aws-sdk-inspector2 1.11.0 → 1.12.0

checksums.yaml

@@ -1,7 +1,7 @@
 ---
 SHA256:
-  metadata.gz: 76d22a5063b8b38a59b8b39a541bbb859caef45afaf8c9fcc6dce881b2053918
-  data.tar.gz: 0d49f55c3b42d98e2cf3dd258d094cb2cb375d7710ae5c1739a84f24f5992879
+  metadata.gz: 37045386cef6441373fa42145f3ecf648fef0f4322fad6515b80719539a77473
+  data.tar.gz: b815de9f7ae4804241a5aabc60fede44880a5ba087b92d4000e179b7c7fee2ca
 SHA512:
-  metadata.gz: dd7c51e1e87978abb565408a52163832ffd9daaa38deadb82990391bf647714fc09a2aad78bbe790a6820abf94f125b00f54fd0b4f7aa96b9e925d6256f1a38c
-  data.tar.gz: f5427e323864a8e6a0caf4b29225931b4dac036f165a049adf2e088f8b2948de9398265258b4eff3dc7b741c38610014e37d6621fa65c66783bd0edc613b43b1
+  metadata.gz: 1b1f03de0aaef59011515095e6fbd52e881a1ff9a49c798d7048af053da8d2db939b786a32f263332ebcd01e988d0df84b096f02af018f5c460055216687ab32
+  data.tar.gz: a20ac868d3f766413ca6cc2a70ed86276d9fcbeef6db46c9e2d609727c3ac2b2b903b109959141cca536e6d4ee92963af94fd7912f0785a05b110ddbdf26de70

data/CHANGELOG.md

@@ -1,6 +1,11 @@
 Unreleased Changes
 ------------------
 
+1.12.0 (2023-05-05)
+------------------
+
+* Feature - Amazon Inspector now allows customers to search its vulnerability intelligence database if any of the Inspector scanning types are activated.
+
 1.11.0 (2023-05-03)
 ------------------
 

data/VERSION

@@ -1 +1 @@
-1.11.0
+1.12.0

data/lib/aws-sdk-inspector2/client.rb

@@ -3158,6 +3158,79 @@ module Aws::Inspector2
       req.send_request(options)
     end
 
+    # Lists Amazon Inspector coverage details for a specific vulnerability.
+    #
+    # @option params [required, Types::SearchVulnerabilitiesFilterCriteria] :filter_criteria
+    #   The criteria used to filter the results of a vulnerability search.
+    #
+    # @option params [String] :next_token
+    #   A token to use for paginating results that are returned in the
+    #   response. Set the value of this parameter to null for the first
+    #   request to a list action. For subsequent calls, use the `NextToken`
+    #   value returned from the previous request to continue listing results
+    #   after the first page.
+    #
+    # @return [Types::SearchVulnerabilitiesResponse] Returns a {Seahorse::Client::Response response} object which responds to the following methods:
+    #
+    #   * {Types::SearchVulnerabilitiesResponse#next_token #next_token} => String
+    #   * {Types::SearchVulnerabilitiesResponse#vulnerabilities #vulnerabilities} => Array<Types::Vulnerability>
+    #
+    # The returned {Seahorse::Client::Response response} is a pageable response and is Enumerable. For details on usage see {Aws::PageableResponse PageableResponse}.
+    #
+    # @example Request syntax with placeholder values
+    #
+    #   resp = client.search_vulnerabilities({
+    #     filter_criteria: { # required
+    #       vulnerability_ids: ["VulnId"], # required
+    #     },
+    #     next_token: "NextToken",
+    #   })
+    #
+    # @example Response structure
+    #
+    #   resp.next_token #=> String
+    #   resp.vulnerabilities #=> Array
+    #   resp.vulnerabilities[0].atig_data.first_seen #=> Time
+    #   resp.vulnerabilities[0].atig_data.last_seen #=> Time
+    #   resp.vulnerabilities[0].atig_data.targets #=> Array
+    #   resp.vulnerabilities[0].atig_data.targets[0] #=> String
+    #   resp.vulnerabilities[0].atig_data.ttps #=> Array
+    #   resp.vulnerabilities[0].atig_data.ttps[0] #=> String
+    #   resp.vulnerabilities[0].cisa_data.action #=> String
+    #   resp.vulnerabilities[0].cisa_data.date_added #=> Time
+    #   resp.vulnerabilities[0].cisa_data.date_due #=> Time
+    #   resp.vulnerabilities[0].cvss2.base_score #=> Float
+    #   resp.vulnerabilities[0].cvss2.scoring_vector #=> String
+    #   resp.vulnerabilities[0].cvss3.base_score #=> Float
+    #   resp.vulnerabilities[0].cvss3.scoring_vector #=> String
+    #   resp.vulnerabilities[0].cwes #=> Array
+    #   resp.vulnerabilities[0].cwes[0] #=> String
+    #   resp.vulnerabilities[0].description #=> String
+    #   resp.vulnerabilities[0].detection_platforms #=> Array
+    #   resp.vulnerabilities[0].detection_platforms[0] #=> String
+    #   resp.vulnerabilities[0].epss.score #=> Float
+    #   resp.vulnerabilities[0].exploit_observed.first_seen #=> Time
+    #   resp.vulnerabilities[0].exploit_observed.last_seen #=> Time
+    #   resp.vulnerabilities[0].id #=> String
+    #   resp.vulnerabilities[0].reference_urls #=> Array
+    #   resp.vulnerabilities[0].reference_urls[0] #=> String
+    #   resp.vulnerabilities[0].related_vulnerabilities #=> Array
+    #   resp.vulnerabilities[0].related_vulnerabilities[0] #=> String
+    #   resp.vulnerabilities[0].source #=> String, one of "NVD"
+    #   resp.vulnerabilities[0].source_url #=> String
+    #   resp.vulnerabilities[0].vendor_created_at #=> Time
+    #   resp.vulnerabilities[0].vendor_severity #=> String
+    #   resp.vulnerabilities[0].vendor_updated_at #=> Time
+    #
+    # @see http://docs.aws.amazon.com/goto/WebAPI/inspector2-2020-06-08/SearchVulnerabilities AWS API Documentation
+    #
+    # @overload search_vulnerabilities(params = {})
+    # @param [Hash] params ({})
+    def search_vulnerabilities(params = {}, options = {})
+      req = build_request(:search_vulnerabilities, params)
+      req.send_request(options)
+    end
+
     # Adds tags to a resource.
     #
     # @option params [required, String] :resource_arn
@@ -3669,7 +3742,7 @@ module Aws::Inspector2
         params: params,
         config: config)
       context[:gem_name] = 'aws-sdk-inspector2'
-      context[:gem_version] = '1.11.0'
+      context[:gem_version] = '1.12.0'
       Seahorse::Client::Request.new(handlers, context)
     end
 

