aws-sdk-securityhub 1.53.0 → 1.57.0

checksums.yaml

@@ -1,7 +1,7 @@
 ---
 SHA256:
-  metadata.gz: 75432a4d2c16f391afc00f92fd5e3a19ca4dbad99560e4458bddcd3126db38e4
-  data.tar.gz: 6ebb8cf9b50621d956ab71f610378c42e676dd7b4478d1ffc28d5d8677efe23d
+  metadata.gz: 210ca47bffe7e7884ed20eced933d907a9e3a1478f22f714ed8f4e3090221573
+  data.tar.gz: c0be74be7b1d76c7ff2264a0197ae57ad6ea43a1c5dd9eebce004b20a4b0e257
 SHA512:
-  metadata.gz: 5f4e8b42138a678a79eb82bd4d2cdc45717edcdc620d129a78d1b13ef38d12064efbc613edfefc4a236807bb5f3447eda6221901ce7876e0a2ed14b4d2e1988c
-  data.tar.gz: 904c80affb9439c9556a9835cef5954c61e738d260468516d0415ab74958cc8df57722c4d1b6b21aa385fd357de0201e2c1b54b09f5617fcc133329e0aba3eff
+  metadata.gz: 2f896fa98c561bb2e759ff44a26dedfb6cb4c7bb60f0205a9d04ab57069a403d6c0962d5ab052bf35a984d51ee74cef12a4dbc83243521c5fe29d5908f627593
+  data.tar.gz: 4466d4afcaf4d4c2ac15397f3a38af42c6c17fbcc86237fc5f562089be2ed3f1dda2fbb5b65950be01b39ca20f0375409fc0978e2e18577b733e19e062cc9b77

data/CHANGELOG.md

@@ -1,6 +1,26 @@
 Unreleased Changes
 ------------------
 
+1.57.0 (2021-11-30)
+------------------
+
+* Feature - Code Generated Changes, see `./build_tools` or `aws-sdk-core`'s CHANGELOG.md for details.
+
+1.56.0 (2021-11-04)
+------------------
+
+* Feature - Code Generated Changes, see `./build_tools` or `aws-sdk-core`'s CHANGELOG.md for details.
+
+1.55.0 (2021-10-20)
+------------------
+
+* Feature - Added support for cross-Region finding aggregation, which replicates findings from linked Regions to a single aggregation Region. Added operations to view, enable, update, and delete the finding aggregation.
+
+1.54.0 (2021-10-18)
+------------------
+
+* Feature - Code Generated Changes, see `./build_tools` or `aws-sdk-core`'s CHANGELOG.md for details.
+
 1.53.0 (2021-10-08)
 ------------------
 

data/VERSION

@@ -1 +1 @@
-1.53.0
+1.57.0

data/lib/aws-sdk-securityhub/client.rb

@@ -119,7 +119,9 @@ module Aws::SecurityHub
     #     * EC2/ECS IMDS instance profile - When used by default, the timeouts
     #       are very aggressive. Construct and pass an instance of
     #       `Aws::InstanceProfileCredentails` or `Aws::ECSCredentials` to
-    #       enable retries and extended timeouts.
+    #       enable retries and extended timeouts. Instance profile credential
+    #       fetching can be disabled by setting ENV['AWS_EC2_METADATA_DISABLED']
+    #       to true.
     #
     #   @option options [required, String] :region
     #     The AWS region to connect to.  The configured `:region` is
@@ -275,6 +277,15 @@ module Aws::SecurityHub
     #     ** Please note ** When response stubbing is enabled, no HTTP
     #     requests are made, and retries are disabled.
     #
+    #   @option options [Boolean] :use_dualstack_endpoint
+    #     When set to `true`, dualstack enabled endpoints (with `.aws` TLD)
+    #     will be used if available.
+    #
+    #   @option options [Boolean] :use_fips_endpoint
+    #     When set to `true`, fips compatible endpoints will be used if available.
+    #     When a `fips` region is used, the region is normalized and this config
+    #     is set to `true`.
+    #
     #   @option options [Boolean] :validate_params (true)
     #     When `true`, request parameters are validated before
     #     sending the request.
@@ -3454,6 +3465,80 @@ module Aws::SecurityHub
       req.send_request(options)
     end
 
+    # Used to enable finding aggregation. Must be called from the
+    # aggregation Region.
+    #
+    # For more details about cross-Region replication, see [Configuring
+    # finding
+    # aggregation](securityhub/latest/userguide/finding-aggregation.html) in
+    # the *Security Hub User Guide*.
+    #
+    # @option params [required, String] :region_linking_mode
+    #   Indicates whether to aggregate findings from all of the available
+    #   Regions in the current partition. Also determines whether to
+    #   automatically aggregate findings from new Regions as Security Hub
+    #   supports them and you opt into them.
+    #
+    #   The selected option also determines how to use the Regions provided in
+    #   the Regions list.
+    #
+    #   The options are as follows:
+    #
+    #   * `ALL_REGIONS` - Indicates to aggregate findings from all of the
+    #     Regions where Security Hub is enabled. When you choose this option,
+    #     Security Hub also automatically aggregates findings from new Regions
+    #     as Security Hub supports them and you opt into them.
+    #
+    #   * `ALL_REGIONS_EXCEPT_SPECIFIED` - Indicates to aggregate findings
+    #     from all of the Regions where Security Hub is enabled, except for
+    #     the Regions listed in the `Regions` parameter. When you choose this
+    #     option, Security Hub also automatically aggregates findings from new
+    #     Regions as Security Hub supports them and you opt into them.
+    #
+    #   * `SPECIFIED_REGIONS` - Indicates to aggregate findings only from the
+    #     Regions listed in the `Regions` parameter. Security Hub does not
+    #     automatically aggregate findings from new Regions.
+    #
+    # @option params [Array<String>] :regions
+    #   If `RegionLinkingMode` is `ALL_REGIONS_EXCEPT_SPECIFIED`, then this is
+    #   a comma-separated list of Regions that do not aggregate findings to
+    #   the aggregation Region.
+    #
+    #   If `RegionLinkingMode` is `SPECIFIED_REGIONS`, then this is a
+    #   comma-separated list of Regions that do aggregate findings to the
+    #   aggregation Region.
+    #
+    # @return [Types::CreateFindingAggregatorResponse] Returns a {Seahorse::Client::Response response} object which responds to the following methods:
+    #
+    #   * {Types::CreateFindingAggregatorResponse#finding_aggregator_arn #finding_aggregator_arn} => String
+    #   * {Types::CreateFindingAggregatorResponse#finding_aggregation_region #finding_aggregation_region} => String
+    #   * {Types::CreateFindingAggregatorResponse#region_linking_mode #region_linking_mode} => String
+    #   * {Types::CreateFindingAggregatorResponse#regions #regions} => Array&lt;String&gt;
+    #
+    # @example Request syntax with placeholder values
+    #
+    #   resp = client.create_finding_aggregator({
+    #     region_linking_mode: "NonEmptyString", # required
+    #     regions: ["NonEmptyString"],
+    #   })
+    #
+    # @example Response structure
+    #
+    #   resp.finding_aggregator_arn #=> String
+    #   resp.finding_aggregation_region #=> String
+    #   resp.region_linking_mode #=> String
+    #   resp.regions #=> Array
+    #   resp.regions[0] #=> String
+    #
+    # @see http://docs.aws.amazon.com/goto/WebAPI/securityhub-2018-10-26/CreateFindingAggregator AWS API Documentation
+    #
+    # @overload create_finding_aggregator(params = {})
+    # @param [Hash] params ({})
+    def create_finding_aggregator(params = {}, options = {})
+      req = build_request(:create_finding_aggregator, params)
+      req.send_request(options)
+    end
+
     # Creates a custom insight in Security Hub. An insight is a
     # consolidation of findings that relate to a security issue that
     # requires attention or remediation.
@@ -4266,6 +4351,35 @@ module Aws::SecurityHub
       req.send_request(options)
     end
 
