aws-sdk-guardduty 1.81.0 → 1.82.0
Sign up to get free protection for your applications and to get access to all the features.
- checksums.yaml +4 -4
- data/CHANGELOG.md +5 -0
- data/VERSION +1 -1
- data/lib/aws-sdk-guardduty/client.rb +47 -1
- data/lib/aws-sdk-guardduty/client_api.rb +86 -0
- data/lib/aws-sdk-guardduty/types.rb +292 -6
- data/lib/aws-sdk-guardduty.rb +1 -1
- metadata +2 -2
checksums.yaml
CHANGED
@@ -1,7 +1,7 @@
|
|
1
1
|
---
|
2
2
|
SHA256:
|
3
|
-
metadata.gz:
|
4
|
-
data.tar.gz:
|
3
|
+
metadata.gz: 982719be3eed1c9b62f166e2f143c979fd4520bf228fe4e50ee22cc4cfb347c1
|
4
|
+
data.tar.gz: 365d45cef8891107ca10524bbbf214222b9f949cbf0a0be98871ab35a2e37bf2
|
5
5
|
SHA512:
|
6
|
-
metadata.gz:
|
7
|
-
data.tar.gz:
|
6
|
+
metadata.gz: 4efeeec4b2a6625520dbc7cdc94f904570ca09b679d2ff80e7502b1da0d482342d70c0afeb293c2d4d3026a59985d19816b059c981523fc8e93e980254ec8baf
|
7
|
+
data.tar.gz: 9fc50173ee35f046bf90afcfd7e3ef22bc432a55f8913a24ee772c01ea91f1b3019a51262a5133164456b1d8dd14bc31382976e988ac75157404f8770d98c64f
|
data/CHANGELOG.md
CHANGED
data/VERSION
CHANGED
@@ -1 +1 @@
|
|
1
|
-
1.
|
1
|
+
1.82.0
|
@@ -728,6 +728,8 @@ module Aws::GuardDuty
|
|
728
728
|
#
|
729
729
|
# * service.action.dnsRequestAction.domain
|
730
730
|
#
|
731
|
+
# * service.action.dnsRequestAction.domainWithSuffix
|
732
|
+
#
|
731
733
|
# * service.action.networkConnectionAction.blocked
|
732
734
|
#
|
733
735
|
# * service.action.networkConnectionAction.connectionDirection
|
@@ -752,8 +754,14 @@ module Aws::GuardDuty
|
|
752
754
|
#
|
753
755
|
# * service.action.kubernetesApiCallAction.remoteIpDetails.ipAddressV4
|
754
756
|
#
|
757
|
+
# * service.action.kubernetesApiCallAction.namespace
|
758
|
+
#
|
759
|
+
# * service.action.kubernetesApiCallAction.remoteIpDetails.organization.asn
|
760
|
+
#
|
755
761
|
# * service.action.kubernetesApiCallAction.requestUri
|
756
762
|
#
|
763
|
+
# * service.action.kubernetesApiCallAction.statusCode
|
764
|
+
#
|
757
765
|
# * service.action.networkConnectionAction.localIpDetails.ipAddressV4
|
758
766
|
#
|
759
767
|
# * service.action.networkConnectionAction.protocol
|
@@ -2133,6 +2141,9 @@ module Aws::GuardDuty
|
|
2133
2141
|
# resp.findings[0].resource.kubernetes_details.kubernetes_user_details.groups[0] #=> String
|
2134
2142
|
# resp.findings[0].resource.kubernetes_details.kubernetes_user_details.session_name #=> Array
|
2135
2143
|
# resp.findings[0].resource.kubernetes_details.kubernetes_user_details.session_name[0] #=> String
|
2144
|
+
# resp.findings[0].resource.kubernetes_details.kubernetes_user_details.impersonated_user.username #=> String
|
2145
|
+
# resp.findings[0].resource.kubernetes_details.kubernetes_user_details.impersonated_user.groups #=> Array
|
2146
|
+
# resp.findings[0].resource.kubernetes_details.kubernetes_user_details.impersonated_user.groups[0] #=> String
|
2136
2147
|
# resp.findings[0].resource.kubernetes_details.kubernetes_workload_details.name #=> String
|
2137
2148
|
# resp.findings[0].resource.kubernetes_details.kubernetes_workload_details.type #=> String
|
2138
2149
|
# resp.findings[0].resource.kubernetes_details.kubernetes_workload_details.uid #=> String
|
@@ -2148,9 +2159,13 @@ module Aws::GuardDuty
|
|
2148
2159
|
# resp.findings[0].resource.kubernetes_details.kubernetes_workload_details.containers[0].volume_mounts[0].name #=> String
|
2149
2160
|
# resp.findings[0].resource.kubernetes_details.kubernetes_workload_details.containers[0].volume_mounts[0].mount_path #=> String
|
2150
2161
|
# resp.findings[0].resource.kubernetes_details.kubernetes_workload_details.containers[0].security_context.privileged #=> Boolean
|
2162
|
+
# resp.findings[0].resource.kubernetes_details.kubernetes_workload_details.containers[0].security_context.allow_privilege_escalation #=> Boolean
|
2151
2163
|
# resp.findings[0].resource.kubernetes_details.kubernetes_workload_details.volumes #=> Array
|
2152
2164
|
# resp.findings[0].resource.kubernetes_details.kubernetes_workload_details.volumes[0].name #=> String
|
2153
2165
|
# resp.findings[0].resource.kubernetes_details.kubernetes_workload_details.volumes[0].host_path.path #=> String
|
2166
|
+
# resp.findings[0].resource.kubernetes_details.kubernetes_workload_details.service_account_name #=> String
|
2167
|
+
# resp.findings[0].resource.kubernetes_details.kubernetes_workload_details.host_ipc #=> Boolean
|
2168
|
+
# resp.findings[0].resource.kubernetes_details.kubernetes_workload_details.host_pid #=> Boolean
|
2154
2169
|
# resp.findings[0].resource.resource_type #=> String
|
2155
2170
|
# resp.findings[0].resource.ebs_volume_details.scanned_volume_details #=> Array
|
2156
2171
|
# resp.findings[0].resource.ebs_volume_details.scanned_volume_details[0].volume_arn #=> String
|
@@ -2199,6 +2214,7 @@ module Aws::GuardDuty
|
|
2199
2214
|
# resp.findings[0].resource.ecs_cluster_details.task_details.containers[0].volume_mounts[0].name #=> String
|
2200
2215
|
# resp.findings[0].resource.ecs_cluster_details.task_details.containers[0].volume_mounts[0].mount_path #=> String
|
2201
2216
|
# resp.findings[0].resource.ecs_cluster_details.task_details.containers[0].security_context.privileged #=> Boolean
|
2217
|
+
# resp.findings[0].resource.ecs_cluster_details.task_details.containers[0].security_context.allow_privilege_escalation #=> Boolean
|
2202
2218
|
# resp.findings[0].resource.ecs_cluster_details.task_details.group #=> String
|
2203
2219
|
# resp.findings[0].resource.container_details.container_runtime #=> String
|
2204
2220
|
# resp.findings[0].resource.container_details.id #=> String
|
@@ -2209,6 +2225,7 @@ module Aws::GuardDuty
|
|
2209
2225
|
# resp.findings[0].resource.container_details.volume_mounts[0].name #=> String
|
2210
2226
|