data/lib/aws-sdk-inspector2/client_api.rb

@@ -39,6 +39,7 @@ module Aws::Inspector2
     Arn = Shapes::StringShape.new(name: 'Arn')
     AssociateMemberRequest = Shapes::StructureShape.new(name: 'AssociateMemberRequest')
     AssociateMemberResponse = Shapes::StructureShape.new(name: 'AssociateMemberResponse')
+    AtigData = Shapes::StructureShape.new(name: 'AtigData')
     AutoEnable = Shapes::StructureShape.new(name: 'AutoEnable')
     AwsEc2InstanceDetails = Shapes::StructureShape.new(name: 'AwsEc2InstanceDetails')
     AwsEcrContainerAggregation = Shapes::StructureShape.new(name: 'AwsEcrContainerAggregation')
@@ -59,6 +60,10 @@ module Aws::Inspector2
     Boolean = Shapes::BooleanShape.new(name: 'Boolean')
     CancelFindingsReportRequest = Shapes::StructureShape.new(name: 'CancelFindingsReportRequest')
     CancelFindingsReportResponse = Shapes::StructureShape.new(name: 'CancelFindingsReportResponse')
+    CisaAction = Shapes::StringShape.new(name: 'CisaAction')
+    CisaData = Shapes::StructureShape.new(name: 'CisaData')
+    CisaDateAdded = Shapes::TimestampShape.new(name: 'CisaDateAdded')
+    CisaDateDue = Shapes::TimestampShape.new(name: 'CisaDateDue')
     ClientToken = Shapes::StringShape.new(name: 'ClientToken')
     Component = Shapes::StringShape.new(name: 'Component')
     ComponentType = Shapes::StringShape.new(name: 'ComponentType')
@@ -81,11 +86,19 @@ module Aws::Inspector2
     CreateFindingsReportRequest = Shapes::StructureShape.new(name: 'CreateFindingsReportRequest')
     CreateFindingsReportResponse = Shapes::StructureShape.new(name: 'CreateFindingsReportResponse')
     Currency = Shapes::StringShape.new(name: 'Currency')
+    Cvss2 = Shapes::StructureShape.new(name: 'Cvss2')
+    Cvss2BaseScore = Shapes::FloatShape.new(name: 'Cvss2BaseScore')
+    Cvss2ScoringVector = Shapes::StringShape.new(name: 'Cvss2ScoringVector')
+    Cvss3 = Shapes::StructureShape.new(name: 'Cvss3')
+    Cvss3BaseScore = Shapes::FloatShape.new(name: 'Cvss3BaseScore')
+    Cvss3ScoringVector = Shapes::StringShape.new(name: 'Cvss3ScoringVector')
     CvssScore = Shapes::StructureShape.new(name: 'CvssScore')
     CvssScoreAdjustment = Shapes::StructureShape.new(name: 'CvssScoreAdjustment')
     CvssScoreAdjustmentList = Shapes::ListShape.new(name: 'CvssScoreAdjustmentList')
     CvssScoreDetails = Shapes::StructureShape.new(name: 'CvssScoreDetails')
     CvssScoreList = Shapes::ListShape.new(name: 'CvssScoreList')
+    Cwe = Shapes::StringShape.new(name: 'Cwe')
+    Cwes = Shapes::ListShape.new(name: 'Cwes')
     DateFilter = Shapes::StructureShape.new(name: 'DateFilter')
     DateFilterList = Shapes::ListShape.new(name: 'DateFilterList')
     DateTimeTimestamp = Shapes::TimestampShape.new(name: 'DateTimeTimestamp')
@@ -98,6 +111,7 @@ module Aws::Inspector2
     DescribeOrganizationConfigurationRequest = Shapes::StructureShape.new(name: 'DescribeOrganizationConfigurationRequest')
     DescribeOrganizationConfigurationResponse = Shapes::StructureShape.new(name: 'DescribeOrganizationConfigurationResponse')
     Destination = Shapes::StructureShape.new(name: 'Destination')
+    DetectionPlatforms = Shapes::ListShape.new(name: 'DetectionPlatforms')
     DisableDelegatedAdminAccountRequest = Shapes::StructureShape.new(name: 'DisableDelegatedAdminAccountRequest')
     DisableDelegatedAdminAccountResponse = Shapes::StructureShape.new(name: 'DisableDelegatedAdminAccountResponse')
     DisableRequest = Shapes::StructureShape.new(name: 'DisableRequest')
@@ -125,10 +139,13 @@ module Aws::Inspector2
     EnableRequest = Shapes::StructureShape.new(name: 'EnableRequest')
     EnableResourceTypeList = Shapes::ListShape.new(name: 'EnableResourceTypeList')
     EnableResponse = Shapes::StructureShape.new(name: 'EnableResponse')
+    Epss = Shapes::StructureShape.new(name: 'Epss')
+    EpssScore = Shapes::FloatShape.new(name: 'EpssScore')
     ErrorCode = Shapes::StringShape.new(name: 'ErrorCode')
     ErrorMessage = Shapes::StringShape.new(name: 'ErrorMessage')
     ExecutionRoleArn = Shapes::StringShape.new(name: 'ExecutionRoleArn')
     ExploitAvailable = Shapes::StringShape.new(name: 'ExploitAvailable')
+    ExploitObserved = Shapes::StructureShape.new(name: 'ExploitObserved')
     ExploitabilityDetails = Shapes::StructureShape.new(name: 'ExploitabilityDetails')
     ExternalReportStatus = Shapes::StringShape.new(name: 'ExternalReportStatus')
     FailedAccount = Shapes::StructureShape.new(name: 'FailedAccount')
@@ -155,6 +172,7 @@ module Aws::Inspector2
     FindingTypeAggregation = Shapes::StructureShape.new(name: 'FindingTypeAggregation')
     FindingTypeAggregationResponse = Shapes::StructureShape.new(name: 'FindingTypeAggregationResponse')
     FindingTypeSortBy = Shapes::StringShape.new(name: 'FindingTypeSortBy')
+    FirstSeen = Shapes::TimestampShape.new(name: 'FirstSeen')
     FixAvailable = Shapes::StringShape.new(name: 'FixAvailable')
     FreeTrialAccountInfo = Shapes::StructureShape.new(name: 'FreeTrialAccountInfo')
     FreeTrialAccountInfoList = Shapes::ListShape.new(name: 'FreeTrialAccountInfoList')