+    # Deletes a finding aggregator. When you delete the finding aggregator,
+    # you stop finding aggregation.
+    #
+    # When you stop finding aggregation, findings that were already
+    # aggregated to the aggregation Region are still visible from the
+    # aggregation Region. New findings and finding updates are not
+    # aggregated.
+    #
+    # @option params [required, String] :finding_aggregator_arn
+    #   The ARN of the finding aggregator to delete. To obtain the ARN, use
+    #   `ListFindingAggregators`.
+    #
+    # @return [Struct] Returns an empty {Seahorse::Client::Response response}.
+    #
+    # @example Request syntax with placeholder values
+    #
+    #   resp = client.delete_finding_aggregator({
+    #     finding_aggregator_arn: "NonEmptyString", # required
+    #   })
+    #
+    # @see http://docs.aws.amazon.com/goto/WebAPI/securityhub-2018-10-26/DeleteFindingAggregator AWS API Documentation
+    #
+    # @overload delete_finding_aggregator(params = {})
+    # @param [Hash] params ({})
+    def delete_finding_aggregator(params = {}, options = {})
+      req = build_request(:delete_finding_aggregator, params)
+      req.send_request(options)
+    end
+
     # Deletes the insight specified by the `InsightArn`.
     #
     # @option params [required, String] :insight_arn
@@ -4987,8 +5101,48 @@ module Aws::SecurityHub
       req.send_request(options)
     end
 
+    # Returns the current finding aggregation configuration.
+    #
+    # @option params [required, String] :finding_aggregator_arn
+    #   The ARN of the finding aggregator to return details for. To obtain the
+    #   ARN, use `ListFindingAggregators`.
+    #
+    # @return [Types::GetFindingAggregatorResponse] Returns a {Seahorse::Client::Response response} object which responds to the following methods:
+    #
+    #   * {Types::GetFindingAggregatorResponse#finding_aggregator_arn #finding_aggregator_arn} => String
+    #   * {Types::GetFindingAggregatorResponse#finding_aggregation_region #finding_aggregation_region} => String
+    #   * {Types::GetFindingAggregatorResponse#region_linking_mode #region_linking_mode} => String
+    #   * {Types::GetFindingAggregatorResponse#regions #regions} => Array&lt;String&gt;
+    #
+    # @example Request syntax with placeholder values
+    #
+    #   resp = client.get_finding_aggregator({
+    #     finding_aggregator_arn: "NonEmptyString", # required
+    #   })
+    #
+    # @example Response structure
+    #
+    #   resp.finding_aggregator_arn #=> String
+    #   resp.finding_aggregation_region #=> String
+    #   resp.region_linking_mode #=> String
+    #   resp.regions #=> Array
+    #   resp.regions[0] #=> String
+    #
+    # @see http://docs.aws.amazon.com/goto/WebAPI/securityhub-2018-10-26/GetFindingAggregator AWS API Documentation
+    #
+    # @overload get_finding_aggregator(params = {})
+    # @param [Hash] params ({})
+    def get_finding_aggregator(params = {}, options = {})
+      req = build_request(:get_finding_aggregator, params)
+      req.send_request(options)
+    end
+
     # Returns a list of findings that match the specified criteria.
     #
+    # If finding aggregation is enabled, then when you call `GetFindings`
+    # from the aggregation Region, the results include all of the matching
+    # findings from both the aggregation Region and the linked Regions.
+    #
     # @option params [Types::AwsSecurityFindingFilters] :filters
     #   The finding attributes used to define a condition to filter the
     #   returned findings.
@@ -8016,6 +8170,47 @@ module Aws::SecurityHub
       req.send_request(options)
     end
 
+    # If finding aggregation is enabled, then `ListFindingAggregators`
+    # returns the ARN of the finding aggregator. You can run this operation
+    # from any Region.
+    #
+    # @option params [String] :next_token
+    #   The token returned with the previous set of results. Identifies the
+    #   next set of results to return.
+    #
+    # @option params [Integer] :max_results
+    #   The maximum number of results to return. This operation currently only
+    #   returns a single result.
+    #
+    # @return [Types::ListFindingAggregatorsResponse] Returns a {Seahorse::Client::Response response} object which responds to the following methods:
+    #
+    #   * {Types::ListFindingAggregatorsResponse#finding_aggregators #finding_aggregators} => Array&lt;Types::FindingAggregator&gt;
+    #   * {Types::ListFindingAggregatorsResponse#next_token #next_token} => String
+    #
+    # The returned {Seahorse::Client::Response response} is a pageable response and is Enumerable. For details on usage see {Aws::PageableResponse PageableResponse}.
+    #
+    # @example Request syntax with placeholder values
+    #
+    #   resp = client.list_finding_aggregators({
+    #     next_token: "NextToken",
+    #     max_results: 1,
+    #   })
+    #
+    # @example Response structure
+    #
+    #   resp.finding_aggregators #=> Array
+    #   resp.finding_aggregators[0].finding_aggregator_arn #=> String
+    #   resp.next_token #=> String
+    #
+    # @see http://docs.aws.amazon.com/goto/WebAPI/securityhub-2018-10-26/ListFindingAggregators AWS API Documentation
+    #
+    # @overload list_finding_aggregators(params = {})
+    # @param [Hash] params ({})
+    def list_finding_aggregators(params = {}, options = {})
+      req = build_request(:list_finding_aggregators, params)
+      req.send_request(options)
+    end
+
     # Lists all Security Hub membership invitations that were sent to the
     # current Amazon Web Services account.
     #
@@ -8292,6 +8487,84 @@ module Aws::SecurityHub
       req.send_request(options)
     end
 
