aws-sdk-guardduty 1.93.0 → 1.94.0
This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.
- checksums.yaml +4 -4
- data/CHANGELOG.md +5 -0
- data/VERSION +1 -1
- data/lib/aws-sdk-guardduty/client.rb +243 -3
- data/lib/aws-sdk-guardduty/client_api.rb +192 -0
- data/lib/aws-sdk-guardduty/endpoints.rb +70 -0
- data/lib/aws-sdk-guardduty/errors.rb +21 -0
- data/lib/aws-sdk-guardduty/plugins/endpoints.rb +10 -0
- data/lib/aws-sdk-guardduty/types.rb +473 -7
- data/lib/aws-sdk-guardduty.rb +1 -1
- data/sig/client.rbs +74 -0
- data/sig/errors.rbs +4 -0
- data/sig/types.rbs +132 -0
- metadata +4 -4
@@ -1528,6 +1528,58 @@ module Aws::GuardDuty
|
|
1528
1528
|
include Aws::Structure
|
1529
1529
|
end
|
1530
1530
|
|
1531
|
+
# @!attribute [rw] client_token
|
1532
|
+
# The idempotency token for the create request.
|
1533
|
+
#
|
1534
|
+
# **A suitable default value is auto-generated.** You should normally
|
1535
|
+
# not need to pass this option.
|
1536
|
+
# @return [String]
|
1537
|
+
#
|
1538
|
+
# @!attribute [rw] role
|
1539
|
+
# IAM role with permissions required to scan and add tags to the
|
1540
|
+
# associated protected resource.
|
1541
|
+
# @return [String]
|
1542
|
+
#
|
1543
|
+
# @!attribute [rw] protected_resource
|
1544
|
+
# Information about the protected resource that is associated with the
|
1545
|
+
# created Malware Protection plan. Presently, `S3Bucket` is the only
|
1546
|
+
# supported protected resource.
|
1547
|
+
# @return [Types::CreateProtectedResource]
|
1548
|
+
#
|
1549
|
+
# @!attribute [rw] actions
|
1550
|
+
# Information about whether the tags will be added to the S3 object
|
1551
|
+
# after scanning.
|
1552
|
+
# @return [Types::MalwareProtectionPlanActions]
|
1553
|
+
#
|
1554
|
+
# @!attribute [rw] tags
|
1555
|
+
# Tags added to the Malware Protection plan resource.
|
1556
|
+
# @return [Hash<String,String>]
|
1557
|
+
#
|
1558
|
+
# @see http://docs.aws.amazon.com/goto/WebAPI/guardduty-2017-11-28/CreateMalwareProtectionPlanRequest AWS API Documentation
|
1559
|
+
#
|
1560
|
+
class CreateMalwareProtectionPlanRequest < Struct.new(
|
1561
|
+
:client_token,
|
1562
|
+
:role,
|
1563
|
+
:protected_resource,
|
1564
|
+
:actions,
|
1565
|
+
:tags)
|
1566
|
+
SENSITIVE = []
|
1567
|
+
include Aws::Structure
|
1568
|
+
end
|
1569
|
+
|
1570
|
+
# @!attribute [rw] malware_protection_plan_id
|
1571
|
+
# A unique identifier associated with the Malware Protection plan
|
1572
|
+
# resource.
|
1573
|
+
# @return [String]
|
1574
|
+
#
|
1575
|
+
# @see http://docs.aws.amazon.com/goto/WebAPI/guardduty-2017-11-28/CreateMalwareProtectionPlanResponse AWS API Documentation
|
1576
|
+
#
|
1577
|
+
class CreateMalwareProtectionPlanResponse < Struct.new(
|
1578
|
+
:malware_protection_plan_id)
|
1579
|
+
SENSITIVE = []
