aws-sdk-securityhub 1.29.0 → 1.30.0
Sign up to get free protection for your applications and to get access to all the features.
- checksums.yaml +4 -4
- data/lib/aws-sdk-securityhub.rb +1 -1
- data/lib/aws-sdk-securityhub/client.rb +34 -1
- data/lib/aws-sdk-securityhub/client_api.rb +21 -0
- data/lib/aws-sdk-securityhub/types.rb +77 -8
- metadata +2 -2
checksums.yaml
CHANGED
@@ -1,7 +1,7 @@
|
|
1
1
|
---
|
2
2
|
SHA256:
|
3
|
-
metadata.gz:
|
4
|
-
data.tar.gz:
|
3
|
+
metadata.gz: e113e432d072a8784177a2a631a9a01910de8fd81d8ec2bb2d4b80058abc9a93
|
4
|
+
data.tar.gz: c6f41f7d6a1081ac9184c9d4a05c193a4a235fd41f9e4c6ebaf0ec0366041db3
|
5
5
|
SHA512:
|
6
|
-
metadata.gz:
|
7
|
-
data.tar.gz:
|
6
|
+
metadata.gz: b97269742a9ab024e24b45ffe9546edb0ccc71e3cd283c3a306081794c3212b7fded050fb1168adabfe6d0002f256bc5f160f1a666e9e502f4645cbfc740a65c
|
7
|
+
data.tar.gz: 5afbfd120e4ede0825db6a175134b26003363f8d153cab2e26bece813bbd820fdeb872e6dfb313b481d89f42bd938ec20e4982ef0b4bdb11f17a4d3cd591d590
|
data/lib/aws-sdk-securityhub.rb
CHANGED
@@ -2191,6 +2191,7 @@ module Aws::SecurityHub
|
|
2191
2191
|
#
|
2192
2192
|
# * {Types::DescribeHubResponse#hub_arn #hub_arn} => String
|
2193
2193
|
# * {Types::DescribeHubResponse#subscribed_at #subscribed_at} => String
|
2194
|
+
# * {Types::DescribeHubResponse#auto_enable_controls #auto_enable_controls} => Boolean
|
2194
2195
|
#
|
2195
2196
|
# @example Request syntax with placeholder values
|
2196
2197
|
#
|
@@ -2202,6 +2203,7 @@ module Aws::SecurityHub
|
|
2202
2203
|
#
|
2203
2204
|
# resp.hub_arn #=> String
|
2204
2205
|
# resp.subscribed_at #=> String
|
2206
|
+
# resp.auto_enable_controls #=> Boolean
|
2205
2207
|
#
|
2206
2208
|
# @see http://docs.aws.amazon.com/goto/WebAPI/securityhub-2018-10-26/DescribeHub AWS API Documentation
|
2207
2209
|
#
|
@@ -2618,6 +2620,10 @@ module Aws::SecurityHub
|
|
2618
2620
|
# The finding attributes used to define a condition to filter the
|
2619
2621
|
# returned findings.
|
2620
2622
|
#
|
2623
|
+
# Note that in the available filter fields, `WorkflowState` is
|
2624
|
+
# deprecated. To search for a finding based on its workflow status, use
|
2625
|
+
# `WorkflowStatus`.
|
2626
|
+
#
|
2621
2627
|
# @option params [Array<Types::SortCriterion>] :sort_criteria
|
2622
2628
|
# The finding attributes used to sort the list of returned findings.
|
2623
2629
|
#
|
@@ -5549,6 +5555,33 @@ module Aws::SecurityHub
|
|
5549
5555
|
req.send_request(options)