+    # Updates the finding aggregation configuration. Used to update the
+    # Region linking mode and the list of included or excluded Regions. You
+    # cannot use `UpdateFindingAggregator` to change the aggregation Region.
+    #
+    # You must run `UpdateFindingAggregator` from the current aggregation
+    # Region.
+    #
+    # @option params [required, String] :finding_aggregator_arn
+    #   The ARN of the finding aggregator. To obtain the ARN, use
+    #   `ListFindingAggregators`.
+    #
+    # @option params [required, String] :region_linking_mode
+    #   Indicates whether to aggregate findings from all of the available
+    #   Regions in the current partition. Also determines whether to
+    #   automatically aggregate findings from new Regions as Security Hub
+    #   supports them and you opt into them.
+    #
+    #   The selected option also determines how to use the Regions provided in
+    #   the Regions list.
+    #
+    #   The options are as follows:
+    #
+    #   * `ALL_REGIONS` - Indicates to aggregate findings from all of the
+    #     Regions where Security Hub is enabled. When you choose this option,
+    #     Security Hub also automatically aggregates findings from new Regions
+    #     as Security Hub supports them and you opt into them.
+    #
+    #   * `ALL_REGIONS_EXCEPT_SPECIFIED` - Indicates to aggregate findings
+    #     from all of the Regions where Security Hub is enabled, except for
+    #     the Regions listed in the `Regions` parameter. When you choose this
+    #     option, Security Hub also automatically aggregates findings from new
+    #     Regions as Security Hub supports them and you opt into them.
+    #
+    #   * `SPECIFIED_REGIONS` - Indicates to aggregate findings only from the
+    #     Regions listed in the `Regions` parameter. Security Hub does not
+    #     automatically aggregate findings from new Regions.
+    #
+    # @option params [Array<String>] :regions
+    #   If `RegionLinkingMode` is `ALL_REGIONS_EXCEPT_SPECIFIED`, then this is
+    #   a comma-separated list of Regions that do not aggregate findings to
+    #   the aggregation Region.
+    #
+    #   If `RegionLinkingMode` is `SPECIFIED_REGIONS`, then this is a
+    #   comma-separated list of Regions that do aggregate findings to the
+    #   aggregation Region.
+    #
+    # @return [Types::UpdateFindingAggregatorResponse] Returns a {Seahorse::Client::Response response} object which responds to the following methods:
+    #
+    #   * {Types::UpdateFindingAggregatorResponse#finding_aggregator_arn #finding_aggregator_arn} => String
+    #   * {Types::UpdateFindingAggregatorResponse#finding_aggregation_region #finding_aggregation_region} => String
+    #   * {Types::UpdateFindingAggregatorResponse#region_linking_mode #region_linking_mode} => String
+    #   * {Types::UpdateFindingAggregatorResponse#regions #regions} => Array&lt;String&gt;
+    #
+    # @example Request syntax with placeholder values
+    #
+    #   resp = client.update_finding_aggregator({
+    #     finding_aggregator_arn: "NonEmptyString", # required
+    #     region_linking_mode: "NonEmptyString", # required
+    #     regions: ["NonEmptyString"],
+    #   })
+    #
+    # @example Response structure
+    #
+    #   resp.finding_aggregator_arn #=> String
+    #   resp.finding_aggregation_region #=> String
+    #   resp.region_linking_mode #=> String
+    #   resp.regions #=> Array
+    #   resp.regions[0] #=> String
+    #
+    # @see http://docs.aws.amazon.com/goto/WebAPI/securityhub-2018-10-26/UpdateFindingAggregator AWS API Documentation
+    #
+    # @overload update_finding_aggregator(params = {})
+    # @param [Hash] params ({})
+    def update_finding_aggregator(params = {}, options = {})
+      req = build_request(:update_finding_aggregator, params)
+      req.send_request(options)
+    end
+
     # `UpdateFindings` is deprecated. Instead of `UpdateFindings`, use
     # `BatchUpdateFindings`.
     #
@@ -9700,7 +9973,7 @@ module Aws::SecurityHub
         params: params,
         config: config)
       context[:gem_name] = 'aws-sdk-securityhub'
-      context[:gem_version] = '1.53.0'
+      context[:gem_version] = '1.57.0'
       Seahorse::Client::Request.new(handlers, context)
     end
 

