aws-sdk-securityhub 1.154.0 → 1.155.0

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.
Files changed (10) hide show
  1. checksums.yaml +4 -4
  2. data/CHANGELOG.md +5 -0
  3. data/VERSION +1 -1
  4. data/lib/aws-sdk-securityhub/client.rb +164 -1
  5. data/lib/aws-sdk-securityhub/client_api.rb +83 -0
  6. data/lib/aws-sdk-securityhub/types.rb +179 -4
  7. data/lib/aws-sdk-securityhub.rb +1 -1
  8. data/sig/client.rbs +145 -60
  9. data/sig/types.rbs +52 -0
  10. metadata +1 -1
data/lib/aws-sdk-securityhub/client.rb CHANGED
@@ -929,21 +929,25 @@ module Aws::SecurityHub
929
929
  # resp.rules[0].criteria.first_observed_at[0].end #=> String
930
930
  # resp.rules[0].criteria.first_observed_at[0].date_range.value #=> Integer
931
931
  # resp.rules[0].criteria.first_observed_at[0].date_range.unit #=> String, one of "DAYS"
932
+ # resp.rules[0].criteria.first_observed_at[0].date_range.comparison #=> String, one of "WITHIN", "OLDER_THAN"
932
933
  # resp.rules[0].criteria.last_observed_at #=> Array
933
934
  # resp.rules[0].criteria.last_observed_at[0].start #=> String
934
935
  # resp.rules[0].criteria.last_observed_at[0].end #=> String
935
936
  # resp.rules[0].criteria.last_observed_at[0].date_range.value #=> Integer
936
937
  # resp.rules[0].criteria.last_observed_at[0].date_range.unit #=> String, one of "DAYS"
938
+ # resp.rules[0].criteria.last_observed_at[0].date_range.comparison #=> String, one of "WITHIN", "OLDER_THAN"
937
939
  # resp.rules[0].criteria.created_at #=> Array
938
940
  # resp.rules[0].criteria.created_at[0].start #=> String
939
941
  # resp.rules[0].criteria.created_at[0].end #=> String
940
942
  # resp.rules[0].criteria.created_at[0].date_range.value #=> Integer
941
943
  # resp.rules[0].criteria.created_at[0].date_range.unit #=> String, one of "DAYS"
944
+ # resp.rules[0].criteria.created_at[0].date_range.comparison #=> String, one of "WITHIN", "OLDER_THAN"
942
945
  # resp.rules[0].criteria.updated_at #=> Array
943
946
  # resp.rules[0].criteria.updated_at[0].start #=> String
944
947
  # resp.rules[0].criteria.updated_at[0].end #=> String
945
948
  # resp.rules[0].criteria.updated_at[0].date_range.value #=> Integer
946
949
  # resp.rules[0].criteria.updated_at[0].date_range.unit #=> String, one of "DAYS"
950
+ # resp.rules[0].criteria.updated_at[0].date_range.comparison #=> String, one of "WITHIN", "OLDER_THAN"
947
951
  # resp.rules[0].criteria.confidence #=> Array
948
952
  # resp.rules[0].criteria.confidence[0].gte #=> Float
949
953
  # resp.rules[0].criteria.confidence[0].lte #=> Float
@@ -1026,6 +1030,7 @@ module Aws::SecurityHub
1026
1030
  # resp.rules[0].criteria.note_updated_at[0].end #=> String
1027
1031
  # resp.rules[0].criteria.note_updated_at[0].date_range.value #=> Integer
1028
1032
  # resp.rules[0].criteria.note_updated_at[0].date_range.unit #=> String, one of "DAYS"
1033
+ # resp.rules[0].criteria.note_updated_at[0].date_range.comparison #=> String, one of "WITHIN", "OLDER_THAN"
1029
1034
  # resp.rules[0].criteria.note_updated_by #=> Array
1030
1035
  # resp.rules[0].criteria.note_updated_by[0].value #=> String
1031
1036
  # resp.rules[0].criteria.note_updated_by[0].comparison #=> String, one of "EQUALS", "PREFIX", "NOT_EQUALS", "PREFIX_NOT_EQUALS", "CONTAINS", "NOT_CONTAINS", "CONTAINS_WORD"
@@ -1622,6 +1627,7 @@ module Aws::SecurityHub
1622
1627
  # date_range: {
1623
1628
  # value: 1,
1624
1629
  # unit: "DAYS", # accepts DAYS
1630
+ # comparison: "WITHIN", # accepts WITHIN, OLDER_THAN
1625
1631
  # },
1626
1632
  # },
1627
1633
  # ],
@@ -1632,6 +1638,7 @@ module Aws::SecurityHub
1632
1638
  # date_range: {
1633
1639
  # value: 1,
1634
1640
  # unit: "DAYS", # accepts DAYS
1641
+ # comparison: "WITHIN", # accepts WITHIN, OLDER_THAN
1635
1642
  # },
1636
1643
  # },
1637
1644
  # ],
@@ -1642,6 +1649,7 @@ module Aws::SecurityHub
1642
1649
  # date_range: {
1643
1650
  # value: 1,
1644
1651
  # unit: "DAYS", # accepts DAYS
1652
+ # comparison: "WITHIN", # accepts WITHIN, OLDER_THAN
1645
1653
  # },
1646
1654
  # },
1647
1655
  # ],
@@ -1652,6 +1660,7 @@ module Aws::SecurityHub
1652
1660
  # date_range: {
1653
1661
  # value: 1,
1654
1662
  # unit: "DAYS", # accepts DAYS
1663
+ # comparison: "WITHIN", # accepts WITHIN, OLDER_THAN
