aws-sdk-securityhub 1.43.0 → 1.45.0

checksums.yaml

@@ -1,7 +1,7 @@
 ---
 SHA256:
-  metadata.gz: 390442ee15ed3e5ea404592445aeb31b79c3eabee8e45ca2d4851e3d65509f0c
-  data.tar.gz: 9fd83098ed50b201ad80fab0d9198fb39fef52161a6a9ff0e0cef07fda203362
+  metadata.gz: 4d6017e425c6f71226f81f4ec1e6550806c2d9db103f20175fbb4dcec1562653
+  data.tar.gz: 8ec59e1a587d24e63875a1cdaacd44410dbf028df27b0f2183ecfedd7e5fdfcd
 SHA512:
-  metadata.gz: 808aa77319e44d3dd9a4d659fe1b95692c3a6317f9fb0eb92bff639f579529611552c124c6955973b31c6ce59f295ae628e5e0902177f347bbebd97372acf045
-  data.tar.gz: f8a500de8376ce0037f2eb236453cbfd1d7ac915f7fed95dc871b57a507df52c271dbc01b60a5652b7aea2b497f3a4db2e1482cc908ea75713fff6b997b9e191
+  metadata.gz: 59f95bed240d216e965719ff574a2542d43980664ed7c7dd9e40cc12002618b4a1d3d86cff31fab4f3779361ef1e634fc063a5a99b4ee0029eb9a2d74803a0ed
+  data.tar.gz: 9b71ec2cb2620ee549f6fb3de6b9215ac5ad3f060f7aa063d2aff60521063002491aed22e833a4617ebd6099b0b8955aef0a4d483e82fc306aaa5e4ac7177d36

data/CHANGELOG.md

@@ -1,6 +1,16 @@
 Unreleased Changes
 ------------------
 
+1.45.0 (2021-05-03)
+------------------
+
+* Feature - Updated ASFF to add the following new resource details objects: AwsEc2NetworkAcl, AwsEc2Subnet, and AwsElasticBeanstalkEnvironment.
+
+1.44.0 (2021-05-03)
+------------------
+
+* Feature - Updated ASFF to add the following new resource details objects: AwsEc2NetworkAcl, AwsEc2Subnet, and AwsElasticBeanstalkEnvironment.
+
 1.43.0 (2021-04-22)
 ------------------
 

data/VERSION

@@ -1 +1 @@
-1.43.0
+1.45.0

data/lib/aws-sdk-securityhub.rb

@@ -48,6 +48,6 @@ require_relative 'aws-sdk-securityhub/customizations'
 # @!group service
 module Aws::SecurityHub
 
-  GEM_VERSION = '1.43.0'
+  GEM_VERSION = '1.45.0'
 
 end

data/lib/aws-sdk-securityhub/client.rb

@@ -366,6 +366,14 @@ module Aws::SecurityHub
     # This method is deprecated. Instead, use
     # `AcceptAdministratorInvitation`.
     #
+    # The Security Hub console continues to use `AcceptInvitation`. It will
+    # eventually change to use `AcceptAdministratorInvitation`. Any IAM
+    # policies that specifically control access to this function must
+    # continue to use `AcceptInvitation`. You should also add
+    # `AcceptAdministratorInvitation` to your policies to ensure that the
+    # correct permissions are in place after the console begins to use
+    # `AcceptAdministratorInvitation`.
+    #
     # Accepts the invitation to be a member account and be monitored by the
     # Security Hub administrator account that the invitation was sent from.
     #
@@ -1045,6 +1053,58 @@ module Aws::SecurityHub
     #                 network_interface_owner_id: "NonEmptyString",
     #                 private_ip_address: "NonEmptyString",
     #               },
+    #               aws_ec2_subnet: {
+    #                 assign_ipv_6_address_on_creation: false,
+    #                 availability_zone: "NonEmptyString",
+    #                 availability_zone_id: "NonEmptyString",
+    #                 available_ip_address_count: 1,
+    #                 cidr_block: "NonEmptyString",
+    #                 default_for_az: false,
+    #                 map_public_ip_on_launch: false,
+    #                 owner_id: "NonEmptyString",
+    #                 state: "NonEmptyString",
+    #                 subnet_arn: "NonEmptyString",
+    #                 subnet_id: "NonEmptyString",
+    #                 vpc_id: "NonEmptyString",
+    #                 ipv_6_cidr_block_association_set: [
+    #                   {
+    #                     association_id: "NonEmptyString",
+    #                     ipv_6_cidr_block: "NonEmptyString",
+    #                     cidr_block_state: "NonEmptyString",
+    #                   },
+    #                 ],
+    #               },
+    #               aws_ec2_network_acl: {
+    #                 is_default: false,
+    #                 network_acl_id: "NonEmptyString",
+    #                 owner_id: "NonEmptyString",
+    #                 vpc_id: "NonEmptyString",
+    #                 associations: [
+    #                   {
+    #                     network_acl_association_id: "NonEmptyString",
+    #                     network_acl_id: "NonEmptyString",
+    #                     subnet_id: "NonEmptyString",
+    #                   },
+    #                 ],
+    #                 entries: [
+    #                   {
+    #                     cidr_block: "NonEmptyString",
+    #                     egress: false,
+    #                     icmp_type_code: {
+    #                       code: 1,
+    #                       type: 1,
+    #                     },
+    #                     ipv_6_cidr_block: "NonEmptyString",
+    #                     port_range: {
+    #                       from: 1,
+    #                       to: 1,
+    #                     },
+    #                     protocol: "NonEmptyString",
+    #                     rule_action: "NonEmptyString",
+    #                     rule_number: 1,
+    #                   },
+    #                 ],
+    #               },
     #               aws_elbv_2_load_balancer: {
     #                 availability_zones: [
     #                   {
@@ -1065,6 +1125,40 @@ module Aws::SecurityHub
     #                 type: "NonEmptyString",
     #                 vpc_id: "NonEmptyString",
     #               },
+    #               aws_elastic_beanstalk_environment: {
+    #                 application_name: "NonEmptyString",
+    #                 cname: "NonEmptyString",
+    #                 date_created: "NonEmptyString",
+    #                 date_updated: "NonEmptyString",
+    #                 description: "NonEmptyString",
+    #                 endpoint_url: "NonEmptyString",
+    #                 environment_arn: "NonEmptyString",
+    #                 environment_id: "NonEmptyString",
+    #                 environment_links: [
+    #                   {
+    #                     environment_name: "NonEmptyString",
+    #                     link_name: "NonEmptyString",
+    #                   },
+    #                 ],
+    #                 environment_name: "NonEmptyString",
+    #                 option_settings: [
+    #                   {
+    #                     namespace: "NonEmptyString",
+    #                     option_name: "NonEmptyString",
+    #                     resource_name: "NonEmptyString",
+    #                     value: "NonEmptyString",
+    #                   },
+    #                 ],
+    #                 platform_arn: "NonEmptyString",
+    #                 solution_stack_name: "NonEmptyString",
+    #                 status: "NonEmptyString",
+    #                 tier: {
+    #                   name: "NonEmptyString",
+    #                   type: "NonEmptyString",
+    #                   version: "NonEmptyString",
+    #                 },
+    #                 version_label: "NonEmptyString",
+    #               },
     #               aws_elasticsearch_domain: {
     #                 access_policies: "NonEmptyString",
     #                 domain_endpoint_options: {
@@ -3852,6 +3946,15 @@ module Aws::SecurityHub
     # This method is deprecated. Instead, use
     # `DisassociateFromAdministratorAccount`.
     #
+    # The Security Hub console continues to use
+    # `DisassociateFromMasterAccount`. It will eventually change to use
+    # `DisassociateFromAdministratorAccount`. Any IAM policies that
+    # specifically control access to this function must continue to use
+    # `DisassociateFromMasterAccount`. You should also add
+    # `DisassociateFromAdministratorAccount` to your policies to ensure that
+    # the correct permissions are in place after the console begins to use
+    # `DisassociateFromAdministratorAccount`.
+    #
     # Disassociates the current Security Hub member account from the
     # associated administrator account.
     #
@@ -5041,6 +5144,41 @@ module Aws::SecurityHub
     #   resp.findings[0].resources[0].details.aws_ec2_eip.network_interface_id #=> String
     #   resp.findings[0].resources[0].details.aws_ec2_eip.network_interface_owner_id #=> String
     #   resp.findings[0].resources[0].details.aws_ec2_eip.private_ip_address #=> String
+    #   resp.findings[0].resources[0].details.aws_ec2_subnet.assign_ipv_6_address_on_creation #=> Boolean
+    #   resp.findings[0].resources[0].details.aws_ec2_subnet.availability_zone #=> String
+    #   resp.findings[0].resources[0].details.aws_ec2_subnet.availability_zone_id #=> String
+    #   resp.findings[0].resources[0].details.aws_ec2_subnet.available_ip_address_count #=> Integer
+    #   resp.findings[0].resources[0].details.aws_ec2_subnet.cidr_block #=> String
+    #   resp.findings[0].resources[0].details.aws_ec2_subnet.default_for_az #=> Boolean
+    #   resp.findings[0].resources[0].details.aws_ec2_subnet.map_public_ip_on_launch #=> Boolean
+    #   resp.findings[0].resources[0].details.aws_ec2_subnet.owner_id #=> String
+    #   resp.findings[0].resources[0].details.aws_ec2_subnet.state #=> String
+    #   resp.findings[0].resources[0].details.aws_ec2_subnet.subnet_arn #=> String
+    #   resp.findings[0].resources[0].details.aws_ec2_subnet.subnet_id #=> String
+    #   resp.findings[0].resources[0].details.aws_ec2_subnet.vpc_id #=> String
+    #   resp.findings[0].resources[0].details.aws_ec2_subnet.ipv_6_cidr_block_association_set #=> Array
+    #   resp.findings[0].resources[0].details.aws_ec2_subnet.ipv_6_cidr_block_association_set[0].association_id #=> String
+    #   resp.findings[0].resources[0].details.aws_ec2_subnet.ipv_6_cidr_block_association_set[0].ipv_6_cidr_block #=> String
+    #   resp.findings[0].resources[0].details.aws_ec2_subnet.ipv_6_cidr_block_association_set[0].cidr_block_state #=> String
+    #   resp.findings[0].resources[0].details.aws_ec2_network_acl.is_default #=> Boolean
+    #   resp.findings[0].resources[0].details.aws_ec2_network_acl.network_acl_id #=> String
+    #   resp.findings[0].resources[0].details.aws_ec2_network_acl.owner_id #=> String
+    #   resp.findings[0].resources[0].details.aws_ec2_network_acl.vpc_id #=> String
+    #   resp.findings[0].resources[0].details.aws_ec2_network_acl.associations #=> Array
+    #   resp.findings[0].resources[0].details.aws_ec2_network_acl.associations[0].network_acl_association_id #=> String
+    #   resp.findings[0].resources[0].details.aws_ec2_network_acl.associations[0].network_acl_id #=> String
+    #   resp.findings[0].resources[0].details.aws_ec2_network_acl.associations[0].subnet_id #=> String
+    #   resp.findings[0].resources[0].details.aws_ec2_network_acl.entries #=> Array
+    #   resp.findings[0].resources[0].details.aws_ec2_network_acl.entries[0].cidr_block #=> String
+    #   resp.findings[0].resources[0].details.aws_ec2_network_acl.entries[0].egress #=> Boolean
+    #   resp.findings[0].resources[0].details.aws_ec2_network_acl.entries[0].icmp_type_code.code #=> Integer
+    #   resp.findings[0].resources[0].details.aws_ec2_network_acl.entries[0].icmp_type_code.type #=> Integer
+    #   resp.findings[0].resources[0].details.aws_ec2_network_acl.entries[0].ipv_6_cidr_block #=> String
+    #   resp.findings[0].resources[0].details.aws_ec2_network_acl.entries[0].port_range.from #=> Integer
+    #   resp.findings[0].resources[0].details.aws_ec2_network_acl.entries[0].port_range.to #=> Integer
+    #   resp.findings[0].resources[0].details.aws_ec2_network_acl.entries[0].protocol #=> String
+    #   resp.findings[0].resources[0].details.aws_ec2_network_acl.entries[0].rule_action #=> String
+    #   resp.findings[0].resources[0].details.aws_ec2_network_acl.entries[0].rule_number #=> Integer
     #   resp.findings[0].resources[0].details.aws_elbv_2_load_balancer.availability_zones #=> Array
     #   resp.findings[0].resources[0].details.aws_elbv_2_load_balancer.availability_zones[0].zone_name #=> String
     #   resp.findings[0].resources[0].details.aws_elbv_2_load_balancer.availability_zones[0].subnet_id #=> String
@@ -5055,6 +5193,30 @@ module Aws::SecurityHub
     #   resp.findings[0].resources[0].details.aws_elbv_2_load_balancer.state.reason #=> String
     #   resp.findings[0].resources[0].details.aws_elbv_2_load_balancer.type #=> String
     #   resp.findings[0].resources[0].details.aws_elbv_2_load_balancer.vpc_id #=> String
+    #   resp.findings[0].resources[0].details.aws_elastic_beanstalk_environment.application_name #=> String
+    #   resp.findings[0].resources[0].details.aws_elastic_beanstalk_environment.cname #=> String
+    #   resp.findings[0].resources[0].details.aws_elastic_beanstalk_environment.date_created #=> String
+    #   resp.findings[0].resources[0].details.aws_elastic_beanstalk_environment.date_updated #=> String
+    #   resp.findings[0].resources[0].details.aws_elastic_beanstalk_environment.description #=> String
+    #   resp.findings[0].resources[0].details.aws_elastic_beanstalk_environment.endpoint_url #=> String
+    #   resp.findings[0].resources[0].details.aws_elastic_beanstalk_environment.environment_arn #=> String
+    #   resp.findings[0].resources[0].details.aws_elastic_beanstalk_environment.environment_id #=> String
+    #   resp.findings[0].resources[0].details.aws_elastic_beanstalk_environment.environment_links #=> Array
+    #   resp.findings[0].resources[0].details.aws_elastic_beanstalk_environment.environment_links[0].environment_name #=> String
+    #   resp.findings[0].resources[0].details.aws_elastic_beanstalk_environment.environment_links[0].link_name #=> String
+    #   resp.findings[0].resources[0].details.aws_elastic_beanstalk_environment.environment_name #=> String
+    #   resp.findings[0].resources[0].details.aws_elastic_beanstalk_environment.option_settings #=> Array
+    #   resp.findings[0].resources[0].details.aws_elastic_beanstalk_environment.option_settings[0].namespace #=> String
+    #   resp.findings[0].resources[0].details.aws_elastic_beanstalk_environment.option_settings[0].option_name #=> String
+    #   resp.findings[0].resources[0].details.aws_elastic_beanstalk_environment.option_settings[0].resource_name #=> String
+    #   resp.findings[0].resources[0].details.aws_elastic_beanstalk_environment.option_settings[0].value #=> String
+    #   resp.findings[0].resources[0].details.aws_elastic_beanstalk_environment.platform_arn #=> String
+    #   resp.findings[0].resources[0].details.aws_elastic_beanstalk_environment.solution_stack_name #=> String
+    #   resp.findings[0].resources[0].details.aws_elastic_beanstalk_environment.status #=> String
+    #   resp.findings[0].resources[0].details.aws_elastic_beanstalk_environment.tier.name #=> String
+    #   resp.findings[0].resources[0].details.aws_elastic_beanstalk_environment.tier.type #=> String
+    #   resp.findings[0].resources[0].details.aws_elastic_beanstalk_environment.tier.version #=> String
+    #   resp.findings[0].resources[0].details.aws_elastic_beanstalk_environment.version_label #=> String
     #   resp.findings[0].resources[0].details.aws_elasticsearch_domain.access_policies #=> String
     #   resp.findings[0].resources[0].details.aws_elasticsearch_domain.domain_endpoint_options.enforce_https #=> Boolean
     #   resp.findings[0].resources[0].details.aws_elasticsearch_domain.domain_endpoint_options.tls_security_policy #=> String
@@ -6362,6 +6524,13 @@ module Aws::SecurityHub
 
