aws-sdk-securityhub 1.98.0 → 1.99.0

Sign up to get free protection for your applications and to get access to all the features.
checksums.yaml CHANGED
@@ -1,7 +1,7 @@
1
1
  ---
2
2
  SHA256:
3
- metadata.gz: d44eea6b83551cedfe6fada0cce8308f6fa8a1b38984d0971b92b00be0b9d200
4
- data.tar.gz: 6b3085b82582600cfdf6a64652faa52d635ad257d871048c8c0053bc324b657d
3
+ metadata.gz: '03597bb188e03772414545438b8bb1724a05ba114937a072cddd53b95e44d300'
4
+ data.tar.gz: 8b433491b250ec1fa95bd8bef557501d443c45adad98bebb32f27b3aef33d8f0
5
5
  SHA512:
6
- metadata.gz: 72bcacda573ed17616e438d6a8e9013cae9b7b5c0a061c769eedac591eaec7eebf1462ba666b37dc6e8b96d86858ff86ec19189eafca8357eef56d856ee927fc
7
- data.tar.gz: de52bd8e71ba28f28646836fecfad1c0f50e5c6aa242d937acbe1c297e695f897920a79373e487ddc77388b602226870c3722cf46eb3d354e22c6b538e203ce9
6
+ metadata.gz: 179c2d590277fdbb178e4a51d4a7079f4ead307a5fdacde140935b470a844d24db4a09c3c5a6801ae6b71a519f5642ce7e7d8646730396c9bc3ccb51003c5179
7
+ data.tar.gz: efffed5c7352c23543ef813316f18e0ae9ca02902ac87397fb274e47789898a39de86acb277da20ed6073f50eb81b75ac691f67adebcd5151b0afb18a5e5e23f
data/CHANGELOG.md CHANGED
@@ -1,6 +1,11 @@
1
1
  Unreleased Changes
2
2
  ------------------
3
3
 
4
+ 1.99.0 (2023-12-11)
5
+ ------------------
6
+
7
+ * Feature - Added new resource detail objects to ASFF, including resources for AwsDynamoDbTable, AwsEc2ClientVpnEndpoint, AwsMskCluster, AwsS3AccessPoint, AwsS3Bucket
8
+
4
9
  1.98.0 (2023-11-28)
5
10
  ------------------
6
11
 
data/VERSION CHANGED
@@ -1 +1 @@
1
- 1.98.0
1
+ 1.99.0
@@ -2599,7 +2599,8 @@ module Aws::SecurityHub
2599
2599
  # from the home Region.
2600
2600
  #
2601
2601
  # @option params [required, String] :name
2602
- # The name of the configuration policy.
2602
+ # The name of the configuration policy. Alphanumeric characters and the
2603
+ # following ASCII characters are permitted: `-, ., !, *, /`.
2603
2604
  #
2604
2605
  # @option params [String] :description
2605
2606
  # The description of the configuration policy.
@@ -8306,7 +8307,8 @@ module Aws::SecurityHub
8306
8307
  # of the configuration policy.
8307
8308
  #
8308
8309
  # @option params [String] :name
8309
- # The name of the configuration policy.
8310
+ # The name of the configuration policy. Alphanumeric characters and the
8311
+ # following ASCII characters are permitted: `-, ., !, *, /`.