|
5550
5556
|
end
|
5551
5557
|
|
5558
|
+
# Updates configuration options for Security Hub.
|
5559
|
+
#
|
5560
|
+
# @option params [Boolean] :auto_enable_controls
|
5561
|
+
# Whether to automatically enable new controls when they are added to
|
5562
|
+
# standards that are enabled.
|
5563
|
+
#
|
5564
|
+
# By default, this is set to `true`, and new controls are enabled
|
5565
|
+
# automatically. To not automatically enable new controls, set this to
|
5566
|
+
# `false`.
|
5567
|
+
#
|
5568
|
+
# @return [Struct] Returns an empty {Seahorse::Client::Response response}.
|
5569
|
+
#
|
5570
|
+
# @example Request syntax with placeholder values
|
5571
|
+
#
|
5572
|
+
# resp = client.update_security_hub_configuration({
|
5573
|
+
# auto_enable_controls: false,
|
5574
|
+
# })
|
5575
|
+
#
|
5576
|
+
# @see http://docs.aws.amazon.com/goto/WebAPI/securityhub-2018-10-26/UpdateSecurityHubConfiguration AWS API Documentation
|
5577
|
+
#
|
5578
|
+
# @overload update_security_hub_configuration(params = {})
|
5579
|
+
# @param [Hash] params ({})
|
5580
|
+
def update_security_hub_configuration(params = {}, options = {})
|
5581
|
+
req = build_request(:update_security_hub_configuration, params)
|
5582
|
+
req.send_request(options)
|
5583
|
+
end
|
5584
|
+
|
5552
5585
|
# Used to control whether an individual security standard control is
|
5553
5586
|
# enabled or disabled.
|
5554
5587
|
#
|
@@ -5594,7 +5627,7 @@ module Aws::SecurityHub
|
|
5594
5627
|
params: params,
|
5595
5628
|
config: config)
|
5596
5629
|
context[:gem_name] = 'aws-sdk-securityhub'
|
5597
|
-
context[:gem_version] = '1.
|
5630
|
+
context[:gem_version] = '1.30.0'
|
5598
5631
|
Seahorse::Client::Request.new(handlers, context)
|
5599
5632
|
end
|
5600
5633
|
|
@@ -305,6 +305,8 @@ module Aws::SecurityHub
|
|
305
305
|
UpdateFindingsResponse = Shapes::StructureShape.new(name: 'UpdateFindingsResponse')
|
306
306
|
UpdateInsightRequest = Shapes::StructureShape.new(name: 'UpdateInsightRequest')
|
307
307
|
UpdateInsightResponse = Shapes::StructureShape.new(name: 'UpdateInsightResponse')
|
308
|
+
UpdateSecurityHubConfigurationRequest = Shapes::StructureShape.new(name: 'UpdateSecurityHubConfigurationRequest')
|
309
|
+
UpdateSecurityHubConfigurationResponse = Shapes::StructureShape.new(name: 'UpdateSecurityHubConfigurationResponse')
|
308
310
|
UpdateStandardsControlRequest = Shapes::StructureShape.new(name: 'UpdateStandardsControlRequest')
|
309
311
|
UpdateStandardsControlResponse = Shapes::StructureShape.new(name: 'UpdateStandardsControlResponse')
|
310
312
|
VerificationState = Shapes::StringShape.new(name: 'VerificationState')
|
@@ -1009,6 +1011,7 @@ module Aws::SecurityHub
|
|
1009
1011
|
|
1010
1012
|
DescribeHubResponse.add_member(:hub_arn, Shapes::ShapeRef.new(shape: NonEmptyString, location_name: "HubArn"))
