aws-sdk-guardduty 1.88.0 → 1.89.0
Sign up to get free protection for your applications and to get access to all the features.
- checksums.yaml +4 -4
- data/CHANGELOG.md +5 -0
- data/VERSION +1 -1
- data/lib/aws-sdk-guardduty/client.rb +49 -15
- data/lib/aws-sdk-guardduty/client_api.rb +6 -0
- data/lib/aws-sdk-guardduty/types.rb +40 -25
- data/lib/aws-sdk-guardduty.rb +1 -1
- data/sig/client.rbs +4 -4
- data/sig/types.rbs +13 -7
- metadata +2 -2
checksums.yaml
CHANGED
|
@@ -1,7 +1,7 @@
|
|
|
1
1
|
---
|
|
2
2
|
SHA256:
|
|
3
|
-
metadata.gz:
|
|
4
|
-
data.tar.gz:
|
|
3
|
+
metadata.gz: 17b65972af65719879325e2105b93afa525189c5851a519d735654f8282ea2fc
|
|
4
|
+
data.tar.gz: f1b9299e18b7f95e4cb643e3a655756b6decad4ecd590d69c452b86e9e27b6e5
|
|
5
5
|
SHA512:
|
|
6
|
-
metadata.gz:
|
|
7
|
-
data.tar.gz:
|
|
6
|
+
metadata.gz: 8a7139d8178d2b490ca621c8656b20c57043ade1900ddd37127ddf4a902b01967ed0bf0f4cbef0bde52fdcd8a9f4b5cba555fa3d43e81391ebb2668aef27bfd3
|
|
7
|
+
data.tar.gz: cecdd4ccab6555b0ab9befacf0c6db6ba16f6354a9c0db764712da5295356a5f3325eec2a02c06a00cc0409de687548dd5503bb87db0979fc4e08692ec8e132c
|
data/CHANGELOG.md
CHANGED
data/VERSION
CHANGED
|
@@ -1 +1 @@
|
|
|
1
|
-
1.