8310
8312
  #
8311
8313
  # @option params [String] :description
8312
8314
  # The description of the configuration policy.
@@ -10346,7 +10348,7 @@ module Aws::SecurityHub
10346
10348
  params: params,
10347
10349
  config: config)
10348
10350
  context[:gem_name] = 'aws-sdk-securityhub'
10349
- context[:gem_version] = '1.98.0'
10351
+ context[:gem_version] = '1.99.0'
10350
10352
  Seahorse::Client::Request.new(handlers, context)
10351
10353
  end
10352
10354
 
@@ -196,6 +196,16 @@ module Aws::SecurityHub
196
196
  AwsDynamoDbTableRestoreSummary = Shapes::StructureShape.new(name: 'AwsDynamoDbTableRestoreSummary')
197
197
  AwsDynamoDbTableSseDescription = Shapes::StructureShape.new(name: 'AwsDynamoDbTableSseDescription')
198
198
  AwsDynamoDbTableStreamSpecification = Shapes::StructureShape.new(name: 'AwsDynamoDbTableStreamSpecification')
199
+ AwsEc2ClientVpnEndpointAuthenticationOptionsActiveDirectoryDetails = Shapes::StructureShape.new(name: 'AwsEc2ClientVpnEndpointAuthenticationOptionsActiveDirectoryDetails')
200
+ AwsEc2ClientVpnEndpointAuthenticationOptionsDetails = Shapes::StructureShape.new(name: 'AwsEc2ClientVpnEndpointAuthenticationOptionsDetails')
201
+ AwsEc2ClientVpnEndpointAuthenticationOptionsFederatedAuthenticationDetails = Shapes::StructureShape.new(name: 'AwsEc2ClientVpnEndpointAuthenticationOptionsFederatedAuthenticationDetails')
202
+ AwsEc2ClientVpnEndpointAuthenticationOptionsList = Shapes::ListShape.new(name: 'AwsEc2ClientVpnEndpointAuthenticationOptionsList')
203
+ AwsEc2ClientVpnEndpointAuthenticationOptionsMutualAuthenticationDetails = Shapes::StructureShape.new(name: 'AwsEc2ClientVpnEndpointAuthenticationOptionsMutualAuthenticationDetails')
204
+ AwsEc2ClientVpnEndpointClientConnectOptionsDetails = Shapes::StructureShape.new(name: 'AwsEc2ClientVpnEndpointClientConnectOptionsDetails')
205
+ AwsEc2ClientVpnEndpointClientConnectOptionsStatusDetails = Shapes::StructureShape.new(name: 'AwsEc2ClientVpnEndpointClientConnectOptionsStatusDetails')
206
+ AwsEc2ClientVpnEndpointClientLoginBannerOptionsDetails = Shapes::StructureShape.new(name: 'AwsEc2ClientVpnEndpointClientLoginBannerOptionsDetails')
207
+ AwsEc2ClientVpnEndpointConnectionLogOptionsDetails = Shapes::StructureShape.new(name: 'AwsEc2ClientVpnEndpointConnectionLogOptionsDetails')
208
+ AwsEc2ClientVpnEndpointDetails = Shapes::StructureShape.new(name: 'AwsEc2ClientVpnEndpointDetails')
199
209
  AwsEc2EipDetails = Shapes::StructureShape.new(name: 'AwsEc2EipDetails')
200
210
  AwsEc2InstanceDetails = Shapes::StructureShape.new(name: 'AwsEc2InstanceDetails')
201
211
  AwsEc2InstanceMetadataOptions = Shapes::StructureShape.new(name: 'AwsEc2InstanceMetadataOptions')
@@ -586,6 +596,8 @@ module Aws::SecurityHub
586
596
  AwsRoute53HostedZoneVpcDetails = Shapes::StructureShape.new(name: 'AwsRoute53HostedZoneVpcDetails')
587
597
  AwsRoute53HostedZoneVpcsList = Shapes::ListShape.new(name: 'AwsRoute53HostedZoneVpcsList')
588
598
  AwsRoute53QueryLoggingConfigDetails = Shapes::StructureShape.new(name: 'AwsRoute53QueryLoggingConfigDetails')
599
+ AwsS3AccessPointDetails = Shapes::StructureShape.new(name: 'AwsS3AccessPointDetails')
600
+ AwsS3AccessPointVpcConfigurationDetails = Shapes::StructureShape.new(name: 'AwsS3AccessPointVpcConfigurationDetails')
589
601
  AwsS3AccountPublicAccessBlockDetails = Shapes::StructureShape.new(name: 'AwsS3AccountPublicAccessBlockDetails')
590
602
  AwsS3BucketBucketLifecycleConfigurationDetails = Shapes::StructureShape.new(name: 'AwsS3BucketBucketLifecycleConfigurationDetails')
591
603
  AwsS3BucketBucketLifecycleConfigurationRulesAbortIncompleteMultipartUploadDetails = Shapes::StructureShape.new(name: 'AwsS3BucketBucketLifecycleConfigurationRulesAbortIncompleteMultipartUploadDetails')
