aws-sdk-securityhub 1.144.0 → 1.145.0

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.
Files changed (11) hide show
  1. checksums.yaml +4 -4
  2. data/CHANGELOG.md +5 -0
  3. data/VERSION +1 -1
  4. data/lib/aws-sdk-securityhub/client.rb +107 -53
  5. data/lib/aws-sdk-securityhub/client_api.rb +13 -1
  6. data/lib/aws-sdk-securityhub/endpoint_parameters.rb +4 -4
  7. data/lib/aws-sdk-securityhub/types.rb +57 -5
  8. data/lib/aws-sdk-securityhub.rb +1 -1
  9. data/sig/client.rbs +64 -26
  10. data/sig/types.rbs +20 -11
  11. metadata +1 -1
data/lib/aws-sdk-securityhub/client_api.rb CHANGED
@@ -1079,6 +1079,9 @@ module Aws::SecurityHub
1079
1079
  OcsfFindingIdentifier = Shapes::StructureShape.new(name: 'OcsfFindingIdentifier')
1080
1080
  OcsfFindingIdentifierList = Shapes::ListShape.new(name: 'OcsfFindingIdentifierList')
1081
1081
  OcsfFindingsList = Shapes::ListShape.new(name: 'OcsfFindingsList')
1082
+ OcsfIpField = Shapes::StringShape.new(name: 'OcsfIpField')
1083
+ OcsfIpFilter = Shapes::StructureShape.new(name: 'OcsfIpFilter')
1084
+ OcsfIpFilterList = Shapes::ListShape.new(name: 'OcsfIpFilterList')
1082
1085
  OcsfMapField = Shapes::StringShape.new(name: 'OcsfMapField')
1083
1086
  OcsfMapFilter = Shapes::StructureShape.new(name: 'OcsfMapFilter')
1084
1087
  OcsfMapFilterList = Shapes::ListShape.new(name: 'OcsfMapFilterList')
@@ -5502,6 +5505,8 @@ module Aws::SecurityHub
5502
5505
  CompositeFilter.add_member(:boolean_filters, Shapes::ShapeRef.new(shape: OcsfBooleanFilterList, location_name: "BooleanFilters"))
5503
5506
  CompositeFilter.add_member(:number_filters, Shapes::ShapeRef.new(shape: OcsfNumberFilterList, location_name: "NumberFilters"))
5504
5507
  CompositeFilter.add_member(:map_filters, Shapes::ShapeRef.new(shape: OcsfMapFilterList, location_name: "MapFilters"))
5508
+ CompositeFilter.add_member(:ip_filters, Shapes::ShapeRef.new(shape: OcsfIpFilterList, location_name: "IpFilters"))
5509
+ CompositeFilter.add_member(:nested_composite_filters, Shapes::ShapeRef.new(shape: CompositeFilterList, location_name: "NestedCompositeFilters"))
5505
5510
  CompositeFilter.add_member(:operator, Shapes::ShapeRef.new(shape: AllowedOperators, location_name: "Operator"))
5506
5511
  CompositeFilter.struct_class = Types::CompositeFilter
5507
5512
 
@@ -6627,6 +6632,12 @@ module Aws::SecurityHub
6627
6632
 
6628
6633
  OcsfFindingsList.member = Shapes::ShapeRef.new(shape: OcsfFinding)
6629
6634
 
6635
+ OcsfIpFilter.add_member(:field_name, Shapes::ShapeRef.new(shape: OcsfIpField, location_name: "FieldName"))
6636
+ OcsfIpFilter.add_member(:filter, Shapes::ShapeRef.new(shape: IpFilter, location_name: "Filter"))
6637
+ OcsfIpFilter.struct_class = Types::OcsfIpFilter
6638
+
6639
+ OcsfIpFilterList.member = Shapes::ShapeRef.new(shape: OcsfIpFilter)
6640
+
6630
6641
  OcsfMapFilter.add_member(:field_name, Shapes::ShapeRef.new(shape: OcsfMapField, location_name: "FieldName"))
6631
6642
  OcsfMapFilter.add_member(:filter, Shapes::ShapeRef.new(shape: MapFilter, location_name: "Filter"))
6632
6643
  OcsfMapFilter.struct_class = Types::OcsfMapFilter
@@ -6966,7 +6977,7 @@ module Aws::SecurityHub
6966
6977
  ResourceNotFoundException.add_member(:code, Shapes::ShapeRef.new(shape: NonEmptyString, location_name: "Code"))
6967
6978
  ResourceNotFoundException.struct_class = Types::ResourceNotFoundException
6968
6979
 
6969
- ResourceResult.add_member(:resource_arn, Shapes::ShapeRef.new(shape: NonEmptyString, location_name: "ResourceArn"))
6980
+ ResourceResult.add_member(:resource_guid, Shapes::ShapeRef.new(shape: NonEmptyString, location_name: "ResourceGuid"))
6970
6981
  ResourceResult.add_member(:resource_id, Shapes::ShapeRef.new(shape: NonEmptyString, required: true, location_name: "ResourceId"))
6971
6982
  ResourceResult.add_member(:account_id, Shapes::ShapeRef.new(shape: NonEmptyString, required: true, location_name: "AccountId"))
6972
6983
  ResourceResult.add_member(:region, Shapes::ShapeRef.new(shape: NonEmptyString, required: true, location_name: "Region"))
@@ -7002,6 +7013,7 @@ module Aws::SecurityHub
7002
7013
  ResourcesCompositeFilter.add_member(:date_filters, Shapes::ShapeRef.new(shape: ResourcesDateFilterList, location_name: "DateFilters"))
7003
7014
  ResourcesCompositeFilter.add_member(:number_filters, Shapes::ShapeRef.new(shape: ResourcesNumberFilterList, location_name: "NumberFilters"))
7004
7015
  ResourcesCompositeFilter.add_member(:map_filters, Shapes::ShapeRef.new(shape: ResourcesMapFilterList, location_name: "MapFilters"))
7016
+ ResourcesCompositeFilter.add_member(:nested_composite_filters, Shapes::ShapeRef.new(shape: ResourcesCompositeFilterList, location_name: "NestedCompositeFilters"))
7005
7017
  ResourcesCompositeFilter.add_member(:operator, Shapes::ShapeRef.new(shape: AllowedOperators, location_name: "Operator"))
7006
7018
  ResourcesCompositeFilter.struct_class = Types::ResourcesCompositeFilter
7007
7019
 
