aws-sdk-securityhub 1.76.0 → 1.78.0

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.
@@ -383,11 +383,29 @@ module Aws::SecurityHub
383
383
  # @!attribute [rw] first_seen
384
384
  # An ISO8601-formatted timestamp that indicates when the API call was
385
385
  # first observed.
386
+ #
387
+ # A correctly formatted example is `2020-05-21T20:16:34.724Z`. The
388
+ # value cannot contain spaces, and date and time should be separated
389
+ # by `T`. For more information, see [RFC 3339 section 5.6, Internet
390
+ # Date/Time Format][1].
391
+ #
392
+ #
393
+ #
394
+ # [1]: https://www.rfc-editor.org/rfc/rfc3339#section-5.6
386
395
  # @return [String]
387
396
  #
388
397
  # @!attribute [rw] last_seen
389
398
  # An ISO8601-formatted timestamp that indicates when the API call was
390
399
  # most recently observed.
400
+ #
401
+ # A correctly formatted example is `2020-05-21T20:16:34.724Z`. The
402
+ # value cannot contain spaces, and date and time should be separated
403
+ # by `T`. For more information, see [RFC 3339 section 5.6, Internet
404
+ # Date/Time Format][1].
405
+ #
406
+ #
407
+ #
408
+ # [1]: https://www.rfc-editor.org/rfc/rfc3339#section-5.6
391
409
  # @return [String]
392
410
  #
393
411
  # @see http://docs.aws.amazon.com/goto/WebAPI/securityhub-2018-10-26/AwsApiCallAction AWS API Documentation
@@ -611,8 +629,9 @@ module Aws::SecurityHub
611
629
  # Indicates when the API was created.
612
630
  #
613
631
  # Uses the `date-time` format specified in [RFC 3339 section 5.6,
614
- # Internet Date/Time Format][1]. The value cannot contain spaces. For
615
- # example, `2020-03-22T13:22:13.933Z`.
632
+ # Internet Date/Time Format][1]. The value cannot contain spaces, and
633
+ # date and time should be separated by `T`. For example,
634
+ # `2020-03-22T13:22:13.933Z`.
616
635
  #
617
636
  #
618
637
  #
@@ -737,8 +756,9 @@ module Aws::SecurityHub
737
756
  # Indicates when the stage was created.
738
757
  #
739
758
  # Uses the `date-time` format specified in [RFC 3339 section 5.6,
740
- # Internet Date/Time Format][1]. The value cannot contain spaces. For
741
- # example, `2020-03-22T13:22:13.933Z`.
759
+ # Internet Date/Time Format][1]. The value cannot contain spaces, and
760
+ # date and time should be separated by `T`. For example,
761
+ # `2020-03-22T13:22:13.933Z`.
742
762
  #
743
763
  #
744
764
  #
@@ -749,8 +769,9 @@ module Aws::SecurityHub
749
769
  # Indicates when the stage was most recently updated.
750
770
  #
751
771
  # Uses the `date-time` format specified in [RFC 3339 section 5.6,
752
- # Internet Date/Time Format][1]. The value cannot contain spaces. For
753
- # example, `2020-03-22T13:22:13.933Z`.
772
+ # Internet Date/Time Format][1]. The value cannot contain spaces, and
773
+ # date and time should be separated by `T`. For example,
774
+ # `2020-03-22T13:22:13.933Z`.
754
775
  #
755
776
  #
756
777
  #
@@ -807,8 +828,9 @@ module Aws::SecurityHub
807
828
  # Indicates when the API was created.
808
829
  #
809
830
  # Uses the `date-time` format specified in [RFC 3339 section 5.6,
810
- # Internet Date/Time Format][1]. The value cannot contain spaces. For
811
- # example, `2020-03-22T13:22:13.933Z`.
831
+ # Internet Date/Time Format][1]. The value cannot contain spaces, and
832
+ # date and time should be separated by `T`. For example,
833
+ # `2020-03-22T13:22:13.933Z`.
812
834
  #
813
835
  #
814
836
  #
@@ -920,8 +942,9 @@ module Aws::SecurityHub
920
942
  # Indicates when the stage was created.
921
943
  #
922
944
  # Uses the `date-time` format specified in [RFC 3339 section 5.6,
923
- # Internet Date/Time Format][1]. The value cannot contain spaces. For
924
- # example, `2020-03-22T13:22:13.933Z`.
945
+ # Internet Date/Time Format][1]. The value cannot contain spaces, and
946
+ # date and time should be separated by `T`. For example,
947
+ # `2020-03-22T13:22:13.933Z`.
925
948
  #
926
949
  #
927
950
  #
@@ -944,8 +967,9 @@ module Aws::SecurityHub
944
967
  # Indicates when the stage was most recently updated.
945
968
  #
946
969
  # Uses the `date-time` format specified in [RFC 3339 section 5.6,
947
- # Internet Date/Time Format][1]. The value cannot contain spaces. For
948
- # example, `2020-03-22T13:22:13.933Z`.
970
+ # Internet Date/Time Format][1]. The value cannot contain spaces, and
971
+ # date and time should be separated by `T`. For example,
972
+ # `2020-03-22T13:22:13.933Z`.
949
973
  #
950
974
  #
951
975
  #
@@ -1051,8 +1075,9 @@ module Aws::SecurityHub
1051
1075
  # Indicates when the auto scaling group was created.
1052
1076
  #
1053
1077
  # Uses the `date-time` format specified in [RFC 3339 section 5.6,
1054
- # Internet Date/Time Format][1]. The value cannot contain spaces. For
1055
- # example, `2020-03-22T13:22:13.933Z`.
1078
+ # Internet Date/Time Format][1]. The value cannot contain spaces, and
1079
+ # date and time should be separated by `T`. For example,
1080
+ # `2020-03-22T13:22:13.933Z`.
1056
1081
  #
1057
1082
  #
1058
1083
  #
@@ -1393,8 +1418,9 @@ module Aws::SecurityHub
1393
1418
  # The creation date and time for the launch configuration.
1394
1419
  #
1395
1420
  # Uses the `date-time` format specified in [RFC 3339 section 5.6,
1396
- # Internet Date/Time Format][1]. The value cannot contain spaces. For
1397
- # example, `2020-03-22T13:22:13.933Z`.
1421
+ # Internet Date/Time Format][1]. The value cannot contain spaces, and
1422
+ # date and time should be separated by `T`. For example,
1423
+ # `2020-03-22T13:22:13.933Z`.
1398
1424
  #
1399
1425
  #
1400
1426
  #
@@ -1812,8 +1838,8 @@ module Aws::SecurityHub
1812
1838
  # @return [Array<String>]
1813
1839
  #
1814
1840
  # @!attribute [rw] sns_topic_arn
1815
- # An ARN that uniquely identifies the Amazon SNS topic for a backup
1816
- # vaults events.
1841
+ # The Amazon Resource Name (ARN) that uniquely identifies the Amazon
1842
+ # SNS topic for a backup vault's events.
1817
1843
  # @return [String]
1818
1844
  #
1819
1845
  # @see http://docs.aws.amazon.com/goto/WebAPI/securityhub-2018-10-26/AwsBackupBackupVaultNotificationsDetails AWS API Documentation
@@ -2065,8 +2091,9 @@ module Aws::SecurityHub
2065
2091
  # Indicates when the certificate was requested.
2066
2092
  #
2067
2093
  # Uses the `date-time` format specified in [RFC 3339 section 5.6,
2068
- # Internet Date/Time Format][1]. The value cannot contain spaces. For
2069
- # example, `2020-03-22T13:22:13.933Z`.
2094
+ # Internet Date/Time Format][1]. The value cannot contain spaces, and
2095
+ # date and time should be separated by `T`. For example,
2096
+ # `2020-03-22T13:22:13.933Z`.
2070
2097
  #
2071
2098
  #
2072
2099
  #
@@ -2109,8 +2136,9 @@ module Aws::SecurityHub
2109
2136
  # certificate type is `IMPORTED`.
2110
2137
  #
2111
2138
  # Uses the `date-time` format specified in [RFC 3339 section 5.6,
2112
- # Internet Date/Time Format][1]. The value cannot contain spaces. For
2113
- # example, `2020-03-22T13:22:13.933Z`.
2139
+ # Internet Date/Time Format][1]. The value cannot contain spaces, and
2140
+ # date and time should be separated by `T`. For example,
2141
+ # `2020-03-22T13:22:13.933Z`.
2114
2142
  #
2115
2143
  #
2116
2144
  #
@@ -2127,8 +2155,9 @@ module Aws::SecurityHub
2127
2155
  # certificate type is `AMAZON_ISSUED`.
2128
2156
  #
2129
2157
  # Uses the `date-time` format specified in [RFC 3339 section 5.6,
2130
- # Internet Date/Time Format][1]. The value cannot contain spaces. For
2131
- # example, `2020-03-22T13:22:13.933Z`.
2158
+ # Internet Date/Time Format][1]. The value cannot contain spaces, and
2159
+ # date and time should be separated by `T`. For example,
2160
+ # `2020-03-22T13:22:13.933Z`.
2132
2161
  #
2133
2162
  #
2134
2163
  #
@@ -2155,8 +2184,9 @@ module Aws::SecurityHub
2155
2184
  # The time after which the certificate becomes invalid.
2156
2185
  #
2157
2186
  # Uses the `date-time` format specified in [RFC 3339 section 5.6,
2158
- # Internet Date/Time Format][1]. The value cannot contain spaces. For
2159
- # example, `2020-03-22T13:22:13.933Z`.
2187
+ # Internet Date/Time Format][1]. The value cannot contain spaces, and
2188
+ # date and time should be separated by `T`. For example,
2189
+ # `2020-03-22T13:22:13.933Z`.
2160
2190
  #
2161
2191
  #
2162
2192
  #
@@ -2167,8 +2197,9 @@ module Aws::SecurityHub
2167
2197
  # The time before which the certificate is not valid.
2168
2198
  #
2169
2199
  # Uses the `date-time` format specified in [RFC 3339 section 5.6,
2170
- # Internet Date/Time Format][1]. The value cannot contain spaces. For
2171
- # example, `2020-03-22T13:22:13.933Z`.
2200
+ # Internet Date/Time Format][1]. The value cannot contain spaces, and
2201
+ # date and time should be separated by `T`. For example,
2202
+ # `2020-03-22T13:22:13.933Z`.
2172
2203
  #
2173
2204
  #
2174
2205
  #
@@ -2396,8 +2427,9 @@ module Aws::SecurityHub
2396
2427
  # Indicates when the renewal summary was last updated.
2397
2428
  #
2398
2429
  # Uses the `date-time` format specified in [RFC 3339 section 5.6,
2399
- # Internet Date/Time Format][1]. The value cannot contain spaces. For
2400
- # example, `2020-03-22T13:22:13.933Z`.
2430
+ # Internet Date/Time Format][1]. The value cannot contain spaces, and
2431
+ # date and time should be separated by `T`. For example,
2432
+ # `2020-03-22T13:22:13.933Z`.
2401
2433
  #
2402
2434
  #
2403
2435
  #
@@ -2664,8 +2696,9 @@ module Aws::SecurityHub
2664
2696
  # Indicates when that the distribution was last modified.
2665
2697
  #
2666
2698
  # Uses the `date-time` format specified in [RFC 3339 section 5.6,
2667
- # Internet Date/Time Format][1]. The value cannot contain spaces. For
2668
- # example, `2020-03-22T13:22:13.933Z`.
2699
+ # Internet Date/Time Format][1]. The value cannot contain spaces, and
2700
+ # date and time should be separated by `T`. For example,
2701
+ # `2020-03-22T13:22:13.933Z`.
