aws-sdk-securityhub 1.52.0 → 1.56.0
Sign up to get free protection for your applications and to get access to all the features.
- checksums.yaml +4 -4
- data/CHANGELOG.md +20 -0
- data/VERSION +1 -1
- data/lib/aws-sdk-securityhub/client.rb +620 -9
- data/lib/aws-sdk-securityhub/client_api.rb +395 -0
- data/lib/aws-sdk-securityhub/types.rb +2852 -148
- data/lib/aws-sdk-securityhub.rb +1 -1
- metadata +4 -4
|
@@ -275,6 +275,15 @@ module Aws::SecurityHub
|
|
|
275
275
|
# ** Please note ** When response stubbing is enabled, no HTTP
|
|
276
276
|
# requests are made, and retries are disabled.
|
|
277
277
|
#
|
|
278
|
+
# @option options [Boolean] :use_dualstack_endpoint
|
|
279
|
+
# When set to `true`, dualstack enabled endpoints (with `.aws` TLD)
|
|
280
|
+
# will be used if available.
|
|
281
|
+
#
|
|
282
|
+
# @option options [Boolean] :use_fips_endpoint
|
|
283
|
+
# When set to `true`, fips compatible endpoints will be used if available.
|
|
284
|
+
# When a `fips` region is used, the region is normalized and this config
|
|
285
|
+
# is set to `true`.
|
|
286
|
+
#
|
|
278
287
|
# @option options [Boolean] :validate_params (true)
|
|
279
288
|
# When `true`, request parameters are validated before
|
|
280
289
|
# sending the request.
|
|
@@ -825,8 +834,29 @@ module Aws::SecurityHub
|
|
|
825
834
|
# },
|
|
826
835
|
# aws_code_build_project: {
|
|
827
836
|
# encryption_key: "NonEmptyString",
|
|
837
|
+
# artifacts: [
|
|
838
|
+
# {
|
|
839
|
+
# artifact_identifier: "NonEmptyString",
|
|
840
|
+
# encryption_disabled: false,
|
|
841
|
+
# location: "NonEmptyString",
|
|
842
|
+
# name: "NonEmptyString",
|
|
843
|
+
# namespace_type: "NonEmptyString",
|
|
844
|
+
# override_artifact_name: false,
|
|
845
|
+
# packaging: "NonEmptyString",
|
|
846
|
+
# path: "NonEmptyString",
|
|
847
|
+
# type: "NonEmptyString",
|
|
848
|
+
# },
|
|
849
|
+
# ],
|
|
828
850
|
# environment: {
|
|
829
851
|
# certificate: "NonEmptyString",
|
|
852
|
+
# environment_variables: [
|
|
853
|
+
# {
|
|
854
|
+
# name: "NonEmptyString",
|
|
855
|
+
# type: "NonEmptyString",
|
|
856
|
+
# value: "NonEmptyString",
|
|
857
|
+
# },
|
|
858
|
+
# ],
|
|
859
|
+
# privileged_mode: false,
|
|
830
860
|
# image_pull_credentials_type: "NonEmptyString",
|
|
831
861
|
# registry_credential: {
|
|
832
862
|
# credential: "NonEmptyString",
|
|
@@ -842,6 +872,18 @@ module Aws::SecurityHub
|
|
|
842
872
|
# insecure_ssl: false,
|
|
843
873
|
# },
|
|
844
874
|
# service_role: "NonEmptyString",
|
|
875
|
+
# logs_config: {
|
|
876
|
+
# cloud_watch_logs: {
|
|
877
|
+
# group_name: "NonEmptyString",
|
|
878
|
+
# status: "NonEmptyString",
|
|
879
|
+
# stream_name: "NonEmptyString",
|
|
880
|
+
# },
|
|
881
|
+
# s3_logs: {
|
|
882
|
+
# encryption_disabled: false,
|
|
883
|
+
# location: "NonEmptyString",
|
|
884
|
+
# status: "NonEmptyString",
|
|
885
|
+
# },
|
|
886
|
+
# },
|
|
845
887
|
# vpc_config: {
|
|
846
888
|
# vpc_id: "NonEmptyString",
|
|
847
889
|
# subnets: ["NonEmptyString"],
|
|
@@ -893,6 +935,15 @@ module Aws::SecurityHub
|
|
|
893
935
|
# },
|
|
894
936
|
# ],
|
|
895
937
|
# },
|
|
938
|
+
# viewer_certificate: {
|
|
939
|
+
# acm_certificate_arn: "NonEmptyString",
|
|
940
|
+
# certificate: "NonEmptyString",
|
|
941
|
+
# certificate_source: "NonEmptyString",
|
|
942
|
+
# cloud_front_default_certificate: false,
|
|
943
|
+
# iam_certificate_id: "NonEmptyString",
|
|
944
|
+
# minimum_protocol_version: "NonEmptyString",
|
|
945
|
+
# ssl_support_method: "NonEmptyString",
|
|
946
|
+
# },
|
|
896
947
|
# status: "NonEmptyString",
|
|
897
948
|
# web_acl_id: "NonEmptyString",
|
|
898
949
|
# },
|
|
@@ -1131,6 +1182,12 @@ module Aws::SecurityHub
|
|
|
1131
1182
|
# },
|
|
1132
1183
|
# type: "NonEmptyString",
|
|
1133
1184
|
# vpc_id: "NonEmptyString",
|
|
1185
|
+
# load_balancer_attributes: [
|
|
1186
|
+
# {
|
|
1187
|
+
# key: "NonEmptyString",
|
|
1188
|
+
# value: "NonEmptyString",
|
|
1189
|
+
# },
|
|
1190
|
+
# ],
|
|
1134
1191
|
# },
|
|
1135
1192
|
# aws_elastic_beanstalk_environment: {
|
|
1136
1193
|
# application_name: "NonEmptyString",
|
|
@@ -1230,6 +1287,7 @@ module Aws::SecurityHub
|
|
|
1230
1287
|
# aws_s3_bucket: {
|
|
1231
1288
|
# owner_id: "NonEmptyString",
|
|
1232
1289
|
# owner_name: "NonEmptyString",
|
|
1290
|
+
# owner_account_id: "NonEmptyString",
|
|
1233
1291
|
# created_at: "NonEmptyString",
|
|
1234
1292
|
# server_side_encryption_configuration: {
|
|
1235
1293
|
# rules: [
|
|
@@ -2815,6 +2873,157 @@ module Aws::SecurityHub
|
|
|
2815
2873
|
# image_tags: ["NonEmptyString"],
|
|
2816
2874
|
# image_published_at: "NonEmptyString",
|
|
2817
2875
|
# },
|
|
2876
|
+
# aws_open_search_service_domain: {
|
|
2877
|
+
# arn: "NonEmptyString",
|
|
2878
|
+
# access_policies: "NonEmptyString",
|
|
2879
|
+
# domain_name: "NonEmptyString",
|
|
2880
|
+
# id: "NonEmptyString",
|
|
2881
|
+
# domain_endpoint: "NonEmptyString",
|
|
2882
|
+
# engine_version: "NonEmptyString",
|
|
2883
|
+
# encryption_at_rest_options: {
|
|
2884
|
+
# enabled: false,
|
|
2885
|
+
# kms_key_id: "NonEmptyString",
|
|
2886
|
+
# },
|
|
2887
|
+
# node_to_node_encryption_options: {
|
|
2888
|
+
# enabled: false,
|
|
2889
|
+
# },
|
|
2890
|
+