@@ -2135,6 +2147,7 @@ module Aws::SecurityHub
2135
2147
  AwsDynamoDbTableDetails.add_member(:table_name, Shapes::ShapeRef.new(shape: NonEmptyString, location_name: "TableName"))
2136
2148
  AwsDynamoDbTableDetails.add_member(:table_size_bytes, Shapes::ShapeRef.new(shape: SizeBytes, location_name: "TableSizeBytes"))
2137
2149
  AwsDynamoDbTableDetails.add_member(:table_status, Shapes::ShapeRef.new(shape: NonEmptyString, location_name: "TableStatus"))
2150
+ AwsDynamoDbTableDetails.add_member(:deletion_protection_enabled, Shapes::ShapeRef.new(shape: Boolean, location_name: "DeletionProtectionEnabled"))
2138
2151
  AwsDynamoDbTableDetails.struct_class = Types::AwsDynamoDbTableDetails
2139
2152
 
2140
2153
  AwsDynamoDbTableGlobalSecondaryIndex.add_member(:backfilling, Shapes::ShapeRef.new(shape: Boolean, location_name: "Backfilling"))
@@ -2210,6 +2223,60 @@ module Aws::SecurityHub
2210
2223
  AwsDynamoDbTableStreamSpecification.add_member(:stream_view_type, Shapes::ShapeRef.new(shape: NonEmptyString, location_name: "StreamViewType"))
2211
2224
  AwsDynamoDbTableStreamSpecification.struct_class = Types::AwsDynamoDbTableStreamSpecification
2212
2225
 
2226
+ AwsEc2ClientVpnEndpointAuthenticationOptionsActiveDirectoryDetails.add_member(:directory_id, Shapes::ShapeRef.new(shape: NonEmptyString, location_name: "DirectoryId"))
2227
+ AwsEc2ClientVpnEndpointAuthenticationOptionsActiveDirectoryDetails.struct_class = Types::AwsEc2ClientVpnEndpointAuthenticationOptionsActiveDirectoryDetails
2228
+
2229
+ AwsEc2ClientVpnEndpointAuthenticationOptionsDetails.add_member(:type, Shapes::ShapeRef.new(shape: NonEmptyString, location_name: "Type"))
2230
+ AwsEc2ClientVpnEndpointAuthenticationOptionsDetails.add_member(:active_directory, Shapes::ShapeRef.new(shape: AwsEc2ClientVpnEndpointAuthenticationOptionsActiveDirectoryDetails, location_name: "ActiveDirectory"))
2231
+ AwsEc2ClientVpnEndpointAuthenticationOptionsDetails.add_member(:mutual_authentication, Shapes::ShapeRef.new(shape: AwsEc2ClientVpnEndpointAuthenticationOptionsMutualAuthenticationDetails, location_name: "MutualAuthentication"))
2232
+ AwsEc2ClientVpnEndpointAuthenticationOptionsDetails.add_member(:federated_authentication, Shapes::ShapeRef.new(shape: AwsEc2ClientVpnEndpointAuthenticationOptionsFederatedAuthenticationDetails, location_name: "FederatedAuthentication"))
2233
+ AwsEc2ClientVpnEndpointAuthenticationOptionsDetails.struct_class = Types::AwsEc2ClientVpnEndpointAuthenticationOptionsDetails
2234
+
2235
+ AwsEc2ClientVpnEndpointAuthenticationOptionsFederatedAuthenticationDetails.add_member(:saml_provider_arn, Shapes::ShapeRef.new(shape: NonEmptyString, location_name: "SamlProviderArn"))
2236
+ AwsEc2ClientVpnEndpointAuthenticationOptionsFederatedAuthenticationDetails.add_member(:self_service_saml_provider_arn, Shapes::ShapeRef.new(shape: NonEmptyString, location_name: "SelfServiceSamlProviderArn"))
2237
+ AwsEc2ClientVpnEndpointAuthenticationOptionsFederatedAuthenticationDetails.struct_class = Types::AwsEc2ClientVpnEndpointAuthenticationOptionsFederatedAuthenticationDetails
2238
+
2239
+ AwsEc2ClientVpnEndpointAuthenticationOptionsList.member = Shapes::ShapeRef.new(shape: AwsEc2ClientVpnEndpointAuthenticationOptionsDetails)
2240
+
2241
+ AwsEc2ClientVpnEndpointAuthenticationOptionsMutualAuthenticationDetails.add_member(:client_root_certificate_chain, Shapes::ShapeRef.new(shape: NonEmptyString, location_name: "ClientRootCertificateChain"))
2242
+ AwsEc2ClientVpnEndpointAuthenticationOptionsMutualAuthenticationDetails.struct_class = Types::AwsEc2ClientVpnEndpointAuthenticationOptionsMutualAuthenticationDetails
2243
+
2244
+ AwsEc2ClientVpnEndpointClientConnectOptionsDetails.add_member(:enabled, Shapes::ShapeRef.new(shape: Boolean, location_name: "Enabled"))