|
|
1
|
+
1.89.0
|
|
@@ -582,7 +582,7 @@ module Aws::GuardDuty
|
|
|
582
582
|
# status: "ENABLED", # accepts ENABLED, DISABLED
|
|
583
583
|
# additional_configuration: [
|
|
584
584
|
# {
|
|
585
|
-
# name: "EKS_ADDON_MANAGEMENT", # accepts EKS_ADDON_MANAGEMENT, ECS_FARGATE_AGENT_MANAGEMENT
|
|
585
|
+
# name: "EKS_ADDON_MANAGEMENT", # accepts EKS_ADDON_MANAGEMENT, ECS_FARGATE_AGENT_MANAGEMENT, EC2_AGENT_MANAGEMENT
|
|
586
586
|
# status: "ENABLED", # accepts ENABLED, DISABLED
|
|
587
587
|
# },
|
|
588
588
|
# ],
|
|
@@ -990,18 +990,19 @@ module Aws::GuardDuty
|
|
|
990
990
|
# existing auto-enable settings for your organization, see
|
|
991
991
|
# [DescribeOrganizationConfiguration][1].
|
|
992
992
|
#
|
|
993
|
-
# If you
|
|
994
|
-
#
|
|
995
|
-
# enabled in potential member accounts.
|
|
996
|
-
#
|
|
997
|
-
# If you disassociate a member from a GuardDuty delegated administrator,
|
|
998
|
-
# the member account details obtained from this API, including the
|
|
993
|
+
# If you disassociate a member account that was added by invitation, the
|
|
994
|
+
# member account details obtained from this API, including the
|
|
999
995
|
# associated email addresses, will be retained. This is done so that the
|
|
1000
996
|
# delegated administrator can invoke the [InviteMembers][2] API without
|
|
1001
997
|
# the need to invoke the CreateMembers API again. To remove the details
|
|
1002
998
|
# associated with a member account, the delegated administrator must
|
|
1003
999
|
# invoke the [DeleteMembers][3] API.
|
|
1004
1000
|
#
|
|
1001
|
+
# When the member accounts added through Organizations are later
|
|
1002
|
+
# disassociated, you (administrator) can't invite them by calling the
|
|
1003
|
+
# InviteMembers API. You can create an association with these member
|
|
1004
|
+
# accounts again only by calling the CreateMembers API.
|
|
1005
|
+
#
|
|
1005
1006
|
#
|
|
1006
1007
|
#
|
|
1007
1008
|
# [1]: https://docs.aws.amazon.com/guardduty/latest/APIReference/API_DescribeOrganizationConfiguration.html
|
|
@@ -1591,7 +1592,7 @@ module Aws::GuardDuty
|
|
|
1591
1592
|
# resp.features[0].name #=> String, one of "S3_DATA_EVENTS", "EKS_AUDIT_LOGS", "EBS_MALWARE_PROTECTION", "RDS_LOGIN_EVENTS", "EKS_RUNTIME_MONITORING", "LAMBDA_NETWORK_LOGS", "RUNTIME_MONITORING"
|
|
1592
1593
|
# resp.features[0].auto_enable #=> String, one of "NEW", "NONE", "ALL"
|
|
1593
1594
|
# resp.features[0].additional_configuration #=> Array
|
|
1594
|
-
# resp.features[0].additional_configuration[0].name #=> String, one of "EKS_ADDON_MANAGEMENT", "ECS_FARGATE_AGENT_MANAGEMENT"
|
|
1595
|
+
# resp.features[0].additional_configuration[0].name #=> String, one of "EKS_ADDON_MANAGEMENT", "ECS_FARGATE_AGENT_MANAGEMENT", "EC2_AGENT_MANAGEMENT"
|
|
1595
1596
|
# resp.features[0].additional_configuration[0].auto_enable #=> String, one of "NEW", "NONE", "ALL"
|
|
1596
1597
|
# resp.next_token #=> String
|
|
1597
1598
|
# resp.auto_enable_organization_members #=> String, one of "NEW", "ALL", "NONE"
|
|
@@ -1770,6 +1771,19 @@ module Aws::GuardDuty
|
|
|
1770
1771
|
# disassociate a member account before removing them from your
|
|
1771
1772
|
# organization.
|
|
1772
1773
|
#
|
|
1774
|
+
# If you disassociate a member account that was added by invitation, the
|
|
1775
|
+
# member account details obtained from this API, including the
|
|
1776
|
+
# associated email addresses, will be retained. This is done so that the
|
|
1777
|
+
# delegated administrator can invoke the [InviteMembers][2] API without
|
|
1778
|
+
# the need to invoke the CreateMembers API again. To remove the details
|
|
1779
|
+
# associated with a member account, the delegated administrator must
|
|
1780
|
+
# invoke the [DeleteMembers][3] API.
|
|
1781
|
+
#
|
|
1782
|
+
# When the member accounts added through Organizations are later
|
|
1783
|
+
# disassociated, you (administrator) can't invite them by calling the
|
|
1784
|
+
# InviteMembers API. You can create an association with these member
|
|
1785
|
+
# accounts again only by calling the CreateMembers API.
|
|
1786
|
+
#
|
|
1773
1787
|
#
|
|
1774
1788
|
#
|
|
1775
1789
|
# [1]: https://docs.aws.amazon.com/guardduty/latest/APIReference/API_CreateMembers.html
|
|
@@ -1979,7 +1993,7 @@ module Aws::GuardDuty
|
|
|
1979
1993
|
# resp.features[0].status #=> String, one of "ENABLED", "DISABLED"
|
|
1980
1994
|
# resp.features[0].updated_at #=> Time
|
|
1981
1995
|