@@ -199,6 +217,7 @@ module Aws::Inspector2
     LambdaLayerList = Shapes::ListShape.new(name: 'LambdaLayerList')
     LambdaLayerSortBy = Shapes::StringShape.new(name: 'LambdaLayerSortBy')
     LambdaVpcConfig = Shapes::StructureShape.new(name: 'LambdaVpcConfig')
+    LastSeen = Shapes::TimestampShape.new(name: 'LastSeen')
     LayerList = Shapes::ListShape.new(name: 'LayerList')
     ListAccountPermissionsMaxResults = Shapes::IntegerShape.new(name: 'ListAccountPermissionsMaxResults')
     ListAccountPermissionsRequest = Shapes::StructureShape.new(name: 'ListAccountPermissionsRequest')
@@ -276,6 +295,8 @@ module Aws::Inspector2
     PortRangeFilter = Shapes::StructureShape.new(name: 'PortRangeFilter')
     PortRangeFilterList = Shapes::ListShape.new(name: 'PortRangeFilterList')
     Recommendation = Shapes::StructureShape.new(name: 'Recommendation')
+    RelatedVulnerabilities = Shapes::ListShape.new(name: 'RelatedVulnerabilities')
+    RelatedVulnerability = Shapes::StringShape.new(name: 'RelatedVulnerability')
     RelationshipStatus = Shapes::StringShape.new(name: 'RelationshipStatus')
     Remediation = Shapes::StructureShape.new(name: 'Remediation')
     ReportFormat = Shapes::StringShape.new(name: 'ReportFormat')
@@ -299,6 +320,9 @@ module Aws::Inspector2
     ScanStatusCode = Shapes::StringShape.new(name: 'ScanStatusCode')
     ScanStatusReason = Shapes::StringShape.new(name: 'ScanStatusReason')
     ScanType = Shapes::StringShape.new(name: 'ScanType')
+    SearchVulnerabilitiesFilterCriteria = Shapes::StructureShape.new(name: 'SearchVulnerabilitiesFilterCriteria')
+    SearchVulnerabilitiesRequest = Shapes::StructureShape.new(name: 'SearchVulnerabilitiesRequest')
+    SearchVulnerabilitiesResponse = Shapes::StructureShape.new(name: 'SearchVulnerabilitiesResponse')
     SecurityGroupId = Shapes::StringShape.new(name: 'SecurityGroupId')
     SecurityGroupIdList = Shapes::ListShape.new(name: 'SecurityGroupIdList')
     Service = Shapes::StringShape.new(name: 'Service')
@@ -327,11 +351,15 @@ module Aws::Inspector2
     TagMap = Shapes::MapShape.new(name: 'TagMap')
     TagResourceRequest = Shapes::StructureShape.new(name: 'TagResourceRequest')
     TagResourceResponse = Shapes::StructureShape.new(name: 'TagResourceResponse')
+    Target = Shapes::StringShape.new(name: 'Target')
+    Targets = Shapes::ListShape.new(name: 'Targets')
     ThrottlingException = Shapes::StructureShape.new(name: 'ThrottlingException')
     Timestamp = Shapes::TimestampShape.new(name: 'Timestamp')
     TitleAggregation = Shapes::StructureShape.new(name: 'TitleAggregation')
     TitleAggregationResponse = Shapes::StructureShape.new(name: 'TitleAggregationResponse')
     TitleSortBy = Shapes::StringShape.new(name: 'TitleSortBy')
+    Ttp = Shapes::StringShape.new(name: 'Ttp')
+    Ttps = Shapes::ListShape.new(name: 'Ttps')
     UntagResourceRequest = Shapes::StructureShape.new(name: 'UntagResourceRequest')
     UntagResourceResponse = Shapes::StructureShape.new(name: 'UntagResourceResponse')
     UpdateConfigurationRequest = Shapes::StructureShape.new(name: 'UpdateConfigurationRequest')
@@ -356,10 +384,22 @@ module Aws::Inspector2
     ValidationExceptionField = Shapes::StructureShape.new(name: 'ValidationExceptionField')
     ValidationExceptionFields = Shapes::ListShape.new(name: 'ValidationExceptionFields')
     ValidationExceptionReason = Shapes::StringShape.new(name: 'ValidationExceptionReason')
+    VendorCreatedAt = Shapes::TimestampShape.new(name: 'VendorCreatedAt')
+    VendorSeverity = Shapes::StringShape.new(name: 'VendorSeverity')
+    VendorUpdatedAt = Shapes::TimestampShape.new(name: 'VendorUpdatedAt')
     Version = Shapes::StringShape.new(name: 'Version')
     VpcId = Shapes::StringShape.new(name: 'VpcId')
+    VulnId = Shapes::StringShape.new(name: 'VulnId')
+    VulnIdList = Shapes::ListShape.new(name: 'VulnIdList')
+    Vulnerabilities = Shapes::ListShape.new(name: 'Vulnerabilities')
+    Vulnerability = Shapes::StructureShape.new(name: 'Vulnerability')
+    VulnerabilityDescription = Shapes::StringShape.new(name: 'VulnerabilityDescription')
     VulnerabilityId = Shapes::StringShape.new(name: 'VulnerabilityId')
     VulnerabilityIdList = Shapes::ListShape.new(name: 'VulnerabilityIdList')
+    VulnerabilityReferenceUrl = Shapes::StringShape.new(name: 'VulnerabilityReferenceUrl')
+    VulnerabilityReferenceUrls = Shapes::ListShape.new(name: 'VulnerabilityReferenceUrls')
+    VulnerabilitySource = Shapes::StringShape.new(name: 'VulnerabilitySource')
+    VulnerabilitySourceUrl = Shapes::StringShape.new(name: 'VulnerabilitySourceUrl')
     VulnerablePackage = Shapes::StructureShape.new(name: 'VulnerablePackage')
     VulnerablePackageList = Shapes::ListShape.new(name: 'VulnerablePackageList')
     VulnerablePackageRemediation = Shapes::StringShape.new(name: 'VulnerablePackageRemediation')
@@ -466,6 +506,12 @@ module Aws::Inspector2
     AssociateMemberResponse.add_member(:account_id, Shapes::ShapeRef.new(shape: AccountId, required: true, location_name: "accountId"))
     AssociateMemberResponse.struct_class = Types::AssociateMemberResponse
 
