aws-sdk-securityhub 1.41.0 → 1.47.0

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.
checksums.yaml CHANGED
@@ -1,7 +1,7 @@
1
1
  ---
2
2
  SHA256:
3
- metadata.gz: aec2426cb06259f49e69624449e92158cade7445d1ff408cabc75d523707a6c0
4
- data.tar.gz: 1592e2f4ac145f7f89bcf78f9df8e8c5d908a8393b9d952fb8462ea711319ad2
3
+ metadata.gz: a111784470c765d903db792128f7fe5fbb20869a3b5d50a1c5e07c218ca0214c
4
+ data.tar.gz: 99f52f16647f82534f880a8d34cd090600dd3c7db438b952370e7ac61bd7cb45
5
5
  SHA512:
6
- metadata.gz: dc14be97fbb32b69850b289522a054c17a3f1170930412538e7f862f8797a1b7a7ecd2733955ec5e8a910be5b8371083df6f328a26e064de0c22b4871e6c0402
7
- data.tar.gz: e98f60c208184afc452a03bda45bc80f22ed3b03dd6e27ea8114ad3aac0b70b6b868f6bc6f168484be7de038878ea8b370de3fd1243afa0f98bd634a9aa62f7c
6
+ metadata.gz: b7354b0b1dd8c6025f4964023b13bb671be4356d6f39f6587958a98eb9af79cc34b547f16b05d69e8c7629e59962323a70c7c54c2e559da6add3fa5f25873715
7
+ data.tar.gz: 9abd9e674578a65769f7d77f45c5c9ddd97ffd394424449fe2cee656a0b92e8c4b6c9d50451f54cb9f555aec08e0fc3d4436b2ec74d5c48cecf677da7c498a7b
data/CHANGELOG.md CHANGED
@@ -1,6 +1,36 @@
1
1
  Unreleased Changes
2
2
  ------------------
3
3
 
4
+ 1.47.0 (2021-06-24)
5
+ ------------------
6
+
7
+ * Feature - Added new resource details for ECS clusters and ECS task definitions. Added additional information for S3 buckets, Elasticsearch domains, and API Gateway V2 stages.
8
+
9
+ 1.46.0 (2021-05-14)
10
+ ------------------
11
+
12
+ * Feature - Updated descriptions to add notes on array lengths.
13
+
14
+ 1.45.0 (2021-05-03)
15
+ ------------------
16
+
17
+ * Feature - Updated ASFF to add the following new resource details objects: AwsEc2NetworkAcl, AwsEc2Subnet, and AwsElasticBeanstalkEnvironment.
18
+
19
+ 1.44.0 (2021-05-03)
20
+ ------------------
21
+
22
+ * Feature - Updated ASFF to add the following new resource details objects: AwsEc2NetworkAcl, AwsEc2Subnet, and AwsElasticBeanstalkEnvironment.
23
+
24
+ 1.43.0 (2021-04-22)
25
+ ------------------
26
+
27
+ * Feature - Replaced the term "master" with "administrator". Added new actions to replace AcceptInvitation, GetMasterAccount, and DisassociateFromMasterAccount. In Member, replaced MasterId with AdministratorId.
28
+
29
+ 1.42.0 (2021-03-18)
30
+ ------------------
31
+
32
+ * Feature - New object for separate provider and customer values. New objects track S3 Public Access Block configuration and identify sensitive data. BatchImportFinding requests are limited to 100 findings.
33
+
4
34
  1.41.0 (2021-03-10)
5
35
  ------------------
6
36
 
data/VERSION CHANGED
@@ -1 +1 @@
1
- 1.41.0
1
+ 1.47.0
@@ -28,7 +28,7 @@ require_relative 'aws-sdk-securityhub/customizations'
28
28
  # structure.
29
29
  #
30
30
  # security_hub = Aws::SecurityHub::Client.new
31
- # resp = security_hub.accept_invitation(params)
31
+ # resp = security_hub.accept_administrator_invitation(params)
32
32
  #
33
33
  # See {Client} for more information.
34
34
  #
@@ -48,6 +48,6 @@ require_relative 'aws-sdk-securityhub/customizations'
48
48
  # @!group service
49
49
  module Aws::SecurityHub
50
50
 
51
- GEM_VERSION = '1.41.0'
51
+ GEM_VERSION = '1.47.0'
52
52
 
53
53
  end
@@ -328,21 +328,69 @@ module Aws::SecurityHub
328
328
  # @!group API Operations
329
329
 
330
330
  # Accepts the invitation to be a member account and be monitored by the
331
- # Security Hub master account that the invitation was sent from.
331
+ # Security Hub administrator account that the invitation was sent from.
332
332
  #
333
333
  # This operation is only used by member accounts that are not added
334
334
  # through Organizations.
335
335
  #
336
336
  # When the member account accepts the invitation, permission is granted
337
- # to the master account to view findings generated in the member
337
+ # to the administrator account to view findings generated in the member
338
+ # account.
339
+ #
340
+ # @option params [required, String] :administrator_id
341
+ # The account ID of the Security Hub administrator account that sent the
342
+ # invitation.
343
+ #
344
+ # @option params [required, String] :invitation_id
345
+ # The identifier of the invitation sent from the Security Hub
346
+ # administrator account.
347
+ #
348
+ # @return [Struct] Returns an empty {Seahorse::Client::Response response}.
349
+ #
350
+ # @example Request syntax with placeholder values
351
+ #
352
+ # resp = client.accept_administrator_invitation({
353
+ # administrator_id: "NonEmptyString", # required
354
+ # invitation_id: "NonEmptyString", # required
355
+ # })
356
+ #
357
+ # @see http://docs.aws.amazon.com/goto/WebAPI/securityhub-2018-10-26/AcceptAdministratorInvitation AWS API Documentation
358
+ #
359
+ # @overload accept_administrator_invitation(params = {})
360
+ # @param [Hash] params ({})
361
+ def accept_administrator_invitation(params = {}, options = {})
362
+ req = build_request(:accept_administrator_invitation, params)
363
+ req.send_request(options)
364
+ end
365
+
366
+ # This method is deprecated. Instead, use
367
+ # `AcceptAdministratorInvitation`.
368
+ #
369
+ # The Security Hub console continues to use `AcceptInvitation`. It will
370
+ # eventually change to use `AcceptAdministratorInvitation`. Any IAM
371
+ # policies that specifically control access to this function must
372
+ # continue to use `AcceptInvitation`. You should also add
373
+ # `AcceptAdministratorInvitation` to your policies to ensure that the
374
+ # correct permissions are in place after the console begins to use
375
+ # `AcceptAdministratorInvitation`.
376
+ #
377
+ # Accepts the invitation to be a member account and be monitored by the
378
+ # Security Hub administrator account that the invitation was sent from.
379
+ #
380
+ # This operation is only used by member accounts that are not added
381
+ # through Organizations.
382
+ #
383
+ # When the member account accepts the invitation, permission is granted
384
+ # to the administrator account to view findings generated in the member
338
385
  # account.
339
386
  #
340
387
  # @option params [required, String] :master_id
341
- # The account ID of the Security Hub master account that sent the
388
+ # The account ID of the Security Hub administrator account that sent the
342
389
  # invitation.
343
390
  #
344
391
  # @option params [required, String] :invitation_id
345
- # The ID of the invitation sent from the Security Hub master account.
392
+ # The identifier of the invitation sent from the Security Hub
393
+ # administrator account.
346
394
  #
347
395
  # @return [Struct] Returns an empty {Seahorse::Client::Response response}.
348
396
  #
@@ -452,9 +500,9 @@ module Aws::SecurityHub
452
500
  req.send_request(options)
453
501
  end
454
502
 
