED", "DISABLED"
|
|
1406
|
+
# resp.data_sources.kubernetes.audit_logs.status #=> String, one of "ENABLED", "DISABLED"
|
|
1379
1407
|
# resp.tags #=> Hash
|
|
1380
1408
|
# resp.tags["TagKey"] #=> String
|
|
1381
1409
|
#
|
|
@@ -1546,6 +1574,36 @@ module Aws::GuardDuty
|
|
|
1546
1574
|
# resp.findings[0].resource.instance_details.tags #=> Array
|
|
1547
1575
|
# resp.findings[0].resource.instance_details.tags[0].key #=> String
|
|
1548
1576
|
# resp.findings[0].resource.instance_details.tags[0].value #=> String
|
|
1577
|
+
# resp.findings[0].resource.eks_cluster_details.name #=> String
|
|
1578
|
+
# resp.findings[0].resource.eks_cluster_details.arn #=> String
|
|
1579
|
+
# resp.findings[0].resource.eks_cluster_details.vpc_id #=> String
|
|
1580
|
+
# resp.findings[0].resource.eks_cluster_details.status #=> String
|
|
1581
|
+
# resp.findings[0].resource.eks_cluster_details.tags #=> Array
|
|
1582
|
+
# resp.findings[0].resource.eks_cluster_details.tags[0].key #=> String
|
|
1583
|
+
# resp.findings[0].resource.eks_cluster_details.tags[0].value #=> String
|
|
1584
|
+
# resp.findings[0].resource.eks_cluster_details.created_at #=> Time
|
|
1585
|
+
# resp.findings[0].resource.kubernetes_details.kubernetes_user_details.username #=> String
|
|
1586
|
+
# resp.findings[0].resource.kubernetes_details.kubernetes_user_details.uid #=> String
|
|
1587
|
+
# resp.findings[0].resource.kubernetes_details.kubernetes_user_details.groups #=> Array
|
|
1588
|
+
# resp.findings[0].resource.kubernetes_details.kubernetes_user_details.groups[0] #=> String
|
|
1589
|
+
# resp.findings[0].resource.kubernetes_details.kubernetes_workload_details.name #=> String
|
|
1590
|
+
# resp.findings[0].resource.kubernetes_details.kubernetes_workload_details.type #=> String
|
|
1591
|
+
# resp.findings[0].resource.kubernetes_details.kubernetes_workload_details.uid #=> String
|
|
1592
|
+
# resp.findings[0].resource.kubernetes_details.kubernetes_workload_details.namespace #=> String
|
|
1593
|
+
# resp.findings[0].resource.kubernetes_details.kubernetes_workload_details.host_network #=> Boolean
|
|
1594
|
+
# resp.findings[0].resource.kubernetes_details.kubernetes_workload_details.containers #=> Array
|
|
1595
|
+
# resp.findings[0].resource.kubernetes_details.kubernetes_workload_details.containers[0].container_runtime #=> String
|
|
1596
|
+
# resp.findings[0].resource.kubernetes_details.kubernetes_workload_details.containers[0].id #=> String
|
|
1597
|
+
# resp.findings[0].resource.kubernetes_details.kubernetes_workload_details.containers[0].name #=> String
|
|
1598
|
+
# resp.findings[0].resource.kubernetes_details.kubernetes_workload_details.containers[0].image #=> String
|
|
1599
|
+
# resp.findings[0].resource.kubernetes_details.kubernetes_workload_details.containers[0].image_prefix #=> String
|
|
1600
|
+
# resp.findings[0].resource.kubernetes_details.kubernetes_workload_details.containers[0].volume_mounts #=> Array
|
|
1601
|
+
# resp.findings[0].resource.kubernetes_details.kubernetes_workload_details.containers[0].volume_mounts[0].name #=> String
|
|
1602
|
+
# resp.findings[0].resource.kubernetes_details.kubernetes_workload_details.containers[0].volume_mounts[0].mount_path #=> String
|
|
1603
|
+
# resp.findings[0].resource.kubernetes_details.kubernetes_workload_details.containers[0].security_context.privileged #=> Boolean
|
|
1604
|
+
# resp.findings[0].resource.kubernetes_details.kubernetes_workload_details.volumes #=> Array
|
|
1605
|
+