2245
+ AwsEc2ClientVpnEndpointClientConnectOptionsDetails.add_member(:lambda_function_arn, Shapes::ShapeRef.new(shape: NonEmptyString, location_name: "LambdaFunctionArn"))
2246
+ AwsEc2ClientVpnEndpointClientConnectOptionsDetails.add_member(:status, Shapes::ShapeRef.new(shape: AwsEc2ClientVpnEndpointClientConnectOptionsStatusDetails, location_name: "Status"))
2247
+ AwsEc2ClientVpnEndpointClientConnectOptionsDetails.struct_class = Types::AwsEc2ClientVpnEndpointClientConnectOptionsDetails
2248
+
2249
+ AwsEc2ClientVpnEndpointClientConnectOptionsStatusDetails.add_member(:code, Shapes::ShapeRef.new(shape: NonEmptyString, location_name: "Code"))
2250
+ AwsEc2ClientVpnEndpointClientConnectOptionsStatusDetails.add_member(:message, Shapes::ShapeRef.new(shape: NonEmptyString, location_name: "Message"))
2251
+ AwsEc2ClientVpnEndpointClientConnectOptionsStatusDetails.struct_class = Types::AwsEc2ClientVpnEndpointClientConnectOptionsStatusDetails
2252
+
2253
+ AwsEc2ClientVpnEndpointClientLoginBannerOptionsDetails.add_member(:enabled, Shapes::ShapeRef.new(shape: Boolean, location_name: "Enabled"))
2254
+ AwsEc2ClientVpnEndpointClientLoginBannerOptionsDetails.add_member(:banner_text, Shapes::ShapeRef.new(shape: NonEmptyString, location_name: "BannerText"))
2255
+ AwsEc2ClientVpnEndpointClientLoginBannerOptionsDetails.struct_class = Types::AwsEc2ClientVpnEndpointClientLoginBannerOptionsDetails
2256
+
2257
+ AwsEc2ClientVpnEndpointConnectionLogOptionsDetails.add_member(:enabled, Shapes::ShapeRef.new(shape: Boolean, location_name: "Enabled"))
2258
+ AwsEc2ClientVpnEndpointConnectionLogOptionsDetails.add_member(:cloudwatch_log_group, Shapes::ShapeRef.new(shape: NonEmptyString, location_name: "CloudwatchLogGroup"))
2259
+ AwsEc2ClientVpnEndpointConnectionLogOptionsDetails.add_member(:cloudwatch_log_stream, Shapes::ShapeRef.new(shape: NonEmptyString, location_name: "CloudwatchLogStream"))
2260
+ AwsEc2ClientVpnEndpointConnectionLogOptionsDetails.struct_class = Types::AwsEc2ClientVpnEndpointConnectionLogOptionsDetails
2261
+
2262
+ AwsEc2ClientVpnEndpointDetails.add_member(:client_vpn_endpoint_id, Shapes::ShapeRef.new(shape: NonEmptyString, location_name: "ClientVpnEndpointId"))
2263
+ AwsEc2ClientVpnEndpointDetails.add_member(:description, Shapes::ShapeRef.new(shape: NonEmptyString, location_name: "Description"))
2264
+ AwsEc2ClientVpnEndpointDetails.add_member(:client_cidr_block, Shapes::ShapeRef.new(shape: NonEmptyString, location_name: "ClientCidrBlock"))
2265
+ AwsEc2ClientVpnEndpointDetails.add_member(:dns_server, Shapes::ShapeRef.new(shape: StringList, location_name: "DnsServer"))
2266
+ AwsEc2ClientVpnEndpointDetails.add_member(:split_tunnel, Shapes::ShapeRef.new(shape: Boolean, location_name: "SplitTunnel"))
2267
+ AwsEc2ClientVpnEndpointDetails.add_member(:transport_protocol, Shapes::ShapeRef.new(shape: NonEmptyString, location_name: "TransportProtocol"))
2268
+ AwsEc2ClientVpnEndpointDetails.add_member(:vpn_port, Shapes::ShapeRef.new(shape: Integer, location_name: "VpnPort"))
2269
+ AwsEc2ClientVpnEndpointDetails.add_member(:server_certificate_arn, Shapes::ShapeRef.new(shape: NonEmptyString, location_name: "ServerCertificateArn"))
2270
+ AwsEc2ClientVpnEndpointDetails.add_member(:authentication_options, Shapes::ShapeRef.new(shape: AwsEc2ClientVpnEndpointAuthenticationOptionsList, location_name: "AuthenticationOptions"))
2271
+ AwsEc2ClientVpnEndpointDetails.add_member(:connection_log_options, Shapes::ShapeRef.new(shape: AwsEc2ClientVpnEndpointConnectionLogOptionsDetails, location_name: "ConnectionLogOptions"))
2272
+ AwsEc2ClientVpnEndpointDetails.add_member(:security_group_id_set, Shapes::ShapeRef.new(shape: StringList, location_name: "SecurityGroupIdSet"))
2273
