aws-sdk-securityhub 1.63.0 → 1.67.0
This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.
- checksums.yaml +4 -4
- data/CHANGELOG.md +20 -0
- data/VERSION +1 -1
- data/lib/aws-sdk-securityhub/client.rb +585 -10
- data/lib/aws-sdk-securityhub/client_api.rb +407 -0
- data/lib/aws-sdk-securityhub/types.rb +3842 -102
- data/lib/aws-sdk-securityhub.rb +1 -1
- metadata +2 -2
|
@@ -531,12 +531,17 @@ module Aws::SecurityHub
|
|
|
531
531
|
#
|
|
532
532
|
# `BatchImportFindings` must be called by one of the following:
|
|
533
533
|
#
|
|
534
|
-
# * The account that is associated with
|
|
535
|
-
# the
|
|
536
|
-
#
|
|
537
|
-
#
|
|
538
|
-
#
|
|
539
|
-
#
|
|
534
|
+
# * The Amazon Web Services account that is associated with a finding if
|
|
535
|
+
# you are using the [default product ARN][1] or are a partner sending
|
|
536
|
+
# findings from within a customer's Amazon Web Services account. In
|
|
537
|
+
# these cases, the identifier of the account that you are calling
|
|
538
|
+
# `BatchImportFindings` from needs to be the same as the
|
|
539
|
+
# `AwsAccountId` attribute for the finding.
|
|
540
|
+
#
|
|
541
|
+
# * An Amazon Web Services account that Security Hub has allow-listed
|
|
542
|
+
# for an official partner integration. In this case, you can call
|
|
543
|
+
# `BatchImportFindings` from the allow-listed account and send
|
|
544
|
+
# findings from different customer accounts in the same batch.
|
|
540
545
|
#
|
|
541
546
|
# The maximum allowed size for a finding is 240 Kb. An error is returned
|
|
542
547
|
# for any finding larger than 240 Kb.
|
|
@@ -569,6 +574,10 @@ module Aws::SecurityHub
|
|
|
569
574
|
# Instead, finding providers use `FindingProviderFields` to provide
|
|
570
575
|
# values for these attributes.
|
|
571
576
|
#
|
|
577
|
+
#
|
|
578
|
+
#
|
|
579
|
+
# [1]: https://docs.aws.amazon.com/securityhub/latest/userguide/securityhub-custom-providers.html#securityhub-custom-providers-bfi-reqs
|
|
580
|
+
#
|
|
572
581
|
# @option params [required, Array<Types::AwsSecurityFinding>] :findings
|
|
573
582
|
# A list of findings to import. To successfully import a finding, it
|
|
574
583
|
# must follow the [Amazon Web Services Security Finding Format][1].
|
|
@@ -706,6 +715,21 @@ module Aws::SecurityHub
|
|
|
706
715
|
# launched_at: "NonEmptyString",
|
|
707
716
|
# terminated_at: "NonEmptyString",
|
|
708
717
|
# },
|
|
718
|
+
# threats: [
|
|
719
|
+
# {
|
|
720
|
+
# name: "NonEmptyString",
|
|
721
|
+
# severity: "NonEmptyString",
|
|
722
|
+
# item_count: 1,
|
|
723
|
+
# file_paths: [
|
|
724
|
+
# {
|
|
725
|
+
# file_path: "NonEmptyString",
|
|
726
|
+
# file_name: "NonEmptyString",
|
|
727
|
+
# resource_id: "NonEmptyString",
|
|
728
|
+
# hash: "NonEmptyString",
|
|
729
|
+
# },
|
|
730
|
+
# ],
|
|
731
|
+
# },
|
|
732
|
+
# ],
|
|
709
733
|
# threat_intel_indicators: [
|
|
710
734
|
# {
|
|
711
735
|
# type: "DOMAIN", # accepts DOMAIN, EMAIL_ADDRESS, HASH_MD5, HASH_SHA1, HASH_SHA256, HASH_SHA512, IPV4_ADDRESS, IPV6_ADDRESS, MUTEX, PROCESS, URL