# service_software_options: {
|
|
2891
|
+
# automated_update_date: "NonEmptyString",
|
|
2892
|
+
# cancellable: false,
|
|
2893
|
+
# current_version: "NonEmptyString",
|
|
2894
|
+
# description: "NonEmptyString",
|
|
2895
|
+
# new_version: "NonEmptyString",
|
|
2896
|
+
# update_available: false,
|
|
2897
|
+
# update_status: "NonEmptyString",
|
|
2898
|
+
# optional_deployment: false,
|
|
2899
|
+
# },
|
|
2900
|
+
# cluster_config: {
|
|
2901
|
+
# instance_count: 1,
|
|
2902
|
+
# warm_enabled: false,
|
|
2903
|
+
# warm_count: 1,
|
|
2904
|
+
# dedicated_master_enabled: false,
|
|
2905
|
+
# zone_awareness_config: {
|
|
2906
|
+
# availability_zone_count: 1,
|
|
2907
|
+
# },
|
|
2908
|
+
# dedicated_master_count: 1,
|
|
2909
|
+
# instance_type: "NonEmptyString",
|
|
2910
|
+
# warm_type: "NonEmptyString",
|
|
2911
|
+
# zone_awareness_enabled: false,
|
|
2912
|
+
# dedicated_master_type: "NonEmptyString",
|
|
2913
|
+
# },
|
|
2914
|
+
# domain_endpoint_options: {
|
|
2915
|
+
# custom_endpoint_certificate_arn: "NonEmptyString",
|
|
2916
|
+
# custom_endpoint_enabled: false,
|
|
2917
|
+
# enforce_https: false,
|
|
2918
|
+
# custom_endpoint: "NonEmptyString",
|
|
2919
|
+
# tls_security_policy: "NonEmptyString",
|
|
2920
|
+
# },
|
|
2921
|
+
# vpc_options: {
|
|
2922
|
+
# security_group_ids: ["NonEmptyString"],
|
|
2923
|
+
# subnet_ids: ["NonEmptyString"],
|
|
2924
|
+
# },
|
|
2925
|
+
# log_publishing_options: {
|
|
2926
|
+
# index_slow_logs: {
|
|
2927
|
+
# cloud_watch_logs_log_group_arn: "NonEmptyString",
|
|
2928
|
+
# enabled: false,
|
|
2929
|
+
# },
|
|
2930
|
+
# search_slow_logs: {
|
|
2931
|
+
# cloud_watch_logs_log_group_arn: "NonEmptyString",
|
|
2932
|
+
# enabled: false,
|
|
2933
|
+
# },
|
|
2934
|
+
# audit_logs: {
|
|
2935
|
+
# cloud_watch_logs_log_group_arn: "NonEmptyString",
|
|
2936
|
+
# enabled: false,
|
|
2937
|
+
# },
|
|
2938
|
+
# },
|
|
2939
|
+
# domain_endpoints: {
|
|
2940
|
+
# "NonEmptyString" => "NonEmptyString",
|
|
2941
|
+
# },
|
|
2942
|
+
# },
|
|
2943
|
+
# aws_ec2_vpc_endpoint_service: {
|
|
2944
|
+
# acceptance_required: false,
|
|
2945
|
+
# availability_zones: ["NonEmptyString"],
|
|
2946
|
+
# base_endpoint_dns_names: ["NonEmptyString"],
|
|
2947
|
+
# manages_vpc_endpoints: false,
|
|
2948
|
+
# gateway_load_balancer_arns: ["NonEmptyString"],
|
|
2949
|
+
# network_load_balancer_arns: ["NonEmptyString"],
|
|
2950
|
+
# private_dns_name: "NonEmptyString",
|
|
2951
|
+
# service_id: "NonEmptyString",
|
|
2952
|
+
# service_name: "NonEmptyString",
|
|
2953
|
+
# service_state: "NonEmptyString",
|
|
2954
|
+
# service_type: [
|
|
2955
|
+
# {
|
|
2956
|
+
# service_type: "NonEmptyString",
|
|
2957
|
+
# },
|
|
2958
|
+
# ],
|
|
2959
|
+
# },
|
|
2960
|
+
# aws_xray_encryption_config: {
|
|
2961
|
+
# key_id: "NonEmptyString",
|
|
2962
|
+
# status: "NonEmptyString",
|
|
2963
|
+
# type: "NonEmptyString",
|
|
2964
|
+
# },
|
|
2965
|
+
# aws_waf_rate_based_rule: {
|
|
2966
|
+
# metric_name: "NonEmptyString",
|
|
2967
|
+
# name: "NonEmptyString",
|
|
2968
|
+
# rate_key: "NonEmptyString",
|
|
2969
|
+
# rate_limit: 1,
|
|
2970
|
+
# rule_id: "NonEmptyString",
|
|
2971
|
+
# match_predicates: [
|
|
2972
|
+
# {
|
|
2973
|
+
# data_id: "NonEmptyString",
|
|
2974
|
+
# negated: false,
|
|
2975
|
+
# type: "NonEmptyString",
|
|
2976
|
+
# },
|
|
2977
|
+
# ],
|
|
2978
|
+
# },
|
|
2979
|
+
# aws_waf_regional_rate_based_rule: {
|
|
2980
|
+
# metric_name: "NonEmptyString",
|
|
2981
|
+
# name: "NonEmptyString",
|
|
2982
|
+
# rate_key: "NonEmptyString",
|
|
2983
|
+
# rate_limit: 1,
|
|
2984
|
+
# rule_id: "NonEmptyString",
|
|
2985
|
+
# match_predicates: [
|
|
2986
|
+
# {
|
|
2987
|
+
# data_id: "NonEmptyString",
|
|
2988
|
+
# negated: false,
|
|
2989
|
+
# type: "NonEmptyString",
|
|
2990
|
+
# },
|
|
2991
|
+
# ],
|
|
2992
|
+
# },
|
|
2993
|
+
# aws_ecr_repository: {
|
|
2994
|
+
# arn: "NonEmptyString",
|
|
2995
|
+
# image_scanning_configuration: {
|
|
2996
|
+
# scan_on_push: false,
|
|
2997
|
+
# },
|
|
2998
|
+
# image_tag_mutability: "NonEmptyString",
|
|
2999
|
+
# lifecycle_policy: {
|
|
3000
|
+
# lifecycle_policy_text: "NonEmptyString",
|
|
3001
|
+
# registry_id: "NonEmptyString",
|
|
3002
|
+
# },
|
|
3003
|
+
# repository_name: "NonEmptyString",
|
|
3004
|
+
# repository_policy_text: "NonEmptyString",
|
|
3005
|
+
# },
|
|
3006
|
+
# aws_eks_cluster: {
|
|
3007
|
+
# arn: "NonEmptyString",
|
|
3008
|
+
# certificate_authority_data: "NonEmptyString",
|
|
3009
|
+
# cluster_status: "NonEmptyString",
|
|
3010
|
+
# endpoint: "NonEmptyString",
|
|
3011
|
+
# name: "NonEmptyString",
|
|
3012
|
+
# resources_vpc_config: {
|
|
3013
|
+
# security_group_ids: ["NonEmptyString"],
|
|
3014
|
+
# subnet_ids: ["NonEmptyString"],
|
|
3015
|
+
# },
|
|
3016
|
+
# role_arn: "NonEmptyString",
|
|
3017
|
+
# version: "NonEmptyString",
|
|
3018
|
+
# logging: {
|
|
3019
|
+
# cluster_logging: [
|
|
3020
|
+
# {
|
|
3021
|
+
# enabled: false,
|
|
3022
|
+
# types: ["NonEmptyString"],
|
|
3023
|
+
# },
|
|
3024
|
+
# ],
|
|
3025
|
+
# },
|
|
3026
|
+
# },
|
|
2818
3027
|
# },
|
|
2819
3028
|
# },
|
|
2820
3029
|
# ],
|
|
@@ -3254,6 +3463,80 @@ module Aws::SecurityHub
|
|
|
3254
3463
|
req.send_request(options)