# resp.features[0].additional_configuration #=> Array
|
|
1982
|
-
# resp.features[0].additional_configuration[0].name #=> String, one of "EKS_ADDON_MANAGEMENT", "ECS_FARGATE_AGENT_MANAGEMENT"
|
|
1996
|
+
# resp.features[0].additional_configuration[0].name #=> String, one of "EKS_ADDON_MANAGEMENT", "ECS_FARGATE_AGENT_MANAGEMENT", "EC2_AGENT_MANAGEMENT"
|
|
1983
1997
|
# resp.features[0].additional_configuration[0].status #=> String, one of "ENABLED", "DISABLED"
|
|
1984
1998
|
# resp.features[0].additional_configuration[0].updated_at #=> Time
|
|
1985
1999
|
#
|
|
@@ -2389,6 +2403,7 @@ module Aws::GuardDuty
|
|
|
2389
2403
|
# resp.findings[0].service.evidence.threat_intelligence_details[0].threat_list_name #=> String
|
|
2390
2404
|
# resp.findings[0].service.evidence.threat_intelligence_details[0].threat_names #=> Array
|
|
2391
2405
|
# resp.findings[0].service.evidence.threat_intelligence_details[0].threat_names[0] #=> String
|
|
2406
|
+
# resp.findings[0].service.evidence.threat_intelligence_details[0].threat_file_sha_256 #=> String
|
|
2392
2407
|
# resp.findings[0].service.archived #=> Boolean
|
|
2393
2408
|
# resp.findings[0].service.count #=> Integer
|
|
2394
2409
|
# resp.findings[0].service.detector_id #=> String
|
|
@@ -2512,6 +2527,11 @@ module Aws::GuardDuty
|
|
|
2512
2527
|
# resp.findings[0].service.runtime_details.context.iana_protocol_number #=> Integer
|
|
2513
2528
|
# resp.findings[0].service.runtime_details.context.memory_regions #=> Array
|
|
2514
2529
|
# resp.findings[0].service.runtime_details.context.memory_regions[0] #=> String
|
|
2530
|
+
# resp.findings[0].service.runtime_details.context.tool_name #=> String
|
|
2531
|
+
# resp.findings[0].service.runtime_details.context.tool_category #=> String
|
|
2532
|
+
# resp.findings[0].service.runtime_details.context.service_name #=> String
|
|
2533
|
+
# resp.findings[0].service.runtime_details.context.command_line_example #=> String
|
|
2534
|
+
# resp.findings[0].service.runtime_details.context.threat_file_path #=> String
|
|
2515
2535
|
# resp.findings[0].service.detection.anomaly.profiles #=> Hash
|
|
2516
2536
|
# resp.findings[0].service.detection.anomaly.profiles["String"] #=> Hash
|
|
2517
2537
|
# resp.findings[0].service.detection.anomaly.profiles["String"]["String"] #=> Array
|
|
@@ -2791,7 +2811,7 @@ module Aws::GuardDuty
|
|
|
2791
2811
|
# resp.member_data_source_configurations[0].features[0].status #=> String, one of "ENABLED", "DISABLED"
|
|
2792
2812
|
# resp.member_data_source_configurations[0].features[0].updated_at #=> Time
|
|
2793
2813
|
# resp.member_data_source_configurations[0].features[0].additional_configuration #=> Array
|
|
2794
|
-
# resp.member_data_source_configurations[0].features[0].additional_configuration[0].name #=> String, one of "EKS_ADDON_MANAGEMENT", "ECS_FARGATE_AGENT_MANAGEMENT"
|
|
2814
|
+
# resp.member_data_source_configurations[0].features[0].additional_configuration[0].name #=> String, one of "EKS_ADDON_MANAGEMENT", "ECS_FARGATE_AGENT_MANAGEMENT", "EC2_AGENT_MANAGEMENT"
|
|
2795
2815
|
# resp.member_data_source_configurations[0].features[0].additional_configuration[0].status #=> String, one of "ENABLED", "DISABLED"
|
|
2796
2816
|
# resp.member_data_source_configurations[0].features[0].additional_configuration[0].updated_at #=> Time
|
|
2797
2817
|
# resp.unprocessed_accounts #=> Array
|
|
@@ -2876,7 +2896,7 @@ module Aws::GuardDuty
|
|
|
2876
2896
|
# resp.organization_details.organization_statistics.count_by_feature[0].name #=> String, one of "S3_DATA_EVENTS", "EKS_AUDIT_LOGS", "EBS_MALWARE_PROTECTION", "RDS_LOGIN_EVENTS", "EKS_RUNTIME_MONITORING", "LAMBDA_NETWORK_LOGS", "RUNTIME_MONITORING"
|
|
2877
2897
|
# resp.organization_details.organization_statistics.count_by_feature[0].enabled_accounts_count #=> Integer
|
|
2878
2898
|
# resp.organization_details.organization_statistics.count_by_feature[0].additional_configuration #=> Array
|
|
2879
|
-
# resp.organization_details.organization_statistics.count_by_feature[0].additional_configuration[0].name #=> String, one of "EKS_ADDON_MANAGEMENT", "ECS_FARGATE_AGENT_MANAGEMENT"
|
|
2899
|
+
# resp.organization_details.organization_statistics.count_by_feature[0].additional_configuration[0].name #=> String, one of "EKS_ADDON_MANAGEMENT", "ECS_FARGATE_AGENT_MANAGEMENT", "EC2_AGENT_MANAGEMENT"
|
|
2880
2900
|
# resp.organization_details.organization_statistics.count_by_feature[0].additional_configuration[0].enabled_accounts_count #=> Integer