+    AtigData.add_member(:first_seen, Shapes::ShapeRef.new(shape: FirstSeen, location_name: "firstSeen"))
+    AtigData.add_member(:last_seen, Shapes::ShapeRef.new(shape: LastSeen, location_name: "lastSeen"))
+    AtigData.add_member(:targets, Shapes::ShapeRef.new(shape: Targets, location_name: "targets"))
+    AtigData.add_member(:ttps, Shapes::ShapeRef.new(shape: Ttps, location_name: "ttps"))
+    AtigData.struct_class = Types::AtigData
+
     AutoEnable.add_member(:ec2, Shapes::ShapeRef.new(shape: Boolean, required: true, location_name: "ec2"))
     AutoEnable.add_member(:ecr, Shapes::ShapeRef.new(shape: Boolean, required: true, location_name: "ecr"))
     AutoEnable.add_member(:lambda, Shapes::ShapeRef.new(shape: Boolean, location_name: "lambda"))
@@ -562,6 +608,11 @@ module Aws::Inspector2
     CancelFindingsReportResponse.add_member(:report_id, Shapes::ShapeRef.new(shape: ReportId, required: true, location_name: "reportId"))
     CancelFindingsReportResponse.struct_class = Types::CancelFindingsReportResponse
 
+    CisaData.add_member(:action, Shapes::ShapeRef.new(shape: CisaAction, location_name: "action"))
+    CisaData.add_member(:date_added, Shapes::ShapeRef.new(shape: CisaDateAdded, location_name: "dateAdded"))
+    CisaData.add_member(:date_due, Shapes::ShapeRef.new(shape: CisaDateDue, location_name: "dateDue"))
+    CisaData.struct_class = Types::CisaData
+
     ConflictException.add_member(:message, Shapes::ShapeRef.new(shape: String, required: true, location_name: "message"))
     ConflictException.add_member(:resource_id, Shapes::ShapeRef.new(shape: String, required: true, location_name: "resourceId"))
     ConflictException.add_member(:resource_type, Shapes::ShapeRef.new(shape: String, required: true, location_name: "resourceType"))
@@ -629,6 +680,14 @@ module Aws::Inspector2
     CreateFindingsReportResponse.add_member(:report_id, Shapes::ShapeRef.new(shape: ReportId, location_name: "reportId"))
     CreateFindingsReportResponse.struct_class = Types::CreateFindingsReportResponse
 
+    Cvss2.add_member(:base_score, Shapes::ShapeRef.new(shape: Cvss2BaseScore, location_name: "baseScore"))
+    Cvss2.add_member(:scoring_vector, Shapes::ShapeRef.new(shape: Cvss2ScoringVector, location_name: "scoringVector"))
+    Cvss2.struct_class = Types::Cvss2
+
+    Cvss3.add_member(:base_score, Shapes::ShapeRef.new(shape: Cvss3BaseScore, location_name: "baseScore"))
+    Cvss3.add_member(:scoring_vector, Shapes::ShapeRef.new(shape: Cvss3ScoringVector, location_name: "scoringVector"))
+    Cvss3.struct_class = Types::Cvss3
+
     CvssScore.add_member(:base_score, Shapes::ShapeRef.new(shape: Double, required: true, location_name: "baseScore"))
     CvssScore.add_member(:scoring_vector, Shapes::ShapeRef.new(shape: NonEmptyString, required: true, location_name: "scoringVector"))
     CvssScore.add_member(:source, Shapes::ShapeRef.new(shape: NonEmptyString, required: true, location_name: "source"))
@@ -651,6 +710,8 @@ module Aws::Inspector2
 
     CvssScoreList.member = Shapes::ShapeRef.new(shape: CvssScore)
 
+    Cwes.member = Shapes::ShapeRef.new(shape: Cwe)
+
     DateFilter.add_member(:end_inclusive, Shapes::ShapeRef.new(shape: Timestamp, location_name: "endInclusive"))
     DateFilter.add_member(:start_inclusive, Shapes::ShapeRef.new(shape: Timestamp, location_name: "startInclusive"))
     DateFilter.struct_class = Types::DateFilter
@@ -684,6 +745,8 @@ module Aws::Inspector2
     Destination.add_member(:kms_key_arn, Shapes::ShapeRef.new(shape: String, required: true, location_name: "kmsKeyArn"))
     Destination.struct_class = Types::Destination
 
