aws-sdk-securityhub 1.75.0 → 1.76.0
Sign up to get free protection for your applications and to get access to all the features.
- checksums.yaml +4 -4
- data/CHANGELOG.md +5 -0
- data/VERSION +1 -1
- data/lib/aws-sdk-securityhub/client.rb +55 -1
- data/lib/aws-sdk-securityhub/client_api.rb +11 -0
- data/lib/aws-sdk-securityhub/types.rb +68 -14
- data/lib/aws-sdk-securityhub.rb +1 -1
- metadata +2 -2
checksums.yaml
CHANGED
|
@@ -1,7 +1,7 @@
|
|
|
1
1
|
---
|
|
2
2
|
SHA256:
|
|
3
|
-
metadata.gz:
|
|
4
|
-
data.tar.gz:
|
|
3
|
+
metadata.gz: 4551566a066756c3813881b2ed679d93205cb6b959a93ce2ad318acdf74ba6c2
|
|
4
|
+
data.tar.gz: d2c25b9091800722ed0b1e030b51b8c7d9889a6c68982f3a26f2867eb511209a
|
|
5
5
|
SHA512:
|
|
6
|
-
metadata.gz:
|
|
7
|
-
data.tar.gz:
|
|
6
|
+
metadata.gz: 9c307e08e1229c092c1b88abc7bb11df62e99d88fcb09a2e2010f3beeebc811f407a986d1648f059253fc505705f71e8e667c18ce3ebb34255a1b584951f548e
|
|
7
|
+
data.tar.gz: a1f468b67e4c962edddadd00229428f6b06056bf7b82276e216ed9f3f834d8e78bf23c3ee69988fa1efc68eff06973593af0d064877db59a6fe5ee563b50b9ea
|
data/CHANGELOG.md
CHANGED
|
@@ -1,6 +1,11 @@
|
|
|
1
1
|
Unreleased Changes
|
|
2
2
|
------------------
|
|
3
3
|
|
|
4
|
+
1.76.0 (2023-01-31)
|
|
5
|
+
------------------
|
|
6
|
+
|
|
7
|
+
* Feature - New fields have been added to the AWS Security Finding Format. Compliance.SecurityControlId is a unique identifier for a security control across standards. Compliance.AssociatedStandards contains all enabled standards in which a security control is enabled.
|
|
8
|
+
|
|
4
9
|
1.75.0 (2023-01-18)
|
|
5
10
|
------------------
|
|
6
11
|
|
data/VERSION
CHANGED
|
@@ -1 +1 @@
|
|
|
1
|
-
1.
|
|
1
|
+
1.76.0
|
|
@@ -1566,6 +1566,18 @@ module Aws::SecurityHub
|
|
|
1566
1566
|
# value: false,
|
|
1567
1567
|
# },
|
|
1568
1568
|
# ],
|
|
1569
|
+
# compliance_security_control_id: [
|
|
1570
|
+
# {
|
|
1571
|
+
# value: "NonEmptyString",
|
|
1572
|
+
# comparison: "EQUALS", # accepts EQUALS, PREFIX, NOT_EQUALS, PREFIX_NOT_EQUALS
|
|
1573
|
+
# },
|
|
1574
|
+
# ],
|
|
1575
|
+
# compliance_associated_standards_id: [
|
|
1576
|
+
# {
|
|
1577
|
+
# value: "NonEmptyString",
|
|
1578
|
+
# comparison: "EQUALS", # accepts EQUALS, PREFIX, NOT_EQUALS, PREFIX_NOT_EQUALS
|
|
1579
|
+
# },
|
|
1580
|
+
# ],
|
|
1569
1581
|
# },
|
|
1570
1582
|
# group_by_attribute: "NonEmptyString", # required
|
|
1571
1583
|
# })
|
|
@@ -3186,6 +3198,18 @@ module Aws::SecurityHub
|
|
|
3186
3198
|
# value: false,
|
|
3187
3199
|
# },
|
|
3188
3200
|
# ],
|
|
3201
|
+
# compliance_security_control_id: [
|
|
3202
|
+
# {
|
|
3203
|
+
# value: "NonEmptyString",
|
|
3204
|
+
# comparison: "EQUALS", # accepts EQUALS, PREFIX, NOT_EQUALS, PREFIX_NOT_EQUALS
|
|
3205
|
+
# },
|
|
3206
|
+
# ],
|
|
3207
|
+
# compliance_associated_standards_id: [
|
|
3208
|
+
# {
|
|
3209
|
+
# value: "NonEmptyString",
|
|
3210
|
+
