aws-sdk-securityhub 1.90.0 → 1.92.0

checksums.yaml

@@ -1,7 +1,7 @@
 ---
 SHA256:
-  metadata.gz: 1396b5b8daa3697fac2ad731b148d6abadf5e9da0978aaff2a4594bf6a141c44
-  data.tar.gz: 4ed199b559c28290db4f8d66c298eb7aa0384be1d9c1f594936faa2c69c5aadb
+  metadata.gz: a5503e8122b79b5d79e585c67bdc7d1e8b3c4a08825728d6c81e80cfb3e7e764
+  data.tar.gz: cd536190fbac26f1cfdbe8b59655f2b85c6e5defcd41290bc6843dc0955099f6
 SHA512:
-  metadata.gz: 04bbab448a1645598864782958973c024beebe56bae6067ca2b72e2defa87f0e23ab288ec8723fe1c6eaa740666937f31479ce07349b0776fc530855e51ba06e
-  data.tar.gz: 0eb5a3826c5abdc8be6681f6f8e0ce2aaacb6b8bc1bda924e4e27f33b91db654f91902f7e2cf3a068fb0305c3606376b61e3d59529c06f178991129ffa1e86c8
+  metadata.gz: 3d8b34822c95a7aa98e1b6e584e1274608b50175a6a90db7a42161f63193e9ae9d54bab12a551da76db6240877ee780f7c6b1c3bf7f0c57016c898a3cdb8bd82
+  data.tar.gz: 3067c6fb3e128d9fd45a8f0a465111bf9ae7469f9ac81626d97c4065bfea10200ce1d12022f8c80566838157f98418dcc0bdda3b4c4b4de6da7fb32e90f83ae4

data/CHANGELOG.md

@@ -1,6 +1,16 @@
 Unreleased Changes
 ------------------
 
+1.92.0 (2023-09-07)
+------------------
+
+* Feature - Documentation updates for AWS Security Hub
+
+1.91.0 (2023-08-18)
+------------------
+
+* Feature - Added Inspector Lambda code Vulnerability section to ASFF, including GeneratorDetails, EpssScore, ExploitAvailable, and CodeVulnerabilities.
+
 1.90.0 (2023-07-25)
 ------------------
 

data/VERSION

@@ -1 +1 @@
-1.90.0
+1.92.0

data/lib/aws-sdk-securityhub/client.rb

@@ -3561,8 +3561,9 @@ module Aws::SecurityHub
 
     # Deletes the specified member accounts from Security Hub.
     #
-    # Can be used to delete member accounts that belong to an organization
-    # as well as member accounts that were invited manually.
+    # You can invoke this API only to delete accounts that became members
+    # through invitation. You can't invoke this API to delete accounts that
+    # belong to an Organizations organization.
     #
     # @option params [required, Array<String>] :account_ids
     #   The list of account IDs for the member accounts to delete.
@@ -4143,12 +4144,12 @@ module Aws::SecurityHub
       req.send_request(options)
     end
 
-    # Disables Security Hub in your account only in the current Region. To
-    # disable Security Hub in all Regions, you must submit one request per
-    # Region where you have enabled Security Hub.
+    # Disables Security Hub in your account only in the current Amazon Web
+    # Services Region. To disable Security Hub in all Regions, you must
+    # submit one request per Region where you have enabled Security Hub.
     #
-    # When you disable Security Hub for an administrator account, it
-    # doesn't disable Security Hub for any associated member accounts.
+    # You can't disable Security Hub in an account that is currently the
+    # Security Hub administrator.
     #
     # When you disable Security Hub, your existing findings and insights and
     # any Security Hub configuration settings are deleted after 90 days and
@@ -8702,7 +8703,7 @@ module Aws::SecurityHub
         params: params,
         config: config)
       context[:gem_name] = 'aws-sdk-securityhub'
-      context[:gem_version] = '1.90.0'
+      context[:gem_version] = '1.92.0'
       Seahorse::Client::Request.new(handlers, context)
     end
 

