aws-sdk-securityhub 1.52.0 → 1.56.0
This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.
- checksums.yaml +4 -4
- data/CHANGELOG.md +20 -0
- data/VERSION +1 -1
- data/lib/aws-sdk-securityhub/client.rb +620 -9
- data/lib/aws-sdk-securityhub/client_api.rb +395 -0
- data/lib/aws-sdk-securityhub/types.rb +2852 -148
- data/lib/aws-sdk-securityhub.rb +1 -1
- metadata +4 -4
|
@@ -275,6 +275,15 @@ module Aws::SecurityHub
|
|
|
275
275
|
# ** Please note ** When response stubbing is enabled, no HTTP
|
|
276
276
|
# requests are made, and retries are disabled.
|
|
277
277
|
#
|
|
278
|
+
# @option options [Boolean] :use_dualstack_endpoint
|
|
279
|
+
# When set to `true`, dualstack enabled endpoints (with `.aws` TLD)
|
|
280
|
+
# will be used if available.
|
|
281
|
+
#
|
|
282
|
+
# @option options [Boolean] :use_fips_endpoint
|
|
283
|
+
# When set to `true`, fips compatible endpoints will be used if available.
|
|
284
|
+
# When a `fips` region is used, the region is normalized and this config
|
|
285
|
+
# is set to `true`.
|
|
286
|
+
#
|
|
278
287
|
# @option options [Boolean] :validate_params (true)
|
|
279
288
|
# When `true`, request parameters are validated before
|
|
280
289
|
# sending the request.
|
|
@@ -825,8 +834,29 @@ module Aws::SecurityHub
|
|
|
825
834
|
# },
|
|
826
835
|
# aws_code_build_project: {
|
|
827
836
|
# encryption_key: "NonEmptyString",
|
|
837
|
+
# artifacts: [
|
|
838
|
+
# {
|
|
839
|
+
# artifact_identifier: "NonEmptyString",
|
|
840
|
+
# encryption_disabled: false,
|
|
841
|
+
# location: "NonEmptyString",
|
|
842
|
+
# name: "NonEmptyString",
|
|
843
|
+
# namespace_type: "NonEmptyString",
|
|
844
|
+
# override_artifact_name: false,
|
|
845
|
+
# packaging: "NonEmptyString",
|
|
846
|
+
# path: "NonEmptyString",
|
|
847
|
+
# type: "NonEmptyString",
|
|
848
|
+
# },
|
|
849
|
+
# ],
|
|
828
850
|
# environment: {
|
|
829
851
|
# certificate: "NonEmptyString",
|
|
852
|
+
# environment_variables: [
|
|
853
|
+
# {
|
|
854
|
+
# name: "NonEmptyString",
|
|
855
|
+
# type: "NonEmptyString",
|
|
856
|
+
# value: "NonEmptyString",
|
|
857
|
+
# },
|
|
858
|
+
# ],
|
|
859
|
+
# privileged_mode: false,
|
|
830
860
|
# image_pull_credentials_type: "NonEmptyString",
|
|
831
861
|
# registry_credential: {
|
|
832
862
|
# credential: "NonEmptyString",
|
|
@@ -842,6 +872,18 @@ module Aws::SecurityHub
|
|
|
842
872
|
# insecure_ssl: false,
|
|
843
873
|
# },
|
|
844
874
|
# service_role: "NonEmptyString",
|
|
875
|
+
# logs_config: {
|
|
876
|
+
# cloud_watch_logs: {
|
|
877
|
+
# group_name: "NonEmptyString",
|
|
878
|
+
# status: "NonEmptyString",
|
|
879
|
+
# stream_name: "NonEmptyString",
|
|
880
|
+
# },
|
|
881
|
+
# s3_logs: {
|
|
882
|
+
# encryption_disabled: false,
|
|
883
|
+
# location: "NonEmptyString",
|
|
884
|
+
# status: "NonEmptyString",
|
|
885
|
+
# },
|
|
886
|
+
# },
|
|
845
887
|
# vpc_config: {
|
|
846
888
|
# vpc_id: "NonEmptyString",
|
|
847
889
|
# subnets: ["NonEmptyString"],
|
|
@@ -893,6 +935,15 @@ module Aws::SecurityHub
|
|
|
893
935
|
# },
|
|
894
936
|
# ],
|
|
895
937
|
# },
|
|
938
|
+
# viewer_certificate: {
|
|
939
|
+
# acm_certificate_arn: "NonEmptyString",
|
|
940
|
+
# certificate: "NonEmptyString",
|
|
941
|
+
# certificate_source: "NonEmptyString",
|
|
942
|
+
# cloud_front_default_certificate: false,
|
|
943
|
+
# iam_certificate_id: "NonEmptyString",
|
|
944
|
+
# minimum_protocol_version: "NonEmptyString",
|
|
945
|
+
# ssl_support_method: "NonEmptyString",
|
|
946
|
+
# },
|
|
896
947
|
# status: "NonEmptyString",
|
|
897
948
|
# web_acl_id: "NonEmptyString",
|
|
898
949
|
# },
|
|
@@ -1131,6 +1182,12 @@ module Aws::SecurityHub
|
|
|
1131
1182
|
# },
|
|
1132
1183
|
# type: "NonEmptyString",
|
|
1133
1184
|
# vpc_id: "NonEmptyString",
|
|
1185
|
+
# load_balancer_attributes: [
|
|
1186
|
+
# {
|
|
1187
|
+
# key: "NonEmptyString",
|
|
1188
|
+
# value: "NonEmptyString",
|
|
1189
|
+
# },
|
|
1190
|
+
# ],
|
|
1134
1191
|
# },
|
|
1135
1192
|
# aws_elastic_beanstalk_environment: {
|
|
1136
1193
|
# application_name: "NonEmptyString",
|
|
@@ -1230,6 +1287,7 @@ module Aws::SecurityHub
|
|
|
1230
1287
|
# aws_s3_bucket: {
|
|
1231
1288
|
# owner_id: "NonEmptyString",
|
|
1232
1289
|
# owner_name: "NonEmptyString",
|
|
1290
|
+
# owner_account_id: "NonEmptyString",
|
|
1233
1291
|
# created_at: "NonEmptyString",
|
|
1234
1292
|
# server_side_encryption_configuration: {
|
|
1235
1293
|
# rules: [
|
|
@@ -2815,6 +2873,157 @@ module Aws::SecurityHub
|
|
|
2815
2873
|
# image_tags: ["NonEmptyString"],
|
|
2816
2874
|
# image_published_at: "NonEmptyString",
|
|
2817
2875
|
# },
|
|
2876
|
+
# aws_open_search_service_domain: {
|
|
2877
|
+
# arn: "NonEmptyString",
|
|
2878
|
+
# access_policies: "NonEmptyString",
|
|
2879
|
+
# domain_name: "NonEmptyString",
|
|
2880
|
+
# id: "NonEmptyString",
|
|
2881
|
+
# domain_endpoint: "NonEmptyString",
|
|
2882
|
+
# engine_version: "NonEmptyString",
|
|
2883
|
+
# encryption_at_rest_options: {
|
|
2884
|
+
# enabled: false,
|
|
2885
|
+
# kms_key_id: "NonEmptyString",
|
|
2886
|
+
# },
|
|
2887
|
+
# node_to_node_encryption_options: {
|
|
2888
|
+
# enabled: false,
|
|
2889
|
+
# },
|
|
2890
|
+
# service_software_options: {
|
