aws-sdk-securityhub 1.62.0 → 1.65.0

Sign up to get free protection for your applications and to get access to all the features.
checksums.yaml CHANGED
@@ -1,7 +1,7 @@
1
1
  ---
2
2
  SHA256:
3
- metadata.gz: 01ef269a63f4f5e4964422d21c34394e1bb2c3d9e167dfd2f385e40956e96650
4
- data.tar.gz: 675595e3e23f91cf4571ffc1f85aa7bb68c4b591ee07bf8849cdeb978caf1afb
3
+ metadata.gz: 203b2b379b766826b7066fd3a3d5959e33f407166d8e0cb1c03260589f9c672a
4
+ data.tar.gz: 171a8b4162ac167ffb319fb616b4d912b1235d576a2add091eaa4694d6a4afd7
5
5
  SHA512:
6
- metadata.gz: cce191dc409d440115d647aca9a8191a3739d41b22c8cab24a6946e04393e0051d2db6b4d575b3d31a9d8b62c8b86f29bbd9b6ad3c9627498369c357851d2e58
7
- data.tar.gz: 61607087f34ed30bd3de929f74360fba6011f715f84104cb4758ea98baff2914fca8472da9f041e5abd9c43f302beb26be9b2f26aa1ffe37fa39f628e724d2db
6
+ metadata.gz: 0a0084addf55abc3bf400ebe0033a43d0d088da5ec9130b7d7b6b4b25341764c2d1e02eedd09b1ae15e476573bc24eec7bce4f75833be207a77959bc3dbfbaf1
7
+ data.tar.gz: 6d3bc550793923e0ac8e468f6be3779e2a2dfb30f0b721549a1139d2f29e1f43412dbf8693cc5efd4583875cf482de98eb4989d5b0f370a0b9c2eaa482b3d336
data/CHANGELOG.md CHANGED
@@ -1,6 +1,21 @@
1
1
  Unreleased Changes
2
2
  ------------------
3
3
 
4
+ 1.65.0 (2022-05-06)
5
+ ------------------
6
+
7
+ * Feature - Documentation updates for Security Hub API reference
8
+
9
+ 1.64.0 (2022-04-25)
10
+ ------------------
11
+
12
+ * Feature - Security Hub now lets you opt-out of auto-enabling the defaults standards (CIS and FSBP) in accounts that are auto-enabled with Security Hub via Security Hub's integration with AWS Organizations.
13
+
14
+ 1.63.0 (2022-04-05)
15
+ ------------------
16
+
17
+ * Feature - Added additional ASFF details for RdsSecurityGroup AutoScalingGroup, ElbLoadBalancer, CodeBuildProject and RedshiftCluster.
18
+
4
19
  1.62.0 (2022-02-24)
5
20
  ------------------
6
21
 
