aws-sdk-guardduty 1.87.0 → 1.88.0
Sign up to get free protection for your applications and to get access to all the features.
- checksums.yaml +4 -4
- data/CHANGELOG.md +5 -0
- data/VERSION +1 -1
- data/lib/aws-sdk-guardduty/client.rb +89 -25
- data/lib/aws-sdk-guardduty/client_api.rb +5 -4
- data/lib/aws-sdk-guardduty/types.rb +53 -15
- data/lib/aws-sdk-guardduty.rb +1 -1
- data/sig/client.rbs +1 -1
- data/sig/types.rbs +9 -9
- metadata +2 -2
checksums.yaml
CHANGED
@@ -1,7 +1,7 @@
|
|
1
1
|
---
|
2
2
|
SHA256:
|
3
|
-
metadata.gz:
|
4
|
-
data.tar.gz:
|
3
|
+
metadata.gz: 28923545ec34a8af51b106dc0fa4c9326ef492d36070cabce028bc8bf14f4a19
|
4
|
+
data.tar.gz: df08c8678d87a34a7b1e04625ca036fa909ca87a34abc8152e1a306a18fd136d
|
5
5
|
SHA512:
|
6
|
-
metadata.gz:
|
7
|
-
data.tar.gz:
|
6
|
+
metadata.gz: 7c5d903c115033a8f8a5525dcbe9ee3efa96812cd12370c3a3ac4470a30100fe1150f487386d2d0d5306a2dc1e616cd54c07c2e0fb0472e612620a7a83ddd3c7
|
7
|
+
data.tar.gz: 51d1132514814621b33667a03d30491d69bfff524922af9ee22a1adcbf1c11f78c191b0d155ccb3db2a58474b1795c26d218543ccdf8d412daa12cd1a015cdaf
|
data/CHANGELOG.md
CHANGED
data/VERSION
CHANGED
@@ -1 +1 @@
|
|
1
|
-
1.
|
1
|
+
1.88.0
|
@@ -487,20 +487,35 @@ module Aws::GuardDuty
|
|
487
487
|
req.send_request(options)