# comparison: "EQUALS", # accepts EQUALS, PREFIX, NOT_EQUALS, PREFIX_NOT_EQUALS
|
|
3211
|
+
# },
|
|
3212
|
+
# ],
|
|
3189
3213
|
# },
|
|
3190
3214
|
# sort_criteria: [
|
|
3191
3215
|
# {
|
|
@@ -3590,6 +3614,12 @@ module Aws::SecurityHub
|
|
|
3590
3614
|
# resp.insights[0].filters.finding_provider_fields_types[0].comparison #=> String, one of "EQUALS", "PREFIX", "NOT_EQUALS", "PREFIX_NOT_EQUALS"
|
|
3591
3615
|
# resp.insights[0].filters.sample #=> Array
|
|
3592
3616
|
# resp.insights[0].filters.sample[0].value #=> Boolean
|
|
3617
|
+
# resp.insights[0].filters.compliance_security_control_id #=> Array
|
|
3618
|
+
# resp.insights[0].filters.compliance_security_control_id[0].value #=> String
|
|
3619
|
+
# resp.insights[0].filters.compliance_security_control_id[0].comparison #=> String, one of "EQUALS", "PREFIX", "NOT_EQUALS", "PREFIX_NOT_EQUALS"
|
|
3620
|
+
# resp.insights[0].filters.compliance_associated_standards_id #=> Array
|
|
3621
|
+
# resp.insights[0].filters.compliance_associated_standards_id[0].value #=> String
|
|
3622
|
+
# resp.insights[0].filters.compliance_associated_standards_id[0].comparison #=> String, one of "EQUALS", "PREFIX", "NOT_EQUALS", "PREFIX_NOT_EQUALS"
|
|
3593
3623
|
# resp.insights[0].group_by_attribute #=> String
|
|
3594
3624
|
# resp.next_token #=> String
|
|
3595
3625
|
#
|
|
@@ -4832,6 +4862,18 @@ module Aws::SecurityHub
|
|
|
4832
4862
|
# value: false,
|
|
4833
4863
|
# },
|
|
4834
4864
|
# ],
|
|
4865
|
+
# compliance_security_control_id: [
|
|
4866
|
+
# {
|
|
4867
|
+
# value: "NonEmptyString",
|
|
4868
|
+
# comparison: "EQUALS", # accepts EQUALS, PREFIX, NOT_EQUALS, PREFIX_NOT_EQUALS
|
|
4869
|
+
# },
|
|
4870
|
+
# ],
|
|
4871
|
+
# compliance_associated_standards_id: [
|
|
4872
|
+
# {
|
|
4873
|
+
# value: "NonEmptyString",
|
|
4874
|
+
# comparison: "EQUALS", # accepts EQUALS, PREFIX, NOT_EQUALS, PREFIX_NOT_EQUALS
|
|
4875
|
+
# },
|
|
4876
|
+
# ],
|
|
4835
4877
|
# },
|
|
4836
4878
|
# note: {
|
|
4837
4879
|
# text: "NonEmptyString", # required
|
|
@@ -5492,6 +5534,18 @@ module Aws::SecurityHub
|
|
|
5492
5534
|
# value: false,
|
|
5493
5535
|
# },
|
|
5494
5536
|
# ],
|
|
5537
|
+
# compliance_security_control_id: [
|
|
5538
|
+
# {
|
|
5539
|
+
# value: "NonEmptyString",
|
|
5540
|
+
# comparison: "EQUALS", # accepts EQUALS, PREFIX, NOT_EQUALS, PREFIX_NOT_EQUALS
|
|
5541
|
+
# },
|
|
5542
|
+
# ],
|
|
5543
|
+
# compliance_associated_standards_id: [
|
|
5544
|
+
# {
|
|
5545
|
+
# value: "NonEmptyString",
|
|
5546
|
+
# comparison: "EQUALS", # accepts EQUALS, PREFIX, NOT_EQUALS, PREFIX_NOT_EQUALS
|
|
5547
|
+
# },
|
|
5548
|
+
# ],
|
|
5495
5549
|
# },
|
|
5496
5550
|
# group_by_attribute: "NonEmptyString",
|
|
5497
5551
|
# })
|
|
@@ -5623,7 +5677,7 @@ module Aws::SecurityHub
|
|
|
5623
5677
|
params: params,
|
|
5624
5678
|
config: config)
|
|
5625
5679
|
context[:gem_name] = 'aws-sdk-securityhub'
|
|
5626
|
-
context[:gem_version] = '1.
