aws-sdk-inspector2 1.75.0 → 1.76.0

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.
@@ -200,6 +200,21 @@ module Aws::Inspector2
200
200
  # on code repositories.
201
201
  # @return [Types::CodeRepositoryAggregation]
202
202
  #
203
+ # @!attribute [rw] vm_instance_aggregation
204
+ # An object that contains details about an aggregation request based
205
+ # on virtual machine (VM) instances.
206
+ # @return [Types::VmInstanceAggregation]
207
+ #
208
+ # @!attribute [rw] container_image_aggregation
209
+ # An object that contains details about an aggregation request based
210
+ # on container images.
211
+ # @return [Types::ContainerImageAggregation]
212
+ #
213
+ # @!attribute [rw] serverless_function_aggregation
214
+ # An object that contains details about an aggregation request based
215
+ # on serverless functions.
216
+ # @return [Types::ServerlessFunctionAggregation]
217
+ #
203
218
  # @see http://docs.aws.amazon.com/goto/WebAPI/inspector2-2020-06-08/AggregationRequest AWS API Documentation
204
219
  #
205
220
  class AggregationRequest < Struct.new(
@@ -215,6 +230,9 @@ module Aws::Inspector2
215
230
  :lambda_layer_aggregation,
216
231
  :lambda_function_aggregation,
217
232
  :code_repository_aggregation,
233
+ :vm_instance_aggregation,
234
+ :container_image_aggregation,
235
+ :serverless_function_aggregation,
218
236
  :unknown)
219
237
  SENSITIVE = []
220
238
  include Aws::Structure
@@ -232,6 +250,9 @@ module Aws::Inspector2
232
250
  class LambdaLayerAggregation < AggregationRequest; end
233
251
  class LambdaFunctionAggregation < AggregationRequest; end
234
252
  class CodeRepositoryAggregation < AggregationRequest; end
253
+ class VmInstanceAggregation < AggregationRequest; end
254
+ class ContainerImageAggregation < AggregationRequest; end
255
+ class ServerlessFunctionAggregation < AggregationRequest; end
235
256
  class Unknown < AggregationRequest; end
236
257
  end
237
258
 
@@ -298,6 +319,21 @@ module Aws::Inspector2
298
319
  # on code repositories.
299
320
  # @return [Types::CodeRepositoryAggregationResponse]
300
321
  #
322
+ # @!attribute [rw] vm_instance_aggregation
323
+ # An object that contains details about an aggregation response based
324
+ # on VM instances.
325
+ # @return [Types::VmInstanceAggregationResponse]
326
+ #
327
+ # @!attribute [rw] container_image_aggregation
328
+ # An object that contains details about an aggregation response based
329
+ # on container images.
330
+ # @return [Types::ContainerImageAggregationResponse]
331
+ #
332
+ # @!attribute [rw] serverless_function_aggregation
333
+ # An object that contains details about an aggregation response based
334
+ # on serverless functions.
335
+ # @return [Types::ServerlessFunctionAggregationResponse]
336
+ #
301
337
  # @see http://docs.aws.amazon.com/goto/WebAPI/inspector2-2020-06-08/AggregationResponse AWS API Documentation
302
338
  #
303
339
  class AggregationResponse < Struct.new(
@@ -313,6 +349,9 @@ module Aws::Inspector2
313
349
  :lambda_layer_aggregation,
314
350
  :lambda_function_aggregation,
315
351
  :code_repository_aggregation,
352
+ :vm_instance_aggregation,
353
+ :container_image_aggregation,
354
+ :serverless_function_aggregation,
316
355
  :unknown)
317
356
  SENSITIVE = []
318
357
  include Aws::Structure
@@ -330,6 +369,9 @@ module Aws::Inspector2
330
369
  class LambdaLayerAggregation < AggregationResponse; end
331
370
  class LambdaFunctionAggregation < AggregationResponse; end
332
371
  class CodeRepositoryAggregation < AggregationResponse; end
372
+ class VmInstanceAggregation < AggregationResponse; end
373
+ class ContainerImageAggregation < AggregationResponse; end
374
+ class ServerlessFunctionAggregation < AggregationResponse; end
333
375
  class Unknown < AggregationResponse; end
334
376
  end
335
377
 
@@ -368,6 +410,45 @@ module Aws::Inspector2
368
410
  # The Amazon Web Services account ID for the AMI.
369
411
  # @return [String]
370
412
  #
413
+ # @!attribute [rw] cloud_provider
414
+ # The cloud service provider associated with this Amazon Machine Image
415
+ # (AMI) aggregation. Valid values:
416
+ #
417
+ # * `AWS` – Findings from Amazon Web Services resources.
418
+ #
419
+ # * `AZURE` – Findings from Microsoft Azure resources.
420
+ # @return [String]
421
+ #
422
+ # @!attribute [rw] cloud_partition
423
+ # The cloud infrastructure partition associated with this AMI
424
+ # aggregation. Valid values:
425
+ #
426
+ # * `aws` – Amazon Web Services commercial Regions.
427
+ #
428
+ # * `aws-cn` – Amazon Web Services China Regions.
429
+ #
430
+ # * `aws-us-gov` – Amazon Web Services GovCloud (US) Regions.
431
+ #
432
+ # * `AzureCloud` – Azure commercial Regions.
433
+ # @return [String]
434
+ #
435
+ # @!attribute [rw] cloud_region
436
+ # The cloud Region associated with this AMI aggregation. The value
437
+ # format depends on the cloud provider:
438
+ #
439
+ # * An Amazon Web Services Region, such as `us-east-1`.
440
+ #
441
+ # * An Azure region, such as `eastus`.
442
+ # @return [String]
443
+ #
444
+ # @!attribute [rw] cloud_org_id
445
+ # The cloud organization ID for the AMI aggregation.
446
+ # @return [String]
447
+ #
448
+ # @!attribute [rw] cloud_account_id
449
+ # The cloud account ID for the AMI aggregation.
450
+ # @return [String]
451
+ #
371
452
  # @!attribute [rw] severity_counts
372
453
  # An object that contains the count of matched findings per severity.
373
454
  # @return [Types::SeverityCounts]
@@ -381,6 +462,11 @@ module Aws::Inspector2
381
462
  class AmiAggregationResponse < Struct.new(
382
463
  :ami,
383
464
  :account_id,
465
+ :cloud_provider,
466
+ :cloud_partition,
467
+ :cloud_region,
468
+ :cloud_org_id,
469
+ :cloud_account_id,
384
470
  :severity_counts,
385
471
  :affected_instances)
386
472
  SENSITIVE = []
@@ -510,6 +596,27 @@ module Aws::Inspector2
510
596
  include Aws::Structure
511
597
  end
512
598
 
599
+ # A filter that matches connectors by the ARN of the associated Amazon
600
+ # Web Services Config connector.
601
+ #
602
+ # @!attribute [rw] comparison
603
+ # The comparison operator for the Amazon Web Services Config connector
604
+ # ARN filter.
605
+ # @return [String]
606
+ #
607
+ # @!attribute [rw] value
608
+ # The Amazon Web Services Config connector ARN value to filter by.
609
+ # @return [String]
610
+ #
611
+ # @see http://docs.aws.amazon.com/goto/WebAPI/inspector2-2020-06-08/AwsConfigConnectorArnFilter AWS API Documentation
612
+ #
613
+ class AwsConfigConnectorArnFilter < Struct.new(
614
+ :comparison,
615
+ :value)
616
+ SENSITIVE = []
617
+ include Aws::Structure
618
+ end
619
+
513
620
  # Details of the Amazon EC2 instance involved in a finding.
514
621
  #
515
622
  # @!attribute [rw] type
@@ -876,6 +983,118 @@ module Aws::Inspector2
876
983
  include Aws::Structure
877
984
  end
878
985
 
986
+ # The Azure-specific configuration details for creating a connector,
987
+ # including the Amazon Web Services Config connector association, scan
988
+ # scope, and regions to scan.
989
+ #
990
+ # @!attribute [rw] aws_config_connector_arn
991
+ # The ARN of the Amazon Web Services Config connector to associate
992
+ # with this connector.
993
+ # @return [String]
994
+ #
995
+ # @!attribute [rw] scope_configuration
996
+ # The scope configuration that defines which Azure resources to scan.
997
+ # @return [Types::AzureScopeConfigurationInput]
998
+ #
999
+ # @!attribute [rw] azure_regions
1000
+ # The Azure regions to scan.
1001
+ # @return [Array<String>]
1002
+ #
1003
+ # @!attribute [rw] auto_install_vm_scanner
1004
+ # Specifies whether to automatically install the VM scanner on
1005
+ # connected Azure resources. Defaults to `true`.
1006
+ # @return [Boolean]
1007
+ #
1008
+ # @see http://docs.aws.amazon.com/goto/WebAPI/inspector2-2020-06-08/AzureProviderDetailCreate AWS API Documentation
1009
+ #
1010
+ class AzureProviderDetailCreate < Struct.new(
1011
+ :aws_config_connector_arn,
1012
+ :scope_configuration,
1013
+ :azure_regions,
1014
+ :auto_install_vm_scanner)
1015
+ SENSITIVE = []
1016
+ include Aws::Structure
1017
+ end
1018
+
1019
+ # The Azure-specific configuration details for updating a connector,
1020
+ # including the scan scope and regions to scan.
1021
+ #
1022
+ # @!attribute [rw] azure_regions
1023
+ # The updated Azure regions to scan.
1024
+ # @return [Array<String>]
1025
+ #
1026
+ # @!attribute [rw] scope_configuration
1027
+ # The updated scope configuration that defines which Azure resources
1028
+ # to scan.
1029
+ # @return [Types::AzureScopeConfigurationInput]
1030
+ #
1031
+ # @!attribute [rw] auto_install_vm_scanner
1032
+ # Specifies whether to automatically install the VM scanner on
1033
+ # connected Azure resources.
1034
+ # @return [Boolean]
1035
+ #
1036
+ # @see http://docs.aws.amazon.com/goto/WebAPI/inspector2-2020-06-08/AzureProviderDetailUpdate AWS API Documentation
1037
+ #
1038
+ class AzureProviderDetailUpdate < Struct.new(
1039
+ :azure_regions,
1040
+ :scope_configuration,
1041
+ :auto_install_vm_scanner)
1042
+ SENSITIVE = []
1043
+ include Aws::Structure
1044
+ end
1045
+
1046
+ # The scope of Azure resources that Amazon Inspector scans, defined
1047
+ # separately for VM, container image, and serverless scanning. Returned
1048
+ # as part of a connector's configuration.
1049
+ #
1050
+ # @!attribute [rw] vm_scanning
1051
+ # The scope configuration for VM scanning.
1052
+ # @return [Types::ScopeConfiguration]
1053
+ #
1054
+ # @!attribute [rw] container_image_scanning
1055
+ # The scope configuration for container image scanning.
1056
+ # @return [Types::ScopeConfiguration]
1057
+ #
1058
+ # @!attribute [rw] serverless_scanning
1059
+ # The scope configuration for serverless scanning.
1060
+ # @return [Types::ScopeConfiguration]
1061
+ #
1062
+ # @see http://docs.aws.amazon.com/goto/WebAPI/inspector2-2020-06-08/AzureScopeConfiguration AWS API Documentation
1063
+ #
1064
+ class AzureScopeConfiguration < Struct.new(
1065
+ :vm_scanning,
1066
+ :container_image_scanning,
1067
+ :serverless_scanning)
1068
+ SENSITIVE = []
1069
+ include Aws::Structure
1070
+ end
1071
+
1072
+ # The scope of Azure resources to scan, defined separately for VM,
1073
+ # container image, and serverless scanning. Provide this when you create
1074
+ # or update an Azure connector.
1075
+ #
1076
+ # @!attribute [rw] vm_scanning
1077
+ # The scope configuration input for VM scanning.
1078
+ # @return [Types::ScopeConfigurationInput]
1079
+ #
1080
+ # @!attribute [rw] container_image_scanning
1081
+ # The scope configuration input for container image scanning.
1082
+ # @return [Types::ScopeConfigurationInput]
1083
+ #
1084
+ # @!attribute [rw] serverless_scanning
1085
+ # The scope configuration input for serverless scanning.
1086
+ # @return [Types::ScopeConfigurationInput]
1087
+ #
1088
+ # @see http://docs.aws.amazon.com/goto/WebAPI/inspector2-2020-06-08/AzureScopeConfigurationInput AWS API Documentation
1089
+ #
1090
+ class AzureScopeConfigurationInput < Struct.new(
1091
+ :vm_scanning,
1092
+ :container_image_scanning,
1093
+ :serverless_scanning)
1094
+ SENSITIVE = []
1095
+ include Aws::Structure
1096
+ end
1097
+
879
1098
  # One or more tags submitted as part of the request is not valid.
880
1099
  #
881
1100
  # @!attribute [rw] message
@@ -2515,156 +2734,696 @@ module Aws::Inspector2
2515
2734
  include Aws::Structure
2516
2735
  end
2517
2736
 
2518
- # Configuration settings for continuous integration scans that run
2519
- # automatically when code changes are made.
2737
+ # Describes a connector that links an external cloud provider to Amazon
2738
+ # Inspector for vulnerability scanning.
2520
2739
  #
2521
- # @!attribute [rw] supported_events
2522
- # The repository events that trigger continuous integration scans,
2523
- # such as pull requests or commits.
2740
+ # @!attribute [rw] connector_arn
2741
+ # The Amazon Resource Name (ARN) of the connector.
2742
+ # @return [String]
2743
+ #
2744
+ # @!attribute [rw] name
2745
+ # The name of the connector.
2746
+ # @return [String]
2747
+ #
2748
+ # @!attribute [rw] description
2749
+ # A description of the connector.
2750
+ # @return [String]
2751
+ #
2752
+ # @!attribute [rw] provider
2753
+ # The cloud provider for the connector.
2754
+ # @return [String]
2755
+ #
2756
+ # @!attribute [rw] enablement_status
2757
+ # The enablement status of the connector, which indicates whether the
2758
+ # connector is active and scanning resources.
2759
+ # @return [String]
2760
+ #
2761
+ # @!attribute [rw] enablement_status_reason
2762
+ # Additional information about the current enablement status of the
2763
+ # connector.
2764
+ # @return [String]
2765
+ #
2766
+ # @!attribute [rw] health
2767
+ # The health of the connector, which indicates whether Amazon
2768
+ # Inspector can reach and scan the connected resources.
2769
+ # @return [Types::ConnectorHealth]
2770
+ #
2771
+ # @!attribute [rw] created_at
2772
+ # The date and time when the connector was created.
2773
+ # @return [Time]
2774
+ #
2775
+ # @!attribute [rw] updated_at
2776
+ # The date and time when the connector was last updated.
2777
+ # @return [Time]
2778
+ #
2779
+ # @!attribute [rw] azure_regions
2780
+ # The Azure regions configured for the connector.
2524
2781
  # @return [Array<String>]
2525
2782
  #
2526
- # @see http://docs.aws.amazon.com/goto/WebAPI/inspector2-2020-06-08/ContinuousIntegrationScanConfiguration AWS API Documentation
2783
+ # @!attribute [rw] aws_config_connector_arn
2784
+ # The ARN of the Amazon Web Services Config connector associated with
2785
+ # this connector.
2786
+ # @return [String]
2527
2787
  #
2528
- class ContinuousIntegrationScanConfiguration < Struct.new(
2529
- :supported_events)
2788
+ # @!attribute [rw] scope_configuration
2789
+ # The Azure scope configuration for the connector.
2790
+ # @return [Types::AzureScopeConfiguration]
2791
+ #
2792
+ # @!attribute [rw] tags
2793
+ # The tags associated with the connector.
2794
+ # @return [Hash<String,String>]
2795
+ #
2796
+ # @!attribute [rw] auto_install_vm_scanner
2797
+ # Specifies whether the VM scanner is automatically installed on
2798
+ # connected resources.
2799
+ # @return [Boolean]
2800
+ #
2801
+ # @see http://docs.aws.amazon.com/goto/WebAPI/inspector2-2020-06-08/Connector AWS API Documentation
2802
+ #
2803
+ class Connector < Struct.new(
2804
+ :connector_arn,
2805
+ :name,
2806
+ :description,
2807
+ :provider,
2808
+ :enablement_status,
2809
+ :enablement_status_reason,
2810
+ :health,
2811
+ :created_at,
2812
+ :updated_at,
2813
+ :azure_regions,
2814
+ :aws_config_connector_arn,
2815
+ :scope_configuration,
2816
+ :tags,
2817
+ :auto_install_vm_scanner)
2530
2818
  SENSITIVE = []
2531
2819
  include Aws::Structure
2532
2820
  end
2533
2821
 