# resp.findings[0].resource.container_details.volume_mounts[0].mount_path #=> String
|
2211
2227
|
# resp.findings[0].resource.container_details.security_context.privileged #=> Boolean
|
2228
|
+
# resp.findings[0].resource.container_details.security_context.allow_privilege_escalation #=> Boolean
|
2212
2229
|
# resp.findings[0].resource.rds_db_instance_details.db_instance_identifier #=> String
|
2213
2230
|
# resp.findings[0].resource.rds_db_instance_details.engine #=> String
|
2214
2231
|
# resp.findings[0].resource.rds_db_instance_details.engine_version #=> String
|
@@ -2314,6 +2331,10 @@ module Aws::GuardDuty
|
|
2314
2331
|
# resp.findings[0].service.action.kubernetes_api_call_action.remote_ip_details.organization.org #=> String
|
2315
2332
|
# resp.findings[0].service.action.kubernetes_api_call_action.status_code #=> Integer
|
2316
2333
|
# resp.findings[0].service.action.kubernetes_api_call_action.parameters #=> String
|
2334
|
+
# resp.findings[0].service.action.kubernetes_api_call_action.resource #=> String
|
2335
|
+
# resp.findings[0].service.action.kubernetes_api_call_action.subresource #=> String
|
2336
|
+
# resp.findings[0].service.action.kubernetes_api_call_action.namespace #=> String
|
2337
|
+
# resp.findings[0].service.action.kubernetes_api_call_action.resource_name #=> String
|
2317
2338
|
# resp.findings[0].service.action.rds_login_attempt_action.remote_ip_details.city.city_name #=> String
|
2318
2339
|
# resp.findings[0].service.action.rds_login_attempt_action.remote_ip_details.country.country_code #=> String
|
2319
2340
|
# resp.findings[0].service.action.rds_login_attempt_action.remote_ip_details.country.country_name #=> String
|
@@ -2329,6 +2350,18 @@ module Aws::GuardDuty
|
|
2329
2350
|
# resp.findings[0].service.action.rds_login_attempt_action.login_attributes[0].application #=> String
|
2330
2351
|
# resp.findings[0].service.action.rds_login_attempt_action.login_attributes[0].failed_login_attempts #=> Integer
|
2331
2352
|
# resp.findings[0].service.action.rds_login_attempt_action.login_attributes[0].successful_login_attempts #=> Integer
|
2353
|
+
# resp.findings[0].service.action.kubernetes_permission_checked_details.verb #=> String
|
2354
|
+
# resp.findings[0].service.action.kubernetes_permission_checked_details.resource #=> String
|
2355
|
+
# resp.findings[0].service.action.kubernetes_permission_checked_details.namespace #=> String
|
2356
|
+
# resp.findings[0].service.action.kubernetes_permission_checked_details.allowed #=> Boolean
|
2357
|
+
# resp.findings[0].service.action.kubernetes_role_binding_details.kind #=> String
|
2358
|
+
# resp.findings[0].service.action.kubernetes_role_binding_details.name #=> String
|
2359
|
+
# resp.findings[0].service.action.kubernetes_role_binding_details.uid #=> String
|
2360
|
+
# resp.findings[0].service.action.kubernetes_role_binding_details.role_ref_name #=> String
|
2361
|
+
# resp.findings[0].service.action.kubernetes_role_binding_details.role_ref_kind #=> String
|
2362
|
+
# resp.findings[0].service.action.kubernetes_role_details.kind #=> String
|
2363
|
+
# resp.findings[0].service.action.kubernetes_role_details.name #=> String
|
2364
|
+
# resp.findings[0].service.action.kubernetes_role_details.uid #=> String
|
2332
2365
|
# resp.findings[0].service.evidence.threat_intelligence_details #=> Array
|
2333
2366
|
# resp.findings[0].service.evidence.threat_intelligence_details[0].threat_list_name #=> String
|
2334
2367
|
# resp.findings[0].service.evidence.threat_intelligence_details[0].threat_names #=> Array
|
@@ -2456,6 +2489,19 @@ module Aws::GuardDuty
|
|
2456
2489
|
# resp.findings[0].service.runtime_details.context.iana_protocol_number #=> Integer
|
2457
2490
|
# resp.findings[0].service.runtime_details.context.memory_regions #=> Array
|
2458
2491
|
# resp.findings[0].service.runtime_details.context.memory_regions[0] #=> String
|
2492
|
+
# resp.findings[0].service.detection.anomaly.profiles #=> Hash
|
2493
|
+
# resp.findings[0].service.detection.anomaly.profiles["String"] #=> Hash
|
2494
|
+
# resp.findings[0].service.detection.anomaly.profiles["String"]["String"] #=> Array
|
2495
|
+
# resp.findings[0].service.detection.anomaly.profiles["String"]["String"][0].profile_type #=> String, one of "FREQUENCY"
|
2496
|
+
# resp.findings[0].service.detection.anomaly.profiles["String"]["String"][0].profile_subtype #=> String, one of "FREQUENT", "INFREQUENT", "UNSEEN", "RARE"
|
2497
|
+
# resp.findings[0].service.detection.anomaly.profiles["String"]["String"][0].observations.text #=> Array
|
2498
|
+
# resp.findings[0].service.detection.anomaly.profiles["String"]["String"][0].observations.text[0] #=> String
|
2499
|
+
# resp.findings[0].service.detection.anomaly.unusual.behavior #=> Hash
|
2500
|
+
# resp.findings[0].service.detection.anomaly.unusual.behavior["String"] #=> Hash
|
2501
|
+
# resp.findings[0].service.detection.anomaly.unusual.behavior["String"]["String"].profile_type #=> String, one of "FREQUENCY"
|
2502
|
+
# resp.findings[0].service.detection.anomaly.unusual.behavior["String"]["String"].profile_subtype #=> String, one of "FREQUENT", "INFREQUENT", "UNSEEN", "RARE"
|
2503
|
+
# resp.findings[0].service.detection.anomaly.unusual.behavior["String"]["String"].observations.text #=> Array
|
2504
|
+
# resp.findings[0].service.detection.anomaly.unusual.behavior["String"]["String"].observations.text[0] #=> String
|
2459
2505
|
# resp.findings[0].severity #=> Float
|
2460
2506
|
# resp.findings[0].title #=> String
|
2461
2507
|
# resp.findings[0].type #=> String
|
@@ -4491,7 +4537,7 @@ module Aws::GuardDuty
|
|
4491
4537
|
params: params,
|
4492
4538
|
config: config)
|
4493
4539
|
context[:gem_name] = 'aws-sdk-guardduty'
|
4494
|
-
context[:gem_version] = '1.
