aws-sdk-guardduty 1.86.0 → 1.87.0

Sign up to get free protection for your applications and to get access to all the features.
Files changed (12) hide show
  1. checksums.yaml +4 -4
  2. data/CHANGELOG.md +5 -0
  3. data/VERSION +1 -1
  4. data/lib/aws-sdk-guardduty/client.rb +1 -1
  5. data/lib/aws-sdk-guardduty/plugins/endpoints.rb +1 -0
  6. data/lib/aws-sdk-guardduty.rb +1 -1
  7. data/sig/client.rbs +1150 -0
  8. data/sig/errors.rbs +32 -0
  9. data/sig/resource.rbs +79 -0
  10. data/sig/types.rbs +2183 -0
  11. data/sig/waiters.rbs +13 -0
  12. metadata +13 -8
data/sig/types.rbs ADDED
@@ -0,0 +1,2183 @@
1
+ # WARNING ABOUT GENERATED CODE
2
+ #
3
+ # This file is generated. See the contributing guide for more information:
4
+ # https://github.com/aws/aws-sdk-ruby/blob/version-3/CONTRIBUTING.md
5
+ #
6
+ # WARNING ABOUT GENERATED CODE
7
+
8
+ module Aws::GuardDuty
9
+ module Types
10
+
11
+ class AcceptAdministratorInvitationRequest
12
+ attr_accessor detector_id: ::String
13
+ attr_accessor administrator_id: ::String
14
+ attr_accessor invitation_id: ::String
15
+ SENSITIVE: []
16
+ end
17
+
18
+ class AcceptAdministratorInvitationResponse < Aws::EmptyStructure
19
+ end
20
+
21
+ class AcceptInvitationRequest
22
+ attr_accessor detector_id: ::String
23
+ attr_accessor master_id: ::String
24
+ attr_accessor invitation_id: ::String
25
+ SENSITIVE: []
26
+ end
27
+
28
+ class AcceptInvitationResponse < Aws::EmptyStructure
29
+ end
30
+
31
+ class AccessControlList
32
+ attr_accessor allows_public_read_access: bool
33
+ attr_accessor allows_public_write_access: bool
34
+ SENSITIVE: []
35
+ end
36
+
37
+ class AccessDeniedException
38
+ attr_accessor message: ::String
39
+ attr_accessor type: ::String
40
+ SENSITIVE: []
41
+ end
42
+
43
+ class AccessKeyDetails
44
+ attr_accessor access_key_id: ::String
45
+ attr_accessor principal_id: ::String
46
+ attr_accessor user_name: ::String
47
+ attr_accessor user_type: ::String
48
+ SENSITIVE: []
49
+ end
50
+
51
+ class AccountDetail
52
+ attr_accessor account_id: ::String
53
+ attr_accessor email: ::String
54
+ SENSITIVE: []
55
+ end
56
+
57
+ class AccountFreeTrialInfo
58
+ attr_accessor account_id: ::String
59
+ attr_accessor data_sources: Types::DataSourcesFreeTrial
60
+ attr_accessor features: ::Array[Types::FreeTrialFeatureConfigurationResult]
61
+ SENSITIVE: []
62
+ end
63
+
64
+ class AccountLevelPermissions
65
+ attr_accessor block_public_access: Types::BlockPublicAccess
66
+ SENSITIVE: []
67
+ end
68
+
69
+ class Action
70
+ attr_accessor action_type: ::String
71
+ attr_accessor aws_api_call_action: Types::AwsApiCallAction
72
+ attr_accessor dns_request_action: Types::DnsRequestAction
73
+ attr_accessor network_connection_action: Types::NetworkConnectionAction
74
+ attr_accessor port_probe_action: Types::PortProbeAction
75
+ attr_accessor kubernetes_api_call_action: Types::KubernetesApiCallAction
76
+ attr_accessor rds_login_attempt_action: Types::RdsLoginAttemptAction
77
+ attr_accessor kubernetes_permission_checked_details: Types::KubernetesPermissionCheckedDetails
78
+ attr_accessor kubernetes_role_binding_details: Types::KubernetesRoleBindingDetails
79
+ attr_accessor kubernetes_role_details: Types::KubernetesRoleDetails
80
+ SENSITIVE: []
81
+ end
82
+
83
+ class AddonDetails
84
+ attr_accessor addon_version: ::String
85
+ attr_accessor addon_status: ::String
86
+ SENSITIVE: []
87
+ end
88
+
89
+ class AdminAccount
90
+ attr_accessor admin_account_id: ::String
91
+ attr_accessor admin_status: ("ENABLED" | "DISABLE_IN_PROGRESS")
92
+ SENSITIVE: []
93
+ end
94
+
95
+ class Administrator
96
+ attr_accessor account_id: ::String
97
+ attr_accessor invitation_id: ::String
98
+ attr_accessor relationship_status: ::String
99
+ attr_accessor invited_at: ::String
100
+ SENSITIVE: []
101
+ end
102
+
103
+ class AgentDetails
104
+ attr_accessor version: ::String
105
+ SENSITIVE: []
106
+ end
107
+
108
+ class Anomaly
109
+ attr_accessor profiles: ::Hash[::String, ::Hash[::String, ::Array[Types::AnomalyObject]]]
110
+ attr_accessor unusual: Types::AnomalyUnusual
111
+ SENSITIVE: []
112
+ end
113
+
114
+ class AnomalyObject
115
+ attr_accessor profile_type: ("FREQUENCY")
116
+ attr_accessor profile_subtype: ("FREQUENT" | "INFREQUENT" | "UNSEEN" | "RARE")
117
+ attr_accessor observations: Types::Observations
118
+ SENSITIVE: []
119
+ end
120
+
121
+ class AnomalyUnusual
122
+ attr_accessor behavior: ::Hash[::String, ::Hash[::String, Types::AnomalyObject]]
123
+ SENSITIVE: []
124
+ end
125
+
126
+ class ArchiveFindingsRequest
127
+ attr_accessor detector_id: ::String
128
+ attr_accessor finding_ids: ::Array[::String]
129
+ SENSITIVE: []
130
+ end
131
+
132
+ class ArchiveFindingsResponse < Aws::EmptyStructure
133
+ end
134
+
135
+ class AwsApiCallAction
136
+ attr_accessor api: ::String
137
+ attr_accessor caller_type: ::String
138
+ attr_accessor domain_details: Types::DomainDetails
139
+ attr_accessor error_code: ::String
140
+ attr_accessor user_agent: ::String
141
+ attr_accessor remote_ip_details: Types::RemoteIpDetails
142
+ attr_accessor service_name: ::String
143
+ attr_accessor remote_account_details: Types::RemoteAccountDetails
144
+ attr_accessor affected_resources: ::Hash[::String, ::String]
145
+ SENSITIVE: []
146
+ end
147
+
148
+ class BadRequestException
149
+ attr_accessor message: ::String
150
+ attr_accessor type: ::String
151
+ SENSITIVE: []
152
+ end
153
+
154
+ class BlockPublicAccess
155
+ attr_accessor ignore_public_acls: bool
156
+ attr_accessor restrict_public_buckets: bool
157
+ attr_accessor block_public_acls: bool
158
+ attr_accessor block_public_policy: bool
159
+ SENSITIVE: []
160
+ end
161
+
162
+ class BucketLevelPermissions
163
+ attr_accessor access_control_list: Types::AccessControlList
164
+ attr_accessor bucket_policy: Types::BucketPolicy
165
+ attr_accessor block_public_access: Types::BlockPublicAccess
166
+ SENSITIVE: []
167
+ end
168
+
169
+ class BucketPolicy
170
+ attr_accessor allows_public_read_access: bool
171
+ attr_accessor allows_public_write_access: bool
172
+ SENSITIVE: []
173
+ end
174
+
175
+ class City
176
+ attr_accessor city_name: ::String
177
+ SENSITIVE: []
178
+ end
179
+
180
+ class CloudTrailConfigurationResult
181
+ attr_accessor status: ("ENABLED" | "DISABLED")
182
+ SENSITIVE: []
183
+ end
184
+
185
+ class Condition
186
+ attr_accessor eq: ::Array[::String]
187
+ attr_accessor neq: ::Array[::String]
188
+ attr_accessor gt: ::Integer
189
+ attr_accessor gte: ::Integer
190
+ attr_accessor lt: ::Integer
191
+ attr_accessor lte: ::Integer
192
+ attr_accessor equals: ::Array[::String]
193
+ attr_accessor not_equals: ::Array[::String]
194
+ attr_accessor greater_than: ::Integer
195
+ attr_accessor greater_than_or_equal: ::Integer
196
+ attr_accessor less_than: ::Integer
197
+ attr_accessor less_than_or_equal: ::Integer
198
+ SENSITIVE: []
199
+ end
200
+
201
+ class ConflictException
202
+ attr_accessor message: ::String
203
+ attr_accessor type: ::String
204
+ SENSITIVE: []
205
+ end
206
+
207
+ class Container
208
+ attr_accessor container_runtime: ::String
209
+ attr_accessor id: ::String
210
+ attr_accessor name: ::String
211
+ attr_accessor image: ::String
212
+ attr_accessor image_prefix: ::String
213
+ attr_accessor volume_mounts: ::Array[Types::VolumeMount]
214
+ attr_accessor security_context: Types::SecurityContext
215
+ SENSITIVE: []
216
+ end
217
+
218
+ class ContainerInstanceDetails
219
+ attr_accessor covered_container_instances: ::Integer
220
+ attr_accessor compatible_container_instances: ::Integer
221
+ SENSITIVE: []
222
+ end
223
+
224
+ class Country
225
+ attr_accessor country_code: ::String
226
+ attr_accessor country_name: ::String
227
+ SENSITIVE: []
228
+ end
229
+
230
+ class CoverageEc2InstanceDetails
231
+ attr_accessor instance_id: ::String
232
+ attr_accessor instance_type: ::String
233
+ attr_accessor cluster_arn: ::String
234
+ attr_accessor agent_details: Types::AgentDetails
235
+ attr_accessor management_type: ("AUTO_MANAGED" | "MANUAL" | "DISABLED")
236
+ SENSITIVE: []
237
+ end
238
+
239
+ class CoverageEcsClusterDetails
240
+ attr_accessor cluster_name: ::String
241
+ attr_accessor fargate_details: Types::FargateDetails
242
+ attr_accessor container_instance_details: Types::ContainerInstanceDetails
243
+ SENSITIVE: []
244
+ end
245
+
246
+ class CoverageEksClusterDetails
247
+ attr_accessor cluster_name: ::String
248
+ attr_accessor covered_nodes: ::Integer
249
+ attr_accessor compatible_nodes: ::Integer
250
+ attr_accessor addon_details: Types::AddonDetails
251
+ attr_accessor management_type: ("AUTO_MANAGED" | "MANUAL" | "DISABLED")
252
+ SENSITIVE: []
253
+ end
254
+
255
+ class CoverageFilterCondition
256
+ attr_accessor equals: ::Array[::String]
257
+ attr_accessor not_equals: ::Array[::String]
258
+ SENSITIVE: []
259
+ end
260
+
261
+ class CoverageFilterCriteria
262
+ attr_accessor filter_criterion: ::Array[Types::CoverageFilterCriterion]
263
+ SENSITIVE: []
264
+ end
265
+
266
+ class CoverageFilterCriterion
267
+ attr_accessor criterion_key: ("ACCOUNT_ID" | "CLUSTER_NAME" | "RESOURCE_TYPE" | "COVERAGE_STATUS" | "ADDON_VERSION" | "MANAGEMENT_TYPE" | "EKS_CLUSTER_NAME" | "ECS_CLUSTER_NAME" | "AGENT_VERSION" | "INSTANCE_ID" | "CLUSTER_ARN")
268
+ attr_accessor filter_condition: Types::CoverageFilterCondition
