aws-sdk-guardduty 1.86.0 → 1.87.0

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.
Files changed (12) hide show
  1. checksums.yaml +4 -4
  2. data/CHANGELOG.md +5 -0
  3. data/VERSION +1 -1
  4. data/lib/aws-sdk-guardduty/client.rb +1 -1
  5. data/lib/aws-sdk-guardduty/plugins/endpoints.rb +1 -0
  6. data/lib/aws-sdk-guardduty.rb +1 -1
  7. data/sig/client.rbs +1150 -0
  8. data/sig/errors.rbs +32 -0
  9. data/sig/resource.rbs +79 -0
  10. data/sig/types.rbs +2183 -0
  11. data/sig/waiters.rbs +13 -0
  12. metadata +13 -8
data/sig/types.rbs ADDED
@@ -0,0 +1,2183 @@
1
+ # WARNING ABOUT GENERATED CODE
2
+ #
3
+ # This file is generated. See the contributing guide for more information:
4
+ # https://github.com/aws/aws-sdk-ruby/blob/version-3/CONTRIBUTING.md
5
+ #
6
+ # WARNING ABOUT GENERATED CODE
7
+
8
+ module Aws::GuardDuty
9
+ module Types
10
+
11
+ class AcceptAdministratorInvitationRequest
12
+ attr_accessor detector_id: ::String
13
+ attr_accessor administrator_id: ::String
14
+ attr_accessor invitation_id: ::String
15
+ SENSITIVE: []
16
+ end
17
+
18
+ class AcceptAdministratorInvitationResponse < Aws::EmptyStructure
19
+ end
20
+
21
+ class AcceptInvitationRequest
22
+ attr_accessor detector_id: ::String
23
+ attr_accessor master_id: ::String
24
+ attr_accessor invitation_id: ::String
25
+ SENSITIVE: []
26
+ end
27
+
28
+ class AcceptInvitationResponse < Aws::EmptyStructure
29
+ end
30
+
31
+ class AccessControlList
32
+ attr_accessor allows_public_read_access: bool
33
+ attr_accessor allows_public_write_access: bool
34
+ SENSITIVE: []
35
+ end
36
+
37
+ class AccessDeniedException
38
+ attr_accessor message: ::String
39
+ attr_accessor type: ::String
40
+ SENSITIVE: []
41
+ end
42
+
43
+ class AccessKeyDetails
44
+ attr_accessor access_key_id: ::String
45
+ attr_accessor principal_id: ::String
46
+ attr_accessor user_name: ::String
47
+ attr_accessor user_type: ::String
48
+ SENSITIVE: []
49
+ end
50
+
51
+ class AccountDetail
52
+ attr_accessor account_id: ::String
53
+ attr_accessor email: ::String
54
+ SENSITIVE: []
55
+ end
56
+
57
+ class AccountFreeTrialInfo
58
+ attr_accessor account_id: ::String
59
+ attr_accessor data_sources: Types::DataSourcesFreeTrial
60
+ attr_accessor features: ::Array[Types::FreeTrialFeatureConfigurationResult]
61
+ SENSITIVE: []
62
+ end
63
+
64
+ class AccountLevelPermissions
65
+ attr_accessor block_public_access: Types::BlockPublicAccess
66
+ SENSITIVE: []
67
+ end
68
+
69
+ class Action
70
+ attr_accessor action_type: ::String
71
+ attr_accessor aws_api_call_action: Types::AwsApiCallAction
72
+ attr_accessor dns_request_action: Types::DnsRequestAction
73
+ attr_accessor network_connection_action: Types::NetworkConnectionAction
74
+ attr_accessor port_probe_action: Types::PortProbeAction
75
+ attr_accessor kubernetes_api_call_action: Types::KubernetesApiCallAction
76
+ attr_accessor rds_login_attempt_action: Types::RdsLoginAttemptAction
77
+ attr_accessor kubernetes_permission_checked_details: Types::KubernetesPermissionCheckedDetails
78
+ attr_accessor kubernetes_role_binding_details: Types::KubernetesRoleBindingDetails
79
+ attr_accessor kubernetes_role_details: Types::KubernetesRoleDetails
80
+ SENSITIVE: []
81
+ end
82
+
83
+ class AddonDetails
84
+ attr_accessor addon_version: ::String
85
+ attr_accessor addon_status: ::String
86
+ SENSITIVE: []
87
+ end
88
+
89
+ class AdminAccount
90
+ attr_accessor admin_account_id: ::String
91
+ attr_accessor admin_status: ("ENABLED" | "DISABLE_IN_PROGRESS")
92
+ SENSITIVE: []
93
+ end
94
+
95
+ class Administrator
96
+ attr_accessor account_id: ::String
97
+ attr_accessor invitation_id: ::String
98
+ attr_accessor relationship_status: ::String
99
+ attr_accessor invited_at: ::String
100
+ SENSITIVE: []
101
+ end
102
+
103
+ class AgentDetails
104
+ attr_accessor version: ::String
105
+ SENSITIVE: []
106
+ end
107
+
108
+ class Anomaly
109
+ attr_accessor profiles: ::Hash[::String, ::Hash[::String, ::Array[Types::AnomalyObject]]]
110
+ attr_accessor unusual: Types::AnomalyUnusual
111
+ SENSITIVE: []
112
+ end
113
+
114
+ class AnomalyObject
115
+ attr_accessor profile_type: ("FREQUENCY")
116
+ attr_accessor profile_subtype: ("FREQUENT" | "INFREQUENT" | "UNSEEN" | "RARE")
117
+ attr_accessor observations: Types::Observations
118
+ SENSITIVE: []
119
+ end
120
+
121
+ class AnomalyUnusual
122
+ attr_accessor behavior: ::Hash[::String, ::Hash[::String, Types::AnomalyObject]]
123
+ SENSITIVE: []
124
+ end
125
+
126
+ class ArchiveFindingsRequest
127
+ attr_accessor detector_id: ::String
128
+ attr_accessor finding_ids: ::Array[::String]
129
+ SENSITIVE: []
130
+ end
131
+
132
+ class ArchiveFindingsResponse < Aws::EmptyStructure
133
+ end
134
+
135
+ class AwsApiCallAction
136
+ attr_accessor api: ::String
137
+ attr_accessor caller_type: ::String
138
+ attr_accessor domain_details: Types::DomainDetails
139
+ attr_accessor error_code: ::String
140
+ attr_accessor user_agent: ::String
141
+ attr_accessor remote_ip_details: Types::RemoteIpDetails
142
+ attr_accessor service_name: ::String
143
+ attr_accessor remote_account_details: Types::RemoteAccountDetails
144
+ attr_accessor affected_resources: ::Hash[::String, ::String]
145
+ SENSITIVE: []
146
+ end
147
+
148
+ class BadRequestException
149
+ attr_accessor message: ::String
150
+ attr_accessor type: ::String
151
+ SENSITIVE: []
152
+ end
153
+
154
+ class BlockPublicAccess
155
+ attr_accessor ignore_public_acls: bool
156
+ attr_accessor restrict_public_buckets: bool
157
+ attr_accessor block_public_acls: bool
158
+ attr_accessor block_public_policy: bool
159
+ SENSITIVE: []
160
+ end
161
+
162
+ class BucketLevelPermissions
163
+ attr_accessor access_control_list: Types::AccessControlList
164
+ attr_accessor bucket_policy: Types::BucketPolicy
165
+ attr_accessor block_public_access: Types::BlockPublicAccess
166
+ SENSITIVE: []
167
+ end
168
+
169
+ class BucketPolicy
170
+ attr_accessor allows_public_read_access: bool
171
+ attr_accessor allows_public_write_access: bool
172
+ SENSITIVE: []
173
+ end
174
+
175
+ class City
176
+ attr_accessor city_name: ::String
177
+ SENSITIVE: []
178
+ end
179
+
180
+ class CloudTrailConfigurationResult
181
+ attr_accessor status: ("ENABLED" | "DISABLED")
182
+ SENSITIVE: []
183
+ end
184
+
185
+ class Condition
186
+ attr_accessor eq: ::Array[::String]
187
+ attr_accessor neq: ::Array[::String]
188
+ attr_accessor gt: ::Integer
189
+ attr_accessor gte: ::Integer
190
+ attr_accessor lt: ::Integer
191
+ attr_accessor lte: ::Integer
192
+ attr_accessor equals: ::Array[::String]
193
+ attr_accessor not_equals: ::Array[::String]
194
+ attr_accessor greater_than: ::Integer
195
+ attr_accessor greater_than_or_equal: ::Integer
196
+ attr_accessor less_than: ::Integer
197
+ attr_accessor less_than_or_equal: ::Integer
198
+ SENSITIVE: []
199
+ end
200
+
201
+ class ConflictException
202
+ attr_accessor message: ::String
203
+ attr_accessor type: ::String
204
+ SENSITIVE: []
205
+ end
206
+
207
+ class Container
208
+ attr_accessor container_runtime: ::String
209
+ attr_accessor id: ::String
210
+ attr_accessor name: ::String
211
+ attr_accessor image: ::String
212
+ attr_accessor image_prefix: ::String
213
+ attr_accessor volume_mounts: ::Array[Types::VolumeMount]
214
+ attr_accessor security_context: Types::SecurityContext
215
+ SENSITIVE: []
216
+ end
217
+
218
+ class ContainerInstanceDetails
219
+ attr_accessor covered_container_instances: ::Integer
220
+ attr_accessor compatible_container_instances: ::Integer
221
+ SENSITIVE: []
222
+ end
223
+
224
+ class Country
225
+ attr_accessor country_code: ::String
226
+ attr_accessor country_name: ::String
227
+ SENSITIVE: []
228
+ end
229
+
230
+ class CoverageEc2InstanceDetails
231
+ attr_accessor instance_id: ::String
232
+ attr_accessor instance_type: ::String
233
+ attr_accessor cluster_arn: ::String
234
+ attr_accessor agent_details: Types::AgentDetails
235
+ attr_accessor management_type: ("AUTO_MANAGED" | "MANUAL" | "DISABLED")
236
+ SENSITIVE: []
237
+ end
238
+
239
+ class CoverageEcsClusterDetails
240
+ attr_accessor cluster_name: ::String
241
+ attr_accessor fargate_details: Types::FargateDetails
242
+ attr_accessor container_instance_details: Types::ContainerInstanceDetails
243
+ SENSITIVE: []
244
+ end
245
+
246
+ class CoverageEksClusterDetails
247
+ attr_accessor cluster_name: ::String
248
+ attr_accessor covered_nodes: ::Integer
249
+ attr_accessor compatible_nodes: ::Integer
250
+ attr_accessor addon_details: Types::AddonDetails
251
+ attr_accessor management_type: ("AUTO_MANAGED" | "MANUAL" | "DISABLED")
252
+ SENSITIVE: []
253
+ end
254
+
255
+ class CoverageFilterCondition
256
+ attr_accessor equals: ::Array[::String]
257
+ attr_accessor not_equals: ::Array[::String]
258
+ SENSITIVE: []
259
+ end
260
+
261
+ class CoverageFilterCriteria
262
+ attr_accessor filter_criterion: ::Array[Types::CoverageFilterCriterion]
263
+ SENSITIVE: []
264
+ end
265
+
266
+ class CoverageFilterCriterion
267
+ attr_accessor criterion_key: ("ACCOUNT_ID" | "CLUSTER_NAME" | "RESOURCE_TYPE" | "COVERAGE_STATUS" | "ADDON_VERSION" | "MANAGEMENT_TYPE" | "EKS_CLUSTER_NAME" | "ECS_CLUSTER_NAME" | "AGENT_VERSION" | "INSTANCE_ID" | "CLUSTER_ARN")
268
+ attr_accessor filter_condition: Types::CoverageFilterCondition
269