1655
1664
  # },
1656
1665
  # },
1657
1666
  # ],
@@ -1808,6 +1817,7 @@ module Aws::SecurityHub
1808
1817
  # date_range: {
1809
1818
  # value: 1,
1810
1819
  # unit: "DAYS", # accepts DAYS
1820
+ # comparison: "WITHIN", # accepts WITHIN, OLDER_THAN
1811
1821
  # },
1812
1822
  # },
1813
1823
  # ],
@@ -2587,6 +2597,7 @@ module Aws::SecurityHub
2587
2597
  # date_range: {
2588
2598
  # value: 1,
2589
2599
  # unit: "DAYS", # accepts DAYS
2600
+ # comparison: "WITHIN", # accepts WITHIN, OLDER_THAN
2590
2601
  # },
2591
2602
  # },
2592
2603
  # ],
@@ -2597,6 +2608,7 @@ module Aws::SecurityHub
2597
2608
  # date_range: {
2598
2609
  # value: 1,
2599
2610
  # unit: "DAYS", # accepts DAYS
2611
+ # comparison: "WITHIN", # accepts WITHIN, OLDER_THAN
2600
2612
  # },
2601
2613
  # },
2602
2614
  # ],
@@ -2607,6 +2619,7 @@ module Aws::SecurityHub
2607
2619
  # date_range: {
2608
2620
  # value: 1,
2609
2621
  # unit: "DAYS", # accepts DAYS
2622
+ # comparison: "WITHIN", # accepts WITHIN, OLDER_THAN
2610
2623
  # },
2611
2624
  # },
2612
2625
  # ],
@@ -2617,6 +2630,7 @@ module Aws::SecurityHub
2617
2630
  # date_range: {
2618
2631
  # value: 1,
2619
2632
  # unit: "DAYS", # accepts DAYS
2633
+ # comparison: "WITHIN", # accepts WITHIN, OLDER_THAN
2620
2634
  # },
2621
2635
  # },
2622
2636
  # ],
@@ -2773,6 +2787,7 @@ module Aws::SecurityHub
2773
2787
  # date_range: {
2774
2788
  # value: 1,
2775
2789
  # unit: "DAYS", # accepts DAYS
2790
+ # comparison: "WITHIN", # accepts WITHIN, OLDER_THAN
2776
2791
  # },
2777
2792
  # },
2778
2793
  # ],
@@ -2918,6 +2933,7 @@ module Aws::SecurityHub
2918
2933
  # date_range: {
2919
2934
  # value: 1,
2920
2935
  # unit: "DAYS", # accepts DAYS
2936
+ # comparison: "WITHIN", # accepts WITHIN, OLDER_THAN
2921
2937
  # },
2922
2938
  # },
2923
2939
  # },
@@ -3480,6 +3496,7 @@ module Aws::SecurityHub
3480
3496
  # date_range: {
3481
3497
  # value: 1,
3482
3498
  # unit: "DAYS", # accepts DAYS
3499
+ # comparison: "WITHIN", # accepts WITHIN, OLDER_THAN
3483
3500
  # },
3484
3501
  # },
3485
3502
  # ],
@@ -3490,6 +3507,7 @@ module Aws::SecurityHub
3490
3507
  # date_range: {
3491
3508
  # value: 1,
3492
3509
  # unit: "DAYS", # accepts DAYS
3510
+ # comparison: "WITHIN", # accepts WITHIN, OLDER_THAN
3493
3511
  # },
3494
3512
  # },
3495
3513
  # ],
@@ -3500,6 +3518,7 @@ module Aws::SecurityHub
3500
3518
  # date_range: {
3501
3519
  # value: 1,
3502
3520
  # unit: "DAYS", # accepts DAYS
3521
+ # comparison: "WITHIN", # accepts WITHIN, OLDER_THAN
3503
3522
  # },
3504
3523
  # },
3505
3524
  # ],
@@ -3510,6 +3529,7 @@ module Aws::SecurityHub
3510
3529
  # date_range: {
3511
3530
  # value: 1,
3512
3531
  # unit: "DAYS", # accepts DAYS
3532
+ # comparison: "WITHIN", # accepts WITHIN, OLDER_THAN
3513
3533
  # },
3514
3534
  # },
3515
3535
  # ],
@@ -3734,6 +3754,7 @@ module Aws::SecurityHub
3734
3754
  # date_range: {
3735
3755
  # value: 1,
3736
3756
  # unit: "DAYS", # accepts DAYS
3757
+ # comparison: "WITHIN", # accepts WITHIN, OLDER_THAN
3737
3758
  # },
3738
3759
  # },
3739
3760
  # ],
@@ -3744,6 +3765,7 @@ module Aws::SecurityHub
3744
3765
  # date_range: {
3745
3766
  # value: 1,
3746
3767
  # unit: "DAYS", # accepts DAYS
3768
+ # comparison: "WITHIN", # accepts WITHIN, OLDER_THAN
3747
3769
  # },
3748
3770
  # },
3749
3771
  # ],
@@ -3772,6 +3794,7 @@ module Aws::SecurityHub
3772
3794
  # date_range: {
3773
3795
  # value: 1,
3774
3796
  # unit: "DAYS", # accepts DAYS
3797
+ # comparison: "WITHIN", # accepts WITHIN, OLDER_THAN
3775
3798
  # },
3776
3799
  # },
3777
3800
  # ],
@@ -3871,6 +3894,7 @@ module Aws::SecurityHub
3871
3894
  # date_range: {
3872
3895
  # value: 1,
3873
3896
  # unit: "DAYS", # accepts DAYS
3897
+ # comparison: "WITHIN", # accepts WITHIN, OLDER_THAN
3874
3898
  # },
3875
3899
  # },
3876
3900
  # ],
@@ -3911,6 +3935,7 @@ module Aws::SecurityHub
3911
3935
  # date_range: {
3912
3936
  # value: 1,
3913
3937
  # unit: "DAYS", # accepts DAYS
3938
+ # comparison: "WITHIN", # accepts WITHIN, OLDER_THAN
3914
3939
  # },
3915
3940
  # },
3916
3941
  # ],
@@ -3945,6 +3970,7 @@ module Aws::SecurityHub
3945
3970
  # date_range: {
3946
3971
  # value: 1,
3947
3972
  # unit: "DAYS", # accepts DAYS
3973
