aws-sdk-guardduty 1.76.0 → 1.77.0
Sign up to get free protection for your applications and to get access to all the features.
- checksums.yaml +4 -4
- data/CHANGELOG.md +5 -0
- data/VERSION +1 -1
- data/lib/aws-sdk-guardduty/client.rb +110 -29
- data/lib/aws-sdk-guardduty/types.rb +102 -21
- data/lib/aws-sdk-guardduty.rb +1 -1
- metadata +2 -2
checksums.yaml
CHANGED
@@ -1,7 +1,7 @@
|
|
1
1
|
---
|
2
2
|
SHA256:
|
3
|
-
metadata.gz:
|
4
|
-
data.tar.gz:
|
3
|
+
metadata.gz: e966c8fa82ddfab889dcd6c7dc1a6d681a127b44b0ecd64fcd55a56d0235ae7b
|
4
|
+
data.tar.gz: dd719432e27cbf0475df9947b485ff2caeee9945cc0e2285a4a654229189e93f
|
5
5
|
SHA512:
|
6
|
-
metadata.gz:
|
7
|
-
data.tar.gz:
|
6
|
+
metadata.gz: 244a658380b0a3a4f9fb54722b562f76cdc615dce5b6d13f577486d9da240531ffef53b88b5d7afe2db9ace82fb8467dcb724c147e77b74768aea8789e061173
|
7
|
+
data.tar.gz: d6fc4eb50d2ec9000c39ba0f1ef0450a93046bb699e5508530f6838413d309d593d855696220c8bc6d395741ac67a534a97f68afe274939f2e8d20af72fb59b5
|
data/CHANGELOG.md
CHANGED
data/VERSION
CHANGED
@@ -1 +1 @@
|
|
1
|
-
1.