|
4540
|
+
context[:gem_version] = '1.82.0'
|
4495
4541
|
Seahorse::Client::Request.new(handlers, context)
|
4496
4542
|
end
|
4497
4543
|
|
@@ -34,11 +34,19 @@ module Aws::GuardDuty
|
|
34
34
|
AdminStatus = Shapes::StringShape.new(name: 'AdminStatus')
|
35
35
|
Administrator = Shapes::StructureShape.new(name: 'Administrator')
|
36
36
|
AffectedResources = Shapes::MapShape.new(name: 'AffectedResources')
|
37
|
+
Anomaly = Shapes::StructureShape.new(name: 'Anomaly')
|
38
|
+
AnomalyObject = Shapes::StructureShape.new(name: 'AnomalyObject')
|
39
|
+
AnomalyProfileFeatureObjects = Shapes::ListShape.new(name: 'AnomalyProfileFeatureObjects')
|
40
|
+
AnomalyProfileFeatures = Shapes::MapShape.new(name: 'AnomalyProfileFeatures')
|
41
|
+
AnomalyProfiles = Shapes::MapShape.new(name: 'AnomalyProfiles')
|
42
|
+
AnomalyUnusual = Shapes::StructureShape.new(name: 'AnomalyUnusual')
|
43
|
+
AnomalyUnusualBehaviorFeature = Shapes::MapShape.new(name: 'AnomalyUnusualBehaviorFeature')
|
37
44
|
ArchiveFindingsRequest = Shapes::StructureShape.new(name: 'ArchiveFindingsRequest')
|
38
45
|
ArchiveFindingsResponse = Shapes::StructureShape.new(name: 'ArchiveFindingsResponse')
|
39
46
|
AutoEnableMembers = Shapes::StringShape.new(name: 'AutoEnableMembers')
|
40
47
|
AwsApiCallAction = Shapes::StructureShape.new(name: 'AwsApiCallAction')
|
41
48
|
BadRequestException = Shapes::StructureShape.new(name: 'BadRequestException')
|
49
|
+
Behavior = Shapes::MapShape.new(name: 'Behavior')
|
42
50
|
BlockPublicAccess = Shapes::StructureShape.new(name: 'BlockPublicAccess')
|
43
51
|
Boolean = Shapes::BooleanShape.new(name: 'Boolean')
|
44
52
|
BucketLevelPermissions = Shapes::StructureShape.new(name: 'BucketLevelPermissions')
|
@@ -120,6 +128,7 @@ module Aws::GuardDuty
|
|
120
128
|
DestinationProperties = Shapes::StructureShape.new(name: 'DestinationProperties')
|
121
129
|
DestinationType = Shapes::StringShape.new(name: 'DestinationType')
|
122
130
|
Destinations = Shapes::ListShape.new(name: 'Destinations')
|
131
|
+
Detection = Shapes::StructureShape.new(name: 'Detection')
|
123
132
|
DetectorAdditionalConfiguration = Shapes::StructureShape.new(name: 'DetectorAdditionalConfiguration')
|
124
133
|
DetectorAdditionalConfigurationResult = Shapes::StructureShape.new(name: 'DetectorAdditionalConfigurationResult')
|
125
134
|
DetectorAdditionalConfigurationResults = Shapes::ListShape.new(name: 'DetectorAdditionalConfigurationResults')
|
@@ -222,6 +231,7 @@ module Aws::GuardDuty
|
|
222
231
|
HighestSeverityThreatDetails = Shapes::StructureShape.new(name: 'HighestSeverityThreatDetails')
|
223
232
|
HostPath = Shapes::StructureShape.new(name: 'HostPath')
|
224
233
|
IamInstanceProfile = Shapes::StructureShape.new(name: 'IamInstanceProfile')
|
234
|
+
ImpersonatedUser = Shapes::StructureShape.new(name: 'ImpersonatedUser')
|
225
235
|
InstanceArn = Shapes::StringShape.new(name: 'InstanceArn')
|
226
236
|
InstanceDetails = Shapes::StructureShape.new(name: 'InstanceDetails')
|
227
237
|
Integer = Shapes::IntegerShape.new(name: 'Integer')
|
@@ -242,6 +252,9 @@ module Aws::GuardDuty
|
|
242
252
|
KubernetesConfigurationResult = Shapes::StructureShape.new(name: 'KubernetesConfigurationResult')
|
243
253
|
KubernetesDataSourceFreeTrial = Shapes::StructureShape.new(name: 'KubernetesDataSourceFreeTrial')
|
244
254
|
KubernetesDetails = Shapes::StructureShape.new(name: 'KubernetesDetails')
|
255
|
+
KubernetesPermissionCheckedDetails = Shapes::StructureShape.new(name: 'KubernetesPermissionCheckedDetails')
|
256
|
+
KubernetesRoleBindingDetails = Shapes::StructureShape.new(name: 'KubernetesRoleBindingDetails')
|
257
|
+
KubernetesRoleDetails = Shapes::StructureShape.new(name: 'KubernetesRoleDetails')
|
245
258
|
KubernetesUserDetails = Shapes::StructureShape.new(name: 'KubernetesUserDetails')
|
246
259
|
KubernetesWorkloadDetails = Shapes::StructureShape.new(name: 'KubernetesWorkloadDetails')
|
247
260
|
LambdaDetails = Shapes::StructureShape.new(name: 'LambdaDetails')
|
@@ -303,6 +316,8 @@ module Aws::GuardDuty
|
|
303
316
|
NetworkInterfaces = Shapes::ListShape.new(name: 'NetworkInterfaces')
|
304
317
|
NonEmptyString = Shapes::StringShape.new(name: 'NonEmptyString')
|
305
318
|
NotEquals = Shapes::ListShape.new(name: 'NotEquals')
|
319
|
+
ObservationTexts = Shapes::ListShape.new(name: 'ObservationTexts')
|
320
|
+
Observations = Shapes::StructureShape.new(name: 'Observations')
|
306
321
|
OrderBy = Shapes::StringShape.new(name: 'OrderBy')
|
307
322
|
OrgFeature = Shapes::StringShape.new(name: 'OrgFeature')
|
308
323
|
OrgFeatureAdditionalConfiguration = Shapes::StringShape.new(name: 'OrgFeatureAdditionalConfiguration')
|
@@ -341,6 +356,8 @@ module Aws::GuardDuty
|
|
341
356
|
ProcessDetails = Shapes::StructureShape.new(name: 'ProcessDetails')
|
342
357
|
ProductCode = Shapes::StructureShape.new(name: 'ProductCode')
|
343
358
|
ProductCodes = Shapes::ListShape.new(name: 'ProductCodes')
|
359
|
+
ProfileSubtype = Shapes::StringShape.new(name: 'ProfileSubtype')
|
360
|
+
ProfileType = Shapes::StringShape.new(name: 'ProfileType')
|
344
361
|
PublicAccess = Shapes::StructureShape.new(name: 'PublicAccess')
|
345
362
|
PublishingStatus = Shapes::StringShape.new(name: 'PublishingStatus')
|
346
363
|
RdsDbInstanceDetails = Shapes::StructureShape.new(name: 'RdsDbInstanceDetails')
|
@@ -513,6 +530,9 @@ module Aws::GuardDuty
|
|
513
530
|
Action.add_member(:port_probe_action, Shapes::ShapeRef.new(shape: PortProbeAction, location_name: "portProbeAction"))
|
514
531
|
Action.add_member(:kubernetes_api_call_action, Shapes::ShapeRef.new(shape: KubernetesApiCallAction, location_name: "kubernetesApiCallAction"))
|
515
532
|
Action.add_member(:rds_login_attempt_action, Shapes::ShapeRef.new(shape: RdsLoginAttemptAction, location_name: "rdsLoginAttemptAction"))
|
533
|
+
Action.add_member(:kubernetes_permission_checked_details, Shapes::ShapeRef.new(shape: KubernetesPermissionCheckedDetails, location_name: "kubernetesPermissionCheckedDetails"))
|
534
|
+
Action.add_member(:kubernetes_role_binding_details, Shapes::ShapeRef.new(shape: KubernetesRoleBindingDetails, location_name: "kubernetesRoleBindingDetails"))