     # This method is deprecated. Instead, use `GetAdministratorAccount`.
     #
+    # The Security Hub console continues to use `GetMasterAccount`. It will
+    # eventually change to use `GetAdministratorAccount`. Any IAM policies
+    # that specifically control access to this function must continue to use
+    # `GetMasterAccount`. You should also add `GetAdministratorAccount` to
+    # your policies to ensure that the correct permissions are in place
+    # after the console begins to use `GetAdministratorAccount`.
+    #
     # Provides the details for the Security Hub administrator account for
     # the current member account.
     #
@@ -8168,7 +8337,7 @@ module Aws::SecurityHub
         params: params,
         config: config)
       context[:gem_name] = 'aws-sdk-securityhub'
-      context[:gem_version] = '1.43.0'
+      context[:gem_version] = '1.45.0'
       Seahorse::Client::Request.new(handlers, context)
     end
 

data/lib/aws-sdk-securityhub/client_api.rb

@@ -104,6 +104,11 @@ module Aws::SecurityHub
     AwsDynamoDbTableStreamSpecification = Shapes::StructureShape.new(name: 'AwsDynamoDbTableStreamSpecification')
     AwsEc2EipDetails = Shapes::StructureShape.new(name: 'AwsEc2EipDetails')
     AwsEc2InstanceDetails = Shapes::StructureShape.new(name: 'AwsEc2InstanceDetails')
+    AwsEc2NetworkAclAssociation = Shapes::StructureShape.new(name: 'AwsEc2NetworkAclAssociation')
+    AwsEc2NetworkAclAssociationList = Shapes::ListShape.new(name: 'AwsEc2NetworkAclAssociationList')
+    AwsEc2NetworkAclDetails = Shapes::StructureShape.new(name: 'AwsEc2NetworkAclDetails')
+    AwsEc2NetworkAclEntry = Shapes::StructureShape.new(name: 'AwsEc2NetworkAclEntry')
+    AwsEc2NetworkAclEntryList = Shapes::ListShape.new(name: 'AwsEc2NetworkAclEntryList')
     AwsEc2NetworkInterfaceAttachment = Shapes::StructureShape.new(name: 'AwsEc2NetworkInterfaceAttachment')
     AwsEc2NetworkInterfaceDetails = Shapes::StructureShape.new(name: 'AwsEc2NetworkInterfaceDetails')
     AwsEc2NetworkInterfaceIpV6AddressDetail = Shapes::StructureShape.new(name: 'AwsEc2NetworkInterfaceIpV6AddressDetail')
@@ -123,10 +128,17 @@ module Aws::SecurityHub
     AwsEc2SecurityGroupPrefixListIdList = Shapes::ListShape.new(name: 'AwsEc2SecurityGroupPrefixListIdList')
     AwsEc2SecurityGroupUserIdGroupPair = Shapes::StructureShape.new(name: 'AwsEc2SecurityGroupUserIdGroupPair')
     AwsEc2SecurityGroupUserIdGroupPairList = Shapes::ListShape.new(name: 'AwsEc2SecurityGroupUserIdGroupPairList')
+    AwsEc2SubnetDetails = Shapes::StructureShape.new(name: 'AwsEc2SubnetDetails')
     AwsEc2VolumeAttachment = Shapes::StructureShape.new(name: 'AwsEc2VolumeAttachment')
     AwsEc2VolumeAttachmentList = Shapes::ListShape.new(name: 'AwsEc2VolumeAttachmentList')
     AwsEc2VolumeDetails = Shapes::StructureShape.new(name: 'AwsEc2VolumeDetails')
     AwsEc2VpcDetails = Shapes::StructureShape.new(name: 'AwsEc2VpcDetails')
+    AwsElasticBeanstalkEnvironmentDetails = Shapes::StructureShape.new(name: 'AwsElasticBeanstalkEnvironmentDetails')
+    AwsElasticBeanstalkEnvironmentEnvironmentLink = Shapes::StructureShape.new(name: 'AwsElasticBeanstalkEnvironmentEnvironmentLink')
+    AwsElasticBeanstalkEnvironmentEnvironmentLinks = Shapes::ListShape.new(name: 'AwsElasticBeanstalkEnvironmentEnvironmentLinks')
+    AwsElasticBeanstalkEnvironmentOptionSetting = Shapes::StructureShape.new(name: 'AwsElasticBeanstalkEnvironmentOptionSetting')
+    AwsElasticBeanstalkEnvironmentOptionSettings = Shapes::ListShape.new(name: 'AwsElasticBeanstalkEnvironmentOptionSettings')
+    AwsElasticBeanstalkEnvironmentTier = Shapes::StructureShape.new(name: 'AwsElasticBeanstalkEnvironmentTier')
     AwsElasticsearchDomainDetails = Shapes::StructureShape.new(name: 'AwsElasticsearchDomainDetails')
     AwsElasticsearchDomainDomainEndpointOptions = Shapes::StructureShape.new(name: 'AwsElasticsearchDomainDomainEndpointOptions')
     AwsElasticsearchDomainEncryptionAtRestOptions = Shapes::StructureShape.new(name: 'AwsElasticsearchDomainEncryptionAtRestOptions')
@@ -371,6 +383,7 @@ module Aws::SecurityHub
     GetMasterAccountResponse = Shapes::StructureShape.new(name: 'GetMasterAccountResponse')
     GetMembersRequest = Shapes::StructureShape.new(name: 'GetMembersRequest')
     GetMembersResponse = Shapes::StructureShape.new(name: 'GetMembersResponse')
+    IcmpTypeCode = Shapes::StructureShape.new(name: 'IcmpTypeCode')
     ImportFindingsError = Shapes::StructureShape.new(name: 'ImportFindingsError')
     ImportFindingsErrorList = Shapes::ListShape.new(name: 'ImportFindingsErrorList')
     Insight = Shapes::StructureShape.new(name: 'Insight')
@@ -441,6 +454,7 @@ module Aws::SecurityHub
     PortProbeDetail = Shapes::StructureShape.new(name: 'PortProbeDetail')
     PortProbeDetailList = Shapes::ListShape.new(name: 'PortProbeDetailList')
     PortRange = Shapes::StructureShape.new(name: 'PortRange')
+    PortRangeFromTo = Shapes::StructureShape.new(name: 'PortRangeFromTo')
     PortRangeList = Shapes::ListShape.new(name: 'PortRangeList')
     ProcessDetails = Shapes::StructureShape.new(name: 'ProcessDetails')
     Product = Shapes::StructureShape.new(name: 'Product')
@@ -1019,6 +1033,33 @@ module Aws::SecurityHub
     AwsEc2InstanceDetails.add_member(:launched_at, Shapes::ShapeRef.new(shape: NonEmptyString, location_name: "LaunchedAt"))
     AwsEc2InstanceDetails.struct_class = Types::AwsEc2InstanceDetails
 
+    AwsEc2NetworkAclAssociation.add_member(:network_acl_association_id, Shapes::ShapeRef.new(shape: NonEmptyString, location_name: "NetworkAclAssociationId"))
+    AwsEc2NetworkAclAssociation.add_member(:network_acl_id, Shapes::ShapeRef.new(shape: NonEmptyString, location_name: "NetworkAclId"))
+    AwsEc2NetworkAclAssociation.add_member(:subnet_id, Shapes::ShapeRef.new(shape: NonEmptyString, location_name: "SubnetId"))
+    AwsEc2NetworkAclAssociation.struct_class = Types::AwsEc2NetworkAclAssociation
+
+    AwsEc2NetworkAclAssociationList.member = Shapes::ShapeRef.new(shape: AwsEc2NetworkAclAssociation)
+
+    AwsEc2NetworkAclDetails.add_member(:is_default, Shapes::ShapeRef.new(shape: Boolean, location_name: "IsDefault"))
+    AwsEc2NetworkAclDetails.add_member(:network_acl_id, Shapes::ShapeRef.new(shape: NonEmptyString, location_name: "NetworkAclId"))
+    AwsEc2NetworkAclDetails.add_member(:owner_id, Shapes::ShapeRef.new(shape: NonEmptyString, location_name: "OwnerId"))
+    AwsEc2NetworkAclDetails.add_member(:vpc_id, Shapes::ShapeRef.new(shape: NonEmptyString, location_name: "VpcId"))
+    AwsEc2NetworkAclDetails.add_member(:associations, Shapes::ShapeRef.new(shape: AwsEc2NetworkAclAssociationList, location_name: "Associations"))
+    AwsEc2NetworkAclDetails.add_member(:entries, Shapes::ShapeRef.new(shape: AwsEc2NetworkAclEntryList, location_name: "Entries"))
+    AwsEc2NetworkAclDetails.struct_class = Types::AwsEc2NetworkAclDetails
+
+    AwsEc2NetworkAclEntry.add_member(:cidr_block, Shapes::ShapeRef.new(shape: NonEmptyString, location_name: "CidrBlock"))
+    AwsEc2NetworkAclEntry.add_member(:egress, Shapes::ShapeRef.new(shape: Boolean, location_name: "Egress"))
+    AwsEc2NetworkAclEntry.add_member(:icmp_type_code, Shapes::ShapeRef.new(shape: IcmpTypeCode, location_name: "IcmpTypeCode"))
+    AwsEc2NetworkAclEntry.add_member(:ipv_6_cidr_block, Shapes::ShapeRef.new(shape: NonEmptyString, location_name: "Ipv6CidrBlock"))
+    AwsEc2NetworkAclEntry.add_member(:port_range, Shapes::ShapeRef.new(shape: PortRangeFromTo, location_name: "PortRange"))
+    AwsEc2NetworkAclEntry.add_member(:protocol, Shapes::ShapeRef.new(shape: NonEmptyString, location_name: "Protocol"))
+    AwsEc2NetworkAclEntry.add_member(:rule_action, Shapes::ShapeRef.new(shape: NonEmptyString, location_name: "RuleAction"))
+    AwsEc2NetworkAclEntry.add_member(:rule_number, Shapes::ShapeRef.new(shape: Integer, location_name: "RuleNumber"))
+    AwsEc2NetworkAclEntry.struct_class = Types::AwsEc2NetworkAclEntry
+
+    AwsEc2NetworkAclEntryList.member = Shapes::ShapeRef.new(shape: AwsEc2NetworkAclEntry)
+
     AwsEc2NetworkInterfaceAttachment.add_member(:attach_time, Shapes::ShapeRef.new(shape: NonEmptyString, location_name: "AttachTime"))
     AwsEc2NetworkInterfaceAttachment.add_member(:attachment_id, Shapes::ShapeRef.new(shape: NonEmptyString, location_name: "AttachmentId"))
     AwsEc2NetworkInterfaceAttachment.add_member(:delete_on_termination, Shapes::ShapeRef.new(shape: Boolean, location_name: "DeleteOnTermination"))
@@ -1099,6 +1140,21 @@ module Aws::SecurityHub
 
     AwsEc2SecurityGroupUserIdGroupPairList.member = Shapes::ShapeRef.new(shape: AwsEc2SecurityGroupUserIdGroupPair)
 
+    AwsEc2SubnetDetails.add_member(:assign_ipv_6_address_on_creation, Shapes::ShapeRef.new(shape: Boolean, location_name: "AssignIpv6AddressOnCreation"))
+    AwsEc2SubnetDetails.add_member(:availability_zone, Shapes::ShapeRef.new(shape: NonEmptyString, location_name: "AvailabilityZone"))
+    AwsEc2SubnetDetails.add_member(:availability_zone_id, Shapes::ShapeRef.new(shape: NonEmptyString, location_name: "AvailabilityZoneId"))
+    AwsEc2SubnetDetails.add_member(:available_ip_address_count, Shapes::ShapeRef.new(shape: Integer, location_name: "AvailableIpAddressCount"))
+    AwsEc2SubnetDetails.add_member(:cidr_block, Shapes::ShapeRef.new(shape: NonEmptyString, location_name: "CidrBlock"))
+    AwsEc2SubnetDetails.add_member(:default_for_az, Shapes::ShapeRef.new(shape: Boolean, location_name: "DefaultForAz"))
+    AwsEc2SubnetDetails.add_member(:map_public_ip_on_launch, Shapes::ShapeRef.new(shape: Boolean, location_name: "MapPublicIpOnLaunch"))
+    AwsEc2SubnetDetails.add_member(:owner_id, Shapes::ShapeRef.new(shape: NonEmptyString, location_name: "OwnerId"))
+    AwsEc2SubnetDetails.add_member(:state, Shapes::ShapeRef.new(shape: NonEmptyString, location_name: "State"))
+    AwsEc2SubnetDetails.add_member(:subnet_arn, Shapes::ShapeRef.new(shape: NonEmptyString, location_name: "SubnetArn"))
+    AwsEc2SubnetDetails.add_member(:subnet_id, Shapes::ShapeRef.new(shape: NonEmptyString, location_name: "SubnetId"))
+    AwsEc2SubnetDetails.add_member(:vpc_id, Shapes::ShapeRef.new(shape: NonEmptyString, location_name: "VpcId"))
+    AwsEc2SubnetDetails.add_member(:ipv_6_cidr_block_association_set, Shapes::ShapeRef.new(shape: Ipv6CidrBlockAssociationList, location_name: "Ipv6CidrBlockAssociationSet"))
+    AwsEc2SubnetDetails.struct_class = Types::AwsEc2SubnetDetails
+
     AwsEc2VolumeAttachment.add_member(:attach_time, Shapes::ShapeRef.new(shape: NonEmptyString, location_name: "AttachTime"))
     AwsEc2VolumeAttachment.add_member(:delete_on_termination, Shapes::ShapeRef.new(shape: Boolean, location_name: "DeleteOnTermination"))
     AwsEc2VolumeAttachment.add_member(:instance_id, Shapes::ShapeRef.new(shape: NonEmptyString, location_name: "InstanceId"))
@@ -1122,6 +1178,43 @@ module Aws::SecurityHub
     AwsEc2VpcDetails.add_member(:state, Shapes::ShapeRef.new(shape: NonEmptyString, location_name: "State"))
     AwsEc2VpcDetails.struct_class = Types::AwsEc2VpcDetails
 