|
|
5680
|
+
context[:gem_version] = '1.76.0'
|
|
5627
5681
|
Seahorse::Client::Request.new(handlers, context)
|
|
5628
5682
|
end
|
|
5629
5683
|
|
|
@@ -36,6 +36,8 @@ module Aws::SecurityHub
|
|
|
36
36
|
AdminStatus = Shapes::StringShape.new(name: 'AdminStatus')
|
|
37
37
|
AdminsMaxResults = Shapes::IntegerShape.new(name: 'AdminsMaxResults')
|
|
38
38
|
ArnList = Shapes::ListShape.new(name: 'ArnList')
|
|
39
|
+
AssociatedStandard = Shapes::StructureShape.new(name: 'AssociatedStandard')
|
|
40
|
+
AssociatedStandardsList = Shapes::ListShape.new(name: 'AssociatedStandardsList')
|
|
39
41
|
AutoEnableStandards = Shapes::StringShape.new(name: 'AutoEnableStandards')
|
|
40
42
|
AvailabilityZone = Shapes::StructureShape.new(name: 'AvailabilityZone')
|
|
41
43
|
AvailabilityZones = Shapes::ListShape.new(name: 'AvailabilityZones')
|
|
@@ -1009,6 +1011,11 @@ module Aws::SecurityHub
|
|
|
1009
1011
|
|
|
1010
1012
|
ArnList.member = Shapes::ShapeRef.new(shape: NonEmptyString)
|
|
1011
1013
|
|
|
1014
|
+
AssociatedStandard.add_member(:standards_id, Shapes::ShapeRef.new(shape: NonEmptyString, location_name: "StandardsId"))
|
|
1015
|
+
AssociatedStandard.struct_class = Types::AssociatedStandard
|
|
1016
|
+
|
|
1017
|
+
AssociatedStandardsList.member = Shapes::ShapeRef.new(shape: AssociatedStandard)
|
|
1018
|
+
|
|
1012
1019
|
AvailabilityZone.add_member(:zone_name, Shapes::ShapeRef.new(shape: NonEmptyString, location_name: "ZoneName"))
|
|
1013
1020
|
AvailabilityZone.add_member(:subnet_id, Shapes::ShapeRef.new(shape: NonEmptyString, location_name: "SubnetId"))
|
|
1014
1021
|
AvailabilityZone.struct_class = Types::AvailabilityZone
|
|
@@ -3980,6 +3987,8 @@ module Aws::SecurityHub
|
|
|
3980
3987
|
AwsSecurityFindingFilters.add_member(:finding_provider_fields_severity_original, Shapes::ShapeRef.new(shape: StringFilterList, location_name: "FindingProviderFieldsSeverityOriginal"))
|
|
3981
3988
|
AwsSecurityFindingFilters.add_member(:finding_provider_fields_types, Shapes::ShapeRef.new(shape: StringFilterList, location_name: "FindingProviderFieldsTypes"))
|
|
3982
3989
|
AwsSecurityFindingFilters.add_member(:sample, Shapes::ShapeRef.new(shape: BooleanFilterList, location_name: "Sample"))
|
|
3990
|
+
AwsSecurityFindingFilters.add_member(:compliance_security_control_id, Shapes::ShapeRef.new(shape: StringFilterList, location_name: "ComplianceSecurityControlId"))
