aws-sdk-macie2 1.44.0 → 1.47.0

checksums.yaml

@@ -1,7 +1,7 @@
 ---
 SHA256:
-  metadata.gz: ec2c2fec9febbd98772ae686a4a9df069cc895240facc3781722461bb4c63942
-  data.tar.gz: 1bae01f506e1c13c423002c231f9d931a247c2d6d04bd56bcfce1f8a65c9e526
+  metadata.gz: 8df284a3b860f522a6cf30162ea116c6de3dabeb05da3ac7307646d3a1f2a9cc
+  data.tar.gz: c295ed59840153e2743c8d1a7d3d6f1928912721bbd0b960b1200c3fd476f40d
 SHA512:
-  metadata.gz: dd57b106cd791a1508fe1feb9a70dbc5adeaa73d1f7c23890102d63cb5f158526401294b5c29d6bf1d89740e41623b6577f0ab683219a8db687c0e84b88ee303
-  data.tar.gz: '025955f20c12b82ec47b8224dfa539d24809315fdb052d7cf27104aefce83e06466be52fb98b91f43c8002b32617bc1e27249057a72965e4a033f4dcb5fdac7b'
+  metadata.gz: 4f3ba214231641fe3ecbc05bcc4ebf61154dfe297caf50f81f1f73d0028dc1d10129df6e682d0a9bfeff1066350e8224b49581d9d3cba7eca259208c556fca5c
+  data.tar.gz: 6f254895a42c8426cf8b6525cd30a9d37926f940609bf2a3b360fb78c0089bc72113325a035d81b144f47850c058226a050c871d5f634b89be004dcc07a33544

data/CHANGELOG.md

@@ -1,6 +1,21 @@
 Unreleased Changes
 ------------------
 
+1.47.0 (2022-08-30)
+------------------
+
+* Feature - This release of the Amazon Macie API adds support for using allow lists to define specific text and text patterns to ignore when inspecting data sources for sensitive data.
+
+1.46.0 (2022-07-26)
+------------------
+
+* Feature - This release adds support for retrieving (revealing) sample occurrences of sensitive data that Amazon Macie detects and reports in findings.
+
+1.45.0 (2022-04-20)
+------------------
+
+* Feature - Sensitive data findings in Amazon Macie now indicate how Macie found the sensitive data that produced a finding (originType).
+
 1.44.0 (2022-02-24)
 ------------------
 

data/VERSION

@@ -1 +1 @@
-1.44.0
+1.47.0

data/lib/aws-sdk-macie2/client.rb

@@ -415,8 +415,66 @@ module Aws::Macie2
       req.send_request(options)
     end
 