+ SENSITIVE: []
270
+ end
271
+
272
+ class CoverageResource
273
+ attr_accessor resource_id: ::String
274
+ attr_accessor detector_id: ::String
275
+ attr_accessor account_id: ::String
276
+ attr_accessor resource_details: Types::CoverageResourceDetails
277
+ attr_accessor coverage_status: ("HEALTHY" | "UNHEALTHY")
278
+ attr_accessor issue: ::String
279
+ attr_accessor updated_at: ::Time
280
+ SENSITIVE: []
281
+ end
282
+
283
+ class CoverageResourceDetails
284
+ attr_accessor eks_cluster_details: Types::CoverageEksClusterDetails
285
+ attr_accessor resource_type: ("EKS" | "ECS" | "EC2")
286
+ attr_accessor ecs_cluster_details: Types::CoverageEcsClusterDetails
287
+ attr_accessor ec2_instance_details: Types::CoverageEc2InstanceDetails
288
+ SENSITIVE: []
289
+ end
290
+
291
+ class CoverageSortCriteria
292
+ attr_accessor attribute_name: ("ACCOUNT_ID" | "CLUSTER_NAME" | "COVERAGE_STATUS" | "ISSUE" | "ADDON_VERSION" | "UPDATED_AT" | "EKS_CLUSTER_NAME" | "ECS_CLUSTER_NAME" | "INSTANCE_ID")
293
+ attr_accessor order_by: ("ASC" | "DESC")
294
+ SENSITIVE: []
295
+ end
296
+
297
+ class CoverageStatistics
298
+ attr_accessor count_by_resource_type: ::Hash[("EKS" | "ECS" | "EC2"), ::Integer]
299
+ attr_accessor count_by_coverage_status: ::Hash[("HEALTHY" | "UNHEALTHY"), ::Integer]
300
+ SENSITIVE: []
301
+ end
302
+
303
+ class CreateDetectorRequest
304
+ attr_accessor enable: bool
305
+ attr_accessor client_token: ::String
306
+ attr_accessor finding_publishing_frequency: ("FIFTEEN_MINUTES" | "ONE_HOUR" | "SIX_HOURS")
307
+ attr_accessor data_sources: Types::DataSourceConfigurations
308
+ attr_accessor tags: ::Hash[::String, ::String]
309
+ attr_accessor features: ::Array[Types::DetectorFeatureConfiguration]
310
+ SENSITIVE: []
311
+ end
312
+
313
+ class CreateDetectorResponse
314
+ attr_accessor detector_id: ::String
315
+ attr_accessor unprocessed_data_sources: Types::UnprocessedDataSourcesResult
316
+ SENSITIVE: []
317
+ end
318
+
319
+ class CreateFilterRequest
320
+ attr_accessor detector_id: ::String
321
+ attr_accessor name: ::String
322
+ attr_accessor description: ::String
323
+ attr_accessor action: ("NOOP" | "ARCHIVE")
324
+ attr_accessor rank: ::Integer
325
+ attr_accessor finding_criteria: Types::FindingCriteria
326
+ attr_accessor client_token: ::String
327
+ attr_accessor tags: ::Hash[::String, ::String]
328
+ SENSITIVE: []
329
+ end
330
+
331
+ class CreateFilterResponse
332
+ attr_accessor name: ::String
333
+ SENSITIVE: []
334
+ end
335
+
336
+ class CreateIPSetRequest
337
+ attr_accessor detector_id: ::String
338
+ attr_accessor name: ::String
339
+ attr_accessor format: ("TXT" | "STIX" | "OTX_CSV" | "ALIEN_VAULT" | "PROOF_POINT" | "FIRE_EYE")
340
+ attr_accessor location: ::String
341
+ attr_accessor activate: bool
342
+ attr_accessor client_token: ::String
343
+ attr_accessor tags: ::Hash[::String, ::String]
344
+ SENSITIVE: []
345
+ end
346
+
347
+ class CreateIPSetResponse
348
+ attr_accessor ip_set_id: ::String
349
+ SENSITIVE: []
350
+ end
351
+
352
+ class CreateMembersRequest
353
+ attr_accessor detector_id: ::String
354
+ attr_accessor account_details: ::Array[Types::AccountDetail]
355
+ SENSITIVE: []
356
+ end
357
+
358
+ class CreateMembersResponse
359
+ attr_accessor unprocessed_accounts: ::Array[Types::UnprocessedAccount]
360
+ SENSITIVE: []
361
+ end
362
+
363
+ class CreatePublishingDestinationRequest
364
+ attr_accessor detector_id: ::String
365
+ attr_accessor destination_type: ("S3")
366
+ attr_accessor destination_properties: Types::DestinationProperties
367
+ attr_accessor client_token: ::String
368
+ SENSITIVE: []
369
+ end
370
+
371
+ class CreatePublishingDestinationResponse
372
+ attr_accessor destination_id: ::String
373
+ SENSITIVE: []
374
+ end
375
+
376
+ class CreateSampleFindingsRequest
377
+ attr_accessor detector_id: ::String
378
+ attr_accessor finding_types: ::Array[::String]
379
+ SENSITIVE: []
380
+ end
381
+
382
+ class CreateSampleFindingsResponse < Aws::EmptyStructure
383
+ end
384
+
385
+ class CreateThreatIntelSetRequest
386
+ attr_accessor detector_id: ::String
387
+ attr_accessor name: ::String
388
+ attr_accessor format: ("TXT" | "STIX" | "OTX_CSV" | "ALIEN_VAULT" | "PROOF_POINT" | "FIRE_EYE")
389
+ attr_accessor location: ::String
390
+ attr_accessor activate: bool
391
+ attr_accessor client_token: ::String
392
+ attr_accessor tags: ::Hash[::String, ::String]
393
+ SENSITIVE: []
394
+ end
395
+
396
+ class CreateThreatIntelSetResponse
397
+ attr_accessor threat_intel_set_id: ::String
398
+ SENSITIVE: []
399
+ end
400
+
401
+ class DNSLogsConfigurationResult
402
+ attr_accessor status: ("ENABLED" | "DISABLED")
403
+ SENSITIVE: []
404
+ end
405
+
406
+ class DataSourceConfigurations
407
+ attr_accessor s3_logs: Types::S3LogsConfiguration
408
+ attr_accessor kubernetes: Types::KubernetesConfiguration
409
+ attr_accessor malware_protection: Types::MalwareProtectionConfiguration
410
+ SENSITIVE: []
411
+ end
412
+
413
+ class DataSourceConfigurationsResult
414
+ attr_accessor cloud_trail: Types::CloudTrailConfigurationResult
415
+ attr_accessor dns_logs: Types::DNSLogsConfigurationResult
416
+ attr_accessor flow_logs: Types::FlowLogsConfigurationResult
417
+ attr_accessor s3_logs: Types::S3LogsConfigurationResult
418
+ attr_accessor kubernetes: Types::KubernetesConfigurationResult
419
+ attr_accessor malware_protection: Types::MalwareProtectionConfigurationResult
420
+ SENSITIVE: []
421
+ end
422
+
423
+ class DataSourceFreeTrial
424
+ attr_accessor free_trial_days_remaining: ::Integer
425
+ SENSITIVE: []
426
+ end
427
+
428
+ class DataSourcesFreeTrial
429
+ attr_accessor cloud_trail: Types::DataSourceFreeTrial
430
+ attr_accessor dns_logs: Types::DataSourceFreeTrial
431
+ attr_accessor flow_logs: Types::DataSourceFreeTrial
432
+ attr_accessor s3_logs: Types::DataSourceFreeTrial
433
+ attr_accessor kubernetes: Types::KubernetesDataSourceFreeTrial
434
+ attr_accessor malware_protection: Types::MalwareProtectionDataSourceFreeTrial
435
+ SENSITIVE: []
436
+ end
437
+
438
+ class DeclineInvitationsRequest
439
+ attr_accessor account_ids: ::Array[::String]
440
+ SENSITIVE: []
441
+ end
442
+
443
+ class DeclineInvitationsResponse
444
+ attr_accessor unprocessed_accounts: ::Array[Types::UnprocessedAccount]
445
+ SENSITIVE: []
446
+ end
447
+
448
+ class DefaultServerSideEncryption
449
+ attr_accessor encryption_type: ::String
450
+ attr_accessor kms_master_key_arn: ::String
451
+ SENSITIVE: []
452
+ end
453
+
454
+ class DeleteDetectorRequest
455
+ attr_accessor detector_id: ::String
456
+ SENSITIVE: []
457
+ end
458
+
459
+ class DeleteDetectorResponse < Aws::EmptyStructure
460
+ end
461
+
462
+ class DeleteFilterRequest
463
+ attr_accessor detector_id: ::String
464
+ attr_accessor filter_name: ::String
465
+ SENSITIVE: []
466
+ end
467
+
468
+ class DeleteFilterResponse < Aws::EmptyStructure
469
+ end
470
+
471
+ class DeleteIPSetRequest
472
+ attr_accessor detector_id: ::String
473
+ attr_accessor ip_set_id: ::String
474
+ SENSITIVE: []
475
+ end
476
+
477
+ class DeleteIPSetResponse < Aws::EmptyStructure
478
+ end
479
+
480
+ class DeleteInvitationsRequest
481
+ attr_accessor account_ids: ::Array[::String]
482
+ SENSITIVE: []
483
+ end
484
+
485
+ class DeleteInvitationsResponse
486
+ attr_accessor unprocessed_accounts: ::Array[Types::UnprocessedAccount]
487
+ SENSITIVE: []
488
+ end
489
+
490
+ class DeleteMembersRequest
491
+ attr_accessor detector_id: ::String
492
+ attr_accessor account_ids: ::Array[::String]
493
+ SENSITIVE: []
494
+ end
495
+
496
+ class DeleteMembersResponse
497
+ attr_accessor unprocessed_accounts: ::Array[Types::UnprocessedAccount]
498
+ SENSITIVE: []
499
+ end
500
+
501
+ class DeletePublishingDestinationRequest
502
+ attr_accessor detector_id: ::String
503
+ attr_accessor destination_id: ::String
504
+ SENSITIVE: []
505
+ end
506
+
507
+ class DeletePublishingDestinationResponse < Aws::EmptyStructure
508
+ end
509
+
510
+ class DeleteThreatIntelSetRequest
511
+ attr_accessor detector_id: ::String
512
+ attr_accessor threat_intel_set_id: ::String
513
+ SENSITIVE: []
514
+ end
515
+
516
+ class DeleteThreatIntelSetResponse < Aws::EmptyStructure
517
+ end
518
+
519
+ class DescribeMalwareScansRequest
520
+ attr_accessor detector_id: ::String
521
+ attr_accessor next_token: ::String
522
+ attr_accessor max_results: ::Integer
523
+ attr_accessor filter_criteria: Types::FilterCriteria
524
+ attr_accessor sort_criteria: Types::SortCriteria
525
+ SENSITIVE: []
526
+ end
527
+
528
+ class DescribeMalwareScansResponse
529
+ attr_accessor scans: ::Array[Types::Scan]
530
+ attr_accessor next_token: ::String
531
+ SENSITIVE: []
532
+ end
533
+
534
+ class DescribeOrganizationConfigurationRequest
535
+ attr_accessor detector_id: ::String
536
+ attr_accessor max_results: ::Integer
537
+ attr_accessor next_token: ::String
538
+ SENSITIVE: []
539
+ end
540
+
541
+ class DescribeOrganizationConfigurationResponse
542
+ attr_accessor auto_enable: bool
543
+ attr_accessor member_account_limit_reached: bool
544
+ attr_accessor data_sources: Types::OrganizationDataSourceConfigurationsResult
545
+ attr_accessor features: ::Array[Types::OrganizationFeatureConfigurationResult]
546
+ attr_accessor next_token: ::String
547
+ attr_accessor auto_enable_organization_members: ("NEW" | "ALL" | "NONE")