|
|
2881
2901
|
#
|
|
2882
2902
|
# @see http://docs.aws.amazon.com/goto/WebAPI/guardduty-2017-11-28/GetOrganizationStatistics AWS API Documentation
|
|
@@ -3099,6 +3119,19 @@ module Aws::GuardDuty
|
|
|
3099
3119
|
# associated with a member account, you must also invoke
|
|
3100
3120
|
# [DeleteMembers][5].
|
|
3101
3121
|
#
|
|
3122
|
+
# If you disassociate a member account that was added by invitation, the
|
|
3123
|
+
# member account details obtained from this API, including the
|
|
3124
|
+
# associated email addresses, will be retained. This is done so that the
|
|
3125
|
+
# delegated administrator can invoke the [InviteMembers][6] API without
|
|
3126
|
+
# the need to invoke the CreateMembers API again. To remove the details
|
|
3127
|
+
# associated with a member account, the delegated administrator must
|
|
3128
|
+
# invoke the [DeleteMembers][5] API.
|
|
3129
|
+
#
|
|
3130
|
+
# When the member accounts added through Organizations are later
|
|
3131
|
+
# disassociated, you (administrator) can't invite them by calling the
|
|
3132
|
+
# InviteMembers API. You can create an association with these member
|
|
3133
|
+
# accounts again only by calling the CreateMembers API.
|
|
3134
|
+
#
|
|
3102
3135
|
#
|
|
3103
3136
|
#
|
|
3104
3137
|
# [1]: https://docs.aws.amazon.com/guardduty/latest/ug/guardduty_organizations.html
|
|
@@ -3106,6 +3139,7 @@ module Aws::GuardDuty
|
|
|
3106
3139
|
# [3]: https://docs.aws.amazon.com/guardduty/latest/APIReference/API_DisassociateMembers.html
|
|
3107
3140
|
# [4]: https://docs.aws.amazon.com/guardduty/latest/APIReference/API_CreateMembers.html
|
|
3108
3141
|
# [5]: https://docs.aws.amazon.com/guardduty/latest/APIReference/API_DeleteMembers.html
|
|
3142
|
+
# [6]: https://docs.aws.amazon.com/guardduty/latest/APIReference/API_InviteMembers.html
|
|
3109
3143
|
#
|
|
3110
3144
|
# @option params [required, String] :detector_id
|
|
3111
3145
|
# The unique ID of the detector of the GuardDuty account that you want
|
|
@@ -4141,7 +4175,7 @@ module Aws::GuardDuty
|
|
|
4141
4175
|
# status: "ENABLED", # accepts ENABLED, DISABLED
|
|
4142
4176
|
# additional_configuration: [
|
|
4143
4177
|
# {
|
|
4144
|
-
# name: "EKS_ADDON_MANAGEMENT", # accepts EKS_ADDON_MANAGEMENT, ECS_FARGATE_AGENT_MANAGEMENT
|
|
4178
|
+
# name: "EKS_ADDON_MANAGEMENT", # accepts EKS_ADDON_MANAGEMENT, ECS_FARGATE_AGENT_MANAGEMENT, EC2_AGENT_MANAGEMENT
|
|
4145
4179
|
# status: "ENABLED", # accepts ENABLED, DISABLED
|
|
4146
4180
|
# },
|
|
4147
4181
|
# ],
|
|
@@ -4430,7 +4464,7 @@ module Aws::GuardDuty
|
|
|
4430
4464
|
# status: "ENABLED", # accepts ENABLED, DISABLED
|
|
4431
4465
|
# additional_configuration: [
|
|
4432
4466
|
# {
|
|
4433
|
-
# name: "EKS_ADDON_MANAGEMENT", # accepts EKS_ADDON_MANAGEMENT, ECS_FARGATE_AGENT_MANAGEMENT
|
|
4467
|
+
# name: "EKS_ADDON_MANAGEMENT", # accepts EKS_ADDON_MANAGEMENT, ECS_FARGATE_AGENT_MANAGEMENT, EC2_AGENT_MANAGEMENT
|
|
4434
4468
|
# status: "ENABLED", # accepts ENABLED, DISABLED
|
|
4435
4469
|
# },
|
|
4436
4470
|
# ],
|
|
@@ -4551,7 +4585,7 @@ module Aws::GuardDuty
|
|
|
4551
4585
|
# auto_enable: "NEW", # accepts NEW, NONE, ALL
|
|
4552
4586
|
# additional_configuration: [
|
|
4553
4587
|
# {
|
|
4554
|
-
# name: "EKS_ADDON_MANAGEMENT", # accepts EKS_ADDON_MANAGEMENT, ECS_FARGATE_AGENT_MANAGEMENT
|
|
4588
|
+
# name: "EKS_ADDON_MANAGEMENT", # accepts EKS_ADDON_MANAGEMENT, ECS_FARGATE_AGENT_MANAGEMENT, EC2_AGENT_MANAGEMENT
|
|
4555
4589
|
# auto_enable: "NEW", # accepts NEW, NONE, ALL
|
|
4556
4590
|
# },
|
|
4557
4591
|
# ],
|
|
@@ -4660,7 +4694,7 @@ module Aws::GuardDuty
|
|
|
4660
4694
|
params: params,
|
|
4661
4695
|
config: config)
|
|
4662
4696
|
context[:gem_name] = 'aws-sdk-guardduty'
|
|
4663
|
-
context[:gem_version] = '1.