269
+ SENSITIVE: []
270
+ end
271
+
272
+ class CoverageResource
273
+ attr_accessor resource_id: ::String
274
+ attr_accessor detector_id: ::String
275
+ attr_accessor account_id: ::String
276
+ attr_accessor resource_details: Types::CoverageResourceDetails
277
+ attr_accessor coverage_status: ("HEALTHY" | "UNHEALTHY")
278
+ attr_accessor issue: ::String
279
+ attr_accessor updated_at: ::Time
280
+ SENSITIVE: []
281
+ end
282
+
283
+ class CoverageResourceDetails
284
+ attr_accessor eks_cluster_details: Types::CoverageEksClusterDetails
285
+ attr_accessor resource_type: ("EKS" | "ECS" | "EC2")
286
+ attr_accessor ecs_cluster_details: Types::CoverageEcsClusterDetails
287
+ attr_accessor ec2_instance_details: Types::CoverageEc2InstanceDetails
288
+ SENSITIVE: []
289
+ end
290
+
291
+ class CoverageSortCriteria
292
+ attr_accessor attribute_name: ("ACCOUNT_ID" | "CLUSTER_NAME" | "COVERAGE_STATUS" | "ISSUE" | "ADDON_VERSION" | "UPDATED_AT" | "EKS_CLUSTER_NAME" | "ECS_CLUSTER_NAME" | "INSTANCE_ID")
293
+ attr_accessor order_by: ("ASC" | "DESC")
294
+ SENSITIVE: []
295
+ end
296
+
297
+ class CoverageStatistics
298
+ attr_accessor count_by_resource_type: ::Hash[("EKS" | "ECS" | "EC2"), ::Integer]
299
+ attr_accessor count_by_coverage_status: ::Hash[("HEALTHY" | "UNHEALTHY"), ::Integer]
300
+ SENSITIVE: []
301
+ end
302
+
303
+ class CreateDetectorRequest
304
+ attr_accessor enable: bool
305
+ attr_accessor client_token: ::String
306
+ attr_accessor finding_publishing_frequency: ("FIFTEEN_MINUTES" | "ONE_HOUR" | "SIX_HOURS")
307
+ attr_accessor data_sources: Types::DataSourceConfigurations
308
+ attr_accessor tags: ::Hash[::String, ::String]
309
+ attr_accessor features: ::Array[Types::DetectorFeatureConfiguration]
310
+ SENSITIVE: []
311
+ end
312
+
313
+ class CreateDetectorResponse
314
+ attr_accessor detector_id: ::String
315
+ attr_accessor unprocessed_data_sources: Types::UnprocessedDataSourcesResult
316
+ SENSITIVE: []
317
+ end
318
+
319
+ class CreateFilterRequest
320
+ attr_accessor detector_id: ::String
321
+ attr_accessor name: ::String
322
+ attr_accessor description: ::String
323
+ attr_accessor action: ("NOOP" | "ARCHIVE")
324
+ attr_accessor rank: ::Integer
325
+ attr_accessor finding_criteria: Types::FindingCriteria
326
+ attr_accessor client_token: ::String
327
+ attr_accessor tags: ::Hash[::String, ::String]
328
+ SENSITIVE: []
329
+ end
330
+
331
+ class CreateFilterResponse
332
+ attr_accessor name: ::String
333
+ SENSITIVE: []
334
+ end
335
+
336
+ class CreateIPSetRequest
337
+ attr_accessor detector_id: ::String
338
+ attr_accessor name: ::String
339
+ attr_accessor format: ("TXT" | "STIX" | "OTX_CSV" | "ALIEN_VAULT" | "PROOF_POINT" | "FIRE_EYE")
340
+ attr_accessor location: ::String
341
+ attr_accessor activate: bool
342
+ attr_accessor client_token: ::String
343
+ attr_accessor tags: ::Hash[::String, ::String]
344
+ SENSITIVE: []
345
+ end
346
+
347
+ class CreateIPSetResponse
348
+ attr_accessor ip_set_id: ::String
349
+ SENSITIVE: []
350
+ end
351
+
352
+ class CreateMembersRequest
353
+ attr_accessor detector_id: ::String
354
+ attr_accessor account_details: ::Array[Types::AccountDetail]
355
+ SENSITIVE: []
356
+ end
357
+
358
+ class CreateMembersResponse
359
+ attr_accessor unprocessed_accounts: ::Array[Types::UnprocessedAccount]
360
+ SENSITIVE: []
361
+ end
362
+
363
+ class CreatePublishingDestinationRequest
364
+ attr_accessor detector_id: ::String
365
+ attr_accessor destination_type: ("S3")
366
+ attr_accessor destination_properties: Types::DestinationProperties
367
+ attr_accessor client_token: ::String
368
+ SENSITIVE: []
369
+ end
370
+
371
+ class CreatePublishingDestinationResponse
372
+ attr_accessor destination_id: ::String
373
+ SENSITIVE: []
374
+ end
375
+
376
+ class CreateSampleFindingsRequest
377
+ attr_accessor detector_id: ::String
378
+ attr_accessor finding_types: ::Array[::String]
379
+ SENSITIVE: []
380
+ end
381
+
382
+ class CreateSampleFindingsResponse < Aws::EmptyStructure
383
+ end
384
+
385
+ class CreateThreatIntelSetRequest
386
+ attr_accessor detector_id: ::String
387
+ attr_accessor name: ::String
388
+ attr_accessor format: ("TXT" | "STIX" | "OTX_CSV" | "ALIEN_VAULT" | "PROOF_POINT" | "FIRE_EYE")
389
+ attr_accessor location: ::String
390
+ attr_accessor activate: bool
391
+ attr_accessor client_token: ::String
392
+ attr_accessor tags: ::Hash[::String, ::String]
393
+ SENSITIVE: []
394
+ end
395
+
396
+ class CreateThreatIntelSetResponse
397
+ attr_accessor threat_intel_set_id: ::String
398
+ SENSITIVE: []
399
+ end
400
+
401
+ class DNSLogsConfigurationResult
402
+ attr_accessor status: ("ENABLED" | "DISABLED")
403
+ SENSITIVE: []
404
+ end
405
+
406
+ class DataSourceConfigurations
407
+ attr_accessor s3_logs: Types::S3LogsConfiguration
408
+ attr_accessor kubernetes: Types::KubernetesConfiguration
409
+ attr_accessor malware_protection: Types::MalwareProtectionConfiguration
410
+ SENSITIVE: []
411
+ end
412
+
413
+ class DataSourceConfigurationsResult
414
+ attr_accessor cloud_trail: Types::CloudTrailConfigurationResult
415
+ attr_accessor dns_logs: Types::DNSLogsConfigurationResult
416
+ attr_accessor flow_logs: Types::FlowLogsConfigurationResult
417
+ attr_accessor s3_logs: Types::S3LogsConfigurationResult
418
+ attr_accessor kubernetes: Types::KubernetesConfigurationResult
419
+ attr_accessor malware_protection: Types::MalwareProtectionConfigurationResult
420
+ SENSITIVE: []
421
+ end
422
+
423
+ class DataSourceFreeTrial
424
+ attr_accessor free_trial_days_remaining: ::Integer
425
+ SENSITIVE: []
426
+ end
427
+
428
+ class DataSourcesFreeTrial
429
+ attr_accessor cloud_trail: Types::DataSourceFreeTrial
430
+ attr_accessor dns_logs: Types::DataSourceFreeTrial
431
+ attr_accessor flow_logs: Types::DataSourceFreeTrial
432
+ attr_accessor s3_logs: Types::DataSourceFreeTrial
433
+ attr_accessor kubernetes: Types::KubernetesDataSourceFreeTrial
434
+ attr_accessor malware_protection: Types::MalwareProtectionDataSourceFreeTrial
435
+ SENSITIVE: []
436
+ end
437
+
438
+ class DeclineInvitationsRequest
439
+ attr_accessor account_ids: ::Array[::String]
440
+ SENSITIVE: []
441
+ end
442
+
443
+ class DeclineInvitationsResponse
444
+ attr_accessor unprocessed_accounts: ::Array[Types::UnprocessedAccount]
445
+ SENSITIVE: []
446
+ end
447
+
448
+ class DefaultServerSideEncryption
449
+ attr_accessor encryption_type: ::String
450
+ attr_accessor kms_master_key_arn: ::String
451
+ SENSITIVE: []
452
+ end
453
+
454
+ class DeleteDetectorRequest
455
+ attr_accessor detector_id: ::String
456
+ SENSITIVE: []
457
+ end
458
+
459
+ class DeleteDetectorResponse < Aws::EmptyStructure
460
+ end
461
+
462
+ class DeleteFilterRequest
463
+ attr_accessor detector_id: ::String
464
+ attr_accessor filter_name: ::String
465
+ SENSITIVE: []
466
+ end
467
+
468
+ class DeleteFilterResponse < Aws::EmptyStructure
469
+ end
470
+
471
+ class DeleteIPSetRequest
472
+ attr_accessor detector_id: ::String
473
+ attr_accessor ip_set_id: ::String
474
+ SENSITIVE: []
475
+ end
476
+
477
+ class DeleteIPSetResponse < Aws::EmptyStructure
478
+ end
479
+
480
+ class DeleteInvitationsRequest
481
+ attr_accessor account_ids: ::Array[::String]
482
+ SENSITIVE: []
483
+ end
484
+
485
+ class DeleteInvitationsResponse
486
+ attr_accessor unprocessed_accounts: ::Array[Types::UnprocessedAccount]
487
+ SENSITIVE: []
488
+ end
489
+
490
+ class DeleteMembersRequest
491
+ attr_accessor detector_id: ::String
492
+ attr_accessor account_ids: ::Array[::String]
493
+ SENSITIVE: []
494
+ end
495
+
496
+ class DeleteMembersResponse
497
+ attr_accessor unprocessed_accounts: ::Array[Types::UnprocessedAccount]
498
+ SENSITIVE: []
499
+ end
500
+
501
+ class DeletePublishingDestinationRequest
502
+ attr_accessor detector_id: ::String
503
+ attr_accessor destination_id: ::String
504
+ SENSITIVE: []
505
+ end
506
+
507
+ class DeletePublishingDestinationResponse < Aws::EmptyStructure
508
+ end
509
+
510
+ class DeleteThreatIntelSetRequest
511
+ attr_accessor detector_id: ::String
512
+ attr_accessor threat_intel_set_id: ::String
513
+ SENSITIVE: []
514
+ end
515
+
516
+ class DeleteThreatIntelSetResponse < Aws::EmptyStructure
517
+ end
518
+
519
+ class DescribeMalwareScansRequest
520
+ attr_accessor detector_id: ::String
521
+ attr_accessor next_token: ::String
522
+ attr_accessor max_results: ::Integer
523
+ attr_accessor filter_criteria: Types::FilterCriteria
524
+ attr_accessor sort_criteria: Types::SortCriteria
525
+ SENSITIVE: []
526
+ end
527
+
528
+ class DescribeMalwareScansResponse
529
+ attr_accessor scans: ::Array[Types::Scan]
530
+ attr_accessor next_token: ::String
531
+ SENSITIVE: []
532
+ end
533
+
534
+ class DescribeOrganizationConfigurationRequest
535
+ attr_accessor detector_id: ::String
536
+ attr_accessor max_results: ::Integer
537
+ attr_accessor next_token: ::String
538
+ SENSITIVE: []
539
+ end
540
+
541
+ class DescribeOrganizationConfigurationResponse
542
+ attr_accessor auto_enable: bool
543
+ attr_accessor member_account_limit_reached: bool
544
+ attr_accessor data_sources: Types::OrganizationDataSourceConfigurationsResult
545
+ attr_accessor features: ::Array[Types::OrganizationFeatureConfigurationResult]
546
+ attr_accessor next_token: ::String
547
