aws-sdk-macie2 1.51.0 → 1.53.0

checksums.yaml

@@ -1,7 +1,7 @@
 ---
 SHA256:
-  metadata.gz: 8d01d3a058aa1afba52268597987bc425cd39b8a1d56410f1a26e82927244188
-  data.tar.gz: 6c2942b7743191db5818f46043c10f8693a497bcb99a1f7368df71b6ef0a4e16
+  metadata.gz: 35fe0a5e96d315e4a620b24cc47e1f1ed1d4a4e80bdf3a0b666c82cab2018798
+  data.tar.gz: 6cc2537388585b0712b6cd6e706f4a8e62240dc7325560f15828952e429e1303
 SHA512:
-  metadata.gz: d16ecfad80110bb4c41a2eba242a4f4f31741c5eea6ff108171efc72575b1e1ebe17a94b1d63b06f068671a65c63b36e249b59ba9dbe4f82bc264bb0bd3c9458
-  data.tar.gz: 3e2ba04d1d09d309e7032ea6cb29d893ccb56d59ad3760c0fb6566bf09dfdd3de2c54f832669cfb1070879b7611b4baf3060aa2c1e4ed28bcd05ae57280436e8
+  metadata.gz: 8bdc7dba29d48f06f7d5470d1eb7373438896e2a44a26d7adcc535604c7ab6cf33b3a50644abf90dbaa78b34ed7d8c3fa230852a6bd4358ab4a40c62b78b0f42
+  data.tar.gz: 9796ac2d3b0fdf24fc4b9eae08225fc53fb907ac58988e77f21166f6cd9835e93150ee85e0c591afaab6ca2e4ba696a1506314bed2b220081b59b113781a224e

data/CHANGELOG.md

@@ -1,6 +1,16 @@
 Unreleased Changes
 ------------------
 
+1.53.0 (2023-03-03)
+------------------
+
+* Feature - Documentation updates for Amazon Macie
+
+1.52.0 (2023-02-23)
+------------------
+
+* Feature - This release adds support for a new finding type, Policy:IAMUser/S3BucketSharedWithCloudFront, and S3 bucket metadata that indicates if a bucket is shared with an Amazon CloudFront OAI or OAC.
+
 1.51.0 (2023-01-18)
 ------------------
 

