aws-sdk-securityhub 1.75.0 → 1.76.0

Sign up to get free protection for your applications and to get access to all the features.
checksums.yaml CHANGED
@@ -1,7 +1,7 @@
1
1
  ---
2
2
  SHA256:
3
- metadata.gz: aaa6faff45a268abc6ecf0c90d8bdba1fbe4a8a1bee44fbb7e19b55608ed1660
4
- data.tar.gz: df8b33938c1c0c5413a558b900737d70c24ce9ebaccb2d3e7fbc1fa20233d7cd
3
+ metadata.gz: 4551566a066756c3813881b2ed679d93205cb6b959a93ce2ad318acdf74ba6c2
4
+ data.tar.gz: d2c25b9091800722ed0b1e030b51b8c7d9889a6c68982f3a26f2867eb511209a
5
5
  SHA512:
6
- metadata.gz: f280edf6cdc102e0fa7775e79022cbb06227662187732de522eef8dced53cdaf04b2cb9682bab6b733b0b542eed6aa4d157fb66a2b995381ce5e79d90c7fe667
7
- data.tar.gz: e461604a34deed87ccdc2c89d5073fc4024f0a059414d96295a19548c2a70bd34c36b8908d86fb0f275adffcaec46793140c6b5ff1c3edd71736b29aa621d12e
6
+ metadata.gz: 9c307e08e1229c092c1b88abc7bb11df62e99d88fcb09a2e2010f3beeebc811f407a986d1648f059253fc505705f71e8e667c18ce3ebb34255a1b584951f548e
7
+ data.tar.gz: a1f468b67e4c962edddadd00229428f6b06056bf7b82276e216ed9f3f834d8e78bf23c3ee69988fa1efc68eff06973593af0d064877db59a6fe5ee563b50b9ea
data/CHANGELOG.md CHANGED
@@ -1,6 +1,11 @@
1
1
  Unreleased Changes
2
2
  ------------------
3
3
 
4
+ 1.76.0 (2023-01-31)
5
+ ------------------
6
+
7
+ * Feature - New fields have been added to the AWS Security Finding Format. Compliance.SecurityControlId is a unique identifier for a security control across standards. Compliance.AssociatedStandards contains all enabled standards in which a security control is enabled.
8
+
4
9
  1.75.0 (2023-01-18)
5
10
  ------------------
6
11
 