+ AwsEc2ClientVpnEndpointDetails.add_member(:vpc_id, Shapes::ShapeRef.new(shape: NonEmptyString, location_name: "VpcId"))
2274
+ AwsEc2ClientVpnEndpointDetails.add_member(:self_service_portal_url, Shapes::ShapeRef.new(shape: NonEmptyString, location_name: "SelfServicePortalUrl"))
2275
+ AwsEc2ClientVpnEndpointDetails.add_member(:client_connect_options, Shapes::ShapeRef.new(shape: AwsEc2ClientVpnEndpointClientConnectOptionsDetails, location_name: "ClientConnectOptions"))
2276
+ AwsEc2ClientVpnEndpointDetails.add_member(:session_timeout_hours, Shapes::ShapeRef.new(shape: Integer, location_name: "SessionTimeoutHours"))
2277
+ AwsEc2ClientVpnEndpointDetails.add_member(:client_login_banner_options, Shapes::ShapeRef.new(shape: AwsEc2ClientVpnEndpointClientLoginBannerOptionsDetails, location_name: "ClientLoginBannerOptions"))
2278
+ AwsEc2ClientVpnEndpointDetails.struct_class = Types::AwsEc2ClientVpnEndpointDetails
2279
+
2213
2280
  AwsEc2EipDetails.add_member(:instance_id, Shapes::ShapeRef.new(shape: NonEmptyString, location_name: "InstanceId"))
2214
2281
  AwsEc2EipDetails.add_member(:public_ip, Shapes::ShapeRef.new(shape: NonEmptyString, location_name: "PublicIp"))
2215
2282
  AwsEc2EipDetails.add_member(:allocation_id, Shapes::ShapeRef.new(shape: NonEmptyString, location_name: "AllocationId"))
@@ -3745,6 +3812,7 @@ module Aws::SecurityHub
3745
3812
  AwsMskClusterClusterInfoDetails.add_member(:number_of_broker_nodes, Shapes::ShapeRef.new(shape: Integer, location_name: "NumberOfBrokerNodes"))
3746
3813
  AwsMskClusterClusterInfoDetails.add_member(:cluster_name, Shapes::ShapeRef.new(shape: NonEmptyString, location_name: "ClusterName"))
3747
3814
  AwsMskClusterClusterInfoDetails.add_member(:client_authentication, Shapes::ShapeRef.new(shape: AwsMskClusterClusterInfoClientAuthenticationDetails, location_name: "ClientAuthentication"))
3815
+ AwsMskClusterClusterInfoDetails.add_member(:enhanced_monitoring, Shapes::ShapeRef.new(shape: NonEmptyString, location_name: "EnhancedMonitoring"))
3748
3816
  AwsMskClusterClusterInfoDetails.struct_class = Types::AwsMskClusterClusterInfoDetails
3749
3817
 
3750
3818
  AwsMskClusterClusterInfoEncryptionInfoDetails.add_member(:encryption_in_transit, Shapes::ShapeRef.new(shape: AwsMskClusterClusterInfoEncryptionInfoEncryptionInTransitDetails, location_name: "EncryptionInTransit"))
@@ -4343,6 +4411,19 @@ module Aws::SecurityHub
4343
4411
  AwsRoute53QueryLoggingConfigDetails.add_member(:cloud_watch_logs_log_group_arn, Shapes::ShapeRef.new(shape: CloudWatchLogsLogGroupArnConfigDetails, location_name: "CloudWatchLogsLogGroupArn"))
4344
4412
  AwsRoute53QueryLoggingConfigDetails.struct_class = Types::AwsRoute53QueryLoggingConfigDetails
4345
4413
 
4414
+ AwsS3AccessPointDetails.add_member(:access_point_arn, Shapes::ShapeRef.new(shape: NonEmptyString, location_name: "AccessPointArn"))
4415
+ AwsS3AccessPointDetails.add_member(:alias, Shapes::ShapeRef.new(shape: NonEmptyString, location_name: "Alias"))
4416
+ AwsS3AccessPointDetails.add_member(:bucket, Shapes::ShapeRef.new(shape: NonEmptyString, location_name: "Bucket"))
4417
+ AwsS3AccessPointDetails.add_member(:bucket_account_id, Shapes::ShapeRef.new(shape: NonEmptyString, location_name: "BucketAccountId"))
4418
+ AwsS3AccessPointDetails.add_member(:name, Shapes::ShapeRef.new(shape: NonEmptyString, location_name: "Name"))
4419
+ AwsS3AccessPointDetails.add_member(:network_origin, Shapes::ShapeRef.new(shape: NonEmptyString, location_name: "NetworkOrigin"))
4420
+ AwsS3AccessPointDetails.add_member(:public_access_block_configuration, Shapes::ShapeRef.new(shape: AwsS3AccountPublicAccessBlockDetails, location_name: "PublicAccessBlockConfiguration"))
4421