|
535
|
+
Action.add_member(:kubernetes_role_details, Shapes::ShapeRef.new(shape: KubernetesRoleDetails, location_name: "kubernetesRoleDetails"))
|
516
536
|
Action.struct_class = Types::Action
|
517
537
|
|
518
538
|
AddonDetails.add_member(:addon_version, Shapes::ShapeRef.new(shape: String, location_name: "addonVersion"))
|
@@ -534,6 +554,29 @@ module Aws::GuardDuty
|
|
534
554
|
AffectedResources.key = Shapes::ShapeRef.new(shape: String)
|
535
555
|
AffectedResources.value = Shapes::ShapeRef.new(shape: String)
|
536
556
|
|
557
|
+
Anomaly.add_member(:profiles, Shapes::ShapeRef.new(shape: AnomalyProfiles, location_name: "profiles"))
|
558
|
+
Anomaly.add_member(:unusual, Shapes::ShapeRef.new(shape: AnomalyUnusual, location_name: "unusual"))
|
559
|
+
Anomaly.struct_class = Types::Anomaly
|
560
|
+
|
561
|
+
AnomalyObject.add_member(:profile_type, Shapes::ShapeRef.new(shape: ProfileType, location_name: "profileType"))
|
562
|
+
AnomalyObject.add_member(:profile_subtype, Shapes::ShapeRef.new(shape: ProfileSubtype, location_name: "profileSubtype"))
|
563
|
+
AnomalyObject.add_member(:observations, Shapes::ShapeRef.new(shape: Observations, location_name: "observations"))
|
564
|
+
AnomalyObject.struct_class = Types::AnomalyObject
|
565
|
+
|
566
|
+
AnomalyProfileFeatureObjects.member = Shapes::ShapeRef.new(shape: AnomalyObject)
|
567
|
+
|
568
|
+
AnomalyProfileFeatures.key = Shapes::ShapeRef.new(shape: String)
|
569
|
+
AnomalyProfileFeatures.value = Shapes::ShapeRef.new(shape: AnomalyProfileFeatureObjects)
|
570
|
+
|
571
|
+
AnomalyProfiles.key = Shapes::ShapeRef.new(shape: String)
|
572
|
+
AnomalyProfiles.value = Shapes::ShapeRef.new(shape: AnomalyProfileFeatures)
|
573
|
+
|
574
|
+
AnomalyUnusual.add_member(:behavior, Shapes::ShapeRef.new(shape: Behavior, location_name: "behavior"))
|
575
|
+
AnomalyUnusual.struct_class = Types::AnomalyUnusual
|
576
|
+
|
577
|
+
AnomalyUnusualBehaviorFeature.key = Shapes::ShapeRef.new(shape: String)
|
578
|
+
AnomalyUnusualBehaviorFeature.value = Shapes::ShapeRef.new(shape: AnomalyObject)
|
579
|
+
|
537
580
|
ArchiveFindingsRequest.add_member(:detector_id, Shapes::ShapeRef.new(shape: DetectorId, required: true, location: "uri", location_name: "detectorId"))
|
538
581
|
ArchiveFindingsRequest.add_member(:finding_ids, Shapes::ShapeRef.new(shape: FindingIds, required: true, location_name: "findingIds"))
|
539
582
|
ArchiveFindingsRequest.struct_class = Types::ArchiveFindingsRequest
|
@@ -555,6 +598,9 @@ module Aws::GuardDuty
|
|
555
598
|
BadRequestException.add_member(:type, Shapes::ShapeRef.new(shape: String, location_name: "__type"))
|
556
599
|
BadRequestException.struct_class = Types::BadRequestException
|
557
600
|
|
601
|
+
Behavior.key = Shapes::ShapeRef.new(shape: String)
|
602
|
+
Behavior.value = Shapes::ShapeRef.new(shape: AnomalyUnusualBehaviorFeature)
|
603
|
+
|
558
604
|
BlockPublicAccess.add_member(:ignore_public_acls, Shapes::ShapeRef.new(shape: Boolean, location_name: "ignorePublicAcls"))
|
559
605
|
BlockPublicAccess.add_member(:restrict_public_buckets, Shapes::ShapeRef.new(shape: Boolean, location_name: "restrictPublicBuckets"))
|
560
606
|
BlockPublicAccess.add_member(:block_public_acls, Shapes::ShapeRef.new(shape: Boolean, location_name: "blockPublicAcls"))
|
@@ -864,6 +910,9 @@ module Aws::GuardDuty
|
|
864
910
|
|
865
911
|
Destinations.member = Shapes::ShapeRef.new(shape: Destination)
|
866
912
|
|
913
|
+
Detection.add_member(:anomaly, Shapes::ShapeRef.new(shape: Anomaly, location_name: "anomaly"))
|
914
|
+
Detection.struct_class = Types::Detection
|
915
|
+
|
867
916
|
DetectorAdditionalConfiguration.add_member(:name, Shapes::ShapeRef.new(shape: FeatureAdditionalConfiguration, location_name: "name"))
|
868
917
|
DetectorAdditionalConfiguration.add_member(:status, Shapes::ShapeRef.new(shape: FeatureStatus, location_name: "status"))
|
869
918
|
DetectorAdditionalConfiguration.struct_class = Types::DetectorAdditionalConfiguration
|
@@ -1193,6 +1242,10 @@ module Aws::GuardDuty
|
|
1193
1242
|
IamInstanceProfile.add_member(:id, Shapes::ShapeRef.new(shape: String, location_name: "id"))
|
1194
1243
|
IamInstanceProfile.struct_class = Types::IamInstanceProfile
|
1195
1244
|
|
1245
|
+
ImpersonatedUser.add_member(:username, Shapes::ShapeRef.new(shape: String, location_name: "username"))
|
1246
|
+
ImpersonatedUser.add_member(:groups, Shapes::ShapeRef.new(shape: Groups, location_name: "groups"))
|
1247
|
+
ImpersonatedUser.struct_class = Types::ImpersonatedUser
|
1248
|
+
|
1196
1249
|
InstanceDetails.add_member(:availability_zone, Shapes::ShapeRef.new(shape: String, location_name: "availabilityZone"))
|
1197
1250
|
InstanceDetails.add_member(:iam_instance_profile, Shapes::ShapeRef.new(shape: IamInstanceProfile, location_name: "iamInstanceProfile"))
|
1198
1251
|
InstanceDetails.add_member(:image_description, Shapes::ShapeRef.new(shape: String, location_name: "imageDescription"))
|
@@ -1240,6 +1293,10 @@ module Aws::GuardDuty
|
|
1240
1293
|
KubernetesApiCallAction.add_member(:remote_ip_details, Shapes::ShapeRef.new(shape: RemoteIpDetails, location_name: "remoteIpDetails"))
|
1241
1294
|
KubernetesApiCallAction.add_member(:status_code, Shapes::ShapeRef.new(shape: Integer, location_name: "statusCode"))
|
1242
1295
|
KubernetesApiCallAction.add_member(:parameters, Shapes::ShapeRef.new(shape: String, location_name: "parameters"))
|
1296
|
+
KubernetesApiCallAction.add_member(:resource, Shapes::ShapeRef.new(shape: String, location_name: "resource"))
|
1297
|
+
KubernetesApiCallAction.add_member(:subresource, Shapes::ShapeRef.new(shape: String, location_name: "subresource"))
|
1298
|
+
KubernetesApiCallAction.add_member(:namespace, Shapes::ShapeRef.new(shape: String, location_name: "namespace"))
|
1299
|
+
KubernetesApiCallAction.add_member(:resource_name, Shapes::ShapeRef.new(shape: String, location_name: "resourceName"))
|
1243
1300
|
KubernetesApiCallAction.struct_class = Types::KubernetesApiCallAction
|
1244
1301
|
|
1245
1302
|