data/lib/aws-sdk-securityhub/endpoint_parameters.rb CHANGED
@@ -13,22 +13,22 @@ module Aws::SecurityHub
13
13
  # @!attribute region
14
14
  # The AWS region used to dispatch the request.
15
15
  #
16
- # @return [String]
16
+ # @return [string]
17
17
  #
18
18
  # @!attribute use_dual_stack
19
19
  # When true, use the dual-stack endpoint. If the configured endpoint does not support dual-stack, dispatching the request MAY return an error.
20
20
  #
21
- # @return [Boolean]
21
+ # @return [boolean]
22
22
  #
23
23
  # @!attribute use_fips
24
24
  # When true, send this request to the FIPS-compliant regional endpoint. If the configured endpoint does not have a FIPS compliant endpoint, dispatching the request will return an error.
25
25
  #
26
- # @return [Boolean]
26
+ # @return [boolean]
27
27
  #
28
28
  # @!attribute endpoint
29
29
  # Override the endpoint used to send this request
30
30
  #
31
- # @return [String]
31
+ # @return [string]
32
32
  #
33
33
  EndpointParameters = Struct.new(
34
34
  :region,
data/lib/aws-sdk-securityhub/types.rb CHANGED
@@ -22577,6 +22577,21 @@ module Aws::SecurityHub
22577
22577
  # Enables filtering based on map field values.
22578
22578
  # @return [Array<Types::OcsfMapFilter>]
22579
22579
  #
22580
+ # @!attribute [rw] ip_filters
22581
+ # A list of IP address filters that allowing you to filter findings
22582
+ # based on IP address properties.
22583
+ # @return [Array<Types::OcsfIpFilter>]
22584
+ #
22585
+ # @!attribute [rw] nested_composite_filters
22586
+ # Provides an additional level of filtering, creating a three-layer
22587
+ # nested structure. The first layer is a `CompositeFilters` array with
22588
+ # a `CompositeOperator` (`AND`/`OR`). The second layer is a
22589
+ # `CompositeFilter` object that contains direct filters and
22590
+ # `NestedCompositeFilters`. The third layer is
22591
+ # `NestedCompositeFilters`, which contains additional filter
22592
+ # conditions.
22593
+ # @return [Array<Types::CompositeFilter>]
22594
+ #
22580
22595
  # @!attribute [rw] operator
22581
22596
  # The logical operator used to combine multiple filter conditions.
22582
22597
  # @return [String]
@@ -22589,6 +22604,8 @@ module Aws::SecurityHub
22589
22604
  :boolean_filters,
22590
22605
  :number_filters,
22591
22606
  :map_filters,
22607
+ :ip_filters,
22608
+ :nested_composite_filters,
22592
22609
  :operator)
22593
22610
  SENSITIVE = []
22594
22611
  include Aws::Structure
@@ -28109,6 +28126,25 @@ module Aws::SecurityHub
28109
28126
  include Aws::Structure
28110
28127
  end
28111
28128
 
28129
+ # The structure for filtering findings based on IP address attributes.
28130
+ #
28131
+ # @!attribute [rw] field_name
28132
+ # The name of the IP address field to filter on.
28133
+ # @return [String]
28134
+ #
28135
+ # @!attribute [rw] filter
28136
+ # The IP filter for querying findings.
28137
+ # @return [Types::IpFilter]
28138
+ #
28139
+ # @see http://docs.aws.amazon.com/goto/WebAPI/securityhub-2018-10-26/OcsfIpFilter AWS API Documentation
28140
+ #
28141
+ class OcsfIpFilter < Struct.new(
28142
+ :field_name,
28143
+ :filter)
28144
+ SENSITIVE = []
28145
+ include Aws::Structure
28146
+ end
28147
+
28112
28148
  # Enables filtering of security findings based on map field values in
28113
28149
  # OCSF.
28114
28150
  #
@@ -29757,8 +29793,8 @@ module Aws::SecurityHub
29757
29793
  # Provides comprehensive details about an Amazon Web Services resource
29758
29794
  # and its associated security findings.
29759
29795
  #
29760
- # @!attribute [rw] resource_arn
29761
- # Specifies the ARN that uniquely identifies a resource.
29796
+ # @!attribute [rw] resource_guid
29797
+ # The global identifier used to identify a resource.
29762
29798
  # @return [String]
29763
29799
  #
29764
29800
  # @!attribute [rw] resource_id
@@ -29808,7 +29844,7 @@ module Aws::SecurityHub
29808
29844
  # @see http://docs.aws.amazon.com/goto/WebAPI/securityhub-2018-10-26/ResourceResult AWS API Documentation
29809
29845
  #
29810
29846
  class ResourceResult < Struct.new(
29811
- :resource_arn,
29847
+ :resource_guid,
29812
29848
  :resource_id,
29813
29849
  :account_id,
29814
29850
  :region,
@@ -29913,6 +29949,16 @@ module Aws::SecurityHub
29913
29949
  # Enables filtering based on map-based field values.
29914
29950
  # @return [Array<Types::ResourcesMapFilter>]
29915
29951
  #
29952
+ # @!attribute [rw] nested_composite_filters
29953
+ # Provides an additional level of filtering, creating a three-layer
29954
+ # nested structure. The first layer is a `CompositeFilters` array with
29955
+ # a `CompositeOperator` (`AND`/`OR`). The second layer is a
29956
+ # `CompositeFilter` object that contains direct filters and
29957
+ # `NestedCompositeFilters`. The third layer is
29958
+ # `NestedCompositeFilters`, which contains additional filter
29959
+ # conditions.