|
|
3991
|
+
AwsSecurityFindingFilters.add_member(:compliance_associated_standards_id, Shapes::ShapeRef.new(shape: StringFilterList, location_name: "ComplianceAssociatedStandardsId"))
|
|
3983
3992
|
AwsSecurityFindingFilters.struct_class = Types::AwsSecurityFindingFilters
|
|
3984
3993
|
|
|
3985
3994
|
AwsSecurityFindingIdentifier.add_member(:id, Shapes::ShapeRef.new(shape: NonEmptyString, required: true, location_name: "Id"))
|
|
@@ -4337,6 +4346,8 @@ module Aws::SecurityHub
|
|
|
4337
4346
|
Compliance.add_member(:status, Shapes::ShapeRef.new(shape: ComplianceStatus, location_name: "Status"))
|
|
4338
4347
|
Compliance.add_member(:related_requirements, Shapes::ShapeRef.new(shape: RelatedRequirementsList, location_name: "RelatedRequirements"))
|
|
4339
4348
|
Compliance.add_member(:status_reasons, Shapes::ShapeRef.new(shape: StatusReasonsList, location_name: "StatusReasons"))
|
|
4349
|
+
Compliance.add_member(:security_control_id, Shapes::ShapeRef.new(shape: NonEmptyString, location_name: "SecurityControlId"))
|
|
4350
|
+
Compliance.add_member(:associated_standards, Shapes::ShapeRef.new(shape: AssociatedStandardsList, location_name: "AssociatedStandards"))
|
|
4340
4351
|
Compliance.struct_class = Types::Compliance
|
|
4341
4352
|
|
|
4342
4353
|
ContainerDetails.add_member(:container_runtime, Shapes::ShapeRef.new(shape: NonEmptyString, location_name: "ContainerRuntime"))
|
|
@@ -307,6 +307,28 @@ module Aws::SecurityHub
|
|
|
307
307
|
include Aws::Structure
|
|
308
308
|
end
|
|
309
309
|
|
|
310
|
+
# Information about an enabled security standard in which a security
|
|
311
|
+
# control is enabled.
|
|
312
|
+
#
|
|
313
|
+
# @!attribute [rw] standards_id
|
|
314
|
+
# The unique identifier of a standard in which a control is enabled.
|
|
315
|
+
# This field consists of the resource portion of the Amazon Resource
|
|
316
|
+
# Name (ARN) returned for a standard in the [DescribeStandards][1] API
|
|
317
|
+
# response.
|
|
318
|
+
#
|
|
319
|
+
#
|
|
320
|
+
#
|
|
321
|
+
# [1]: https://docs.aws.amazon.com/securityhub/1.0/APIReference/API_DescribeStandards.html
|
|
322
|
+
# @return [String]
|
|
323
|
+
#
|
|
324
|
+
# @see http://docs.aws.amazon.com/goto/WebAPI/securityhub-2018-10-26/AssociatedStandard AWS API Documentation
|
|
325
|
+
#
|
|
326
|
+
class AssociatedStandard < Struct.new(
|
|
327
|
+
:standards_id)
|
|
328
|
+
SENSITIVE = []