KubernetesAuditLogsConfiguration.add_member(:enable, Shapes::ShapeRef.new(shape: Boolean, required: true, location_name: "enable"))
|
@@ -1261,10 +1318,29 @@ module Aws::GuardDuty
|
|
1261
1318
|
KubernetesDetails.add_member(:kubernetes_workload_details, Shapes::ShapeRef.new(shape: KubernetesWorkloadDetails, location_name: "kubernetesWorkloadDetails"))
|
1262
1319
|
KubernetesDetails.struct_class = Types::KubernetesDetails
|
1263
1320
|
|
1321
|
+
KubernetesPermissionCheckedDetails.add_member(:verb, Shapes::ShapeRef.new(shape: String, location_name: "verb"))
|
1322
|
+
KubernetesPermissionCheckedDetails.add_member(:resource, Shapes::ShapeRef.new(shape: String, location_name: "resource"))
|
1323
|
+
KubernetesPermissionCheckedDetails.add_member(:namespace, Shapes::ShapeRef.new(shape: String, location_name: "namespace"))
|
1324
|
+
KubernetesPermissionCheckedDetails.add_member(:allowed, Shapes::ShapeRef.new(shape: Boolean, location_name: "allowed"))
|
1325
|
+
KubernetesPermissionCheckedDetails.struct_class = Types::KubernetesPermissionCheckedDetails
|
1326
|
+
|
1327
|
+
KubernetesRoleBindingDetails.add_member(:kind, Shapes::ShapeRef.new(shape: String, location_name: "kind"))
|
1328
|
+
KubernetesRoleBindingDetails.add_member(:name, Shapes::ShapeRef.new(shape: String, location_name: "name"))
|
1329
|
+
KubernetesRoleBindingDetails.add_member(:uid, Shapes::ShapeRef.new(shape: String, location_name: "uid"))
|
1330
|
+
KubernetesRoleBindingDetails.add_member(:role_ref_name, Shapes::ShapeRef.new(shape: String, location_name: "roleRefName"))
|
1331
|
+
KubernetesRoleBindingDetails.add_member(:role_ref_kind, Shapes::ShapeRef.new(shape: String, location_name: "roleRefKind"))
|
1332
|
+
KubernetesRoleBindingDetails.struct_class = Types::KubernetesRoleBindingDetails
|
1333
|
+
|
1334
|
+
KubernetesRoleDetails.add_member(:kind, Shapes::ShapeRef.new(shape: String, location_name: "kind"))
|
1335
|
+
KubernetesRoleDetails.add_member(:name, Shapes::ShapeRef.new(shape: String, location_name: "name"))
|
1336
|
+
KubernetesRoleDetails.add_member(:uid, Shapes::ShapeRef.new(shape: String, location_name: "uid"))
|
1337
|
+
KubernetesRoleDetails.struct_class = Types::KubernetesRoleDetails
|
1338
|
+
|
1264
1339
|
KubernetesUserDetails.add_member(:username, Shapes::ShapeRef.new(shape: String, location_name: "username"))
|
1265
1340
|
KubernetesUserDetails.add_member(:uid, Shapes::ShapeRef.new(shape: String, location_name: "uid"))
|
1266
1341
|
KubernetesUserDetails.add_member(:groups, Shapes::ShapeRef.new(shape: Groups, location_name: "groups"))
|
1267
1342
|
KubernetesUserDetails.add_member(:session_name, Shapes::ShapeRef.new(shape: SessionNameList, location_name: "sessionName"))
|
1343
|
+
KubernetesUserDetails.add_member(:impersonated_user, Shapes::ShapeRef.new(shape: ImpersonatedUser, location_name: "impersonatedUser"))
|
1268
1344
|
KubernetesUserDetails.struct_class = Types::KubernetesUserDetails
|
1269
1345
|
|
1270
1346
|
KubernetesWorkloadDetails.add_member(:name, Shapes::ShapeRef.new(shape: String, location_name: "name"))
|
@@ -1274,6 +1350,9 @@ module Aws::GuardDuty
|
|
1274
1350
|
KubernetesWorkloadDetails.add_member(:host_network, Shapes::ShapeRef.new(shape: Boolean, location_name: "hostNetwork"))
|
1275
1351
|
KubernetesWorkloadDetails.add_member(:containers, Shapes::ShapeRef.new(shape: Containers, location_name: "containers"))
|
1276
1352
|
KubernetesWorkloadDetails.add_member(:volumes, Shapes::ShapeRef.new(shape: Volumes, location_name: "volumes"))
|
1353
|
+
KubernetesWorkloadDetails.add_member(:service_account_name, Shapes::ShapeRef.new(shape: String, location_name: "serviceAccountName"))
|
1354
|
+
KubernetesWorkloadDetails.add_member(:host_ipc, Shapes::ShapeRef.new(shape: Boolean, location_name: "hostIPC"))
|
1355
|
+
KubernetesWorkloadDetails.add_member(:host_pid, Shapes::ShapeRef.new(shape: Boolean, location_name: "hostPID"))
|
1277
1356
|
KubernetesWorkloadDetails.struct_class = Types::KubernetesWorkloadDetails
|
1278
1357
|
|
1279
1358
|
LambdaDetails.add_member(:function_arn, Shapes::ShapeRef.new(shape: String, location_name: "functionArn"))
|
@@ -1507,6 +1586,11 @@ module Aws::GuardDuty
|
|
1507
1586
|
|
1508
1587
|
NotEquals.member = Shapes::ShapeRef.new(shape: String)
|
1509
1588
|
|
1589
|
+
ObservationTexts.member = Shapes::ShapeRef.new(shape: String)
|
1590
|
+
|
1591
|
+
Observations.add_member(:text, Shapes::ShapeRef.new(shape: ObservationTexts, location_name: "text"))
|
1592
|
+
Observations.struct_class = Types::Observations
|
1593
|
+
|
1510
1594
|
Organization.add_member(:asn, Shapes::ShapeRef.new(shape: String, location_name: "asn"))
|
1511
1595
|
Organization.add_member(:asn_org, Shapes::ShapeRef.new(shape: String, location_name: "asnOrg"))
|
1512
1596
|
Organization.add_member(:isp, Shapes::ShapeRef.new(shape: String, location_name: "isp"))
|
@@ -1799,6 +1883,7 @@ module Aws::GuardDuty
|
|
1799
1883
|
Scans.member = Shapes::ShapeRef.new(shape: Scan)
|
1800
1884
|
|
1801
1885
|
SecurityContext.add_member(:privileged, Shapes::ShapeRef.new(shape: Boolean, location_name: "privileged"))
|
1886
|
+
SecurityContext.add_member(:allow_privilege_escalation, Shapes::ShapeRef.new(shape: Boolean, location_name: "allowPrivilegeEscalation"))
|
1802
1887
|
SecurityContext.struct_class = Types::SecurityContext
|
1803
1888
|
|
1804
1889
|
SecurityGroup.add_member(:group_id, Shapes::ShapeRef.new(shape: String, location_name: "groupId"))
|
@@ -1821,6 +1906,7 @@ module Aws::GuardDuty
|
|
1821
1906
|
Service.add_member(:feature_name, Shapes::ShapeRef.new(shape: String, location_name: "featureName"))
|
1822
1907
|
Service.add_member(:ebs_volume_scan_details, Shapes::ShapeRef.new(shape: EbsVolumeScanDetails, location_name: "ebsVolumeScanDetails"))
|
1823
1908
|
Service.add_member(:runtime_details, Shapes::ShapeRef.new(shape: RuntimeDetails, location_name: "runtimeDetails"))
|
1909
|
+
Service.add_member(:detection, Shapes::ShapeRef.new(shape: Detection, location_name: "detection"))
|
1824
1910
|
Service.struct_class = Types::Service
|
1825
1911
|
|
1826
1912
|
ServiceAdditionalInfo.add_member(:value, Shapes::ShapeRef.new(shape: String, location_name: "value"))