29960
+ # @return [Array<Types::ResourcesCompositeFilter>]
29961
+ #
29916
29962
  # @!attribute [rw] operator
29917
29963
  # The logical operator used to combine multiple filter conditions.
29918
29964
  # @return [String]
@@ -29924,6 +29970,7 @@ module Aws::SecurityHub
29924
29970
  :date_filters,
29925
29971
  :number_filters,
29926
29972
  :map_filters,
29973
+ :nested_composite_filters,
29927
29974
  :operator)
29928
29975
  SENSITIVE = []
29929
29976
  include Aws::Structure
@@ -32367,7 +32414,9 @@ module Aws::SecurityHub
32367
32414
  # @return [String]
32368
32415
  #
32369
32416
  # @!attribute [rw] error_code
32370
- # The error code for the unprocessed security control.
32417
+ # The error code for the unprocessed security control. The `NOT_FOUND`
32418
+ # value has been deprecated and replaced by the `RESOURCE_NOT_FOUND`
32419
+ # value.
32371
32420
  # @return [String]
32372
32421
  #
32373
32422
  # @!attribute [rw] error_reason
@@ -32408,6 +32457,8 @@ module Aws::SecurityHub
32408
32457
  #
32409
32458
  # @!attribute [rw] error_code
32410
32459
  # The error code for the unprocessed standard and control association.
32460
+ # The `NOT_FOUND` value has been deprecated and replaced by the
32461
+ # `RESOURCE_NOT_FOUND` value.
32411
32462
  # @return [String]
32412
32463
  #
32413
32464
  # @!attribute [rw] error_reason
@@ -32444,7 +32495,8 @@ module Aws::SecurityHub
32444
32495
  #
32445
32496
  # @!attribute [rw] error_code
32446
32497
  # The error code for the unprocessed update of the control's
32447
- # enablement status in the specified standard.
32498
+ # enablement status in the specified standard. The `NOT_FOUND` value
32499
+ # has been deprecated and replaced by the `RESOURCE_NOT_FOUND` value.
32448
32500
  # @return [String]
32449
32501
  #
32450
32502
  # @!attribute [rw] error_reason
data/lib/aws-sdk-securityhub.rb CHANGED
@@ -54,7 +54,7 @@ module Aws::SecurityHub
54
54
  autoload :EndpointProvider, 'aws-sdk-securityhub/endpoint_provider'
55
55
  autoload :Endpoints, 'aws-sdk-securityhub/endpoints'
56
56
 
57
- GEM_VERSION = '1.144.0'
57
+ GEM_VERSION = '1.145.0'
58
58
 
59
59
  end
60
60
 
data/sig/client.rbs CHANGED
@@ -5215,7 +5215,7 @@ module Aws
5215
5215
  {
5216
5216
  string_filters: Array[
5217
5217
  {
5218
- field_name: ("metadata.uid" | "activity_name" | "cloud.account.uid" | "cloud.provider" | "cloud.region" | "compliance.assessments.category" | "compliance.assessments.name" | "compliance.control" | "compliance.status" | "compliance.standards" | "finding_info.desc" | "finding_info.src_url" | "finding_info.title" | "finding_info.types" | "finding_info.uid" | "finding_info.related_events.uid" | "finding_info.related_events.product.uid" | "finding_info.related_events.title" | "metadata.product.name" | "metadata.product.uid" | "metadata.product.vendor_name" | "remediation.desc" | "remediation.references" | "resources.cloud_partition" | "resources.region" | "resources.type" | "resources.uid" | "severity" | "status" | "comment" | "vulnerabilities.fix_coverage" | "class_name")?,
5218
+ field_name: ("metadata.uid" | "activity_name" | "cloud.account.uid" | "cloud.provider" | "cloud.region" | "compliance.assessments.category" | "compliance.assessments.name" | "compliance.control" | "compliance.status" | "compliance.standards" | "finding_info.desc" | "finding_info.src_url" | "finding_info.title" | "finding_info.types" | "finding_info.uid" | "finding_info.related_events.uid" | "finding_info.related_events.product.uid" | "finding_info.related_events.title" | "metadata.product.name" | "metadata.product.uid" | "metadata.product.vendor_name" | "remediation.desc" | "remediation.references" | "resources.cloud_partition" | "resources.region" | "resources.type" | "resources.uid" | "severity" | "status" | "comment" | "vulnerabilities.fix_coverage" | "class_name" | "databucket.encryption_details.algorithm" | "databucket.encryption_details.key_uid" | "databucket.file.data_classifications.classifier_details.type" | "evidences.actor.user.account.uid" | "evidences.api.operation" | "evidences.api.response.error_message" | "evidences.api.service.name" | "evidences.connection_info.direction" | "evidences.connection_info.protocol_name" | "evidences.dst_endpoint.autonomous_system.name" | "evidences.dst_endpoint.location.city" | "evidences.dst_endpoint.location.country" | "evidences.src_endpoint.autonomous_system.name" | "evidences.src_endpoint.hostname" | "evidences.src_endpoint.location.city" | "evidences.src_endpoint.location.country" | "finding_info.analytic.name" | "malware.name" | "malware_scan_info.uid" | "malware.severity" | "resources.cloud_function.layers.uid_alt" | "resources.cloud_function.runtime" | "resources.cloud_function.user.uid" | "resources.device.encryption_details.key_uid" | "resources.device.image.uid" | "resources.image.architecture" | "resources.image.registry_uid" | "resources.image.repository_name" | "resources.image.uid" | "resources.subnet_info.uid" | "resources.vpc_uid" | "vulnerabilities.affected_code.file.path" | "vulnerabilities.affected_packages.name" | "vulnerabilities.cve.epss.score" | "vulnerabilities.cve.uid" | "vulnerabilities.related_vulnerabilities" | "cloud.account.name")?,
5219
5219
  filter: {
5220
5220
  value: ::String?,
5221
5221
  comparison: ("EQUALS" | "PREFIX" | "NOT_EQUALS" | "PREFIX_NOT_EQUALS" | "CONTAINS" | "NOT_CONTAINS" | "CONTAINS_WORD")?