data/lib/aws-sdk-securityhub/client_api.rb

@@ -472,6 +472,8 @@ module Aws::SecurityHub
     Country = Shapes::StructureShape.new(name: 'Country')
     CreateActionTargetRequest = Shapes::StructureShape.new(name: 'CreateActionTargetRequest')
     CreateActionTargetResponse = Shapes::StructureShape.new(name: 'CreateActionTargetResponse')
+    CreateFindingAggregatorRequest = Shapes::StructureShape.new(name: 'CreateFindingAggregatorRequest')
+    CreateFindingAggregatorResponse = Shapes::StructureShape.new(name: 'CreateFindingAggregatorResponse')
     CreateInsightRequest = Shapes::StructureShape.new(name: 'CreateInsightRequest')
     CreateInsightResponse = Shapes::StructureShape.new(name: 'CreateInsightResponse')
     CreateMembersRequest = Shapes::StructureShape.new(name: 'CreateMembersRequest')
@@ -491,6 +493,8 @@ module Aws::SecurityHub
     DeclineInvitationsResponse = Shapes::StructureShape.new(name: 'DeclineInvitationsResponse')
     DeleteActionTargetRequest = Shapes::StructureShape.new(name: 'DeleteActionTargetRequest')
     DeleteActionTargetResponse = Shapes::StructureShape.new(name: 'DeleteActionTargetResponse')
+    DeleteFindingAggregatorRequest = Shapes::StructureShape.new(name: 'DeleteFindingAggregatorRequest')
+    DeleteFindingAggregatorResponse = Shapes::StructureShape.new(name: 'DeleteFindingAggregatorResponse')
     DeleteInsightRequest = Shapes::StructureShape.new(name: 'DeleteInsightRequest')
     DeleteInsightResponse = Shapes::StructureShape.new(name: 'DeleteInsightResponse')
     DeleteInvitationsRequest = Shapes::StructureShape.new(name: 'DeleteInvitationsRequest')
@@ -530,6 +534,8 @@ module Aws::SecurityHub
     EnableSecurityHubRequest = Shapes::StructureShape.new(name: 'EnableSecurityHubRequest')
     EnableSecurityHubResponse = Shapes::StructureShape.new(name: 'EnableSecurityHubResponse')
     FieldMap = Shapes::MapShape.new(name: 'FieldMap')
+    FindingAggregator = Shapes::StructureShape.new(name: 'FindingAggregator')
+    FindingAggregatorList = Shapes::ListShape.new(name: 'FindingAggregatorList')
     FindingProviderFields = Shapes::StructureShape.new(name: 'FindingProviderFields')
     FindingProviderSeverity = Shapes::StructureShape.new(name: 'FindingProviderSeverity')
     GeoLocation = Shapes::StructureShape.new(name: 'GeoLocation')
@@ -537,6 +543,8 @@ module Aws::SecurityHub
     GetAdministratorAccountResponse = Shapes::StructureShape.new(name: 'GetAdministratorAccountResponse')
     GetEnabledStandardsRequest = Shapes::StructureShape.new(name: 'GetEnabledStandardsRequest')
     GetEnabledStandardsResponse = Shapes::StructureShape.new(name: 'GetEnabledStandardsResponse')
+    GetFindingAggregatorRequest = Shapes::StructureShape.new(name: 'GetFindingAggregatorRequest')
+    GetFindingAggregatorResponse = Shapes::StructureShape.new(name: 'GetFindingAggregatorResponse')
     GetFindingsRequest = Shapes::StructureShape.new(name: 'GetFindingsRequest')
     GetFindingsResponse = Shapes::StructureShape.new(name: 'GetFindingsResponse')
     GetInsightResultsRequest = Shapes::StructureShape.new(name: 'GetInsightResultsRequest')
@@ -578,6 +586,8 @@ module Aws::SecurityHub
     LimitExceededException = Shapes::StructureShape.new(name: 'LimitExceededException')
     ListEnabledProductsForImportRequest = Shapes::StructureShape.new(name: 'ListEnabledProductsForImportRequest')
     ListEnabledProductsForImportResponse = Shapes::StructureShape.new(name: 'ListEnabledProductsForImportResponse')
+    ListFindingAggregatorsRequest = Shapes::StructureShape.new(name: 'ListFindingAggregatorsRequest')
+    ListFindingAggregatorsResponse = Shapes::StructureShape.new(name: 'ListFindingAggregatorsResponse')
     ListInvitationsRequest = Shapes::StructureShape.new(name: 'ListInvitationsRequest')
     ListInvitationsResponse = Shapes::StructureShape.new(name: 'ListInvitationsResponse')
     ListMembersRequest = Shapes::StructureShape.new(name: 'ListMembersRequest')
@@ -694,6 +704,8 @@ module Aws::SecurityHub
     UntagResourceResponse = Shapes::StructureShape.new(name: 'UntagResourceResponse')
     UpdateActionTargetRequest = Shapes::StructureShape.new(name: 'UpdateActionTargetRequest')
     UpdateActionTargetResponse = Shapes::StructureShape.new(name: 'UpdateActionTargetResponse')
+    UpdateFindingAggregatorRequest = Shapes::StructureShape.new(name: 'UpdateFindingAggregatorRequest')
+    UpdateFindingAggregatorResponse = Shapes::StructureShape.new(name: 'UpdateFindingAggregatorResponse')
     UpdateFindingsRequest = Shapes::StructureShape.new(name: 'UpdateFindingsRequest')
     UpdateFindingsResponse = Shapes::StructureShape.new(name: 'UpdateFindingsResponse')
     UpdateInsightRequest = Shapes::StructureShape.new(name: 'UpdateInsightRequest')
@@ -3285,6 +3297,16 @@ module Aws::SecurityHub
     CreateActionTargetResponse.add_member(:action_target_arn, Shapes::ShapeRef.new(shape: NonEmptyString, required: true, location_name: "ActionTargetArn"))
     CreateActionTargetResponse.struct_class = Types::CreateActionTargetResponse
 
+    CreateFindingAggregatorRequest.add_member(:region_linking_mode, Shapes::ShapeRef.new(shape: NonEmptyString, required: true, location_name: "RegionLinkingMode"))
+    CreateFindingAggregatorRequest.add_member(:regions, Shapes::ShapeRef.new(shape: StringList, location_name: "Regions"))
+    CreateFindingAggregatorRequest.struct_class = Types::CreateFindingAggregatorRequest
+
+    CreateFindingAggregatorResponse.add_member(:finding_aggregator_arn, Shapes::ShapeRef.new(shape: NonEmptyString, location_name: "FindingAggregatorArn"))
+    CreateFindingAggregatorResponse.add_member(:finding_aggregation_region, Shapes::ShapeRef.new(shape: NonEmptyString, location_name: "FindingAggregationRegion"))
+    CreateFindingAggregatorResponse.add_member(:region_linking_mode, Shapes::ShapeRef.new(shape: NonEmptyString, location_name: "RegionLinkingMode"))
+    CreateFindingAggregatorResponse.add_member(:regions, Shapes::ShapeRef.new(shape: StringList, location_name: "Regions"))
+    CreateFindingAggregatorResponse.struct_class = Types::CreateFindingAggregatorResponse
+
     CreateInsightRequest.add_member(:name, Shapes::ShapeRef.new(shape: NonEmptyString, required: true, location_name: "Name"))
     CreateInsightRequest.add_member(:filters, Shapes::ShapeRef.new(shape: AwsSecurityFindingFilters, required: true, location_name: "Filters"))
     CreateInsightRequest.add_member(:group_by_attribute, Shapes::ShapeRef.new(shape: NonEmptyString, required: true, location_name: "GroupByAttribute"))
@@ -3347,6 +3369,11 @@ module Aws::SecurityHub
     DeleteActionTargetResponse.add_member(:action_target_arn, Shapes::ShapeRef.new(shape: NonEmptyString, required: true, location_name: "ActionTargetArn"))
     DeleteActionTargetResponse.struct_class = Types::DeleteActionTargetResponse
 
+    DeleteFindingAggregatorRequest.add_member(:finding_aggregator_arn, Shapes::ShapeRef.new(shape: NonEmptyString, required: true, location: "uri", location_name: "FindingAggregatorArn"))
+    DeleteFindingAggregatorRequest.struct_class = Types::DeleteFindingAggregatorRequest
+
+    DeleteFindingAggregatorResponse.struct_class = Types::DeleteFindingAggregatorResponse
+
     DeleteInsightRequest.add_member(:insight_arn, Shapes::ShapeRef.new(shape: NonEmptyString, required: true, location: "uri", location_name: "InsightArn"))
     DeleteInsightRequest.struct_class = Types::DeleteInsightRequest
 
@@ -3466,6 +3493,11 @@ module Aws::SecurityHub
     FieldMap.key = Shapes::ShapeRef.new(shape: NonEmptyString)
     FieldMap.value = Shapes::ShapeRef.new(shape: NonEmptyString)
 
