aws-sdk-guardduty 1.77.0 → 1.78.0

checksums.yaml

@@ -1,7 +1,7 @@
 ---
 SHA256:
-  metadata.gz: e966c8fa82ddfab889dcd6c7dc1a6d681a127b44b0ecd64fcd55a56d0235ae7b
-  data.tar.gz: dd719432e27cbf0475df9947b485ff2caeee9945cc0e2285a4a654229189e93f
+  metadata.gz: ed911abbebf94435926713edbff9b3988d532f20b40a37574bc68987f72dfab7
+  data.tar.gz: 83af089eb78e60cfe96e3ef9f1d31433b014817e930f9c44645db5e1b8a35377
 SHA512:
-  metadata.gz: 244a658380b0a3a4f9fb54722b562f76cdc615dce5b6d13f577486d9da240531ffef53b88b5d7afe2db9ace82fb8467dcb724c147e77b74768aea8789e061173
-  data.tar.gz: d6fc4eb50d2ec9000c39ba0f1ef0450a93046bb699e5508530f6838413d309d593d855696220c8bc6d395741ac67a534a97f68afe274939f2e8d20af72fb59b5
+  metadata.gz: 7e949b005e19a67da9d4a0701537c7fa2df738e313a9a1b01e27e6357224d48eae5b1bd2da8ea685c429624010981a995ef2e15f25b197642fad87cf7951589b
+  data.tar.gz: f3ad6f84a149fbd8f409bbf3098835fb8a13a36d178087a103fde88f9344a8fbaf120bd153bcbe9e97d9a0c5c6944d57d459b8a02a28cf0bba53e7b309af65cf

data/CHANGELOG.md

@@ -1,6 +1,11 @@
 Unreleased Changes
 ------------------
 
+1.78.0 (2023-09-13)
+------------------
+
+* Feature - Add `managementType` field to ListCoverage API response.
+
 1.77.0 (2023-08-09)
 ------------------
 

data/VERSION

@@ -1 +1 @@
-1.77.0
+1.78.0

data/lib/aws-sdk-guardduty/client.rb

@@ -1617,8 +1617,9 @@ module Aws::GuardDuty
       req.send_request(options)
     end
 
-    # Disables an Amazon Web Services account within the Organization as the
-    # GuardDuty delegated administrator.
+    # Removes the existing GuardDuty delegated administrator of the
+    # organization. Only the organization's management account can run this
+    # API operation.
     #
     # @option params [required, String] :admin_account_id
     #   The Amazon Web Services Account ID for the organizations account to be
@@ -1735,8 +1736,8 @@ module Aws::GuardDuty
     #
     # With `autoEnableOrganizationMembers` configuration for your
     # organization set to `ALL`, you'll receive an error if you attempt to
-    # disassociate a member account before removing them from your Amazon
-    # Web Services organization.
+    # disassociate a member account before removing them from your
+    # organization.
     #
     #
     #
@@ -1778,8 +1779,9 @@ module Aws::GuardDuty
       req.send_request(options)
     end
 
-    # Enables an Amazon Web Services account within the organization as the
-    # GuardDuty delegated administrator.
+    # Designates an Amazon Web Services account within the organization as
+    # your GuardDuty delegated administrator. Only the organization's
+    # management account can run this API operation.
     #
     # @option params [required, String] :admin_account_id
     #   The Amazon Web Services Account ID for the organization account to be
@@ -1802,8 +1804,13 @@ module Aws::GuardDuty
       req.send_request(options)
     end
 
-    # Provides the details for the GuardDuty administrator account
-    # associated with the current GuardDuty member account.
+    # Provides the details of the GuardDuty administrator account associated
+    # with the current GuardDuty member account.
+    #
+    # <note markdown="1"> If the organization's management account or a delegated administrator
+    # runs this API, it will return success (`HTTP 200`) but no content.
+    #
+    #  </note>
     #
     # @option params [required, String] :detector_id
     #   The unique ID of the detector of the GuardDuty member account.
@@ -1861,7 +1868,7 @@ module Aws::GuardDuty
     #     filter_criteria: {
     #       filter_criterion: [
     #         {
-    #           criterion_key: "ACCOUNT_ID", # accepts ACCOUNT_ID, CLUSTER_NAME, RESOURCE_TYPE, COVERAGE_STATUS, ADDON_VERSION
+    #           criterion_key: "ACCOUNT_ID", # accepts ACCOUNT_ID, CLUSTER_NAME, RESOURCE_TYPE, COVERAGE_STATUS, ADDON_VERSION, MANAGEMENT_TYPE
     #           filter_condition: {
     #             equals: ["String"],
     #             not_equals: ["String"],
@@ -2952,10 +2959,9 @@ module Aws::GuardDuty
 