+ # comparison: "WITHIN", # accepts WITHIN, OLDER_THAN
3948
3974
  # },
3949
3975
  # },
3950
3976
  # ],
@@ -4010,6 +4036,7 @@ module Aws::SecurityHub
4010
4036
  # date_range: {
4011
4037
  # value: 1,
4012
4038
  # unit: "DAYS", # accepts DAYS
4039
+ # comparison: "WITHIN", # accepts WITHIN, OLDER_THAN
4013
4040
  # },
4014
4041
  # },
4015
4042
  # ],
@@ -5713,6 +5740,31 @@ module Aws::SecurityHub
5713
5740
  req.send_request(options)
5714
5741
  end
5715
5742
 
5743
+ # Begins the recommended policy generation to remediate a Security Hub
5744
+ # finding. `GenerateRecommendedPolicyV2` only supports findings for
5745
+ # unused permissions.
5746
+ #
5747
+ # @option params [required, String] :metadata_uid
5748
+ # The unique identifier (ID) of Security Hub OCSF findings found under
5749
+ # the `metadata.uid` field of the finding.
5750
+ #
5751
+ # @return [Struct] Returns an empty {Seahorse::Client::Response response}.
5752
+ #
5753
+ # @example Request syntax with placeholder values
5754
+ #
5755
+ # resp = client.generate_recommended_policy_v2({
5756
+ # metadata_uid: "NonEmptyString", # required
5757
+ # })
5758
+ #
5759
+ # @see http://docs.aws.amazon.com/goto/WebAPI/securityhub-2018-10-26/GenerateRecommendedPolicyV2 AWS API Documentation
5760
+ #
5761
+ # @overload generate_recommended_policy_v2(params = {})
5762
+ # @param [Hash] params ({})
5763
+ def generate_recommended_policy_v2(params = {}, options = {})
5764
+ req = build_request(:generate_recommended_policy_v2, params)
5765
+ req.send_request(options)
5766
+ end
5767
+
5716
5768
  # Provides the details for the Security Hub CSPM administrator account
5717
5769
  # for the current member account.
5718
5770
  #
@@ -5835,6 +5887,7 @@ module Aws::SecurityHub
5835
5887
  # resp.criteria.ocsf_finding_criteria.composite_filters[0].date_filters[0].filter.end #=> String
5836
5888
  # resp.criteria.ocsf_finding_criteria.composite_filters[0].date_filters[0].filter.date_range.value #=> Integer
5837
5889
  # resp.criteria.ocsf_finding_criteria.composite_filters[0].date_filters[0].filter.date_range.unit #=> String, one of "DAYS"
5890
+ # resp.criteria.ocsf_finding_criteria.composite_filters[0].date_filters[0].filter.date_range.comparison #=> String, one of "WITHIN", "OLDER_THAN"
5838
5891
  # resp.criteria.ocsf_finding_criteria.composite_filters[0].boolean_filters #=> Array
5839
5892
  # resp.criteria.ocsf_finding_criteria.composite_filters[0].boolean_filters[0].field_name #=> String, one of "compliance.assessments.meets_criteria", "vulnerabilities.is_exploit_available", "vulnerabilities.is_fix_available"
5840
5893
  # resp.criteria.ocsf_finding_criteria.composite_filters[0].boolean_filters[0].filter.value #=> Boolean
@@ -6481,6 +6534,7 @@ module Aws::SecurityHub
6481
6534
  # date_range: {
6482
6535
  # value: 1,
6483
6536
  # unit: "DAYS", # accepts DAYS
6537
+ # comparison: "WITHIN", # accepts WITHIN, OLDER_THAN
6484
6538
  # },
6485
6539
  # },
6486
6540
  # },
@@ -6757,6 +6811,7 @@ module Aws::SecurityHub
6757
6811
  # date_range: {
6758
6812
  # value: 1,
6759
6813
  # unit: "DAYS", # accepts DAYS
6814
+ # comparison: "WITHIN", # accepts WITHIN, OLDER_THAN
6760
6815
  # },
6761
6816
  # },
6762
6817
  # ],
@@ -6767,6 +6822,7 @@ module Aws::SecurityHub
6767
6822
  # date_range: {
6768
6823
  # value: 1,
6769
6824
  # unit: "DAYS", # accepts DAYS
6825
+ # comparison: "WITHIN", # accepts WITHIN, OLDER_THAN
6770
6826
  # },
6771
6827
  # },
6772
6828
  # ],
@@ -6777,6 +6833,7 @@ module Aws::SecurityHub
6777
6833
  # date_range: {
6778
6834
  # value: 1,
6779
6835
  # unit: "DAYS", # accepts DAYS
6836
+ # comparison: "WITHIN", # accepts WITHIN, OLDER_THAN
6780
6837
  # },
6781
6838
  # },
6782
6839
  # ],
@@ -6787,6 +6844,7 @@ module Aws::SecurityHub
6787
6844
  # date_range: {
6788
6845
  # value: 1,
6789
6846
  # unit: "DAYS", # accepts DAYS
6847
+ # comparison: "WITHIN", # accepts WITHIN, OLDER_THAN
6790
6848
  # },
6791
6849
  # },
6792
6850
  # ],
@@ -7011,6 +7069,7 @@ module Aws::SecurityHub
7011
7069
  # date_range: {
7012
7070
  # value: 1,
7013
7071
  # unit: "DAYS", # accepts DAYS
7072
+ # comparison: "WITHIN", # accepts WITHIN, OLDER_THAN
7014
7073
  # },
7015
7074
  # },
7016
7075
  # ],
@@ -7021,6 +7080,7 @@ module Aws::SecurityHub