|
1011
1013
|
DescribeHubResponse.add_member(:subscribed_at, Shapes::ShapeRef.new(shape: NonEmptyString, location_name: "SubscribedAt"))
|
1014
|
+
DescribeHubResponse.add_member(:auto_enable_controls, Shapes::ShapeRef.new(shape: Boolean, location_name: "AutoEnableControls"))
|
1012
1015
|
DescribeHubResponse.struct_class = Types::DescribeHubResponse
|
1013
1016
|
|
1014
1017
|
DescribeProductsRequest.add_member(:next_token, Shapes::ShapeRef.new(shape: NextToken, location: "querystring", location_name: "NextToken"))
|
@@ -1531,6 +1534,11 @@ module Aws::SecurityHub
|
|
1531
1534
|
|
1532
1535
|
UpdateInsightResponse.struct_class = Types::UpdateInsightResponse
|
1533
1536
|
|
1537
|
+
UpdateSecurityHubConfigurationRequest.add_member(:auto_enable_controls, Shapes::ShapeRef.new(shape: Boolean, location_name: "AutoEnableControls"))
|
1538
|
+
UpdateSecurityHubConfigurationRequest.struct_class = Types::UpdateSecurityHubConfigurationRequest
|
1539
|
+
|
1540
|
+
UpdateSecurityHubConfigurationResponse.struct_class = Types::UpdateSecurityHubConfigurationResponse
|
1541
|
+
|
1534
1542
|
UpdateStandardsControlRequest.add_member(:standards_control_arn, Shapes::ShapeRef.new(shape: NonEmptyString, required: true, location: "uri", location_name: "StandardsControlArn"))
|
1535
1543
|
UpdateStandardsControlRequest.add_member(:control_status, Shapes::ShapeRef.new(shape: ControlStatus, location_name: "ControlStatus"))
|
1536
1544
|
UpdateStandardsControlRequest.add_member(:disabled_reason, Shapes::ShapeRef.new(shape: NonEmptyString, location_name: "DisabledReason"))
|
@@ -2158,6 +2166,19 @@ module Aws::SecurityHub
|
|
2158
2166
|
o.errors << Shapes::ShapeRef.new(shape: ResourceNotFoundException)
|
2159
2167
|
end)
|
2160
2168
|
|
2169
|
+
api.add_operation(:update_security_hub_configuration, Seahorse::Model::Operation.new.tap do |o|
|
2170
|
+
o.name = "UpdateSecurityHubConfiguration"
|
2171
|
+
o.http_method = "PATCH"
|
2172
|
+
o.http_request_uri = "/accounts"
|
2173
|
+
o.input = Shapes::ShapeRef.new(shape: UpdateSecurityHubConfigurationRequest)
|
2174
|
+
o.output = Shapes::ShapeRef.new(shape: UpdateSecurityHubConfigurationResponse)
|
2175
|
+
o.errors << Shapes::ShapeRef.new(shape: InternalException)
|
2176
|
+
o.errors << Shapes::ShapeRef.new(shape: InvalidInputException)
|
2177
|
+
o.errors << Shapes::ShapeRef.new(shape: InvalidAccessException)
|
2178
|
+
o.errors << Shapes::ShapeRef.new(shape: LimitExceededException)
|
2179
|
+
o.errors << Shapes::ShapeRef.new(shape: ResourceNotFoundException)
|
2180
|
+
end)
|
2181
|
+
|
2161
2182
|
api.add_operation(:update_standards_control, Seahorse::Model::Operation.new.tap do |o|
|
2162
2183
|
o.name = "UpdateStandardsControl"
|
2163
2184
|
o.http_method = "PATCH"