     # Invites Amazon Web Services accounts to become members of an
     # organization administered by the Amazon Web Services account that
-    # invokes this API. If you are using Amazon Web Services Organizations
-    # to manager your GuardDuty environment, this step is not needed. For
-    # more information, see [Managing accounts with Amazon Web Services
-    # Organizations][1].
+    # invokes this API. If you are using organizations to manager your
+    # GuardDuty environment, this step is not needed. For more information,
+    # see [Managing accounts with organizations][1].
     #
     # To invite Amazon Web Services accounts, the first step is to ensure
     # that GuardDuty has been enabled in the potential member accounts. You
@@ -3071,7 +3077,7 @@ module Aws::GuardDuty
     #     filter_criteria: {
     #       filter_criterion: [
     #         {
-    #           criterion_key: "ACCOUNT_ID", # accepts ACCOUNT_ID, CLUSTER_NAME, RESOURCE_TYPE, COVERAGE_STATUS, ADDON_VERSION
+    #           criterion_key: "ACCOUNT_ID", # accepts ACCOUNT_ID, CLUSTER_NAME, RESOURCE_TYPE, COVERAGE_STATUS, ADDON_VERSION, MANAGEMENT_TYPE
     #           filter_condition: {
     #             equals: ["String"],
     #             not_equals: ["String"],
@@ -3096,6 +3102,7 @@ module Aws::GuardDuty
     #   resp.resources[0].resource_details.eks_cluster_details.compatible_nodes #=> Integer
     #   resp.resources[0].resource_details.eks_cluster_details.addon_details.addon_version #=> String
     #   resp.resources[0].resource_details.eks_cluster_details.addon_details.addon_status #=> String
+    #   resp.resources[0].resource_details.eks_cluster_details.management_type #=> String, one of "AUTO_MANAGED", "MANUAL"
     #   resp.resources[0].resource_details.resource_type #=> String, one of "EKS"
     #   resp.resources[0].coverage_status #=> String, one of "HEALTHY", "UNHEALTHY"
     #   resp.resources[0].issue #=> String
@@ -3546,6 +3553,8 @@ module Aws::GuardDuty
     end
 
     # Lists the accounts configured as GuardDuty delegated administrators.
+    # Only the organization's management account can run this API
+    # operation.
     #
     # @option params [Integer] :max_results
     #   The maximum number of results to return in the response.
@@ -3637,8 +3646,8 @@ module Aws::GuardDuty
 
     # Lists tags for a resource. Tagging is currently supported for
     # detectors, finding filters, IP sets, threat intel sets, and publishing
-    # destination, with a limit of 50 tags per each resource. When invoked,
-    # this operation returns all assigned tags for a given resource.
+    # destination, with a limit of 50 tags per resource. When invoked, this
+    # operation returns all assigned tags for a given resource.
     #
     # @option params [required, String] :resource_arn
     #   The Amazon Resource Name (ARN) for the given GuardDuty resource.
@@ -4287,8 +4296,8 @@ module Aws::GuardDuty
     end
 