548
+ SENSITIVE: []
549
+ end
550
+
551
+ class DescribePublishingDestinationRequest
552
+ attr_accessor detector_id: ::String
553
+ attr_accessor destination_id: ::String
554
+ SENSITIVE: []
555
+ end
556
+
557
+ class DescribePublishingDestinationResponse
558
+ attr_accessor destination_id: ::String
559
+ attr_accessor destination_type: ("S3")
560
+ attr_accessor status: ("PENDING_VERIFICATION" | "PUBLISHING" | "UNABLE_TO_PUBLISH_FIX_DESTINATION_PROPERTY" | "STOPPED")
561
+ attr_accessor publishing_failure_start_timestamp: ::Integer
562
+ attr_accessor destination_properties: Types::DestinationProperties
563
+ SENSITIVE: []
564
+ end
565
+
566
+ class Destination
567
+ attr_accessor destination_id: ::String
568
+ attr_accessor destination_type: ("S3")
569
+ attr_accessor status: ("PENDING_VERIFICATION" | "PUBLISHING" | "UNABLE_TO_PUBLISH_FIX_DESTINATION_PROPERTY" | "STOPPED")
570
+ SENSITIVE: []
571
+ end
572
+
573
+ class DestinationProperties
574
+ attr_accessor destination_arn: ::String
575
+ attr_accessor kms_key_arn: ::String
576
+ SENSITIVE: []
577
+ end
578
+
579
+ class Detection
580
+ attr_accessor anomaly: Types::Anomaly
581
+ SENSITIVE: []
582
+ end
583
+
584
+ class DetectorAdditionalConfiguration
585
+ attr_accessor name: ("EKS_ADDON_MANAGEMENT" | "ECS_FARGATE_AGENT_MANAGEMENT")
586
+ attr_accessor status: ("ENABLED" | "DISABLED")
587
+ SENSITIVE: []
588
+ end
589
+
590
+ class DetectorAdditionalConfigurationResult
591
+ attr_accessor name: ("EKS_ADDON_MANAGEMENT" | "ECS_FARGATE_AGENT_MANAGEMENT")
592
+ attr_accessor status: ("ENABLED" | "DISABLED")
593
+ attr_accessor updated_at: ::Time
594
+ SENSITIVE: []
595
+ end
596
+
597
+ class DetectorFeatureConfiguration
598
+ attr_accessor name: ("S3_DATA_EVENTS" | "EKS_AUDIT_LOGS" | "EBS_MALWARE_PROTECTION" | "RDS_LOGIN_EVENTS" | "EKS_RUNTIME_MONITORING" | "LAMBDA_NETWORK_LOGS" | "RUNTIME_MONITORING")
599
+ attr_accessor status: ("ENABLED" | "DISABLED")
600
+ attr_accessor additional_configuration: ::Array[Types::DetectorAdditionalConfiguration]
601
+ SENSITIVE: []
602
+ end
603
+
604
+ class DetectorFeatureConfigurationResult
605
+ attr_accessor name: ("FLOW_LOGS" | "CLOUD_TRAIL" | "DNS_LOGS" | "S3_DATA_EVENTS" | "EKS_AUDIT_LOGS" | "EBS_MALWARE_PROTECTION" | "RDS_LOGIN_EVENTS" | "EKS_RUNTIME_MONITORING" | "LAMBDA_NETWORK_LOGS" | "RUNTIME_MONITORING")
606
+ attr_accessor status: ("ENABLED" | "DISABLED")
607
+ attr_accessor updated_at: ::Time
608
+ attr_accessor additional_configuration: ::Array[Types::DetectorAdditionalConfigurationResult]
609
+ SENSITIVE: []
610
+ end
611
+
612
+ class DisableOrganizationAdminAccountRequest
613
+ attr_accessor admin_account_id: ::String
614
+ SENSITIVE: []
615
+ end
616
+
617
+ class DisableOrganizationAdminAccountResponse < Aws::EmptyStructure
618
+ end
619
+
620
+ class DisassociateFromAdministratorAccountRequest
621
+ attr_accessor detector_id: ::String
622
+ SENSITIVE: []
623
+ end
624
+
625
+ class DisassociateFromAdministratorAccountResponse < Aws::EmptyStructure
626
+ end
627
+
628
+ class DisassociateFromMasterAccountRequest
629
+ attr_accessor detector_id: ::String
630
+ SENSITIVE: []
631
+ end
632
+
633
+ class DisassociateFromMasterAccountResponse < Aws::EmptyStructure
634
+ end
635
+
636
+ class DisassociateMembersRequest
637
+ attr_accessor detector_id: ::String
638
+ attr_accessor account_ids: ::Array[::String]
639
+ SENSITIVE: []
640
+ end
641
+
642
+ class DisassociateMembersResponse
643
+ attr_accessor unprocessed_accounts: ::Array[Types::UnprocessedAccount]
644
+ SENSITIVE: []
645
+ end
646
+
647
+ class DnsRequestAction
648
+ attr_accessor domain: ::String
649
+ attr_accessor protocol: ::String
650
+ attr_accessor blocked: bool
651
+ attr_accessor domain_with_suffix: ::String
652
+ SENSITIVE: []
653
+ end
654
+
655
+ class DomainDetails
656
+ attr_accessor domain: ::String
657
+ SENSITIVE: []
658
+ end
659
+
660
+ class EbsVolumeDetails
661
+ attr_accessor scanned_volume_details: ::Array[Types::VolumeDetail]
662
+ attr_accessor skipped_volume_details: ::Array[Types::VolumeDetail]
663
+ SENSITIVE: []
664
+ end
665
+
666
+ class EbsVolumeScanDetails
667
+ attr_accessor scan_id: ::String
668
+ attr_accessor scan_started_at: ::Time
669
+ attr_accessor scan_completed_at: ::Time
670
+ attr_accessor trigger_finding_id: ::String
671
+ attr_accessor sources: ::Array[::String]
672
+ attr_accessor scan_detections: Types::ScanDetections
673
+ attr_accessor scan_type: ("GUARDDUTY_INITIATED" | "ON_DEMAND")
674
+ SENSITIVE: []
675
+ end
676
+
677
+ class EbsVolumesResult
678
+ attr_accessor status: ("ENABLED" | "DISABLED")
679
+ attr_accessor reason: ::String
680
+ SENSITIVE: []
681
+ end
682
+
683
+ class EcsClusterDetails
684
+ attr_accessor name: ::String
685
+ attr_accessor arn: ::String
686
+ attr_accessor status: ::String
687
+ attr_accessor active_services_count: ::Integer
688
+ attr_accessor registered_container_instances_count: ::Integer
689
+ attr_accessor running_tasks_count: ::Integer
690
+ attr_accessor tags: ::Array[Types::Tag]
691
+ attr_accessor task_details: Types::EcsTaskDetails
692
+ SENSITIVE: []
693
+ end
694
+
695
+ class EcsTaskDetails
696
+ attr_accessor arn: ::String
697
+ attr_accessor definition_arn: ::String
698
+ attr_accessor version: ::String
699
+ attr_accessor task_created_at: ::Time
700
+ attr_accessor started_at: ::Time
701
+ attr_accessor started_by: ::String
702
+ attr_accessor tags: ::Array[Types::Tag]
703
+ attr_accessor volumes: ::Array[Types::Volume]
704
+ attr_accessor containers: ::Array[Types::Container]
705
+ attr_accessor group: ::String
706
+ SENSITIVE: []
707
+ end
708
+
709
+ class EksClusterDetails
710
+ attr_accessor name: ::String
711
+ attr_accessor arn: ::String
712
+ attr_accessor vpc_id: ::String
713
+ attr_accessor status: ::String
714
+ attr_accessor tags: ::Array[Types::Tag]
715
+ attr_accessor created_at: ::Time
716
+ SENSITIVE: []
717
+ end
718
+
719
+ class EnableOrganizationAdminAccountRequest
720
+ attr_accessor admin_account_id: ::String
721
+ SENSITIVE: []
722
+ end
723
+
724
+ class EnableOrganizationAdminAccountResponse < Aws::EmptyStructure
725
+ end
726
+
727
+ class Evidence
728
+ attr_accessor threat_intelligence_details: ::Array[Types::ThreatIntelligenceDetail]
729
+ SENSITIVE: []
730
+ end
731
+
732
+ class FargateDetails
733
+ attr_accessor issues: ::Array[::String]
734
+ attr_accessor management_type: ("AUTO_MANAGED" | "MANUAL" | "DISABLED")
735
+ SENSITIVE: []
736
+ end
737
+
738
+ class FilterCondition
739
+ attr_accessor equals_value: ::String
740
+ attr_accessor greater_than: ::Integer
741
+ attr_accessor less_than: ::Integer
742
+ SENSITIVE: []
743
+ end
744
+
745
+ class FilterCriteria
746
+ attr_accessor filter_criterion: ::Array[Types::FilterCriterion]
747
+ SENSITIVE: []
748
+ end
749
+
750
+ class FilterCriterion
751
+ attr_accessor criterion_key: ("EC2_INSTANCE_ARN" | "SCAN_ID" | "ACCOUNT_ID" | "GUARDDUTY_FINDING_ID" | "SCAN_START_TIME" | "SCAN_STATUS" | "SCAN_TYPE")
752
+ attr_accessor filter_condition: Types::FilterCondition
753
+ SENSITIVE: []
754
+ end
755
+
756
+ class Finding
757
+ attr_accessor account_id: ::String
758
+ attr_accessor arn: ::String
759
+ attr_accessor confidence: ::Float
760
+ attr_accessor created_at: ::String
761
+ attr_accessor description: ::String
762
+ attr_accessor id: ::String
763
+ attr_accessor partition: ::String
764
+ attr_accessor region: ::String
765
+ attr_accessor resource: Types::Resource
766
+ attr_accessor schema_version: ::String
767
+ attr_accessor service: Types::Service
768
+ attr_accessor severity: ::Float
769
+ attr_accessor title: ::String
770
+ attr_accessor type: ::String
771
+ attr_accessor updated_at: ::String
772
+ SENSITIVE: []
773
+ end
774
+
775
+ class FindingCriteria
776
+ attr_accessor criterion: ::Hash[::String, Types::Condition]
777
+ SENSITIVE: []
778
+ end
779
+
780
+ class FindingStatistics
781
+ attr_accessor count_by_severity: ::Hash[::String, ::Integer]
782
+ SENSITIVE: []
783
+ end
784
+
785
+ class FlowLogsConfigurationResult
786
+ attr_accessor status: ("ENABLED" | "DISABLED")
787
+ SENSITIVE: []
788
+ end
789
+
790
+ class FreeTrialFeatureConfigurationResult
791
+ attr_accessor name: ("FLOW_LOGS" | "CLOUD_TRAIL" | "DNS_LOGS" | "S3_DATA_EVENTS" | "EKS_AUDIT_LOGS" | "EBS_MALWARE_PROTECTION" | "RDS_LOGIN_EVENTS" | "EKS_RUNTIME_MONITORING" | "LAMBDA_NETWORK_LOGS" | "FARGATE_RUNTIME_MONITORING" | "EC2_RUNTIME_MONITORING")
792
+ attr_accessor free_trial_days_remaining: ::Integer
793
+ SENSITIVE: []
794
+ end
795
+
796
+ class GeoLocation
797
+ attr_accessor lat: ::Float
798
+ attr_accessor lon: ::Float
799
+ SENSITIVE: []
800
+ end
801
+
802
+ class GetAdministratorAccountRequest
803
+ attr_accessor detector_id: ::String
804
+ SENSITIVE: []
805
+ end
806
+
807
+ class GetAdministratorAccountResponse
808
+ attr_accessor administrator: Types::Administrator
809
+ SENSITIVE: []
810
+ end
811
+
812
+ class GetCoverageStatisticsRequest
813
+ attr_accessor detector_id: ::String
814
+ attr_accessor filter_criteria: Types::CoverageFilterCriteria
815
+ attr_accessor statistics_type: ::Array[("COUNT_BY_RESOURCE_TYPE" | "COUNT_BY_COVERAGE_STATUS")]
816
+ SENSITIVE: []
817
+ end
818
+
819
+ class GetCoverageStatisticsResponse
820
+ attr_accessor coverage_statistics: Types::CoverageStatistics