|
|
@@ -993,6 +1017,17 @@ module Aws::SecurityHub
|
|
|
993
1017
|
# s3_origin_config: {
|
|
994
1018
|
# origin_access_identity: "NonEmptyString",
|
|
995
1019
|
# },
|
|
1020
|
+
# custom_origin_config: {
|
|
1021
|
+
# http_port: 1,
|
|
1022
|
+
# https_port: 1,
|
|
1023
|
+
# origin_keepalive_timeout: 1,
|
|
1024
|
+
# origin_protocol_policy: "NonEmptyString",
|
|
1025
|
+
# origin_read_timeout: 1,
|
|
1026
|
+
# origin_ssl_protocols: {
|
|
1027
|
+
# items: ["NonEmptyString"],
|
|
1028
|
+
# quantity: 1,
|
|
1029
|
+
# },
|
|
1030
|
+
# },
|
|
996
1031
|
# },
|
|
997
1032
|
# ],
|
|
998
1033
|
# },
|
|
@@ -1035,6 +1070,14 @@ module Aws::SecurityHub
|
|
|
1035
1070
|
# network_interface_id: "NonEmptyString",
|
|
1036
1071
|
# },
|
|
1037
1072
|
# ],
|
|
1073
|
+
# virtualization_type: "NonEmptyString",
|
|
1074
|
+
# metadata_options: {
|
|
1075
|
+
# http_endpoint: "NonEmptyString",
|
|
1076
|
+
# http_protocol_ipv_6: "NonEmptyString",
|
|
1077
|
+
# http_put_response_hop_limit: 1,
|
|
1078
|
+
# http_tokens: "NonEmptyString",
|
|
1079
|
+
# instance_metadata_tags: "NonEmptyString",
|
|
1080
|
+
# },
|
|
1038
1081
|
# },
|
|
1039
1082
|
# aws_ec2_network_interface: {
|
|
1040
1083
|
# attachment: {
|
|
@@ -1140,6 +1183,7 @@ module Aws::SecurityHub
|
|
|
1140
1183
|
# },
|
|
1141
1184
|
# aws_ec2_volume: {
|
|
1142
1185
|
# create_time: "NonEmptyString",
|
|
1186
|
+
# device_name: "NonEmptyString",
|
|
1143
1187
|
# encrypted: false,
|
|
1144
1188
|
# size: 1,
|
|
1145
1189
|
# snapshot_id: "NonEmptyString",
|
|
@@ -1153,6 +1197,9 @@ module Aws::SecurityHub
|
|
|
1153
1197
|
# status: "NonEmptyString",
|
|
1154
1198
|
# },
|
|
1155
1199
|
# ],
|
|
1200
|
+
# volume_id: "NonEmptyString",
|
|
1201
|
+
# volume_type: "NonEmptyString",
|
|
1202
|
+
# volume_scan_status: "NonEmptyString",
|
|
1156
1203
|
# },
|
|
1157
1204
|
# aws_ec2_vpc: {
|
|
1158
1205
|
# cidr_block_association_set: [
|
|
@@ -2388,6 +2435,13 @@ module Aws::SecurityHub
|
|
|
2388
2435
|
# ],
|
|
2389
2436
|
# topic_name: "NonEmptyString",
|
|
2390
2437
|
# owner: "NonEmptyString",
|
|
2438
|
+
# sqs_success_feedback_role_arn: "NonEmptyString",
|
|
2439
|
+
# sqs_failure_feedback_role_arn: "NonEmptyString",
|
|
2440
|
+
# application_success_feedback_role_arn: "NonEmptyString",
|
|
2441
|
+
# firehose_success_feedback_role_arn: "NonEmptyString",
|
|
2442
|
+
# firehose_failure_feedback_role_arn: "NonEmptyString",
|
|
2443
|
+
# http_success_feedback_role_arn: "NonEmptyString",
|
|
2444
|
+
# http_failure_feedback_role_arn: "NonEmptyString",
|
|
2391
2445
|
# },
|
|
2392
2446
|
# aws_sqs_queue: {
|
|
2393
2447
|
# kms_data_key_reuse_period_seconds: 1,
|
|
@@ -2541,6 +2595,8 @@ module Aws::SecurityHub
|
|
|
2541
2595
|
# iam_database_authentication_enabled: false,
|
|
2542
2596
|
# },
|
|
2543
2597
|
# aws_ecs_cluster: {
|
|
2598
|
+
# cluster_arn: "NonEmptyString",
|
|
2599
|
+
# active_services_count: 1,
|
|
2544
2600
|
# capacity_providers: ["NonEmptyString"],
|
|
2545
2601
|
# cluster_settings: [
|
|
2546
2602
|
# {
|
|
@@ -2568,6 +2624,21 @@ module Aws::SecurityHub
|
|
|
2568
2624
|
# weight: 1,
|
|
2569
2625
|
# },
|
|
2570
2626
|
# ],
|
|
2627
|
+
# cluster_name: "NonEmptyString",
|
|
2628
|
+
# registered_container_instances_count: 1,
|
|
2629
|
+
# running_tasks_count: 1,
|
|
2630
|
+
# status: "NonEmptyString",
|
|
2631
|
+
# },
|
|
2632
|
+
# aws_ecs_container: {
|
|
2633
|
+
# name: "NonEmptyString",
|
|
2634
|
+
# image: "NonEmptyString",
|
|
2635
|
+
# mount_points: [
|
|
2636
|
+
# {
|
|
2637
|
+
# source_volume: "NonEmptyString",
|
|
2638
|
+
# container_path: "NonEmptyString",
|
|
2639
|
+
# },
|
|
2640
|
+
# ],
|
|
2641
|
+
# privileged: false,
|
|
2571
2642
|
# },
|
|
2572
2643
|
# aws_ecs_task_definition: {
|
|
2573
2644
|
# container_definitions: [
|
|
@@ -2782,10 +2853,18 @@ module Aws::SecurityHub
|
|
|
2782
2853
|
# ],
|
|
2783
2854
|
# },
|
|
2784
2855
|
# container: {
|
|
2856
|
+
# container_runtime: "NonEmptyString",
|
|
2785
2857
|
# name: "NonEmptyString",
|
|
2786
2858
|
# image_id: "NonEmptyString",
|
|
2787
2859
|
# image_name: "NonEmptyString",
|
|
2788
2860
|
# launched_at: "NonEmptyString",
|
|
2861
|
+
# volume_mounts: [
|
|
2862
|
+
# {
|
|
2863
|
+
# name: "NonEmptyString",
|
|
2864
|
+
# mount_path: "NonEmptyString",
|
|
2865
|
+
# },
|
|
2866
|
+
# ],
|
|
2867
|
+
# privileged: false,
|
|
2789
2868
|
# },
|
|
2790
2869
|
# other: {
|
|
2791
2870
|
# "NonEmptyString" => "NonEmptyString",
|
|
@@ -3035,6 +3114,15 @@ module Aws::SecurityHub
|
|
|
3035
3114
|
# domain_endpoints: {
|
|
3036
3115
|
# "NonEmptyString" => "NonEmptyString",
|
|
3037
3116
|
# },
|
|
3117
|
+
# advanced_security_options: {
|
|
3118
|
+
# enabled: false,
|
|
3119
|
+
# internal_user_database_enabled: false,
|
|
3120
|
+
# master_user_options: {
|
|
3121
|
+
# master_user_arn: "NonEmptyString",
|
|
3122
|
+
# master_user_name: "NonEmptyString",
|
|
3123
|
+
# master_user_password: "NonEmptyString",
|
|
3124
|
+
# },
|
|
3125
|
+
# },
|
|
3038
3126
|
# },
|
|
3039
3127
|
# aws_ec2_vpc_endpoint_service: {
|
|
3040
3128
|
# acceptance_required: false,
|
|
@@ -3292,6 +3380,256 @@ module Aws::SecurityHub
|
|
|
3292
3380
|
# owner_id: "NonEmptyString",
|
|
3293
3381
|
# vpc_id: "NonEmptyString",
|
|
3294
3382
|
# },
|
|
3383
|
+
# aws_kinesis_stream: {
|
|
3384
|
+
# name: "NonEmptyString",
|
|
3385
|
+
# arn: "NonEmptyString",
|
|
3386
|
+
# stream_encryption: {
|
|
3387
|
+
# encryption_type: "NonEmptyString",
|
|
3388
|
+
# key_id: "NonEmptyString",
|
|
3389
|
+
# },
|
|
3390
|
+
# shard_count: 1,
|
|
3391
|
+
# retention_period_hours: 1,
|
|
3392
|
+
# },
|
|
3393
|
+
# aws_ec2_transit_gateway: {
|
|
3394
|
+
# id: "NonEmptyString",
|
|
3395
|
+
# description: "NonEmptyString",
|
|
3396
|
+
# default_route_table_propagation: "NonEmptyString",
|
|
3397
|
+
# auto_accept_shared_attachments: "NonEmptyString",
|
|
3398
|
+
# default_route_table_association: "NonEmptyString",
|
|
3399
|
+
# transit_gateway_cidr_blocks: ["NonEmptyString"],
|
|
3400
|
+
# association_default_route_table_id: "NonEmptyString",
|
|
3401
|
+
# propagation_default_route_table_id: "NonEmptyString",
|
|
3402
|
+
# vpn_ecmp_support: "NonEmptyString",
|
|
3403
|
+
# dns_support: "NonEmptyString",
|
|
3404
|
+
# multicast_support: "NonEmptyString",
|
|
3405
|
+
# amazon_side_asn: 1,
|
|
3406
|
+
# },
|
|
3407
|
+
# aws_efs_access_point: {
|
|
3408
|
+
# access_point_id: "NonEmptyString",
|
|
3409
|
+
# arn: "NonEmptyString",
|
|
3410
|
+
# client_token: "NonEmptyString",
|
|
3411
|
+
# file_system_id: "NonEmptyString",
|
|
3412
|
+
# posix_user: {
|
|
3413
|
+
# gid: "NonEmptyString",
|
|
3414
|
+
# secondary_gids: ["NonEmptyString"],
|
|
3415
|
+
# uid: "NonEmptyString",
|
|
3416
|
+
# },
|
|
3417
|
+
# root_directory: {
|
|
3418
|
+
# creation_info: {
|
|
3419
|
+
# owner_gid: "NonEmptyString",
|
|
3420
|
+
# owner_uid: "NonEmptyString",
|
|
3421
|
+
# permissions: "NonEmptyString",
|
|
3422
|
+
# },
|
|
3423
|
+
# path: "NonEmptyString",
|
|
3424
|
+
# },
|
|
3425
|
+
# },
|
|
3426
|
+
# aws_cloud_formation_stack: {
|
|
3427
|
+