7021
7080
  # date_range: {
7022
7081
  # value: 1,
7023
7082
  # unit: "DAYS", # accepts DAYS
7083
+ # comparison: "WITHIN", # accepts WITHIN, OLDER_THAN
7024
7084
  # },
7025
7085
  # },
7026
7086
  # ],
@@ -7049,6 +7109,7 @@ module Aws::SecurityHub
7049
7109
  # date_range: {
7050
7110
  # value: 1,
7051
7111
  # unit: "DAYS", # accepts DAYS
7112
+ # comparison: "WITHIN", # accepts WITHIN, OLDER_THAN
7052
7113
  # },
7053
7114
  # },
7054
7115
  # ],
@@ -7148,6 +7209,7 @@ module Aws::SecurityHub
7148
7209
  # date_range: {
7149
7210
  # value: 1,
7150
7211
  # unit: "DAYS", # accepts DAYS
7212
+ # comparison: "WITHIN", # accepts WITHIN, OLDER_THAN
7151
7213
  # },
7152
7214
  # },
7153
7215
  # ],
@@ -7188,6 +7250,7 @@ module Aws::SecurityHub
7188
7250
  # date_range: {
7189
7251
  # value: 1,
7190
7252
  # unit: "DAYS", # accepts DAYS
7253
+ # comparison: "WITHIN", # accepts WITHIN, OLDER_THAN
7191
7254
  # },
7192
7255
  # },
7193
7256
  # ],
@@ -7222,6 +7285,7 @@ module Aws::SecurityHub
7222
7285
  # date_range: {
7223
7286
  # value: 1,
7224
7287
  # unit: "DAYS", # accepts DAYS
7288
+ # comparison: "WITHIN", # accepts WITHIN, OLDER_THAN
7225
7289
  # },
7226
7290
  # },
7227
7291
  # ],
@@ -7287,6 +7351,7 @@ module Aws::SecurityHub
7287
7351
  # date_range: {
7288
7352
  # value: 1,
7289
7353
  # unit: "DAYS", # accepts DAYS
7354
+ # comparison: "WITHIN", # accepts WITHIN, OLDER_THAN
7290
7355
  # },
7291
7356
  # },
7292
7357
  # ],
@@ -7592,6 +7657,7 @@ module Aws::SecurityHub
7592
7657
  # date_range: {
7593
7658
  # value: 1,
7594
7659
  # unit: "DAYS", # accepts DAYS
7660
+ # comparison: "WITHIN", # accepts WITHIN, OLDER_THAN
7595
7661
  # },
7596
7662
  # },
7597
7663
  # },
@@ -7831,21 +7897,25 @@ module Aws::SecurityHub
7831
7897
  # resp.insights[0].filters.first_observed_at[0].end #=> String
7832
7898
  # resp.insights[0].filters.first_observed_at[0].date_range.value #=> Integer
7833
7899
  # resp.insights[0].filters.first_observed_at[0].date_range.unit #=> String, one of "DAYS"
7900
+ # resp.insights[0].filters.first_observed_at[0].date_range.comparison #=> String, one of "WITHIN", "OLDER_THAN"
7834
7901
  # resp.insights[0].filters.last_observed_at #=> Array
7835
7902
  # resp.insights[0].filters.last_observed_at[0].start #=> String
7836
7903
  # resp.insights[0].filters.last_observed_at[0].end #=> String
7837
7904
  # resp.insights[0].filters.last_observed_at[0].date_range.value #=> Integer
7838
7905
  # resp.insights[0].filters.last_observed_at[0].date_range.unit #=> String, one of "DAYS"
7906
+ # resp.insights[0].filters.last_observed_at[0].date_range.comparison #=> String, one of "WITHIN", "OLDER_THAN"
7839
7907
  # resp.insights[0].filters.created_at #=> Array
7840
7908
  # resp.insights[0].filters.created_at[0].start #=> String
7841
7909
  # resp.insights[0].filters.created_at[0].end #=> String
7842
7910
  # resp.insights[0].filters.created_at[0].date_range.value #=> Integer
7843
7911
  # resp.insights[0].filters.created_at[0].date_range.unit #=> String, one of "DAYS"
7912
+ # resp.insights[0].filters.created_at[0].date_range.comparison #=> String, one of "WITHIN", "OLDER_THAN"
7844
7913
  # resp.insights[0].filters.updated_at #=> Array
7845
7914
  # resp.insights[0].filters.updated_at[0].start #=> String
7846
7915
  # resp.insights[0].filters.updated_at[0].end #=> String
7847
7916
  # resp.insights[0].filters.updated_at[0].date_range.value #=> Integer
7848
7917
  # resp.insights[0].filters.updated_at[0].date_range.unit #=> String, one of "DAYS"
7918
+ # resp.insights[0].filters.updated_at[0].date_range.comparison #=> String, one of "WITHIN", "OLDER_THAN"
7849
7919
  # resp.insights[0].filters.severity_product #=> Array
7850
7920
  # resp.insights[0].filters.severity_product[0].gte #=> Float
7851
7921
  # resp.insights[0].filters.severity_product[0].lte #=> Float
@@ -7969,11 +8039,13 @@ module Aws::SecurityHub
7969
8039
  # resp.insights[0].filters.process_launched_at[0].end #=> String
7970
8040
  # resp.insights[0].filters.process_launched_at[0].date_range.value #=> Integer
7971
8041
  # resp.insights[0].filters.process_launched_at[0].date_range.unit #=> String, one of "DAYS"
8042