|
|
4697
|
+
context[:gem_version] = '1.89.0'
|
|
4664
4698
|
Seahorse::Client::Request.new(handlers, context)
|
|
4665
4699
|
end
|
|
4666
4700
|
|
|
@@ -1863,6 +1863,11 @@ module Aws::GuardDuty
|
|
|
1863
1863
|
RuntimeContext.add_member(:address_family, Shapes::ShapeRef.new(shape: String, location_name: "addressFamily"))
|
|
1864
1864
|
RuntimeContext.add_member(:iana_protocol_number, Shapes::ShapeRef.new(shape: Integer, location_name: "ianaProtocolNumber"))
|
|
1865
1865
|
RuntimeContext.add_member(:memory_regions, Shapes::ShapeRef.new(shape: MemoryRegionsList, location_name: "memoryRegions"))
|
|
1866
|
+
RuntimeContext.add_member(:tool_name, Shapes::ShapeRef.new(shape: String, location_name: "toolName"))
|
|
1867
|
+
RuntimeContext.add_member(:tool_category, Shapes::ShapeRef.new(shape: String, location_name: "toolCategory"))
|
|
1868
|
+
RuntimeContext.add_member(:service_name, Shapes::ShapeRef.new(shape: String, location_name: "serviceName"))
|
|
1869
|
+
RuntimeContext.add_member(:command_line_example, Shapes::ShapeRef.new(shape: String, location_name: "commandLineExample"))
|
|
1870
|
+
RuntimeContext.add_member(:threat_file_path, Shapes::ShapeRef.new(shape: String, location_name: "threatFilePath"))
|
|
1866
1871
|
RuntimeContext.struct_class = Types::RuntimeContext
|
|
1867
1872
|
|
|
1868
1873
|
RuntimeDetails.add_member(:process, Shapes::ShapeRef.new(shape: ProcessDetails, location_name: "process"))
|
|
@@ -2044,6 +2049,7 @@ module Aws::GuardDuty
|
|
|
2044
2049
|
|
|
2045
2050
|
ThreatIntelligenceDetail.add_member(:threat_list_name, Shapes::ShapeRef.new(shape: String, location_name: "threatListName"))
|
|
2046
2051
|
ThreatIntelligenceDetail.add_member(:threat_names, Shapes::ShapeRef.new(shape: ThreatNames, location_name: "threatNames"))
|
|
2052
|
+
ThreatIntelligenceDetail.add_member(:threat_file_sha_256, Shapes::ShapeRef.new(shape: String, location_name: "threatFileSha256"))
|
|
2047
2053
|
ThreatIntelligenceDetail.struct_class = Types::ThreatIntelligenceDetail
|
|
2048
2054
|
|
|
2049
2055
|
ThreatIntelligenceDetails.member = Shapes::ShapeRef.new(shape: ThreatIntelligenceDetail)