|
1580
|
+
include Aws::Structure
|
1581
|
+
end
|
1582
|
+
|
1531
1583
|
# @!attribute [rw] detector_id
|
1532
1584
|
# The unique ID of the detector of the GuardDuty account that you want
|
1533
1585
|
# to associate member accounts with.
|
@@ -1560,6 +1612,22 @@ module Aws::GuardDuty
|
|
1560
1612
|
include Aws::Structure
|
1561
1613
|
end
|
1562
1614
|
|
1615
|
+
# Information about the protected resource that is associated with the
|
1616
|
+
# created Malware Protection plan. Presently, `S3Bucket` is the only
|
1617
|
+
# supported protected resource.
|
1618
|
+
#
|
1619
|
+
# @!attribute [rw] s3_bucket
|
1620
|
+
# Information about the protected S3 bucket resource.
|
1621
|
+
# @return [Types::CreateS3BucketResource]
|
1622
|
+
#
|
1623
|
+
# @see http://docs.aws.amazon.com/goto/WebAPI/guardduty-2017-11-28/CreateProtectedResource AWS API Documentation
|
1624
|
+
#
|
1625
|
+
class CreateProtectedResource < Struct.new(
|
1626
|
+
:s3_bucket)
|
1627
|
+
SENSITIVE = []
|
1628
|
+
include Aws::Structure
|
1629
|
+
end
|
1630
|
+
|
1563
1631
|
# @!attribute [rw] detector_id
|
1564
1632
|
# The ID of the GuardDuty detector associated with the publishing
|
1565
1633
|
# destination.
|
@@ -1605,6 +1673,27 @@ module Aws::GuardDuty
|
|
1605
1673
|
include Aws::Structure
|
1606
1674
|
end
|
1607
1675
|
|
1676
|
+
# Information about the protected S3 bucket resource.
|
1677
|
+
#
|
1678
|
+
# @!attribute [rw] bucket_name
|
1679
|
+
# Name of the S3 bucket.
|
1680
|
+
# @return [String]
|
1681
|
+
#
|
1682
|
+
# @!attribute [rw] object_prefixes
|
1683
|
+
# Information about the specified object prefixes. The S3 object will
|
1684
|
+
# be scanned only if it belongs to any of the specified object
|
1685
|
+
# prefixes.
|
1686
|
+
# @return [Array<String>]
|
1687
|
+
#
|
1688
|
+
# @see http://docs.aws.amazon.com/goto/WebAPI/guardduty-2017-11-28/CreateS3BucketResource AWS API Documentation
|
1689
|
+
#
|
1690
|
+
class CreateS3BucketResource < Struct.new(
|
1691
|
+
:bucket_name,
|
1692
|
+
:object_prefixes)
|
1693
|
+
SENSITIVE = []
|
1694
|
+
include Aws::Structure
|
1695
|
+
end
|
1696
|
+
|
1608
1697
|
# @!attribute [rw] detector_id
|
1609
1698
|
# The ID of the detector to create sample findings for.
|
1610
1699
|
# @return [String]
|
@@ -1964,6 +2053,19 @@ module Aws::GuardDuty
|
|
1964
2053
|
include Aws::Structure
|
1965
2054
|
end
|
1966
2055
|
|
2056
|
+
# @!attribute [rw] malware_protection_plan_id
|
2057
|
+
# A unique identifier associated with Malware Protection plan
|
2058
|
+
# resource.
|
2059
|
+
# @return [String]
|
2060
|
+
#
|
2061
|
+
# @see http://docs.aws.amazon.com/goto/WebAPI/guardduty-2017-11-28/DeleteMalwareProtectionPlanRequest AWS API Documentation
|
2062
|
+
#
|
2063
|
+
class DeleteMalwareProtectionPlanRequest < Struct.new(
|
2064
|
+
:malware_protection_plan_id)
|
2065
|
+
SENSITIVE = []
|
2066
|
+
include Aws::Structure
|
2067
|
+
end
|
2068
|
+
|
1967
2069
|
# @!attribute [rw] detector_id
|
1968
2070
|
# The unique ID of the detector of the GuardDuty account whose members
|
1969
2071
|
# you want to delete.
|
@@ -3419,6 +3521,71 @@ module Aws::GuardDuty
|
|
3419
3521
|
include Aws::Structure
|
3420
3522
|
end
|
3421
3523
|
|
3524
|
+
# @!attribute [rw] malware_protection_plan_id
|
3525
|
+
# A unique identifier associated with Malware Protection plan
|
3526
|
+
# resource.
|
3527
|
+
# @return [String]
|
3528
|
+
#
|
3529
|
+
# @see http://docs.aws.amazon.com/goto/WebAPI/guardduty-2017-11-28/GetMalwareProtectionPlanRequest AWS API Documentation
|
3530
|
+
#
|
3531
|
+
class GetMalwareProtectionPlanRequest < Struct.new(
|
3532
|
+
:malware_protection_plan_id)
|
3533
|
+
SENSITIVE = []