+ # resp.insights[0].filters.process_launched_at[0].date_range.comparison #=> String, one of "WITHIN", "OLDER_THAN"
7972
8043
  # resp.insights[0].filters.process_terminated_at #=> Array
7973
8044
  # resp.insights[0].filters.process_terminated_at[0].start #=> String
7974
8045
  # resp.insights[0].filters.process_terminated_at[0].end #=> String
7975
8046
  # resp.insights[0].filters.process_terminated_at[0].date_range.value #=> Integer
7976
8047
  # resp.insights[0].filters.process_terminated_at[0].date_range.unit #=> String, one of "DAYS"
8048
+ # resp.insights[0].filters.process_terminated_at[0].date_range.comparison #=> String, one of "WITHIN", "OLDER_THAN"
7977
8049
  # resp.insights[0].filters.threat_intel_indicator_type #=> Array
7978
8050
  # resp.insights[0].filters.threat_intel_indicator_type[0].value #=> String
7979
8051
  # resp.insights[0].filters.threat_intel_indicator_type[0].comparison #=> String, one of "EQUALS", "PREFIX", "NOT_EQUALS", "PREFIX_NOT_EQUALS", "CONTAINS", "NOT_CONTAINS", "CONTAINS_WORD"
@@ -7988,6 +8060,7 @@ module Aws::SecurityHub
7988
8060
  # resp.insights[0].filters.threat_intel_indicator_last_observed_at[0].end #=> String
7989
8061
  # resp.insights[0].filters.threat_intel_indicator_last_observed_at[0].date_range.value #=> Integer
7990
8062
  # resp.insights[0].filters.threat_intel_indicator_last_observed_at[0].date_range.unit #=> String, one of "DAYS"
8063
+ # resp.insights[0].filters.threat_intel_indicator_last_observed_at[0].date_range.comparison #=> String, one of "WITHIN", "OLDER_THAN"
7991
8064
  # resp.insights[0].filters.threat_intel_indicator_source #=> Array
7992
8065
  # resp.insights[0].filters.threat_intel_indicator_source[0].value #=> String
7993
8066
  # resp.insights[0].filters.threat_intel_indicator_source[0].comparison #=> String, one of "EQUALS", "PREFIX", "NOT_EQUALS", "PREFIX_NOT_EQUALS", "CONTAINS", "NOT_CONTAINS", "CONTAINS_WORD"
@@ -8037,6 +8110,7 @@ module Aws::SecurityHub
8037
8110
  # resp.insights[0].filters.resource_aws_ec2_instance_launched_at[0].end #=> String
8038
8111
  # resp.insights[0].filters.resource_aws_ec2_instance_launched_at[0].date_range.value #=> Integer
8039
8112
  # resp.insights[0].filters.resource_aws_ec2_instance_launched_at[0].date_range.unit #=> String, one of "DAYS"
8113
+ # resp.insights[0].filters.resource_aws_ec2_instance_launched_at[0].date_range.comparison #=> String, one of "WITHIN", "OLDER_THAN"
8040
8114
  # resp.insights[0].filters.resource_aws_s3_bucket_owner_id #=> Array
8041
8115
  # resp.insights[0].filters.resource_aws_s3_bucket_owner_id[0].value #=> String
8042
8116
  # resp.insights[0].filters.resource_aws_s3_bucket_owner_id[0].comparison #=> String, one of "EQUALS", "PREFIX", "NOT_EQUALS", "PREFIX_NOT_EQUALS", "CONTAINS", "NOT_CONTAINS", "CONTAINS_WORD"
@@ -8057,6 +8131,7 @@ module Aws::SecurityHub
8057
8131
  # resp.insights[0].filters.resource_aws_iam_access_key_created_at[0].end #=> String
8058
8132
  # resp.insights[0].filters.resource_aws_iam_access_key_created_at[0].date_range.value #=> Integer
8059
8133
  # resp.insights[0].filters.resource_aws_iam_access_key_created_at[0].date_range.unit #=> String, one of "DAYS"
8134
+ # resp.insights[0].filters.resource_aws_iam_access_key_created_at[0].date_range.comparison #=> String, one of "WITHIN", "OLDER_THAN"
8060
8135
  # resp.insights[0].filters.resource_aws_iam_user_user_name #=> Array
8061
8136
  # resp.insights[0].filters.resource_aws_iam_user_user_name[0].value #=> String
8062
8137
  # resp.insights[0].filters.resource_aws_iam_user_user_name[0].comparison #=> String, one of "EQUALS", "PREFIX", "NOT_EQUALS", "PREFIX_NOT_EQUALS", "CONTAINS", "NOT_CONTAINS", "CONTAINS_WORD"
@@ -8074,6 +8149,7 @@ module Aws::SecurityHub
8074
8149
  # resp.insights[0].filters.resource_container_launched_at[0].end #=> String
8075
8150
  # resp.insights[0].filters.resource_container_launched_at[0].date_range.value #=> Integer
8076
8151
  # resp.insights[0].filters.resource_container_launched_at[0].date_range.unit #=> String, one of "DAYS"
8152
+ # resp.insights[0].filters.resource_container_launched_at[0].date_range.comparison #=> String, one of "WITHIN", "OLDER_THAN"
8077
8153
  # resp.insights[0].filters.resource_details_other #=> Array
8078
8154