# capabilities: ["NonEmptyString"],
|
|
3428
|
+
# creation_time: "NonEmptyString",
|
|
3429
|
+
# description: "NonEmptyString",
|
|
3430
|
+
# disable_rollback: false,
|
|
3431
|
+
# drift_information: {
|
|
3432
|
+
# stack_drift_status: "NonEmptyString",
|
|
3433
|
+
# },
|
|
3434
|
+
# enable_termination_protection: false,
|
|
3435
|
+
# last_updated_time: "NonEmptyString",
|
|
3436
|
+
# notification_arns: ["NonEmptyString"],
|
|
3437
|
+
# outputs: [
|
|
3438
|
+
# {
|
|
3439
|
+
# description: "NonEmptyString",
|
|
3440
|
+
# output_key: "NonEmptyString",
|
|
3441
|
+
# output_value: "NonEmptyString",
|
|
3442
|
+
# },
|
|
3443
|
+
# ],
|
|
3444
|
+
# role_arn: "NonEmptyString",
|
|
3445
|
+
# stack_id: "NonEmptyString",
|
|
3446
|
+
# stack_name: "NonEmptyString",
|
|
3447
|
+
# stack_status: "NonEmptyString",
|
|
3448
|
+
# stack_status_reason: "NonEmptyString",
|
|
3449
|
+
# timeout_in_minutes: 1,
|
|
3450
|
+
# },
|
|
3451
|
+
# aws_cloud_watch_alarm: {
|
|
3452
|
+
# actions_enabled: false,
|
|
3453
|
+
# alarm_actions: ["NonEmptyString"],
|
|
3454
|
+
# alarm_arn: "NonEmptyString",
|
|
3455
|
+
# alarm_configuration_updated_timestamp: "NonEmptyString",
|
|
3456
|
+
# alarm_description: "NonEmptyString",
|
|
3457
|
+
# alarm_name: "NonEmptyString",
|
|
3458
|
+
# comparison_operator: "NonEmptyString",
|
|
3459
|
+
# datapoints_to_alarm: 1,
|
|
3460
|
+
# dimensions: [
|
|
3461
|
+
# {
|
|
3462
|
+
# name: "NonEmptyString",
|
|
3463
|
+
# value: "NonEmptyString",
|
|
3464
|
+
# },
|
|
3465
|
+
# ],
|
|
3466
|
+
# evaluate_low_sample_count_percentile: "NonEmptyString",
|
|
3467
|
+
# evaluation_periods: 1,
|
|
3468
|
+
# extended_statistic: "NonEmptyString",
|
|
3469
|
+
# insufficient_data_actions: ["NonEmptyString"],
|
|
3470
|
+
# metric_name: "NonEmptyString",
|
|
3471
|
+
# namespace: "NonEmptyString",
|
|
3472
|
+
# ok_actions: ["NonEmptyString"],
|
|
3473
|
+
# period: 1,
|
|
3474
|
+
# statistic: "NonEmptyString",
|
|
3475
|
+
# threshold: 1.0,
|
|
3476
|
+
# threshold_metric_id: "NonEmptyString",
|
|
3477
|
+
# treat_missing_data: "NonEmptyString",
|
|
3478
|
+
# unit: "NonEmptyString",
|
|
3479
|
+
# },
|
|
3480
|
+
# aws_ec2_vpc_peering_connection: {
|
|
3481
|
+
# accepter_vpc_info: {
|
|
3482
|
+
# cidr_block: "NonEmptyString",
|
|
3483
|
+
# cidr_block_set: [
|
|
3484
|
+
# {
|
|
3485
|
+
# cidr_block: "NonEmptyString",
|
|
3486
|
+
# },
|
|
3487
|
+
# ],
|
|
3488
|
+
# ipv_6_cidr_block_set: [
|
|
3489
|
+
# {
|
|
3490
|
+
# ipv_6_cidr_block: "NonEmptyString",
|
|
3491
|
+
# },
|
|
3492
|
+
# ],
|
|
3493
|
+
# owner_id: "NonEmptyString",
|
|
3494
|
+
# peering_options: {
|
|
3495
|
+
# allow_dns_resolution_from_remote_vpc: false,
|
|
3496
|
+
# allow_egress_from_local_classic_link_to_remote_vpc: false,
|
|
3497
|
+
# allow_egress_from_local_vpc_to_remote_classic_link: false,
|
|
3498
|
+
# },
|
|
3499
|
+
# region: "NonEmptyString",
|
|
3500
|
+
# vpc_id: "NonEmptyString",
|
|
3501
|
+
# },
|
|
3502
|
+
# expiration_time: "NonEmptyString",
|
|
3503
|
+
# requester_vpc_info: {
|
|
3504
|
+
# cidr_block: "NonEmptyString",
|
|
3505
|
+
# cidr_block_set: [
|
|
3506
|
+
# {
|
|
3507
|
+
# cidr_block: "NonEmptyString",
|
|
3508
|
+
# },
|
|
3509
|
+
# ],
|
|
3510
|
+
# ipv_6_cidr_block_set: [
|
|
3511
|
+
# {
|
|
3512
|
+
# ipv_6_cidr_block: "NonEmptyString",
|
|
3513
|
+
# },
|
|
3514
|
+
# ],
|
|
3515
|
+
# owner_id: "NonEmptyString",
|
|
3516
|
+
# peering_options: {
|
|
3517
|
+
# allow_dns_resolution_from_remote_vpc: false,
|
|
3518
|
+
# allow_egress_from_local_classic_link_to_remote_vpc: false,
|
|
3519
|
+
# allow_egress_from_local_vpc_to_remote_classic_link: false,
|
|
3520
|
+
# },
|
|
3521
|
+
# region: "NonEmptyString",
|
|
3522
|
+
# vpc_id: "NonEmptyString",
|
|
3523
|
+
# },
|
|
3524
|
+
# status: {
|
|
3525
|
+
# code: "NonEmptyString",
|
|
3526
|
+
# message: "NonEmptyString",
|
|
3527
|
+
# },
|
|
3528
|
+
# vpc_peering_connection_id: "NonEmptyString",
|
|
3529
|
+
# },
|
|
3530
|
+
# aws_waf_regional_rule_group: {
|
|
3531
|
+
# metric_name: "NonEmptyString",
|
|
3532
|
+
# name: "NonEmptyString",
|
|
3533
|
+
# rule_group_id: "NonEmptyString",
|
|
3534
|
+
# rules: [
|
|
3535
|
+
# {
|
|
3536
|
+
# action: {
|
|
3537
|
+
# type: "NonEmptyString",
|
|
3538
|
+
# },
|
|
3539
|
+
# priority: 1,
|
|
3540
|
+
# rule_id: "NonEmptyString",
|
|
3541
|
+
# type: "NonEmptyString",
|
|
3542
|
+
# },
|
|
3543
|
+
# ],
|
|
3544
|
+
# },
|
|
3545
|
+
# aws_waf_regional_rule: {
|
|
3546
|
+
# metric_name: "NonEmptyString",
|
|
3547
|
+
# name: "NonEmptyString",
|
|
3548
|
+
# predicate_list: [
|
|
3549
|
+
# {
|
|
3550
|
+
# data_id: "NonEmptyString",
|
|
3551
|
+
# negated: false,
|
|
3552
|
+
# type: "NonEmptyString",
|
|
3553
|
+
# },
|
|
3554
|
+
# ],
|
|
3555
|
+
# rule_id: "NonEmptyString",
|
|
3556
|
+
# },
|
|
3557
|
+
# aws_waf_regional_web_acl: {
|
|
3558
|
+
# default_action: "NonEmptyString",
|
|
3559
|
+
# metric_name: "NonEmptyString",
|
|
3560
|
+
# name: "NonEmptyString",
|
|
3561
|
+
# rules_list: [
|
|
3562
|
+
# {
|
|
3563
|
+
# action: {
|
|
3564
|
+
# type: "NonEmptyString",
|
|
3565
|
+
# },
|
|
3566
|
+
# override_action: {
|
|
3567
|
+
# type: "NonEmptyString",
|
|
3568
|
+
# },
|
|
3569
|
+
# priority: 1,
|
|
3570
|
+
# rule_id: "NonEmptyString",
|
|
3571
|
+
# type: "NonEmptyString",
|
|
3572
|
+
# },
|
|
3573
|
+
# ],
|
|
3574
|
+
# web_acl_id: "NonEmptyString",
|
|
3575
|
+
# },
|
|
3576
|
+
# aws_waf_rule: {
|
|
3577
|
+
# metric_name: "NonEmptyString",
|
|
3578
|
+
# name: "NonEmptyString",
|
|
3579
|
+
# predicate_list: [
|
|
3580
|
+
# {
|
|
3581
|
+
# data_id: "NonEmptyString",
|
|
3582
|
+
# negated: false,
|
|
3583
|
+
# type: "NonEmptyString",
|
|
3584
|
+
# },
|
|
3585
|
+
# ],
|
|
3586
|
+
# rule_id: "NonEmptyString",
|
|
3587
|
+
# },
|
|
3588
|
+
# aws_waf_rule_group: {
|
|
3589
|
+
# metric_name: "NonEmptyString",
|
|
3590
|
+
# name: "NonEmptyString",
|
|
3591
|
+
# rule_group_id: "NonEmptyString",
|
|
3592
|
+
# rules: [
|
|
3593
|
+
# {
|
|
3594
|
+
# action: {
|
|
3595
|
+
# type: "NonEmptyString",
|
|
3596
|
+
# },
|
|
3597
|
+
# priority: 1,
|
|
3598
|
+
# rule_id: "NonEmptyString",
|
|
3599
|
+
# type: "NonEmptyString",
|
|
3600
|
+
# },
|
|
3601
|
+
# ],
|
|
3602
|
+
# },
|
|
3603
|
+
# aws_ecs_task: {
|
|
3604
|
+
# cluster_arn: "NonEmptyString",
|
|
3605
|
+
# task_definition_arn: "NonEmptyString",
|
|
3606
|
+
# version: "NonEmptyString",
|
|
3607
|
+
# created_at: "NonEmptyString",
|
|
3608
|
+
# started_at: "NonEmptyString",
|
|
3609
|
+
# started_by: "NonEmptyString",
|
|
3610
|
+
# group: "NonEmptyString",
|
|
3611
|
+
# volumes: [
|
|
3612
|
+
# {
|
|
3613
|
+
# name: "NonEmptyString",
|
|
3614
|
+
# host: {
|
|
3615
|
+
# source_path: "NonEmptyString",
|
|
3616
|
+
# },
|
|
3617
|
+
# },
|
|
3618
|
+
# ],
|
|
3619
|
+
# containers: [
|
|
3620
|
+
# {
|
|
3621
|
+
# name: "NonEmptyString",
|
|
3622
|
+
# image: "NonEmptyString",
|
|
3623
|
+
# mount_points: [
|
|
3624
|
+
# {
|
|
3625
|
+
# source_volume: "NonEmptyString",
|
|
3626
|
+
# container_path: "NonEmptyString",
|
|
3627
|
+
# },
|
|
3628
|
+
# ],
|
|
