aws-sdk-securityhub 1.38.0 → 1.43.0

data/lib/aws-sdk-securityhub/client.rb

@@ -3,7 +3,7 @@
 # WARNING ABOUT GENERATED CODE
 #
 # This file is generated. See the contributing guide for more information:
-# https://github.com/aws/aws-sdk-ruby/blob/master/CONTRIBUTING.md
+# https://github.com/aws/aws-sdk-ruby/blob/version-3/CONTRIBUTING.md
 #
 # WARNING ABOUT GENERATED CODE
 
@@ -328,21 +328,61 @@ module Aws::SecurityHub
     # @!group API Operations
 
     # Accepts the invitation to be a member account and be monitored by the
-    # Security Hub master account that the invitation was sent from.
+    # Security Hub administrator account that the invitation was sent from.
     #
     # This operation is only used by member accounts that are not added
     # through Organizations.
     #
     # When the member account accepts the invitation, permission is granted
-    # to the master account to view findings generated in the member
+    # to the administrator account to view findings generated in the member
+    # account.
+    #
+    # @option params [required, String] :administrator_id
+    #   The account ID of the Security Hub administrator account that sent the
+    #   invitation.
+    #
+    # @option params [required, String] :invitation_id
+    #   The identifier of the invitation sent from the Security Hub
+    #   administrator account.
+    #
+    # @return [Struct] Returns an empty {Seahorse::Client::Response response}.
+    #
+    # @example Request syntax with placeholder values
+    #
+    #   resp = client.accept_administrator_invitation({
+    #     administrator_id: "NonEmptyString", # required
+    #     invitation_id: "NonEmptyString", # required
+    #   })
+    #
+    # @see http://docs.aws.amazon.com/goto/WebAPI/securityhub-2018-10-26/AcceptAdministratorInvitation AWS API Documentation
+    #
+    # @overload accept_administrator_invitation(params = {})
+    # @param [Hash] params ({})
+    def accept_administrator_invitation(params = {}, options = {})
+      req = build_request(:accept_administrator_invitation, params)
+      req.send_request(options)
+    end
+
+    # This method is deprecated. Instead, use
+    # `AcceptAdministratorInvitation`.
+    #
+    # Accepts the invitation to be a member account and be monitored by the
+    # Security Hub administrator account that the invitation was sent from.
+    #
+    # This operation is only used by member accounts that are not added
+    # through Organizations.
+    #
+    # When the member account accepts the invitation, permission is granted
+    # to the administrator account to view findings generated in the member
     # account.
     #
     # @option params [required, String] :master_id
-    #   The account ID of the Security Hub master account that sent the
+    #   The account ID of the Security Hub administrator account that sent the
     #   invitation.
     #
     # @option params [required, String] :invitation_id
-    #   The ID of the invitation sent from the Security Hub master account.
+    #   The identifier of the invitation sent from the Security Hub
+    #   administrator account.
     #
     # @return [Struct] Returns an empty {Seahorse::Client::Response response}.
     #
@@ -452,9 +492,9 @@ module Aws::SecurityHub
       req.send_request(options)
     end
 
-    # Imports security findings generated from an integrated third-party
-    # product into Security Hub. This action is requested by the integrated
-    # product to import its findings into Security Hub.
+    # Imports security findings generated from an integrated product into
+    # Security Hub. This action is requested by the integrated product to
+    # import its findings into Security Hub.
     #
     # The maximum allowed size for a finding is 240 Kb. An error is returned
     # for any finding larger than 240 Kb.
@@ -471,11 +511,8 @@ module Aws::SecurityHub
     #
     # * `Workflow`
     #
-    # `BatchImportFindings` can be used to update the following finding
-    # fields and objects only if they have not been updated using
-    # `BatchUpdateFindings`. After they are updated using
-    # `BatchUpdateFindings`, these fields cannot be updated using
-    # `BatchImportFindings`.
+    # Finding providers also should not use `BatchImportFindings` to update
+    # the following attributes.
     #
     # * `Confidence`
     #
@@ -487,6 +524,9 @@ module Aws::SecurityHub
     #
     # * `Types`
     #
+    # Instead, finding providers use `FindingProviderFields` to provide
+    # values for these attributes.