2534
- # a structure that contains information on the count of resources within
2535
- # a group.
2822
+ # A filter that matches connectors by connector ARN.
2536
2823
  #
2537
- # @!attribute [rw] count
2538
- # The number of resources.
2539
- # @return [Integer]
2824
+ # @!attribute [rw] comparison
2825
+ # The comparison operator for the connector ARN filter.
2826
+ # @return [String]
2540
2827
  #
2541
- # @!attribute [rw] group_key
2542
- # The key associated with this group
2828
+ # @!attribute [rw] value
2829
+ # The connector ARN value to filter by.
2543
2830
  # @return [String]
2544
2831
  #
2545
- # @see http://docs.aws.amazon.com/goto/WebAPI/inspector2-2020-06-08/Counts AWS API Documentation
2832
+ # @see http://docs.aws.amazon.com/goto/WebAPI/inspector2-2020-06-08/ConnectorArnFilter AWS API Documentation
2546
2833
  #
2547
- class Counts < Struct.new(
2548
- :count,
2549
- :group_key)
2834
+ class ConnectorArnFilter < Struct.new(
2835
+ :comparison,
2836
+ :value)
2550
2837
  SENSITIVE = []
2551
2838
  include Aws::Structure
2552
2839
  end
2553
2840
 
2554
- # Contains details of a coverage date filter.
2841
+ # The container image scanning settings for a connector, including how
2842
+ # long pushed and pulled images continue to be rescanned for
2843
+ # vulnerabilities.
2555
2844
  #
2556
- # @!attribute [rw] start_inclusive
2557
- # A timestamp representing the start of the time period to filter
2558
- # results by.
2559
- # @return [Time]
2845
+ # @!attribute [rw] push_duration
2846
+ # The amount of time after a container image is pushed to a repository
2847
+ # during which Amazon Inspector continues to rescan the image for
2848
+ # vulnerabilities. Valid values are `LIFETIME`, `DAYS_3`, `DAYS_7`,
2849
+ # `DAYS_14`, `DAYS_30`, `DAYS_60`, `DAYS_90`, and `DAYS_180`.
2850
+ # @return [String]
2560
2851
  #
2561
- # @!attribute [rw] end_inclusive
2562
- # A timestamp representing the end of the time period to filter
2563
- # results by.
2564
- # @return [Time]
2852
+ # @!attribute [rw] pull_duration
2853
+ # The amount of time after a container image is last pulled from a
2854
+ # repository during which Amazon Inspector continues to rescan the
2855
+ # image for vulnerabilities. Valid values are `DAYS_3`, `DAYS_7`,
2856
+ # `DAYS_14`, `DAYS_30`, `DAYS_60`, `DAYS_90`, and `DAYS_180`.
2857
+ # @return [String]
2565
2858
  #
2566
- # @see http://docs.aws.amazon.com/goto/WebAPI/inspector2-2020-06-08/CoverageDateFilter AWS API Documentation
2859
+ # @see http://docs.aws.amazon.com/goto/WebAPI/inspector2-2020-06-08/ConnectorContainerImageScanConfiguration AWS API Documentation
2567
2860
  #
2568
- class CoverageDateFilter < Struct.new(
2569
- :start_inclusive,
2570
- :end_inclusive)
2861
+ class ConnectorContainerImageScanConfiguration < Struct.new(
2862
+ :push_duration,
2863
+ :pull_duration)
2571
2864
  SENSITIVE = []
2572
2865
  include Aws::Structure
2573
2866
  end
2574
2867
 