@@ -5224,7 +5224,7 @@ module Aws
5224
5224
  ]?,
5225
5225
  date_filters: Array[
5226
5226
  {
5227
- field_name: ("finding_info.created_time_dt" | "finding_info.first_seen_time_dt" | "finding_info.last_seen_time_dt" | "finding_info.modified_time_dt")?,
5227
+ field_name: ("finding_info.created_time_dt" | "finding_info.first_seen_time_dt" | "finding_info.last_seen_time_dt" | "finding_info.modified_time_dt" | "resources.image.created_time_dt" | "resources.image.last_used_time_dt" | "resources.modified_time_dt")?,
5228
5228
  filter: {
5229
5229
  start: ::String?,
5230
5230
  end: ::String?,
@@ -5245,7 +5245,7 @@ module Aws
5245
5245
  ]?,
5246
5246
  number_filters: Array[
5247
5247
  {
5248
- field_name: ("activity_id" | "compliance.status_id" | "confidence_score" | "severity_id" | "status_id" | "finding_info.related_events_count")?,
5248
+ field_name: ("activity_id" | "compliance.status_id" | "confidence_score" | "severity_id" | "status_id" | "finding_info.related_events_count" | "evidences.api.response.code" | "evidences.dst_endpoint.autonomous_system.number" | "evidences.dst_endpoint.port" | "evidences.src_endpoint.autonomous_system.number" | "evidences.src_endpoint.port" | "resources.image.in_use_count")?,
5249
5249
  filter: {
5250
5250
  gte: ::Float?,
5251
5251
  lte: ::Float?,
@@ -5257,7 +5257,7 @@ module Aws
5257
5257
  ]?,
5258
5258
  map_filters: Array[
5259
5259
  {
5260
- field_name: ("resources.tags")?,
5260
+ field_name: ("resources.tags" | "compliance.control_parameters" | "databucket.tags" | "finding_info.tags")?,
5261
5261
  filter: {
5262
5262
  key: ::String?,
5263
5263
  value: ::String?,
@@ -5265,6 +5265,15 @@ module Aws
5265
5265
  }?
5266
5266
  },
5267
5267
  ]?,
5268
+ ip_filters: Array[
5269
+ {
5270
+ field_name: ("evidences.dst_endpoint.ip" | "evidences.src_endpoint.ip")?,
5271
+ filter: {
5272
+ cidr: ::String?
5273
+ }?
5274
+ },
5275
+ ]?,
5276
+ nested_composite_filters: untyped?,
5268
5277
  operator: ("AND" | "OR")?
5269
5278
  },
5270
5279
  ]?,
@@ -6558,7 +6567,7 @@ module Aws
6558
6567
  {
6559
6568
  string_filters: Array[
6560
6569
  {
6561
- field_name: ("metadata.uid" | "activity_name" | "cloud.account.uid" | "cloud.provider" | "cloud.region" | "compliance.assessments.category" | "compliance.assessments.name" | "compliance.control" | "compliance.status" | "compliance.standards" | "finding_info.desc" | "finding_info.src_url" | "finding_info.title" | "finding_info.types" | "finding_info.uid" | "finding_info.related_events.uid" | "finding_info.related_events.product.uid" | "finding_info.related_events.title" | "metadata.product.name" | "metadata.product.uid" | "metadata.product.vendor_name" | "remediation.desc" | "remediation.references" | "resources.cloud_partition" | "resources.region" | "resources.type" | "resources.uid" | "severity" | "status" | "comment" | "vulnerabilities.fix_coverage" | "class_name")?,
6570
+ field_name: ("metadata.uid" | "activity_name" | "cloud.account.uid" | "cloud.provider" | "cloud.region" | "compliance.assessments.category" | "compliance.assessments.name" | "compliance.control" | "compliance.status" | "compliance.standards" | "finding_info.desc" | "finding_info.src_url" | "finding_info.title" | "finding_info.types" | "finding_info.uid" | "finding_info.related_events.uid" | "finding_info.related_events.product.uid" | "finding_info.related_events.title" | "metadata.product.name" | "metadata.product.uid" | "metadata.product.vendor_name" | "remediation.desc" | "remediation.references" | "resources.cloud_partition" | "resources.region" | "resources.type" | "resources.uid" | "severity" | "status" | "comment" | "vulnerabilities.fix_coverage" | "class_name" | "databucket.encryption_details.algorithm" | "databucket.encryption_details.key_uid" | "databucket.file.data_classifications.classifier_details.type" | "evidences.actor.user.account.uid" | "evidences.api.operation" | "evidences.api.response.error_message" | "evidences.api.service.name" | "evidences.connection_info.direction" | "evidences.connection_info.protocol_name" | "evidences.dst_endpoint.autonomous_system.name" | "evidences.dst_endpoint.location.city" | "evidences.dst_endpoint.location.country" | "evidences.src_endpoint.autonomous_system.name" | "evidences.src_endpoint.hostname" | "evidences.src_endpoint.location.city" | "evidences.src_endpoint.location.country" | "finding_info.analytic.name" | "malware.name" | "malware_scan_info.uid" | "malware.severity" | "resources.cloud_function.layers.uid_alt" | "resources.cloud_function.runtime" | "resources.cloud_function.user.uid" | "resources.device.encryption_details.key_uid" | "resources.device.image.uid" | "resources.image.architecture" | "resources.image.registry_uid" | "resources.image.repository_name" | "resources.image.uid" | "resources.subnet_info.uid" | "resources.vpc_uid" | "vulnerabilities.affected_code.file.path" | "vulnerabilities.affected_packages.name" | "vulnerabilities.cve.epss.score" | "vulnerabilities.cve.uid" | "vulnerabilities.related_vulnerabilities" | "cloud.account.name")?,
6562
6571
  filter: {
6563
6572
  value: ::String?,
6564
6573
  comparison: ("EQUALS" | "PREFIX" | "NOT_EQUALS" | "PREFIX_NOT_EQUALS" | "CONTAINS" | "NOT_CONTAINS" | "CONTAINS_WORD")?