|
2891
|
+
# automated_update_date: "NonEmptyString",
|
|
2892
|
+
# cancellable: false,
|
|
2893
|
+
# current_version: "NonEmptyString",
|
|
2894
|
+
# description: "NonEmptyString",
|
|
2895
|
+
# new_version: "NonEmptyString",
|
|
2896
|
+
# update_available: false,
|
|
2897
|
+
# update_status: "NonEmptyString",
|
|
2898
|
+
# optional_deployment: false,
|
|
2899
|
+
# },
|
|
2900
|
+
# cluster_config: {
|
|
2901
|
+
# instance_count: 1,
|
|
2902
|
+
# warm_enabled: false,
|
|
2903
|
+
# warm_count: 1,
|
|
2904
|
+
# dedicated_master_enabled: false,
|
|
2905
|
+
# zone_awareness_config: {
|
|
2906
|
+
# availability_zone_count: 1,
|
|
2907
|
+
# },
|
|
2908
|
+
# dedicated_master_count: 1,
|
|
2909
|
+
# instance_type: "NonEmptyString",
|
|
2910
|
+
# warm_type: "NonEmptyString",
|
|
2911
|
+
# zone_awareness_enabled: false,
|
|
2912
|
+
# dedicated_master_type: "NonEmptyString",
|
|
2913
|
+
# },
|
|
2914
|
+
# domain_endpoint_options: {
|
|
2915
|
+
# custom_endpoint_certificate_arn: "NonEmptyString",
|
|
2916
|
+
# custom_endpoint_enabled: false,
|
|
2917
|
+
# enforce_https: false,
|
|
2918
|
+
# custom_endpoint: "NonEmptyString",
|
|
2919
|
+
# tls_security_policy: "NonEmptyString",
|
|
2920
|
+
# },
|
|
2921
|
+
# vpc_options: {
|
|
2922
|
+
# security_group_ids: ["NonEmptyString"],
|
|
2923
|
+
# subnet_ids: ["NonEmptyString"],
|
|
2924
|
+
# },
|
|
2925
|
+
# log_publishing_options: {
|
|
2926
|
+
# index_slow_logs: {
|
|
2927
|
+
# cloud_watch_logs_log_group_arn: "NonEmptyString",
|
|
2928
|
+
# enabled: false,
|
|
2929
|
+
# },
|
|
2930
|
+
# search_slow_logs: {
|
|
2931
|
+
# cloud_watch_logs_log_group_arn: "NonEmptyString",
|
|
2932
|
+
# enabled: false,
|
|
2933
|
+
# },
|
|
2934
|
+
# audit_logs: {
|
|
2935
|
+
# cloud_watch_logs_log_group_arn: "NonEmptyString",
|
|
2936
|
+
# enabled: false,
|
|
2937
|
+
# },
|
|
2938
|
+
# },
|
|
2939
|
+
# domain_endpoints: {
|
|
2940
|
+
# "NonEmptyString" => "NonEmptyString",
|
|
2941
|
+
# },
|
|
2942
|
+
# },
|
|
2943
|
+
# aws_ec2_vpc_endpoint_service: {
|
|
2944
|
+
# acceptance_required: false,
|
|
2945
|
+
# availability_zones: ["NonEmptyString"],
|
|
2946
|
+
# base_endpoint_dns_names: ["NonEmptyString"],
|
|
2947
|
+
# manages_vpc_endpoints: false,
|
|
2948
|
+
# gateway_load_balancer_arns: ["NonEmptyString"],
|
|
2949
|
+
# network_load_balancer_arns: ["NonEmptyString"],
|
|
2950
|
+
# private_dns_name: "NonEmptyString",
|
|
2951
|
+
# service_id: "NonEmptyString",
|
|
2952
|
+
# service_name: "NonEmptyString",
|
|
2953
|
+
# service_state: "NonEmptyString",
|
|
2954
|
+
# service_type: [
|
|
2955
|
+
# {
|
|
2956
|
+
# service_type: "NonEmptyString",
|
|
2957
|
+
# },
|
|
2958
|
+
# ],
|
|
2959
|
+
# },
|
|
2960
|
+
# aws_xray_encryption_config: {
|
|
2961
|
+
# key_id: "NonEmptyString",
|
|
2962
|
+
# status: "NonEmptyString",
|
|
2963
|
+
# type: "NonEmptyString",
|
|
2964
|
+
# },
|
|
2965
|
+
# aws_waf_rate_based_rule: {
|
|
2966
|
+
# metric_name: "NonEmptyString",
|
|
2967
|
+
# name: "NonEmptyString",
|
|
2968
|
+
# rate_key: "NonEmptyString",
|
|
2969
|
+
# rate_limit: 1,
|
|
2970
|
+
# rule_id: "NonEmptyString",
|
|
2971
|
+
# match_predicates: [
|
|
2972
|
+
# {
|
|
2973
|
+
# data_id: "NonEmptyString",
|
|
2974
|
+
# negated: false,
|
|
2975
|
+
# type: "NonEmptyString",
|
|
2976
|
+
# },
|
|
2977
|
+
# ],
|
|
2978
|
+
# },
|
|
2979
|
+
# aws_waf_regional_rate_based_rule: {
|
|
2980
|
+
# metric_name: "NonEmptyString",
|
|
2981
|
+
# name: "NonEmptyString",
|
|
2982
|
+
# rate_key: "NonEmptyString",
|
|
2983
|
+
# rate_limit: 1,
|
|
2984
|
+
# rule_id: "NonEmptyString",
|
|
2985
|
+
# match_predicates: [
|
|
2986
|
+
# {
|
|
2987
|
+
# data_id: "NonEmptyString",
|
|
2988
|
+
# negated: false,
|
|
2989
|
+
# type: "NonEmptyString",
|
|
2990
|
+
# },
|
|
2991
|
+
# ],
|
|
2992
|
+
# },
|
|
2993
|
+
# aws_ecr_repository: {
|
|
2994
|
+
# arn: "NonEmptyString",
|
|
2995
|
+
# image_scanning_configuration: {
|
|
2996
|
+
# scan_on_push: false,
|
|
2997
|
+
# },
|
|
2998
|
+
# image_tag_mutability: "NonEmptyString",
|
|
2999
|
+
# lifecycle_policy: {
|
|
3000
|
+
# lifecycle_policy_text: "NonEmptyString",
|
|
3001
|
+
# registry_id: "NonEmptyString",
|
|
3002
|
+
# },
|
|
3003
|
+
# repository_name: "NonEmptyString",
|
|
3004
|
+
# repository_policy_text: "NonEmptyString",
|
|
3005
|
+
# },
|
|
3006
|
+
# aws_eks_cluster: {
|
|
3007
|
+
# arn: "NonEmptyString",
|
|
3008
|
+
# certificate_authority_data: "NonEmptyString",
|
|
3009
|
+
# cluster_status: "NonEmptyString",
|
|
3010
|
+
# endpoint: "NonEmptyString",
|
|
3011
|
+
# name: "NonEmptyString",
|
|
3012
|
+
# resources_vpc_config: {
|
|
3013
|
+
# security_group_ids: ["NonEmptyString"],
|
|
3014
|
+
# subnet_ids: ["NonEmptyString"],
|
|
3015
|
+
# },
|
|
3016
|
+
# role_arn: "NonEmptyString",
|
|
3017
|
+
# version: "NonEmptyString",
|
|
3018
|
+
# logging: {
|
|
3019
|
+
# cluster_logging: [
|
|
3020
|
+
# {
|
|
3021
|
+
# enabled: false,
|
|
3022
|
+
# types: ["NonEmptyString"],
|
|
3023
|
+
# },
|
|
3024
|
+
# ],
|
|
3025
|
+
# },
|
|
3026
|
+
# },
|
|
2818
3027
|
# },
|
|
2819
3028
|
# },
|
|
2820
3029
|
# ],
|
|
@@ -3254,6 +3463,80 @@ module Aws::SecurityHub
|
|
|
3254
3463
|
req.send_request(options)