data/VERSION CHANGED
@@ -1 +1 @@
1
- 1.75.0
1
+ 1.76.0
@@ -1566,6 +1566,18 @@ module Aws::SecurityHub
1566
1566
  # value: false,
1567
1567
  # },
1568
1568
  # ],
1569
+ # compliance_security_control_id: [
1570
+ # {
1571
+ # value: "NonEmptyString",
1572
+ # comparison: "EQUALS", # accepts EQUALS, PREFIX, NOT_EQUALS, PREFIX_NOT_EQUALS
1573
+ # },
1574
+ # ],
1575
+ # compliance_associated_standards_id: [
1576
+ # {
1577
+ # value: "NonEmptyString",
1578
+ # comparison: "EQUALS", # accepts EQUALS, PREFIX, NOT_EQUALS, PREFIX_NOT_EQUALS
1579
+ # },
1580
+ # ],
1569
1581
  # },
1570
1582
  # group_by_attribute: "NonEmptyString", # required
1571
1583
  # })
@@ -3186,6 +3198,18 @@ module Aws::SecurityHub
3186
3198
  # value: false,
3187
3199
  # },
3188
3200
  # ],
3201
+ # compliance_security_control_id: [
3202
+ # {
3203
+ # value: "NonEmptyString",
3204
+ # comparison: "EQUALS", # accepts EQUALS, PREFIX, NOT_EQUALS, PREFIX_NOT_EQUALS
3205
+ # },
3206
+ # ],
3207
+ # compliance_associated_standards_id: [
3208
+ # {
3209
+ # value: "NonEmptyString",
3210
+ # comparison: "EQUALS", # accepts EQUALS, PREFIX, NOT_EQUALS, PREFIX_NOT_EQUALS
3211
+ # },
3212
+ # ],
3189
3213
  # },
3190
3214
  # sort_criteria: [
3191
3215
  # {
@@ -3590,6 +3614,12 @@ module Aws::SecurityHub
3590
3614
  # resp.insights[0].filters.finding_provider_fields_types[0].comparison #=> String, one of "EQUALS", "PREFIX", "NOT_EQUALS", "PREFIX_NOT_EQUALS"
3591
3615
  # resp.insights[0].filters.sample #=> Array
3592
3616
  # resp.insights[0].filters.sample[0].value #=> Boolean
3617
+ # resp.insights[0].filters.compliance_security_control_id #=> Array
3618
+ # resp.insights[0].filters.compliance_security_control_id[0].value #=> String
3619
+ # resp.insights[0].filters.compliance_security_control_id[0].comparison #=> String, one of "EQUALS", "PREFIX", "NOT_EQUALS", "PREFIX_NOT_EQUALS"
3620
+ # resp.insights[0].filters.compliance_associated_standards_id #=> Array
3621
+ # resp.insights[0].filters.compliance_associated_standards_id[0].value #=> String
3622
+ # resp.insights[0].filters.compliance_associated_standards_id[0].comparison #=> String, one of "EQUALS", "PREFIX", "NOT_EQUALS", "PREFIX_NOT_EQUALS"
3593
3623
  # resp.insights[0].group_by_attribute #=> String
3594
3624
  # resp.next_token #=> String
3595
3625
  #
@@ -4832,6 +4862,18 @@ module Aws::SecurityHub
4832
4862
  # value: false,
4833
4863
  # },
4834
4864
  # ],
4865
+ # compliance_security_control_id: [
4866
+ # {
4867
+ # value: "NonEmptyString",
4868
+ # comparison: "EQUALS", # accepts EQUALS, PREFIX, NOT_EQUALS, PREFIX_NOT_EQUALS
4869
+ # },
4870
+ # ],
4871
+ # compliance_associated_standards_id: [
4872
+ # {
4873
+ # value: "NonEmptyString",
4874
+ # comparison: "EQUALS", # accepts EQUALS, PREFIX, NOT_EQUALS, PREFIX_NOT_EQUALS
4875
+ # },
4876
+ # ],
4835
4877
  # },
4836
4878
  # note: {
4837
4879
  # text: "NonEmptyString", # required
@@ -5492,6 +5534,18 @@ module Aws::SecurityHub
5492
5534
  # value: false,
5493
5535
  # },
5494
5536
  # ],
5537
+ # compliance_security_control_id: [
5538
+ # {
5539
+ # value: "NonEmptyString",
5540
+ # comparison: "EQUALS", # accepts EQUALS, PREFIX, NOT_EQUALS, PREFIX_NOT_EQUALS
5541
+ # },
5542
+ # ],
5543
+ # compliance_associated_standards_id: [
5544
+ # {
5545
+ # value: "NonEmptyString",
5546
+ # comparison: "EQUALS", # accepts EQUALS, PREFIX, NOT_EQUALS, PREFIX_NOT_EQUALS
5547
+ # },
5548
+ # ],
5495
5549
  # },
5496
5550
  # group_by_attribute: "NonEmptyString",
5497
5551
  # })
@@ -5623,7 +5677,7 @@ module Aws::SecurityHub
5623
5677
  params: params,
5624
5678
  config: config)
5625
5679
  context[:gem_name] = 'aws-sdk-securityhub'
5626
- context[:gem_version] = '1.75.0'
5680
+ context[:gem_version] = '1.76.0'
5627
5681
  Seahorse::Client::Request.new(handlers, context)
5628
5682
  end
5629
5683
 
@@ -36,6 +36,8 @@ module Aws::SecurityHub
36
36
  AdminStatus = Shapes::StringShape.new(name: 'AdminStatus')
37
37
  AdminsMaxResults = Shapes::IntegerShape.new(name: 'AdminsMaxResults')
38
38
  ArnList = Shapes::ListShape.new(name: 'ArnList')
39
+ AssociatedStandard = Shapes::StructureShape.new(name: 'AssociatedStandard')
40
+ AssociatedStandardsList = Shapes::ListShape.new(name: 'AssociatedStandardsList')
39
41
  AutoEnableStandards = Shapes::StringShape.new(name: 'AutoEnableStandards')
40
42
  AvailabilityZone = Shapes::StructureShape.new(name: 'AvailabilityZone')
41
43
  AvailabilityZones = Shapes::ListShape.new(name: 'AvailabilityZones')
@@ -1009,6 +1011,11 @@ module Aws::SecurityHub
1009
1011
 