821
+ SENSITIVE: []
822
+ end
823
+
824
+ class GetDetectorRequest
825
+ attr_accessor detector_id: ::String
826
+ SENSITIVE: []
827
+ end
828
+
829
+ class GetDetectorResponse
830
+ attr_accessor created_at: ::String
831
+ attr_accessor finding_publishing_frequency: ("FIFTEEN_MINUTES" | "ONE_HOUR" | "SIX_HOURS")
832
+ attr_accessor service_role: ::String
833
+ attr_accessor status: ("ENABLED" | "DISABLED")
834
+ attr_accessor updated_at: ::String
835
+ attr_accessor data_sources: Types::DataSourceConfigurationsResult
836
+ attr_accessor tags: ::Hash[::String, ::String]
837
+ attr_accessor features: ::Array[Types::DetectorFeatureConfigurationResult]
838
+ SENSITIVE: []
839
+ end
840
+
841
+ class GetFilterRequest
842
+ attr_accessor detector_id: ::String
843
+ attr_accessor filter_name: ::String
844
+ SENSITIVE: []
845
+ end
846
+
847
+ class GetFilterResponse
848
+ attr_accessor name: ::String
849
+ attr_accessor description: ::String
850
+ attr_accessor action: ("NOOP" | "ARCHIVE")
851
+ attr_accessor rank: ::Integer
852
+ attr_accessor finding_criteria: Types::FindingCriteria
853
+ attr_accessor tags: ::Hash[::String, ::String]
854
+ SENSITIVE: []
855
+ end
856
+
857
+ class GetFindingsRequest
858
+ attr_accessor detector_id: ::String
859
+ attr_accessor finding_ids: ::Array[::String]
860
+ attr_accessor sort_criteria: Types::SortCriteria
861
+ SENSITIVE: []
862
+ end
863
+
864
+ class GetFindingsResponse
865
+ attr_accessor findings: ::Array[Types::Finding]
866
+ SENSITIVE: []
867
+ end
868
+
869
+ class GetFindingsStatisticsRequest
870
+ attr_accessor detector_id: ::String
871
+ attr_accessor finding_statistic_types: ::Array[("COUNT_BY_SEVERITY")]
872
+ attr_accessor finding_criteria: Types::FindingCriteria
873
+ SENSITIVE: []
874
+ end
875
+
876
+ class GetFindingsStatisticsResponse
877
+ attr_accessor finding_statistics: Types::FindingStatistics
878
+ SENSITIVE: []
879
+ end
880
+
881
+ class GetIPSetRequest
882
+ attr_accessor detector_id: ::String
883
+ attr_accessor ip_set_id: ::String
884
+ SENSITIVE: []
885
+ end
886
+
887
+ class GetIPSetResponse
888
+ attr_accessor name: ::String
889
+ attr_accessor format: ("TXT" | "STIX" | "OTX_CSV" | "ALIEN_VAULT" | "PROOF_POINT" | "FIRE_EYE")
890
+ attr_accessor location: ::String
891
+ attr_accessor status: ("INACTIVE" | "ACTIVATING" | "ACTIVE" | "DEACTIVATING" | "ERROR" | "DELETE_PENDING" | "DELETED")
892
+ attr_accessor tags: ::Hash[::String, ::String]
893
+ SENSITIVE: []
894
+ end
895
+
896
+ class GetInvitationsCountRequest < Aws::EmptyStructure
897
+ end
898
+
899
+ class GetInvitationsCountResponse
900
+ attr_accessor invitations_count: ::Integer
901
+ SENSITIVE: []
902
+ end
903
+
904
+ class GetMalwareScanSettingsRequest
905
+ attr_accessor detector_id: ::String
906
+ SENSITIVE: []
907
+ end
908
+
909
+ class GetMalwareScanSettingsResponse
910
+ attr_accessor scan_resource_criteria: Types::ScanResourceCriteria
911
+ attr_accessor ebs_snapshot_preservation: ("NO_RETENTION" | "RETENTION_WITH_FINDING")
912
+ SENSITIVE: []
913
+ end
914
+
915
+ class GetMasterAccountRequest
916
+ attr_accessor detector_id: ::String
917
+ SENSITIVE: []
918
+ end
919
+
920
+ class GetMasterAccountResponse
921
+ attr_accessor master: Types::Master
922
+ SENSITIVE: []
923
+ end
924
+
925
+ class GetMemberDetectorsRequest
926
+ attr_accessor detector_id: ::String
927
+ attr_accessor account_ids: ::Array[::String]
928
+ SENSITIVE: []
929
+ end
930
+
931
+ class GetMemberDetectorsResponse
932
+ attr_accessor member_data_source_configurations: ::Array[Types::MemberDataSourceConfiguration]
933
+ attr_accessor unprocessed_accounts: ::Array[Types::UnprocessedAccount]
934
+ SENSITIVE: []
935
+ end
936
+
937
+ class GetMembersRequest
938
+ attr_accessor detector_id: ::String
939
+ attr_accessor account_ids: ::Array[::String]
940
+ SENSITIVE: []
941
+ end
942
+
943
+ class GetMembersResponse
944
+ attr_accessor members: ::Array[Types::Member]
945
+ attr_accessor unprocessed_accounts: ::Array[Types::UnprocessedAccount]
946
+ SENSITIVE: []
947
+ end
948
+
949
+ class GetOrganizationStatisticsResponse
950
+ attr_accessor organization_details: Types::OrganizationDetails
951
+ SENSITIVE: []
952
+ end
953
+
954
+ class GetRemainingFreeTrialDaysRequest
955
+ attr_accessor detector_id: ::String
956
+ attr_accessor account_ids: ::Array[::String]
957
+ SENSITIVE: []
958
+ end
959
+
960
+ class GetRemainingFreeTrialDaysResponse
961
+ attr_accessor accounts: ::Array[Types::AccountFreeTrialInfo]
962
+ attr_accessor unprocessed_accounts: ::Array[Types::UnprocessedAccount]
963
+ SENSITIVE: []
964
+ end
965
+
966
+ class GetThreatIntelSetRequest
967
+ attr_accessor detector_id: ::String
968
+ attr_accessor threat_intel_set_id: ::String
969
+ SENSITIVE: []
970
+ end
971
+
972
+ class GetThreatIntelSetResponse
973
+ attr_accessor name: ::String
974
+ attr_accessor format: ("TXT" | "STIX" | "OTX_CSV" | "ALIEN_VAULT" | "PROOF_POINT" | "FIRE_EYE")
975
+ attr_accessor location: ::String
976
+ attr_accessor status: ("INACTIVE" | "ACTIVATING" | "ACTIVE" | "DEACTIVATING" | "ERROR" | "DELETE_PENDING" | "DELETED")
977
+ attr_accessor tags: ::Hash[::String, ::String]
978
+ SENSITIVE: []
979
+ end
980
+
981
+ class GetUsageStatisticsRequest
982
+ attr_accessor detector_id: ::String
983
+ attr_accessor usage_statistic_type: ("SUM_BY_ACCOUNT" | "SUM_BY_DATA_SOURCE" | "SUM_BY_RESOURCE" | "TOP_RESOURCES" | "SUM_BY_FEATURES" | "TOP_ACCOUNTS_BY_FEATURE")
984
+ attr_accessor usage_criteria: Types::UsageCriteria
985
+ attr_accessor unit: ::String
986
+ attr_accessor max_results: ::Integer
987
+ attr_accessor next_token: ::String
988
+ SENSITIVE: []
989
+ end
990
+
991
+ class GetUsageStatisticsResponse
992
+ attr_accessor usage_statistics: Types::UsageStatistics
993
+ attr_accessor next_token: ::String
994
+ SENSITIVE: []
995
+ end
996
+
997
+ class HighestSeverityThreatDetails
998
+ attr_accessor severity: ::String
999
+ attr_accessor threat_name: ::String
1000
+ attr_accessor count: ::Integer
1001
+ SENSITIVE: []
1002
+ end
1003
+
1004
+ class HostPath
1005
+ attr_accessor path: ::String
1006
+ SENSITIVE: []
1007
+ end
1008
+
1009
+ class IamInstanceProfile
1010
+ attr_accessor arn: ::String
1011
+ attr_accessor id: ::String
1012
+ SENSITIVE: []
1013
+ end
1014
+
1015
+ class ImpersonatedUser
1016
+ attr_accessor username: ::String
1017
+ attr_accessor groups: ::Array[::String]
1018
+ SENSITIVE: []
1019
+ end
1020
+
1021
+ class InstanceDetails
1022
+ attr_accessor availability_zone: ::String
1023
+ attr_accessor iam_instance_profile: Types::IamInstanceProfile
1024
+ attr_accessor image_description: ::String
1025
+ attr_accessor image_id: ::String
1026
+ attr_accessor instance_id: ::String
1027
+ attr_accessor instance_state: ::String
1028
+ attr_accessor instance_type: ::String
1029
+ attr_accessor outpost_arn: ::String
1030
+ attr_accessor launch_time: ::String
1031
+ attr_accessor network_interfaces: ::Array[Types::NetworkInterface]
1032
+ attr_accessor platform: ::String
1033
+ attr_accessor product_codes: ::Array[Types::ProductCode]
1034
+ attr_accessor tags: ::Array[Types::Tag]
1035
+ SENSITIVE: []
1036
+ end
1037
+
1038
+ class InternalServerErrorException
1039
+ attr_accessor message: ::String
1040
+ attr_accessor type: ::String
1041
+ SENSITIVE: []
1042
+ end
1043
+
1044
+ class Invitation
1045
+ attr_accessor account_id: ::String
1046
+ attr_accessor invitation_id: ::String
1047
+ attr_accessor relationship_status: ::String
1048
+ attr_accessor invited_at: ::String
1049
+ SENSITIVE: []
1050
+ end
1051
+
1052
+ class InviteMembersRequest
1053
+ attr_accessor detector_id: ::String
1054
+ attr_accessor account_ids: ::Array[::String]
1055
+ attr_accessor disable_email_notification: bool
1056
+ attr_accessor message: ::String
1057
+ SENSITIVE: []
1058
+ end
1059
+
1060
+ class InviteMembersResponse
1061
+ attr_accessor unprocessed_accounts: ::Array[Types::UnprocessedAccount]
1062
+ SENSITIVE: []
1063
+ end
1064
+
1065
+ class KubernetesApiCallAction
1066
+ attr_accessor request_uri: ::String
1067
+ attr_accessor verb: ::String
1068
+ attr_accessor source_ips: ::Array[::String]
1069
+ attr_accessor user_agent: ::String
1070
+ attr_accessor remote_ip_details: Types::RemoteIpDetails
1071
+ attr_accessor status_code: ::Integer
1072
+ attr_accessor parameters: ::String
1073
+ attr_accessor resource: ::String
1074
+ attr_accessor subresource: ::String
1075
+ attr_accessor namespace: ::String
1076
+ attr_accessor resource_name: ::String
1077
+ SENSITIVE: []
1078
+ end
1079
+
1080
+ class KubernetesAuditLogsConfiguration
1081
+ attr_accessor enable: bool
1082
+ SENSITIVE: []
1083
+ end
1084
+
1085
+ class KubernetesAuditLogsConfigurationResult
1086
+ attr_accessor status: ("ENABLED" | "DISABLED")
1087
+ SENSITIVE: []
1088
+ end
1089
+
1090
+ class KubernetesConfiguration
1091
+ attr_accessor audit_logs: Types::KubernetesAuditLogsConfiguration
1092
+ SENSITIVE: []
1093
+ end
1094
+
1095
+ class KubernetesConfigurationResult
1096
+ attr_accessor audit_logs: Types::KubernetesAuditLogsConfigurationResult
1097
+ SENSITIVE: []
1098
+ end
1099
+
1100
+ class KubernetesDataSourceFreeTrial
1101
+ attr_accessor audit_logs: Types::DataSourceFreeTrial
1102
+ SENSITIVE: []
1103
+ end
1104
+
1105
+ class KubernetesDetails
1106