|
|
3255
3464
|
end
|
|
3256
3465
|
|
|
3466
|
+
# Used to enable finding aggregation. Must be called from the
|
|
3467
|
+
# aggregation Region.
|
|
3468
|
+
#
|
|
3469
|
+
# For more details about cross-Region replication, see [Configuring
|
|
3470
|
+
# finding
|
|
3471
|
+
# aggregation](securityhub/latest/userguide/finding-aggregation.html) in
|
|
3472
|
+
# the *Security Hub User Guide*.
|
|
3473
|
+
#
|
|
3474
|
+
# @option params [required, String] :region_linking_mode
|
|
3475
|
+
# Indicates whether to aggregate findings from all of the available
|
|
3476
|
+
# Regions in the current partition. Also determines whether to
|
|
3477
|
+
# automatically aggregate findings from new Regions as Security Hub
|
|
3478
|
+
# supports them and you opt into them.
|
|
3479
|
+
#
|
|
3480
|
+
# The selected option also determines how to use the Regions provided in
|
|
3481
|
+
# the Regions list.
|
|
3482
|
+
#
|
|
3483
|
+
# The options are as follows:
|
|
3484
|
+
#
|
|
3485
|
+
# * `ALL_REGIONS` - Indicates to aggregate findings from all of the
|
|
3486
|
+
# Regions where Security Hub is enabled. When you choose this option,
|
|
3487
|
+
# Security Hub also automatically aggregates findings from new Regions
|
|
3488
|
+
# as Security Hub supports them and you opt into them.
|
|
3489
|
+
#
|
|
3490
|
+
# * `ALL_REGIONS_EXCEPT_SPECIFIED` - Indicates to aggregate findings
|
|
3491
|
+
# from all of the Regions where Security Hub is enabled, except for
|
|
3492
|
+
# the Regions listed in the `Regions` parameter. When you choose this
|
|
3493
|
+
# option, Security Hub also automatically aggregates findings from new
|
|
3494
|
+
# Regions as Security Hub supports them and you opt into them.
|
|
3495
|
+
#
|
|
3496
|
+
# * `SPECIFIED_REGIONS` - Indicates to aggregate findings only from the
|
|
3497
|
+
# Regions listed in the `Regions` parameter. Security Hub does not
|
|
3498
|
+
# automatically aggregate findings from new Regions.
|
|
3499
|
+
#
|
|
3500
|
+
# @option params [Array<String>] :regions
|
|
3501
|
+
# If `RegionLinkingMode` is `ALL_REGIONS_EXCEPT_SPECIFIED`, then this is
|
|
3502
|
+
# a comma-separated list of Regions that do not aggregate findings to
|
|
3503
|
+
# the aggregation Region.
|
|
3504
|
+
#
|
|
3505
|
+
# If `RegionLinkingMode` is `SPECIFIED_REGIONS`, then this is a
|
|
3506
|
+
# comma-separated list of Regions that do aggregate findings to the
|
|
3507
|
+
# aggregation Region.
|
|
3508
|
+
#
|
|
3509
|
+
# @return [Types::CreateFindingAggregatorResponse] Returns a {Seahorse::Client::Response response} object which responds to the following methods:
|
|
3510
|
+
#
|
|
3511
|
+
# * {Types::CreateFindingAggregatorResponse#finding_aggregator_arn #finding_aggregator_arn} => String
|
|
3512
|
+
# * {Types::CreateFindingAggregatorResponse#finding_aggregation_region #finding_aggregation_region} => String
|
|
3513
|
+
# * {Types::CreateFindingAggregatorResponse#region_linking_mode #region_linking_mode} => String
|
|
3514
|
+
# * {Types::CreateFindingAggregatorResponse#regions #regions} => Array<String>
|
|
3515
|
+
#
|
|
3516
|
+
# @example Request syntax with placeholder values
|
|
3517
|
+
#
|
|
3518
|
+
# resp = client.create_finding_aggregator({
|
|
3519
|
+
# region_linking_mode: "NonEmptyString", # required
|
|
3520
|
+
# regions: ["NonEmptyString"],
|
|
3521
|
+
# })
|
|
3522
|
+
#
|
|
3523
|
+
# @example Response structure
|
|
3524
|
+
#
|
|
3525
|
+
# resp.finding_aggregator_arn #=> String
|
|
3526
|
+
# resp.finding_aggregation_region #=> String
|
|
3527
|
+
# resp.region_linking_mode #=> String
|
|
3528
|
+
# resp.regions #=> Array
|
|
3529
|
+
# resp.regions[0] #=> String
|
|
3530
|
+
#
|
|
3531
|
+
# @see http://docs.aws.amazon.com/goto/WebAPI/securityhub-2018-10-26/CreateFindingAggregator AWS API Documentation
|
|
3532
|
+
#
|
|
3533
|
+
# @overload create_finding_aggregator(params = {})
|
|
3534
|
+
# @param [Hash] params ({})
|
|
3535
|
+
def create_finding_aggregator(params = {}, options = {})
|
|
3536
|
+
req = build_request(:create_finding_aggregator, params)
|
|
3537
|
+
req.send_request(options)
|
|
3538
|
+
end
|
|
3539
|
+
|
|
3257
3540
|
# Creates a custom insight in Security Hub. An insight is a
|
|
3258
3541
|
# consolidation of findings that relate to a security issue that
|
|
3259
3542
|
# requires attention or remediation.
|
|
@@ -3945,16 +4228,21 @@ module Aws::SecurityHub
|
|
|
3945
4228
|
#
|
|
3946
4229
|
# Accounts that are managed using Organizations do not receive an
|
|
3947
4230
|
# invitation. They automatically become a member account in Security
|
|
3948
|
-
# Hub
|
|
3949
|
-
#
|
|
3950
|
-
# organization
|
|
3951
|
-
#
|
|
3952
|
-
#
|
|
4231
|
+
# Hub.
|
|
4232
|
+
#
|
|
4233
|
+
# * If the organization account does not have Security Hub enabled, then
|
|
4234
|
+
# Security Hub and the default standards are automatically enabled.
|
|
4235
|
+
# Note that Security Hub cannot be enabled automatically for the
|
|
4236
|
+
# organization management account. The organization management account
|
|
4237
|
+
# must enable Security Hub before the administrator account enables it
|
|
4238
|
+
# as a member account.
|
|
4239
|
+
#
|
|
4240
|
+
# * For organization accounts that already have Security Hub enabled,
|
|
4241
|
+
# Security Hub does not make any other changes to those accounts. It
|
|
4242
|
+
# does not change their enabled standards or controls.
|
|
3953
4243
|
#
|
|
3954
4244
|
# A permissions policy is added that permits the administrator account
|
|
3955
|
-
# to view the findings generated in the member account.
|
|
3956
|
-
# Hub is enabled in a member account, the member account findings are
|
|
3957
|
-
# also visible to the administrator account.
|
|
4245
|
+
# to view the findings generated in the member account.
|
|
3958
4246
|
#
|
|
3959
4247
|
# To remove the association between the administrator and member
|
|
3960
4248
|
# accounts, use the `DisassociateFromMasterAccount` or
|
|
@@ -4061,6 +4349,35 @@ module Aws::SecurityHub
|
|
|
4061
4349
|
req.send_request(options)