455
- # Imports security findings generated from an integrated third-party
456
- # product into Security Hub. This action is requested by the integrated
457
- # product to import its findings into Security Hub.
503
+ # Imports security findings generated from an integrated product into
504
+ # Security Hub. This action is requested by the integrated product to
505
+ # import its findings into Security Hub.
458
506
  #
459
507
  # The maximum allowed size for a finding is 240 Kb. An error is returned
460
508
  # for any finding larger than 240 Kb.
@@ -471,11 +519,8 @@ module Aws::SecurityHub
471
519
  #
472
520
  # * `Workflow`
473
521
  #
474
- # `BatchImportFindings` can be used to update the following finding
475
- # fields and objects only if they have not been updated using
476
- # `BatchUpdateFindings`. After they are updated using
477
- # `BatchUpdateFindings`, these fields cannot be updated using
478
- # `BatchImportFindings`.
522
+ # Finding providers also should not use `BatchImportFindings` to update
523
+ # the following attributes.
479
524
  #
480
525
  # * `Confidence`
481
526
  #
@@ -487,6 +532,9 @@ module Aws::SecurityHub
487
532
  #
488
533
  # * `Types`
489
534
  #
535
+ # Instead, finding providers use `FindingProviderFields` to provide
536
+ # values for these attributes.
537
+ #
490
538
  # @option params [required, Array<Types::AwsSecurityFinding>] :findings
491
539
  # A list of findings to import. To successfully import a finding, it
492
540
  # must follow the [AWS Security Finding Format][1]. Maximum of 100
@@ -512,12 +560,12 @@ module Aws::SecurityHub
512
560
  # product_arn: "NonEmptyString", # required
513
561
  # generator_id: "NonEmptyString", # required
514
562
  # aws_account_id: "NonEmptyString", # required
515
- # types: ["NonEmptyString"], # required
563
+ # types: ["NonEmptyString"],
516
564
  # first_observed_at: "NonEmptyString",
517
565
  # last_observed_at: "NonEmptyString",
518
566
  # created_at: "NonEmptyString", # required
519
567
  # updated_at: "NonEmptyString", # required
520
- # severity: { # required
568
+ # severity: {
521
569
  # product: 1.0,
522
570
  # label: "INFORMATIONAL", # accepts INFORMATIONAL, LOW, MEDIUM, HIGH, CRITICAL
523
571
  # normalized: 1,
@@ -641,6 +689,130 @@ module Aws::SecurityHub
641
689
  # tags: {
642
690
  # "NonEmptyString" => "NonEmptyString",
643
691
  # },
692
+ # data_classification: {
693
+ # detailed_results_location: "NonEmptyString",
694
+ # result: {
695
+ # mime_type: "NonEmptyString",
696
+ # size_classified: 1,
697
+ # additional_occurrences: false,
698
+ # status: {
699
+ # code: "NonEmptyString",
700
+ # reason: "NonEmptyString",
701
+ # },
702
+ # sensitive_data: [
703
+ # {
704
+ # category: "NonEmptyString",
705
+ # detections: [
706
+ # {
707
+ # count: 1,
708
+ # type: "NonEmptyString",
709
+ # occurrences: {
710
+ # line_ranges: [
711
+ # {
712
+ # start: 1,
713
+ # end: 1,
714
+ # start_column: 1,
715
+ # },
716
+ # ],
717
+ # offset_ranges: [
718
+ # {
719
+ # start: 1,
720
+ # end: 1,
721
+ # start_column: 1,
722
+ # },
723
+ # ],
724
+ # pages: [
725
+ # {
726
+ # page_number: 1,
727
+ # line_range: {
728
+ # start: 1,
729
+ # end: 1,
730
+ # start_column: 1,
731
+ # },
732
+ # offset_range: {
733
+ # start: 1,
734
+ # end: 1,
735
+ # start_column: 1,
736
+ # },
737
+ # },
738
+ # ],
739
+ # records: [
740
+ # {
741
+ # json_path: "NonEmptyString",
742
+ # record_index: 1,
743
+ # },
744
+ # ],
745
+ # cells: [
746
+ # {
747
+ # column: 1,
748
+ # row: 1,
749
+ # column_name: "NonEmptyString",
750
+ # cell_reference: "NonEmptyString",
751
+ # },
752
+ # ],
753
+ # },
754
+ # },
755
+ # ],
756
+ # total_count: 1,
757
+ # },
758
+ # ],
759
+ # custom_data_identifiers: {
760
+ # detections: [
761
+ # {
762
+ # count: 1,
763
+ # arn: "NonEmptyString",
764
+ # name: "NonEmptyString",
765
+ # occurrences: {
766
+ # line_ranges: [
767
+ # {
768
+ # start: 1,
769
+ # end: 1,
770
+ # start_column: 1,
771
+ # },
772
+ # ],
773
+ # offset_ranges: [
774
+ # {
775
+ # start: 1,
776
+ # end: 1,
777
+ # start_column: 1,
778
+ # },
779
+ # ],
780
+ # pages: [
781
+ # {
782
+ # page_number: 1,
783
+ # line_range: {
784
+ # start: 1,
785
+ # end: 1,
786
+ # start_column: 1,
787
+ # },
788
+ # offset_range: {
789
+ # start: 1,
790
+ # end: 1,
791
+ # start_column: 1,
792
+ # },
793
+ # },
794
+ # ],
795
+ # records: [
796
+ # {
797
+ # json_path: "NonEmptyString",
798
+ # record_index: 1,
799
+ # },
800
+ # ],
801
+ # cells: [
802
+ # {
803
+ # column: 1,
804
+ # row: 1,
805
+ # column_name: "NonEmptyString",
806
+ # cell_reference: "NonEmptyString",
807
+ # },
808
+ # ],
809
+ # },
810
+ # },
811
+ # ],
812
+ # total_count: 1,
813
+ # },
814
+ # },
815
+ # },
644
816
  # details: {
645
817
  # aws_auto_scaling_auto_scaling_group: {
646
818
  # launch_configuration_name: "NonEmptyString",
@@ -732,6 +904,11 @@ module Aws::SecurityHub
732
904
  # vpc_id: "NonEmptyString",
733
905
  # subnet_id: "NonEmptyString",
734
906
  # launched_at: "NonEmptyString",
907
+ # network_interfaces: [
908
+ # {
909
+ # network_interface_id: "NonEmptyString",
910
+ # },
911
+ # ],
735
912
  # },
736
913
  # aws_ec2_network_interface: {
737
914
  # attachment: {
@@ -881,6 +1058,58 @@ module Aws::SecurityHub
881
1058
  # network_interface_owner_id: "NonEmptyString",
882
1059
  # private_ip_address: "NonEmptyString",
883
1060
  # },
1061
+ # aws_ec2_subnet: {
1062
+ # assign_ipv_6_address_on_creation: false,
1063
+ # availability_zone: "NonEmptyString",
1064
+ # availability_zone_id: "NonEmptyString",
1065
+ # available_ip_address_count: 1,
1066
+ # cidr_block: "NonEmptyString",
1067
+ # default_for_az: false,
1068
+ # map_public_ip_on_launch: false,
1069
+ # owner_id: "NonEmptyString",
1070
+ # state: "NonEmptyString",
1071
+ # subnet_arn: "NonEmptyString",
1072
+ # subnet_id: "NonEmptyString",
1073
+ # vpc_id: "NonEmptyString",
1074
+ # ipv_6_cidr_block_association_set: [
1075
+ # {
1076
+ # association_id: "NonEmptyString",
1077
+ # ipv_6_cidr_block: "NonEmptyString",
1078
+ # cidr_block_state: "NonEmptyString",
1079
+ # },
1080
+ # ],
1081
+ # },
1082
+ # aws_ec2_network_acl: {
1083
+ # is_default: false,
1084
+ # network_acl_id: "NonEmptyString",
1085
+ # owner_id: "NonEmptyString",
1086
+ # vpc_id: "NonEmptyString",
1087
+ # associations: [
1088
+ # {
1089
+ # network_acl_association_id: "NonEmptyString",
1090
+ # network_acl_id: "NonEmptyString",
1091
+ # subnet_id: "NonEmptyString",
1092
+ # },
1093
+ # ],
1094
+ # entries: [
1095
+ # {
1096
+ # cidr_block: "NonEmptyString",
1097
+ # egress: false,
1098
+ # icmp_type_code: {
1099
+ # code: 1,
1100
+ # type: 1,
1101
+ # },
1102
+ # ipv_6_cidr_block: "NonEmptyString",
1103
+ # port_range: {
1104
+ # from: 1,
1105
+ # to: 1,
1106
+ # },
1107
+ # protocol: "NonEmptyString",
1108
+ # rule_action: "NonEmptyString",
1109
+ # rule_number: 1,
1110
+ # },
1111
+ # ],
1112
+ # },
884
1113
  # aws_elbv_2_load_balancer: {
885
1114
  # availability_zones: [
886
1115
  # {
@@ -901,6 +1130,40 @@ module Aws::SecurityHub
901
1130
  # type: "NonEmptyString",
902
1131
  # vpc_id: "NonEmptyString",
903
1132
  # },
1133
+ # aws_elastic_beanstalk_environment: {
1134
+ # application_name: "NonEmptyString",
1135
+ # cname: "NonEmptyString",
1136
+ # date_created: "NonEmptyString",
1137
+ # date_updated: "NonEmptyString",
1138
+ # description: "NonEmptyString",
1139
+ # endpoint_url: "NonEmptyString",
1140
+ # environment_arn: "NonEmptyString",
1141
+ # environment_id: "NonEmptyString",
1142
+ # environment_links: [
1143
+ # {
1144
+ # environment_name: "NonEmptyString",
1145
+ # link_name: "NonEmptyString",
1146
+ # },
1147
+ # ],
1148
+ # environment_name: "NonEmptyString",
1149
+ # option_settings: [
1150
+ # {
1151
+ # namespace: "NonEmptyString",
1152
+ # option_name: "NonEmptyString",
1153
+ # resource_name: "NonEmptyString",
1154
+ # value: "NonEmptyString",
1155
+ # },
1156
+ # ],
1157
+ # platform_arn: "NonEmptyString",
1158
+ # solution_stack_name: "NonEmptyString",
1159
+ # status: "NonEmptyString",
1160
+ # tier: {
1161
+ # name: "NonEmptyString",
1162
+ # type: "NonEmptyString",
1163
+ # version: "NonEmptyString",
1164
+ # },
1165
+ # version_label: "NonEmptyString",
1166
+ # },
904
1167
  # aws_elasticsearch_domain: {
905
1168
  # access_policies: "NonEmptyString",
906
1169
  # domain_endpoint_options: {
@@ -918,9 +1181,28 @@ module Aws::SecurityHub
918
1181
  # enabled: false,
919
1182
  # kms_key_id: "NonEmptyString",
920
1183
  # },
1184
+ # log_publishing_options: {
1185
+ # index_slow_logs: {
1186
+ # cloud_watch_logs_log_group_arn: "NonEmptyString",
1187
+ # enabled: false,
1188
+ # },
1189
+ # search_slow_logs: {
1190
+ # cloud_watch_logs_log_group_arn: "NonEmptyString",
1191
+ # enabled: false,
1192
+ # },
1193
+ # },
921
1194
  # node_to_node_encryption_options: {
922
1195
  # enabled: false,
923
1196
  # },
1197
+ # service_software_options: {
1198
+ # automated_update_date: "NonEmptyString",
1199
+ # cancellable: false,
1200
+ # current_version: "NonEmptyString",
1201
+ # description: "NonEmptyString",
1202
+ # new_version: "NonEmptyString",
1203
+ # update_available: false,
1204
+ # update_status: "NonEmptyString",
1205
+ # },
924
1206
  # vpc_options: {
925
1207
  # availability_zones: ["NonEmptyString"],
926
1208
  # security_group_ids: ["NonEmptyString"],
@@ -942,6 +1224,67 @@ module Aws::SecurityHub
942
1224
  # },
943
1225
  # ],
944
1226
  # },
1227
+ # bucket_lifecycle_configuration: {
1228
+ # rules: [
1229
+ # {
1230
+ # abort_incomplete_multipart_upload: {
1231
+ # days_after_initiation: 1,
1232
+ # },
1233
+ # expiration_date: "NonEmptyString",
1234
+ # expiration_in_days: 1,
1235
+ # expired_object_delete_marker: false,
1236
+ # filter: {
1237
+ # predicate: {
1238
+ # operands: [
1239
+ # {
1240
+ # prefix: "NonEmptyString",
1241
+ # tag: {
1242
+ # key: "NonEmptyString",
1243
+ # value: "NonEmptyString",
1244
+ # },
1245
+ # type: "NonEmptyString",
1246
+ # },
1247
+ # ],
1248
+ # prefix: "NonEmptyString",
1249
+ # tag: {
1250
+ # key: "NonEmptyString",
1251
+ # value: "NonEmptyString",
1252
+ # },
1253
+ # type: "NonEmptyString",
1254
+ # },
1255
+ # },
1256
+ # id: "NonEmptyString",
1257
+ # noncurrent_version_expiration_in_days: 1,
1258
+ # noncurrent_version_transitions: [
1259
+ # {
1260
+ # days: 1,
1261
+ # storage_class: "NonEmptyString",
1262
+ # },
1263
+ # ],
1264
+ # prefix: "NonEmptyString",
1265
+ # status: "NonEmptyString",
1266
+ # transitions: [
1267
+ # {
1268
+ # date: "NonEmptyString",
1269
+ # days: 1,
1270
+ # storage_class: "NonEmptyString",
1271
+ # },
1272
+ # ],
1273
+ # },
1274
+ # ],
1275
+ # },
1276
+ # public_access_block_configuration: {
1277
+ # block_public_acls: false,
1278
+ # block_public_policy: false,
1279
+ # ignore_public_acls: false,
1280
+ # restrict_public_buckets: false,
1281
+ # },
1282
+ # },
1283
+ # aws_s3_account_public_access_block: {
1284
+ # block_public_acls: false,
1285
+ # block_public_policy: false,
1286
+ # ignore_public_acls: false,
1287
+ # restrict_public_buckets: false,
945
1288
  # },
946
1289
  # aws_s3_object: {
947
1290
  # last_modified: "NonEmptyString",
@@ -1028,6 +1371,7 @@ module Aws::SecurityHub
1028
1371
  # update_date: "NonEmptyString",
1029
1372
  # },
1030
1373
  # aws_api_gateway_v2_stage: {
1374
+ # client_certificate_id: "NonEmptyString",
1031
1375
  # created_date: "NonEmptyString",
1032
1376
  # description: "NonEmptyString",
1033
1377
  # default_route_settings: {
@@ -1982,6 +2326,247 @@ module Aws::SecurityHub
1982
2326
  # ],
1983
2327
  # iam_database_authentication_enabled: false,
1984
2328
  # },
2329
+ # aws_ecs_cluster: {
2330
+ # capacity_providers: ["NonEmptyString"],
2331
+ # cluster_settings: [
2332
+ # {
2333
+ # name: "NonEmptyString",
2334
+ # value: "NonEmptyString",
2335
+ # },
2336
+ # ],
2337
+ # configuration: {
2338
+ # execute_command_configuration: {
2339
+ # kms_key_id: "NonEmptyString",
2340
+ # log_configuration: {
2341
+ # cloud_watch_encryption_enabled: false,
2342
+ # cloud_watch_log_group_name: "NonEmptyString",
2343
+ # s3_bucket_name: "NonEmptyString",
2344
+ # s3_encryption_enabled: false,
2345
+ # s3_key_prefix: "NonEmptyString",
2346
+ # },
2347
+ # logging: "NonEmptyString",
2348
+ # },
2349
+ # },
2350
+ # default_capacity_provider_strategy: [
2351
+ # {
2352
+ # base: 1,
2353
+ # capacity_provider: "NonEmptyString",
2354
+ # weight: 1,
2355
+ # },
2356
+ # ],
2357
+ # },
2358
+ # aws_ecs_task_definition: {
2359
+ # container_definitions: [
2360
+ # {
2361
+ # command: ["NonEmptyString"],
2362
+ # cpu: 1,
2363
+ # depends_on: [
2364
+ # {
2365
+ # condition: "NonEmptyString",
2366
+ # container_name: "NonEmptyString",
2367
+ # },
2368
+ # ],
2369
+ # disable_networking: false,
2370
+ # dns_search_domains: ["NonEmptyString"],
2371
+ # dns_servers: ["NonEmptyString"],
2372
+ # docker_labels: {
2373
+ # "NonEmptyString" => "NonEmptyString",
2374
+ # },
2375
+ # docker_security_options: ["NonEmptyString"],
2376
+ # entry_point: ["NonEmptyString"],
2377
+ # environment: [
2378
+ # {
2379
+ # name: "NonEmptyString",
2380
+ # value: "NonEmptyString",
2381
+ # },
2382
+ # ],
2383
+ # environment_files: [
2384
+ # {
2385
+ # type: "NonEmptyString",
2386
+ # value: "NonEmptyString",
2387
+ # },
2388
+ # ],
2389
+ # essential: false,
2390
+ # extra_hosts: [
2391
+ # {
2392
+ # hostname: "NonEmptyString",
2393
+ # ip_address: "NonEmptyString",
2394
+ # },
2395
+ # ],
2396
+ # firelens_configuration: {
2397
+ # options: {
2398
+ # "NonEmptyString" => "NonEmptyString",
2399
+ # },
2400
+ # type: "NonEmptyString",
2401
+ # },
2402
+ # health_check: {
2403
+ # command: ["NonEmptyString"],
2404
+ # interval: 1,
2405
+ # retries: 1,
2406
+ # start_period: 1,
2407
+ # timeout: 1,
2408
+ # },
2409
+ # hostname: "NonEmptyString",
2410
+ # image: "NonEmptyString",
2411
+ # interactive: false,
2412
+ # links: ["NonEmptyString"],
2413
+ # linux_parameters: {
2414
+ # capabilities: {
2415
+ # add: ["NonEmptyString"],
2416
+ # drop: ["NonEmptyString"],
2417
+ # },
2418
+ # devices: [
2419
+ # {
2420
+ # container_path: "NonEmptyString",
2421
+ # host_path: "NonEmptyString",
2422
+ # permissions: ["NonEmptyString"],
2423
+ # },
2424
+ # ],
2425
+ # init_process_enabled: false,
2426
+ # max_swap: 1,
2427
+ # shared_memory_size: 1,
2428
+ # swappiness: 1,
2429
+ # tmpfs: [
2430
+ # {
2431
+ # container_path: "NonEmptyString",
2432
+ # mount_options: ["NonEmptyString"],
2433
+ # size: 1,
2434
+ # },
2435
+ # ],
2436
+ # },
2437
+ # log_configuration: {
2438
+ # log_driver: "NonEmptyString",
2439
+ # options: {
2440
+ # "NonEmptyString" => "NonEmptyString",
2441
+ # },
2442
+ # secret_options: [
2443
+ # {
2444
+ # name: "NonEmptyString",
2445
+ # value_from: "NonEmptyString",
2446
+ # },
2447
+ # ],
2448
+ # },
2449
+ # memory: 1,
2450
+ # memory_reservation: 1,
2451
+ # mount_points: [
2452
+ # {
2453
+ # container_path: "NonEmptyString",
2454
+ # read_only: false,
2455
+ # source_volume: "NonEmptyString",
2456
+ # },
2457
+ # ],
2458
+ # name: "NonEmptyString",
2459
+ # port_mappings: [
2460
+ # {
2461
+ # container_port: 1,
2462
+ # host_port: 1,
2463
+ # protocol: "NonEmptyString",
2464
+ # },
2465
+ # ],
2466
+ # privileged: false,
2467
+ # pseudo_terminal: false,
2468
+ # readonly_root_filesystem: false,
2469
+ # repository_credentials: {
2470
+ # credentials_parameter: "NonEmptyString",
2471
+ # },
2472
+ # resource_requirements: [
2473
+ # {
2474
+ # type: "NonEmptyString",
2475
+ # value: "NonEmptyString",
2476
+ # },
2477
+ # ],
2478
+ # secrets: [
2479
+ # {
2480
+ # name: "NonEmptyString",
2481
+ # value_from: "NonEmptyString",
2482
+ # },
2483
+ # ],
2484
+ # start_timeout: 1,
2485
+ # stop_timeout: 1,
2486
+ # system_controls: [
2487
+ # {
2488
+ # namespace: "NonEmptyString",
2489
+ # value: "NonEmptyString",
2490
+ # },
2491
+ # ],
2492
+ # ulimits: [
2493
+ # {
2494
+ # hard_limit: 1,
2495
+ # name: "NonEmptyString",
2496
+ # soft_limit: 1,
2497
+ # },
2498
+ # ],
2499
+ # user: "NonEmptyString",
2500
+ # volumes_from: [
2501
+ # {
2502
+ # read_only: false,
2503
+ # source_container: "NonEmptyString",
2504
+ # },
2505
+ # ],
2506
+ # working_directory: "NonEmptyString",
2507
+ # },
2508
+ # ],
2509
+ # cpu: "NonEmptyString",
2510
+ # execution_role_arn: "NonEmptyString",
2511
+ # family: "NonEmptyString",
2512
+ # inference_accelerators: [
2513
+ # {
2514
+ # device_name: "NonEmptyString",
2515
+ # device_type: "NonEmptyString",
2516
+ # },
2517
+ # ],
2518
+ # ipc_mode: "NonEmptyString",
2519
+ # memory: "NonEmptyString",
2520
+ # network_mode: "NonEmptyString",
2521
+ # pid_mode: "NonEmptyString",
2522
+ # placement_constraints: [
2523
+ # {
2524
+ # expression: "NonEmptyString",
2525
+ # type: "NonEmptyString",
2526
+ # },
2527
+ # ],
2528
+ # proxy_configuration: {
2529
+ # container_name: "NonEmptyString",
2530
+ # proxy_configuration_properties: [
2531
+ # {
2532
+ # name: "NonEmptyString",
2533
+ # value: "NonEmptyString",
2534
+ # },
2535
+ # ],
2536
+ # type: "NonEmptyString",
2537
+ # },
2538
+ # requires_compatibilities: ["NonEmptyString"],
2539
+ # task_role_arn: "NonEmptyString",
2540
+ # volumes: [
2541
+ # {
2542
+ # docker_volume_configuration: {
2543
+ # autoprovision: false,
2544
+ # driver: "NonEmptyString",
2545
+ # driver_opts: {
2546
+ # "NonEmptyString" => "NonEmptyString",
2547
+ # },
2548
+ # labels: {
2549
+ # "NonEmptyString" => "NonEmptyString",
2550
+ # },
2551
+ # scope: "NonEmptyString",
2552
+ # },
2553
+ # efs_volume_configuration: {
2554
+ # authorization_config: {
2555
+ # access_point_id: "NonEmptyString",
2556
+ # iam: "NonEmptyString",
2557
+ # },
2558
+ # filesystem_id: "NonEmptyString",
2559
+ # root_directory: "NonEmptyString",
2560
+ # transit_encryption: "NonEmptyString",
2561
+ # transit_encryption_port: 1,
2562
+ # },
2563
+ # host: {
2564
+ # source_path: "NonEmptyString",
2565
+ # },
2566
+ # name: "NonEmptyString",
2567
+ # },
2568
+ # ],
2569
+ # },
1985
2570
  # container: {
1986
2571
  # name: "NonEmptyString",
1987
2572
  # image_id: "NonEmptyString",
@@ -2172,6 +2757,21 @@ module Aws::SecurityHub
2172
2757
  # blocked: false,
2173
2758
  # },
2174
2759
  # },
2760
+ # finding_provider_fields: {
2761
+ # confidence: 1,
2762
+ # criticality: 1,
2763
+ # related_findings: [
2764
+ # {
2765
+ # product_arn: "NonEmptyString", # required
2766
+ # id: "NonEmptyString", # required
2767
+ # },
2768
+ # ],
2769
+ # severity: {
2770
+ # label: "INFORMATIONAL", # accepts INFORMATIONAL, LOW, MEDIUM, HIGH, CRITICAL
2771
+ # original: "NonEmptyString",
2772
+ # },
2773
+ # types: ["NonEmptyString"],
2774
+ # },
2175
2775
  # },
2176
2776
  # ],
2177
2777
  # })
@@ -2195,16 +2795,16 @@ module Aws::SecurityHub
2195
2795
  end
2196
2796
 