|
3534
|
+
include Aws::Structure
|
3535
|
+
end
|
3536
|
+
|
3537
|
+
# @!attribute [rw] arn
|
3538
|
+
# Amazon Resource Name (ARN) of the protected resource.
|
3539
|
+
# @return [String]
|
3540
|
+
#
|
3541
|
+
# @!attribute [rw] role
|
3542
|
+
# IAM role that includes the permissions required to scan and add tags
|
3543
|
+
# to the associated protected resource.
|
3544
|
+
# @return [String]
|
3545
|
+
#
|
3546
|
+
# @!attribute [rw] protected_resource
|
3547
|
+
# Information about the protected resource that is associated with the
|
3548
|
+
# created Malware Protection plan. Presently, `S3Bucket` is the only
|
3549
|
+
# supported protected resource.
|
3550
|
+
# @return [Types::CreateProtectedResource]
|
3551
|
+
#
|
3552
|
+
# @!attribute [rw] actions
|
3553
|
+
# Information about whether the tags will be added to the S3 object
|
3554
|
+
# after scanning.
|
3555
|
+
# @return [Types::MalwareProtectionPlanActions]
|
3556
|
+
#
|
3557
|
+
# @!attribute [rw] created_at
|
3558
|
+
# The timestamp when the Malware Protection plan resource was created.
|
3559
|
+
# @return [Time]
|
3560
|
+
#
|
3561
|
+
# @!attribute [rw] status
|
3562
|
+
# Malware Protection plan status.
|
3563
|
+
# @return [String]
|
3564
|
+
#
|
3565
|
+
# @!attribute [rw] status_reasons
|
3566
|
+
# Information about the issue code and message associated to the
|
3567
|
+
# status of your Malware Protection plan.
|
3568
|
+
# @return [Array<Types::MalwareProtectionPlanStatusReason>]
|
3569
|
+
#
|
3570
|
+
# @!attribute [rw] tags
|
3571
|
+
# Tags added to the Malware Protection plan resource.
|
3572
|
+
# @return [Hash<String,String>]
|
3573
|
+
#
|
3574
|
+
# @see http://docs.aws.amazon.com/goto/WebAPI/guardduty-2017-11-28/GetMalwareProtectionPlanResponse AWS API Documentation
|
3575
|
+
#
|
3576
|
+
class GetMalwareProtectionPlanResponse < Struct.new(
|
3577
|
+
:arn,
|
3578
|
+
:role,
|
3579
|
+
:protected_resource,
|
3580
|
+
:actions,
|
3581
|
+
:created_at,
|
3582
|
+
:status,
|
3583
|
+
:status_reasons,
|
3584
|
+
:tags)
|
3585
|
+
SENSITIVE = []
|
3586
|
+
include Aws::Structure
|
3587
|
+
end
|
3588
|
+
|
3422
3589
|
# @!attribute [rw] detector_id
|
3423
3590
|
# The unique ID of the detector that the scan setting is associated
|
3424
3591
|
# with.
|
@@ -3959,6 +4126,26 @@ module Aws::GuardDuty
|
|
3959
4126
|
include Aws::Structure
|
3960
4127
|
end
|
3961
4128
|
|
4129
|
+
# Information about the nested item path and hash of the protected
|
4130
|
+
# resource.
|
4131
|
+
#
|
4132
|
+
# @!attribute [rw] nested_item_path
|
4133
|
+
# The nested item path where the infected file was found.
|
4134
|
+
# @return [String]
|
4135
|
+
#
|
4136
|
+
# @!attribute [rw] hash
|
4137
|
+
# The hash value of the infected resource.
|
4138
|
+
# @return [String]
|
4139
|
+
#
|
4140
|
+
# @see http://docs.aws.amazon.com/goto/WebAPI/guardduty-2017-11-28/ItemPath AWS API Documentation
|
4141
|
+
#
|
4142
|
+
class ItemPath < Struct.new(
|
4143
|
+
:nested_item_path,
|
4144
|
+
:hash)
|
4145
|
+
SENSITIVE = []