|
1
|
+
1.77.0
|
@@ -632,9 +632,31 @@ module Aws::GuardDuty
|
|
632
632
|
#
|
633
633
|
# * accountId
|
634
634
|
#
|
635
|
+
# * id
|
636
|
+
#
|
635
637
|
# * region
|
636
638
|
#
|
637
|
-
# *
|
639
|
+
# * severity
|
640
|
+
#
|
641
|
+
# To filter on the basis of severity, the API and CLI use the
|
642
|
+
# following input list for the [FindingCriteria][1] condition:
|
643
|
+
#
|
644
|
+
# * **Low**: `["1", "2", "3"]`
|
645
|
+
#
|
646
|
+
# * **Medium**: `["4", "5", "6"]`
|
647
|
+
#
|
648
|
+
# * **High**: `["7", "8", "9"]`
|
649
|
+
#
|
650
|
+
# For more information, see [Severity levels for GuardDuty
|
651
|
+
# findings][2].
|
652
|
+
#
|
653
|
+
# * type
|
654
|
+
#
|
655
|
+
# * updatedAt
|
656
|
+
#
|
657
|
+
# Type: ISO 8601 string format: YYYY-MM-DDTHH:MM:SS.SSSZ or
|
658
|
+
# YYYY-MM-DDTHH:MM:SSZ depending on whether the value contains
|
659
|
+
# milliseconds.
|
638
660
|
#
|
639
661
|
# * resource.accessKeyDetails.accessKeyId
|
640
662
|
#
|
@@ -650,7 +672,9 @@ module Aws::GuardDuty
|
|
650
672
|
#
|
651
673
|
# * resource.instanceDetails.instanceId
|
652
674
|
#
|
653
|
-
# * resource.instanceDetails.
|
675
|
+
# * resource.instanceDetails.tags.key
|
676
|
+
#
|
677
|
+
# * resource.instanceDetails.tags.value
|
654
678
|
#
|
655
679
|
# * resource.instanceDetails.networkInterfaces.ipv6Addresses
|
656
680
|
#
|
@@ -668,12 +692,20 @@ module Aws::GuardDuty
|
|
668
692
|
#
|
669
693
|
# * resource.instanceDetails.networkInterfaces.vpcId
|
670
694
|
#
|
671
|
-
# * resource.instanceDetails.
|
672
|
-
#
|
673
|
-
# * resource.instanceDetails.tags.value
|
695
|
+
# * resource.instanceDetails.outpostArn
|
674
696
|
#
|
675
697
|
# * resource.resourceType
|
676
698
|
#
|
699
|
+
# * resource.s3BucketDetails.publicAccess.effectivePermissions
|
700
|
+
#
|
701
|
+
# * resource.s3BucketDetails.name
|
702
|
+
#
|
703
|
+
# * resource.s3BucketDetails.tags.key
|
704
|
+
#
|
705
|
+
# * resource.s3BucketDetails.tags.value
|
706
|
+
#
|
707
|
+
# * resource.s3BucketDetails.type
|
708
|
+
#
|
677
709
|
# * service.action.actionType
|
678
710
|
#
|
679
711
|
# * service.action.awsApiCallAction.api
|
@@ -682,8 +714,6 @@ module Aws::GuardDuty
|
|
682
714
|
#
|
683
715
|
# * service.action.awsApiCallAction.errorCode
|
684
716
|
#
|
685
|
-
# * service.action.awsApiCallAction.userAgent
|
686
|
-
#
|
687
717
|
# * service.action.awsApiCallAction.remoteIpDetails.city.cityName
|
688
718
|
#
|
689
719
|
# * service.action.awsApiCallAction.remoteIpDetails.country.countryName
|
@@ -706,8 +736,6 @@ module Aws::GuardDuty
|
|
706
736
|
#
|
707
737
|
# * service.action.networkConnectionAction.protocol
|
708
738
|
#
|
709
|
-
# * service.action.networkConnectionAction.localIpDetails.ipAddressV4
|
710
|
-
#
|
711
739
|
# * service.action.networkConnectionAction.remoteIpDetails.city.cityName
|
712
740
|
#
|
713
741
|
# * service.action.networkConnectionAction.remoteIpDetails.country.countryName
|
@@ -720,29 +748,82 @@ module Aws::GuardDuty
|
|
720
748
|
#
|
721
749
|
# * service.action.networkConnectionAction.remotePortDetails.port
|
722
750
|
#
|
723
|
-
# * service.
|
751
|
+
# * service.action.awsApiCallAction.remoteAccountDetails.affiliated
|
724
752
|
#
|
725
|
-
# *
|
753
|
+
# * service.action.kubernetesApiCallAction.remoteIpDetails.ipAddressV4
|
726
754
|
#
|
727
|
-
# *
|
755
|
+
# * service.action.kubernetesApiCallAction.requestUri
|