|
@@ -230,6 +230,20 @@ module Aws::GuardDuty
|
|
230
230
|
# finding.
|
231
231
|
# @return [Types::RdsLoginAttemptAction]
|
232
232
|
#
|
233
|
+
# @!attribute [rw] kubernetes_permission_checked_details
|
234
|
+
# Information whether the user has the permission to use a specific
|
235
|
+
# Kubernetes API.
|
236
|
+
# @return [Types::KubernetesPermissionCheckedDetails]
|
237
|
+
#
|
238
|
+
# @!attribute [rw] kubernetes_role_binding_details
|
239
|
+
# Information about the role binding that grants the permission
|
240
|
+
# defined in a Kubernetes role.
|
241
|
+
# @return [Types::KubernetesRoleBindingDetails]
|
242
|
+
#
|
243
|
+
# @!attribute [rw] kubernetes_role_details
|
244
|
+
# Information about the Kubernetes role name and role type.
|
245
|
+
# @return [Types::KubernetesRoleDetails]
|
246
|
+
#
|
233
247
|
# @see http://docs.aws.amazon.com/goto/WebAPI/guardduty-2017-11-28/Action AWS API Documentation
|
234
248
|
#
|
235
249
|
class Action < Struct.new(
|
@@ -239,7 +253,10 @@ module Aws::GuardDuty
|
|
239
253
|
:network_connection_action,
|
240
254
|
:port_probe_action,
|
241
255
|
:kubernetes_api_call_action,
|
242
|
-
:rds_login_attempt_action
|
256
|
+
:rds_login_attempt_action,
|
257
|
+
:kubernetes_permission_checked_details,
|
258
|
+
:kubernetes_role_binding_details,
|
259
|
+
:kubernetes_role_details)
|
243
260
|
SENSITIVE = []
|
244
261
|
include Aws::Structure
|
245
262
|
end
|
@@ -315,6 +332,65 @@ module Aws::GuardDuty
|
|
315
332
|
include Aws::Structure
|
316
333
|
end
|
317
334
|
|
335
|
+
# Contains information about the anomalies.
|
336
|
+
#
|
337
|
+
# @!attribute [rw] profiles
|
338
|
+
# Information about the types of profiles.
|
339
|
+
# @return [Hash<String,Hash<String,Array<Types::AnomalyObject>>>]
|
340
|
+
#
|
341
|
+
# @!attribute [rw] unusual
|
342
|
+
# Information about the behavior of the anomalies.
|
343
|
+
# @return [Types::AnomalyUnusual]
|
344
|
+
#
|
345
|
+
# @see http://docs.aws.amazon.com/goto/WebAPI/guardduty-2017-11-28/Anomaly AWS API Documentation
|
346
|
+
#
|
347
|
+
class Anomaly < Struct.new(
|
348
|
+
:profiles,
|
349
|
+
:unusual)
|
350
|
+
SENSITIVE = []
|
351
|
+
include Aws::Structure
|
352
|
+
end
|
353
|
+
|
354
|
+
# Contains information about the unusual anomalies.
|
355
|
+
#
|
356
|
+
# @!attribute [rw] profile_type
|
357
|
+
# The type of behavior of the profile.
|
358
|
+
# @return [String]
|
359
|
+
#
|
360
|
+
# @!attribute [rw] profile_subtype
|
361
|
+
# The frequency of the anomaly.
|
362
|
+
# @return [String]
|
363
|
+
#
|
364
|
+
# @!attribute [rw] observations
|
365
|
+
# The recorded value.
|
366
|
+
# @return [Types::Observations]
|
367
|
+
#
|
368
|
+
# @see http://docs.aws.amazon.com/goto/WebAPI/guardduty-2017-11-28/AnomalyObject AWS API Documentation
|
369
|
+
#
|
370
|
+
class AnomalyObject < Struct.new(
|
371
|
+
:profile_type,
|
372
|
+
:profile_subtype,
|
373
|
+
:observations)
|
374
|
+
SENSITIVE = []
|
375
|
+
include Aws::Structure
|
376
|
+
end
|
377
|
+
|
378
|
+
# Contains information about the behavior of the anomaly that is new to
|
379
|
+
# GuardDuty.
|
380
|
+
#
|
381
|
+
# @!attribute [rw] behavior
|
382
|
+
# The behavior of the anomalous activity that caused GuardDuty to
|
383
|
+
# generate the finding.
|
384
|
+
# @return [Hash<String,Hash<String,Types::AnomalyObject>>]
|
385
|
+
#
|
386
|
+
# @see http://docs.aws.amazon.com/goto/WebAPI/guardduty-2017-11-28/AnomalyUnusual AWS API Documentation
|
387
|
+
#
|
388
|
+
class AnomalyUnusual < Struct.new(
|
389
|
+
:behavior)
|
390
|
+
SENSITIVE = []
|
391
|
+
include Aws::Structure
|
392
|
+
end
|
393
|
+
|
318
394
|
# @!attribute [rw] detector_id
|
319
395
|
# The ID of the detector that specifies the GuardDuty service whose
|
320
396
|
# findings you want to archive.
|
@@ -1116,6 +1192,8 @@ module Aws::GuardDuty
|
|
1116
1192
|
#
|
1117
1193
|
# * service.action.dnsRequestAction.domain
|
1118
1194
|
#
|
1195
|
+
# * service.action.dnsRequestAction.domainWithSuffix
|
1196
|
+
#
|
1119
1197
|
# * service.action.networkConnectionAction.blocked
|
1120
1198
|
#
|
1121
1199
|
# * service.action.networkConnectionAction.connectionDirection
|
@@ -1140,8 +1218,14 @@ module Aws::GuardDuty
|
|
1140
1218
|
#
|
1141
1219
|
# * service.action.kubernetesApiCallAction.remoteIpDetails.ipAddressV4
|
1142
1220
|
#
|
1221
|
+
# * service.action.kubernetesApiCallAction.namespace
|
1222
|
+
#
|
1223
|
+
# * service.action.kubernetesApiCallAction.remoteIpDetails.organization.asn
|
1224
|
+
#
|
1143
1225
|
# * service.action.kubernetesApiCallAction.requestUri
|
1144
1226
|
#
|
1227
|
+
# * service.action.kubernetesApiCallAction.statusCode
|
1228
|
+
#
|
1145
1229
|
# * service.action.networkConnectionAction.localIpDetails.ipAddressV4
|
1146
1230
|
#
|
1147
1231
|
# * service.action.networkConnectionAction.protocol
|
@@ -2076,6 +2160,21 @@ module Aws::GuardDuty
|
|
2076
2160
|
include Aws::Structure
|
2077
2161
|
end
|
2078
2162
|
|
2163
|
+
# Contains information about the detected behavior.
|
2164
|
+
#
|
2165
|
+
# @!attribute [rw] anomaly
|
2166
|
+
# The details about the anomalous activity that caused GuardDuty to
|
2167
|
+
# generate the finding.
|
2168
|
+
# @return [Types::Anomaly]
|
2169
|
+
#
|
2170
|
+
# @see http://docs.aws.amazon.com/goto/WebAPI/guardduty-2017-11-28/Detection AWS API Documentation
|
2171
|
+
#
|
2172
|
+
class Detection < Struct.new(
|
2173
|
+
:anomaly)
|
2174
|
+
SENSITIVE = []