2575
- # A structure that identifies filter criteria for
2576
- # `GetCoverageStatistics`.
2868
+ # Contains the filter criteria for narrowing the results returned by a
2869
+ # `ListConnectors` request. You can filter by connector ARN, Amazon Web
2870
+ # Services account ID, Amazon Web Services Config connector ARN,
2871
+ # connector type, or cloud provider.
2577
2872
  #
2578
- # @!attribute [rw] scan_status_code
2579
- # The scan status code to filter on. Valid values are:
2580
- # `ValidationException`, `InternalServerException`,
2581
- # `ResourceNotFoundException`, `BadRequestException`, and
2582
- # `ThrottlingException`.
2583
- # @return [Array<Types::CoverageStringFilter>]
2873
+ # @!attribute [rw] connector_arns
2874
+ # Filter by connector ARNs.
2875
+ # @return [Array<Types::ConnectorArnFilter>]
2584
2876
  #
2585
- # @!attribute [rw] scan_status_reason
2586
- # The scan status reason to filter on.
2587
- # @return [Array<Types::CoverageStringFilter>]
2877
+ # @!attribute [rw] accounts
2878
+ # Filter by Amazon Web Services account IDs.
2879
+ # @return [Array<Types::StringFilter>]
2588
2880
  #
2589
- # @!attribute [rw] account_id
2590
- # An array of Amazon Web Services account IDs to return coverage
2591
- # statistics for.
2592
- # @return [Array<Types::CoverageStringFilter>]
2881
+ # @!attribute [rw] aws_config_connector_arns
2882
+ # Filter by Amazon Web Services Config connector ARNs.
2883
+ # @return [Array<Types::AwsConfigConnectorArnFilter>]
2593
2884
  #
2594
- # @!attribute [rw] resource_id
2595
- # An array of Amazon Web Services resource IDs to return coverage
2596
- # statistics for.
2597
- # @return [Array<Types::CoverageStringFilter>]
2885
+ # @!attribute [rw] connector_type
2886
+ # Filter by connector type.
2887
+ # @return [Array<Types::ConnectorTypeFilter>]
2598
2888
  #
2599
- # @!attribute [rw] resource_type
2600
- # An array of Amazon Web Services resource types to return coverage
2601
- # statistics for. The values can be `AWS_EC2_INSTANCE`,
2602
- # `AWS_LAMBDA_FUNCTION`, `AWS_ECR_CONTAINER_IMAGE`,
2603
- # `AWS_ECR_REPOSITORY` or `AWS_ACCOUNT`.
2604
- # @return [Array<Types::CoverageStringFilter>]
2889
+ # @!attribute [rw] provider
2890
+ # Filter by cloud provider.
2891
+ # @return [Array<Types::ProviderFilter>]
2605
2892
  #
2606
- # @!attribute [rw] scan_type
2607
- # An array of Amazon Inspector scan types to return coverage
2608
- # statistics for.
2609
- # @return [Array<Types::CoverageStringFilter>]
2893
+ # @see http://docs.aws.amazon.com/goto/WebAPI/inspector2-2020-06-08/ConnectorFilterCriteria AWS API Documentation
2610
2894
  #
2611
- # @!attribute [rw] ecr_repository_name
2612
- # The Amazon ECR repository name to filter on.
2613
- # @return [Array<Types::CoverageStringFilter>]
2895
+ class ConnectorFilterCriteria < Struct.new(
2896
+ :connector_arns,
2897
+ :accounts,
2898
+ :aws_config_connector_arns,
2899
+ :connector_type,
2900
+ :provider)
2901
+ SENSITIVE = []
2902
+ include Aws::Structure
2903
+ end
2904
+
2905
+ # The health and connectivity status of a connector, including the last
2906
+ # time the status was checked and any diagnostic message. Returned as
2907
+ # part of the `Connector` structure.
2614
2908
  #
2615
- # @!attribute [rw] ecr_image_tags
2616
- # The Amazon ECR image tags to filter on.
2617
- # @return [Array<Types::CoverageStringFilter>]
2909
+ # @!attribute [rw] connector_status
2910
+ # The health status of the connector.
2911
+ # @return [String]
2618
2912
  #
2619
- # @!attribute [rw] ec2_instance_tags
2620
- # The Amazon EC2 instance tags to filter on.
2621
- # @return [Array<Types::CoverageMapFilter>]
2913
+ # @!attribute [rw] last_checked_at
2914
+ # The date and time when the connector health was last checked.
2915
+ # @return [Time]
2622
2916
  #
2623
- # @!attribute [rw] lambda_function_name
2624
- # Returns coverage statistics for Amazon Web Services Lambda functions
2625
- # filtered by function names.
2626
- # @return [Array<Types::CoverageStringFilter>]
2917
+ # @!attribute [rw] message
2918
+ # A message providing additional details about the connector health
2919
+ # status.
2920
+ # @return [String]
2627
2921
  #
2628
- # @!attribute [rw] lambda_function_tags
2629
- # Returns coverage statistics for Amazon Web Services Lambda functions
2630
- # filtered by tag.
2631
- # @return [Array<Types::CoverageMapFilter>]
2922
+ # @see http://docs.aws.amazon.com/goto/WebAPI/inspector2-2020-06-08/ConnectorHealth AWS API Documentation
2632
2923
  #
2633
- # @!attribute [rw] lambda_function_runtime
2634
- # Returns coverage statistics for Amazon Web Services Lambda functions
2635
- # filtered by runtime.
2636
- # @return [Array<Types::CoverageStringFilter>]
2924
+ class ConnectorHealth < Struct.new(
2925
+ :connector_status,
2926
+ :last_checked_at,
2927
+ :message)
2928
+ SENSITIVE = []
2929
+ include Aws::Structure
2930
+ end
2931
+
2932
+ # The scan settings that Amazon Inspector applies to resources
2933
+ # discovered through a connector.
2637
2934
  #
2638
- # @!attribute [rw] last_scanned_at
2639
- # Filters Amazon Web Services resources based on whether Amazon
2640
- # Inspector has checked them for vulnerabilities within the specified
2641
- # time range.
2642
- # @return [Array<Types::CoverageDateFilter>]
2935
+ # @!attribute [rw] container_image_scanning
2936
+ # The container image scanning configuration, including push and pull
2937
+ # duration settings.
2938
+ # @return [Types::ConnectorContainerImageScanConfiguration]
2643
2939
  #
2644
- # @!attribute [rw] scan_mode
2645
- # The filter to search for Amazon EC2 instance coverage by scan mode.
2646
- # Valid values are `EC2_SSM_AGENT_BASED`, `EC2_AGENTLESS`, and
2647
- # `EC2_INSPECTOR_AGENT_BASED`.
2648
- # @return [Array<Types::CoverageStringFilter>]
2940
+ # @see http://docs.aws.amazon.com/goto/WebAPI/inspector2-2020-06-08/ConnectorScanConfiguration AWS API Documentation
2649
2941
  #
2650
- # @!attribute [rw] image_pulled_at
2651
- # The date an image was last pulled at.
2652
- # @return [Array<Types::CoverageDateFilter>]
2942
+ class ConnectorScanConfiguration < Struct.new(
2943
+ :container_image_scanning)
2944
+ SENSITIVE = []
2945
+ include Aws::Structure
2946
+ end
2947
+
2948
+ # Represents a scan configuration and the connectors it applies to.
2949
+ # Returned in the results of a `ListConnectorScanConfigurations`
2950
+ # request.
2653
2951
  #
2654
- # @!attribute [rw] ecr_image_last_in_use_at
2655
- # The Amazon ECR image that was last in use.
2656
- # @return [Array<Types::CoverageDateFilter>]
2952
+ # @!attribute [rw] aws_config_connector_arn
2953
+ # The ARN of the Amazon Web Services Config connector.
2954
+ # @return [String]
2657
2955
  #
2658
- # @!attribute [rw] ecr_image_in_use_count
2659
- # The number of Amazon ECR images in use.
2660
- # @return [Array<Types::CoverageNumberFilter>]
2956
+ # @!attribute [rw] connector_arns
2957
+ # The list of connector ARNs associated with this Amazon Web Services
2958
+ # Config connector.
2959
+ # @return [Array<String>]
2661
2960
  #
2662
- # @!attribute [rw] code_repository_project_name
2663
- # Filter criteria for code repositories based on project name.
2664
- # @return [Array<Types::CoverageStringFilter>]
2961
+ # @!attribute [rw] scan_configuration
2962
+ # The scan configuration settings.
2963
+ # @return [Types::ConnectorScanConfiguration]
2665
2964
  #
2666
- # @!attribute [rw] code_repository_provider_type
2667
- # Filter criteria for code repositories based on provider type (such
2965
+ # @see http://docs.aws.amazon.com/goto/WebAPI/inspector2-2020-06-08/ConnectorScanConfigurationItem AWS API Documentation
2966
+ #
2967
+ class ConnectorScanConfigurationItem < Struct.new(
2968
+ :aws_config_connector_arn,
2969
+ :connector_arns,
2970
+ :scan_configuration)
2971
+ SENSITIVE = []
2972
+ include Aws::Structure
2973
+ end
2974
+
2975
+ # A filter that matches connectors by connector type.
2976
+ #
2977
+ # @!attribute [rw] comparison
2978
+ # The comparison operator for the connector type filter.
2979
+ # @return [String]
2980
+ #
2981
+ # @!attribute [rw] value
2982
+ # The connector type value to filter by.
2983
+ # @return [String]
2984
+ #
2985
+ # @see http://docs.aws.amazon.com/goto/WebAPI/inspector2-2020-06-08/ConnectorTypeFilter AWS API Documentation
2986
+ #
2987
+ class ConnectorTypeFilter < Struct.new(
2988
+ :comparison,
2989
+ :value)
2990
+ SENSITIVE = []
2991
+ include Aws::Structure
2992
+ end
2993
+
2994
+ # An aggregation of information about container images.
2995
+ #
2996
+ # @!attribute [rw] resource_ids
2997
+ # The resource IDs to aggregate findings for.
2998
+ # @return [Array<Types::StringFilter>]
2999
+ #
3000
+ # @!attribute [rw] image_digests
3001
+ # The image digests to aggregate findings for.
3002
+ # @return [Array<Types::StringFilter>]
3003
+ #
3004
+ # @!attribute [rw] repositories
3005
+ # The image repositories to aggregate findings for.
3006
+ # @return [Array<Types::StringFilter>]
3007
+ #
3008
+ # @!attribute [rw] registries
3009
+ # The image registries to aggregate findings for.
3010
+ # @return [Array<Types::StringFilter>]
3011
+ #
3012
+ # @!attribute [rw] architectures
3013
+ # The image architectures to aggregate findings for.
3014
+ # @return [Array<Types::StringFilter>]
3015
+ #
3016
+ # @!attribute [rw] image_tags
3017
+ # The image tags to aggregate findings for.
3018
+ # @return [Array<Types::StringFilter>]
3019
+ #
3020
+ # @!attribute [rw] cloud_providers
3021
+ # The cloud providers to aggregate findings for. Valid values:
3022
+ #
3023
+ # * `AWS` – Findings from Amazon Web Services resources.
3024
+ #
3025
+ # * `AZURE` – Findings from Microsoft Azure resources.
3026
+ # @return [Array<Types::StringFilter>]
3027
+ #
3028
+ # @!attribute [rw] cloud_partitions
3029
+ # The cloud partitions to aggregate findings for. Valid values:
3030
+ #
3031
+ # * `aws` – Amazon Web Services commercial Regions.
3032
+ #
3033
+ # * `aws-cn` – Amazon Web Services China Regions.
3034
+ #
3035
+ # * `aws-us-gov` – Amazon Web Services GovCloud (US) Regions.
3036
+ #
3037
+ # * `AzureCloud` – Azure commercial Regions.
3038
+ # @return [Array<Types::StringFilter>]
3039
+ #
3040
+ # @!attribute [rw] cloud_regions
3041
+ # The cloud regions to aggregate findings for. The value format
3042
+ # depends on the cloud provider:
3043
+ #
3044
+ # * An Amazon Web Services Region, such as `us-east-1`.
3045
+ #
3046
+ # * An Azure region, such as `eastus`.
3047
+ # @return [Array<Types::StringFilter>]
3048
+ #
3049
+ # @!attribute [rw] cloud_org_ids
3050
+ # The cloud organization IDs to aggregate findings for.
3051
+ # @return [Array<Types::StringFilter>]
3052
+ #
3053
+ # @!attribute [rw] cloud_account_ids
3054
+ # The cloud account IDs to aggregate findings for.
3055
+ # @return [Array<Types::StringFilter>]
3056
+ #
3057
+ # @!attribute [rw] last_in_use_at
3058
+ # The last in-use timestamps to aggregate findings for.
3059
+ # @return [Array<Types::DateFilter>]
3060
+ #
3061
+ # @!attribute [rw] in_use_count
3062
+ # The in-use counts to aggregate findings for.
3063
+ # @return [Array<Types::NumberFilter>]
3064
+ #
3065
+ # @!attribute [rw] sort_order
3066
+ # The order to sort results by. Valid values are `ASC` and `DESC`.
3067
+ # @return [String]
3068
+ #
3069
+ # @!attribute [rw] sort_by
3070
+ # The value to sort results by. Specify a field name from the
3071
+ # aggregation response, such as `CRITICAL`, `HIGH`, or `ALL`.
3072
+ # @return [String]
3073
+ #
3074
+ # @see http://docs.aws.amazon.com/goto/WebAPI/inspector2-2020-06-08/ContainerImageAggregation AWS API Documentation
3075
+ #
3076
+ class ContainerImageAggregation < Struct.new(
3077
+ :resource_ids,
3078
+ :image_digests,
3079
+ :repositories,
3080
+ :registries,
3081
+ :architectures,
3082
+ :image_tags,
3083
+ :cloud_providers,
3084
+ :cloud_partitions,
3085
+ :cloud_regions,
3086
+ :cloud_org_ids,
3087
+ :cloud_account_ids,
3088
+ :last_in_use_at,
3089
+ :in_use_count,
3090
+ :sort_order,
3091
+ :sort_by)
3092
+ SENSITIVE = []
3093
+ include Aws::Structure
3094
+ end
3095
+
3096
+ # A response that contains the results of a container image aggregation.
3097
+ #
3098
+ # @!attribute [rw] resource_id
3099
+ # The resource ID for the container image.
3100
+ # @return [String]
3101
+ #
3102
+ # @!attribute [rw] cloud_provider
3103
+ # The cloud service provider associated with this container image
3104
+ # aggregation. Valid values:
3105
+ #
3106
+ # * `AWS` – Findings from Amazon Web Services resources.
3107
+ #
3108
+ # * `AZURE` – Findings from Microsoft Azure resources.
3109
+ # @return [String]
3110
+ #
3111
+ # @!attribute [rw] cloud_account_id
3112
+ # The cloud account ID for the container image aggregation.
3113
+ # @return [String]
3114
+ #
3115
+ # @!attribute [rw] cloud_partition
3116
+ # The cloud infrastructure partition associated with this container
3117
+ # image aggregation. Valid values:
3118
+ #
3119
+ # * `aws` – Amazon Web Services commercial Regions.
3120
+ #
3121
+ # * `aws-cn` – Amazon Web Services China Regions.
3122
+ #
3123
+ # * `aws-us-gov` – Amazon Web Services GovCloud (US) Regions.
3124
+ #
3125
+ # * `AzureCloud` – Azure commercial Regions.
3126
+ # @return [String]
3127
+ #
3128
+ # @!attribute [rw] cloud_region
3129
+ # The cloud Region associated with this container image aggregation.
3130
+ # The value format depends on the cloud provider:
3131
+ #
3132
+ # * An Amazon Web Services Region, such as `us-east-1`.
3133
+ #
3134
+ # * An Azure region, such as `eastus`.
3135
+ # @return [String]
3136
+ #
3137
+ # @!attribute [rw] cloud_org_id
3138
+ # The cloud organization ID for the container image aggregation.
3139
+ # @return [String]
3140
+ #
3141
+ # @!attribute [rw] image_digest
3142
+ # The image digest for the container image.
3143
+ # @return [String]
3144
+ #
3145
+ # @!attribute [rw] repository
3146
+ # The repository for the container image.
3147
+ # @return [String]
3148
+ #
3149
+ # @!attribute [rw] registry
3150
+ # The registry for the container image.
3151
+ # @return [String]
3152
+ #
3153
+ # @!attribute [rw] architecture
3154
+ # The architecture of the container image.
3155
+ # @return [String]
3156
+ #
3157
+ # @!attribute [rw] image_tags
3158
+ # The image tags attached to the container image.
3159
+ # @return [Array<String>]
3160
+ #
3161
+ # @!attribute [rw] account_id
3162
+ # The account ID associated with the container image.
3163
+ # @return [String]
3164
+ #
3165
+ # @!attribute [rw] severity_counts
3166
+ # An object that contains the counts of aggregated finding per
3167
+ # severity.
3168
+ # @return [Types::SeverityCounts]
3169
+ #
3170
+ # @!attribute [rw] last_in_use_at
3171
+ # The last time the container image was in use.
3172
+ # @return [Time]
3173
+ #
3174
+ # @!attribute [rw] in_use_count
3175
+ # The number of times the container image is in use.
3176
+ # @return [Integer]
3177
+ #
3178
+ # @!attribute [rw] exploit_available_active_findings_count
3179
+ # The number of active findings with an exploit available for the
3180
+ # container image.
3181
+ # @return [Integer]
3182
+ #
3183
+ # @!attribute [rw] fix_available_active_findings_count
3184
+ # The number of active findings with a fix available for the container
3185
+ # image.
3186
+ # @return [Integer]
3187
+ #
3188
+ # @see http://docs.aws.amazon.com/goto/WebAPI/inspector2-2020-06-08/ContainerImageAggregationResponse AWS API Documentation
3189
+ #
3190
+ class ContainerImageAggregationResponse < Struct.new(
3191
+ :resource_id,
3192
+ :cloud_provider,
3193
+ :cloud_account_id,
3194
+ :cloud_partition,
3195
+ :cloud_region,
3196
+ :cloud_org_id,
3197
+ :image_digest,
3198
+ :repository,
3199
+ :registry,
3200
+ :architecture,
3201
+ :image_tags,
3202
+ :account_id,
3203
+ :severity_counts,
3204
+ :last_in_use_at,
3205
+ :in_use_count,
3206
+ :exploit_available_active_findings_count,
3207
+ :fix_available_active_findings_count)
3208
+ SENSITIVE = []
3209
+ include Aws::Structure
3210
+ end
3211
+
3212
+ # Contains metadata about a container image associated with a covered
3213
+ # resource.
3214
+ #
3215
+ # @!attribute [rw] image_tags
3216
+ # The tags attached to the container image.
3217
+ # @return [Array<String>]
3218
+ #
3219
+ # @!attribute [rw] image_pulled_at
3220
+ # The date and time the container image was pulled.
3221
+ # @return [Time]
3222
+ #
3223
+ # @!attribute [rw] last_in_use_at
3224
+ # The last time the container image was in use.
3225
+ # @return [Time]
3226
+ #
3227
+ # @!attribute [rw] in_use_count
3228
+ # The number of times the container image is in use.
3229
+ # @return [Integer]
3230
+ #
3231
+ # @see http://docs.aws.amazon.com/goto/WebAPI/inspector2-2020-06-08/ContainerImageMetadata AWS API Documentation
3232
+ #
3233
+ class ContainerImageMetadata < Struct.new(
3234
+ :image_tags,
3235
+ :image_pulled_at,
3236
+ :last_in_use_at,
3237
+ :in_use_count)
3238
+ SENSITIVE = []
3239
+ include Aws::Structure
3240
+ end
3241
+
3242
+ # Contains metadata about a container registry associated with a covered
3243
+ # resource.
3244
+ #
3245
+ # @!attribute [rw] name
3246
+ # The name of the container registry.
3247
+ # @return [String]
3248
+ #
3249
+ # @see http://docs.aws.amazon.com/goto/WebAPI/inspector2-2020-06-08/ContainerRegistryMetadata AWS API Documentation
3250
+ #
3251
+ class ContainerRegistryMetadata < Struct.new(
3252
+ :name)
3253
+ SENSITIVE = []
3254
+ include Aws::Structure
3255
+ end
3256
+
3257
+ # Contains metadata about a container repository associated with a
3258
+ # covered resource.
3259
+ #
3260
+ # @!attribute [rw] name
3261
+ # The name of the container repository.
3262
+ # @return [String]
3263
+ #
3264
+ # @!attribute [rw] scan_frequency
3265
+ # The scan frequency for the container repository.
3266
+ # @return [String]
3267
+ #
3268
+ # @see http://docs.aws.amazon.com/goto/WebAPI/inspector2-2020-06-08/ContainerRepositoryMetadata AWS API Documentation
3269
+ #
3270
+ class ContainerRepositoryMetadata < Struct.new(
3271
+ :name,
3272
+ :scan_frequency)
3273
+ SENSITIVE = []
3274
+ include Aws::Structure
3275
+ end
3276
+
3277
+ # Configuration settings for continuous integration scans that run
3278
+ # automatically when code changes are made.
3279
+ #
3280
+ # @!attribute [rw] supported_events
3281
+ # The repository events that trigger continuous integration scans,
3282
+ # such as pull requests or commits.
3283
+ # @return [Array<String>]
3284
+ #
3285
+ # @see http://docs.aws.amazon.com/goto/WebAPI/inspector2-2020-06-08/ContinuousIntegrationScanConfiguration AWS API Documentation
3286
+ #
3287
+ class ContinuousIntegrationScanConfiguration < Struct.new(
3288
+ :supported_events)
3289
+ SENSITIVE = []
3290
+ include Aws::Structure
3291
+ end
3292
+
3293
+ # a structure that contains information on the count of resources within
3294
+ # a group.
3295
+ #
3296
+ # @!attribute [rw] count
3297
+ # The number of resources.
3298
+ # @return [Integer]
3299
+ #
3300
+ # @!attribute [rw] group_key
3301
+ # The key associated with this group
3302
+ # @return [String]
3303
+ #
3304
+ # @see http://docs.aws.amazon.com/goto/WebAPI/inspector2-2020-06-08/Counts AWS API Documentation
3305
+ #
3306
+ class Counts < Struct.new(
3307
+ :count,
3308
+ :group_key)
3309
+ SENSITIVE = []
3310
+ include Aws::Structure
3311
+ end
3312
+
3313
+ # Contains details of a coverage date filter.
3314
+ #
3315
+ # @!attribute [rw] start_inclusive
3316
+ # A timestamp representing the start of the time period to filter
3317
+ # results by.
3318
+ # @return [Time]
3319
+ #
3320
+ # @!attribute [rw] end_inclusive
3321
+ # A timestamp representing the end of the time period to filter
3322
+ # results by.
3323
+ # @return [Time]
3324
+ #
3325
+ # @see http://docs.aws.amazon.com/goto/WebAPI/inspector2-2020-06-08/CoverageDateFilter AWS API Documentation
3326
+ #
3327
+ class CoverageDateFilter < Struct.new(
3328
+ :start_inclusive,
3329
+ :end_inclusive)
3330
+ SENSITIVE = []
3331
+ include Aws::Structure
3332
+ end
3333
+
3334
+ # A structure that identifies filter criteria for
3335
+ # `GetCoverageStatistics`.
3336
+ #
3337
+ # @!attribute [rw] scan_status_code
3338
+ # The scan status code to filter on. Valid values are:
3339
+ # `ValidationException`, `InternalServerException`,
3340
+ # `ResourceNotFoundException`, `BadRequestException`, and
3341
+ # `ThrottlingException`.
3342
+ # @return [Array<Types::CoverageStringFilter>]
3343
+ #
3344
+ # @!attribute [rw] scan_status_reason
3345
+ # The scan status reason to filter on.
3346
+ # @return [Array<Types::CoverageStringFilter>]
3347
+ #
3348
+ # @!attribute [rw] account_id
3349
+ # An array of Amazon Web Services account IDs to return coverage
3350
+ # statistics for.
3351
+ # @return [Array<Types::CoverageStringFilter>]
3352
+ #
3353
+ # @!attribute [rw] resource_id
3354
+ # An array of Amazon Web Services resource IDs to return coverage
3355
+ # statistics for.
3356
+ # @return [Array<Types::CoverageStringFilter>]
3357
+ #
3358
+ # @!attribute [rw] resource_type
3359
+ # An array of Amazon Web Services resource types to return coverage
3360
+ # statistics for. The values can be `AWS_EC2_INSTANCE`,
3361
+ # `AWS_LAMBDA_FUNCTION`, `AWS_ECR_CONTAINER_IMAGE`,
3362
+ # `AWS_ECR_REPOSITORY` or `AWS_ACCOUNT`.
3363
+ # @return [Array<Types::CoverageStringFilter>]
3364
+ #
3365
+ # @!attribute [rw] scan_type
3366
+ # An array of Amazon Inspector scan types to return coverage
3367
+ # statistics for.
3368
+ # @return [Array<Types::CoverageStringFilter>]
3369
+ #
3370
+ # @!attribute [rw] ecr_repository_name
3371
+ # The Amazon ECR repository name to filter on.
3372
+ # @return [Array<Types::CoverageStringFilter>]
3373
+ #
3374
+ # @!attribute [rw] ecr_image_tags
3375
+ # The Amazon ECR image tags to filter on.
3376
+ # @return [Array<Types::CoverageStringFilter>]
3377
+ #
3378
+ # @!attribute [rw] ec2_instance_tags
3379
+ # The Amazon EC2 instance tags to filter on.
3380
+ # @return [Array<Types::CoverageMapFilter>]
3381
+ #
3382
+ # @!attribute [rw] lambda_function_name
3383
+ # Returns coverage statistics for Amazon Web Services Lambda functions
3384
+ # filtered by function names.
3385
+ # @return [Array<Types::CoverageStringFilter>]
3386
+ #
3387
+ # @!attribute [rw] lambda_function_tags
3388
+ # Returns coverage statistics for Amazon Web Services Lambda functions
3389
+ # filtered by tag.
3390
+ # @return [Array<Types::CoverageMapFilter>]
3391
+ #
3392
+ # @!attribute [rw] lambda_function_runtime
3393
+ # Returns coverage statistics for Amazon Web Services Lambda functions
3394
+ # filtered by runtime.
3395
+ # @return [Array<Types::CoverageStringFilter>]
3396
+ #
3397
+ # @!attribute [rw] last_scanned_at
3398
+ # Filters Amazon Web Services resources based on whether Amazon
3399
+ # Inspector has checked them for vulnerabilities within the specified
3400
+ # time range.
3401
+ # @return [Array<Types::CoverageDateFilter>]
3402
+ #
3403
+ # @!attribute [rw] scan_mode
3404
+ # The filter to search for Amazon EC2 instance coverage by scan mode.
3405
+ # Valid values are `EC2_SSM_AGENT_BASED`, `EC2_AGENTLESS`, and
3406
+ # `EC2_INSPECTOR_AGENT_BASED`.
3407
+ # @return [Array<Types::CoverageStringFilter>]
3408
+ #
3409
+ # @!attribute [rw] image_pulled_at
3410
+ # The date an image was last pulled at.
3411
+ # @return [Array<Types::CoverageDateFilter>]
3412
+ #
3413
+ # @!attribute [rw] ecr_image_last_in_use_at
3414
+ # The Amazon ECR image that was last in use.
3415
+ # @return [Array<Types::CoverageDateFilter>]
3416
+ #
3417
+ # @!attribute [rw] ecr_image_in_use_count
3418
+ # The number of Amazon ECR images in use.
3419
+ # @return [Array<Types::CoverageNumberFilter>]
3420
+ #
3421
+ # @!attribute [rw] code_repository_project_name
3422
+ # Filter criteria for code repositories based on project name.
3423
+ # @return [Array<Types::CoverageStringFilter>]
3424
+ #
3425
+ # @!attribute [rw] code_repository_provider_type
3426
+ # Filter criteria for code repositories based on provider type (such
2668
3427
  # as GitHub, GitLab, etc.).
2669
3428
  # @return [Array<Types::CoverageStringFilter>]
2670
3429
  #
@@ -2678,6 +3437,50 @@ module Aws::Inspector2
2678
3437
  # scanned commit.
2679
3438
  # @return [Array<Types::CoverageStringFilter>]
2680
3439
  #
3440
+ # @!attribute [rw] cloud_provider
3441
+ # The cloud provider to filter coverage results by.
3442
+ # @return [Array<Types::CoverageStringFilter>]
3443
+ #
3444
+ # @!attribute [rw] cloud_provider_account_id
3445
+ # The cloud provider account ID to filter coverage results by.
3446
+ # @return [Array<Types::CoverageStringFilter>]
3447
+ #
3448
+ # @!attribute [rw] cloud_provider_region
3449
+ # The cloud provider region to filter coverage results by.
3450
+ # @return [Array<Types::CoverageStringFilter>]
3451
+ #
3452
+ # @!attribute [rw] cloud_vm_instance_tags
3453
+ # The cloud VM instance tags to filter coverage results by.
3454
+ # @return [Array<Types::CoverageMapFilter>]
3455
+ #
3456
+ # @!attribute [rw] cloud_container_image_tags
3457
+ # The cloud container image tags to filter coverage results by.
3458
+ # @return [Array<Types::CoverageStringFilter>]
3459
+ #
3460
+ # @!attribute [rw] cloud_container_repository_name
3461
+ # The cloud container repository name to filter coverage results by.
3462
+ # @return [Array<Types::CoverageStringFilter>]
3463
+ #
3464
+ # @!attribute [rw] cloud_container_registry_name
3465
+ # The cloud container registry name to filter coverage results by.
3466
+ # @return [Array<Types::CoverageStringFilter>]
3467
+ #
3468
+ # @!attribute [rw] cloud_serverless_function_name
3469
+ # The cloud serverless function name to filter coverage results by.
3470
+ # @return [Array<Types::CoverageStringFilter>]
3471
+ #
3472
+ # @!attribute [rw] cloud_serverless_function_runtime
3473
+ # The cloud serverless function runtime to filter coverage results by.
3474
+ # @return [Array<Types::CoverageStringFilter>]
3475
+ #
3476
+ # @!attribute [rw] cloud_serverless_function_tags
3477
+ # The cloud serverless function tags to filter coverage results by.
3478
+ # @return [Array<Types::CoverageMapFilter>]
3479
+ #
3480
+ # @!attribute [rw] cloud_provider_org_id
3481
+ # The cloud provider organization ID to filter coverage results by.
3482
+ # @return [Array<Types::CoverageStringFilter>]
3483
+ #
2681
3484
  # @see http://docs.aws.amazon.com/goto/WebAPI/inspector2-2020-06-08/CoverageFilterCriteria AWS API Documentation
2682
3485
  #
2683
3486
  class CoverageFilterCriteria < Struct.new(
@@ -2701,7 +3504,18 @@ module Aws::Inspector2
2701
3504
  :code_repository_project_name,
2702
3505
  :code_repository_provider_type,
2703
3506
  :code_repository_provider_type_visibility,
2704
- :last_scanned_commit_id)
3507
+ :last_scanned_commit_id,
3508
+ :cloud_provider,
3509
+ :cloud_provider_account_id,
3510
+ :cloud_provider_region,
3511
+ :cloud_vm_instance_tags,
3512
+ :cloud_container_image_tags,
3513
+ :cloud_container_repository_name,
3514
+ :cloud_container_registry_name,
3515
+ :cloud_serverless_function_name,
3516
+ :cloud_serverless_function_runtime,
3517
+ :cloud_serverless_function_tags,
3518
+ :cloud_provider_org_id)
2705
3519
  SENSITIVE = []
2706
3520
  include Aws::Structure
2707
3521
  end
@@ -2803,6 +3617,26 @@ module Aws::Inspector2
2803
3617
  # The scan method that is applied to the instance.
2804
3618
  # @return [String]
2805
3619
  #
3620
+ # @!attribute [rw] provider
3621
+ # The cloud provider of the covered resource.
3622
+ # @return [String]
3623
+ #
3624
+ # @!attribute [rw] provider_account_id
3625
+ # The cloud provider account ID of the covered resource.
3626
+ # @return [String]
3627
+ #
3628
+ # @!attribute [rw] provider_org_id
3629
+ # The cloud provider organization ID of the covered resource.
3630
+ # @return [String]
3631
+ #
3632
+ # @!attribute [rw] provider_region
3633
+ # The cloud provider region of the covered resource.
3634
+ # @return [String]
3635
+ #
3636
+ # @!attribute [rw] provider_partition
3637
+ # The cloud provider partition of the covered resource.
3638
+ # @return [String]
3639
+ #
2806
3640
  # @see http://docs.aws.amazon.com/goto/WebAPI/inspector2-2020-06-08/CoveredResource AWS API Documentation
2807
3641
  #
2808
3642
  class CoveredResource < Struct.new(
@@ -2813,7 +3647,12 @@ module Aws::Inspector2
2813
3647
  :scan_status,
2814
3648
  :resource_metadata,
2815
3649
  :last_scanned_at,
2816
- :scan_mode)
3650
+ :scan_mode,
3651
+ :provider,
3652
+ :provider_account_id,
3653
+ :provider_org_id,
3654
+ :provider_region,
3655
+ :provider_partition)
2817
3656
  SENSITIVE = []
2818
3657
  include Aws::Structure
2819
3658
  end
@@ -2964,22 +3803,77 @@ module Aws::Inspector2
2964
3803
  #
2965
3804
  class CreateCodeSecurityScanConfigurationRequest < Struct.new(
2966
3805
  :name,
2967
- :level,
2968
- :configuration,
2969
- :scope_settings,
3806
+ :level,
3807
+ :configuration,
3808
+ :scope_settings,
3809
+ :tags)
3810
+ SENSITIVE = []
3811
+ include Aws::Structure
3812
+ end
3813
+
3814
+ # @!attribute [rw] scan_configuration_arn
3815
+ # The Amazon Resource Name (ARN) of the created scan configuration.
3816
+ # @return [String]
3817
+ #
3818
+ # @see http://docs.aws.amazon.com/goto/WebAPI/inspector2-2020-06-08/CreateCodeSecurityScanConfigurationResponse AWS API Documentation
3819
+ #
3820
+ class CreateCodeSecurityScanConfigurationResponse < Struct.new(
3821
+ :scan_configuration_arn)
3822
+ SENSITIVE = []
3823
+ include Aws::Structure
3824
+ end
3825
+
3826
+ # @!attribute [rw] client_token
3827
+ # A unique, case-sensitive identifier that you provide to ensure that
3828
+ # the operation completes no more than one time. If this token matches
3829
+ # a previous request, the service ignores the request but does not
3830
+ # return an error.
3831
+ #
3832
+ # **A suitable default value is auto-generated.** You should normally
3833
+ # not need to pass this option.
3834
+ # @return [String]
3835
+ #
3836
+ # @!attribute [rw] name
3837
+ # The name of the connector.
3838
+ # @return [String]
3839
+ #
3840
+ # @!attribute [rw] provider
3841
+ # The cloud provider for the connector.
3842
+ # @return [String]
3843
+ #
3844
+ # @!attribute [rw] description
3845
+ # A description of the connector.
3846
+ # @return [String]
3847
+ #
3848
+ # @!attribute [rw] provider_detail
3849
+ # The provider-specific configuration details for the connector.
3850
+ # @return [Types::ProviderDetailCreate]
3851
+ #
3852
+ # @!attribute [rw] tags
3853
+ # The tags to apply to the connector.
3854
+ # @return [Hash<String,String>]
3855
+ #
3856
+ # @see http://docs.aws.amazon.com/goto/WebAPI/inspector2-2020-06-08/CreateConnectorRequest AWS API Documentation
3857
+ #
3858
+ class CreateConnectorRequest < Struct.new(
3859
+ :client_token,
3860
+ :name,
3861
+ :provider,
3862
+ :description,
3863
+ :provider_detail,
2970
3864
  :tags)
2971
3865
  SENSITIVE = []
2972
3866
  include Aws::Structure
2973
3867
  end
2974
3868
 