|
|
@@ -808,20 +808,9 @@ module Aws::GuardDuty
|
|
|
808
808
|
include Aws::Structure
|
|
809
809
|
end
|
|
810
810
|
|
|
811
|
-
# <note markdown="1"> This API is also used when you use GuardDuty Runtime Monitoring for
|
|
812
|
-
# your Amazon EC2 instances (currently in preview release) and is
|
|
813
|
-
# subject to change. The use of this API is subject to Section 2 of the
|
|
814
|
-
# [Amazon Web Services Service Terms][1] ("Betas and Previews").
|
|
815
|
-
#
|
|
816
|
-
# </note>
|
|
817
|
-
#
|
|
818
811
|
# Contains information about the Amazon EC2 instance runtime coverage
|
|
819
812
|
# details.
|
|
820
813
|
#
|
|
821
|
-
#
|
|
822
|
-
#
|
|
823
|
-
# [1]: http://aws.amazon.com/service-terms/
|
|
824
|
-
#
|
|
825
814
|
# @!attribute [rw] instance_id
|
|
826
815
|
# The Amazon EC2 instance ID.
|
|
827
816
|
# @return [String]
|
|
@@ -1062,19 +1051,8 @@ module Aws::GuardDuty
|
|
|
1062
1051
|
# @return [Types::CoverageEcsClusterDetails]
|
|
1063
1052
|
#
|
|
1064
1053
|
# @!attribute [rw] ec2_instance_details
|
|
1065
|
-
# <note markdown="1"> This API is also used when you use GuardDuty Runtime Monitoring for
|
|
1066
|
-
# your Amazon EC2 instances (currently in preview release) and is
|
|
1067
|
-
# subject to change. The use of this API is subject to Section 2 of
|
|
1068
|
-
# the [Amazon Web Services Service Terms][1] ("Betas and Previews").
|
|
1069
|
-
#
|
|
1070
|
-
# </note>
|
|
1071
|
-
#
|
|
1072
1054
|
# Information about the Amazon EC2 instance assessed for runtime
|
|
1073
1055
|
# coverage.
|
|
1074
|
-
#
|
|
1075
|
-
#
|
|
1076
|
-
#
|
|
1077
|
-
# [1]: http://aws.amazon.com/service-terms/
|
|
1078
1056
|
# @return [Types::CoverageEc2InstanceDetails]
|
|
1079
1057
|
#
|
|
1080
1058
|
# @see http://docs.aws.amazon.com/goto/WebAPI/guardduty-2017-11-28/CoverageResourceDetails AWS API Documentation
|
|
@@ -2549,7 +2527,12 @@ module Aws::GuardDuty
|
|
|
2549
2527
|
#
|
|
2550
2528
|
# @!attribute [rw] domain_with_suffix
|
|
2551
2529
|
# The second and top level domain involved in the activity that
|
|
2552
|
-
# prompted GuardDuty to generate this finding.
|
|
2530
|
+
# potentially prompted GuardDuty to generate this finding. For a list
|
|
2531
|
+
# of top-level and second-level domains, see [public suffix list][1].
|
|
2532
|
+
#
|
|
2533
|
+
#
|
|
2534
|
+
#
|
|
2535
|
+
# [1]: https://publicsuffix.org/
|
|
2553
2536
|
# @return [String]
|
|
2554
2537
|
#
|
|
2555
2538
|
# @see http://docs.aws.amazon.com/goto/WebAPI/guardduty-2017-11-28/DnsRequestAction AWS API Documentation
|
|
@@ -6617,6 +6600,28 @@ module Aws::GuardDuty
|
|
|
6617
6600
|
# heap.
|
|
6618
6601
|
# @return [Array<String>]
|
|
6619
6602
|
#
|
|
6603
|
+
# @!attribute [rw] tool_name
|
|
6604
|
+
# Name of the potentially suspicious tool.
|
|
6605
|
+
# @return [String]
|
|
6606
|
+
#
|
|
6607
|
+
# @!attribute [rw] tool_category
|
|
6608
|
+
# Category that the tool belongs to. Some of the examples are Backdoor
|
|
6609
|
+
# Tool, Pentest Tool, Network Scanner, and Network Sniffer.
|
|
6610
|
+
# @return [String]
|
|
6611
|
+
#
|
|
6612
|
+
# @!attribute [rw] service_name
|
|
6613
|
+
# Name of the security service that has been potentially disabled.
|
|
6614
|
+
# @return [String]
|
|
6615
|
+
#
|
|
6616
|
+
# @!attribute [rw] command_line_example
|
|
6617
|
+
# Example of the command line involved in the suspicious activity.
|
|
6618
|
+
# @return [String]
|
|
6619
|
+
#
|
|
6620
|
+
# @!attribute [rw] threat_file_path
|
|
6621
|
+
# The suspicious file path for which the threat intelligence details
|
|
6622
|
+
# were found.
|
|
6623
|
+
# @return [String]
|
|
6624
|
+
#
|
|
6620
6625
|
# @see http://docs.aws.amazon.com/goto/WebAPI/guardduty-2017-11-28/RuntimeContext AWS API Documentation
|
|
6621
6626
|
#
|
|
6622
6627
|
class RuntimeContext < Struct.new(
|
|
@@ -6639,7 +6644,12 @@ module Aws::GuardDuty
|
|
|
6639
6644
|
:target_process,
|
|
6640
6645
|
:address_family,
|
|
6641
6646
|
:iana_protocol_number,
|
|
6642
|
-
:memory_regions
|
|
6647
|
+
:memory_regions,
|
|
6648
|
+
:tool_name,
|
|
6649
|
+
:tool_category,
|
|
6650
|
+
:service_name,
|
|
6651
|
+
:command_line_example,
|
|
6652
|
+
:threat_file_path)
|
|
6643
6653
|
SENSITIVE = []
|
|
6644
6654
|
include Aws::Structure
|
|
6645
6655
|
end
|
|
@@ -7388,11 +7398,16 @@ module Aws::GuardDuty
|
|
|
7388
7398
|
# triggered the finding.
|
|
7389
7399
|
# @return [Array<String>]
|
|
7390
7400
|
#
|
|
7401
|
+
# @!attribute [rw] threat_file_sha_256
|
|
7402
|
+
# SHA256 of the file that generated the finding.
|
|
7403
|
+
# @return [String]
|
|
7404
|
+
#
|
|
7391
7405
|
# @see http://docs.aws.amazon.com/goto/WebAPI/guardduty-2017-11-28/ThreatIntelligenceDetail AWS API Documentation
|
|
7392
7406
|
#
|
|
7393
7407
|
class ThreatIntelligenceDetail < Struct.new(
|
|
7394
7408
|
:threat_list_name,
|
|
7395
|
-
:threat_names
|
|
7409
|
+
:threat_names,
|
|
7410
|
+
:threat_file_sha_256)
|
|
7396
7411
|
SENSITIVE = []
|
|
7397
7412
|
include Aws::Structure
|
|
7398
7413
|
end
|
data/lib/aws-sdk-guardduty.rb
CHANGED
data/sig/client.rbs
CHANGED
|
@@ -136,7 +136,7 @@ module Aws
|
|
|
136
136
|
status: ("ENABLED" | "DISABLED")?,
|
|
137
137
|
additional_configuration: Array[
|
|
138
138
|
{
|
|
139
|
-
name: ("EKS_ADDON_MANAGEMENT" | "ECS_FARGATE_AGENT_MANAGEMENT")?,
|
|
139
|
+
name: ("EKS_ADDON_MANAGEMENT" | "ECS_FARGATE_AGENT_MANAGEMENT" | "EC2_AGENT_MANAGEMENT")?,
|
|
140
140
|
status: ("ENABLED" | "DISABLED")?