1010
1012
  ArnList.member = Shapes::ShapeRef.new(shape: NonEmptyString)
1011
1013
 
1014
+ AssociatedStandard.add_member(:standards_id, Shapes::ShapeRef.new(shape: NonEmptyString, location_name: "StandardsId"))
1015
+ AssociatedStandard.struct_class = Types::AssociatedStandard
1016
+
1017
+ AssociatedStandardsList.member = Shapes::ShapeRef.new(shape: AssociatedStandard)
1018
+
1012
1019
  AvailabilityZone.add_member(:zone_name, Shapes::ShapeRef.new(shape: NonEmptyString, location_name: "ZoneName"))
1013
1020
  AvailabilityZone.add_member(:subnet_id, Shapes::ShapeRef.new(shape: NonEmptyString, location_name: "SubnetId"))
1014
1021
  AvailabilityZone.struct_class = Types::AvailabilityZone
@@ -3980,6 +3987,8 @@ module Aws::SecurityHub
3980
3987
  AwsSecurityFindingFilters.add_member(:finding_provider_fields_severity_original, Shapes::ShapeRef.new(shape: StringFilterList, location_name: "FindingProviderFieldsSeverityOriginal"))
3981
3988
  AwsSecurityFindingFilters.add_member(:finding_provider_fields_types, Shapes::ShapeRef.new(shape: StringFilterList, location_name: "FindingProviderFieldsTypes"))
3982
3989
  AwsSecurityFindingFilters.add_member(:sample, Shapes::ShapeRef.new(shape: BooleanFilterList, location_name: "Sample"))
3990
+ AwsSecurityFindingFilters.add_member(:compliance_security_control_id, Shapes::ShapeRef.new(shape: StringFilterList, location_name: "ComplianceSecurityControlId"))
3991
+ AwsSecurityFindingFilters.add_member(:compliance_associated_standards_id, Shapes::ShapeRef.new(shape: StringFilterList, location_name: "ComplianceAssociatedStandardsId"))
3983
3992
  AwsSecurityFindingFilters.struct_class = Types::AwsSecurityFindingFilters
3984
3993
 
3985
3994
  AwsSecurityFindingIdentifier.add_member(:id, Shapes::ShapeRef.new(shape: NonEmptyString, required: true, location_name: "Id"))
@@ -4337,6 +4346,8 @@ module Aws::SecurityHub
4337
4346
  Compliance.add_member(:status, Shapes::ShapeRef.new(shape: ComplianceStatus, location_name: "Status"))
4338
4347
  Compliance.add_member(:related_requirements, Shapes::ShapeRef.new(shape: RelatedRequirementsList, location_name: "RelatedRequirements"))
4339
4348
  Compliance.add_member(:status_reasons, Shapes::ShapeRef.new(shape: StatusReasonsList, location_name: "StatusReasons"))
4349
+ Compliance.add_member(:security_control_id, Shapes::ShapeRef.new(shape: NonEmptyString, location_name: "SecurityControlId"))
4350
+ Compliance.add_member(:associated_standards, Shapes::ShapeRef.new(shape: AssociatedStandardsList, location_name: "AssociatedStandards"))
4340
4351
  Compliance.struct_class = Types::Compliance
4341
4352
 
4342
4353
  ContainerDetails.add_member(:container_runtime, Shapes::ShapeRef.new(shape: NonEmptyString, location_name: "ContainerRuntime"))
@@ -307,6 +307,28 @@ module Aws::SecurityHub
307
307
  include Aws::Structure
308
308
  end
309
309
 