+    # Creates and defines the settings for an allow list.
+    #
+    # @option params [required, String] :client_token
+    #   **A suitable default value is auto-generated.** You should normally
+    #   not need to pass this option.**
+    #
+    # @option params [required, Types::AllowListCriteria] :criteria
+    #   Specifies the criteria for an allow list. The criteria must specify a
+    #   regular expression (regex) or an S3 object (s3WordsList). It can't
+    #   specify both.
+    #
+    # @option params [String] :description
+    #
+    # @option params [required, String] :name
+    #
+    # @option params [Hash<String,String>] :tags
+    #   A string-to-string map of key-value pairs that specifies the tags
+    #   (keys and values) for an Amazon Macie resource.
+    #
+    # @return [Types::CreateAllowListResponse] Returns a {Seahorse::Client::Response response} object which responds to the following methods:
+    #
+    #   * {Types::CreateAllowListResponse#arn #arn} => String
+    #   * {Types::CreateAllowListResponse#id #id} => String
+    #
+    # @example Request syntax with placeholder values
+    #
+    #   resp = client.create_allow_list({
+    #     client_token: "__string", # required
+    #     criteria: { # required
+    #       regex: "__stringMin1Max512PatternSS",
+    #       s3_words_list: {
+    #         bucket_name: "__stringMin3Max255PatternAZaZ093255", # required
+    #         object_key: "__stringMin1Max1024PatternSS", # required
+    #       },
+    #     },
+    #     description: "__stringMin1Max512PatternSS",
+    #     name: "__stringMin1Max128Pattern", # required
+    #     tags: {
+    #       "__string" => "__string",
+    #     },
+    #   })
+    #
+    # @example Response structure
+    #
+    #   resp.arn #=> String
+    #   resp.id #=> String
+    #
+    # @see http://docs.aws.amazon.com/goto/WebAPI/macie2-2020-01-01/CreateAllowList AWS API Documentation
+    #
+    # @overload create_allow_list(params = {})
+    # @param [Hash] params ({})
+    def create_allow_list(params = {}, options = {})
+      req = build_request(:create_allow_list, params)
+      req.send_request(options)
+    end
+
     # Creates and defines the settings for a classification job.
     #
+    # @option params [Array<String>] :allow_list_ids
+    #
     # @option params [required, String] :client_token
     #   **A suitable default value is auto-generated.** You should normally
     #   not need to pass this option.**
@@ -454,8 +512,7 @@ module Aws::Macie2
     #
     # @option params [Hash<String,String>] :tags
     #   A string-to-string map of key-value pairs that specifies the tags
-    #   (keys and values) for a classification job, custom data identifier,
-    #   findings filter, or member account.
+    #   (keys and values) for an Amazon Macie resource.
     #
     # @return [Types::CreateClassificationJobResponse] Returns a {Seahorse::Client::Response response} object which responds to the following methods:
     #
@@ -465,6 +522,7 @@ module Aws::Macie2
     # @example Request syntax with placeholder values
     #
     #   resp = client.create_classification_job({
+    #     allow_list_ids: ["__string"],
     #     client_token: "__string", # required
     #     custom_data_identifier_ids: ["__string"],
     #     description: "__string",
@@ -636,8 +694,7 @@ module Aws::Macie2
     #
     # @option params [Hash<String,String>] :tags
     #   A string-to-string map of key-value pairs that specifies the tags
-    #   (keys and values) for a classification job, custom data identifier,
-    #   findings filter, or member account.
+    #   (keys and values) for an Amazon Macie resource.
     #
     # @return [Types::CreateCustomDataIdentifierResponse] Returns a {Seahorse::Client::Response response} object which responds to the following methods:
     #
@@ -701,8 +758,7 @@ module Aws::Macie2
     #
     # @option params [Hash<String,String>] :tags
     #   A string-to-string map of key-value pairs that specifies the tags
-    #   (keys and values) for a classification job, custom data identifier,
-    #   findings filter, or member account.
+    #   (keys and values) for an Amazon Macie resource.
     #
     # @return [Types::CreateFindingsFilterResponse] Returns a {Seahorse::Client::Response response} object which responds to the following methods:
     #
@@ -793,8 +849,7 @@ module Aws::Macie2
     #
     # @option params [Hash<String,String>] :tags
     #   A string-to-string map of key-value pairs that specifies the tags
-    #   (keys and values) for a classification job, custom data identifier,
-    #   findings filter, or member account.
+    #   (keys and values) for an Amazon Macie resource.
     #
     # @return [Types::CreateMemberResponse] Returns a {Seahorse::Client::Response response} object which responds to the following methods:
     #
@@ -877,6 +932,30 @@ module Aws::Macie2
       req.send_request(options)
     end
 