|
|
141
141
|
},
|
|
142
142
|
]?
|
|
@@ -948,7 +948,7 @@ module Aws
|
|
|
948
948
|
status: ("ENABLED" | "DISABLED")?,
|
|
949
949
|
additional_configuration: Array[
|
|
950
950
|
{
|
|
951
|
-
name: ("EKS_ADDON_MANAGEMENT" | "ECS_FARGATE_AGENT_MANAGEMENT")?,
|
|
951
|
+
name: ("EKS_ADDON_MANAGEMENT" | "ECS_FARGATE_AGENT_MANAGEMENT" | "EC2_AGENT_MANAGEMENT")?,
|
|
952
952
|
status: ("ENABLED" | "DISABLED")?
|
|
953
953
|
},
|
|
954
954
|
]?
|
|
@@ -1069,7 +1069,7 @@ module Aws
|
|
|
1069
1069
|
status: ("ENABLED" | "DISABLED")?,
|
|
1070
1070
|
additional_configuration: Array[
|
|
1071
1071
|
{
|
|
1072
|
-
name: ("EKS_ADDON_MANAGEMENT" | "ECS_FARGATE_AGENT_MANAGEMENT")?,
|
|
1072
|
+
name: ("EKS_ADDON_MANAGEMENT" | "ECS_FARGATE_AGENT_MANAGEMENT" | "EC2_AGENT_MANAGEMENT")?,
|
|
1073
1073
|
status: ("ENABLED" | "DISABLED")?
|
|
1074
1074
|
},
|
|
1075
1075
|
]?
|
|
@@ -1108,7 +1108,7 @@ module Aws
|
|
|
1108
1108
|
auto_enable: ("NEW" | "NONE" | "ALL")?,
|
|
1109
1109
|
additional_configuration: Array[
|
|
1110
1110
|
{
|
|
1111
|
-
name: ("EKS_ADDON_MANAGEMENT" | "ECS_FARGATE_AGENT_MANAGEMENT")?,
|
|
1111
|
+
name: ("EKS_ADDON_MANAGEMENT" | "ECS_FARGATE_AGENT_MANAGEMENT" | "EC2_AGENT_MANAGEMENT")?,
|
|
1112
1112
|
auto_enable: ("NEW" | "NONE" | "ALL")?
|
|
1113
1113
|
},
|
|
1114
1114
|
]?
|
data/sig/types.rbs
CHANGED
|
@@ -582,13 +582,13 @@ module Aws::GuardDuty
|
|
|
582
582
|
end
|
|
583
583
|
|
|
584
584
|
class DetectorAdditionalConfiguration
|
|
585
|
-
attr_accessor name: ("EKS_ADDON_MANAGEMENT" | "ECS_FARGATE_AGENT_MANAGEMENT")
|
|
585
|
+
attr_accessor name: ("EKS_ADDON_MANAGEMENT" | "ECS_FARGATE_AGENT_MANAGEMENT" | "EC2_AGENT_MANAGEMENT")
|
|
586
586
|
attr_accessor status: ("ENABLED" | "DISABLED")
|
|
587
587
|
SENSITIVE: []
|
|
588
588
|
end
|
|
589
589
|
|
|
590
590
|
class DetectorAdditionalConfigurationResult
|
|
591
|
-
attr_accessor name: ("EKS_ADDON_MANAGEMENT" | "ECS_FARGATE_AGENT_MANAGEMENT")
|
|
591
|
+
attr_accessor name: ("EKS_ADDON_MANAGEMENT" | "ECS_FARGATE_AGENT_MANAGEMENT" | "EC2_AGENT_MANAGEMENT")
|
|
592
592
|
attr_accessor status: ("ENABLED" | "DISABLED")
|
|
593
593
|
attr_accessor updated_at: ::Time
|
|
594
594
|
SENSITIVE: []
|
|
@@ -1379,13 +1379,13 @@ module Aws::GuardDuty
|
|
|
1379
1379
|
end
|
|
1380
1380
|
|
|
1381
1381
|
class MemberAdditionalConfiguration
|
|
1382
|
-
attr_accessor name: ("EKS_ADDON_MANAGEMENT" | "ECS_FARGATE_AGENT_MANAGEMENT")
|
|
1382
|
+
attr_accessor name: ("EKS_ADDON_MANAGEMENT" | "ECS_FARGATE_AGENT_MANAGEMENT" | "EC2_AGENT_MANAGEMENT")
|
|
1383
1383
|
attr_accessor status: ("ENABLED" | "DISABLED")
|
|
1384
1384
|
SENSITIVE: []
|
|
1385
1385
|
end
|
|
1386
1386
|
|
|
1387
1387
|
class MemberAdditionalConfigurationResult
|
|
1388
|
-
attr_accessor name: ("EKS_ADDON_MANAGEMENT" | "ECS_FARGATE_AGENT_MANAGEMENT")
|
|
1388
|
+
attr_accessor name: ("EKS_ADDON_MANAGEMENT" | "ECS_FARGATE_AGENT_MANAGEMENT" | "EC2_AGENT_MANAGEMENT")