|
|
4062
4350
|
end
|
|
4063
4351
|
|
|
4352
|
+
# Deletes a finding aggregator. When you delete the finding aggregator,
|
|
4353
|
+
# you stop finding aggregation.
|
|
4354
|
+
#
|
|
4355
|
+
# When you stop finding aggregation, findings that were already
|
|
4356
|
+
# aggregated to the aggregation Region are still visible from the
|
|
4357
|
+
# aggregation Region. New findings and finding updates are not
|
|
4358
|
+
# aggregated.
|
|
4359
|
+
#
|
|
4360
|
+
# @option params [required, String] :finding_aggregator_arn
|
|
4361
|
+
# The ARN of the finding aggregator to delete. To obtain the ARN, use
|
|
4362
|
+
# `ListFindingAggregators`.
|
|
4363
|
+
#
|
|
4364
|
+
# @return [Struct] Returns an empty {Seahorse::Client::Response response}.
|
|
4365
|
+
#
|
|
4366
|
+
# @example Request syntax with placeholder values
|
|
4367
|
+
#
|
|
4368
|
+
# resp = client.delete_finding_aggregator({
|
|
4369
|
+
# finding_aggregator_arn: "NonEmptyString", # required
|
|
4370
|
+
# })
|
|
4371
|
+
#
|
|
4372
|
+
# @see http://docs.aws.amazon.com/goto/WebAPI/securityhub-2018-10-26/DeleteFindingAggregator AWS API Documentation
|
|
4373
|
+
#
|
|
4374
|
+
# @overload delete_finding_aggregator(params = {})
|
|
4375
|
+
# @param [Hash] params ({})
|
|
4376
|
+
def delete_finding_aggregator(params = {}, options = {})
|
|
4377
|
+
req = build_request(:delete_finding_aggregator, params)
|
|
4378
|
+
req.send_request(options)
|
|
4379
|
+
end
|
|
4380
|
+
|
|
4064
4381
|
# Deletes the insight specified by the `InsightArn`.
|
|
4065
4382
|
#
|
|
4066
4383
|
# @option params [required, String] :insight_arn
|
|
@@ -4782,8 +5099,48 @@ module Aws::SecurityHub
|
|
|
4782
5099
|
req.send_request(options)
|
|
4783
5100
|
end
|
|
4784
5101
|
|
|
5102
|
+
# Returns the current finding aggregation configuration.
|
|
5103
|
+
#
|
|
5104
|
+
# @option params [required, String] :finding_aggregator_arn
|
|
5105
|
+
# The ARN of the finding aggregator to return details for. To obtain the
|
|
5106
|
+
# ARN, use `ListFindingAggregators`.
|
|
5107
|
+
#
|
|
5108
|
+
# @return [Types::GetFindingAggregatorResponse] Returns a {Seahorse::Client::Response response} object which responds to the following methods:
|
|
5109
|
+
#
|
|
5110
|
+
# * {Types::GetFindingAggregatorResponse#finding_aggregator_arn #finding_aggregator_arn} => String
|
|
5111
|
+
# * {Types::GetFindingAggregatorResponse#finding_aggregation_region #finding_aggregation_region} => String
|
|
5112
|
+
# * {Types::GetFindingAggregatorResponse#region_linking_mode #region_linking_mode} => String
|
|
5113
|
+
# * {Types::GetFindingAggregatorResponse#regions #regions} => Array<String>
|
|
5114
|
+
#
|
|
5115
|
+
# @example Request syntax with placeholder values
|
|
5116
|
+
#
|
|
5117
|
+
# resp = client.get_finding_aggregator({
|
|
5118
|
+
# finding_aggregator_arn: "NonEmptyString", # required
|
|
5119
|
+
# })
|
|
5120
|
+
#
|
|
5121
|
+
# @example Response structure
|
|
5122
|
+
#
|
|
5123
|
+
# resp.finding_aggregator_arn #=> String
|
|
5124
|
+
# resp.finding_aggregation_region #=> String
|
|
5125
|
+
# resp.region_linking_mode #=> String
|
|
5126
|
+
# resp.regions #=> Array
|
|
5127
|
+
# resp.regions[0] #=> String
|
|
5128
|
+
#
|
|
5129
|
+
# @see http://docs.aws.amazon.com/goto/WebAPI/securityhub-2018-10-26/GetFindingAggregator AWS API Documentation
|
|
5130
|
+
#
|
|
5131
|
+
# @overload get_finding_aggregator(params = {})
|
|
5132
|
+
# @param [Hash] params ({})
|
|
5133
|
+
def get_finding_aggregator(params = {}, options = {})
|
|
5134
|
+
req = build_request(:get_finding_aggregator, params)
|
|
5135
|
+
req.send_request(options)
|
|
5136
|
+
end
|
|
5137
|
+
|
|
4785
5138
|
# Returns a list of findings that match the specified criteria.
|
|
4786
5139
|
#
|
|
5140
|
+
# If finding aggregation is enabled, then when you call `GetFindings`
|
|
5141
|
+
# from the aggregation Region, the results include all of the matching
|
|
5142
|
+
# findings from both the aggregation Region and the linked Regions.
|
|
5143
|
+
#
|
|
4787
5144
|
# @option params [Types::AwsSecurityFindingFilters] :filters
|
|
4788
5145
|
# The finding attributes used to define a condition to filter the
|
|
4789
5146
|
# returned findings.
|
|
@@ -5614,7 +5971,22 @@ module Aws::SecurityHub
|
|
|
5614
5971
|
# resp.findings[0].resources[0].details.aws_auto_scaling_auto_scaling_group.health_check_grace_period #=> Integer
|
|
5615
5972
|
# resp.findings[0].resources[0].details.aws_auto_scaling_auto_scaling_group.created_time #=> String
|
|
5616
5973
|
# resp.findings[0].resources[0].details.aws_code_build_project.encryption_key #=> String
|
|
5974
|
+
# resp.findings[0].resources[0].details.aws_code_build_project.artifacts #=> Array
|
|
5975
|
+
# resp.findings[0].resources[0].details.aws_code_build_project.artifacts[0].artifact_identifier #=> String
|
|
5976
|
+
# resp.findings[0].resources[0].details.aws_code_build_project.artifacts[0].encryption_disabled #=> Boolean
|
|
5977
|
+
# resp.findings[0].resources[0].details.aws_code_build_project.artifacts[0].location #=> String
|
|
5978
|
+
# resp.findings[0].resources[0].details.aws_code_build_project.artifacts[0].name #=> String
|
|
5979
|
+
# resp.findings[0].resources[0].details.aws_code_build_project.artifacts[0].namespace_type #=> String
|
|
5980
|
+
# resp.findings[0].resources[0].details.aws_code_build_project.artifacts[0].override_artifact_name #=> Boolean
|
|
5981
|
+
# resp.findings[0].resources[0].details.aws_code_build_project.artifacts[0].packaging #=> String
|
|
5982
|
+
# resp.findings[0].resources[0].details.aws_code_build_project.artifacts[0].path #=> String
|
|
5983
|
+
# resp.findings[0].resources[0].details.aws_code_build_project.artifacts[0].type #=> String
|
|
5617
5984
|
# resp.findings[0].resources[0].details.aws_code_build_project.environment.certificate #=> String
|
|
5985
|
+
# resp.findings[0].resources[0].details.aws_code_build_project.environment.environment_variables #=> Array
|
|
5986
|
+
# resp.findings[0].resources[0].details.aws_code_build_project.environment.environment_variables[0].name #=> String
|
|
5987
|
+
# resp.findings[0].resources[0].details.aws_code_build_project.environment.environment_variables[0].type #=> String
|
|
5988
|
+
# resp.findings[0].resources[0].details.aws_code_build_project.environment.environment_variables[0].value #=> String
|
|
5989
|
+
# resp.findings[0].resources[0].details.aws_code_build_project.environment.privileged_mode #=> Boolean
|
|
5618
5990
|