|
488
488
|
end
|
489
489
|
|
490
|
-
# Creates a single
|
491
|
-
#
|
492
|
-
#
|
493
|
-
#
|
494
|
-
#
|
490
|
+
# Creates a single GuardDuty detector. A detector is a resource that
|
491
|
+
# represents the GuardDuty service. To start using GuardDuty, you must
|
492
|
+
# create a detector in each Region where you enable the service. You can
|
493
|
+
# have only one detector per account per Region. All data sources are
|
494
|
+
# enabled in a new detector by default.
|
495
|
+
#
|
496
|
+
# * When you don't specify any `features`, with an exception to
|
497
|
+
# `RUNTIME_MONITORING`, all the optional features are enabled by
|
498
|
+
# default.
|
499
|
+
#
|
500
|
+
# * When you specify some of the `features`, any feature that is not
|
501
|
+
# specified in the API call gets enabled by default, with an exception
|
502
|
+
# to `RUNTIME_MONITORING`.
|
503
|
+
#
|
504
|
+
# Specifying both EKS Runtime Monitoring (`EKS_RUNTIME_MONITORING`) and
|
505
|
+
# Runtime Monitoring (`RUNTIME_MONITORING`) will cause an error. You can
|
506
|
+
# add only one of these two features because Runtime Monitoring already
|
507
|
+
# includes the threat detection for Amazon EKS resources. For more
|
508
|
+
# information, see [Runtime Monitoring][1].
|
495
509
|
#
|
496
510
|
# There might be regional differences because some data sources might
|
497
511
|
# not be available in all the Amazon Web Services Regions where
|
498
512
|
# GuardDuty is presently supported. For more information, see [Regions
|
499
|
-
# and endpoints][
|
513
|
+
# and endpoints][2].
|
500
514
|
#
|
501
515
|
#
|
502
516
|
#
|
503
|
-
# [1]: https://docs.aws.amazon.com/guardduty/latest/ug/
|
517
|
+
# [1]: https://docs.aws.amazon.com/guardduty/latest/ug/runtime-monitoring.html
|
518
|
+
# [2]: https://docs.aws.amazon.com/guardduty/latest/ug/guardduty_regions.html
|
504
519
|
#
|
505
520
|
# @option params [required, Boolean] :enable
|
506
521
|
# A Boolean value that specifies whether the detector is to be enabled.
|
@@ -2527,6 +2542,14 @@ module Aws::GuardDuty
|
|
2527
2542
|
# Lists Amazon GuardDuty findings statistics for the specified detector
|
2528
2543
|
# ID.
|
2529
2544
|
#
|
2545
|
+
# There might be regional differences because some flags might not be
|
2546
|
+
# available in all the Regions where GuardDuty is currently supported.
|
2547
|
+
# For more information, see [Regions and endpoints][1].
|
2548
|
+
#
|
2549
|
+
#
|
2550
|
+
#
|
2551
|
+
# [1]: https://docs.aws.amazon.com/guardduty/latest/ug/guardduty_regions.html
|
2552
|
+
#
|
2530
2553
|
# @option params [required, String] :detector_id
|
2531
2554
|
# The ID of the detector that specifies the GuardDuty service whose
|
2532
2555
|
# findings' statistics you want to retrieve.
|
@@ -2831,12 +2854,12 @@ module Aws::GuardDuty
|
|
2831
2854
|
req.send_request(options)
|
2832
2855
|
end
|
2833
2856
|
|
2834
|
-
# Retrieves how many active member accounts
|
2835
|
-
#
|
2836
|
-
#
|
2857
|
+
# Retrieves how many active member accounts have each feature enabled
|
2858
|
+
# within GuardDuty. Only a delegated GuardDuty administrator of an
|
2859
|
+
# organization can run this API.
|
2837
2860
|
#
|
2838
|
-
# When you create a new
|
2839
|
-
#
|
2861
|
+
# When you create a new organization, it might take up to 24 hours to
|
2862
|
+
# generate the statistics for the entire organization.
|
2840
2863
|
#
|
2841
2864
|
# @return [Types::GetOrganizationStatisticsResponse] Returns a {Seahorse::Client::Response response} object which responds to the following methods:
|
2842
2865
|
#
|
@@ -3006,7 +3029,7 @@ module Aws::GuardDuty
|
|
3006
3029
|
# account_ids: ["AccountId"],
|
3007
3030
|
# data_sources: ["FLOW_LOGS"], # accepts FLOW_LOGS, CLOUD_TRAIL, DNS_LOGS, S3_LOGS, KUBERNETES_AUDIT_LOGS, EC2_MALWARE_SCAN
|
3008
3031
|
# resources: ["String"],
|
3009
|
-
# features: ["FLOW_LOGS"], # accepts FLOW_LOGS, CLOUD_TRAIL, DNS_LOGS, S3_DATA_EVENTS, EKS_AUDIT_LOGS, EBS_MALWARE_PROTECTION, RDS_LOGIN_EVENTS, LAMBDA_NETWORK_LOGS, EKS_RUNTIME_MONITORING, FARGATE_RUNTIME_MONITORING, EC2_RUNTIME_MONITORING
|
3032
|
+
# features: ["FLOW_LOGS"], # accepts FLOW_LOGS, CLOUD_TRAIL, DNS_LOGS, S3_DATA_EVENTS, EKS_AUDIT_LOGS, EBS_MALWARE_PROTECTION, RDS_LOGIN_EVENTS, LAMBDA_NETWORK_LOGS, EKS_RUNTIME_MONITORING, FARGATE_RUNTIME_MONITORING, EC2_RUNTIME_MONITORING, RDS_DBI_PROTECTION_PROVISIONED, RDS_DBI_PROTECTION_SERVERLESS
|
3010
3033
|
# },
|
3011
3034
|
# unit: "String",
|
3012
3035
|
# max_results: 1,
|
@@ -3020,7 +3043,7 @@ module Aws::GuardDuty
|
|
3020
3043
|
# resp.usage_statistics.sum_by_account[0].total.amount #=> String
|
3021
3044
|
# resp.usage_statistics.sum_by_account[0].total.unit #=> String
|
3022
3045
|
# resp.usage_statistics.top_accounts_by_feature #=> Array
|
3023
|
-
# resp.usage_statistics.top_accounts_by_feature[0].feature #=> String, one of "FLOW_LOGS", "CLOUD_TRAIL", "DNS_LOGS", "S3_DATA_EVENTS", "EKS_AUDIT_LOGS", "EBS_MALWARE_PROTECTION", "RDS_LOGIN_EVENTS", "LAMBDA_NETWORK_LOGS", "EKS_RUNTIME_MONITORING", "FARGATE_RUNTIME_MONITORING", "EC2_RUNTIME_MONITORING"
|
3046
|
+
# resp.usage_statistics.top_accounts_by_feature[0].feature #=> String, one of "FLOW_LOGS", "CLOUD_TRAIL", "DNS_LOGS", "S3_DATA_EVENTS", "EKS_AUDIT_LOGS", "EBS_MALWARE_PROTECTION", "RDS_LOGIN_EVENTS", "LAMBDA_NETWORK_LOGS", "EKS_RUNTIME_MONITORING", "FARGATE_RUNTIME_MONITORING", "EC2_RUNTIME_MONITORING", "RDS_DBI_PROTECTION_PROVISIONED", "RDS_DBI_PROTECTION_SERVERLESS"
|
3024
3047
|
# resp.usage_statistics.top_accounts_by_feature[0].accounts #=> Array
|
3025
3048
|
# resp.usage_statistics.top_accounts_by_feature[0].accounts[0].account_id #=> String
|
3026
3049
|
# resp.usage_statistics.top_accounts_by_feature[0].accounts[0].total.amount #=> String
|
@@ -3038,7 +3061,7 @@ module Aws::GuardDuty
|
|
3038
3061
|
# resp.usage_statistics.top_resources[0].total.amount #=> String
|
3039
3062
|
# resp.usage_statistics.top_resources[0].total.unit #=> String
|
3040
3063
|
# resp.usage_statistics.sum_by_feature #=> Array
|
3041
|
-
# resp.usage_statistics.sum_by_feature[0].feature #=> String, one of "FLOW_LOGS", "CLOUD_TRAIL", "DNS_LOGS", "S3_DATA_EVENTS", "EKS_AUDIT_LOGS", "EBS_MALWARE_PROTECTION", "RDS_LOGIN_EVENTS", "LAMBDA_NETWORK_LOGS", "EKS_RUNTIME_MONITORING", "FARGATE_RUNTIME_MONITORING", "EC2_RUNTIME_MONITORING"
|
3064
|
+
# resp.usage_statistics.sum_by_feature[0].feature #=> String, one of "FLOW_LOGS", "CLOUD_TRAIL", "DNS_LOGS", "S3_DATA_EVENTS", "EKS_AUDIT_LOGS", "EBS_MALWARE_PROTECTION", "RDS_LOGIN_EVENTS", "LAMBDA_NETWORK_LOGS", "EKS_RUNTIME_MONITORING", "FARGATE_RUNTIME_MONITORING", "EC2_RUNTIME_MONITORING", "RDS_DBI_PROTECTION_PROVISIONED", "RDS_DBI_PROTECTION_SERVERLESS"
|
3042
3065
|
# resp.usage_statistics.sum_by_feature[0].total.amount #=> String
|
3043
3066
|
# resp.usage_statistics.sum_by_feature[0].total.unit #=> String
|
3044
3067
|
# resp.next_token #=> String
|
@@ -3315,7 +3338,15 @@ module Aws::GuardDuty
|
|
3315
3338
|
req.send_request(options)