+    # Deletes an allow list.
+    #
+    # @option params [required, String] :id
+    #
+    # @option params [String] :ignore_job_checks
+    #
+    # @return [Struct] Returns an empty {Seahorse::Client::Response response}.
+    #
+    # @example Request syntax with placeholder values
+    #
+    #   resp = client.delete_allow_list({
+    #     id: "__string", # required
+    #     ignore_job_checks: "__string",
+    #   })
+    #
+    # @see http://docs.aws.amazon.com/goto/WebAPI/macie2-2020-01-01/DeleteAllowList AWS API Documentation
+    #
+    # @overload delete_allow_list(params = {})
+    # @param [Hash] params ({})
+    def delete_allow_list(params = {}, options = {})
+      req = build_request(:delete_allow_list, params)
+      req.send_request(options)
+    end
+
     # Soft deletes a custom data identifier.
     #
     # @option params [required, String] :id
@@ -1089,6 +1168,7 @@ module Aws::Macie2
     #
     # @return [Types::DescribeClassificationJobResponse] Returns a {Seahorse::Client::Response response} object which responds to the following methods:
     #
+    #   * {Types::DescribeClassificationJobResponse#allow_list_ids #allow_list_ids} => Array&lt;String&gt;
     #   * {Types::DescribeClassificationJobResponse#client_token #client_token} => String
     #   * {Types::DescribeClassificationJobResponse#created_at #created_at} => Time
     #   * {Types::DescribeClassificationJobResponse#custom_data_identifier_ids #custom_data_identifier_ids} => Array&lt;String&gt;
@@ -1118,6 +1198,8 @@ module Aws::Macie2
     #
     # @example Response structure
     #
+    #   resp.allow_list_ids #=> Array
+    #   resp.allow_list_ids[0] #=> String
     #   resp.client_token #=> String
     #   resp.created_at #=> Time
     #   resp.custom_data_identifier_ids #=> Array
@@ -1319,9 +1401,9 @@ module Aws::Macie2
     # @option params [String] :finding_publishing_frequency
     #   The frequency with which Amazon Macie publishes updates to policy
     #   findings for an account. This includes publishing updates to Security
-    #   Hub and Amazon EventBridge (formerly called Amazon CloudWatch Events).
-    #   For more information, see [Monitoring and processing findings][1] in
-    #   the *Amazon Macie User Guide*. Valid values are:
+    #   Hub and Amazon EventBridge (formerly Amazon CloudWatch Events). For
+    #   more information, see [Monitoring and processing findings][1] in the
+    #   *Amazon Macie User Guide*. Valid values are:
     #
     #
     #
@@ -1399,6 +1481,53 @@ module Aws::Macie2
       req.send_request(options)
     end
 
+    # Retrieves the settings and status of an allow list.
+    #
+    # @option params [required, String] :id
+    #
+    # @return [Types::GetAllowListResponse] Returns a {Seahorse::Client::Response response} object which responds to the following methods:
+    #
+    #   * {Types::GetAllowListResponse#arn #arn} => String
+    #   * {Types::GetAllowListResponse#created_at #created_at} => Time
+    #   * {Types::GetAllowListResponse#criteria #criteria} => Types::AllowListCriteria
+    #   * {Types::GetAllowListResponse#description #description} => String
+    #   * {Types::GetAllowListResponse#id #id} => String
+    #   * {Types::GetAllowListResponse#name #name} => String
+    #   * {Types::GetAllowListResponse#status #status} => Types::AllowListStatus
+    #   * {Types::GetAllowListResponse#tags #tags} => Hash&lt;String,String&gt;
+    #   * {Types::GetAllowListResponse#updated_at #updated_at} => Time
+    #
+    # @example Request syntax with placeholder values
+    #
+    #   resp = client.get_allow_list({
+    #     id: "__string", # required
+    #   })
+    #
+    # @example Response structure
+    #
+    #   resp.arn #=> String
+    #   resp.created_at #=> Time
+    #   resp.criteria.regex #=> String
+    #   resp.criteria.s3_words_list.bucket_name #=> String
+    #   resp.criteria.s3_words_list.object_key #=> String
+    #   resp.description #=> String
+    #   resp.id #=> String
+    #   resp.name #=> String
+    #   resp.status.code #=> String, one of "OK", "S3_OBJECT_NOT_FOUND", "S3_USER_ACCESS_DENIED", "S3_OBJECT_ACCESS_DENIED", "S3_THROTTLED", "S3_OBJECT_OVERSIZE", "S3_OBJECT_EMPTY", "UNKNOWN_ERROR"
+    #   resp.status.description #=> String
+    #   resp.tags #=> Hash
+    #   resp.tags["__string"] #=> String
+    #   resp.updated_at #=> Time
+    #
+    # @see http://docs.aws.amazon.com/goto/WebAPI/macie2-2020-01-01/GetAllowList AWS API Documentation
+    #
+    # @overload get_allow_list(params = {})
+    # @param [Hash] params ({})
+    def get_allow_list(params = {}, options = {})
+      req = build_request(:get_allow_list, params)
+      req.send_request(options)
+    end
+
     # Retrieves (queries) aggregated statistical data about S3 buckets that
     # Amazon Macie monitors and analyzes.
     #
@@ -1630,6 +1759,7 @@ module Aws::Macie2
     #   resp.findings[0].classification_details.detailed_results_location #=> String
     #   resp.findings[0].classification_details.job_arn #=> String
     #   resp.findings[0].classification_details.job_id #=> String
+    #   resp.findings[0].classification_details.origin_type #=> String, one of "SENSITIVE_DATA_DISCOVERY_JOB"
     #   resp.findings[0].classification_details.result.additional_occurrences #=> Boolean
     #   resp.findings[0].classification_details.result.custom_data_identifiers.detections #=> Array
     #   resp.findings[0].classification_details.result.custom_data_identifiers.detections[0].arn #=> String
@@ -1997,6 +2127,96 @@ module Aws::Macie2
       req.send_request(options)
     end
 