+    #
     # @option params [required, Array<Types::AwsSecurityFinding>] :findings
     #   A list of findings to import. To successfully import a finding, it
     #   must follow the [AWS Security Finding Format][1]. Maximum of 100
@@ -512,12 +552,12 @@ module Aws::SecurityHub
     #         product_arn: "NonEmptyString", # required
     #         generator_id: "NonEmptyString", # required
     #         aws_account_id: "NonEmptyString", # required
-    #         types: ["NonEmptyString"], # required
+    #         types: ["NonEmptyString"],
     #         first_observed_at: "NonEmptyString",
     #         last_observed_at: "NonEmptyString",
     #         created_at: "NonEmptyString", # required
     #         updated_at: "NonEmptyString", # required
-    #         severity: { # required
+    #         severity: {
     #           product: 1.0,
     #           label: "INFORMATIONAL", # accepts INFORMATIONAL, LOW, MEDIUM, HIGH, CRITICAL
     #           normalized: 1,
@@ -641,6 +681,130 @@ module Aws::SecurityHub
     #             tags: {
     #               "NonEmptyString" => "NonEmptyString",
     #             },
+    #             data_classification: {
+    #               detailed_results_location: "NonEmptyString",
+    #               result: {
+    #                 mime_type: "NonEmptyString",
+    #                 size_classified: 1,
+    #                 additional_occurrences: false,
+    #                 status: {
+    #                   code: "NonEmptyString",
+    #                   reason: "NonEmptyString",
+    #                 },
+    #                 sensitive_data: [
+    #                   {
+    #                     category: "NonEmptyString",
+    #                     detections: [
+    #                       {
+    #                         count: 1,
+    #                         type: "NonEmptyString",
+    #                         occurrences: {
+    #                           line_ranges: [
+    #                             {
+    #                               start: 1,
+    #                               end: 1,
+    #                               start_column: 1,
+    #                             },
+    #                           ],
+    #                           offset_ranges: [
+    #                             {
+    #                               start: 1,
+    #                               end: 1,
+    #                               start_column: 1,
+    #                             },
+    #                           ],
+    #                           pages: [
+    #                             {
+    #                               page_number: 1,
+    #                               line_range: {
+    #                                 start: 1,
+    #                                 end: 1,
+    #                                 start_column: 1,
+    #                               },
+    #                               offset_range: {
+    #                                 start: 1,
+    #                                 end: 1,
+    #                                 start_column: 1,
+    #                               },
+    #                             },
+    #                           ],
+    #                           records: [
+    #                             {
+    #                               json_path: "NonEmptyString",
+    #                               record_index: 1,
+    #                             },
+    #                           ],
+    #                           cells: [
+    #                             {
+    #                               column: 1,
+    #                               row: 1,
+    #                               column_name: "NonEmptyString",
+    #                               cell_reference: "NonEmptyString",
+    #                             },
+    #                           ],
+    #                         },
+    #                       },
+    #                     ],
+    #                     total_count: 1,
+    #                   },
+    #                 ],
+    #                 custom_data_identifiers: {
+    #                   detections: [
+    #                     {
+    #                       count: 1,
+    #                       arn: "NonEmptyString",
+    #                       name: "NonEmptyString",
+    #                       occurrences: {
+    #                         line_ranges: [
+    #                           {
+    #                             start: 1,
+    #                             end: 1,
+    #                             start_column: 1,
+    #                           },
+    #                         ],
+    #                         offset_ranges: [
+    #                           {
+    #                             start: 1,
+    #                             end: 1,
+    #                             start_column: 1,
+    #                           },
+    #                         ],
+    #                         pages: [
+    #                           {
+    #                             page_number: 1,
+    #                             line_range: {
+    #                               start: 1,
+    #                               end: 1,
+    #                               start_column: 1,
+    #                             },
+    #                             offset_range: {
+    #                               start: 1,
+    #                               end: 1,
+    #                               start_column: 1,
+    #                             },
+    #                           },
+    #                         ],
+    #                         records: [
+    #                           {
+    #                             json_path: "NonEmptyString",
+    #                             record_index: 1,
+    #                           },
+    #                         ],
+    #                         cells: [
+    #                           {
+    #                             column: 1,
+    #                             row: 1,
+    #                             column_name: "NonEmptyString",
+    #                             cell_reference: "NonEmptyString",
+    #                           },
+    #                         ],
+    #                       },
+    #                     },
+    #                   ],
+    #                   total_count: 1,
+    #                 },
+    #               },
+    #             },
     #             details: {
     #               aws_auto_scaling_auto_scaling_group: {
     #                 launch_configuration_name: "NonEmptyString",
@@ -942,6 +1106,18 @@ module Aws::SecurityHub
     #                     },
     #                   ],
     #                 },
+    #                 public_access_block_configuration: {
+    #                   block_public_acls: false,
+    #                   block_public_policy: false,
+    #                   ignore_public_acls: false,
+    #                   restrict_public_buckets: false,
+    #                 },
+    #               },
+    #               aws_s3_account_public_access_block: {
+    #                 block_public_acls: false,
+    #                 block_public_policy: false,
+    #                 ignore_public_acls: false,
+    #                 restrict_public_buckets: false,
     #               },
     #               aws_s3_object: {
     #                 last_modified: "NonEmptyString",
@@ -2172,6 +2348,21 @@ module Aws::SecurityHub
     #             blocked: false,
     #           },
     #         },
+    #         finding_provider_fields: {
+    #           confidence: 1,
+    #           criticality: 1,
+    #           related_findings: [
+    #             {
+    #               product_arn: "NonEmptyString", # required
+    #               id: "NonEmptyString", # required
+    #             },
+    #           ],
+    #           severity: {
+    #             label: "INFORMATIONAL", # accepts INFORMATIONAL, LOW, MEDIUM, HIGH, CRITICAL
+    #             original: "NonEmptyString",
+    #           },
+    #           types: ["NonEmptyString"],
+    #         },
     #       },
     #     ],
     #   })
@@ -2195,16 +2386,16 @@ module Aws::SecurityHub
     end
 
     # Used by Security Hub customers to update information about their
-    # investigation into a finding. Requested by master accounts or member
-    # accounts. Master accounts can update findings for their account and
-    # their member accounts. Member accounts can update findings for their
-    # account.
+    # investigation into a finding. Requested by administrator accounts or
+    # member accounts. Administrator accounts can update findings for their
+    # account and their member accounts. Member accounts can update findings
+    # for their account.
     #
     # Updates from `BatchUpdateFindings` do not affect the value of
     # `UpdatedAt` for a finding.
     #
-    # Master and member accounts can use `BatchUpdateFindings` to update the
-    # following finding fields and objects.
+    # Administrator and member accounts can use `BatchUpdateFindings` to
+    # update the following finding fields and objects.