@@ -6567,7 +6576,7 @@ module Aws
6567
6576
  ]?,
6568
6577
  date_filters: Array[
6569
6578
  {
6570
- field_name: ("finding_info.created_time_dt" | "finding_info.first_seen_time_dt" | "finding_info.last_seen_time_dt" | "finding_info.modified_time_dt")?,
6579
+ field_name: ("finding_info.created_time_dt" | "finding_info.first_seen_time_dt" | "finding_info.last_seen_time_dt" | "finding_info.modified_time_dt" | "resources.image.created_time_dt" | "resources.image.last_used_time_dt" | "resources.modified_time_dt")?,
6571
6580
  filter: {
6572
6581
  start: ::String?,
6573
6582
  end: ::String?,
@@ -6588,7 +6597,7 @@ module Aws
6588
6597
  ]?,
6589
6598
  number_filters: Array[
6590
6599
  {
6591
- field_name: ("activity_id" | "compliance.status_id" | "confidence_score" | "severity_id" | "status_id" | "finding_info.related_events_count")?,
6600
+ field_name: ("activity_id" | "compliance.status_id" | "confidence_score" | "severity_id" | "status_id" | "finding_info.related_events_count" | "evidences.api.response.code" | "evidences.dst_endpoint.autonomous_system.number" | "evidences.dst_endpoint.port" | "evidences.src_endpoint.autonomous_system.number" | "evidences.src_endpoint.port" | "resources.image.in_use_count")?,
6592
6601
  filter: {
6593
6602
  gte: ::Float?,
6594
6603
  lte: ::Float?,
@@ -6600,7 +6609,7 @@ module Aws
6600
6609
  ]?,
6601
6610
  map_filters: Array[
6602
6611
  {
6603
- field_name: ("resources.tags")?,
6612
+ field_name: ("resources.tags" | "compliance.control_parameters" | "databucket.tags" | "finding_info.tags")?,
6604
6613
  filter: {
6605
6614
  key: ::String?,
6606
6615
  value: ::String?,
@@ -6608,12 +6617,21 @@ module Aws
6608
6617
  }?
6609
6618
  },
6610
6619
  ]?,
6620
+ ip_filters: Array[
6621
+ {
6622
+ field_name: ("evidences.dst_endpoint.ip" | "evidences.src_endpoint.ip")?,
6623
+ filter: {
6624
+ cidr: ::String?
6625
+ }?
6626
+ },
6627
+ ]?,
6628
+ nested_composite_filters: untyped?,
6611
6629
  operator: ("AND" | "OR")?
6612
6630
  },
6613
6631
  ]?,
6614
6632
  composite_operator: ("AND" | "OR")?
6615
6633
  }?,
6616
- group_by_field: ("activity_name" | "cloud.account.uid" | "cloud.provider" | "cloud.region" | "compliance.assessments.name" | "compliance.status" | "compliance.control" | "finding_info.title" | "finding_info.types" | "metadata.product.name" | "metadata.product.uid" | "resources.type" | "resources.uid" | "severity" | "status" | "vulnerabilities.fix_coverage" | "class_name")
6634
+ group_by_field: ("activity_name" | "cloud.account.uid" | "cloud.provider" | "cloud.region" | "compliance.assessments.name" | "compliance.status" | "compliance.control" | "finding_info.title" | "finding_info.types" | "metadata.product.name" | "metadata.product.uid" | "resources.type" | "resources.uid" | "severity" | "status" | "vulnerabilities.fix_coverage" | "class_name" | "vulnerabilities.affected_packages.name" | "finding_info.analytic.name" | "compliance.standards" | "cloud.account.name")
6617
6635
  },
6618
6636
  ],
6619
6637
  ?sort_order: ("asc" | "desc"),
@@ -7347,7 +7365,7 @@ module Aws
7347
7365
  {
7348
7366
  string_filters: Array[
7349
7367
  {
7350
- field_name: ("metadata.uid" | "activity_name" | "cloud.account.uid" | "cloud.provider" | "cloud.region" | "compliance.assessments.category" | "compliance.assessments.name" | "compliance.control" | "compliance.status" | "compliance.standards" | "finding_info.desc" | "finding_info.src_url" | "finding_info.title" | "finding_info.types" | "finding_info.uid" | "finding_info.related_events.uid" | "finding_info.related_events.product.uid" | "finding_info.related_events.title" | "metadata.product.name" | "metadata.product.uid" | "metadata.product.vendor_name" | "remediation.desc" | "remediation.references" | "resources.cloud_partition" | "resources.region" | "resources.type" | "resources.uid" | "severity" | "status" | "comment" | "vulnerabilities.fix_coverage" | "class_name")?,
7368
+ field_name: ("metadata.uid" | "activity_name" | "cloud.account.uid" | "cloud.provider" | "cloud.region" | "compliance.assessments.category" | "compliance.assessments.name" | "compliance.control" | "compliance.status" | "compliance.standards" | "finding_info.desc" | "finding_info.src_url" | "finding_info.title" | "finding_info.types" | "finding_info.uid" | "finding_info.related_events.uid" | "finding_info.related_events.product.uid" | "finding_info.related_events.title" | "metadata.product.name" | "metadata.product.uid" | "metadata.product.vendor_name" | "remediation.desc" | "remediation.references" | "resources.cloud_partition" | "resources.region" | "resources.type" | "resources.uid" | "severity" | "status" | "comment" | "vulnerabilities.fix_coverage" | "class