data/VERSION

@@ -1 +1 @@
-1.51.0
+1.53.0

data/lib/aws-sdk-macie2/client.rb

@@ -906,7 +906,7 @@ module Aws::Macie2
     # @example Request syntax with placeholder values
     #
     #   resp = client.create_sample_findings({
-    #     finding_types: ["SensitiveData:S3Object/Multiple"], # accepts SensitiveData:S3Object/Multiple, SensitiveData:S3Object/Financial, SensitiveData:S3Object/Personal, SensitiveData:S3Object/Credentials, SensitiveData:S3Object/CustomIdentifier, Policy:IAMUser/S3BucketPublic, Policy:IAMUser/S3BucketSharedExternally, Policy:IAMUser/S3BucketReplicatedExternally, Policy:IAMUser/S3BucketEncryptionDisabled, Policy:IAMUser/S3BlockPublicAccessDisabled
+    #     finding_types: ["SensitiveData:S3Object/Multiple"], # accepts SensitiveData:S3Object/Multiple, SensitiveData:S3Object/Financial, SensitiveData:S3Object/Personal, SensitiveData:S3Object/Credentials, SensitiveData:S3Object/CustomIdentifier, Policy:IAMUser/S3BucketPublic, Policy:IAMUser/S3BucketSharedExternally, Policy:IAMUser/S3BucketReplicatedExternally, Policy:IAMUser/S3BucketEncryptionDisabled, Policy:IAMUser/S3BlockPublicAccessDisabled, Policy:IAMUser/S3BucketSharedWithCloudFront
     #   })
     #
     # @see http://docs.aws.amazon.com/goto/WebAPI/macie2-2020-01-01/CreateSampleFindings AWS API Documentation
@@ -2022,7 +2022,7 @@ module Aws::Macie2
     #   resp.findings[0].severity.description #=> String, one of "Low", "Medium", "High"
     #   resp.findings[0].severity.score #=> Integer
     #   resp.findings[0].title #=> String
-    #   resp.findings[0].type #=> String, one of "SensitiveData:S3Object/Multiple", "SensitiveData:S3Object/Financial", "SensitiveData:S3Object/Personal", "SensitiveData:S3Object/Credentials", "SensitiveData:S3Object/CustomIdentifier", "Policy:IAMUser/S3BucketPublic", "Policy:IAMUser/S3BucketSharedExternally", "Policy:IAMUser/S3BucketReplicatedExternally", "Policy:IAMUser/S3BucketEncryptionDisabled", "Policy:IAMUser/S3BlockPublicAccessDisabled"
+    #   resp.findings[0].type #=> String, one of "SensitiveData:S3Object/Multiple", "SensitiveData:S3Object/Financial", "SensitiveData:S3Object/Personal", "SensitiveData:S3Object/Credentials", "SensitiveData:S3Object/CustomIdentifier", "Policy:IAMUser/S3BucketPublic", "Policy:IAMUser/S3BucketSharedExternally", "Policy:IAMUser/S3BucketReplicatedExternally", "Policy:IAMUser/S3BucketEncryptionDisabled", "Policy:IAMUser/S3BlockPublicAccessDisabled", "Policy:IAMUser/S3BucketSharedWithCloudFront"
     #   resp.findings[0].updated_at #=> Time
     #
     # @see http://docs.aws.amazon.com/goto/WebAPI/macie2-2020-01-01/GetFindings AWS API Documentation
@@ -3842,7 +3842,7 @@ module Aws::Macie2
         params: params,
         config: config)
       context[:gem_name] = 'aws-sdk-macie2'
-      context[:gem_version] = '1.51.0'
+      context[:gem_version] = '1.53.0'
       Seahorse::Client::Request.new(handlers, context)
     end
 

data/lib/aws-sdk-macie2/endpoint_parameters.rb

@@ -50,9 +50,6 @@ module Aws::Macie2
 
     def initialize(options = {})
       self[:region] = options[:region]
-      if self[:region].nil?
-        raise ArgumentError, "Missing required EndpointParameter: :region"
-      end
       self[:use_dual_stack] = options[:use_dual_stack]
       self[:use_dual_stack] = false if self[:use_dual_stack].nil?
       if self[:use_dual_stack].nil?