# resp.findings[0].resource.kubernetes_details.kubernetes_workload_details.volumes[0].name #=> String
|
|
1606
|
+
# resp.findings[0].resource.kubernetes_details.kubernetes_workload_details.volumes[0].host_path.path #=> String
|
|
1549
1607
|
# resp.findings[0].resource.resource_type #=> String
|
|
1550
1608
|
# resp.findings[0].schema_version #=> String
|
|
1551
1609
|
# resp.findings[0].service.action.action_type #=> String
|
|
@@ -1553,6 +1611,7 @@ module Aws::GuardDuty
|
|
|
1553
1611
|
# resp.findings[0].service.action.aws_api_call_action.caller_type #=> String
|
|
1554
1612
|
# resp.findings[0].service.action.aws_api_call_action.domain_details.domain #=> String
|
|
1555
1613
|
# resp.findings[0].service.action.aws_api_call_action.error_code #=> String
|
|
1614
|
+
# resp.findings[0].service.action.aws_api_call_action.user_agent #=> String
|
|
1556
1615
|
# resp.findings[0].service.action.aws_api_call_action.remote_ip_details.city.city_name #=> String
|
|
1557
1616
|
# resp.findings[0].service.action.aws_api_call_action.remote_ip_details.country.country_code #=> String
|
|
1558
1617
|
# resp.findings[0].service.action.aws_api_call_action.remote_ip_details.country.country_name #=> String
|
|
@@ -1564,6 +1623,8 @@ module Aws::GuardDuty
|
|
|
1564
1623
|
# resp.findings[0].service.action.aws_api_call_action.remote_ip_details.organization.isp #=> String
|
|
1565
1624
|
# resp.findings[0].service.action.aws_api_call_action.remote_ip_details.organization.org #=> String
|
|
1566
1625
|
# resp.findings[0].service.action.aws_api_call_action.service_name #=> String
|
|
1626
|
+
# resp.findings[0].service.action.aws_api_call_action.remote_account_details.account_id #=> String
|
|
1627
|
+
# resp.findings[0].service.action.aws_api_call_action.remote_account_details.affiliated #=> Boolean
|
|
1567
1628
|
# resp.findings[0].service.action.dns_request_action.domain #=> String
|
|
1568
1629
|
# resp.findings[0].service.action.network_connection_action.blocked #=> Boolean
|
|
1569
1630
|
# resp.findings[0].service.action.network_connection_action.connection_direction #=> String
|
|
@@ -1598,6 +1659,23 @@ module Aws::GuardDuty
|
|
|
1598
1659
|
# resp.findings[0].service.action.port_probe_action.port_probe_details[0].remote_ip_details.organization.asn_org #=> String
|
|
1599
1660
|
# resp.findings[0].service.action.port_probe_action.port_probe_details[0].remote_ip_details.organization.isp #=> String
|
|
1600
1661
|
# resp.findings[0].service.action.port_probe_action.port_probe_details[0].remote_ip_details.organization.org #=> String
|
|
1662
|
+
# resp.findings[0].service.action.kubernetes_api_call_action.request_uri #=> String
|
|
1663
|
+
# resp.findings[0].service.action.kubernetes_api_call_action.verb #=> String
|
|
1664
|
+
# resp.findings[0].service.action.kubernetes_api_call_action.source_ips #=> Array
|
|
1665
|
+
# resp.findings[0].service.action.kubernetes_api_call_action.source_ips[0] #=> String
|
|
1666
|
+
# resp.findings[0].service.action.kubernetes_api_call_action.user_agent #=> String
|
|
1667
|
+
# resp.findings[0].service.action.kubernetes_api_call_action.remote_ip_details.city.city_name #=> String
|
|
1668
|
+
# resp.findings[0].service.action.kubernetes_api_call_action.remote_ip_details.country.country_code #=> String
|
|
1669
|
+
# resp.findings[0].service.action.kubernetes_api_call_action.remote_ip_details.country.country_name #=> String
|
|
1670
|
+
# resp.findings[0].service.action.kubernetes_api_call_action.remote_ip_details.geo_location.lat #=> Float
|
|
1671
|
+