+ attr_accessor auto_enable_organization_members: ("NEW" | "ALL" | "NONE")
548
+ SENSITIVE: []
549
+ end
550
+
551
+ class DescribePublishingDestinationRequest
552
+ attr_accessor detector_id: ::String
553
+ attr_accessor destination_id: ::String
554
+ SENSITIVE: []
555
+ end
556
+
557
+ class DescribePublishingDestinationResponse
558
+ attr_accessor destination_id: ::String
559
+ attr_accessor destination_type: ("S3")
560
+ attr_accessor status: ("PENDING_VERIFICATION" | "PUBLISHING" | "UNABLE_TO_PUBLISH_FIX_DESTINATION_PROPERTY" | "STOPPED")
561
+ attr_accessor publishing_failure_start_timestamp: ::Integer
562
+ attr_accessor destination_properties: Types::DestinationProperties
563
+ SENSITIVE: []
564
+ end
565
+
566
+ class Destination
567
+ attr_accessor destination_id: ::String
568
+ attr_accessor destination_type: ("S3")
569
+ attr_accessor status: ("PENDING_VERIFICATION" | "PUBLISHING" | "UNABLE_TO_PUBLISH_FIX_DESTINATION_PROPERTY" | "STOPPED")
570
+ SENSITIVE: []
571
+ end
572
+
573
+ class DestinationProperties
574
+ attr_accessor destination_arn: ::String
575
+ attr_accessor kms_key_arn: ::String
576
+ SENSITIVE: []
577
+ end
578
+
579
+ class Detection
580
+ attr_accessor anomaly: Types::Anomaly
581
+ SENSITIVE: []
582
+ end
583
+
584
+ class DetectorAdditionalConfiguration
585
+ attr_accessor name: ("EKS_ADDON_MANAGEMENT" | "ECS_FARGATE_AGENT_MANAGEMENT")
586
+ attr_accessor status: ("ENABLED" | "DISABLED")
587
+ SENSITIVE: []
588
+ end
589
+
590
+ class DetectorAdditionalConfigurationResult
591
+ attr_accessor name: ("EKS_ADDON_MANAGEMENT" | "ECS_FARGATE_AGENT_MANAGEMENT")
592
+ attr_accessor status: ("ENABLED" | "DISABLED")
593
+ attr_accessor updated_at: ::Time
594
+ SENSITIVE: []
595
+ end
596
+
597
+ class DetectorFeatureConfiguration
598
+ attr_accessor name: ("S3_DATA_EVENTS" | "EKS_AUDIT_LOGS" | "EBS_MALWARE_PROTECTION" | "RDS_LOGIN_EVENTS" | "EKS_RUNTIME_MONITORING" | "LAMBDA_NETWORK_LOGS" | "RUNTIME_MONITORING")
599
+ attr_accessor status: ("ENABLED" | "DISABLED")
600
+ attr_accessor additional_configuration: ::Array[Types::DetectorAdditionalConfiguration]
601
+ SENSITIVE: []
602
+ end
603
+
604
+ class DetectorFeatureConfigurationResult
605
+ attr_accessor name: ("FLOW_LOGS" | "CLOUD_TRAIL" | "DNS_LOGS" | "S3_DATA_EVENTS" | "EKS_AUDIT_LOGS" | "EBS_MALWARE_PROTECTION" | "RDS_LOGIN_EVENTS" | "EKS_RUNTIME_MONITORING" | "LAMBDA_NETWORK_LOGS" | "RUNTIME_MONITORING")
606
+ attr_accessor status: ("ENABLED" | "DISABLED")
607
+ attr_accessor updated_at: ::Time
608
+ attr_accessor additional_configuration: ::Array[Types::DetectorAdditionalConfigurationResult]
609
+ SENSITIVE: []
610
+ end
611
+
612
+ class DisableOrganizationAdminAccountRequest
613
+ attr_accessor admin_account_id: ::String
614
+ SENSITIVE: []
615
+ end
616
+
617
+ class DisableOrganizationAdminAccountResponse < Aws::EmptyStructure
618
+ end
619
+
620
+ class DisassociateFromAdministratorAccountRequest
621
+ attr_accessor detector_id: ::String
622
+ SENSITIVE: []
623
+ end
624
+
625
+ class DisassociateFromAdministratorAccountResponse < Aws::EmptyStructure
626
+ end
627
+
628
+ class DisassociateFromMasterAccountRequest
629
+ attr_accessor detector_id: ::String
630
+ SENSITIVE: []
631
+ end
632
+
633
+ class DisassociateFromMasterAccountResponse < Aws::EmptyStructure
634
+ end
635
+
636
+ class DisassociateMembersRequest
637
+ attr_accessor detector_id: ::String
638
+ attr_accessor account_ids: ::Array[::String]
639
+ SENSITIVE: []
640
+ end
641
+
642
+ class DisassociateMembersResponse
643
+ attr_accessor unprocessed_accounts: ::Array[Types::UnprocessedAccount]
644
+ SENSITIVE: []
645
+ end
646
+
647
+ class DnsRequestAction
648
+ attr_accessor domain: ::String
649
+ attr_accessor protocol: ::String
650
+ attr_accessor blocked: bool
651
+ attr_accessor domain_with_suffix: ::String
652
+ SENSITIVE: []
653
+ end
654
+
655
+ class DomainDetails
656
+ attr_accessor domain: ::String
657
+ SENSITIVE: []
658
+ end
659
+
660
+ class EbsVolumeDetails
661
+ attr_accessor scanned_volume_details: ::Array[Types::VolumeDetail]
662
+ attr_accessor skipped_volume_details: ::Array[Types::VolumeDetail]
663
+ SENSITIVE: []
664
+ end
665
+
666
+ class EbsVolumeScanDetails
667
+ attr_accessor scan_id: ::String
668
+ attr_accessor scan_started_at: ::Time
669
+ attr_accessor scan_completed_at: ::Time
670
+ attr_accessor trigger_finding_id: ::String
671
+ attr_accessor sources: ::Array[::String]
672
+ attr_accessor scan_detections: Types::ScanDetections
673
+ attr_accessor scan_type: ("GUARDDUTY_INITIATED" | "ON_DEMAND")
674
+ SENSITIVE: []
675
+ end
676
+
677
+ class EbsVolumesResult
678
+ attr_accessor status: ("ENABLED" | "DISABLED")
679
+ attr_accessor reason: ::String
680
+ SENSITIVE: []
681
+ end
682
+
683
+ class EcsClusterDetails
684
+ attr_accessor name: ::String
685
+ attr_accessor arn: ::String
686
+ attr_accessor status: ::String
687
+ attr_accessor active_services_count: ::Integer
688
+ attr_accessor registered_container_instances_count: ::Integer
689
+ attr_accessor running_tasks_count: ::Integer
690
+ attr_accessor tags: ::Array[Types::Tag]
691
+ attr_accessor task_details: Types::EcsTaskDetails
692
+ SENSITIVE: []
693
+ end
694
+
695
+ class EcsTaskDetails
696
+ attr_accessor arn: ::String
697
+ attr_accessor definition_arn: ::String
698
+ attr_accessor version: ::String
699
+ attr_accessor task_created_at: ::Time
700
+ attr_accessor started_at: ::Time
701
+ attr_accessor started_by: ::String
702
+ attr_accessor tags: ::Array[Types::Tag]
703
+ attr_accessor volumes: ::Array[Types::Volume]
704
+ attr_accessor containers: ::Array[Types::Container]
705
+ attr_accessor group: ::String
706
+ SENSITIVE: []
707
+ end
708
+
709
+ class EksClusterDetails
710
+ attr_accessor name: ::String
711
+ attr_accessor arn: ::String
712
+ attr_accessor vpc_id: ::String
713
+ attr_accessor status: ::String
714
+ attr_accessor tags: ::Array[Types::Tag]
715
+ attr_accessor created_at: ::Time
716
+ SENSITIVE: []
717
+ end
718
+
719
+ class EnableOrganizationAdminAccountRequest
720
+ attr_accessor admin_account_id: ::String
721
+ SENSITIVE: []
722
+ end
723
+
724
+ class EnableOrganizationAdminAccountResponse < Aws::EmptyStructure
725
+ end
726
+
727
+ class Evidence
728
+ attr_accessor threat_intelligence_details: ::Array[Types::ThreatIntelligenceDetail]
729
+ SENSITIVE: []
730
+ end
731
+
732
+ class FargateDetails
733
+ attr_accessor issues: ::Array[::String]
734
+ attr_accessor management_type: ("AUTO_MANAGED" | "MANUAL" | "DISABLED")
735
+ SENSITIVE: []
736
+ end
737
+
738
+ class FilterCondition
739
+ attr_accessor equals_value: ::String
740
+ attr_accessor greater_than: ::Integer
741
+ attr_accessor less_than: ::Integer
742
+ SENSITIVE: []
743
+ end
744
+
745
+ class FilterCriteria
746
+ attr_accessor filter_criterion: ::Array[Types::FilterCriterion]
747
+ SENSITIVE: []
748
+ end
749
+
750
+ class FilterCriterion
751
+ attr_accessor criterion_key: ("EC2_INSTANCE_ARN" | "SCAN_ID" | "ACCOUNT_ID" | "GUARDDUTY_FINDING_ID" | "SCAN_START_TIME" | "SCAN_STATUS" | "SCAN_TYPE")
752
+ attr_accessor filter_condition: Types::FilterCondition
753
+ SENSITIVE: []
754
+ end
755
+
756
+ class Finding
757
+ attr_accessor account_id: ::String
758
+ attr_accessor arn: ::String
759
+ attr_accessor confidence: ::Float
760
+ attr_accessor created_at: ::String
761
+ attr_accessor description: ::String
762
+ attr_accessor id: ::String
763
+ attr_accessor partition: ::String
764
+ attr_accessor region: ::String
765
+ attr_accessor resource: Types::Resource
766
+ attr_accessor schema_version: ::String
767
+ attr_accessor service: Types::Service
768
+ attr_accessor severity: ::Float
769
+ attr_accessor title: ::String
770
+ attr_accessor type: ::String
771
+ attr_accessor updated_at: ::String
772
+ SENSITIVE: []
773
+ end
774
+
775
+ class FindingCriteria
776
+ attr_accessor criterion: ::Hash[::String, Types::Condition]
777
+ SENSITIVE: []
778
+ end
779
+
780
+ class FindingStatistics
781
+ attr_accessor count_by_severity: ::Hash[::String, ::Integer]
782
+ SENSITIVE: []
783
+ end
784
+
785
+ class FlowLogsConfigurationResult
786
+ attr_accessor status: ("ENABLED" | "DISABLED")
787
+ SENSITIVE: []
788
+ end
789
+
790
+ class FreeTrialFeatureConfigurationResult
791
+ attr_accessor name: ("FLOW_LOGS" | "CLOUD_TRAIL" | "DNS_LOGS" | "S3_DATA_EVENTS" | "EKS_AUDIT_LOGS" | "EBS_MALWARE_PROTECTION" | "RDS_LOGIN_EVENTS" | "EKS_RUNTIME_MONITORING" | "LAMBDA_NETWORK_LOGS" | "FARGATE_RUNTIME_MONITORING" | "EC2_RUNTIME_MONITORING")
792
+ attr_accessor free_trial_days_remaining: ::Integer
793
+ SENSITIVE: []
794
+ end
795
+
796
+ class GeoLocation
797
+ attr_accessor lat: ::Float
798
+ attr_accessor lon: ::Float
799
+ SENSITIVE: []
800
+ end
801
+
802
+ class GetAdministratorAccountRequest
803
+ attr_accessor detector_id: ::String
804
+ SENSITIVE: []
805
+ end
806
+
807
+ class GetAdministratorAccountResponse
808
+ attr_accessor administrator: Types::Administrator
809
+ SENSITIVE: []
810
+ end
811
+
812
+ class GetCoverageStatisticsRequest
813
+ attr_accessor detector_id: ::String
814
+ attr_accessor filter_criteria: Types::CoverageFilterCriteria
815
+ attr_accessor statistics_type: ::Array[("COUNT_BY_RESOURCE_TYPE" | "COUNT_BY_COVERAGE_STATUS")]
816
+ SENSITIVE: []
817
+ end
818
+
819
+ class GetCoverageStatisticsResponse
820