+    AwsElasticBeanstalkEnvironmentDetails.add_member(:application_name, Shapes::ShapeRef.new(shape: NonEmptyString, location_name: "ApplicationName"))
+    AwsElasticBeanstalkEnvironmentDetails.add_member(:cname, Shapes::ShapeRef.new(shape: NonEmptyString, location_name: "Cname"))
+    AwsElasticBeanstalkEnvironmentDetails.add_member(:date_created, Shapes::ShapeRef.new(shape: NonEmptyString, location_name: "DateCreated"))
+    AwsElasticBeanstalkEnvironmentDetails.add_member(:date_updated, Shapes::ShapeRef.new(shape: NonEmptyString, location_name: "DateUpdated"))
+    AwsElasticBeanstalkEnvironmentDetails.add_member(:description, Shapes::ShapeRef.new(shape: NonEmptyString, location_name: "Description"))
+    AwsElasticBeanstalkEnvironmentDetails.add_member(:endpoint_url, Shapes::ShapeRef.new(shape: NonEmptyString, location_name: "EndpointUrl"))
+    AwsElasticBeanstalkEnvironmentDetails.add_member(:environment_arn, Shapes::ShapeRef.new(shape: NonEmptyString, location_name: "EnvironmentArn"))
+    AwsElasticBeanstalkEnvironmentDetails.add_member(:environment_id, Shapes::ShapeRef.new(shape: NonEmptyString, location_name: "EnvironmentId"))
+    AwsElasticBeanstalkEnvironmentDetails.add_member(:environment_links, Shapes::ShapeRef.new(shape: AwsElasticBeanstalkEnvironmentEnvironmentLinks, location_name: "EnvironmentLinks"))
+    AwsElasticBeanstalkEnvironmentDetails.add_member(:environment_name, Shapes::ShapeRef.new(shape: NonEmptyString, location_name: "EnvironmentName"))
+    AwsElasticBeanstalkEnvironmentDetails.add_member(:option_settings, Shapes::ShapeRef.new(shape: AwsElasticBeanstalkEnvironmentOptionSettings, location_name: "OptionSettings"))
+    AwsElasticBeanstalkEnvironmentDetails.add_member(:platform_arn, Shapes::ShapeRef.new(shape: NonEmptyString, location_name: "PlatformArn"))
+    AwsElasticBeanstalkEnvironmentDetails.add_member(:solution_stack_name, Shapes::ShapeRef.new(shape: NonEmptyString, location_name: "SolutionStackName"))
+    AwsElasticBeanstalkEnvironmentDetails.add_member(:status, Shapes::ShapeRef.new(shape: NonEmptyString, location_name: "Status"))
+    AwsElasticBeanstalkEnvironmentDetails.add_member(:tier, Shapes::ShapeRef.new(shape: AwsElasticBeanstalkEnvironmentTier, location_name: "Tier"))
+    AwsElasticBeanstalkEnvironmentDetails.add_member(:version_label, Shapes::ShapeRef.new(shape: NonEmptyString, location_name: "VersionLabel"))
+    AwsElasticBeanstalkEnvironmentDetails.struct_class = Types::AwsElasticBeanstalkEnvironmentDetails
+
+    AwsElasticBeanstalkEnvironmentEnvironmentLink.add_member(:environment_name, Shapes::ShapeRef.new(shape: NonEmptyString, location_name: "EnvironmentName"))
+    AwsElasticBeanstalkEnvironmentEnvironmentLink.add_member(:link_name, Shapes::ShapeRef.new(shape: NonEmptyString, location_name: "LinkName"))
+    AwsElasticBeanstalkEnvironmentEnvironmentLink.struct_class = Types::AwsElasticBeanstalkEnvironmentEnvironmentLink
+
+    AwsElasticBeanstalkEnvironmentEnvironmentLinks.member = Shapes::ShapeRef.new(shape: AwsElasticBeanstalkEnvironmentEnvironmentLink)
+
+    AwsElasticBeanstalkEnvironmentOptionSetting.add_member(:namespace, Shapes::ShapeRef.new(shape: NonEmptyString, location_name: "Namespace"))
+    AwsElasticBeanstalkEnvironmentOptionSetting.add_member(:option_name, Shapes::ShapeRef.new(shape: NonEmptyString, location_name: "OptionName"))
+    AwsElasticBeanstalkEnvironmentOptionSetting.add_member(:resource_name, Shapes::ShapeRef.new(shape: NonEmptyString, location_name: "ResourceName"))
+    AwsElasticBeanstalkEnvironmentOptionSetting.add_member(:value, Shapes::ShapeRef.new(shape: NonEmptyString, location_name: "Value"))
+    AwsElasticBeanstalkEnvironmentOptionSetting.struct_class = Types::AwsElasticBeanstalkEnvironmentOptionSetting
+
+    AwsElasticBeanstalkEnvironmentOptionSettings.member = Shapes::ShapeRef.new(shape: AwsElasticBeanstalkEnvironmentOptionSetting)
+
+    AwsElasticBeanstalkEnvironmentTier.add_member(:name, Shapes::ShapeRef.new(shape: NonEmptyString, location_name: "Name"))
+    AwsElasticBeanstalkEnvironmentTier.add_member(:type, Shapes::ShapeRef.new(shape: NonEmptyString, location_name: "Type"))
+    AwsElasticBeanstalkEnvironmentTier.add_member(:version, Shapes::ShapeRef.new(shape: NonEmptyString, location_name: "Version"))
+    AwsElasticBeanstalkEnvironmentTier.struct_class = Types::AwsElasticBeanstalkEnvironmentTier
+
     AwsElasticsearchDomainDetails.add_member(:access_policies, Shapes::ShapeRef.new(shape: NonEmptyString, location_name: "AccessPolicies"))
     AwsElasticsearchDomainDetails.add_member(:domain_endpoint_options, Shapes::ShapeRef.new(shape: AwsElasticsearchDomainDomainEndpointOptions, location_name: "DomainEndpointOptions"))
     AwsElasticsearchDomainDetails.add_member(:domain_id, Shapes::ShapeRef.new(shape: NonEmptyString, location_name: "DomainId"))
@@ -2430,6 +2523,10 @@ module Aws::SecurityHub
     GetMembersResponse.add_member(:unprocessed_accounts, Shapes::ShapeRef.new(shape: ResultList, location_name: "UnprocessedAccounts"))
     GetMembersResponse.struct_class = Types::GetMembersResponse
 
+    IcmpTypeCode.add_member(:code, Shapes::ShapeRef.new(shape: Integer, location_name: "Code"))
+    IcmpTypeCode.add_member(:type, Shapes::ShapeRef.new(shape: Integer, location_name: "Type"))
+    IcmpTypeCode.struct_class = Types::IcmpTypeCode
+
     ImportFindingsError.add_member(:id, Shapes::ShapeRef.new(shape: NonEmptyString, required: true, location_name: "Id"))
     ImportFindingsError.add_member(:error_code, Shapes::ShapeRef.new(shape: NonEmptyString, required: true, location_name: "ErrorCode"))
     ImportFindingsError.add_member(:error_message, Shapes::ShapeRef.new(shape: NonEmptyString, required: true, location_name: "ErrorMessage"))
@@ -2679,6 +2776,10 @@ module Aws::SecurityHub
     PortRange.add_member(:end, Shapes::ShapeRef.new(shape: Integer, location_name: "End"))
     PortRange.struct_class = Types::PortRange
 
+    PortRangeFromTo.add_member(:from, Shapes::ShapeRef.new(shape: Integer, location_name: "From"))
+    PortRangeFromTo.add_member(:to, Shapes::ShapeRef.new(shape: Integer, location_name: "To"))
+    PortRangeFromTo.struct_class = Types::PortRangeFromTo
+
     PortRangeList.member = Shapes::ShapeRef.new(shape: PortRange)
 