|
3316
3339
|
end
|
3317
3340
|
|
3318
|
-
# Lists
|
3341
|
+
# Lists GuardDuty findings for the specified detector ID.
|
3342
|
+
#
|
3343
|
+
# There might be regional differences because some flags might not be
|
3344
|
+
# available in all the Regions where GuardDuty is currently supported.
|
3345
|
+
# For more information, see [Regions and endpoints][1].
|
3346
|
+
#
|
3347
|
+
#
|
3348
|
+
#
|
3349
|
+
# [1]: https://docs.aws.amazon.com/guardduty/latest/ug/guardduty_regions.html
|
3319
3350
|
#
|
3320
3351
|
# @option params [required, String] :detector_id
|
3321
3352
|
# The ID of the detector that specifies the GuardDuty service whose
|
@@ -3836,11 +3867,16 @@ module Aws::GuardDuty
|
|
3836
3867
|
end
|
3837
3868
|
|
3838
3869
|
# Initiates the malware scan. Invoking this API will automatically
|
3839
|
-
# create the [Service-linked role
|
3870
|
+
# create the [Service-linked role][1] in the corresponding account.
|
3871
|
+
#
|
3872
|
+
# When the malware scan starts, you can use the associated scan ID to
|
3873
|
+
# track the status of the scan. For more information, see
|
3874
|
+
# [DescribeMalwareScans][2].
|
3840
3875
|
#
|
3841
3876
|
#
|
3842
3877
|
#
|
3843
3878
|
# [1]: https://docs.aws.amazon.com/guardduty/latest/ug/slr-permissions-malware-protection.html
|
3879
|
+
# [2]: https://docs.aws.amazon.com/guardduty/latest/APIReference/API_DescribeMalwareScans.html
|
3844
3880
|
#
|
3845
3881
|
# @option params [required, String] :resource_arn
|
3846
3882
|
# Amazon Resource Name (ARN) of the resource for which you invoked the
|
@@ -4033,16 +4069,23 @@ module Aws::GuardDuty
|
|
4033
4069
|
req.send_request(options)