data/VERSION CHANGED
@@ -1 +1 @@
1
- 1.62.0
1
+ 1.65.0
@@ -531,12 +531,17 @@ module Aws::SecurityHub
531
531
  #
532
532
  # `BatchImportFindings` must be called by one of the following:
533
533
  #
534
- # * The account that is associated with the findings. The identifier of
535
- # the associated account is the value of the `AwsAccountId` attribute
536
- # for the finding.
537
- #
538
- # * An account that is allow-listed for an official Security Hub partner
539
- # integration.
534
+ # * The Amazon Web Services account that is associated with a finding if
535
+ # you are using the [default product ARN][1] or are a partner sending
536
+ # findings from within a customer's Amazon Web Services account. In
537
+ # these cases, the identifier of the account that you are calling
538
+ # `BatchImportFindings` from needs to be the same as the
539
+ # `AwsAccountId` attribute for the finding.
540
+ #
541
+ # * An Amazon Web Services account that Security Hub has allow-listed
542
+ # for an official partner integration. In this case, you can call
543
+ # `BatchImportFindings` from the allow-listed account and send
544
+ # findings from different customer accounts in the same batch.
540
545
  #
541
546
  # The maximum allowed size for a finding is 240 Kb. An error is returned
542
547
  # for any finding larger than 240 Kb.
@@ -569,6 +574,10 @@ module Aws::SecurityHub
569
574
  # Instead, finding providers use `FindingProviderFields` to provide
570
575
  # values for these attributes.
571
576
  #
577
+ #
578
+ #
579
+ # [1]: https://docs.aws.amazon.com/securityhub/latest/userguide/securityhub-custom-providers.html#securityhub-custom-providers-bfi-reqs
580
+ #
572
581
  # @option params [required, Array<Types::AwsSecurityFinding>] :findings
573
582
  # A list of findings to import. To successfully import a finding, it
574
583
  # must follow the [Amazon Web Services Security Finding Format][1].
@@ -885,6 +894,12 @@ module Aws::SecurityHub
885
894
  # value: "NonEmptyString",
886
895
  # },
887
896
  # ],
897
+ # launch_template: {
898
+ # launch_template_id: "NonEmptyString",
899
+ # launch_template_name: "NonEmptyString",
900
+ # version: "NonEmptyString",
901
+ # },
902
+ # capacity_rebalance: false,
888
903
  # },
889
904
  # aws_code_build_project: {
890
905
  # encryption_key: "NonEmptyString",
@@ -943,6 +958,19 @@ module Aws::SecurityHub
943
958
  # subnets: ["NonEmptyString"],
944
959
  # security_group_ids: ["NonEmptyString"],
945
960
  # },
961
+ # secondary_artifacts: [
962
+ # {
963
+ # artifact_identifier: "NonEmptyString",
964
+ # encryption_disabled: false,
965
+ # location: "NonEmptyString",
966
+ # name: "NonEmptyString",
967
+ # namespace_type: "NonEmptyString",
968
+ # override_artifact_name: false,
969
+ # packaging: "NonEmptyString",
970
+ # path: "NonEmptyString",
971
+ # type: "NonEmptyString",
972
+ # },
973
+ # ],
946
974
  # },
947
975
  # aws_cloud_front_distribution: {
948
976
  # cache_behaviors: {
@@ -1999,6 +2027,14 @@ module Aws::SecurityHub
1999
2027
  # vpc_security_group_id: "NonEmptyString",
2000
2028
  # },
2001
2029
  # ],
2030
+ # logging_status: {
2031
+ # bucket_name: "NonEmptyString",
2032
+ # last_failure_message: "NonEmptyString",
2033
+ # last_failure_time: "NonEmptyString",
2034
+ # last_successful_delivery_time: "NonEmptyString",
2035
+ # logging_enabled: false,
2036
+ # s3_key_prefix: "NonEmptyString",
2037
+ # },
2002
2038
  # },
2003
2039
  # aws_elb_load_balancer: {
2004
2040
  # availability_zones: ["NonEmptyString"],
@@ -2053,6 +2089,12 @@ module Aws::SecurityHub
2053
2089
  # cross_zone_load_balancing: {
2054
2090
  # enabled: false,
2055
2091
  # },
2092
+ # additional_attributes: [
2093
+ # {
2094
+ # key: "NonEmptyString",
2095
+ # value: "NonEmptyString",
2096
+ # },
2097
+ # ],
2056
2098
  # },
2057
2099
  # load_balancer_name: "NonEmptyString",
2058
2100
  # policies: {
@@ -3238,6 +3280,27 @@ module Aws::SecurityHub
3238
3280
  # rule_group_name: "NonEmptyString",
3239
3281
  # type: "NonEmptyString",
3240
3282
  # },
3283
+ # aws_rds_db_security_group: {
3284
+ # db_security_group_arn: "NonEmptyString",
3285
+ # db_security_group_description: "NonEmptyString",
3286
+ # db_security_group_name: "NonEmptyString",
3287
+ # ec2_security_groups: [
3288
+ # {
3289
+ # ec2_security_group_id: "NonEmptyString",
3290
+ # ec2_security_group_name: "NonEmptyString",
3291
+ # ec2_security_group_owner_id: "NonEmptyString",
3292
+ # status: "NonEmptyString",
3293
+ # },
3294
+ # ],
3295
+ # ip_ranges: [
3296
+ # {
3297
+ # cidr_ip: "NonEmptyString",
3298
+ # status: "NonEmptyString",
3299
+ # },
3300
+ # ],
3301
+ # owner_id: "NonEmptyString",
3302
+ # vpc_id: "NonEmptyString",
3303
+ # },
3241
3304
  # },
3242
3305
  # },
3243
3306
  # ],
@@ -3682,9 +3745,11 @@ module Aws::SecurityHub
3682
3745
  # aggregation Region.
3683
3746
  #
3684
3747
  # For more details about cross-Region replication, see [Configuring
3685
- # finding
3686
- # aggregation](securityhub/latest/userguide/finding-aggregation.html) in
3687
- # the *Security Hub User Guide*.
3748
+ # finding aggregation][1] in the *Security Hub User Guide*.
3749
+ #
3750
+ #
3751
+ #
3752
+ # [1]: https://docs.aws.amazon.com/securityhub/latest/userguide/finding-aggregation.html
3688
3753
  #
3689
3754
  # @option params [required, String] :region_linking_mode
3690
3755
  # Indicates whether to aggregate findings from all of the available
@@ -4784,11 +4849,13 @@ module Aws::SecurityHub
4784
4849
  #
4785
4850
  # * {Types::DescribeOrganizationConfigurationResponse#auto_enable #auto_enable} => Boolean
4786
4851
  # * {Types::DescribeOrganizationConfigurationResponse#member_account_limit_reached #member_account_limit_reached} => Boolean
4852
+ # * {Types::DescribeOrganizationConfigurationResponse#auto_enable_standards #auto_enable_standards} => String
4787
4853
  #
4788
4854
  # @example Response structure
4789
4855
  #
4790
4856
  # resp.auto_enable #=> Boolean
4791
4857
  # resp.member_account_limit_reached #=> Boolean
4858
+ # resp.auto_enable_standards #=> String, one of "NONE", "DEFAULT"
4792
4859
  #
4793
4860
  # @see http://docs.aws.amazon.com/goto/WebAPI/securityhub-2018-10-26/DescribeOrganizationConfiguration AWS API Documentation
4794
4861
  #
@@ -6210,6 +6277,10 @@ module Aws::SecurityHub
6210
6277
  # resp.findings[0].resources[0].details.aws_auto_scaling_auto_scaling_group.mixed_instances_policy.launch_template.overrides[0].weighted_capacity #=> String
6211
6278
  # resp.findings[0].resources[0].details.aws_auto_scaling_auto_scaling_group.availability_zones #=> Array
6212
6279
  # resp.findings[0].resources[0].details.aws_auto_scaling_auto_scaling_group.availability_zones[0].value #=> String
6280
+ # resp.findings[0].resources[0].details.aws_auto_scaling_auto_scaling_group.launch_template.launch_template_id #=> String
6281
+ # resp.findings[0].resources[0].details.aws_auto_scaling_auto_scaling_group.launch_template.launch_template_name #=> String
6282
+ # resp.findings[0].resources[0].details.aws_auto_scaling_auto_scaling_group.launch_template.version #=> String
6283
+ # resp.findings[0].resources[0].details.aws_auto_scaling_auto_scaling_group.capacity_rebalance #=> Boolean
6213
6284
  # resp.findings[0].resources[0].details.aws_code_build_project.encryption_key #=> String
6214
6285
  # resp.findings[0].resources[0].details.aws_code_build_project.artifacts #=> Array
6215
6286
  # resp.findings[0].resources[0].details.aws_code_build_project.artifacts[0].artifact_identifier #=> String
@@ -6248,6 +6319,16 @@ module Aws::SecurityHub
6248
6319
  # resp.findings[0].resources[0].details.aws_code_build_project.vpc_config.subnets[0] #=> String
6249
6320
  # resp.findings[0].resources[0].details.aws_code_build_project.vpc_config.security_group_ids #=> Array
6250
6321
  # resp.findings[0].resources[0].details.aws_code_build_project.vpc_config.security_group_ids[0] #=> String
6322