+    # Retrieves the status and configuration settings for retrieving
+    # occurrences of sensitive data reported by findings.
+    #
+    # @return [Types::GetRevealConfigurationResponse] Returns a {Seahorse::Client::Response response} object which responds to the following methods:
+    #
+    #   * {Types::GetRevealConfigurationResponse#configuration #configuration} => Types::RevealConfiguration
+    #
+    # @example Response structure
+    #
+    #   resp.configuration.kms_key_id #=> String
+    #   resp.configuration.status #=> String, one of "ENABLED", "DISABLED"
+    #
+    # @see http://docs.aws.amazon.com/goto/WebAPI/macie2-2020-01-01/GetRevealConfiguration AWS API Documentation
+    #
+    # @overload get_reveal_configuration(params = {})
+    # @param [Hash] params ({})
+    def get_reveal_configuration(params = {}, options = {})
+      req = build_request(:get_reveal_configuration, params)
+      req.send_request(options)
+    end
+
+    # Retrieves occurrences of sensitive data reported by a finding.
+    #
+    # @option params [required, String] :finding_id
+    #
+    # @return [Types::GetSensitiveDataOccurrencesResponse] Returns a {Seahorse::Client::Response response} object which responds to the following methods:
+    #
+    #   * {Types::GetSensitiveDataOccurrencesResponse#error #error} => String
+    #   * {Types::GetSensitiveDataOccurrencesResponse#sensitive_data_occurrences #sensitive_data_occurrences} => Hash&lt;String,Array&lt;Types::DetectedDataDetails&gt;&gt;
+    #   * {Types::GetSensitiveDataOccurrencesResponse#status #status} => String
+    #
+    # @example Request syntax with placeholder values
+    #
+    #   resp = client.get_sensitive_data_occurrences({
+    #     finding_id: "__string", # required
+    #   })
+    #
+    # @example Response structure
+    #
+    #   resp.error #=> String
+    #   resp.sensitive_data_occurrences #=> Hash
+    #   resp.sensitive_data_occurrences["__string"] #=> Array
+    #   resp.sensitive_data_occurrences["__string"][0].value #=> String
+    #   resp.status #=> String, one of "SUCCESS", "PROCESSING", "ERROR"
+    #
+    #
+    # The following waiters are defined for this operation (see {Client#wait_until} for detailed usage):
+    #
+    #   * finding_revealed
+    #
+    # @see http://docs.aws.amazon.com/goto/WebAPI/macie2-2020-01-01/GetSensitiveDataOccurrences AWS API Documentation
+    #
+    # @overload get_sensitive_data_occurrences(params = {})
+    # @param [Hash] params ({})
+    def get_sensitive_data_occurrences(params = {}, options = {})
+      req = build_request(:get_sensitive_data_occurrences, params)
+      req.send_request(options)
+    end
+
+    # Checks whether occurrences of sensitive data can be retrieved for a
+    # finding.
+    #
+    # @option params [required, String] :finding_id
+    #
+    # @return [Types::GetSensitiveDataOccurrencesAvailabilityResponse] Returns a {Seahorse::Client::Response response} object which responds to the following methods:
+    #
+    #   * {Types::GetSensitiveDataOccurrencesAvailabilityResponse#code #code} => String
+    #   * {Types::GetSensitiveDataOccurrencesAvailabilityResponse#reasons #reasons} => Array&lt;String&gt;
+    #
+    # @example Request syntax with placeholder values
+    #
+    #   resp = client.get_sensitive_data_occurrences_availability({
+    #     finding_id: "__string", # required
+    #   })
+    #
+    # @example Response structure
+    #
+    #   resp.code #=> String, one of "AVAILABLE", "UNAVAILABLE"
+    #   resp.reasons #=> Array
+    #   resp.reasons[0] #=> String, one of "OBJECT_EXCEEDS_SIZE_QUOTA", "UNSUPPORTED_OBJECT_TYPE", "UNSUPPORTED_FINDING_TYPE", "INVALID_CLASSIFICATION_RESULT", "OBJECT_UNAVAILABLE"
+    #
+    # @see http://docs.aws.amazon.com/goto/WebAPI/macie2-2020-01-01/GetSensitiveDataOccurrencesAvailability AWS API Documentation
+    #
+    # @overload get_sensitive_data_occurrences_availability(params = {})
+    # @param [Hash] params ({})
+    def get_sensitive_data_occurrences_availability(params = {}, options = {})
+      req = build_request(:get_sensitive_data_occurrences_availability, params)
+      req.send_request(options)
+    end
+
     # Retrieves (queries) quotas and aggregated usage data for one or more
     # accounts.
     #
@@ -2097,6 +2317,45 @@ module Aws::Macie2
       req.send_request(options)
     end
 