|
|
3255
3464
|
end
|
|
3256
3465
|
|
|
3466
|
+
# Used to enable finding aggregation. Must be called from the
|
|
3467
|
+
# aggregation Region.
|
|
3468
|
+
#
|
|
3469
|
+
# For more details about cross-Region replication, see [Configuring
|
|
3470
|
+
# finding
|
|
3471
|
+
# aggregation](securityhub/latest/userguide/finding-aggregation.html) in
|
|
3472
|
+
# the *Security Hub User Guide*.
|
|
3473
|
+
#
|
|
3474
|
+
# @option params [required, String] :region_linking_mode
|
|
3475
|
+
# Indicates whether to aggregate findings from all of the available
|
|
3476
|
+
# Regions in the current partition. Also determines whether to
|
|
3477
|
+
# automatically aggregate findings from new Regions as Security Hub
|
|
3478
|
+
# supports them and you opt into them.
|
|
3479
|
+
#
|
|
3480
|
+
# The selected option also determines how to use the Regions provided in
|
|
3481
|
+
# the Regions list.
|
|
3482
|
+
#
|
|
3483
|
+
# The options are as follows:
|
|
3484
|
+
#
|
|
3485
|
+
# * `ALL_REGIONS` - Indicates to aggregate findings from all of the
|
|
3486
|
+
# Regions where Security Hub is enabled. When you choose this option,
|
|
3487
|
+
# Security Hub also automatically aggregates findings from new Regions
|
|
3488
|
+
# as Security Hub supports them and you opt into them.
|
|
3489
|
+
#
|
|
3490
|
+
# * `ALL_REGIONS_EXCEPT_SPECIFIED` - Indicates to aggregate findings
|
|
3491
|
+
# from all of the Regions where Security Hub is enabled, except for
|
|
3492
|
+
# the Regions listed in the `Regions` parameter. When you choose this
|
|
3493
|
+
# option, Security Hub also automatically aggregates findings from new
|
|
3494
|
+
# Regions as Security Hub supports them and you opt into them.
|
|
3495
|
+
#
|
|
3496
|
+
# * `SPECIFIED_REGIONS` - Indicates to aggregate findings only from the
|
|
3497
|
+
# Regions listed in the `Regions` parameter. Security Hub does not
|
|
3498
|
+
# automatically aggregate findings from new Regions.
|
|
3499
|
+
#
|
|
3500
|
+
# @option params [Array<String>] :regions
|
|
3501
|
+
# If `RegionLinkingMode` is `ALL_REGIONS_EXCEPT_SPECIFIED`, then this is
|
|
3502
|
+
# a comma-separated list of Regions that do not aggregate findings to
|
|
3503
|
+
# the aggregation Region.
|
|
3504
|
+
#
|
|
3505
|
+
# If `RegionLinkingMode` is `SPECIFIED_REGIONS`, then this is a
|
|
3506
|
+
# comma-separated list of Regions that do aggregate findings to the
|
|
3507
|
+
# aggregation Region.
|
|
3508
|
+
#
|
|
3509
|
+
# @return [Types::CreateFindingAggregatorResponse] Returns a {Seahorse::Client::Response response} object which responds to the following methods:
|
|
3510
|
+
#
|
|
3511
|
+
# * {Types::CreateFindingAggregatorResponse#finding_aggregator_arn #finding_aggregator_arn} => String
|
|
3512
|
+
# * {Types::CreateFindingAggregatorResponse#finding_aggregation_region #finding_aggregation_region} => String
|
|
3513
|
+
# * {Types::CreateFindingAggregatorResponse#region_linking_mode #region_linking_mode} => String
|
|
3514
|
+
# * {Types::CreateFindingAggregatorResponse#regions #regions} => Array<String>
|
|
3515
|
+
#
|
|
3516
|
+
# @example Request syntax with placeholder values
|
|
3517
|
+
#
|
|
3518
|
+
# resp = client.create_finding_aggregator({
|
|
3519
|
+
# region_linking_mode: "NonEmptyString", # required
|
|
3520
|
+
# regions: ["NonEmptyString"],
|
|
3521
|
+
# })
|
|
3522
|
+
#
|
|
3523
|
+
# @example Response structure
|
|
3524
|
+
#
|
|
3525
|
+
# resp.finding_aggregator_arn #=> String
|
|
3526
|
+
# resp.finding_aggregation_region #=> String
|
|
3527
|
+
# resp.region_linking_mode #=> String
|
|
3528
|
+
# resp.regions #=> Array
|
|
3529
|
+
# resp.regions[0] #=> String
|
|
3530
|
+
#
|
|
3531
|
+
# @see http://docs.aws.amazon.com/goto/WebAPI/securityhub-2018-10-26/CreateFindingAggregator AWS API Documentation
|
|
3532
|
+
#
|
|
3533
|
+
# @overload create_finding_aggregator(params = {})
|
|
3534
|
+
# @param [Hash] params ({})
|
|
3535
|
+
def create_finding_aggregator(params = {}, options = {})
|
|
3536
|
+
req = build_request(:create_finding_aggregator, params)
|
|
3537
|
+
req.send_request(options)
|
|
3538
|
+
end
|
|
3539
|
+
|
|
3257
3540
|
# Creates a custom insight in Security Hub. An insight is a
|
|
3258
3541
|
# consolidation of findings that relate to a security issue that
|
|
3259
3542
|
# requires attention or remediation.
|
|
@@ -3945,16 +4228,21 @@ module Aws::SecurityHub
|
|
|
3945
4228
|
#
|
|
3946
4229
|
# Accounts that are managed using Organizations do not receive an
|
|
3947
4230
|
# invitation. They automatically become a member account in Security
|
|
3948
|
-
# Hub
|
|
3949
|
-
#
|
|
3950
|
-
# organization
|
|
3951
|
-
#
|
|
3952
|
-
#
|
|
4231
|
+
# Hub.
|
|
4232
|
+
#
|
|
4233
|
+
# * If the organization account does not have Security Hub enabled, then
|
|
4234
|
+
# Security Hub and the default standards are automatically enabled.
|
|
4235
|
+
# Note that Security Hub cannot be enabled automatically for the
|
|
4236
|
+
# organization management account. The organization management account
|
|
4237
|
+
# must enable Security Hub before the administrator account enables it
|
|
4238
|
+
# as a member account.
|
|
4239
|
+
#
|
|
4240
|
+
# * For organization accounts that already have Security Hub enabled,
|
|
4241
|
+
# Security Hub does not make any other changes to those accounts. It
|
|
4242
|
+
# does not change their enabled standards or controls.
|
|
3953
4243
|
#
|
|
3954
4244
|
# A permissions policy is added that permits the administrator account
|
|
3955
|
-
# to view the findings generated in the member account.
|
|
3956
|
-
# Hub is enabled in a member account, the member account findings are
|
|
3957
|
-
# also visible to the administrator account.
|
|
4245
|
+
# to view the findings generated in the member account.
|
|
3958
4246
|
#
|
|
3959
4247
|
# To remove the association between the administrator and member
|
|
3960
4248
|
# accounts, use the `DisassociateFromMasterAccount` or
|
|
@@ -4061,6 +4349,35 @@ module Aws::SecurityHub
|
|
|
4061
4349
|
req.send_request(options)