data/lib/aws-sdk-securityhub/client_api.rb

@@ -693,6 +693,7 @@ module Aws::SecurityHub
     City = Shapes::StructureShape.new(name: 'City')
     ClassificationResult = Shapes::StructureShape.new(name: 'ClassificationResult')
     ClassificationStatus = Shapes::StructureShape.new(name: 'ClassificationStatus')
+    CodeVulnerabilitiesFilePath = Shapes::StructureShape.new(name: 'CodeVulnerabilitiesFilePath')
     Compliance = Shapes::StructureShape.new(name: 'Compliance')
     ComplianceStatus = Shapes::StringShape.new(name: 'ComplianceStatus')
     ContainerDetails = Shapes::StructureShape.new(name: 'ContainerDetails')
@@ -784,6 +785,7 @@ module Aws::SecurityHub
     FirewallPolicyStatelessCustomActionsList = Shapes::ListShape.new(name: 'FirewallPolicyStatelessCustomActionsList')
     FirewallPolicyStatelessRuleGroupReferencesDetails = Shapes::StructureShape.new(name: 'FirewallPolicyStatelessRuleGroupReferencesDetails')
     FirewallPolicyStatelessRuleGroupReferencesList = Shapes::ListShape.new(name: 'FirewallPolicyStatelessRuleGroupReferencesList')
+    GeneratorDetails = Shapes::StructureShape.new(name: 'GeneratorDetails')
     GeoLocation = Shapes::StructureShape.new(name: 'GeoLocation')
     GetAdministratorAccountRequest = Shapes::StructureShape.new(name: 'GetAdministratorAccountRequest')
     GetAdministratorAccountResponse = Shapes::StructureShape.new(name: 'GetAdministratorAccountResponse')
@@ -1049,6 +1051,9 @@ module Aws::SecurityHub
     VpcInfoIpv6CidrBlockSetList = Shapes::ListShape.new(name: 'VpcInfoIpv6CidrBlockSetList')
     VpcInfoPeeringOptionsDetails = Shapes::StructureShape.new(name: 'VpcInfoPeeringOptionsDetails')
     Vulnerability = Shapes::StructureShape.new(name: 'Vulnerability')
+    VulnerabilityCodeVulnerabilities = Shapes::StructureShape.new(name: 'VulnerabilityCodeVulnerabilities')
+    VulnerabilityCodeVulnerabilitiesList = Shapes::ListShape.new(name: 'VulnerabilityCodeVulnerabilitiesList')
+    VulnerabilityExploitAvailable = Shapes::StringShape.new(name: 'VulnerabilityExploitAvailable')
     VulnerabilityFixAvailable = Shapes::StringShape.new(name: 'VulnerabilityFixAvailable')
     VulnerabilityList = Shapes::ListShape.new(name: 'VulnerabilityList')
     VulnerabilityVendor = Shapes::StructureShape.new(name: 'VulnerabilityVendor')
@@ -4314,6 +4319,7 @@ module Aws::SecurityHub
     AwsSecurityFinding.add_member(:action, Shapes::ShapeRef.new(shape: Action, location_name: "Action"))
     AwsSecurityFinding.add_member(:finding_provider_fields, Shapes::ShapeRef.new(shape: FindingProviderFields, location_name: "FindingProviderFields"))
     AwsSecurityFinding.add_member(:sample, Shapes::ShapeRef.new(shape: Boolean, location_name: "Sample"))
+    AwsSecurityFinding.add_member(:generator_details, Shapes::ShapeRef.new(shape: GeneratorDetails, location_name: "GeneratorDetails"))
     AwsSecurityFinding.struct_class = Types::AwsSecurityFinding
 
     AwsSecurityFindingFilters.add_member(:product_arn, Shapes::ShapeRef.new(shape: StringFilterList, location_name: "ProductArn"))
@@ -4834,6 +4840,12 @@ module Aws::SecurityHub
     ClassificationStatus.add_member(:reason, Shapes::ShapeRef.new(shape: NonEmptyString, location_name: "Reason"))
     ClassificationStatus.struct_class = Types::ClassificationStatus
 
+    CodeVulnerabilitiesFilePath.add_member(:end_line, Shapes::ShapeRef.new(shape: Integer, location_name: "EndLine"))
+    CodeVulnerabilitiesFilePath.add_member(:file_name, Shapes::ShapeRef.new(shape: NonEmptyString, location_name: "FileName"))
+    CodeVulnerabilitiesFilePath.add_member(:file_path, Shapes::ShapeRef.new(shape: NonEmptyString, location_name: "FilePath"))
+    CodeVulnerabilitiesFilePath.add_member(:start_line, Shapes::ShapeRef.new(shape: Integer, location_name: "StartLine"))
+    CodeVulnerabilitiesFilePath.struct_class = Types::CodeVulnerabilitiesFilePath
+
     Compliance.add_member(:status, Shapes::ShapeRef.new(shape: ComplianceStatus, location_name: "Status"))
     Compliance.add_member(:related_requirements, Shapes::ShapeRef.new(shape: RelatedRequirementsList, location_name: "RelatedRequirements"))
     Compliance.add_member(:status_reasons, Shapes::ShapeRef.new(shape: StatusReasonsList, location_name: "StatusReasons"))
@@ -5143,6 +5155,11 @@ module Aws::SecurityHub
 