+    # Retrieves a subset of information about all the allow lists for an
+    # account.
+    #
+    # @option params [Integer] :max_results
+    #
+    # @option params [String] :next_token
+    #
+    # @return [Types::ListAllowListsResponse] Returns a {Seahorse::Client::Response response} object which responds to the following methods:
+    #
+    #   * {Types::ListAllowListsResponse#allow_lists #allow_lists} => Array&lt;Types::AllowListSummary&gt;
+    #   * {Types::ListAllowListsResponse#next_token #next_token} => String
+    #
+    # @example Request syntax with placeholder values
+    #
+    #   resp = client.list_allow_lists({
+    #     max_results: 1,
+    #     next_token: "__string",
+    #   })
+    #
+    # @example Response structure
+    #
+    #   resp.allow_lists #=> Array
+    #   resp.allow_lists[0].arn #=> String
+    #   resp.allow_lists[0].created_at #=> Time
+    #   resp.allow_lists[0].description #=> String
+    #   resp.allow_lists[0].id #=> String
+    #   resp.allow_lists[0].name #=> String
+    #   resp.allow_lists[0].updated_at #=> Time
+    #   resp.next_token #=> String
+    #
+    # @see http://docs.aws.amazon.com/goto/WebAPI/macie2-2020-01-01/ListAllowLists AWS API Documentation
+    #
+    # @overload list_allow_lists(params = {})
+    # @param [Hash] params ({})
+    def list_allow_lists(params = {}, options = {})
+      req = build_request(:list_allow_lists, params)
+      req.send_request(options)
+    end
+
     # Retrieves a subset of information about one or more classification
     # jobs.
     #
@@ -2487,9 +2746,8 @@ module Aws::Macie2
       req.send_request(options)
     end
 
-    # Retrieves the tags (keys and values) that are associated with a
-    # classification job, custom data identifier, findings filter, or member
-    # account.
+    # Retrieves the tags (keys and values) that are associated with an
+    # Amazon Macie resource.
     #
     # @option params [required, String] :resource_arn
     #
@@ -2710,15 +2968,13 @@ module Aws::Macie2
     end
 
     # Adds or updates one or more tags (keys and values) that are associated
-    # with a classification job, custom data identifier, findings filter, or
-    # member account.
+    # with an Amazon Macie resource.
     #
     # @option params [required, String] :resource_arn
     #
     # @option params [required, Hash<String,String>] :tags
     #   A string-to-string map of key-value pairs that specifies the tags
-    #   (keys and values) for a classification job, custom data identifier,
-    #   findings filter, or member account.
+    #   (keys and values) for an Amazon Macie resource.
     #
     # @return [Struct] Returns an empty {Seahorse::Client::Response response}.
     #
@@ -2779,8 +3035,8 @@ module Aws::Macie2
       req.send_request(options)
     end
 
-    # Removes one or more tags (keys and values) from a classification job,
-    # custom data identifier, findings filter, or member account.
+    # Removes one or more tags (keys and values) from an Amazon Macie
+    # resource.
     #
     # @option params [required, String] :resource_arn
     #
@@ -2804,6 +3060,53 @@ module Aws::Macie2
       req.send_request(options)
     end
 