310
+ # Information about an enabled security standard in which a security
311
+ # control is enabled.
312
+ #
313
+ # @!attribute [rw] standards_id
314
+ # The unique identifier of a standard in which a control is enabled.
315
+ # This field consists of the resource portion of the Amazon Resource
316
+ # Name (ARN) returned for a standard in the [DescribeStandards][1] API
317
+ # response.
318
+ #
319
+ #
320
+ #
321
+ # [1]: https://docs.aws.amazon.com/securityhub/1.0/APIReference/API_DescribeStandards.html
322
+ # @return [String]
323
+ #
324
+ # @see http://docs.aws.amazon.com/goto/WebAPI/securityhub-2018-10-26/AssociatedStandard AWS API Documentation
325
+ #
326
+ class AssociatedStandard < Struct.new(
327
+ :standards_id)
328
+ SENSITIVE = []
329
+ include Aws::Structure
330
+ end
331
+
310
332
  # Information about an Availability Zone.
311
333
  #
312
334
  # @!attribute [rw] zone_name
@@ -15395,7 +15417,7 @@ module Aws::SecurityHub
15395
15417
  # An array of up to three Git repositories associated with the
15396
15418
  # notebook instance. These can be either the names of Git repositories
15397
15419
  # stored as resources in your account, or the URL of Git repositories
15398
- # in [AWS CodeCommit][1] or in any other Git repository. These
15420
+ # in [CodeCommit][1] or in any other Git repository. These
15399
15421
  # repositories are cloned at the same level as the default repository
15400
15422
  # of your notebook instance. For more information, see [Associating
15401
15423
  # Git repositories with SageMaker notebook instances][2] in the
@@ -15411,8 +15433,8 @@ module Aws::SecurityHub
15411
15433
  # The Git repository associated with the notebook instance as its
15412
15434
  # default code repository. This can be either the name of a Git
15413
15435
  # repository stored as a resource in your account, or the URL of a Git
15414
- # repository in [AWS CodeCommit][1] or in any other Git repository.
15415
- # When you open a notebook instance, it opens in the directory that
15436
+ # repository in [CodeCommit][1] or in any other Git repository. When
15437
+ # you open a notebook instance, it opens in the directory that
15416
15438
  # contains this repository. For more information, see [Associating Git
15417
15439
  # repositories with SageMaker notebook instances][2] in the *Amazon
15418
15440
  # SageMaker Developer Guide*.
@@ -16448,6 +16470,23 @@ module Aws::SecurityHub
16448
16470
  # results.
16449
16471
  # @return [Array<Types::BooleanFilter>]
16450
16472
  #
16473
+ # @!attribute [rw] compliance_security_control_id
16474
+ # The unique identifier of a control across standards. Values for this
16475
+ # field typically consist of an Amazon Web Service and a number, such
16476
+ # as APIGateway.5.
16477
+ # @return [Array<Types::StringFilter>]
16478
+ #
16479
+ # @!attribute [rw] compliance_associated_standards_id
16480
+ # The unique identifier of a standard in which a control is enabled.
16481
+ # This field consists of the resource portion of the Amazon Resource
16482
+ # Name (ARN) returned for a standard in the [DescribeStandards][1] API
16483
+ # response.
16484
+ #
16485
+ #
16486
+ #
16487
+ # [1]: https://docs.aws.amazon.com/securityhub/1.0/APIReference/API_DescribeStandards.html
16488
+ # @return [Array<Types::StringFilter>]
16489
+ #
16451
16490
  # @see http://docs.aws.amazon.com/goto/WebAPI/securityhub-2018-10-26/AwsSecurityFindingFilters AWS API Documentation
16452
16491
  #
16453
16492
  class AwsSecurityFindingFilters < Struct.new(
@@ -16545,7 +16584,9 @@ module Aws::SecurityHub
16545
16584
  :finding_provider_fields_severity_label,
16546
16585
  :finding_provider_fields_severity_original,
16547
16586
  :finding_provider_fields_types,
16548
- :sample)
16587
+ :sample,
16588
+ :compliance_security_control_id,
16589
+ :compliance_associated_standards_id)
16549
16590
  SENSITIVE = []
16550
16591
  include Aws::Structure
16551
16592
  end
@@ -17777,8 +17818,8 @@ module Aws::SecurityHub
17777
17818
 