2197
2797
  # Used by Security Hub customers to update information about their
2198
- # investigation into a finding. Requested by master accounts or member
2199
- # accounts. Master accounts can update findings for their account and
2200
- # their member accounts. Member accounts can update findings for their
2201
- # account.
2798
+ # investigation into a finding. Requested by administrator accounts or
2799
+ # member accounts. Administrator accounts can update findings for their
2800
+ # account and their member accounts. Member accounts can update findings
2801
+ # for their account.
2202
2802
  #
2203
2803
  # Updates from `BatchUpdateFindings` do not affect the value of
2204
2804
  # `UpdatedAt` for a finding.
2205
2805
  #
2206
- # Master and member accounts can use `BatchUpdateFindings` to update the
2207
- # following finding fields and objects.
2806
+ # Administrator and member accounts can use `BatchUpdateFindings` to
2807
+ # update the following finding fields and objects.
2208
2808
  #
2209
2809
  # * `Confidence`
2210
2810
  #
@@ -2373,13 +2973,14 @@ module Aws::SecurityHub
2373
2973
  # trigger target actions in Amazon CloudWatch Events.
2374
2974
  #
2375
2975
  # @option params [required, String] :name
2376
- # The name of the custom action target.
2976
+ # The name of the custom action target. Can contain up to 20 characters.
2377
2977
  #
2378
2978
  # @option params [required, String] :description
2379
2979
  # The description for the custom action target.
2380
2980
  #
2381
2981
  # @option params [required, String] :id
2382
- # The ID for the custom action target.
2982
+ # The ID for the custom action target. Can contain up to 20 alphanumeric
2983
+ # characters.
2383
2984
  #
2384
2985
  # @return [Types::CreateActionTargetResponse] Returns a {Seahorse::Client::Response response} object which responds to the following methods:
2385
2986
  #
@@ -2989,6 +3590,50 @@ module Aws::SecurityHub
2989
3590
  # value: "NonEmptyString",
2990
3591
  # },
2991
3592
  # ],
3593
+ # finding_provider_fields_confidence: [
3594
+ # {
3595
+ # gte: 1.0,
3596
+ # lte: 1.0,
3597
+ # eq: 1.0,
3598
+ # },
3599
+ # ],
3600
+ # finding_provider_fields_criticality: [
3601
+ # {
3602
+ # gte: 1.0,
3603
+ # lte: 1.0,
3604
+ # eq: 1.0,
3605
+ # },
3606
+ # ],
3607
+ # finding_provider_fields_related_findings_id: [
3608
+ # {
3609
+ # value: "NonEmptyString",
3610
+ # comparison: "EQUALS", # accepts EQUALS, PREFIX, NOT_EQUALS, PREFIX_NOT_EQUALS
3611
+ # },
3612
+ # ],
3613
+ # finding_provider_fields_related_findings_product_arn: [
3614
+ # {
3615
+ # value: "NonEmptyString",
3616
+ # comparison: "EQUALS", # accepts EQUALS, PREFIX, NOT_EQUALS, PREFIX_NOT_EQUALS
3617
+ # },
3618
+ # ],
3619
+ # finding_provider_fields_severity_label: [
3620
+ # {
3621
+ # value: "NonEmptyString",
3622
+ # comparison: "EQUALS", # accepts EQUALS, PREFIX, NOT_EQUALS, PREFIX_NOT_EQUALS
3623
+ # },
3624
+ # ],
3625
+ # finding_provider_fields_severity_original: [
3626
+ # {
3627
+ # value: "NonEmptyString",
3628
+ # comparison: "EQUALS", # accepts EQUALS, PREFIX, NOT_EQUALS, PREFIX_NOT_EQUALS
3629
+ # },
3630
+ # ],
3631
+ # finding_provider_fields_types: [
3632
+ # {
3633
+ # value: "NonEmptyString",
3634
+ # comparison: "EQUALS", # accepts EQUALS, PREFIX, NOT_EQUALS, PREFIX_NOT_EQUALS
3635
+ # },
3636
+ # ],
2992
3637
  # },
2993
3638
  # group_by_attribute: "NonEmptyString", # required
2994
3639
  # })
@@ -3007,10 +3652,10 @@ module Aws::SecurityHub
3007
3652
  end
3008
3653
 
3009
3654
  # Creates a member association in Security Hub between the specified
3010
- # accounts and the account used to make the request, which is the master
3011
- # account. If you are integrated with Organizations, then the master
3012
- # account is the Security Hub administrator account that is designated
3013
- # by the organization management account.
3655
+ # accounts and the account used to make the request, which is the
3656
+ # administrator account. If you are integrated with Organizations, then
3657
+ # the administrator account is designated by the organization management
3658
+ # account.
3014
3659
  #
3015
3660
  # `CreateMembers` is always used to add accounts that are not
3016
3661
  # organization members.
@@ -3037,17 +3682,17 @@ module Aws::SecurityHub
3037
3682
  # invitation. They automatically become a member account in Security
3038
3683
  # Hub.
3039
3684
  #
3040
- # A permissions policy is added that permits the master account to view
3041
- # the findings generated in the member account. When Security Hub is
3042
- # enabled in a member account, findings are sent to both the member and
3043
- # master accounts.
3685
+ # A permissions policy is added that permits the administrator account
3686
+ # to view the findings generated in the member account. When Security
3687
+ # Hub is enabled in a member account, the member account findings are
3688
+ # also visible to the administrator account.
3044
3689
  #
3045
- # To remove the association between the master and member accounts, use
3046
- # the ` DisassociateFromMasterAccount ` or ` DisassociateMembers `
3047
- # operation.
3690
+ # To remove the association between the administrator and member
3691
+ # accounts, use the ` DisassociateFromMasterAccount ` or `
3692
+ # DisassociateMembers ` operation.
3048
3693
  #
3049
3694
  # @option params [required, Array<Types::AccountDetails>] :account_details
3050
- # The list of accounts to associate with the Security Hub master
3695
+ # The list of accounts to associate with the Security Hub administrator
3051
3696
  # account. For each account, the list includes the account ID and
3052
3697
  # optionally the email address.
3053
3698
  #
@@ -3396,7 +4041,7 @@ module Aws::SecurityHub
3396
4041
  # resp.products[0].categories #=> Array
3397
4042
  # resp.products[0].categories[0] #=> String
3398
4043
  # resp.products[0].integration_types #=> Array
3399
- # resp.products[0].integration_types[0] #=> String, one of "SEND_FINDINGS_TO_SECURITY_HUB", "RECEIVE_FINDINGS_FROM_SECURITY_HUB"
4044
+ # resp.products[0].integration_types[0] #=> String, one of "SEND_FINDINGS_TO_SECURITY_HUB", "RECEIVE_FINDINGS_FROM_SECURITY_HUB", "UPDATE_FINDINGS_IN_SECURITY_HUB"
3400
4045
  # resp.products[0].marketplace_url #=> String
3401
4046
  # resp.products[0].activation_url #=> String
3402
4047
  # resp.products[0].product_subscription_resource_policy #=> String
@@ -3574,13 +4219,13 @@ module Aws::SecurityHub
3574
4219
  # disable Security Hub in all Regions, you must submit one request per
3575
4220
  # Region where you have enabled Security Hub.
3576
4221
  #
3577
- # When you disable Security Hub for a master account, it doesn't
3578
- # disable Security Hub for any associated member accounts.
4222
+ # When you disable Security Hub for an administrator account, it
4223
+ # doesn't disable Security Hub for any associated member accounts.
3579
4224
  #
3580
4225
  # When you disable Security Hub, your existing findings and insights and
3581
4226
  # any Security Hub configuration settings are deleted after 90 days and
3582
4227
  # cannot be recovered. Any standards that were enabled are disabled, and
3583
- # your master and member account associations are removed.
4228
+ # your administrator and member account associations are removed.
3584
4229
  #
3585
4230
  # If you want to save your existing findings, you must export them
3586
4231
  # before you disable Security Hub.
@@ -3597,12 +4242,41 @@ module Aws::SecurityHub
3597
4242
  end
3598
4243
 
3599
4244
  # Disassociates the current Security Hub member account from the
3600
- # associated master account.
4245
+ # associated administrator account.
3601
4246
  #
3602
4247
  # This operation is only used by accounts that are not part of an
3603
- # organization. For organization accounts, only the master account (the
3604
- # designated Security Hub administrator) can disassociate a member
3605
- # account.
4248
+ # organization. For organization accounts, only the administrator
4249
+ # account can disassociate a member account.
4250
+ #
4251
+ # @return [Struct] Returns an empty {Seahorse::Client::Response response}.
4252
+ #
4253
+ # @see http://docs.aws.amazon.com/goto/WebAPI/securityhub-2018-10-26/DisassociateFromAdministratorAccount AWS API Documentation
4254
+ #
4255
+ # @overload disassociate_from_administrator_account(params = {})
4256
+ # @param [Hash] params ({})
4257
+ def disassociate_from_administrator_account(params = {}, options = {})
4258
+ req = build_request(:disassociate_from_administrator_account, params)
4259
+ req.send_request(options)
4260
+ end
4261
+
4262
+ # This method is deprecated. Instead, use
4263
+ # `DisassociateFromAdministratorAccount`.
4264
+ #
4265
+ # The Security Hub console continues to use
4266
+ # `DisassociateFromMasterAccount`. It will eventually change to use
4267
+ # `DisassociateFromAdministratorAccount`. Any IAM policies that
4268
+ # specifically control access to this function must continue to use
4269
+ # `DisassociateFromMasterAccount`. You should also add
4270
+ # `DisassociateFromAdministratorAccount` to your policies to ensure that
4271
+ # the correct permissions are in place after the console begins to use
4272
+ # `DisassociateFromAdministratorAccount`.
4273
+ #
4274
+ # Disassociates the current Security Hub member account from the
4275
+ # associated administrator account.
4276
+ #
4277
+ # This operation is only used by accounts that are not part of an
4278
+ # organization. For organization accounts, only the administrator
4279
+ # account can disassociate a member account.
3606
4280
  #
3607
4281
  # @return [Struct] Returns an empty {Seahorse::Client::Response response}.
3608
4282
  #
@@ -3615,15 +4289,15 @@ module Aws::SecurityHub
3615
4289
  req.send_request(options)
3616
4290
  end
3617
4291
 