     FirewallPolicyStatelessRuleGroupReferencesList.member = Shapes::ShapeRef.new(shape: FirewallPolicyStatelessRuleGroupReferencesDetails)
 
+    GeneratorDetails.add_member(:name, Shapes::ShapeRef.new(shape: NonEmptyString, location_name: "Name"))
+    GeneratorDetails.add_member(:description, Shapes::ShapeRef.new(shape: NonEmptyString, location_name: "Description"))
+    GeneratorDetails.add_member(:labels, Shapes::ShapeRef.new(shape: TypeList, location_name: "Labels"))
+    GeneratorDetails.struct_class = Types::GeneratorDetails
+
     GeoLocation.add_member(:lon, Shapes::ShapeRef.new(shape: Double, location_name: "Lon"))
     GeoLocation.add_member(:lat, Shapes::ShapeRef.new(shape: Double, location_name: "Lat"))
     GeoLocation.struct_class = Types::GeoLocation
@@ -6162,8 +6179,18 @@ module Aws::SecurityHub
     Vulnerability.add_member(:vendor, Shapes::ShapeRef.new(shape: VulnerabilityVendor, location_name: "Vendor"))
     Vulnerability.add_member(:reference_urls, Shapes::ShapeRef.new(shape: StringList, location_name: "ReferenceUrls"))
     Vulnerability.add_member(:fix_available, Shapes::ShapeRef.new(shape: VulnerabilityFixAvailable, location_name: "FixAvailable"))
+    Vulnerability.add_member(:epss_score, Shapes::ShapeRef.new(shape: Double, location_name: "EpssScore"))
+    Vulnerability.add_member(:exploit_available, Shapes::ShapeRef.new(shape: VulnerabilityExploitAvailable, location_name: "ExploitAvailable"))
+    Vulnerability.add_member(:code_vulnerabilities, Shapes::ShapeRef.new(shape: VulnerabilityCodeVulnerabilitiesList, location_name: "CodeVulnerabilities"))
     Vulnerability.struct_class = Types::Vulnerability
 
+    VulnerabilityCodeVulnerabilities.add_member(:cwes, Shapes::ShapeRef.new(shape: TypeList, location_name: "Cwes"))
+    VulnerabilityCodeVulnerabilities.add_member(:file_path, Shapes::ShapeRef.new(shape: CodeVulnerabilitiesFilePath, location_name: "FilePath"))
+    VulnerabilityCodeVulnerabilities.add_member(:source_arn, Shapes::ShapeRef.new(shape: NonEmptyString, location_name: "SourceArn"))
+    VulnerabilityCodeVulnerabilities.struct_class = Types::VulnerabilityCodeVulnerabilities
+
+    VulnerabilityCodeVulnerabilitiesList.member = Shapes::ShapeRef.new(shape: VulnerabilityCodeVulnerabilities)
+
     VulnerabilityList.member = Shapes::ShapeRef.new(shape: Vulnerability)
 
     VulnerabilityVendor.add_member(:name, Shapes::ShapeRef.new(shape: NonEmptyString, required: true, location_name: "Name"))