+    FindingAggregator.add_member(:finding_aggregator_arn, Shapes::ShapeRef.new(shape: NonEmptyString, location_name: "FindingAggregatorArn"))
+    FindingAggregator.struct_class = Types::FindingAggregator
+
+    FindingAggregatorList.member = Shapes::ShapeRef.new(shape: FindingAggregator)
+
     FindingProviderFields.add_member(:confidence, Shapes::ShapeRef.new(shape: RatioScale, location_name: "Confidence"))
     FindingProviderFields.add_member(:criticality, Shapes::ShapeRef.new(shape: RatioScale, location_name: "Criticality"))
     FindingProviderFields.add_member(:related_findings, Shapes::ShapeRef.new(shape: RelatedFindingList, location_name: "RelatedFindings"))
@@ -3495,6 +3527,15 @@ module Aws::SecurityHub
     GetEnabledStandardsResponse.add_member(:next_token, Shapes::ShapeRef.new(shape: NextToken, location_name: "NextToken"))
     GetEnabledStandardsResponse.struct_class = Types::GetEnabledStandardsResponse
 
+    GetFindingAggregatorRequest.add_member(:finding_aggregator_arn, Shapes::ShapeRef.new(shape: NonEmptyString, required: true, location: "uri", location_name: "FindingAggregatorArn"))
+    GetFindingAggregatorRequest.struct_class = Types::GetFindingAggregatorRequest
+
+    GetFindingAggregatorResponse.add_member(:finding_aggregator_arn, Shapes::ShapeRef.new(shape: NonEmptyString, location_name: "FindingAggregatorArn"))
+    GetFindingAggregatorResponse.add_member(:finding_aggregation_region, Shapes::ShapeRef.new(shape: NonEmptyString, location_name: "FindingAggregationRegion"))
+    GetFindingAggregatorResponse.add_member(:region_linking_mode, Shapes::ShapeRef.new(shape: NonEmptyString, location_name: "RegionLinkingMode"))
+    GetFindingAggregatorResponse.add_member(:regions, Shapes::ShapeRef.new(shape: StringList, location_name: "Regions"))
+    GetFindingAggregatorResponse.struct_class = Types::GetFindingAggregatorResponse
+
     GetFindingsRequest.add_member(:filters, Shapes::ShapeRef.new(shape: AwsSecurityFindingFilters, location_name: "Filters"))
     GetFindingsRequest.add_member(:sort_criteria, Shapes::ShapeRef.new(shape: SortCriteria, location_name: "SortCriteria"))
     GetFindingsRequest.add_member(:next_token, Shapes::ShapeRef.new(shape: NextToken, location_name: "NextToken"))
@@ -3632,6 +3673,14 @@ module Aws::SecurityHub
     ListEnabledProductsForImportResponse.add_member(:next_token, Shapes::ShapeRef.new(shape: NextToken, location_name: "NextToken"))
     ListEnabledProductsForImportResponse.struct_class = Types::ListEnabledProductsForImportResponse
 
+    ListFindingAggregatorsRequest.add_member(:next_token, Shapes::ShapeRef.new(shape: NextToken, location: "querystring", location_name: "NextToken"))
+    ListFindingAggregatorsRequest.add_member(:max_results, Shapes::ShapeRef.new(shape: MaxResults, location: "querystring", location_name: "MaxResults"))
+    ListFindingAggregatorsRequest.struct_class = Types::ListFindingAggregatorsRequest
+
+    ListFindingAggregatorsResponse.add_member(:finding_aggregators, Shapes::ShapeRef.new(shape: FindingAggregatorList, location_name: "FindingAggregators"))
+    ListFindingAggregatorsResponse.add_member(:next_token, Shapes::ShapeRef.new(shape: NextToken, location_name: "NextToken"))
+    ListFindingAggregatorsResponse.struct_class = Types::ListFindingAggregatorsResponse
+
     ListInvitationsRequest.add_member(:max_results, Shapes::ShapeRef.new(shape: CrossAccountMaxResults, location: "querystring", location_name: "MaxResults"))
     ListInvitationsRequest.add_member(:next_token, Shapes::ShapeRef.new(shape: NextToken, location: "querystring", location_name: "NextToken"))
     ListInvitationsRequest.struct_class = Types::ListInvitationsRequest
@@ -4071,6 +4120,17 @@ module Aws::SecurityHub
 
     UpdateActionTargetResponse.struct_class = Types::UpdateActionTargetResponse
 
+    UpdateFindingAggregatorRequest.add_member(:finding_aggregator_arn, Shapes::ShapeRef.new(shape: NonEmptyString, required: true, location_name: "FindingAggregatorArn"))
+    UpdateFindingAggregatorRequest.add_member(:region_linking_mode, Shapes::ShapeRef.new(shape: NonEmptyString, required: true, location_name: "RegionLinkingMode"))
+    UpdateFindingAggregatorRequest.add_member(:regions, Shapes::ShapeRef.new(shape: StringList, location_name: "Regions"))
+    UpdateFindingAggregatorRequest.struct_class = Types::UpdateFindingAggregatorRequest
+
+    UpdateFindingAggregatorResponse.add_member(:finding_aggregator_arn, Shapes::ShapeRef.new(shape: NonEmptyString, location_name: "FindingAggregatorArn"))
+    UpdateFindingAggregatorResponse.add_member(:finding_aggregation_region, Shapes::ShapeRef.new(shape: NonEmptyString, location_name: "FindingAggregationRegion"))
+    UpdateFindingAggregatorResponse.add_member(:region_linking_mode, Shapes::ShapeRef.new(shape: NonEmptyString, location_name: "RegionLinkingMode"))
+    UpdateFindingAggregatorResponse.add_member(:regions, Shapes::ShapeRef.new(shape: StringList, location_name: "Regions"))
+    UpdateFindingAggregatorResponse.struct_class = Types::UpdateFindingAggregatorResponse
+
     UpdateFindingsRequest.add_member(:filters, Shapes::ShapeRef.new(shape: AwsSecurityFindingFilters, required: true, location_name: "Filters"))
     UpdateFindingsRequest.add_member(:note, Shapes::ShapeRef.new(shape: NoteUpdate, location_name: "Note"))
     UpdateFindingsRequest.add_member(:record_state, Shapes::ShapeRef.new(shape: RecordState, location_name: "RecordState"))
@@ -4243,6 +4303,19 @@ module Aws::SecurityHub
         o.errors << Shapes::ShapeRef.new(shape: ResourceConflictException)
       end)
 
+      api.add_operation(:create_finding_aggregator, Seahorse::Model::Operation.new.tap do |o|
+        o.name = "CreateFindingAggregator"
+        o.http_method = "POST"
+        o.http_request_uri = "/findingAggregator/create"
+        o.input = Shapes::ShapeRef.new(shape: CreateFindingAggregatorRequest)
+        o.output = Shapes::ShapeRef.new(shape: CreateFindingAggregatorResponse)
+        o.errors << Shapes::ShapeRef.new(shape: InternalException)
+        o.errors << Shapes::ShapeRef.new(shape: LimitExceededException)
+        o.errors << Shapes::ShapeRef.new(shape: InvalidAccessException)
+        o.errors << Shapes::ShapeRef.new(shape: AccessDeniedException)
+        o.errors << Shapes::ShapeRef.new(shape: InvalidInputException)
+      end)
+
       api.add_operation(:create_insight, Seahorse::Model::Operation.new.tap do |o|
         o.name = "CreateInsight"
         o.http_method = "POST"
@@ -4293,6 +4366,20 @@ module Aws::SecurityHub
         o.errors << Shapes::ShapeRef.new(shape: ResourceNotFoundException)
       end)
 