3618
- # Disassociates the specified member accounts from the associated master
3619
- # account.
4292
+ # Disassociates the specified member accounts from the associated
4293
+ # administrator account.
3620
4294
  #
3621
- # Can be used to disassociate both accounts that are in an organization
3622
- # and accounts that were invited manually.
4295
+ # Can be used to disassociate both accounts that are managed using
4296
+ # Organizations and accounts that were invited manually.
3623
4297
  #
3624
4298
  # @option params [required, Array<String>] :account_ids
3625
- # The account IDs of the member accounts to disassociate from the master
3626
- # account.
4299
+ # The account IDs of the member accounts to disassociate from the
4300
+ # administrator account.
3627
4301
  #
3628
4302
  # @return [Struct] Returns an empty {Seahorse::Client::Response response}.
3629
4303
  #
@@ -3760,6 +4434,32 @@ module Aws::SecurityHub
3760
4434
  req.send_request(options)
3761
4435
  end
3762
4436
 
4437
+ # Provides the details for the Security Hub administrator account for
4438
+ # the current member account.
4439
+ #
4440
+ # Can be used by both member accounts that are managed using
4441
+ # Organizations and accounts that were invited manually.
4442
+ #
4443
+ # @return [Types::GetAdministratorAccountResponse] Returns a {Seahorse::Client::Response response} object which responds to the following methods:
4444
+ #
4445
+ # * {Types::GetAdministratorAccountResponse#administrator #administrator} => Types::Invitation
4446
+ #
4447
+ # @example Response structure
4448
+ #
4449
+ # resp.administrator.account_id #=> String
4450
+ # resp.administrator.invitation_id #=> String
4451
+ # resp.administrator.invited_at #=> Time
4452
+ # resp.administrator.member_status #=> String
4453
+ #
4454
+ # @see http://docs.aws.amazon.com/goto/WebAPI/securityhub-2018-10-26/GetAdministratorAccount AWS API Documentation
4455
+ #
4456
+ # @overload get_administrator_account(params = {})
4457
+ # @param [Hash] params ({})
4458
+ def get_administrator_account(params = {}, options = {})
4459
+ req = build_request(:get_administrator_account, params)
4460
+ req.send_request(options)
4461
+ end
4462
+
3763
4463
  # Returns a list of the standards that are currently enabled.
3764
4464
  #
3765
4465
  # @option params [Array<String>] :standards_subscription_arns
@@ -4403,6 +5103,50 @@ module Aws::SecurityHub
4403
5103
  # value: "NonEmptyString",
4404
5104
  # },
4405
5105
  # ],
5106
+ # finding_provider_fields_confidence: [
5107
+ # {
5108
+ # gte: 1.0,
5109
+ # lte: 1.0,
5110
+ # eq: 1.0,
5111
+ # },
5112
+ # ],
5113
+ # finding_provider_fields_criticality: [
5114
+ # {
5115
+ # gte: 1.0,
5116
+ # lte: 1.0,
5117
+ # eq: 1.0,
5118
+ # },
5119
+ # ],
5120
+ # finding_provider_fields_related_findings_id: [
5121
+ # {
5122
+ # value: "NonEmptyString",
5123
+ # comparison: "EQUALS", # accepts EQUALS, PREFIX, NOT_EQUALS, PREFIX_NOT_EQUALS
5124
+ # },
5125
+ # ],
5126
+ # finding_provider_fields_related_findings_product_arn: [
5127
+ # {
5128
+ # value: "NonEmptyString",
5129
+ # comparison: "EQUALS", # accepts EQUALS, PREFIX, NOT_EQUALS, PREFIX_NOT_EQUALS
5130
+ # },
5131
+ # ],
5132
+ # finding_provider_fields_severity_label: [
5133
+ # {
5134
+ # value: "NonEmptyString",
5135
+ # comparison: "EQUALS", # accepts EQUALS, PREFIX, NOT_EQUALS, PREFIX_NOT_EQUALS
5136
+ # },
5137
+ # ],
5138
+ # finding_provider_fields_severity_original: [
5139
+ # {
5140
+ # value: "NonEmptyString",
5141
+ # comparison: "EQUALS", # accepts EQUALS, PREFIX, NOT_EQUALS, PREFIX_NOT_EQUALS
5142
+ # },
5143
+ # ],
5144
+ # finding_provider_fields_types: [
5145
+ # {
5146
+ # value: "NonEmptyString",
5147
+ # comparison: "EQUALS", # accepts EQUALS, PREFIX, NOT_EQUALS, PREFIX_NOT_EQUALS
5148
+ # },
5149
+ # ],
4406
5150
  # },
4407
5151
  # sort_criteria: [
4408
5152
  # {
@@ -4507,6 +5251,71 @@ module Aws::SecurityHub
4507
5251
  # resp.findings[0].resources[0].resource_role #=> String
4508
5252
  # resp.findings[0].resources[0].tags #=> Hash
4509
5253
  # resp.findings[0].resources[0].tags["NonEmptyString"] #=> String
5254
+ # resp.findings[0].resources[0].data_classification.detailed_results_location #=> String
5255
+ # resp.findings[0].resources[0].data_classification.result.mime_type #=> String
5256
+ # resp.findings[0].resources[0].data_classification.result.size_classified #=> Integer
5257
+ # resp.findings[0].resources[0].data_classification.result.additional_occurrences #=> Boolean
5258
+ # resp.findings[0].resources[0].data_classification.result.status.code #=> String
5259
+ # resp.findings[0].resources[0].data_classification.result.status.reason #=> String
5260
+ # resp.findings[0].resources[0].data_classification.result.sensitive_data #=> Array
5261
+ # resp.findings[0].resources[0].data_classification.result.sensitive_data[0].category #=> String
5262
+ # resp.findings[0].resources[0].data_classification.result.sensitive_data[0].detections #=> Array
5263
+ # resp.findings[0].resources[0].data_classification.result.sensitive_data[0].detections[0].count #=> Integer
5264
+ # resp.findings[0].resources[0].data_classification.result.sensitive_data[0].detections[0].type #=> String
5265
+ # resp.findings[0].resources[0].data_classification.result.sensitive_data[0].detections[0].occurrences.line_ranges #=> Array
5266
+ # resp.findings[0].resources[0].data_classification.result.sensitive_data[0].detections[0].occurrences.line_ranges[0].start #=> Integer
5267
+ # resp.findings[0].resources[0].data_classification.result.sensitive_data[0].detections[0].occurrences.line_ranges[0].end #=> Integer
5268
+ # resp.findings[0].resources[0].data_classification.result.sensitive_data[0].detections[0].occurrences.line_ranges[0].start_column #=> Integer
5269
+ # resp.findings[0].resources[0].data_classification.result.sensitive_data[0].detections[0].occurrences.offset_ranges #=> Array
5270
+ # resp.findings[0].resources[0].data_classification.result.sensitive_data[0].detections[0].occurrences.offset_ranges[0].start #=> Integer
5271
+ # resp.findings[0].resources[0].data_classification.result.sensitive_data[0].detections[0].occurrences.offset_ranges[0].end #=> Integer
5272
+ # resp.findings[0].resources[0].data_classification.result.sensitive_data[0].detections[0].occurrences.offset_ranges[0].start_column #=> Integer
5273
+ # resp.findings[0].resources[0].data_classification.result.sensitive_data[0].detections[0].occurrences.pages #=> Array
5274
+ # resp.findings[0].resources[0].data_classification.result.sensitive_data[0].detections[0].occurrences.pages[0].page_number #=> Integer
5275
+ # resp.findings[0].resources[0].data_classification.result.sensitive_data[0].detections[0].occurrences.pages[0].line_range.start #=> Integer
5276
+ # resp.findings[0].resources[0].data_classification.result.sensitive_data[0].detections[0].occurrences.pages[0].line_range.end #=> Integer
5277
+ # resp.findings[0].resources[0].data_classification.result.sensitive_data[0].detections[0].occurrences.pages[0].line_range.start_column #=> Integer
5278
+ # resp.findings[0].resources[0].data_classification.result.sensitive_data[0].detections[0].occurrences.pages[0].offset_range.start #=> Integer
5279
+ # resp.findings[0].resources[0].data_classification.result.sensitive_data[0].detections[0].occurrences.pages[0].offset_range.end #=> Integer
5280
+ # resp.findings[0].resources[0].data_classification.result.sensitive_data[0].detections[0].occurrences.pages[0].offset_range.start_column #=> Integer
5281
+ # resp.findings[0].resources[0].data_classification.result.sensitive_data[0].detections[0].occurrences.records #=> Array
5282
+ # resp.findings[0].resources[0].data_classification.result.sensitive_data[0].detections[0].occurrences.records[0].json_path #=> String
5283
+ # resp.findings[0].resources[0].data_classification.result.sensitive_data[0].detections[0].occurrences.records[0].record_index #=> Integer
5284
+ # resp.findings[0].resources[0].data_classification.result.sensitive_data[0].detections[0].occurrences.cells #=> Array
5285
+ # resp.findings[0].resources[0].data_classification.result.sensitive_data[0].detections[0].occurrences.cells[0].column #=> Integer
5286
+ # resp.findings[0].resources[0].data_classification.result.sensitive_data[0].detections[0].occurrences.cells[0].row #=> Integer
5287
+ # resp.findings[0].resources[0].data_classification.result.sensitive_data[0].detections[0].occurrences.cells[0].column_name #=> String
5288
+ # resp.findings[0].resources[0].data_classification.result.sensitive_data[0].detections[0].occurrences.cells[0].cell_reference #=> String
5289
+ # resp.findings[0].resources[0].data_classification.result.sensitive_data[0].total_count #=> Integer
5290
+ # resp.findings[0].resources[0].data_classification.result.custom_data_identifiers.detections #=> Array
5291
+ # resp.findings[0].resources[0].data_classification.result.custom_data_identifiers.detections[0].count #=> Integer
5292
+ # resp.findings[0].resources[0].data_classification.result.custom_data_identifiers.detections[0].arn #=> String
5293
+ # resp.findings[0].resources[0].data_classification.result.custom_data_identifiers.detections[0].name #=> String
5294
+ # resp.findings[0].resources[0].data_classification.result.custom_data_identifiers.detections[0].occurrences.line_ranges #=> Array
5295
+ # resp.findings[0].resources[0].data_classification.result.custom_data_identifiers.detections[0].occurrences.line_ranges[0].start #=> Integer
5296
+ # resp.findings[0].resources[0].data_classification.result.custom_data_identifiers.detections[0].occurrences.line_ranges[0].end #=> Integer
5297
+ # resp.findings[0].resources[0].data_classification.result.custom_data_identifiers.detections[0].occurrences.line_ranges[0].start_column #=> Integer
5298
+ # resp.findings[0].resources[0].data_classification.result.custom_data_identifiers.detections[0].occurrences.offset_ranges #=> Array
5299
+ # resp.findings[0].resources[0].data_classification.result.custom_data_identifiers.detections[0].occurrences.offset_ranges[0].start #=> Integer
5300
+ # resp.findings[0].resources[0].data_classification.result.custom_data_identifiers.detections[0].occurrences.offset_ranges[0].end #=> Integer
5301
+ # resp.findings[0].resources[0].data_classification.result.custom_data_identifiers.detections[0].occurrences.offset_ranges[0].start_column #=> Integer
5302
+ # resp.findings[0].resources[0].data_classification.result.custom_data_identifiers.detections[0].occurrences.pages #=> Array
5303
+ # resp.findings[0].resources[0].data_classification.result.custom_data_identifiers.detections[0].occurrences.pages[0].page_number #=> Integer
5304
+ # resp.findings[0].resources[0].data_classification.result.custom_data_identifiers.detections[0].occurrences.pages[0].line_range.start #=> Integer
5305
+ # resp.findings[0].resources[0].data_classification.result.custom_data_identifiers.detections[0].occurrences.pages[0].line_range.end #=> Integer
5306
+ # resp.findings[0].resources[0].data_classification.result.custom_data_identifiers.detections[0].occurrences.pages[0].line_range.start_column #=> Integer
5307
+ # resp.findings[0].resources[0].data_classification.result.custom_data_identifiers.detections[0].occurrences.pages[0].offset_range.start #=> Integer
5308
+ # resp.findings[0].resources[0].data_classification.result.custom_data_identifiers.detections[0].occurrences.pages[0].offset_range.end #=> Integer
5309
+ # resp.findings[0].resources[0].data_classification.result.custom_data_identifiers.detections[0].occurrences.pages[0].offset_range.start_column #=> Integer
5310
+ # resp.findings[0].resources[0].data_classification.result.custom_data_identifiers.detections[0].occurrences.records #=> Array
5311
+ # resp.findings[0].resources[0].data_classification.result.custom_data_identifiers.detections[0].occurrences.records[0].json_path #=> String
5312
+ # resp.findings[0].resources[0].data_classification.result.custom_data_identifiers.detections[0].occurrences.records[0].record_index #=> Integer
5313
+ # resp.findings[0].resources[0].data_classification.result.custom_data_identifiers.detections[0].occurrences.cells #=> Array
5314
+ # resp.findings[0].resources[0].data_classification.result.custom_data_identifiers.detections[0].occurrences.cells[0].column #=> Integer
5315
+ # resp.findings[0].resources[0].data_classification.result.custom_data_identifiers.detections[0].occurrences.cells[0].row #=> Integer
5316
+ # resp.findings[0].resources[0].data_classification.result.custom_data_identifiers.detections[0].occurrences.cells[0].column_name #=> String
5317
+ # resp.findings[0].resources[0].data_classification.result.custom_data_identifiers.detections[0].occurrences.cells[0].cell_reference #=> String
5318
+ # resp.findings[0].resources[0].data_classification.result.custom_data_identifiers.total_count #=> Integer
4510
5319
  # resp.findings[0].resources[0].details.aws_auto_scaling_auto_scaling_group.launch_configuration_name #=> String
4511
5320
  # resp.findings[0].resources[0].details.aws_auto_scaling_auto_scaling_group.load_balancer_names #=> Array
4512
5321
  # resp.findings[0].resources[0].details.aws_auto_scaling_auto_scaling_group.load_balancer_names[0] #=> String
@@ -4563,6 +5372,8 @@ module Aws::SecurityHub
4563
5372
  # resp.findings[0].resources[0].details.aws_ec2_instance.vpc_id #=> String
4564
5373
  # resp.findings[0].resources[0].details.aws_ec2_instance.subnet_id #=> String
4565
5374
  # resp.findings[0].resources[0].details.aws_ec2_instance.launched_at #=> String
5375
+ # resp.findings[0].resources[0].details.aws_ec2_instance.network_interfaces #=> Array
5376
+ # resp.findings[0].resources[0].details.aws_ec2_instance.network_interfaces[0].network_interface_id #=> String
4566
5377
  # resp.findings[0].resources[0].details.aws_ec2_network_interface.attachment.attach_time #=> String
4567
5378
  # resp.findings[0].resources[0].details.aws_ec2_network_interface.attachment.attachment_id #=> String
4568
5379
  # resp.findings[0].resources[0].details.aws_ec2_network_interface.attachment.delete_on_termination #=> Boolean
@@ -4651,6 +5462,41 @@ module Aws::SecurityHub
4651
5462
  # resp.findings[0].resources[0].details.aws_ec2_eip.network_interface_id #=> String
4652
5463
  # resp.findings[0].resources[0].details.aws_ec2_eip.network_interface_owner_id #=> String
4653
5464
  # resp.findings[0].resources[0].details.aws_ec2_eip.private_ip_address #=> String
5465
+ # resp.findings[0].resources[0].details.aws_ec2_subnet.assign_ipv_6_address_on_creation #=> Boolean
5466
+ # resp.findings[0].resources[0].details.aws_ec2_subnet.availability_zone #=> String
5467
+ # resp.findings[0].resources[0].details.aws_ec2_subnet.availability_zone_id #=> String
5468
+ # resp.findings[0].resources[0].details.aws_ec2_subnet.available_ip_address_count #=> Integer
5469
+ # resp.findings[0].resources[0].details.aws_ec2_subnet.cidr_block #=> String
5470
+ # resp.findings[0].resources[0].details.aws_ec2_subnet.default_for_az #=> Boolean
5471
+ # resp.findings[0].resources[0].details.aws_ec2_subnet.map_public_ip_on_launch #=> Boolean
5472
+ # resp.findings[0].resources[0].details.aws_ec2_subnet.owner_id #=> String
5473
+ # resp.findings[0].resources[0].details.aws_ec2_subnet.state #=> String
5474
+ # resp.findings[0].resources[0].details.aws_ec2_subnet.subnet_arn #=> String
5475
+ # resp.findings[0].resources[0].details.aws_ec2_subnet.subnet_id #=> String
5476
+ # resp.findings[0].resources[0].details.aws_ec2_subnet.vpc_id #=> String
5477
+ # resp.findings[0].resources[0].details.aws_ec2_subnet.ipv_6_cidr_block_association_set #=> Array
5478
+ # resp.findings[0].resources[0].details.aws_ec2_subnet.ipv_6_cidr_block_association_set[0].association_id #=> String
5479
+ # resp.findings[0].resources[0].details.aws_ec2_subnet.ipv_6_cidr_block_association_set[0].ipv_6_cidr_block #=> String
5480
+ # resp.findings[0].resources[0].details.aws_ec2_subnet.ipv_6_cidr_block_association_set[0].cidr_block_state #=> String
5481
+ # resp.findings[0].resources[0].details.aws_ec2_network_acl.is_default #=> Boolean
5482
+ # resp.findings[0].resources[0].details.aws_ec2_network_acl.network_acl_id #=> String
5483
+ # resp.findings[0].resources[0].details.aws_ec2_network_acl.owner_id #=> String
5484
+ # resp.findings[0].resources[0].details.aws_ec2_network_acl.vpc_id #=> String
5485
+ # resp.findings[0].resources[0].details.aws_ec2_network_acl.associations #=> Array
5486
+ # resp.findings[0].resources[0].details.aws_ec2_network_acl.associations[0].network_acl_association_id #=> String
5487
+ # resp.findings[0].resources[0].details.aws_ec2_network_acl.associations[0].network_acl_id #=> String
5488
+ # resp.findings[0].resources[0].details.aws_ec2_network_acl.associations[0].subnet_id #=> String
5489
+ # resp.findings[0].resources[0].details.aws_ec2_network_acl.entries #=> Array
5490
+ # resp.findings[0].resources[0].details.aws_ec2_network_acl.entries[0].cidr_block #=> String
5491
+ # resp.findings[0].resources[0].details.aws_ec2_network_acl.entries[0].egress #=> Boolean
5492
+ # resp.findings[0].resources[0].details.aws_ec2_network_acl.entries[0].icmp_type_code.code #=> Integer
5493
+ # resp.findings[0].resources[0].details.aws_ec2_network_acl.entries[0].icmp_type_code.type #=> Integer
5494
+ # resp.findings[0].resources[0].details.aws_ec2_network_acl.entries[0].ipv_6_cidr_block #=> String
5495
+ # resp.findings[0].resources[0].details.aws_ec2_network_acl.entries[0].port_range.from #=> Integer
5496
+ # resp.findings[0].resources[0].details.aws_ec2_network_acl.entries[0].port_range.to #=> Integer
5497
+ # resp.findings[0].resources[0].details.aws_ec2_network_acl.entries[0].protocol #=> String
5498
+ # resp.findings[0].resources[0].details.aws_ec2_network_acl.entries[0].rule_action #=> String
5499
+ # resp.findings[0].resources[0].details.aws_ec2_network_acl.entries[0].rule_number #=> Integer
4654
5500
  # resp.findings[0].resources[0].details.aws_elbv_2_load_balancer.availability_zones #=> Array
4655
5501
  # resp.findings[0].resources[0].details.aws_elbv_2_load_balancer.availability_zones[0].zone_name #=> String
4656
5502
  # resp.findings[0].resources[0].details.aws_elbv_2_load_balancer.availability_zones[0].subnet_id #=> String
@@ -4665,6 +5511,30 @@ module Aws::SecurityHub
4665
5511
  # resp.findings[0].resources[0].details.aws_elbv_2_load_balancer.state.reason #=> String
4666
5512
  # resp.findings[0].resources[0].details.aws_elbv_2_load_balancer.type #=> String
4667
5513
  # resp.findings[0].resources[0].details.aws_elbv_2_load_balancer.vpc_id #=> String
5514
+ # resp.findings[0].resources[0].details.aws_elastic_beanstalk_environment.application_name #=> String
5515
+ # resp.findings[0].resources[0].details.aws_elastic_beanstalk_environment.cname #=> String
5516
+ # resp.findings[0].resources[0].details.aws_elastic_beanstalk_environment.date_created #=> String
5517
+ # resp.findings[0].resources[0].details.aws_elastic_beanstalk_environment.date_updated #=> String
5518
+ # resp.findings[0].resources[0].details.aws_elastic_beanstalk_environment.description #=> String
5519
+ # resp.findings[0].resources[0].details.aws_elastic_beanstalk_environment.endpoint_url #=> String
5520
+ # resp.findings[0].resources[0].details.aws_elastic_beanstalk_environment.environment_arn #=> String
5521
+ # resp.findings[0].resources[0].details.aws_elastic_beanstalk_environment.environment_id #=> String
5522
+ # resp.findings[0].resources[0].details.aws_elastic_beanstalk_environment.environment_links #=> Array
5523
+ # resp.findings[0].resources[0].details.aws_elastic_beanstalk_environment.environment_links[0].environment_name #=> String
5524
+ # resp.findings[0].resources[0].details.aws_elastic_beanstalk_environment.environment_links[0].link_name #=> String
5525
+ # resp.findings[0].resources[0].details.aws_elastic_beanstalk_environment.environment_name #=> String
5526
+ # resp.findings[0].resources[0].details.aws_elastic_beanstalk_environment.option_settings #=> Array
5527
+ # resp.findings[0].resources[0].details.aws_elastic_beanstalk_environment.option_settings[0].namespace #=> String
5528
+ # resp.findings[0].resources[0].details.aws_elastic_beanstalk_environment.option_settings[0].option_name #=> String
5529
+ # resp.findings[0].resources[0].details.aws_elastic_beanstalk_environment.option_settings[0].resource_name #=> String
5530
+ # resp.findings[0].resources[0].details.aws_elastic_beanstalk_environment.option_settings[0].value #=> String
5531
+ # resp.findings[0].resources[0].details.aws_elastic_beanstalk_environment.platform_arn #=> String
5532
+ # resp.findings[0].resources[0].details.aws_elastic_beanstalk_environment.solution_stack_name #=> String
5533
+ # resp.findings[0].resources[0].details.aws_elastic_beanstalk_environment.status #=> String
5534
+ # resp.findings[0].resources[0].details.aws_elastic_beanstalk_environment.tier.name #=> String
5535
+ # resp.findings[0].resources[0].details.aws_elastic_beanstalk_environment.tier.type #=> String
5536
+ # resp.findings[0].resources[0].details.aws_elastic_beanstalk_environment.tier.version #=> String
5537
+ # resp.findings[0].resources[0].details.aws_elastic_beanstalk_environment.version_label #=> String
4668
5538
  # resp.findings[0].resources[0].details.aws_elasticsearch_domain.access_policies #=> String
4669
5539
  # resp.findings[0].resources[0].details.aws_elasticsearch_domain.domain_endpoint_options.enforce_https #=> Boolean
4670
5540
  # resp.findings[0].resources[0].details.aws_elasticsearch_domain.domain_endpoint_options.tls_security_policy #=> String
@@ -4676,7 +5546,18 @@ module Aws::SecurityHub
4676
5546
  # resp.findings[0].resources[0].details.aws_elasticsearch_domain.elasticsearch_version #=> String
4677
5547
  # resp.findings[0].resources[0].details.aws_elasticsearch_domain.encryption_at_rest_options.enabled #=> Boolean
4678
5548
  # resp.findings[0].resources[0].details.aws_elasticsearch_domain.encryption_at_rest_options.kms_key_id #=> String
5549
+ # resp.findings[0].resources[0].details.aws_elasticsearch_domain.log_publishing_options.index_slow_logs.cloud_watch_logs_log_group_arn #=> String
5550
+ # resp.findings[0].resources[0].details.aws_elasticsearch_domain.log_publishing_options.index_slow_logs.enabled #=> Boolean
5551
+ # resp.findings[0].resources[0].details.aws_elasticsearch_domain.log_publishing_options.search_slow_logs.cloud_watch_logs_log_group_arn #=> String
5552
+ # resp.findings[0].resources[0].details.aws_elasticsearch_domain.log_publishing_options.search_slow_logs.enabled #=> Boolean
4679
5553
  # resp.findings[0].resources[0].details.aws_elasticsearch_domain.node_to_node_encryption_options.enabled #=> Boolean
5554
+ # resp.findings[0].resources[0].details.aws_elasticsearch_domain.service_software_options.automated_update_date #=> String
5555
+ # resp.findings[0].resources[0].details.aws_elasticsearch_domain.service_software_options.cancellable #=> Boolean
5556
+ # resp.findings[0].resources[0].details.aws_elasticsearch_domain.service_software_options.current_version #=> String
5557
+ # resp.findings[0].resources[0].details.aws_elasticsearch_domain.service_software_options.description #=> String
5558
+ # resp.findings[0].resources[0].details.aws_elasticsearch_domain.service_software_options.new_version #=> String
5559
+ # resp.findings[0].resources[0].details.aws_elasticsearch_domain.service_software_options.update_available #=> Boolean
5560
+ # resp.findings[0].resources[0].details.aws_elasticsearch_domain.service_software_options.update_status #=> String
4680
5561
  # resp.findings[0].resources[0].details.aws_elasticsearch_domain.vpc_options.availability_zones #=> Array
4681
5562
  # resp.findings[0].resources[0].details.aws_elasticsearch_domain.vpc_options.availability_zones[0] #=> String
4682
5563
  # resp.findings[0].resources[0].details.aws_elasticsearch_domain.vpc_options.security_group_ids #=> Array
@@ -4690,6 +5571,39 @@ module Aws::SecurityHub
4690
5571
  # resp.findings[0].resources[0].details.aws_s3_bucket.server_side_encryption_configuration.rules #=> Array
4691
5572
  # resp.findings[0].resources[0].details.aws_s3_bucket.server_side_encryption_configuration.rules[0].apply_server_side_encryption_by_default.sse_algorithm #=> String
4692
5573
  # resp.findings[0].resources[0].details.aws_s3_bucket.server_side_encryption_configuration.rules[0].apply_server_side_encryption_by_default.kms_master_key_id #=> String
5574
+ # resp.findings[0].resources[0].details.aws_s3_bucket.bucket_lifecycle_configuration.rules #=> Array
5575
+ # resp.findings[0].resources[0].details.aws_s3_bucket.bucket_lifecycle_configuration.rules[0].abort_incomplete_multipart_upload.days_after_initiation #=> Integer
5576
+ # resp.findings[0].resources[0].details.aws_s3_bucket.bucket_lifecycle_configuration.rules[0].expiration_date #=> String
5577
+ # resp.findings[0].resources[0].details.aws_s3_bucket.bucket_lifecycle_configuration.rules[0].expiration_in_days #=> Integer
5578
+ # resp.findings[0].resources[0].details.aws_s3_bucket.bucket_lifecycle_configuration.rules[0].expired_object_delete_marker #=> Boolean
5579
+ # resp.findings[0].resources[0].details.aws_s3_bucket.bucket_lifecycle_configuration.rules[0].filter.predicate.operands #=> Array
5580
+ # resp.findings[0].resources[0].details.aws_s3_bucket.bucket_lifecycle_configuration.rules[0].filter.predicate.operands[0].prefix #=> String
5581
+ # resp.findings[0].resources[0].details.aws_s3_bucket.bucket_lifecycle_configuration.rules[0].filter.predicate.operands[0].tag.key #=> String
5582
+ # resp.findings[0].resources[0].details.aws_s3_bucket.bucket_lifecycle_configuration.rules[0].filter.predicate.operands[0].tag.value #=> String
5583
+ # resp.findings[0].resources[0].details.aws_s3_bucket.bucket_lifecycle_configuration.rules[0].filter.predicate.operands[0].type #=> String
5584
+ # resp.findings[0].resources[0].details.aws_s3_bucket.bucket_lifecycle_configuration.rules[0].filter.predicate.prefix #=> String
5585
+ # resp.findings[0].resources[0].details.aws_s3_bucket.bucket_lifecycle_configuration.rules[0].filter.predicate.tag.key #=> String
5586
+ # resp.findings[0].resources[0].details.aws_s3_bucket.bucket_lifecycle_configuration.rules[0].filter.predicate.tag.value #=> String
5587
+ # resp.findings[0].resources[0].details.aws_s3_bucket.bucket_lifecycle_configuration.rules[0].filter.predicate.type #=> String
5588
+ # resp.findings[0].resources[0].details.aws_s3_bucket.bucket_lifecycle_configuration.rules[0].id #=> String
5589
+ # resp.findings[0].resources[0].details.aws_s3_bucket.bucket_lifecycle_configuration.rules[0].noncurrent_version_expiration_in_days #=> Integer
5590
+ # resp.findings[0].resources[0].details.aws_s3_bucket.bucket_lifecycle_configuration.rules[0].noncurrent_version_transitions #=> Array
5591
+ # resp.findings[0].resources[0].details.aws_s3_bucket.bucket_lifecycle_configuration.rules[0].noncurrent_version_transitions[0].days #=> Integer
5592
+ # resp.findings[0].resources[0].details.aws_s3_bucket.bucket_lifecycle_configuration.rules[0].noncurrent_version_transitions[0].storage_class #=> String
5593