+ AwsS3AccessPointDetails.add_member(:vpc_configuration, Shapes::ShapeRef.new(shape: AwsS3AccessPointVpcConfigurationDetails, location_name: "VpcConfiguration"))
4422
+ AwsS3AccessPointDetails.struct_class = Types::AwsS3AccessPointDetails
4423
+
4424
+ AwsS3AccessPointVpcConfigurationDetails.add_member(:vpc_id, Shapes::ShapeRef.new(shape: NonEmptyString, location_name: "VpcId"))
4425
+ AwsS3AccessPointVpcConfigurationDetails.struct_class = Types::AwsS3AccessPointVpcConfigurationDetails
4426
+
4346
4427
  AwsS3AccountPublicAccessBlockDetails.add_member(:block_public_acls, Shapes::ShapeRef.new(shape: Boolean, location_name: "BlockPublicAcls"))
4347
4428
  AwsS3AccountPublicAccessBlockDetails.add_member(:block_public_policy, Shapes::ShapeRef.new(shape: Boolean, location_name: "BlockPublicPolicy"))
4348
4429
  AwsS3AccountPublicAccessBlockDetails.add_member(:ignore_public_acls, Shapes::ShapeRef.new(shape: Boolean, location_name: "IgnorePublicAcls"))
@@ -4424,6 +4505,7 @@ module Aws::SecurityHub
4424
4505
  AwsS3BucketDetails.add_member(:bucket_notification_configuration, Shapes::ShapeRef.new(shape: AwsS3BucketNotificationConfiguration, location_name: "BucketNotificationConfiguration"))
4425
4506
  AwsS3BucketDetails.add_member(:bucket_versioning_configuration, Shapes::ShapeRef.new(shape: AwsS3BucketBucketVersioningConfiguration, location_name: "BucketVersioningConfiguration"))
4426
4507
  AwsS3BucketDetails.add_member(:object_lock_configuration, Shapes::ShapeRef.new(shape: AwsS3BucketObjectLockConfiguration, location_name: "ObjectLockConfiguration"))
4508
+ AwsS3BucketDetails.add_member(:name, Shapes::ShapeRef.new(shape: NonEmptyString, location_name: "Name"))
4427
4509
  AwsS3BucketDetails.struct_class = Types::AwsS3BucketDetails
4428
4510
 
4429
4511
  AwsS3BucketLoggingConfiguration.add_member(:destination_bucket_name, Shapes::ShapeRef.new(shape: NonEmptyString, location_name: "DestinationBucketName"))
@@ -6199,6 +6281,8 @@ module Aws::SecurityHub
6199
6281
  ResourceDetails.add_member(:aws_dms_replication_instance, Shapes::ShapeRef.new(shape: AwsDmsReplicationInstanceDetails, location_name: "AwsDmsReplicationInstance"))
6200
6282
  ResourceDetails.add_member(:aws_route_53_hosted_zone, Shapes::ShapeRef.new(shape: AwsRoute53HostedZoneDetails, location_name: "AwsRoute53HostedZone"))
6201
6283
  ResourceDetails.add_member(:aws_msk_cluster, Shapes::ShapeRef.new(shape: AwsMskClusterDetails, location_name: "AwsMskCluster"))
6284
+ ResourceDetails.add_member(:aws_s3_access_point, Shapes::ShapeRef.new(shape: AwsS3AccessPointDetails, location_name: "AwsS3AccessPoint"))
6285
+ ResourceDetails.add_member(:aws_ec2_client_vpn_endpoint, Shapes::ShapeRef.new(shape: AwsEc2ClientVpnEndpointDetails, location_name: "AwsEc2ClientVpnEndpoint"))
6202
6286
  ResourceDetails.struct_class = Types::ResourceDetails
6203
6287
 
6204
6288
  ResourceInUseException.add_member(:message, Shapes::ShapeRef.new(shape: NonEmptyString, location_name: "Message"))
@@ -7937,6 +8021,8 @@ module Aws::SecurityHub
7937
8021
  o.errors << Shapes::ShapeRef.new(shape: ResourceNotFoundException)
7938
8022
  o.errors << Shapes::ShapeRef.new(shape: ResourceInUseException)
7939
8023
  o.errors << Shapes::ShapeRef.new(shape: AccessDeniedException)
8024
+ o.errors << Shapes::ShapeRef.new(shape: ResourceNotFoundException)
8025
+ o.errors << Shapes::ShapeRef.new(shape: ResourceInUseException)
7940
8026
  end)
7941
8027
 
7942
8028
  api.add_operation(:update_security_hub_configuration, Seahorse::Model::Operation.new.tap do |o|
@@ -5600,6 +5600,11 @@ module Aws::SecurityHub
5600
5600
  # * `UPDATING`
5601
5601
  # @return [String]
5602
5602
  #
5603
+ # @!attribute [rw] deletion_protection_enabled
5604
+ # Indicates whether deletion protection is to be enabled (true) or
5605
+ # disabled (false) on the table.