17778
17819
  # Provides details about rules in a rule group. A rule identifies web
17779
17820
  # requests that you want to allow, block, or count. Each rule includes
17780
- # one top-level Statement that AWS WAF uses to identify matching web
17781
- # requests, and parameters that govern how AWS WAF handles them.
17821
+ # one top-level Statement that WAF uses to identify matching web
17822
+ # requests, and parameters that govern how WAF handles them.
17782
17823
  #
17783
17824
  # @!attribute [rw] action
17784
17825
  # The action that WAF should take on a web request when it matches the
@@ -18463,12 +18504,25 @@ module Aws::SecurityHub
18463
18504
  # [1]: https://docs.aws.amazon.com/securityhub/latest/userguide/securityhub-standards-results.html#securityhub-standards-results-asff
18464
18505
  # @return [Array<Types::StatusReason>]
18465
18506
  #
18507
+ # @!attribute [rw] security_control_id
18508
+ # The unique identifier of a control across standards. Values for this
18509
+ # field typically consist of an Amazon Web Service and a number, such
18510
+ # as APIGateway.5.
18511
+ # @return [String]
18512
+ #
18513
+ # @!attribute [rw] associated_standards
18514
+ # The enabled security standards in which a security control is
18515
+ # currently enabled.
18516
+ # @return [Array<Types::AssociatedStandard>]
18517
+ #
18466
18518
  # @see http://docs.aws.amazon.com/goto/WebAPI/securityhub-2018-10-26/Compliance AWS API Documentation
18467
18519
  #
18468
18520
  class Compliance < Struct.new(
18469
18521
  :status,
18470
18522
  :related_requirements,
18471
- :status_reasons)
18523
+ :status_reasons,
18524
+ :security_control_id,
18525
+ :associated_standards)
18472
18526
  SENSITIVE = []
18473
18527
  include Aws::Structure
18474
18528
  end
@@ -20716,27 +20770,27 @@ module Aws::SecurityHub
20716
20770
  #
20717
20771
  # The status can have one of the following values:
20718
20772
  #
20719
- # * `CREATED` - Indicates that the administrator account added the
20773
+ # * `Created` - Indicates that the administrator account added the
20720
20774
  # member account, but has not yet invited the member account.
20721
20775
  #
20722
- # * `INVITED` - Indicates that the administrator account invited the
20776
+ # * `Invited` - Indicates that the administrator account invited the
20723
20777
  # member account. The member account has not yet responded to the
20724
20778
  # invitation.
20725
20779
  #
20726
- # * `ENABLED` - Indicates that the member account is currently active.
20780
+ # * `Enabled` - Indicates that the member account is currently active.
20727
20781
  # For manually invited member accounts, indicates that the member
20728
20782
  # account accepted the invitation.
20729
20783
  #
20730
- # * `REMOVED` - Indicates that the administrator account disassociated
20784
+ # * `Removed` - Indicates that the administrator account disassociated
20731
20785
  # the member account.
20732
20786
  #
20733
- # * `RESIGNED` - Indicates that the member account disassociated
20787
+ # * `Resigned` - Indicates that the member account disassociated
20734
20788
  # themselves from the administrator account.
20735
20789
  #
20736
- # * `DELETED` - Indicates that the administrator account deleted the
20790
+ # * `Deleted` - Indicates that the administrator account deleted the
20737
20791
  # member account.
20738
20792
  #
20739
- # * `ACCOUNT_SUSPENDED` - Indicates that an organization account was
20793
+ # * `AccountSuspended` - Indicates that an organization account was
20740
20794
  # suspended from Amazon Web Services at the same time that the
20741
20795
  # administrator account tried to enable the organization account as
20742
20796
  # a member account.
@@ -52,6 +52,6 @@ require_relative 'aws-sdk-securityhub/customizations'
52
52
  # @!group service
53
53
  module Aws::SecurityHub
54
54
 
55
- GEM_VERSION = '1.75.0'
55
+ GEM_VERSION = '1.76.0'
56
56
 
57
57
  end
metadata CHANGED
@@ -1,14 +1,14 @@
1
1
  --- !ruby/object:Gem::Specification
2
2
  name: aws-sdk-securityhub
3
3
  version: !ruby/object:Gem::Version
4
- version: 1.75.0
4
+ version: 1.76.0
5
5
  platform: ruby
6
6
  authors:
7
7
  - Amazon Web Services
8
8
  autorequire:
9
9
  bindir: bin
10
10
  cert_chain: []
11
- date: 2023-01-18 00:00:00.000000000 Z
11
+ date: 2023-01-31 00:00:00.000000000 Z
12
12
  dependencies:
13
13
  - !ruby/object:Gem::Dependency
14
14
  name: aws-sdk-core