  # resp.insights[0].filters.resource_details_other[0].key #=> String
8079
8155
  # resp.insights[0].filters.resource_details_other[0].value #=> String
@@ -8107,6 +8183,7 @@ module Aws::SecurityHub
8107
8183
  # resp.insights[0].filters.note_updated_at[0].end #=> String
8108
8184
  # resp.insights[0].filters.note_updated_at[0].date_range.value #=> Integer
8109
8185
  # resp.insights[0].filters.note_updated_at[0].date_range.unit #=> String, one of "DAYS"
8186
+ # resp.insights[0].filters.note_updated_at[0].date_range.comparison #=> String, one of "WITHIN", "OLDER_THAN"
8110
8187
  # resp.insights[0].filters.note_updated_by #=> Array
8111
8188
  # resp.insights[0].filters.note_updated_by[0].value #=> String
8112
8189
  # resp.insights[0].filters.note_updated_by[0].comparison #=> String, one of "EQUALS", "PREFIX", "NOT_EQUALS", "PREFIX_NOT_EQUALS", "CONTAINS", "NOT_CONTAINS", "CONTAINS_WORD"
@@ -8348,6 +8425,67 @@ module Aws::SecurityHub
8348
8425
  req.send_request(options)
8349
8426
  end
8350
8427
 
8428
+ # Retrieves the recommended policy to remediate a Security Hub finding.
8429
+ # `GetRecommendedPolicyV2` only supports findings for unused
8430
+ # permissions.
8431
+ #
8432
+ # @option params [required, String] :metadata_uid
8433
+ # The unique identifier (ID) of Security Hub OCSF findings found under
8434
+ # the `metadata.uid` field of the finding.
8435
+ #
8436
+ # @option params [String] :next_token
8437
+ # The token used to paginate the `RecommendationSteps` list returned. On
8438
+ # your first call to `GetRecommendedPolicyV2`, omit this parameter or
8439
+ # set it to `NULL`. For subsequent calls, use the `NextToken` value
8440
+ # returned in the previous response to retrieve the next page of
8441
+ # results.
8442
+ #
8443
+ # @option params [Integer] :max_results
8444
+ # The maximum number of recommendation steps to return.
8445
+ #
8446
+ # @return [Types::GetRecommendedPolicyV2Response] Returns a {Seahorse::Client::Response response} object which responds to the following methods:
8447
+ #
8448
+ # * {Types::GetRecommendedPolicyV2Response#next_token #next_token} => String
8449
+ # * {Types::GetRecommendedPolicyV2Response#recommendation_type #recommendation_type} => String
8450
+ # * {Types::GetRecommendedPolicyV2Response#recommendation_steps #recommendation_steps} => Array<Types::RecommendationStep>
8451
+ # * {Types::GetRecommendedPolicyV2Response#error #error} => Types::RecommendationError
8452
+ # * {Types::GetRecommendedPolicyV2Response#status #status} => String
8453
+ # * {Types::GetRecommendedPolicyV2Response#resource_arn #resource_arn} => String
8454
+ #
8455
+ # The returned {Seahorse::Client::Response response} is a pageable response and is Enumerable. For details on usage see {Aws::PageableResponse PageableResponse}.
8456
+ #
8457
+ # @example Request syntax with placeholder values
8458
+ #
8459
+ # resp = client.get_recommended_policy_v2({
8460
+ # metadata_uid: "NonEmptyString", # required
8461
+ # next_token: "NextToken",
8462
+ # max_results: 1,
8463
+ # })
8464
+ #
8465
+ # @example Response structure
8466
+ #
8467
+ # resp.next_token #=> String
8468
+ # resp.recommendation_type #=> String, one of "UNUSED_PERMISSION_RECOMMENDATION"
8469
+ # resp.recommendation_steps #=> Array
8470
+ # resp.recommendation_steps[0].unused_permissions.recommended_action #=> String
8471
+ # resp.recommendation_steps[0].unused_permissions.existing_policy #=> String
8472
+ # resp.recommendation_steps[0].unused_permissions.existing_policy_id #=> String
8473
+ # resp.recommendation_steps[0].unused_permissions.policy_updated_at #=> Time
8474
+ # resp.recommendation_steps[0].unused_permissions.recommended_policy #=> String
8475
+ # resp.error.code #=> String
8476
+ # resp.error.message #=> String
8477
+ # resp.status #=> String, one of "IN_PROGRESS", "SUCCEEDED", "FAILED"
8478
+ # resp.resource_arn #=> String
8479
+ #
8480
+ # @see http://docs.aws.amazon.com/goto/WebAPI/securityhub-2018-10-26/GetRecommendedPolicyV2 AWS API Documentation
8481
+ #
8482
+ # @overload get_recommended_policy_v2(params = {})
8483
+ # @param [Hash] params ({})
8484
+ def get_recommended_policy_v2(params = {}, options = {})
8485
+ req = build_request(:get_recommended_policy_v2, params)
8486
+ req.send_request(options)