+ attr_accessor coverage_statistics: Types::CoverageStatistics
821
+ SENSITIVE: []
822
+ end
823
+
824
+ class GetDetectorRequest
825
+ attr_accessor detector_id: ::String
826
+ SENSITIVE: []
827
+ end
828
+
829
+ class GetDetectorResponse
830
+ attr_accessor created_at: ::String
831
+ attr_accessor finding_publishing_frequency: ("FIFTEEN_MINUTES" | "ONE_HOUR" | "SIX_HOURS")
832
+ attr_accessor service_role: ::String
833
+ attr_accessor status: ("ENABLED" | "DISABLED")
834
+ attr_accessor updated_at: ::String
835
+ attr_accessor data_sources: Types::DataSourceConfigurationsResult
836
+ attr_accessor tags: ::Hash[::String, ::String]
837
+ attr_accessor features: ::Array[Types::DetectorFeatureConfigurationResult]
838
+ SENSITIVE: []
839
+ end
840
+
841
+ class GetFilterRequest
842
+ attr_accessor detector_id: ::String
843
+ attr_accessor filter_name: ::String
844
+ SENSITIVE: []
845
+ end
846
+
847
+ class GetFilterResponse
848
+ attr_accessor name: ::String
849
+ attr_accessor description: ::String
850
+ attr_accessor action: ("NOOP" | "ARCHIVE")
851
+ attr_accessor rank: ::Integer
852
+ attr_accessor finding_criteria: Types::FindingCriteria
853
+ attr_accessor tags: ::Hash[::String, ::String]
854
+ SENSITIVE: []
855
+ end
856
+
857
+ class GetFindingsRequest
858
+ attr_accessor detector_id: ::String
859
+ attr_accessor finding_ids: ::Array[::String]
860
+ attr_accessor sort_criteria: Types::SortCriteria
861
+ SENSITIVE: []
862
+ end
863
+
864
+ class GetFindingsResponse
865
+ attr_accessor findings: ::Array[Types::Finding]
866
+ SENSITIVE: []
867
+ end
868
+
869
+ class GetFindingsStatisticsRequest
870
+ attr_accessor detector_id: ::String
871
+ attr_accessor finding_statistic_types: ::Array[("COUNT_BY_SEVERITY")]
872
+ attr_accessor finding_criteria: Types::FindingCriteria
873
+ SENSITIVE: []
874
+ end
875
+
876
+ class GetFindingsStatisticsResponse
877
+ attr_accessor finding_statistics: Types::FindingStatistics
878
+ SENSITIVE: []
879
+ end
880
+
881
+ class GetIPSetRequest
882
+ attr_accessor detector_id: ::String
883
+ attr_accessor ip_set_id: ::String
884
+ SENSITIVE: []
885
+ end
886
+
887
+ class GetIPSetResponse
888
+ attr_accessor name: ::String
889
+ attr_accessor format: ("TXT" | "STIX" | "OTX_CSV" | "ALIEN_VAULT" | "PROOF_POINT" | "FIRE_EYE")
890
+ attr_accessor location: ::String
891
+ attr_accessor status: ("INACTIVE" | "ACTIVATING" | "ACTIVE" | "DEACTIVATING" | "ERROR" | "DELETE_PENDING" | "DELETED")
892
+ attr_accessor tags: ::Hash[::String, ::String]
893
+ SENSITIVE: []
894
+ end
895
+
896
+ class GetInvitationsCountRequest < Aws::EmptyStructure
897
+ end
898
+
899
+ class GetInvitationsCountResponse
900
+ attr_accessor invitations_count: ::Integer
901
+ SENSITIVE: []
902
+ end
903
+
904
+ class GetMalwareScanSettingsRequest
905
+ attr_accessor detector_id: ::String
906
+ SENSITIVE: []
907
+ end
908
+
909
+ class GetMalwareScanSettingsResponse
910
+ attr_accessor scan_resource_criteria: Types::ScanResourceCriteria
911
+ attr_accessor ebs_snapshot_preservation: ("NO_RETENTION" | "RETENTION_WITH_FINDING")
912
+ SENSITIVE: []
913
+ end
914
+
915
+ class GetMasterAccountRequest
916
+ attr_accessor detector_id: ::String
917
+ SENSITIVE: []
918
+ end
919
+
920
+ class GetMasterAccountResponse
921
+ attr_accessor master: Types::Master
922
+ SENSITIVE: []
923
+ end
924
+
925
+ class GetMemberDetectorsRequest
926
+ attr_accessor detector_id: ::String
927
+ attr_accessor account_ids: ::Array[::String]
928
+ SENSITIVE: []
929
+ end
930
+
931
+ class GetMemberDetectorsResponse
932
+ attr_accessor member_data_source_configurations: ::Array[Types::MemberDataSourceConfiguration]
933
+ attr_accessor unprocessed_accounts: ::Array[Types::UnprocessedAccount]
934
+ SENSITIVE: []
935
+ end
936
+
937
+ class GetMembersRequest
938
+ attr_accessor detector_id: ::String
939
+ attr_accessor account_ids: ::Array[::String]
940
+ SENSITIVE: []
941
+ end
942
+
943
+ class GetMembersResponse
944
+ attr_accessor members: ::Array[Types::Member]
945
+ attr_accessor unprocessed_accounts: ::Array[Types::UnprocessedAccount]
946
+ SENSITIVE: []
947
+ end
948
+
949
+ class GetOrganizationStatisticsResponse
950
+ attr_accessor organization_details: Types::OrganizationDetails
951
+ SENSITIVE: []
952
+ end
953
+
954
+ class GetRemainingFreeTrialDaysRequest
955
+ attr_accessor detector_id: ::String
956
+ attr_accessor account_ids: ::Array[::String]
957
+ SENSITIVE: []
958
+ end
959
+
960
+ class GetRemainingFreeTrialDaysResponse
961
+ attr_accessor accounts: ::Array[Types::AccountFreeTrialInfo]
962
+ attr_accessor unprocessed_accounts: ::Array[Types::UnprocessedAccount]
963
+ SENSITIVE: []
964
+ end
965
+
966
+ class GetThreatIntelSetRequest
967
+ attr_accessor detector_id: ::String
968
+ attr_accessor threat_intel_set_id: ::String
969
+ SENSITIVE: []
970
+ end
971
+
972
+ class GetThreatIntelSetResponse
973
+ attr_accessor name: ::String
974
+ attr_accessor format: ("TXT" | "STIX" | "OTX_CSV" | "ALIEN_VAULT" | "PROOF_POINT" | "FIRE_EYE")
975
+ attr_accessor location: ::String
976
+ attr_accessor status: ("INACTIVE" | "ACTIVATING" | "ACTIVE" | "DEACTIVATING" | "ERROR" | "DELETE_PENDING" | "DELETED")
977
+ attr_accessor tags: ::Hash[::String, ::String]
978
+ SENSITIVE: []
979
+ end
980
+
981
+ class GetUsageStatisticsRequest
982
+ attr_accessor detector_id: ::String
983
+ attr_accessor usage_statistic_type: ("SUM_BY_ACCOUNT" | "SUM_BY_DATA_SOURCE" | "SUM_BY_RESOURCE" | "TOP_RESOURCES" | "SUM_BY_FEATURES" | "TOP_ACCOUNTS_BY_FEATURE")
984
+ attr_accessor usage_criteria: Types::UsageCriteria
985
+ attr_accessor unit: ::String
986
+ attr_accessor max_results: ::Integer
987
+ attr_accessor next_token: ::String
988
+ SENSITIVE: []
989
+ end
990
+
991
+ class GetUsageStatisticsResponse
992
+ attr_accessor usage_statistics: Types::UsageStatistics
993
+ attr_accessor next_token: ::String
994
+ SENSITIVE: []
995
+ end
996
+
997
+ class HighestSeverityThreatDetails
998
+ attr_accessor severity: ::String
999
+ attr_accessor threat_name: ::String
1000
+ attr_accessor count: ::Integer
1001
+ SENSITIVE: []
1002
+ end
1003
+
1004
+ class HostPath
1005
+ attr_accessor path: ::String
1006
+ SENSITIVE: []
1007
+ end
1008
+
1009
+ class IamInstanceProfile
1010
+ attr_accessor arn: ::String
1011
+ attr_accessor id: ::String
1012
+ SENSITIVE: []
1013
+ end
1014
+
1015
+ class ImpersonatedUser
1016
+ attr_accessor username: ::String
1017
+ attr_accessor groups: ::Array[::String]
1018
+ SENSITIVE: []
1019
+ end
1020
+
1021
+ class InstanceDetails
1022
+ attr_accessor availability_zone: ::String
1023
+ attr_accessor iam_instance_profile: Types::IamInstanceProfile
1024
+ attr_accessor image_description: ::String
1025
+ attr_accessor image_id: ::String
1026
+ attr_accessor instance_id: ::String
1027
+ attr_accessor instance_state: ::String
1028
+ attr_accessor instance_type: ::String
1029
+ attr_accessor outpost_arn: ::String
1030
+ attr_accessor launch_time: ::String
1031
+ attr_accessor network_interfaces: ::Array[Types::NetworkInterface]
1032
+ attr_accessor platform: ::String
1033
+ attr_accessor product_codes: ::Array[Types::ProductCode]
1034
+ attr_accessor tags: ::Array[Types::Tag]
1035
+ SENSITIVE: []
1036
+ end
1037
+
1038
+ class InternalServerErrorException
1039
+ attr_accessor message: ::String
1040
+ attr_accessor type: ::String
1041
+ SENSITIVE: []
1042
+ end
1043
+
1044
+ class Invitation
1045
+ attr_accessor account_id: ::String
1046
+ attr_accessor invitation_id: ::String
1047
+ attr_accessor relationship_status: ::String
1048
+ attr_accessor invited_at: ::String
1049
+ SENSITIVE: []
1050
+ end
1051
+
1052
+ class InviteMembersRequest
1053
+ attr_accessor detector_id: ::String
1054
+ attr_accessor account_ids: ::Array[::String]
1055
+ attr_accessor disable_email_notification: bool
1056
+ attr_accessor message: ::String
1057
+ SENSITIVE: []
1058
+ end
1059
+
1060
+ class InviteMembersResponse
1061
+ attr_accessor unprocessed_accounts: ::Array[Types::UnprocessedAccount]
1062
+ SENSITIVE: []
1063
+ end
1064
+
1065
+ class KubernetesApiCallAction
1066
+ attr_accessor request_uri: ::String
1067
+ attr_accessor verb: ::String
1068
+ attr_accessor source_ips: ::Array[::String]
1069
+ attr_accessor user_agent: ::String
1070
+ attr_accessor remote_ip_details: Types::RemoteIpDetails
1071
+ attr_accessor status_code: ::Integer
1072
+ attr_accessor parameters: ::String
1073
+ attr_accessor resource: ::String
1074
+ attr_accessor subresource: ::String
1075
+ attr_accessor namespace: ::String
1076
+ attr_accessor resource_name: ::String
1077
+ SENSITIVE: []
1078
+ end
1079
+
1080
+ class KubernetesAuditLogsConfiguration
1081
+ attr_accessor enable: bool
1082
+ SENSITIVE: []
1083
+ end
1084
+
1085
+ class KubernetesAuditLogsConfigurationResult
1086
+ attr_accessor status: ("ENABLED" | "DISABLED")
1087
+ SENSITIVE: []
1088
+ end
1089
+
1090
+ class KubernetesConfiguration
1091
+ attr_accessor audit_logs: Types::KubernetesAuditLogsConfiguration
1092
+ SENSITIVE: []
1093
+ end
1094
+
1095
+ class KubernetesConfigurationResult
1096
+ attr_accessor audit_logs: Types::KubernetesAuditLogsConfigurationResult
1097
+ SENSITIVE: []
1098
+ end
1099
+
1100
+ class KubernetesDataSourceFreeTrial
1101
+ attr_accessor audit_logs: Types::DataSourceFreeTrial
1102
+ SENSITIVE: []
1103
+ end
1104
+
1105