+ # resp.findings[0].resources[0].details.aws_s3_bucket.bucket_lifecycle_configuration.rules[0].prefix #=> String
5594
+ # resp.findings[0].resources[0].details.aws_s3_bucket.bucket_lifecycle_configuration.rules[0].status #=> String
5595
+ # resp.findings[0].resources[0].details.aws_s3_bucket.bucket_lifecycle_configuration.rules[0].transitions #=> Array
5596
+ # resp.findings[0].resources[0].details.aws_s3_bucket.bucket_lifecycle_configuration.rules[0].transitions[0].date #=> String
5597
+ # resp.findings[0].resources[0].details.aws_s3_bucket.bucket_lifecycle_configuration.rules[0].transitions[0].days #=> Integer
5598
+ # resp.findings[0].resources[0].details.aws_s3_bucket.bucket_lifecycle_configuration.rules[0].transitions[0].storage_class #=> String
5599
+ # resp.findings[0].resources[0].details.aws_s3_bucket.public_access_block_configuration.block_public_acls #=> Boolean
5600
+ # resp.findings[0].resources[0].details.aws_s3_bucket.public_access_block_configuration.block_public_policy #=> Boolean
5601
+ # resp.findings[0].resources[0].details.aws_s3_bucket.public_access_block_configuration.ignore_public_acls #=> Boolean
5602
+ # resp.findings[0].resources[0].details.aws_s3_bucket.public_access_block_configuration.restrict_public_buckets #=> Boolean
5603
+ # resp.findings[0].resources[0].details.aws_s3_account_public_access_block.block_public_acls #=> Boolean
5604
+ # resp.findings[0].resources[0].details.aws_s3_account_public_access_block.block_public_policy #=> Boolean
5605
+ # resp.findings[0].resources[0].details.aws_s3_account_public_access_block.ignore_public_acls #=> Boolean
5606
+ # resp.findings[0].resources[0].details.aws_s3_account_public_access_block.restrict_public_buckets #=> Boolean
4693
5607
  # resp.findings[0].resources[0].details.aws_s3_object.last_modified #=> String
4694
5608
  # resp.findings[0].resources[0].details.aws_s3_object.etag #=> String
4695
5609
  # resp.findings[0].resources[0].details.aws_s3_object.version_id #=> String
@@ -4746,6 +5660,7 @@ module Aws::SecurityHub
4746
5660
  # resp.findings[0].resources[0].details.aws_iam_policy.policy_version_list[0].is_default_version #=> Boolean
4747
5661
  # resp.findings[0].resources[0].details.aws_iam_policy.policy_version_list[0].create_date #=> String
4748
5662
  # resp.findings[0].resources[0].details.aws_iam_policy.update_date #=> String
5663
+ # resp.findings[0].resources[0].details.aws_api_gateway_v2_stage.client_certificate_id #=> String
4749
5664
  # resp.findings[0].resources[0].details.aws_api_gateway_v2_stage.created_date #=> String
4750
5665
  # resp.findings[0].resources[0].details.aws_api_gateway_v2_stage.description #=> String
4751
5666
  # resp.findings[0].resources[0].details.aws_api_gateway_v2_stage.default_route_settings.detailed_metrics_enabled #=> Boolean
@@ -5428,6 +6343,160 @@ module Aws::SecurityHub
5428
6343
  # resp.findings[0].resources[0].details.aws_rds_db_cluster.db_cluster_members[0].db_instance_identifier #=> String
5429
6344
  # resp.findings[0].resources[0].details.aws_rds_db_cluster.db_cluster_members[0].db_cluster_parameter_group_status #=> String
5430
6345
  # resp.findings[0].resources[0].details.aws_rds_db_cluster.iam_database_authentication_enabled #=> Boolean
6346
+ # resp.findings[0].resources[0].details.aws_ecs_cluster.capacity_providers #=> Array
6347
+ # resp.findings[0].resources[0].details.aws_ecs_cluster.capacity_providers[0] #=> String
6348
+ # resp.findings[0].resources[0].details.aws_ecs_cluster.cluster_settings #=> Array
6349
+ # resp.findings[0].resources[0].details.aws_ecs_cluster.cluster_settings[0].name #=> String
6350
+ # resp.findings[0].resources[0].details.aws_ecs_cluster.cluster_settings[0].value #=> String
6351
+ # resp.findings[0].resources[0].details.aws_ecs_cluster.configuration.execute_command_configuration.kms_key_id #=> String
6352
+ # resp.findings[0].resources[0].details.aws_ecs_cluster.configuration.execute_command_configuration.log_configuration.cloud_watch_encryption_enabled #=> Boolean
6353
+ # resp.findings[0].resources[0].details.aws_ecs_cluster.configuration.execute_command_configuration.log_configuration.cloud_watch_log_group_name #=> String
6354
+ # resp.findings[0].resources[0].details.aws_ecs_cluster.configuration.execute_command_configuration.log_configuration.s3_bucket_name #=> String
6355
+ # resp.findings[0].resources[0].details.aws_ecs_cluster.configuration.execute_command_configuration.log_configuration.s3_encryption_enabled #=> Boolean
6356
+ # resp.findings[0].resources[0].details.aws_ecs_cluster.configuration.execute_command_configuration.log_configuration.s3_key_prefix #=> String
6357
+ # resp.findings[0].resources[0].details.aws_ecs_cluster.configuration.execute_command_configuration.logging #=> String
6358
+ # resp.findings[0].resources[0].details.aws_ecs_cluster.default_capacity_provider_strategy #=> Array
6359
+ # resp.findings[0].resources[0].details.aws_ecs_cluster.default_capacity_provider_strategy[0].base #=> Integer
6360
+ # resp.findings[0].resources[0].details.aws_ecs_cluster.default_capacity_provider_strategy[0].capacity_provider #=> String
6361
+ # resp.findings[0].resources[0].details.aws_ecs_cluster.default_capacity_provider_strategy[0].weight #=> Integer
6362
+ # resp.findings[0].resources[0].details.aws_ecs_task_definition.container_definitions #=> Array
6363
+ # resp.findings[0].resources[0].details.aws_ecs_task_definition.container_definitions[0].command #=> Array
6364
+ # resp.findings[0].resources[0].details.aws_ecs_task_definition.container_definitions[0].command[0] #=> String
6365
+ # resp.findings[0].resources[0].details.aws_ecs_task_definition.container_definitions[0].cpu #=> Integer
6366
+ # resp.findings[0].resources[0].details.aws_ecs_task_definition.container_definitions[0].depends_on #=> Array
6367
+ # resp.findings[0].resources[0].details.aws_ecs_task_definition.container_definitions[0].depends_on[0].condition #=> String
6368
+ # resp.findings[0].resources[0].details.aws_ecs_task_definition.container_definitions[0].depends_on[0].container_name #=> String
6369
+ # resp.findings[0].resources[0].details.aws_ecs_task_definition.container_definitions[0].disable_networking #=> Boolean
6370
+ # resp.findings[0].resources[0].details.aws_ecs_task_definition.container_definitions[0].dns_search_domains #=> Array
6371
+ # resp.findings[0].resources[0].details.aws_ecs_task_definition.container_definitions[0].dns_search_domains[0] #=> String
6372
+ # resp.findings[0].resources[0].details.aws_ecs_task_definition.container_definitions[0].dns_servers #=> Array
6373
+ # resp.findings[0].resources[0].details.aws_ecs_task_definition.container_definitions[0].dns_servers[0] #=> String
6374
+ # resp.findings[0].resources[0].details.aws_ecs_task_definition.container_definitions[0].docker_labels #=> Hash
6375
+ # resp.findings[0].resources[0].details.aws_ecs_task_definition.container_definitions[0].docker_labels["NonEmptyString"] #=> String
6376
+ # resp.findings[0].resources[0].details.aws_ecs_task_definition.container_definitions[0].docker_security_options #=> Array
6377
+ # resp.findings[0].resources[0].details.aws_ecs_task_definition.container_definitions[0].docker_security_options[0] #=> String
6378
+ # resp.findings[0].resources[0].details.aws_ecs_task_definition.container_definitions[0].entry_point #=> Array
6379
+ # resp.findings[0].resources[0].details.aws_ecs_task_definition.container_definitions[0].entry_point[0] #=> String
6380
+ # resp.findings[0].resources[0].details.aws_ecs_task_definition.container_definitions[0].environment #=> Array
6381
+ # resp.findings[0].resources[0].details.aws_ecs_task_definition.container_definitions[0].environment[0].name #=> String
6382
+ # resp.findings[0].resources[0].details.aws_ecs_task_definition.container_definitions[0].environment[0].value #=> String
6383
+ # resp.findings[0].resources[0].details.aws_ecs_task_definition.container_definitions[0].environment_files #=> Array
6384
+ # resp.findings[0].resources[0].details.aws_ecs_task_definition.container_definitions[0].environment_files[0].type #=> String
6385
+ # resp.findings[0].resources[0].details.aws_ecs_task_definition.container_definitions[0].environment_files[0].value #=> String
6386
+ # resp.findings[0].resources[0].details.aws_ecs_task_definition.container_definitions[0].essential #=> Boolean
6387
+ # resp.findings[0].resources[0].details.aws_ecs_task_definition.container_definitions[0].extra_hosts #=> Array
6388
+ # resp.findings[0].resources[0].details.aws_ecs_task_definition.container_definitions[0].extra_hosts[0].hostname #=> String
6389
+ # resp.findings[0].resources[0].details.aws_ecs_task_definition.container_definitions[0].extra_hosts[0].ip_address #=> String
6390
+ # resp.findings[0].resources[0].details.aws_ecs_task_definition.container_definitions[0].firelens_configuration.options #=> Hash
6391
+ # resp.findings[0].resources[0].details.aws_ecs_task_definition.container_definitions[0].firelens_configuration.options["NonEmptyString"] #=> String
6392
+ # resp.findings[0].resources[0].details.aws_ecs_task_definition.container_definitions[0].firelens_configuration.type #=> String
6393
+ # resp.findings[0].resources[0].details.aws_ecs_task_definition.container_definitions[0].health_check.command #=> Array
6394
+ # resp.findings[0].resources[0].details.aws_ecs_task_definition.container_definitions[0].health_check.command[0] #=> String
6395
+ # resp.findings[0].resources[0].details.aws_ecs_task_definition.container_definitions[0].health_check.interval #=> Integer
6396
+ # resp.findings[0].resources[0].details.aws_ecs_task_definition.container_definitions[0].health_check.retries #=> Integer
6397
+ # resp.findings[0].resources[0].details.aws_ecs_task_definition.container_definitions[0].health_check.start_period #=> Integer
6398
+ # resp.findings[0].resources[0].details.aws_ecs_task_definition.container_definitions[0].health_check.timeout #=> Integer
6399
+ # resp.findings[0].resources[0].details.aws_ecs_task_definition.container_definitions[0].hostname #=> String
6400
+ # resp.findings[0].resources[0].details.aws_ecs_task_definition.container_definitions[0].image #=> String
6401
+ # resp.findings[0].resources[0].details.aws_ecs_task_definition.container_definitions[0].interactive #=> Boolean
6402
+ # resp.findings[0].resources[0].details.aws_ecs_task_definition.container_definitions[0].links #=> Array
6403
+ # resp.findings[0].resources[0].details.aws_ecs_task_definition.container_definitions[0].links[0] #=> String
6404
+ # resp.findings[0].resources[0].details.aws_ecs_task_definition.container_definitions[0].linux_parameters.capabilities.add #=> Array
6405
+ # resp.findings[0].resources[0].details.aws_ecs_task_definition.container_definitions[0].linux_parameters.capabilities.add[0] #=> String
6406
+ # resp.findings[0].resources[0].details.aws_ecs_task_definition.container_definitions[0].linux_parameters.capabilities.drop #=> Array
6407
+ # resp.findings[0].resources[0].details.aws_ecs_task_definition.container_definitions[0].linux_parameters.capabilities.drop[0] #=> String
6408
+ # resp.findings[0].resources[0].details.aws_ecs_task_definition.container_definitions[0].linux_parameters.devices #=> Array
6409
+ # resp.findings[0].resources[0].details.aws_ecs_task_definition.container_definitions[0].linux_parameters.devices[0].container_path #=> String
6410
+ # resp.findings[0].resources[0].details.aws_ecs_task_definition.container_definitions[0].linux_parameters.devices[0].host_path #=> String
6411
+ # resp.findings[0].resources[0].details.aws_ecs_task_definition.container_definitions[0].linux_parameters.devices[0].permissions #=> Array
6412
+ # resp.findings[0].resources[0].details.aws_ecs_task_definition.container_definitions[0].linux_parameters.devices[0].permissions[0] #=> String
6413
+ # resp.findings[0].resources[0].details.aws_ecs_task_definition.container_definitions[0].linux_parameters.init_process_enabled #=> Boolean
6414
+ # resp.findings[0].resources[0].details.aws_ecs_task_definition.container_definitions[0].linux_parameters.max_swap #=> Integer
6415
+ # resp.findings[0].resources[0].details.aws_ecs_task_definition.container_definitions[0].linux_parameters.shared_memory_size #=> Integer
6416
+ # resp.findings[0].resources[0].details.aws_ecs_task_definition.container_definitions[0].linux_parameters.swappiness #=> Integer
6417
+ # resp.findings[0].resources[0].details.aws_ecs_task_definition.container_definitions[0].linux_parameters.tmpfs #=> Array
6418
+ # resp.findings[0].resources[0].details.aws_ecs_task_definition.container_definitions[0].linux_parameters.tmpfs[0].container_path #=> String
6419
+ # resp.findings[0].resources[0].details.aws_ecs_task_definition.container_definitions[0].linux_parameters.tmpfs[0].mount_options #=> Array
6420
+ # resp.findings[0].resources[0].details.aws_ecs_task_definition.container_definitions[0].linux_parameters.tmpfs[0].mount_options[0] #=> String
6421
+ # resp.findings[0].resources[0].details.aws_ecs_task_definition.container_definitions[0].linux_parameters.tmpfs[0].size #=> Integer
6422
+ # resp.findings[0].resources[0].details.aws_ecs_task_definition.container_definitions[0].log_configuration.log_driver #=> String
6423
+ # resp.findings[0].resources[0].details.aws_ecs_task_definition.container_definitions[0].log_configuration.options #=> Hash
6424
+ # resp.findings[0].resources[0].details.aws_ecs_task_definition.container_definitions[0].log_configuration.options["NonEmptyString"] #=> String
6425
+ # resp.findings[0].resources[0].details.aws_ecs_task_definition.container_definitions[0].log_configuration.secret_options #=> Array
6426
+ # resp.findings[0].resources[0].details.aws_ecs_task_definition.container_definitions[0].log_configuration.secret_options[0].name #=> String
6427
+ # resp.findings[0].resources[0].details.aws_ecs_task_definition.container_definitions[0].log_configuration.secret_options[0].value_from #=> String
6428
+ # resp.findings[0].resources[0].details.aws_ecs_task_definition.container_definitions[0].memory #=> Integer
6429
+ # resp.findings[0].resources[0].details.aws_ecs_task_definition.container_definitions[0].memory_reservation #=> Integer
6430
+ # resp.findings[0].resources[0].details.aws_ecs_task_definition.container_definitions[0].mount_points #=> Array
6431
+ # resp.findings[0].resources[0].details.aws_ecs_task_definition.container_definitions[0].mount_points[0].container_path #=> String
6432
+ # resp.findings[0].resources[0].details.aws_ecs_task_definition.container_definitions[0].mount_points[0].read_only #=> Boolean
6433
+ # resp.findings[0].resources[0].details.aws_ecs_task_definition.container_definitions[0].mount_points[0].source_volume #=> String
6434
+ # resp.findings[0].resources[0].details.aws_ecs_task_definition.container_definitions[0].name #=> String
6435
+ # resp.findings[0].resources[0].details.aws_ecs_task_definition.container_definitions[0].port_mappings #=> Array
6436
+ # resp.findings[0].resources[0].details.aws_ecs_task_definition.container_definitions[0].port_mappings[0].container_port #=> Integer
6437
+ # resp.findings[0].resources[0].details.aws_ecs_task_definition.container_definitions[0].port_mappings[0].host_port #=> Integer
6438
+ # resp.findings[0].resources[0].details.aws_ecs_task_definition.container_definitions[0].port_mappings[0].protocol #=> String
6439
+ # resp.findings[0].resources[0].details.aws_ecs_task_definition.container_definitions[0].privileged #=> Boolean
6440
+ # resp.findings[0].resources[0].details.aws_ecs_task_definition.container_definitions[0].pseudo_terminal #=> Boolean
6441
+ # resp.findings[0].resources[0].details.aws_ecs_task_definition.container_definitions[0].readonly_root_filesystem #=> Boolean
6442
+ # resp.findings[0].resources[0].details.aws_ecs_task_definition.container_definitions[0].repository_credentials.credentials_parameter #=> String
6443
+ # resp.findings[0].resources[0].details.aws_ecs_task_definition.container_definitions[0].resource_requirements #=> Array
6444
+ # resp.findings[0].resources[0].details.aws_ecs_task_definition.container_definitions[0].resource_requirements[0].type #=> String
6445
+ # resp.findings[0].resources[0].details.aws_ecs_task_definition.container_definitions[0].resource_requirements[0].value #=> String
6446
+ # resp.findings[0].resources[0].details.aws_ecs_task_definition.container_definitions[0].secrets #=> Array
6447
+ # resp.findings[0].resources[0].details.aws_ecs_task_definition.container_definitions[0].secrets[0].name #=> String
6448
+ # resp.findings[0].resources[0].details.aws_ecs_task_definition.container_definitions[0].secrets[0].value_from #=> String
6449
+ # resp.findings[0].resources[0].details.aws_ecs_task_definition.container_definitions[0].start_timeout #=> Integer
6450
+ # resp.findings[0].resources[0].details.aws_ecs_task_definition.container_definitions[0].stop_timeout #=> Integer
6451
+ # resp.findings[0].resources[0].details.aws_ecs_task_definition.container_definitions[0].system_controls #=> Array
6452
+ # resp.findings[0].resources[0].details.aws_ecs_task_definition.container_definitions[0].system_controls[0].namespace #=> String
6453
+ # resp.findings[0].resources[0].details.aws_ecs_task_definition.container_definitions[0].system_controls[0].value #=> String
6454
+ # resp.findings[0].resources[0].details.aws_ecs_task_definition.container_definitions[0].ulimits #=> Array
6455
+ # resp.findings[0].resources[0].details.aws_ecs_task_definition.container_definitions[0].ulimits[0].hard_limit #=> Integer
6456
+ # resp.findings[0].resources[0].details.aws_ecs_task_definition.container_definitions[0].ulimits[0].name #=> String
6457
+ # resp.findings[0].resources[0].details.aws_ecs_task_definition.container_definitions[0].ulimits[0].soft_limit #=> Integer
6458
+ # resp.findings[0].resources[0].details.aws_ecs_task_definition.container_definitions[0].user #=> String
6459
+ # resp.findings[0].resources[0].details.aws_ecs_task_definition.container_definitions[0].volumes_from #=> Array
6460
+ # resp.findings[0].resources[0].details.aws_ecs_task_definition.container_definitions[0].volumes_from[0].read_only #=> Boolean
6461
+ # resp.findings[0].resources[0].details.aws_ecs_task_definition.container_definitions[0].volumes_from[0].source_container #=> String
6462
+ # resp.findings[0].resources[0].details.aws_ecs_task_definition.container_definitions[0].working_directory #=> String
6463
+ # resp.findings[0].resources[0].details.aws_ecs_task_definition.cpu #=> String
6464
+ # resp.findings[0].resources[0].details.aws_ecs_task_definition.execution_role_arn #=> String
6465
+ # resp.findings[0].resources[0].details.aws_ecs_task_definition.family #=> String
6466
+ # resp.findings[0].resources[0].details.aws_ecs_task_definition.inference_accelerators #=> Array
6467
+ # resp.findings[0].resources[0].details.aws_ecs_task_definition.inference_accelerators[0].device_name #=> String
6468
+ # resp.findings[0].resources[0].details.aws_ecs_task_definition.inference_accelerators[0].device_type #=> String
6469
+ # resp.findings[0].resources[0].details.aws_ecs_task_definition.ipc_mode #=> String
6470
+ # resp.findings[0].resources[0].details.aws_ecs_task_definition.memory #=> String
6471
+ # resp.findings[0].resources[0].details.aws_ecs_task_definition.network_mode #=> String
6472
+ # resp.findings[0].resources[0].details.aws_ecs_task_definition.pid_mode #=> String
6473
+ # resp.findings[0].resources[0].details.aws_ecs_task_definition.placement_constraints #=> Array
6474
+ # resp.findings[0].resources[0].details.aws_ecs_task_definition.placement_constraints[0].expression #=> String
6475
+ # resp.findings[0].resources[0].details.aws_ecs_task_definition.placement_constraints[0].type #=> String
6476
+ # resp.findings[0].resources[0].details.aws_ecs_task_definition.proxy_configuration.container_name #=> String
6477
+ # resp.findings[0].resources[0].details.aws_ecs_task_definition.proxy_configuration.proxy_configuration_properties #=> Array
6478
+ # resp.findings[0].resources[0].details.aws_ecs_task_definition.proxy_configuration.proxy_configuration_properties[0].name #=> String
6479
+ # resp.findings[0].resources[0].details.aws_ecs_task_definition.proxy_configuration.proxy_configuration_properties[0].value #=> String
6480
+ # resp.findings[0].resources[0].details.aws_ecs_task_definition.proxy_configuration.type #=> String
6481
+ # resp.findings[0].resources[0].details.aws_ecs_task_definition.requires_compatibilities #=> Array
6482
+ # resp.findings[0].resources[0].details.aws_ecs_task_definition.requires_compatibilities[0] #=> String
6483
+ # resp.findings[0].resources[0].details.aws_ecs_task_definition.task_role_arn #=> String
6484
+ # resp.findings[0].resources[0].details.aws_ecs_task_definition.volumes #=> Array
6485
+ # resp.findings[0].resources[0].details.aws_ecs_task_definition.volumes[0].docker_volume_configuration.autoprovision #=> Boolean
6486
+ # resp.findings[0].resources[0].details.aws_ecs_task_definition.volumes[0].docker_volume_configuration.driver #=> String
6487
+ # resp.findings[0].resources[0].details.aws_ecs_task_definition.volumes[0].docker_volume_configuration.driver_opts #=> Hash
6488
+ # resp.findings[0].resources[0].details.aws_ecs_task_definition.volumes[0].docker_volume_configuration.driver_opts["NonEmptyString"] #=> String
6489
+ # resp.findings[0].resources[0].details.aws_ecs_task_definition.volumes[0].docker_volume_configuration.labels #=> Hash
6490
+ # resp.findings[0].resources[0].details.aws_ecs_task_definition.volumes[0].docker_volume_configuration.labels["NonEmptyString"] #=> String
6491
+ # resp.findings[0].resources[0].details.aws_ecs_task_definition.volumes[0].docker_volume_configuration.scope #=> String
6492
+ # resp.findings[0].resources[0].details.aws_ecs_task_definition.volumes[0].efs_volume_configuration.authorization_config.access_point_id #=> String
6493
+ # resp.findings[0].resources[0].details.aws_ecs_task_definition.volumes[0].efs_volume_configuration.authorization_config.iam #=> String
6494
+ # resp.findings[0].resources[0].details.aws_ecs_task_definition.volumes[0].efs_volume_configuration.filesystem_id #=> String
6495
+ # resp.findings[0].resources[0].details.aws_ecs_task_definition.volumes[0].efs_volume_configuration.root_directory #=> String
6496
+ # resp.findings[0].resources[0].details.aws_ecs_task_definition.volumes[0].efs_volume_configuration.transit_encryption #=> String
6497
+ # resp.findings[0].resources[0].details.aws_ecs_task_definition.volumes[0].efs_volume_configuration.transit_encryption_port #=> Integer
6498
+ # resp.findings[0].resources[0].details.aws_ecs_task_definition.volumes[0].host.source_path #=> String
6499
+ # resp.findings[0].resources[0].details.aws_ecs_task_definition.volumes[0].name #=> String
5431
6500
  # resp.findings[0].resources[0].details.container.name #=> String
5432
6501
  # resp.findings[0].resources[0].details.container.image_id #=> String
5433
6502
  # resp.findings[0].resources[0].details.container.image_name #=> String
@@ -5536,6 +6605,15 @@ module Aws::SecurityHub
5536
6605
  # resp.findings[0].action.port_probe_action.port_probe_details[0].remote_ip_details.geo_location.lon #=> Float
5537
6606
  # resp.findings[0].action.port_probe_action.port_probe_details[0].remote_ip_details.geo_location.lat #=> Float
5538
6607
  # resp.findings[0].action.port_probe_action.blocked #=> Boolean
6608
+ # resp.findings[0].finding_provider_fields.confidence #=> Integer
6609
+ # resp.findings[0].finding_provider_fields.criticality #=> Integer
6610
+ # resp.findings[0].finding_provider_fields.related_findings #=> Array
6611
+ # resp.findings[0].finding_provider_fields.related_findings[0].product_arn #=> String
6612
+ # resp.findings[0].finding_provider_fields.related_findings[0].id #=> String
6613
+ # resp.findings[0].finding_provider_fields.severity.label #=> String, one of "INFORMATIONAL", "LOW", "MEDIUM", "HIGH", "CRITICAL"
6614
+ # resp.findings[0].finding_provider_fields.severity.original #=> String
6615
+ # resp.findings[0].finding_provider_fields.types #=> Array
6616
+ # resp.findings[0].finding_provider_fields.types[0] #=> String
5539
6617
  # resp.next_token #=> String
5540
6618
  #
5541
6619
  # @see http://docs.aws.amazon.com/goto/WebAPI/securityhub-2018-10-26/GetFindings AWS API Documentation
@@ -5897,6 +6975,29 @@ module Aws::SecurityHub
5897
6975
  # resp.insights[0].filters.note_updated_by[0].comparison #=> String, one of "EQUALS", "PREFIX", "NOT_EQUALS", "PREFIX_NOT_EQUALS"
5898
6976
  # resp.insights[0].filters.keyword #=> Array
5899
6977
  # resp.insights[0].filters.keyword[0].value #=> String
6978
+ # resp.insights[0].filters.finding_provider_fields_confidence #=> Array
6979
+ # resp.insights[0].filters.finding_provider_fields_confidence[0].gte #=> Float
6980
+ # resp.insights[0].filters.finding_provider_fields_confidence[0].lte #=> Float
6981
+ # resp.insights[0].filters.finding_provider_fields_confidence[0].eq #=> Float
6982
+ # resp.insights[0].filters.finding_provider_fields_criticality #=> Array
6983
+ # resp.insights[0].filters.finding_provider_fields_criticality[0].gte #=> Float
6984
+ # resp.insights[0].filters.finding_provider_fields_criticality[0].lte #=> Float
6985
+ # resp.insights[0].filters.finding_provider_fields_criticality[0].eq #=> Float
6986
+ # resp.insights[0].filters.finding_provider_fields_related_findings_id #=> Array
6987
+ # resp.insights[0].filters.finding_provider_fields_related_findings_id[0].value #=> String
6988
+ # resp.insights[0].filters.finding_provider_fields_related_findings_id[0].comparison #=> String, one of "EQUALS", "PREFIX", "NOT_EQUALS", "PREFIX_NOT_EQUALS"
6989
+ # resp.insights[0].filters.finding_provider_fields_related_findings_product_arn #=> Array
6990
+ # resp.insights[0].filters.finding_provider_fields_related_findings_product_arn[0].value #=> String
6991
+ # resp.insights[0].filters.finding_provider_fields_related_findings_product_arn[0].comparison #=> String, one of "EQUALS", "PREFIX", "NOT_EQUALS", "PREFIX_NOT_EQUALS"
6992
+ # resp.insights[0].filters.finding_provider_fields_severity_label #=> Array
6993
+ # resp.insights[0].filters.finding_provider_fields_severity_label[0].value #=> String
6994
+ # resp.insights[0].filters.finding_provider_fields_severity_label[0].comparison #=> String, one of "EQUALS", "PREFIX", "NOT_EQUALS", "PREFIX_NOT_EQUALS"
6995
+ # resp.insights[0].filters.finding_provider_fields_severity_original #=> Array
6996
+ # resp.insights[0].filters.finding_provider_fields_severity_original[0].value #=> String
6997
+ # resp.insights[0].filters.finding_provider_fields_severity_original[0].comparison #=> String, one of "EQUALS", "PREFIX", "NOT_EQUALS", "PREFIX_NOT_EQUALS"
6998
+ # resp.insights[0].filters.finding_provider_fields_types #=> Array
6999
+ # resp.insights[0].filters.finding_provider_fields_types[0].value #=> String
7000
+ # resp.insights[0].filters.finding_provider_fields_types[0].comparison #=> String, one of "EQUALS", "PREFIX", "NOT_EQUALS", "PREFIX_NOT_EQUALS"
5900
7001
  # resp.insights[0].group_by_attribute #=> String
5901
7002
  # resp.next_token #=> String
5902
7003
  #
@@ -5930,11 +7031,20 @@ module Aws::SecurityHub
5930
7031
  req.send_request(options)
5931
7032
  end
5932
7033
 