|
4146
|
+
include Aws::Structure
|
4147
|
+
end
|
4148
|
+
|
3962
4149
|
# Information about the Kubernetes API call action described in this
|
3963
4150
|
# finding.
|
3964
4151
|
#
|
@@ -4819,6 +5006,44 @@ module Aws::GuardDuty
|
|
4819
5006
|
include Aws::Structure
|
4820
5007
|
end
|
4821
5008
|
|
5009
|
+
# @!attribute [rw] next_token
|
5010
|
+
# You can use this parameter when paginating results. Set the value of
|
5011
|
+
# this parameter to null on your first call to the list action. For
|
5012
|
+
# subsequent calls to the action, fill nextToken in the request with
|
5013
|
+
# the value of `NextToken` from the previous response to continue
|
5014
|
+
# listing data.
|
5015
|
+
# @return [String]
|
5016
|
+
#
|
5017
|
+
# @see http://docs.aws.amazon.com/goto/WebAPI/guardduty-2017-11-28/ListMalwareProtectionPlansRequest AWS API Documentation
|
5018
|
+
#
|
5019
|
+
class ListMalwareProtectionPlansRequest < Struct.new(
|
5020
|
+
:next_token)
|
5021
|
+
SENSITIVE = []
|
5022
|
+
include Aws::Structure
|
5023
|
+
end
|
5024
|
+
|
5025
|
+
# @!attribute [rw] malware_protection_plans
|
5026
|
+
# A list of unique identifiers associated with each Malware Protection
|
5027
|
+
# plan.
|
5028
|
+
# @return [Array<Types::MalwareProtectionPlanSummary>]
|
5029
|
+
#
|
5030
|
+
# @!attribute [rw] next_token
|
5031
|
+
# You can use this parameter when paginating results. Set the value of
|
5032
|
+
# this parameter to null on your first call to the list action. For
|
5033
|
+
# subsequent calls to the action, fill nextToken in the request with
|
5034
|
+
# the value of `NextToken` from the previous response to continue
|
5035
|
+
# listing data.
|
5036
|
+
# @return [String]
|
5037
|
+
#
|
5038
|
+
# @see http://docs.aws.amazon.com/goto/WebAPI/guardduty-2017-11-28/ListMalwareProtectionPlansResponse AWS API Documentation
|
5039
|
+
#
|
5040
|
+
class ListMalwareProtectionPlansResponse < Struct.new(
|
5041
|
+
:malware_protection_plans,
|
5042
|
+
:next_token)
|
5043
|
+
SENSITIVE = []
|
5044
|
+
include Aws::Structure
|
5045
|
+
end
|
5046
|
+
|
4822
5047
|
# @!attribute [rw] detector_id
|
4823
5048
|
# The unique ID of the detector the member is associated with.
|
4824
5049
|
# @return [String]
|
@@ -5162,6 +5387,92 @@ module Aws::GuardDuty
|
|
5162
5387
|
include Aws::Structure
|
5163
5388
|
end
|
5164
5389
|
|
5390
|
+
# Information about whether the tags will be added to the S3 object
|
5391
|
+
# after scanning.
|
5392
|
+
#
|
5393
|
+
# @!attribute [rw] tagging
|
5394
|
+
# Indicates whether the scanned S3 object will have tags about the
|
5395
|
+
# scan result.
|
5396
|
+
# @return [Types::MalwareProtectionPlanTaggingAction]
|
5397
|
+
#
|
5398
|
+
# @see http://docs.aws.amazon.com/goto/WebAPI/guardduty-2017-11-28/MalwareProtectionPlanActions AWS API Documentation
|
5399
|
+
#
|
5400
|
+
class MalwareProtectionPlanActions < Struct.new(
|
5401
|
+
:tagging)
|
5402
|
+
SENSITIVE = []