     ProcessDetails.add_member(:name, Shapes::ShapeRef.new(shape: NonEmptyString, location_name: "Name"))
@@ -2755,7 +2856,10 @@ module Aws::SecurityHub
     ResourceDetails.add_member(:aws_ec2_volume, Shapes::ShapeRef.new(shape: AwsEc2VolumeDetails, location_name: "AwsEc2Volume"))
     ResourceDetails.add_member(:aws_ec2_vpc, Shapes::ShapeRef.new(shape: AwsEc2VpcDetails, location_name: "AwsEc2Vpc"))
     ResourceDetails.add_member(:aws_ec2_eip, Shapes::ShapeRef.new(shape: AwsEc2EipDetails, location_name: "AwsEc2Eip"))
+    ResourceDetails.add_member(:aws_ec2_subnet, Shapes::ShapeRef.new(shape: AwsEc2SubnetDetails, location_name: "AwsEc2Subnet"))
+    ResourceDetails.add_member(:aws_ec2_network_acl, Shapes::ShapeRef.new(shape: AwsEc2NetworkAclDetails, location_name: "AwsEc2NetworkAcl"))
     ResourceDetails.add_member(:aws_elbv_2_load_balancer, Shapes::ShapeRef.new(shape: AwsElbv2LoadBalancerDetails, location_name: "AwsElbv2LoadBalancer"))
+    ResourceDetails.add_member(:aws_elastic_beanstalk_environment, Shapes::ShapeRef.new(shape: AwsElasticBeanstalkEnvironmentDetails, location_name: "AwsElasticBeanstalkEnvironment"))
     ResourceDetails.add_member(:aws_elasticsearch_domain, Shapes::ShapeRef.new(shape: AwsElasticsearchDomainDetails, location_name: "AwsElasticsearchDomain"))
     ResourceDetails.add_member(:aws_s3_bucket, Shapes::ShapeRef.new(shape: AwsS3BucketDetails, location_name: "AwsS3Bucket"))
     ResourceDetails.add_member(:aws_s3_account_public_access_block, Shapes::ShapeRef.new(shape: AwsS3AccountPublicAccessBlockDetails, location_name: "AwsS3AccountPublicAccessBlock"))

data/lib/aws-sdk-securityhub/types.rb

@@ -830,7 +830,7 @@ module Aws::SecurityHub
       include Aws::Structure
     end
 
-    # contains information about a REST API in version 1 of Amazon API
+    # Contains information about a REST API in version 1 of Amazon API
     # Gateway.
     #
     # @note When making an API call, you may pass AwsApiGatewayRestApiDetails
@@ -3849,6 +3849,189 @@ module Aws::SecurityHub
       include Aws::Structure
     end
 
+    # An association between the network ACL and a subnet.
+    #
+    # @note When making an API call, you may pass AwsEc2NetworkAclAssociation
+    #   data as a hash:
+    #
+    #       {
+    #         network_acl_association_id: "NonEmptyString",
+    #         network_acl_id: "NonEmptyString",
+    #         subnet_id: "NonEmptyString",
+    #       }
+    #
+    # @!attribute [rw] network_acl_association_id
+    #   The identifier of the association between the network ACL and the
+    #   subnet.
+    #   @return [String]
+    #
+    # @!attribute [rw] network_acl_id
+    #   The identifier of the network ACL.
+    #   @return [String]
+    #
+    # @!attribute [rw] subnet_id
+    #   The identifier of the subnet that is associated with the network
+    #   ACL.
+    #   @return [String]
+    #
+    # @see http://docs.aws.amazon.com/goto/WebAPI/securityhub-2018-10-26/AwsEc2NetworkAclAssociation AWS API Documentation
+    #
+    class AwsEc2NetworkAclAssociation < Struct.new(
+      :network_acl_association_id,
+      :network_acl_id,
+      :subnet_id)
+      SENSITIVE = []
+      include Aws::Structure
+    end
+
+    # Contains details about an EC2 network access control list (ACL).
+    #
+    # @note When making an API call, you may pass AwsEc2NetworkAclDetails
+    #   data as a hash:
+    #
+    #       {
+    #         is_default: false,
+    #         network_acl_id: "NonEmptyString",
+    #         owner_id: "NonEmptyString",
+    #         vpc_id: "NonEmptyString",
+    #         associations: [
+    #           {
+    #             network_acl_association_id: "NonEmptyString",
+    #             network_acl_id: "NonEmptyString",
+    #             subnet_id: "NonEmptyString",
+    #           },
+    #         ],
+    #         entries: [
+    #           {
+    #             cidr_block: "NonEmptyString",
+    #             egress: false,
+    #             icmp_type_code: {
+    #               code: 1,
+    #               type: 1,
+    #             },
+    #             ipv_6_cidr_block: "NonEmptyString",
+    #             port_range: {
+    #               from: 1,
+    #               to: 1,
+    #             },
+    #             protocol: "NonEmptyString",
+    #             rule_action: "NonEmptyString",
+    #             rule_number: 1,
+    #           },
+    #         ],
+    #       }
+    #
+    # @!attribute [rw] is_default
+    #   Whether this is the default network ACL for the VPC.
+    #   @return [Boolean]
+    #
+    # @!attribute [rw] network_acl_id
+    #   The identifier of the network ACL.
+    #   @return [String]
+    #
+    # @!attribute [rw] owner_id
+    #   The identifier of the AWS account that owns the network ACL.
+    #   @return [String]
+    #
+    # @!attribute [rw] vpc_id
+    #   The identifier of the VPC for the network ACL.
+    #   @return [String]
+    #
+    # @!attribute [rw] associations
+    #   Associations between the network ACL and subnets.
+    #   @return [Array<Types::AwsEc2NetworkAclAssociation>]
+    #
+    # @!attribute [rw] entries
+    #   The set of rules in the network ACL.
+    #   @return [Array<Types::AwsEc2NetworkAclEntry>]
+    #
+    # @see http://docs.aws.amazon.com/goto/WebAPI/securityhub-2018-10-26/AwsEc2NetworkAclDetails AWS API Documentation
+    #
+    class AwsEc2NetworkAclDetails < Struct.new(
+      :is_default,
+      :network_acl_id,
+      :owner_id,
+      :vpc_id,
+      :associations,
+      :entries)
+      SENSITIVE = []
+      include Aws::Structure
+    end
+
+    # A rule for the network ACL. Each rule allows or denies access based on
+    # the IP address, traffic direction, port, and protocol.
+    #
+    # @note When making an API call, you may pass AwsEc2NetworkAclEntry
+    #   data as a hash:
+    #
+    #       {
+    #         cidr_block: "NonEmptyString",
+    #         egress: false,
+    #         icmp_type_code: {
+    #           code: 1,
+    #           type: 1,
+    #         },
+    #         ipv_6_cidr_block: "NonEmptyString",
+    #         port_range: {
+    #           from: 1,
+    #           to: 1,
+    #         },
+    #         protocol: "NonEmptyString",
+    #         rule_action: "NonEmptyString",
+    #         rule_number: 1,
+    #       }
+    #
+    # @!attribute [rw] cidr_block
+    #   The IPV4 network range for which to deny or allow access.
+    #   @return [String]
+    #
+    # @!attribute [rw] egress
+    #   Whether the rule is an egress rule. An egress rule is a rule that
+    #   applies to traffic that leaves the subnet.
+    #   @return [Boolean]
+    #
+    # @!attribute [rw] icmp_type_code
+    #   The Internet Control Message Protocol (ICMP) type and code for which
+    #   to deny or allow access.
+    #   @return [Types::IcmpTypeCode]
+    #
+    # @!attribute [rw] ipv_6_cidr_block
+    #   The IPV6 network range for which to deny or allow access.
+    #   @return [String]
+    #
+    # @!attribute [rw] port_range
+    #   For TCP or UDP protocols, the range of ports that the rule applies
+    #   to.
+    #   @return [Types::PortRangeFromTo]
+    #
+    # @!attribute [rw] protocol
+    #   The protocol that the rule applies to. To deny or allow access to
+    #   all protocols, use the value -1.
+    #   @return [String]
+    #
+    # @!attribute [rw] rule_action
+    #   Whether the rule is used to allow access or deny access.
+    #   @return [String]
+    #
+    # @!attribute [rw] rule_number
+    #   The rule number. The rules are processed in order by their number.
+    #   @return [Integer]
+    #
+    # @see http://docs.aws.amazon.com/goto/WebAPI/securityhub-2018-10-26/AwsEc2NetworkAclEntry AWS API Documentation
+    #
+    class AwsEc2NetworkAclEntry < Struct.new(
+      :cidr_block,
+      :egress,
+      :icmp_type_code,
+      :ipv_6_cidr_block,
+      :port_range,
+      :protocol,
+      :rule_action,
+      :rule_number)
+      SENSITIVE = []
+      include Aws::Structure
+    end
+
     # Information about the network interface attachment.
     #
     # @note When making an API call, you may pass AwsEc2NetworkInterfaceAttachment
@@ -4418,6 +4601,107 @@ module Aws::SecurityHub
       include Aws::Structure
     end
 