+ class KubernetesDetails
1106
+ attr_accessor kubernetes_user_details: Types::KubernetesUserDetails
1107
+ attr_accessor kubernetes_workload_details: Types::KubernetesWorkloadDetails
1108
+ SENSITIVE: []
1109
+ end
1110
+
1111
+ class KubernetesPermissionCheckedDetails
1112
+ attr_accessor verb: ::String
1113
+ attr_accessor resource: ::String
1114
+ attr_accessor namespace: ::String
1115
+ attr_accessor allowed: bool
1116
+ SENSITIVE: []
1117
+ end
1118
+
1119
+ class KubernetesRoleBindingDetails
1120
+ attr_accessor kind: ::String
1121
+ attr_accessor name: ::String
1122
+ attr_accessor uid: ::String
1123
+ attr_accessor role_ref_name: ::String
1124
+ attr_accessor role_ref_kind: ::String
1125
+ SENSITIVE: []
1126
+ end
1127
+
1128
+ class KubernetesRoleDetails
1129
+ attr_accessor kind: ::String
1130
+ attr_accessor name: ::String
1131
+ attr_accessor uid: ::String
1132
+ SENSITIVE: []
1133
+ end
1134
+
1135
+ class KubernetesUserDetails
1136
+ attr_accessor username: ::String
1137
+ attr_accessor uid: ::String
1138
+ attr_accessor groups: ::Array[::String]
1139
+ attr_accessor session_name: ::Array[::String]
1140
+ attr_accessor impersonated_user: Types::ImpersonatedUser
1141
+ SENSITIVE: []
1142
+ end
1143
+
1144
+ class KubernetesWorkloadDetails
1145
+ attr_accessor name: ::String
1146
+ attr_accessor type: ::String
1147
+ attr_accessor uid: ::String
1148
+ attr_accessor namespace: ::String
1149
+ attr_accessor host_network: bool
1150
+ attr_accessor containers: ::Array[Types::Container]
1151
+ attr_accessor volumes: ::Array[Types::Volume]
1152
+ attr_accessor service_account_name: ::String
1153
+ attr_accessor host_ipc: bool
1154
+ attr_accessor host_pid: bool
1155
+ SENSITIVE: []
1156
+ end
1157
+
1158
+ class LambdaDetails
1159
+ attr_accessor function_arn: ::String
1160
+ attr_accessor function_name: ::String
1161
+ attr_accessor description: ::String
1162
+ attr_accessor last_modified_at: ::Time
1163
+ attr_accessor revision_id: ::String
1164
+ attr_accessor function_version: ::String
1165
+ attr_accessor role: ::String
1166
+ attr_accessor vpc_config: Types::VpcConfig
1167
+ attr_accessor tags: ::Array[Types::Tag]
1168
+ SENSITIVE: []
1169
+ end
1170
+
1171
+ class LineageObject
1172
+ attr_accessor start_time: ::Time
1173
+ attr_accessor namespace_pid: ::Integer
1174
+ attr_accessor user_id: ::Integer
1175
+ attr_accessor name: ::String
1176
+ attr_accessor pid: ::Integer
1177
+ attr_accessor uuid: ::String
1178
+ attr_accessor executable_path: ::String
1179
+ attr_accessor euid: ::Integer
1180
+ attr_accessor parent_uuid: ::String
1181
+ SENSITIVE: []
1182
+ end
1183
+
1184
+ class ListCoverageRequest
1185
+ attr_accessor detector_id: ::String
1186
+ attr_accessor next_token: ::String
1187
+ attr_accessor max_results: ::Integer
1188
+ attr_accessor filter_criteria: Types::CoverageFilterCriteria
1189
+ attr_accessor sort_criteria: Types::CoverageSortCriteria
1190
+ SENSITIVE: []
1191
+ end
1192
+
1193
+ class ListCoverageResponse
1194
+ attr_accessor resources: ::Array[Types::CoverageResource]
1195
+ attr_accessor next_token: ::String
1196
+ SENSITIVE: []
1197
+ end
1198
+
1199
+ class ListDetectorsRequest
1200
+ attr_accessor max_results: ::Integer
1201
+ attr_accessor next_token: ::String
1202
+ SENSITIVE: []
1203
+ end
1204
+
1205
+ class ListDetectorsResponse
1206
+ attr_accessor detector_ids: ::Array[::String]
1207
+ attr_accessor next_token: ::String
1208
+ SENSITIVE: []
1209
+ end
1210
+
1211
+ class ListFiltersRequest
1212
+ attr_accessor detector_id: ::String
1213
+ attr_accessor max_results: ::Integer
1214
+ attr_accessor next_token: ::String
1215
+ SENSITIVE: []
1216
+ end
1217
+
1218
+ class ListFiltersResponse
1219
+ attr_accessor filter_names: ::Array[::String]
1220
+ attr_accessor next_token: ::String
1221
+ SENSITIVE: []
1222
+ end
1223
+
1224
+ class ListFindingsRequest
1225
+ attr_accessor detector_id: ::String
1226
+ attr_accessor finding_criteria: Types::FindingCriteria
1227
+ attr_accessor sort_criteria: Types::SortCriteria
1228
+ attr_accessor max_results: ::Integer
1229
+ attr_accessor next_token: ::String
1230
+ SENSITIVE: []
1231
+ end
1232
+
1233
+ class ListFindingsResponse
1234
+ attr_accessor finding_ids: ::Array[::String]
1235
+ attr_accessor next_token: ::String
1236
+ SENSITIVE: []
1237
+ end
1238
+
1239
+ class ListIPSetsRequest
1240
+ attr_accessor detector_id: ::String
1241
+ attr_accessor max_results: ::Integer
1242
+ attr_accessor next_token: ::String
1243
+ SENSITIVE: []
1244
+ end
1245
+
1246
+ class ListIPSetsResponse
1247
+ attr_accessor ip_set_ids: ::Array[::String]
1248
+ attr_accessor next_token: ::String
1249
+ SENSITIVE: []
1250
+ end
1251
+
1252
+ class ListInvitationsRequest
1253
+ attr_accessor max_results: ::Integer
1254
+ attr_accessor next_token: ::String
1255
+ SENSITIVE: []
1256
+ end
1257
+
1258
+ class ListInvitationsResponse
1259
+ attr_accessor invitations: ::Array[Types::Invitation]
1260
+ attr_accessor next_token: ::String
1261
+ SENSITIVE: []
1262
+ end
1263
+
1264
+ class ListMembersRequest
1265
+ attr_accessor detector_id: ::String
1266
+ attr_accessor max_results: ::Integer
1267
+ attr_accessor next_token: ::String
1268
+ attr_accessor only_associated: ::String
1269
+ SENSITIVE: []
1270
+ end
1271
+
1272
+ class ListMembersResponse
1273
+ attr_accessor members: ::Array[Types::Member]
1274
+ attr_accessor next_token: ::String
1275
+ SENSITIVE: []
1276
+ end
1277
+
1278
+ class ListOrganizationAdminAccountsRequest
1279
+ attr_accessor max_results: ::Integer
1280
+ attr_accessor next_token: ::String
1281
+ SENSITIVE: []
1282
+ end
1283
+
1284
+ class ListOrganizationAdminAccountsResponse
1285
+ attr_accessor admin_accounts: ::Array[Types::AdminAccount]
1286
+ attr_accessor next_token: ::String
1287
+ SENSITIVE: []
1288
+ end
1289
+
1290
+ class ListPublishingDestinationsRequest
1291
+ attr_accessor detector_id: ::String
1292
+ attr_accessor max_results: ::Integer
1293
+ attr_accessor next_token: ::String
1294
+ SENSITIVE: []
1295
+ end
1296
+
1297
+ class ListPublishingDestinationsResponse
1298
+ attr_accessor destinations: ::Array[Types::Destination]
1299
+ attr_accessor next_token: ::String
1300
+ SENSITIVE: []
1301
+ end
1302
+
1303
+ class ListTagsForResourceRequest
1304
+ attr_accessor resource_arn: ::String
1305
+ SENSITIVE: []
1306
+ end
1307
+
1308
+ class ListTagsForResourceResponse
1309
+ attr_accessor tags: ::Hash[::String, ::String]
1310
+ SENSITIVE: []
1311
+ end
1312
+
1313
+ class ListThreatIntelSetsRequest
1314
+ attr_accessor detector_id: ::String
1315
+ attr_accessor max_results: ::Integer
1316
+ attr_accessor next_token: ::String
1317
+ SENSITIVE: []
1318
+ end
1319
+
1320
+ class ListThreatIntelSetsResponse
1321
+ attr_accessor threat_intel_set_ids: ::Array[::String]
1322
+ attr_accessor next_token: ::String
1323
+ SENSITIVE: []
1324
+ end
1325
+
1326
+ class LocalIpDetails
1327
+ attr_accessor ip_address_v4: ::String
1328
+ SENSITIVE: []
1329
+ end
1330
+
1331
+ class LocalPortDetails
1332
+ attr_accessor port: ::Integer
1333
+ attr_accessor port_name: ::String
1334
+ SENSITIVE: []
1335
+ end
1336
+
1337
+ class LoginAttribute
1338
+ attr_accessor user: ::String
1339
+ attr_accessor application: ::String
1340
+ attr_accessor failed_login_attempts: ::Integer
1341
+ attr_accessor successful_login_attempts: ::Integer
1342
+ SENSITIVE: []
1343
+ end
1344
+
1345
+ class MalwareProtectionConfiguration
1346
+ attr_accessor scan_ec2_instance_with_findings: Types::ScanEc2InstanceWithFindings
1347
+ SENSITIVE: []
1348
+ end
1349
+
1350
+ class MalwareProtectionConfigurationResult
1351
+ attr_accessor scan_ec2_instance_with_findings: Types::ScanEc2InstanceWithFindingsResult
1352
+ attr_accessor service_role: ::String
1353
+ SENSITIVE: []
1354
+ end
1355
+
1356
+ class MalwareProtectionDataSourceFreeTrial
1357
+ attr_accessor scan_ec2_instance_with_findings: Types::DataSourceFreeTrial
1358
+ SENSITIVE: []
1359
+ end
1360
+
1361
+ class Master
1362
+ attr_accessor account_id: ::String
1363
+ attr_accessor invitation_id: ::String
1364
+ attr_accessor relationship_status: ::String
1365
+ attr_accessor invited_at: ::String
1366
+ SENSITIVE: []
1367
+ end
1368
+
1369
+ class Member
1370
+ attr_accessor account_id: ::String
1371
+ attr_accessor detector_id: ::String
1372
+ attr_accessor master_id: ::String
1373
+ attr_accessor email: ::String
1374
+ attr_accessor relationship_status: ::String
1375
+ attr_accessor invited_at: ::String
1376
+ attr_accessor updated_at: ::String
1377
+ attr_accessor administrator_id: ::String
1378
+ SENSITIVE: []
1379
+ end
1380
+
1381
+ class MemberAdditionalConfiguration
1382
+ attr_accessor name: ("EKS_ADDON_MANAGEMENT" | "ECS_FARGATE_AGENT_MANAGEMENT")
1383
+ attr_accessor status: ("ENABLED" | "DISABLED")
1384
+ SENSITIVE: []
1385
+ end
1386
+
1387
+ class MemberAdditionalConfigurationResult
1388
+ attr_accessor name: ("EKS_ADDON_MANAGEMENT" | "ECS_FARGATE_AGENT_MANAGEMENT")
1389
+ attr_accessor status: ("ENABLED" | "DISABLED")
1390
+ attr_accessor updated_at: ::Time
1391
+ SENSITIVE: []
1392
+ end
1393
+
1394
+ class MemberDataSourceConfiguration
1395
+ attr_accessor account_id: ::String
1396
+ attr_accessor data_sources: Types::DataSourceConfigurationsResult
1397
+ attr_accessor features: ::Array[Types::MemberFeaturesConfigurationResult]