     #
     # * `Confidence`
     #
@@ -2989,6 +3180,50 @@ module Aws::SecurityHub
     #           value: "NonEmptyString",
     #         },
     #       ],
+    #       finding_provider_fields_confidence: [
+    #         {
+    #           gte: 1.0,
+    #           lte: 1.0,
+    #           eq: 1.0,
+    #         },
+    #       ],
+    #       finding_provider_fields_criticality: [
+    #         {
+    #           gte: 1.0,
+    #           lte: 1.0,
+    #           eq: 1.0,
+    #         },
+    #       ],
+    #       finding_provider_fields_related_findings_id: [
+    #         {
+    #           value: "NonEmptyString",
+    #           comparison: "EQUALS", # accepts EQUALS, PREFIX, NOT_EQUALS, PREFIX_NOT_EQUALS
+    #         },
+    #       ],
+    #       finding_provider_fields_related_findings_product_arn: [
+    #         {
+    #           value: "NonEmptyString",
+    #           comparison: "EQUALS", # accepts EQUALS, PREFIX, NOT_EQUALS, PREFIX_NOT_EQUALS
+    #         },
+    #       ],
+    #       finding_provider_fields_severity_label: [
+    #         {
+    #           value: "NonEmptyString",
+    #           comparison: "EQUALS", # accepts EQUALS, PREFIX, NOT_EQUALS, PREFIX_NOT_EQUALS
+    #         },
+    #       ],
+    #       finding_provider_fields_severity_original: [
+    #         {
+    #           value: "NonEmptyString",
+    #           comparison: "EQUALS", # accepts EQUALS, PREFIX, NOT_EQUALS, PREFIX_NOT_EQUALS
+    #         },
+    #       ],
+    #       finding_provider_fields_types: [
+    #         {
+    #           value: "NonEmptyString",
+    #           comparison: "EQUALS", # accepts EQUALS, PREFIX, NOT_EQUALS, PREFIX_NOT_EQUALS
+    #         },
+    #       ],
     #     },
     #     group_by_attribute: "NonEmptyString", # required
     #   })
@@ -3007,10 +3242,10 @@ module Aws::SecurityHub
     end
 
     # Creates a member association in Security Hub between the specified
-    # accounts and the account used to make the request, which is the master
-    # account. If you are integrated with Organizations, then the master
-    # account is the Security Hub administrator account that is designated
-    # by the organization management account.
+    # accounts and the account used to make the request, which is the
+    # administrator account. If you are integrated with Organizations, then
+    # the administrator account is designated by the organization management
+    # account.
     #
     # `CreateMembers` is always used to add accounts that are not
     # organization members.
@@ -3037,17 +3272,17 @@ module Aws::SecurityHub
     # invitation. They automatically become a member account in Security
     # Hub.
     #
-    # A permissions policy is added that permits the master account to view
-    # the findings generated in the member account. When Security Hub is
-    # enabled in a member account, findings are sent to both the member and
-    # master accounts.
+    # A permissions policy is added that permits the administrator account
+    # to view the findings generated in the member account. When Security
+    # Hub is enabled in a member account, the member account findings are
+    # also visible to the administrator account.
     #
-    # To remove the association between the master and member accounts, use
-    # the ` DisassociateFromMasterAccount ` or ` DisassociateMembers `
-    # operation.
+    # To remove the association between the administrator and member
+    # accounts, use the ` DisassociateFromMasterAccount ` or `
+    # DisassociateMembers ` operation.
     #
     # @option params [required, Array<Types::AccountDetails>] :account_details
-    #   The list of accounts to associate with the Security Hub master
+    #   The list of accounts to associate with the Security Hub administrator
     #   account. For each account, the list includes the account ID and
     #   optionally the email address.
     #
@@ -3348,9 +3583,13 @@ module Aws::SecurityHub
       req.send_request(options)
     end
 
-    # Returns information about the available products that you can
-    # subscribe to and integrate with Security Hub in order to consolidate
-    # findings.
+    # Returns information about product integrations in Security Hub.
+    #
+    # You can optionally provide an integration ARN. If you provide an
+    # integration ARN, then the results only include that integration.
+    #
+    # If you do not provide an integration ARN, then the results include all
+    # of the available product integrations.
     #
     # @option params [String] :next_token
     #   The token that is required for pagination. On your first call to the
@@ -3364,6 +3603,9 @@ module Aws::SecurityHub
     # @option params [Integer] :max_results
     #   The maximum number of results to return.
     #
+    # @option params [String] :product_arn
+    #   The ARN of the integration to return.
+    #
     # @return [Types::DescribeProductsResponse] Returns a {Seahorse::Client::Response response} object which responds to the following methods:
     #
     #   * {Types::DescribeProductsResponse#products #products} => Array&lt;Types::Product&gt;
@@ -3376,6 +3618,7 @@ module Aws::SecurityHub
     #   resp = client.describe_products({
     #     next_token: "NextToken",
     #     max_results: 1,
+    #     product_arn: "NonEmptyString",
     #   })
     #
     # @example Response structure
@@ -3388,7 +3631,7 @@ module Aws::SecurityHub
     #   resp.products[0].categories #=> Array
     #   resp.products[0].categories[0] #=> String
     #   resp.products[0].integration_types #=> Array
-    #   resp.products[0].integration_types[0] #=> String, one of "SEND_FINDINGS_TO_SECURITY_HUB", "RECEIVE_FINDINGS_FROM_SECURITY_HUB"
+    #   resp.products[0].integration_types[0] #=> String, one of "SEND_FINDINGS_TO_SECURITY_HUB", "RECEIVE_FINDINGS_FROM_SECURITY_HUB", "UPDATE_FINDINGS_IN_SECURITY_HUB"
     #   resp.products[0].marketplace_url #=> String
     #   resp.products[0].activation_url #=> String
     #   resp.products[0].product_subscription_resource_policy #=> String
@@ -3566,13 +3809,13 @@ module Aws::SecurityHub
     # disable Security Hub in all Regions, you must submit one request per
     # Region where you have enabled Security Hub.
     #
-    # When you disable Security Hub for a master account, it doesn't
-    # disable Security Hub for any associated member accounts.
+    # When you disable Security Hub for an administrator account, it
+    # doesn't disable Security Hub for any associated member accounts.
     #
     # When you disable Security Hub, your existing findings and insights and
     # any Security Hub configuration settings are deleted after 90 days and
     # cannot be recovered. Any standards that were enabled are disabled, and
-    # your master and member account associations are removed.
+    # your administrator and member account associations are removed.
     #
     # If you want to save your existing findings, you must export them
     # before you disable Security Hub.
@@ -3589,12 +3832,32 @@ module Aws::SecurityHub
     end
 
     # Disassociates the current Security Hub member account from the
-    # associated master account.
+    # associated administrator account.