2975
- # @!attribute [rw] scan_configuration_arn
2976
- # The Amazon Resource Name (ARN) of the created scan configuration.
3869
+ # @!attribute [rw] connector_arn
3870
+ # The Amazon Resource Name (ARN) of the created connector.
2977
3871
  # @return [String]
2978
3872
  #
2979
- # @see http://docs.aws.amazon.com/goto/WebAPI/inspector2-2020-06-08/CreateCodeSecurityScanConfigurationResponse AWS API Documentation
3873
+ # @see http://docs.aws.amazon.com/goto/WebAPI/inspector2-2020-06-08/CreateConnectorResponse AWS API Documentation
2980
3874
  #
2981
- class CreateCodeSecurityScanConfigurationResponse < Struct.new(
2982
- :scan_configuration_arn)
3875
+ class CreateConnectorResponse < Struct.new(
3876
+ :connector_arn)
2983
3877
  SENSITIVE = []
2984
3878
  include Aws::Structure
2985
3879
  end
@@ -3450,6 +4344,22 @@ module Aws::Inspector2
3450
4344
  include Aws::Structure
3451
4345
  end
3452
4346
 
4347
+ # @!attribute [rw] connector_arn
4348
+ # The Amazon Resource Name (ARN) of the connector to delete.
4349
+ # @return [String]
4350
+ #
4351
+ # @see http://docs.aws.amazon.com/goto/WebAPI/inspector2-2020-06-08/DeleteConnectorRequest AWS API Documentation
4352
+ #
4353
+ class DeleteConnectorRequest < Struct.new(
4354
+ :connector_arn)
4355
+ SENSITIVE = []
4356
+ include Aws::Structure
4357
+ end
4358
+
4359
+ # @see http://docs.aws.amazon.com/goto/WebAPI/inspector2-2020-06-08/DeleteConnectorResponse AWS API Documentation
4360
+ #
4361
+ class DeleteConnectorResponse < Aws::EmptyStructure; end
4362
+
3453
4363
  # @!attribute [rw] arn
3454
4364
  # The Amazon Resource Number (ARN) of the filter to be deleted.
3455
4365
  # @return [String]
@@ -4498,6 +5408,82 @@ module Aws::Inspector2
4498
5408
  # (such as GitHub, GitLab, etc.).
4499
5409
  # @return [Array<Types::StringFilter>]
4500
5410
  #
5411
+ # @!attribute [rw] cloud_provider
5412
+ # Filter criteria for the cloud provider.
5413
+ # @return [Array<Types::StringFilter>]
5414
+ #
5415
+ # @!attribute [rw] cloud_provider_region
5416
+ # Filter criteria for the cloud provider region.
5417
+ # @return [Array<Types::StringFilter>]
5418
+ #
5419
+ # @!attribute [rw] cloud_provider_account_id
5420
+ # Filter criteria for the cloud provider account ID.
5421
+ # @return [Array<Types::StringFilter>]
5422
+ #
5423
+ # @!attribute [rw] cloud_provider_org_id
5424
+ # Filter criteria for the cloud provider organization ID.
5425
+ # @return [Array<Types::StringFilter>]
5426
+ #
5427
+ # @!attribute [rw] cloud_vm_image_reference
5428
+ # Filter criteria for the image reference of a VM instance.
5429
+ # @return [Array<Types::StringFilter>]
5430
+ #
5431
+ # @!attribute [rw] cloud_vm_network_id
5432
+ # Filter criteria for the network ID of a VM instance.
5433
+ # @return [Array<Types::StringFilter>]
5434
+ #
5435
+ # @!attribute [rw] cloud_vm_subnet_ids
5436
+ # Filter criteria for the subnet IDs of a VM instance.
5437
+ # @return [Array<Types::StringFilter>]
5438
+ #
5439
+ # @!attribute [rw] cloud_image_repository_name
5440
+ # Filter criteria for the repository name of a container image.
5441
+ # @return [Array<Types::StringFilter>]
5442
+ #
5443
+ # @!attribute [rw] cloud_image_registry
5444
+ # Filter criteria for the registry of a container image.
5445
+ # @return [Array<Types::StringFilter>]
5446
+ #
5447
+ # @!attribute [rw] cloud_image_digest
5448
+ # Filter criteria for the digest of a container image.
5449
+ # @return [Array<Types::StringFilter>]
5450
+ #
5451
+ # @!attribute [rw] cloud_image_tags
5452
+ # Filter criteria for the tags of a container image.
5453
+ # @return [Array<Types::StringFilter>]
5454
+ #
5455
+ # @!attribute [rw] cloud_image_pushed_at
5456
+ # Filter criteria for when a container image was pushed.
5457
+ # @return [Array<Types::DateFilter>]
5458
+ #
5459
+ # @!attribute [rw] cloud_image_architecture
5460
+ # Filter criteria for the architecture of a container image.
5461
+ # @return [Array<Types::StringFilter>]
5462
+ #
5463
+ # @!attribute [rw] cloud_image_last_in_use_at
5464
+ # Filter criteria for the last time a container image was in use.
5465
+ # @return [Array<Types::DateFilter>]
5466
+ #
5467
+ # @!attribute [rw] cloud_image_in_use_count
5468
+ # Filter criteria for the in-use count of a container image.
5469
+ # @return [Array<Types::NumberFilter>]
5470
+ #
5471
+ # @!attribute [rw] cloud_serverless_function_name
5472
+ # Filter criteria for the name of a serverless function.
5473
+ # @return [Array<Types::StringFilter>]
5474
+ #
5475
+ # @!attribute [rw] cloud_serverless_function_runtime
5476
+ # Filter criteria for the runtime of a serverless function.
5477
+ # @return [Array<Types::StringFilter>]
5478
+ #
5479
+ # @!attribute [rw] cloud_serverless_function_last_modified_at
5480
+ # Filter criteria for when a serverless function was last modified.
5481
+ # @return [Array<Types::DateFilter>]
5482
+ #
5483
+ # @!attribute [rw] cloud_serverless_function_execution_role
5484
+ # Filter criteria for the execution role of a serverless function.
5485
+ # @return [Array<Types::StringFilter>]
5486
+ #
4501
5487
  # @see http://docs.aws.amazon.com/goto/WebAPI/inspector2-2020-06-08/FilterCriteria AWS API Documentation
4502
5488
  #
4503
5489
  class FilterCriteria < Struct.new(
@@ -4546,7 +5532,26 @@ module Aws::Inspector2
4546
5532
  :code_vulnerability_file_path,
4547
5533
  :epss_score,
4548
5534
  :code_repository_project_name,
4549
- :code_repository_provider_type)
5535
+ :code_repository_provider_type,
5536
+ :cloud_provider,
5537
+ :cloud_provider_region,
5538
+ :cloud_provider_account_id,
5539
+ :cloud_provider_org_id,
5540
+ :cloud_vm_image_reference,
5541
+ :cloud_vm_network_id,
5542
+ :cloud_vm_subnet_ids,
5543
+ :cloud_image_repository_name,
5544
+ :cloud_image_registry,
5545
+ :cloud_image_digest,
5546
+ :cloud_image_tags,
5547
+ :cloud_image_pushed_at,
5548
+ :cloud_image_architecture,
5549
+ :cloud_image_last_in_use_at,
5550
+ :cloud_image_in_use_count,
5551
+ :cloud_serverless_function_name,
5552
+ :cloud_serverless_function_runtime,
5553
+ :cloud_serverless_function_last_modified_at,
5554
+ :cloud_serverless_function_execution_role)
4550
5555
  SENSITIVE = []
4551
5556
  include Aws::Structure
4552
5557
  end
@@ -4831,13 +5836,57 @@ module Aws::Inspector2
4831
5836
  # Details about the number of fixes.
4832
5837
  # @return [Integer]
4833
5838
  #
5839
+ # @!attribute [rw] cloud_provider
5840
+ # The cloud service provider associated with this finding type
5841
+ # aggregation. Valid values:
5842
+ #
5843
+ # * `AWS` – Findings from Amazon Web Services resources.
5844
+ #
5845
+ # * `AZURE` – Findings from Microsoft Azure resources.
5846
+ # @return [String]
5847
+ #
5848
+ # @!attribute [rw] cloud_account_id
5849
+ # The cloud account ID for the finding type aggregation.
5850
+ # @return [String]
5851
+ #
5852
+ # @!attribute [rw] cloud_org_id
5853
+ # The cloud organization ID for the finding type aggregation.
5854
+ # @return [String]
5855
+ #
5856
+ # @!attribute [rw] cloud_region
5857
+ # The cloud Region associated with this finding type aggregation. The
5858
+ # value format depends on the cloud provider:
5859
+ #
5860
+ # * An Amazon Web Services Region, such as `us-east-1`.
5861
+ #
5862
+ # * An Azure region, such as `eastus`.
5863
+ # @return [String]
5864
+ #
5865
+ # @!attribute [rw] cloud_partition
5866
+ # The cloud infrastructure partition associated with this finding type
5867
+ # aggregation. Valid values:
5868
+ #
5869
+ # * `aws` – Amazon Web Services commercial Regions.
5870
+ #
5871
+ # * `aws-cn` – Amazon Web Services China Regions.
5872
+ #
5873
+ # * `aws-us-gov` – Amazon Web Services GovCloud (US) Regions.
5874
+ #
5875
+ # * `AzureCloud` – Azure commercial Regions.
5876
+ # @return [String]
5877
+ #
4834
5878
  # @see http://docs.aws.amazon.com/goto/WebAPI/inspector2-2020-06-08/FindingTypeAggregationResponse AWS API Documentation
4835
5879
  #
4836
5880
  class FindingTypeAggregationResponse < Struct.new(
4837
5881
  :account_id,
4838
5882
  :severity_counts,
4839
5883
  :exploit_available_count,
4840
- :fix_available_count)
5884
+ :fix_available_count,
5885
+ :cloud_provider,
5886
+ :cloud_account_id,
5887
+ :cloud_org_id,
5888
+ :cloud_region,
5889
+ :cloud_partition)
4841
5890
  SENSITIVE = []
4842
5891
  include Aws::Structure
4843
5892
  end
@@ -4884,13 +5933,18 @@ module Aws::Inspector2
4884
5933
  # The order to sort results by.
4885
5934
  # @return [String]
4886
5935
  #
5936
+ # @!attribute [rw] cloud_provider
5937
+ # The cloud provider associated with the free trial information.
5938
+ # @return [String]
5939
+ #
4887
5940
  # @see http://docs.aws.amazon.com/goto/WebAPI/inspector2-2020-06-08/FreeTrialInfo AWS API Documentation
4888
5941
  #
4889
5942
  class FreeTrialInfo < Struct.new(
4890
5943
  :type,
4891
5944
  :start,
4892
5945
  :end,
4893
- :status)
5946
+ :status,
5947
+ :cloud_provider)
4894
5948
  SENSITIVE = []
4895
5949
  include Aws::Structure
4896
5950
  end
@@ -5271,11 +6325,20 @@ module Aws::Inspector2
5271
6325
  include Aws::Structure
5272
6326
  end
5273
6327
 