data/lib/aws-sdk-macie2/endpoint_provider.rb

@@ -14,36 +14,39 @@ module Aws::Macie2
       use_dual_stack = parameters.use_dual_stack
       use_fips = parameters.use_fips
       endpoint = parameters.endpoint
-      if (partition_result = Aws::Endpoints::Matchers.aws_partition(region))
-        if Aws::Endpoints::Matchers.set?(endpoint)
-          if Aws::Endpoints::Matchers.boolean_equals?(use_fips, true)
-            raise ArgumentError, "Invalid Configuration: FIPS and custom endpoint are not supported"
-          end
-          if Aws::Endpoints::Matchers.boolean_equals?(use_dual_stack, true)
-            raise ArgumentError, "Invalid Configuration: Dualstack and custom endpoint are not supported"
-          end
-          return Aws::Endpoints::Endpoint.new(url: endpoint, headers: {}, properties: {})
-        end
-        if Aws::Endpoints::Matchers.boolean_equals?(use_fips, true) && Aws::Endpoints::Matchers.boolean_equals?(use_dual_stack, true)
-          if Aws::Endpoints::Matchers.boolean_equals?(true, Aws::Endpoints::Matchers.attr(partition_result, "supportsFIPS")) && Aws::Endpoints::Matchers.boolean_equals?(true, Aws::Endpoints::Matchers.attr(partition_result, "supportsDualStack"))
-            return Aws::Endpoints::Endpoint.new(url: "https://macie2-fips.#{region}.#{partition_result['dualStackDnsSuffix']}", headers: {}, properties: {})
-          end
-          raise ArgumentError, "FIPS and DualStack are enabled, but this partition does not support one or both"
-        end
+      if Aws::Endpoints::Matchers.set?(endpoint)
         if Aws::Endpoints::Matchers.boolean_equals?(use_fips, true)
-          if Aws::Endpoints::Matchers.boolean_equals?(true, Aws::Endpoints::Matchers.attr(partition_result, "supportsFIPS"))
-            return Aws::Endpoints::Endpoint.new(url: "https://macie2-fips.#{region}.#{partition_result['dnsSuffix']}", headers: {}, properties: {})
-          end
-          raise ArgumentError, "FIPS is enabled but this partition does not support FIPS"
+          raise ArgumentError, "Invalid Configuration: FIPS and custom endpoint are not supported"
         end
         if Aws::Endpoints::Matchers.boolean_equals?(use_dual_stack, true)
-          if Aws::Endpoints::Matchers.boolean_equals?(true, Aws::Endpoints::Matchers.attr(partition_result, "supportsDualStack"))
-            return Aws::Endpoints::Endpoint.new(url: "https://macie2.#{region}.#{partition_result['dualStackDnsSuffix']}", headers: {}, properties: {})
+          raise ArgumentError, "Invalid Configuration: Dualstack and custom endpoint are not supported"
+        end
+        return Aws::Endpoints::Endpoint.new(url: endpoint, headers: {}, properties: {})
+      end
+      if Aws::Endpoints::Matchers.set?(region)
+        if (partition_result = Aws::Endpoints::Matchers.aws_partition(region))
+          if Aws::Endpoints::Matchers.boolean_equals?(use_fips, true) && Aws::Endpoints::Matchers.boolean_equals?(use_dual_stack, true)
+            if Aws::Endpoints::Matchers.boolean_equals?(true, Aws::Endpoints::Matchers.attr(partition_result, "supportsFIPS")) && Aws::Endpoints::Matchers.boolean_equals?(true, Aws::Endpoints::Matchers.attr(partition_result, "supportsDualStack"))
+              return Aws::Endpoints::Endpoint.new(url: "https://macie2-fips.#{region}.#{partition_result['dualStackDnsSuffix']}", headers: {}, properties: {})
+            end
+            raise ArgumentError, "FIPS and DualStack are enabled, but this partition does not support one or both"
+          end
+          if Aws::Endpoints::Matchers.boolean_equals?(use_fips, true)
+            if Aws::Endpoints::Matchers.boolean_equals?(true, Aws::Endpoints::Matchers.attr(partition_result, "supportsFIPS"))
+              return Aws::Endpoints::Endpoint.new(url: "https://macie2-fips.#{region}.#{partition_result['dnsSuffix']}", headers: {}, properties: {})
+            end
+            raise ArgumentError, "FIPS is enabled but this partition does not support FIPS"
+          end
+          if Aws::Endpoints::Matchers.boolean_equals?(use_dual_stack, true)
+            if Aws::Endpoints::Matchers.boolean_equals?(true, Aws::Endpoints::Matchers.attr(partition_result, "supportsDualStack"))
+              return Aws::Endpoints::Endpoint.new(url: "https://macie2.#{region}.#{partition_result['dualStackDnsSuffix']}", headers: {}, properties: {})
+            end
+            raise ArgumentError, "DualStack is enabled but this partition does not support DualStack"
           end
-          raise ArgumentError, "DualStack is enabled but this partition does not support DualStack"
+          return Aws::Endpoints::Endpoint.new(url: "https://macie2.#{region}.#{partition_result['dnsSuffix']}", headers: {}, properties: {})
         end
-        return Aws::Endpoints::Endpoint.new(url: "https://macie2.#{region}.#{partition_result['dnsSuffix']}", headers: {}, properties: {})
       end
+      raise ArgumentError, "Invalid Configuration: Missing Region"
       raise ArgumentError, 'No endpoint could be resolved'
 
     end

data/lib/aws-sdk-macie2/types.rb

@@ -402,7 +402,7 @@ module Aws::Macie2
     end
 
     # Provides information about the number of S3 buckets that are publicly
-    # accessible based on a combination of permissions settings for each
+    # accessible due to a combination of permissions settings for each
     # bucket.
     #
     # @!attribute [rw] publicly_accessible
@@ -428,11 +428,12 @@ module Aws::Macie2
       include Aws::Structure
     end
 