|
5403
|
+
include Aws::Structure
|
5404
|
+
end
|
5405
|
+
|
5406
|
+
# Information about the issue code and message associated to the status
|
5407
|
+
# of your Malware Protection plan.
|
5408
|
+
#
|
5409
|
+
# @!attribute [rw] code
|
5410
|
+
# Issue code.
|
5411
|
+
# @return [String]
|
5412
|
+
#
|
5413
|
+
# @!attribute [rw] message
|
5414
|
+
# Issue message that specifies the reason. For information about
|
5415
|
+
# potential troubleshooting steps, see [Troubleshooting Malware
|
5416
|
+
# Protection for S3 status issues][1] in the *GuardDuty User Guide*.
|
5417
|
+
#
|
5418
|
+
#
|
5419
|
+
#
|
5420
|
+
# [1]: https://docs.aws.amazon.com/guardduty/latest/ug/troubleshoot-s3-malware-protection-status-errors.html
|
5421
|
+
# @return [String]
|
5422
|
+
#
|
5423
|
+
# @see http://docs.aws.amazon.com/goto/WebAPI/guardduty-2017-11-28/MalwareProtectionPlanStatusReason AWS API Documentation
|
5424
|
+
#
|
5425
|
+
class MalwareProtectionPlanStatusReason < Struct.new(
|
5426
|
+
:code,
|
5427
|
+
:message)
|
5428
|
+
SENSITIVE = []
|
5429
|
+
include Aws::Structure
|
5430
|
+
end
|
5431
|
+
|
5432
|
+
# Information about the Malware Protection plan resource.
|
5433
|
+
#
|
5434
|
+
# @!attribute [rw] malware_protection_plan_id
|
5435
|
+
# A unique identifier associated with Malware Protection plan.
|
5436
|
+
# @return [String]
|
5437
|
+
#
|
5438
|
+
# @see http://docs.aws.amazon.com/goto/WebAPI/guardduty-2017-11-28/MalwareProtectionPlanSummary AWS API Documentation
|
5439
|
+
#
|
5440
|
+
class MalwareProtectionPlanSummary < Struct.new(
|
5441
|
+
:malware_protection_plan_id)
|
5442
|
+
SENSITIVE = []
|
5443
|
+
include Aws::Structure
|
5444
|
+
end
|
5445
|
+
|
5446
|
+
# Information about adding tags to the scanned S3 object after the scan
|
5447
|
+
# result.
|
5448
|
+
#
|
5449
|
+
# @!attribute [rw] status
|
5450
|
+
# Indicates whether or not the tags will added.
|
5451
|
+
# @return [String]
|
5452
|
+
#
|
5453
|
+
# @see http://docs.aws.amazon.com/goto/WebAPI/guardduty-2017-11-28/MalwareProtectionPlanTaggingAction AWS API Documentation
|
5454
|
+
#
|
5455
|
+
class MalwareProtectionPlanTaggingAction < Struct.new(
|
5456
|
+
:status)
|
5457
|
+
SENSITIVE = []
|
5458
|
+
include Aws::Structure
|
5459
|
+
end
|
5460
|
+
|
5461
|
+
# Information about the malware scan that generated a GuardDuty finding.
|
5462
|
+
#
|
5463
|
+
# @!attribute [rw] threats
|
5464
|
+
# Information about the detected threats associated with the generated
|
5465
|
+
# GuardDuty finding.
|
5466
|
+
# @return [Array<Types::Threat>]
|
5467
|
+
#
|
5468
|
+
# @see http://docs.aws.amazon.com/goto/WebAPI/guardduty-2017-11-28/MalwareScanDetails AWS API Documentation
|
5469
|
+
#
|
5470
|
+
class MalwareScanDetails < Struct.new(
|
5471
|
+
:threats)
|
5472
|
+
SENSITIVE = []