     #
     # This operation is only used by accounts that are not part of an
-    # organization. For organization accounts, only the master account (the
-    # designated Security Hub administrator) can disassociate a member
-    # account.
+    # organization. For organization accounts, only the administrator
+    # account can disassociate a member account.
+    #
+    # @return [Struct] Returns an empty {Seahorse::Client::Response response}.
+    #
+    # @see http://docs.aws.amazon.com/goto/WebAPI/securityhub-2018-10-26/DisassociateFromAdministratorAccount AWS API Documentation
+    #
+    # @overload disassociate_from_administrator_account(params = {})
+    # @param [Hash] params ({})
+    def disassociate_from_administrator_account(params = {}, options = {})
+      req = build_request(:disassociate_from_administrator_account, params)
+      req.send_request(options)
+    end
+
+    # This method is deprecated. Instead, use
+    # `DisassociateFromAdministratorAccount`.
+    #
+    # Disassociates the current Security Hub member account from the
+    # associated administrator account.
+    #
+    # This operation is only used by accounts that are not part of an
+    # organization. For organization accounts, only the administrator
+    # account can disassociate a member account.
     #
     # @return [Struct] Returns an empty {Seahorse::Client::Response response}.
     #
@@ -3607,15 +3870,15 @@ module Aws::SecurityHub
       req.send_request(options)
     end
 
-    # Disassociates the specified member accounts from the associated master
-    # account.
+    # Disassociates the specified member accounts from the associated
+    # administrator account.
     #
-    # Can be used to disassociate both accounts that are in an organization
-    # and accounts that were invited manually.
+    # Can be used to disassociate both accounts that are managed using
+    # Organizations and accounts that were invited manually.
     #
     # @option params [required, Array<String>] :account_ids
-    #   The account IDs of the member accounts to disassociate from the master
-    #   account.
+    #   The account IDs of the member accounts to disassociate from the
+    #   administrator account.
     #
     # @return [Struct] Returns an empty {Seahorse::Client::Response response}.
     #
@@ -3752,6 +4015,32 @@ module Aws::SecurityHub
       req.send_request(options)
     end
 
+    # Provides the details for the Security Hub administrator account for
+    # the current member account.
+    #
+    # Can be used by both member accounts that are managed using
+    # Organizations and accounts that were invited manually.
+    #
+    # @return [Types::GetAdministratorAccountResponse] Returns a {Seahorse::Client::Response response} object which responds to the following methods:
+    #
+    #   * {Types::GetAdministratorAccountResponse#administrator #administrator} => Types::Invitation
+    #
+    # @example Response structure
+    #
+    #   resp.administrator.account_id #=> String
+    #   resp.administrator.invitation_id #=> String
+    #   resp.administrator.invited_at #=> Time
+    #   resp.administrator.member_status #=> String
+    #
+    # @see http://docs.aws.amazon.com/goto/WebAPI/securityhub-2018-10-26/GetAdministratorAccount AWS API Documentation
+    #
+    # @overload get_administrator_account(params = {})
+    # @param [Hash] params ({})
+    def get_administrator_account(params = {}, options = {})
+      req = build_request(:get_administrator_account, params)
+      req.send_request(options)
+    end
+
     # Returns a list of the standards that are currently enabled.
     #
     # @option params [Array<String>] :standards_subscription_arns
@@ -4395,6 +4684,50 @@ module Aws::SecurityHub
     #           value: "NonEmptyString",
     #         },
     #       ],
+    #       finding_provider_fields_confidence: [
+    #         {
+    #           gte: 1.0,
+    #           lte: 1.0,
+    #           eq: 1.0,
+    #         },
+    #       ],
+    #       finding_provider_fields_criticality: [
+    #         {
+    #           gte: 1.0,
+    #           lte: 1.0,
+    #           eq: 1.0,
+    #         },
+    #       ],
+    #       finding_provider_fields_related_findings_id: [
+    #         {
+    #           value: "NonEmptyString",
+    #           comparison: "EQUALS", # accepts EQUALS, PREFIX, NOT_EQUALS, PREFIX_NOT_EQUALS
+    #         },
+    #       ],
+    #       finding_provider_fields_related_findings_product_arn: [
+    #         {
+    #           value: "NonEmptyString",
+    #           comparison: "EQUALS", # accepts EQUALS, PREFIX, NOT_EQUALS, PREFIX_NOT_EQUALS
+    #         },
+    #       ],
+    #       finding_provider_fields_severity_label: [
+    #         {
+    #           value: "NonEmptyString",
+    #           comparison: "EQUALS", # accepts EQUALS, PREFIX, NOT_EQUALS, PREFIX_NOT_EQUALS
+    #         },
+    #       ],
+    #       finding_provider_fields_severity_original: [
+    #         {
+    #           value: "NonEmptyString",
+    #           comparison: "EQUALS", # accepts EQUALS, PREFIX, NOT_EQUALS, PREFIX_NOT_EQUALS
+    #         },
+    #       ],
+    #       finding_provider_fields_types: [
+    #         {
+    #           value: "NonEmptyString",
+    #           comparison: "EQUALS", # accepts EQUALS, PREFIX, NOT_EQUALS, PREFIX_NOT_EQUALS
+    #         },
+    #       ],
     #     },
     #     sort_criteria: [
     #       {
@@ -4499,6 +4832,71 @@ module Aws::SecurityHub
     #   resp.findings[0].resources[0].resource_role #=> String
     #   resp.findings[0].resources[0].tags #=> Hash
     #   resp.findings[0].resources[0].tags["NonEmptyString"] #=> String
+    #   resp.findings[0].resources[0].data_classification.detailed_results_location #=> String
+    #   resp.findings[0].resources[0].data_classification.result.mime_type #=> String
+    #   resp.findings[0].resources[0].data_classification.result.size_classified #=> Integer