+    DetectionPlatforms.member = Shapes::ShapeRef.new(shape: NonEmptyString)
+
     DisableDelegatedAdminAccountRequest.add_member(:delegated_admin_account_id, Shapes::ShapeRef.new(shape: AccountId, required: true, location_name: "delegatedAdminAccountId"))
     DisableDelegatedAdminAccountRequest.struct_class = Types::DisableDelegatedAdminAccountRequest
 
@@ -764,6 +827,13 @@ module Aws::Inspector2
     EnableResponse.add_member(:failed_accounts, Shapes::ShapeRef.new(shape: FailedAccountList, location_name: "failedAccounts"))
     EnableResponse.struct_class = Types::EnableResponse
 
+    Epss.add_member(:score, Shapes::ShapeRef.new(shape: EpssScore, location_name: "score"))
+    Epss.struct_class = Types::Epss
+
+    ExploitObserved.add_member(:first_seen, Shapes::ShapeRef.new(shape: FirstSeen, location_name: "firstSeen"))
+    ExploitObserved.add_member(:last_seen, Shapes::ShapeRef.new(shape: LastSeen, location_name: "lastSeen"))
+    ExploitObserved.struct_class = Types::ExploitObserved
+
     ExploitabilityDetails.add_member(:last_known_exploit_at, Shapes::ShapeRef.new(shape: DateTimeTimestamp, location_name: "lastKnownExploitAt"))
     ExploitabilityDetails.struct_class = Types::ExploitabilityDetails
 
@@ -1192,6 +1262,8 @@ module Aws::Inspector2
     Recommendation.add_member(:text, Shapes::ShapeRef.new(shape: NonEmptyString, location_name: "text"))
     Recommendation.struct_class = Types::Recommendation
 
+    RelatedVulnerabilities.member = Shapes::ShapeRef.new(shape: RelatedVulnerability)
+
     Remediation.add_member(:recommendation, Shapes::ShapeRef.new(shape: Recommendation, location_name: "recommendation"))
     Remediation.struct_class = Types::Remediation
 
@@ -1244,6 +1316,17 @@ module Aws::Inspector2
     ScanStatus.add_member(:status_code, Shapes::ShapeRef.new(shape: ScanStatusCode, required: true, location_name: "statusCode"))
     ScanStatus.struct_class = Types::ScanStatus
 
+    SearchVulnerabilitiesFilterCriteria.add_member(:vulnerability_ids, Shapes::ShapeRef.new(shape: VulnIdList, required: true, location_name: "vulnerabilityIds"))
+    SearchVulnerabilitiesFilterCriteria.struct_class = Types::SearchVulnerabilitiesFilterCriteria
+
+    SearchVulnerabilitiesRequest.add_member(:filter_criteria, Shapes::ShapeRef.new(shape: SearchVulnerabilitiesFilterCriteria, required: true, location_name: "filterCriteria"))
+    SearchVulnerabilitiesRequest.add_member(:next_token, Shapes::ShapeRef.new(shape: NextToken, location_name: "nextToken"))
+    SearchVulnerabilitiesRequest.struct_class = Types::SearchVulnerabilitiesRequest
+
+    SearchVulnerabilitiesResponse.add_member(:next_token, Shapes::ShapeRef.new(shape: NextToken, location_name: "nextToken"))
+    SearchVulnerabilitiesResponse.add_member(:vulnerabilities, Shapes::ShapeRef.new(shape: Vulnerabilities, required: true, location_name: "vulnerabilities"))
+    SearchVulnerabilitiesResponse.struct_class = Types::SearchVulnerabilitiesResponse
+
     SecurityGroupIdList.member = Shapes::ShapeRef.new(shape: SecurityGroupId)
 
     ServiceQuotaExceededException.add_member(:message, Shapes::ShapeRef.new(shape: String, required: true, location_name: "message"))
@@ -1294,6 +1377,8 @@ module Aws::Inspector2
 
     TagResourceResponse.struct_class = Types::TagResourceResponse
 
+    Targets.member = Shapes::ShapeRef.new(shape: Target)
+
     ThrottlingException.add_member(:message, Shapes::ShapeRef.new(shape: String, required: true, location_name: "message"))
     ThrottlingException.add_member(:retry_after_seconds, Shapes::ShapeRef.new(shape: Integer, location: "header", location_name: "Retry-After"))
     ThrottlingException.struct_class = Types::ThrottlingException
@@ -1311,6 +1396,8 @@ module Aws::Inspector2
     TitleAggregationResponse.add_member(:vulnerability_id, Shapes::ShapeRef.new(shape: String, location_name: "vulnerabilityId"))
     TitleAggregationResponse.struct_class = Types::TitleAggregationResponse
 
+    Ttps.member = Shapes::ShapeRef.new(shape: Ttp)
+
     UntagResourceRequest.add_member(:resource_arn, Shapes::ShapeRef.new(shape: Arn, required: true, location: "uri", location_name: "resourceArn"))
     UntagResourceRequest.add_member(:tag_keys, Shapes::ShapeRef.new(shape: TagKeyList, required: true, location: "querystring", location_name: "tagKeys"))
     UntagResourceRequest.struct_class = Types::UntagResourceRequest
@@ -1381,8 +1468,33 @@ module Aws::Inspector2
 
     ValidationExceptionFields.member = Shapes::ShapeRef.new(shape: ValidationExceptionField)
 