+      api.add_operation(:delete_finding_aggregator, Seahorse::Model::Operation.new.tap do |o|
+        o.name = "DeleteFindingAggregator"
+        o.http_method = "DELETE"
+        o.http_request_uri = "/findingAggregator/delete/{FindingAggregatorArn+}"
+        o.input = Shapes::ShapeRef.new(shape: DeleteFindingAggregatorRequest)
+        o.output = Shapes::ShapeRef.new(shape: DeleteFindingAggregatorResponse)
+        o.errors << Shapes::ShapeRef.new(shape: InternalException)
+        o.errors << Shapes::ShapeRef.new(shape: LimitExceededException)
+        o.errors << Shapes::ShapeRef.new(shape: InvalidAccessException)
+        o.errors << Shapes::ShapeRef.new(shape: AccessDeniedException)
+        o.errors << Shapes::ShapeRef.new(shape: InvalidInputException)
+        o.errors << Shapes::ShapeRef.new(shape: ResourceNotFoundException)
+      end)
+
       api.add_operation(:delete_insight, Seahorse::Model::Operation.new.tap do |o|
         o.name = "DeleteInsight"
         o.http_method = "DELETE"
@@ -4574,6 +4661,20 @@ module Aws::SecurityHub
         )
       end)
 
+      api.add_operation(:get_finding_aggregator, Seahorse::Model::Operation.new.tap do |o|
+        o.name = "GetFindingAggregator"
+        o.http_method = "GET"
+        o.http_request_uri = "/findingAggregator/get/{FindingAggregatorArn+}"
+        o.input = Shapes::ShapeRef.new(shape: GetFindingAggregatorRequest)
+        o.output = Shapes::ShapeRef.new(shape: GetFindingAggregatorResponse)
+        o.errors << Shapes::ShapeRef.new(shape: InternalException)
+        o.errors << Shapes::ShapeRef.new(shape: LimitExceededException)
+        o.errors << Shapes::ShapeRef.new(shape: InvalidAccessException)
+        o.errors << Shapes::ShapeRef.new(shape: AccessDeniedException)
+        o.errors << Shapes::ShapeRef.new(shape: InvalidInputException)
+        o.errors << Shapes::ShapeRef.new(shape: ResourceNotFoundException)
+      end)
+
       api.add_operation(:get_findings, Seahorse::Model::Operation.new.tap do |o|
         o.name = "GetFindings"
         o.http_method = "POST"
@@ -4693,6 +4794,25 @@ module Aws::SecurityHub
         )
       end)
 
+      api.add_operation(:list_finding_aggregators, Seahorse::Model::Operation.new.tap do |o|
+        o.name = "ListFindingAggregators"
+        o.http_method = "GET"
+        o.http_request_uri = "/findingAggregator/list"
+        o.input = Shapes::ShapeRef.new(shape: ListFindingAggregatorsRequest)
+        o.output = Shapes::ShapeRef.new(shape: ListFindingAggregatorsResponse)
+        o.errors << Shapes::ShapeRef.new(shape: InternalException)
+        o.errors << Shapes::ShapeRef.new(shape: LimitExceededException)
+        o.errors << Shapes::ShapeRef.new(shape: InvalidAccessException)
+        o.errors << Shapes::ShapeRef.new(shape: AccessDeniedException)
+        o.errors << Shapes::ShapeRef.new(shape: InvalidInputException)
+        o[:pager] = Aws::Pager.new(
+          limit_key: "max_results",
+          tokens: {
+            "next_token" => "next_token"
+          }
+        )
+      end)
+
       api.add_operation(:list_invitations, Seahorse::Model::Operation.new.tap do |o|
         o.name = "ListInvitations"
         o.http_method = "GET"
@@ -4793,6 +4913,20 @@ module Aws::SecurityHub
         o.errors << Shapes::ShapeRef.new(shape: ResourceNotFoundException)
       end)
 
+      api.add_operation(:update_finding_aggregator, Seahorse::Model::Operation.new.tap do |o|
+        o.name = "UpdateFindingAggregator"
+        o.http_method = "PATCH"
+        o.http_request_uri = "/findingAggregator/update"
+        o.input = Shapes::ShapeRef.new(shape: UpdateFindingAggregatorRequest)
+        o.output = Shapes::ShapeRef.new(shape: UpdateFindingAggregatorResponse)
+        o.errors << Shapes::ShapeRef.new(shape: InternalException)
+        o.errors << Shapes::ShapeRef.new(shape: LimitExceededException)
+        o.errors << Shapes::ShapeRef.new(shape: InvalidAccessException)
+        o.errors << Shapes::ShapeRef.new(shape: AccessDeniedException)
+        o.errors << Shapes::ShapeRef.new(shape: InvalidInputException)
+        o.errors << Shapes::ShapeRef.new(shape: ResourceNotFoundException)
+      end)
+
       api.add_operation(:update_findings, Seahorse::Model::Operation.new.tap do |o|
         o.name = "UpdateFindings"
         o.http_method = "PATCH"

data/lib/aws-sdk-securityhub/types.rb

@@ -25203,6 +25203,90 @@ module Aws::SecurityHub
       include Aws::Structure
     end
 