_name" | "databucket.encryption_details.algorithm" | "databucket.encryption_details.key_uid" | "databucket.file.data_classifications.classifier_details.type" | "evidences.actor.user.account.uid" | "evidences.api.operation" | "evidences.api.response.error_message" | "evidences.api.service.name" | "evidences.connection_info.direction" | "evidences.connection_info.protocol_name" | "evidences.dst_endpoint.autonomous_system.name" | "evidences.dst_endpoint.location.city" | "evidences.dst_endpoint.location.country" | "evidences.src_endpoint.autonomous_system.name" | "evidences.src_endpoint.hostname" | "evidences.src_endpoint.location.city" | "evidences.src_endpoint.location.country" | "finding_info.analytic.name" | "malware.name" | "malware_scan_info.uid" | "malware.severity" | "resources.cloud_function.layers.uid_alt" | "resources.cloud_function.runtime" | "resources.cloud_function.user.uid" | "resources.device.encryption_details.key_uid" | "resources.device.image.uid" | "resources.image.architecture" | "resources.image.registry_uid" | "resources.image.repository_name" | "resources.image.uid" | "resources.subnet_info.uid" | "resources.vpc_uid" | "vulnerabilities.affected_code.file.path" | "vulnerabilities.affected_packages.name" | "vulnerabilities.cve.epss.score" | "vulnerabilities.cve.uid" | "vulnerabilities.related_vulnerabilities" | "cloud.account.name")?,
7351
7369
  filter: {
7352
7370
  value: ::String?,
7353
7371
  comparison: ("EQUALS" | "PREFIX" | "NOT_EQUALS" | "PREFIX_NOT_EQUALS" | "CONTAINS" | "NOT_CONTAINS" | "CONTAINS_WORD")?
@@ -7356,7 +7374,7 @@ module Aws
7356
7374
  ]?,
7357
7375
  date_filters: Array[
7358
7376
  {
7359
- field_name: ("finding_info.created_time_dt" | "finding_info.first_seen_time_dt" | "finding_info.last_seen_time_dt" | "finding_info.modified_time_dt")?,
7377
+ field_name: ("finding_info.created_time_dt" | "finding_info.first_seen_time_dt" | "finding_info.last_seen_time_dt" | "finding_info.modified_time_dt" | "resources.image.created_time_dt" | "resources.image.last_used_time_dt" | "resources.modified_time_dt")?,
7360
7378
  filter: {
7361
7379
  start: ::String?,
7362
7380
  end: ::String?,
@@ -7377,7 +7395,7 @@ module Aws
7377
7395
  ]?,
7378
7396
  number_filters: Array[
7379
7397
  {
7380
- field_name: ("activity_id" | "compliance.status_id" | "confidence_score" | "severity_id" | "status_id" | "finding_info.related_events_count")?,
7398
+ field_name: ("activity_id" | "compliance.status_id" | "confidence_score" | "severity_id" | "status_id" | "finding_info.related_events_count" | "evidences.api.response.code" | "evidences.dst_endpoint.autonomous_system.number" | "evidences.dst_endpoint.port" | "evidences.src_endpoint.autonomous_system.number" | "evidences.src_endpoint.port" | "resources.image.in_use_count")?,
7381
7399
  filter: {
7382
7400
  gte: ::Float?,
7383
7401
  lte: ::Float?,
@@ -7389,7 +7407,7 @@ module Aws
7389
7407
  ]?,
7390
7408
  map_filters: Array[
7391
7409
  {
7392
- field_name: ("resources.tags")?,
7410
+ field_name: ("resources.tags" | "compliance.control_parameters" | "databucket.tags" | "finding_info.tags")?,
7393
7411
  filter: {
7394
7412
  key: ::String?,
7395
7413
  value: ::String?,
@@ -7397,6 +7415,15 @@ module Aws
7397
7415
  }?
7398
7416
  },
7399
7417
  ]?,
7418
+ ip_filters: Array[
7419
+ {
7420
+ field_name: ("evidences.dst_endpoint.ip" | "evidences.src_endpoint.ip")?,
7421
+ filter: {
7422
+ cidr: ::String?
7423
+ }?
7424
+ },
7425
+ ]?,
7426
+ nested_composite_filters: untyped?,
7400
7427
  operator: ("AND" | "OR")?
7401
7428
  },
7402
7429
  ]?,
@@ -7473,13 +7500,13 @@ module Aws
7473
7500
  def get_resources_statistics_v2: (
7474
7501
  group_by_rules: Array[
7475
7502
  {
7476
- group_by_field: ("account_id" | "region" | "resource_category" | "resource_type" | "resource_name" | "findings_summary.finding_type"),
7503
+ group_by_field: ("AccountId" | "Region" | "ResourceCategory" | "ResourceType" | "ResourceName" | "FindingsSummary.FindingType"),
7477
7504
  filters: {
7478
7505
  composite_filters: Array[
7479
7506
  {
7480
7507
  string_filters: Array[
7481
7508
  {
7482
- field_name: ("resource_arn" | "resource_id" | "account_id" | "region" | "resource_category" | "resource_type" | "resource_name" | "findings_summary.finding_type" | "findings_summary.product_name")?,
7509
+ field_name: ("ResourceGuid" | "ResourceId" | "AccountId" | "Region" | "ResourceCategory" | "ResourceType" | "ResourceName" | "FindingsSummary.FindingType" | "FindingsSummary.ProductName")?,
7483
7510
  filter: {
7484
7511
  value: ::String?,
7485
7512
  comparison: ("EQUALS" | "PREFIX" | "NOT_EQUALS" | "PREFIX_NOT_EQUALS" | "CONTAINS" | "NOT_CONTAINS" | "CONTAINS_WORD")?