|
|
1389
1389
|
attr_accessor status: ("ENABLED" | "DISABLED")
|
|
1390
1390
|
attr_accessor updated_at: ::Time
|
|
1391
1391
|
SENSITIVE: []
|
|
@@ -1452,13 +1452,13 @@ module Aws::GuardDuty
|
|
|
1452
1452
|
end
|
|
1453
1453
|
|
|
1454
1454
|
class OrganizationAdditionalConfiguration
|
|
1455
|
-
attr_accessor name: ("EKS_ADDON_MANAGEMENT" | "ECS_FARGATE_AGENT_MANAGEMENT")
|
|
1455
|
+
attr_accessor name: ("EKS_ADDON_MANAGEMENT" | "ECS_FARGATE_AGENT_MANAGEMENT" | "EC2_AGENT_MANAGEMENT")
|
|
1456
1456
|
attr_accessor auto_enable: ("NEW" | "NONE" | "ALL")
|
|
1457
1457
|
SENSITIVE: []
|
|
1458
1458
|
end
|
|
1459
1459
|
|
|
1460
1460
|
class OrganizationAdditionalConfigurationResult
|
|
1461
|
-
attr_accessor name: ("EKS_ADDON_MANAGEMENT" | "ECS_FARGATE_AGENT_MANAGEMENT")
|
|
1461
|
+
attr_accessor name: ("EKS_ADDON_MANAGEMENT" | "ECS_FARGATE_AGENT_MANAGEMENT" | "EC2_AGENT_MANAGEMENT")
|
|
1462
1462
|
attr_accessor auto_enable: ("NEW" | "NONE" | "ALL")
|
|
1463
1463
|
SENSITIVE: []
|
|
1464
1464
|
end
|
|
@@ -1515,7 +1515,7 @@ module Aws::GuardDuty
|
|
|
1515
1515
|
end
|
|
1516
1516
|
|
|
1517
1517
|
class OrganizationFeatureStatisticsAdditionalConfiguration
|
|
1518
|
-
attr_accessor name: ("EKS_ADDON_MANAGEMENT" | "ECS_FARGATE_AGENT_MANAGEMENT")
|
|
1518
|
+
attr_accessor name: ("EKS_ADDON_MANAGEMENT" | "ECS_FARGATE_AGENT_MANAGEMENT" | "EC2_AGENT_MANAGEMENT")
|
|
1519
1519
|
attr_accessor enabled_accounts_count: ::Integer
|
|
1520
1520
|
SENSITIVE: []
|
|
1521
1521
|
end
|
|
@@ -1726,6 +1726,11 @@ module Aws::GuardDuty
|
|
|
1726
1726
|
attr_accessor address_family: ::String
|
|
1727
1727
|
attr_accessor iana_protocol_number: ::Integer
|
|
1728
1728
|
attr_accessor memory_regions: ::Array[::String]
|
|
1729
|
+
attr_accessor tool_name: ::String
|
|
1730
|
+
attr_accessor tool_category: ::String
|
|
1731
|
+
attr_accessor service_name: ::String
|
|
1732
|
+
attr_accessor command_line_example: ::String
|
|
1733
|
+
attr_accessor threat_file_path: ::String
|
|
1729
1734
|
SENSITIVE: []
|
|
1730
1735
|
end
|
|
1731
1736
|
|
|
@@ -1940,6 +1945,7 @@ module Aws::GuardDuty
|
|
|
1940
1945
|
class ThreatIntelligenceDetail
|
|
1941
1946
|
attr_accessor threat_list_name: ::String
|
|
1942
1947
|
attr_accessor threat_names: ::Array[::String]
|
|
1948
|
+
attr_accessor threat_file_sha_256: ::String
|
|
1943
1949
|
SENSITIVE: []
|
|
1944
1950
|
end
|
|
1945
1951
|
|
metadata
CHANGED
|
@@ -1,14 +1,14 @@
|
|
|
1
1
|
--- !ruby/object:Gem::Specification
|
|
2
2
|
name: aws-sdk-guardduty
|
|
3
3
|
version: !ruby/object:Gem::Version
|
|
4
|
-
version: 1.
|
|
4
|
+
version: 1.89.0
|
|
5
5
|
platform: ruby
|
|
6
6
|
authors:
|
|
7
7
|
- Amazon Web Services
|
|
8
8
|
autorequire:
|
|
9
9
|
bindir: bin
|
|
10
10
|
cert_chain: []
|
|
11
|
-
date: 2024-03-
|
|
11
|
+
date: 2024-03-28 00:00:00.000000000 Z
|
|
12
12
|
dependencies:
|
|
13
13
|
- !ruby/object:Gem::Dependency
|
|
14
14
|
name: aws-sdk-core
|