+    VulnIdList.member = Shapes::ShapeRef.new(shape: VulnId)
+
+    Vulnerabilities.member = Shapes::ShapeRef.new(shape: Vulnerability)
+
+    Vulnerability.add_member(:atig_data, Shapes::ShapeRef.new(shape: AtigData, location_name: "atigData"))
+    Vulnerability.add_member(:cisa_data, Shapes::ShapeRef.new(shape: CisaData, location_name: "cisaData"))
+    Vulnerability.add_member(:cvss2, Shapes::ShapeRef.new(shape: Cvss2, location_name: "cvss2"))
+    Vulnerability.add_member(:cvss3, Shapes::ShapeRef.new(shape: Cvss3, location_name: "cvss3"))
+    Vulnerability.add_member(:cwes, Shapes::ShapeRef.new(shape: Cwes, location_name: "cwes"))
+    Vulnerability.add_member(:description, Shapes::ShapeRef.new(shape: VulnerabilityDescription, location_name: "description"))
+    Vulnerability.add_member(:detection_platforms, Shapes::ShapeRef.new(shape: DetectionPlatforms, location_name: "detectionPlatforms"))
+    Vulnerability.add_member(:epss, Shapes::ShapeRef.new(shape: Epss, location_name: "epss"))
+    Vulnerability.add_member(:exploit_observed, Shapes::ShapeRef.new(shape: ExploitObserved, location_name: "exploitObserved"))
+    Vulnerability.add_member(:id, Shapes::ShapeRef.new(shape: NonEmptyString, required: true, location_name: "id"))
+    Vulnerability.add_member(:reference_urls, Shapes::ShapeRef.new(shape: VulnerabilityReferenceUrls, location_name: "referenceUrls"))
+    Vulnerability.add_member(:related_vulnerabilities, Shapes::ShapeRef.new(shape: RelatedVulnerabilities, location_name: "relatedVulnerabilities"))
+    Vulnerability.add_member(:source, Shapes::ShapeRef.new(shape: VulnerabilitySource, location_name: "source"))
+    Vulnerability.add_member(:source_url, Shapes::ShapeRef.new(shape: VulnerabilitySourceUrl, location_name: "sourceUrl"))
+    Vulnerability.add_member(:vendor_created_at, Shapes::ShapeRef.new(shape: VendorCreatedAt, location_name: "vendorCreatedAt"))
+    Vulnerability.add_member(:vendor_severity, Shapes::ShapeRef.new(shape: VendorSeverity, location_name: "vendorSeverity"))
+    Vulnerability.add_member(:vendor_updated_at, Shapes::ShapeRef.new(shape: VendorUpdatedAt, location_name: "vendorUpdatedAt"))
+    Vulnerability.struct_class = Types::Vulnerability
+
     VulnerabilityIdList.member = Shapes::ShapeRef.new(shape: VulnerabilityId)
 
+    VulnerabilityReferenceUrls.member = Shapes::ShapeRef.new(shape: VulnerabilityReferenceUrl)
+
     VulnerablePackage.add_member(:arch, Shapes::ShapeRef.new(shape: PackageArchitecture, location_name: "arch"))
     VulnerablePackage.add_member(:epoch, Shapes::ShapeRef.new(shape: PackageEpoch, location_name: "epoch"))
     VulnerablePackage.add_member(:file_path, Shapes::ShapeRef.new(shape: FilePath, location_name: "filePath"))
@@ -1840,6 +1952,23 @@ module Aws::Inspector2
         )
       end)
 
+      api.add_operation(:search_vulnerabilities, Seahorse::Model::Operation.new.tap do |o|
+        o.name = "SearchVulnerabilities"
+        o.http_method = "POST"
+        o.http_request_uri = "/vulnerabilities/search"
+        o.input = Shapes::ShapeRef.new(shape: SearchVulnerabilitiesRequest)
+        o.output = Shapes::ShapeRef.new(shape: SearchVulnerabilitiesResponse)
+        o.errors << Shapes::ShapeRef.new(shape: ValidationException)
+        o.errors << Shapes::ShapeRef.new(shape: AccessDeniedException)
+        o.errors << Shapes::ShapeRef.new(shape: ThrottlingException)
+        o.errors << Shapes::ShapeRef.new(shape: InternalServerException)
+        o[:pager] = Aws::Pager.new(
+          tokens: {
+            "next_token" => "next_token"
+          }
+        )
+      end)
+
       api.add_operation(:tag_resource, Seahorse::Model::Operation.new.tap do |o|
         o.name = "TagResource"
         o.http_method = "POST"

data/lib/aws-sdk-inspector2/endpoints.rb

@@ -431,6 +431,20 @@ module Aws::Inspector2
       end
     end
 
+    class SearchVulnerabilities
+      def self.build(context)
+        unless context.config.regional_endpoint
+          endpoint = context.config.endpoint.to_s
+        end
+        Aws::Inspector2::EndpointParameters.new(
+          region: context.config.region,
+          use_dual_stack: context.config.use_dualstack_endpoint,
+          use_fips: context.config.use_fips_endpoint,
+          endpoint: endpoint,
+        )
+      end
+    end
+
     class TagResource
       def self.build(context)
         unless context.config.regional_endpoint

data/lib/aws-sdk-inspector2/plugins/endpoints.rb

@@ -116,6 +116,8 @@ module Aws::Inspector2
             Aws::Inspector2::Endpoints::ListTagsForResource.build(context)
           when :list_usage_totals
             Aws::Inspector2::Endpoints::ListUsageTotals.build(context)
+          when :search_vulnerabilities
+            Aws::Inspector2::Endpoints::SearchVulnerabilities.build(context)
           when :tag_resource
             Aws::Inspector2::Endpoints::TagResource.build(context)
           when :untag_resource

data/lib/aws-sdk-inspector2/types.rb

@@ -384,6 +384,41 @@ module Aws::Inspector2
       include Aws::Structure
     end
 