5933
- # Provides the details for the Security Hub master account for the
5934
- # current member account.
7034
+ # This method is deprecated. Instead, use `GetAdministratorAccount`.
7035
+ #
7036
+ # The Security Hub console continues to use `GetMasterAccount`. It will
7037
+ # eventually change to use `GetAdministratorAccount`. Any IAM policies
7038
+ # that specifically control access to this function must continue to use
7039
+ # `GetMasterAccount`. You should also add `GetAdministratorAccount` to
7040
+ # your policies to ensure that the correct permissions are in place
7041
+ # after the console begins to use `GetAdministratorAccount`.
7042
+ #
7043
+ # Provides the details for the Security Hub administrator account for
7044
+ # the current member account.
5935
7045
  #
5936
- # Can be used by both member accounts that are in an organization and
5937
- # accounts that were invited manually.
7046
+ # Can be used by both member accounts that are managed using
7047
+ # Organizations and accounts that were invited manually.
5938
7048
  #
5939
7049
  # @return [Types::GetMasterAccountResponse] Returns a {Seahorse::Client::Response response} object which responds to the following methods:
5940
7050
  #
@@ -5959,12 +7069,12 @@ module Aws::SecurityHub
5959
7069
  # Returns the details for the Security Hub member accounts for the
5960
7070
  # specified account IDs.
5961
7071
  #
5962
- # A master account can be either a delegated Security Hub administrator
5963
- # account for an organization or a master account that enabled Security
5964
- # Hub manually.
7072
+ # An administrator account can be either the delegated Security Hub
7073
+ # administrator account for an organization or an administrator account
7074
+ # that enabled Security Hub manually.
5965
7075
  #
5966
- # The results include both member accounts that are in an organization
5967
- # and accounts that were invited manually.
7076
+ # The results include both member accounts that are managed using
7077
+ # Organizations and accounts that were invited manually.
5968
7078
  #
5969
7079
  # @option params [required, Array<String>] :account_ids
5970
7080
  # The list of account IDs for the Security Hub member accounts to return
@@ -5987,6 +7097,7 @@ module Aws::SecurityHub
5987
7097
  # resp.members[0].account_id #=> String
5988
7098
  # resp.members[0].email #=> String
5989
7099
  # resp.members[0].master_id #=> String
7100
+ # resp.members[0].administrator_id #=> String
5990
7101
  # resp.members[0].member_status #=> String
5991
7102
  # resp.members[0].invited_at #=> Time
5992
7103
  # resp.members[0].updated_at #=> Time
@@ -6004,7 +7115,7 @@ module Aws::SecurityHub
6004
7115
  end
6005
7116
 