|
4034
4070
|
end
|
4035
4071
|
|
4036
|
-
# Updates the
|
4072
|
+
# Updates the GuardDuty detector specified by the detector ID.
|
4073
|
+
#
|
4074
|
+
# Specifying both EKS Runtime Monitoring (`EKS_RUNTIME_MONITORING`) and
|
4075
|
+
# Runtime Monitoring (`RUNTIME_MONITORING`) will cause an error. You can
|
4076
|
+
# add only one of these two features because Runtime Monitoring already
|
4077
|
+
# includes the threat detection for Amazon EKS resources. For more
|
4078
|
+
# information, see [Runtime Monitoring][1].
|
4037
4079
|
#
|
4038
4080
|
# There might be regional differences because some data sources might
|
4039
4081
|
# not be available in all the Amazon Web Services Regions where
|
4040
4082
|
# GuardDuty is presently supported. For more information, see [Regions
|
4041
|
-
# and endpoints][
|
4083
|
+
# and endpoints][2].
|
4042
4084
|
#
|
4043
4085
|
#
|
4044
4086
|
#
|
4045
|
-
# [1]: https://docs.aws.amazon.com/guardduty/latest/ug/
|
4087
|
+
# [1]: https://docs.aws.amazon.com/guardduty/latest/ug/runtime-monitoring.html
|
4088
|
+
# [2]: https://docs.aws.amazon.com/guardduty/latest/ug/guardduty_regions.html
|
4046
4089
|
#
|
4047
4090
|
# @option params [required, String] :detector_id
|
4048
4091
|
# The unique ID of the detector to update.
|
@@ -4328,14 +4371,21 @@ module Aws::GuardDuty
|
|
4328
4371
|
|
4329
4372
|
# Contains information on member accounts to be updated.
|
4330
4373
|
#
|
4374
|
+
# Specifying both EKS Runtime Monitoring (`EKS_RUNTIME_MONITORING`) and
|
4375
|
+
# Runtime Monitoring (`RUNTIME_MONITORING`) will cause an error. You can
|
4376
|
+
# add only one of these two features because Runtime Monitoring already
|
4377
|
+
# includes the threat detection for Amazon EKS resources. For more
|
4378
|
+
# information, see [Runtime Monitoring][1].
|
4379
|
+
#
|
4331
4380
|
# There might be regional differences because some data sources might
|
4332
4381
|
# not be available in all the Amazon Web Services Regions where
|
4333
4382
|
# GuardDuty is presently supported. For more information, see [Regions
|
4334
|
-
# and endpoints][
|
4383
|
+
# and endpoints][2].
|
4335
4384
|
#
|
4336
4385
|
#
|
4337
4386
|
#
|
4338
|
-
# [1]: https://docs.aws.amazon.com/guardduty/latest/ug/
|
4387
|
+
# [1]: https://docs.aws.amazon.com/guardduty/latest/ug/runtime-monitoring.html
|
4388
|
+
# [2]: https://docs.aws.amazon.com/guardduty/latest/ug/guardduty_regions.html
|
4339
4389
|
#
|
4340
4390
|
# @option params [required, String] :detector_id
|
4341
4391
|
# The detector ID of the administrator account.
|
@@ -4407,14 +4457,21 @@ module Aws::GuardDuty
|
|
4407
4457
|
# values. You must provide a value for either
|
4408
4458
|
# `autoEnableOrganizationMembers` or `autoEnable`, but not both.
|
4409
4459
|
#
|
4460
|
+
# Specifying both EKS Runtime Monitoring (`EKS_RUNTIME_MONITORING`) and
|
4461
|
+
# Runtime Monitoring (`RUNTIME_MONITORING`) will cause an error. You can
|
4462
|
+
# add only one of these two features because Runtime Monitoring already
|
4463
|
+
# includes the threat detection for Amazon EKS resources. For more
|
4464
|
+
# information, see [Runtime Monitoring][1].
|
4465
|
+
#
|
4410
4466
|
# There might be regional differences because some data sources might
|
4411
4467
|
# not be available in all the Amazon Web Services Regions where
|
4412
4468
|
# GuardDuty is presently supported. For more information, see [Regions
|
4413
|
-
# and endpoints][
|
4469
|
+
# and endpoints][2].
|
4414
4470
|
#
|
4415
4471
|
#
|
4416
4472
|
#
|
4417
|
-
# [1]: https://docs.aws.amazon.com/guardduty/latest/ug/
|
4473
|
+
# [1]: https://docs.aws.amazon.com/guardduty/latest/ug/runtime-monitoring.html
|
4474
|
+
# [2]: https://docs.aws.amazon.com/guardduty/latest/ug/guardduty_regions.html
|
4418
4475
|
#
|
4419
4476
|
# @option params [required, String] :detector_id
|
4420
4477
|
# The ID of the detector that configures the delegated administrator.
|
@@ -4457,6 +4514,13 @@ module Aws::GuardDuty
|
|
4457
4514
|
# for any account in the organization. The administrator must manage
|
4458
4515
|
# GuardDuty for each account in the organization individually.
|
4459
4516
|
#
|
4517
|
+
# When you update the auto-enable setting from `ALL` or `NEW` to
|
4518
|
+
# `NONE`, this action doesn't disable the corresponding option for
|
4519
|
+
# your existing accounts. This configuration will apply to the new
|
4520
|
+
# accounts that join the organization. After you update the
|
4521
|
+
# auto-enable settings, no new account will have the corresponding
|
4522
|
+
# option as enabled.
|
4523
|
+
#
|
4460