|
5473
|
+
include Aws::Structure
|
5474
|
+
end
|
5475
|
+
|
5165
5476
|
# Contains information about the administrator account and invitation.
|
5166
5477
|
#
|
5167
5478
|
# @!attribute [rw] account_id
|
@@ -6515,7 +6826,7 @@ module Aws::GuardDuty
|
|
6515
6826
|
# Represents the resources that were scanned in the scan entry.
|
6516
6827
|
#
|
6517
6828
|
# @!attribute [rw] instance_arn
|
6518
|
-
#
|
6829
|
+
# Instance ARN that was scanned in the scan entry.
|
6519
6830
|
# @return [String]
|
6520
6831
|
#
|
6521
6832
|
# @see http://docs.aws.amazon.com/goto/WebAPI/guardduty-2017-11-28/ResourceDetails AWS API Documentation
|
@@ -6526,6 +6837,25 @@ module Aws::GuardDuty
|
|
6526
6837
|
include Aws::Structure
|
6527
6838
|
end
|
6528
6839
|
|
6840
|
+
# The requested resource can't be found.
|
6841
|
+
#
|
6842
|
+
# @!attribute [rw] message
|
6843
|
+
# The error message.
|
6844
|
+
# @return [String]
|
6845
|
+
#
|
6846
|
+
# @!attribute [rw] type
|
6847
|
+
# The error type.
|
6848
|
+
# @return [String]
|
6849
|
+
#
|
6850
|
+
# @see http://docs.aws.amazon.com/goto/WebAPI/guardduty-2017-11-28/ResourceNotFoundException AWS API Documentation
|
6851
|
+
#
|
6852
|
+
class ResourceNotFoundException < Struct.new(
|
6853
|
+
:message,
|
6854
|
+
:type)
|
6855
|
+
SENSITIVE = []
|
6856
|
+
include Aws::Structure
|
6857
|
+
end
|
6858
|
+
|
6529
6859
|
# Additional information about the suspicious activity.
|
6530
6860
|
#
|
6531
6861
|
# @!attribute [rw] modifying_process
|
@@ -6726,6 +7056,10 @@ module Aws::GuardDuty
|
|
6726
7056
|
# Describes the public access policies that apply to the S3 bucket.
|
6727
7057
|
# @return [Types::PublicAccess]
|
6728
7058
|
#
|
7059
|
+
# @!attribute [rw] s3_object_details
|
7060
|
+
# Information about the S3 object that was scanned.
|
7061
|
+
# @return [Array<Types::S3ObjectDetail>]
|
7062
|
+
#
|
6729
7063
|
# @see http://docs.aws.amazon.com/goto/WebAPI/guardduty-2017-11-28/S3BucketDetail AWS API Documentation
|
6730
7064
|
#
|
6731
7065
|
class S3BucketDetail < Struct.new(
|
@@ -6736,7 +7070,8 @@ module Aws::GuardDuty
|
|
6736
7070
|
:owner,
|
6737
7071
|
:tags,
|
6738
7072
|
:default_server_side_encryption,
|
6739
|
-
:public_access
|
7073
|
+
:public_access,
|
7074
|
+
:s3_object_details)
|
6740
7075
|
SENSITIVE = []
|
6741
7076
|
include Aws::Structure
|
6742
7077
|
end
|
@@ -6770,6 +7105,41 @@ module Aws::GuardDuty
|
|
6770
7105
|
include Aws::Structure
|
6771
7106
|
end
|
6772
7107
|
|
7108
|
+
# Information about the S3 object that was scanned
|
7109
|
+
#
|
7110
|
+
# @!attribute [rw] object_arn
|
7111
|
+
# Amazon Resource Name (ARN) of the S3 object.
|
7112
|
+
# @return [String]
|
7113
|
+
#
|
7114
|
+
# @!attribute [rw] key
|
7115
|
+
# Key of the S3 object.
|
7116
|
+
# @return [String]
|
7117
|
+
#
|
7118
|
+
# @!attribute [rw] etag
|
7119
|
+
# The entity tag is a hash of the S3 object. The ETag reflects changes
|
7120
|
+
# only to the contents of an object, and not its metadata.
|
7121
|
+
# @return [String]
|
7122
|
+
#
|
7123
|
+
# @!attribute [rw] hash
|
7124
|
+
# Hash of the threat detected in this finding.
|
7125
|
+
# @return [String]
|
7126
|
+
#
|
7127
|
+
# @!attribute [rw] version_id
|
7128
|
+
# Version ID of the object.
|
7129
|
+
# @return [String]
|
7130
|
+
#
|
7131
|
+
# @see http://docs.aws.amazon.com/goto/WebAPI/guardduty-2017-11-28/S3ObjectDetail AWS API Documentation
|
7132
|
+
#
|
7133
|
+
class S3ObjectDetail < Struct.new(
|
7134
|
+
:object_arn,
|
7135
|
+
:key,
|
7136
|
+
:etag,
|
7137
|
+
:hash,
|
7138
|
+
:version_id)
|
7139
|
+
SENSITIVE = []