2669
2702
  #
2670
2703
  #
2671
2704
  #
@@ -3770,8 +3803,9 @@ module Aws::SecurityHub
3770
3803
  # mode was set to that value.
3771
3804
  #
3772
3805
  # Uses the `date-time` format specified in [RFC 3339 section 5.6,
3773
- # Internet Date/Time Format][1]. The value cannot contain spaces. For
3774
- # example, `2020-03-22T13:22:13.933Z`.
3806
+ # Internet Date/Time Format][1]. The value cannot contain spaces, and
3807
+ # date and time should be separated by `T`. For example,
3808
+ # `2020-03-22T13:22:13.933Z`.
3775
3809
  #
3776
3810
  #
3777
3811
  #
@@ -3801,8 +3835,9 @@ module Aws::SecurityHub
3801
3835
  # Indicates when the table was created.
3802
3836
  #
3803
3837
  # Uses the `date-time` format specified in [RFC 3339 section 5.6,
3804
- # Internet Date/Time Format][1]. The value cannot contain spaces. For
3805
- # example, `2020-03-22T13:22:13.933Z`.
3838
+ # Internet Date/Time Format][1]. The value cannot contain spaces, and
3839
+ # date and time should be separated by `T`. For example,
3840
+ # `2020-03-22T13:22:13.933Z`.
3806
3841
  #
3807
3842
  #
3808
3843
  #
@@ -4064,8 +4099,9 @@ module Aws::SecurityHub
4064
4099
  # Indicates when the provisioned throughput was last decreased.
4065
4100
  #
4066
4101
  # Uses the `date-time` format specified in [RFC 3339 section 5.6,
4067
- # Internet Date/Time Format][1]. The value cannot contain spaces. For
4068
- # example, `2020-03-22T13:22:13.933Z`.
4102
+ # Internet Date/Time Format][1]. The value cannot contain spaces, and
4103
+ # date and time should be separated by `T`. For example,
4104
+ # `2020-03-22T13:22:13.933Z`.
4069
4105
  #
4070
4106
  #
4071
4107
  #
@@ -4076,8 +4112,9 @@ module Aws::SecurityHub
4076
4112
  # Indicates when the provisioned throughput was last increased.
4077
4113
  #
4078
4114
  # Uses the `date-time` format specified in [RFC 3339 section 5.6,
4079
- # Internet Date/Time Format][1]. The value cannot contain spaces. For
4080
- # example, `2020-03-22T13:22:13.933Z`.
4115
+ # Internet Date/Time Format][1]. The value cannot contain spaces, and
4116
+ # date and time should be separated by `T`. For example,
4117
+ # `2020-03-22T13:22:13.933Z`.
4081
4118
  #
4082
4119
  #
4083
4120
  #
@@ -4210,8 +4247,9 @@ module Aws::SecurityHub
4210
4247
  # Indicates the point in time that the table was restored to.
4211
4248
  #
4212
4249
  # Uses the `date-time` format specified in [RFC 3339 section 5.6,
4213
- # Internet Date/Time Format][1]. The value cannot contain spaces. For
4214
- # example, `2020-03-22T13:22:13.933Z`.
4250
+ # Internet Date/Time Format][1]. The value cannot contain spaces, and
4251
+ # date and time should be separated by `T`. For example,
4252
+ # `2020-03-22T13:22:13.933Z`.
4215
4253
  #
4216
4254
  #
4217
4255
  #
@@ -4240,8 +4278,9 @@ module Aws::SecurityHub
4240
4278
  # that the key was inaccessible.
4241
4279
  #
4242
4280
  # Uses the `date-time` format specified in [RFC 3339 section 5.6,
4243
- # Internet Date/Time Format][1]. The value cannot contain spaces. For
4244
- # example, `2020-03-22T13:22:13.933Z`.
4281
+ # Internet Date/Time Format][1]. The value cannot contain spaces, and
4282
+ # date and time should be separated by `T`. For example,
4283
+ # `2020-03-22T13:22:13.933Z`.
4245
4284
  #
4246
4285
  #
4247
4286
  #
@@ -4396,8 +4435,9 @@ module Aws::SecurityHub
4396
4435
  # Indicates when the instance was launched.
4397
4436
  #
4398
4437
  # Uses the `date-time` format specified in [RFC 3339 section 5.6,
4399
- # Internet Date/Time Format][1]. The value cannot contain spaces. For
4400
- # example, `2020-03-22T13:22:13.933Z`.
4438
+ # Internet Date/Time Format][1]. The value cannot contain spaces, and
4439
+ # date and time should be separated by `T`. For example,
4440
+ # `2020-03-22T13:22:13.933Z`.
4401
4441
  #
4402
4442
  #
4403
4443
  #
@@ -5176,7 +5216,7 @@ module Aws::SecurityHub
5176
5216
  #
5177
5217
  # @!attribute [rw] on_demand_max_price_percentage_over_lowest_price
5178
5218
  # The price protection threshold for On-Demand Instances. This is the
5179
- # maximum youll pay for an On-Demand Instance, expressed as a
5219
+ # maximum you'll pay for an On-Demand Instance, expressed as a
5180
5220
  # percentage above the least expensive current generation M, C, or R
5181
5221
  # instance type with your specified attributes. When Amazon EC2
5182
5222
  # selects instance types with your attributes, it excludes instance
@@ -5195,7 +5235,7 @@ module Aws::SecurityHub
5195
5235
  #
5196
5236
  # @!attribute [rw] spot_max_price_percentage_over_lowest_price
5197
5237
  # The price protection threshold for Spot Instances. This is the
5198
- # maximum youll pay for a Spot Instance, expressed as a percentage
5238
+ # maximum you'll pay for a Spot Instance, expressed as a percentage
5199
5239
  # above the least expensive current generation M, C, or R instance
5200
5240
  # type with your specified attributes. When Amazon EC2 selects
5201
5241
  # instance types with your attributes, it excludes instance types
@@ -5378,7 +5418,7 @@ module Aws::SecurityHub
5378
5418
  # @!attribute [rw] http_endpoint
5379
5419
  # Enables or disables the HTTP metadata endpoint on your instances. If
5380
5420
  # the parameter is not specified, the default state is enabled, and
5381
- # you wont be able to access your instance metadata.
5421
+ # you won't be able to access your instance metadata.
5382
5422
  # @return [String]
5383
5423
  #
5384
5424
  # @!attribute [rw] http_protocol_ipv_6
@@ -5880,8 +5920,9 @@ module Aws::SecurityHub
5880
5920
  # Indicates when the attachment initiated.
5881
5921
  #
5882
5922
  # Uses the `date-time` format specified in [RFC 3339 section 5.6,
5883
- # Internet Date/Time Format][1]. The value cannot contain spaces. For
5884
- # example, `2020-03-22T13:22:13.933Z`.
5923
+ # Internet Date/Time Format][1]. The value cannot contain spaces, and
5924
+ # date and time should be separated by `T`. For example,
5925
+ # `2020-03-22T13:22:13.933Z`.
5885
5926
  #
5886
5927
  #
5887
5928
  #
@@ -6430,8 +6471,9 @@ module Aws::SecurityHub
6430
6471
  # Indicates when the volume was created.
6431
6472
  #
6432
6473
  # Uses the `date-time` format specified in [RFC 3339 section 5.6,
6433
- # Internet Date/Time Format][1]. The value cannot contain spaces. For
6434
- # example, `2020-03-22T13:22:13.933Z`.
6474
+ # Internet Date/Time Format][1]. The value cannot contain spaces, and
6475
+ # date and time should be separated by `T`. For example,
6476
+ # `2020-03-22T13:22:13.933Z`.
6435
6477
  #
6436
6478
  #
6437
6479
  #
@@ -6966,8 +7008,9 @@ module Aws::SecurityHub
6966
7008
  # The date and time of the last change in status.
6967
7009
  #
6968
7010
  # Uses the `date-time` format specified in [RFC 3339 section 5.6,
6969
- # Internet Date/Time Format][1]. The value cannot contain spaces. For
6970
- # example, `2020-03-22T13:22:13.933Z`.
7011
+ # Internet Date/Time Format][1]. The value cannot contain spaces, and
7012
+ # date and time should be separated by `T`. For example,
7013
+ # `2020-03-22T13:22:13.933Z`.
6971
7014
  #
6972
7015
  #
6973
7016
  #
@@ -7033,8 +7076,9 @@ module Aws::SecurityHub
7033
7076
  # The date and time when the image was pushed to the repository.
7034
7077
  #
7035
7078
  # Uses the `date-time` format specified in [RFC 3339 section 5.6,
7036
- # Internet Date/Time Format][1]. The value cannot contain spaces. For
7037
- # example, `2020-03-22T13:22:13.933Z`.
7079
+ # Internet Date/Time Format][1]. The value cannot contain spaces, and
7080
+ # date and time should be separated by `T`. For example,
7081
+ # `2020-03-22T13:22:13.933Z`.
7038
7082
  #
7039
7083
  #
7040
7084
  #
@@ -10196,8 +10240,9 @@ module Aws::SecurityHub
10196
10240
  # Indicates when the load balancer was created.
10197
10241
  #
10198
10242
  # Uses the `date-time` format specified in [RFC 3339 section 5.6,
10199
- # Internet Date/Time Format][1]. The value cannot contain spaces. For
10200
- # example, `2020-03-22T13:22:13.933Z`.
10243
+ # Internet Date/Time Format][1]. The value cannot contain spaces, and
10244
+ # date and time should be separated by `T`. For example,
10245
+ # `2020-03-22T13:22:13.933Z`.
10201
10246
  #
10202
10247
  #
10203
10248
  #
@@ -10492,8 +10537,9 @@ module Aws::SecurityHub
10492
10537
  # Indicates when the load balancer was created.
10493
10538
  #
10494
10539
  # Uses the `date-time` format specified in [RFC 3339 section 5.6,
10495
- # Internet Date/Time Format][1]. The value cannot contain spaces. For
10496
- # example, `2020-03-22T13:22:13.933Z`.
10540
+ # Internet Date/Time Format][1]. The value cannot contain spaces, and
10541
+ # date and time should be separated by `T`. For example,
10542
+ # `2020-03-22T13:22:13.933Z`.
10497
10543
  #
10498
10544
  #
10499
10545
  #
@@ -10571,8 +10617,9 @@ module Aws::SecurityHub
10571
10617
  # Indicates when the IAM access key was created.
10572
10618
  #
10573
10619
  # Uses the `date-time` format specified in [RFC 3339 section 5.6,
10574
- # Internet Date/Time Format][1]. The value cannot contain spaces. For
10575
- # example, `2020-03-22T13:22:13.933Z`.
10620
+ # Internet Date/Time Format][1]. The value cannot contain spaces, and
10621
+ # date and time should be separated by `T`. For example,
10622
+ # `2020-03-22T13:22:13.933Z`.
10576
10623
  #
10577
10624
  #
10578
10625
  #
@@ -10649,8 +10696,9 @@ module Aws::SecurityHub
10649
10696
  # Indicates when the session was created.
10650
10697
  #
10651
10698
  # Uses the `date-time` format specified in [RFC 3339 section 5.6,
10652
- # Internet Date/Time Format][1]. The value cannot contain spaces. For
10653
- # example, `2020-03-22T13:22:13.933Z`.
10699
+ # Internet Date/Time Format][1]. The value cannot contain spaces, and
10700
+ # date and time should be separated by `T`. For example,
10701
+ # `2020-03-22T13:22:13.933Z`.
10654
10702
  #
10655
10703
  #
10656
10704
  #
@@ -10732,8 +10780,9 @@ module Aws::SecurityHub
10732
10780
  # Indicates when the IAM group was created.
10733
10781
  #
10734
10782
  # Uses the `date-time` format specified in [RFC 3339 section 5.6,
10735
- # Internet Date/Time Format][1]. The value cannot contain spaces. For
10736
- # example, `2020-03-22T13:22:13.933Z`.