3629
|
+
# privileged: false,
|
|
3630
|
+
# },
|
|
3631
|
+
# ],
|
|
3632
|
+
# },
|
|
3295
3633
|
# },
|
|
3296
3634
|
# },
|
|
3297
3635
|
# ],
|
|
@@ -3736,9 +4074,11 @@ module Aws::SecurityHub
|
|
|
3736
4074
|
# aggregation Region.
|
|
3737
4075
|
#
|
|
3738
4076
|
# For more details about cross-Region replication, see [Configuring
|
|
3739
|
-
# finding
|
|
3740
|
-
#
|
|
3741
|
-
#
|
|
4077
|
+
# finding aggregation][1] in the *Security Hub User Guide*.
|
|
4078
|
+
#
|
|
4079
|
+
#
|
|
4080
|
+
#
|
|
4081
|
+
# [1]: https://docs.aws.amazon.com/securityhub/latest/userguide/finding-aggregation.html
|
|
3742
4082
|
#
|
|
3743
4083
|
# @option params [required, String] :region_linking_mode
|
|
3744
4084
|
# Indicates whether to aggregate findings from all of the available
|
|
@@ -4838,11 +5178,13 @@ module Aws::SecurityHub
|
|
|
4838
5178
|
#
|
|
4839
5179
|
# * {Types::DescribeOrganizationConfigurationResponse#auto_enable #auto_enable} => Boolean
|
|
4840
5180
|
# * {Types::DescribeOrganizationConfigurationResponse#member_account_limit_reached #member_account_limit_reached} => Boolean
|
|
5181
|
+
# * {Types::DescribeOrganizationConfigurationResponse#auto_enable_standards #auto_enable_standards} => String
|
|
4841
5182
|
#
|
|
4842
5183
|
# @example Response structure
|
|
4843
5184
|
#
|
|
4844
5185
|
# resp.auto_enable #=> Boolean
|
|
4845
5186
|
# resp.member_account_limit_reached #=> Boolean
|
|
5187
|
+
# resp.auto_enable_standards #=> String, one of "NONE", "DEFAULT"
|
|
4846
5188
|
#
|
|
4847
5189
|
# @see http://docs.aws.amazon.com/goto/WebAPI/securityhub-2018-10-26/DescribeOrganizationConfiguration AWS API Documentation
|
|
4848
5190
|
#
|
|
@@ -6164,6 +6506,15 @@ module Aws::SecurityHub
|
|
|
6164
6506
|
# resp.findings[0].process.parent_pid #=> Integer
|
|
6165
6507
|
# resp.findings[0].process.launched_at #=> String
|
|
6166
6508
|
# resp.findings[0].process.terminated_at #=> String
|
|
6509
|
+
# resp.findings[0].threats #=> Array
|
|
6510
|
+
# resp.findings[0].threats[0].name #=> String
|
|
6511
|
+
# resp.findings[0].threats[0].severity #=> String
|
|
6512
|
+
# resp.findings[0].threats[0].item_count #=> Integer
|
|
6513
|
+
# resp.findings[0].threats[0].file_paths #=> Array
|
|
6514
|
+
# resp.findings[0].threats[0].file_paths[0].file_path #=> String
|
|
6515
|
+
# resp.findings[0].threats[0].file_paths[0].file_name #=> String
|
|
6516
|
+
# resp.findings[0].threats[0].file_paths[0].resource_id #=> String
|
|
6517
|
+
# resp.findings[0].threats[0].file_paths[0].hash #=> String
|
|
6167
6518
|
# resp.findings[0].threat_intel_indicators #=> Array
|
|
6168
6519
|
# resp.findings[0].threat_intel_indicators[0].type #=> String, one of "DOMAIN", "EMAIL_ADDRESS", "HASH_MD5", "HASH_SHA1", "HASH_SHA256", "HASH_SHA512", "IPV4_ADDRESS", "IPV6_ADDRESS", "MUTEX", "PROCESS", "URL"
|
|
6169
6520
|
# resp.findings[0].threat_intel_indicators[0].value #=> String
|
|
@@ -6332,6 +6683,14 @@ module Aws::SecurityHub
|
|
|
6332
6683
|
# resp.findings[0].resources[0].details.aws_cloud_front_distribution.origins.items[0].id #=> String
|
|
6333
6684
|
# resp.findings[0].resources[0].details.aws_cloud_front_distribution.origins.items[0].origin_path #=> String
|
|
6334
6685
|
# resp.findings[0].resources[0].details.aws_cloud_front_distribution.origins.items[0].s3_origin_config.origin_access_identity #=> String
|
|
6686
|
+
# resp.findings[0].resources[0].details.aws_cloud_front_distribution.origins.items[0].custom_origin_config.http_port #=> Integer
|
|
6687
|
+
# resp.findings[0].resources[0].details.aws_cloud_front_distribution.origins.items[0].custom_origin_config.https_port #=> Integer
|
|
6688
|
+
# resp.findings[0].resources[0].details.aws_cloud_front_distribution.origins.items[0].custom_origin_config.origin_keepalive_timeout #=> Integer
|
|
6689
|
+
# resp.findings[0].resources[0].details.aws_cloud_front_distribution.origins.items[0].custom_origin_config.origin_protocol_policy #=> String
|
|
6690
|
+
# resp.findings[0].resources[0].details.aws_cloud_front_distribution.origins.items[0].custom_origin_config.origin_read_timeout #=> Integer
|
|
6691
|
+
# resp.findings[0].resources[0].details.aws_cloud_front_distribution.origins.items[0].custom_origin_config.origin_ssl_protocols.items #=> Array
|
|
6692
|
+
# resp.findings[0].resources[0].details.aws_cloud_front_distribution.origins.items[0].custom_origin_config.origin_ssl_protocols.items[0] #=> String
|
|
6693
|
+
# resp.findings[0].resources[0].details.aws_cloud_front_distribution.origins.items[0].custom_origin_config.origin_ssl_protocols.quantity #=> Integer
|
|
6335
6694
|
# resp.findings[0].resources[0].details.aws_cloud_front_distribution.origin_groups.items #=> Array
|
|
6336
6695
|
# resp.findings[0].resources[0].details.aws_cloud_front_distribution.origin_groups.items[0].failover_criteria.status_codes.items #=> Array
|
|
6337
6696
|
# resp.findings[0].resources[0].details.aws_cloud_front_distribution.origin_groups.items[0].failover_criteria.status_codes.items[0] #=> Integer
|
|
@@ -6358,6 +6717,12 @@ module Aws::SecurityHub
|
|
|
6358
6717
|
# resp.findings[0].resources[0].details.aws_ec2_instance.launched_at #=> String
|
|
6359
6718
|
# resp.findings[0].resources[0].details.aws_ec2_instance.network_interfaces #=> Array
|
|
6360
6719
|
# resp.findings[0].resources[0].details.aws_ec2_instance.network_interfaces[0].network_interface_id #=> String
|
|
6720
|
+
# resp.findings[0].resources[0].details.aws_ec2_instance.virtualization_type #=> String
|
|
6721
|
+
# resp.findings[0].resources[0].details.aws_ec2_instance.metadata_options.http_endpoint #=> String
|
|
6722
|
+
# resp.findings[0].resources[0].details.aws_ec2_instance.metadata_options.http_protocol_ipv_6 #=> String
|
|
6723
|
+
# resp.findings[0].resources[0].details.aws_ec2_instance.metadata_options.http_put_response_hop_limit #=> Integer
|
|
6724
|
+
# resp.findings[0].resources[0].details.aws_ec2_instance.metadata_options.http_tokens #=> String
|
|
6725
|
+
# resp.findings[0].resources[0].details.aws_ec2_instance.metadata_options.instance_metadata_tags #=> String
|
|
6361
6726
|
# resp.findings[0].resources[0].details.aws_ec2_network_interface.attachment.attach_time #=> String
|
|
6362
6727
|
# resp.findings[0].resources[0].details.aws_ec2_network_interface.attachment.attachment_id #=> String
|
|
6363
6728
|
# resp.findings[0].resources[0].details.aws_ec2_network_interface.attachment.delete_on_termination #=> Boolean
|
|
@@ -6416,6 +6781,7 @@ module Aws::SecurityHub
|
|
|
6416
6781
|
# resp.findings[0].resources[0].details.aws_ec2_security_group.ip_permissions_egress[0].prefix_list_ids #=> Array
|
|
6417
6782
|
# resp.findings[0].resources[0].details.aws_ec2_security_group.ip_permissions_egress[0].prefix_list_ids[0].prefix_list_id #=> String
|
|
6418
6783
|
# resp.findings[0].resources[0].details.aws_ec2_volume.create_time #=> String
|
|
6784
|
+
# resp.findings[0].resources[0].details.aws_ec2_volume.device_name #=> String
|
|
6419
6785
|
# resp.findings[0].resources[0].details.aws_ec2_volume.encrypted #=> Boolean
|
|
6420
6786
|
# resp.findings[0].resources[0].details.aws_ec2_volume.size #=> Integer
|