5606
+ # @return [Boolean]
5607
+ #
5603
5608
  # @see http://docs.aws.amazon.com/goto/WebAPI/securityhub-2018-10-26/AwsDynamoDbTableDetails AWS API Documentation
5604
5609
  #
5605
5610
  class AwsDynamoDbTableDetails < Struct.new(
@@ -5621,7 +5626,8 @@ module Aws::SecurityHub
5621
5626
  :table_id,
5622
5627
  :table_name,
5623
5628
  :table_size_bytes,
5624
- :table_status)
5629
+ :table_status,
5630
+ :deletion_protection_enabled)
5625
5631
  SENSITIVE = []
5626
5632
  include Aws::Structure
5627
5633
  end
@@ -6006,6 +6012,281 @@ module Aws::SecurityHub
6006
6012
  include Aws::Structure
6007
6013
  end
6008
6014
 
6015
+ # Provides details about an Active Directory that’s used to authenticate
6016
+ # an Client VPN endpoint.
6017
+ #
6018
+ # @!attribute [rw] directory_id
6019
+ # The ID of the Active Directory used for authentication.
6020
+ # @return [String]
6021
+ #
6022
+ # @see http://docs.aws.amazon.com/goto/WebAPI/securityhub-2018-10-26/AwsEc2ClientVpnEndpointAuthenticationOptionsActiveDirectoryDetails AWS API Documentation
6023
+ #
6024
+ class AwsEc2ClientVpnEndpointAuthenticationOptionsActiveDirectoryDetails < Struct.new(
6025
+ :directory_id)
6026
+ SENSITIVE = []
6027
+ include Aws::Structure
6028
+ end
6029
+
6030
+ # Information about the authentication method used by the Client VPN
6031
+ # endpoint.
6032
+ #
6033
+ # @!attribute [rw] type
6034
+ # The authentication type used.
6035
+ # @return [String]
6036
+ #
6037
+ # @!attribute [rw] active_directory
6038
+ # Information about the Active Directory, if applicable. With Active
6039
+ # Directory authentication, clients are authenticated against existing
6040
+ # Active Directory groups.
6041
+ # @return [Types::AwsEc2ClientVpnEndpointAuthenticationOptionsActiveDirectoryDetails]
6042
+ #
6043
+ # @!attribute [rw] mutual_authentication
6044
+ # Information about the authentication certificates, if applicable.
6045
+ # @return [Types::AwsEc2ClientVpnEndpointAuthenticationOptionsMutualAuthenticationDetails]
6046
+ #
6047
+ # @!attribute [rw] federated_authentication
6048
+ # Information about the IAM SAML identity provider, if applicable.
6049
+ # @return [Types::AwsEc2ClientVpnEndpointAuthenticationOptionsFederatedAuthenticationDetails]
6050
+ #
6051
+ # @see http://docs.aws.amazon.com/goto/WebAPI/securityhub-2018-10-26/AwsEc2ClientVpnEndpointAuthenticationOptionsDetails AWS API Documentation
6052
+ #
6053
+ class AwsEc2ClientVpnEndpointAuthenticationOptionsDetails < Struct.new(
6054
+ :type,
6055
+ :active_directory,
6056
+ :mutual_authentication,
6057
+ :federated_authentication)
6058
+ SENSITIVE = []
6059
+ include Aws::Structure
6060
+ end
6061
+
6062
+ # Describes the IAM SAML identity providers used for federated
6063
+ # authentication.
6064
+ #
6065
+ # @!attribute [rw] saml_provider_arn
6066
+ # The Amazon Resource Name (ARN) of the IAM SAML identity provider.
6067
+ # @return [String]
6068
+ #
6069
+ # @!attribute [rw] self_service_saml_provider_arn
6070
+ # The Amazon Resource Name (ARN) of the IAM SAML identity provider for
6071
+ # the self-service portal.