     # Configures the delegated administrator account with the provided
-    # values. You must provide the value for either
-    # `autoEnableOrganizationMembers` or `autoEnable`.
+    # values. You must provide a value for either
+    # `autoEnableOrganizationMembers` or `autoEnable`, but not both.
     #
     # There might be regional differences because some data sources might
     # not be available in all the Amazon Web Services Regions where
@@ -4307,7 +4316,9 @@ module Aws::GuardDuty
     #   organization.
     #
     #   Even though this is still supported, we recommend using
-    #   `AutoEnableOrganizationMembers` to achieve the similar results.
+    #   `AutoEnableOrganizationMembers` to achieve the similar results. You
+    #   must provide the value for either `autoEnableOrganizationMembers` or
+    #   `autoEnable`.
     #
     # @option params [Types::OrganizationDataSourceConfigurations] :data_sources
     #   Describes which data sources will be updated.
@@ -4317,19 +4328,26 @@ module Aws::GuardDuty
     #
     # @option params [String] :auto_enable_organization_members
     #   Indicates the auto-enablement configuration of GuardDuty for the
-    #   member accounts in the organization.
+    #   member accounts in the organization. You must provide a value for
+    #   either `autoEnableOrganizationMembers` or `autoEnable`.
+    #
+    #   Use one of the following configuration values for
+    #   `autoEnableOrganizationMembers`:
     #
     #   * `NEW`: Indicates that when a new account joins the organization,
     #     they will have GuardDuty enabled automatically.
     #
-    #   * `ALL`: Indicates that all accounts in the Amazon Web Services
-    #     Organization have GuardDuty enabled automatically. This includes
-    #     `NEW` accounts that join the organization and accounts that may have
-    #     been suspended or removed from the organization in GuardDuty.
+    #   * `ALL`: Indicates that all accounts in the organization have
+    #     GuardDuty enabled automatically. This includes `NEW` accounts that
+    #     join the organization and accounts that may have been suspended or
+    #     removed from the organization in GuardDuty.
+    #
+    #     It may take up to 24 hours to update the configuration for all the
+    #     member accounts.
     #
     #   * `NONE`: Indicates that GuardDuty will not be automatically enabled
-    #     for any accounts in the organization. GuardDuty must be managed for
-    #     each account individually by the administrator.
+    #     for any account in the organization. The administrator must manage
+    #     GuardDuty for each account in the organization individually.
     #
     # @return [Struct] Returns an empty {Seahorse::Client::Response response}.
     #
@@ -4470,7 +4488,7 @@ module Aws::GuardDuty
         params: params,
         config: config)
       context[:gem_name] = 'aws-sdk-guardduty'
-      context[:gem_version] = '1.77.0'
+      context[:gem_version] = '1.78.0'
       Seahorse::Client::Request.new(handlers, context)
     end
 

data/lib/aws-sdk-guardduty/client_api.rb

@@ -279,6 +279,7 @@ module Aws::GuardDuty
     MalwareProtectionConfiguration = Shapes::StructureShape.new(name: 'MalwareProtectionConfiguration')
     MalwareProtectionConfigurationResult = Shapes::StructureShape.new(name: 'MalwareProtectionConfigurationResult')
     MalwareProtectionDataSourceFreeTrial = Shapes::StructureShape.new(name: 'MalwareProtectionDataSourceFreeTrial')
+    ManagementType = Shapes::StringShape.new(name: 'ManagementType')
     MapEquals = Shapes::ListShape.new(name: 'MapEquals')
     Master = Shapes::StructureShape.new(name: 'Master')
     MaxResults = Shapes::IntegerShape.new(name: 'MaxResults')
@@ -621,6 +622,7 @@ module Aws::GuardDuty
     CoverageEksClusterDetails.add_member(:covered_nodes, Shapes::ShapeRef.new(shape: Long, location_name: "coveredNodes"))
     CoverageEksClusterDetails.add_member(:compatible_nodes, Shapes::ShapeRef.new(shape: Long, location_name: "compatibleNodes"))
     CoverageEksClusterDetails.add_member(:addon_details, Shapes::ShapeRef.new(shape: AddonDetails, location_name: "addonDetails"))
+    CoverageEksClusterDetails.add_member(:management_type, Shapes::ShapeRef.new(shape: ManagementType, location_name: "managementType"))
     CoverageEksClusterDetails.struct_class = Types::CoverageEksClusterDetails
 
     CoverageFilterCondition.add_member(:equals, Shapes::ShapeRef.new(shape: Equals, location_name: "equals"))