728
756
|
#
|
729
|
-
# *
|
757
|
+
# * service.action.networkConnectionAction.localIpDetails.ipAddressV4
|
730
758
|
#
|
731
|
-
# *
|
759
|
+
# * service.action.networkConnectionAction.protocol
|
732
760
|
#
|
733
|
-
# *
|
761
|
+
# * service.action.awsApiCallAction.serviceName
|
762
|
+
#
|
763
|
+
# * service.action.awsApiCallAction.remoteAccountDetails.accountId
|
764
|
+
#
|
765
|
+
# * service.additionalInfo.threatListName
|
734
766
|
#
|
735
767
|
# * service.resourceRole
|
736
768
|
#
|
737
|
-
# *
|
769
|
+
# * resource.eksClusterDetails.name
|
738
770
|
#
|
739
|
-
# *
|
771
|
+
# * resource.kubernetesDetails.kubernetesWorkloadDetails.name
|
740
772
|
#
|
741
|
-
# *
|
773
|
+
# * resource.kubernetesDetails.kubernetesWorkloadDetails.namespace
|
742
774
|
#
|
743
|
-
#
|
744
|
-
#
|
745
|
-
#
|
775
|
+
# * resource.kubernetesDetails.kubernetesUserDetails.username
|
776
|
+
#
|
777
|
+
# * resource.kubernetesDetails.kubernetesWorkloadDetails.containers.image
|
778
|
+
#
|
779
|
+
# * resource.kubernetesDetails.kubernetesWorkloadDetails.containers.imagePrefix
|
780
|
+
#
|
781
|
+
# * service.ebsVolumeScanDetails.scanId
|
782
|
+
#
|
783
|
+
# * service.ebsVolumeScanDetails.scanDetections.threatDetectedByName.threatNames.name
|
784
|
+
#
|
785
|
+
# * service.ebsVolumeScanDetails.scanDetections.threatDetectedByName.threatNames.severity
|
786
|
+
#
|
787
|
+
# * service.ebsVolumeScanDetails.scanDetections.threatDetectedByName.threatNames.filePaths.hash
|
788
|
+
#
|
789
|
+
# * resource.ecsClusterDetails.name
|
790
|
+
#
|
791
|
+
# * resource.ecsClusterDetails.taskDetails.containers.image
|
792
|
+
#
|
793
|
+
# * resource.ecsClusterDetails.taskDetails.definitionArn
|
794
|
+
#
|
795
|
+
# * resource.containerDetails.image
|
796
|
+
#
|
797
|
+
# * resource.rdsDbInstanceDetails.dbInstanceIdentifier
|
798
|
+
#
|
799
|
+
# * resource.rdsDbInstanceDetails.dbClusterIdentifier
|
800
|
+
#
|
801
|
+
# * resource.rdsDbInstanceDetails.engine
|
802
|
+
#
|
803
|
+
# * resource.rdsDbUserDetails.user
|
804
|
+
#
|
805
|
+
# * resource.rdsDbInstanceDetails.tags.key
|
806
|
+
#
|
807
|
+
# * resource.rdsDbInstanceDetails.tags.value
|
808
|
+
#
|
809
|
+
# * service.runtimeDetails.process.executableSha256
|
810
|
+
#
|
811
|
+
# * service.runtimeDetails.process.name
|
812
|
+
#
|
813
|
+
# * service.runtimeDetails.process.name
|
814
|
+
#
|
815
|
+
# * resource.lambdaDetails.functionName
|
816
|
+
#
|
817
|
+
# * resource.lambdaDetails.functionArn
|
818
|
+
#
|
819
|
+
# * resource.lambdaDetails.tags.key
|
820
|
+
#
|
821
|
+
# * resource.lambdaDetails.tags.value
|
822
|
+
#
|
823
|
+
#
|
824
|
+
#
|
825
|
+
# [1]: https://docs.aws.amazon.com/guardduty/latest/APIReference/API_FindingCriteria.html
|
826
|
+
# [2]: https://docs.aws.amazon.com/guardduty/latest/ug/guardduty_findings.html#guardduty_findings-severity
|
746
827
|
#
|
747
828
|
# @option params [String] :client_token
|
748
829
|
# The idempotency token for the create request.
|
@@ -1477,10 +1558,10 @@ module Aws::GuardDuty
|
|
1477
1558
|
# resp.data_sources.malware_protection.scan_ec2_instance_with_findings.ebs_volumes.auto_enable #=> Boolean
|
1478
1559
|
# resp.features #=> Array
|
1479
1560
|
# resp.features[0].name #=> String, one of "S3_DATA_EVENTS", "EKS_AUDIT_LOGS", "EBS_MALWARE_PROTECTION", "RDS_LOGIN_EVENTS", "EKS_RUNTIME_MONITORING", "LAMBDA_NETWORK_LOGS"