+ attr_accessor kubernetes_user_details: Types::KubernetesUserDetails
1107
+ attr_accessor kubernetes_workload_details: Types::KubernetesWorkloadDetails
1108
+ SENSITIVE: []
1109
+ end
1110
+
1111
+ class KubernetesPermissionCheckedDetails
1112
+ attr_accessor verb: ::String
1113
+ attr_accessor resource: ::String
1114
+ attr_accessor namespace: ::String
1115
+ attr_accessor allowed: bool
1116
+ SENSITIVE: []
1117
+ end
1118
+
1119
+ class KubernetesRoleBindingDetails
1120
+ attr_accessor kind: ::String
1121
+ attr_accessor name: ::String
1122
+ attr_accessor uid: ::String
1123
+ attr_accessor role_ref_name: ::String
1124
+ attr_accessor role_ref_kind: ::String
1125
+ SENSITIVE: []
1126
+ end
1127
+
1128
+ class KubernetesRoleDetails
1129
+ attr_accessor kind: ::String
1130
+ attr_accessor name: ::String
1131
+ attr_accessor uid: ::String
1132
+ SENSITIVE: []
1133
+ end
1134
+
1135
+ class KubernetesUserDetails
1136
+ attr_accessor username: ::String
1137
+ attr_accessor uid: ::String
1138
+ attr_accessor groups: ::Array[::String]
1139
+ attr_accessor session_name: ::Array[::String]
1140
+ attr_accessor impersonated_user: Types::ImpersonatedUser
1141
+ SENSITIVE: []
1142
+ end
1143
+
1144
+ class KubernetesWorkloadDetails
1145
+ attr_accessor name: ::String
1146
+ attr_accessor type: ::String
1147
+ attr_accessor uid: ::String
1148
+ attr_accessor namespace: ::String
1149
+ attr_accessor host_network: bool
1150
+ attr_accessor containers: ::Array[Types::Container]
1151
+ attr_accessor volumes: ::Array[Types::Volume]
1152
+ attr_accessor service_account_name: ::String
1153
+ attr_accessor host_ipc: bool
1154
+ attr_accessor host_pid: bool
1155
+ SENSITIVE: []
1156
+ end
1157
+
1158
+ class LambdaDetails
1159
+ attr_accessor function_arn: ::String
1160
+ attr_accessor function_name: ::String
1161
+ attr_accessor description: ::String
1162
+ attr_accessor last_modified_at: ::Time
1163
+ attr_accessor revision_id: ::String
1164
+ attr_accessor function_version: ::String
1165
+ attr_accessor role: ::String
1166
+ attr_accessor vpc_config: Types::VpcConfig
1167
+ attr_accessor tags: ::Array[Types::Tag]
1168
+ SENSITIVE: []
1169
+ end
1170
+
1171
+ class LineageObject
1172
+ attr_accessor start_time: ::Time
1173
+ attr_accessor namespace_pid: ::Integer
1174
+ attr_accessor user_id: ::Integer
1175
+ attr_accessor name: ::String
1176
+ attr_accessor pid: ::Integer
1177
+ attr_accessor uuid: ::String
1178
+ attr_accessor executable_path: ::String
1179
+ attr_accessor euid: ::Integer
1180
+ attr_accessor parent_uuid: ::String
1181
+ SENSITIVE: []
1182
+ end
1183
+
1184
+ class ListCoverageRequest
1185
+ attr_accessor detector_id: ::String
1186
+ attr_accessor next_token: ::String
1187
+ attr_accessor max_results: ::Integer
1188
+ attr_accessor filter_criteria: Types::CoverageFilterCriteria
1189
+ attr_accessor sort_criteria: Types::CoverageSortCriteria
1190
+ SENSITIVE: []
1191
+ end
1192
+
1193
+ class ListCoverageResponse
1194
+ attr_accessor resources: ::Array[Types::CoverageResource]
1195
+ attr_accessor next_token: ::String
1196
+ SENSITIVE: []
1197
+ end
1198
+
1199
+ class ListDetectorsRequest
1200
+ attr_accessor max_results: ::Integer
1201
+ attr_accessor next_token: ::String
1202
+ SENSITIVE: []
1203
+ end
1204
+
1205
+ class ListDetectorsResponse
1206
+ attr_accessor detector_ids: ::Array[::String]
1207
+ attr_accessor next_token: ::String
1208
+ SENSITIVE: []
1209
+ end
1210
+
1211
+ class ListFiltersRequest
1212
+ attr_accessor detector_id: ::String
1213
+ attr_accessor max_results: ::Integer
1214
+ attr_accessor next_token: ::String
1215
+ SENSITIVE: []
1216
+ end
1217
+
1218
+ class ListFiltersResponse
1219
+ attr_accessor filter_names: ::Array[::String]
1220
+ attr_accessor next_token: ::String
1221
+ SENSITIVE: []
1222
+ end
1223
+
1224
+ class ListFindingsRequest
1225
+ attr_accessor detector_id: ::String
1226
+ attr_accessor finding_criteria: Types::FindingCriteria
1227
+ attr_accessor sort_criteria: Types::SortCriteria
1228
+ attr_accessor max_results: ::Integer
1229
+ attr_accessor next_token: ::String
1230
+ SENSITIVE: []
1231
+ end
1232
+
1233
+ class ListFindingsResponse
1234
+ attr_accessor finding_ids: ::Array[::String]
1235
+ attr_accessor next_token: ::String
1236
+ SENSITIVE: []
1237
+ end
1238
+
1239
+ class ListIPSetsRequest
1240
+ attr_accessor detector_id: ::String
1241
+ attr_accessor max_results: ::Integer
1242
+ attr_accessor next_token: ::String
1243
+ SENSITIVE: []
1244
+ end
1245
+
1246
+ class ListIPSetsResponse
1247
+ attr_accessor ip_set_ids: ::Array[::String]
1248
+ attr_accessor next_token: ::String
1249
+ SENSITIVE: []
1250
+ end
1251
+
1252
+ class ListInvitationsRequest
1253
+ attr_accessor max_results: ::Integer
1254
+ attr_accessor next_token: ::String
1255
+ SENSITIVE: []
1256
+ end
1257
+
1258
+ class ListInvitationsResponse
1259
+ attr_accessor invitations: ::Array[Types::Invitation]
1260
+ attr_accessor next_token: ::String
1261
+ SENSITIVE: []
1262
+ end
1263
+
1264
+ class ListMembersRequest
1265
+ attr_accessor detector_id: ::String
1266
+ attr_accessor max_results: ::Integer
1267
+ attr_accessor next_token: ::String
1268
+ attr_accessor only_associated: ::String
1269
+ SENSITIVE: []
1270
+ end
1271
+
1272
+ class ListMembersResponse
1273
+ attr_accessor members: ::Array[Types::Member]
1274
+ attr_accessor next_token: ::String
1275
+ SENSITIVE: []
1276
+ end
1277
+
1278
+ class ListOrganizationAdminAccountsRequest
1279
+ attr_accessor max_results: ::Integer
1280
+ attr_accessor next_token: ::String
1281
+ SENSITIVE: []
1282
+ end
1283
+
1284
+ class ListOrganizationAdminAccountsResponse
1285
+ attr_accessor admin_accounts: ::Array[Types::AdminAccount]
1286
+ attr_accessor next_token: ::String
1287
+ SENSITIVE: []
1288
+ end
1289
+
1290
+ class ListPublishingDestinationsRequest
1291
+ attr_accessor detector_id: ::String
1292
+ attr_accessor max_results: ::Integer
1293
+ attr_accessor next_token: ::String
1294
+ SENSITIVE: []
1295
+ end
1296
+
1297
+ class ListPublishingDestinationsResponse
1298
+ attr_accessor destinations: ::Array[Types::Destination]
1299
+ attr_accessor next_token: ::String
1300
+ SENSITIVE: []
1301
+ end
1302
+
1303
+ class ListTagsForResourceRequest
1304
+ attr_accessor resource_arn: ::String
1305
+ SENSITIVE: []
1306
+ end
1307
+
1308
+ class ListTagsForResourceResponse
1309
+ attr_accessor tags: ::Hash[::String, ::String]
1310
+ SENSITIVE: []
1311
+ end
1312
+
1313
+ class ListThreatIntelSetsRequest
1314
+ attr_accessor detector_id: ::String
1315
+ attr_accessor max_results: ::Integer
1316
+ attr_accessor next_token: ::String
1317
+ SENSITIVE: []
1318
+ end
1319
+
1320
+ class ListThreatIntelSetsResponse
1321
+ attr_accessor threat_intel_set_ids: ::Array[::String]
1322
+ attr_accessor next_token: ::String
1323
+ SENSITIVE: []
1324
+ end
1325
+
1326
+ class LocalIpDetails
1327
+ attr_accessor ip_address_v4: ::String
1328
+ SENSITIVE: []
1329
+ end
1330
+
1331
+ class LocalPortDetails
1332
+ attr_accessor port: ::Integer
1333
+ attr_accessor port_name: ::String
1334
+ SENSITIVE: []
1335
+ end
1336
+
1337
+ class LoginAttribute
1338
+ attr_accessor user: ::String
1339
+ attr_accessor application: ::String
1340
+ attr_accessor failed_login_attempts: ::Integer
1341
+ attr_accessor successful_login_attempts: ::Integer
1342
+ SENSITIVE: []
1343
+ end
1344
+
1345
+ class MalwareProtectionConfiguration
1346
+ attr_accessor scan_ec2_instance_with_findings: Types::ScanEc2InstanceWithFindings
1347
+ SENSITIVE: []
1348
+ end
1349
+
1350
+ class MalwareProtectionConfigurationResult
1351
+ attr_accessor scan_ec2_instance_with_findings: Types::ScanEc2InstanceWithFindingsResult
1352
+ attr_accessor service_role: ::String
1353
+ SENSITIVE: []
1354
+ end
1355
+
1356
+ class MalwareProtectionDataSourceFreeTrial
1357
+ attr_accessor scan_ec2_instance_with_findings: Types::DataSourceFreeTrial
1358
+ SENSITIVE: []
1359
+ end
1360
+
1361
+ class Master
1362
+ attr_accessor account_id: ::String
1363
+ attr_accessor invitation_id: ::String
1364
+ attr_accessor relationship_status: ::String
1365
+ attr_accessor invited_at: ::String
1366
+ SENSITIVE: []
1367
+ end
1368
+
1369
+ class Member
1370
+ attr_accessor account_id: ::String
1371
+ attr_accessor detector_id: ::String
1372
+ attr_accessor master_id: ::String
1373
+ attr_accessor email: ::String
1374
+ attr_accessor relationship_status: ::String
1375
+ attr_accessor invited_at: ::String
1376
+ attr_accessor updated_at: ::String
1377
+ attr_accessor administrator_id: ::String
1378
+ SENSITIVE: []
1379
+ end
1380
+
1381
+ class MemberAdditionalConfiguration
1382
+ attr_accessor name: ("EKS_ADDON_MANAGEMENT" | "ECS_FARGATE_AGENT_MANAGEMENT")
1383
+ attr_accessor status: ("ENABLED" | "DISABLED")
1384
+ SENSITIVE: []
1385
+ end
1386
+
1387
+ class MemberAdditionalConfigurationResult
1388
+ attr_accessor name: ("EKS_ADDON_MANAGEMENT" | "ECS_FARGATE_AGENT_MANAGEMENT")
1389
+ attr_accessor status: ("ENABLED" | "DISABLED")
1390
+ attr_accessor updated_at: ::Time
1391
+ SENSITIVE: []
1392
+ end
1393
+
1394
+ class MemberDataSourceConfiguration
1395
+ attr_accessor account_id: ::String
1396
+ attr_accessor data_sources: Types::DataSourceConfigurationsResult
1397
+ attr_accessor features: ::Array[Types::MemberFeaturesConfigurationResult]
1398