10783
+ # Internet Date/Time Format][1]. The value cannot contain spaces, and
10784
+ # date and time should be separated by `T`. For example,
10785
+ # `2020-03-22T13:22:13.933Z`.
10737
10786
  #
10738
10787
  #
10739
10788
  #
@@ -10793,8 +10842,9 @@ module Aws::SecurityHub
10793
10842
  # Indicates when the instance profile was created.
10794
10843
  #
10795
10844
  # Uses the `date-time` format specified in [RFC 3339 section 5.6,
10796
- # Internet Date/Time Format][1]. The value cannot contain spaces. For
10797
- # example, `2020-03-22T13:22:13.933Z`.
10845
+ # Internet Date/Time Format][1]. The value cannot contain spaces, and
10846
+ # date and time should be separated by `T`. For example,
10847
+ # `2020-03-22T13:22:13.933Z`.
10798
10848
  #
10799
10849
  #
10800
10850
  #
@@ -10844,8 +10894,9 @@ module Aws::SecurityHub
10844
10894
  # Indicates when the role was created.
10845
10895
  #
10846
10896
  # Uses the `date-time` format specified in [RFC 3339 section 5.6,
10847
- # Internet Date/Time Format][1]. The value cannot contain spaces. For
10848
- # example, `2020-03-22T13:22:13.933Z`.
10897
+ # Internet Date/Time Format][1]. The value cannot contain spaces, and
10898
+ # date and time should be separated by `T`. For example,
10899
+ # `2020-03-22T13:22:13.933Z`.
10849
10900
  #
10850
10901
  #
10851
10902
  #
@@ -10908,8 +10959,9 @@ module Aws::SecurityHub
10908
10959
  # When the policy was created.
10909
10960
  #
10910
10961
  # Uses the `date-time` format specified in [RFC 3339 section 5.6,
10911
- # Internet Date/Time Format][1]. The value cannot contain spaces. For
10912
- # example, `2020-03-22T13:22:13.933Z`.
10962
+ # Internet Date/Time Format][1]. The value cannot contain spaces, and
10963
+ # date and time should be separated by `T`. For example,
10964
+ # `2020-03-22T13:22:13.933Z`.
10913
10965
  #
10914
10966
  #
10915
10967
  #
@@ -10953,8 +11005,9 @@ module Aws::SecurityHub
10953
11005
  # When the policy was most recently updated.
10954
11006
  #
10955
11007
  # Uses the `date-time` format specified in [RFC 3339 section 5.6,
10956
- # Internet Date/Time Format][1]. The value cannot contain spaces. For
10957
- # example, `2020-03-22T13:22:13.933Z`.
11008
+ # Internet Date/Time Format][1]. The value cannot contain spaces, and
11009
+ # date and time should be separated by `T`. For example,
11010
+ # `2020-03-22T13:22:13.933Z`.
10958
11011
  #
10959
11012
  #
10960
11013
  #
@@ -10993,8 +11046,9 @@ module Aws::SecurityHub
10993
11046
  # Indicates when the version was created.
10994
11047
  #
10995
11048
  # Uses the `date-time` format specified in [RFC 3339 section 5.6,
10996
- # Internet Date/Time Format][1]. The value cannot contain spaces. For
10997
- # example, `2020-03-22T13:22:13.933Z`.
11049
+ # Internet Date/Time Format][1]. The value cannot contain spaces, and
11050
+ # date and time should be separated by `T`. For example,
11051
+ # `2020-03-22T13:22:13.933Z`.
10998
11052
  #
10999
11053
  #
11000
11054
  #
@@ -11026,8 +11080,9 @@ module Aws::SecurityHub
11026
11080
  # Indicates when the role was created.
11027
11081
  #
11028
11082
  # Uses the `date-time` format specified in [RFC 3339 section 5.6,
11029
- # Internet Date/Time Format][1]. The value cannot contain spaces. For
11030
- # example, `2020-03-22T13:22:13.933Z`.
11083
+ # Internet Date/Time Format][1]. The value cannot contain spaces, and
11084
+ # date and time should be separated by `T`. For example,
11085
+ # `2020-03-22T13:22:13.933Z`.
11031
11086
  #
11032
11087
  #
11033
11088
  #
@@ -11105,8 +11160,9 @@ module Aws::SecurityHub
11105
11160
  # Indicates when the user was created.
11106
11161
  #
11107
11162
  # Uses the `date-time` format specified in [RFC 3339 section 5.6,
11108
- # Internet Date/Time Format][1]. The value cannot contain spaces. For
11109
- # example, `2020-03-22T13:22:13.933Z`.
11163
+ # Internet Date/Time Format][1]. The value cannot contain spaces, and
11164
+ # date and time should be separated by `T`. For example,
11165
+ # `2020-03-22T13:22:13.933Z`.
11110
11166
  #
11111
11167
  #
11112
11168
  #
@@ -11236,8 +11292,9 @@ module Aws::SecurityHub
11236
11292
  # Indicates when the KMS key was created.
11237
11293
  #
11238
11294
  # Uses the `date-time` format specified in [RFC 3339 section 5.6,
11239
- # Internet Date/Time Format][1]. The value cannot contain spaces. For
11240
- # example, `2020-03-22T13:22:13.933Z`.
11295
+ # Internet Date/Time Format][1]. The value cannot contain spaces, and
11296
+ # date and time should be separated by `T`. For example,
11297
+ # `2020-03-22T13:22:13.933Z`.
11241
11298
  #
11242
11299
  #
11243
11300
  #
@@ -11388,8 +11445,9 @@ module Aws::SecurityHub
11388
11445
  # Indicates when the function was last updated.
11389
11446
  #
11390
11447
  # Uses the `date-time` format specified in [RFC 3339 section 5.6,
11391
- # Internet Date/Time Format][1]. The value cannot contain spaces. For
11392
- # example, `2020-03-22T13:22:13.933Z`.
11448
+ # Internet Date/Time Format][1]. The value cannot contain spaces, and
11449
+ # date and time should be separated by `T`. For example,
11450
+ # `2020-03-22T13:22:13.933Z`.
11393
11451
  #
11394
11452
  #
11395
11453
  #
@@ -11590,8 +11648,9 @@ module Aws::SecurityHub
11590
11648
  # Indicates when the version was created.
11591
11649
  #
11592
11650
  # Uses the `date-time` format specified in [RFC 3339 section 5.6,
11593
- # Internet Date/Time Format][1]. The value cannot contain spaces. For
11594
- # example, `2020-03-22T13:22:13.933Z`.
11651
+ # Internet Date/Time Format][1]. The value cannot contain spaces, and
11652
+ # date and time should be separated by `T`. For example,
11653
+ # `2020-03-22T13:22:13.933Z`.
11595
11654
  #
11596
11655
  #
11597
11656
  #
@@ -12372,8 +12431,9 @@ module Aws::SecurityHub
12372
12431
  # Time (UTC).
12373
12432
  #
12374
12433
  # Uses the `date-time` format specified in [RFC 3339 section 5.6,
12375
- # Internet Date/Time Format][1]. The value cannot contain spaces. For
12376
- # example, `2020-03-22T13:22:13.933Z`.
12434
+ # Internet Date/Time Format][1]. The value cannot contain spaces, and
12435
+ # date and time should be separated by `T`. For example,
12436
+ # `2020-03-22T13:22:13.933Z`.
12377
12437
  #
12378
12438
  #
12379
12439
  #
@@ -12569,8 +12629,9 @@ module Aws::SecurityHub
12569
12629
  # Indicates when the snapshot was taken.
12570
12630
  #
12571
12631
  # Uses the `date-time` format specified in [RFC 3339 section 5.6,
12572
- # Internet Date/Time Format][1]. The value cannot contain spaces. For
12573
- # example, `2020-03-22T13:22:13.933Z`.
12632
+ # Internet Date/Time Format][1]. The value cannot contain spaces, and
12633
+ # date and time should be separated by `T`. For example,
12634
+ # `2020-03-22T13:22:13.933Z`.
12574
12635
  #
12575
12636
  #
12576
12637
  #
@@ -12604,8 +12665,9 @@ module Aws::SecurityHub
12604
12665
  # Time (UTC).
12605
12666
  #
12606
12667
  # Uses the `date-time` format specified in [RFC 3339 section 5.6,
12607
- # Internet Date/Time Format][1]. The value cannot contain spaces. For
12608
- # example, `2020-03-22T13:22:13.933Z`.
12668
+ # Internet Date/Time Format][1]. The value cannot contain spaces, and
12669
+ # date and time should be separated by `T`. For example,
12670
+ # `2020-03-22T13:22:13.933Z`.
12609
12671
  #
12610
12672
  #
12611
12673
  #
@@ -12840,8 +12902,9 @@ module Aws::SecurityHub
12840
12902
  # Indicates when the DB instance was created.
12841
12903
  #
12842
12904
  # Uses the `date-time` format specified in [RFC 3339 section 5.6,
12843
- # Internet Date/Time Format][1]. The value cannot contain spaces. For
12844
- # example, `2020-03-22T13:22:13.933Z`.
12905
+ # Internet Date/Time Format][1]. The value cannot contain spaces, and
12906
+ # date and time should be separated by `T`. For example,
12907
+ # `2020-03-22T13:22:13.933Z`.
12845
12908
  #
12846
12909
  #
12847
12910
  #
@@ -12947,8 +13010,9 @@ module Aws::SecurityHub
12947
13010
  # point-in-time restore.
12948
13011
  #
12949
13012
  # Uses the `date-time` format specified in [RFC 3339 section 5.6,
12950
- # Internet Date/Time Format][1]. The value cannot contain spaces. For
12951
- # example, `2020-03-22T13:22:13.933Z`.
13013
+ # Internet Date/Time Format][1]. The value cannot contain spaces, and
13014
+ # date and time should be separated by `T`. For example,
13015
+ # `2020-03-22T13:22:13.933Z`.
12952
13016
  #
12953
13017
  #
12954
13018
  #
@@ -13760,8 +13824,9 @@ module Aws::SecurityHub
13760
13824
  # The datetime when the event notification subscription was created.
13761
13825
  #
13762
13826
  # Uses the `date-time` format specified in [RFC 3339 section 5.6,
13763
- # Internet Date/Time Format][1]. The value cannot contain spaces. For
13764
- # example, `2020-03-22T13:22:13.933Z`.
13827
+ # Internet Date/Time Format][1]. The value cannot contain spaces, and
13828
+ # date and time should be separated by `T`. For example,
13829
+ # `2020-03-22T13:22:13.933Z`.
13765
13830
  #
13766
13831
  #
13767
13832
  #
@@ -13905,7 +13970,9 @@ module Aws::SecurityHub
13905
13970
  include Aws::Structure
13906
13971
  end
13907
13972
 
13908
- # Information about a cross-Region snapshot copy.
13973
+ # You can configure Amazon Redshift to copy snapshots for a cluster to
13974
+ # another Amazon Web Services Region. This parameter provides
13975
+ # information about a cross-Region snapshot copy.
13909
13976
  #
13910
13977
  # @!attribute [rw] destination_region
13911
13978
  # The destination Region that snapshots are automatically copied to
@@ -13914,7 +13981,7 @@ module Aws::SecurityHub
13914
13981
  #
13915
13982
  # @!attribute [rw] manual_snapshot_retention_period
13916
13983
  # The number of days that manual snapshots are retained in the
13917
- # destination region after they are copied from a source region.
13984
+ # destination Region after they are copied from a source Region.
13918
13985
  #
13919
13986
  # If the value is `-1`, then the manual snapshot is retained
13920
13987
  # indefinitely.
@@ -13949,8 +14016,9 @@ module Aws::SecurityHub
13949
14016
  # The end of the time window for which maintenance was deferred.
13950
14017
  #
13951
14018
  # Uses the `date-time` format specified in [RFC 3339 section 5.6,
13952
- # Internet Date/Time Format][1]. The value cannot contain spaces. For
13953
- # example, `2020-03-22T13:22:13.933Z`.