+    #   resp.findings[0].resources[0].data_classification.result.additional_occurrences #=> Boolean
+    #   resp.findings[0].resources[0].data_classification.result.status.code #=> String
+    #   resp.findings[0].resources[0].data_classification.result.status.reason #=> String
+    #   resp.findings[0].resources[0].data_classification.result.sensitive_data #=> Array
+    #   resp.findings[0].resources[0].data_classification.result.sensitive_data[0].category #=> String
+    #   resp.findings[0].resources[0].data_classification.result.sensitive_data[0].detections #=> Array
+    #   resp.findings[0].resources[0].data_classification.result.sensitive_data[0].detections[0].count #=> Integer
+    #   resp.findings[0].resources[0].data_classification.result.sensitive_data[0].detections[0].type #=> String
+    #   resp.findings[0].resources[0].data_classification.result.sensitive_data[0].detections[0].occurrences.line_ranges #=> Array
+    #   resp.findings[0].resources[0].data_classification.result.sensitive_data[0].detections[0].occurrences.line_ranges[0].start #=> Integer
+    #   resp.findings[0].resources[0].data_classification.result.sensitive_data[0].detections[0].occurrences.line_ranges[0].end #=> Integer
+    #   resp.findings[0].resources[0].data_classification.result.sensitive_data[0].detections[0].occurrences.line_ranges[0].start_column #=> Integer
+    #   resp.findings[0].resources[0].data_classification.result.sensitive_data[0].detections[0].occurrences.offset_ranges #=> Array
+    #   resp.findings[0].resources[0].data_classification.result.sensitive_data[0].detections[0].occurrences.offset_ranges[0].start #=> Integer
+    #   resp.findings[0].resources[0].data_classification.result.sensitive_data[0].detections[0].occurrences.offset_ranges[0].end #=> Integer
+    #   resp.findings[0].resources[0].data_classification.result.sensitive_data[0].detections[0].occurrences.offset_ranges[0].start_column #=> Integer
+    #   resp.findings[0].resources[0].data_classification.result.sensitive_data[0].detections[0].occurrences.pages #=> Array
+    #   resp.findings[0].resources[0].data_classification.result.sensitive_data[0].detections[0].occurrences.pages[0].page_number #=> Integer
+    #   resp.findings[0].resources[0].data_classification.result.sensitive_data[0].detections[0].occurrences.pages[0].line_range.start #=> Integer
+    #   resp.findings[0].resources[0].data_classification.result.sensitive_data[0].detections[0].occurrences.pages[0].line_range.end #=> Integer
+    #   resp.findings[0].resources[0].data_classification.result.sensitive_data[0].detections[0].occurrences.pages[0].line_range.start_column #=> Integer
+    #   resp.findings[0].resources[0].data_classification.result.sensitive_data[0].detections[0].occurrences.pages[0].offset_range.start #=> Integer
+    #   resp.findings[0].resources[0].data_classification.result.sensitive_data[0].detections[0].occurrences.pages[0].offset_range.end #=> Integer
+    #   resp.findings[0].resources[0].data_classification.result.sensitive_data[0].detections[0].occurrences.pages[0].offset_range.start_column #=> Integer
+    #   resp.findings[0].resources[0].data_classification.result.sensitive_data[0].detections[0].occurrences.records #=> Array
+    #   resp.findings[0].resources[0].data_classification.result.sensitive_data[0].detections[0].occurrences.records[0].json_path #=> String
+    #   resp.findings[0].resources[0].data_classification.result.sensitive_data[0].detections[0].occurrences.records[0].record_index #=> Integer
+    #   resp.findings[0].resources[0].data_classification.result.sensitive_data[0].detections[0].occurrences.cells #=> Array
+    #   resp.findings[0].resources[0].data_classification.result.sensitive_data[0].detections[0].occurrences.cells[0].column #=> Integer
+    #   resp.findings[0].resources[0].data_classification.result.sensitive_data[0].detections[0].occurrences.cells[0].row #=> Integer
+    #   resp.findings[0].resources[0].data_classification.result.sensitive_data[0].detections[0].occurrences.cells[0].column_name #=> String
+    #   resp.findings[0].resources[0].data_classification.result.sensitive_data[0].detections[0].occurrences.cells[0].cell_reference #=> String
+    #   resp.findings[0].resources[0].data_classification.result.sensitive_data[0].total_count #=> Integer
+    #   resp.findings[0].resources[0].data_classification.result.custom_data_identifiers.detections #=> Array
+    #   resp.findings[0].resources[0].data_classification.result.custom_data_identifiers.detections[0].count #=> Integer
+    #   resp.findings[0].resources[0].data_classification.result.custom_data_identifiers.detections[0].arn #=> String
+    #   resp.findings[0].resources[0].data_classification.result.custom_data_identifiers.detections[0].name #=> String
+    #   resp.findings[0].resources[0].data_classification.result.custom_data_identifiers.detections[0].occurrences.line_ranges #=> Array
+    #   resp.findings[0].resources[0].data_classification.result.custom_data_identifiers.detections[0].occurrences.line_ranges[0].start #=> Integer
+    #   resp.findings[0].resources[0].data_classification.result.custom_data_identifiers.detections[0].occurrences.line_ranges[0].end #=> Integer
+    #   resp.findings[0].resources[0].data_classification.result.custom_data_identifiers.detections[0].occurrences.line_ranges[0].start_column #=> Integer
+    #   resp.findings[0].resources[0].data_classification.result.custom_data_identifiers.detections[0].occurrences.offset_ranges #=> Array
+    #   resp.findings[0].resources[0].data_classification.result.custom_data_identifiers.detections[0].occurrences.offset_ranges[0].start #=> Integer
+    #   resp.findings[0].resources[0].data_classification.result.custom_data_identifiers.detections[0].occurrences.offset_ranges[0].end #=> Integer
+    #   resp.findings[0].resources[0].data_classification.result.custom_data_identifiers.detections[0].occurrences.offset_ranges[0].start_column #=> Integer