|
@@ -4501,6 +4501,9 @@ module Aws::SecurityHub
|
|
4501
4501
|
#
|
4502
4502
|
# @!attribute [rw] workflow_state
|
4503
4503
|
# The workflow state of a finding.
|
4504
|
+
#
|
4505
|
+
# Note that this field is deprecated. To search for a finding based on
|
4506
|
+
# its workflow status, use `WorkflowStatus`.
|
4504
4507
|
# @return [Array<Types::StringFilter>]
|
4505
4508
|
#
|
4506
4509
|
# @!attribute [rw] workflow_status
|
@@ -7002,11 +7005,21 @@ module Aws::SecurityHub
|
|
7002
7005
|
# The date and time when Security Hub was enabled in the account.
|
7003
7006
|
# @return [String]
|
7004
7007
|
#
|
7008
|
+
# @!attribute [rw] auto_enable_controls
|
7009
|
+
# Whether to automatically enable new controls when they are added to
|
7010
|
+
# standards that are enabled.
|
7011
|
+
#
|
7012
|
+
# If set to `true`, then new controls for enabled standards are
|
7013
|
+
# enabled automatically. If set to `false`, then new controls are not
|
7014
|
+
# enabled.
|
7015
|
+
# @return [Boolean]
|
7016
|
+
#
|
7005
7017
|
# @see http://docs.aws.amazon.com/goto/WebAPI/securityhub-2018-10-26/DescribeHubResponse AWS API Documentation
|
7006
7018
|
#
|
7007
7019
|
class DescribeHubResponse < Struct.new(
|
7008
7020
|
:hub_arn,
|
7009
|
-
:subscribed_at
|
7021
|
+
:subscribed_at,
|
7022
|
+
:auto_enable_controls)
|
7010
7023
|
SENSITIVE = []