14019
+ # Internet Date/Time Format][1]. The value cannot contain spaces, and
14020
+ # date and time should be separated by `T`. For example,
14021
+ # `2020-03-22T13:22:13.933Z`.
13954
14022
  #
13955
14023
  #
13956
14024
  #
@@ -13965,8 +14033,9 @@ module Aws::SecurityHub
13965
14033
  # The start of the time window for which maintenance was deferred.
13966
14034
  #
13967
14035
  # Uses the `date-time` format specified in [RFC 3339 section 5.6,
13968
- # Internet Date/Time Format][1]. The value cannot contain spaces. For
13969
- # example, `2020-03-22T13:22:13.933Z`.
14036
+ # Internet Date/Time Format][1]. The value cannot contain spaces, and
14037
+ # date and time should be separated by `T`. For example,
14038
+ # `2020-03-22T13:22:13.933Z`.
13970
14039
  #
13971
14040
  #
13972
14041
  #
@@ -14019,8 +14088,9 @@ module Aws::SecurityHub
14019
14088
  # Indicates when the cluster was created.
14020
14089
  #
14021
14090
  # Uses the `date-time` format specified in [RFC 3339 section 5.6,
14022
- # Internet Date/Time Format][1]. The value cannot contain spaces. For
14023
- # example, `2020-03-22T13:22:13.933Z`.
14091
+ # Internet Date/Time Format][1]. The value cannot contain spaces, and
14092
+ # date and time should be separated by `T`. For example,
14093
+ # `2020-03-22T13:22:13.933Z`.
14024
14094
  #
14025
14095
  #
14026
14096
  #
@@ -14122,8 +14192,9 @@ module Aws::SecurityHub
14122
14192
  # enabled.
14123
14193
  #
14124
14194
  # Uses the `date-time` format specified in [RFC 3339 section 5.6,
14125
- # Internet Date/Time Format][1]. The value cannot contain spaces. For
14126
- # example, `2020-03-22T13:22:13.933Z`.
14195
+ # Internet Date/Time Format][1]. The value cannot contain spaces, and
14196
+ # date and time should be separated by `T`. For example,
14197
+ # `2020-03-22T13:22:13.933Z`.
14127
14198
  #
14128
14199
  #
14129
14200
  #
@@ -14176,8 +14247,9 @@ module Aws::SecurityHub
14176
14247
  # Indicates the start of the next maintenance window.
14177
14248
  #
14178
14249
  # Uses the `date-time` format specified in [RFC 3339 section 5.6,
14179
- # Internet Date/Time Format][1]. The value cannot contain spaces. For
14180
- # example, `2020-03-22T13:22:13.933Z`.
14250
+ # Internet Date/Time Format][1]. The value cannot contain spaces, and
14251
+ # date and time should be separated by `T`. For example,
14252
+ # `2020-03-22T13:22:13.933Z`.
14181
14253
  #
14182
14254
  #
14183
14255
  #
@@ -14410,8 +14482,9 @@ module Aws::SecurityHub
14410
14482
  # The last time when logs failed to be delivered.
14411
14483
  #
14412
14484
  # Uses the `date-time` format specified in [RFC 3339 section 5.6,
14413
- # Internet Date/Time Format][1]. The value cannot contain spaces. For
14414
- # example, `2020-03-22T13:22:13.933Z`.
14485
+ # Internet Date/Time Format][1]. The value cannot contain spaces, and
14486
+ # date and time should be separated by `T`. For example,
14487
+ # `2020-03-22T13:22:13.933Z`.
14415
14488
  #
14416
14489
  #
14417
14490
  #
@@ -14422,8 +14495,9 @@ module Aws::SecurityHub
14422
14495
  # The last time that logs were delivered successfully.
14423
14496
  #
14424
14497
  # Uses the `date-time` format specified in [RFC 3339 section 5.6,
14425
- # Internet Date/Time Format][1]. The value cannot contain spaces. For
14426
- # example, `2020-03-22T13:22:13.933Z`.
14498
+ # Internet Date/Time Format][1]. The value cannot contain spaces, and
14499
+ # date and time should be separated by `T`. For example,
14500
+ # `2020-03-22T13:22:13.933Z`.
14427
14501
  #
14428
14502
  #
14429
14503
  #
@@ -14701,8 +14775,9 @@ module Aws::SecurityHub
14701
14775
  # The date when objects are moved or deleted.
14702
14776
  #
14703
14777
  # Uses the `date-time` format specified in [RFC 3339 section 5.6,
14704
- # Internet Date/Time Format][1]. The value cannot contain spaces. For
14705
- # example, `2020-03-22T13:22:13.933Z`.
14778
+ # Internet Date/Time Format][1]. The value cannot contain spaces, and
14779
+ # date and time should be separated by `T`. For example,
14780
+ # `2020-03-22T13:22:13.933Z`.
14706
14781
  #
14707
14782
  #
14708
14783
  #
@@ -14910,8 +14985,9 @@ module Aws::SecurityHub
14910
14985
  # class. If you provide `Date`, you cannot provide `Days`.
14911
14986
  #
14912
14987
  # Uses the `date-time` format specified in [RFC 3339 section 5.6,
14913
- # Internet Date/Time Format][1]. The value cannot contain spaces. For
14914
- # example, `2020-03-22T13:22:13.933Z`.
14988
+ # Internet Date/Time Format][1]. The value cannot contain spaces, and
14989
+ # date and time should be separated by `T`. For example,
14990
+ # `2020-03-22T13:22:13.933Z`.
14915
14991
  #
14916
14992
  #
14917
14993
  #
@@ -14990,8 +15066,9 @@ module Aws::SecurityHub
14990
15066
  # Indicates when the S3 bucket was created.
14991
15067
  #
14992
15068
  # Uses the `date-time` format specified in [RFC 3339 section 5.6,
14993
- # Internet Date/Time Format][1]. The value cannot contain spaces. For
14994
- # example, `2020-03-22T13:22:13.933Z`.
15069
+ # Internet Date/Time Format][1]. The value cannot contain spaces, and
15070
+ # date and time should be separated by `T`. For example,
15071
+ # `2020-03-22T13:22:13.933Z`.
14995
15072
  #
14996
15073
  #
14997
15074
  #
@@ -15360,8 +15437,9 @@ module Aws::SecurityHub
15360
15437
  # Indicates when the object was last modified.
15361
15438
  #
15362
15439
  # Uses the `date-time` format specified in [RFC 3339 section 5.6,
15363
- # Internet Date/Time Format][1]. The value cannot contain spaces. For
15364
- # example, `2020-03-22T13:22:13.933Z`.
15440
+ # Internet Date/Time Format][1]. The value cannot contain spaces, and
15441
+ # date and time should be separated by `T`. For example,
15442
+ # `2020-03-22T13:22:13.933Z`.
15365
15443
  #
15366
15444
  #
15367
15445
  #
@@ -15723,8 +15801,9 @@ module Aws::SecurityHub
15723
15801
  # potential security issue that a finding captured.
15724
15802
  #
15725
15803
  # Uses the `date-time` format specified in [RFC 3339 section 5.6,
15726
- # Internet Date/Time Format][1]. The value cannot contain spaces. For
15727
- # example, `2020-03-22T13:22:13.933Z`.
15804
+ # Internet Date/Time Format][1]. The value cannot contain spaces, and
15805
+ # date and time should be separated by `T`. For example,
15806
+ # `2020-03-22T13:22:13.933Z`.
15728
15807
  #
15729
15808
  #
15730
15809
  #
@@ -15736,8 +15815,9 @@ module Aws::SecurityHub
15736
15815
  # the potential security issue that a finding captured.
15737
15816
  #
15738
15817
  # Uses the `date-time` format specified in [RFC 3339 section 5.6,
15739
- # Internet Date/Time Format][1]. The value cannot contain spaces. For
15740
- # example, `2020-03-22T13:22:13.933Z`.
15818
+ # Internet Date/Time Format][1]. The value cannot contain spaces, and
15819
+ # date and time should be separated by `T`. For example,
15820
+ # `2020-03-22T13:22:13.933Z`.
15741
15821
  #
15742
15822
  #
15743
15823
  #
@@ -15749,8 +15829,9 @@ module Aws::SecurityHub
15749
15829
  # security issue that a finding captured.
15750
15830
  #
15751
15831
  # Uses the `date-time` format specified in [RFC 3339 section 5.6,
15752
- # Internet Date/Time Format][1]. The value cannot contain spaces. For
15753
- # example, `2020-03-22T13:22:13.933Z`.
15832
+ # Internet Date/Time Format][1]. The value cannot contain spaces, and
15833
+ # date and time should be separated by `T`. For example,
15834
+ # `2020-03-22T13:22:13.933Z`.
15754
15835
  #
15755
15836
  #
15756
15837
  #
@@ -15762,8 +15843,9 @@ module Aws::SecurityHub
15762
15843
  # finding record.
15763
15844
  #
15764
15845
  # Uses the `date-time` format specified in [RFC 3339 section 5.6,
15765
- # Internet Date/Time Format][1]. The value cannot contain spaces. For
15766
- # example, `2020-03-22T13:22:13.933Z`.
15846
+ # Internet Date/Time Format][1]. The value cannot contain spaces, and
15847
+ # date and time should be separated by `T`. For example,
15848
+ # `2020-03-22T13:22:13.933Z`.
15767
15849
  #
15768
15850
  #
15769
15851
  #
@@ -16010,23 +16092,59 @@ module Aws::SecurityHub
16010
16092
  # An ISO8601-formatted timestamp that indicates when the
16011
16093
  # security-findings provider first observed the potential security
16012
16094
  # issue that a finding captured.
16095
+ #
16096
+ # A correctly formatted example is `2020-05-21T20:16:34.724Z`. The
16097
+ # value cannot contain spaces, and date and time should be separated
16098
+ # by `T`. For more information, see [RFC 3339 section 5.6, Internet
16099
+ # Date/Time Format][1].
16100
+ #
16101
+ #
16102
+ #
16103
+ # [1]: https://www.rfc-editor.org/rfc/rfc3339#section-5.6
16013
16104
  # @return [Array<Types::DateFilter>]
16014
16105
  #
16015
16106
  # @!attribute [rw] last_observed_at
16016
16107
  # An ISO8601-formatted timestamp that indicates when the
16017
16108
  # security-findings provider most recently observed the potential
16018
16109
  # security issue that a finding captured.
16110
+ #
16111
+ # A correctly formatted example is `2020-05-21T20:16:34.724Z`. The
16112
+ # value cannot contain spaces, and date and time should be separated
16113
+ # by `T`. For more information, see [RFC 3339 section 5.6, Internet
16114
+ # Date/Time Format][1].
16115
+ #
16116
+ #
16117
+ #
16118
+ # [1]: https://www.rfc-editor.org/rfc/rfc3339#section-5.6
16019
16119
  # @return [Array<Types::DateFilter>]
16020
16120
  #
16021
16121
  # @!attribute [rw] created_at
16022
16122
  # An ISO8601-formatted timestamp that indicates when the
16023
16123
  # security-findings provider captured the potential security issue
16024
16124
  # that a finding captured.
16125
+ #
16126
+ # A correctly formatted example is `2020-05-21T20:16:34.724Z`. The
16127
+ # value cannot contain spaces, and date and time should be separated
16128
+ # by `T`. For more information, see [RFC 3339 section 5.6, Internet
16129
+ # Date/Time Format][1].
16130
+ #
16131
+ #
16132
+ #
16133
+ # [1]: https://www.rfc-editor.org/rfc/rfc3339#section-5.6
16025
16134
  # @return [Array<Types::DateFilter>]
16026
16135
  #
16027
16136
  # @!attribute [rw] updated_at
16028
16137
  # An ISO8601-formatted timestamp that indicates when the
16029
16138
  # security-findings provider last updated the finding record.
16139
+ #
16140
+ # A correctly formatted example is `2020-05-21T20:16:34.724Z`. The
16141
+ # value cannot contain spaces, and date and time should be separated
16142
+ # by `T`. For more information, see [RFC 3339 section 5.6, Internet
16143
+ # Date/Time Format][1].