|
1480
|
-
# resp.features[0].auto_enable #=> String, one of "NEW", "NONE"
|
1561
|
+
# resp.features[0].auto_enable #=> String, one of "NEW", "NONE", "ALL"
|
1481
1562
|
# resp.features[0].additional_configuration #=> Array
|
1482
1563
|
# resp.features[0].additional_configuration[0].name #=> String, one of "EKS_ADDON_MANAGEMENT"
|
1483
|
-
# resp.features[0].additional_configuration[0].auto_enable #=> String, one of "NEW", "NONE"
|
1564
|
+
# resp.features[0].additional_configuration[0].auto_enable #=> String, one of "NEW", "NONE", "ALL"
|
1484
1565
|
# resp.next_token #=> String
|
1485
1566
|
# resp.auto_enable_organization_members #=> String, one of "NEW", "ALL", "NONE"
|
1486
1567
|
#
|
@@ -3555,9 +3636,9 @@ module Aws::GuardDuty
|
|
3555
3636
|
end
|
3556
3637
|
|
3557
3638
|
# Lists tags for a resource. Tagging is currently supported for
|
3558
|
-
# detectors, finding filters, IP sets, threat intel sets, publishing
|
3559
|
-
# destination, with a limit of 50 tags per resource. When invoked,
|
3560
|
-
# operation returns all assigned tags for a given resource.
|
3639
|
+
# detectors, finding filters, IP sets, threat intel sets, and publishing
|
3640
|
+
# destination, with a limit of 50 tags per each resource. When invoked,
|
3641
|
+
# this operation returns all assigned tags for a given resource.
|
3561
3642
|
#
|
3562
3643
|
# @option params [required, String] :resource_arn
|
3563
3644
|
# The Amazon Resource Name (ARN) for the given GuardDuty resource.
|
@@ -4277,11 +4358,11 @@ module Aws::GuardDuty
|
|
4277
4358
|
# features: [
|
4278
4359
|
# {
|
4279
4360
|
# name: "S3_DATA_EVENTS", # accepts S3_DATA_EVENTS, EKS_AUDIT_LOGS, EBS_MALWARE_PROTECTION, RDS_LOGIN_EVENTS, EKS_RUNTIME_MONITORING, LAMBDA_NETWORK_LOGS
|
4280
|
-
# auto_enable: "NEW", # accepts NEW, NONE
|
4361
|
+
# auto_enable: "NEW", # accepts NEW, NONE, ALL
|
4281
4362
|
# additional_configuration: [
|
4282
4363
|
# {
|
4283
4364
|
# name: "EKS_ADDON_MANAGEMENT", # accepts EKS_ADDON_MANAGEMENT
|
4284
|
-
# auto_enable: "NEW", # accepts NEW, NONE
|
4365
|
+
# auto_enable: "NEW", # accepts NEW, NONE, ALL
|
4285
4366
|
# },
|
4286
4367
|
# ],
|
4287
4368
|
# },
|
@@ -4389,7 +4470,7 @@ module Aws::GuardDuty
|
|
4389
4470
|
params: params,
|
4390
4471
|
config: config)
|
4391
4472
|
context[:gem_name] = 'aws-sdk-guardduty'
|
4392
|
-
context[:gem_version] = '1.
|
4473
|
+
context[:gem_version] = '1.77.0'
|
4393
4474
|
Seahorse::Client::Request.new(handlers, context)