+    # Contains information about a subnet in EC2.
+    #
+    # @note When making an API call, you may pass AwsEc2SubnetDetails
+    #   data as a hash:
+    #
+    #       {
+    #         assign_ipv_6_address_on_creation: false,
+    #         availability_zone: "NonEmptyString",
+    #         availability_zone_id: "NonEmptyString",
+    #         available_ip_address_count: 1,
+    #         cidr_block: "NonEmptyString",
+    #         default_for_az: false,
+    #         map_public_ip_on_launch: false,
+    #         owner_id: "NonEmptyString",
+    #         state: "NonEmptyString",
+    #         subnet_arn: "NonEmptyString",
+    #         subnet_id: "NonEmptyString",
+    #         vpc_id: "NonEmptyString",
+    #         ipv_6_cidr_block_association_set: [
+    #           {
+    #             association_id: "NonEmptyString",
+    #             ipv_6_cidr_block: "NonEmptyString",
+    #             cidr_block_state: "NonEmptyString",
+    #           },
+    #         ],
+    #       }
+    #
+    # @!attribute [rw] assign_ipv_6_address_on_creation
+    #   Whether to assign an IPV6 address to a network interface that is
+    #   created in this subnet.
+    #   @return [Boolean]
+    #
+    # @!attribute [rw] availability_zone
+    #   The Availability Zone for the subnet.
+    #   @return [String]
+    #
+    # @!attribute [rw] availability_zone_id
+    #   The identifier of the Availability Zone for the subnet.
+    #   @return [String]
+    #
+    # @!attribute [rw] available_ip_address_count
+    #   The number of available IPV4 addresses in the subnet. Does not
+    #   include addresses for stopped instances.
+    #   @return [Integer]
+    #
+    # @!attribute [rw] cidr_block
+    #   The IPV4 CIDR block that is assigned to the subnet.
+    #   @return [String]
+    #
+    # @!attribute [rw] default_for_az
+    #   Whether this subnet is the default subnet for the Availability Zone.
+    #   @return [Boolean]
+    #
+    # @!attribute [rw] map_public_ip_on_launch
+    #   Whether instances in this subnet receive a public IP address.
+    #   @return [Boolean]
+    #
+    # @!attribute [rw] owner_id
+    #   The identifier of the AWS account that owns the subnet.
+    #   @return [String]
+    #
+    # @!attribute [rw] state
+    #   The current state of the subnet.
+    #   @return [String]
+    #
+    # @!attribute [rw] subnet_arn
+    #   The ARN of the subnet.
+    #   @return [String]
+    #
+    # @!attribute [rw] subnet_id
+    #   The identifier of the subnet.
+    #   @return [String]
+    #
+    # @!attribute [rw] vpc_id
+    #   The identifier of the VPC that contains the subnet.
+    #   @return [String]
+    #
+    # @!attribute [rw] ipv_6_cidr_block_association_set
+    #   The IPV6 CIDR blocks that are associated with the subnet.
+    #   @return [Array<Types::Ipv6CidrBlockAssociation>]
+    #
+    # @see http://docs.aws.amazon.com/goto/WebAPI/securityhub-2018-10-26/AwsEc2SubnetDetails AWS API Documentation
+    #
+    class AwsEc2SubnetDetails < Struct.new(
+      :assign_ipv_6_address_on_creation,
+      :availability_zone,
+      :availability_zone_id,
+      :available_ip_address_count,
+      :cidr_block,
+      :default_for_az,
+      :map_public_ip_on_launch,
+      :owner_id,
+      :state,
+      :subnet_arn,
+      :subnet_id,
+      :vpc_id,
+      :ipv_6_cidr_block_association_set)
+      SENSITIVE = []
+      include Aws::Structure
+    end
+
     # An attachment to an AWS EC2 volume.
     #
     # @note When making an API call, you may pass AwsEc2VolumeAttachment
@@ -4585,6 +4869,237 @@ module Aws::SecurityHub
       include Aws::Structure
     end
 