+ # resp.findings[0].resources[0].details.aws_code_build_project.secondary_artifacts #=> Array
6323
+ # resp.findings[0].resources[0].details.aws_code_build_project.secondary_artifacts[0].artifact_identifier #=> String
6324
+ # resp.findings[0].resources[0].details.aws_code_build_project.secondary_artifacts[0].encryption_disabled #=> Boolean
6325
+ # resp.findings[0].resources[0].details.aws_code_build_project.secondary_artifacts[0].location #=> String
6326
+ # resp.findings[0].resources[0].details.aws_code_build_project.secondary_artifacts[0].name #=> String
6327
+ # resp.findings[0].resources[0].details.aws_code_build_project.secondary_artifacts[0].namespace_type #=> String
6328
+ # resp.findings[0].resources[0].details.aws_code_build_project.secondary_artifacts[0].override_artifact_name #=> Boolean
6329
+ # resp.findings[0].resources[0].details.aws_code_build_project.secondary_artifacts[0].packaging #=> String
6330
+ # resp.findings[0].resources[0].details.aws_code_build_project.secondary_artifacts[0].path #=> String
6331
+ # resp.findings[0].resources[0].details.aws_code_build_project.secondary_artifacts[0].type #=> String
6251
6332
  # resp.findings[0].resources[0].details.aws_cloud_front_distribution.cache_behaviors.items #=> Array
6252
6333
  # resp.findings[0].resources[0].details.aws_cloud_front_distribution.cache_behaviors.items[0].viewer_protocol_policy #=> String
6253
6334
  # resp.findings[0].resources[0].details.aws_cloud_front_distribution.default_cache_behavior.viewer_protocol_policy #=> String
@@ -6936,6 +7017,12 @@ module Aws::SecurityHub
6936
7017
  # resp.findings[0].resources[0].details.aws_redshift_cluster.vpc_security_groups #=> Array
6937
7018
  # resp.findings[0].resources[0].details.aws_redshift_cluster.vpc_security_groups[0].status #=> String
6938
7019
  # resp.findings[0].resources[0].details.aws_redshift_cluster.vpc_security_groups[0].vpc_security_group_id #=> String
7020
+ # resp.findings[0].resources[0].details.aws_redshift_cluster.logging_status.bucket_name #=> String
7021
+ # resp.findings[0].resources[0].details.aws_redshift_cluster.logging_status.last_failure_message #=> String
7022
+ # resp.findings[0].resources[0].details.aws_redshift_cluster.logging_status.last_failure_time #=> String
7023
+ # resp.findings[0].resources[0].details.aws_redshift_cluster.logging_status.last_successful_delivery_time #=> String
7024
+ # resp.findings[0].resources[0].details.aws_redshift_cluster.logging_status.logging_enabled #=> Boolean
7025
+ # resp.findings[0].resources[0].details.aws_redshift_cluster.logging_status.s3_key_prefix #=> String
6939
7026
  # resp.findings[0].resources[0].details.aws_elb_load_balancer.availability_zones #=> Array
6940
7027
  # resp.findings[0].resources[0].details.aws_elb_load_balancer.availability_zones[0] #=> String
6941
7028
  # resp.findings[0].resources[0].details.aws_elb_load_balancer.backend_server_descriptions #=> Array
@@ -6969,6 +7056,9 @@ module Aws::SecurityHub
6969
7056
  # resp.findings[0].resources[0].details.aws_elb_load_balancer.load_balancer_attributes.connection_draining.timeout #=> Integer
6970
7057
  # resp.findings[0].resources[0].details.aws_elb_load_balancer.load_balancer_attributes.connection_settings.idle_timeout #=> Integer
6971
7058
  # resp.findings[0].resources[0].details.aws_elb_load_balancer.load_balancer_attributes.cross_zone_load_balancing.enabled #=> Boolean
7059
+ # resp.findings[0].resources[0].details.aws_elb_load_balancer.load_balancer_attributes.additional_attributes #=> Array
7060
+ # resp.findings[0].resources[0].details.aws_elb_load_balancer.load_balancer_attributes.additional_attributes[0].key #=> String
7061
+ # resp.findings[0].resources[0].details.aws_elb_load_balancer.load_balancer_attributes.additional_attributes[0].value #=> String
6972
7062
  # resp.findings[0].resources[0].details.aws_elb_load_balancer.load_balancer_name #=> String
6973
7063
  # resp.findings[0].resources[0].details.aws_elb_load_balancer.policies.app_cookie_stickiness_policies #=> Array
6974
7064
  # resp.findings[0].resources[0].details.aws_elb_load_balancer.policies.app_cookie_stickiness_policies[0].cookie_name #=> String
@@ -7780,6 +7870,19 @@ module Aws::SecurityHub
7780
7870
  # resp.findings[0].resources[0].details.aws_network_firewall_rule_group.rule_group_id #=> String
7781
7871
  # resp.findings[0].resources[0].details.aws_network_firewall_rule_group.rule_group_name #=> String
7782
7872
  # resp.findings[0].resources[0].details.aws_network_firewall_rule_group.type #=> String
7873
+ # resp.findings[0].resources[0].details.aws_rds_db_security_group.db_security_group_arn #=> String
7874
+ # resp.findings[0].resources[0].details.aws_rds_db_security_group.db_security_group_description #=> String
7875
+ # resp.findings[0].resources[0].details.aws_rds_db_security_group.db_security_group_name #=> String
7876
+ # resp.findings[0].resources[0].details.aws_rds_db_security_group.ec2_security_groups #=> Array
7877
+ # resp.findings[0].resources[0].details.aws_rds_db_security_group.ec2_security_groups[0].ec2_security_group_id #=> String
7878
+ # resp.findings[0].resources[0].details.aws_rds_db_security_group.ec2_security_groups[0].ec2_security_group_name #=> String
7879
+ # resp.findings[0].resources[0].details.aws_rds_db_security_group.ec2_security_groups[0].ec2_security_group_owner_id #=> String
7880
+ # resp.findings[0].resources[0].details.aws_rds_db_security_group.ec2_security_groups[0].status #=> String
7881
+ # resp.findings[0].resources[0].details.aws_rds_db_security_group.ip_ranges #=> Array
7882
+ # resp.findings[0].resources[0].details.aws_rds_db_security_group.ip_ranges[0].cidr_ip #=> String
7883
+ # resp.findings[0].resources[0].details.aws_rds_db_security_group.ip_ranges[0].status #=> String
7884
+ # resp.findings[0].resources[0].details.aws_rds_db_security_group.owner_id #=> String
7885
+ # resp.findings[0].resources[0].details.aws_rds_db_security_group.vpc_id #=> String
7783
7886
  # resp.findings[0].compliance.status #=> String, one of "PASSED", "WARNING", "FAILED", "NOT_AVAILABLE"
7784
7887
  # resp.findings[0].compliance.related_requirements #=> Array
7785
7888
  # resp.findings[0].compliance.related_requirements[0] #=> String
@@ -10221,12 +10324,28 @@ module Aws::SecurityHub
10221
10324
  # To automatically enable Security Hub for new accounts, set this to
10222
10325
  # `true`.
10223
10326
  #
10327
+ # @option params [String] :auto_enable_standards
10328
+ # Whether to automatically enable Security Hub [default standards][1]
10329
+ # for new member accounts in the organization.
10330
+ #
10331
+ # By default, this parameter is equal to `DEFAULT`, and new member
10332
+ # accounts are automatically enabled with default Security Hub
10333
+ # standards.
10334
+ #
10335
+ # To opt out of enabling default standards for new member accounts, set
10336
+ # this parameter equal to `NONE`.
10337
+ #
10338
+ #
10339
+ #
10340
+ # [1]: https://docs.aws.amazon.com/securityhub/latest/userguide/securityhub-standards-enable-disable.html
10341
+ #
10224
10342
  # @return [Struct] Returns an empty {Seahorse::Client::Response response}.
10225
10343
  #
10226
10344
  # @example Request syntax with placeholder values
10227
10345
  #
10228
10346
  # resp = client.update_organization_configuration({
10229
10347
  # auto_enable: false, # required
10348
+ # auto_enable_standards: "NONE", # accepts NONE, DEFAULT
10230
10349
  # })
10231
10350
  #
10232
10351
  # @see http://docs.aws.amazon.com/goto/WebAPI/securityhub-2018-10-26/UpdateOrganizationConfiguration AWS API Documentation
@@ -10310,7 +10429,7 @@ module Aws::SecurityHub
10310
10429
  params: params,
10311
10430
  config: config)
10312
10431
  context[:gem_name] = 'aws-sdk-securityhub'
10313
- context[:gem_version] = '1.62.0'
10432
+ context[:gem_version] = '1.65.0'
10314
10433
  Seahorse::Client::Request.new(handlers, context)
10315
10434
  end
10316
10435
 