+    # @note When making an API call, you may pass CreateFindingAggregatorRequest
+    #   data as a hash:
+    #
+    #       {
+    #         region_linking_mode: "NonEmptyString", # required
+    #         regions: ["NonEmptyString"],
+    #       }
+    #
+    # @!attribute [rw] region_linking_mode
+    #   Indicates whether to aggregate findings from all of the available
+    #   Regions in the current partition. Also determines whether to
+    #   automatically aggregate findings from new Regions as Security Hub
+    #   supports them and you opt into them.
+    #
+    #   The selected option also determines how to use the Regions provided
+    #   in the Regions list.
+    #
+    #   The options are as follows:
+    #
+    #   * `ALL_REGIONS` - Indicates to aggregate findings from all of the
+    #     Regions where Security Hub is enabled. When you choose this
+    #     option, Security Hub also automatically aggregates findings from
+    #     new Regions as Security Hub supports them and you opt into them.
+    #
+    #   * `ALL_REGIONS_EXCEPT_SPECIFIED` - Indicates to aggregate findings
+    #     from all of the Regions where Security Hub is enabled, except for
+    #     the Regions listed in the `Regions` parameter. When you choose
+    #     this option, Security Hub also automatically aggregates findings
+    #     from new Regions as Security Hub supports them and you opt into
+    #     them.
+    #
+    #   * `SPECIFIED_REGIONS` - Indicates to aggregate findings only from
+    #     the Regions listed in the `Regions` parameter. Security Hub does
+    #     not automatically aggregate findings from new Regions.
+    #   @return [String]
+    #
+    # @!attribute [rw] regions
+    #   If `RegionLinkingMode` is `ALL_REGIONS_EXCEPT_SPECIFIED`, then this
+    #   is a comma-separated list of Regions that do not aggregate findings
+    #   to the aggregation Region.
+    #
+    #   If `RegionLinkingMode` is `SPECIFIED_REGIONS`, then this is a
+    #   comma-separated list of Regions that do aggregate findings to the
+    #   aggregation Region.
+    #   @return [Array<String>]
+    #
+    # @see http://docs.aws.amazon.com/goto/WebAPI/securityhub-2018-10-26/CreateFindingAggregatorRequest AWS API Documentation
+    #
+    class CreateFindingAggregatorRequest < Struct.new(
+      :region_linking_mode,
+      :regions)
+      SENSITIVE = []
+      include Aws::Structure
+    end
+
+    # @!attribute [rw] finding_aggregator_arn
+    #   The ARN of the finding aggregator. You use the finding aggregator
+    #   ARN to retrieve details for, update, and stop finding aggregation.
+    #   @return [String]
+    #
+    # @!attribute [rw] finding_aggregation_region
+    #   The aggregation Region.
+    #   @return [String]
+    #
+    # @!attribute [rw] region_linking_mode
+    #   Indicates whether to link all Regions, all Regions except for a list
+    #   of excluded Regions, or a list of included Regions.
+    #   @return [String]
+    #
+    # @!attribute [rw] regions
+    #   The list of excluded Regions or included Regions.
+    #   @return [Array<String>]
+    #
+    # @see http://docs.aws.amazon.com/goto/WebAPI/securityhub-2018-10-26/CreateFindingAggregatorResponse AWS API Documentation
+    #
+    class CreateFindingAggregatorResponse < Struct.new(
+      :finding_aggregator_arn,
+      :finding_aggregation_region,
+      :region_linking_mode,
+      :regions)
+      SENSITIVE = []
+      include Aws::Structure
+    end
+
     # @note When making an API call, you may pass CreateInsightRequest
     #   data as a hash:
     #
@@ -26398,6 +26482,30 @@ module Aws::SecurityHub
       include Aws::Structure
     end
 
+    # @note When making an API call, you may pass DeleteFindingAggregatorRequest
+    #   data as a hash:
+    #
+    #       {
+    #         finding_aggregator_arn: "NonEmptyString", # required
+    #       }
+    #
+    # @!attribute [rw] finding_aggregator_arn
+    #   The ARN of the finding aggregator to delete. To obtain the ARN, use
+    #   `ListFindingAggregators`.
+    #   @return [String]
+    #
+    # @see http://docs.aws.amazon.com/goto/WebAPI/securityhub-2018-10-26/DeleteFindingAggregatorRequest AWS API Documentation
+    #
+    class DeleteFindingAggregatorRequest < Struct.new(
+      :finding_aggregator_arn)
+      SENSITIVE = []
+      include Aws::Structure
+    end
+
+    # @see http://docs.aws.amazon.com/goto/WebAPI/securityhub-2018-10-26/DeleteFindingAggregatorResponse AWS API Documentation
+    #
+    class DeleteFindingAggregatorResponse < Aws::EmptyStructure; end
+
     # @note When making an API call, you may pass DeleteInsightRequest
     #   data as a hash:
     #
@@ -27010,6 +27118,23 @@ module Aws::SecurityHub
     #
     class EnableSecurityHubResponse < Aws::EmptyStructure; end
 
+    # A finding aggregator. A finding aggregator contains the configuration
+    # for finding aggregation.
+    #
+    # @!attribute [rw] finding_aggregator_arn
+    #   The ARN of the finding aggregator. You use the finding aggregator
+    #   ARN to retrieve details for, update, and delete the finding
+    #   aggregator.
+    #   @return [String]
+    #
+    # @see http://docs.aws.amazon.com/goto/WebAPI/securityhub-2018-10-26/FindingAggregator AWS API Documentation
+    #
+    class FindingAggregator < Struct.new(
+      :finding_aggregator_arn)
+      SENSITIVE = []
+      include Aws::Structure
+    end
+
     # In a `BatchImportFindings` request, finding providers use
     # `FindingProviderFields` to provide and update values for confidence,
     # criticality, related findings, severity, and types.
@@ -27208,6 +27333,54 @@ module Aws::SecurityHub
       include Aws::Structure
     end
 
+    # @note When making an API call, you may pass GetFindingAggregatorRequest
+    #   data as a hash:
+    #
+    #       {
+    #         finding_aggregator_arn: "NonEmptyString", # required
+    #       }
+    #
+    # @!attribute [rw] finding_aggregator_arn
+    #   The ARN of the finding aggregator to return details for. To obtain
+    #   the ARN, use `ListFindingAggregators`.
+    #   @return [String]
+    #
+    # @see http://docs.aws.amazon.com/goto/WebAPI/securityhub-2018-10-26/GetFindingAggregatorRequest AWS API Documentation
+    #
+    class GetFindingAggregatorRequest < Struct.new(
+      :finding_aggregator_arn)
+      SENSITIVE = []
+      include Aws::Structure
+    end
+
+    # @!attribute [rw] finding_aggregator_arn
+    #   The ARN of the finding aggregator.
+    #   @return [String]
+    #
+    # @!attribute [rw] finding_aggregation_region
+    #   The aggregation Region.
+    #   @return [String]
+    #
+    # @!attribute [rw] region_linking_mode
+    #   Indicates whether to link all Regions, all Regions except for a list
+    #   of excluded Regions, or a list of included Regions.
+    #   @return [String]
+    #
+    # @!attribute [rw] regions
+    #   The list of excluded Regions or included Regions.
+    #   @return [Array<String>]
+    #
+    # @see http://docs.aws.amazon.com/goto/WebAPI/securityhub-2018-10-26/GetFindingAggregatorResponse AWS API Documentation
+    #
+    class GetFindingAggregatorResponse < Struct.new(
+      :finding_aggregator_arn,
+      :finding_aggregation_region,
+      :region_linking_mode,
+      :regions)
+      SENSITIVE = []
+      include Aws::Structure
+    end
+
     # @note When making an API call, you may pass GetFindingsRequest
     #   data as a hash:
     #
@@ -28500,6 +28673,54 @@ module Aws::SecurityHub
       include Aws::Structure
     end
 