-    # Provides information about the number of S3 buckets that use certain
-    # types of server-side encryption by default or don't encrypt new
-    # objects by default. For detailed information about these settings, see
-    # [Setting default server-side encryption behavior for Amazon S3
-    # buckets][1] in the *Amazon Simple Storage Service User Guide*.
+    # Provides information about the number of S3 buckets whose settings do
+    # or don't specify default server-side encryption behavior for objects
+    # that are added to the buckets. For detailed information about these
+    # settings, see [Setting default server-side encryption behavior for
+    # Amazon S3 buckets][1] in the *Amazon Simple Storage Service User
+    # Guide*.
     #
     #
     #
@@ -462,7 +463,12 @@ module Aws::Macie2
     end
 
     # Provides information about the number of S3 buckets that are or
-    # aren't shared with other Amazon Web Services accounts.
+    # aren't shared with other Amazon Web Services accounts, Amazon
+    # CloudFront origin access identities (OAIs), or CloudFront origin
+    # access controls (OACs). In this data, an *Amazon Macie organization*
+    # is defined as a set of Macie accounts that are centrally managed as a
+    # group of related accounts through Organizations or by Macie
+    # invitation.
     #
     # @!attribute [rw] external
     #   @return [Integer]
@@ -489,7 +495,7 @@ module Aws::Macie2
 
     # Provides information about the number of S3 buckets whose bucket
     # policies do or don't require server-side encryption of objects when
-    # objects are uploaded to the buckets.
+    # objects are added to the buckets.
     #
     # @!attribute [rw] allows_unencrypted_object_uploads
     #   @return [Integer]
@@ -584,13 +590,22 @@ module Aws::Macie2
     end
 
     # Provides statistical data and other information about an S3 bucket
-    # that Amazon Macie monitors and analyzes for your account. If an error
-    # occurs when Macie attempts to retrieve and process metadata from
-    # Amazon S3 for the bucket and the bucket's objects, the value for the
-    # versioning property is false and the value for most other properties
-    # is null. Key exceptions are accountId, bucketArn, bucketCreatedAt,
-    # bucketName, lastUpdated, and region. To identify the cause of the
-    # error, refer to the errorCode and errorMessage values.
+    # that Amazon Macie monitors and analyzes for your account. By default,
+    # object count and storage size values include data for object parts
+    # that are the result of incomplete multipart uploads. For more
+    # information, see [How Macie monitors Amazon S3 data security][1] in
+    # the *Amazon Macie User Guide*.
+    #
+    # If an error occurs when Macie attempts to retrieve and process
+    # metadata from Amazon S3 for the bucket or the bucket's objects, the
+    # value for the versioning property is false and the value for most
+    # other properties is null. Key exceptions are accountId, bucketArn,
+    # bucketCreatedAt, bucketName, lastUpdated, and region. To identify the
+    # cause of the error, refer to the errorCode and errorMessage values.
+    #
+    #
+    #
+    # [1]: https://docs.aws.amazon.com/macie/latest/user/monitoring-s3-how-it-works.html
     #
     # @!attribute [rw] account_id
     #   @return [String]
@@ -2599,23 +2614,31 @@ module Aws::Macie2
 