16144
+ #
16145
+ #
16146
+ #
16147
+ # [1]: https://www.rfc-editor.org/rfc/rfc3339#section-5.6
16030
16148
  # @return [Array<Types::DateFilter>]
16031
16149
  #
16032
16150
  # @!attribute [rw] severity_product
@@ -16182,11 +16300,29 @@ module Aws::SecurityHub
16182
16300
  # @return [Array<Types::NumberFilter>]
16183
16301
  #
16184
16302
  # @!attribute [rw] process_launched_at
16185
- # The date/time that the process was launched.
16303
+ # A timestamp that identifies when the process was launched.
16304
+ #
16305
+ # A correctly formatted example is `2020-05-21T20:16:34.724Z`. The
16306
+ # value cannot contain spaces, and date and time should be separated
16307
+ # by `T`. For more information, see [RFC 3339 section 5.6, Internet
16308
+ # Date/Time Format][1].
16309
+ #
16310
+ #
16311
+ #
16312
+ # [1]: https://www.rfc-editor.org/rfc/rfc3339#section-5.6
16186
16313
  # @return [Array<Types::DateFilter>]
16187
16314
  #
16188
16315
  # @!attribute [rw] process_terminated_at
16189
- # The date/time that the process was terminated.
16316
+ # A timestamp that identifies when the process was terminated.
16317
+ #
16318
+ # A correctly formatted example is `2020-05-21T20:16:34.724Z`. The
16319
+ # value cannot contain spaces, and date and time should be separated
16320
+ # by `T`. For more information, see [RFC 3339 section 5.6, Internet
16321
+ # Date/Time Format][1].
16322
+ #
16323
+ #
16324
+ #
16325
+ # [1]: https://www.rfc-editor.org/rfc/rfc3339#section-5.6
16190
16326
  # @return [Array<Types::DateFilter>]
16191
16327
  #
16192
16328
  # @!attribute [rw] threat_intel_indicator_type
@@ -16202,8 +16338,8 @@ module Aws::SecurityHub
16202
16338
  # @return [Array<Types::StringFilter>]
16203
16339
  #
16204
16340
  # @!attribute [rw] threat_intel_indicator_last_observed_at
16205
- # The date/time of the last observation of a threat intelligence
16206
- # indicator.
16341
+ # A timestamp that identifies the last observation of a threat
16342
+ # intelligence indicator.
16207
16343
  # @return [Array<Types::DateFilter>]
16208
16344
  #
16209
16345
  # @!attribute [rw] threat_intel_indicator_source
@@ -16314,7 +16450,16 @@ module Aws::SecurityHub
16314
16450
  # @return [Array<Types::StringFilter>]
16315
16451
  #
16316
16452
  # @!attribute [rw] resource_container_launched_at
16317
- # The date/time that the container was started.
16453
+ # A timestamp that identifies when the container was started.
16454
+ #
16455
+ # A correctly formatted example is `2020-05-21T20:16:34.724Z`. The
16456
+ # value cannot contain spaces, and date and time should be separated
16457
+ # by `T`. For more information, see [RFC 3339 section 5.6, Internet
16458
+ # Date/Time Format][1].
16459
+ #
16460
+ #
16461
+ #
16462
+ # [1]: https://www.rfc-editor.org/rfc/rfc3339#section-5.6
16318
16463
  # @return [Array<Types::DateFilter>]
16319
16464
  #
16320
16465
  # @!attribute [rw] resource_details_other
@@ -18091,6 +18236,81 @@ module Aws::SecurityHub
18091
18236
  include Aws::Structure
18092
18237
  end
18093
18238
 
18239
+ # @!attribute [rw] security_control_ids
18240
+ # A list of security controls (identified with `SecurityControlId`,
18241
+ # `SecurityControlArn`, or a mix of both parameters). The security
18242
+ # control ID or Amazon Resource Name (ARN) is the same across
18243
+ # standards.
18244
+ # @return [Array<String>]
18245
+ #
18246
+ # @see http://docs.aws.amazon.com/goto/WebAPI/securityhub-2018-10-26/BatchGetSecurityControlsRequest AWS API Documentation
18247
+ #
18248
+ class BatchGetSecurityControlsRequest < Struct.new(
18249
+ :security_control_ids)
18250
+ SENSITIVE = []
18251
+ include Aws::Structure
18252
+ end
18253
+
18254
+ # @!attribute [rw] security_controls
18255
+ # An array that returns the identifier, Amazon Resource Name (ARN),
18256
+ # and other details about a security control. The same information is
18257
+ # returned whether the request includes `SecurityControlId` or
18258
+ # `SecurityControlArn`.
18259
+ # @return [Array<Types::SecurityControl>]
18260
+ #
18261
+ # @!attribute [rw] unprocessed_ids
18262
+ # A security control (identified with `SecurityControlId`,
18263
+ # `SecurityControlArn`, or a mix of both parameters) for which details
18264
+ # cannot be returned.
18265
+ # @return [Array<Types::UnprocessedSecurityControl>]
18266
+ #
18267
+ # @see http://docs.aws.amazon.com/goto/WebAPI/securityhub-2018-10-26/BatchGetSecurityControlsResponse AWS API Documentation
18268
+ #
18269
+ class BatchGetSecurityControlsResponse < Struct.new(
18270
+ :security_controls,
18271
+ :unprocessed_ids)
18272
+ SENSITIVE = []
18273
+ include Aws::Structure
18274
+ end
18275
+
18276
+ # @!attribute [rw] standards_control_association_ids
18277
+ # An array with one or more objects that includes a security control
18278
+ # (identified with `SecurityControlId`, `SecurityControlArn`, or a mix
18279
+ # of both parameters) and the Amazon Resource Name (ARN) of a
18280
+ # standard. This field is used to query the enablement status of a
18281
+ # control in a specified standard. The security control ID or ARN is
18282
+ # the same across standards.
18283
+ # @return [Array<Types::StandardsControlAssociationId>]
18284
+ #
18285
+ # @see http://docs.aws.amazon.com/goto/WebAPI/securityhub-2018-10-26/BatchGetStandardsControlAssociationsRequest AWS API Documentation
18286
+ #
18287
+ class BatchGetStandardsControlAssociationsRequest < Struct.new(
18288
+ :standards_control_association_ids)
18289
+ SENSITIVE = []
18290
+ include Aws::Structure
18291
+ end
18292
+
18293
+ # @!attribute [rw] standards_control_association_details
18294
+ # Provides the enablement status of a security control in a specified
18295
+ # standard and other details for the control in relation to the
18296
+ # specified standard.
18297
+ # @return [Array<Types::StandardsControlAssociationDetail>]
18298
+ #
18299
+ # @!attribute [rw] unprocessed_associations
18300
+ # A security control (identified with `SecurityControlId`,
18301
+ # `SecurityControlArn`, or a mix of both parameters) whose enablement
18302
+ # status in a specified standard cannot be returned.
18303
+ # @return [Array<Types::UnprocessedStandardsControlAssociation>]
18304
+ #
18305
+ # @see http://docs.aws.amazon.com/goto/WebAPI/securityhub-2018-10-26/BatchGetStandardsControlAssociationsResponse AWS API Documentation
18306
+ #
18307
+ class BatchGetStandardsControlAssociationsResponse < Struct.new(
18308
+ :standards_control_association_details,
18309
+ :unprocessed_associations)
18310
+ SENSITIVE = []
18311
+ include Aws::Structure
18312
+ end
18313
+
18094
18314
  # @!attribute [rw] findings
18095
18315
  # A list of findings to import. To successfully import a finding, it
18096
18316
  # must follow the [Amazon Web Services Security Finding Format][1].
@@ -18312,6 +18532,33 @@ module Aws::SecurityHub
18312
18532
  include Aws::Structure
18313
18533
  end
18314
18534
 
18535
+ # @!attribute [rw] standards_control_association_updates
18536
+ # Updates the enablement status of a security control in a specified
18537
+ # standard.
18538
+ # @return [Array<Types::StandardsControlAssociationUpdate>]
18539
+ #
18540
+ # @see http://docs.aws.amazon.com/goto/WebAPI/securityhub-2018-10-26/BatchUpdateStandardsControlAssociationsRequest AWS API Documentation
18541
+ #
18542
+ class BatchUpdateStandardsControlAssociationsRequest < Struct.new(
18543
+ :standards_control_association_updates)
18544
+ SENSITIVE = []
18545
+ include Aws::Structure
18546
+ end
18547
+
18548
+ # @!attribute [rw] unprocessed_association_updates
18549
+ # A security control (identified with `SecurityControlId`,
18550
+ # `SecurityControlArn`, or a mix of both parameters) whose enablement
18551
+ # status in a specified standard couldn't be updated.
18552
+ # @return [Array<Types::UnprocessedStandardsControlAssociationUpdate>]
18553
+ #
18554
+ # @see http://docs.aws.amazon.com/goto/WebAPI/securityhub-2018-10-26/BatchUpdateStandardsControlAssociationsResponse AWS API Documentation
18555
+ #
18556
+ class BatchUpdateStandardsControlAssociationsResponse < Struct.new(
18557
+ :unprocessed_association_updates)
18558
+ SENSITIVE = []
18559
+ include Aws::Structure
18560
+ end
18561
+
18315
18562
  # Boolean filter for querying findings.
18316
18563
  #
18317
18564
  # @!attribute [rw] value
@@ -18549,8 +18796,9 @@ module Aws::SecurityHub
18549
18796
  # Indicates when the container started.
18550
18797
  #
18551
18798
  # Uses the `date-time` format specified in [RFC 3339 section 5.6,
18552
- # Internet Date/Time Format][1]. The value cannot contain spaces. For
18553
- # example, `2020-03-22T13:22:13.933Z`.
18799
+ # Internet Date/Time Format][1]. The value cannot contain spaces, and
18800
+ # date and time should be separated by `T`. For example,
18801
+ # `2020-03-22T13:22:13.933Z`.
18554
18802
  #
18555
18803
  #
18556
18804
  #
@@ -18625,7 +18873,7 @@ module Aws::SecurityHub
18625
18873
  end
18626
18874
 
18627
18875
  # @!attribute [rw] action_target_arn
18628
- # The ARN for the custom action target.
18876
+ # The Amazon Resource Name (ARN) for the custom action target.
18629
18877
  # @return [String]
18630
18878
  #
18631
18879
  # @see http://docs.aws.amazon.com/goto/WebAPI/securityhub-2018-10-26/CreateActionTargetResponse AWS API Documentation
@@ -18888,11 +19136,29 @@ module Aws::SecurityHub
18888
19136
  # A date filter for querying findings.
18889
19137
  #
18890
19138
  # @!attribute [rw] start
18891
- # A start date for the date filter.
19139
+ # A timestamp that provides the start date for the date filter.
19140
+ #
19141
+ # A correctly formatted example is `2020-05-21T20:16:34.724Z`. The
19142
+ # value cannot contain spaces, and date and time should be separated
19143
+ # by `T`. For more information, see [RFC 3339 section 5.6, Internet
19144
+ # Date/Time Format][1].
19145
+ #
19146
+ #
19147
+ #
19148
+ # [1]: https://www.rfc-editor.org/rfc/rfc3339#section-5.6
18892
19149
  # @return [String]
18893
19150
  #
18894
19151
  # @!attribute [rw] end
18895
- # An end date for the date filter.
19152
+ # A timestamp that provides the end date for the date filter.