# resp.findings[0].resources[0].details.aws_code_build_project.environment.image_pull_credentials_type #=> String
|
|
5619
5991
|
# resp.findings[0].resources[0].details.aws_code_build_project.environment.registry_credential.credential #=> String
|
|
5620
5992
|
# resp.findings[0].resources[0].details.aws_code_build_project.environment.registry_credential.credential_provider #=> String
|
|
@@ -5625,6 +5997,12 @@ module Aws::SecurityHub
|
|
|
5625
5997
|
# resp.findings[0].resources[0].details.aws_code_build_project.source.git_clone_depth #=> Integer
|
|
5626
5998
|
# resp.findings[0].resources[0].details.aws_code_build_project.source.insecure_ssl #=> Boolean
|
|
5627
5999
|
# resp.findings[0].resources[0].details.aws_code_build_project.service_role #=> String
|
|
6000
|
+
# resp.findings[0].resources[0].details.aws_code_build_project.logs_config.cloud_watch_logs.group_name #=> String
|
|
6001
|
+
# resp.findings[0].resources[0].details.aws_code_build_project.logs_config.cloud_watch_logs.status #=> String
|
|
6002
|
+
# resp.findings[0].resources[0].details.aws_code_build_project.logs_config.cloud_watch_logs.stream_name #=> String
|
|
6003
|
+
# resp.findings[0].resources[0].details.aws_code_build_project.logs_config.s3_logs.encryption_disabled #=> Boolean
|
|
6004
|
+
# resp.findings[0].resources[0].details.aws_code_build_project.logs_config.s3_logs.location #=> String
|
|
6005
|
+
# resp.findings[0].resources[0].details.aws_code_build_project.logs_config.s3_logs.status #=> String
|
|
5628
6006
|
# resp.findings[0].resources[0].details.aws_code_build_project.vpc_config.vpc_id #=> String
|
|
5629
6007
|
# resp.findings[0].resources[0].details.aws_code_build_project.vpc_config.subnets #=> Array
|
|
5630
6008
|
# resp.findings[0].resources[0].details.aws_code_build_project.vpc_config.subnets[0] #=> String
|
|
@@ -5650,6 +6028,13 @@ module Aws::SecurityHub
|
|
|
5650
6028
|
# resp.findings[0].resources[0].details.aws_cloud_front_distribution.origin_groups.items[0].failover_criteria.status_codes.items #=> Array
|
|
5651
6029
|
# resp.findings[0].resources[0].details.aws_cloud_front_distribution.origin_groups.items[0].failover_criteria.status_codes.items[0] #=> Integer
|
|
5652
6030
|
# resp.findings[0].resources[0].details.aws_cloud_front_distribution.origin_groups.items[0].failover_criteria.status_codes.quantity #=> Integer
|
|
6031
|
+
# resp.findings[0].resources[0].details.aws_cloud_front_distribution.viewer_certificate.acm_certificate_arn #=> String
|
|
6032
|
+
# resp.findings[0].resources[0].details.aws_cloud_front_distribution.viewer_certificate.certificate #=> String
|
|
6033
|
+
# resp.findings[0].resources[0].details.aws_cloud_front_distribution.viewer_certificate.certificate_source #=> String
|
|
6034
|
+
# resp.findings[0].resources[0].details.aws_cloud_front_distribution.viewer_certificate.cloud_front_default_certificate #=> Boolean
|
|
6035
|
+
# resp.findings[0].resources[0].details.aws_cloud_front_distribution.viewer_certificate.iam_certificate_id #=> String
|
|
6036
|
+
# resp.findings[0].resources[0].details.aws_cloud_front_distribution.viewer_certificate.minimum_protocol_version #=> String
|
|
6037
|
+
# resp.findings[0].resources[0].details.aws_cloud_front_distribution.viewer_certificate.ssl_support_method #=> String
|
|
5653
6038
|
# resp.findings[0].resources[0].details.aws_cloud_front_distribution.status #=> String
|
|
5654
6039
|
# resp.findings[0].resources[0].details.aws_cloud_front_distribution.web_acl_id #=> String
|
|
5655
6040
|
# resp.findings[0].resources[0].details.aws_ec2_instance.type #=> String
|
|
@@ -5802,6 +6187,9 @@ module Aws::SecurityHub
|
|
|
5802
6187
|
# resp.findings[0].resources[0].details.aws_elbv_2_load_balancer.state.reason #=> String
|
|
5803
6188
|
# resp.findings[0].resources[0].details.aws_elbv_2_load_balancer.type #=> String
|
|
5804
6189
|
# resp.findings[0].resources[0].details.aws_elbv_2_load_balancer.vpc_id #=> String
|
|
6190
|
+
# resp.findings[0].resources[0].details.aws_elbv_2_load_balancer.load_balancer_attributes #=> Array
|
|
6191
|
+
# resp.findings[0].resources[0].details.aws_elbv_2_load_balancer.load_balancer_attributes[0].key #=> String
|
|
6192
|
+
# resp.findings[0].resources[0].details.aws_elbv_2_load_balancer.load_balancer_attributes[0].value #=> String
|
|
5805
6193
|
# resp.findings[0].resources[0].details.aws_elastic_beanstalk_environment.application_name #=> String
|
|
5806
6194
|
# resp.findings[0].resources[0].details.aws_elastic_beanstalk_environment.cname #=> String
|
|
5807
6195
|
# resp.findings[0].resources[0].details.aws_elastic_beanstalk_environment.date_created #=> String
|
|
@@ -5867,6 +6255,7 @@ module Aws::SecurityHub
|
|
|
5867
6255
|
# resp.findings[0].resources[0].details.aws_elasticsearch_domain.vpc_options.vpc_id #=> String
|
|
5868
6256
|
# resp.findings[0].resources[0].details.aws_s3_bucket.owner_id #=> String
|
|
5869
6257
|
# resp.findings[0].resources[0].details.aws_s3_bucket.owner_name #=> String
|
|
6258
|
+
# resp.findings[0].resources[0].details.aws_s3_bucket.owner_account_id #=> String
|
|
5870
6259
|
# resp.findings[0].resources[0].details.aws_s3_bucket.created_at #=> String
|
|
5871
6260
|
# resp.findings[0].resources[0].details.aws_s3_bucket.server_side_encryption_configuration.rules #=> Array
|
|
5872
6261
|
# resp.findings[0].resources[0].details.aws_s3_bucket.server_side_encryption_configuration.rules[0].apply_server_side_encryption_by_default.sse_algorithm #=> String
|
|
@@ -6962,6 +7351,109 @@ module Aws::SecurityHub
|
|
|
6962
7351
|
# resp.findings[0].resources[0].details.aws_ecr_container_image.image_tags #=> Array
|
|
6963
7352
|
# resp.findings[0].resources[0].details.aws_ecr_container_image.image_tags[0] #=> String
|
|
6964
7353
|
# resp.findings[0].resources[0].details.aws_ecr_container_image.image_published_at #=> String
|
|
7354
|
+
# resp.findings[0].resources[0].details.aws_open_search_service_domain.arn #=> String
|
|
7355
|
+
# resp.findings[0].resources[0].details.aws_open_search_service_domain.access_policies #=> String
|
|
7356
|
+
# resp.findings[0].resources[0].details.aws_open_search_service_domain.domain_name #=> String
|
|
7357
|
+
# resp.findings[0].resources[0].details.aws_open_search_service_domain.id #=> String
|
|
7358
|
+
# resp.findings[0].resources[0].details.aws_open_search_service_domain.domain_endpoint #=> String
|
|
7359
|
+
# resp.findings[0].resources[0].details.aws_open_search_service_domain.engine_version #=> String
|
|
7360
|
+
# resp.findings[0].resources[0].details.aws_open_search_service_domain.encryption_at_rest_options.enabled #=> Boolean
|