|
4394
4475
|
end
|
4395
4476
|
|
@@ -998,9 +998,31 @@ module Aws::GuardDuty
|
|
998
998
|
#
|
999
999
|
# * accountId
|
1000
1000
|
#
|
1001
|
+
# * id
|
1002
|
+
#
|
1001
1003
|
# * region
|
1002
1004
|
#
|
1003
|
-
# *
|
1005
|
+
# * severity
|
1006
|
+
#
|
1007
|
+
# To filter on the basis of severity, the API and CLI use the
|
1008
|
+
# following input list for the [FindingCriteria][1] condition:
|
1009
|
+
#
|
1010
|
+
# * **Low**: `["1", "2", "3"]`
|
1011
|
+
#
|
1012
|
+
# * **Medium**: `["4", "5", "6"]`
|
1013
|
+
#
|
1014
|
+
# * **High**: `["7", "8", "9"]`
|
1015
|
+
#
|
1016
|
+
# For more information, see [Severity levels for GuardDuty
|
1017
|
+
# findings][2].
|
1018
|
+
#
|
1019
|
+
# * type
|
1020
|
+
#
|
1021
|
+
# * updatedAt
|
1022
|
+
#
|
1023
|
+
# Type: ISO 8601 string format: YYYY-MM-DDTHH:MM:SS.SSSZ or
|
1024
|
+
# YYYY-MM-DDTHH:MM:SSZ depending on whether the value contains
|
1025
|
+
# milliseconds.
|
1004
1026
|
#
|
1005
1027
|
# * resource.accessKeyDetails.accessKeyId
|
1006
1028
|
#
|
@@ -1016,7 +1038,9 @@ module Aws::GuardDuty
|
|
1016
1038
|
#
|
1017
1039
|
# * resource.instanceDetails.instanceId
|
1018
1040
|
#
|
1019
|
-
# * resource.instanceDetails.
|
1041
|
+
# * resource.instanceDetails.tags.key
|
1042
|
+
#
|
1043
|
+
# * resource.instanceDetails.tags.value
|
1020
1044
|
#
|
1021
1045
|
# * resource.instanceDetails.networkInterfaces.ipv6Addresses
|
1022
1046
|
#
|
@@ -1034,12 +1058,20 @@ module Aws::GuardDuty
|
|
1034
1058
|
#
|
1035
1059
|
# * resource.instanceDetails.networkInterfaces.vpcId
|
1036
1060
|
#
|
1037
|
-
# * resource.instanceDetails.
|
1038
|
-
#
|
1039
|
-
# * resource.instanceDetails.tags.value
|
1061
|
+
# * resource.instanceDetails.outpostArn
|
1040
1062
|
#
|
1041
1063
|
# * resource.resourceType
|
1042
1064
|
#
|
1065
|
+
# * resource.s3BucketDetails.publicAccess.effectivePermissions
|
1066
|
+
#
|
1067
|
+
# * resource.s3BucketDetails.name
|
1068
|
+
#
|
1069
|
+
# * resource.s3BucketDetails.tags.key
|
1070
|
+
#
|
1071
|
+
# * resource.s3BucketDetails.tags.value
|
1072
|
+
#
|
1073
|
+
# * resource.s3BucketDetails.type
|
1074
|
+
#
|
1043
1075
|
# * service.action.actionType
|
1044
1076
|
#
|
1045
1077
|
# * service.action.awsApiCallAction.api
|
@@ -1048,8 +1080,6 @@ module Aws::GuardDuty
|
|
1048
1080
|
#
|
1049
1081
|
# * service.action.awsApiCallAction.errorCode
|
1050
1082
|
#
|
1051
|
-
# * service.action.awsApiCallAction.userAgent
|
1052
|
-
#
|
1053
1083
|
# * service.action.awsApiCallAction.remoteIpDetails.city.cityName
|
1054
1084
|
#
|
1055
1085
|
# * service.action.awsApiCallAction.remoteIpDetails.country.countryName
|
@@ -1072,8 +1102,6 @@ module Aws::GuardDuty
|
|
1072
1102
|
#
|
1073
1103
|
# * service.action.networkConnectionAction.protocol
|
1074
1104
|
#
|
1075
|
-
# * service.action.networkConnectionAction.localIpDetails.ipAddressV4
|
1076
|
-
#
|
1077
1105
|
# * service.action.networkConnectionAction.remoteIpDetails.city.cityName
|
1078
1106
|
#
|
1079
1107
|
# * service.action.networkConnectionAction.remoteIpDetails.country.countryName
|
@@ -1086,29 +1114,82 @@ module Aws::GuardDuty
|
|
1086
1114
|
#
|
1087
1115
|
# * service.action.networkConnectionAction.remotePortDetails.port
|
1088
1116
|
#
|
1089
|
-
# * service.
|
1117
|
+
# * service.action.awsApiCallAction.remoteAccountDetails.affiliated
|
1090
1118
|
#
|
1091
|
-
# *
|
1119
|
+
# * service.action.kubernetesApiCallAction.remoteIpDetails.ipAddressV4
|
1092
1120
|
#
|
1093
|
-
# *
|
1121
|
+
# * service.action.kubernetesApiCallAction.requestUri
|
1094
1122
|
#
|
1095
|
-