|
7011
7024
|
include Aws::Structure
|
7012
7025
|
end
|
@@ -7924,6 +7937,10 @@ module Aws::SecurityHub
|
|
7924
7937
|
# @!attribute [rw] filters
|
7925
7938
|
# The finding attributes used to define a condition to filter the
|
7926
7939
|
# returned findings.
|
7940
|
+
#
|
7941
|
+
# Note that in the available filter fields, `WorkflowState` is
|
7942
|
+
# deprecated. To search for a finding based on its workflow status,
|
7943
|
+
# use `WorkflowStatus`.
|
7927
7944
|
# @return [Types::AwsSecurityFindingFilters]
|
7928
7945
|
#
|
7929
7946
|
# @!attribute [rw] sort_criteria
|
@@ -10478,6 +10495,16 @@ module Aws::SecurityHub
|
|
10478
10495
|
|
10479
10496
|
# The severity of the finding.
|
10480
10497
|
#
|
10498
|
+
# The finding provider can provide the initial severity, but cannot
|
10499
|
+
# update it after that. The severity can only be updated by a master
|
10500
|
+
# account. It cannot be updated by a member account.
|
10501
|
+
#
|
10502
|
+
# The finding must have either `Label` or `Normalized` populated. If
|
10503
|
+
# only one of these attributes is populated, then Security Hub
|
10504
|
+
# automatically populates the other one. If neither attribute is
|
10505
|
+
# populated, then the finding is invalid. `Label` is the preferred
|
10506
|
+
# attribute.
|
10507
|
+
#
|
10481
10508
|
# @note When making an API call, you may pass Severity
|
10482
10509
|
# data as a hash:
|
10483
10510
|
#
|
@@ -10510,14 +10537,9 @@ module Aws::SecurityHub
|
|
10510
10537
|
#
|
10511
10538
|
# * `CRITICAL` - The issue must be remediated immediately to avoid it
|
10512
10539
|
# escalating.
|
10513
|
-
# @return [String]
|
10514
10540
|
#
|
10515
|
-
#
|
10516
|
-
#
|
10517
|
-
# `Normalized`, provide `Label`.
|
10518
|
-
#
|
10519
|
-
# If you provide `Normalized` and do not provide `Label`, `Label` is
|
10520
|
-
# set automatically as follows.
|
10541
|
+
# If you provide `Normalized` and do not provide `Label`, then `Label`
|
10542
|
+
# is set automatically as follows.
|
10521
10543
|
#
|
10522
10544
|
# * 0 - `INFORMATIONAL`
|
10523
10545
|
#
|
@@ -10528,6 +10550,25 @@ module Aws::SecurityHub
|
|
10528
10550
|
# * 70–89 - `HIGH`
|
10529
10551
|
#
|
10530
10552
|
# * 90–100 - `CRITICAL`
|
10553
|
+
# @return [String]
|
10554
|
+
#
|
10555
|
+
# @!attribute [rw] normalized
|
10556
|
+
# Deprecated. The normalized severity of a finding. This attribute is
|
10557
|
+
# being deprecated. Instead of providing `Normalized`, provide
|
10558
|
+
# `Label`.
|
10559
|
+
#
|
10560
|
+
# If you provide `Label` and do not provide `Normalized`, then
|
10561
|
+
# `Normalized` is set automatically as follows.
|
10562
|
+
#
|
10563
|
+
# * `INFORMATIONAL` - 0
|
10564
|
+
#
|
10565
|
+
# * `LOW` - 1
|
10566
|
+
#
|
10567
|
+
# * `MEDIUM` - 40
|
10568
|
+
#
|
10569
|
+
# * `HIGH` - 70
|
10570
|
+
#
|
10571
|
+
# * `CRITICAL` - 90
|
10531
10572
|
# @return [Integer]
|
10532
10573
|
#
|
10533
10574
|
# @!attribute [rw] original
|
@@ -12240,6 +12281,34 @@ module Aws::SecurityHub
|
|
12240
12281
|
#
|
12241
12282
|
class UpdateInsightResponse < Aws::EmptyStructure; end
|
12242
12283
|
|
12284
|
+
# @note When making an API call, you may pass UpdateSecurityHubConfigurationRequest
|
12285
|
+
# data as a hash:
|
12286
|
+
#
|
12287
|
+
# {
|
12288
|
+
# auto_enable_controls: false,
|
12289
|
+
# }
|
12290
|
+
#
|
12291
|
+
# @!attribute [rw] auto_enable_controls
|
12292
|
+
# Whether to automatically enable new controls when they are added to
|
12293
|
+
# standards that are enabled.
|
12294
|
+
#
|
12295
|
+
# By default, this is set to `true`, and new controls are enabled
|
12296
|
+
# automatically. To not automatically enable new controls, set this to
|
12297
|
+
# `false`.
|
12298
|
+
# @return [Boolean]
|
12299
|
+
#
|
12300
|
+
# @see http://docs.aws.amazon.com/goto/WebAPI/securityhub-2018-10-26/UpdateSecurityHubConfigurationRequest AWS API Documentation
|
12301
|
+
#
|
12302
|
+
class UpdateSecurityHubConfigurationRequest < Struct.new(
|
12303
|
+
:auto_enable_controls)
|
12304
|
+
SENSITIVE = []
|
12305
|
+
include Aws::Structure
|
12306
|
+
end
|
12307
|
+
|
12308
|
+
# @see http://docs.aws.amazon.com/goto/WebAPI/securityhub-2018-10-26/UpdateSecurityHubConfigurationResponse AWS API Documentation
|
12309
|
+
#
|
12310
|
+
class UpdateSecurityHubConfigurationResponse < Aws::EmptyStructure; end
|
12311
|
+
|
12243
12312
|
# @note When making an API call, you may pass UpdateStandardsControlRequest
|
12244
12313
|
# data as a hash:
|
12245
12314
|
#
|
metadata
CHANGED
@@ -1,14 +1,14 @@
|
|
1
1
|
--- !ruby/object:Gem::Specification
|
2
2
|
name: aws-sdk-securityhub
|
3
3
|
version: !ruby/object:Gem::Version
|
4
|
-
version: 1.
|
4
|
+
version: 1.30.0
|
5
5
|
platform: ruby
|
6
6
|
authors:
|
7
7
|
- Amazon Web Services
|
8
8
|
autorequire:
|
9
9
|
bindir: bin
|
10
10
|
cert_chain: []
|
11
|
-
date: 2020-07-
|
11
|
+
date: 2020-07-28 00:00:00.000000000 Z
|
12
12
|
dependencies:
|
13
13
|
- !ruby/object:Gem::Dependency
|
14
14
|
name: aws-sdk-core
|