+    # Contains details about an Elastic Beanstalk environment.
+    #
+    # @note When making an API call, you may pass AwsElasticBeanstalkEnvironmentDetails
+    #   data as a hash:
+    #
+    #       {
+    #         application_name: "NonEmptyString",
+    #         cname: "NonEmptyString",
+    #         date_created: "NonEmptyString",
+    #         date_updated: "NonEmptyString",
+    #         description: "NonEmptyString",
+    #         endpoint_url: "NonEmptyString",
+    #         environment_arn: "NonEmptyString",
+    #         environment_id: "NonEmptyString",
+    #         environment_links: [
+    #           {
+    #             environment_name: "NonEmptyString",
+    #             link_name: "NonEmptyString",
+    #           },
+    #         ],
+    #         environment_name: "NonEmptyString",
+    #         option_settings: [
+    #           {
+    #             namespace: "NonEmptyString",
+    #             option_name: "NonEmptyString",
+    #             resource_name: "NonEmptyString",
+    #             value: "NonEmptyString",
+    #           },
+    #         ],
+    #         platform_arn: "NonEmptyString",
+    #         solution_stack_name: "NonEmptyString",
+    #         status: "NonEmptyString",
+    #         tier: {
+    #           name: "NonEmptyString",
+    #           type: "NonEmptyString",
+    #           version: "NonEmptyString",
+    #         },
+    #         version_label: "NonEmptyString",
+    #       }
+    #
+    # @!attribute [rw] application_name
+    #   The name of the application that is associated with the environment.
+    #   @return [String]
+    #
+    # @!attribute [rw] cname
+    #   The URL to the CNAME for this environment.
+    #   @return [String]
+    #
+    # @!attribute [rw] date_created
+    #   The creation date for this environment.
+    #   @return [String]
+    #
+    # @!attribute [rw] date_updated
+    #   The date when this environment was last modified.
+    #   @return [String]
+    #
+    # @!attribute [rw] description
+    #   A description of the environment.
+    #   @return [String]
+    #
+    # @!attribute [rw] endpoint_url
+    #   For load-balanced, autoscaling environments, the URL to the load
+    #   balancer. For single-instance environments, the IP address of the
+    #   instance.
+    #   @return [String]
+    #
+    # @!attribute [rw] environment_arn
+    #   The ARN of the environment.
+    #   @return [String]
+    #
+    # @!attribute [rw] environment_id
+    #   The identifier of the environment.
+    #   @return [String]
+    #
+    # @!attribute [rw] environment_links
+    #   Links to other environments in the same group.
+    #   @return [Array<Types::AwsElasticBeanstalkEnvironmentEnvironmentLink>]
+    #
+    # @!attribute [rw] environment_name
+    #   The name of the environment.
+    #   @return [String]
+    #
+    # @!attribute [rw] option_settings
+    #   The configuration setting for the environment.
+    #   @return [Array<Types::AwsElasticBeanstalkEnvironmentOptionSetting>]
+    #
+    # @!attribute [rw] platform_arn
+    #   The ARN of the platform version for the environment.
+    #   @return [String]
+    #
+    # @!attribute [rw] solution_stack_name
+    #   The name of the solution stack that is deployed with the
+    #   environment.
+    #   @return [String]
+    #
+    # @!attribute [rw] status
+    #   The current operational status of the environment.
+    #   @return [String]
+    #
+    # @!attribute [rw] tier
+    #   The tier of the environment.
+    #   @return [Types::AwsElasticBeanstalkEnvironmentTier]
+    #
+    # @!attribute [rw] version_label
+    #   The application version of the environment.
+    #   @return [String]
+    #
+    # @see http://docs.aws.amazon.com/goto/WebAPI/securityhub-2018-10-26/AwsElasticBeanstalkEnvironmentDetails AWS API Documentation
+    #
+    class AwsElasticBeanstalkEnvironmentDetails < Struct.new(
+      :application_name,
+      :cname,
+      :date_created,
+      :date_updated,
+      :description,
+      :endpoint_url,
+      :environment_arn,
+      :environment_id,
+      :environment_links,
+      :environment_name,
+      :option_settings,
+      :platform_arn,
+      :solution_stack_name,
+      :status,
+      :tier,
+      :version_label)
+      SENSITIVE = []
+      include Aws::Structure
+    end
+
+    # Contains information about a link to another environment that is in
+    # the same group.
+    #
+    # @note When making an API call, you may pass AwsElasticBeanstalkEnvironmentEnvironmentLink
+    #   data as a hash:
+    #
+    #       {
+    #         environment_name: "NonEmptyString",
+    #         link_name: "NonEmptyString",
+    #       }
+    #
+    # @!attribute [rw] environment_name
+    #   The name of the linked environment.
+    #   @return [String]
+    #
+    # @!attribute [rw] link_name
+    #   The name of the environment link.
+    #   @return [String]
+    #
+    # @see http://docs.aws.amazon.com/goto/WebAPI/securityhub-2018-10-26/AwsElasticBeanstalkEnvironmentEnvironmentLink AWS API Documentation
+    #
+    class AwsElasticBeanstalkEnvironmentEnvironmentLink < Struct.new(
+      :environment_name,
+      :link_name)
+      SENSITIVE = []
+      include Aws::Structure
+    end
+
+    # A configuration option setting for the environment.
+    #
+    # @note When making an API call, you may pass AwsElasticBeanstalkEnvironmentOptionSetting
+    #   data as a hash:
+    #
+    #       {
+    #         namespace: "NonEmptyString",
+    #         option_name: "NonEmptyString",
+    #         resource_name: "NonEmptyString",
+    #         value: "NonEmptyString",
+    #       }
+    #
+    # @!attribute [rw] namespace
+    #   The type of resource that the configuration option is associated
+    #   with.
+    #   @return [String]
+    #
+    # @!attribute [rw] option_name
+    #   The name of the option.
+    #   @return [String]
+    #
+    # @!attribute [rw] resource_name
+    #   The name of the resource.
+    #   @return [String]
+    #
+    # @!attribute [rw] value
+    #   The value of the configuration setting.
+    #   @return [String]
+    #
+    # @see http://docs.aws.amazon.com/goto/WebAPI/securityhub-2018-10-26/AwsElasticBeanstalkEnvironmentOptionSetting AWS API Documentation
+    #
+    class AwsElasticBeanstalkEnvironmentOptionSetting < Struct.new(
+      :namespace,
+      :option_name,
+      :resource_name,
+      :value)
+      SENSITIVE = []
+      include Aws::Structure
+    end
+
+    # Contains information about the tier of the environment.
+    #
+    # @note When making an API call, you may pass AwsElasticBeanstalkEnvironmentTier
+    #   data as a hash:
+    #
+    #       {
+    #         name: "NonEmptyString",
+    #         type: "NonEmptyString",
+    #         version: "NonEmptyString",
+    #       }
+    #
+    # @!attribute [rw] name
+    #   The name of the environment tier.
+    #   @return [String]
+    #
+    # @!attribute [rw] type
+    #   The type of environment tier.
+    #   @return [String]
+    #
+    # @!attribute [rw] version
+    #   The version of the environment tier.
+    #   @return [String]
+    #
+    # @see http://docs.aws.amazon.com/goto/WebAPI/securityhub-2018-10-26/AwsElasticBeanstalkEnvironmentTier AWS API Documentation
+    #
+    class AwsElasticBeanstalkEnvironmentTier < Struct.new(
+      :name,
+      :type,
+      :version)
+      SENSITIVE = []
+      include Aws::Structure
+    end
+
     # Information about an Elasticsearch domain.
     #
     # @note When making an API call, you may pass AwsElasticsearchDomainDetails
@@ -10659,6 +11174,58 @@ module Aws::SecurityHub
     #                 network_interface_owner_id: "NonEmptyString",
     #                 private_ip_address: "NonEmptyString",
     #               },
+    #               aws_ec2_subnet: {
+    #                 assign_ipv_6_address_on_creation: false,
+    #                 availability_zone: "NonEmptyString",
+    #                 availability_zone_id: "NonEmptyString",
+    #                 available_ip_address_count: 1,
+    #                 cidr_block: "NonEmptyString",
+    #                 default_for_az: false,
+    #                 map_public_ip_on_launch: false,
+    #                 owner_id: "NonEmptyString",
+    #                 state: "NonEmptyString",
+    #                 subnet_arn: "NonEmptyString",
+    #                 subnet_id: "NonEmptyString",
+    #                 vpc_id: "NonEmptyString",
+    #                 ipv_6_cidr_block_association_set: [
+    #                   {
+    #                     association_id: "NonEmptyString",
+    #                     ipv_6_cidr_block: "NonEmptyString",
+    #                     cidr_block_state: "NonEmptyString",
+    #                   },
+    #                 ],
+    #               },
+    #               aws_ec2_network_acl: {
+    #                 is_default: false,
+    #                 network_acl_id: "NonEmptyString",
+    #                 owner_id: "NonEmptyString",
+    #                 vpc_id: "NonEmptyString",
+    #                 associations: [
+    #                   {