|
|
4062
4350
|
end
|
|
4063
4351
|
|
|
4352
|
+
# Deletes a finding aggregator. When you delete the finding aggregator,
|
|
4353
|
+
# you stop finding aggregation.
|
|
4354
|
+
#
|
|
4355
|
+
# When you stop finding aggregation, findings that were already
|
|
4356
|
+
# aggregated to the aggregation Region are still visible from the
|
|
4357
|
+
# aggregation Region. New findings and finding updates are not
|
|
4358
|
+
# aggregated.
|
|
4359
|
+
#
|
|
4360
|
+
# @option params [required, String] :finding_aggregator_arn
|
|
4361
|
+
# The ARN of the finding aggregator to delete. To obtain the ARN, use
|
|
4362
|
+
# `ListFindingAggregators`.
|
|
4363
|
+
#
|
|
4364
|
+
# @return [Struct] Returns an empty {Seahorse::Client::Response response}.
|
|
4365
|
+
#
|
|
4366
|
+
# @example Request syntax with placeholder values
|
|
4367
|
+
#
|
|
4368
|
+
# resp = client.delete_finding_aggregator({
|
|
4369
|
+
# finding_aggregator_arn: "NonEmptyString", # required
|
|
4370
|
+
# })
|
|
4371
|
+
#
|
|
4372
|
+
# @see http://docs.aws.amazon.com/goto/WebAPI/securityhub-2018-10-26/DeleteFindingAggregator AWS API Documentation
|
|
4373
|
+
#
|
|
4374
|
+
# @overload delete_finding_aggregator(params = {})
|
|
4375
|
+
# @param [Hash] params ({})
|
|
4376
|
+
def delete_finding_aggregator(params = {}, options = {})
|
|
4377
|
+
req = build_request(:delete_finding_aggregator, params)
|
|
4378
|
+
req.send_request(options)
|
|
4379
|
+
end
|
|
4380
|
+
|
|
4064
4381
|
# Deletes the insight specified by the `InsightArn`.
|
|
4065
4382
|
#
|
|
4066
4383
|
# @option params [required, String] :insight_arn
|
|
@@ -4782,8 +5099,48 @@ module Aws::SecurityHub
|
|
|
4782
5099
|
req.send_request(options)
|
|
4783
5100
|
end
|
|
4784
5101
|
|
|
5102
|
+
# Returns the current finding aggregation configuration.
|
|
5103
|
+
#
|
|
5104
|
+
# @option params [required, String] :finding_aggregator_arn
|
|
5105
|
+
# The ARN of the finding aggregator to return details for. To obtain the
|
|
5106
|
+
# ARN, use `ListFindingAggregators`.
|
|
5107
|
+
#
|
|
5108
|
+
# @return [Types::GetFindingAggregatorResponse] Returns a {Seahorse::Client::Response response} object which responds to the following methods:
|
|
5109
|
+
#
|
|
5110
|
+
# * {Types::GetFindingAggregatorResponse#finding_aggregator_arn #finding_aggregator_arn} => String
|
|
5111
|
+
# * {Types::GetFindingAggregatorResponse#finding_aggregation_region #finding_aggregation_region} => String
|
|
5112
|
+
# * {Types::GetFindingAggregatorResponse#region_linking_mode #region_linking_mode} => String
|
|
5113
|
+
# * {Types::GetFindingAggregatorResponse#regions #regions} => Array<String>
|
|
5114
|
+
#
|
|
5115
|
+
# @example Request syntax with placeholder values
|
|
5116
|
+
#
|
|
5117
|
+
# resp = client.get_finding_aggregator({
|
|
5118
|
+
# finding_aggregator_arn: "NonEmptyString", # required
|
|
5119
|
+
# })
|
|
5120
|
+
#
|
|
5121
|
+
# @example Response structure
|
|
5122
|
+
#
|
|
5123
|
+
# resp.finding_aggregator_arn #=> String
|
|
5124
|
+
# resp.finding_aggregation_region #=> String
|
|
5125
|
+
# resp.region_linking_mode #=> String
|
|
5126
|
+
# resp.regions #=> Array
|
|
5127
|
+
# resp.regions[0] #=> String
|
|
5128
|
+
#
|
|
5129
|
+
# @see http://docs.aws.amazon.com/goto/WebAPI/securityhub-2018-10-26/GetFindingAggregator AWS API Documentation
|
|
5130
|
+
#
|
|
5131
|
+
# @overload get_finding_aggregator(params = {})
|
|
5132
|
+
# @param [Hash] params ({})
|
|
5133
|
+
def get_finding_aggregator(params = {}, options = {})
|
|
5134
|
+
req = build_request(:get_finding_aggregator, params)
|
|
5135
|
+
req.send_request(options)
|
|
5136
|
+
end
|
|
5137
|
+
|
|
4785
5138
|
# Returns a list of findings that match the specified criteria.
|
|
4786
5139
|
#
|
|
5140
|
+
# If finding aggregation is enabled, then when you call `GetFindings`
|
|
5141
|
+
# from the aggregation Region, the results include all of the matching
|
|
5142
|
+
# findings from both the aggregation Region and the linked Regions.
|
|
5143
|
+
#
|
|
4787
5144
|
# @option params [Types::AwsSecurityFindingFilters] :filters
|
|
4788
5145
|
# The finding attributes used to define a condition to filter the
|
|
4789
5146
|
# returned findings.
|
|
@@ -5614,7 +5971,22 @@ module Aws::SecurityHub
|
|
|
5614
5971
|
# resp.findings[0].resources[0].details.aws_auto_scaling_auto_scaling_group.health_check_grace_period #=> Integer
|
|
5615
5972
|
# resp.findings[0].resources[0].details.aws_auto_scaling_auto_scaling_group.created_time #=> String
|
|
5616
5973
|
# resp.findings[0].resources[0].details.aws_code_build_project.encryption_key #=> String
|
|
5974
|
+
# resp.findings[0].resources[0].details.aws_code_build_project.artifacts #=> Array
|
|
5975
|
+
# resp.findings[0].resources[0].details.aws_code_build_project.artifacts[0].artifact_identifier #=> String
|
|
5976
|
+
# resp.findings[0].resources[0].details.aws_code_build_project.artifacts[0].encryption_disabled #=> Boolean
|
|
5977
|
+
# resp.findings[0].resources[0].details.aws_code_build_project.artifacts[0].location #=> String
|
|
5978
|
+
# resp.findings[0].resources[0].details.aws_code_build_project.artifacts[0].name #=> String
|
|
5979
|
+
# resp.findings[0].resources[0].details.aws_code_build_project.artifacts[0].namespace_type #=> String
|
|
5980
|
+
# resp.findings[0].resources[0].details.aws_code_build_project.artifacts[0].override_artifact_name #=> Boolean
|
|
5981
|
+
# resp.findings[0].resources[0].details.aws_code_build_project.artifacts[0].packaging #=> String
|
|
5982
|
+
# resp.findings[0].resources[0].details.aws_code_build_project.artifacts[0].path #=> String
|
|
5983
|
+
# resp.findings[0].resources[0].details.aws_code_build_project.artifacts[0].type #=> String
|
|
5617
5984
|
# resp.findings[0].resources[0].details.aws_code_build_project.environment.certificate #=> String
|
|
5985
|
+
# resp.findings[0].resources[0].details.aws_code_build_project.environment.environment_variables #=> Array
|
|
5986
|
+
# resp.findings[0].resources[0].details.aws_code_build_project.environment.environment_variables[0].name #=> String
|
|
5987
|
+
# resp.findings[0].resources[0].details.aws_code_build_project.environment.environment_variables[0].type #=> String
|
|
5988
|
+
# resp.findings[0].resources[0].details.aws_code_build_project.environment.environment_variables[0].value #=> String
|
|
5989
|
+
# resp.findings[0].resources[0].details.aws_code_build_project.environment.privileged_mode #=> Boolean
|
|
5618
5990
|