|
6421
6787
|
# resp.findings[0].resources[0].details.aws_ec2_volume.snapshot_id #=> String
|
|
@@ -6426,6 +6792,9 @@ module Aws::SecurityHub
|
|
|
6426
6792
|
# resp.findings[0].resources[0].details.aws_ec2_volume.attachments[0].delete_on_termination #=> Boolean
|
|
6427
6793
|
# resp.findings[0].resources[0].details.aws_ec2_volume.attachments[0].instance_id #=> String
|
|
6428
6794
|
# resp.findings[0].resources[0].details.aws_ec2_volume.attachments[0].status #=> String
|
|
6795
|
+
# resp.findings[0].resources[0].details.aws_ec2_volume.volume_id #=> String
|
|
6796
|
+
# resp.findings[0].resources[0].details.aws_ec2_volume.volume_type #=> String
|
|
6797
|
+
# resp.findings[0].resources[0].details.aws_ec2_volume.volume_scan_status #=> String
|
|
6429
6798
|
# resp.findings[0].resources[0].details.aws_ec2_vpc.cidr_block_association_set #=> Array
|
|
6430
6799
|
# resp.findings[0].resources[0].details.aws_ec2_vpc.cidr_block_association_set[0].association_id #=> String
|
|
6431
6800
|
# resp.findings[0].resources[0].details.aws_ec2_vpc.cidr_block_association_set[0].cidr_block #=> String
|
|
@@ -7257,6 +7626,13 @@ module Aws::SecurityHub
|
|
|
7257
7626
|
# resp.findings[0].resources[0].details.aws_sns_topic.subscription[0].protocol #=> String
|
|
7258
7627
|
# resp.findings[0].resources[0].details.aws_sns_topic.topic_name #=> String
|
|
7259
7628
|
# resp.findings[0].resources[0].details.aws_sns_topic.owner #=> String
|
|
7629
|
+
# resp.findings[0].resources[0].details.aws_sns_topic.sqs_success_feedback_role_arn #=> String
|
|
7630
|
+
# resp.findings[0].resources[0].details.aws_sns_topic.sqs_failure_feedback_role_arn #=> String
|
|
7631
|
+
# resp.findings[0].resources[0].details.aws_sns_topic.application_success_feedback_role_arn #=> String
|
|
7632
|
+
# resp.findings[0].resources[0].details.aws_sns_topic.firehose_success_feedback_role_arn #=> String
|
|
7633
|
+
# resp.findings[0].resources[0].details.aws_sns_topic.firehose_failure_feedback_role_arn #=> String
|
|
7634
|
+
# resp.findings[0].resources[0].details.aws_sns_topic.http_success_feedback_role_arn #=> String
|
|
7635
|
+
# resp.findings[0].resources[0].details.aws_sns_topic.http_failure_feedback_role_arn #=> String
|
|
7260
7636
|
# resp.findings[0].resources[0].details.aws_sqs_queue.kms_data_key_reuse_period_seconds #=> Integer
|
|
7261
7637
|
# resp.findings[0].resources[0].details.aws_sqs_queue.kms_master_key_id #=> String
|
|
7262
7638
|
# resp.findings[0].resources[0].details.aws_sqs_queue.queue_name #=> String
|
|
@@ -7375,6 +7751,8 @@ module Aws::SecurityHub
|
|
|
7375
7751
|
# resp.findings[0].resources[0].details.aws_rds_db_cluster.db_cluster_members[0].db_instance_identifier #=> String
|
|
7376
7752
|
# resp.findings[0].resources[0].details.aws_rds_db_cluster.db_cluster_members[0].db_cluster_parameter_group_status #=> String
|
|
7377
7753
|
# resp.findings[0].resources[0].details.aws_rds_db_cluster.iam_database_authentication_enabled #=> Boolean
|
|
7754
|
+
# resp.findings[0].resources[0].details.aws_ecs_cluster.cluster_arn #=> String
|
|
7755
|
+
# resp.findings[0].resources[0].details.aws_ecs_cluster.active_services_count #=> Integer
|
|
7378
7756
|
# resp.findings[0].resources[0].details.aws_ecs_cluster.capacity_providers #=> Array
|
|
7379
7757
|
# resp.findings[0].resources[0].details.aws_ecs_cluster.capacity_providers[0] #=> String
|
|
7380
7758
|
# resp.findings[0].resources[0].details.aws_ecs_cluster.cluster_settings #=> Array
|
|
@@ -7391,6 +7769,16 @@ module Aws::SecurityHub
|
|
|
7391
7769
|
# resp.findings[0].resources[0].details.aws_ecs_cluster.default_capacity_provider_strategy[0].base #=> Integer
|
|
7392
7770
|
# resp.findings[0].resources[0].details.aws_ecs_cluster.default_capacity_provider_strategy[0].capacity_provider #=> String
|
|
7393
7771
|
# resp.findings[0].resources[0].details.aws_ecs_cluster.default_capacity_provider_strategy[0].weight #=> Integer
|
|
7772
|
+
# resp.findings[0].resources[0].details.aws_ecs_cluster.cluster_name #=> String
|
|
7773
|
+
# resp.findings[0].resources[0].details.aws_ecs_cluster.registered_container_instances_count #=> Integer
|
|
7774
|
+
# resp.findings[0].resources[0].details.aws_ecs_cluster.running_tasks_count #=> Integer
|
|
7775
|
+
# resp.findings[0].resources[0].details.aws_ecs_cluster.status #=> String
|
|
7776
|
+
# resp.findings[0].resources[0].details.aws_ecs_container.name #=> String
|
|
7777
|
+
# resp.findings[0].resources[0].details.aws_ecs_container.image #=> String
|
|
7778
|
+
# resp.findings[0].resources[0].details.aws_ecs_container.mount_points #=> Array
|
|
7779
|
+
# resp.findings[0].resources[0].details.aws_ecs_container.mount_points[0].source_volume #=> String
|
|
7780
|
+
# resp.findings[0].resources[0].details.aws_ecs_container.mount_points[0].container_path #=> String
|
|
7781
|
+
# resp.findings[0].resources[0].details.aws_ecs_container.privileged #=> Boolean
|
|
7394
7782
|
# resp.findings[0].resources[0].details.aws_ecs_task_definition.container_definitions #=> Array
|
|
7395
7783
|
# resp.findings[0].resources[0].details.aws_ecs_task_definition.container_definitions[0].command #=> Array
|
|
7396
7784
|
# resp.findings[0].resources[0].details.aws_ecs_task_definition.container_definitions[0].command[0] #=> String
|
|
@@ -7529,10 +7917,15 @@ module Aws::SecurityHub
|
|
|
7529
7917
|
# resp.findings[0].resources[0].details.aws_ecs_task_definition.volumes[0].efs_volume_configuration.transit_encryption_port #=> Integer
|
|
7530
7918
|
# resp.findings[0].resources[0].details.aws_ecs_task_definition.volumes[0].host.source_path #=> String
|
|
7531
7919
|
# resp.findings[0].resources[0].details.aws_ecs_task_definition.volumes[0].name #=> String
|
|
7920
|
+
# resp.findings[0].resources[0].details.container.container_runtime #=> String
|
|
7532
7921
|
# resp.findings[0].resources[0].details.container.name #=> String
|
|
7533
7922
|
# resp.findings[0].resources[0].details.container.image_id #=> String
|
|
7534
7923
|
# resp.findings[0].resources[0].details.container.image_name #=> String
|
|
7535
7924
|
# resp.findings[0].resources[0].details.container.launched_at #=> String
|
|
7925
|
+
# resp.findings[0].resources[0].details.container.volume_mounts #=> Array
|
|
7926
|
+
# resp.findings[0].resources[0].details.container.volume_mounts[0].name #=> String
|
|
7927
|
+
# resp.findings[0].resources[0].details.container.volume_mounts[0].mount_path #=> String
|
|
7928
|
+
# resp.findings[0].resources[0].details.container.privileged #=> Boolean
|
|
7536
7929
|
# resp.findings[0].resources[0].details.other #=> Hash
|
|
7537
7930
|
# resp.findings[0].resources[0].details.other["NonEmptyString"] #=> String
|
|
7538
7931
|
# resp.findings[0].resources[0].details.aws_rds_event_subscription.cust_subscription_id #=> String
|
|
@@ -7717,6 +8110,11 @@ module Aws::SecurityHub
|
|
|
7717
8110
|
# resp.findings[0].resources[0].details.aws_open_search_service_domain.log_publishing_options.audit_logs.enabled #=> Boolean
|
|
7718
8111
|
# resp.findings[0].resources[0].details.aws_open_search_service_domain.domain_endpoints #=> Hash
|