@@ -36,6 +36,7 @@ module Aws::SecurityHub
36
36
  AdminStatus = Shapes::StringShape.new(name: 'AdminStatus')
37
37
  AdminsMaxResults = Shapes::IntegerShape.new(name: 'AdminsMaxResults')
38
38
  ArnList = Shapes::ListShape.new(name: 'ArnList')
39
+ AutoEnableStandards = Shapes::StringShape.new(name: 'AutoEnableStandards')
39
40
  AvailabilityZone = Shapes::StructureShape.new(name: 'AvailabilityZone')
40
41
  AvailabilityZones = Shapes::ListShape.new(name: 'AvailabilityZones')
41
42
  AwsApiCallAction = Shapes::StructureShape.new(name: 'AwsApiCallAction')
@@ -53,6 +54,7 @@ module Aws::SecurityHub
53
54
  AwsAutoScalingAutoScalingGroupAvailabilityZonesList = Shapes::ListShape.new(name: 'AwsAutoScalingAutoScalingGroupAvailabilityZonesList')
54
55
  AwsAutoScalingAutoScalingGroupAvailabilityZonesListDetails = Shapes::StructureShape.new(name: 'AwsAutoScalingAutoScalingGroupAvailabilityZonesListDetails')
55
56
  AwsAutoScalingAutoScalingGroupDetails = Shapes::StructureShape.new(name: 'AwsAutoScalingAutoScalingGroupDetails')
57
+ AwsAutoScalingAutoScalingGroupLaunchTemplateLaunchTemplateSpecification = Shapes::StructureShape.new(name: 'AwsAutoScalingAutoScalingGroupLaunchTemplateLaunchTemplateSpecification')
56
58
  AwsAutoScalingAutoScalingGroupMixedInstancesPolicyDetails = Shapes::StructureShape.new(name: 'AwsAutoScalingAutoScalingGroupMixedInstancesPolicyDetails')
57
59
  AwsAutoScalingAutoScalingGroupMixedInstancesPolicyInstancesDistributionDetails = Shapes::StructureShape.new(name: 'AwsAutoScalingAutoScalingGroupMixedInstancesPolicyInstancesDistributionDetails')
58
60
  AwsAutoScalingAutoScalingGroupMixedInstancesPolicyLaunchTemplateDetails = Shapes::StructureShape.new(name: 'AwsAutoScalingAutoScalingGroupMixedInstancesPolicyLaunchTemplateDetails')
@@ -274,6 +276,8 @@ module Aws::SecurityHub
274
276
  AwsElbLbCookieStickinessPolicies = Shapes::ListShape.new(name: 'AwsElbLbCookieStickinessPolicies')
275
277
  AwsElbLbCookieStickinessPolicy = Shapes::StructureShape.new(name: 'AwsElbLbCookieStickinessPolicy')
276
278
  AwsElbLoadBalancerAccessLog = Shapes::StructureShape.new(name: 'AwsElbLoadBalancerAccessLog')
279
+ AwsElbLoadBalancerAdditionalAttribute = Shapes::StructureShape.new(name: 'AwsElbLoadBalancerAdditionalAttribute')
280
+ AwsElbLoadBalancerAdditionalAttributeList = Shapes::ListShape.new(name: 'AwsElbLoadBalancerAdditionalAttributeList')
277
281
  AwsElbLoadBalancerAttributes = Shapes::StructureShape.new(name: 'AwsElbLoadBalancerAttributes')
278
282
  AwsElbLoadBalancerBackendServerDescription = Shapes::StructureShape.new(name: 'AwsElbLoadBalancerBackendServerDescription')
279
283
  AwsElbLoadBalancerBackendServerDescriptions = Shapes::ListShape.new(name: 'AwsElbLoadBalancerBackendServerDescriptions')
@@ -367,6 +371,11 @@ module Aws::SecurityHub
367
371
  AwsRdsDbPendingModifiedValues = Shapes::StructureShape.new(name: 'AwsRdsDbPendingModifiedValues')
368
372
  AwsRdsDbProcessorFeature = Shapes::StructureShape.new(name: 'AwsRdsDbProcessorFeature')
369
373
  AwsRdsDbProcessorFeatures = Shapes::ListShape.new(name: 'AwsRdsDbProcessorFeatures')
374
+ AwsRdsDbSecurityGroupDetails = Shapes::StructureShape.new(name: 'AwsRdsDbSecurityGroupDetails')
375
+ AwsRdsDbSecurityGroupEc2SecurityGroup = Shapes::StructureShape.new(name: 'AwsRdsDbSecurityGroupEc2SecurityGroup')
376
+ AwsRdsDbSecurityGroupEc2SecurityGroups = Shapes::ListShape.new(name: 'AwsRdsDbSecurityGroupEc2SecurityGroups')
377
+ AwsRdsDbSecurityGroupIpRange = Shapes::StructureShape.new(name: 'AwsRdsDbSecurityGroupIpRange')
378
+ AwsRdsDbSecurityGroupIpRanges = Shapes::ListShape.new(name: 'AwsRdsDbSecurityGroupIpRanges')
370
379
  AwsRdsDbSnapshotDetails = Shapes::StructureShape.new(name: 'AwsRdsDbSnapshotDetails')
371
380
  AwsRdsDbStatusInfo = Shapes::StructureShape.new(name: 'AwsRdsDbStatusInfo')
372
381
  AwsRdsDbStatusInfos = Shapes::ListShape.new(name: 'AwsRdsDbStatusInfos')
@@ -393,6 +402,7 @@ module Aws::SecurityHub
393
402
  AwsRedshiftClusterHsmStatus = Shapes::StructureShape.new(name: 'AwsRedshiftClusterHsmStatus')
394
403
  AwsRedshiftClusterIamRole = Shapes::StructureShape.new(name: 'AwsRedshiftClusterIamRole')
395
404
  AwsRedshiftClusterIamRoles = Shapes::ListShape.new(name: 'AwsRedshiftClusterIamRoles')
405
+ AwsRedshiftClusterLoggingStatus = Shapes::StructureShape.new(name: 'AwsRedshiftClusterLoggingStatus')
396
406
  AwsRedshiftClusterPendingModifiedValues = Shapes::StructureShape.new(name: 'AwsRedshiftClusterPendingModifiedValues')
397
407
  AwsRedshiftClusterResizeInfo = Shapes::StructureShape.new(name: 'AwsRedshiftClusterResizeInfo')
398
408
  AwsRedshiftClusterRestoreStatus = Shapes::StructureShape.new(name: 'AwsRedshiftClusterRestoreStatus')
@@ -982,8 +992,15 @@ module Aws::SecurityHub
982
992
  AwsAutoScalingAutoScalingGroupDetails.add_member(:created_time, Shapes::ShapeRef.new(shape: NonEmptyString, location_name: "CreatedTime"))
983
993
  AwsAutoScalingAutoScalingGroupDetails.add_member(:mixed_instances_policy, Shapes::ShapeRef.new(shape: AwsAutoScalingAutoScalingGroupMixedInstancesPolicyDetails, location_name: "MixedInstancesPolicy"))
984
994
  AwsAutoScalingAutoScalingGroupDetails.add_member(:availability_zones, Shapes::ShapeRef.new(shape: AwsAutoScalingAutoScalingGroupAvailabilityZonesList, location_name: "AvailabilityZones"))
995
+ AwsAutoScalingAutoScalingGroupDetails.add_member(:launch_template, Shapes::ShapeRef.new(shape: AwsAutoScalingAutoScalingGroupLaunchTemplateLaunchTemplateSpecification, location_name: "LaunchTemplate"))
996
+ AwsAutoScalingAutoScalingGroupDetails.add_member(:capacity_rebalance, Shapes::ShapeRef.new(shape: Boolean, location_name: "CapacityRebalance"))
985
997
  AwsAutoScalingAutoScalingGroupDetails.struct_class = Types::AwsAutoScalingAutoScalingGroupDetails
986
998
 