+    # The Amazon Web Services Threat Intel Group (ATIG) details for a
+    # specific vulnerability.
+    #
+    # @!attribute [rw] first_seen
+    #   The date and time this vulnerability was first observed.
+    #   @return [Time]
+    #
+    # @!attribute [rw] last_seen
+    #   The date and time this vulnerability was last observed.
+    #   @return [Time]
+    #
+    # @!attribute [rw] targets
+    #   The commercial sectors this vulnerability targets.
+    #   @return [Array<String>]
+    #
+    # @!attribute [rw] ttps
+    #   The [MITRE ATT&amp;CK][1] tactics, techniques, and procedures (TTPs)
+    #   associated with vulnerability.
+    #
+    #
+    #
+    #   [1]: https://attack.mitre.org/
+    #   @return [Array<String>]
+    #
+    # @see http://docs.aws.amazon.com/goto/WebAPI/inspector2-2020-06-08/AtigData AWS API Documentation
+    #
+    class AtigData < Struct.new(
+      :first_seen,
+      :last_seen,
+      :targets,
+      :ttps)
+      SENSITIVE = []
+      include Aws::Structure
+    end
+
     # Represents which scan types are automatically enabled for new members
     # of your Amazon Inspector organization.
     #
@@ -850,6 +885,32 @@ module Aws::Inspector2
       include Aws::Structure
     end
 
+    # The Cybersecurity and Infrastructure Security Agency (CISA) details
+    # for a specific vulnerability.
+    #
+    # @!attribute [rw] action
+    #   The remediation action recommended by CISA for this vulnerability.
+    #   @return [String]
+    #
+    # @!attribute [rw] date_added
+    #   The date and time CISA added this vulnerability to their catalogue.
+    #   @return [Time]
+    #
+    # @!attribute [rw] date_due
+    #   The date and time CISA expects a fix to have been provided
+    #   vulnerability.
+    #   @return [Time]
+    #
+    # @see http://docs.aws.amazon.com/goto/WebAPI/inspector2-2020-06-08/CisaData AWS API Documentation
+    #
+    class CisaData < Struct.new(
+      :action,
+      :date_added,
+      :date_due)
+      SENSITIVE = []
+      include Aws::Structure
+    end
+
     # A conflict occurred.
     #
     # @!attribute [rw] message
@@ -1140,6 +1201,46 @@ module Aws::Inspector2
       include Aws::Structure
     end
 
+    # The Common Vulnerability Scoring System (CVSS) version 2 details for
+    # the vulnerability.
+    #
+    # @!attribute [rw] base_score
+    #   The CVSS v2 base score for the vulnerability.
+    #   @return [Float]
+    #
+    # @!attribute [rw] scoring_vector
+    #   The scoring vector associated with the CVSS v2 score.
+    #   @return [String]
+    #
+    # @see http://docs.aws.amazon.com/goto/WebAPI/inspector2-2020-06-08/Cvss2 AWS API Documentation
+    #
+    class Cvss2 < Struct.new(
+      :base_score,
+      :scoring_vector)
+      SENSITIVE = []
+      include Aws::Structure
+    end
+
+    # The Common Vulnerability Scoring System (CVSS) version 3 details for
+    # the vulnerability.
+    #
+    # @!attribute [rw] base_score
+    #   The CVSS v3 base score for the vulnerability.
+    #   @return [Float]
+    #
+    # @!attribute [rw] scoring_vector
+    #   The scoring vector associated with the CVSS v3 score.
+    #   @return [String]
+    #
+    # @see http://docs.aws.amazon.com/goto/WebAPI/inspector2-2020-06-08/Cvss3 AWS API Documentation
+    #
+    class Cvss3 < Struct.new(
+      :base_score,
+      :scoring_vector)
+      SENSITIVE = []
+      include Aws::Structure
+    end
+
     # The CVSS score for a finding.
     #
     # @!attribute [rw] base_score
@@ -1743,6 +1844,39 @@ module Aws::Inspector2
       include Aws::Structure
     end
 
+    # Details about the Exploit Prediction Scoring System (EPSS) score.
+    #
+    # @!attribute [rw] score
+    #   The Exploit Prediction Scoring System (EPSS) score.
+    #   @return [Float]
+    #
+    # @see http://docs.aws.amazon.com/goto/WebAPI/inspector2-2020-06-08/Epss AWS API Documentation
+    #
+    class Epss < Struct.new(
+      :score)
+      SENSITIVE = []
+      include Aws::Structure
+    end
+
+    # Contains information on when this exploit was observed.
+    #
+    # @!attribute [rw] first_seen
+    #   The date an time when the exploit was first seen.
+    #   @return [Time]
+    #
+    # @!attribute [rw] last_seen
+    #   The date an time when the exploit was last seen.
+    #   @return [Time]
+    #
+    # @see http://docs.aws.amazon.com/goto/WebAPI/inspector2-2020-06-08/ExploitObserved AWS API Documentation
+    #
+    class ExploitObserved < Struct.new(
+      :first_seen,
+      :last_seen)
+      SENSITIVE = []
+      include Aws::Structure
+    end
+
     # The details of an exploit available for a finding discovered in your
     # environment.
     #
@@ -3960,6 +4094,60 @@ module Aws::Inspector2
       include Aws::Structure
     end
 