19153
+ #
19154
+ # A correctly formatted example is `2020-05-21T20:16:34.724Z`. The
19155
+ # value cannot contain spaces, and date and time should be separated
19156
+ # by `T`. For more information, see [RFC 3339 section 5.6, Internet
19157
+ # Date/Time Format][1].
19158
+ #
19159
+ #
19160
+ #
19161
+ # [1]: https://www.rfc-editor.org/rfc/rfc3339#section-5.6
18896
19162
  # @return [String]
18897
19163
  #
18898
19164
  # @!attribute [rw] date_range
@@ -18956,7 +19222,8 @@ module Aws::SecurityHub
18956
19222
  end
18957
19223
 
18958
19224
  # @!attribute [rw] action_target_arn
18959
- # The ARN of the custom action target to delete.
19225
+ # The Amazon Resource Name (ARN) of the custom action target to
19226
+ # delete.
18960
19227
  # @return [String]
18961
19228
  #
18962
19229
  # @see http://docs.aws.amazon.com/goto/WebAPI/securityhub-2018-10-26/DeleteActionTargetRequest AWS API Documentation
@@ -19149,12 +19416,30 @@ module Aws::SecurityHub
19149
19416
  # enabled.
19150
19417
  # @return [Boolean]
19151
19418
  #
19419
+ # @!attribute [rw] control_finding_generator
19420
+ # Specifies whether the calling account has consolidated control
19421
+ # findings turned on. If the value for this field is set to
19422
+ # `SECURITY_CONTROL`, Security Hub generates a single finding for a
19423
+ # control check even when the check applies to multiple enabled
19424
+ # standards.
19425
+ #
19426
+ # If the value for this field is set to `STANDARD_CONTROL`, Security
19427
+ # Hub generates separate findings for a control check when the check
19428
+ # applies to multiple enabled standards.
19429
+ #
19430
+ # The value for this field in a member account matches the value in
19431
+ # the administrator account. For accounts that aren't part of an
19432
+ # organization, the default value of this field is `SECURITY_CONTROL`
19433
+ # if you enabled Security Hub on or after February 9, 2023.
19434
+ # @return [String]
19435
+ #
19152
19436
  # @see http://docs.aws.amazon.com/goto/WebAPI/securityhub-2018-10-26/DescribeHubResponse AWS API Documentation
19153
19437
  #
19154
19438
  class DescribeHubResponse < Struct.new(
19155
19439
  :hub_arn,
19156
19440
  :subscribed_at,
19157
- :auto_enable_controls)
19441
+ :auto_enable_controls,
19442
+ :control_finding_generator)
19158
19443
  SENSITIVE = []
19159
19444
  include Aws::Structure
19160
19445
  end
@@ -19495,11 +19780,29 @@ module Aws::SecurityHub
19495
19780
  # `false`.
19496
19781
  # @return [Boolean]
19497
19782
  #
19783
+ # @!attribute [rw] control_finding_generator
19784
+ # This field, used when enabling Security Hub, specifies whether the
19785
+ # calling account has consolidated control findings turned on. If the
19786
+ # value for this field is set to `SECURITY_CONTROL`, Security Hub
19787
+ # generates a single finding for a control check even when the check
19788
+ # applies to multiple enabled standards.
19789
+ #
19790
+ # If the value for this field is set to `STANDARD_CONTROL`, Security
19791
+ # Hub generates separate findings for a control check when the check
19792
+ # applies to multiple enabled standards.
19793
+ #
19794
+ # The value for this field in a member account matches the value in
19795
+ # the administrator account. For accounts that aren't part of an
19796
+ # organization, the default value of this field is `SECURITY_CONTROL`
19797
+ # if you enabled Security Hub on or after February 9, 2023.
19798
+ # @return [String]
19799
+ #
19498
19800
  # @see http://docs.aws.amazon.com/goto/WebAPI/securityhub-2018-10-26/EnableSecurityHubRequest AWS API Documentation
19499
19801
  #
19500
19802
  class EnableSecurityHubRequest < Struct.new(
19501
19803
  :tags,
19502
- :enable_default_standards)
19804
+ :enable_default_standards,
19805
+ :control_finding_generator)
19503
19806
  SENSITIVE = []
19504
19807
  include Aws::Structure
19505
19808
  end
@@ -20614,6 +20917,104 @@ module Aws::SecurityHub
20614
20917
  include Aws::Structure
20615
20918
  end
20616
20919
 
20920
+ # @!attribute [rw] standards_arn
20921
+ # The Amazon Resource Name (ARN) of the standard that you want to view
20922
+ # controls for.
20923
+ # @return [String]
20924
+ #
20925
+ # @!attribute [rw] next_token
20926
+ # Optional pagination parameter.
20927
+ # @return [String]
20928
+ #
20929
+ # @!attribute [rw] max_results
20930
+ # An optional parameter that limits the total results of the API
20931
+ # response to the specified number. If this parameter isn't provided
20932
+ # in the request, the results include the first 25 security controls
20933
+ # that apply to the specified standard. The results also include a
20934
+ # `NextToken` parameter that you can use in a subsequent API call to
20935
+ # get the next 25 controls. This repeats until all controls for the
20936
+ # standard are returned.
20937
+ # @return [Integer]
20938
+ #
20939
+ # @see http://docs.aws.amazon.com/goto/WebAPI/securityhub-2018-10-26/ListSecurityControlDefinitionsRequest AWS API Documentation
20940
+ #
20941
+ class ListSecurityControlDefinitionsRequest < Struct.new(
20942
+ :standards_arn,
20943
+ :next_token,
20944
+ :max_results)
20945
+ SENSITIVE = []
20946
+ include Aws::Structure
20947
+ end
20948
+
20949
+ # @!attribute [rw] security_control_definitions
20950
+ # An array of controls that apply to the specified standard.
20951
+ # @return [Array<Types::SecurityControlDefinition>]
20952
+ #
20953
+ # @!attribute [rw] next_token
20954
+ # A pagination parameter that's included in the response only if it
20955
+ # was included in the request.
20956
+ # @return [String]
20957
+ #
20958
+ # @see http://docs.aws.amazon.com/goto/WebAPI/securityhub-2018-10-26/ListSecurityControlDefinitionsResponse AWS API Documentation
20959
+ #
20960
+ class ListSecurityControlDefinitionsResponse < Struct.new(
20961
+ :security_control_definitions,
20962
+ :next_token)
20963
+ SENSITIVE = []
20964
+ include Aws::Structure
20965
+ end
20966
+
20967
+ # @!attribute [rw] security_control_id
20968
+ # The identifier of the control (identified with `SecurityControlId`,
20969
+ # `SecurityControlArn`, or a mix of both parameters) that you want to
20970
+ # determine the enablement status of in each enabled standard.
20971
+ # @return [String]
20972
+ #
20973
+ # @!attribute [rw] next_token
20974
+ # Optional pagination parameter.
20975
+ # @return [String]
20976
+ #
20977
+ # @!attribute [rw] max_results
20978
+ # An optional parameter that limits the total results of the API
20979
+ # response to the specified number. If this parameter isn't provided
20980
+ # in the request, the results include the first 25 standard and
20981
+ # control associations. The results also include a `NextToken`
20982
+ # parameter that you can use in a subsequent API call to get the next
20983
+ # 25 associations. This repeats until all associations for the
20984
+ # specified control are returned. The number of results is limited by
20985
+ # the number of supported Security Hub standards that you've enabled
20986
+ # in the calling account.
20987
+ # @return [Integer]
20988
+ #
20989
+ # @see http://docs.aws.amazon.com/goto/WebAPI/securityhub-2018-10-26/ListStandardsControlAssociationsRequest AWS API Documentation
20990
+ #
20991
+ class ListStandardsControlAssociationsRequest < Struct.new(
20992
+ :security_control_id,
20993
+ :next_token,
20994
+ :max_results)
20995
+ SENSITIVE = []
20996
+ include Aws::Structure
20997
+ end
20998
+
20999
+ # @!attribute [rw] standards_control_association_summaries
21000
+ # An array that provides the enablement status and other details for
21001
+ # each security control that applies to each enabled standard.
21002
+ # @return [Array<Types::StandardsControlAssociationSummary>]
21003
+ #
21004
+ # @!attribute [rw] next_token
21005
+ # A pagination parameter that's included in the response only if it
21006
+ # was included in the request.
21007
+ # @return [String]
21008
+ #
21009
+ # @see http://docs.aws.amazon.com/goto/WebAPI/securityhub-2018-10-26/ListStandardsControlAssociationsResponse AWS API Documentation
21010
+ #
21011
+ class ListStandardsControlAssociationsResponse < Struct.new(
21012
+ :standards_control_association_summaries,
21013
+ :next_token)
21014
+ SENSITIVE = []
21015
+ include Aws::Structure
21016
+ end
21017
+
20617
21018
  # @!attribute [rw] resource_arn
20618
21019
  # The ARN of the resource to retrieve tags for.
20619
21020
  # @return [String]
@@ -21026,8 +21427,9 @@ module Aws::SecurityHub
21026
21427
  # The timestamp of when the note was updated.
21027
21428
  #
21028
21429
  # Uses the `date-time` format specified in [RFC 3339 section 5.6,
21029
- # Internet Date/Time Format][1]. The value cannot contain spaces. For
21030
- # example, `2020-03-22T13:22:13.933Z`.
21430
+ # Internet Date/Time Format][1]. The value cannot contain spaces, and
21431
+ # date and time should be separated by `T`. For example,
21432
+ # `2020-03-22T13:22:13.933Z`.
21031
21433
  #
21032
21434
  #
21033
21435
  #
@@ -21200,8 +21602,9 @@ module Aws::SecurityHub
21200
21602
  # Indicates when the operation started.
21201
21603
  #
21202
21604
  # Uses the `date-time` format specified in [RFC 3339 section 5.6,
21203
- # Internet Date/Time Format][1]. The value cannot contain spaces. For
21204
- # example, `2020-03-22T13:22:13.933Z`.
21605
+ # Internet Date/Time Format][1]. The value cannot contain spaces, and
21606
+ # date and time should be separated by `T`. For example,
21607
+ # `2020-03-22T13:22:13.933Z`.
21205
21608
  #
21206
21609
  #
21207
21610
  #
@@ -21212,8 +21615,9 @@ module Aws::SecurityHub
21212
21615
  # Indicates when the operation completed.
21213
21616
  #
21214
21617
  # Uses the `date-time` format specified in [RFC 3339 section 5.6,
21215
- # Internet Date/Time Format][1]. The value cannot contain spaces. For
21216
- # example, `2020-03-22T13:22:13.933Z`.
21618
+ # Internet Date/Time Format][1]. The value cannot contain spaces, and
21619
+ # date and time should be separated by `T`. For example,
21620
+ # `2020-03-22T13:22:13.933Z`.
21217
21621
  #
21218
21622
  #
21219
21623
  #
@@ -21356,8 +21760,9 @@ module Aws::SecurityHub
21356
21760
  # Indicates when the process was launched.
21357
21761
  #
21358
21762
  # Uses the `date-time` format specified in [RFC 3339 section 5.6,
21359
- # Internet Date/Time Format][1]. The value cannot contain spaces. For
21360
- # example, `2020-03-22T13:22:13.933Z`.
21763
+ # Internet Date/Time Format][1]. The value cannot contain spaces, and
21764
+ # date and time should be separated by `T`. For example,
21765
+ # `2020-03-22T13:22:13.933Z`.
21361
21766
  #
21362
21767
  #
21363
21768
  #
@@ -21368,8 +21773,9 @@ module Aws::SecurityHub
21368
21773
  # Indicates when the process was terminated.
21369
21774
  #
21370
21775
  # Uses the `date-time` format specified in [RFC 3339 section 5.6,
21371
- # Internet Date/Time Format][1]. The value cannot contain spaces. For
21372
- # example, `2020-03-22T13:22:13.933Z`.