5274
- # @api private
6328
+ # @!attribute [rw] account_id
6329
+ # The 12-digit Amazon Web Services account ID of the member account
6330
+ # whose scan configuration you want to retrieve. When specified, you
6331
+ # must be the delegated administrator for this member account. If not
6332
+ # specified, the operation returns your own configuration.
6333
+ # @return [String]
5275
6334
  #
5276
6335
  # @see http://docs.aws.amazon.com/goto/WebAPI/inspector2-2020-06-08/GetConfigurationRequest AWS API Documentation
5277
6336
  #
5278
- class GetConfigurationRequest < Aws::EmptyStructure; end
6337
+ class GetConfigurationRequest < Struct.new(
6338
+ :account_id)
6339
+ SENSITIVE = []
6340
+ include Aws::Structure
6341
+ end
5279
6342
 
5280
6343
  # @!attribute [rw] ecr_configuration
5281
6344
  # Specifies how the ECR automated re-scan duration is currently
@@ -5510,6 +6573,65 @@ module Aws::Inspector2
5510
6573
  include Aws::Structure
5511
6574
  end
5512
6575
 
6576
+ # Contains details about a container image involved in a finding.
6577
+ #
6578
+ # @!attribute [rw] repository_name
6579
+ # The name of the repository the container image resides in.
6580
+ # @return [String]
6581
+ #
6582
+ # @!attribute [rw] registry
6583
+ # The registry for the container image.
6584
+ # @return [String]
6585
+ #
6586
+ # @!attribute [rw] image_tags
6587
+ # The image tags attached to the container image.
6588
+ # @return [Array<String>]
6589
+ #
6590
+ # @!attribute [rw] image_digest
6591
+ # The image digest of the container image.
6592
+ # @return [String]
6593
+ #
6594
+ # @!attribute [rw] pushed_at
6595
+ # The date and time the container image was pushed.
6596
+ # @return [Time]
6597
+ #
6598
+ # @!attribute [rw] architecture
6599
+ # The architecture of the container image.
6600
+ # @return [String]
6601
+ #
6602
+ # @!attribute [rw] author
6603
+ # The author of the container image.
6604
+ # @return [String]
6605
+ #
6606
+ # @!attribute [rw] in_use_count
6607
+ # The number of times the container image is in use.
6608
+ # @return [Integer]
6609
+ #
6610
+ # @!attribute [rw] last_in_use_at
6611
+ # The last time the container image was in use.
6612
+ # @return [Time]
6613
+ #
6614
+ # @!attribute [rw] platform
6615
+ # The platform of the container image.
6616
+ # @return [String]
6617
+ #
6618
+ # @see http://docs.aws.amazon.com/goto/WebAPI/inspector2-2020-06-08/Image AWS API Documentation
6619
+ #
6620
+ class Image < Struct.new(
6621
+ :repository_name,
6622
+ :registry,
6623
+ :image_tags,
6624
+ :image_digest,
6625
+ :pushed_at,
6626
+ :architecture,
6627
+ :author,
6628
+ :in_use_count,
6629
+ :last_in_use_at,
6630
+ :platform)
6631
+ SENSITIVE = []
6632
+ include Aws::Structure
6633
+ end
6634
+
5513
6635
  # The details that define an aggregation based on container image
5514
6636
  # layers.
5515
6637
  #
@@ -5526,6 +6648,43 @@ module Aws::Inspector2
5526
6648
  # The hashes associated with the layers.
5527
6649
  # @return [Array<Types::StringFilter>]
5528
6650
  #
6651
+ # @!attribute [rw] cloud_providers
6652
+ # The cloud providers to aggregate findings for. Valid values:
6653
+ #
6654
+ # * `AWS` – Findings from Amazon Web Services resources.
6655
+ #
6656
+ # * `AZURE` – Findings from Microsoft Azure resources.
6657
+ # @return [Array<Types::StringFilter>]
6658
+ #
6659
+ # @!attribute [rw] cloud_account_ids
6660
+ # The cloud account IDs to aggregate findings for.
6661
+ # @return [Array<Types::StringFilter>]
6662
+ #
6663
+ # @!attribute [rw] cloud_org_ids
6664
+ # The cloud organization IDs to aggregate findings for.
6665
+ # @return [Array<Types::StringFilter>]
6666
+ #
6667
+ # @!attribute [rw] cloud_regions
6668
+ # The cloud regions to aggregate findings for. The value format
6669
+ # depends on the cloud provider:
6670
+ #
6671
+ # * An Amazon Web Services Region, such as `us-east-1`.
6672
+ #
6673
+ # * An Azure region, such as `eastus`.
6674
+ # @return [Array<Types::StringFilter>]
6675
+ #
6676
+ # @!attribute [rw] cloud_partitions
6677
+ # The cloud partitions to aggregate findings for. Valid values:
6678
+ #
6679
+ # * `aws` – Amazon Web Services commercial Regions.
6680
+ #
6681
+ # * `aws-cn` – Amazon Web Services China Regions.
6682
+ #
6683
+ # * `aws-us-gov` – Amazon Web Services GovCloud (US) Regions.
6684
+ #
6685
+ # * `AzureCloud` – Azure commercial Regions.
6686
+ # @return [Array<Types::StringFilter>]
6687
+ #
5529
6688
  # @!attribute [rw] sort_order
5530
6689
  # The order to sort results by.
5531
6690
  # @return [String]
@@ -5540,6 +6699,11 @@ module Aws::Inspector2
5540
6699
  :repositories,
5541
6700
  :resource_ids,
5542
6701
  :layer_hashes,
6702
+ :cloud_providers,
6703
+ :cloud_account_ids,
6704
+ :cloud_org_ids,
6705
+ :cloud_regions,
6706
+ :cloud_partitions,
5543
6707
  :sort_order,
5544
6708
  :sort_by)
5545
6709
  SENSITIVE = []
@@ -5566,6 +6730,45 @@ module Aws::Inspector2
5566
6730
  # image hosting the layer image.
5567
6731
  # @return [String]
5568
6732
  #
6733
+ # @!attribute [rw] cloud_provider
6734
+ # The cloud service provider associated with this image layer
6735
+ # aggregation. Valid values:
6736
+ #
6737
+ # * `AWS` – Findings from Amazon Web Services resources.
6738
+ #
6739
+ # * `AZURE` – Findings from Microsoft Azure resources.
6740
+ # @return [String]
6741
+ #
6742
+ # @!attribute [rw] cloud_account_id
6743
+ # The cloud account ID for the image layer aggregation.
6744
+ # @return [String]
6745
+ #
6746
+ # @!attribute [rw] cloud_org_id
6747
+ # The cloud organization ID for the image layer aggregation.
6748
+ # @return [String]
6749
+ #
6750
+ # @!attribute [rw] cloud_region
6751
+ # The cloud Region associated with this image layer aggregation. The
6752
+ # value format depends on the cloud provider:
6753
+ #
6754
+ # * An Amazon Web Services Region, such as `us-east-1`.
6755
+ #
6756
+ # * An Azure region, such as `eastus`.
6757
+ # @return [String]
6758
+ #
6759
+ # @!attribute [rw] cloud_partition
6760
+ # The cloud infrastructure partition associated with this image layer
6761
+ # aggregation. Valid values:
6762
+ #
6763
+ # * `aws` – Amazon Web Services commercial Regions.
6764
+ #
6765
+ # * `aws-cn` – Amazon Web Services China Regions.
6766
+ #
6767
+ # * `aws-us-gov` – Amazon Web Services GovCloud (US) Regions.
6768
+ #
6769
+ # * `AzureCloud` – Azure commercial Regions.
6770
+ # @return [String]
6771
+ #
5569
6772
  # @!attribute [rw] severity_counts
5570
6773
  # An object that represents the count of matched findings per
5571
6774
  # severity.
@@ -5578,6 +6781,11 @@ module Aws::Inspector2
5578
6781
  :resource_id,
5579
6782
  :layer_hash,
5580
6783
  :account_id,
6784
+ :cloud_provider,
6785
+ :cloud_account_id,
6786
+ :cloud_org_id,
6787
+ :cloud_region,
6788
+ :cloud_partition,
5581
6789
  :severity_counts)
5582
6790
  SENSITIVE = []
5583
6791
  include Aws::Structure
@@ -6341,6 +7549,97 @@ module Aws::Inspector2
6341
7549
  include Aws::Structure
6342
7550
  end
6343
7551
 