4524
|
# @return [Struct] Returns an empty {Seahorse::Client::Response response}.
|
4461
4525
|
#
|
4462
4526
|
# @example Request syntax with placeholder values
|
@@ -4596,7 +4660,7 @@ module Aws::GuardDuty
|
|
4596
4660
|
params: params,
|
4597
4661
|
config: config)
|
4598
4662
|
context[:gem_name] = 'aws-sdk-guardduty'
|
4599
|
-
context[:gem_version] = '1.
|
4663
|
+
context[:gem_version] = '1.88.0'
|
4600
4664
|
Seahorse::Client::Request.new(handlers, context)
|
4601
4665
|
end
|
4602
4666
|
|
@@ -411,6 +411,7 @@ module Aws::GuardDuty
|
|
411
411
|
SecurityContext = Shapes::StructureShape.new(name: 'SecurityContext')
|
412
412
|
SecurityGroup = Shapes::StructureShape.new(name: 'SecurityGroup')
|
413
413
|
SecurityGroups = Shapes::ListShape.new(name: 'SecurityGroups')
|
414
|
+
SensitiveString = Shapes::StringShape.new(name: 'SensitiveString')
|
414
415
|
Service = Shapes::StructureShape.new(name: 'Service')
|
415
416
|
ServiceAdditionalInfo = Shapes::StructureShape.new(name: 'ServiceAdditionalInfo')
|
416
417
|
SessionNameList = Shapes::ListShape.new(name: 'SessionNameList')
|
@@ -1524,7 +1525,7 @@ module Aws::GuardDuty
|
|
1524
1525
|
ListThreatIntelSetsResponse.add_member(:next_token, Shapes::ShapeRef.new(shape: String, location_name: "nextToken"))
|
1525
1526
|
ListThreatIntelSetsResponse.struct_class = Types::ListThreatIntelSetsResponse
|
1526
1527
|
|
1527
|
-
LocalIpDetails.add_member(:ip_address_v4, Shapes::ShapeRef.new(shape:
|
1528
|
+
LocalIpDetails.add_member(:ip_address_v4, Shapes::ShapeRef.new(shape: SensitiveString, location_name: "ipAddressV4"))
|
1528
1529
|
LocalIpDetails.struct_class = Types::LocalIpDetails
|
1529
1530
|
|
1530
1531
|
LocalPortDetails.add_member(:port, Shapes::ShapeRef.new(shape: Integer, location_name: "port"))
|
@@ -1620,7 +1621,7 @@ module Aws::GuardDuty
|
|
1620
1621
|
NetworkInterface.add_member(:ipv_6_addresses, Shapes::ShapeRef.new(shape: Ipv6Addresses, location_name: "ipv6Addresses"))
|
1621
1622
|
NetworkInterface.add_member(:network_interface_id, Shapes::ShapeRef.new(shape: String, location_name: "networkInterfaceId"))
|
1622
1623
|
NetworkInterface.add_member(:private_dns_name, Shapes::ShapeRef.new(shape: String, location_name: "privateDnsName"))
|
1623
|
-
NetworkInterface.add_member(:private_ip_address, Shapes::ShapeRef.new(shape:
|
1624
|
+
NetworkInterface.add_member(:private_ip_address, Shapes::ShapeRef.new(shape: SensitiveString, location_name: "privateIpAddress"))
|
1624
1625
|
NetworkInterface.add_member(:private_ip_addresses, Shapes::ShapeRef.new(shape: PrivateIpAddresses, location_name: "privateIpAddresses"))
|
1625
1626
|
NetworkInterface.add_member(:public_dns_name, Shapes::ShapeRef.new(shape: String, location_name: "publicDnsName"))
|
1626
1627
|
NetworkInterface.add_member(:public_ip, Shapes::ShapeRef.new(shape: String, location_name: "publicIp"))
|
@@ -1759,7 +1760,7 @@ module Aws::GuardDuty
|
|
1759
1760
|
PortProbeDetails.member = Shapes::ShapeRef.new(shape: PortProbeDetail)
|
1760
1761
|
|
1761
1762
|
PrivateIpAddressDetails.add_member(:private_dns_name, Shapes::ShapeRef.new(shape: String, location_name: "privateDnsName"))
|
1762
|
-
PrivateIpAddressDetails.add_member(:private_ip_address, Shapes::ShapeRef.new(shape:
|
1763
|
+
PrivateIpAddressDetails.add_member(:private_ip_address, Shapes::ShapeRef.new(shape: SensitiveString, location_name: "privateIpAddress"))
|
1763
1764
|
PrivateIpAddressDetails.struct_class = Types::PrivateIpAddressDetails
|
1764
1765
|
|
1765
1766
|
PrivateIpAddresses.member = Shapes::ShapeRef.new(shape: PrivateIpAddressDetails)
|
@@ -1815,7 +1816,7 @@ module Aws::GuardDuty
|
|
1815
1816
|
RemoteIpDetails.add_member(:city, Shapes::ShapeRef.new(shape: City, location_name: "city"))
|
1816
1817
|
RemoteIpDetails.add_member(:country, Shapes::ShapeRef.new(shape: Country, location_name: "country"))
|
1817
1818
|
RemoteIpDetails.add_member(:geo_location, Shapes::ShapeRef.new(shape: GeoLocation, location_name: "geoLocation"))
|
1818
|
-
RemoteIpDetails.add_member(:ip_address_v4, Shapes::ShapeRef.new(shape:
|
1819
|
+
RemoteIpDetails.add_member(:ip_address_v4, Shapes::ShapeRef.new(shape: SensitiveString, location_name: "ipAddressV4"))
|
1819
1820
|
RemoteIpDetails.add_member(:organization, Shapes::ShapeRef.new(shape: Organization, location_name: "organization"))
|
1820
1821
|
RemoteIpDetails.struct_class = Types::RemoteIpDetails
|
1821
1822
|
|
@@ -151,7 +151,7 @@ module Aws::GuardDuty
|
|
151
151
|
class AccountDetail < Struct.new(
|
152
152
|
:account_id,
|
153
153
|
:email)
|
154
|
-
SENSITIVE = []
|
154
|
+
SENSITIVE = [:email]