# resp.findings[0].service.action.kubernetes_api_call_action.remote_ip_details.geo_location.lon #=> Float
|
|
1672
|
+
# resp.findings[0].service.action.kubernetes_api_call_action.remote_ip_details.ip_address_v4 #=> String
|
|
1673
|
+
# resp.findings[0].service.action.kubernetes_api_call_action.remote_ip_details.organization.asn #=> String
|
|
1674
|
+
# resp.findings[0].service.action.kubernetes_api_call_action.remote_ip_details.organization.asn_org #=> String
|
|
1675
|
+
# resp.findings[0].service.action.kubernetes_api_call_action.remote_ip_details.organization.isp #=> String
|
|
1676
|
+
# resp.findings[0].service.action.kubernetes_api_call_action.remote_ip_details.organization.org #=> String
|
|
1677
|
+
# resp.findings[0].service.action.kubernetes_api_call_action.status_code #=> Integer
|
|
1678
|
+
# resp.findings[0].service.action.kubernetes_api_call_action.parameters #=> String
|
|
1601
1679
|
# resp.findings[0].service.evidence.threat_intelligence_details #=> Array
|
|
1602
1680
|
# resp.findings[0].service.evidence.threat_intelligence_details[0].threat_list_name #=> String
|
|
1603
1681
|
# resp.findings[0].service.evidence.threat_intelligence_details[0].threat_names #=> Array
|
|
@@ -1803,6 +1881,7 @@ module Aws::GuardDuty
|
|
|
1803
1881
|
# resp.member_data_source_configurations[0].data_sources.dns_logs.status #=> String, one of "ENABLED", "DISABLED"
|
|
1804
1882
|
# resp.member_data_source_configurations[0].data_sources.flow_logs.status #=> String, one of "ENABLED", "DISABLED"
|
|
1805
1883
|
# resp.member_data_source_configurations[0].data_sources.s3_logs.status #=> String, one of "ENABLED", "DISABLED"
|
|
1884
|
+
# resp.member_data_source_configurations[0].data_sources.kubernetes.audit_logs.status #=> String, one of "ENABLED", "DISABLED"
|
|
1806
1885
|
# resp.unprocessed_accounts #=> Array
|
|
1807
1886
|
# resp.unprocessed_accounts[0].account_id #=> String
|
|
1808
1887
|
# resp.unprocessed_accounts[0].result #=> String
|
|
@@ -1954,7 +2033,7 @@ module Aws::GuardDuty
|
|
|
1954
2033
|
# usage_statistic_type: "SUM_BY_ACCOUNT", # required, accepts SUM_BY_ACCOUNT, SUM_BY_DATA_SOURCE, SUM_BY_RESOURCE, TOP_RESOURCES
|
|
1955
2034
|
# usage_criteria: { # required
|
|
1956
2035
|
# account_ids: ["AccountId"],
|
|
1957
|
-
# data_sources: ["FLOW_LOGS"], # required, accepts FLOW_LOGS, CLOUD_TRAIL, DNS_LOGS, S3_LOGS
|
|
2036
|
+
# data_sources: ["FLOW_LOGS"], # required, accepts FLOW_LOGS, CLOUD_TRAIL, DNS_LOGS, S3_LOGS, KUBERNETES_AUDIT_LOGS
|
|
1958
2037
|
# resources: ["String"],
|
|
1959
2038
|
# },
|
|
1960
2039
|
# unit: "String",
|
|
@@ -1969,7 +2048,7 @@ module Aws::GuardDuty
|
|
|
1969
2048
|
# resp.usage_statistics.sum_by_account[0].total.amount #=> String
|
|
1970
2049
|
# resp.usage_statistics.sum_by_account[0].total.unit #=> String
|
|
1971
2050
|
# resp.usage_statistics.sum_by_data_source #=> Array
|
|
1972
|
-
# resp.usage_statistics.sum_by_data_source[0].data_source #=> String, one of "FLOW_LOGS", "CLOUD_TRAIL", "DNS_LOGS", "S3_LOGS"
|
|
2051
|
+
# resp.usage_statistics.sum_by_data_source[0].data_source #=> String, one of "FLOW_LOGS", "CLOUD_TRAIL", "DNS_LOGS", "S3_LOGS", "KUBERNETES_AUDIT_LOGS"
|
|
1973
2052
|
# resp.usage_statistics.sum_by_data_source[0].total.amount #=> String
|
|
1974
2053
|
# resp.usage_statistics.sum_by_data_source[0].total.unit #=> String
|
|
1975
2054
|
# resp.usage_statistics.sum_by_resource #=> Array
|
|
@@ -1991,10 +2070,11 @@ module Aws::GuardDuty
|
|
|
1991
2070
|
req.send_request(options)