# resp.findings[0].resources[0].details.aws_code_build_project.environment.image_pull_credentials_type #=> String
|
|
5619
5991
|
# resp.findings[0].resources[0].details.aws_code_build_project.environment.registry_credential.credential #=> String
|
|
5620
5992
|
# resp.findings[0].resources[0].details.aws_code_build_project.environment.registry_credential.credential_provider #=> String
|
|
@@ -5625,6 +5997,12 @@ module Aws::SecurityHub
|
|
|
5625
5997
|
# resp.findings[0].resources[0].details.aws_code_build_project.source.git_clone_depth #=> Integer
|
|
5626
5998
|
# resp.findings[0].resources[0].details.aws_code_build_project.source.insecure_ssl #=> Boolean
|
|
5627
5999
|
# resp.findings[0].resources[0].details.aws_code_build_project.service_role #=> String
|
|
6000
|
+
# resp.findings[0].resources[0].details.aws_code_build_project.logs_config.cloud_watch_logs.group_name #=> String
|
|
6001
|
+
# resp.findings[0].resources[0].details.aws_code_build_project.logs_config.cloud_watch_logs.status #=> String
|
|
6002
|
+
# resp.findings[0].resources[0].details.aws_code_build_project.logs_config.cloud_watch_logs.stream_name #=> String
|
|
6003
|
+
# resp.findings[0].resources[0].details.aws_code_build_project.logs_config.s3_logs.encryption_disabled #=> Boolean
|
|
6004
|
+
# resp.findings[0].resources[0].details.aws_code_build_project.logs_config.s3_logs.location #=> String
|
|
6005
|
+
# resp.findings[0].resources[0].details.aws_code_build_project.logs_config.s3_logs.status #=> String
|
|
5628
6006
|
# resp.findings[0].resources[0].details.aws_code_build_project.vpc_config.vpc_id #=> String
|
|
5629
6007
|
# resp.findings[0].resources[0].details.aws_code_build_project.vpc_config.subnets #=> Array
|
|
5630
6008
|
# resp.findings[0].resources[0].details.aws_code_build_project.vpc_config.subnets[0] #=> String
|
|
@@ -5650,6 +6028,13 @@ module Aws::SecurityHub
|
|
|
5650
6028
|
# resp.findings[0].resources[0].details.aws_cloud_front_distribution.origin_groups.items[0].failover_criteria.status_codes.items #=> Array
|
|
5651
6029
|
# resp.findings[0].resources[0].details.aws_cloud_front_distribution.origin_groups.items[0].failover_criteria.status_codes.items[0] #=> Integer
|
|
5652
6030
|
# resp.findings[0].resources[0].details.aws_cloud_front_distribution.origin_groups.items[0].failover_criteria.status_codes.quantity #=> Integer
|
|
6031
|
+
# resp.findings[0].resources[0].details.aws_cloud_front_distribution.viewer_certificate.acm_certificate_arn #=> String
|
|
6032
|
+
# resp.findings[0].resources[0].details.aws_cloud_front_distribution.viewer_certificate.certificate #=> String
|
|
6033
|
+
# resp.findings[0].resources[0].details.aws_cloud_front_distribution.viewer_certificate.certificate_source #=> String
|
|
6034
|
+
# resp.findings[0].resources[0].details.aws_cloud_front_distribution.viewer_certificate.cloud_front_default_certificate #=> Boolean
|
|
6035
|
+
# resp.findings[0].resources[0].details.aws_cloud_front_distribution.viewer_certificate.iam_certificate_id #=> String
|
|
6036
|
+
# resp.findings[0].resources[0].details.aws_cloud_front_distribution.viewer_certificate.minimum_protocol_version #=> String
|
|
6037
|
+
# resp.findings[0].resources[0].details.aws_cloud_front_distribution.viewer_certificate.ssl_support_method #=> String
|
|
5653
6038
|
# resp.findings[0].resources[0].details.aws_cloud_front_distribution.status #=> String
|
|
5654
6039
|
# resp.findings[0].resources[0].details.aws_cloud_front_distribution.web_acl_id #=> String
|
|
5655
6040
|
# resp.findings[0].resources[0].details.aws_ec2_instance.type #=> String
|
|
@@ -5802,6 +6187,9 @@ module Aws::SecurityHub
|
|
|
5802
6187
|
# resp.findings[0].resources[0].details.aws_elbv_2_load_balancer.state.reason #=> String
|
|
5803
6188
|
# resp.findings[0].resources[0].details.aws_elbv_2_load_balancer.type #=> String
|
|
5804
6189
|
# resp.findings[0].resources[0].details.aws_elbv_2_load_balancer.vpc_id #=> String
|
|
6190
|
+
# resp.findings[0].resources[0].details.aws_elbv_2_load_balancer.load_balancer_attributes #=> Array
|
|
6191
|
+
# resp.findings[0].resources[0].details.aws_elbv_2_load_balancer.load_balancer_attributes[0].key #=> String
|
|
6192
|
+
# resp.findings[0].resources[0].details.aws_elbv_2_load_balancer.load_balancer_attributes[0].value #=> String
|
|
5805
6193
|
# resp.findings[0].resources[0].details.aws_elastic_beanstalk_environment.application_name #=> String
|
|
5806
6194
|
# resp.findings[0].resources[0].details.aws_elastic_beanstalk_environment.cname #=> String
|
|
5807
6195
|
# resp.findings[0].resources[0].details.aws_elastic_beanstalk_environment.date_created #=> String
|
|
@@ -5867,6 +6255,7 @@ module Aws::SecurityHub
|
|
|
5867
6255
|
# resp.findings[0].resources[0].details.aws_elasticsearch_domain.vpc_options.vpc_id #=> String
|
|
5868
6256
|
# resp.findings[0].resources[0].details.aws_s3_bucket.owner_id #=> String
|
|
5869
6257
|
# resp.findings[0].resources[0].details.aws_s3_bucket.owner_name #=> String
|
|
6258
|
+
# resp.findings[0].resources[0].details.aws_s3_bucket.owner_account_id #=> String
|
|
5870
6259
|
# resp.findings[0].resources[0].details.aws_s3_bucket.created_at #=> String
|
|
5871
6260
|
# resp.findings[0].resources[0].details.aws_s3_bucket.server_side_encryption_configuration.rules #=> Array
|
|
5872
6261
|
# resp.findings[0].resources[0].details.aws_s3_bucket.server_side_encryption_configuration.rules[0].apply_server_side_encryption_by_default.sse_algorithm #=> String
|
|
@@ -6962,6 +7351,109 @@ module Aws::SecurityHub
|
|
|
6962
7351
|
# resp.findings[0].resources[0].details.aws_ecr_container_image.image_tags #=> Array
|
|
6963
7352
|
# resp.findings[0].resources[0].details.aws_ecr_container_image.image_tags[0] #=> String
|
|
6964
7353
|
# resp.findings[0].resources[0].details.aws_ecr_container_image.image_published_at #=> String
|
|
7354
|
+
# resp.findings[0].resources[0].details.aws_open_search_service_domain.arn #=> String
|
|
7355
|
+
# resp.findings[0].resources[0].details.aws_open_search_service_domain.access_policies #=> String
|
|
7356
|
+
# resp.findings[0].resources[0].details.aws_open_search_service_domain.domain_name #=> String
|
|
7357
|
+
# resp.findings[0].resources[0].details.aws_open_search_service_domain.id #=> String
|
|
7358
|
+
# resp.findings[0].resources[0].details.aws_open_search_service_domain.domain_endpoint #=> String
|
|
7359
|
+
# resp.findings[0].resources[0].details.aws_open_search_service_domain.engine_version #=> String
|
|
7360
|
+
# resp.findings[0].resources[0].details.aws_open_search_service_domain.encryption_at_rest_options.enabled #=> Boolean
|