|
155
155
|
include Aws::Structure
|
156
156
|
end
|
157
157
|
|
@@ -2172,20 +2172,31 @@ module Aws::GuardDuty
|
|
2172
2172
|
# @return [String]
|
2173
2173
|
#
|
2174
2174
|
# @!attribute [rw] auto_enable_organization_members
|
2175
|
-
# Indicates the auto-enablement configuration of GuardDuty
|
2176
|
-
# member accounts in the
|
2175
|
+
# Indicates the auto-enablement configuration of GuardDuty or any of
|
2176
|
+
# the corresponding protection plans for the member accounts in the
|
2177
|
+
# organization.
|
2177
2178
|
#
|
2178
2179
|
# * `NEW`: Indicates that when a new account joins the organization,
|
2179
|
-
# they will have GuardDuty
|
2180
|
+
# they will have GuardDuty or any of the corresponding protection
|
2181
|
+
# plans enabled automatically.
|
2180
2182
|
#
|
2181
2183
|
# * `ALL`: Indicates that all accounts in the organization have
|
2182
|
-
# GuardDuty
|
2183
|
-
#
|
2184
|
-
#
|
2184
|
+
# GuardDuty and any of the corresponding protection plans enabled
|
2185
|
+
# automatically. This includes `NEW` accounts that join the
|
2186
|
+
# organization and accounts that may have been suspended or removed
|
2187
|
+
# from the organization in GuardDuty.
|
2185
2188
|
#
|
2186
|
-
# * `NONE`: Indicates that GuardDuty
|
2187
|
-
#
|
2188
|
-
#
|
2189
|
+
# * `NONE`: Indicates that GuardDuty or any of the corresponding
|
2190
|
+
# protection plans will not be automatically enabled for any account
|
2191
|
+
# in the organization. The administrator must manage GuardDuty for
|
2192
|
+
# each account in the organization individually.
|
2193
|
+
#
|
2194
|
+
# When you update the auto-enable setting from `ALL` or `NEW` to
|
2195
|
+
# `NONE`, this action doesn't disable the corresponding option for
|
2196
|
+
# your existing accounts. This configuration will apply to the new
|
2197
|
+
# accounts that join the organization. After you update the
|
2198
|
+
# auto-enable settings, no new account will have the corresponding
|
2199
|
+
# option as enabled.
|
2189
2200
|
# @return [String]
|
2190
2201
|
#
|
2191
2202
|
# @see http://docs.aws.amazon.com/goto/WebAPI/guardduty-2017-11-28/DescribeOrganizationConfigurationResponse AWS API Documentation
|
@@ -2366,6 +2377,16 @@ module Aws::GuardDuty
|
|
2366
2377
|
|
2367
2378
|
# Contains information about a GuardDuty feature.
|
2368
2379
|
#
|
2380
|
+
# Specifying both EKS Runtime Monitoring (`EKS_RUNTIME_MONITORING`) and
|
2381
|
+
# Runtime Monitoring (`RUNTIME_MONITORING`) will cause an error. You can
|
2382
|
+
# add only one of these two features because Runtime Monitoring already
|
2383
|
+
# includes the threat detection for Amazon EKS resources. For more
|
2384
|
+
# information, see [Runtime Monitoring][1].
|
2385
|
+
#
|
2386
|
+
#
|
2387
|
+
#
|
2388
|
+
# [1]: https://docs.aws.amazon.com/guardduty/latest/ug/runtime-monitoring.html
|
2389
|
+
#
|
2369
2390
|
# @!attribute [rw] name
|
2370
2391
|
# The name of the feature.
|
2371
2392
|
# @return [String]
|
@@ -2390,6 +2411,16 @@ module Aws::GuardDuty
|
|
2390
2411
|
|
2391
2412
|
# Contains information about a GuardDuty feature.
|
2392
2413
|
#
|
2414
|
+
# Specifying both EKS Runtime Monitoring (`EKS_RUNTIME_MONITORING`) and
|
2415
|
+
# Runtime Monitoring (`RUNTIME_MONITORING`) will cause an error. You can
|
2416
|
+
# add only one of these two features because Runtime Monitoring already
|
2417
|
+
# includes the threat detection for Amazon EKS resources. For more
|
2418
|
+
# information, see [Runtime Monitoring][1].
|
2419
|
+
#
|
2420
|
+
#
|
2421
|
+
#
|
2422
|
+
# [1]: https://docs.aws.amazon.com/guardduty/latest/ug/runtime-monitoring.html
|
2423
|
+
#
|
2393
2424
|
# @!attribute [rw] name
|
2394
2425
|
# Indicates the name of the feature that can be enabled for the
|
2395
2426
|
# detector.
|
@@ -5029,7 +5060,7 @@ module Aws::GuardDuty
|
|
5029
5060
|
#
|
5030
5061
|
class LocalIpDetails < Struct.new(
|
5031
5062
|
:ip_address_v4)
|
5032
|
-
SENSITIVE = []
|
5063
|
+
SENSITIVE = [:ip_address_v4]
|
5033
5064
|
include Aws::Structure
|
5034
5065
|
end
|
5035
5066
|
|
@@ -5212,7 +5243,7 @@ module Aws::GuardDuty
|
|
5212
5243
|
:invited_at,
|
5213
5244
|
:updated_at,
|
5214
5245
|
:administrator_id)
|
5215
|
-
SENSITIVE = []
|
5246
|
+
SENSITIVE = [:email]
|
5216
5247
|
include Aws::Structure
|
5217
5248
|
end
|
5218
5249
|
|
@@ -5445,7 +5476,7 @@ module Aws::GuardDuty
|
|
5445
5476
|
:security_groups,
|
5446
5477
|
:subnet_id,
|
5447
5478
|
:vpc_id)
|
5448
|
-
SENSITIVE = []
|
5479
|
+
SENSITIVE = [:private_ip_address]
|
5449
5480
|
include Aws::Structure
|
5450
5481
|
end
|
5451
5482
|
|
@@ -6108,7 +6139,7 @@ module Aws::GuardDuty
|
|
6108
6139
|
class PrivateIpAddressDetails < Struct.new(
|
6109
6140
|
:private_dns_name,
|
6110
6141
|
:private_ip_address)
|
6111
|
-
SENSITIVE = []
|
6142
|
+
SENSITIVE = [:private_ip_address]
|
6112
6143
|
include Aws::Structure
|
6113
6144
|
end
|
6114
6145
|
|
@@ -6381,7 +6412,7 @@ module Aws::GuardDuty
|
|
6381
6412
|
:geo_location,
|
6382
6413
|
:ip_address_v4,
|
6383
6414
|
:organization)
|
6384
|
-
SENSITIVE = []
|
6415
|
+
SENSITIVE = [:ip_address_v4]