8487
+ end
8488
+
8351
8489
  # Retrieves statistical information about Amazon Web Services resources
8352
8490
  # and their associated security findings.
8353
8491
  #
@@ -8413,6 +8551,7 @@ module Aws::SecurityHub
8413
8551
  # date_range: {
8414
8552
  # value: 1,
8415
8553
  # unit: "DAYS", # accepts DAYS
8554
+ # comparison: "WITHIN", # accepts WITHIN, OLDER_THAN
8416
8555
  # },
8417
8556
  # },
8418
8557
  # },
@@ -8628,6 +8767,7 @@ module Aws::SecurityHub
8628
8767
  # date_range: {
8629
8768
  # value: 1,
8630
8769
  # unit: "DAYS", # accepts DAYS
8770
+ # comparison: "WITHIN", # accepts WITHIN, OLDER_THAN
8631
8771
  # },
8632
8772
  # },
8633
8773
  # },
@@ -10347,6 +10487,7 @@ module Aws::SecurityHub
10347
10487
  # date_range: {
10348
10488
  # value: 1,
10349
10489
  # unit: "DAYS", # accepts DAYS
10490
+ # comparison: "WITHIN", # accepts WITHIN, OLDER_THAN
10350
10491
  # },
10351
10492
  # },
10352
10493
  # },
@@ -10849,6 +10990,7 @@ module Aws::SecurityHub
10849
10990
  # date_range: {
10850
10991
  # value: 1,
10851
10992
  # unit: "DAYS", # accepts DAYS
10993
+ # comparison: "WITHIN", # accepts WITHIN, OLDER_THAN
10852
10994
  # },
10853
10995
  # },
10854
10996
  # ],
@@ -10859,6 +11001,7 @@ module Aws::SecurityHub
10859
11001
  # date_range: {
10860
11002
  # value: 1,
10861
11003
  # unit: "DAYS", # accepts DAYS
11004
+ # comparison: "WITHIN", # accepts WITHIN, OLDER_THAN
10862
11005
  # },
10863
11006
  # },
10864
11007
  # ],
@@ -10869,6 +11012,7 @@ module Aws::SecurityHub
10869
11012
  # date_range: {
10870
11013
  # value: 1,
10871
11014
  # unit: "DAYS", # accepts DAYS
11015
+ # comparison: "WITHIN", # accepts WITHIN, OLDER_THAN
10872
11016
  # },
10873
11017
  # },
10874
11018
  # ],
@@ -10879,6 +11023,7 @@ module Aws::SecurityHub
10879
11023
  # date_range: {
10880
11024
  # value: 1,
10881
11025
  # unit: "DAYS", # accepts DAYS
11026
+ # comparison: "WITHIN", # accepts WITHIN, OLDER_THAN
10882
11027
  # },
10883
11028
  # },
10884
11029
  # ],
@@ -11103,6 +11248,7 @@ module Aws::SecurityHub
11103
11248
  # date_range: {
11104
11249
  # value: 1,
11105
11250
  # unit: "DAYS", # accepts DAYS
11251
+ # comparison: "WITHIN", # accepts WITHIN, OLDER_THAN
11106
11252
  # },
11107
11253
  # },
11108
11254
  # ],
@@ -11113,6 +11259,7 @@ module Aws::SecurityHub
11113
11259
  # date_range: {
11114
11260
  # value: 1,
11115
11261
  # unit: "DAYS", # accepts DAYS
11262
+ # comparison: "WITHIN", # accepts WITHIN, OLDER_THAN
11116
11263
  # },
11117
11264
  # },
11118
11265
  # ],
@@ -11141,6 +11288,7 @@ module Aws::SecurityHub
11141
11288
  # date_range: {
11142
11289
  # value: 1,
11143
11290
  # unit: "DAYS", # accepts DAYS
11291
+ # comparison: "WITHIN", # accepts WITHIN, OLDER_THAN
11144
11292
  # },
11145
11293
  # },
11146
11294
  # ],
@@ -11240,6 +11388,7 @@ module Aws::SecurityHub
11240
11388
  # date_range: {
11241
11389
  # value: 1,
11242
11390
  # unit: "DAYS", # accepts DAYS
11391
+ # comparison: "WITHIN", # accepts WITHIN, OLDER_THAN
11243
11392
  # },
11244
11393
  # },
11245
11394
  # ],
@@ -11280,6 +11429,7 @@ module Aws::SecurityHub
11280
11429
  # date_range: {
11281
11430
  # value: 1,
11282
11431
  # unit: "DAYS", # accepts DAYS
11432
+ # comparison: "WITHIN", # accepts WITHIN, OLDER_THAN
11283
11433
  # },
11284
11434
  # },
11285
11435
  # ],
@@ -11314,6 +11464,7 @@ module Aws::SecurityHub
11314
11464
  # date_range: {
11315
11465
  # value: 1,
11316
11466
  # unit: "DAYS", # accepts DAYS
11467
+ # comparison: "WITHIN", # accepts WITHIN, OLDER_THAN
11317
11468