|
7361
|
+
# resp.findings[0].resources[0].details.aws_open_search_service_domain.encryption_at_rest_options.kms_key_id #=> String
|
|
7362
|
+
# resp.findings[0].resources[0].details.aws_open_search_service_domain.node_to_node_encryption_options.enabled #=> Boolean
|
|
7363
|
+
# resp.findings[0].resources[0].details.aws_open_search_service_domain.service_software_options.automated_update_date #=> String
|
|
7364
|
+
# resp.findings[0].resources[0].details.aws_open_search_service_domain.service_software_options.cancellable #=> Boolean
|
|
7365
|
+
# resp.findings[0].resources[0].details.aws_open_search_service_domain.service_software_options.current_version #=> String
|
|
7366
|
+
# resp.findings[0].resources[0].details.aws_open_search_service_domain.service_software_options.description #=> String
|
|
7367
|
+
# resp.findings[0].resources[0].details.aws_open_search_service_domain.service_software_options.new_version #=> String
|
|
7368
|
+
# resp.findings[0].resources[0].details.aws_open_search_service_domain.service_software_options.update_available #=> Boolean
|
|
7369
|
+
# resp.findings[0].resources[0].details.aws_open_search_service_domain.service_software_options.update_status #=> String
|
|
7370
|
+
# resp.findings[0].resources[0].details.aws_open_search_service_domain.service_software_options.optional_deployment #=> Boolean
|
|
7371
|
+
# resp.findings[0].resources[0].details.aws_open_search_service_domain.cluster_config.instance_count #=> Integer
|
|
7372
|
+
# resp.findings[0].resources[0].details.aws_open_search_service_domain.cluster_config.warm_enabled #=> Boolean
|
|
7373
|
+
# resp.findings[0].resources[0].details.aws_open_search_service_domain.cluster_config.warm_count #=> Integer
|
|
7374
|
+
# resp.findings[0].resources[0].details.aws_open_search_service_domain.cluster_config.dedicated_master_enabled #=> Boolean
|
|
7375
|
+
# resp.findings[0].resources[0].details.aws_open_search_service_domain.cluster_config.zone_awareness_config.availability_zone_count #=> Integer
|
|
7376
|
+
# resp.findings[0].resources[0].details.aws_open_search_service_domain.cluster_config.dedicated_master_count #=> Integer
|
|
7377
|
+
# resp.findings[0].resources[0].details.aws_open_search_service_domain.cluster_config.instance_type #=> String
|
|
7378
|
+
# resp.findings[0].resources[0].details.aws_open_search_service_domain.cluster_config.warm_type #=> String
|
|
7379
|
+
# resp.findings[0].resources[0].details.aws_open_search_service_domain.cluster_config.zone_awareness_enabled #=> Boolean
|
|
7380
|
+
# resp.findings[0].resources[0].details.aws_open_search_service_domain.cluster_config.dedicated_master_type #=> String
|
|
7381
|
+
# resp.findings[0].resources[0].details.aws_open_search_service_domain.domain_endpoint_options.custom_endpoint_certificate_arn #=> String
|
|
7382
|
+
# resp.findings[0].resources[0].details.aws_open_search_service_domain.domain_endpoint_options.custom_endpoint_enabled #=> Boolean
|
|
7383
|
+
# resp.findings[0].resources[0].details.aws_open_search_service_domain.domain_endpoint_options.enforce_https #=> Boolean
|
|
7384
|
+
# resp.findings[0].resources[0].details.aws_open_search_service_domain.domain_endpoint_options.custom_endpoint #=> String
|
|
7385
|
+
# resp.findings[0].resources[0].details.aws_open_search_service_domain.domain_endpoint_options.tls_security_policy #=> String
|
|
7386
|
+
# resp.findings[0].resources[0].details.aws_open_search_service_domain.vpc_options.security_group_ids #=> Array
|
|
7387
|
+
# resp.findings[0].resources[0].details.aws_open_search_service_domain.vpc_options.security_group_ids[0] #=> String
|
|
7388
|
+
# resp.findings[0].resources[0].details.aws_open_search_service_domain.vpc_options.subnet_ids #=> Array
|
|
7389
|
+
# resp.findings[0].resources[0].details.aws_open_search_service_domain.vpc_options.subnet_ids[0] #=> String
|
|
7390
|
+
# resp.findings[0].resources[0].details.aws_open_search_service_domain.log_publishing_options.index_slow_logs.cloud_watch_logs_log_group_arn #=> String
|
|
7391
|
+
# resp.findings[0].resources[0].details.aws_open_search_service_domain.log_publishing_options.index_slow_logs.enabled #=> Boolean
|
|
7392
|
+
# resp.findings[0].resources[0].details.aws_open_search_service_domain.log_publishing_options.search_slow_logs.cloud_watch_logs_log_group_arn #=> String
|
|
7393
|
+
# resp.findings[0].resources[0].details.aws_open_search_service_domain.log_publishing_options.search_slow_logs.enabled #=> Boolean
|
|
7394
|
+
# resp.findings[0].resources[0].details.aws_open_search_service_domain.log_publishing_options.audit_logs.cloud_watch_logs_log_group_arn #=> String
|
|
7395
|
+
# resp.findings[0].resources[0].details.aws_open_search_service_domain.log_publishing_options.audit_logs.enabled #=> Boolean
|
|
7396
|
+
# resp.findings[0].resources[0].details.aws_open_search_service_domain.domain_endpoints #=> Hash
|
|
7397
|
+
# resp.findings[0].resources[0].details.aws_open_search_service_domain.domain_endpoints["NonEmptyString"] #=> String
|
|
7398
|
+
# resp.findings[0].resources[0].details.aws_ec2_vpc_endpoint_service.acceptance_required #=> Boolean
|
|
7399
|
+
# resp.findings[0].resources[0].details.aws_ec2_vpc_endpoint_service.availability_zones #=> Array
|
|
7400
|
+
# resp.findings[0].resources[0].details.aws_ec2_vpc_endpoint_service.availability_zones[0] #=> String
|
|
7401
|
+
# resp.findings[0].resources[0].details.aws_ec2_vpc_endpoint_service.base_endpoint_dns_names #=> Array
|
|
7402
|
+
# resp.findings[0].resources[0].details.aws_ec2_vpc_endpoint_service.base_endpoint_dns_names[0] #=> String
|
|
7403
|
+
# resp.findings[0].resources[0].details.aws_ec2_vpc_endpoint_service.manages_vpc_endpoints #=> Boolean
|
|
7404
|
+
# resp.findings[0].resources[0].details.aws_ec2_vpc_endpoint_service.gateway_load_balancer_arns #=> Array
|
|
7405
|
+
# resp.findings[0].resources[0].details.aws_ec2_vpc_endpoint_service.gateway_load_balancer_arns[0] #=> String
|
|
7406
|
+
# resp.findings[0].resources[0].details.aws_ec2_vpc_endpoint_service.network_load_balancer_arns #=> Array
|
|
7407
|
+
# resp.findings[0].resources[0].details.aws_ec2_vpc_endpoint_service.network_load_balancer_arns[0] #=> String
|
|
7408
|
+
# resp.findings[0].resources[0].details.aws_ec2_vpc_endpoint_service.private_dns_name #=> String
|
|
7409
|
+
# resp.findings[0].resources[0].details.aws_ec2_vpc_endpoint_service.service_id #=> String
|
|
7410
|
+
# resp.findings[0].resources[0].details.aws_ec2_vpc_endpoint_service.service_name #=> String
|