@@ -7488,7 +7515,7 @@ module Aws
7488
7515
  ]?,
7489
7516
  date_filters: Array[
7490
7517
  {
7491
- field_name: ("resource_detail_capture_time_dt" | "resource_creation_time_dt")?,
7518
+ field_name: ("ResourceDetailCaptureTime" | "ResourceCreationTime")?,
7492
7519
  filter: {
7493
7520
  start: ::String?,
7494
7521
  end: ::String?,
@@ -7501,7 +7528,7 @@ module Aws
7501
7528
  ]?,
7502
7529
  number_filters: Array[
7503
7530
  {
7504
- field_name: ("findings_summary.total_findings" | "findings_summary.severities.other" | "findings_summary.severities.fatal" | "findings_summary.severities.critical" | "findings_summary.severities.high" | "findings_summary.severities.medium" | "findings_summary.severities.low" | "findings_summary.severities.informational" | "findings_summary.severities.unknown")?,
7531
+ field_name: ("FindingsSummary.TotalFindings" | "FindingsSummary.Severities.Other" | "FindingsSummary.Severities.Fatal" | "FindingsSummary.Severities.Critical" | "FindingsSummary.Severities.High" | "FindingsSummary.Severities.Medium" | "FindingsSummary.Severities.Low" | "FindingsSummary.Severities.Informational" | "FindingsSummary.Severities.Unknown")?,
7505
7532
  filter: {
7506
7533
  gte: ::Float?,
7507
7534
  lte: ::Float?,
@@ -7513,7 +7540,7 @@ module Aws
7513
7540
  ]?,
7514
7541
  map_filters: Array[
7515
7542
  {
7516
- field_name: ("tags")?,
7543
+ field_name: ("ResourceTags")?,
7517
7544
  filter: {
7518
7545
  key: ::String?,
7519
7546
  value: ::String?,
@@ -7521,6 +7548,7 @@ module Aws
7521
7548
  }?
7522
7549
  },
7523
7550
  ]?,
7551
+ nested_composite_filters: untyped?,
7524
7552
  operator: ("AND" | "OR")?
7525
7553
  },
7526
7554
  ]?,
@@ -7545,7 +7573,7 @@ module Aws
7545
7573
  {
7546
7574
  string_filters: Array[
7547
7575
  {
7548
- field_name: ("resource_arn" | "resource_id" | "account_id" | "region" | "resource_category" | "resource_type" | "resource_name" | "findings_summary.finding_type" | "findings_summary.product_name")?,
7576
+ field_name: ("ResourceGuid" | "ResourceId" | "AccountId" | "Region" | "ResourceCategory" | "ResourceType" | "ResourceName" | "FindingsSummary.FindingType" | "FindingsSummary.ProductName")?,
7549
7577
  filter: {
7550
7578
  value: ::String?,
7551
7579
  comparison: ("EQUALS" | "PREFIX" | "NOT_EQUALS" | "PREFIX_NOT_EQUALS" | "CONTAINS" | "NOT_CONTAINS" | "CONTAINS_WORD")?
@@ -7554,7 +7582,7 @@ module Aws
7554
7582
  ]?,
7555
7583
  date_filters: Array[
7556
7584
  {
7557
- field_name: ("resource_detail_capture_time_dt" | "resource_creation_time_dt")?,
7585
+ field_name: ("ResourceDetailCaptureTime" | "ResourceCreationTime")?,
7558
7586
  filter: {
7559
7587
  start: ::String?,
7560
7588
  end: ::String?,
@@ -7567,7 +7595,7 @@ module Aws
7567
7595
  ]?,
7568
7596
  number_filters: Array[
7569
7597
  {
7570
- field_name: ("findings_summary.total_findings" | "findings_summary.severities.other" | "findings_summary.severities.fatal" | "findings_summary.severities.critical" | "findings_summary.severities.high" | "findings_summary.severities.medium" | "findings_summary.severities.low" | "findings_summary.severities.informational" | "findings_summary.severities.unknown")?,
7598
+ field_name: ("FindingsSummary.TotalFindings" | "FindingsSummary.Severities.Other" | "FindingsSummary.Severities.Fatal" | "FindingsSummary.Severities.Critical" | "FindingsSummary.Severities.High" | "FindingsSummary.Severities.Medium" | "FindingsSummary.Severities.Low" | "FindingsSummary.Severities.Informational" | "FindingsSummary.Severities.Unknown")?,
7571
7599
  filter: {
7572
7600
  gte: ::Float?,
7573
7601
  lte: ::Float?,
@@ -7579,7 +7607,7 @@ module Aws
7579
7607
  ]?,
7580
7608
  map_filters: Array[
7581
7609
  {
7582
- field_name: ("tags")?,
7610
+ field_name: ("ResourceTags")?,
7583
7611
  filter: {
7584
7612
  key: ::String?,
7585
7613
  value: ::String?,
@@ -7587,6 +7615,7 @@ module Aws
7587
7615
  }?
7588
7616
  },
7589
7617
  ]?,
7618
+ nested_composite_filters: untyped?,
7590
7619
  operator: ("AND" | "OR")?