+    # Details on the criteria used to define the filter for a vulnerability
+    # search.
+    #
+    # @!attribute [rw] vulnerability_ids
+    #   The IDs for specific vulnerabilities.
+    #   @return [Array<String>]
+    #
+    # @see http://docs.aws.amazon.com/goto/WebAPI/inspector2-2020-06-08/SearchVulnerabilitiesFilterCriteria AWS API Documentation
+    #
+    class SearchVulnerabilitiesFilterCriteria < Struct.new(
+      :vulnerability_ids)
+      SENSITIVE = []
+      include Aws::Structure
+    end
+
+    # @!attribute [rw] filter_criteria
+    #   The criteria used to filter the results of a vulnerability search.
+    #   @return [Types::SearchVulnerabilitiesFilterCriteria]
+    #
+    # @!attribute [rw] next_token
+    #   A token to use for paginating results that are returned in the
+    #   response. Set the value of this parameter to null for the first
+    #   request to a list action. For subsequent calls, use the `NextToken`
+    #   value returned from the previous request to continue listing results
+    #   after the first page.
+    #   @return [String]
+    #
+    # @see http://docs.aws.amazon.com/goto/WebAPI/inspector2-2020-06-08/SearchVulnerabilitiesRequest AWS API Documentation
+    #
+    class SearchVulnerabilitiesRequest < Struct.new(
+      :filter_criteria,
+      :next_token)
+      SENSITIVE = []
+      include Aws::Structure
+    end
+
+    # @!attribute [rw] next_token
+    #   The pagination parameter to be used on the next list operation to
+    #   retrieve more items.
+    #   @return [String]
+    #
+    # @!attribute [rw] vulnerabilities
+    #   Details about the listed vulnerability.
+    #   @return [Array<Types::Vulnerability>]
+    #
+    # @see http://docs.aws.amazon.com/goto/WebAPI/inspector2-2020-06-08/SearchVulnerabilitiesResponse AWS API Documentation
+    #
+    class SearchVulnerabilitiesResponse < Struct.new(
+      :next_token,
+      :vulnerabilities)
+      SENSITIVE = []
+      include Aws::Structure
+    end
+
     # You have exceeded your service quota. To perform the requested action,
     # remove some of the relevant resources, or use Service Quotas to
     # request a service quota increase.
@@ -4476,6 +4664,108 @@ module Aws::Inspector2
       include Aws::Structure
     end
 
+    # Contains details about a specific vulnerability Amazon Inspector can
+    # detect.
+    #
+    # @!attribute [rw] atig_data
+    #   An object that contains information about the Amazon Web Services
+    #   Threat Intel Group (ATIG) details for the vulnerability.
+    #   @return [Types::AtigData]
+    #
+    # @!attribute [rw] cisa_data
+    #   An object that contains the Cybersecurity and Infrastructure
+    #   Security Agency (CISA) details for the vulnerability.
+    #   @return [Types::CisaData]
+    #
+    # @!attribute [rw] cvss2
+    #   An object that contains the Common Vulnerability Scoring System
+    #   (CVSS) Version 2 details for the vulnerability.
+    #   @return [Types::Cvss2]
+    #
+    # @!attribute [rw] cvss3
+    #   An object that contains the Common Vulnerability Scoring System
+    #   (CVSS) Version 3 details for the vulnerability.
+    #   @return [Types::Cvss3]
+    #
+    # @!attribute [rw] cwes
+    #   The Common Weakness Enumeration (CWE) associated with the
+    #   vulnerability.
+    #   @return [Array<String>]
+    #
+    # @!attribute [rw] description
+    #   A description of the vulnerability.
+    #   @return [String]
+    #
+    # @!attribute [rw] detection_platforms
+    #   Platforms that the vulnerability can be detected on.
+    #   @return [Array<String>]
+    #
+    # @!attribute [rw] epss
+    #   An object that contains the Exploit Prediction Scoring System (EPSS)
+    #   score.
+    #   @return [Types::Epss]
+    #
+    # @!attribute [rw] exploit_observed
+    #   An object that contains details on when the exploit was observed.
+    #   @return [Types::ExploitObserved]
+    #
+    # @!attribute [rw] id
+    #   The ID for the specific vulnerability.
+    #   @return [String]
+    #
+    # @!attribute [rw] reference_urls
+    #   Links to various resources with more information on this
+    #   vulnerability.
+    #   @return [Array<String>]
+    #
+    # @!attribute [rw] related_vulnerabilities
+    #   A list of related vulnerabilities.
+    #   @return [Array<String>]
+    #
+    # @!attribute [rw] source
+    #   The source of the vulnerability information.
+    #   @return [String]
+    #
+    # @!attribute [rw] source_url
+    #   A link to the official source material for this vulnerability.
+    #   @return [String]
+    #
+    # @!attribute [rw] vendor_created_at
+    #   The date and time when the vendor created this vulnerability.
+    #   @return [Time]
+    #
+    # @!attribute [rw] vendor_severity
+    #   The severity assigned by the vendor.
+    #   @return [String]
+    #
+    # @!attribute [rw] vendor_updated_at
+    #   The date and time when the vendor last updated this vulnerability.
+    #   @return [Time]
+    #
+    # @see http://docs.aws.amazon.com/goto/WebAPI/inspector2-2020-06-08/Vulnerability AWS API Documentation
+    #
+    class Vulnerability < Struct.new(
+      :atig_data,
+      :cisa_data,
+      :cvss2,
+      :cvss3,
+      :cwes,
+      :description,
+      :detection_platforms,
+      :epss,
+      :exploit_observed,
+      :id,
+      :reference_urls,
+      :related_vulnerabilities,
+      :source,
+      :source_url,
+      :vendor_created_at,
+      :vendor_severity,
+      :vendor_updated_at)
+      SENSITIVE = []
+      include Aws::Structure
+    end
+
     # Information on the vulnerable package identified by a finding.
     #
     # @!attribute [rw] arch

data/lib/aws-sdk-inspector2.rb

@@ -52,6 +52,6 @@ require_relative 'aws-sdk-inspector2/customizations'
 # @!group service
 module Aws::Inspector2
 
-  GEM_VERSION = '1.11.0'
+  GEM_VERSION = '1.12.0'
 
 end

metadata

@@ -1,14 +1,14 @@
 --- !ruby/object:Gem::Specification
 name: aws-sdk-inspector2
 version: !ruby/object:Gem::Version
-  version: 1.11.0
+  version: 1.12.0
 platform: ruby
 authors:
 - Amazon Web Services
 autorequire: 
 bindir: bin
 cert_chain: []
-date: 2023-05-03 00:00:00.000000000 Z
+date: 2023-05-05 00:00:00.000000000 Z
 dependencies:
 - !ruby/object:Gem::Dependency
   name: aws-sdk-core