1398
+ SENSITIVE: []
1399
+ end
1400
+
1401
+ class MemberFeaturesConfiguration
1402
+ attr_accessor name: ("S3_DATA_EVENTS" | "EKS_AUDIT_LOGS" | "EBS_MALWARE_PROTECTION" | "RDS_LOGIN_EVENTS" | "EKS_RUNTIME_MONITORING" | "LAMBDA_NETWORK_LOGS" | "RUNTIME_MONITORING")
1403
+ attr_accessor status: ("ENABLED" | "DISABLED")
1404
+ attr_accessor additional_configuration: ::Array[Types::MemberAdditionalConfiguration]
1405
+ SENSITIVE: []
1406
+ end
1407
+
1408
+ class MemberFeaturesConfigurationResult
1409
+ attr_accessor name: ("S3_DATA_EVENTS" | "EKS_AUDIT_LOGS" | "EBS_MALWARE_PROTECTION" | "RDS_LOGIN_EVENTS" | "EKS_RUNTIME_MONITORING" | "LAMBDA_NETWORK_LOGS" | "RUNTIME_MONITORING")
1410
+ attr_accessor status: ("ENABLED" | "DISABLED")
1411
+ attr_accessor updated_at: ::Time
1412
+ attr_accessor additional_configuration: ::Array[Types::MemberAdditionalConfigurationResult]
1413
+ SENSITIVE: []
1414
+ end
1415
+
1416
+ class NetworkConnectionAction
1417
+ attr_accessor blocked: bool
1418
+ attr_accessor connection_direction: ::String
1419
+ attr_accessor local_port_details: Types::LocalPortDetails
1420
+ attr_accessor protocol: ::String
1421
+ attr_accessor local_ip_details: Types::LocalIpDetails
1422
+ attr_accessor remote_ip_details: Types::RemoteIpDetails
1423
+ attr_accessor remote_port_details: Types::RemotePortDetails
1424
+ SENSITIVE: []
1425
+ end
1426
+
1427
+ class NetworkInterface
1428
+ attr_accessor ipv_6_addresses: ::Array[::String]
1429
+ attr_accessor network_interface_id: ::String
1430
+ attr_accessor private_dns_name: ::String
1431
+ attr_accessor private_ip_address: ::String
1432
+ attr_accessor private_ip_addresses: ::Array[Types::PrivateIpAddressDetails]
1433
+ attr_accessor public_dns_name: ::String
1434
+ attr_accessor public_ip: ::String
1435
+ attr_accessor security_groups: ::Array[Types::SecurityGroup]
1436
+ attr_accessor subnet_id: ::String
1437
+ attr_accessor vpc_id: ::String
1438
+ SENSITIVE: []
1439
+ end
1440
+
1441
+ class Observations
1442
+ attr_accessor text: ::Array[::String]
1443
+ SENSITIVE: []
1444
+ end
1445
+
1446
+ class Organization
1447
+ attr_accessor asn: ::String
1448
+ attr_accessor asn_org: ::String
1449
+ attr_accessor isp: ::String
1450
+ attr_accessor org: ::String
1451
+ SENSITIVE: []
1452
+ end
1453
+
1454
+ class OrganizationAdditionalConfiguration
1455
+ attr_accessor name: ("EKS_ADDON_MANAGEMENT" | "ECS_FARGATE_AGENT_MANAGEMENT")
1456
+ attr_accessor auto_enable: ("NEW" | "NONE" | "ALL")
1457
+ SENSITIVE: []
1458
+ end
1459
+
1460
+ class OrganizationAdditionalConfigurationResult
1461
+ attr_accessor name: ("EKS_ADDON_MANAGEMENT" | "ECS_FARGATE_AGENT_MANAGEMENT")
1462
+ attr_accessor auto_enable: ("NEW" | "NONE" | "ALL")
1463
+ SENSITIVE: []
1464
+ end
1465
+
1466
+ class OrganizationDataSourceConfigurations
1467
+ attr_accessor s3_logs: Types::OrganizationS3LogsConfiguration
1468
+ attr_accessor kubernetes: Types::OrganizationKubernetesConfiguration
1469
+ attr_accessor malware_protection: Types::OrganizationMalwareProtectionConfiguration
1470
+ SENSITIVE: []
1471
+ end
1472
+
1473
+ class OrganizationDataSourceConfigurationsResult
1474
+ attr_accessor s3_logs: Types::OrganizationS3LogsConfigurationResult
1475
+ attr_accessor kubernetes: Types::OrganizationKubernetesConfigurationResult
1476
+ attr_accessor malware_protection: Types::OrganizationMalwareProtectionConfigurationResult
1477
+ SENSITIVE: []
1478
+ end
1479
+
1480
+ class OrganizationDetails
1481
+ attr_accessor updated_at: ::Time
1482
+ attr_accessor organization_statistics: Types::OrganizationStatistics
1483
+ SENSITIVE: []
1484
+ end
1485
+
1486
+ class OrganizationEbsVolumes
1487
+ attr_accessor auto_enable: bool
1488
+ SENSITIVE: []
1489
+ end
1490
+
1491
+ class OrganizationEbsVolumesResult
1492
+ attr_accessor auto_enable: bool
1493
+ SENSITIVE: []
1494
+ end
1495
+
1496
+ class OrganizationFeatureConfiguration
1497
+ attr_accessor name: ("S3_DATA_EVENTS" | "EKS_AUDIT_LOGS" | "EBS_MALWARE_PROTECTION" | "RDS_LOGIN_EVENTS" | "EKS_RUNTIME_MONITORING" | "LAMBDA_NETWORK_LOGS" | "RUNTIME_MONITORING")
1498
+ attr_accessor auto_enable: ("NEW" | "NONE" | "ALL")
1499
+ attr_accessor additional_configuration: ::Array[Types::OrganizationAdditionalConfiguration]
1500
+ SENSITIVE: []
1501
+ end
1502
+
1503
+ class OrganizationFeatureConfigurationResult
1504
+ attr_accessor name: ("S3_DATA_EVENTS" | "EKS_AUDIT_LOGS" | "EBS_MALWARE_PROTECTION" | "RDS_LOGIN_EVENTS" | "EKS_RUNTIME_MONITORING" | "LAMBDA_NETWORK_LOGS" | "RUNTIME_MONITORING")
1505
+ attr_accessor auto_enable: ("NEW" | "NONE" | "ALL")
1506
+ attr_accessor additional_configuration: ::Array[Types::OrganizationAdditionalConfigurationResult]
1507
+ SENSITIVE: []
1508
+ end
1509
+
1510
+ class OrganizationFeatureStatistics
1511
+ attr_accessor name: ("S3_DATA_EVENTS" | "EKS_AUDIT_LOGS" | "EBS_MALWARE_PROTECTION" | "RDS_LOGIN_EVENTS" | "EKS_RUNTIME_MONITORING" | "LAMBDA_NETWORK_LOGS" | "RUNTIME_MONITORING")
1512
+ attr_accessor enabled_accounts_count: ::Integer
1513
+ attr_accessor additional_configuration: ::Array[Types::OrganizationFeatureStatisticsAdditionalConfiguration]
1514
+ SENSITIVE: []
1515
+ end
1516
+
1517
+ class OrganizationFeatureStatisticsAdditionalConfiguration
1518
+ attr_accessor name: ("EKS_ADDON_MANAGEMENT" | "ECS_FARGATE_AGENT_MANAGEMENT")
1519
+ attr_accessor enabled_accounts_count: ::Integer
1520
+ SENSITIVE: []
1521
+ end
1522
+
1523
+ class OrganizationKubernetesAuditLogsConfiguration
1524
+ attr_accessor auto_enable: bool
1525
+ SENSITIVE: []
1526
+ end
1527
+
1528
+ class OrganizationKubernetesAuditLogsConfigurationResult
1529
+ attr_accessor auto_enable: bool
1530
+ SENSITIVE: []
1531
+ end
1532
+
1533
+ class OrganizationKubernetesConfiguration
1534
+ attr_accessor audit_logs: Types::OrganizationKubernetesAuditLogsConfiguration
1535
+ SENSITIVE: []
1536
+ end
1537
+
1538
+ class OrganizationKubernetesConfigurationResult
1539
+ attr_accessor audit_logs: Types::OrganizationKubernetesAuditLogsConfigurationResult
1540
+ SENSITIVE: []
1541
+ end
1542
+
1543
+ class OrganizationMalwareProtectionConfiguration
1544
+ attr_accessor scan_ec2_instance_with_findings: Types::OrganizationScanEc2InstanceWithFindings
1545
+ SENSITIVE: []
1546
+ end
1547
+
1548
+ class OrganizationMalwareProtectionConfigurationResult
1549
+ attr_accessor scan_ec2_instance_with_findings: Types::OrganizationScanEc2InstanceWithFindingsResult
1550
+ SENSITIVE: []
1551
+ end
1552
+
1553
+ class OrganizationS3LogsConfiguration
1554
+ attr_accessor auto_enable: bool
1555
+ SENSITIVE: []
1556
+ end
1557
+
1558
+ class OrganizationS3LogsConfigurationResult
1559
+ attr_accessor auto_enable: bool
1560
+ SENSITIVE: []
1561
+ end
1562
+
1563
+ class OrganizationScanEc2InstanceWithFindings
1564
+ attr_accessor ebs_volumes: Types::OrganizationEbsVolumes
1565
+ SENSITIVE: []
1566
+ end
1567
+
1568
+ class OrganizationScanEc2InstanceWithFindingsResult
1569
+ attr_accessor ebs_volumes: Types::OrganizationEbsVolumesResult
1570
+ SENSITIVE: []
1571
+ end
1572
+
1573
+ class OrganizationStatistics
1574
+ attr_accessor total_accounts_count: ::Integer
1575
+ attr_accessor member_accounts_count: ::Integer
1576
+ attr_accessor active_accounts_count: ::Integer
1577
+ attr_accessor enabled_accounts_count: ::Integer
1578
+ attr_accessor count_by_feature: ::Array[Types::OrganizationFeatureStatistics]
1579
+ SENSITIVE: []
1580
+ end
1581
+
1582
+ class Owner
1583
+ attr_accessor id: ::String
1584
+ SENSITIVE: []
1585
+ end
1586
+
1587
+ class PermissionConfiguration
1588
+ attr_accessor bucket_level_permissions: Types::BucketLevelPermissions
1589
+ attr_accessor account_level_permissions: Types::AccountLevelPermissions
1590
+ SENSITIVE: []
1591
+ end
1592
+
1593
+ class PortProbeAction
1594
+ attr_accessor blocked: bool
1595
+ attr_accessor port_probe_details: ::Array[Types::PortProbeDetail]
1596
+ SENSITIVE: []
1597
+ end
1598
+
1599
+ class PortProbeDetail
1600
+ attr_accessor local_port_details: Types::LocalPortDetails
1601
+ attr_accessor local_ip_details: Types::LocalIpDetails
1602
+ attr_accessor remote_ip_details: Types::RemoteIpDetails
1603
+ SENSITIVE: []
1604
+ end
1605
+
1606
+ class PrivateIpAddressDetails
1607
+ attr_accessor private_dns_name: ::String
1608
+ attr_accessor private_ip_address: ::String
1609
+ SENSITIVE: []
1610
+ end
1611
+
1612
+ class ProcessDetails
1613
+ attr_accessor name: ::String
1614
+ attr_accessor executable_path: ::String
1615
+ attr_accessor executable_sha_256: ::String
1616
+ attr_accessor namespace_pid: ::Integer
1617
+ attr_accessor pwd: ::String
1618
+ attr_accessor pid: ::Integer
1619
+ attr_accessor start_time: ::Time
1620
+ attr_accessor uuid: ::String
1621
+ attr_accessor parent_uuid: ::String
1622
+ attr_accessor user: ::String
1623
+ attr_accessor user_id: ::Integer
1624
+ attr_accessor euid: ::Integer
1625
+ attr_accessor lineage: ::Array[Types::LineageObject]
1626
+ SENSITIVE: []
1627
+ end
1628
+
1629
+ class ProductCode
1630
+ attr_accessor code: ::String
1631
+ attr_accessor product_type: ::String
1632
+ SENSITIVE: []
1633
+ end
1634
+
1635
+ class PublicAccess
1636
+ attr_accessor permission_configuration: Types::PermissionConfiguration
1637
+ attr_accessor effective_permission: ::String
1638
+ SENSITIVE: []
1639
+ end
1640
+
1641