+    # Updates the settings for an allow list.
+    #
+    # @option params [required, Types::AllowListCriteria] :criteria
+    #   Specifies the criteria for an allow list. The criteria must specify a
+    #   regular expression (regex) or an S3 object (s3WordsList). It can't
+    #   specify both.
+    #
+    # @option params [String] :description
+    #
+    # @option params [required, String] :id
+    #
+    # @option params [required, String] :name
+    #
+    # @return [Types::UpdateAllowListResponse] Returns a {Seahorse::Client::Response response} object which responds to the following methods:
+    #
+    #   * {Types::UpdateAllowListResponse#arn #arn} => String
+    #   * {Types::UpdateAllowListResponse#id #id} => String
+    #
+    # @example Request syntax with placeholder values
+    #
+    #   resp = client.update_allow_list({
+    #     criteria: { # required
+    #       regex: "__stringMin1Max512PatternSS",
+    #       s3_words_list: {
+    #         bucket_name: "__stringMin3Max255PatternAZaZ093255", # required
+    #         object_key: "__stringMin1Max1024PatternSS", # required
+    #       },
+    #     },
+    #     description: "__stringMin1Max512PatternSS",
+    #     id: "__string", # required
+    #     name: "__stringMin1Max128Pattern", # required
+    #   })
+    #
+    # @example Response structure
+    #
+    #   resp.arn #=> String
+    #   resp.id #=> String
+    #
+    # @see http://docs.aws.amazon.com/goto/WebAPI/macie2-2020-01-01/UpdateAllowList AWS API Documentation
+    #
+    # @overload update_allow_list(params = {})
+    # @param [Hash] params ({})
+    def update_allow_list(params = {}, options = {})
+      req = build_request(:update_allow_list, params)
+      req.send_request(options)
+    end
+
     # Changes the status of a classification job.
     #
     # @option params [required, String] :job_id
@@ -2901,9 +3204,9 @@ module Aws::Macie2
     # @option params [String] :finding_publishing_frequency
     #   The frequency with which Amazon Macie publishes updates to policy
     #   findings for an account. This includes publishing updates to Security
-    #   Hub and Amazon EventBridge (formerly called Amazon CloudWatch Events).
-    #   For more information, see [Monitoring and processing findings][1] in
-    #   the *Amazon Macie User Guide*. Valid values are:
+    #   Hub and Amazon EventBridge (formerly Amazon CloudWatch Events). For
+    #   more information, see [Monitoring and processing findings][1] in the
+    #   *Amazon Macie User Guide*. Valid values are:
     #
     #
     #
@@ -2978,6 +3281,44 @@ module Aws::Macie2
       req.send_request(options)
     end
 
+    # Updates the status and configuration settings for retrieving
+    # occurrences of sensitive data reported by findings.
+    #
+    # @option params [required, Types::RevealConfiguration] :configuration
+    #   Specifies the configuration settings for retrieving occurrences of
+    #   sensitive data reported by findings, and the status of the
+    #   configuration for an Amazon Macie account. When you enable the
+    #   configuration for the first time, your request must specify an Key
+    #   Management Service (KMS) key. Otherwise, an error occurs. Macie uses
+    #   the specified key to encrypt the sensitive data that you retrieve.
+    #
+    # @return [Types::UpdateRevealConfigurationResponse] Returns a {Seahorse::Client::Response response} object which responds to the following methods:
+    #
+    #   * {Types::UpdateRevealConfigurationResponse#configuration #configuration} => Types::RevealConfiguration
+    #
+    # @example Request syntax with placeholder values
+    #
+    #   resp = client.update_reveal_configuration({
+    #     configuration: { # required
+    #       kms_key_id: "__stringMin1Max2048",
+    #       status: "ENABLED", # required, accepts ENABLED, DISABLED
+    #     },
+    #   })
+    #
+    # @example Response structure
+    #
+    #   resp.configuration.kms_key_id #=> String
+    #   resp.configuration.status #=> String, one of "ENABLED", "DISABLED"
+    #
+    # @see http://docs.aws.amazon.com/goto/WebAPI/macie2-2020-01-01/UpdateRevealConfiguration AWS API Documentation
+    #
+    # @overload update_reveal_configuration(params = {})
+    # @param [Hash] params ({})
+    def update_reveal_configuration(params = {}, options = {})
+      req = build_request(:update_reveal_configuration, params)
+      req.send_request(options)
+    end
+
     # @!endgroup
 