|
|
329
|
+
include Aws::Structure
|
|
330
|
+
end
|
|
331
|
+
|
|
310
332
|
# Information about an Availability Zone.
|
|
311
333
|
#
|
|
312
334
|
# @!attribute [rw] zone_name
|
|
@@ -15395,7 +15417,7 @@ module Aws::SecurityHub
|
|
|
15395
15417
|
# An array of up to three Git repositories associated with the
|
|
15396
15418
|
# notebook instance. These can be either the names of Git repositories
|
|
15397
15419
|
# stored as resources in your account, or the URL of Git repositories
|
|
15398
|
-
# in [
|
|
15420
|
+
# in [CodeCommit][1] or in any other Git repository. These
|
|
15399
15421
|
# repositories are cloned at the same level as the default repository
|
|
15400
15422
|
# of your notebook instance. For more information, see [Associating
|
|
15401
15423
|
# Git repositories with SageMaker notebook instances][2] in the
|
|
@@ -15411,8 +15433,8 @@ module Aws::SecurityHub
|
|
|
15411
15433
|
# The Git repository associated with the notebook instance as its
|
|
15412
15434
|
# default code repository. This can be either the name of a Git
|
|
15413
15435
|
# repository stored as a resource in your account, or the URL of a Git
|
|
15414
|
-
# repository in [
|
|
15415
|
-
#
|
|
15436
|
+
# repository in [CodeCommit][1] or in any other Git repository. When
|
|
15437
|
+
# you open a notebook instance, it opens in the directory that
|
|
15416
15438
|
# contains this repository. For more information, see [Associating Git
|
|
15417
15439
|
# repositories with SageMaker notebook instances][2] in the *Amazon
|
|
15418
15440
|
# SageMaker Developer Guide*.
|
|
@@ -16448,6 +16470,23 @@ module Aws::SecurityHub
|
|
|
16448
16470
|
# results.
|
|
16449
16471
|
# @return [Array<Types::BooleanFilter>]
|
|
16450
16472
|
#
|
|
16473
|
+
# @!attribute [rw] compliance_security_control_id
|
|
16474
|
+
# The unique identifier of a control across standards. Values for this
|
|
16475
|
+
# field typically consist of an Amazon Web Service and a number, such
|
|
16476
|
+
# as APIGateway.5.
|
|
16477
|
+
# @return [Array<Types::StringFilter>]
|
|
16478
|
+
#
|
|
16479
|
+
# @!attribute [rw] compliance_associated_standards_id
|
|
16480
|
+
# The unique identifier of a standard in which a control is enabled.
|
|
16481
|
+
# This field consists of the resource portion of the Amazon Resource
|
|
16482
|
+
# Name (ARN) returned for a standard in the [DescribeStandards][1] API
|
|
16483
|
+
# response.
|
|
16484
|
+
#
|
|
16485
|
+
#
|
|
16486
|
+
#
|
|
16487
|
+
# [1]: https://docs.aws.amazon.com/securityhub/1.0/APIReference/API_DescribeStandards.html
|
|
16488
|
+
# @return [Array<Types::StringFilter>]
|
|
16489
|
+
#
|
|
16451
16490
|
# @see http://docs.aws.amazon.com/goto/WebAPI/securityhub-2018-10-26/AwsSecurityFindingFilters AWS API Documentation
|
|
16452
16491
|
#
|
|
16453
16492
|
class AwsSecurityFindingFilters < Struct.new(
|
|
@@ -16545,7 +16584,9 @@ module Aws::SecurityHub
|
|
|
16545
16584
|
:finding_provider_fields_severity_label,
|
|
16546
16585
|
:finding_provider_fields_severity_original,
|
|
16547
16586
|
:finding_provider_fields_types,
|
|
16548
|
-
:sample
|
|
16587
|
+
:sample,
|
|
16588
|
+
:compliance_security_control_id,
|
|
16589
|
+
:compliance_associated_standards_id)
|
|
16549
16590
|
SENSITIVE = []
|
|
16550
16591
|
include Aws::Structure
|
|
16551
16592
|
end
|
|
@@ -17777,8 +17818,8 @@ module Aws::SecurityHub
|
|
|
17777
17818
|
|
|
17778
17819
|
# Provides details about rules in a rule group. A rule identifies web
|
|
17779
17820
|
# requests that you want to allow, block, or count. Each rule includes
|
|
17780
|
-
# one top-level Statement that
|
|
17781
|
-
# requests, and parameters that govern how
|
|
17821
|
+
# one top-level Statement that WAF uses to identify matching web
|
|
17822
|
+
# requests, and parameters that govern how WAF handles them.
|
|
17782
17823
|
#
|
|
17783
17824
|
# @!attribute [rw] action
|
|
17784
17825
|
# The action that WAF should take on a web request when it matches the
|
|
@@ -18463,12 +18504,25 @@ module Aws::SecurityHub
|
|
|
18463
18504
|
# [1]: https://docs.aws.amazon.com/securityhub/latest/userguide/securityhub-standards-results.html#securityhub-standards-results-asff