|
7361
|
+
# resp.findings[0].resources[0].details.aws_open_search_service_domain.encryption_at_rest_options.kms_key_id #=> String
|
|
7362
|
+
# resp.findings[0].resources[0].details.aws_open_search_service_domain.node_to_node_encryption_options.enabled #=> Boolean
|
|
7363
|
+
# resp.findings[0].resources[0].details.aws_open_search_service_domain.service_software_options.automated_update_date #=> String
|
|
7364
|
+
# resp.findings[0].resources[0].details.aws_open_search_service_domain.service_software_options.cancellable #=> Boolean
|
|
7365
|
+
# resp.findings[0].resources[0].details.aws_open_search_service_domain.service_software_options.current_version #=> String
|
|
7366
|
+
# resp.findings[0].resources[0].details.aws_open_search_service_domain.service_software_options.description #=> String
|
|
7367
|
+
# resp.findings[0].resources[0].details.aws_open_search_service_domain.service_software_options.new_version #=> String
|
|
7368
|
+
# resp.findings[0].resources[0].details.aws_open_search_service_domain.service_software_options.update_available #=> Boolean
|
|
7369
|
+
# resp.findings[0].resources[0].details.aws_open_search_service_domain.service_software_options.update_status #=> String
|
|
7370
|
+
# resp.findings[0].resources[0].details.aws_open_search_service_domain.service_software_options.optional_deployment #=> Boolean
|
|
7371
|
+
# resp.findings[0].resources[0].details.aws_open_search_service_domain.cluster_config.instance_count #=> Integer
|
|
7372
|
+
# resp.findings[0].resources[0].details.aws_open_search_service_domain.cluster_config.warm_enabled #=> Boolean
|
|
7373
|
+
# resp.findings[0].resources[0].details.aws_open_search_service_domain.cluster_config.warm_count #=> Integer
|
|
7374
|
+
# resp.findings[0].resources[0].details.aws_open_search_service_domain.cluster_config.dedicated_master_enabled #=> Boolean
|
|
7375
|
+
# resp.findings[0].resources[0].details.aws_open_search_service_domain.cluster_config.zone_awareness_config.availability_zone_count #=> Integer
|
|
7376
|
+
# resp.findings[0].resources[0].details.aws_open_search_service_domain.cluster_config.dedicated_master_count #=> Integer
|
|
7377
|
+
# resp.findings[0].resources[0].details.aws_open_search_service_domain.cluster_config.instance_type #=> String
|
|
7378
|
+
# resp.findings[0].resources[0].details.aws_open_search_service_domain.cluster_config.warm_type #=> String
|
|
7379
|
+
# resp.findings[0].resources[0].details.aws_open_search_service_domain.cluster_config.zone_awareness_enabled #=> Boolean
|
|
7380
|
+
# resp.findings[0].resources[0].details.aws_open_search_service_domain.cluster_config.dedicated_master_type #=> String
|
|
7381
|
+
# resp.findings[0].resources[0].details.aws_open_search_service_domain.domain_endpoint_options.custom_endpoint_certificate_arn #=> String
|
|
7382
|
+
# resp.findings[0].resources[0].details.aws_open_search_service_domain.domain_endpoint_options.custom_endpoint_enabled #=> Boolean
|
|
7383
|
+
# resp.findings[0].resources[0].details.aws_open_search_service_domain.domain_endpoint_options.enforce_https #=> Boolean
|
|
7384
|
+
# resp.findings[0].resources[0].details.aws_open_search_service_domain.domain_endpoint_options.custom_endpoint #=> String
|
|
7385
|
+
# resp.findings[0].resources[0].details.aws_open_search_service_domain.domain_endpoint_options.tls_security_policy #=> String
|
|
7386
|
+
# resp.findings[0].resources[0].details.aws_open_search_service_domain.vpc_options.security_group_ids #=> Array
|
|
7387
|
+
# resp.findings[0].resources[0].details.aws_open_search_service_domain.vpc_options.security_group_ids[0] #=> String
|
|
7388
|
+
# resp.findings[0].resources[0].details.aws_open_search_service_domain.vpc_options.subnet_ids #=> Array
|
|
7389
|
+
# resp.findings[0].resources[0].details.aws_open_search_service_domain.vpc_options.subnet_ids[0] #=> String
|
|
7390
|
+
# resp.findings[0].resources[0].details.aws_open_search_service_domain.log_publishing_options.index_slow_logs.cloud_watch_logs_log_group_arn #=> String
|
|
7391
|
+
# resp.findings[0].resources[0].details.aws_open_search_service_domain.log_publishing_options.index_slow_logs.enabled #=> Boolean
|
|
7392
|
+
# resp.findings[0].resources[0].details.aws_open_search_service_domain.log_publishing_options.search_slow_logs.cloud_watch_logs_log_group_arn #=> String
|
|
7393
|
+
# resp.findings[0].resources[0].details.aws_open_search_service_domain.log_publishing_options.search_slow_logs.enabled #=> Boolean
|
|
7394
|
+
# resp.findings[0].resources[0].details.aws_open_search_service_domain.log_publishing_options.audit_logs.cloud_watch_logs_log_group_arn #=> String
|
|
7395
|
+
# resp.findings[0].resources[0].details.aws_open_search_service_domain.log_publishing_options.audit_logs.enabled #=> Boolean
|
|
7396
|
+
# resp.findings[0].resources[0].details.aws_open_search_service_domain.domain_endpoints #=> Hash
|
|
7397
|
+
# resp.findings[0].resources[0].details.aws_open_search_service_domain.domain_endpoints["NonEmptyString"] #=> String
|
|
7398
|
+
# resp.findings[0].resources[0].details.aws_ec2_vpc_endpoint_service.acceptance_required #=> Boolean
|
|
7399
|
+
# resp.findings[0].resources[0].details.aws_ec2_vpc_endpoint_service.availability_zones #=> Array
|
|
7400
|
+
# resp.findings[0].resources[0].details.aws_ec2_vpc_endpoint_service.availability_zones[0] #=> String
|
|
7401
|
+
# resp.findings[0].resources[0].details.aws_ec2_vpc_endpoint_service.base_endpoint_dns_names #=> Array
|
|
7402
|
+
# resp.findings[0].resources[0].details.aws_ec2_vpc_endpoint_service.base_endpoint_dns_names[0] #=> String
|
|
7403
|
+
# resp.findings[0].resources[0].details.aws_ec2_vpc_endpoint_service.manages_vpc_endpoints #=> Boolean
|
|
7404
|
+
# resp.findings[0].resources[0].details.aws_ec2_vpc_endpoint_service.gateway_load_balancer_arns #=> Array
|
|
7405
|
+
# resp.findings[0].resources[0].details.aws_ec2_vpc_endpoint_service.gateway_load_balancer_arns[0] #=> String
|
|
7406
|
+
# resp.findings[0].resources[0].details.aws_ec2_vpc_endpoint_service.network_load_balancer_arns #=> Array
|
|
7407
|
+
# resp.findings[0].resources[0].details.aws_ec2_vpc_endpoint_service.network_load_balancer_arns[0] #=> String
|
|
7408
|
+
# resp.findings[0].resources[0].details.aws_ec2_vpc_endpoint_service.private_dns_name #=> String
|
|
7409
|
+
# resp.findings[0].resources[0].details.aws_ec2_vpc_endpoint_service.service_id #=> String
|
|
7410
|
+
# resp.findings[0].resources[0].details.aws_ec2_vpc_endpoint_service.service_name #=> String
|