data/lib/aws-sdk-securityhub/types.rb

@@ -578,19 +578,29 @@ module Aws::SecurityHub
     # @!attribute [rw] product_arn
     #   The Amazon Resource Name (ARN) for a third-party product that
     #   generated a finding in Security Hub.
+    #
+    #   Array Members: Minimum number of 1 item. Maximum number of 20 items.
     #   @return [Array<Types::StringFilter>]
     #
     # @!attribute [rw] aws_account_id
     #   The Amazon Web Services account ID in which a finding was generated.
+    #
+    #   Array Members: Minimum number of 1 item. Maximum number of 100
+    #   items.
     #   @return [Array<Types::StringFilter>]
     #
     # @!attribute [rw] id
     #   The product-specific identifier for a finding.
+    #
+    #   Array Members: Minimum number of 1 item. Maximum number of 20 items.
     #   @return [Array<Types::StringFilter>]
     #
     # @!attribute [rw] generator_id
     #   The identifier for the solution-specific component that generated a
     #   finding.
+    #
+    #   Array Members: Minimum number of 1 item. Maximum number of 100
+    #   items.
     #   @return [Array<Types::StringFilter>]
     #
     # @!attribute [rw] type
@@ -599,6 +609,8 @@ module Aws::SecurityHub
     #   namespaces, classifiers, and categories, see [Types taxonomy for
     #   ASFF][1] in the *Security Hub User Guide*.
     #
+    #   Array Members: Minimum number of 1 item. Maximum number of 20 items.
+    #
     #
     #
     #   [1]: https://docs.aws.amazon.com/securityhub/latest/userguide/securityhub-findings-format-type-taxonomy.html
@@ -613,6 +625,8 @@ module Aws::SecurityHub
     #   Internet Date/Time Format][1]. The value cannot contain spaces. For
     #   example, `2020-03-22T13:22:13.933Z`.
     #
+    #   Array Members: Minimum number of 1 item. Maximum number of 20 items.
+    #
     #
     #
     #   [1]: https://tools.ietf.org/html/rfc3339#section-5.6
@@ -627,6 +641,8 @@ module Aws::SecurityHub
     #   Internet Date/Time Format][1]. The value cannot contain spaces. For
     #   example, `2020-03-22T13:22:13.933Z`.
     #
+    #   Array Members: Minimum number of 1 item. Maximum number of 20 items.
+    #
     #
     #
     #   [1]: https://tools.ietf.org/html/rfc3339#section-5.6
@@ -639,6 +655,8 @@ module Aws::SecurityHub
     #   Internet Date/Time Format][1]. The value cannot contain spaces. For
     #   example, `2020-03-22T13:22:13.933Z`.
     #
+    #   Array Members: Minimum number of 1 item. Maximum number of 20 items.
+    #
     #
     #
     #   [1]: https://tools.ietf.org/html/rfc3339#section-5.6
@@ -652,6 +670,8 @@ module Aws::SecurityHub
     #   Internet Date/Time Format][1]. The value cannot contain spaces. For
     #   example, `2020-03-22T13:22:13.933Z`.
     #
+    #   Array Members: Minimum number of 1 item. Maximum number of 20 items.
+    #
     #
     #
     #   [1]: https://tools.ietf.org/html/rfc3339#section-5.6
@@ -667,6 +687,8 @@ module Aws::SecurityHub
     #   exfiltration hasn't been verified. For more information, see
     #   [Confidence][1] in the *Security Hub User Guide*.
     #
+    #   Array Members: Minimum number of 1 item. Maximum number of 20 items.
+    #
     #
     #
     #   [1]: https://docs.aws.amazon.com/securityhub/latest/userguide/asff-top-level-attributes.html#asff-confidence
@@ -680,6 +702,8 @@ module Aws::SecurityHub
     #   of `100` is reserved for the most critical resources. For more
     #   information, see [Criticality][1] in the *Security Hub User Guide*.
     #
+    #   Array Members: Minimum number of 1 item. Maximum number of 20 items.
+    #
     #
     #
     #   [1]: https://docs.aws.amazon.com/securityhub/latest/userguide/asff-top-level-attributes.html#asff-criticality
@@ -687,33 +711,48 @@ module Aws::SecurityHub
     #
     # @!attribute [rw] title
     #   A finding's title.
+    #
+    #   Array Members: Minimum number of 1 item. Maximum number of 100
+    #   items.
     #   @return [Array<Types::StringFilter>]
     #