21776
+ # Internet Date/Time Format][1]. The value cannot contain spaces, and
21777
+ # date and time should be separated by `T`. For example,
21778
+ # `2020-03-22T13:22:13.933Z`.
21373
21779
  #
21374
21780
  #
21375
21781
  #
@@ -22587,6 +22993,132 @@ module Aws::SecurityHub
22587
22993
  include Aws::Structure
22588
22994
  end
22589
22995
 
22996
+ # A security control in Security Hub describes a security best practice
22997
+ # related to a specific resource.
22998
+ #
22999
+ # @!attribute [rw] security_control_id
23000
+ # The unique identifier of a security control across standards. Values
23001
+ # for this field typically consist of an Amazon Web Service name and a
23002
+ # number, such as APIGateway.3.
23003
+ # @return [String]
23004
+ #
23005
+ # @!attribute [rw] security_control_arn
23006
+ # The Amazon Resource Name (ARN) for a security control across
23007
+ # standards, such as
23008
+ # `arn:aws:securityhub:eu-central-1:123456789012:security-control/S3.1`.
23009
+ # This parameter doesn't mention a specific standard.
23010
+ # @return [String]
23011
+ #
23012
+ # @!attribute [rw] title
23013
+ # The title of a security control.
23014
+ # @return [String]
23015
+ #
23016
+ # @!attribute [rw] description
23017
+ # The description of a security control across standards. This
23018
+ # typically summarizes how Security Hub evaluates the control and the
23019
+ # conditions under which it produces a failed finding. This parameter
23020
+ # doesn't reference a specific standard.
23021
+ # @return [String]
23022
+ #
23023
+ # @!attribute [rw] remediation_url
23024
+ # A link to Security Hub documentation that explains how to remediate
23025
+ # a failed finding for a security control.
23026
+ # @return [String]
23027
+ #
23028
+ # @!attribute [rw] severity_rating
23029
+ # The severity of a security control. For more information about how
23030
+ # Security Hub determines control severity, see [Assigning severity to
23031
+ # control findings][1] in the *Security Hub User Guide*.
23032
+ #
23033
+ #
23034
+ #
23035
+ # [1]: https://docs.aws.amazon.com/securityhub/latest/userguide/controls-findings-create-update.html#control-findings-severity
23036
+ # @return [String]
23037
+ #
23038
+ # @!attribute [rw] security_control_status
23039
+ # The status of a security control based on the compliance status of
23040
+ # its findings. For more information about how control status is
23041
+ # determined, see [Determining the overall status of a control from
23042
+ # its findings][1] in the *Security Hub User Guide*.
23043
+ #
23044
+ #
23045
+ #
23046
+ # [1]: https://docs.aws.amazon.com/securityhub/latest/userguide/controls-overall-status.html
23047
+ # @return [String]
23048
+ #
23049
+ # @see http://docs.aws.amazon.com/goto/WebAPI/securityhub-2018-10-26/SecurityControl AWS API Documentation
23050
+ #
23051
+ class SecurityControl < Struct.new(
23052
+ :security_control_id,
23053
+ :security_control_arn,
23054
+ :title,
23055
+ :description,
23056
+ :remediation_url,
23057
+ :severity_rating,
23058
+ :security_control_status)
23059
+ SENSITIVE = []
23060
+ include Aws::Structure
23061
+ end
23062
+
23063
+ # Provides metadata for a security control, including its unique
23064
+ # standard-agnostic identifier, title, description, severity,
23065
+ # availability in Amazon Web Services Regions, and a link to remediation
23066
+ # steps.
23067
+ #
23068
+ # @!attribute [rw] security_control_id
23069
+ # The unique identifier of a security control across standards. Values
23070
+ # for this field typically consist of an Amazon Web Service name and a
23071
+ # number (for example, APIGateway.3). This parameter differs from
23072
+ # `SecurityControlArn`, which is a unique Amazon Resource Name (ARN)
23073
+ # assigned to a control. The ARN references the security control ID
23074
+ # (for example,
23075
+ # arn:aws:securityhub:eu-central-1:123456789012:security-control/APIGateway.3).
23076
+ # @return [String]
23077
+ #
23078
+ # @!attribute [rw] title
23079
+ # The title of a security control.
23080
+ # @return [String]
23081
+ #
23082
+ # @!attribute [rw] description
23083
+ # The description of a security control across standards. This
23084
+ # typically summarizes how Security Hub evaluates the control and the
23085
+ # conditions under which it produces a failed finding. This parameter
23086
+ # doesn't reference a specific standard.
23087
+ # @return [String]
23088
+ #
23089
+ # @!attribute [rw] remediation_url
23090
+ # A link to Security Hub documentation that explains how to remediate
23091
+ # a failed finding for a security control.
23092
+ # @return [String]
23093
+ #
23094
+ # @!attribute [rw] severity_rating
23095
+ # The severity of a security control. For more information about how
23096
+ # Security Hub determines control severity, see [Assigning severity to
23097
+ # control findings][1] in the *Security Hub User Guide*.
23098
+ #
23099
+ #
23100
+ #
23101
+ # [1]: https://docs.aws.amazon.com/securityhub/latest/userguide/controls-findings-create-update.html#control-findings-severity
23102
+ # @return [String]
23103
+ #
23104
+ # @!attribute [rw] current_region_availability
23105
+ # Specifies whether a security control is available in the current
23106
+ # Amazon Web Services Region.
23107
+ # @return [String]
23108
+ #
23109
+ # @see http://docs.aws.amazon.com/goto/WebAPI/securityhub-2018-10-26/SecurityControlDefinition AWS API Documentation
23110
+ #
23111
+ class SecurityControlDefinition < Struct.new(
23112
+ :security_control_id,
23113
+ :title,
23114
+ :description,
23115
+ :remediation_url,
23116
+ :severity_rating,
23117
+ :current_region_availability)
23118
+ SENSITIVE = []
23119
+ include Aws::Structure
23120
+ end
23121
+
22590
23122
  # The list of detected instances of sensitive data.
22591
23123
  #
22592
23124
  # @!attribute [rw] count
@@ -22643,7 +23175,7 @@ module Aws::SecurityHub
22643
23175
  # The severity of the finding.
22644
23176
  #
22645
23177
  # The finding provider can provide the initial severity. The finding
22646
- # provider can only update the severity if it has not been updated using
23178
+ # provider can only update the severity if it hasn't been updated using
22647
23179
  # `BatchUpdateFindings`.
22648
23180
  #
22649
23181
  # The finding must have either `Label` or `Normalized` populated. If
@@ -22970,6 +23502,207 @@ module Aws::SecurityHub
22970
23502
  include Aws::Structure
22971
23503
  end
22972
23504
 
23505
+ # Provides details about a control's enablement status in a specified
23506
+ # standard.
23507
+ #
23508
+ # @!attribute [rw] standards_arn
23509
+ # The Amazon Resource Name (ARN) of a security standard.
23510
+ # @return [String]
23511
+ #
23512
+ # @!attribute [rw] security_control_id
23513
+ # The unique identifier of a security control across standards. Values
23514
+ # for this field typically consist of an Amazon Web Service name and a
23515
+ # number, such as APIGateway.3.
23516
+ # @return [String]
23517
+ #
23518
+ # @!attribute [rw] security_control_arn
23519
+ # The ARN of a security control across standards, such as
23520
+ # `arn:aws:securityhub:eu-central-1:123456789012:security-control/S3.1`.
23521
+ # This parameter doesn't mention a specific standard.
23522
+ # @return [String]
23523
+ #
23524
+ # @!attribute [rw] association_status
23525
+ # Specifies whether a control is enabled or disabled in a specified
23526
+ # standard.
23527
+ # @return [String]
23528
+ #
23529
+ # @!attribute [rw] related_requirements
23530
+ # The requirement that underlies a control in the compliance framework
23531
+ # related to the standard.
23532
+ # @return [Array<String>]
23533
+ #
23534
+ # @!attribute [rw] updated_at
23535
+ # The time at which the enablement status of the control in the
23536
+ # specified standard was last updated.
23537
+ # @return [Time]
23538
+ #
23539
+ # @!attribute [rw] updated_reason
23540
+ # The reason for updating the enablement status of a control in a
23541
+ # specified standard.
23542
+ # @return [String]
23543
+ #
23544
+ # @!attribute [rw] standards_control_title
23545
+ # The title of a control. This field may reference a specific
23546
+ # standard.
23547
+ # @return [String]
23548
+ #
23549
+ # @!attribute [rw] standards_control_description
23550
+ # The description of a control. This typically summarizes how Security
23551
+ # Hub evaluates the control and the conditions under which it produces
23552
+ # a failed finding. This parameter may reference a specific standard.
23553
+ # @return [String]
23554
+ #
23555
+ # @!attribute [rw] standards_control_arns
23556
+ # Provides the input parameter that Security Hub uses to call the
23557
+ # [UpdateStandardsControl][1] API. This API can be used to enable or
23558
+ # disable a control in a specified standard.
23559
+ #
23560
+ #
23561
+ #
23562
+ # [1]: https://docs.aws.amazon.com/securityhub/1.0/APIReference/API_UpdateStandardsControl.html
23563
+ # @return [Array<String>]
23564
+ #
23565
+ # @see http://docs.aws.amazon.com/goto/WebAPI/securityhub-2018-10-26/StandardsControlAssociationDetail AWS API Documentation
23566
+ #
23567
+ class StandardsControlAssociationDetail < Struct.new(
23568
+ :standards_arn,
23569
+ :security_control_id,
23570
+ :security_control_arn,
23571
+ :association_status,
23572
+ :related_requirements,
23573
+ :updated_at,
23574
+ :updated_reason,
23575
+ :standards_control_title,
23576
+ :standards_control_description,
23577
+ :standards_control_arns)
23578
+ SENSITIVE = []
23579
+ include Aws::Structure
23580
+ end
23581
+
23582
+ # An array with one or more objects that includes a security control
23583
+ # (identified with `SecurityControlId`, `SecurityControlArn`, or a mix
23584
+ # of both parameters) and the Amazon Resource Name (ARN) of a standard.
23585
+ # The security control ID or ARN is the same across standards.
23586
+ #
23587
+ # @!attribute [rw] security_control_id
23588
+ # The unique identifier (identified with `SecurityControlId`,
23589
+ # `SecurityControlArn`, or a mix of both parameters) of a security
23590
+ # control across standards.
23591
+ # @return [String]
23592
+ #
23593
+ # @!attribute [rw] standards_arn
23594
+ # The ARN of a standard.
23595
+ # @return [String]
23596
+ #
23597
+ # @see http://docs.aws.amazon.com/goto/WebAPI/securityhub-2018-10-26/StandardsControlAssociationId AWS API Documentation
23598
+ #
23599
+ class StandardsControlAssociationId < Struct.new(
23600
+ :security_control_id,
23601
+ :standards_arn)
23602
+ SENSITIVE = []
23603
+ include Aws::Structure
23604
+ end
23605
+
23606
+ # An array that provides the enablement status and other details for
23607
+ # each control that applies to each enabled standard.
23608
+ #
23609
+ # @!attribute [rw] standards_arn
23610
+ # The Amazon Resource Name (ARN) of a standard.
23611
+ # @return [String]
23612
+ #
23613
+ # @!attribute [rw] security_control_id
23614
+ # A unique standard-agnostic identifier for a control. Values for this
23615
+ # field typically consist of an Amazon Web Service and a number, such
23616
+ # as APIGateway.5. This field doesn't reference a specific standard.
23617
+ # @return [String]
23618
+ #
23619
+ # @!attribute [rw] security_control_arn
23620
+ # The ARN of a control, such as
23621
+ # `arn:aws:securityhub:eu-central-1:123456789012:security-control/S3.1`.
23622
+ # This parameter doesn't mention a specific standard.
23623
+ # @return [String]
23624
+ #
23625
+ # @!attribute [rw] association_status
23626
+ # The enablement status of a control in a specific standard.