     # Provides the results of a query that retrieved aggregated statistical
     # data for all the S3 buckets that Amazon Macie monitors and analyzes
-    # for your account.
+    # for your account. By default, object count and storage size values
+    # include data for object parts that are the result of incomplete
+    # multipart uploads. For more information, see [How Macie monitors
+    # Amazon S3 data security][1] in the *Amazon Macie User Guide*.
+    #
+    #
+    #
+    # [1]: https://docs.aws.amazon.com/macie/latest/user/monitoring-s3-how-it-works.html
     #
     # @!attribute [rw] bucket_count
     #   @return [Integer]
     #
     # @!attribute [rw] bucket_count_by_effective_permission
     #   Provides information about the number of S3 buckets that are
-    #   publicly accessible based on a combination of permissions settings
-    #   for each bucket.
+    #   publicly accessible due to a combination of permissions settings for
+    #   each bucket.
     #   @return [Types::BucketCountByEffectivePermission]
     #
     # @!attribute [rw] bucket_count_by_encryption_type
-    #   Provides information about the number of S3 buckets that use certain
-    #   types of server-side encryption by default or don't encrypt new
-    #   objects by default. For detailed information about these settings,
-    #   see [Setting default server-side encryption behavior for Amazon S3
-    #   buckets][1] in the *Amazon Simple Storage Service User Guide*.
+    #   Provides information about the number of S3 buckets whose settings
+    #   do or don't specify default server-side encryption behavior for
+    #   objects that are added to the buckets. For detailed information
+    #   about these settings, see [Setting default server-side encryption
+    #   behavior for Amazon S3 buckets][1] in the *Amazon Simple Storage
+    #   Service User Guide*.
     #
     #
     #
@@ -2625,12 +2648,17 @@ module Aws::Macie2
     # @!attribute [rw] bucket_count_by_object_encryption_requirement
     #   Provides information about the number of S3 buckets whose bucket
     #   policies do or don't require server-side encryption of objects when
-    #   objects are uploaded to the buckets.
+    #   objects are added to the buckets.
     #   @return [Types::BucketCountPolicyAllowsUnencryptedObjectUploads]
     #
     # @!attribute [rw] bucket_count_by_shared_access_type
     #   Provides information about the number of S3 buckets that are or
-    #   aren't shared with other Amazon Web Services accounts.
+    #   aren't shared with other Amazon Web Services accounts, Amazon
+    #   CloudFront origin access identities (OAIs), or CloudFront origin
+    #   access controls (OACs). In this data, an *Amazon Macie organization*
+    #   is defined as a set of Macie accounts that are centrally managed as
+    #   a group of related accounts through Organizations or by Macie
+    #   invitation.
     #   @return [Types::BucketCountBySharedAccessType]
     #
     # @!attribute [rw] bucket_statistics_by_sensitivity
@@ -4454,12 +4482,21 @@ module Aws::Macie2
     end
 
     # Provides statistical data and other information about an S3 bucket
-    # that Amazon Macie monitors and analyzes for your account. If an error
-    # occurs when Macie attempts to retrieve and process information about
-    # the bucket or the bucket's objects, the value for most of these
-    # properties is null. Key exceptions are accountId and bucketName. To
-    # identify the cause of the error, refer to the errorCode and
-    # errorMessage values.
+    # that Amazon Macie monitors and analyzes for your account. By default,
+    # object count and storage size values include data for object parts
+    # that are the result of incomplete multipart uploads. For more
+    # information, see [How Macie monitors Amazon S3 data security][1] in
+    # the *Amazon Macie User Guide*.
+    #
+    # If an error occurs when Macie attempts to retrieve and process
+    # information about the bucket or the bucket's objects, the value for
+    # most of these properties is null. Key exceptions are accountId and
+    # bucketName. To identify the cause of the error, refer to the errorCode
+    # and errorMessage values.
+    #
+    #
+    #
+    # [1]: https://docs.aws.amazon.com/macie/latest/user/monitoring-s3-how-it-works.html
     #
     # @!attribute [rw] account_id
     #   @return [String]
@@ -4559,12 +4596,21 @@ module Aws::Macie2
     #
     # @!attribute [rw] matching_bucket
     #   Provides statistical data and other information about an S3 bucket
-    #   that Amazon Macie monitors and analyzes for your account. If an
-    #   error occurs when Macie attempts to retrieve and process information
-    #   about the bucket or the bucket's objects, the value for most of
-    #   these properties is null. Key exceptions are accountId and
+    #   that Amazon Macie monitors and analyzes for your account. By
+    #   default, object count and storage size values include data for
+    #   object parts that are the result of incomplete multipart uploads.
+    #   For more information, see [How Macie monitors Amazon S3 data
+    #   security][1] in the *Amazon Macie User Guide*.
+    #
+    #   If an error occurs when Macie attempts to retrieve and process
+    #   information about the bucket or the bucket's objects, the value for
+    #   most of these properties is null. Key exceptions are accountId and
     #   bucketName. To identify the cause of the error, refer to the
     #   errorCode and errorMessage values.
+    #
+    #
+    #
+    #   [1]: https://docs.aws.amazon.com/macie/latest/user/monitoring-s3-how-it-works.html
     #   @return [Types::MatchingBucket]
     #
     # @see http://docs.aws.amazon.com/goto/WebAPI/macie2-2020-01-01/MatchingResource AWS API Documentation
@@ -4742,13 +4788,15 @@ module Aws::Macie2
     # Portable Document Format file.
     #
     # @!attribute [rw] line_range
-    #   Specifies the location of an occurrence of sensitive data in a
-    #   non-binary text file, such as an HTML, TXT, or XML file.
+    #   Specifies the location of an occurrence of sensitive data in an
+    #   email message or a non-binary text file such as an HTML, TXT, or XML
+    #   file.
     #   @return [Types::Range]
     #
     # @!attribute [rw] offset_range
-    #   Specifies the location of an occurrence of sensitive data in a
-    #   non-binary text file, such as an HTML, TXT, or XML file.
+    #   Specifies the location of an occurrence of sensitive data in an
+    #   email message or a non-binary text file such as an HTML, TXT, or XML
+    #   file.
     #   @return [Types::Range]
     #
     # @!attribute [rw] page_number
@@ -4851,8 +4899,8 @@ module Aws::Macie2
     #
     class PutFindingsPublicationConfigurationResponse < Aws::EmptyStructure; end
 