999
+ AwsAutoScalingAutoScalingGroupLaunchTemplateLaunchTemplateSpecification.add_member(:launch_template_id, Shapes::ShapeRef.new(shape: NonEmptyString, location_name: "LaunchTemplateId"))
1000
+ AwsAutoScalingAutoScalingGroupLaunchTemplateLaunchTemplateSpecification.add_member(:launch_template_name, Shapes::ShapeRef.new(shape: NonEmptyString, location_name: "LaunchTemplateName"))
1001
+ AwsAutoScalingAutoScalingGroupLaunchTemplateLaunchTemplateSpecification.add_member(:version, Shapes::ShapeRef.new(shape: NonEmptyString, location_name: "Version"))
1002
+ AwsAutoScalingAutoScalingGroupLaunchTemplateLaunchTemplateSpecification.struct_class = Types::AwsAutoScalingAutoScalingGroupLaunchTemplateLaunchTemplateSpecification
1003
+
987
1004
  AwsAutoScalingAutoScalingGroupMixedInstancesPolicyDetails.add_member(:instances_distribution, Shapes::ShapeRef.new(shape: AwsAutoScalingAutoScalingGroupMixedInstancesPolicyInstancesDistributionDetails, location_name: "InstancesDistribution"))
988
1005
  AwsAutoScalingAutoScalingGroupMixedInstancesPolicyDetails.add_member(:launch_template, Shapes::ShapeRef.new(shape: AwsAutoScalingAutoScalingGroupMixedInstancesPolicyLaunchTemplateDetails, location_name: "LaunchTemplate"))
989
1006
  AwsAutoScalingAutoScalingGroupMixedInstancesPolicyDetails.struct_class = Types::AwsAutoScalingAutoScalingGroupMixedInstancesPolicyDetails
@@ -1225,6 +1242,7 @@ module Aws::SecurityHub
1225
1242
  AwsCodeBuildProjectDetails.add_member(:service_role, Shapes::ShapeRef.new(shape: NonEmptyString, location_name: "ServiceRole"))
1226
1243
  AwsCodeBuildProjectDetails.add_member(:logs_config, Shapes::ShapeRef.new(shape: AwsCodeBuildProjectLogsConfigDetails, location_name: "LogsConfig"))
1227
1244
  AwsCodeBuildProjectDetails.add_member(:vpc_config, Shapes::ShapeRef.new(shape: AwsCodeBuildProjectVpcConfig, location_name: "VpcConfig"))
1245
+ AwsCodeBuildProjectDetails.add_member(:secondary_artifacts, Shapes::ShapeRef.new(shape: AwsCodeBuildProjectArtifactsList, location_name: "SecondaryArtifacts"))
1228
1246
  AwsCodeBuildProjectDetails.struct_class = Types::AwsCodeBuildProjectDetails
1229
1247
 