|
6385
6416
|
include Aws::Structure
|
6386
6417
|
end
|
6387
6418
|
|
@@ -7783,6 +7814,13 @@ module Aws::GuardDuty
|
|
7783
7814
|
# * `NONE`: Indicates that GuardDuty will not be automatically enabled
|
7784
7815
|
# for any account in the organization. The administrator must manage
|
7785
7816
|
# GuardDuty for each account in the organization individually.
|
7817
|
+
#
|
7818
|
+
# When you update the auto-enable setting from `ALL` or `NEW` to
|
7819
|
+
# `NONE`, this action doesn't disable the corresponding option for
|
7820
|
+
# your existing accounts. This configuration will apply to the new
|
7821
|
+
# accounts that join the organization. After you update the
|
7822
|
+
# auto-enable settings, no new account will have the corresponding
|
7823
|
+
# option as enabled.
|
7786
7824
|
# @return [String]
|
7787
7825
|
#
|
7788
7826
|
# @see http://docs.aws.amazon.com/goto/WebAPI/guardduty-2017-11-28/UpdateOrganizationConfigurationRequest AWS API Documentation
|
data/lib/aws-sdk-guardduty.rb
CHANGED
data/sig/client.rbs
CHANGED
@@ -663,7 +663,7 @@ module Aws
|
|
663
663
|
account_ids: Array[::String]?,
|
664
664
|
data_sources: Array[("FLOW_LOGS" | "CLOUD_TRAIL" | "DNS_LOGS" | "S3_LOGS" | "KUBERNETES_AUDIT_LOGS" | "EC2_MALWARE_SCAN")]?,
|
665
665
|
resources: Array[::String]?,
|
666
|
-
features: Array[("FLOW_LOGS" | "CLOUD_TRAIL" | "DNS_LOGS" | "S3_DATA_EVENTS" | "EKS_AUDIT_LOGS" | "EBS_MALWARE_PROTECTION" | "RDS_LOGIN_EVENTS" | "LAMBDA_NETWORK_LOGS" | "EKS_RUNTIME_MONITORING" | "FARGATE_RUNTIME_MONITORING" | "EC2_RUNTIME_MONITORING")]?
|
666
|
+
features: Array[("FLOW_LOGS" | "CLOUD_TRAIL" | "DNS_LOGS" | "S3_DATA_EVENTS" | "EKS_AUDIT_LOGS" | "EBS_MALWARE_PROTECTION" | "RDS_LOGIN_EVENTS" | "LAMBDA_NETWORK_LOGS" | "EKS_RUNTIME_MONITORING" | "FARGATE_RUNTIME_MONITORING" | "EC2_RUNTIME_MONITORING" | "RDS_DBI_PROTECTION_PROVISIONED" | "RDS_DBI_PROTECTION_SERVERLESS")]?
|
667
667
|
},
|
668
668
|
?unit: ::String,
|
669
669
|
?max_results: ::Integer,
|
data/sig/types.rbs
CHANGED
@@ -51,7 +51,7 @@ module Aws::GuardDuty
|
|
51
51
|
class AccountDetail
|
52
52
|
attr_accessor account_id: ::String
|
53
53
|
attr_accessor email: ::String
|
54
|
-
SENSITIVE: []
|
54
|
+
SENSITIVE: [:email]
|
55
55
|
end
|
56
56
|
|
57
57
|
class AccountFreeTrialInfo
|
@@ -1325,7 +1325,7 @@ module Aws::GuardDuty
|
|
1325
1325
|
|
1326
1326
|
class LocalIpDetails
|
1327
1327
|
attr_accessor ip_address_v4: ::String
|
1328
|
-
SENSITIVE: []
|
1328
|
+
SENSITIVE: [:ip_address_v4]
|
1329
1329
|
end
|
1330
1330
|
|
1331
1331
|
class LocalPortDetails
|
@@ -1375,7 +1375,7 @@ module Aws::GuardDuty
|
|
1375
1375
|
attr_accessor invited_at: ::String
|
1376
1376
|
attr_accessor updated_at: ::String
|
1377
1377
|
attr_accessor administrator_id: ::String
|
1378
|
-
SENSITIVE: []
|
1378
|
+
SENSITIVE: [:email]
|
1379
1379
|
end
|
1380
1380
|
|
1381
1381
|
class MemberAdditionalConfiguration
|
@@ -1435,7 +1435,7 @@ module Aws::GuardDuty
|
|
1435
1435
|
attr_accessor security_groups: ::Array[Types::SecurityGroup]
|
1436
1436
|
attr_accessor subnet_id: ::String
|
1437
1437
|
attr_accessor vpc_id: ::String
|
1438
|
-
SENSITIVE: []
|
1438
|
+
SENSITIVE: [:private_ip_address]
|
1439
1439
|
end
|
1440
1440
|
|
1441
1441
|
class Observations
|
@@ -1606,7 +1606,7 @@ module Aws::GuardDuty
|
|
1606
1606
|
class PrivateIpAddressDetails
|
1607
1607
|
attr_accessor private_dns_name: ::String
|
1608
1608
|
attr_accessor private_ip_address: ::String
|
1609
|
-
SENSITIVE: []
|
1609
|
+
SENSITIVE: [:private_ip_address]
|
1610
1610
|
end
|
1611
1611
|
|
1612
1612
|