data/lib/aws-sdk-guardduty/types.rb

@@ -716,13 +716,25 @@ module Aws::GuardDuty
     #   Information about the installed EKS add-on.
     #   @return [Types::AddonDetails]
     #
+    # @!attribute [rw] management_type
+    #   Indicates how the Amazon EKS add-on GuardDuty agent is managed for
+    #   this EKS cluster.
+    #
+    #   `AUTO_MANAGED` indicates GuardDuty deploys and manages updates for
+    #   this resource.
+    #
+    #   `MANUAL` indicates that you are responsible to deploy, update, and
+    #   manage the Amazon EKS add-on GuardDuty agent for this resource.
+    #   @return [String]
+    #
     # @see http://docs.aws.amazon.com/goto/WebAPI/guardduty-2017-11-28/CoverageEksClusterDetails AWS API Documentation
     #
     class CoverageEksClusterDetails < Struct.new(
       :cluster_name,
       :covered_nodes,
       :compatible_nodes,
-      :addon_details)
+      :addon_details,
+      :management_type)
       SENSITIVE = []
       include Aws::Structure
     end
@@ -1928,14 +1940,14 @@ module Aws::GuardDuty
     #   * `NEW`: Indicates that when a new account joins the organization,
     #     they will have GuardDuty enabled automatically.
     #
-    #   * `ALL`: Indicates that all accounts in the Amazon Web Services
-    #     Organization have GuardDuty enabled automatically. This includes
-    #     `NEW` accounts that join the organization and accounts that may
-    #     have been suspended or removed from the organization in GuardDuty.
+    #   * `ALL`: Indicates that all accounts in the organization have
+    #     GuardDuty enabled automatically. This includes `NEW` accounts that
+    #     join the organization and accounts that may have been suspended or
+    #     removed from the organization in GuardDuty.
     #
     #   * `NONE`: Indicates that GuardDuty will not be automatically enabled
-    #     for any accounts in the organization. GuardDuty must be managed
-    #     for each account individually by the administrator.
+    #     for any account in the organization. The administrator must manage
+    #     GuardDuty for each account in the organization individually.
     #   @return [String]
     #
     # @see http://docs.aws.amazon.com/goto/WebAPI/guardduty-2017-11-28/DescribeOrganizationConfigurationResponse AWS API Documentation
@@ -5005,7 +5017,24 @@ module Aws::GuardDuty
     #
     # @!attribute [rw] auto_enable
     #   The status of the additional configuration that will be configured
-    #   for the organization.
+    #   for the organization. Use one of the following values to configure
+    #   the feature status for the entire organization:
+    #
+    #   * `NEW`: Indicates that when a new account joins the organization,
+    #     they will have the additional configuration enabled automatically.
+    #
+    #   * `ALL`: Indicates that all accounts in the organization have the
+    #     additional configuration enabled automatically. This includes
+    #     `NEW` accounts that join the organization and accounts that may
+    #     have been suspended or removed from the organization in GuardDuty.
+    #
+    #     It may take up to 24 hours to update the configuration for all the
+    #     member accounts.
+    #
+    #   * `NONE`: Indicates that the additional configuration will not be
+    #     automatically enabled for any account in the organization. The
+    #     administrator must manage the additional configuration for each
+    #     account individually.
     #   @return [String]
     #
     # @see http://docs.aws.amazon.com/goto/WebAPI/guardduty-2017-11-28/OrganizationAdditionalConfiguration AWS API Documentation
@@ -5026,14 +5055,25 @@ module Aws::GuardDuty
     #   @return [String]
     #
     # @!attribute [rw] auto_enable
-    #   Describes how The status of the additional configuration that are
-    #   configured for the member accounts within the organization.
+    #   Describes the status of the additional configuration that is
+    #   configured for the member accounts within the organization. One of
+    #   the following values is the status for the entire organization:
     #
-    #   If you set `AutoEnable` to `NEW`, a feature will be configured for
-    #   only the new accounts when they join the organization.
+    #   * `NEW`: Indicates that when a new account joins the organization,
+    #     they will have the additional configuration enabled automatically.
     #
-    #   If you set `AutoEnable` to `NONE`, no feature will be configured for
-    #   the accounts when they join the organization.
+    #   * `ALL`: Indicates that all accounts in the organization have the
+    #     additional configuration enabled automatically. This includes
+    #     `NEW` accounts that join the organization and accounts that may
+    #     have been suspended or removed from the organization in GuardDuty.
+    #
+    #     It may take up to 24 hours to update the configuration for all the
+    #     member accounts.
+    #
+    #   * `NONE`: Indicates that the additional configuration will not be
+    #     automatically enabled for any account in the organization. The
+    #     administrator must manage the additional configuration for each
+    #     account individually.
     #   @return [String]
     #
     # @see http://docs.aws.amazon.com/goto/WebAPI/guardduty-2017-11-28/OrganizationAdditionalConfigurationResult AWS API Documentation