1230
1248
  AwsCodeBuildProjectEnvironment.add_member(:certificate, Shapes::ShapeRef.new(shape: NonEmptyString, location_name: "Certificate"))
@@ -2137,10 +2155,17 @@ module Aws::SecurityHub
2137
2155
  AwsElbLoadBalancerAccessLog.add_member(:s3_bucket_prefix, Shapes::ShapeRef.new(shape: NonEmptyString, location_name: "S3BucketPrefix"))
2138
2156
  AwsElbLoadBalancerAccessLog.struct_class = Types::AwsElbLoadBalancerAccessLog
2139
2157
 
2158
+ AwsElbLoadBalancerAdditionalAttribute.add_member(:key, Shapes::ShapeRef.new(shape: NonEmptyString, location_name: "Key"))
2159
+ AwsElbLoadBalancerAdditionalAttribute.add_member(:value, Shapes::ShapeRef.new(shape: NonEmptyString, location_name: "Value"))
2160
+ AwsElbLoadBalancerAdditionalAttribute.struct_class = Types::AwsElbLoadBalancerAdditionalAttribute
2161
+
2162
+ AwsElbLoadBalancerAdditionalAttributeList.member = Shapes::ShapeRef.new(shape: AwsElbLoadBalancerAdditionalAttribute)
2163
+
2140
2164
  AwsElbLoadBalancerAttributes.add_member(:access_log, Shapes::ShapeRef.new(shape: AwsElbLoadBalancerAccessLog, location_name: "AccessLog"))
2141
2165
  AwsElbLoadBalancerAttributes.add_member(:connection_draining, Shapes::ShapeRef.new(shape: AwsElbLoadBalancerConnectionDraining, location_name: "ConnectionDraining"))
2142
2166
  AwsElbLoadBalancerAttributes.add_member(:connection_settings, Shapes::ShapeRef.new(shape: AwsElbLoadBalancerConnectionSettings, location_name: "ConnectionSettings"))
2143
2167
  AwsElbLoadBalancerAttributes.add_member(:cross_zone_load_balancing, Shapes::ShapeRef.new(shape: AwsElbLoadBalancerCrossZoneLoadBalancing, location_name: "CrossZoneLoadBalancing"))
2168
+ AwsElbLoadBalancerAttributes.add_member(:additional_attributes, Shapes::ShapeRef.new(shape: AwsElbLoadBalancerAdditionalAttributeList, location_name: "AdditionalAttributes"))
2144
2169
  AwsElbLoadBalancerAttributes.struct_class = Types::AwsElbLoadBalancerAttributes
2145
2170
 