|
7411
|
+
# resp.findings[0].resources[0].details.aws_ec2_vpc_endpoint_service.service_state #=> String
|
|
7412
|
+
# resp.findings[0].resources[0].details.aws_ec2_vpc_endpoint_service.service_type #=> Array
|
|
7413
|
+
# resp.findings[0].resources[0].details.aws_ec2_vpc_endpoint_service.service_type[0].service_type #=> String
|
|
7414
|
+
# resp.findings[0].resources[0].details.aws_xray_encryption_config.key_id #=> String
|
|
7415
|
+
# resp.findings[0].resources[0].details.aws_xray_encryption_config.status #=> String
|
|
7416
|
+
# resp.findings[0].resources[0].details.aws_xray_encryption_config.type #=> String
|
|
7417
|
+
# resp.findings[0].resources[0].details.aws_waf_rate_based_rule.metric_name #=> String
|
|
7418
|
+
# resp.findings[0].resources[0].details.aws_waf_rate_based_rule.name #=> String
|
|
7419
|
+
# resp.findings[0].resources[0].details.aws_waf_rate_based_rule.rate_key #=> String
|
|
7420
|
+
# resp.findings[0].resources[0].details.aws_waf_rate_based_rule.rate_limit #=> Integer
|
|
7421
|
+
# resp.findings[0].resources[0].details.aws_waf_rate_based_rule.rule_id #=> String
|
|
7422
|
+
# resp.findings[0].resources[0].details.aws_waf_rate_based_rule.match_predicates #=> Array
|
|
7423
|
+
# resp.findings[0].resources[0].details.aws_waf_rate_based_rule.match_predicates[0].data_id #=> String
|
|
7424
|
+
# resp.findings[0].resources[0].details.aws_waf_rate_based_rule.match_predicates[0].negated #=> Boolean
|
|
7425
|
+
# resp.findings[0].resources[0].details.aws_waf_rate_based_rule.match_predicates[0].type #=> String
|
|
7426
|
+
# resp.findings[0].resources[0].details.aws_waf_regional_rate_based_rule.metric_name #=> String
|
|
7427
|
+
# resp.findings[0].resources[0].details.aws_waf_regional_rate_based_rule.name #=> String
|
|
7428
|
+
# resp.findings[0].resources[0].details.aws_waf_regional_rate_based_rule.rate_key #=> String
|
|
7429
|
+
# resp.findings[0].resources[0].details.aws_waf_regional_rate_based_rule.rate_limit #=> Integer
|
|
7430
|
+
# resp.findings[0].resources[0].details.aws_waf_regional_rate_based_rule.rule_id #=> String
|
|
7431
|
+
# resp.findings[0].resources[0].details.aws_waf_regional_rate_based_rule.match_predicates #=> Array
|
|
7432
|
+
# resp.findings[0].resources[0].details.aws_waf_regional_rate_based_rule.match_predicates[0].data_id #=> String
|
|
7433
|
+
# resp.findings[0].resources[0].details.aws_waf_regional_rate_based_rule.match_predicates[0].negated #=> Boolean
|
|
7434
|
+
# resp.findings[0].resources[0].details.aws_waf_regional_rate_based_rule.match_predicates[0].type #=> String
|
|
7435
|
+
# resp.findings[0].resources[0].details.aws_ecr_repository.arn #=> String
|
|
7436
|
+
# resp.findings[0].resources[0].details.aws_ecr_repository.image_scanning_configuration.scan_on_push #=> Boolean
|
|
7437
|
+
# resp.findings[0].resources[0].details.aws_ecr_repository.image_tag_mutability #=> String
|
|
7438
|
+
# resp.findings[0].resources[0].details.aws_ecr_repository.lifecycle_policy.lifecycle_policy_text #=> String
|
|
7439
|
+
# resp.findings[0].resources[0].details.aws_ecr_repository.lifecycle_policy.registry_id #=> String
|
|
7440
|
+
# resp.findings[0].resources[0].details.aws_ecr_repository.repository_name #=> String
|
|
7441
|
+
# resp.findings[0].resources[0].details.aws_ecr_repository.repository_policy_text #=> String
|
|
7442
|
+
# resp.findings[0].resources[0].details.aws_eks_cluster.arn #=> String
|
|
7443
|
+
# resp.findings[0].resources[0].details.aws_eks_cluster.certificate_authority_data #=> String
|
|
7444
|
+
# resp.findings[0].resources[0].details.aws_eks_cluster.cluster_status #=> String
|
|
7445
|
+
# resp.findings[0].resources[0].details.aws_eks_cluster.endpoint #=> String
|
|
7446
|
+
# resp.findings[0].resources[0].details.aws_eks_cluster.name #=> String
|
|
7447
|
+
# resp.findings[0].resources[0].details.aws_eks_cluster.resources_vpc_config.security_group_ids #=> Array
|
|
7448
|
+
# resp.findings[0].resources[0].details.aws_eks_cluster.resources_vpc_config.security_group_ids[0] #=> String
|
|
7449
|
+
# resp.findings[0].resources[0].details.aws_eks_cluster.resources_vpc_config.subnet_ids #=> Array
|
|
7450
|
+
# resp.findings[0].resources[0].details.aws_eks_cluster.resources_vpc_config.subnet_ids[0] #=> String
|
|
7451
|
+
# resp.findings[0].resources[0].details.aws_eks_cluster.role_arn #=> String
|
|
7452
|
+
# resp.findings[0].resources[0].details.aws_eks_cluster.version #=> String
|
|
7453
|
+
# resp.findings[0].resources[0].details.aws_eks_cluster.logging.cluster_logging #=> Array
|
|
7454
|
+
# resp.findings[0].resources[0].details.aws_eks_cluster.logging.cluster_logging[0].enabled #=> Boolean
|
|
7455
|
+
# resp.findings[0].resources[0].details.aws_eks_cluster.logging.cluster_logging[0].types #=> Array
|
|
7456
|
+
# resp.findings[0].resources[0].details.aws_eks_cluster.logging.cluster_logging[0].types[0] #=> String
|
|
6965
7457
|
# resp.findings[0].compliance.status #=> String, one of "PASSED", "WARNING", "FAILED", "NOT_AVAILABLE"
|
|
6966
7458
|
# resp.findings[0].compliance.related_requirements #=> Array
|
|
6967
7459
|
# resp.findings[0].compliance.related_requirements[0] #=> String
|
|
@@ -7676,6 +8168,47 @@ module Aws::SecurityHub
|
|
|
7676
8168
|
req.send_request(options)
|
|
7677
8169
|
end
|
|
7678
8170
|
|
|
8171
|
+
# If finding aggregation is enabled, then `ListFindingAggregators`
|
|
8172
|
+
# returns the ARN of the finding aggregator. You can run this operation
|
|
8173
|
+
# from any Region.
|
|
8174
|
+
#
|
|
8175
|
+
# @option params [String] :next_token
|
|
8176
|
+
# The token returned with the previous set of results. Identifies the
|
|
8177
|
+
# next set of results to return.
|
|
8178
|
+
#
|
|
8179
|
+
# @option params [Integer] :max_results
|
|
8180
|
+
# The maximum number of results to return. This operation currently only
|
|
8181
|
+
# returns a single result.
|
|
8182
|
+
#
|
|
8183
|
+
# @return [Types::ListFindingAggregatorsResponse] Returns a {Seahorse::Client::Response response} object which responds to the following methods:
|
|
8184
|
+
#
|
|
8185
|
+
# * {Types::ListFindingAggregatorsResponse#finding_aggregators #finding_aggregators} => Array<Types::FindingAggregator>
|
|
8186
|
+
# * {Types::ListFindingAggregatorsResponse#next_token #next_token} => String
|
|
8187
|
+
#
|
|
8188
|
+
# The returned {Seahorse::Client::Response response} is a pageable response and is Enumerable. For details on usage see {Aws::PageableResponse PageableResponse}.