     # @param params ({})
@@ -2991,14 +3332,127 @@ module Aws::Macie2
         params: params,
         config: config)
       context[:gem_name] = 'aws-sdk-macie2'
-      context[:gem_version] = '1.44.0'
+      context[:gem_version] = '1.47.0'
       Seahorse::Client::Request.new(handlers, context)
     end
 
+    # Polls an API operation until a resource enters a desired state.
+    #
+    # ## Basic Usage
+    #
+    # A waiter will call an API operation until:
+    #
+    # * It is successful
+    # * It enters a terminal state
+    # * It makes the maximum number of attempts
+    #
+    # In between attempts, the waiter will sleep.
+    #
+    #     # polls in a loop, sleeping between attempts
+    #     client.wait_until(waiter_name, params)
+    #
+    # ## Configuration
+    #
+    # You can configure the maximum number of polling attempts, and the
+    # delay (in seconds) between each polling attempt. You can pass
+    # configuration as the final arguments hash.
+    #
+    #     # poll for ~25 seconds
+    #     client.wait_until(waiter_name, params, {
+    #       max_attempts: 5,
+    #       delay: 5,
+    #     })
+    #
+    # ## Callbacks
+    #
+    # You can be notified before each polling attempt and before each
+    # delay. If you throw `:success` or `:failure` from these callbacks,
+    # it will terminate the waiter.
+    #
+    #     started_at = Time.now
+    #     client.wait_until(waiter_name, params, {
+    #
+    #       # disable max attempts
+    #       max_attempts: nil,
+    #
+    #       # poll for 1 hour, instead of a number of attempts
+    #       before_wait: -> (attempts, response) do
+    #         throw :failure if Time.now - started_at > 3600
+    #       end
+    #     })
+    #
+    # ## Handling Errors
+    #
+    # When a waiter is unsuccessful, it will raise an error.
+    # All of the failure errors extend from
+    # {Aws::Waiters::Errors::WaiterFailed}.
+    #
+    #     begin
+    #       client.wait_until(...)
+    #     rescue Aws::Waiters::Errors::WaiterFailed
+    #       # resource did not enter the desired state in time
+    #     end
+    #
+    # ## Valid Waiters
+    #
+    # The following table lists the valid waiter names, the operations they call,
+    # and the default `:delay` and `:max_attempts` values.
+    #
+    # | waiter_name      | params                                  | :delay   | :max_attempts |
+    # | ---------------- | --------------------------------------- | -------- | ------------- |
+    # | finding_revealed | {Client#get_sensitive_data_occurrences} | 2        | 60            |
+    #
+    # @raise [Errors::FailureStateError] Raised when the waiter terminates
+    #   because the waiter has entered a state that it will not transition
+    #   out of, preventing success.
+    #
+    # @raise [Errors::TooManyAttemptsError] Raised when the configured
+    #   maximum number of attempts have been made, and the waiter is not
+    #   yet successful.
+    #
+    # @raise [Errors::UnexpectedError] Raised when an error is encounted
+    #   while polling for a resource that is not expected.
+    #
+    # @raise [Errors::NoSuchWaiterError] Raised when you request to wait
+    #   for an unknown state.
+    #
+    # @return [Boolean] Returns `true` if the waiter was successful.
+    # @param [Symbol] waiter_name
+    # @param [Hash] params ({})
+    # @param [Hash] options ({})
+    # @option options [Integer] :max_attempts
+    # @option options [Integer] :delay
+    # @option options [Proc] :before_attempt
+    # @option options [Proc] :before_wait
+    def wait_until(waiter_name, params = {}, options = {})
+      w = waiter(waiter_name, options)
+      yield(w.waiter) if block_given? # deprecated
+      w.wait(params)
+    end
+
     # @api private
     # @deprecated
     def waiter_names
-      []
+      waiters.keys
+    end
+
+    private
+
+    # @param [Symbol] waiter_name
+    # @param [Hash] options ({})
+    def waiter(waiter_name, options = {})
+      waiter_class = waiters[waiter_name]
+      if waiter_class
+        waiter_class.new(options.merge(client: self))
+      else
+        raise Aws::Waiters::Errors::NoSuchWaiterError.new(waiter_name, waiters.keys)
+      end
+    end
+
+    def waiters
+      {
+        finding_revealed: Waiters::FindingRevealed
+      }
     end
 
     class << self