+ class RdsDbInstanceDetails
1642
+ attr_accessor db_instance_identifier: ::String
1643
+ attr_accessor engine: ::String
1644
+ attr_accessor engine_version: ::String
1645
+ attr_accessor db_cluster_identifier: ::String
1646
+ attr_accessor db_instance_arn: ::String
1647
+ attr_accessor tags: ::Array[Types::Tag]
1648
+ SENSITIVE: []
1649
+ end
1650
+
1651
+ class RdsDbUserDetails
1652
+ attr_accessor user: ::String
1653
+ attr_accessor application: ::String
1654
+ attr_accessor database: ::String
1655
+ attr_accessor ssl: ::String
1656
+ attr_accessor auth_method: ::String
1657
+ SENSITIVE: []
1658
+ end
1659
+
1660
+ class RdsLoginAttemptAction
1661
+ attr_accessor remote_ip_details: Types::RemoteIpDetails
1662
+ attr_accessor login_attributes: ::Array[Types::LoginAttribute]
1663
+ SENSITIVE: []
1664
+ end
1665
+
1666
+ class RemoteAccountDetails
1667
+ attr_accessor account_id: ::String
1668
+ attr_accessor affiliated: bool
1669
+ SENSITIVE: []
1670
+ end
1671
+
1672
+ class RemoteIpDetails
1673
+ attr_accessor city: Types::City
1674
+ attr_accessor country: Types::Country
1675
+ attr_accessor geo_location: Types::GeoLocation
1676
+ attr_accessor ip_address_v4: ::String
1677
+ attr_accessor organization: Types::Organization
1678
+ SENSITIVE: []
1679
+ end
1680
+
1681
+ class RemotePortDetails
1682
+ attr_accessor port: ::Integer
1683
+ attr_accessor port_name: ::String
1684
+ SENSITIVE: []
1685
+ end
1686
+
1687
+ class Resource
1688
+ attr_accessor access_key_details: Types::AccessKeyDetails
1689
+ attr_accessor s3_bucket_details: ::Array[Types::S3BucketDetail]
1690
+ attr_accessor instance_details: Types::InstanceDetails
1691
+ attr_accessor eks_cluster_details: Types::EksClusterDetails
1692
+ attr_accessor kubernetes_details: Types::KubernetesDetails
1693
+ attr_accessor resource_type: ::String
1694
+ attr_accessor ebs_volume_details: Types::EbsVolumeDetails
1695
+ attr_accessor ecs_cluster_details: Types::EcsClusterDetails
1696
+ attr_accessor container_details: Types::Container
1697
+ attr_accessor rds_db_instance_details: Types::RdsDbInstanceDetails
1698
+ attr_accessor rds_db_user_details: Types::RdsDbUserDetails
1699
+ attr_accessor lambda_details: Types::LambdaDetails
1700
+ SENSITIVE: []
1701
+ end
1702
+
1703
+ class ResourceDetails
1704
+ attr_accessor instance_arn: ::String
1705
+ SENSITIVE: []
1706
+ end
1707
+
1708
+ class RuntimeContext
1709
+ attr_accessor modifying_process: Types::ProcessDetails
1710
+ attr_accessor modified_at: ::Time
1711
+ attr_accessor script_path: ::String
1712
+ attr_accessor library_path: ::String
1713
+ attr_accessor ld_preload_value: ::String
1714
+ attr_accessor socket_path: ::String
1715
+ attr_accessor runc_binary_path: ::String
1716
+ attr_accessor release_agent_path: ::String
1717
+ attr_accessor mount_source: ::String
1718
+ attr_accessor mount_target: ::String
1719
+ attr_accessor file_system_type: ::String
1720
+ attr_accessor flags: ::Array[::String]
1721
+ attr_accessor module_name: ::String
1722
+ attr_accessor module_file_path: ::String
1723
+ attr_accessor module_sha_256: ::String
1724
+ attr_accessor shell_history_file_path: ::String
1725
+ attr_accessor target_process: Types::ProcessDetails
1726
+ attr_accessor address_family: ::String
1727
+ attr_accessor iana_protocol_number: ::Integer
1728
+ attr_accessor memory_regions: ::Array[::String]
1729
+ SENSITIVE: []
1730
+ end
1731
+
1732
+ class RuntimeDetails
1733
+ attr_accessor process: Types::ProcessDetails
1734
+ attr_accessor context: Types::RuntimeContext
1735
+ SENSITIVE: []
1736
+ end
1737
+
1738
+ class S3BucketDetail
1739
+ attr_accessor arn: ::String
1740
+ attr_accessor name: ::String
1741
+ attr_accessor type: ::String
1742
+ attr_accessor created_at: ::Time
1743
+ attr_accessor owner: Types::Owner
1744
+ attr_accessor tags: ::Array[Types::Tag]
1745
+ attr_accessor default_server_side_encryption: Types::DefaultServerSideEncryption
1746
+ attr_accessor public_access: Types::PublicAccess
1747
+ SENSITIVE: []
1748
+ end
1749
+
1750
+ class S3LogsConfiguration
1751
+ attr_accessor enable: bool
1752
+ SENSITIVE: []
1753
+ end
1754
+
1755
+ class S3LogsConfigurationResult
1756
+ attr_accessor status: ("ENABLED" | "DISABLED")
1757
+ SENSITIVE: []
1758
+ end
1759
+
1760
+ class Scan
1761
+ attr_accessor detector_id: ::String
1762
+ attr_accessor admin_detector_id: ::String
1763
+ attr_accessor scan_id: ::String
1764
+ attr_accessor scan_status: ("RUNNING" | "COMPLETED" | "FAILED" | "SKIPPED")
1765
+ attr_accessor failure_reason: ::String
1766
+ attr_accessor scan_start_time: ::Time
1767
+ attr_accessor scan_end_time: ::Time
1768
+ attr_accessor trigger_details: Types::TriggerDetails
1769
+ attr_accessor resource_details: Types::ResourceDetails
1770
+ attr_accessor scan_result_details: Types::ScanResultDetails
1771
+ attr_accessor account_id: ::String
1772
+ attr_accessor total_bytes: ::Integer
1773
+ attr_accessor file_count: ::Integer
1774
+ attr_accessor attached_volumes: ::Array[Types::VolumeDetail]
1775
+ attr_accessor scan_type: ("GUARDDUTY_INITIATED" | "ON_DEMAND")
1776
+ SENSITIVE: []
1777
+ end
1778
+
1779
+ class ScanCondition
1780
+ attr_accessor map_equals: ::Array[Types::ScanConditionPair]
1781
+ SENSITIVE: []
1782
+ end
1783
+
1784
+ class ScanConditionPair
1785
+ attr_accessor key: ::String
1786
+ attr_accessor value: ::String
1787
+ SENSITIVE: []
1788
+ end
1789
+
1790
+ class ScanDetections
1791
+ attr_accessor scanned_item_count: Types::ScannedItemCount
1792
+ attr_accessor threats_detected_item_count: Types::ThreatsDetectedItemCount
1793
+ attr_accessor highest_severity_threat_details: Types::HighestSeverityThreatDetails
1794
+ attr_accessor threat_detected_by_name: Types::ThreatDetectedByName
1795
+ SENSITIVE: []
1796
+ end
1797
+
1798
+ class ScanEc2InstanceWithFindings
1799
+ attr_accessor ebs_volumes: bool
1800
+ SENSITIVE: []
1801
+ end
1802
+
1803
+ class ScanEc2InstanceWithFindingsResult
1804
+ attr_accessor ebs_volumes: Types::EbsVolumesResult
1805
+ SENSITIVE: []
1806
+ end
1807
+
1808
+ class ScanFilePath
1809
+ attr_accessor file_path: ::String
1810
+ attr_accessor volume_arn: ::String
1811
+ attr_accessor hash: ::String
1812
+ attr_accessor file_name: ::String
1813
+ SENSITIVE: []
1814
+ end
1815
+
1816
+ class ScanResourceCriteria
1817
+ attr_accessor include: ::Hash[("EC2_INSTANCE_TAG"), Types::ScanCondition]
1818
+ attr_accessor exclude: ::Hash[("EC2_INSTANCE_TAG"), Types::ScanCondition]
1819
+ SENSITIVE: []
1820
+ end
1821
+
1822
+ class ScanResultDetails
1823
+ attr_accessor scan_result: ("CLEAN" | "INFECTED")
1824
+ SENSITIVE: []
1825
+ end
1826
+
1827
+ class ScanThreatName
1828
+ attr_accessor name: ::String
1829
+ attr_accessor severity: ::String
1830
+ attr_accessor item_count: ::Integer
1831
+ attr_accessor file_paths: ::Array[Types::ScanFilePath]
1832
+ SENSITIVE: []
1833
+ end
1834
+
1835
+ class ScannedItemCount
1836
+ attr_accessor total_gb: ::Integer
1837
+ attr_accessor files: ::Integer
1838
+ attr_accessor volumes: ::Integer
1839
+ SENSITIVE: []
1840
+ end
1841
+
1842
+ class SecurityContext
1843
+ attr_accessor privileged: bool
1844
+ attr_accessor allow_privilege_escalation: bool
1845
+ SENSITIVE: []
1846
+ end
1847
+
1848
+ class SecurityGroup
1849
+ attr_accessor group_id: ::String
1850
+ attr_accessor group_name: ::String
1851
+ SENSITIVE: []
1852
+ end
1853
+
1854
+ class Service
1855
+ attr_accessor action: Types::Action
1856
+ attr_accessor evidence: Types::Evidence
1857
+ attr_accessor archived: bool
1858
+ attr_accessor count: ::Integer
1859
+ attr_accessor detector_id: ::String
1860
+ attr_accessor event_first_seen: ::String
1861
+ attr_accessor event_last_seen: ::String
1862
+ attr_accessor resource_role: ::String
1863
+ attr_accessor service_name: ::String
1864
+ attr_accessor user_feedback: ::String
1865
+ attr_accessor additional_info: Types::ServiceAdditionalInfo
1866
+ attr_accessor feature_name: ::String
1867
+ attr_accessor ebs_volume_scan_details: Types::EbsVolumeScanDetails
1868
+ attr_accessor runtime_details: Types::RuntimeDetails
1869
+ attr_accessor detection: Types::Detection
1870
+ SENSITIVE: []
1871
+ end
1872
+
1873
+ class ServiceAdditionalInfo
1874
+ attr_accessor value: ::String
1875
+ attr_accessor type: ::String
1876
+ SENSITIVE: []
1877
+ end
1878
+
1879
+ class SortCriteria
1880
+ attr_accessor attribute_name: ::String
1881
+ attr_accessor order_by: ("ASC" | "DESC")
1882
+ SENSITIVE: []
1883
+ end
1884
+
1885
+ class StartMalwareScanRequest
1886
+ attr_accessor resource_arn: ::String
1887
+ SENSITIVE: []
1888
+ end
1889
+
1890
+ class StartMalwareScanResponse
1891
+ attr_accessor scan_id: ::String
1892
+ SENSITIVE: []
1893
+ end
1894
+
1895
+ class StartMonitoringMembersRequest
1896
+ attr_accessor detector_id: ::String
1897
+ attr_accessor account_ids: ::Array[::String]
1898
+ SENSITIVE: []
1899
+ end
1900
+
1901
+ class StartMonitoringMembersResponse
1902
+ attr_accessor unprocessed_accounts: ::Array[Types::UnprocessedAccount]
1903
+ SENSITIVE: []
1904
+ end
1905
+
1906
+ class StopMonitoringMembersRequest
1907
+ attr_accessor detector_id: ::String
1908
+ attr_accessor account_ids: ::Array[::String]
1909
+ SENSITIVE: []
1910
+ end
1911
+
1912
+ class StopMonitoringMembersResponse
1913
+ attr_accessor unprocessed_accounts: ::Array[Types::UnprocessedAccount]