6006
7117
  # Invites other AWS accounts to become member accounts for the Security
6007
- # Hub master account that the invitation is sent from.
7118
+ # Hub administrator account that the invitation is sent from.
6008
7119
  #
6009
7120
  # This operation is only used to invite accounts that do not belong to
6010
7121
  # an organization. Organization accounts do not receive invitations.
@@ -6014,8 +7125,8 @@ module Aws::SecurityHub
6014
7125
  # Hub.
6015
7126
  #
6016
7127
  # When the account owner enables Security Hub and accepts the invitation
6017
- # to become a member account, the master account can view the findings
6018
- # generated from the member account.
7128
+ # to become a member account, the administrator account can view the
7129
+ # findings generated from the member account.
6019
7130
  #
6020
7131
  # @option params [required, Array<String>] :account_ids
6021
7132
  # The list of account IDs of the AWS accounts to invite to Security Hub
@@ -6093,8 +7204,9 @@ module Aws::SecurityHub
6093
7204
  # Lists all Security Hub membership invitations that were sent to the
6094
7205
  # current AWS account.
6095
7206
  #
6096
- # This operation is only used by accounts that do not belong to an
6097
- # organization. Organization accounts do not receive invitations.
7207
+ # This operation is only used by accounts that are managed by
7208
+ # invitation. Accounts that are managed using the integration with AWS
7209
+ # Organizations do not receive invitations.
6098
7210
  #
6099
7211
  # @option params [Integer] :max_results
6100
7212
  # The maximum number of items to return in the response.
@@ -6141,19 +7253,19 @@ module Aws::SecurityHub
6141
7253
  end
6142
7254
 