@@ -5140,7 +5180,23 @@ module Aws::GuardDuty
     #
     # @!attribute [rw] auto_enable
     #   The status of the feature that will be configured for the
-    #   organization.
+    #   organization. Use one of the following values to configure the
+    #   feature status for the entire organization:
+    #
+    #   * `NEW`: Indicates that when a new account joins the organization,
+    #     they will have the feature enabled automatically.
+    #
+    #   * `ALL`: Indicates that all accounts in the organization have the
+    #     feature enabled automatically. This includes `NEW` accounts that
+    #     join the organization and accounts that may have been suspended or
+    #     removed from the organization in GuardDuty.
+    #
+    #     It may take up to 24 hours to update the configuration for all the
+    #     member accounts.
+    #
+    #   * `NONE`: Indicates that the feature will not be automatically
+    #     enabled for any account in the organization. The administrator
+    #     must manage the feature for each account individually.
     #   @return [String]
     #
     # @!attribute [rw] additional_configuration
@@ -5166,14 +5222,20 @@ module Aws::GuardDuty
     #   @return [String]
     #
     # @!attribute [rw] auto_enable
-    #   Describes how The status of the feature that are configured for the
+    #   Describes the status of the feature that is configured for the
     #   member accounts within the organization.
     #
-    #   If you set `AutoEnable` to `NEW`, a feature will be configured for
-    #   only the new accounts when they join the organization.
+    #   * `NEW`: Indicates that when a new account joins the organization,
+    #     they will have the feature enabled automatically.
+    #
+    #   * `ALL`: Indicates that all accounts in the organization have the
+    #     feature enabled automatically. This includes `NEW` accounts that
+    #     join the organization and accounts that may have been suspended or
+    #     removed from the organization in GuardDuty.
     #
-    #   If you set `AutoEnable` to `NONE`, no feature will be configured for
-    #   the accounts when they join the organization.
+    #   * `NONE`: Indicates that the feature will not be automatically
+    #     enabled for any account in the organization. In this case, each
+    #     account will be managed individually by the administrator.
     #   @return [String]
     #
     # @!attribute [rw] additional_configuration
@@ -7079,7 +7141,9 @@ module Aws::GuardDuty
     #   organization.
     #
     #   Even though this is still supported, we recommend using
-    #   `AutoEnableOrganizationMembers` to achieve the similar results.
+    #   `AutoEnableOrganizationMembers` to achieve the similar results. You
+    #   must provide the value for either `autoEnableOrganizationMembers` or
+    #   `autoEnable`.
     #   @return [Boolean]
     #
     # @!attribute [rw] data_sources
@@ -7092,19 +7156,26 @@ module Aws::GuardDuty
     #
     # @!attribute [rw] auto_enable_organization_members
     #   Indicates the auto-enablement configuration of GuardDuty for the
-    #   member accounts in the organization.
+    #   member accounts in the organization. You must provide a value for
+    #   either `autoEnableOrganizationMembers` or `autoEnable`.
+    #
+    #   Use one of the following configuration values for
+    #   `autoEnableOrganizationMembers`:
     #
     #   * `NEW`: Indicates that when a new account joins the organization,
     #     they will have GuardDuty enabled automatically.
     #
-    #   * `ALL`: Indicates that all accounts in the Amazon Web Services
-    #     Organization have GuardDuty enabled automatically. This includes
-    #     `NEW` accounts that join the organization and accounts that may
-    #     have been suspended or removed from the organization in GuardDuty.
+    #   * `ALL`: Indicates that all accounts in the organization have
+    #     GuardDuty enabled automatically. This includes `NEW` accounts that
+    #     join the organization and accounts that may have been suspended or
+    #     removed from the organization in GuardDuty.
+    #
+    #     It may take up to 24 hours to update the configuration for all the
+    #     member accounts.
     #
     #   * `NONE`: Indicates that GuardDuty will not be automatically enabled
-    #     for any accounts in the organization. GuardDuty must be managed
-    #     for each account individually by the administrator.
+    #     for any account in the organization. The administrator must manage
+    #     GuardDuty for each account in the organization individually.
     #   @return [String]
     #
     # @see http://docs.aws.amazon.com/goto/WebAPI/guardduty-2017-11-28/UpdateOrganizationConfigurationRequest AWS API Documentation

data/lib/aws-sdk-guardduty.rb

@@ -52,6 +52,6 @@ require_relative 'aws-sdk-guardduty/customizations'
 # @!group service
 module Aws::GuardDuty
 
-  GEM_VERSION = '1.77.0'
+  GEM_VERSION = '1.78.0'
 
 end

metadata

@@ -1,14 +1,14 @@
 --- !ruby/object:Gem::Specification
 name: aws-sdk-guardduty
 version: !ruby/object:Gem::Version
-  version: 1.77.0
+  version: 1.78.0
 platform: ruby
 authors:
 - Amazon Web Services
 autorequire: 
 bindir: bin
 cert_chain: []
-date: 2023-08-09 00:00:00.000000000 Z
+date: 2023-09-13 00:00:00.000000000 Z
 dependencies:
 - !ruby/object:Gem::Dependency
   name: aws-sdk-core