+ SENSITIVE: []
1399
+ end
1400
+
1401
+ class MemberFeaturesConfiguration
1402
+ attr_accessor name: ("S3_DATA_EVENTS" | "EKS_AUDIT_LOGS" | "EBS_MALWARE_PROTECTION" | "RDS_LOGIN_EVENTS" | "EKS_RUNTIME_MONITORING" | "LAMBDA_NETWORK_LOGS" | "RUNTIME_MONITORING")
1403
+ attr_accessor status: ("ENABLED" | "DISABLED")
1404
+ attr_accessor additional_configuration: ::Array[Types::MemberAdditionalConfiguration]
1405
+ SENSITIVE: []
1406
+ end
1407
+
1408
+ class MemberFeaturesConfigurationResult
1409
+ attr_accessor name: ("S3_DATA_EVENTS" | "EKS_AUDIT_LOGS" | "EBS_MALWARE_PROTECTION" | "RDS_LOGIN_EVENTS" | "EKS_RUNTIME_MONITORING" | "LAMBDA_NETWORK_LOGS" | "RUNTIME_MONITORING")
1410
+ attr_accessor status: ("ENABLED" | "DISABLED")
1411
+ attr_accessor updated_at: ::Time
1412
+ attr_accessor additional_configuration: ::Array[Types::MemberAdditionalConfigurationResult]
1413
+ SENSITIVE: []
1414
+ end
1415
+
1416
+ class NetworkConnectionAction
1417
+ attr_accessor blocked: bool
1418
+ attr_accessor connection_direction: ::String
1419
+ attr_accessor local_port_details: Types::LocalPortDetails
1420
+ attr_accessor protocol: ::String
1421
+ attr_accessor local_ip_details: Types::LocalIpDetails
1422
+ attr_accessor remote_ip_details: Types::RemoteIpDetails
1423
+ attr_accessor remote_port_details: Types::RemotePortDetails
1424
+ SENSITIVE: []
1425
+ end
1426
+
1427
+ class NetworkInterface
1428
+ attr_accessor ipv_6_addresses: ::Array[::String]
1429
+ attr_accessor network_interface_id: ::String
1430
+ attr_accessor private_dns_name: ::String
1431
+ attr_accessor private_ip_address: ::String
1432
+ attr_accessor private_ip_addresses: ::Array[Types::PrivateIpAddressDetails]
1433
+ attr_accessor public_dns_name: ::String
1434
+ attr_accessor public_ip: ::String
1435
+ attr_accessor security_groups: ::Array[Types::SecurityGroup]
1436
+ attr_accessor subnet_id: ::String
1437
+ attr_accessor vpc_id: ::String
1438
+ SENSITIVE: []
1439
+ end
1440
+
1441
+ class Observations
1442
+ attr_accessor text: ::Array[::String]
1443
+ SENSITIVE: []
1444
+ end
1445
+
1446
+ class Organization
1447
+ attr_accessor asn: ::String
1448
+ attr_accessor asn_org: ::String
1449
+ attr_accessor isp: ::String
1450
+ attr_accessor org: ::String
1451
+ SENSITIVE: []
1452
+ end
1453
+
1454
+ class OrganizationAdditionalConfiguration
1455
+ attr_accessor name: ("EKS_ADDON_MANAGEMENT" | "ECS_FARGATE_AGENT_MANAGEMENT")
1456
+ attr_accessor auto_enable: ("NEW" | "NONE" | "ALL")
1457
+ SENSITIVE: []
1458
+ end
1459
+
1460
+ class OrganizationAdditionalConfigurationResult
1461
+ attr_accessor name: ("EKS_ADDON_MANAGEMENT" | "ECS_FARGATE_AGENT_MANAGEMENT")
1462
+ attr_accessor auto_enable: ("NEW" | "NONE" | "ALL")
1463
+ SENSITIVE: []
1464
+ end
1465
+
1466
+ class OrganizationDataSourceConfigurations
1467
+ attr_accessor s3_logs: Types::OrganizationS3LogsConfiguration
1468
+ attr_accessor kubernetes: Types::OrganizationKubernetesConfiguration
1469
+ attr_accessor malware_protection: Types::OrganizationMalwareProtectionConfiguration
1470
+ SENSITIVE: []
1471
+ end
1472
+
1473
+ class OrganizationDataSourceConfigurationsResult
1474
+ attr_accessor s3_logs: Types::OrganizationS3LogsConfigurationResult
1475
+ attr_accessor kubernetes: Types::OrganizationKubernetesConfigurationResult
1476
+ attr_accessor malware_protection: Types::OrganizationMalwareProtectionConfigurationResult
1477
+ SENSITIVE: []
1478
+ end
1479
+
1480
+ class OrganizationDetails
1481
+ attr_accessor updated_at: ::Time
1482
+ attr_accessor organization_statistics: Types::OrganizationStatistics
1483
+ SENSITIVE: []
1484
+ end
1485
+
1486
+ class OrganizationEbsVolumes
1487
+ attr_accessor auto_enable: bool
1488
+ SENSITIVE: []
1489
+ end
1490
+
1491
+ class OrganizationEbsVolumesResult
1492
+ attr_accessor auto_enable: bool
1493
+ SENSITIVE: []
1494
+ end
1495
+
1496
+ class OrganizationFeatureConfiguration
1497
+ attr_accessor name: ("S3_DATA_EVENTS" | "EKS_AUDIT_LOGS" | "EBS_MALWARE_PROTECTION" | "RDS_LOGIN_EVENTS" | "EKS_RUNTIME_MONITORING" | "LAMBDA_NETWORK_LOGS" | "RUNTIME_MONITORING")
1498
+ attr_accessor auto_enable: ("NEW" | "NONE" | "ALL")
1499
+ attr_accessor additional_configuration: ::Array[Types::OrganizationAdditionalConfiguration]
1500
+ SENSITIVE: []
1501
+ end
1502
+
1503
+ class OrganizationFeatureConfigurationResult
1504
+ attr_accessor name: ("S3_DATA_EVENTS" | "EKS_AUDIT_LOGS" | "EBS_MALWARE_PROTECTION" | "RDS_LOGIN_EVENTS" | "EKS_RUNTIME_MONITORING" | "LAMBDA_NETWORK_LOGS" | "RUNTIME_MONITORING")
1505
+ attr_accessor auto_enable: ("NEW" | "NONE" | "ALL")
1506
+ attr_accessor additional_configuration: ::Array[Types::OrganizationAdditionalConfigurationResult]
1507
+ SENSITIVE: []
1508
+ end
1509
+
1510
+ class OrganizationFeatureStatistics
1511
+ attr_accessor name: ("S3_DATA_EVENTS" | "EKS_AUDIT_LOGS" | "EBS_MALWARE_PROTECTION" | "RDS_LOGIN_EVENTS" | "EKS_RUNTIME_MONITORING" | "LAMBDA_NETWORK_LOGS" | "RUNTIME_MONITORING")
1512
+ attr_accessor enabled_accounts_count: ::Integer
1513
+ attr_accessor additional_configuration: ::Array[Types::OrganizationFeatureStatisticsAdditionalConfiguration]
1514
+ SENSITIVE: []
1515
+ end
1516
+
1517
+ class OrganizationFeatureStatisticsAdditionalConfiguration
1518
+ attr_accessor name: ("EKS_ADDON_MANAGEMENT" | "ECS_FARGATE_AGENT_MANAGEMENT")
1519
+ attr_accessor enabled_accounts_count: ::Integer
1520
+ SENSITIVE: []
1521
+ end
1522
+
1523
+ class OrganizationKubernetesAuditLogsConfiguration
1524
+ attr_accessor auto_enable: bool
1525
+ SENSITIVE: []
1526
+ end
1527
+
1528
+ class OrganizationKubernetesAuditLogsConfigurationResult
1529
+ attr_accessor auto_enable: bool
1530
+ SENSITIVE: []
1531
+ end
1532
+
1533
+ class OrganizationKubernetesConfiguration
1534
+ attr_accessor audit_logs: Types::OrganizationKubernetesAuditLogsConfiguration
1535
+ SENSITIVE: []
1536
+ end
1537
+
1538
+ class OrganizationKubernetesConfigurationResult
1539
+ attr_accessor audit_logs: Types::OrganizationKubernetesAuditLogsConfigurationResult
1540
+ SENSITIVE: []
1541
+ end
1542
+
1543
+ class OrganizationMalwareProtectionConfiguration
1544
+ attr_accessor scan_ec2_instance_with_findings: Types::OrganizationScanEc2InstanceWithFindings
1545
+ SENSITIVE: []
1546
+ end
1547
+
1548
+ class OrganizationMalwareProtectionConfigurationResult
1549
+ attr_accessor scan_ec2_instance_with_findings: Types::OrganizationScanEc2InstanceWithFindingsResult
1550
+ SENSITIVE: []
1551
+ end
1552
+
1553
+ class OrganizationS3LogsConfiguration
1554
+ attr_accessor auto_enable: bool
1555
+ SENSITIVE: []
1556
+ end
1557
+
1558
+ class OrganizationS3LogsConfigurationResult
1559
+ attr_accessor auto_enable: bool
1560
+ SENSITIVE: []
1561
+ end
1562
+
1563
+ class OrganizationScanEc2InstanceWithFindings
1564
+ attr_accessor ebs_volumes: Types::OrganizationEbsVolumes
1565
+ SENSITIVE: []
1566
+ end
1567
+
1568
+ class OrganizationScanEc2InstanceWithFindingsResult
1569
+ attr_accessor ebs_volumes: Types::OrganizationEbsVolumesResult
1570
+ SENSITIVE: []
1571
+ end
1572
+
1573
+ class OrganizationStatistics
1574
+ attr_accessor total_accounts_count: ::Integer
1575
+ attr_accessor member_accounts_count: ::Integer
1576
+ attr_accessor active_accounts_count: ::Integer
1577
+ attr_accessor enabled_accounts_count: ::Integer
1578
+ attr_accessor count_by_feature: ::Array[Types::OrganizationFeatureStatistics]
1579
+ SENSITIVE: []
1580
+ end
1581
+
1582
+ class Owner
1583
+ attr_accessor id: ::String
1584
+ SENSITIVE: []
1585
+ end
1586
+
1587
+ class PermissionConfiguration
1588
+ attr_accessor bucket_level_permissions: Types::BucketLevelPermissions
1589
+ attr_accessor account_level_permissions: Types::AccountLevelPermissions
1590
+ SENSITIVE: []
1591
+ end
1592
+
1593
+ class PortProbeAction
1594
+ attr_accessor blocked: bool
1595
+ attr_accessor port_probe_details: ::Array[Types::PortProbeDetail]
1596
+ SENSITIVE: []
1597
+ end
1598
+
1599
+ class PortProbeDetail
1600
+ attr_accessor local_port_details: Types::LocalPortDetails
1601
+ attr_accessor local_ip_details: Types::LocalIpDetails
1602
+ attr_accessor remote_ip_details: Types::RemoteIpDetails
1603
+ SENSITIVE: []
1604
+ end
1605
+
1606
+ class PrivateIpAddressDetails
1607
+ attr_accessor private_dns_name: ::String
1608
+ attr_accessor private_ip_address: ::String
1609
+ SENSITIVE: []
1610
+ end
1611
+
1612
+ class ProcessDetails
1613
+ attr_accessor name: ::String
1614
+ attr_accessor executable_path: ::String
1615
+ attr_accessor executable_sha_256: ::String
1616
+ attr_accessor namespace_pid: ::Integer
1617
+ attr_accessor pwd: ::String
1618
+ attr_accessor pid: ::Integer
1619
+ attr_accessor start_time: ::Time
1620
+ attr_accessor uuid: ::String
1621
+ attr_accessor parent_uuid: ::String
1622
+ attr_accessor user: ::String
1623
+ attr_accessor user_id: ::Integer
1624
+ attr_accessor euid: ::Integer
1625
+ attr_accessor lineage: ::Array[Types::LineageObject]
1626
+ SENSITIVE: []
1627
+ end
1628
+
1629
+ class ProductCode
1630
+ attr_accessor code: ::String
1631
+ attr_accessor product_type: ::String
1632
+ SENSITIVE: []
1633
+ end
1634
+
1635
+ class PublicAccess
1636
+ attr_accessor permission_configuration: Types::PermissionConfiguration
1637
+ attr_accessor effective_permission: ::String
1638
+ SENSITIVE: []
1639
+ end
1640
+
1641
+ class RdsDbInstanceDetails