+    #   resp.findings[0].resources[0].data_classification.result.custom_data_identifiers.detections[0].occurrences.pages #=> Array
+    #   resp.findings[0].resources[0].data_classification.result.custom_data_identifiers.detections[0].occurrences.pages[0].page_number #=> Integer
+    #   resp.findings[0].resources[0].data_classification.result.custom_data_identifiers.detections[0].occurrences.pages[0].line_range.start #=> Integer
+    #   resp.findings[0].resources[0].data_classification.result.custom_data_identifiers.detections[0].occurrences.pages[0].line_range.end #=> Integer
+    #   resp.findings[0].resources[0].data_classification.result.custom_data_identifiers.detections[0].occurrences.pages[0].line_range.start_column #=> Integer
+    #   resp.findings[0].resources[0].data_classification.result.custom_data_identifiers.detections[0].occurrences.pages[0].offset_range.start #=> Integer
+    #   resp.findings[0].resources[0].data_classification.result.custom_data_identifiers.detections[0].occurrences.pages[0].offset_range.end #=> Integer
+    #   resp.findings[0].resources[0].data_classification.result.custom_data_identifiers.detections[0].occurrences.pages[0].offset_range.start_column #=> Integer
+    #   resp.findings[0].resources[0].data_classification.result.custom_data_identifiers.detections[0].occurrences.records #=> Array
+    #   resp.findings[0].resources[0].data_classification.result.custom_data_identifiers.detections[0].occurrences.records[0].json_path #=> String
+    #   resp.findings[0].resources[0].data_classification.result.custom_data_identifiers.detections[0].occurrences.records[0].record_index #=> Integer
+    #   resp.findings[0].resources[0].data_classification.result.custom_data_identifiers.detections[0].occurrences.cells #=> Array
+    #   resp.findings[0].resources[0].data_classification.result.custom_data_identifiers.detections[0].occurrences.cells[0].column #=> Integer
+    #   resp.findings[0].resources[0].data_classification.result.custom_data_identifiers.detections[0].occurrences.cells[0].row #=> Integer
+    #   resp.findings[0].resources[0].data_classification.result.custom_data_identifiers.detections[0].occurrences.cells[0].column_name #=> String
+    #   resp.findings[0].resources[0].data_classification.result.custom_data_identifiers.detections[0].occurrences.cells[0].cell_reference #=> String
+    #   resp.findings[0].resources[0].data_classification.result.custom_data_identifiers.total_count #=> Integer
     #   resp.findings[0].resources[0].details.aws_auto_scaling_auto_scaling_group.launch_configuration_name #=> String
     #   resp.findings[0].resources[0].details.aws_auto_scaling_auto_scaling_group.load_balancer_names #=> Array
     #   resp.findings[0].resources[0].details.aws_auto_scaling_auto_scaling_group.load_balancer_names[0] #=> String
@@ -4682,6 +5080,14 @@ module Aws::SecurityHub
     #   resp.findings[0].resources[0].details.aws_s3_bucket.server_side_encryption_configuration.rules #=> Array
     #   resp.findings[0].resources[0].details.aws_s3_bucket.server_side_encryption_configuration.rules[0].apply_server_side_encryption_by_default.sse_algorithm #=> String
     #   resp.findings[0].resources[0].details.aws_s3_bucket.server_side_encryption_configuration.rules[0].apply_server_side_encryption_by_default.kms_master_key_id #=> String
+    #   resp.findings[0].resources[0].details.aws_s3_bucket.public_access_block_configuration.block_public_acls #=> Boolean
+    #   resp.findings[0].resources[0].details.aws_s3_bucket.public_access_block_configuration.block_public_policy #=> Boolean
+    #   resp.findings[0].resources[0].details.aws_s3_bucket.public_access_block_configuration.ignore_public_acls #=> Boolean
+    #   resp.findings[0].resources[0].details.aws_s3_bucket.public_access_block_configuration.restrict_public_buckets #=> Boolean
+    #   resp.findings[0].resources[0].details.aws_s3_account_public_access_block.block_public_acls #=> Boolean
+    #   resp.findings[0].resources[0].details.aws_s3_account_public_access_block.block_public_policy #=> Boolean
+    #   resp.findings[0].resources[0].details.aws_s3_account_public_access_block.ignore_public_acls #=> Boolean
+    #   resp.findings[0].resources[0].details.aws_s3_account_public_access_block.restrict_public_buckets #=> Boolean
     #   resp.findings[0].resources[0].details.aws_s3_object.last_modified #=> String
     #   resp.findings[0].resources[0].details.aws_s3_object.etag #=> String
     #   resp.findings[0].resources[0].details.aws_s3_object.version_id #=> String
@@ -5528,6 +5934,15 @@ module Aws::SecurityHub
     #   resp.findings[0].action.port_probe_action.port_probe_details[0].remote_ip_details.geo_location.lon #=> Float
     #   resp.findings[0].action.port_probe_action.port_probe_details[0].remote_ip_details.geo_location.lat #=> Float
     #   resp.findings[0].action.port_probe_action.blocked #=> Boolean
+    #   resp.findings[0].finding_provider_fields.confidence #=> Integer
+    #   resp.findings[0].finding_provider_fields.criticality #=> Integer
+    #   resp.findings[0].finding_provider_fields.related_findings #=> Array
+    #   resp.findings[0].finding_provider_fields.related_findings[0].product_arn #=> String
+    #   resp.findings[0].finding_provider_fields.related_findings[0].id #=> String
+    #   resp.findings[0].finding_provider_fields.severity.label #=> String, one of "INFORMATIONAL", "LOW", "MEDIUM", "HIGH", "CRITICAL"
+    #   resp.findings[0].finding_provider_fields.severity.original #=> String
+    #   resp.findings[0].finding_provider_fields.types #=> Array
+    #   resp.findings[0].finding_provider_fields.types[0] #=> String
     #   resp.next_token #=> String
     #
     # @see http://docs.aws.amazon.com/goto/WebAPI/securityhub-2018-10-26/GetFindings AWS API Documentation
@@ -5889,6 +6304,29 @@ module Aws::SecurityHub
     #   resp.insights[0].filters.note_updated_by[0].comparison #=> String, one of "EQUALS", "PREFIX", "NOT_EQUALS", "PREFIX_NOT_EQUALS"