     # @!attribute [rw] description
     #   A finding's description.
+    #
+    #   Array Members: Minimum number of 1 item. Maximum number of 20 items.
     #   @return [Array<Types::StringFilter>]
     #
     # @!attribute [rw] source_url
     #   Provides a URL that links to a page about the current finding in the
     #   finding product.
+    #
+    #   Array Members: Minimum number of 1 item. Maximum number of 20 items.
     #   @return [Array<Types::StringFilter>]
     #
     # @!attribute [rw] product_name
     #   Provides the name of the product that generated the finding. For
     #   control-based findings, the product name is Security Hub.
+    #
+    #   Array Members: Minimum number of 1 item. Maximum number of 20 items.
     #   @return [Array<Types::StringFilter>]
     #
     # @!attribute [rw] company_name
     #   The name of the company for the product that generated the finding.
     #   For control-based findings, the company is Amazon Web Services.
+    #
+    #   Array Members: Minimum number of 1 item. Maximum number of 20 items.
     #   @return [Array<Types::StringFilter>]
     #
     # @!attribute [rw] severity_label
     #   The severity value of the finding.
+    #
+    #   Array Members: Minimum number of 1 item. Maximum number of 20 items.
     #   @return [Array<Types::StringFilter>]
     #
     # @!attribute [rw] resource_type
     #   The type of resource that the finding pertains to.
+    #
+    #   Array Members: Minimum number of 1 item. Maximum number of 20 items.
     #   @return [Array<Types::StringFilter>]
     #
     # @!attribute [rw] resource_id
@@ -723,37 +762,52 @@ module Aws::SecurityHub
     #   is the identifier as defined by the Amazon Web Service that created
     #   the resource. For non-Amazon Web Services resources, this is a
     #   unique identifier that is associated with the resource.
+    #
+    #   Array Members: Minimum number of 1 item. Maximum number of 100
+    #   items.
     #   @return [Array<Types::StringFilter>]
     #
     # @!attribute [rw] resource_partition
     #   The partition in which the resource that the finding pertains to is
     #   located. A partition is a group of Amazon Web Services Regions. Each
     #   Amazon Web Services account is scoped to one partition.
+    #
+    #   Array Members: Minimum number of 1 item. Maximum number of 20 items.
     #   @return [Array<Types::StringFilter>]
     #
     # @!attribute [rw] resource_region
     #   The Amazon Web Services Region where the resource that a finding
     #   pertains to is located.
+    #
+    #   Array Members: Minimum number of 1 item. Maximum number of 20 items.
     #   @return [Array<Types::StringFilter>]
     #
     # @!attribute [rw] resource_tags
     #   A list of Amazon Web Services tags associated with a resource at the
     #   time the finding was processed.
+    #
+    #   Array Members: Minimum number of 1 item. Maximum number of 20 items.
     #   @return [Array<Types::MapFilter>]
     #
     # @!attribute [rw] resource_details_other
     #   Custom fields and values about the resource that a finding pertains
     #   to.
+    #
+    #   Array Members: Minimum number of 1 item. Maximum number of 20 items.
     #   @return [Array<Types::MapFilter>]
     #
     # @!attribute [rw] compliance_status
     #   The result of a security check. This field is only used for findings
     #   generated from controls.
+    #
+    #   Array Members: Minimum number of 1 item. Maximum number of 20 items.
     #   @return [Array<Types::StringFilter>]
     #
     # @!attribute [rw] compliance_security_control_id
     #   The security control ID for which a finding was generated. Security
     #   control IDs are the same across standards.
+    #
+    #   Array Members: Minimum number of 1 item. Maximum number of 20 items.
     #   @return [Array<Types::StringFilter>]
     #
     # @!attribute [rw] compliance_associated_standards_id
@@ -762,6 +816,8 @@ module Aws::SecurityHub