1642
+ attr_accessor db_instance_identifier: ::String
1643
+ attr_accessor engine: ::String
1644
+ attr_accessor engine_version: ::String
1645
+ attr_accessor db_cluster_identifier: ::String
1646
+ attr_accessor db_instance_arn: ::String
1647
+ attr_accessor tags: ::Array[Types::Tag]
1648
+ SENSITIVE: []
1649
+ end
1650
+
1651
+ class RdsDbUserDetails
1652
+ attr_accessor user: ::String
1653
+ attr_accessor application: ::String
1654
+ attr_accessor database: ::String
1655
+ attr_accessor ssl: ::String
1656
+ attr_accessor auth_method: ::String
1657
+ SENSITIVE: []
1658
+ end
1659
+
1660
+ class RdsLoginAttemptAction
1661
+ attr_accessor remote_ip_details: Types::RemoteIpDetails
1662
+ attr_accessor login_attributes: ::Array[Types::LoginAttribute]
1663
+ SENSITIVE: []
1664
+ end
1665
+
1666
+ class RemoteAccountDetails
1667
+ attr_accessor account_id: ::String
1668
+ attr_accessor affiliated: bool
1669
+ SENSITIVE: []
1670
+ end
1671
+
1672
+ class RemoteIpDetails
1673
+ attr_accessor city: Types::City
1674
+ attr_accessor country: Types::Country
1675
+ attr_accessor geo_location: Types::GeoLocation
1676
+ attr_accessor ip_address_v4: ::String
1677
+ attr_accessor organization: Types::Organization
1678
+ SENSITIVE: []
1679
+ end
1680
+
1681
+ class RemotePortDetails
1682
+ attr_accessor port: ::Integer
1683
+ attr_accessor port_name: ::String
1684
+ SENSITIVE: []
1685
+ end
1686
+
1687
+ class Resource
1688
+ attr_accessor access_key_details: Types::AccessKeyDetails
1689
+ attr_accessor s3_bucket_details: ::Array[Types::S3BucketDetail]
1690
+ attr_accessor instance_details: Types::InstanceDetails
1691
+ attr_accessor eks_cluster_details: Types::EksClusterDetails
1692
+ attr_accessor kubernetes_details: Types::KubernetesDetails
1693
+ attr_accessor resource_type: ::String
1694
+ attr_accessor ebs_volume_details: Types::EbsVolumeDetails
1695
+ attr_accessor ecs_cluster_details: Types::EcsClusterDetails
1696
+ attr_accessor container_details: Types::Container
1697
+ attr_accessor rds_db_instance_details: Types::RdsDbInstanceDetails
1698
+ attr_accessor rds_db_user_details: Types::RdsDbUserDetails
1699
+ attr_accessor lambda_details: Types::LambdaDetails
1700
+ SENSITIVE: []
1701
+ end
1702
+
1703
+ class ResourceDetails
1704
+ attr_accessor instance_arn: ::String
1705
+ SENSITIVE: []
1706
+ end
1707
+
1708
+ class RuntimeContext
1709
+ attr_accessor modifying_process: Types::ProcessDetails
1710
+ attr_accessor modified_at: ::Time
1711
+ attr_accessor script_path: ::String
1712
+ attr_accessor library_path: ::String
1713
+ attr_accessor ld_preload_value: ::String
1714
+ attr_accessor socket_path: ::String
1715
+ attr_accessor runc_binary_path: ::String
1716
+ attr_accessor release_agent_path: ::String
1717
+ attr_accessor mount_source: ::String
1718
+ attr_accessor mount_target: ::String
1719
+ attr_accessor file_system_type: ::String
1720
+ attr_accessor flags: ::Array[::String]
1721
+ attr_accessor module_name: ::String
1722
+ attr_accessor module_file_path: ::String
1723
+ attr_accessor module_sha_256: ::String
1724
+ attr_accessor shell_history_file_path: ::String
1725
+ attr_accessor target_process: Types::ProcessDetails
1726
+ attr_accessor address_family: ::String
1727
+ attr_accessor iana_protocol_number: ::Integer
1728
+ attr_accessor memory_regions: ::Array[::String]
1729
+ SENSITIVE: []
1730
+ end
1731
+
1732
+ class RuntimeDetails
1733
+ attr_accessor process: Types::ProcessDetails
1734
+ attr_accessor context: Types::RuntimeContext
1735
+ SENSITIVE: []
1736
+ end
1737
+
1738
+ class S3BucketDetail
1739
+ attr_accessor arn: ::String
1740
+ attr_accessor name: ::String
1741
+ attr_accessor type: ::String
1742
+ attr_accessor created_at: ::Time
1743
+ attr_accessor owner: Types::Owner
1744
+ attr_accessor tags: ::Array[Types::Tag]
1745
+ attr_accessor default_server_side_encryption: Types::DefaultServerSideEncryption
1746
+ attr_accessor public_access: Types::PublicAccess
1747
+ SENSITIVE: []
1748
+ end
1749
+
1750
+ class S3LogsConfiguration
1751
+ attr_accessor enable: bool
1752
+ SENSITIVE: []
1753
+ end
1754
+
1755
+ class S3LogsConfigurationResult
1756
+ attr_accessor status: ("ENABLED" | "DISABLED")
1757
+ SENSITIVE: []
1758
+ end
1759
+
1760
+ class Scan
1761
+ attr_accessor detector_id: ::String
1762
+ attr_accessor admin_detector_id: ::String
1763
+ attr_accessor scan_id: ::String
1764
+ attr_accessor scan_status: ("RUNNING" | "COMPLETED" | "FAILED" | "SKIPPED")
1765
+ attr_accessor failure_reason: ::String
1766
+ attr_accessor scan_start_time: ::Time
1767
+ attr_accessor scan_end_time: ::Time
1768
+ attr_accessor trigger_details: Types::TriggerDetails
1769
+ attr_accessor resource_details: Types::ResourceDetails
1770
+ attr_accessor scan_result_details: Types::ScanResultDetails
1771
+ attr_accessor account_id: ::String
1772
+ attr_accessor total_bytes: ::Integer
1773
+ attr_accessor file_count: ::Integer
1774
+ attr_accessor attached_volumes: ::Array[Types::VolumeDetail]
1775
+ attr_accessor scan_type: ("GUARDDUTY_INITIATED" | "ON_DEMAND")
1776
+ SENSITIVE: []
1777
+ end
1778
+
1779
+ class ScanCondition
1780
+ attr_accessor map_equals: ::Array[Types::ScanConditionPair]
1781
+ SENSITIVE: []
1782
+ end
1783
+
1784
+ class ScanConditionPair
1785
+ attr_accessor key: ::String
1786
+ attr_accessor value: ::String
1787
+ SENSITIVE: []
1788
+ end
1789
+
1790
+ class ScanDetections
1791
+ attr_accessor scanned_item_count: Types::ScannedItemCount
1792
+ attr_accessor threats_detected_item_count: Types::ThreatsDetectedItemCount
1793
+ attr_accessor highest_severity_threat_details: Types::HighestSeverityThreatDetails
1794
+ attr_accessor threat_detected_by_name: Types::ThreatDetectedByName
1795
+ SENSITIVE: []
1796
+ end
1797
+
1798
+ class ScanEc2InstanceWithFindings
1799
+ attr_accessor ebs_volumes: bool
1800
+ SENSITIVE: []
1801
+ end
1802
+
1803
+ class ScanEc2InstanceWithFindingsResult
1804
+ attr_accessor ebs_volumes: Types::EbsVolumesResult
1805
+ SENSITIVE: []
1806
+ end
1807
+
1808
+ class ScanFilePath
1809
+ attr_accessor file_path: ::String
1810
+ attr_accessor volume_arn: ::String
1811
+ attr_accessor hash: ::String
1812
+ attr_accessor file_name: ::String
1813
+ SENSITIVE: []
1814
+ end
1815
+
1816
+ class ScanResourceCriteria
1817
+ attr_accessor include: ::Hash[("EC2_INSTANCE_TAG"), Types::ScanCondition]
1818
+ attr_accessor exclude: ::Hash[("EC2_INSTANCE_TAG"), Types::ScanCondition]
1819
+ SENSITIVE: []
1820
+ end
1821
+
1822
+ class ScanResultDetails
1823
+ attr_accessor scan_result: ("CLEAN" | "INFECTED")
1824
+ SENSITIVE: []
1825
+ end
1826
+
1827
+ class ScanThreatName
1828
+ attr_accessor name: ::String
1829
+ attr_accessor severity: ::String
1830
+ attr_accessor item_count: ::Integer
1831
+ attr_accessor file_paths: ::Array[Types::ScanFilePath]
1832
+ SENSITIVE: []
1833
+ end
1834
+
1835
+ class ScannedItemCount
1836
+ attr_accessor total_gb: ::Integer
1837
+ attr_accessor files: ::Integer
1838
+ attr_accessor volumes: ::Integer
1839
+ SENSITIVE: []
1840
+ end
1841
+
1842
+ class SecurityContext
1843
+ attr_accessor privileged: bool
1844
+ attr_accessor allow_privilege_escalation: bool
1845
+ SENSITIVE: []
1846
+ end
1847
+
1848
+ class SecurityGroup
1849
+ attr_accessor group_id: ::String
1850
+ attr_accessor group_name: ::String
1851
+ SENSITIVE: []
1852
+ end
1853
+
1854
+ class Service
1855
+ attr_accessor action: Types::Action
1856
+ attr_accessor evidence: Types::Evidence
1857
+ attr_accessor archived: bool
1858
+ attr_accessor count: ::Integer
1859
+ attr_accessor detector_id: ::String
1860
+ attr_accessor event_first_seen: ::String
1861
+ attr_accessor event_last_seen: ::String
1862
+ attr_accessor resource_role: ::String
1863
+ attr_accessor service_name: ::String
1864
+ attr_accessor user_feedback: ::String
1865
+ attr_accessor additional_info: Types::ServiceAdditionalInfo
1866
+ attr_accessor feature_name: ::String
1867
+ attr_accessor ebs_volume_scan_details: Types::EbsVolumeScanDetails
1868
+ attr_accessor runtime_details: Types::RuntimeDetails
1869
+ attr_accessor detection: Types::Detection
1870
+ SENSITIVE: []
1871
+ end
1872
+
1873
+ class ServiceAdditionalInfo
1874
+ attr_accessor value: ::String
1875
+ attr_accessor type: ::String
1876
+ SENSITIVE: []
1877
+ end
1878
+
1879
+ class SortCriteria
1880
+ attr_accessor attribute_name: ::String
1881
+ attr_accessor order_by: ("ASC" | "DESC")
1882
+ SENSITIVE: []
1883
+ end
1884
+
1885
+ class StartMalwareScanRequest
1886
+ attr_accessor resource_arn: ::String
1887
+ SENSITIVE: []
1888
+ end
1889
+
1890
+ class StartMalwareScanResponse
1891
+ attr_accessor scan_id: ::String
1892
+ SENSITIVE: []
1893
+ end
1894
+
1895
+ class StartMonitoringMembersRequest
1896
+ attr_accessor detector_id: ::String
1897
+ attr_accessor account_ids: ::Array[::String]
1898
+ SENSITIVE: []
1899
+ end
1900
+
1901
+ class StartMonitoringMembersResponse
1902
+ attr_accessor unprocessed_accounts: ::Array[Types::UnprocessedAccount]
1903
+ SENSITIVE: []
1904
+ end
1905
+
1906
+ class StopMonitoringMembersRequest
1907
+ attr_accessor detector_id: ::String
1908
+ attr_accessor account_ids: ::Array[::String]
1909
+ SENSITIVE: []
1910
+ end
1911
+
1912
+ class StopMonitoringMembersResponse
1913
+ attr_accessor unprocessed_accounts: ::Array[Types::UnprocessedAccount]