     #   resp.insights[0].filters.keyword #=> Array
     #   resp.insights[0].filters.keyword[0].value #=> String
+    #   resp.insights[0].filters.finding_provider_fields_confidence #=> Array
+    #   resp.insights[0].filters.finding_provider_fields_confidence[0].gte #=> Float
+    #   resp.insights[0].filters.finding_provider_fields_confidence[0].lte #=> Float
+    #   resp.insights[0].filters.finding_provider_fields_confidence[0].eq #=> Float
+    #   resp.insights[0].filters.finding_provider_fields_criticality #=> Array
+    #   resp.insights[0].filters.finding_provider_fields_criticality[0].gte #=> Float
+    #   resp.insights[0].filters.finding_provider_fields_criticality[0].lte #=> Float
+    #   resp.insights[0].filters.finding_provider_fields_criticality[0].eq #=> Float
+    #   resp.insights[0].filters.finding_provider_fields_related_findings_id #=> Array
+    #   resp.insights[0].filters.finding_provider_fields_related_findings_id[0].value #=> String
+    #   resp.insights[0].filters.finding_provider_fields_related_findings_id[0].comparison #=> String, one of "EQUALS", "PREFIX", "NOT_EQUALS", "PREFIX_NOT_EQUALS"
+    #   resp.insights[0].filters.finding_provider_fields_related_findings_product_arn #=> Array
+    #   resp.insights[0].filters.finding_provider_fields_related_findings_product_arn[0].value #=> String
+    #   resp.insights[0].filters.finding_provider_fields_related_findings_product_arn[0].comparison #=> String, one of "EQUALS", "PREFIX", "NOT_EQUALS", "PREFIX_NOT_EQUALS"
+    #   resp.insights[0].filters.finding_provider_fields_severity_label #=> Array
+    #   resp.insights[0].filters.finding_provider_fields_severity_label[0].value #=> String
+    #   resp.insights[0].filters.finding_provider_fields_severity_label[0].comparison #=> String, one of "EQUALS", "PREFIX", "NOT_EQUALS", "PREFIX_NOT_EQUALS"
+    #   resp.insights[0].filters.finding_provider_fields_severity_original #=> Array
+    #   resp.insights[0].filters.finding_provider_fields_severity_original[0].value #=> String
+    #   resp.insights[0].filters.finding_provider_fields_severity_original[0].comparison #=> String, one of "EQUALS", "PREFIX", "NOT_EQUALS", "PREFIX_NOT_EQUALS"
+    #   resp.insights[0].filters.finding_provider_fields_types #=> Array
+    #   resp.insights[0].filters.finding_provider_fields_types[0].value #=> String
+    #   resp.insights[0].filters.finding_provider_fields_types[0].comparison #=> String, one of "EQUALS", "PREFIX", "NOT_EQUALS", "PREFIX_NOT_EQUALS"
     #   resp.insights[0].group_by_attribute #=> String
     #   resp.next_token #=> String
     #
@@ -5922,11 +6360,13 @@ module Aws::SecurityHub
       req.send_request(options)
     end
 
-    # Provides the details for the Security Hub master account for the
-    # current member account.
+    # This method is deprecated. Instead, use `GetAdministratorAccount`.
+    #
+    # Provides the details for the Security Hub administrator account for
+    # the current member account.
     #
-    # Can be used by both member accounts that are in an organization and
-    # accounts that were invited manually.
+    # Can be used by both member accounts that are managed using
+    # Organizations and accounts that were invited manually.
     #
     # @return [Types::GetMasterAccountResponse] Returns a {Seahorse::Client::Response response} object which responds to the following methods:
     #
@@ -5951,12 +6391,12 @@ module Aws::SecurityHub
     # Returns the details for the Security Hub member accounts for the
     # specified account IDs.
     #
-    # A master account can be either a delegated Security Hub administrator
-    # account for an organization or a master account that enabled Security
-    # Hub manually.
+    # An administrator account can be either the delegated Security Hub
+    # administrator account for an organization or an administrator account
+    # that enabled Security Hub manually.
     #
-    # The results include both member accounts that are in an organization
-    # and accounts that were invited manually.
+    # The results include both member accounts that are managed using
+    # Organizations and accounts that were invited manually.
     #
     # @option params [required, Array<String>] :account_ids
     #   The list of account IDs for the Security Hub member accounts to return
@@ -5979,6 +6419,7 @@ module Aws::SecurityHub
     #   resp.members[0].account_id #=> String
     #   resp.members[0].email #=> String
     #   resp.members[0].master_id #=> String
+    #   resp.members[0].administrator_id #=> String
     #   resp.members[0].member_status #=> String
     #   resp.members[0].invited_at #=> Time
     #   resp.members[0].updated_at #=> Time
@@ -5996,7 +6437,7 @@ module Aws::SecurityHub
     end
 
     # Invites other AWS accounts to become member accounts for the Security
-    # Hub master account that the invitation is sent from.
+    # Hub administrator account that the invitation is sent from.
     #
     # This operation is only used to invite accounts that do not belong to
     # an organization. Organization accounts do not receive invitations.
@@ -6006,8 +6447,8 @@ module Aws::SecurityHub
     # Hub.
     #
     # When the account owner enables Security Hub and accepts the invitation
-    # to become a member account, the master account can view the findings
-    # generated from the member account.
+    # to become a member account, the administrator account can view the
+    # findings generated from the member account.
     #
     # @option params [required, Array<String>] :account_ids
     #   The list of account IDs of the AWS accounts to invite to Security Hub
@@ -6085,8 +6526,9 @@ module Aws::SecurityHub
     # Lists all Security Hub membership invitations that were sent to the
     # current AWS account.
     #
-    # This operation is only used by accounts that do not belong to an
-    # organization. Organization accounts do not receive invitations.