|
7140
|
+
include Aws::Structure
|
7141
|
+
end
|
7142
|
+
|
6773
7143
|
# Contains information about a malware scan.
|
6774
7144
|
#
|
6775
7145
|
# @!attribute [rw] detector_id
|
@@ -6962,7 +7332,7 @@ module Aws::GuardDuty
|
|
6962
7332
|
# @return [String]
|
6963
7333
|
#
|
6964
7334
|
# @!attribute [rw] volume_arn
|
6965
|
-
# EBS volume
|
7335
|
+
# EBS volume ARN details of the infected file.
|
6966
7336
|
# @return [String]
|
6967
7337
|
#
|
6968
7338
|
# @!attribute [rw] hash
|
@@ -7180,6 +7550,11 @@ module Aws::GuardDuty
|
|
7180
7550
|
# Contains information about the detected unusual behavior.
|
7181
7551
|
# @return [Types::Detection]
|
7182
7552
|
#
|
7553
|
+
# @!attribute [rw] malware_scan_details
|
7554
|
+
# Returns details from the malware scan that generated a GuardDuty
|
7555
|
+
# finding.
|
7556
|
+
# @return [Types::MalwareScanDetails]
|
7557
|
+
#
|
7183
7558
|
# @see http://docs.aws.amazon.com/goto/WebAPI/guardduty-2017-11-28/Service AWS API Documentation
|
7184
7559
|
#
|
7185
7560
|
class Service < Struct.new(
|
@@ -7197,7 +7572,8 @@ module Aws::GuardDuty
|
|
7197
7572
|
:feature_name,
|
7198
7573
|
:ebs_volume_scan_details,
|
7199
7574
|
:runtime_details,
|
7200
|
-
:detection
|
7575
|
+
:detection,
|
7576
|
+
:malware_scan_details)
|
7201
7577
|
SENSITIVE = []
|
7202
7578
|
include Aws::Structure
|
7203
7579
|
end
|
@@ -7373,6 +7749,33 @@ module Aws::GuardDuty
|
|
7373
7749
|
#
|
7374
7750
|
class TagResourceResponse < Aws::EmptyStructure; end
|
7375
7751
|
|
7752
|
+
# Information about the detected threats associated with the generated
|
7753
|
+
# finding.
|
7754
|
+
#
|
7755
|
+
# @!attribute [rw] name
|
7756
|
+
# Name of the detected threat that caused GuardDuty to generate this
|
7757
|
+
# finding.
|
7758
|
+
# @return [String]
|
7759
|
+
#
|
7760
|
+
# @!attribute [rw] source
|
7761
|
+
# Source of the threat that generated this finding.
|
7762
|
+
# @return [String]
|
7763
|
+
#
|
7764
|
+
# @!attribute [rw] item_paths
|
7765
|
+
# Information about the nested item path and hash of the protected
|
7766
|
+
# resource.
|
7767
|
+
# @return [Array<Types::ItemPath>]
|
7768
|
+
#
|
7769
|
+
# @see http://docs.aws.amazon.com/goto/WebAPI/guardduty-2017-11-28/Threat AWS API Documentation
|
7770
|
+
#
|
7771
|
+
class Threat < Struct.new(
|
7772
|
+
:name,
|
7773
|
+
:source,
|
7774
|
+
:item_paths)
|
7775
|
+
SENSITIVE = []
|
7776
|
+
include Aws::Structure
|
7777
|
+
end
|
7778
|
+
|
7376
7779
|
# Contains details about identified threats organized by threat name.
|
7377
7780
|
#
|
7378
7781
|
# @!attribute [rw] item_count
|
@@ -7734,6 +8137,37 @@ module Aws::GuardDuty
|
|
7734
8137
|
#
|
7735
8138
|
class UpdateIPSetResponse < Aws::EmptyStructure; end
|
7736
8139
|
|
8140
|
+
# @!attribute [rw] malware_protection_plan_id
|
8141
|
+
# A unique identifier associated with the Malware Protection plan.
|
8142
|
+
# @return [String]
|
8143
|
+
#
|
8144
|
+
# @!attribute [rw] role
|
8145
|
+
# IAM role with permissions required to scan and add tags to the
|
8146
|
+
# associated protected resource.
|
8147
|
+
# @return [String]
|
8148
|
+
#
|
8149
|
+
# @!attribute [rw] actions
|
8150
|
+
# Information about whether the tags will be added to the S3 object
|
8151
|
+
# after scanning.
|
8152
|
+
# @return [Types::MalwareProtectionPlanActions]
|
8153
|
+
#
|
8154
|
+
# @!attribute [rw] protected_resource
|
8155
|
+
# Information about the protected resource that is associated with the
|
8156
|
+
# created Malware Protection plan. Presently, `S3Bucket` is the only
|
8157
|
+
# supported protected resource.
|
8158
|
+
# @return [Types::UpdateProtectedResource]
|
8159
|
+
#
|
8160
|
+
# @see http://docs.aws.amazon.com/goto/WebAPI/guardduty-2017-11-28/UpdateMalwareProtectionPlanRequest AWS API Documentation
|
8161
|
+
#
|
8162
|
+
class UpdateMalwareProtectionPlanRequest < Struct.new(
|
8163
|
+
:malware_protection_plan_id,
|
8164
|
+
:role,
|
8165
|
+
:actions,
|
8166
|
+
:protected_resource)
|
8167
|
+
SENSITIVE = []