|
7719
8112
|
# resp.findings[0].resources[0].details.aws_open_search_service_domain.domain_endpoints["NonEmptyString"] #=> String
|
|
8113
|
+
# resp.findings[0].resources[0].details.aws_open_search_service_domain.advanced_security_options.enabled #=> Boolean
|
|
8114
|
+
# resp.findings[0].resources[0].details.aws_open_search_service_domain.advanced_security_options.internal_user_database_enabled #=> Boolean
|
|
8115
|
+
# resp.findings[0].resources[0].details.aws_open_search_service_domain.advanced_security_options.master_user_options.master_user_arn #=> String
|
|
8116
|
+
# resp.findings[0].resources[0].details.aws_open_search_service_domain.advanced_security_options.master_user_options.master_user_name #=> String
|
|
8117
|
+
# resp.findings[0].resources[0].details.aws_open_search_service_domain.advanced_security_options.master_user_options.master_user_password #=> String
|
|
7720
8118
|
# resp.findings[0].resources[0].details.aws_ec2_vpc_endpoint_service.acceptance_required #=> Boolean
|
|
7721
8119
|
# resp.findings[0].resources[0].details.aws_ec2_vpc_endpoint_service.availability_zones #=> Array
|
|
7722
8120
|
# resp.findings[0].resources[0].details.aws_ec2_vpc_endpoint_service.availability_zones[0] #=> String
|
|
@@ -7870,6 +8268,167 @@ module Aws::SecurityHub
|
|
|
7870
8268
|
# resp.findings[0].resources[0].details.aws_rds_db_security_group.ip_ranges[0].status #=> String
|
|
7871
8269
|
# resp.findings[0].resources[0].details.aws_rds_db_security_group.owner_id #=> String
|
|
7872
8270
|
# resp.findings[0].resources[0].details.aws_rds_db_security_group.vpc_id #=> String
|
|
8271
|
+
# resp.findings[0].resources[0].details.aws_kinesis_stream.name #=> String
|
|
8272
|
+
# resp.findings[0].resources[0].details.aws_kinesis_stream.arn #=> String
|
|
8273
|
+
# resp.findings[0].resources[0].details.aws_kinesis_stream.stream_encryption.encryption_type #=> String
|
|
8274
|
+
# resp.findings[0].resources[0].details.aws_kinesis_stream.stream_encryption.key_id #=> String
|
|
8275
|
+
# resp.findings[0].resources[0].details.aws_kinesis_stream.shard_count #=> Integer
|
|
8276
|
+
# resp.findings[0].resources[0].details.aws_kinesis_stream.retention_period_hours #=> Integer
|
|
8277
|
+
# resp.findings[0].resources[0].details.aws_ec2_transit_gateway.id #=> String
|
|
8278
|
+
# resp.findings[0].resources[0].details.aws_ec2_transit_gateway.description #=> String
|
|
8279
|
+
# resp.findings[0].resources[0].details.aws_ec2_transit_gateway.default_route_table_propagation #=> String
|
|
8280
|
+
# resp.findings[0].resources[0].details.aws_ec2_transit_gateway.auto_accept_shared_attachments #=> String
|
|
8281
|
+
# resp.findings[0].resources[0].details.aws_ec2_transit_gateway.default_route_table_association #=> String
|
|
8282
|
+
# resp.findings[0].resources[0].details.aws_ec2_transit_gateway.transit_gateway_cidr_blocks #=> Array
|
|
8283
|
+
# resp.findings[0].resources[0].details.aws_ec2_transit_gateway.transit_gateway_cidr_blocks[0] #=> String
|
|
8284
|
+
# resp.findings[0].resources[0].details.aws_ec2_transit_gateway.association_default_route_table_id #=> String
|
|
8285
|
+
# resp.findings[0].resources[0].details.aws_ec2_transit_gateway.propagation_default_route_table_id #=> String
|
|
8286
|
+
# resp.findings[0].resources[0].details.aws_ec2_transit_gateway.vpn_ecmp_support #=> String
|
|
8287
|
+
# resp.findings[0].resources[0].details.aws_ec2_transit_gateway.dns_support #=> String
|
|
8288
|
+
# resp.findings[0].resources[0].details.aws_ec2_transit_gateway.multicast_support #=> String
|
|
8289
|
+
# resp.findings[0].resources[0].details.aws_ec2_transit_gateway.amazon_side_asn #=> Integer
|
|
8290
|
+
# resp.findings[0].resources[0].details.aws_efs_access_point.access_point_id #=> String
|
|
8291
|
+
# resp.findings[0].resources[0].details.aws_efs_access_point.arn #=> String
|
|
8292
|
+
# resp.findings[0].resources[0].details.aws_efs_access_point.client_token #=> String
|
|
8293
|
+
# resp.findings[0].resources[0].details.aws_efs_access_point.file_system_id #=> String
|
|
8294
|
+
# resp.findings[0].resources[0].details.aws_efs_access_point.posix_user.gid #=> String
|
|
8295
|
+
# resp.findings[0].resources[0].details.aws_efs_access_point.posix_user.secondary_gids #=> Array
|
|
8296
|
+
# resp.findings[0].resources[0].details.aws_efs_access_point.posix_user.secondary_gids[0] #=> String
|
|
8297
|
+
# resp.findings[0].resources[0].details.aws_efs_access_point.posix_user.uid #=> String
|
|
8298
|
+
# resp.findings[0].resources[0].details.aws_efs_access_point.root_directory.creation_info.owner_gid #=> String
|
|
8299
|
+
# resp.findings[0].resources[0].details.aws_efs_access_point.root_directory.creation_info.owner_uid #=> String
|
|
8300
|
+
# resp.findings[0].resources[0].details.aws_efs_access_point.root_directory.creation_info.permissions #=> String
|
|
8301
|
+
# resp.findings[0].resources[0].details.aws_efs_access_point.root_directory.path #=> String
|
|
8302
|
+
# resp.findings[0].resources[0].details.aws_cloud_formation_stack.capabilities #=> Array
|
|
8303
|
+
# resp.findings[0].resources[0].details.aws_cloud_formation_stack.capabilities[0] #=> String
|
|
8304
|
+
# resp.findings[0].resources[0].details.aws_cloud_formation_stack.creation_time #=> String
|
|
8305
|
+
# resp.findings[0].resources[0].details.aws_cloud_formation_stack.description #=> String
|
|
8306
|
+
# resp.findings[0].resources[0].details.aws_cloud_formation_stack.disable_rollback #=> Boolean
|
|
8307
|
+
# resp.findings[0].resources[0].details.aws_cloud_formation_stack.drift_information.stack_drift_status #=> String
|
|
8308
|
+
# resp.findings[0].resources[0].details.aws_cloud_formation_stack.enable_termination_protection #=> Boolean
|
|
8309
|
+
# resp.findings[0].resources[0].details.aws_cloud_formation_stack.last_updated_time #=> String
|
|
8310
|
+
# resp.findings[0].resources[0].details.aws_cloud_formation_stack.notification_arns #=> Array
|
|
8311
|
+
# resp.findings[0].resources[0].details.aws_cloud_formation_stack.notification_arns[0] #=> String
|
|
8312
|
+
# resp.findings[0].resources[0].details.aws_cloud_formation_stack.outputs #=> Array
|
|
8313
|
+
# resp.findings[0].resources[0].details.aws_cloud_formation_stack.outputs[0].description #=> String
|
|
8314
|
+
# resp.findings[0].resources[0].details.aws_cloud_formation_stack.outputs[0].output_key #=> String
|
|
8315
|
+
# resp.findings[0].resources[0].details.aws_cloud_formation_stack.outputs[0].output_value #=> String
|
|
8316
|
+
# resp.findings[0].resources[0].details.aws_cloud_formation_stack.role_arn #=> String
|
|
8317
|
+
# resp.findings[0].resources[0].details.aws_cloud_formation_stack.stack_id #=> String
|
|
8318
|
+
# resp.findings[0].resources[0].details.aws_cloud_formation_stack.stack_name #=> String
|
|
8319
|
+
# resp.findings[0].resources[0].details.aws_cloud_formation_stack.stack_status #=> String
|
|
8320
|
+
# resp.findings[0].resources[0].details.aws_cloud_formation_stack.stack_status_reason #=> String
|
|
8321
|
+
# resp.findings[0].resources[0].details.aws_cloud_formation_stack.timeout_in_minutes #=> Integer
|