|
2175
|
+
include Aws::Structure
|
2176
|
+
end
|
2177
|
+
|
2079
2178
|
# Information about the additional configuration for a feature in your
|
2080
2179
|
# GuardDuty account.
|
2081
2180
|
#
|
@@ -3460,6 +3559,25 @@ module Aws::GuardDuty
|
|
3460
3559
|
include Aws::Structure
|
3461
3560
|
end
|
3462
3561
|
|
3562
|
+
# Contains information about the impersonated user.
|
3563
|
+
#
|
3564
|
+
# @!attribute [rw] username
|
3565
|
+
# Information about the `username` that was being impersonated.
|
3566
|
+
# @return [String]
|
3567
|
+
#
|
3568
|
+
# @!attribute [rw] groups
|
3569
|
+
# The `group` to which the user name belongs.
|
3570
|
+
# @return [Array<String>]
|
3571
|
+
#
|
3572
|
+
# @see http://docs.aws.amazon.com/goto/WebAPI/guardduty-2017-11-28/ImpersonatedUser AWS API Documentation
|
3573
|
+
#
|
3574
|
+
class ImpersonatedUser < Struct.new(
|
3575
|
+
:username,
|
3576
|
+
:groups)
|
3577
|
+
SENSITIVE = []
|
3578
|
+
include Aws::Structure
|
3579
|
+
end
|
3580
|
+
|
3463
3581
|
# Contains information about the details of an instance.
|
3464
3582
|
#
|
3465
3583
|
# @!attribute [rw] availability_zone
|
@@ -3662,6 +3780,23 @@ module Aws::GuardDuty
|
|
3662
3780
|
# Parameters related to the Kubernetes API call action.
|
3663
3781
|
# @return [String]
|
3664
3782
|
#
|
3783
|
+
# @!attribute [rw] resource
|
3784
|
+
# The resource component in the Kubernetes API call action.
|
3785
|
+
# @return [String]
|
3786
|
+
#
|
3787
|
+
# @!attribute [rw] subresource
|
3788
|
+
# The name of the sub-resource in the Kubernetes API call action.
|
3789
|
+
# @return [String]
|
3790
|
+
#
|
3791
|
+
# @!attribute [rw] namespace
|
3792
|
+
# The name of the namespace where the Kubernetes API call action takes
|
3793
|
+
# place.
|
3794
|
+
# @return [String]
|
3795
|
+
#
|
3796
|
+
# @!attribute [rw] resource_name
|
3797
|
+
# The name of the resource in the Kubernetes API call action.
|
3798
|
+
# @return [String]
|
3799
|
+
#
|
3665
3800
|
# @see http://docs.aws.amazon.com/goto/WebAPI/guardduty-2017-11-28/KubernetesApiCallAction AWS API Documentation
|
3666
3801
|
#
|
3667
3802
|
class KubernetesApiCallAction < Struct.new(
|
@@ -3671,7 +3806,11 @@ module Aws::GuardDuty
|
|
3671
3806
|
:user_agent,
|
3672
3807
|
:remote_ip_details,
|
3673
3808
|
:status_code,
|
3674
|
-
:parameters
|
3809
|
+
:parameters,
|
3810
|
+
:resource,
|
3811
|
+
:subresource,
|
3812
|
+
:namespace,
|
3813
|
+
:resource_name)
|
3675
3814
|
SENSITIVE = []
|
3676
3815
|
include Aws::Structure
|
3677
3816
|
end
|
@@ -3772,6 +3911,102 @@ module Aws::GuardDuty
|
|
3772
3911
|
include Aws::Structure
|
3773
3912
|
end
|
3774
3913
|
|
3914
|
+
# Information about the Kubernetes API for which you check if you have
|
3915
|
+
# permission to call.
|
3916
|
+
#
|
3917
|
+
# @!attribute [rw] verb
|
3918
|
+
# The verb component of the Kubernetes API call. For example, when you
|
3919
|
+
# check whether or not you have the permission to call the `CreatePod`
|
3920
|
+
# API, the verb component will be `Create`.
|
3921
|
+
# @return [String]
|
3922
|
+
#
|
3923
|
+
# @!attribute [rw] resource
|
3924
|
+
# The Kubernetes resource with which your Kubernetes API call will
|
3925
|
+
# interact.
|
3926
|
+
# @return [String]
|
3927
|
+
#
|
3928
|
+
# @!attribute [rw] namespace
|
3929
|
+
# The namespace where the Kubernetes API action will take place.
|
3930
|
+
# @return [String]
|
3931
|
+
#
|
3932
|
+
# @!attribute [rw] allowed
|
3933
|
+
# Information whether the user has the permission to call the
|
3934
|
+
# Kubernetes API.
|
3935
|
+
# @return [Boolean]
|
3936
|
+
#
|
3937
|
+
# @see http://docs.aws.amazon.com/goto/WebAPI/guardduty-2017-11-28/KubernetesPermissionCheckedDetails AWS API Documentation
|
3938
|
+
#
|
3939
|
+
class KubernetesPermissionCheckedDetails < Struct.new(
|
3940
|
+
:verb,
|
3941
|
+
:resource,
|
3942
|
+
:namespace,
|
3943
|
+
:allowed)
|
3944
|
+
SENSITIVE = []
|
3945
|
+
include Aws::Structure
|
3946
|
+
end
|
3947
|
+
|
3948
|
+
# Contains information about the role binding that grants the permission
|
3949
|
+
# defined in a Kubernetes role.
|
3950
|
+
#
|
3951
|
+
# @!attribute [rw] kind
|
3952
|
+
# The kind of the role. For role binding, this value will be
|
3953
|
+
# `RoleBinding`.
|
3954
|
+
# @return [String]
|
3955
|
+
#
|
3956
|
+
# @!attribute [rw] name
|
3957
|
+
# The name of the `RoleBinding`.
|
3958
|
+
# @return [String]
|
3959
|
+
#
|
3960
|
+
# @!attribute [rw] uid
|
3961
|
+
# The unique identifier of the role binding.
|
3962
|
+
# @return [String]
|
3963
|
+
#
|
3964
|
+
# @!attribute [rw] role_ref_name
|
3965
|
+
# The name of the role being referenced. This must match the name of
|
3966
|
+
# the `Role` or `ClusterRole` that you want to bind to.
|
3967
|
+
# @return [String]
|
3968
|
+
#
|
3969
|
+
# @!attribute [rw] role_ref_kind
|
3970
|
+
# The type of the role being referenced. This could be either `Role`
|
3971
|
+
# or `ClusterRole`.
|
3972
|
+
# @return [String]
|
3973
|
+
#
|
3974
|
+
# @see http://docs.aws.amazon.com/goto/WebAPI/guardduty-2017-11-28/KubernetesRoleBindingDetails AWS API Documentation
|
3975
|
+
#
|
3976
|
+
class KubernetesRoleBindingDetails < Struct.new(
|
3977
|
+
:kind,
|
3978
|
+
:name,
|
3979
|
+
:uid,
|
3980
|
+
:role_ref_name,
|
3981
|
+
:role_ref_kind)
|
3982
|
+
SENSITIVE = []
|
3983
|
+
include Aws::Structure
|
3984
|
+
end
|
3985
|
+
|
3986
|
+
# Information about the Kubernetes role name and role type.
|
3987
|
+
#
|
3988
|
+
# @!attribute [rw] kind
|
3989
|
+
# The kind of role. For this API, the value of `kind` will be `Role`.
|
3990
|
+
# @return [String]
|
3991
|
+
#
|
3992
|
+
# @!attribute [rw] name
|
3993
|
+
# The name of the Kubernetes role.
|
3994
|
+
# @return [String]
|
3995
|
+
#
|
3996
|
+
# @!attribute [rw] uid
|
3997
|
+
# The unique identifier of the Kubernetes role name.
|
3998
|
+
# @return [String]
|
3999
|
+
#
|
4000
|
+
# @see http://docs.aws.amazon.com/goto/WebAPI/guardduty-2017-11-28/KubernetesRoleDetails AWS API Documentation
|
4001
|
+
#
|
4002
|
+
class KubernetesRoleDetails < Struct.new(
|
4003
|
+
:kind,
|
4004
|
+
:name,
|
4005
|
+
:uid)
|
4006
|
+
SENSITIVE = []