|
|
18464
18505
|
# @return [Array<Types::StatusReason>]
|
|
18465
18506
|
#
|
|
18507
|
+
# @!attribute [rw] security_control_id
|
|
18508
|
+
# The unique identifier of a control across standards. Values for this
|
|
18509
|
+
# field typically consist of an Amazon Web Service and a number, such
|
|
18510
|
+
# as APIGateway.5.
|
|
18511
|
+
# @return [String]
|
|
18512
|
+
#
|
|
18513
|
+
# @!attribute [rw] associated_standards
|
|
18514
|
+
# The enabled security standards in which a security control is
|
|
18515
|
+
# currently enabled.
|
|
18516
|
+
# @return [Array<Types::AssociatedStandard>]
|
|
18517
|
+
#
|
|
18466
18518
|
# @see http://docs.aws.amazon.com/goto/WebAPI/securityhub-2018-10-26/Compliance AWS API Documentation
|
|
18467
18519
|
#
|
|
18468
18520
|
class Compliance < Struct.new(
|
|
18469
18521
|
:status,
|
|
18470
18522
|
:related_requirements,
|
|
18471
|
-
:status_reasons
|
|
18523
|
+
:status_reasons,
|
|
18524
|
+
:security_control_id,
|
|
18525
|
+
:associated_standards)
|
|
18472
18526
|
SENSITIVE = []
|
|
18473
18527
|
include Aws::Structure
|
|
18474
18528
|
end
|
|
@@ -20716,27 +20770,27 @@ module Aws::SecurityHub
|
|
|
20716
20770
|
#
|
|
20717
20771
|
# The status can have one of the following values:
|
|
20718
20772
|
#
|
|
20719
|
-
# * `
|
|
20773
|
+
# * `Created` - Indicates that the administrator account added the
|
|
20720
20774
|
# member account, but has not yet invited the member account.
|
|
20721
20775
|
#
|
|
20722
|
-
# * `
|
|
20776
|
+
# * `Invited` - Indicates that the administrator account invited the
|
|
20723
20777
|
# member account. The member account has not yet responded to the
|
|
20724
20778
|
# invitation.
|
|
20725
20779
|
#
|
|
20726
|
-
# * `
|
|
20780
|
+
# * `Enabled` - Indicates that the member account is currently active.
|
|
20727
20781
|
# For manually invited member accounts, indicates that the member
|
|
20728
20782
|
# account accepted the invitation.
|
|
20729
20783
|
#
|
|
20730
|
-
# * `
|
|
20784
|
+
# * `Removed` - Indicates that the administrator account disassociated
|
|
20731
20785
|
# the member account.
|
|
20732
20786
|
#
|
|
20733
|
-
# * `
|
|
20787
|
+
# * `Resigned` - Indicates that the member account disassociated
|
|
20734
20788
|
# themselves from the administrator account.
|
|
20735
20789
|
#
|
|
20736
|
-
# * `
|
|
20790
|
+
# * `Deleted` - Indicates that the administrator account deleted the
|
|
20737
20791
|
# member account.
|
|
20738
20792
|
#
|
|
20739
|
-
# * `
|
|
20793
|
+
# * `AccountSuspended` - Indicates that an organization account was
|
|
20740
20794
|
# suspended from Amazon Web Services at the same time that the
|
|
20741
20795
|
# administrator account tried to enable the organization account as
|
|
20742
20796
|
# a member account.
|
data/lib/aws-sdk-securityhub.rb
CHANGED
metadata
CHANGED
|
@@ -1,14 +1,14 @@
|
|
|
1
1
|
--- !ruby/object:Gem::Specification
|
|
2
2
|
name: aws-sdk-securityhub
|
|
3
3
|
version: !ruby/object:Gem::Version
|
|
4
|
-
version: 1.
|
|
4
|
+
version: 1.76.0
|
|
5
5
|
platform: ruby
|
|
6
6
|
authors:
|
|
7
7
|
- Amazon Web Services
|
|
8
8
|
autorequire:
|
|
9
9
|
bindir: bin
|
|
10
10
|
cert_chain: []
|
|
11
|
-
date: 2023-01-
|
|
11
|
+
date: 2023-01-31 00:00:00.000000000 Z
|
|
12
12
|
dependencies:
|
|
13
13
|
- !ruby/object:Gem::Dependency
|
|
14
14
|
name: aws-sdk-core
|