|
7411
|
+
# resp.findings[0].resources[0].details.aws_ec2_vpc_endpoint_service.service_state #=> String
|
|
7412
|
+
# resp.findings[0].resources[0].details.aws_ec2_vpc_endpoint_service.service_type #=> Array
|
|
7413
|
+
# resp.findings[0].resources[0].details.aws_ec2_vpc_endpoint_service.service_type[0].service_type #=> String
|
|
7414
|
+
# resp.findings[0].resources[0].details.aws_xray_encryption_config.key_id #=> String
|
|
7415
|
+
# resp.findings[0].resources[0].details.aws_xray_encryption_config.status #=> String
|
|
7416
|
+
# resp.findings[0].resources[0].details.aws_xray_encryption_config.type #=> String
|
|
7417
|
+
# resp.findings[0].resources[0].details.aws_waf_rate_based_rule.metric_name #=> String
|
|
7418
|
+
# resp.findings[0].resources[0].details.aws_waf_rate_based_rule.name #=> String
|
|
7419
|
+
# resp.findings[0].resources[0].details.aws_waf_rate_based_rule.rate_key #=> String
|
|
7420
|
+
# resp.findings[0].resources[0].details.aws_waf_rate_based_rule.rate_limit #=> Integer
|
|
7421
|
+
# resp.findings[0].resources[0].details.aws_waf_rate_based_rule.rule_id #=> String
|
|
7422
|
+
# resp.findings[0].resources[0].details.aws_waf_rate_based_rule.match_predicates #=> Array
|
|
7423
|
+
# resp.findings[0].resources[0].details.aws_waf_rate_based_rule.match_predicates[0].data_id #=> String
|
|
7424
|
+
# resp.findings[0].resources[0].details.aws_waf_rate_based_rule.match_predicates[0].negated #=> Boolean
|
|
7425
|
+
# resp.findings[0].resources[0].details.aws_waf_rate_based_rule.match_predicates[0].type #=> String
|
|
7426
|
+
# resp.findings[0].resources[0].details.aws_waf_regional_rate_based_rule.metric_name #=> String
|
|
7427
|
+
# resp.findings[0].resources[0].details.aws_waf_regional_rate_based_rule.name #=> String
|
|
7428
|
+
# resp.findings[0].resources[0].details.aws_waf_regional_rate_based_rule.rate_key #=> String
|
|
7429
|
+
# resp.findings[0].resources[0].details.aws_waf_regional_rate_based_rule.rate_limit #=> Integer
|
|
7430
|
+
# resp.findings[0].resources[0].details.aws_waf_regional_rate_based_rule.rule_id #=> String
|
|
7431
|
+
# resp.findings[0].resources[0].details.aws_waf_regional_rate_based_rule.match_predicates #=> Array
|
|
7432
|
+
# resp.findings[0].resources[0].details.aws_waf_regional_rate_based_rule.match_predicates[0].data_id #=> String
|
|
7433
|
+
# resp.findings[0].resources[0].details.aws_waf_regional_rate_based_rule.match_predicates[0].negated #=> Boolean
|
|
7434
|
+
# resp.findings[0].resources[0].details.aws_waf_regional_rate_based_rule.match_predicates[0].type #=> String
|
|
7435
|
+
# resp.findings[0].resources[0].details.aws_ecr_repository.arn #=> String
|
|
7436
|
+
# resp.findings[0].resources[0].details.aws_ecr_repository.image_scanning_configuration.scan_on_push #=> Boolean
|
|
7437
|
+
# resp.findings[0].resources[0].details.aws_ecr_repository.image_tag_mutability #=> String
|
|
7438
|
+
# resp.findings[0].resources[0].details.aws_ecr_repository.lifecycle_policy.lifecycle_policy_text #=> String
|
|
7439
|
+
# resp.findings[0].resources[0].details.aws_ecr_repository.lifecycle_policy.registry_id #=> String
|
|
7440
|
+
# resp.findings[0].resources[0].details.aws_ecr_repository.repository_name #=> String
|
|
7441
|
+
# resp.findings[0].resources[0].details.aws_ecr_repository.repository_policy_text #=> String
|
|
7442
|
+
# resp.findings[0].resources[0].details.aws_eks_cluster.arn #=> String
|
|
7443
|
+
# resp.findings[0].resources[0].details.aws_eks_cluster.certificate_authority_data #=> String
|
|
7444
|
+
# resp.findings[0].resources[0].details.aws_eks_cluster.cluster_status #=> String
|
|
7445
|
+
# resp.findings[0].resources[0].details.aws_eks_cluster.endpoint #=> String
|
|
7446
|
+
# resp.findings[0].resources[0].details.aws_eks_cluster.name #=> String
|
|
7447
|
+
# resp.findings[0].resources[0].details.aws_eks_cluster.resources_vpc_config.security_group_ids #=> Array
|
|
7448
|
+
# resp.findings[0].resources[0].details.aws_eks_cluster.resources_vpc_config.security_group_ids[0] #=> String
|
|
7449
|
+
# resp.findings[0].resources[0].details.aws_eks_cluster.resources_vpc_config.subnet_ids #=> Array
|
|
7450
|
+
# resp.findings[0].resources[0].details.aws_eks_cluster.resources_vpc_config.subnet_ids[0] #=> String
|
|
7451
|
+
# resp.findings[0].resources[0].details.aws_eks_cluster.role_arn #=> String
|
|
7452
|
+
# resp.findings[0].resources[0].details.aws_eks_cluster.version #=> String
|
|
7453
|
+
# resp.findings[0].resources[0].details.aws_eks_cluster.logging.cluster_logging #=> Array
|
|
7454
|
+
# resp.findings[0].resources[0].details.aws_eks_cluster.logging.cluster_logging[0].enabled #=> Boolean
|
|
7455
|
+
# resp.findings[0].resources[0].details.aws_eks_cluster.logging.cluster_logging[0].types #=> Array
|
|
7456
|
+
# resp.findings[0].resources[0].details.aws_eks_cluster.logging.cluster_logging[0].types[0] #=> String
|
|
6965
7457
|
# resp.findings[0].compliance.status #=> String, one of "PASSED", "WARNING", "FAILED", "NOT_AVAILABLE"
|
|
6966
7458
|
# resp.findings[0].compliance.related_requirements #=> Array
|
|
6967
7459
|
# resp.findings[0].compliance.related_requirements[0] #=> String
|
|
@@ -7676,6 +8168,47 @@ module Aws::SecurityHub
|
|
|
7676
8168
|
req.send_request(options)
|
|
7677
8169
|
end
|
|
7678
8170
|
|
|
8171
|
+
# If finding aggregation is enabled, then `ListFindingAggregators`
|
|
8172
|
+
# returns the ARN of the finding aggregator. You can run this operation
|
|
8173
|
+
# from any Region.
|
|
8174
|
+
#
|
|
8175
|
+
# @option params [String] :next_token
|
|
8176
|
+
# The token returned with the previous set of results. Identifies the
|
|
8177
|
+
# next set of results to return.
|
|
8178
|
+
#
|
|
8179
|
+
# @option params [Integer] :max_results
|
|
8180
|
+
# The maximum number of results to return. This operation currently only
|
|
8181
|
+
# returns a single result.
|
|
8182
|
+
#
|
|
8183
|
+
# @return [Types::ListFindingAggregatorsResponse] Returns a {Seahorse::Client::Response response} object which responds to the following methods:
|
|
8184
|
+
#
|
|
8185
|
+
# * {Types::ListFindingAggregatorsResponse#finding_aggregators #finding_aggregators} => Array<Types::FindingAggregator>
|
|
8186
|
+
# * {Types::ListFindingAggregatorsResponse#next_token #next_token} => String
|
|
8187
|
+
#
|
|
8188
|
+
# The returned {Seahorse::Client::Response response} is a pageable response and is Enumerable. For details on usage see {Aws::PageableResponse PageableResponse}.