23627
+ # @return [String]
23628
+ #
23629
+ # @!attribute [rw] related_requirements
23630
+ # The requirement that underlies this control in the compliance
23631
+ # framework related to the standard.
23632
+ # @return [Array<String>]
23633
+ #
23634
+ # @!attribute [rw] updated_at
23635
+ # The last time that a control's enablement status in a specified
23636
+ # standard was updated.
23637
+ # @return [Time]
23638
+ #
23639
+ # @!attribute [rw] updated_reason
23640
+ # The reason for updating the control's enablement status in a
23641
+ # specified standard.
23642
+ # @return [String]
23643
+ #
23644
+ # @!attribute [rw] standards_control_title
23645
+ # The title of a control.
23646
+ # @return [String]
23647
+ #
23648
+ # @!attribute [rw] standards_control_description
23649
+ # The description of a control. This typically summarizes how Security
23650
+ # Hub evaluates the control and the conditions under which it produces
23651
+ # a failed finding. The parameter may reference a specific standard.
23652
+ # @return [String]
23653
+ #
23654
+ # @see http://docs.aws.amazon.com/goto/WebAPI/securityhub-2018-10-26/StandardsControlAssociationSummary AWS API Documentation
23655
+ #
23656
+ class StandardsControlAssociationSummary < Struct.new(
23657
+ :standards_arn,
23658
+ :security_control_id,
23659
+ :security_control_arn,
23660
+ :association_status,
23661
+ :related_requirements,
23662
+ :updated_at,
23663
+ :updated_reason,
23664
+ :standards_control_title,
23665
+ :standards_control_description)
23666
+ SENSITIVE = []
23667
+ include Aws::Structure
23668
+ end
23669
+
23670
+ # An array of requested updates to the enablement status of controls in
23671
+ # specified standards. The objects in the array include a security
23672
+ # control ID, the Amazon Resource Name (ARN) of the standard, the
23673
+ # requested enablement status, and the reason for updating the
23674
+ # enablement status.
23675
+ #
23676
+ # @!attribute [rw] standards_arn
23677
+ # The Amazon Resource Name (ARN) of the standard in which you want to
23678
+ # update the control's enablement status.
23679
+ # @return [String]
23680
+ #
23681
+ # @!attribute [rw] security_control_id
23682
+ # The unique identifier for the security control whose enablement
23683
+ # status you want to update.
23684
+ # @return [String]
23685
+ #
23686
+ # @!attribute [rw] association_status
23687
+ # The desired enablement status of the control in the standard.
23688
+ # @return [String]
23689
+ #
23690
+ # @!attribute [rw] updated_reason
23691
+ # The reason for updating the control's enablement status in the
23692
+ # standard.
23693
+ # @return [String]
23694
+ #
23695
+ # @see http://docs.aws.amazon.com/goto/WebAPI/securityhub-2018-10-26/StandardsControlAssociationUpdate AWS API Documentation
23696
+ #
23697
+ class StandardsControlAssociationUpdate < Struct.new(
23698
+ :standards_arn,
23699
+ :security_control_id,
23700
+ :association_status,
23701
+ :updated_reason)
23702
+ SENSITIVE = []
23703
+ include Aws::Structure
23704
+ end
23705
+
22973
23706
  # Provides details about the management of a security standard.
22974
23707
  #
22975
23708
  # @!attribute [rw] company
@@ -23307,8 +24040,9 @@ module Aws::SecurityHub
23307
24040
  # indicator was observed.
23308
24041
  #
23309
24042
  # Uses the `date-time` format specified in [RFC 3339 section 5.6,
23310
- # Internet Date/Time Format][1]. The value cannot contain spaces. For
23311
- # example, `2020-03-22T13:22:13.933Z`.
24043
+ # Internet Date/Time Format][1]. The value cannot contain spaces, and
24044
+ # date and time should be separated by `T`. For example,
24045
+ # `2020-03-22T13:22:13.933Z`.
23312
24046
  #
23313
24047
  #
23314
24048
  #
@@ -23337,6 +24071,111 @@ module Aws::SecurityHub
23337
24071
  include Aws::Structure
23338
24072
  end
23339
24073
 
24074
+ # Provides details about a security control for which a response
24075
+ # couldn't be returned.
24076
+ #
24077
+ # @!attribute [rw] security_control_id
24078
+ # The control (identified with `SecurityControlId`,
24079
+ # `SecurityControlArn`, or a mix of both parameters) for which a
24080
+ # response couldn't be returned.
24081
+ # @return [String]
24082
+ #
24083
+ # @!attribute [rw] error_code
24084
+ # The error code for the unprocessed security control.
24085
+ # @return [String]
24086
+ #
24087
+ # @!attribute [rw] error_reason
24088
+ # The reason why the security control was unprocessed.
24089
+ # @return [String]
24090
+ #
24091
+ # @see http://docs.aws.amazon.com/goto/WebAPI/securityhub-2018-10-26/UnprocessedSecurityControl AWS API Documentation
24092
+ #
24093
+ class UnprocessedSecurityControl < Struct.new(
24094
+ :security_control_id,
24095
+ :error_code,
24096
+ :error_reason)
24097
+ SENSITIVE = []
24098
+ include Aws::Structure
24099
+ end
24100
+
24101
+ # Provides details about which control's enablement status couldn't be
24102
+ # retrieved in a specified standard when calling
24103
+ # [BatchUpdateStandardsControlAssociations][1]. This parameter also
24104
+ # provides details about why the request was unprocessed.
24105
+ #
24106
+ #
24107
+ #
24108
+ # [1]: https://docs.aws.amazon.com/securityhub/1.0/APIReference/API_BatchUpdateStandardsControlAssociations.html
24109
+ #
24110
+ # @!attribute [rw] standards_control_association_id
24111
+ # An array with one or more objects that includes a security control
24112
+ # (identified with `SecurityControlId`, `SecurityControlArn`, or a mix
24113
+ # of both parameters) and the Amazon Resource Name (ARN) of a
24114
+ # standard. This parameter shows the specific controls for which the
24115
+ # enablement status couldn't be retrieved in specified standards when
24116
+ # calling [BatchUpdateStandardsControlAssociations][1].
24117
+ #
24118
+ #
24119
+ #
24120
+ # [1]: https://docs.aws.amazon.com/securityhub/1.0/APIReference/API_BatchUpdateStandardsControlAssociations.html
24121
+ # @return [Types::StandardsControlAssociationId]
24122
+ #
24123
+ # @!attribute [rw] error_code
24124
+ # The error code for the unprocessed standard and control association.
24125
+ # @return [String]
24126
+ #
24127
+ # @!attribute [rw] error_reason
24128
+ # The reason why the standard and control association was unprocessed.
24129
+ # @return [String]
24130
+ #
24131
+ # @see http://docs.aws.amazon.com/goto/WebAPI/securityhub-2018-10-26/UnprocessedStandardsControlAssociation AWS API Documentation
24132
+ #
24133
+ class UnprocessedStandardsControlAssociation < Struct.new(
24134
+ :standards_control_association_id,
24135
+ :error_code,
24136
+ :error_reason)
24137
+ SENSITIVE = []
24138
+ include Aws::Structure
24139
+ end
24140
+
24141
+ # Provides details about which control's enablement status could not be
24142
+ # updated in a specified standard when calling the
24143
+ # [BatchUpdateStandardsControlAssociations][1] API. This parameter also
24144
+ # provides details about why the request was unprocessed.
24145
+ #
24146
+ #
24147
+ #
24148
+ # [1]: https://docs.aws.amazon.com/securityhub/1.0/APIReference/API_BatchUpdateStandardsControlAssociations.html
24149
+ #
24150
+ # @!attribute [rw] standards_control_association_update
24151
+ # An array of control and standard associations for which an update
24152
+ # failed when calling [BatchUpdateStandardsControlAssociations][1].
24153
+ #
24154
+ #
24155
+ #
24156
+ # [1]: https://docs.aws.amazon.com/securityhub/1.0/APIReference/API_BatchUpdateStandardsControlAssociations.html
24157
+ # @return [Types::StandardsControlAssociationUpdate]
24158
+ #
24159
+ # @!attribute [rw] error_code
24160
+ # The error code for the unprocessed update of the control's
24161
+ # enablement status in the specified standard.
24162
+ # @return [String]
24163
+ #
24164
+ # @!attribute [rw] error_reason
24165
+ # The reason why a control's enablement status in the specified
24166
+ # standard couldn't be updated.
24167
+ # @return [String]
24168
+ #
24169
+ # @see http://docs.aws.amazon.com/goto/WebAPI/securityhub-2018-10-26/UnprocessedStandardsControlAssociationUpdate AWS API Documentation
24170
+ #
24171
+ class UnprocessedStandardsControlAssociationUpdate < Struct.new(
24172
+ :standards_control_association_update,
24173
+ :error_code,
24174
+ :error_reason)
24175
+ SENSITIVE = []
24176
+ include Aws::Structure
24177
+ end
24178
+
23340
24179
  # @!attribute [rw] resource_arn
23341
24180
  # The ARN of the resource to remove the tags from.
23342
24181
  # @return [String]
@@ -23573,10 +24412,26 @@ module Aws::SecurityHub
23573
24412
  # `false`.
23574
24413
  # @return [Boolean]
23575
24414
  #
24415
+ # @!attribute [rw] control_finding_generator
24416
+ # Updates whether the calling account has consolidated control
24417
+ # findings turned on. If the value for this field is set to
24418
+ # `SECURITY_CONTROL`, Security Hub generates a single finding for a
24419
+ # control check even when the check applies to multiple enabled
24420
+ # standards.
24421
+ #
24422
+ # If the value for this field is set to `STANDARD_CONTROL`, Security
24423
+ # Hub generates separate findings for a control check when the check
24424
+ # applies to multiple enabled standards.
24425
+ #
24426
+ # For accounts that are part of an organization, this value can only
24427
+ # be updated in the administrator account.
24428
+ # @return [String]
24429
+ #
23576
24430
  # @see http://docs.aws.amazon.com/goto/WebAPI/securityhub-2018-10-26/UpdateSecurityHubConfigurationRequest AWS API Documentation
23577
24431
  #
23578
24432
  class UpdateSecurityHubConfigurationRequest < Struct.new(
23579
- :auto_enable_controls)
24433
+ :auto_enable_controls,
24434
+ :control_finding_generator)
23580
24435
  SENSITIVE = []
23581
24436
  include Aws::Structure
23582
24437
  end
@@ -23764,8 +24619,9 @@ module Aws::SecurityHub
23764
24619
  # Indicates when the vulnerability advisory was created.
23765
24620
  #
23766
24621
  # Uses the `date-time` format specified in [RFC 3339 section 5.6,
23767
- # Internet Date/Time Format][1]. The value cannot contain spaces. For
23768
- # example, `2020-03-22T13:22:13.933Z`.
24622
+ # Internet Date/Time Format][1]. The value cannot contain spaces, and
24623
+ # date and time should be separated by `T`. For example,
24624
+ # `2020-03-22T13:22:13.933Z`.
23769
24625
  #
23770
24626
  #
23771
24627
  #
@@ -23776,8 +24632,9 @@ module Aws::SecurityHub
23776
24632
  # Indicates when the vulnerability advisory was last updated.
23777
24633
  #
23778
24634
  # Uses the `date-time` format specified in [RFC 3339 section 5.6,
23779
- # Internet Date/Time Format][1]. The value cannot contain spaces. For
23780
- # example, `2020-03-22T13:22:13.933Z`.
24635
+ # Internet Date/Time Format][1]. The value cannot contain spaces, and
24636
+ # date and time should be separated by `T`. For example,
24637
+ # `2020-03-22T13:22:13.933Z`.
23781
24638
  #
23782
24639
  #
23783
24640
  #