7552
+ # @!attribute [rw] aws_config_connector_arns
7553
+ # The list of Amazon Web Services Config connector ARNs to filter
7554
+ # results.
7555
+ # @return [Array<String>]
7556
+ #
7557
+ # @!attribute [rw] max_results
7558
+ # The maximum number of results to return in a single call. Valid
7559
+ # range is 1 to 50. To retrieve the remaining results, make another
7560
+ # request with the `nextToken` value returned from this request.
7561
+ # @return [Integer]
7562
+ #
7563
+ # @!attribute [rw] next_token
7564
+ # A token to use for paginating results. Set this value to null for
7565
+ # the first request. For subsequent calls, use the `nextToken` value
7566
+ # returned from the previous request.
7567
+ # @return [String]
7568
+ #
7569
+ # @see http://docs.aws.amazon.com/goto/WebAPI/inspector2-2020-06-08/ListConnectorScanConfigurationsRequest AWS API Documentation
7570
+ #
7571
+ class ListConnectorScanConfigurationsRequest < Struct.new(
7572
+ :aws_config_connector_arns,
7573
+ :max_results,
7574
+ :next_token)
7575
+ SENSITIVE = [:next_token]
7576
+ include Aws::Structure
7577
+ end
7578
+
7579
+ # @!attribute [rw] scan_configurations
7580
+ # A list of scan configuration items.
7581
+ # @return [Array<Types::ConnectorScanConfigurationItem>]
7582
+ #
7583
+ # @!attribute [rw] next_token
7584
+ # A pagination token. If this value is not null, there are additional
7585
+ # results available. Use this token in the `nextToken` parameter of a
7586
+ # subsequent request to retrieve the next page of results.
7587
+ # @return [String]
7588
+ #
7589
+ # @see http://docs.aws.amazon.com/goto/WebAPI/inspector2-2020-06-08/ListConnectorScanConfigurationsResponse AWS API Documentation
7590
+ #
7591
+ class ListConnectorScanConfigurationsResponse < Struct.new(
7592
+ :scan_configurations,
7593
+ :next_token)
7594
+ SENSITIVE = [:next_token]
7595
+ include Aws::Structure
7596
+ end
7597
+
7598
+ # @!attribute [rw] max_results
7599
+ # The maximum number of results to return in a single call. To
7600
+ # retrieve the remaining results, make another request with the
7601
+ # `nextToken` value returned from this request.
7602
+ # @return [Integer]
7603
+ #
7604
+ # @!attribute [rw] next_token
7605
+ # A token to use for paginating results. Set this value to null for
7606
+ # the first request. For subsequent calls, use the `nextToken` value
7607
+ # returned from the previous request.
7608
+ # @return [String]
7609
+ #
7610
+ # @!attribute [rw] filter_criteria
7611
+ # The filter criteria to apply to the list of connectors.
7612
+ # @return [Types::ConnectorFilterCriteria]
7613
+ #
7614
+ # @see http://docs.aws.amazon.com/goto/WebAPI/inspector2-2020-06-08/ListConnectorsRequest AWS API Documentation
7615
+ #
7616
+ class ListConnectorsRequest < Struct.new(
7617
+ :max_results,
7618
+ :next_token,
7619
+ :filter_criteria)
7620
+ SENSITIVE = [:next_token]
7621
+ include Aws::Structure
7622
+ end
7623
+
7624
+ # @!attribute [rw] items
7625
+ # A list of connectors.
7626
+ # @return [Array<Types::Connector>]
7627
+ #
7628
+ # @!attribute [rw] next_token
7629
+ # A pagination token. If this value is not null, there are additional
7630
+ # results available. Use this token in the `nextToken` parameter of a
7631
+ # subsequent request to retrieve the next page of results.
7632
+ # @return [String]
7633
+ #
7634
+ # @see http://docs.aws.amazon.com/goto/WebAPI/inspector2-2020-06-08/ListConnectorsResponse AWS API Documentation
7635
+ #
7636
+ class ListConnectorsResponse < Struct.new(
7637
+ :items,
7638
+ :next_token)
7639
+ SENSITIVE = [:next_token]
7640
+ include Aws::Structure
7641
+ end
7642
+
6344
7643
  # @!attribute [rw] max_results
6345
7644
  # The maximum number of results the response can return. If your
6346
7645
  # request would return more than the maximum the response will return
@@ -7287,16 +8586,77 @@ module Aws::Inspector2
7287
8586
  # to the project.
7288
8587
  # @return [String]
7289
8588
  #
7290
- # @!attribute [rw] rule_set_categories
7291
- # The categories of security rules applied during periodic scans for
7292
- # the project.
7293
- # @return [Array<String>]
8589
+ # @!attribute [rw] rule_set_categories
8590
+ # The categories of security rules applied during periodic scans for
8591
+ # the project.
8592
+ # @return [Array<String>]
8593
+ #
8594
+ # @see http://docs.aws.amazon.com/goto/WebAPI/inspector2-2020-06-08/ProjectPeriodicScanConfiguration AWS API Documentation
8595
+ #
8596
+ class ProjectPeriodicScanConfiguration < Struct.new(
8597
+ :frequency_expression,
8598
+ :rule_set_categories)
8599
+ SENSITIVE = []
8600
+ include Aws::Structure
8601
+ end
8602
+
8603
+ # The provider-specific configuration details for creating a connector.
8604
+ #
8605
+ # @note ProviderDetailCreate is a union - when making an API calls you must set exactly one of the members.
8606
+ #
8607
+ # @!attribute [rw] azure
8608
+ # The Azure-specific details for creating a connector.
8609
+ # @return [Types::AzureProviderDetailCreate]
8610
+ #
8611
+ # @see http://docs.aws.amazon.com/goto/WebAPI/inspector2-2020-06-08/ProviderDetailCreate AWS API Documentation
8612
+ #
8613
+ class ProviderDetailCreate < Struct.new(
8614
+ :azure,
8615
+ :unknown)
8616
+ SENSITIVE = []
8617
+ include Aws::Structure
8618
+ include Aws::Structure::Union
8619
+
8620
+ class Azure < ProviderDetailCreate; end
8621
+ class Unknown < ProviderDetailCreate; end
8622
+ end
8623
+
8624
+ # The provider-specific configuration details for updating a connector.
8625
+ #
8626
+ # @note ProviderDetailUpdate is a union - when making an API calls you must set exactly one of the members.
8627
+ #
8628
+ # @!attribute [rw] azure
8629
+ # The Azure-specific details for updating a connector.
8630
+ # @return [Types::AzureProviderDetailUpdate]
8631
+ #
8632
+ # @see http://docs.aws.amazon.com/goto/WebAPI/inspector2-2020-06-08/ProviderDetailUpdate AWS API Documentation
8633
+ #
8634
+ class ProviderDetailUpdate < Struct.new(
8635
+ :azure,
8636
+ :unknown)
8637
+ SENSITIVE = []
8638
+ include Aws::Structure
8639
+ include Aws::Structure::Union
8640
+
8641
+ class Azure < ProviderDetailUpdate; end
8642
+ class Unknown < ProviderDetailUpdate; end
8643
+ end
8644
+
8645
+ # A filter that matches connectors by cloud provider.
8646
+ #
8647
+ # @!attribute [rw] comparison
8648
+ # The comparison operator for the provider filter.
8649
+ # @return [String]
8650
+ #
8651
+ # @!attribute [rw] value
8652
+ # The cloud provider value to filter by.
8653
+ # @return [String]
7294
8654
  #
7295
- # @see http://docs.aws.amazon.com/goto/WebAPI/inspector2-2020-06-08/ProjectPeriodicScanConfiguration AWS API Documentation
8655
+ # @see http://docs.aws.amazon.com/goto/WebAPI/inspector2-2020-06-08/ProviderFilter AWS API Documentation
7296
8656
  #
7297
- class ProjectPeriodicScanConfiguration < Struct.new(
7298
- :frequency_expression,
7299
- :rule_set_categories)
8657
+ class ProviderFilter < Struct.new(
8658
+ :comparison,
8659
+ :value)
7300
8660
  SENSITIVE = []
7301
8661
  include Aws::Structure
7302
8662
  end
@@ -7372,6 +8732,45 @@ module Aws::Inspector2
7372
8732
  # findings.
7373
8733
  # @return [String]
7374
8734
  #
8735
+ # @!attribute [rw] cloud_provider
8736
+ # The cloud service provider associated with this repository
8737
+ # aggregation. Valid values:
8738
+ #
8739
+ # * `AWS` – Findings from Amazon Web Services resources.
8740
+ #
8741
+ # * `AZURE` – Findings from Microsoft Azure resources.
8742
+ # @return [String]
8743
+ #
8744
+ # @!attribute [rw] cloud_partition
8745
+ # The cloud infrastructure partition associated with this repository
8746
+ # aggregation. Valid values:
8747
+ #
8748
+ # * `aws` – Amazon Web Services commercial Regions.
8749
+ #
8750
+ # * `aws-cn` – Amazon Web Services China Regions.
8751
+ #
8752
+ # * `aws-us-gov` – Amazon Web Services GovCloud (US) Regions.
8753
+ #
8754
+ # * `AzureCloud` – Azure commercial Regions.
8755
+ # @return [String]
8756
+ #
8757
+ # @!attribute [rw] cloud_region
8758
+ # The cloud Region associated with this repository aggregation. The
8759
+ # value format depends on the cloud provider:
8760
+ #
8761
+ # * An Amazon Web Services Region, such as `us-east-1`.
8762
+ #
8763
+ # * An Azure region, such as `eastus`.
8764
+ # @return [String]
8765
+ #
8766
+ # @!attribute [rw] cloud_org_id
8767
+ # The cloud organization ID for the repository aggregation.
8768
+ # @return [String]
8769
+ #
8770
+ # @!attribute [rw] cloud_account_id
8771
+ # The cloud account ID for the repository aggregation.
8772
+ # @return [String]
8773
+ #
7375
8774
  # @!attribute [rw] severity_counts
7376
8775
  # An object that represent the count of matched findings per severity.
7377
8776
  # @return [Types::SeverityCounts]
@@ -7385,6 +8784,11 @@ module Aws::Inspector2
7385
8784
  class RepositoryAggregationResponse < Struct.new(
7386
8785
  :repository,
7387
8786
  :account_id,
8787
+ :cloud_provider,
8788
+ :cloud_partition,
8789
+ :cloud_region,
8790
+ :cloud_org_id,
8791
+ :cloud_account_id,
7388
8792
  :severity_counts,
7389
8793
  :affected_images)
7390
8794
  SENSITIVE = []
@@ -7439,6 +8843,18 @@ module Aws::Inspector2
7439
8843
  # finding.
7440
8844
  # @return [Types::ResourceDetails]
7441
8845
  #
8846
+ # @!attribute [rw] provider
8847
+ # The cloud provider of the resource.
8848
+ # @return [String]
8849
+ #
8850
+ # @!attribute [rw] provider_account_id
8851
+ # The cloud provider account ID of the resource.
8852
+ # @return [String]
8853
+ #
8854
+ # @!attribute [rw] provider_org_id
8855
+ # The cloud provider organization ID of the resource.
8856
+ # @return [String]
8857
+ #
7442
8858
  # @see http://docs.aws.amazon.com/goto/WebAPI/inspector2-2020-06-08/Resource AWS API Documentation
7443
8859
  #
7444
8860
  class Resource < Struct.new(
@@ -7447,7 +8863,10 @@ module Aws::Inspector2
7447
8863
  :partition,
7448
8864
  :region,
7449
8865
  :tags,
7450
- :details)
8866
+ :details,
8867
+ :provider,
8868
+ :provider_account_id,
8869
+ :provider_org_id)
7451
8870
  SENSITIVE = []
7452
8871
  include Aws::Structure
7453
8872
  end
@@ -7474,13 +8893,31 @@ module Aws::Inspector2
7474
8893
  # finding.
7475
8894
  # @return [Types::CodeRepositoryDetails]
7476
8895
  #
8896
+ # @!attribute [rw] vm
8897
+ # An object that contains details about a VM instance involved in the
8898
+ # finding.
8899
+ # @return [Types::Vm]
8900
+ #
8901
+ # @!attribute [rw] image
8902
+ # An object that contains details about a container image involved in
8903
+ # the finding.
8904
+ # @return [Types::Image]
8905
+ #
8906
+ # @!attribute [rw] serverless_function
8907
+ # An object that contains details about a serverless function involved
8908
+ # in the finding.
8909
+ # @return [Types::ServerlessFunction]
8910
+ #
7477
8911
  # @see http://docs.aws.amazon.com/goto/WebAPI/inspector2-2020-06-08/ResourceDetails AWS API Documentation
7478
8912
  #
7479
8913
  class ResourceDetails < Struct.new(
7480
8914
  :aws_ec2_instance,
7481
8915
  :aws_ecr_container_image,
7482
8916
  :aws_lambda_function,
7483
- :code_repository)
8917
+ :code_repository,
8918
+ :vm,
8919
+ :image,
8920
+ :serverless_function)
7484
8921
  SENSITIVE = []
7485
8922
  include Aws::Structure
7486
8923
  end
@@ -7602,6 +9039,27 @@ module Aws::Inspector2
7602
9039
  # resource.
7603
9040
  # @return [Types::CodeRepositoryMetadata]
7604
9041
  #
9042
+ # @!attribute [rw] vm_instance
9043
+ # The VM instance metadata associated with a covered resource.
9044
+ # @return [Types::VmInstanceMetadata]
9045
+ #
9046
+ # @!attribute [rw] container_image
9047
+ # The container image metadata associated with a covered resource.
9048
+ # @return [Types::ContainerImageMetadata]
9049
+ #
9050
+ # @!attribute [rw] container_repository
9051
+ # The container repository metadata associated with a covered
9052
+ # resource.
9053
+ # @return [Types::ContainerRepositoryMetadata]
9054
+ #
9055
+ # @!attribute [rw] container_registry
9056
+ # The container registry metadata associated with a covered resource.
9057
+ # @return [Types::ContainerRegistryMetadata]
9058
+ #
9059
+ # @!attribute [rw] serverless_function
9060
+ # The serverless function metadata associated with a covered resource.
9061
+ # @return [Types::ServerlessFunctionMetadata]
9062
+ #
7605
9063
  # @see http://docs.aws.amazon.com/goto/WebAPI/inspector2-2020-06-08/ResourceScanMetadata AWS API Documentation
7606
9064
  #
7607
9065
  class ResourceScanMetadata < Struct.new(
@@ -7609,7 +9067,12 @@ module Aws::Inspector2
7609
9067
  :ecr_image,
7610
9068
  :ec2,
7611
9069
  :lambda_function,
7612
- :code_repository)
9070
+ :code_repository,
9071
+ :vm_instance,
9072
+ :container_image,
9073
+ :container_repository,
9074
+ :container_registry,
9075
+ :serverless_function)
7613
9076
  SENSITIVE = []
7614
9077
  include Aws::Structure
7615
9078
  end
@@ -7896,6 +9359,64 @@ module Aws::Inspector2
7896
9359
  class Unknown < Schedule; end
7897
9360
  end
7898
9361
 
9362
+ # The scope of resources that Amazon Inspector scans for a single
9363
+ # scanning type, including the scope level, the targeted resources, and
9364
+ # the current state.
9365
+ #
9366
+ # @!attribute [rw] scope_type
9367
+ # The type of scope. Valid values are `TENANT`, which scans all
9368
+ # resources in the Azure tenant, and `SUBSCRIPTION`, which scans only
9369
+ # the resources in the specified Azure subscriptions.
9370
+ # @return [String]
9371
+ #
9372
+ # @!attribute [rw] scope_values
9373
+ # The list of scope values. For subscription-level scope, these are
9374
+ # Azure subscription IDs.
9375
+ # @return [Array<String>]
9376
+ #
9377
+ # @!attribute [rw] state
9378
+ # The current state of the scope configuration.
9379
+ # @return [String]
9380
+ #
9381
+ # @!attribute [rw] state_reason
9382
+ # The reason for the current state of the scope configuration.
9383
+ # @return [String]
9384
+ #
9385
+ # @see http://docs.aws.amazon.com/goto/WebAPI/inspector2-2020-06-08/ScopeConfiguration AWS API Documentation
9386
+ #
9387
+ class ScopeConfiguration < Struct.new(
9388
+ :scope_type,
9389
+ :scope_values,
9390
+ :state,
9391
+ :state_reason)
9392
+ SENSITIVE = []
9393
+ include Aws::Structure
9394
+ end
9395
+
9396
+ # The scope of resources to scan for a single scanning type. Provide
9397
+ # this as part of an `AzureScopeConfigurationInput` when you create or
9398
+ # update a connector.
9399
+ #
9400
+ # @!attribute [rw] scope_type
9401
+ # The type of scope. Valid values are `TENANT`, which scans all
9402
+ # resources in the Azure tenant, and `SUBSCRIPTION`, which scans only
9403
+ # the resources in the specified Azure subscriptions.
9404
+ # @return [String]
9405
+ #
9406
+ # @!attribute [rw] scope_values
9407
+ # The list of scope values. For subscription-level scope, these are
9408
+ # Azure subscription IDs.
9409
+ # @return [Array<String>]
9410
+ #
9411
+ # @see http://docs.aws.amazon.com/goto/WebAPI/inspector2-2020-06-08/ScopeConfigurationInput AWS API Documentation
9412
+ #
9413
+ class ScopeConfigurationInput < Struct.new(
9414
+ :scope_type,
9415
+ :scope_values)
9416
+ SENSITIVE = []
9417
+ include Aws::Structure
9418
+ end
9419
+
7899
9420
  # Defines the scope of repositories to be included in code security
7900
9421
  # scans.
7901
9422
  #
@@ -7985,36 +9506,314 @@ module Aws::Inspector2
7985
9506
  include Aws::Structure
7986
9507
  end
7987
9508
 