|
|
1992
2071
|
end
|
|
1993
2072
|
|
|
1994
|
-
# Invites other
|
|
1995
|
-
# account by CreateMembers) to enable
|
|
1996
|
-
#
|
|
1997
|
-
# behalf as the GuardDuty
|
|
2073
|
+
# Invites other Amazon Web Services accounts (created as members of the
|
|
2074
|
+
# current Amazon Web Services account by CreateMembers) to enable
|
|
2075
|
+
# GuardDuty, and allow the current Amazon Web Services account to view
|
|
2076
|
+
# and manage these accounts' findings on their behalf as the GuardDuty
|
|
2077
|
+
# administrator account.
|
|
1998
2078
|
#
|
|
1999
2079
|
# @option params [required, String] :detector_id
|
|
2000
2080
|
# The unique ID of the detector of the GuardDuty account that you want
|
|
@@ -2216,8 +2296,6 @@ module Aws::GuardDuty
|
|
|
2216
2296
|
#
|
|
2217
2297
|
# * service.action.networkConnectionAction.protocol
|
|
2218
2298
|
#
|
|
2219
|
-
# * service.action.networkConnectionAction.remoteIpDetails.city.cityName
|
|
2220
|
-
#
|
|
2221
2299
|
# * service.action.networkConnectionAction.remoteIpDetails.country.countryName
|
|
2222
2300
|
#
|
|
2223
2301
|
# * service.action.networkConnectionAction.remoteIpDetails.ipAddressV4
|
|
@@ -2364,7 +2442,7 @@ module Aws::GuardDuty
|
|
|
2364
2442
|
end
|
|
2365
2443
|
|
|
2366
2444
|
# Lists all GuardDuty membership invitations that were sent to the
|
|
2367
|
-
# current
|
|
2445
|
+
# current Amazon Web Services account.
|
|
2368
2446
|
#
|
|
2369
2447
|
# @option params [Integer] :max_results
|
|
2370
2448
|
# You can use this parameter to indicate the maximum number of items
|
|
@@ -2513,7 +2591,7 @@ module Aws::GuardDuty
|
|
|
2513
2591
|
end
|
|
2514
2592
|
|
|
2515
2593
|
# Returns a list of publishing destinations associated with the
|
|
2516
|
-
# specified `
|
|
2594
|
+
# specified `detectorId`.
|
|
2517
2595
|
#
|
|
2518
2596
|
# @option params [required, String] :detector_id
|
|
2519
2597
|
# The ID of the detector to retrieve publishing destinations for.
|
|
@@ -2826,6 +2904,11 @@ module Aws::GuardDuty
|
|
|
2826
2904
|
# s3_logs: {
|
|
2827
2905
|
# enable: false, # required
|
|
2828
2906
|
# },
|
|
2907
|
+
# kubernetes: {
|
|
2908
|
+
# audit_logs: { # required
|
|
2909
|
+
# enable: false, # required
|
|
2910
|
+
# },
|
|
2911
|
+
# },
|
|
2829
2912
|
# },
|
|
2830
2913
|
# })
|
|
2831
2914
|
#
|
|
@@ -2956,8 +3039,7 @@ module Aws::GuardDuty
|
|
|
2956
3039
|
# The unique ID that specifies the IPSet that you want to update.
|
|
2957
3040
|
#
|
|
2958
3041
|
# @option params [String] :location
|
|
2959
|
-
# The updated URI of the file that contains the IPSet.
|
|
2960
|
-
# https://s3.us-west-2.amazonaws.com/my-bucket/my-object-key.
|
|
3042
|
+
# The updated URI of the file that contains the IPSet.
|
|
2961
3043
|
#
|
|
2962
3044
|
# @option params [Boolean] :activate
|
|
2963
3045
|
# The updated Boolean value that specifies whether the IPSet is active
|
|
@@ -3008,6 +3090,11 @@ module Aws::GuardDuty
|
|
|
3008
3090
|
# s3_logs: {
|
|
3009
3091
|
# enable: false, # required
|
|
3010
3092
|
# },
|
|
3093
|
+
# kubernetes: {
|
|
3094
|
+
# audit_logs: { # required
|
|
3095
|
+
# enable: false, # required
|
|
3096
|
+
# },
|
|
3097
|
+
# },
|
|
3011
3098
|
# },
|
|
3012
3099
|
# })
|
|
3013
3100
|
#
|
|
@@ -3049,6 +3136,11 @@ module Aws::GuardDuty
|
|
|
3049
3136
|
# s3_logs: {
|
|
3050
3137
|
# auto_enable: false, # required
|
|
3051
3138
|
# },
|
|
3139
|
+
# kubernetes: {
|
|
3140
|
+
# audit_logs: { # required
|
|
3141
|
+
# auto_enable: false, # required
|
|
3142
|
+
# },
|
|
3143
|
+
# },
|
|
3052
3144
|
# },
|
|
3053
3145
|
# })
|
|
3054
3146
|
#
|
|
@@ -3152,7 +3244,7 @@ module Aws::GuardDuty
|
|
|
3152
3244
|
params: params,
|
|
3153
3245
|
config: config)
|
|
3154
3246
|
context[:gem_name] = 'aws-sdk-guardduty'
|
|
3155
|
-
context[:gem_version] = '1.
|
|
3247
|
+
context[:gem_version] = '1.55.0'
|
|
3156
3248
|
Seahorse::Client::Request.new(handlers, context)
|
|
3157
3249
|
end
|
|
3158
3250
|
|