+    #                     network_acl_association_id: "NonEmptyString",
+    #                     network_acl_id: "NonEmptyString",
+    #                     subnet_id: "NonEmptyString",
+    #                   },
+    #                 ],
+    #                 entries: [
+    #                   {
+    #                     cidr_block: "NonEmptyString",
+    #                     egress: false,
+    #                     icmp_type_code: {
+    #                       code: 1,
+    #                       type: 1,
+    #                     },
+    #                     ipv_6_cidr_block: "NonEmptyString",
+    #                     port_range: {
+    #                       from: 1,
+    #                       to: 1,
+    #                     },
+    #                     protocol: "NonEmptyString",
+    #                     rule_action: "NonEmptyString",
+    #                     rule_number: 1,
+    #                   },
+    #                 ],
+    #               },
     #               aws_elbv_2_load_balancer: {
     #                 availability_zones: [
     #                   {
@@ -10679,6 +11246,40 @@ module Aws::SecurityHub
     #                 type: "NonEmptyString",
     #                 vpc_id: "NonEmptyString",
     #               },
+    #               aws_elastic_beanstalk_environment: {
+    #                 application_name: "NonEmptyString",
+    #                 cname: "NonEmptyString",
+    #                 date_created: "NonEmptyString",
+    #                 date_updated: "NonEmptyString",
+    #                 description: "NonEmptyString",
+    #                 endpoint_url: "NonEmptyString",
+    #                 environment_arn: "NonEmptyString",
+    #                 environment_id: "NonEmptyString",
+    #                 environment_links: [
+    #                   {
+    #                     environment_name: "NonEmptyString",
+    #                     link_name: "NonEmptyString",
+    #                   },
+    #                 ],
+    #                 environment_name: "NonEmptyString",
+    #                 option_settings: [
+    #                   {
+    #                     namespace: "NonEmptyString",
+    #                     option_name: "NonEmptyString",
+    #                     resource_name: "NonEmptyString",
+    #                     value: "NonEmptyString",
+    #                   },
+    #                 ],
+    #                 platform_arn: "NonEmptyString",
+    #                 solution_stack_name: "NonEmptyString",
+    #                 status: "NonEmptyString",
+    #                 tier: {
+    #                   name: "NonEmptyString",
+    #                   type: "NonEmptyString",
+    #                   version: "NonEmptyString",
+    #                 },
+    #                 version_label: "NonEmptyString",
+    #               },
     #               aws_elasticsearch_domain: {
     #                 access_policies: "NonEmptyString",
     #                 domain_endpoint_options: {
@@ -14499,6 +15100,58 @@ module Aws::SecurityHub
     #                     network_interface_owner_id: "NonEmptyString",
     #                     private_ip_address: "NonEmptyString",
     #                   },
+    #                   aws_ec2_subnet: {
+    #                     assign_ipv_6_address_on_creation: false,
+    #                     availability_zone: "NonEmptyString",
+    #                     availability_zone_id: "NonEmptyString",
+    #                     available_ip_address_count: 1,
+    #                     cidr_block: "NonEmptyString",
+    #                     default_for_az: false,
+    #                     map_public_ip_on_launch: false,
+    #                     owner_id: "NonEmptyString",
+    #                     state: "NonEmptyString",
+    #                     subnet_arn: "NonEmptyString",
+    #                     subnet_id: "NonEmptyString",
+    #                     vpc_id: "NonEmptyString",
+    #                     ipv_6_cidr_block_association_set: [
+    #                       {
+    #                         association_id: "NonEmptyString",
+    #                         ipv_6_cidr_block: "NonEmptyString",
+    #                         cidr_block_state: "NonEmptyString",
+    #                       },
+    #                     ],
+    #                   },
+    #                   aws_ec2_network_acl: {
+    #                     is_default: false,
+    #                     network_acl_id: "NonEmptyString",
+    #                     owner_id: "NonEmptyString",
+    #                     vpc_id: "NonEmptyString",
+    #                     associations: [
+    #                       {
+    #                         network_acl_association_id: "NonEmptyString",
+    #                         network_acl_id: "NonEmptyString",
+    #                         subnet_id: "NonEmptyString",
+    #                       },
+    #                     ],
+    #                     entries: [
+    #                       {
+    #                         cidr_block: "NonEmptyString",
+    #                         egress: false,
+    #                         icmp_type_code: {
+    #                           code: 1,
+    #                           type: 1,
+    #                         },
+    #                         ipv_6_cidr_block: "NonEmptyString",
+    #                         port_range: {
+    #                           from: 1,
+    #                           to: 1,
+    #                         },
+    #                         protocol: "NonEmptyString",
+    #                         rule_action: "NonEmptyString",
+    #                         rule_number: 1,
+    #                       },
+    #                     ],
+    #                   },
     #                   aws_elbv_2_load_balancer: {
     #                     availability_zones: [
     #                       {
@@ -14519,6 +15172,40 @@ module Aws::SecurityHub
     #                     type: "NonEmptyString",
     #                     vpc_id: "NonEmptyString",
     #                   },
+    #                   aws_elastic_beanstalk_environment: {
+    #                     application_name: "NonEmptyString",
+    #                     cname: "NonEmptyString",
+    #                     date_created: "NonEmptyString",
+    #                     date_updated: "NonEmptyString",
+    #                     description: "NonEmptyString",
+    #                     endpoint_url: "NonEmptyString",
+    #                     environment_arn: "NonEmptyString",
+    #                     environment_id: "NonEmptyString",
+    #                     environment_links: [
+    #                       {
+    #                         environment_name: "NonEmptyString",
+    #                         link_name: "NonEmptyString",
+    #                       },
+    #                     ],
+    #                     environment_name: "NonEmptyString",
+    #                     option_settings: [
+    #                       {
+    #                         namespace: "NonEmptyString",
+    #                         option_name: "NonEmptyString",
+    #                         resource_name: "NonEmptyString",
+    #                         value: "NonEmptyString",
+    #                       },
+    #                     ],
+    #                     platform_arn: "NonEmptyString",
+    #                     solution_stack_name: "NonEmptyString",
+    #                     status: "NonEmptyString",
+    #                     tier: {
+    #                       name: "NonEmptyString",
+    #                       type: "NonEmptyString",
+    #                       version: "NonEmptyString",
+    #                     },
+    #                     version_label: "NonEmptyString",
+    #                   },
     #                   aws_elasticsearch_domain: {
     #                     access_policies: "NonEmptyString",
     #                     domain_endpoint_options: {
@@ -19317,6 +20004,35 @@ module Aws::SecurityHub
       include Aws::Structure
     end
 
+    # An Internet Control Message Protocol (ICMP) type and code.
+    #
+    # @note When making an API call, you may pass IcmpTypeCode
+    #   data as a hash:
+    #
+    #       {
+    #         code: 1,
+    #         type: 1,
+    #       }
+    #
+    # @!attribute [rw] code
+    #   The ICMP code for which to deny or allow access. To deny or allow
+    #   all codes, use the value -1.
+    #   @return [Integer]
+    #
+    # @!attribute [rw] type
+    #   The ICMP type for which to deny or allow access. To deny or allow
+    #   all types, use the value -1.
+    #   @return [Integer]
+    #
+    # @see http://docs.aws.amazon.com/goto/WebAPI/securityhub-2018-10-26/IcmpTypeCode AWS API Documentation
+    #
+    class IcmpTypeCode < Struct.new(
+      :code,
+      :type)
+      SENSITIVE = []
+      include Aws::Structure
+    end
+
     # The list of the findings that cannot be imported. For each finding,
     # the list provides the error.
     #
@@ -20948,6 +21664,33 @@ module Aws::SecurityHub
       include Aws::Structure
     end
 