  # },
11318
11469
  # },
11319
11470
  # ],
@@ -11379,6 +11530,7 @@ module Aws::SecurityHub
11379
11530
  # date_range: {
11380
11531
  # value: 1,
11381
11532
  # unit: "DAYS", # accepts DAYS
11533
+ # comparison: "WITHIN", # accepts WITHIN, OLDER_THAN
11382
11534
  # },
11383
11535
  # },
11384
11536
  # ],
@@ -11607,6 +11759,7 @@ module Aws::SecurityHub
11607
11759
  # date_range: {
11608
11760
  # value: 1,
11609
11761
  # unit: "DAYS", # accepts DAYS
11762
+ # comparison: "WITHIN", # accepts WITHIN, OLDER_THAN
11610
11763
  # },
11611
11764
  # },
11612
11765
  # ],
@@ -11617,6 +11770,7 @@ module Aws::SecurityHub
11617
11770
  # date_range: {
11618
11771
  # value: 1,
11619
11772
  # unit: "DAYS", # accepts DAYS
11773
+ # comparison: "WITHIN", # accepts WITHIN, OLDER_THAN
11620
11774
  # },
11621
11775
  # },
11622
11776
  # ],
@@ -11627,6 +11781,7 @@ module Aws::SecurityHub
11627
11781
  # date_range: {
11628
11782
  # value: 1,
11629
11783
  # unit: "DAYS", # accepts DAYS
11784
+ # comparison: "WITHIN", # accepts WITHIN, OLDER_THAN
11630
11785
  # },
11631
11786
  # },
11632
11787
  # ],
@@ -11637,6 +11792,7 @@ module Aws::SecurityHub
11637
11792
  # date_range: {
11638
11793
  # value: 1,
11639
11794
  # unit: "DAYS", # accepts DAYS
11795
+ # comparison: "WITHIN", # accepts WITHIN, OLDER_THAN
11640
11796
  # },
11641
11797
  # },
11642
11798
  # ],
@@ -11861,6 +12017,7 @@ module Aws::SecurityHub
11861
12017
  # date_range: {
11862
12018
  # value: 1,
11863
12019
  # unit: "DAYS", # accepts DAYS
12020
+ # comparison: "WITHIN", # accepts WITHIN, OLDER_THAN
11864
12021
  # },
11865
12022
  # },
11866
12023
  # ],
@@ -11871,6 +12028,7 @@ module Aws::SecurityHub
11871
12028
  # date_range: {
11872
12029
  # value: 1,
11873
12030
  # unit: "DAYS", # accepts DAYS
12031
+ # comparison: "WITHIN", # accepts WITHIN, OLDER_THAN
11874
12032
  # },
11875
12033
  # },
11876
12034
  # ],
@@ -11899,6 +12057,7 @@ module Aws::SecurityHub
11899
12057
  # date_range: {
11900
12058
  # value: 1,
11901
12059
  # unit: "DAYS", # accepts DAYS
12060
+ # comparison: "WITHIN", # accepts WITHIN, OLDER_THAN
11902
12061
  # },
11903
12062
  # },
11904
12063
  # ],
@@ -11998,6 +12157,7 @@ module Aws::SecurityHub
11998
12157
  # date_range: {
11999
12158
  # value: 1,
12000
12159
  # unit: "DAYS", # accepts DAYS
12160
+ # comparison: "WITHIN", # accepts WITHIN, OLDER_THAN
12001
12161
  # },
12002
12162
  # },
12003
12163
  # ],
@@ -12038,6 +12198,7 @@ module Aws::SecurityHub
12038
12198
  # date_range: {
12039
12199
  # value: 1,
12040
12200
  # unit: "DAYS", # accepts DAYS
12201
+ # comparison: "WITHIN", # accepts WITHIN, OLDER_THAN
12041
12202
  # },
12042
12203
  # },
12043
12204
  # ],
@@ -12072,6 +12233,7 @@ module Aws::SecurityHub
12072
12233
  # date_range: {
12073
12234
  # value: 1,
12074
12235
  # unit: "DAYS", # accepts DAYS
12236
+ # comparison: "WITHIN", # accepts WITHIN, OLDER_THAN
12075
12237
  # },
12076
12238
  # },
12077
12239
  # ],
@@ -12137,6 +12299,7 @@ module Aws::SecurityHub
12137
12299
  # date_range: {
12138
12300
  # value: 1,
12139
12301
  # unit: "DAYS", # accepts DAYS
12302
+ # comparison: "WITHIN", # accepts WITHIN, OLDER_THAN
12140
12303
  # },
12141
12304
  # },
12142
12305
  # ],
@@ -12548,7 +12711,7 @@ module Aws::SecurityHub
12548
12711
  tracer: tracer
12549
12712
  )
12550
12713
  context[:gem_name] = 'aws-sdk-securityhub'
12551
- context[:gem_version] = '1.154.0'
12714
+ context[:gem_version] = '1.155.0'
12552
12715
  Seahorse::Client::Request.new(handlers, context)
12553
12716
  end
12554
12717