# *
|
1123
|
+
# * service.action.networkConnectionAction.localIpDetails.ipAddressV4
|
1096
1124
|
#
|
1097
|
-
# *
|
1125
|
+
# * service.action.networkConnectionAction.protocol
|
1098
1126
|
#
|
1099
|
-
# *
|
1127
|
+
# * service.action.awsApiCallAction.serviceName
|
1128
|
+
#
|
1129
|
+
# * service.action.awsApiCallAction.remoteAccountDetails.accountId
|
1130
|
+
#
|
1131
|
+
# * service.additionalInfo.threatListName
|
1100
1132
|
#
|
1101
1133
|
# * service.resourceRole
|
1102
1134
|
#
|
1103
|
-
# *
|
1135
|
+
# * resource.eksClusterDetails.name
|
1104
1136
|
#
|
1105
|
-
# *
|
1137
|
+
# * resource.kubernetesDetails.kubernetesWorkloadDetails.name
|
1106
1138
|
#
|
1107
|
-
# *
|
1139
|
+
# * resource.kubernetesDetails.kubernetesWorkloadDetails.namespace
|
1108
1140
|
#
|
1109
|
-
#
|
1110
|
-
#
|
1111
|
-
#
|
1141
|
+
# * resource.kubernetesDetails.kubernetesUserDetails.username
|
1142
|
+
#
|
1143
|
+
# * resource.kubernetesDetails.kubernetesWorkloadDetails.containers.image
|
1144
|
+
#
|
1145
|
+
# * resource.kubernetesDetails.kubernetesWorkloadDetails.containers.imagePrefix
|
1146
|
+
#
|
1147
|
+
# * service.ebsVolumeScanDetails.scanId
|
1148
|
+
#
|
1149
|
+
# * service.ebsVolumeScanDetails.scanDetections.threatDetectedByName.threatNames.name
|
1150
|
+
#
|
1151
|
+
# * service.ebsVolumeScanDetails.scanDetections.threatDetectedByName.threatNames.severity
|
1152
|
+
#
|
1153
|
+
# * service.ebsVolumeScanDetails.scanDetections.threatDetectedByName.threatNames.filePaths.hash
|
1154
|
+
#
|
1155
|
+
# * resource.ecsClusterDetails.name
|
1156
|
+
#
|
1157
|
+
# * resource.ecsClusterDetails.taskDetails.containers.image
|
1158
|
+
#
|
1159
|
+
# * resource.ecsClusterDetails.taskDetails.definitionArn
|
1160
|
+
#
|
1161
|
+
# * resource.containerDetails.image
|
1162
|
+
#
|
1163
|
+
# * resource.rdsDbInstanceDetails.dbInstanceIdentifier
|
1164
|
+
#
|
1165
|
+
# * resource.rdsDbInstanceDetails.dbClusterIdentifier
|
1166
|
+
#
|
1167
|
+
# * resource.rdsDbInstanceDetails.engine
|
1168
|
+
#
|
1169
|
+
# * resource.rdsDbUserDetails.user
|
1170
|
+
#
|
1171
|
+
# * resource.rdsDbInstanceDetails.tags.key
|
1172
|
+
#
|
1173
|
+
# * resource.rdsDbInstanceDetails.tags.value
|
1174
|
+
#
|
1175
|
+
# * service.runtimeDetails.process.executableSha256
|
1176
|
+
#
|
1177
|
+
# * service.runtimeDetails.process.name
|
1178
|
+
#
|
1179
|
+
# * service.runtimeDetails.process.name
|
1180
|
+
#
|
1181
|
+
# * resource.lambdaDetails.functionName
|
1182
|
+
#
|
1183
|
+
# * resource.lambdaDetails.functionArn
|
1184
|
+
#
|
1185
|
+
# * resource.lambdaDetails.tags.key
|
1186
|
+
#
|
1187
|
+
# * resource.lambdaDetails.tags.value
|
1188
|
+
#
|
1189
|
+
#
|
1190
|
+
#
|
1191
|
+
# [1]: https://docs.aws.amazon.com/guardduty/latest/APIReference/API_FindingCriteria.html
|
1192
|
+
# [2]: https://docs.aws.amazon.com/guardduty/latest/ug/guardduty_findings.html#guardduty_findings-severity
|
1112
1193
|
# @return [Types::FindingCriteria]
|
1113
1194
|
#
|
1114
1195
|
# @!attribute [rw] client_token
|
data/lib/aws-sdk-guardduty.rb
CHANGED
metadata
CHANGED
@@ -1,14 +1,14 @@
|
|
1
1
|
--- !ruby/object:Gem::Specification
|
2
2
|
name: aws-sdk-guardduty
|
3
3
|
version: !ruby/object:Gem::Version
|
4
|
-
version: 1.
|
4
|
+
version: 1.77.0
|
5
5
|
platform: ruby
|
6
6
|
authors:
|
7
7
|
- Amazon Web Services
|
8
8
|
autorequire:
|
9
9
|
bindir: bin
|
10
10
|
cert_chain: []
|
11
|
-
date: 2023-
|
11
|
+
date: 2023-08-09 00:00:00.000000000 Z
|
12
12
|
dependencies:
|
13
13
|
- !ruby/object:Gem::Dependency
|
14
14
|
name: aws-sdk-core
|