1914
+ SENSITIVE: []
1915
+ end
1916
+
1917
+ class Tag
1918
+ attr_accessor key: ::String
1919
+ attr_accessor value: ::String
1920
+ SENSITIVE: []
1921
+ end
1922
+
1923
+ class TagResourceRequest
1924
+ attr_accessor resource_arn: ::String
1925
+ attr_accessor tags: ::Hash[::String, ::String]
1926
+ SENSITIVE: []
1927
+ end
1928
+
1929
+ class TagResourceResponse < Aws::EmptyStructure
1930
+ end
1931
+
1932
+ class ThreatDetectedByName
1933
+ attr_accessor item_count: ::Integer
1934
+ attr_accessor unique_threat_name_count: ::Integer
1935
+ attr_accessor shortened: bool
1936
+ attr_accessor threat_names: ::Array[Types::ScanThreatName]
1937
+ SENSITIVE: []
1938
+ end
1939
+
1940
+ class ThreatIntelligenceDetail
1941
+ attr_accessor threat_list_name: ::String
1942
+ attr_accessor threat_names: ::Array[::String]
1943
+ SENSITIVE: []
1944
+ end
1945
+
1946
+ class ThreatsDetectedItemCount
1947
+ attr_accessor files: ::Integer
1948
+ SENSITIVE: []
1949
+ end
1950
+
1951
+ class Total
1952
+ attr_accessor amount: ::String
1953
+ attr_accessor unit: ::String
1954
+ SENSITIVE: []
1955
+ end
1956
+
1957
+ class TriggerDetails
1958
+ attr_accessor guard_duty_finding_id: ::String
1959
+ attr_accessor description: ::String
1960
+ SENSITIVE: []
1961
+ end
1962
+
1963
+ class UnarchiveFindingsRequest
1964
+ attr_accessor detector_id: ::String
1965
+ attr_accessor finding_ids: ::Array[::String]
1966
+ SENSITIVE: []
1967
+ end
1968
+
1969
+ class UnarchiveFindingsResponse < Aws::EmptyStructure
1970
+ end
1971
+
1972
+ class UnprocessedAccount
1973
+ attr_accessor account_id: ::String
1974
+ attr_accessor result: ::String
1975
+ SENSITIVE: []
1976
+ end
1977
+
1978
+ class UnprocessedDataSourcesResult
1979
+ attr_accessor malware_protection: Types::MalwareProtectionConfigurationResult
1980
+ SENSITIVE: []
1981
+ end
1982
+
1983
+ class UntagResourceRequest
1984
+ attr_accessor resource_arn: ::String
1985
+ attr_accessor tag_keys: ::Array[::String]
1986
+ SENSITIVE: []
1987
+ end
1988
+
1989
+ class UntagResourceResponse < Aws::EmptyStructure
1990
+ end
1991
+
1992
+ class UpdateDetectorRequest
1993
+ attr_accessor detector_id: ::String
1994
+ attr_accessor enable: bool
1995
+ attr_accessor finding_publishing_frequency: ("FIFTEEN_MINUTES" | "ONE_HOUR" | "SIX_HOURS")
1996
+ attr_accessor data_sources: Types::DataSourceConfigurations
1997
+ attr_accessor features: ::Array[Types::DetectorFeatureConfiguration]
1998
+ SENSITIVE: []
1999
+ end
2000
+
2001
+ class UpdateDetectorResponse < Aws::EmptyStructure
2002
+ end
2003
+
2004
+ class UpdateFilterRequest
2005
+ attr_accessor detector_id: ::String
2006
+ attr_accessor filter_name: ::String
2007
+ attr_accessor description: ::String
2008
+ attr_accessor action: ("NOOP" | "ARCHIVE")
2009
+ attr_accessor rank: ::Integer
2010
+ attr_accessor finding_criteria: Types::FindingCriteria
2011
+ SENSITIVE: []
2012
+ end
2013
+
2014
+ class UpdateFilterResponse
2015
+ attr_accessor name: ::String
2016
+ SENSITIVE: []
2017
+ end
2018
+
2019
+ class UpdateFindingsFeedbackRequest
2020
+ attr_accessor detector_id: ::String
2021
+ attr_accessor finding_ids: ::Array[::String]
2022
+ attr_accessor feedback: ("USEFUL" | "NOT_USEFUL")
2023
+ attr_accessor comments: ::String
2024
+ SENSITIVE: []
2025
+ end
2026
+
2027
+ class UpdateFindingsFeedbackResponse < Aws::EmptyStructure
2028
+ end
2029
+
2030
+ class UpdateIPSetRequest
2031
+ attr_accessor detector_id: ::String
2032
+ attr_accessor ip_set_id: ::String
2033
+ attr_accessor name: ::String
2034
+ attr_accessor location: ::String
2035
+ attr_accessor activate: bool
2036
+ SENSITIVE: []
2037
+ end
2038
+
2039
+ class UpdateIPSetResponse < Aws::EmptyStructure
2040
+ end
2041
+
2042
+ class UpdateMalwareScanSettingsRequest
2043
+ attr_accessor detector_id: ::String
2044
+ attr_accessor scan_resource_criteria: Types::ScanResourceCriteria
2045
+ attr_accessor ebs_snapshot_preservation: ("NO_RETENTION" | "RETENTION_WITH_FINDING")
2046
+ SENSITIVE: []
2047
+ end
2048
+
2049
+ class UpdateMalwareScanSettingsResponse < Aws::EmptyStructure
2050
+ end
2051
+
2052
+ class UpdateMemberDetectorsRequest
2053
+ attr_accessor detector_id: ::String
2054
+ attr_accessor account_ids: ::Array[::String]
2055
+ attr_accessor data_sources: Types::DataSourceConfigurations
2056
+ attr_accessor features: ::Array[Types::MemberFeaturesConfiguration]
2057
+ SENSITIVE: []
2058
+ end
2059
+
2060
+ class UpdateMemberDetectorsResponse
2061
+ attr_accessor unprocessed_accounts: ::Array[Types::UnprocessedAccount]
2062
+ SENSITIVE: []
2063
+ end
2064
+
2065
+ class UpdateOrganizationConfigurationRequest
2066
+ attr_accessor detector_id: ::String
2067
+ attr_accessor auto_enable: bool
2068
+ attr_accessor data_sources: Types::OrganizationDataSourceConfigurations
2069
+ attr_accessor features: ::Array[Types::OrganizationFeatureConfiguration]
2070
+ attr_accessor auto_enable_organization_members: ("NEW" | "ALL" | "NONE")
2071
+ SENSITIVE: []
2072
+ end
2073
+
2074
+ class UpdateOrganizationConfigurationResponse < Aws::EmptyStructure
2075
+ end
2076
+
2077
+ class UpdatePublishingDestinationRequest
2078
+ attr_accessor detector_id: ::String
2079
+ attr_accessor destination_id: ::String
2080
+ attr_accessor destination_properties: Types::DestinationProperties
2081
+ SENSITIVE: []
2082
+ end
2083
+
2084
+ class UpdatePublishingDestinationResponse < Aws::EmptyStructure
2085
+ end
2086
+
2087
+ class UpdateThreatIntelSetRequest
2088
+ attr_accessor detector_id: ::String
2089
+ attr_accessor threat_intel_set_id: ::String
2090
+ attr_accessor name: ::String
2091
+ attr_accessor location: ::String
2092
+ attr_accessor activate: bool
2093
+ SENSITIVE: []
2094
+ end
2095
+
2096
+ class UpdateThreatIntelSetResponse < Aws::EmptyStructure
2097
+ end
2098
+
2099
+ class UsageAccountResult
2100
+ attr_accessor account_id: ::String
2101
+ attr_accessor total: Types::Total
2102
+ SENSITIVE: []
2103
+ end
2104
+
2105
+ class UsageCriteria
2106
+ attr_accessor account_ids: ::Array[::String]
2107
+ attr_accessor data_sources: ::Array[("FLOW_LOGS" | "CLOUD_TRAIL" | "DNS_LOGS" | "S3_LOGS" | "KUBERNETES_AUDIT_LOGS" | "EC2_MALWARE_SCAN")]
2108
+ attr_accessor resources: ::Array[::String]
2109
+ attr_accessor features: ::Array[("FLOW_LOGS" | "CLOUD_TRAIL" | "DNS_LOGS" | "S3_DATA_EVENTS" | "EKS_AUDIT_LOGS" | "EBS_MALWARE_PROTECTION" | "RDS_LOGIN_EVENTS" | "LAMBDA_NETWORK_LOGS" | "EKS_RUNTIME_MONITORING" | "FARGATE_RUNTIME_MONITORING" | "EC2_RUNTIME_MONITORING")]
2110
+ SENSITIVE: []
2111
+ end
2112
+
2113
+ class UsageDataSourceResult
2114
+ attr_accessor data_source: ("FLOW_LOGS" | "CLOUD_TRAIL" | "DNS_LOGS" | "S3_LOGS" | "KUBERNETES_AUDIT_LOGS" | "EC2_MALWARE_SCAN")
2115
+ attr_accessor total: Types::Total
2116
+ SENSITIVE: []
2117
+ end
2118
+
2119
+ class UsageFeatureResult
2120
+ attr_accessor feature: ("FLOW_LOGS" | "CLOUD_TRAIL" | "DNS_LOGS" | "S3_DATA_EVENTS" | "EKS_AUDIT_LOGS" | "EBS_MALWARE_PROTECTION" | "RDS_LOGIN_EVENTS" | "LAMBDA_NETWORK_LOGS" | "EKS_RUNTIME_MONITORING" | "FARGATE_RUNTIME_MONITORING" | "EC2_RUNTIME_MONITORING")
2121
+ attr_accessor total: Types::Total
2122
+ SENSITIVE: []
2123
+ end
2124
+
2125
+ class UsageResourceResult
2126
+ attr_accessor resource: ::String
2127
+ attr_accessor total: Types::Total
2128
+ SENSITIVE: []
2129
+ end
2130
+
2131
+ class UsageStatistics
2132
+ attr_accessor sum_by_account: ::Array[Types::UsageAccountResult]
2133
+ attr_accessor top_accounts_by_feature: ::Array[Types::UsageTopAccountsResult]
2134
+ attr_accessor sum_by_data_source: ::Array[Types::UsageDataSourceResult]
2135
+ attr_accessor sum_by_resource: ::Array[Types::UsageResourceResult]
2136
+ attr_accessor top_resources: ::Array[Types::UsageResourceResult]
2137
+ attr_accessor sum_by_feature: ::Array[Types::UsageFeatureResult]
2138
+ SENSITIVE: []
2139
+ end
2140
+
2141
+ class UsageTopAccountResult
2142
+ attr_accessor account_id: ::String
2143
+ attr_accessor total: Types::Total
2144
+ SENSITIVE: []
2145
+ end
2146
+
2147
+ class UsageTopAccountsResult
2148
+ attr_accessor feature: ("FLOW_LOGS" | "CLOUD_TRAIL" | "DNS_LOGS" | "S3_DATA_EVENTS" | "EKS_AUDIT_LOGS" | "EBS_MALWARE_PROTECTION" | "RDS_LOGIN_EVENTS" | "LAMBDA_NETWORK_LOGS" | "EKS_RUNTIME_MONITORING" | "FARGATE_RUNTIME_MONITORING" | "EC2_RUNTIME_MONITORING")
2149
+ attr_accessor accounts: ::Array[Types::UsageTopAccountResult]
2150
+ SENSITIVE: []
2151
+ end
2152
+
2153
+ class Volume
2154
+ attr_accessor name: ::String
2155
+ attr_accessor host_path: Types::HostPath
2156
+ SENSITIVE: []
2157
+ end
2158
+
2159
+ class VolumeDetail
2160
+ attr_accessor volume_arn: ::String
2161
+ attr_accessor volume_type: ::String
2162
+ attr_accessor device_name: ::String
2163
+ attr_accessor volume_size_in_gb: ::Integer
2164
+ attr_accessor encryption_type: ::String
2165
+ attr_accessor snapshot_arn: ::String
2166
+ attr_accessor kms_key_arn: ::String
2167
+ SENSITIVE: []
2168
+ end
2169
+
2170
+ class VolumeMount
2171
+ attr_accessor name: ::String
2172
+ attr_accessor mount_path: ::String
2173
+ SENSITIVE: []
2174
+ end
2175
+
2176
+ class VpcConfig
2177
+ attr_accessor subnet_ids: ::Array[::String]
2178
+ attr_accessor vpc_id: ::String
2179
+ attr_accessor security_groups: ::Array[Types::SecurityGroup]
2180
+ SENSITIVE: []
2181
+ end
2182
+ end
2183
+ end