|
8322
|
+
# resp.findings[0].resources[0].details.aws_cloud_watch_alarm.actions_enabled #=> Boolean
|
|
8323
|
+
# resp.findings[0].resources[0].details.aws_cloud_watch_alarm.alarm_actions #=> Array
|
|
8324
|
+
# resp.findings[0].resources[0].details.aws_cloud_watch_alarm.alarm_actions[0] #=> String
|
|
8325
|
+
# resp.findings[0].resources[0].details.aws_cloud_watch_alarm.alarm_arn #=> String
|
|
8326
|
+
# resp.findings[0].resources[0].details.aws_cloud_watch_alarm.alarm_configuration_updated_timestamp #=> String
|
|
8327
|
+
# resp.findings[0].resources[0].details.aws_cloud_watch_alarm.alarm_description #=> String
|
|
8328
|
+
# resp.findings[0].resources[0].details.aws_cloud_watch_alarm.alarm_name #=> String
|
|
8329
|
+
# resp.findings[0].resources[0].details.aws_cloud_watch_alarm.comparison_operator #=> String
|
|
8330
|
+
# resp.findings[0].resources[0].details.aws_cloud_watch_alarm.datapoints_to_alarm #=> Integer
|
|
8331
|
+
# resp.findings[0].resources[0].details.aws_cloud_watch_alarm.dimensions #=> Array
|
|
8332
|
+
# resp.findings[0].resources[0].details.aws_cloud_watch_alarm.dimensions[0].name #=> String
|
|
8333
|
+
# resp.findings[0].resources[0].details.aws_cloud_watch_alarm.dimensions[0].value #=> String
|
|
8334
|
+
# resp.findings[0].resources[0].details.aws_cloud_watch_alarm.evaluate_low_sample_count_percentile #=> String
|
|
8335
|
+
# resp.findings[0].resources[0].details.aws_cloud_watch_alarm.evaluation_periods #=> Integer
|
|
8336
|
+
# resp.findings[0].resources[0].details.aws_cloud_watch_alarm.extended_statistic #=> String
|
|
8337
|
+
# resp.findings[0].resources[0].details.aws_cloud_watch_alarm.insufficient_data_actions #=> Array
|
|
8338
|
+
# resp.findings[0].resources[0].details.aws_cloud_watch_alarm.insufficient_data_actions[0] #=> String
|
|
8339
|
+
# resp.findings[0].resources[0].details.aws_cloud_watch_alarm.metric_name #=> String
|
|
8340
|
+
# resp.findings[0].resources[0].details.aws_cloud_watch_alarm.namespace #=> String
|
|
8341
|
+
# resp.findings[0].resources[0].details.aws_cloud_watch_alarm.ok_actions #=> Array
|
|
8342
|
+
# resp.findings[0].resources[0].details.aws_cloud_watch_alarm.ok_actions[0] #=> String
|
|
8343
|
+
# resp.findings[0].resources[0].details.aws_cloud_watch_alarm.period #=> Integer
|
|
8344
|
+
# resp.findings[0].resources[0].details.aws_cloud_watch_alarm.statistic #=> String
|
|
8345
|
+
# resp.findings[0].resources[0].details.aws_cloud_watch_alarm.threshold #=> Float
|
|
8346
|
+
# resp.findings[0].resources[0].details.aws_cloud_watch_alarm.threshold_metric_id #=> String
|
|
8347
|
+
# resp.findings[0].resources[0].details.aws_cloud_watch_alarm.treat_missing_data #=> String
|
|
8348
|
+
# resp.findings[0].resources[0].details.aws_cloud_watch_alarm.unit #=> String
|
|
8349
|
+
# resp.findings[0].resources[0].details.aws_ec2_vpc_peering_connection.accepter_vpc_info.cidr_block #=> String
|
|
8350
|
+
# resp.findings[0].resources[0].details.aws_ec2_vpc_peering_connection.accepter_vpc_info.cidr_block_set #=> Array
|
|
8351
|
+
# resp.findings[0].resources[0].details.aws_ec2_vpc_peering_connection.accepter_vpc_info.cidr_block_set[0].cidr_block #=> String
|
|
8352
|
+
# resp.findings[0].resources[0].details.aws_ec2_vpc_peering_connection.accepter_vpc_info.ipv_6_cidr_block_set #=> Array
|
|
8353
|
+
# resp.findings[0].resources[0].details.aws_ec2_vpc_peering_connection.accepter_vpc_info.ipv_6_cidr_block_set[0].ipv_6_cidr_block #=> String
|
|
8354
|
+
# resp.findings[0].resources[0].details.aws_ec2_vpc_peering_connection.accepter_vpc_info.owner_id #=> String
|
|
8355
|
+
# resp.findings[0].resources[0].details.aws_ec2_vpc_peering_connection.accepter_vpc_info.peering_options.allow_dns_resolution_from_remote_vpc #=> Boolean
|
|
8356
|
+
# resp.findings[0].resources[0].details.aws_ec2_vpc_peering_connection.accepter_vpc_info.peering_options.allow_egress_from_local_classic_link_to_remote_vpc #=> Boolean
|
|
8357
|
+
# resp.findings[0].resources[0].details.aws_ec2_vpc_peering_connection.accepter_vpc_info.peering_options.allow_egress_from_local_vpc_to_remote_classic_link #=> Boolean
|
|
8358
|
+
# resp.findings[0].resources[0].details.aws_ec2_vpc_peering_connection.accepter_vpc_info.region #=> String
|
|
8359
|
+
# resp.findings[0].resources[0].details.aws_ec2_vpc_peering_connection.accepter_vpc_info.vpc_id #=> String
|
|
8360
|
+
# resp.findings[0].resources[0].details.aws_ec2_vpc_peering_connection.expiration_time #=> String
|
|
8361
|
+
# resp.findings[0].resources[0].details.aws_ec2_vpc_peering_connection.requester_vpc_info.cidr_block #=> String
|
|
8362
|
+
# resp.findings[0].resources[0].details.aws_ec2_vpc_peering_connection.requester_vpc_info.cidr_block_set #=> Array
|
|
8363
|
+
# resp.findings[0].resources[0].details.aws_ec2_vpc_peering_connection.requester_vpc_info.cidr_block_set[0].cidr_block #=> String
|
|
8364
|
+
# resp.findings[0].resources[0].details.aws_ec2_vpc_peering_connection.requester_vpc_info.ipv_6_cidr_block_set #=> Array
|
|
8365
|
+
# resp.findings[0].resources[0].details.aws_ec2_vpc_peering_connection.requester_vpc_info.ipv_6_cidr_block_set[0].ipv_6_cidr_block #=> String
|
|
8366
|
+
# resp.findings[0].resources[0].details.aws_ec2_vpc_peering_connection.requester_vpc_info.owner_id #=> String
|
|
8367
|
+
# resp.findings[0].resources[0].details.aws_ec2_vpc_peering_connection.requester_vpc_info.peering_options.allow_dns_resolution_from_remote_vpc #=> Boolean
|
|
8368
|
+
# resp.findings[0].resources[0].details.aws_ec2_vpc_peering_connection.requester_vpc_info.peering_options.allow_egress_from_local_classic_link_to_remote_vpc #=> Boolean
|
|
8369
|
+
# resp.findings[0].resources[0].details.aws_ec2_vpc_peering_connection.requester_vpc_info.peering_options.allow_egress_from_local_vpc_to_remote_classic_link #=> Boolean
|
|
8370
|
+
# resp.findings[0].resources[0].details.aws_ec2_vpc_peering_connection.requester_vpc_info.region #=> String
|
|
8371
|
+
# resp.findings[0].resources[0].details.aws_ec2_vpc_peering_connection.requester_vpc_info.vpc_id #=> String
|
|
8372
|
+
# resp.findings[0].resources[0].details.aws_ec2_vpc_peering_connection.status.code #=> String
|
|
8373
|
+
# resp.findings[0].resources[0].details.aws_ec2_vpc_peering_connection.status.message #=> String
|
|
8374
|
+
# resp.findings[0].resources[0].details.aws_ec2_vpc_peering_connection.vpc_peering_connection_id #=> String
|
|
8375
|
+
# resp.findings[0].resources[0].details.aws_waf_regional_rule_group.metric_name #=> String
|
|
8376
|
+
# resp.findings[0].resources[0].details.aws_waf_regional_rule_group.name #=> String
|
|
8377
|
+
# resp.findings[0].resources[0].details.aws_waf_regional_rule_group.rule_group_id #=> String
|
|
8378
|
+
# resp.findings[0].resources[0].details.aws_waf_regional_rule_group.rules #=> Array
|
|
8379
|
+
# resp.findings[0].resources[0].details.aws_waf_regional_rule_group.rules[0].action.type #=> String
|
|
8380
|
+
# resp.findings[0].resources[0].details.aws_waf_regional_rule_group.rules[0].priority #=> Integer
|
|
8381
|
+
# resp.findings[0].resources[0].details.aws_waf_regional_rule_group.rules[0].rule_id #=> String
|