class ProcessDetails
|
@@ -1675,7 +1675,7 @@ module Aws::GuardDuty
|
|
1675
1675
|
attr_accessor geo_location: Types::GeoLocation
|
1676
1676
|
attr_accessor ip_address_v4: ::String
|
1677
1677
|
attr_accessor organization: Types::Organization
|
1678
|
-
SENSITIVE: []
|
1678
|
+
SENSITIVE: [:ip_address_v4]
|
1679
1679
|
end
|
1680
1680
|
|
1681
1681
|
class RemotePortDetails
|
@@ -2106,7 +2106,7 @@ module Aws::GuardDuty
|
|
2106
2106
|
attr_accessor account_ids: ::Array[::String]
|
2107
2107
|
attr_accessor data_sources: ::Array[("FLOW_LOGS" | "CLOUD_TRAIL" | "DNS_LOGS" | "S3_LOGS" | "KUBERNETES_AUDIT_LOGS" | "EC2_MALWARE_SCAN")]
|
2108
2108
|
attr_accessor resources: ::Array[::String]
|
2109
|
-
attr_accessor features: ::Array[("FLOW_LOGS" | "CLOUD_TRAIL" | "DNS_LOGS" | "S3_DATA_EVENTS" | "EKS_AUDIT_LOGS" | "EBS_MALWARE_PROTECTION" | "RDS_LOGIN_EVENTS" | "LAMBDA_NETWORK_LOGS" | "EKS_RUNTIME_MONITORING" | "FARGATE_RUNTIME_MONITORING" | "EC2_RUNTIME_MONITORING")]
|
2109
|
+
attr_accessor features: ::Array[("FLOW_LOGS" | "CLOUD_TRAIL" | "DNS_LOGS" | "S3_DATA_EVENTS" | "EKS_AUDIT_LOGS" | "EBS_MALWARE_PROTECTION" | "RDS_LOGIN_EVENTS" | "LAMBDA_NETWORK_LOGS" | "EKS_RUNTIME_MONITORING" | "FARGATE_RUNTIME_MONITORING" | "EC2_RUNTIME_MONITORING" | "RDS_DBI_PROTECTION_PROVISIONED" | "RDS_DBI_PROTECTION_SERVERLESS")]
|
2110
2110
|
SENSITIVE: []
|
2111
2111
|
end
|
2112
2112
|
|
@@ -2117,7 +2117,7 @@ module Aws::GuardDuty
|
|
2117
2117
|
end
|
2118
2118
|
|
2119
2119
|
class UsageFeatureResult
|
2120
|
-
attr_accessor feature: ("FLOW_LOGS" | "CLOUD_TRAIL" | "DNS_LOGS" | "S3_DATA_EVENTS" | "EKS_AUDIT_LOGS" | "EBS_MALWARE_PROTECTION" | "RDS_LOGIN_EVENTS" | "LAMBDA_NETWORK_LOGS" | "EKS_RUNTIME_MONITORING" | "FARGATE_RUNTIME_MONITORING" | "EC2_RUNTIME_MONITORING")
|
2120
|
+
attr_accessor feature: ("FLOW_LOGS" | "CLOUD_TRAIL" | "DNS_LOGS" | "S3_DATA_EVENTS" | "EKS_AUDIT_LOGS" | "EBS_MALWARE_PROTECTION" | "RDS_LOGIN_EVENTS" | "LAMBDA_NETWORK_LOGS" | "EKS_RUNTIME_MONITORING" | "FARGATE_RUNTIME_MONITORING" | "EC2_RUNTIME_MONITORING" | "RDS_DBI_PROTECTION_PROVISIONED" | "RDS_DBI_PROTECTION_SERVERLESS")
|
2121
2121
|
attr_accessor total: Types::Total
|
2122
2122
|
SENSITIVE: []
|
2123
2123
|
end
|
@@ -2145,7 +2145,7 @@ module Aws::GuardDuty
|
|
2145
2145
|
end
|
2146
2146
|
|
2147
2147
|
class UsageTopAccountsResult
|
2148
|
-
attr_accessor feature: ("FLOW_LOGS" | "CLOUD_TRAIL" | "DNS_LOGS" | "S3_DATA_EVENTS" | "EKS_AUDIT_LOGS" | "EBS_MALWARE_PROTECTION" | "RDS_LOGIN_EVENTS" | "LAMBDA_NETWORK_LOGS" | "EKS_RUNTIME_MONITORING" | "FARGATE_RUNTIME_MONITORING" | "EC2_RUNTIME_MONITORING")
|
2148
|
+
attr_accessor feature: ("FLOW_LOGS" | "CLOUD_TRAIL" | "DNS_LOGS" | "S3_DATA_EVENTS" | "EKS_AUDIT_LOGS" | "EBS_MALWARE_PROTECTION" | "RDS_LOGIN_EVENTS" | "LAMBDA_NETWORK_LOGS" | "EKS_RUNTIME_MONITORING" | "FARGATE_RUNTIME_MONITORING" | "EC2_RUNTIME_MONITORING" | "RDS_DBI_PROTECTION_PROVISIONED" | "RDS_DBI_PROTECTION_SERVERLESS")
|
2149
2149
|
attr_accessor accounts: ::Array[Types::UsageTopAccountResult]
|
2150
2150
|
SENSITIVE: []
|
2151
2151
|
end
|
metadata
CHANGED
@@ -1,14 +1,14 @@
|
|
1
1
|
--- !ruby/object:Gem::Specification
|
2
2
|
name: aws-sdk-guardduty
|
3
3
|
version: !ruby/object:Gem::Version
|
4
|
-
version: 1.
|
4
|
+
version: 1.88.0
|
5
5
|
platform: ruby
|
6
6
|
authors:
|
7
7
|
- Amazon Web Services
|
8
8
|
autorequire:
|
9
9
|
bindir: bin
|
10
10
|
cert_chain: []
|
11
|
-
date: 2024-
|
11
|
+
date: 2024-03-08 00:00:00.000000000 Z
|
12
12
|
dependencies:
|
13
13
|
- !ruby/object:Gem::Dependency
|
14
14
|
name: aws-sdk-core
|