|
|
8189
|
+
#
|
|
8190
|
+
# @example Request syntax with placeholder values
|
|
8191
|
+
#
|
|
8192
|
+
# resp = client.list_finding_aggregators({
|
|
8193
|
+
# next_token: "NextToken",
|
|
8194
|
+
# max_results: 1,
|
|
8195
|
+
# })
|
|
8196
|
+
#
|
|
8197
|
+
# @example Response structure
|
|
8198
|
+
#
|
|
8199
|
+
# resp.finding_aggregators #=> Array
|
|
8200
|
+
# resp.finding_aggregators[0].finding_aggregator_arn #=> String
|
|
8201
|
+
# resp.next_token #=> String
|
|
8202
|
+
#
|
|
8203
|
+
# @see http://docs.aws.amazon.com/goto/WebAPI/securityhub-2018-10-26/ListFindingAggregators AWS API Documentation
|
|
8204
|
+
#
|
|
8205
|
+
# @overload list_finding_aggregators(params = {})
|
|
8206
|
+
# @param [Hash] params ({})
|
|
8207
|
+
def list_finding_aggregators(params = {}, options = {})
|
|
8208
|
+
req = build_request(:list_finding_aggregators, params)
|
|
8209
|
+
req.send_request(options)
|
|
8210
|
+
end
|
|
8211
|
+
|
|
7679
8212
|
# Lists all Security Hub membership invitations that were sent to the
|
|
7680
8213
|
# current Amazon Web Services account.
|
|
7681
8214
|
#
|
|
@@ -7952,6 +8485,84 @@ module Aws::SecurityHub
|
|
|
7952
8485
|
req.send_request(options)
|
|
7953
8486
|
end
|
|
7954
8487
|
|
|
8488
|
+
# Updates the finding aggregation configuration. Used to update the
|
|
8489
|
+
# Region linking mode and the list of included or excluded Regions. You
|
|
8490
|
+
# cannot use `UpdateFindingAggregator` to change the aggregation Region.
|
|
8491
|
+
#
|
|
8492
|
+
# You must run `UpdateFindingAggregator` from the current aggregation
|
|
8493
|
+
# Region.
|
|
8494
|
+
#
|
|
8495
|
+
# @option params [required, String] :finding_aggregator_arn
|
|
8496
|
+
# The ARN of the finding aggregator. To obtain the ARN, use
|
|
8497
|
+
# `ListFindingAggregators`.
|
|
8498
|
+
#
|
|
8499
|
+
# @option params [required, String] :region_linking_mode
|
|
8500
|
+
# Indicates whether to aggregate findings from all of the available
|
|
8501
|
+
# Regions in the current partition. Also determines whether to
|
|
8502
|
+
# automatically aggregate findings from new Regions as Security Hub
|
|
8503
|
+
# supports them and you opt into them.
|
|
8504
|
+
#
|
|
8505
|
+
# The selected option also determines how to use the Regions provided in
|
|
8506
|
+
# the Regions list.
|
|
8507
|
+
#
|
|
8508
|
+
# The options are as follows:
|
|
8509
|
+
#
|
|
8510
|
+
# * `ALL_REGIONS` - Indicates to aggregate findings from all of the
|
|
8511
|
+
# Regions where Security Hub is enabled. When you choose this option,
|
|
8512
|
+
# Security Hub also automatically aggregates findings from new Regions
|
|
8513
|
+
# as Security Hub supports them and you opt into them.
|
|
8514
|
+
#
|
|
8515
|
+
# * `ALL_REGIONS_EXCEPT_SPECIFIED` - Indicates to aggregate findings
|
|
8516
|
+
# from all of the Regions where Security Hub is enabled, except for
|
|
8517
|
+
# the Regions listed in the `Regions` parameter. When you choose this
|
|
8518
|
+
# option, Security Hub also automatically aggregates findings from new
|
|
8519
|
+
# Regions as Security Hub supports them and you opt into them.
|
|
8520
|
+
#
|
|
8521
|
+
# * `SPECIFIED_REGIONS` - Indicates to aggregate findings only from the
|
|
8522
|
+
# Regions listed in the `Regions` parameter. Security Hub does not
|
|
8523
|
+
# automatically aggregate findings from new Regions.
|
|
8524
|
+
#
|
|
8525
|
+
# @option params [Array<String>] :regions
|
|
8526
|
+
# If `RegionLinkingMode` is `ALL_REGIONS_EXCEPT_SPECIFIED`, then this is
|
|
8527
|
+
# a comma-separated list of Regions that do not aggregate findings to
|
|
8528
|
+
# the aggregation Region.
|
|
8529
|
+
#
|
|
8530
|
+
# If `RegionLinkingMode` is `SPECIFIED_REGIONS`, then this is a
|
|
8531
|
+
# comma-separated list of Regions that do aggregate findings to the
|
|
8532
|
+
# aggregation Region.
|
|
8533
|
+
#
|
|
8534
|
+
# @return [Types::UpdateFindingAggregatorResponse] Returns a {Seahorse::Client::Response response} object which responds to the following methods:
|
|
8535
|
+
#
|
|
8536
|
+
# * {Types::UpdateFindingAggregatorResponse#finding_aggregator_arn #finding_aggregator_arn} => String
|
|
8537
|
+
# * {Types::UpdateFindingAggregatorResponse#finding_aggregation_region #finding_aggregation_region} => String
|
|
8538
|
+
# * {Types::UpdateFindingAggregatorResponse#region_linking_mode #region_linking_mode} => String
|
|
8539
|
+
# * {Types::UpdateFindingAggregatorResponse#regions #regions} => Array<String>
|
|
8540
|
+
#
|
|
8541
|
+
# @example Request syntax with placeholder values
|
|
8542
|
+
#
|
|
8543
|
+
# resp = client.update_finding_aggregator({
|
|
8544
|
+
# finding_aggregator_arn: "NonEmptyString", # required
|
|
8545
|
+
# region_linking_mode: "NonEmptyString", # required
|
|
8546
|
+
# regions: ["NonEmptyString"],
|
|
8547
|
+
# })
|
|
8548
|
+
#
|
|
8549
|
+
# @example Response structure
|
|
8550
|
+
#
|
|
8551
|
+
# resp.finding_aggregator_arn #=> String
|
|
8552
|
+
# resp.finding_aggregation_region #=> String
|
|
8553
|
+
# resp.region_linking_mode #=> String
|
|
8554
|
+
# resp.regions #=> Array
|
|
8555
|
+
# resp.regions[0] #=> String
|
|
8556
|
+
#
|
|
8557
|
+
# @see http://docs.aws.amazon.com/goto/WebAPI/securityhub-2018-10-26/UpdateFindingAggregator AWS API Documentation
|
|
8558
|
+
#
|
|
8559
|
+
# @overload update_finding_aggregator(params = {})
|
|
8560
|
+
# @param [Hash] params ({})
|
|
8561
|
+
def update_finding_aggregator(params = {}, options = {})
|
|
8562
|
+
req = build_request(:update_finding_aggregator, params)
|
|
8563
|
+
req.send_request(options)
|
|
8564
|
+
end
|
|
8565
|
+
|
|
7955
8566
|
# `UpdateFindings` is deprecated. Instead of `UpdateFindings`, use
|
|
7956
8567
|
# `BatchUpdateFindings`.
|
|
7957
8568
|
#
|
|
@@ -9360,7 +9971,7 @@ module Aws::SecurityHub
|
|
|
9360
9971
|
params: params,
|
|
9361
9972
|
config: config)
|
|
9362
9973
|
context[:gem_name] = 'aws-sdk-securityhub'
|
|
9363
|
-
context[:gem_version] = '1.
|
|
9974
|
+
context[:gem_version] = '1.56.0'
|
|
9364
9975
|
Seahorse::Client::Request.new(handlers, context)
|
|
9365
9976
|
end
|
|
9366
9977
|
|