|
8382
|
+
# resp.findings[0].resources[0].details.aws_waf_regional_rule_group.rules[0].type #=> String
|
|
8383
|
+
# resp.findings[0].resources[0].details.aws_waf_regional_rule.metric_name #=> String
|
|
8384
|
+
# resp.findings[0].resources[0].details.aws_waf_regional_rule.name #=> String
|
|
8385
|
+
# resp.findings[0].resources[0].details.aws_waf_regional_rule.predicate_list #=> Array
|
|
8386
|
+
# resp.findings[0].resources[0].details.aws_waf_regional_rule.predicate_list[0].data_id #=> String
|
|
8387
|
+
# resp.findings[0].resources[0].details.aws_waf_regional_rule.predicate_list[0].negated #=> Boolean
|
|
8388
|
+
# resp.findings[0].resources[0].details.aws_waf_regional_rule.predicate_list[0].type #=> String
|
|
8389
|
+
# resp.findings[0].resources[0].details.aws_waf_regional_rule.rule_id #=> String
|
|
8390
|
+
# resp.findings[0].resources[0].details.aws_waf_regional_web_acl.default_action #=> String
|
|
8391
|
+
# resp.findings[0].resources[0].details.aws_waf_regional_web_acl.metric_name #=> String
|
|
8392
|
+
# resp.findings[0].resources[0].details.aws_waf_regional_web_acl.name #=> String
|
|
8393
|
+
# resp.findings[0].resources[0].details.aws_waf_regional_web_acl.rules_list #=> Array
|
|
8394
|
+
# resp.findings[0].resources[0].details.aws_waf_regional_web_acl.rules_list[0].action.type #=> String
|
|
8395
|
+
# resp.findings[0].resources[0].details.aws_waf_regional_web_acl.rules_list[0].override_action.type #=> String
|
|
8396
|
+
# resp.findings[0].resources[0].details.aws_waf_regional_web_acl.rules_list[0].priority #=> Integer
|
|
8397
|
+
# resp.findings[0].resources[0].details.aws_waf_regional_web_acl.rules_list[0].rule_id #=> String
|
|
8398
|
+
# resp.findings[0].resources[0].details.aws_waf_regional_web_acl.rules_list[0].type #=> String
|
|
8399
|
+
# resp.findings[0].resources[0].details.aws_waf_regional_web_acl.web_acl_id #=> String
|
|
8400
|
+
# resp.findings[0].resources[0].details.aws_waf_rule.metric_name #=> String
|
|
8401
|
+
# resp.findings[0].resources[0].details.aws_waf_rule.name #=> String
|
|
8402
|
+
# resp.findings[0].resources[0].details.aws_waf_rule.predicate_list #=> Array
|
|
8403
|
+
# resp.findings[0].resources[0].details.aws_waf_rule.predicate_list[0].data_id #=> String
|
|
8404
|
+
# resp.findings[0].resources[0].details.aws_waf_rule.predicate_list[0].negated #=> Boolean
|
|
8405
|
+
# resp.findings[0].resources[0].details.aws_waf_rule.predicate_list[0].type #=> String
|
|
8406
|
+
# resp.findings[0].resources[0].details.aws_waf_rule.rule_id #=> String
|
|
8407
|
+
# resp.findings[0].resources[0].details.aws_waf_rule_group.metric_name #=> String
|
|
8408
|
+
# resp.findings[0].resources[0].details.aws_waf_rule_group.name #=> String
|
|
8409
|
+
# resp.findings[0].resources[0].details.aws_waf_rule_group.rule_group_id #=> String
|
|
8410
|
+
# resp.findings[0].resources[0].details.aws_waf_rule_group.rules #=> Array
|
|
8411
|
+
# resp.findings[0].resources[0].details.aws_waf_rule_group.rules[0].action.type #=> String
|
|
8412
|
+
# resp.findings[0].resources[0].details.aws_waf_rule_group.rules[0].priority #=> Integer
|
|
8413
|
+
# resp.findings[0].resources[0].details.aws_waf_rule_group.rules[0].rule_id #=> String
|
|
8414
|
+
# resp.findings[0].resources[0].details.aws_waf_rule_group.rules[0].type #=> String
|
|
8415
|
+
# resp.findings[0].resources[0].details.aws_ecs_task.cluster_arn #=> String
|
|
8416
|
+
# resp.findings[0].resources[0].details.aws_ecs_task.task_definition_arn #=> String
|
|
8417
|
+
# resp.findings[0].resources[0].details.aws_ecs_task.version #=> String
|
|
8418
|
+
# resp.findings[0].resources[0].details.aws_ecs_task.created_at #=> String
|
|
8419
|
+
# resp.findings[0].resources[0].details.aws_ecs_task.started_at #=> String
|
|
8420
|
+
# resp.findings[0].resources[0].details.aws_ecs_task.started_by #=> String
|
|
8421
|
+
# resp.findings[0].resources[0].details.aws_ecs_task.group #=> String
|
|
8422
|
+
# resp.findings[0].resources[0].details.aws_ecs_task.volumes #=> Array
|
|
8423
|
+
# resp.findings[0].resources[0].details.aws_ecs_task.volumes[0].name #=> String
|
|
8424
|
+
# resp.findings[0].resources[0].details.aws_ecs_task.volumes[0].host.source_path #=> String
|
|
8425
|
+
# resp.findings[0].resources[0].details.aws_ecs_task.containers #=> Array
|
|
8426
|
+
# resp.findings[0].resources[0].details.aws_ecs_task.containers[0].name #=> String
|
|
8427
|
+
# resp.findings[0].resources[0].details.aws_ecs_task.containers[0].image #=> String
|
|
8428
|
+
# resp.findings[0].resources[0].details.aws_ecs_task.containers[0].mount_points #=> Array
|
|
8429
|
+
# resp.findings[0].resources[0].details.aws_ecs_task.containers[0].mount_points[0].source_volume #=> String
|
|
8430
|
+
# resp.findings[0].resources[0].details.aws_ecs_task.containers[0].mount_points[0].container_path #=> String
|
|
8431
|
+
# resp.findings[0].resources[0].details.aws_ecs_task.containers[0].privileged #=> Boolean
|
|
7873
8432
|
# resp.findings[0].compliance.status #=> String, one of "PASSED", "WARNING", "FAILED", "NOT_AVAILABLE"
|
|
7874
8433
|
# resp.findings[0].compliance.related_requirements #=> Array
|
|
7875
8434
|
# resp.findings[0].compliance.related_requirements[0] #=> String
|
|
@@ -10311,12 +10870,28 @@ module Aws::SecurityHub
|
|
|
10311
10870
|
# To automatically enable Security Hub for new accounts, set this to
|
|
10312
10871
|
# `true`.
|
|
10313
10872
|
#
|
|
10873
|
+
# @option params [String] :auto_enable_standards
|
|
10874
|
+
# Whether to automatically enable Security Hub [default standards][1]
|
|
10875
|
+
# for new member accounts in the organization.
|
|
10876
|
+
#
|
|
10877
|
+
# By default, this parameter is equal to `DEFAULT`, and new member
|
|
10878
|
+
# accounts are automatically enabled with default Security Hub
|
|
10879
|
+
# standards.
|
|
10880
|
+
#
|
|
10881
|
+
# To opt out of enabling default standards for new member accounts, set
|
|
10882
|
+
# this parameter equal to `NONE`.
|
|
10883
|
+
#
|
|
10884
|
+
#
|
|
10885
|
+
#
|
|
10886
|
+
# [1]: https://docs.aws.amazon.com/securityhub/latest/userguide/securityhub-standards-enable-disable.html
|
|
10887
|
+
#
|
|
10314
10888
|
# @return [Struct] Returns an empty {Seahorse::Client::Response response}.
|
|
10315
10889
|
#
|
|
10316
10890
|
# @example Request syntax with placeholder values
|
|
10317
10891
|
#
|
|
10318
10892
|
# resp = client.update_organization_configuration({
|
|
10319
10893
|
# auto_enable: false, # required
|
|
10894
|
+
# auto_enable_standards: "NONE", # accepts NONE, DEFAULT
|
|
10320
10895
|
# })
|
|
10321
10896
|
#
|
|
10322
10897
|
# @see http://docs.aws.amazon.com/goto/WebAPI/securityhub-2018-10-26/UpdateOrganizationConfiguration AWS API Documentation
|
|
@@ -10400,7 +10975,7 @@ module Aws::SecurityHub
|
|
|
10400
10975
|
params: params,
|
|
10401
10976
|
config: config)
|
|
10402
10977
|
context[:gem_name] = 'aws-sdk-securityhub'
|
|
10403
|
-
context[:gem_version] = '1.
|
|
10978
|
+
context[:gem_version] = '1.67.0'
|
|
10404
10979
|
Seahorse::Client::Request.new(handlers, context)
|
|
10405
10980
|
end
|
|
10406
10981
|
|