|
8168
|
+
include Aws::Structure
|
8169
|
+
end
|
8170
|
+
|
7737
8171
|
# @!attribute [rw] detector_id
|
7738
8172
|
# The unique ID of the detector that specifies the GuardDuty service
|
7739
8173
|
# where you want to update scan settings.
|
@@ -7872,6 +8306,22 @@ module Aws::GuardDuty
|
|
7872
8306
|
#
|
7873
8307
|
class UpdateOrganizationConfigurationResponse < Aws::EmptyStructure; end
|
7874
8308
|
|
8309
|
+
# Information about the protected resource that is associated with the
|
8310
|
+
# created Malware Protection plan. Presently, `S3Bucket` is the only
|
8311
|
+
# supported protected resource.
|
8312
|
+
#
|
8313
|
+
# @!attribute [rw] s3_bucket
|
8314
|
+
# Information about the protected S3 bucket resource.
|
8315
|
+
# @return [Types::UpdateS3BucketResource]
|
8316
|
+
#
|
8317
|
+
# @see http://docs.aws.amazon.com/goto/WebAPI/guardduty-2017-11-28/UpdateProtectedResource AWS API Documentation
|
8318
|
+
#
|
8319
|
+
class UpdateProtectedResource < Struct.new(
|
8320
|
+
:s3_bucket)
|
8321
|
+
SENSITIVE = []
|
8322
|
+
include Aws::Structure
|
8323
|
+
end
|
8324
|
+
|
7875
8325
|
# @!attribute [rw] detector_id
|
7876
8326
|
# The ID of the detector associated with the publishing destinations
|
7877
8327
|
# to update.
|
@@ -7900,6 +8350,22 @@ module Aws::GuardDuty
|
|
7900
8350
|
#
|
7901
8351
|
class UpdatePublishingDestinationResponse < Aws::EmptyStructure; end
|
7902
8352
|
|
8353
|
+
# Information about the protected S3 bucket resource.
|
8354
|
+
#
|
8355
|
+
# @!attribute [rw] object_prefixes
|
8356
|
+
# Information about the specified object prefixes. The S3 object will
|
8357
|
+
# be scanned only if it belongs to any of the specified object
|
8358
|
+
# prefixes.
|
8359
|
+
# @return [Array<String>]
|
8360
|
+
#
|
8361
|
+
# @see http://docs.aws.amazon.com/goto/WebAPI/guardduty-2017-11-28/UpdateS3BucketResource AWS API Documentation
|
8362
|
+
#
|
8363
|
+
class UpdateS3BucketResource < Struct.new(
|
8364
|
+
:object_prefixes)
|
8365
|
+
SENSITIVE = []
|
8366
|
+
include Aws::Structure
|
8367
|
+
end
|
8368
|
+
|
7903
8369
|
# @!attribute [rw] detector_id
|
7904
8370
|
# The detectorID that specifies the GuardDuty service whose
|
7905
8371
|
# ThreatIntelSet you want to update.
|
@@ -8161,7 +8627,7 @@ module Aws::GuardDuty
|
|
8161
8627
|
# Contains EBS volume details.
|
8162
8628
|
#
|
8163
8629
|
# @!attribute [rw] volume_arn
|
8164
|
-
# EBS volume
|
8630
|
+
# EBS volume ARN information.
|
8165
8631
|
# @return [String]
|
8166
8632
|
#
|
8167
8633
|
# @!attribute [rw] volume_type
|
@@ -8181,11 +8647,11 @@ module Aws::GuardDuty
|
|
8181
8647
|
# @return [String]
|
8182
8648
|
#
|
8183
8649
|
# @!attribute [rw] snapshot_arn
|
8184
|
-
# Snapshot
|
8650
|
+
# Snapshot ARN of the EBS volume.
|
8185
8651
|
# @return [String]
|
8186
8652
|
#
|
8187
8653
|
# @!attribute [rw] kms_key_arn
|
8188
|
-
# KMS key
|
8654
|
+
# KMS key ARN used to encrypt the EBS volume.
|
8189
8655
|
# @return [String]
|
8190
8656
|
#
|
8191
8657
|
# @see http://docs.aws.amazon.com/goto/WebAPI/guardduty-2017-11-28/VolumeDetail AWS API Documentation
|