     #   Name (ARN) returned for a standard in the [DescribeStandards][1] API
     #   response.
     #
+    #   Array Members: Minimum number of 1 item. Maximum number of 20 items.
+    #
     #
     #
     #   [1]: https://docs.aws.amazon.com/securityhub/1.0/APIReference/API_DescribeStandards.html
@@ -769,27 +825,39 @@ module Aws::SecurityHub
     #
     # @!attribute [rw] verification_state
     #   Provides the veracity of a finding.
+    #
+    #   Array Members: Minimum number of 1 item. Maximum number of 20 items.
     #   @return [Array<Types::StringFilter>]
     #
     # @!attribute [rw] workflow_status
     #   Provides information about the status of the investigation into a
     #   finding.
+    #
+    #   Array Members: Minimum number of 1 item. Maximum number of 20 items.
     #   @return [Array<Types::StringFilter>]
     #
     # @!attribute [rw] record_state
     #   Provides the current state of a finding.
+    #
+    #   Array Members: Minimum number of 1 item. Maximum number of 20 items.
     #   @return [Array<Types::StringFilter>]
     #
     # @!attribute [rw] related_findings_product_arn
     #   The ARN for the product that generated a related finding.
+    #
+    #   Array Members: Minimum number of 1 item. Maximum number of 20 items.
     #   @return [Array<Types::StringFilter>]
     #
     # @!attribute [rw] related_findings_id
     #   The product-generated identifier for a related finding.
+    #
+    #   Array Members: Minimum number of 1 item. Maximum number of 20 items.
     #   @return [Array<Types::StringFilter>]
     #
     # @!attribute [rw] note_text
     #   The text of a user-defined note that's added to a finding.
+    #
+    #   Array Members: Minimum number of 1 item. Maximum number of 20 items.
     #   @return [Array<Types::StringFilter>]
     #
     # @!attribute [rw] note_updated_at
@@ -798,6 +866,8 @@ module Aws::SecurityHub
     #   Format][1]. The value cannot contain spaces. For example,
     #   `2020-03-22T13:22:13.933Z`.
     #
+    #   Array Members: Minimum number of 1 item. Maximum number of 20 items.
+    #
     #
     #
     #   [1]: https://www.rfc-editor.org/rfc/rfc3339#section-5.6
@@ -805,11 +875,15 @@ module Aws::SecurityHub
     #
     # @!attribute [rw] note_updated_by
     #   The principal that created a note.
+    #
+    #   Array Members: Minimum number of 1 item. Maximum number of 20 items.
     #   @return [Array<Types::StringFilter>]
     #
     # @!attribute [rw] user_defined_fields
     #   A list of user-defined name and value string pairs added to a
     #   finding.
+    #
+    #   Array Members: Minimum number of 1 item. Maximum number of 20 items.
     #   @return [Array<Types::MapFilter>]
     #
     # @see http://docs.aws.amazon.com/goto/WebAPI/securityhub-2018-10-26/AutomationRulesFindingFilters AWS API Documentation
@@ -17721,6 +17795,15 @@ module Aws::SecurityHub
     #   Indicates whether the finding is a sample finding.
     #   @return [Boolean]
     #
+    # @!attribute [rw] generator_details
+    #   Provides metadata for the Amazon CodeGuru detector associated with a
+    #   finding. This field pertains to findings that relate to Lambda
+    #   functions. Amazon Inspector identifies policy violations and
+    #   vulnerabilities in Lambda function code based on internal detectors
+    #   developed in collaboration with Amazon CodeGuru. Security Hub
+    #   receives those findings.
+    #   @return [Types::GeneratorDetails]
+    #
     # @see http://docs.aws.amazon.com/goto/WebAPI/securityhub-2018-10-26/AwsSecurityFinding AWS API Documentation
     #
     class AwsSecurityFinding < Struct.new(
@@ -17764,7 +17847,8 @@ module Aws::SecurityHub
       :patch_summary,
       :action,
       :finding_provider_fields,
-      :sample)
+      :sample,
+      :generator_details)
       SENSITIVE = []
       include Aws::Structure
     end
@@ -20662,6 +20746,38 @@ module Aws::SecurityHub
       include Aws::Structure
     end
 