2146
2171
  AwsElbLoadBalancerBackendServerDescription.add_member(:instance_port, Shapes::ShapeRef.new(shape: Integer, location_name: "InstancePort"))
@@ -2718,6 +2743,29 @@ module Aws::SecurityHub
2718
2743
 
2719
2744
  AwsRdsDbProcessorFeatures.member = Shapes::ShapeRef.new(shape: AwsRdsDbProcessorFeature)
2720
2745
 
2746
+ AwsRdsDbSecurityGroupDetails.add_member(:db_security_group_arn, Shapes::ShapeRef.new(shape: NonEmptyString, location_name: "DbSecurityGroupArn"))
2747
+ AwsRdsDbSecurityGroupDetails.add_member(:db_security_group_description, Shapes::ShapeRef.new(shape: NonEmptyString, location_name: "DbSecurityGroupDescription"))
2748
+ AwsRdsDbSecurityGroupDetails.add_member(:db_security_group_name, Shapes::ShapeRef.new(shape: NonEmptyString, location_name: "DbSecurityGroupName"))
2749
+ AwsRdsDbSecurityGroupDetails.add_member(:ec2_security_groups, Shapes::ShapeRef.new(shape: AwsRdsDbSecurityGroupEc2SecurityGroups, location_name: "Ec2SecurityGroups"))
2750
+ AwsRdsDbSecurityGroupDetails.add_member(:ip_ranges, Shapes::ShapeRef.new(shape: AwsRdsDbSecurityGroupIpRanges, location_name: "IpRanges"))
2751
+ AwsRdsDbSecurityGroupDetails.add_member(:owner_id, Shapes::ShapeRef.new(shape: NonEmptyString, location_name: "OwnerId"))
2752
+ AwsRdsDbSecurityGroupDetails.add_member(:vpc_id, Shapes::ShapeRef.new(shape: NonEmptyString, location_name: "VpcId"))
2753
+ AwsRdsDbSecurityGroupDetails.struct_class = Types::AwsRdsDbSecurityGroupDetails
2754
+
2755
+ AwsRdsDbSecurityGroupEc2SecurityGroup.add_member(:ec2_security_group_id, Shapes::ShapeRef.new(shape: NonEmptyString, location_name: "Ec2SecurityGroupId"))
2756
+ AwsRdsDbSecurityGroupEc2SecurityGroup.add_member(:ec2_security_group_name, Shapes::ShapeRef.new(shape: NonEmptyString, location_name: "Ec2SecurityGroupName"))
2757
+ AwsRdsDbSecurityGroupEc2SecurityGroup.add_member(:ec2_security_group_owner_id, Shapes::ShapeRef.new(shape: NonEmptyString, location_name: "Ec2SecurityGroupOwnerId"))
2758
+ AwsRdsDbSecurityGroupEc2SecurityGroup.add_member(:status, Shapes::ShapeRef.new(shape: NonEmptyString, location_name: "Status"))
2759
+ AwsRdsDbSecurityGroupEc2SecurityGroup.struct_class = Types::AwsRdsDbSecurityGroupEc2SecurityGroup
2760
+
2761
+ AwsRdsDbSecurityGroupEc2SecurityGroups.member = Shapes::ShapeRef.new(shape: AwsRdsDbSecurityGroupEc2SecurityGroup)
2762
+
2763
+ AwsRdsDbSecurityGroupIpRange.add_member(:cidr_ip, Shapes::ShapeRef.new(shape: NonEmptyString, location_name: "CidrIp"))
2764
+ AwsRdsDbSecurityGroupIpRange.add_member(:status, Shapes::ShapeRef.new(shape: NonEmptyString, location_name: "Status"))
2765
+ AwsRdsDbSecurityGroupIpRange.struct_class = Types::AwsRdsDbSecurityGroupIpRange
2766
+
2767
+ AwsRdsDbSecurityGroupIpRanges.member = Shapes::ShapeRef.new(shape: AwsRdsDbSecurityGroupIpRange)
2768
+
2721
2769
  AwsRdsDbSnapshotDetails.add_member(:db_snapshot_identifier, Shapes::ShapeRef.new(shape: NonEmptyString, location_name: "DbSnapshotIdentifier"))
2722
2770
  AwsRdsDbSnapshotDetails.add_member(:db_instance_identifier, Shapes::ShapeRef.new(shape: NonEmptyString, location_name: "DbInstanceIdentifier"))
2723
2771
  AwsRdsDbSnapshotDetails.add_member(:snapshot_create_time, Shapes::ShapeRef.new(shape: NonEmptyString, location_name: "SnapshotCreateTime"))
@@ -2872,6 +2920,7 @@ module Aws::SecurityHub
2872
2920
  AwsRedshiftClusterDetails.add_member(:snapshot_schedule_state, Shapes::ShapeRef.new(shape: NonEmptyString, location_name: "SnapshotScheduleState"))
2873
2921
  AwsRedshiftClusterDetails.add_member(:vpc_id, Shapes::ShapeRef.new(shape: NonEmptyString, location_name: "VpcId"))
2874
2922
  AwsRedshiftClusterDetails.add_member(:vpc_security_groups, Shapes::ShapeRef.new(shape: AwsRedshiftClusterVpcSecurityGroups, location_name: "VpcSecurityGroups"))
2923
+ AwsRedshiftClusterDetails.add_member(:logging_status, Shapes::ShapeRef.new(shape: AwsRedshiftClusterLoggingStatus, location_name: "LoggingStatus"))
2875
2924
  AwsRedshiftClusterDetails.struct_class = Types::AwsRedshiftClusterDetails
2876
2925
 