+    # This operation is only used by accounts that are managed by
+    # invitation. Accounts that are managed using the integration with AWS
+    # Organizations do not receive invitations.
     #
     # @option params [Integer] :max_results
     #   The maximum number of items to return in the response.
@@ -6133,19 +6575,19 @@ module Aws::SecurityHub
     end
 
     # Lists details about all member accounts for the current Security Hub
-    # master account.
+    # administrator account.
     #
     # The results include both member accounts that belong to an
     # organization and member accounts that were invited manually.
     #
     # @option params [Boolean] :only_associated
     #   Specifies which member accounts to include in the response based on
-    #   their relationship status with the master account. The default value
-    #   is `TRUE`.
+    #   their relationship status with the administrator account. The default
+    #   value is `TRUE`.
     #
     #   If `OnlyAssociated` is set to `TRUE`, the response includes member
-    #   accounts whose relationship status with the master is set to
-    #   `ENABLED`.
+    #   accounts whose relationship status with the administrator account is
+    #   set to `ENABLED`.
     #
     #   If `OnlyAssociated` is set to `FALSE`, the response includes all
     #   existing member accounts.
@@ -6182,6 +6624,7 @@ module Aws::SecurityHub
     #   resp.members[0].account_id #=> String
     #   resp.members[0].email #=> String
     #   resp.members[0].master_id #=> String
+    #   resp.members[0].administrator_id #=> String
     #   resp.members[0].member_status #=> String
     #   resp.members[0].invited_at #=> Time
     #   resp.members[0].updated_at #=> Time
@@ -6929,6 +7372,50 @@ module Aws::SecurityHub
     #           value: "NonEmptyString",
     #         },
     #       ],
+    #       finding_provider_fields_confidence: [
+    #         {
+    #           gte: 1.0,
+    #           lte: 1.0,
+    #           eq: 1.0,
+    #         },
+    #       ],
+    #       finding_provider_fields_criticality: [
+    #         {
+    #           gte: 1.0,
+    #           lte: 1.0,
+    #           eq: 1.0,
+    #         },
+    #       ],
+    #       finding_provider_fields_related_findings_id: [
+    #         {
+    #           value: "NonEmptyString",
+    #           comparison: "EQUALS", # accepts EQUALS, PREFIX, NOT_EQUALS, PREFIX_NOT_EQUALS
+    #         },
+    #       ],
+    #       finding_provider_fields_related_findings_product_arn: [
+    #         {
+    #           value: "NonEmptyString",
+    #           comparison: "EQUALS", # accepts EQUALS, PREFIX, NOT_EQUALS, PREFIX_NOT_EQUALS
+    #         },
+    #       ],
+    #       finding_provider_fields_severity_label: [
+    #         {
+    #           value: "NonEmptyString",
+    #           comparison: "EQUALS", # accepts EQUALS, PREFIX, NOT_EQUALS, PREFIX_NOT_EQUALS
+    #         },
+    #       ],
+    #       finding_provider_fields_severity_original: [
+    #         {
+    #           value: "NonEmptyString",
+    #           comparison: "EQUALS", # accepts EQUALS, PREFIX, NOT_EQUALS, PREFIX_NOT_EQUALS
+    #         },
+    #       ],
+    #       finding_provider_fields_types: [
+    #         {
+    #           value: "NonEmptyString",
+    #           comparison: "EQUALS", # accepts EQUALS, PREFIX, NOT_EQUALS, PREFIX_NOT_EQUALS
+    #         },
+    #       ],
     #     },
     #     note: {
     #       text: "NonEmptyString", # required
@@ -7522,6 +8009,50 @@ module Aws::SecurityHub
     #           value: "NonEmptyString",
     #         },
     #       ],
+    #       finding_provider_fields_confidence: [
+    #         {
+    #           gte: 1.0,
+    #           lte: 1.0,
+    #           eq: 1.0,
+    #         },
+    #       ],
+    #       finding_provider_fields_criticality: [
+    #         {
+    #           gte: 1.0,
+    #           lte: 1.0,
+    #           eq: 1.0,
+    #         },
+    #       ],
+    #       finding_provider_fields_related_findings_id: [
+    #         {
+    #           value: "NonEmptyString",
+    #           comparison: "EQUALS", # accepts EQUALS, PREFIX, NOT_EQUALS, PREFIX_NOT_EQUALS
+    #         },
+    #       ],
+    #       finding_provider_fields_related_findings_product_arn: [
+    #         {
+    #           value: "NonEmptyString",
+    #           comparison: "EQUALS", # accepts EQUALS, PREFIX, NOT_EQUALS, PREFIX_NOT_EQUALS
+    #         },
+    #       ],
+    #       finding_provider_fields_severity_label: [
+    #         {
+    #           value: "NonEmptyString",
+    #           comparison: "EQUALS", # accepts EQUALS, PREFIX, NOT_EQUALS, PREFIX_NOT_EQUALS
+    #         },
+    #       ],
+    #       finding_provider_fields_severity_original: [
+    #         {
+    #           value: "NonEmptyString",
+    #           comparison: "EQUALS", # accepts EQUALS, PREFIX, NOT_EQUALS, PREFIX_NOT_EQUALS
+    #         },
+    #       ],
+    #       finding_provider_fields_types: [
+    #         {
+    #           value: "NonEmptyString",
+    #           comparison: "EQUALS", # accepts EQUALS, PREFIX, NOT_EQUALS, PREFIX_NOT_EQUALS
+    #         },
+    #       ],
     #     },
     #     group_by_attribute: "NonEmptyString",
     #   })
@@ -7637,7 +8168,7 @@ module Aws::SecurityHub
         params: params,
         config: config)
       context[:gem_name] = 'aws-sdk-securityhub'
-      context[:gem_version] = '1.38.0'
+      context[:gem_version] = '1.43.0'
       Seahorse::Client::Request.new(handlers, context)
     end