1914
+ SENSITIVE: []
1915
+ end
1916
+
1917
+ class Tag
1918
+ attr_accessor key: ::String
1919
+ attr_accessor value: ::String
1920
+ SENSITIVE: []
1921
+ end
1922
+
1923
+ class TagResourceRequest
1924
+ attr_accessor resource_arn: ::String
1925
+ attr_accessor tags: ::Hash[::String, ::String]
1926
+ SENSITIVE: []
1927
+ end
1928
+
1929
+ class TagResourceResponse < Aws::EmptyStructure
1930
+ end
1931
+
1932
+ class ThreatDetectedByName
1933
+ attr_accessor item_count: ::Integer
1934
+ attr_accessor unique_threat_name_count: ::Integer
1935
+ attr_accessor shortened: bool
1936
+ attr_accessor threat_names: ::Array[Types::ScanThreatName]
1937
+ SENSITIVE: []
1938
+ end
1939
+
1940
+ class ThreatIntelligenceDetail
1941
+ attr_accessor threat_list_name: ::String
1942
+ attr_accessor threat_names: ::Array[::String]
1943
+ SENSITIVE: []
1944
+ end
1945
+
1946
+ class ThreatsDetectedItemCount
1947
+ attr_accessor files: ::Integer
1948
+ SENSITIVE: []
1949
+ end
1950
+
1951
+ class Total
1952
+ attr_accessor amount: ::String
1953
+ attr_accessor unit: ::String
1954
+ SENSITIVE: []
1955
+ end
1956
+
1957
+ class TriggerDetails
1958
+ attr_accessor guard_duty_finding_id: ::String
1959
+ attr_accessor description: ::String
1960
+ SENSITIVE: []
1961
+ end
1962
+
1963
+ class UnarchiveFindingsRequest
1964
+ attr_accessor detector_id: ::String
1965
+ attr_accessor finding_ids: ::Array[::String]
1966
+ SENSITIVE: []
1967
+ end
1968
+
1969
+ class UnarchiveFindingsResponse < Aws::EmptyStructure
1970
+ end
1971
+
1972
+ class UnprocessedAccount
1973
+ attr_accessor account_id: ::String
1974
+ attr_accessor result: ::String
1975
+ SENSITIVE: []
1976
+ end
1977
+
1978
+ class UnprocessedDataSourcesResult
1979
+ attr_accessor malware_protection: Types::MalwareProtectionConfigurationResult
1980
+ SENSITIVE: []
1981
+ end
1982
+
1983
+ class UntagResourceRequest
1984
+ attr_accessor resource_arn: ::String
1985
+ attr_accessor tag_keys: ::Array[::String]
1986
+ SENSITIVE: []
1987
+ end
1988
+
1989
+ class UntagResourceResponse < Aws::EmptyStructure
1990
+ end
1991
+
1992
+ class UpdateDetectorRequest
1993
+ attr_accessor detector_id: ::String
1994
+ attr_accessor enable: bool
1995
+ attr_accessor finding_publishing_frequency: ("FIFTEEN_MINUTES" | "ONE_HOUR" | "SIX_HOURS")
1996
+ attr_accessor data_sources: Types::DataSourceConfigurations
1997
+ attr_accessor features: ::Array[Types::DetectorFeatureConfiguration]
1998
+ SENSITIVE: []
1999
+ end
2000
+
2001
+ class UpdateDetectorResponse < Aws::EmptyStructure
2002
+ end
2003
+
2004
+ class UpdateFilterRequest
2005
+ attr_accessor detector_id: ::String
2006
+ attr_accessor filter_name: ::String
2007
+ attr_accessor description: ::String
2008
+ attr_accessor action: ("NOOP" | "ARCHIVE")
2009
+ attr_accessor rank: ::Integer
2010
+ attr_accessor finding_criteria: Types::FindingCriteria
2011
+ SENSITIVE: []
2012
+ end
2013
+
2014
+ class UpdateFilterResponse
2015
+ attr_accessor name: ::String
2016
+ SENSITIVE: []
2017
+ end
2018
+
2019
+ class UpdateFindingsFeedbackRequest
2020
+ attr_accessor detector_id: ::String
2021
+ attr_accessor finding_ids: ::Array[::String]
2022
+ attr_accessor feedback: ("USEFUL" | "NOT_USEFUL")
2023
+ attr_accessor comments: ::String
2024
+ SENSITIVE: []
2025
+ end
2026
+
2027
+ class UpdateFindingsFeedbackResponse < Aws::EmptyStructure
2028
+ end
2029
+
2030
+ class UpdateIPSetRequest
2031
+ attr_accessor detector_id: ::String
2032
+ attr_accessor ip_set_id: ::String
2033
+ attr_accessor name: ::String
2034
+ attr_accessor location: ::String
2035
+ attr_accessor activate: bool
2036
+ SENSITIVE: []
2037
+ end
2038
+
2039
+ class UpdateIPSetResponse < Aws::EmptyStructure
2040
+ end
2041
+
2042
+ class UpdateMalwareScanSettingsRequest
2043
+ attr_accessor detector_id: ::String
2044
+ attr_accessor scan_resource_criteria: Types::ScanResourceCriteria
2045
+ attr_accessor ebs_snapshot_preservation: ("NO_RETENTION" | "RETENTION_WITH_FINDING")
2046
+ SENSITIVE: []
2047
+ end
2048
+
2049
+ class UpdateMalwareScanSettingsResponse < Aws::EmptyStructure
2050
+ end
2051
+
2052
+ class UpdateMemberDetectorsRequest
2053
+ attr_accessor detector_id: ::String
2054
+ attr_accessor account_ids: ::Array[::String]
2055
+ attr_accessor data_sources: Types::DataSourceConfigurations
2056
+ attr_accessor features: ::Array[Types::MemberFeaturesConfiguration]
2057
+ SENSITIVE: []
2058
+ end
2059
+
2060
+ class UpdateMemberDetectorsResponse
2061
+ attr_accessor unprocessed_accounts: ::Array[Types::UnprocessedAccount]
2062
+ SENSITIVE: []
2063
+ end
2064
+
2065
+ class UpdateOrganizationConfigurationRequest
2066
+ attr_accessor detector_id: ::String
2067
+ attr_accessor auto_enable: bool
2068
+ attr_accessor data_sources: Types::OrganizationDataSourceConfigurations
2069
+ attr_accessor features: ::Array[Types::OrganizationFeatureConfiguration]
2070
+ attr_accessor auto_enable_organization_members: ("NEW" | "ALL" | "NONE")
2071
+ SENSITIVE: []
2072
+ end
2073
+
2074
+ class UpdateOrganizationConfigurationResponse < Aws::EmptyStructure
2075
+ end
2076
+
2077
+ class UpdatePublishingDestinationRequest
2078
+ attr_accessor detector_id: ::String
2079
+ attr_accessor destination_id: ::String
2080
+ attr_accessor destination_properties: Types::DestinationProperties
2081
+ SENSITIVE: []
2082
+ end
2083
+
2084
+ class UpdatePublishingDestinationResponse < Aws::EmptyStructure
2085
+ end
2086
+
2087
+ class UpdateThreatIntelSetRequest
2088
+ attr_accessor detector_id: ::String
2089
+ attr_accessor threat_intel_set_id: ::String
2090
+ attr_accessor name: ::String
2091
+ attr_accessor location: ::String
2092
+ attr_accessor activate: bool
2093
+ SENSITIVE: []
2094
+ end
2095
+
2096
+ class UpdateThreatIntelSetResponse < Aws::EmptyStructure
2097
+ end
2098
+
2099
+ class UsageAccountResult
2100
+ attr_accessor account_id: ::String
2101
+ attr_accessor total: Types::Total
2102
+ SENSITIVE: []
2103
+ end
2104
+
2105
+ class UsageCriteria
2106
+ attr_accessor account_ids: ::Array[::String]
2107
+ attr_accessor data_sources: ::Array[("FLOW_LOGS" | "CLOUD_TRAIL" | "DNS_LOGS" | "S3_LOGS" | "KUBERNETES_AUDIT_LOGS" | "EC2_MALWARE_SCAN")]
2108
+ attr_accessor resources: ::Array[::String]
2109
+ attr_accessor features: ::Array[("FLOW_LOGS" | "CLOUD_TRAIL" | "DNS_LOGS" | "S3_DATA_EVENTS" | "EKS_AUDIT_LOGS" | "EBS_MALWARE_PROTECTION" | "RDS_LOGIN_EVENTS" | "LAMBDA_NETWORK_LOGS" | "EKS_RUNTIME_MONITORING" | "FARGATE_RUNTIME_MONITORING" | "EC2_RUNTIME_MONITORING")]
2110
+ SENSITIVE: []
2111
+ end
2112
+
2113
+ class UsageDataSourceResult
2114
+ attr_accessor data_source: ("FLOW_LOGS" | "CLOUD_TRAIL" | "DNS_LOGS" | "S3_LOGS" | "KUBERNETES_AUDIT_LOGS" | "EC2_MALWARE_SCAN")
2115
+ attr_accessor total: Types::Total
2116
+ SENSITIVE: []
2117
+ end
2118
+
2119
+ class UsageFeatureResult
2120
+ attr_accessor feature: ("FLOW_LOGS" | "CLOUD_TRAIL" | "DNS_LOGS" | "S3_DATA_EVENTS" | "EKS_AUDIT_LOGS" | "EBS_MALWARE_PROTECTION" | "RDS_LOGIN_EVENTS" | "LAMBDA_NETWORK_LOGS" | "EKS_RUNTIME_MONITORING" | "FARGATE_RUNTIME_MONITORING" | "EC2_RUNTIME_MONITORING")
2121
+ attr_accessor total: Types::Total
2122
+ SENSITIVE: []
2123
+ end
2124
+
2125
+ class UsageResourceResult
2126
+ attr_accessor resource: ::String
2127
+ attr_accessor total: Types::Total
2128
+ SENSITIVE: []
2129
+ end
2130
+
2131
+ class UsageStatistics
2132
+ attr_accessor sum_by_account: ::Array[Types::UsageAccountResult]
2133
+ attr_accessor top_accounts_by_feature: ::Array[Types::UsageTopAccountsResult]
2134
+ attr_accessor sum_by_data_source: ::Array[Types::UsageDataSourceResult]
2135
+ attr_accessor sum_by_resource: ::Array[Types::UsageResourceResult]
2136
+ attr_accessor top_resources: ::Array[Types::UsageResourceResult]
2137
+ attr_accessor sum_by_feature: ::Array[Types::UsageFeatureResult]
2138
+ SENSITIVE: []
2139
+ end
2140
+
2141
+ class UsageTopAccountResult
2142
+ attr_accessor account_id: ::String
2143
+ attr_accessor total: Types::Total
2144
+ SENSITIVE: []
2145
+ end
2146
+
2147
+ class UsageTopAccountsResult
2148
+ attr_accessor feature: ("FLOW_LOGS" | "CLOUD_TRAIL" | "DNS_LOGS" | "S3_DATA_EVENTS" | "EKS_AUDIT_LOGS" | "EBS_MALWARE_PROTECTION" | "RDS_LOGIN_EVENTS" | "LAMBDA_NETWORK_LOGS" | "EKS_RUNTIME_MONITORING" | "FARGATE_RUNTIME_MONITORING" | "EC2_RUNTIME_MONITORING")
2149
+ attr_accessor accounts: ::Array[Types::UsageTopAccountResult]
2150
+ SENSITIVE: []
2151
+ end
2152
+
2153
+ class Volume
2154
+ attr_accessor name: ::String
2155
+ attr_accessor host_path: Types::HostPath
2156
+ SENSITIVE: []
2157
+ end
2158
+
2159
+ class VolumeDetail
2160
+ attr_accessor volume_arn: ::String
2161
+ attr_accessor volume_type: ::String
2162
+ attr_accessor device_name: ::String
2163
+ attr_accessor volume_size_in_gb: ::Integer
2164
+ attr_accessor encryption_type: ::String
2165
+ attr_accessor snapshot_arn: ::String
2166
+ attr_accessor kms_key_arn: ::String
2167
+ SENSITIVE: []
2168
+ end
2169
+
2170
+ class VolumeMount
2171
+ attr_accessor name: ::String
2172
+ attr_accessor mount_path: ::String
2173
+ SENSITIVE: []
2174
+ end
2175
+
2176
+ class VpcConfig
2177
+ attr_accessor subnet_ids: ::Array[::String]
2178
+ attr_accessor vpc_id: ::String
2179
+ attr_accessor security_groups: ::Array[Types::SecurityGroup]
2180
+ SENSITIVE: []
2181
+ end
2182
+ end
2183
+ end