7988
- # @see http://docs.aws.amazon.com/goto/WebAPI/inspector2-2020-06-08/SendCisSessionHealthResponse AWS API Documentation
9509
+ # @see http://docs.aws.amazon.com/goto/WebAPI/inspector2-2020-06-08/SendCisSessionHealthResponse AWS API Documentation
9510
+ #
9511
+ class SendCisSessionHealthResponse < Aws::EmptyStructure; end
9512
+
9513
+ # @!attribute [rw] scan_job_id
9514
+ # A unique identifier for the scan job.
9515
+ # @return [String]
9516
+ #
9517
+ # @!attribute [rw] session_token
9518
+ # The unique token that identifies the CIS session.
9519
+ # @return [String]
9520
+ #
9521
+ # @!attribute [rw] messages
9522
+ # The CIS session telemetry messages.
9523
+ # @return [Array<Types::CisSessionMessage>]
9524
+ #
9525
+ # @see http://docs.aws.amazon.com/goto/WebAPI/inspector2-2020-06-08/SendCisSessionTelemetryRequest AWS API Documentation
9526
+ #
9527
+ class SendCisSessionTelemetryRequest < Struct.new(
9528
+ :scan_job_id,
9529
+ :session_token,
9530
+ :messages)
9531
+ SENSITIVE = []
9532
+ include Aws::Structure
9533
+ end
9534
+
9535
+ # @see http://docs.aws.amazon.com/goto/WebAPI/inspector2-2020-06-08/SendCisSessionTelemetryResponse AWS API Documentation
9536
+ #
9537
+ class SendCisSessionTelemetryResponse < Aws::EmptyStructure; end
9538
+
9539
+ # Contains details about a serverless function involved in a finding.
9540
+ #
9541
+ # @!attribute [rw] serverless_function_name
9542
+ # The name of the serverless function.
9543
+ # @return [String]
9544
+ #
9545
+ # @!attribute [rw] runtime
9546
+ # The runtime of the serverless function.
9547
+ # @return [String]
9548
+ #
9549
+ # @!attribute [rw] version
9550
+ # The version of the serverless function.
9551
+ # @return [String]
9552
+ #
9553
+ # @!attribute [rw] code_digest
9554
+ # The code digest of the serverless function.
9555
+ # @return [String]
9556
+ #
9557
+ # @!attribute [rw] last_modified_at
9558
+ # The date and time the serverless function was last modified.
9559
+ # @return [Time]
9560
+ #
9561
+ # @!attribute [rw] network_id
9562
+ # The network ID associated with the serverless function.
9563
+ # @return [String]
9564
+ #
9565
+ # @!attribute [rw] subnet_ids
9566
+ # The subnet IDs associated with the serverless function.
9567
+ # @return [Array<String>]
9568
+ #
9569
+ # @!attribute [rw] security_group_ids
9570
+ # The security group IDs associated with the serverless function.
9571
+ # @return [Array<String>]
9572
+ #
9573
+ # @!attribute [rw] execution_role
9574
+ # The execution role of the serverless function.
9575
+ # @return [String]
9576
+ #
9577
+ # @!attribute [rw] package_type
9578
+ # The package type of the serverless function.
9579
+ # @return [String]
9580
+ #
9581
+ # @!attribute [rw] architectures
9582
+ # The architectures of the serverless function.
9583
+ # @return [Array<String>]
9584
+ #
9585
+ # @!attribute [rw] layers
9586
+ # The layers of the serverless function.
9587
+ # @return [Array<String>]
9588
+ #
9589
+ # @see http://docs.aws.amazon.com/goto/WebAPI/inspector2-2020-06-08/ServerlessFunction AWS API Documentation
9590
+ #
9591
+ class ServerlessFunction < Struct.new(
9592
+ :serverless_function_name,
9593
+ :runtime,
9594
+ :version,
9595
+ :code_digest,
9596
+ :last_modified_at,
9597
+ :network_id,
9598
+ :subnet_ids,
9599
+ :security_group_ids,
9600
+ :execution_role,
9601
+ :package_type,
9602
+ :architectures,
9603
+ :layers)
9604
+ SENSITIVE = []
9605
+ include Aws::Structure
9606
+ end
9607
+
9608
+ # An aggregation of information about serverless functions.
9609
+ #
9610
+ # @!attribute [rw] resource_ids
9611
+ # The resource IDs to aggregate findings for.
9612
+ # @return [Array<Types::StringFilter>]
9613
+ #
9614
+ # @!attribute [rw] function_names
9615
+ # The function names to aggregate findings for.
9616
+ # @return [Array<Types::StringFilter>]
9617
+ #
9618
+ # @!attribute [rw] runtimes
9619
+ # The runtimes to aggregate findings for.
9620
+ # @return [Array<Types::StringFilter>]
9621
+ #
9622
+ # @!attribute [rw] function_tags
9623
+ # The function tags to aggregate findings for.
9624
+ # @return [Array<Types::MapFilter>]
9625
+ #
9626
+ # @!attribute [rw] cloud_providers
9627
+ # The cloud providers to aggregate findings for. Valid values:
9628
+ #
9629
+ # * `AWS` – Findings from Amazon Web Services resources.
9630
+ #
9631
+ # * `AZURE` – Findings from Microsoft Azure resources.
9632
+ # @return [Array<Types::StringFilter>]
9633
+ #
9634
+ # @!attribute [rw] cloud_partitions
9635
+ # The cloud partitions to aggregate findings for. Valid values:
9636
+ #
9637
+ # * `aws` – Amazon Web Services commercial Regions.
9638
+ #
9639
+ # * `aws-cn` – Amazon Web Services China Regions.
9640
+ #
9641
+ # * `aws-us-gov` – Amazon Web Services GovCloud (US) Regions.
9642
+ #
9643
+ # * `AzureCloud` – Azure commercial Regions.
9644
+ # @return [Array<Types::StringFilter>]
9645
+ #
9646
+ # @!attribute [rw] cloud_regions
9647
+ # The cloud regions to aggregate findings for. The value format
9648
+ # depends on the cloud provider:
9649
+ #
9650
+ # * An Amazon Web Services Region, such as `us-east-1`.
9651
+ #
9652
+ # * An Azure region, such as `eastus`.
9653
+ # @return [Array<Types::StringFilter>]
9654
+ #
9655
+ # @!attribute [rw] cloud_org_ids
9656
+ # The cloud organization IDs to aggregate findings for.
9657
+ # @return [Array<Types::StringFilter>]
9658
+ #
9659
+ # @!attribute [rw] cloud_account_ids
9660
+ # The cloud account IDs to aggregate findings for.
9661
+ # @return [Array<Types::StringFilter>]
9662
+ #
9663
+ # @!attribute [rw] sort_order
9664
+ # The order to sort results by. Valid values are `ASC` and `DESC`.
9665
+ # @return [String]
9666
+ #
9667
+ # @!attribute [rw] sort_by
9668
+ # The value to sort results by. Specify a field name from the
9669
+ # aggregation response, such as `CRITICAL`, `HIGH`, or `ALL`.
9670
+ # @return [String]
9671
+ #
9672
+ # @see http://docs.aws.amazon.com/goto/WebAPI/inspector2-2020-06-08/ServerlessFunctionAggregation AWS API Documentation
9673
+ #
9674
+ class ServerlessFunctionAggregation < Struct.new(
9675
+ :resource_ids,
9676
+ :function_names,
9677
+ :runtimes,
9678
+ :function_tags,
9679
+ :cloud_providers,
9680
+ :cloud_partitions,
9681
+ :cloud_regions,
9682
+ :cloud_org_ids,
9683
+ :cloud_account_ids,
9684
+ :sort_order,
9685
+ :sort_by)
9686
+ SENSITIVE = []
9687
+ include Aws::Structure
9688
+ end
9689
+
9690
+ # A response that contains the results of a serverless function
9691
+ # aggregation.
9692
+ #
9693
+ # @!attribute [rw] resource_id
9694
+ # The resource ID for the serverless function.
9695
+ # @return [String]
9696
+ #
9697
+ # @!attribute [rw] cloud_provider
9698
+ # The cloud service provider associated with this serverless function
9699
+ # aggregation. Valid values:
9700
+ #
9701
+ # * `AWS` – Findings from Amazon Web Services resources.
9702
+ #
9703
+ # * `AZURE` – Findings from Microsoft Azure resources.
9704
+ # @return [String]
9705
+ #
9706
+ # @!attribute [rw] cloud_account_id
9707
+ # The cloud account ID for the serverless function aggregation.
9708
+ # @return [String]
9709
+ #
9710
+ # @!attribute [rw] cloud_partition
9711
+ # The cloud infrastructure partition associated with this serverless
9712
+ # function aggregation. Valid values:
9713
+ #
9714
+ # * `aws` – Amazon Web Services commercial Regions.
9715
+ #
9716
+ # * `aws-cn` – Amazon Web Services China Regions.
9717
+ #
9718
+ # * `aws-us-gov` – Amazon Web Services GovCloud (US) Regions.
9719
+ #
9720
+ # * `AzureCloud` – Azure commercial Regions.
9721
+ # @return [String]
9722
+ #
9723
+ # @!attribute [rw] cloud_region
9724
+ # The cloud Region associated with this serverless function
9725
+ # aggregation. The value format depends on the cloud provider:
9726
+ #
9727
+ # * An Amazon Web Services Region, such as `us-east-1`.
9728
+ #
9729
+ # * An Azure region, such as `eastus`.
9730
+ # @return [String]
9731
+ #
9732
+ # @!attribute [rw] cloud_org_id
9733
+ # The cloud organization ID for the serverless function aggregation.
9734
+ # @return [String]
9735
+ #
9736
+ # @!attribute [rw] function_name
9737
+ # The name of the serverless function.
9738
+ # @return [String]
9739
+ #
9740
+ # @!attribute [rw] runtime
9741
+ # The runtime of the serverless function.
9742
+ # @return [String]
9743
+ #
9744
+ # @!attribute [rw] tags
9745
+ # The tags attached to the serverless function.
9746
+ # @return [Hash<String,String>]
9747
+ #
9748
+ # @!attribute [rw] account_id
9749
+ # The account ID associated with the serverless function.
9750
+ # @return [String]
9751
+ #
9752
+ # @!attribute [rw] severity_counts
9753
+ # An object that contains the counts of aggregated finding per
9754
+ # severity.
9755
+ # @return [Types::SeverityCounts]
9756
+ #
9757
+ # @!attribute [rw] last_modified_at
9758
+ # The date and time the serverless function was last modified.
9759
+ # @return [Time]
9760
+ #
9761
+ # @!attribute [rw] exploit_available_active_findings_count
9762
+ # The number of active findings with an exploit available for the
9763
+ # serverless function.
9764
+ # @return [Integer]
9765
+ #
9766
+ # @!attribute [rw] fix_available_active_findings_count
9767
+ # The number of active findings with a fix available for the
9768
+ # serverless function.
9769
+ # @return [Integer]
9770
+ #
9771
+ # @see http://docs.aws.amazon.com/goto/WebAPI/inspector2-2020-06-08/ServerlessFunctionAggregationResponse AWS API Documentation
9772
+ #
9773
+ class ServerlessFunctionAggregationResponse < Struct.new(
9774
+ :resource_id,
9775
+ :cloud_provider,
9776
+ :cloud_account_id,
9777
+ :cloud_partition,
9778
+ :cloud_region,
9779
+ :cloud_org_id,
9780
+ :function_name,
9781
+ :runtime,
9782
+ :tags,
9783
+ :account_id,
9784
+ :severity_counts,
9785
+ :last_modified_at,
9786
+ :exploit_available_active_findings_count,
9787
+ :fix_available_active_findings_count)
9788
+ SENSITIVE = []
9789
+ include Aws::Structure
9790
+ end
9791
+
9792
+ # Contains metadata about a serverless function associated with a
9793
+ # covered resource.
7989
9794
  #
7990
- class SendCisSessionHealthResponse < Aws::EmptyStructure; end
7991
-
7992
- # @!attribute [rw] scan_job_id
7993
- # A unique identifier for the scan job.
9795
+ # @!attribute [rw] serverless_function_name
9796
+ # The name of the serverless function.
7994
9797
  # @return [String]
7995
9798
  #
7996
- # @!attribute [rw] session_token
7997
- # The unique token that identifies the CIS session.
9799
+ # @!attribute [rw] runtime
9800
+ # The runtime of the serverless function.
7998
9801
  # @return [String]
7999
9802
  #
8000
- # @!attribute [rw] messages
8001
- # The CIS session telemetry messages.
8002
- # @return [Array<Types::CisSessionMessage>]
9803
+ # @!attribute [rw] function_tags
9804
+ # The tags associated with the serverless function.
9805
+ # @return [Hash<String,String>]
8003
9806
  #
8004
- # @see http://docs.aws.amazon.com/goto/WebAPI/inspector2-2020-06-08/SendCisSessionTelemetryRequest AWS API Documentation
9807
+ # @see http://docs.aws.amazon.com/goto/WebAPI/inspector2-2020-06-08/ServerlessFunctionMetadata AWS API Documentation
8005
9808
  #
8006
- class SendCisSessionTelemetryRequest < Struct.new(
8007
- :scan_job_id,
8008
- :session_token,
8009
- :messages)
9809
+ class ServerlessFunctionMetadata < Struct.new(
9810
+ :serverless_function_name,
9811
+ :runtime,
9812
+ :function_tags)
8010
9813
  SENSITIVE = []
8011
9814
  include Aws::Structure
8012
9815
  end
8013
9816
 
8014
- # @see http://docs.aws.amazon.com/goto/WebAPI/inspector2-2020-06-08/SendCisSessionTelemetryResponse AWS API Documentation
8015
- #
8016
- class SendCisSessionTelemetryResponse < Aws::EmptyStructure; end
8017
-
8018
9817
  # You have exceeded your service quota. To perform the requested action,
8019
9818
  # remove some of the relevant resources, or use Service Quotas to
8020
9819
  # request a service quota increase.
@@ -8502,6 +10301,10 @@ module Aws::Inspector2
8502
10301
  # The resource type to aggregate on.
8503
10302
  # @return [String]
8504
10303
  #
10304
+ # @!attribute [rw] finding_type
10305
+ # The type of finding to aggregate on.
10306
+ # @return [String]
10307
+ #
8505
10308
  # @!attribute [rw] sort_order
8506
10309
  # The order to sort results by.
8507
10310
  # @return [String]
@@ -8510,19 +10313,15 @@ module Aws::Inspector2
8510
10313
  # The value to sort results by.
8511
10314
  # @return [String]
8512
10315
  #
8513
- # @!attribute [rw] finding_type
8514
- # The type of finding to aggregate on.
8515
- # @return [String]
8516
- #
8517
10316
  # @see http://docs.aws.amazon.com/goto/WebAPI/inspector2-2020-06-08/TitleAggregation AWS API Documentation
8518
10317
  #
8519
10318
  class TitleAggregation < Struct.new(
8520
10319
  :titles,
8521
10320
  :vulnerability_ids,
8522
10321
  :resource_type,
10322
+ :finding_type,
8523
10323
  :sort_order,
8524
- :sort_by,
8525
- :finding_type)
10324
+ :sort_by)
8526
10325
  SENSITIVE = []
8527
10326
  include Aws::Structure
8528
10327
  end
@@ -8709,6 +10508,45 @@ module Aws::Inspector2
8709
10508
  include Aws::Structure
8710
10509
  end
8711
10510
 
10511
+ # The per-scan-type inheritance reset settings for the
10512
+ # `UpdateConfiguration` operation. Each member is independently
10513
+ # optional. Including a member in this structure resets that scan
10514
+ # type's configuration to inherit from the delegated administrator.
10515
+ #
10516
+ # @!attribute [rw] ec2_configuration
10517
+ # The inheritance mode for Amazon EC2 scan configuration. Set to
10518
+ # `INHERIT_FROM_ADMIN` to reset the member account's Amazon EC2 scan
10519
+ # configuration to inherit from the delegated administrator. If
10520
+ # omitted, the member account's existing Amazon EC2 scan
10521
+ # configuration is not changed.
10522
+ # @return [String]
10523
+ #
10524
+ # @!attribute [rw] ecr_configuration
10525
+ # The inheritance mode for Amazon ECR scan configuration. Set to
10526
+ # `INHERIT_FROM_ADMIN` to reset the member account's Amazon ECR scan
10527
+ # configuration to inherit from the delegated administrator. If
10528
+ # omitted, the member account's existing Amazon ECR scan
10529
+ # configuration is not changed.
10530
+ # @return [String]
10531
+ #
10532
+ # @see http://docs.aws.amazon.com/goto/WebAPI/inspector2-2020-06-08/UpdateConfigurationInheritance AWS API Documentation
10533
+ #
10534
+ class UpdateConfigurationInheritance < Struct.new(
10535
+ :ec2_configuration,
10536
+ :ecr_configuration)
10537
+ SENSITIVE = []
10538
+ include Aws::Structure
10539
+ end
10540
+
10541
+ # @!attribute [rw] account_id
10542
+ # The 12-digit Amazon Web Services account ID of the member account
10543
+ # whose scan configuration you want to update. When specified, you
10544
+ # must be the delegated administrator for this member account. If not
10545
+ # specified, the operation updates your own configuration and
10546
+ # propagates changes to any member accounts that have not been
10547
+ # individually configured.
10548
+ # @return [String]
10549
+ #
8712
10550
  # @!attribute [rw] ecr_configuration
8713
10551
  # Specifies how the ECR automated re-scan will be updated for your
8714
10552
  # environment.
@@ -8719,11 +10557,23 @@ module Aws::Inspector2
8719
10557
  # environment.
8720
10558
  # @return [Types::Ec2Configuration]
8721
10559
  #
10560
+ # @!attribute [rw] update_configuration_inheritance
10561
+ # Specifies which scan-type configurations to reset to the delegated
10562
+ # administrator's inherited values for the targeted member account.
10563
+ # Each member of this structure is independently optional. When
10564
+ # specified, `ec2Configuration` and `ecrConfiguration` must be absent,
10565
+ # and `accountId` must also be present. Only `INHERIT_FROM_ADMIN` is
10566
+ # valid for each member. If not specified, the operation uses the
10567
+ # `ec2Configuration` and `ecrConfiguration` parameters instead.
10568
+ # @return [Types::UpdateConfigurationInheritance]
10569
+ #
8722
10570
  # @see http://docs.aws.amazon.com/goto/WebAPI/inspector2-2020-06-08/UpdateConfigurationRequest AWS API Documentation
8723
10571
  #
8724
10572
  class UpdateConfigurationRequest < Struct.new(
10573
+ :account_id,
8725
10574
  :ecr_configuration,
8726
- :ec2_configuration)
10575
+ :ec2_configuration,
10576
+ :update_configuration_inheritance)
8727
10577
  SENSITIVE = []
8728
10578
  include Aws::Structure
8729
10579
  end
@@ -8732,6 +10582,62 @@ module Aws::Inspector2
8732
10582
  #
8733
10583
  class UpdateConfigurationResponse < Aws::EmptyStructure; end
8734
10584
 