|
|
8189
|
+
#
|
|
8190
|
+
# @example Request syntax with placeholder values
|
|
8191
|
+
#
|
|
8192
|
+
# resp = client.list_finding_aggregators({
|
|
8193
|
+
# next_token: "NextToken",
|
|
8194
|
+
# max_results: 1,
|
|
8195
|
+
# })
|
|
8196
|
+
#
|
|
8197
|
+
# @example Response structure
|
|
8198
|
+
#
|
|
8199
|
+
# resp.finding_aggregators #=> Array
|
|
8200
|
+
# resp.finding_aggregators[0].finding_aggregator_arn #=> String
|
|
8201
|
+
# resp.next_token #=> String
|
|
8202
|
+
#
|
|
8203
|
+
# @see http://docs.aws.amazon.com/goto/WebAPI/securityhub-2018-10-26/ListFindingAggregators AWS API Documentation
|
|
8204
|
+
#
|
|
8205
|
+
# @overload list_finding_aggregators(params = {})
|
|
8206
|
+
# @param [Hash] params ({})
|
|
8207
|
+
def list_finding_aggregators(params = {}, options = {})
|
|
8208
|
+
req = build_request(:list_finding_aggregators, params)
|
|
8209
|
+
req.send_request(options)
|
|
8210
|
+
end
|
|
8211
|
+
|
|
7679
8212
|
# Lists all Security Hub membership invitations that were sent to the
|
|
7680
8213
|
# current Amazon Web Services account.
|
|
7681
8214
|
#
|
|
@@ -7952,6 +8485,84 @@ module Aws::SecurityHub
|
|
|
7952
8485
|
req.send_request(options)
|
|
7953
8486
|
end
|
|
7954
8487
|
|
|
8488
|
+
# Updates the finding aggregation configuration. Used to update the
|
|
8489
|
+
# Region linking mode and the list of included or excluded Regions. You
|
|
8490
|
+
# cannot use `UpdateFindingAggregator` to change the aggregation Region.
|
|
8491
|
+
#
|
|
8492
|
+
# You must run `UpdateFindingAggregator` from the current aggregation
|
|
8493
|
+
# Region.
|
|
8494
|
+
#
|
|
8495
|
+
# @option params [required, String] :finding_aggregator_arn
|
|
8496
|
+
# The ARN of the finding aggregator. To obtain the ARN, use
|
|
8497
|
+
# `ListFindingAggregators`.
|
|
8498
|
+
#
|
|
8499
|
+
# @option params [required, String] :region_linking_mode
|
|
8500
|
+
# Indicates whether to aggregate findings from all of the available
|
|
8501
|
+
# Regions in the current partition. Also determines whether to
|
|
8502
|
+
# automatically aggregate findings from new Regions as Security Hub
|
|
8503
|
+
# supports them and you opt into them.
|
|
8504
|
+
#
|
|
8505
|
+
# The selected option also determines how to use the Regions provided in
|
|
8506
|
+
# the Regions list.
|
|
8507
|
+
#
|
|
8508
|
+
# The options are as follows:
|
|
8509
|
+
#
|
|
8510
|
+
# * `ALL_REGIONS` - Indicates to aggregate findings from all of the
|
|
8511
|
+
# Regions where Security Hub is enabled. When you choose this option,
|
|
8512
|
+
# Security Hub also automatically aggregates findings from new Regions
|
|
8513
|
+
# as Security Hub supports them and you opt into them.
|
|
8514
|
+
#
|
|
8515
|
+
# * `ALL_REGIONS_EXCEPT_SPECIFIED` - Indicates to aggregate findings
|
|
8516
|
+
# from all of the Regions where Security Hub is enabled, except for
|
|
8517
|
+
# the Regions listed in the `Regions` parameter. When you choose this
|
|
8518
|
+
# option, Security Hub also automatically aggregates findings from new
|
|
8519
|
+
# Regions as Security Hub supports them and you opt into them.
|
|
8520
|
+
#
|
|
8521
|
+
# * `SPECIFIED_REGIONS` - Indicates to aggregate findings only from the
|
|
8522
|
+
# Regions listed in the `Regions` parameter. Security Hub does not
|
|
8523
|
+
# automatically aggregate findings from new Regions.
|
|
8524
|
+
#
|
|
8525
|
+
# @option params [Array<String>] :regions
|
|
8526
|
+
# If `RegionLinkingMode` is `ALL_REGIONS_EXCEPT_SPECIFIED`, then this is
|
|
8527
|
+
# a comma-separated list of Regions that do not aggregate findings to
|
|
8528
|
+
# the aggregation Region.
|
|
8529
|
+
#
|
|
8530
|
+
# If `RegionLinkingMode` is `SPECIFIED_REGIONS`, then this is a
|
|
8531
|
+
# comma-separated list of Regions that do aggregate findings to the
|
|
8532
|
+
# aggregation Region.
|
|
8533
|
+
#
|
|
8534
|
+
# @return [Types::UpdateFindingAggregatorResponse] Returns a {Seahorse::Client::Response response} object which responds to the following methods:
|
|
8535
|
+
#
|
|
8536
|
+
# * {Types::UpdateFindingAggregatorResponse#finding_aggregator_arn #finding_aggregator_arn} => String
|
|
8537
|
+
# * {Types::UpdateFindingAggregatorResponse#finding_aggregation_region #finding_aggregation_region} => String
|
|
8538
|
+
# * {Types::UpdateFindingAggregatorResponse#region_linking_mode #region_linking_mode} => String
|
|
8539
|
+
# * {Types::UpdateFindingAggregatorResponse#regions #regions} => Array<String>
|
|
8540
|
+
#
|
|
8541
|
+
# @example Request syntax with placeholder values
|
|
8542
|
+
#
|
|
8543
|
+
# resp = client.update_finding_aggregator({
|
|
8544
|
+
# finding_aggregator_arn: "NonEmptyString", # required
|
|
8545
|
+
# region_linking_mode: "NonEmptyString", # required
|
|
8546
|
+
# regions: ["NonEmptyString"],
|
|
8547
|
+
# })
|
|
8548
|
+
#
|
|
8549
|
+
# @example Response structure
|
|
8550
|
+
#
|
|
8551
|
+
# resp.finding_aggregator_arn #=> String
|
|
8552
|
+
# resp.finding_aggregation_region #=> String
|
|
8553
|
+
# resp.region_linking_mode #=> String
|
|
8554
|
+
# resp.regions #=> Array
|
|
8555
|
+
# resp.regions[0] #=> String
|
|
8556
|
+
#
|
|
8557
|
+
# @see http://docs.aws.amazon.com/goto/WebAPI/securityhub-2018-10-26/UpdateFindingAggregator AWS API Documentation
|
|
8558
|
+
#
|
|
8559
|
+
# @overload update_finding_aggregator(params = {})
|
|
8560
|
+
# @param [Hash] params ({})
|
|
8561
|
+
def update_finding_aggregator(params = {}, options = {})
|
|
8562
|
+
req = build_request(:update_finding_aggregator, params)
|
|
8563
|
+
req.send_request(options)
|
|
8564
|
+
end
|
|
8565
|
+
|
|
7955
8566
|
# `UpdateFindings` is deprecated. Instead of `UpdateFindings`, use
|
|
7956
8567
|
# `BatchUpdateFindings`.
|
|
7957
8568
|
#
|
|
@@ -9360,7 +9971,7 @@ module Aws::SecurityHub
|
|
|
9360
9971
|
params: params,
|
|
9361
9972
|
config: config)
|
|
9362
9973
|
context[:gem_name] = 'aws-sdk-securityhub'
|
|
9363
|
-
context[:gem_version] = '1.
|
|
9974
|
+
context[:gem_version] = '1.56.0'
|
|
9364
9975
|
Seahorse::Client::Request.new(handlers, context)
|
|
9365
9976
|
end
|
|
9366
9977
|
|