+    # @note When making an API call, you may pass ListFindingAggregatorsRequest
+    #   data as a hash:
+    #
+    #       {
+    #         next_token: "NextToken",
+    #         max_results: 1,
+    #       }
+    #
+    # @!attribute [rw] next_token
+    #   The token returned with the previous set of results. Identifies the
+    #   next set of results to return.
+    #   @return [String]
+    #
+    # @!attribute [rw] max_results
+    #   The maximum number of results to return. This operation currently
+    #   only returns a single result.
+    #   @return [Integer]
+    #
+    # @see http://docs.aws.amazon.com/goto/WebAPI/securityhub-2018-10-26/ListFindingAggregatorsRequest AWS API Documentation
+    #
+    class ListFindingAggregatorsRequest < Struct.new(
+      :next_token,
+      :max_results)
+      SENSITIVE = []
+      include Aws::Structure
+    end
+
+    # @!attribute [rw] finding_aggregators
+    #   The list of finding aggregators. This operation currently only
+    #   returns a single result.
+    #   @return [Array<Types::FindingAggregator>]
+    #
+    # @!attribute [rw] next_token
+    #   If there are more results, this is the token to provide in the next
+    #   call to `ListFindingAggregators`.
+    #
+    #   This operation currently only returns a single result.
+    #   @return [String]
+    #
+    # @see http://docs.aws.amazon.com/goto/WebAPI/securityhub-2018-10-26/ListFindingAggregatorsResponse AWS API Documentation
+    #
+    class ListFindingAggregatorsResponse < Struct.new(
+      :finding_aggregators,
+      :next_token)
+      SENSITIVE = []
+      include Aws::Structure
+    end
+
     # @note When making an API call, you may pass ListInvitationsRequest
     #   data as a hash:
     #
@@ -35903,6 +36124,96 @@ module Aws::SecurityHub
     #
     class UpdateActionTargetResponse < Aws::EmptyStructure; end
 
+    # @note When making an API call, you may pass UpdateFindingAggregatorRequest
+    #   data as a hash:
+    #
+    #       {
+    #         finding_aggregator_arn: "NonEmptyString", # required
+    #         region_linking_mode: "NonEmptyString", # required
+    #         regions: ["NonEmptyString"],
+    #       }
+    #
+    # @!attribute [rw] finding_aggregator_arn
+    #   The ARN of the finding aggregator. To obtain the ARN, use
+    #   `ListFindingAggregators`.
+    #   @return [String]
+    #
+    # @!attribute [rw] region_linking_mode
+    #   Indicates whether to aggregate findings from all of the available
+    #   Regions in the current partition. Also determines whether to
+    #   automatically aggregate findings from new Regions as Security Hub
+    #   supports them and you opt into them.
+    #
+    #   The selected option also determines how to use the Regions provided
+    #   in the Regions list.
+    #
+    #   The options are as follows:
+    #
+    #   * `ALL_REGIONS` - Indicates to aggregate findings from all of the
+    #     Regions where Security Hub is enabled. When you choose this
+    #     option, Security Hub also automatically aggregates findings from
+    #     new Regions as Security Hub supports them and you opt into them.
+    #
+    #   * `ALL_REGIONS_EXCEPT_SPECIFIED` - Indicates to aggregate findings
+    #     from all of the Regions where Security Hub is enabled, except for
+    #     the Regions listed in the `Regions` parameter. When you choose
+    #     this option, Security Hub also automatically aggregates findings
+    #     from new Regions as Security Hub supports them and you opt into
+    #     them.
+    #
+    #   * `SPECIFIED_REGIONS` - Indicates to aggregate findings only from
+    #     the Regions listed in the `Regions` parameter. Security Hub does
+    #     not automatically aggregate findings from new Regions.
+    #   @return [String]
+    #
+    # @!attribute [rw] regions
+    #   If `RegionLinkingMode` is `ALL_REGIONS_EXCEPT_SPECIFIED`, then this
+    #   is a comma-separated list of Regions that do not aggregate findings
+    #   to the aggregation Region.
+    #
+    #   If `RegionLinkingMode` is `SPECIFIED_REGIONS`, then this is a
+    #   comma-separated list of Regions that do aggregate findings to the
+    #   aggregation Region.
+    #   @return [Array<String>]
+    #
+    # @see http://docs.aws.amazon.com/goto/WebAPI/securityhub-2018-10-26/UpdateFindingAggregatorRequest AWS API Documentation
+    #
+    class UpdateFindingAggregatorRequest < Struct.new(
+      :finding_aggregator_arn,
+      :region_linking_mode,
+      :regions)
+      SENSITIVE = []
+      include Aws::Structure
+    end
+
+    # @!attribute [rw] finding_aggregator_arn
+    #   The ARN of the finding aggregator.
+    #   @return [String]
+    #
+    # @!attribute [rw] finding_aggregation_region
+    #   The aggregation Region.
+    #   @return [String]
+    #
+    # @!attribute [rw] region_linking_mode
+    #   Indicates whether to link all Regions, all Regions except for a list
+    #   of excluded Regions, or a list of included Regions.
+    #   @return [String]
+    #
+    # @!attribute [rw] regions
+    #   The list of excluded Regions or included Regions.
+    #   @return [Array<String>]
+    #
+    # @see http://docs.aws.amazon.com/goto/WebAPI/securityhub-2018-10-26/UpdateFindingAggregatorResponse AWS API Documentation
+    #
+    class UpdateFindingAggregatorResponse < Struct.new(
+      :finding_aggregator_arn,
+      :finding_aggregation_region,
+      :region_linking_mode,
+      :regions)
+      SENSITIVE = []
+      include Aws::Structure
+    end
+
     # @note When making an API call, you may pass UpdateFindingsRequest
     #   data as a hash:
     #

data/lib/aws-sdk-securityhub.rb

@@ -48,6 +48,6 @@ require_relative 'aws-sdk-securityhub/customizations'
 # @!group service
 module Aws::SecurityHub
 
-  GEM_VERSION = '1.53.0'
+  GEM_VERSION = '1.57.0'
 
 end

metadata

@@ -1,14 +1,14 @@
 --- !ruby/object:Gem::Specification
 name: aws-sdk-securityhub
 version: !ruby/object:Gem::Version
-  version: 1.53.0
+  version: 1.57.0
 platform: ruby
 authors:
 - Amazon Web Services
 autorequire: 
 bindir: bin
 cert_chain: []
-date: 2021-10-08 00:00:00.000000000 Z
+date: 2021-11-30 00:00:00.000000000 Z
 dependencies:
 - !ruby/object:Gem::Dependency
   name: aws-sdk-core
@@ -19,7 +19,7 @@ dependencies:
         version: '3'
     - - ">="
       - !ruby/object:Gem::Version
-        version: 3.120.0
+        version: 3.122.0
   type: :runtime
   prerelease: false
   version_requirements: !ruby/object:Gem::Requirement
@@ -29,7 +29,7 @@ dependencies:
         version: '3'
     - - ">="
       - !ruby/object:Gem::Version
-        version: 3.120.0
+        version: 3.122.0
 - !ruby/object:Gem::Dependency
   name: aws-sigv4
   requirement: !ruby/object:Gem::Requirement