10585
+ # @!attribute [rw] connector_arn
10586
+ # The Amazon Resource Name (ARN) of the connector to update.
10587
+ # @return [String]
10588
+ #
10589
+ # @!attribute [rw] description
10590
+ # The updated description of the connector.
10591
+ # @return [String]
10592
+ #
10593
+ # @!attribute [rw] provider_detail
10594
+ # The updated provider-specific configuration details for the
10595
+ # connector.
10596
+ # @return [Types::ProviderDetailUpdate]
10597
+ #
10598
+ # @see http://docs.aws.amazon.com/goto/WebAPI/inspector2-2020-06-08/UpdateConnectorRequest AWS API Documentation
10599
+ #
10600
+ class UpdateConnectorRequest < Struct.new(
10601
+ :connector_arn,
10602
+ :description,
10603
+ :provider_detail)
10604
+ SENSITIVE = []
10605
+ include Aws::Structure
10606
+ end
10607
+
10608
+ # @!attribute [rw] connector_arn
10609
+ # The Amazon Resource Name (ARN) of the updated connector.
10610
+ # @return [String]
10611
+ #
10612
+ # @see http://docs.aws.amazon.com/goto/WebAPI/inspector2-2020-06-08/UpdateConnectorResponse AWS API Documentation
10613
+ #
10614
+ class UpdateConnectorResponse < Struct.new(
10615
+ :connector_arn)
10616
+ SENSITIVE = []
10617
+ include Aws::Structure
10618
+ end
10619
+
10620
+ # @!attribute [rw] aws_config_connector_arn
10621
+ # The ARN of the Amazon Web Services Config connector.
10622
+ # @return [String]
10623
+ #
10624
+ # @!attribute [rw] scan_configuration
10625
+ # The scan configuration settings to apply.
10626
+ # @return [Types::ConnectorScanConfiguration]
10627
+ #
10628
+ # @see http://docs.aws.amazon.com/goto/WebAPI/inspector2-2020-06-08/UpdateConnectorScanConfigurationRequest AWS API Documentation
10629
+ #
10630
+ class UpdateConnectorScanConfigurationRequest < Struct.new(
10631
+ :aws_config_connector_arn,
10632
+ :scan_configuration)
10633
+ SENSITIVE = []
10634
+ include Aws::Structure
10635
+ end
10636
+
10637
+ # @see http://docs.aws.amazon.com/goto/WebAPI/inspector2-2020-06-08/UpdateConnectorScanConfigurationResponse AWS API Documentation
10638
+ #
10639
+ class UpdateConnectorScanConfigurationResponse < Aws::EmptyStructure; end
10640
+
8735
10641
  # @!attribute [rw] activate_deep_inspection
8736
10642
  # Specify `TRUE` to activate Amazon Inspector deep inspection in your
8737
10643
  # account, or `FALSE` to deactivate. Member accounts in an
@@ -8992,13 +10898,18 @@ module Aws::Inspector2
8992
10898
  # The currency type used when calculating usage data.
8993
10899
  # @return [String]
8994
10900
  #
10901
+ # @!attribute [rw] cloud_provider
10902
+ # The cloud provider associated with the usage information.
10903
+ # @return [String]
10904
+ #
8995
10905
  # @see http://docs.aws.amazon.com/goto/WebAPI/inspector2-2020-06-08/Usage AWS API Documentation
8996
10906
  #
8997
10907
  class Usage < Struct.new(
8998
10908
  :type,
8999
10909
  :total,
9000
10910
  :estimated_monthly_cost,
9001
- :currency)
10911
+ :currency,
10912
+ :cloud_provider)
9002
10913
  SENSITIVE = []
9003
10914
  include Aws::Structure
9004
10915
  end
@@ -9089,6 +11000,290 @@ module Aws::Inspector2
9089
11000
  include Aws::Structure
9090
11001
  end
9091
11002
 
11003
+ # Contains details about a VM instance involved in a finding.
11004
+ #
11005
+ # @!attribute [rw] type
11006
+ # The type of the VM instance.
11007
+ # @return [String]
11008
+ #
11009
+ # @!attribute [rw] vm_name
11010
+ # The name of the VM instance.
11011
+ # @return [String]
11012
+ #
11013
+ # @!attribute [rw] vm_image_reference
11014
+ # The image reference of the VM instance.
11015
+ # @return [String]
11016
+ #
11017
+ # @!attribute [rw] ip_v4_addresses
11018
+ # The IPv4 addresses of the VM instance.
11019
+ # @return [Array<String>]
11020
+ #
11021
+ # @!attribute [rw] ip_v6_addresses
11022
+ # The IPv6 addresses of the VM instance.
11023
+ # @return [Array<String>]
11024
+ #
11025
+ # @!attribute [rw] network_id
11026
+ # The network ID associated with the VM instance.
11027
+ # @return [String]
11028
+ #
11029
+ # @!attribute [rw] subnet_ids
11030
+ # The subnet IDs of the VM instance.
11031
+ # @return [Array<String>]
11032
+ #
11033
+ # @!attribute [rw] security_group_ids
11034
+ # The security group IDs associated with the VM instance.
11035
+ # @return [Array<String>]
11036
+ #
11037
+ # @!attribute [rw] launched_at
11038
+ # The date and time the VM instance was launched.
11039
+ # @return [Time]
11040
+ #
11041
+ # @!attribute [rw] platform
11042
+ # The platform of the VM instance.
11043
+ # @return [String]
11044
+ #
11045
+ # @!attribute [rw] execution_role
11046
+ # The execution role of the VM instance.
11047
+ # @return [String]
11048
+ #
11049
+ # @!attribute [rw] key_name
11050
+ # The key name associated with the VM instance.
11051
+ # @return [String]
11052
+ #
11053
+ # @see http://docs.aws.amazon.com/goto/WebAPI/inspector2-2020-06-08/Vm AWS API Documentation
11054
+ #
11055
+ class Vm < Struct.new(
11056
+ :type,
11057
+ :vm_name,
11058
+ :vm_image_reference,
11059
+ :ip_v4_addresses,
11060
+ :ip_v6_addresses,
11061
+ :network_id,
11062
+ :subnet_ids,
11063
+ :security_group_ids,
11064
+ :launched_at,
11065
+ :platform,
11066
+ :execution_role,
11067
+ :key_name)
11068
+ SENSITIVE = []
11069
+ include Aws::Structure
11070
+ end
11071
+
11072
+ # An aggregation of information about VM instances.
11073
+ #
11074
+ # @!attribute [rw] resource_ids
11075
+ # The resource IDs to aggregate findings for.
11076
+ # @return [Array<Types::StringFilter>]
11077
+ #
11078
+ # @!attribute [rw] operating_systems
11079
+ # The operating systems to aggregate findings for.
11080
+ # @return [Array<Types::StringFilter>]
11081
+ #
11082
+ # @!attribute [rw] instance_tags
11083
+ # The instance tags to aggregate findings for.
11084
+ # @return [Array<Types::MapFilter>]
11085
+ #
11086
+ # @!attribute [rw] vm_image_references
11087
+ # The VM image references to aggregate findings for.
11088
+ # @return [Array<Types::StringFilter>]
11089
+ #
11090
+ # @!attribute [rw] cloud_providers
11091
+ # The cloud providers to aggregate findings for. Valid values:
11092
+ #
11093
+ # * `AWS` – Findings from Amazon Web Services resources.
11094
+ #
11095
+ # * `AZURE` – Findings from Microsoft Azure resources.
11096
+ # @return [Array<Types::StringFilter>]
11097
+ #
11098
+ # @!attribute [rw] cloud_partitions
11099
+ # The cloud partitions to aggregate findings for. Valid values:
11100
+ #
11101
+ # * `aws` – Amazon Web Services commercial Regions.
11102
+ #
11103
+ # * `aws-cn` – Amazon Web Services China Regions.
11104
+ #
11105
+ # * `aws-us-gov` – Amazon Web Services GovCloud (US) Regions.
11106
+ #
11107
+ # * `AzureCloud` – Azure commercial Regions.
11108
+ # @return [Array<Types::StringFilter>]
11109
+ #
11110
+ # @!attribute [rw] cloud_regions
11111
+ # The cloud regions to aggregate findings for. The value format
11112
+ # depends on the cloud provider:
11113
+ #
11114
+ # * An Amazon Web Services Region, such as `us-east-1`.
11115
+ #
11116
+ # * An Azure region, such as `eastus`.
11117
+ # @return [Array<Types::StringFilter>]
11118
+ #
11119
+ # @!attribute [rw] cloud_org_ids
11120
+ # The cloud organization IDs to aggregate findings for.
11121
+ # @return [Array<Types::StringFilter>]
11122
+ #
11123
+ # @!attribute [rw] cloud_account_ids
11124
+ # The cloud account IDs to aggregate findings for.
11125
+ # @return [Array<Types::StringFilter>]
11126
+ #
11127
+ # @!attribute [rw] sort_order
11128
+ # The order to sort results by. Valid values are `ASC` and `DESC`.
11129
+ # @return [String]
11130
+ #
11131
+ # @!attribute [rw] sort_by
11132
+ # The value to sort results by. Specify a field name from the
11133
+ # aggregation response, such as `CRITICAL`, `HIGH`, `ALL`, or
11134
+ # `NETWORK_FINDINGS`.
11135
+ # @return [String]
11136
+ #
11137
+ # @see http://docs.aws.amazon.com/goto/WebAPI/inspector2-2020-06-08/VmInstanceAggregation AWS API Documentation
11138
+ #
11139
+ class VmInstanceAggregation < Struct.new(
11140
+ :resource_ids,
11141
+ :operating_systems,
11142
+ :instance_tags,
11143
+ :vm_image_references,
11144
+ :cloud_providers,
11145
+ :cloud_partitions,
11146
+ :cloud_regions,
11147
+ :cloud_org_ids,
11148
+ :cloud_account_ids,
11149
+ :sort_order,
11150
+ :sort_by)
11151
+ SENSITIVE = []
11152
+ include Aws::Structure
11153
+ end
11154
+
11155
+ # A response that contains the results of a VM instance aggregation.
11156
+ #
11157
+ # @!attribute [rw] resource_id
11158
+ # The resource ID for the VM instance.
11159
+ # @return [String]
11160
+ #
11161
+ # @!attribute [rw] cloud_provider
11162
+ # The cloud service provider associated with this VM instance
11163
+ # aggregation. Valid values:
11164
+ #
11165
+ # * `AWS` – Findings from Amazon Web Services resources.
11166
+ #
11167
+ # * `AZURE` – Findings from Microsoft Azure resources.
11168
+ # @return [String]
11169
+ #
11170
+ # @!attribute [rw] cloud_account_id
11171
+ # The cloud account ID for the VM instance aggregation.
11172
+ # @return [String]
11173
+ #
11174
+ # @!attribute [rw] cloud_partition
11175
+ # The cloud infrastructure partition associated with this VM instance
11176
+ # aggregation. Valid values:
11177
+ #
11178
+ # * `aws` – Amazon Web Services commercial Regions.
11179
+ #
11180
+ # * `aws-cn` – Amazon Web Services China Regions.
11181
+ #
11182
+ # * `aws-us-gov` – Amazon Web Services GovCloud (US) Regions.
11183
+ #
11184
+ # * `AzureCloud` – Azure commercial Regions.
11185
+ # @return [String]
11186
+ #
11187
+ # @!attribute [rw] cloud_region
11188
+ # The cloud Region associated with this VM instance aggregation. The
11189
+ # value format depends on the cloud provider:
11190
+ #
11191
+ # * An Amazon Web Services Region, such as `us-east-1`.
11192
+ #
11193
+ # * An Azure region, such as `eastus`.
11194
+ # @return [String]
11195
+ #
11196
+ # @!attribute [rw] cloud_org_id
11197
+ # The cloud organization ID for the VM instance aggregation.
11198
+ # @return [String]
11199
+ #
11200
+ # @!attribute [rw] vm_image_reference
11201
+ # The VM image reference for the VM instance.
11202
+ # @return [String]
11203
+ #
11204
+ # @!attribute [rw] operating_system
11205
+ # The operating system of the VM instance.
11206
+ # @return [String]
11207
+ #
11208
+ # @!attribute [rw] tags
11209
+ # The tags attached to the VM instance.
11210
+ # @return [Hash<String,String>]
11211
+ #
11212
+ # @!attribute [rw] account_id
11213
+ # The account ID associated with the VM instance.
11214
+ # @return [String]
11215
+ #
11216
+ # @!attribute [rw] severity_counts
11217
+ # An object that contains the counts of aggregated finding per
11218
+ # severity.
11219
+ # @return [Types::SeverityCounts]
11220
+ #
11221
+ # @!attribute [rw] network_findings
11222
+ # The number of network findings for the VM instance. This field
11223
+ # applies only to Amazon Web Services resources.
11224
+ # @return [Integer]
11225
+ #
11226
+ # @!attribute [rw] exploit_available_active_findings_count
11227
+ # The number of active findings with an exploit available for the VM
11228
+ # instance.
11229
+ # @return [Integer]
11230
+ #
11231
+ # @!attribute [rw] fix_available_active_findings_count
11232
+ # The number of active findings with a fix available for the VM
11233
+ # instance.
11234
+ # @return [Integer]
11235
+ #
11236
+ # @see http://docs.aws.amazon.com/goto/WebAPI/inspector2-2020-06-08/VmInstanceAggregationResponse AWS API Documentation
11237
+ #
11238
+ class VmInstanceAggregationResponse < Struct.new(
11239
+ :resource_id,
11240
+ :cloud_provider,
11241
+ :cloud_account_id,
11242
+ :cloud_partition,
11243
+ :cloud_region,
11244
+ :cloud_org_id,
11245
+ :vm_image_reference,
11246
+ :operating_system,
11247
+ :tags,
11248
+ :account_id,
11249
+ :severity_counts,
11250
+ :network_findings,
11251
+ :exploit_available_active_findings_count,
11252
+ :fix_available_active_findings_count)
11253
+ SENSITIVE = []
11254
+ include Aws::Structure
11255
+ end
11256
+
11257
+ # Contains metadata about a virtual machine (VM) instance associated
11258
+ # with a covered resource.
11259
+ #
11260
+ # @!attribute [rw] tags
11261
+ # The tags associated with the VM instance.
11262
+ # @return [Hash<String,String>]
11263
+ #
11264
+ # @!attribute [rw] platform
11265
+ # The platform of the VM instance.
11266
+ # @return [String]
11267
+ #
11268
+ # @!attribute [rw] inventory_hash
11269
+ # The inventory hash of the VM instance.
11270
+ # @return [String]
11271
+ #
11272
+ # @!attribute [rw] vm_image_reference
11273
+ # The image reference of the VM instance.
11274
+ # @return [String]
11275
+ #
11276
+ # @see http://docs.aws.amazon.com/goto/WebAPI/inspector2-2020-06-08/VmInstanceMetadata AWS API Documentation
11277
+ #
11278
+ class VmInstanceMetadata < Struct.new(
11279
+ :tags,
11280
+ :platform,
11281
+ :inventory_hash,
11282
+ :vm_image_reference)
11283
+ SENSITIVE = []
11284
+ include Aws::Structure
11285
+ end
11286
+
9092
11287
  # Contains details about a specific vulnerability Amazon Inspector can
9093
11288
  # detect.
9094
11289
  #