6143
7255
  # Lists details about all member accounts for the current Security Hub
6144
- # master account.
7256
+ # administrator account.
6145
7257
  #
6146
7258
  # The results include both member accounts that belong to an
6147
7259
  # organization and member accounts that were invited manually.
6148
7260
  #
6149
7261
  # @option params [Boolean] :only_associated
6150
7262
  # Specifies which member accounts to include in the response based on
6151
- # their relationship status with the master account. The default value
6152
- # is `TRUE`.
7263
+ # their relationship status with the administrator account. The default
7264
+ # value is `TRUE`.
6153
7265
  #
6154
7266
  # If `OnlyAssociated` is set to `TRUE`, the response includes member
6155
- # accounts whose relationship status with the master is set to
6156
- # `ENABLED`.
7267
+ # accounts whose relationship status with the administrator account is
7268
+ # set to `ENABLED`.
6157
7269
  #
6158
7270
  # If `OnlyAssociated` is set to `FALSE`, the response includes all
6159
7271
  # existing member accounts.
@@ -6190,6 +7302,7 @@ module Aws::SecurityHub
6190
7302
  # resp.members[0].account_id #=> String
6191
7303
  # resp.members[0].email #=> String
6192
7304
  # resp.members[0].master_id #=> String
7305
+ # resp.members[0].administrator_id #=> String
6193
7306
  # resp.members[0].member_status #=> String
6194
7307
  # resp.members[0].invited_at #=> Time
6195
7308
  # resp.members[0].updated_at #=> Time
@@ -6282,7 +7395,9 @@ module Aws::SecurityHub
6282
7395
  # The ARN of the resource to apply the tags to.
6283
7396
  #
6284
7397
  # @option params [required, Hash<String,String>] :tags
6285
- # The tags to add to the resource.
7398
+ # The tags to add to the resource. You can add up to 50 tags at a time.
7399
+ # The tag keys can be no longer than 128 characters. The tag values can
7400
+ # be no longer than 256 characters.
6286
7401
  #
6287
7402
  # @return [Struct] Returns an empty {Seahorse::Client::Response response}.
6288
7403
  #
@@ -6310,7 +7425,8 @@ module Aws::SecurityHub
6310
7425
  # The ARN of the resource to remove the tags from.
6311
7426
  #
6312
7427
  # @option params [required, Array<String>] :tag_keys
6313
- # The tag keys associated with the tags to remove from the resource.
7428
+ # The tag keys associated with the tags to remove from the resource. You
7429
+ # can remove up to 50 tags at a time.
6314
7430
  #
6315
7431
  # @return [Struct] Returns an empty {Seahorse::Client::Response response}.
6316
7432
  #
@@ -6937,6 +8053,50 @@ module Aws::SecurityHub
6937
8053
  # value: "NonEmptyString",
6938
8054
  # },
6939
8055
  # ],
8056
+ # finding_provider_fields_confidence: [
8057
+ # {
8058
+ # gte: 1.0,
8059
+ # lte: 1.0,
8060
+ # eq: 1.0,
8061
+ # },
8062
+ # ],
8063
+ # finding_provider_fields_criticality: [
8064
+ # {
8065
+ # gte: 1.0,
8066
+ # lte: 1.0,
8067
+ # eq: 1.0,
8068
+ # },
8069
+ # ],
8070
+ # finding_provider_fields_related_findings_id: [
8071
+ # {
8072
+ # value: "NonEmptyString",
8073
+ # comparison: "EQUALS", # accepts EQUALS, PREFIX, NOT_EQUALS, PREFIX_NOT_EQUALS
8074
+ # },
8075
+ # ],
8076
+ # finding_provider_fields_related_findings_product_arn: [
8077
+ # {
8078
+ # value: "NonEmptyString",
8079
+ # comparison: "EQUALS", # accepts EQUALS, PREFIX, NOT_EQUALS, PREFIX_NOT_EQUALS
8080
+ # },
8081
+ # ],
8082
+ # finding_provider_fields_severity_label: [
8083
+ # {
8084
+ # value: "NonEmptyString",
8085
+ # comparison: "EQUALS", # accepts EQUALS, PREFIX, NOT_EQUALS, PREFIX_NOT_EQUALS
8086
+ # },
8087
+ # ],
8088
+ # finding_provider_fields_severity_original: [
8089
+ # {
8090
+ # value: "NonEmptyString",
8091
+ # comparison: "EQUALS", # accepts EQUALS, PREFIX, NOT_EQUALS, PREFIX_NOT_EQUALS
8092
+ # },
8093
+ # ],
8094
+ # finding_provider_fields_types: [
8095
+ # {
8096
+ # value: "NonEmptyString",
8097
+ # comparison: "EQUALS", # accepts EQUALS, PREFIX, NOT_EQUALS, PREFIX_NOT_EQUALS
8098
+ # },
8099
+ # ],
6940
8100
  # },
6941
8101
  # note: {
6942
8102
  # text: "NonEmptyString", # required
@@ -7530,6 +8690,50 @@ module Aws::SecurityHub
7530
8690
  # value: "NonEmptyString",
7531
8691
  # },
7532
8692
  # ],
8693
+ # finding_provider_fields_confidence: [
8694
+ # {
8695
+ # gte: 1.0,
8696
+ # lte: 1.0,
8697
+ # eq: 1.0,
8698
+ # },
8699
+ # ],
8700
+ # finding_provider_fields_criticality: [
8701
+ # {
8702
+ # gte: 1.0,
8703
+ # lte: 1.0,
8704
+ # eq: 1.0,
8705
+ # },
8706
+ # ],
8707
+ # finding_provider_fields_related_findings_id: [
8708
+ # {
8709
+ # value: "NonEmptyString",
8710
+ # comparison: "EQUALS", # accepts EQUALS, PREFIX, NOT_EQUALS, PREFIX_NOT_EQUALS
8711
+ # },
8712
+ # ],
8713
+ # finding_provider_fields_related_findings_product_arn: [
8714
+ # {
8715
+ # value: "NonEmptyString",
8716
+ # comparison: "EQUALS", # accepts EQUALS, PREFIX, NOT_EQUALS, PREFIX_NOT_EQUALS
8717
+ # },
8718
+ # ],
8719
+ # finding_provider_fields_severity_label: [
8720
+ # {
8721
+ # value: "NonEmptyString",
8722
+ # comparison: "EQUALS", # accepts EQUALS, PREFIX, NOT_EQUALS, PREFIX_NOT_EQUALS
8723
+ # },
8724
+ # ],
8725
+ # finding_provider_fields_severity_original: [
8726
+ # {
8727
+ # value: "NonEmptyString",
8728
+ # comparison: "EQUALS", # accepts EQUALS, PREFIX, NOT_EQUALS, PREFIX_NOT_EQUALS
8729
+ # },
8730
+ # ],
8731
+ # finding_provider_fields_types: [
8732
+ # {
8733
+ # value: "NonEmptyString",
8734
+ # comparison: "EQUALS", # accepts EQUALS, PREFIX, NOT_EQUALS, PREFIX_NOT_EQUALS
8735
+ # },
8736
+ # ],
7533
8737
  # },
7534
8738
  # group_by_attribute: "NonEmptyString",
7535
8739
  # })
@@ -7645,7 +8849,7 @@ module Aws::SecurityHub
7645
8849
  params: params,
7646
8850
  config: config)
7647
8851
  context[:gem_name] = 'aws-sdk-securityhub'
7648
- context[:gem_version] = '1.41.0'
8852
+ context[:gem_version] = '1.47.0'
7649
8853
  Seahorse::Client::Request.new(handlers, context)
7650
8854
  end
7651
8855