+    # A range of ports.
+    #
+    # @note When making an API call, you may pass PortRangeFromTo
+    #   data as a hash:
+    #
+    #       {
+    #         from: 1,
+    #         to: 1,
+    #       }
+    #
+    # @!attribute [rw] from
+    #   The first port in the port range.
+    #   @return [Integer]
+    #
+    # @!attribute [rw] to
+    #   The last port in the port range.
+    #   @return [Integer]
+    #
+    # @see http://docs.aws.amazon.com/goto/WebAPI/securityhub-2018-10-26/PortRangeFromTo AWS API Documentation
+    #
+    class PortRangeFromTo < Struct.new(
+      :from,
+      :to)
+      SENSITIVE = []
+      include Aws::Structure
+    end
+
     # The details of process-related information about a finding.
     #
     # @note When making an API call, you may pass ProcessDetails
@@ -21616,6 +22359,58 @@ module Aws::SecurityHub
     #             network_interface_owner_id: "NonEmptyString",
     #             private_ip_address: "NonEmptyString",
     #           },
+    #           aws_ec2_subnet: {
+    #             assign_ipv_6_address_on_creation: false,
+    #             availability_zone: "NonEmptyString",
+    #             availability_zone_id: "NonEmptyString",
+    #             available_ip_address_count: 1,
+    #             cidr_block: "NonEmptyString",
+    #             default_for_az: false,
+    #             map_public_ip_on_launch: false,
+    #             owner_id: "NonEmptyString",
+    #             state: "NonEmptyString",
+    #             subnet_arn: "NonEmptyString",
+    #             subnet_id: "NonEmptyString",
+    #             vpc_id: "NonEmptyString",
+    #             ipv_6_cidr_block_association_set: [
+    #               {
+    #                 association_id: "NonEmptyString",
+    #                 ipv_6_cidr_block: "NonEmptyString",
+    #                 cidr_block_state: "NonEmptyString",
+    #               },
+    #             ],
+    #           },
+    #           aws_ec2_network_acl: {
+    #             is_default: false,
+    #             network_acl_id: "NonEmptyString",
+    #             owner_id: "NonEmptyString",
+    #             vpc_id: "NonEmptyString",
+    #             associations: [
+    #               {
+    #                 network_acl_association_id: "NonEmptyString",
+    #                 network_acl_id: "NonEmptyString",
+    #                 subnet_id: "NonEmptyString",
+    #               },
+    #             ],
+    #             entries: [
+    #               {
+    #                 cidr_block: "NonEmptyString",
+    #                 egress: false,
+    #                 icmp_type_code: {
+    #                   code: 1,
+    #                   type: 1,
+    #                 },
+    #                 ipv_6_cidr_block: "NonEmptyString",
+    #                 port_range: {
+    #                   from: 1,
+    #                   to: 1,
+    #                 },
+    #                 protocol: "NonEmptyString",
+    #                 rule_action: "NonEmptyString",
+    #                 rule_number: 1,
+    #               },
+    #             ],
+    #           },
     #           aws_elbv_2_load_balancer: {
     #             availability_zones: [
     #               {
@@ -21636,6 +22431,40 @@ module Aws::SecurityHub
     #             type: "NonEmptyString",
     #             vpc_id: "NonEmptyString",
     #           },
+    #           aws_elastic_beanstalk_environment: {
+    #             application_name: "NonEmptyString",
+    #             cname: "NonEmptyString",
+    #             date_created: "NonEmptyString",
+    #             date_updated: "NonEmptyString",
+    #             description: "NonEmptyString",
+    #             endpoint_url: "NonEmptyString",
+    #             environment_arn: "NonEmptyString",
+    #             environment_id: "NonEmptyString",
+    #             environment_links: [
+    #               {
+    #                 environment_name: "NonEmptyString",
+    #                 link_name: "NonEmptyString",
+    #               },
+    #             ],
+    #             environment_name: "NonEmptyString",
+    #             option_settings: [
+    #               {
+    #                 namespace: "NonEmptyString",
+    #                 option_name: "NonEmptyString",
+    #                 resource_name: "NonEmptyString",
+    #                 value: "NonEmptyString",
+    #               },
+    #             ],
+    #             platform_arn: "NonEmptyString",
+    #             solution_stack_name: "NonEmptyString",
+    #             status: "NonEmptyString",
+    #             tier: {
+    #               name: "NonEmptyString",
+    #               type: "NonEmptyString",
+    #               version: "NonEmptyString",
+    #             },
+    #             version_label: "NonEmptyString",
+    #           },
     #           aws_elasticsearch_domain: {
     #             access_policies: "NonEmptyString",
     #             domain_endpoint_options: {
@@ -23072,6 +23901,58 @@ module Aws::SecurityHub
     #           network_interface_owner_id: "NonEmptyString",
     #           private_ip_address: "NonEmptyString",
     #         },
+    #         aws_ec2_subnet: {
+    #           assign_ipv_6_address_on_creation: false,
+    #           availability_zone: "NonEmptyString",
+    #           availability_zone_id: "NonEmptyString",
+    #           available_ip_address_count: 1,
+    #           cidr_block: "NonEmptyString",
+    #           default_for_az: false,
+    #           map_public_ip_on_launch: false,
+    #           owner_id: "NonEmptyString",
+    #           state: "NonEmptyString",
+    #           subnet_arn: "NonEmptyString",
+    #           subnet_id: "NonEmptyString",
+    #           vpc_id: "NonEmptyString",
+    #           ipv_6_cidr_block_association_set: [
+    #             {
+    #               association_id: "NonEmptyString",
+    #               ipv_6_cidr_block: "NonEmptyString",
+    #               cidr_block_state: "NonEmptyString",
+    #             },
+    #           ],
+    #         },
+    #         aws_ec2_network_acl: {
+    #           is_default: false,
+    #           network_acl_id: "NonEmptyString",
+    #           owner_id: "NonEmptyString",
+    #           vpc_id: "NonEmptyString",
+    #           associations: [
+    #             {
+    #               network_acl_association_id: "NonEmptyString",
+    #               network_acl_id: "NonEmptyString",
+    #               subnet_id: "NonEmptyString",
+    #             },
+    #           ],
+    #           entries: [
+    #             {
+    #               cidr_block: "NonEmptyString",
+    #               egress: false,
+    #               icmp_type_code: {
+    #                 code: 1,
+    #                 type: 1,
+    #               },
+    #               ipv_6_cidr_block: "NonEmptyString",
+    #               port_range: {
+    #                 from: 1,
+    #                 to: 1,
+    #               },
+    #               protocol: "NonEmptyString",
+    #               rule_action: "NonEmptyString",
+    #               rule_number: 1,
+    #             },
+    #           ],
+    #         },
     #         aws_elbv_2_load_balancer: {
     #           availability_zones: [
     #             {
@@ -23092,6 +23973,40 @@ module Aws::SecurityHub
     #           type: "NonEmptyString",
     #           vpc_id: "NonEmptyString",
     #         },
+    #         aws_elastic_beanstalk_environment: {
+    #           application_name: "NonEmptyString",
+    #           cname: "NonEmptyString",
+    #           date_created: "NonEmptyString",
+    #           date_updated: "NonEmptyString",
+    #           description: "NonEmptyString",
+    #           endpoint_url: "NonEmptyString",
+    #           environment_arn: "NonEmptyString",
+    #           environment_id: "NonEmptyString",
+    #           environment_links: [
+    #             {
+    #               environment_name: "NonEmptyString",
+    #               link_name: "NonEmptyString",
+    #             },
+    #           ],
+    #           environment_name: "NonEmptyString",
+    #           option_settings: [
+    #             {
+    #               namespace: "NonEmptyString",
+    #               option_name: "NonEmptyString",
+    #               resource_name: "NonEmptyString",
+    #               value: "NonEmptyString",
+    #             },
+    #           ],
+    #           platform_arn: "NonEmptyString",
+    #           solution_stack_name: "NonEmptyString",
+    #           status: "NonEmptyString",
+    #           tier: {
+    #             name: "NonEmptyString",
+    #             type: "NonEmptyString",
+    #             version: "NonEmptyString",
+    #           },
+    #           version_label: "NonEmptyString",
+    #         },
     #         aws_elasticsearch_domain: {
     #           access_policies: "NonEmptyString",
     #           domain_endpoint_options: {
@@ -24232,10 +25147,22 @@ module Aws::SecurityHub
     #   Details about an Elastic IP address.
     #   @return [Types::AwsEc2EipDetails]
     #
+    # @!attribute [rw] aws_ec2_subnet
+    #   Details about a subnet in EC2.
+    #   @return [Types::AwsEc2SubnetDetails]
+    #
+    # @!attribute [rw] aws_ec2_network_acl
+    #   Details about an EC2 network access control list (ACL).
+    #   @return [Types::AwsEc2NetworkAclDetails]
+    #
     # @!attribute [rw] aws_elbv_2_load_balancer
     #   Details about a load balancer.
     #   @return [Types::AwsElbv2LoadBalancerDetails]
     #
+    # @!attribute [rw] aws_elastic_beanstalk_environment
+    #   Details about an Elastic Beanstalk environment.
+    #   @return [Types::AwsElasticBeanstalkEnvironmentDetails]
+    #
     # @!attribute [rw] aws_elasticsearch_domain
     #   Details for an Elasticsearch domain.
     #   @return [Types::AwsElasticsearchDomainDetails]
@@ -24389,7 +25316,10 @@ module Aws::SecurityHub
       :aws_ec2_volume,
       :aws_ec2_vpc,
       :aws_ec2_eip,
+      :aws_ec2_subnet,
+      :aws_ec2_network_acl,
       :aws_elbv_2_load_balancer,
+      :aws_elastic_beanstalk_environment,
       :aws_elasticsearch_domain,
       :aws_s3_bucket,
       :aws_s3_account_public_access_block,