+    # Provides details about where a code vulnerability is located in your
+    # Lambda function.
+    #
+    # @!attribute [rw] end_line
+    #   The line number of the last line of code in which the vulnerability
+    #   is located.
+    #   @return [Integer]
+    #
+    # @!attribute [rw] file_name
+    #   The name of the file in which the code vulnerability is located.
+    #   @return [String]
+    #
+    # @!attribute [rw] file_path
+    #   The file path to the code in which the vulnerability is located.
+    #   @return [String]
+    #
+    # @!attribute [rw] start_line
+    #   The line number of the first line of code in which the vulnerability
+    #   is located.
+    #   @return [Integer]
+    #
+    # @see http://docs.aws.amazon.com/goto/WebAPI/securityhub-2018-10-26/CodeVulnerabilitiesFilePath AWS API Documentation
+    #
+    class CodeVulnerabilitiesFilePath < Struct.new(
+      :end_line,
+      :file_name,
+      :file_path,
+      :start_line)
+      SENSITIVE = []
+      include Aws::Structure
+    end
+
     # Contains finding details that are specific to control-based findings.
     # Only returned for findings generated from controls.
     #
@@ -22193,6 +22309,37 @@ module Aws::SecurityHub
       include Aws::Structure
     end
 
+    # Provides metadata for the Amazon CodeGuru detector associated with a
+    # finding. This field pertains to findings that relate to Lambda
+    # functions. Amazon Inspector identifies policy violations and
+    # vulnerabilities in Lambda function code based on internal detectors
+    # developed in collaboration with Amazon CodeGuru. Security Hub receives
+    # those findings.
+    #
+    # @!attribute [rw] name
+    #   The name of the detector used to identify the code vulnerability.
+    #   @return [String]
+    #
+    # @!attribute [rw] description
+    #   The description of the detector used to identify the code
+    #   vulnerability.
+    #   @return [String]
+    #
+    # @!attribute [rw] labels
+    #   An array of tags used to identify the detector associated with the
+    #   finding.
+    #   @return [Array<String>]
+    #
+    # @see http://docs.aws.amazon.com/goto/WebAPI/securityhub-2018-10-26/GeneratorDetails AWS API Documentation
+    #
+    class GeneratorDetails < Struct.new(
+      :name,
+      :description,
+      :labels)
+      SENSITIVE = []
+      include Aws::Structure
+    end
+
     # Provides the latitude and longitude coordinates of a location.
     #
     # @!attribute [rw] lon
@@ -27193,6 +27340,20 @@ module Aws::SecurityHub
     #   * `PARTIAL` otherwise
     #   @return [String]
     #
+    # @!attribute [rw] epss_score
+    #   The Exploit Prediction Scoring System (EPSS) score for a finding.
+    #   @return [Float]
+    #
+    # @!attribute [rw] exploit_available
+    #   Whether an exploit is available for a finding.
+    #   @return [String]
+    #
+    # @!attribute [rw] code_vulnerabilities
+    #   The vulnerabilities found in your Lambda function code. This field
+    #   pertains to findings that Security Hub receives from Amazon
+    #   Inspector.
+    #   @return [Array<Types::VulnerabilityCodeVulnerabilities>]
+    #
     # @see http://docs.aws.amazon.com/goto/WebAPI/securityhub-2018-10-26/Vulnerability AWS API Documentation
     #
     class Vulnerability < Struct.new(
@@ -27202,7 +27363,39 @@ module Aws::SecurityHub
       :related_vulnerabilities,
       :vendor,
       :reference_urls,
-      :fix_available)
+      :fix_available,
+      :epss_score,
+      :exploit_available,
+      :code_vulnerabilities)
+      SENSITIVE = []
+      include Aws::Structure
+    end
+
+    # Provides details about the vulnerabilities found in your Lambda
+    # function code. This field pertains to findings that Security Hub
+    # receives from Amazon Inspector.
+    #
+    # @!attribute [rw] cwes
+    #   The Common Weakness Enumeration (CWE) item associated with the
+    #   detected code vulnerability.
+    #   @return [Array<String>]
+    #
+    # @!attribute [rw] file_path
+    #   Provides details about where a code vulnerability is located in your
+    #   Lambda function.
+    #   @return [Types::CodeVulnerabilitiesFilePath]
+    #
+    # @!attribute [rw] source_arn
+    #   The Amazon Resource Name (ARN) of the Lambda layer in which the code
+    #   vulnerability is located.
+    #   @return [String]
+    #
+    # @see http://docs.aws.amazon.com/goto/WebAPI/securityhub-2018-10-26/VulnerabilityCodeVulnerabilities AWS API Documentation
+    #
+    class VulnerabilityCodeVulnerabilities < Struct.new(
+      :cwes,
+      :file_path,
+      :source_arn)
       SENSITIVE = []
       include Aws::Structure
     end
@@ -27317,8 +27510,7 @@ module Aws::SecurityHub
       include Aws::Structure
     end
 
-    # Provides information about the status of the investigation into a
-    # finding.
+    # Provides details about the status of the investigation into a finding.
     #
     # @!attribute [rw] status
     #   The status of the investigation into the finding. The workflow

data/lib/aws-sdk-securityhub.rb

@@ -52,6 +52,6 @@ require_relative 'aws-sdk-securityhub/customizations'
 # @!group service
 module Aws::SecurityHub
 
-  GEM_VERSION = '1.90.0'
+  GEM_VERSION = '1.92.0'
 
 end

metadata

@@ -1,14 +1,14 @@
 --- !ruby/object:Gem::Specification
 name: aws-sdk-securityhub
 version: !ruby/object:Gem::Version
-  version: 1.90.0
+  version: 1.92.0
 platform: ruby
 authors:
 - Amazon Web Services
 autorequire: 
 bindir: bin
 cert_chain: []
-date: 2023-07-25 00:00:00.000000000 Z
+date: 2023-09-07 00:00:00.000000000 Z
 dependencies:
 - !ruby/object:Gem::Dependency
   name: aws-sdk-core