2877
2926
  AwsRedshiftClusterElasticIpStatus.add_member(:elastic_ip, Shapes::ShapeRef.new(shape: NonEmptyString, location_name: "ElasticIp"))
@@ -2893,6 +2942,14 @@ module Aws::SecurityHub
2893
2942
 
2894
2943
  AwsRedshiftClusterIamRoles.member = Shapes::ShapeRef.new(shape: AwsRedshiftClusterIamRole)
2895
2944
 
2945
+ AwsRedshiftClusterLoggingStatus.add_member(:bucket_name, Shapes::ShapeRef.new(shape: NonEmptyString, location_name: "BucketName"))
2946
+ AwsRedshiftClusterLoggingStatus.add_member(:last_failure_message, Shapes::ShapeRef.new(shape: NonEmptyString, location_name: "LastFailureMessage"))
2947
+ AwsRedshiftClusterLoggingStatus.add_member(:last_failure_time, Shapes::ShapeRef.new(shape: NonEmptyString, location_name: "LastFailureTime"))
2948
+ AwsRedshiftClusterLoggingStatus.add_member(:last_successful_delivery_time, Shapes::ShapeRef.new(shape: NonEmptyString, location_name: "LastSuccessfulDeliveryTime"))
2949
+ AwsRedshiftClusterLoggingStatus.add_member(:logging_enabled, Shapes::ShapeRef.new(shape: Boolean, location_name: "LoggingEnabled"))
2950
+ AwsRedshiftClusterLoggingStatus.add_member(:s3_key_prefix, Shapes::ShapeRef.new(shape: NonEmptyString, location_name: "S3KeyPrefix"))
2951
+ AwsRedshiftClusterLoggingStatus.struct_class = Types::AwsRedshiftClusterLoggingStatus
2952
+
2896
2953
  AwsRedshiftClusterPendingModifiedValues.add_member(:automated_snapshot_retention_period, Shapes::ShapeRef.new(shape: Integer, location_name: "AutomatedSnapshotRetentionPeriod"))
2897
2954
  AwsRedshiftClusterPendingModifiedValues.add_member(:cluster_identifier, Shapes::ShapeRef.new(shape: NonEmptyString, location_name: "ClusterIdentifier"))
2898
2955
  AwsRedshiftClusterPendingModifiedValues.add_member(:cluster_type, Shapes::ShapeRef.new(shape: NonEmptyString, location_name: "ClusterType"))
@@ -3558,6 +3615,7 @@ module Aws::SecurityHub
3558
3615
 
3559
3616
  DescribeOrganizationConfigurationResponse.add_member(:auto_enable, Shapes::ShapeRef.new(shape: Boolean, location_name: "AutoEnable"))
3560
3617
  DescribeOrganizationConfigurationResponse.add_member(:member_account_limit_reached, Shapes::ShapeRef.new(shape: Boolean, location_name: "MemberAccountLimitReached"))
3618
+ DescribeOrganizationConfigurationResponse.add_member(:auto_enable_standards, Shapes::ShapeRef.new(shape: AutoEnableStandards, location_name: "AutoEnableStandards"))
3561
3619
  DescribeOrganizationConfigurationResponse.struct_class = Types::DescribeOrganizationConfigurationResponse
3562
3620
 
3563
3621
  DescribeProductsRequest.add_member(:next_token, Shapes::ShapeRef.new(shape: NextToken, location: "querystring", location_name: "NextToken"))
@@ -4143,6 +4201,7 @@ module Aws::SecurityHub
4143
4201
  ResourceDetails.add_member(:aws_network_firewall_firewall_policy, Shapes::ShapeRef.new(shape: AwsNetworkFirewallFirewallPolicyDetails, location_name: "AwsNetworkFirewallFirewallPolicy"))
4144
4202
  ResourceDetails.add_member(:aws_network_firewall_firewall, Shapes::ShapeRef.new(shape: AwsNetworkFirewallFirewallDetails, location_name: "AwsNetworkFirewallFirewall"))
4145
4203
  ResourceDetails.add_member(:aws_network_firewall_rule_group, Shapes::ShapeRef.new(shape: AwsNetworkFirewallRuleGroupDetails, location_name: "AwsNetworkFirewallRuleGroup"))
4204
+ ResourceDetails.add_member(:aws_rds_db_security_group, Shapes::ShapeRef.new(shape: AwsRdsDbSecurityGroupDetails, location_name: "AwsRdsDbSecurityGroup"))
4146
4205
  ResourceDetails.struct_class = Types::ResourceDetails
4147
4206
 
4148
4207
  ResourceList.member = Shapes::ShapeRef.new(shape: Resource)
@@ -4440,6 +4499,7 @@ module Aws::SecurityHub
4440
4499
  UpdateInsightResponse.struct_class = Types::UpdateInsightResponse
4441
4500
 
4442
4501
  UpdateOrganizationConfigurationRequest.add_member(:auto_enable, Shapes::ShapeRef.new(shape: Boolean, required: true, location_name: "AutoEnable"))
4502
+ UpdateOrganizationConfigurationRequest.add_member(:auto_enable_standards, Shapes::ShapeRef.new(shape: AutoEnableStandards, location_name: "AutoEnableStandards"))
4443
4503
  UpdateOrganizationConfigurationRequest.struct_class = Types::UpdateOrganizationConfigurationRequest
4444
4504
 
4445
4505
  UpdateOrganizationConfigurationResponse.struct_class = Types::UpdateOrganizationConfigurationResponse