|
4007
|
+
include Aws::Structure
|
4008
|
+
end
|
4009
|
+
|
3775
4010
|
# Details about the Kubernetes user involved in a Kubernetes finding.
|
3776
4011
|
#
|
3777
4012
|
# @!attribute [rw] username
|
@@ -3791,13 +4026,18 @@ module Aws::GuardDuty
|
|
3791
4026
|
# are assigned to that role.
|
3792
4027
|
# @return [Array<String>]
|
3793
4028
|
#
|
4029
|
+
# @!attribute [rw] impersonated_user
|
4030
|
+
# Information about the impersonated user.
|
4031
|
+
# @return [Types::ImpersonatedUser]
|
4032
|
+
#
|
3794
4033
|
# @see http://docs.aws.amazon.com/goto/WebAPI/guardduty-2017-11-28/KubernetesUserDetails AWS API Documentation
|
3795
4034
|
#
|
3796
4035
|
class KubernetesUserDetails < Struct.new(
|
3797
4036
|
:username,
|
3798
4037
|
:uid,
|
3799
4038
|
:groups,
|
3800
|
-
:session_name
|
4039
|
+
:session_name,
|
4040
|
+
:impersonated_user)
|
3801
4041
|
SENSITIVE = []
|
3802
4042
|
include Aws::Structure
|
3803
4043
|
end
|
@@ -3834,6 +4074,19 @@ module Aws::GuardDuty
|
|
3834
4074
|
# Volumes used by the Kubernetes workload.
|
3835
4075
|
# @return [Array<Types::Volume>]
|
3836
4076
|
#
|
4077
|
+
# @!attribute [rw] service_account_name
|
4078
|
+
# The service account name that is associated with a Kubernetes
|
4079
|
+
# workload.
|
4080
|
+
# @return [String]
|
4081
|
+
#
|
4082
|
+
# @!attribute [rw] host_ipc
|
4083
|
+
# Whether the host IPC flag is enabled for the pods in the workload.
|
4084
|
+
# @return [Boolean]
|
4085
|
+
#
|
4086
|
+
# @!attribute [rw] host_pid
|
4087
|
+
# Whether the host PID flag is enabled for the pods in the workload.
|
4088
|
+
# @return [Boolean]
|
4089
|
+
#
|
3837
4090
|
# @see http://docs.aws.amazon.com/goto/WebAPI/guardduty-2017-11-28/KubernetesWorkloadDetails AWS API Documentation
|
3838
4091
|
#
|
3839
4092
|
class KubernetesWorkloadDetails < Struct.new(
|
@@ -3843,7 +4096,10 @@ module Aws::GuardDuty
|
|
3843
4096
|
:namespace,
|
3844
4097
|
:host_network,
|
3845
4098
|
:containers,
|
3846
|
-
:volumes
|
4099
|
+
:volumes,
|
4100
|
+
:service_account_name,
|
4101
|
+
:host_ipc,
|
4102
|
+
:host_pid)
|
3847
4103
|
SENSITIVE = []
|
3848
4104
|
include Aws::Structure
|
3849
4105
|
end
|
@@ -4395,6 +4651,11 @@ module Aws::GuardDuty
|
|
4395
4651
|
|
4396
4652
|
# @!attribute [rw] members
|
4397
4653
|
# A list of members.
|
4654
|
+
#
|
4655
|
+
# <note markdown="1"> The values for `email` and `invitedAt` are available only if the
|
4656
|
+
# member accounts are added by invitation.
|
4657
|
+
#
|
4658
|
+
# </note>
|
4398
4659
|
# @return [Array<Types::Member>]
|
4399
4660
|
#
|
4400
4661
|
# @!attribute [rw] next_token
|
@@ -4999,6 +5260,20 @@ module Aws::GuardDuty
|
|
4999
5260
|
include Aws::Structure
|
5000
5261
|
end
|
5001
5262
|
|
5263
|
+
# Contains information about the observed behavior.
|
5264
|
+
#
|
5265
|
+
# @!attribute [rw] text
|
5266
|
+
# The text that was unusual.
|
5267
|
+
# @return [Array<String>]
|
5268
|
+
#
|
5269
|
+
# @see http://docs.aws.amazon.com/goto/WebAPI/guardduty-2017-11-28/Observations AWS API Documentation
|
5270
|
+
#
|
5271
|
+
class Observations < Struct.new(
|
5272
|
+
:text)
|
5273
|
+
SENSITIVE = []
|
5274
|
+
include Aws::Structure
|
5275
|
+
end
|
5276
|
+
|
5002
5277
|
# Contains information about the ISP organization of the remote IP
|
5003
5278
|
# address.
|
5004
5279
|
#
|
@@ -6448,10 +6723,16 @@ module Aws::GuardDuty
|
|
6448
6723
|
# Whether the container is privileged.
|
6449
6724
|
# @return [Boolean]
|
6450
6725
|
#
|
6726
|
+
# @!attribute [rw] allow_privilege_escalation
|
6727
|
+
# Whether or not a container or a Kubernetes pod is allowed to gain
|
6728
|
+
# more privileges than its parent process.
|
6729
|
+
# @return [Boolean]
|
6730
|
+
#
|
6451
6731
|
# @see http://docs.aws.amazon.com/goto/WebAPI/guardduty-2017-11-28/SecurityContext AWS API Documentation
|
6452
6732
|
#
|
6453
6733
|
class SecurityContext < Struct.new(
|
6454
|
-
:privileged
|
6734
|
+
:privileged,
|
6735
|
+
:allow_privilege_escalation)
|
6455
6736
|
SENSITIVE = []
|
6456
6737
|
include Aws::Structure
|
6457
6738
|
end
|
@@ -6538,6 +6819,10 @@ module Aws::GuardDuty
|
|
6538
6819
|
# specific finding
|
6539
6820
|
# @return [Types::RuntimeDetails]
|
6540
6821
|
#
|
6822
|
+
# @!attribute [rw] detection
|
6823
|
+
# Contains information about the detected unusual behavior.
|
6824
|
+
# @return [Types::Detection]
|
6825
|
+
#
|
6541
6826
|
# @see http://docs.aws.amazon.com/goto/WebAPI/guardduty-2017-11-28/Service AWS API Documentation
|
6542
6827
|
#
|
6543
6828
|
class Service < Struct.new(
|
@@ -6554,7 +6839,8 @@ module Aws::GuardDuty
|
|
6554
6839
|
:additional_info,
|
6555
6840
|
:feature_name,
|
6556
6841
|
:ebs_volume_scan_details,
|
6557
|
-
:runtime_details
|
6842
|
+
:runtime_details,
|
6843
|
+
:detection)
|
6558
6844
|
SENSITIVE = []
|
6559
6845
|
include Aws::Structure
|
6560
6846
|
end
|
data/lib/aws-sdk-guardduty.rb
CHANGED
metadata
CHANGED
@@ -1,14 +1,14 @@
|
|
1
1
|
--- !ruby/object:Gem::Specification
|
2
2
|
name: aws-sdk-guardduty
|
3
3
|
version: !ruby/object:Gem::Version
|
4
|
-
version: 1.
|
4
|
+
version: 1.82.0
|
5
5
|
platform: ruby
|
6
6
|
authors:
|
7
7
|
- Amazon Web Services
|
8
8
|
autorequire:
|
9
9
|
bindir: bin
|
10
10
|
cert_chain: []
|
11
|
-
date: 2023-
|
11
|
+
date: 2023-11-08 00:00:00.000000000 Z
|
12
12
|
dependencies:
|
13
13
|
- !ruby/object:Gem::Dependency
|
14
14
|
name: aws-sdk-core
|