-    # Specifies the location of an occurrence of sensitive data in a
-    # non-binary text file, such as an HTML, TXT, or XML file.
+    # Specifies the location of an occurrence of sensitive data in an email
+    # message or a non-binary text file such as an HTML, TXT, or XML file.
     #
     # @!attribute [rw] end
     #   @return [Integer]
@@ -5059,8 +5107,9 @@ module Aws::Macie2
     #   @return [Time]
     #
     # @!attribute [rw] default_server_side_encryption
-    #   Provides information about the server-side encryption settings for
-    #   an S3 bucket or S3 object.
+    #   Provides information about the default server-side encryption
+    #   settings for an S3 bucket or the encryption settings for an S3
+    #   object.
     #   @return [Types::ServerSideEncryption]
     #
     # @!attribute [rw] name
@@ -5305,8 +5354,9 @@ module Aws::Macie2
     #   @return [Boolean]
     #
     # @!attribute [rw] server_side_encryption
-    #   Provides information about the server-side encryption settings for
-    #   an S3 bucket or S3 object.
+    #   Provides information about the default server-side encryption
+    #   settings for an S3 bucket or the encryption settings for an S3
+    #   object.
     #   @return [Types::ServerSideEncryption]
     #
     # @!attribute [rw] size
@@ -5746,12 +5796,13 @@ module Aws::Macie2
       include Aws::Structure
     end
 
-    # Provides information about the server-side encryption settings for an
-    # S3 bucket or S3 object.
+    # Provides information about the default server-side encryption settings
+    # for an S3 bucket or the encryption settings for an S3 object.
     #
     # @!attribute [rw] encryption_type
-    #   The type of server-side encryption that's used to encrypt an S3
-    #   object or objects in an S3 bucket. Possible values are:
+    #   The server-side encryption algorithm that was used to encrypt an S3
+    #   object or is used by default to encrypt objects that are added to an
+    #   S3 bucket. Possible values are:
     #   @return [String]
     #
     # @!attribute [rw] kms_master_key_id

data/lib/aws-sdk-macie2.rb

@@ -53,6 +53,6 @@ require_relative 'aws-sdk-macie2/customizations'
 # @!group service
 module Aws::Macie2
 
-  GEM_VERSION = '1.51.0'
+  GEM_VERSION = '1.53.0'
 
 end

metadata

@@ -1,14 +1,14 @@
 --- !ruby/object:Gem::Specification
 name: aws-sdk-macie2
 version: !ruby/object:Gem::Version
-  version: 1.51.0
+  version: 1.53.0
 platform: ruby
 authors:
 - Amazon Web Services
 autorequire: 
 bindir: bin
 cert_chain: []
-date: 2023-01-18 00:00:00.000000000 Z
+date: 2023-03-03 00:00:00.000000000 Z
 dependencies:
 - !ruby/object:Gem::Dependency
   name: aws-sdk-core