7591
7620
  },
7592
7621
  ]?,
@@ -7898,7 +7927,7 @@ module Aws
7898
7927
  {
7899
7928
  string_filters: Array[
7900
7929
  {
7901
- field_name: ("metadata.uid" | "activity_name" | "cloud.account.uid" | "cloud.provider" | "cloud.region" | "compliance.assessments.category" | "compliance.assessments.name" | "compliance.control" | "compliance.status" | "compliance.standards" | "finding_info.desc" | "finding_info.src_url" | "finding_info.title" | "finding_info.types" | "finding_info.uid" | "finding_info.related_events.uid" | "finding_info.related_events.product.uid" | "finding_info.related_events.title" | "metadata.product.name" | "metadata.product.uid" | "metadata.product.vendor_name" | "remediation.desc" | "remediation.references" | "resources.cloud_partition" | "resources.region" | "resources.type" | "resources.uid" | "severity" | "status" | "comment" | "vulnerabilities.fix_coverage" | "class_name")?,
7930
+ field_name: ("metadata.uid" | "activity_name" | "cloud.account.uid" | "cloud.provider" | "cloud.region" | "compliance.assessments.category" | "compliance.assessments.name" | "compliance.control" | "compliance.status" | "compliance.standards" | "finding_info.desc" | "finding_info.src_url" | "finding_info.title" | "finding_info.types" | "finding_info.uid" | "finding_info.related_events.uid" | "finding_info.related_events.product.uid" | "finding_info.related_events.title" | "metadata.product.name" | "metadata.product.uid" | "metadata.product.vendor_name" | "remediation.desc" | "remediation.references" | "resources.cloud_partition" | "resources.region" | "resources.type" | "resources.uid" | "severity" | "status" | "comment" | "vulnerabilities.fix_coverage" | "class_name" | "databucket.encryption_details.algorithm" | "databucket.encryption_details.key_uid" | "databucket.file.data_classifications.classifier_details.type" | "evidences.actor.user.account.uid" | "evidences.api.operation" | "evidences.api.response.error_message" | "evidences.api.service.name" | "evidences.connection_info.direction" | "evidences.connection_info.protocol_name" | "evidences.dst_endpoint.autonomous_system.name" | "evidences.dst_endpoint.location.city" | "evidences.dst_endpoint.location.country" | "evidences.src_endpoint.autonomous_system.name" | "evidences.src_endpoint.hostname" | "evidences.src_endpoint.location.city" | "evidences.src_endpoint.location.country" | "finding_info.analytic.name" | "malware.name" | "malware_scan_info.uid" | "malware.severity" | "resources.cloud_function.layers.uid_alt" | "resources.cloud_function.runtime" | "resources.cloud_function.user.uid" | "resources.device.encryption_details.key_uid" | "resources.device.image.uid" | "resources.image.architecture" | "resources.image.registry_uid" | "resources.image.repository_name" | "resources.image.uid" | "resources.subnet_info.uid" | "resources.vpc_uid" | "vulnerabilities.affected_code.file.path" | "vulnerabilities.affected_packages.name" | "vulnerabilities.cve.epss.score" | "vulnerabilities.cve.uid" | "vulnerabilities.related_vulnerabilities" | "cloud.account.name")?,
7902
7931
  filter: {
7903
7932
  value: ::String?,
7904
7933
  comparison: ("EQUALS" | "PREFIX" | "NOT_EQUALS" | "PREFIX_NOT_EQUALS" | "CONTAINS" | "NOT_CONTAINS" | "CONTAINS_WORD")?
@@ -7907,7 +7936,7 @@ module Aws
7907
7936
  ]?,
7908
7937
  date_filters: Array[
7909
7938
  {
7910
- field_name: ("finding_info.created_time_dt" | "finding_info.first_seen_time_dt" | "finding_info.last_seen_time_dt" | "finding_info.modified_time_dt")?,
7939
+ field_name: ("finding_info.created_time_dt" | "finding_info.first_seen_time_dt" | "finding_info.last_seen_time_dt" | "finding_info.modified_time_dt" | "resources.image.created_time_dt" | "resources.image.last_used_time_dt" | "resources.modified_time_dt")?,
7911
7940
  filter: {
7912
7941
  start: ::String?,
7913
7942
  end: ::String?,
@@ -7928,7 +7957,7 @@ module Aws
7928
7957
  ]?,
7929
7958
  number_filters: Array[
7930
7959
  {
7931
- field_name: ("activity_id" | "compliance.status_id" | "confidence_score" | "severity_id" | "status_id" | "finding_info.related_events_count")?,
7960
+ field_name: ("activity_id" | "compliance.status_id" | "confidence_score" | "severity_id" | "status_id" | "finding_info.related_events_count" | "evidences.api.response.code" | "evidences.dst_endpoint.autonomous_system.number" | "evidences.dst_endpoint.port" | "evidences.src_endpoint.autonomous_system.number" | "evidences.src_endpoint.port" | "resources.image.in_use_count")?,
7932
7961
  filter: {
7933
7962
  gte: ::Float?,
7934
7963
  lte: ::Float?,
@@ -7940,7 +7969,7 @@ module Aws
7940
7969
  ]?,
7941
7970
  map_filters: Array[
7942
7971
  {
7943
- field_name: ("resources.tags")?,
7972
+ field_name: ("resources.tags" | "compliance.control_parameters" | "databucket.tags" | "finding_info.tags")?,
7944
7973
  filter: {
7945
7974
  key: ::String?,
7946
7975
  value: ::String?,
@@ -7948,6 +7977,15 @@ module Aws
7948
7977
  }?
7949
7978
  },
7950
7979
  ]?,
7980
+ ip_filters: Array[
7981
+ {
7982
+ field_name: ("evidences.dst_endpoint.ip" | "evidences.src_endpoint.ip")?,
7983
+ filter: {
7984
+ cidr: ::String?
7985
+ }?
7986
+ },
7987
+ ]?,
7988
+ nested_composite_filters: untyped?,
7951
7989
  operator: ("AND" | "OR")?
7952
7990
  },
7953
7991
  ]?,