6072
+ # @return [String]
6073
+ #
6074
+ # @see http://docs.aws.amazon.com/goto/WebAPI/securityhub-2018-10-26/AwsEc2ClientVpnEndpointAuthenticationOptionsFederatedAuthenticationDetails AWS API Documentation
6075
+ #
6076
+ class AwsEc2ClientVpnEndpointAuthenticationOptionsFederatedAuthenticationDetails < Struct.new(
6077
+ :saml_provider_arn,
6078
+ :self_service_saml_provider_arn)
6079
+ SENSITIVE = []
6080
+ include Aws::Structure
6081
+ end
6082
+
6083
+ # Information about the client certificate used for authentication.
6084
+ #
6085
+ # @!attribute [rw] client_root_certificate_chain
6086
+ # The Amazon Resource Name (ARN) of the client certificate.
6087
+ # @return [String]
6088
+ #
6089
+ # @see http://docs.aws.amazon.com/goto/WebAPI/securityhub-2018-10-26/AwsEc2ClientVpnEndpointAuthenticationOptionsMutualAuthenticationDetails AWS API Documentation
6090
+ #
6091
+ class AwsEc2ClientVpnEndpointAuthenticationOptionsMutualAuthenticationDetails < Struct.new(
6092
+ :client_root_certificate_chain)
6093
+ SENSITIVE = []
6094
+ include Aws::Structure
6095
+ end
6096
+
6097
+ # The options for managing connection authorization for new client
6098
+ # connections.
6099
+ #
6100
+ # @!attribute [rw] enabled
6101
+ # Indicates whether client connect options are enabled.
6102
+ # @return [Boolean]
6103
+ #
6104
+ # @!attribute [rw] lambda_function_arn
6105
+ # The Amazon Resource Name (ARN) of the Lambda function used for
6106
+ # connection authorization.
6107
+ # @return [String]
6108
+ #
6109
+ # @!attribute [rw] status
6110
+ # The status of any updates to the client connect options.
6111
+ # @return [Types::AwsEc2ClientVpnEndpointClientConnectOptionsStatusDetails]
6112
+ #
6113
+ # @see http://docs.aws.amazon.com/goto/WebAPI/securityhub-2018-10-26/AwsEc2ClientVpnEndpointClientConnectOptionsDetails AWS API Documentation
6114
+ #
6115
+ class AwsEc2ClientVpnEndpointClientConnectOptionsDetails < Struct.new(
6116
+ :enabled,
6117
+ :lambda_function_arn,
6118
+ :status)
6119
+ SENSITIVE = []
6120
+ include Aws::Structure
6121
+ end
6122
+
6123
+ # Describes the status of the Client VPN endpoint attribute.
6124
+ #
6125
+ # @!attribute [rw] code
6126
+ # The status code.
6127
+ # @return [String]
6128
+ #
6129
+ # @!attribute [rw] message
6130
+ # The status message.
6131
+ # @return [String]
6132
+ #
6133
+ # @see http://docs.aws.amazon.com/goto/WebAPI/securityhub-2018-10-26/AwsEc2ClientVpnEndpointClientConnectOptionsStatusDetails AWS API Documentation
6134
+ #
6135
+ class AwsEc2ClientVpnEndpointClientConnectOptionsStatusDetails < Struct.new(
6136
+ :code,
6137
+ :message)
6138
+ SENSITIVE = []
6139
+ include Aws::Structure
6140
+ end
6141
+
6142
+ # Options for enabling a customizable text banner that will be displayed
6143
+ # on Amazon Web Services provided clients when a VPN session is
6144
+ # established.
6145
+ #
6146
+ # @!attribute [rw] enabled
6147
+ # Current state of text banner feature.
6148
+ # @return [Boolean]
6149
+ #
6150
+ # @!attribute [rw] banner_text
6151
+ # Customizable text that will be displayed in a banner on Amazon Web
6152
+ # Services provided clients when a VPN session is established.
6153
+ # @return [String]
6154
+ #
6155
+ # @see http://docs.aws.amazon.com/goto/WebAPI/securityhub-2018-10-26/AwsEc2ClientVpnEndpointClientLoginBannerOptionsDetails AWS API Documentation
6156
+ #
6157
+ class AwsEc2ClientVpnEndpointClientLoginBannerOptionsDetails < Struct.new(
6158
+ :enabled,
6159
+ :banner_text)
6160
+ SENSITIVE = []
6161
+ include Aws::Structure
6162
+ end
6163
+
6164
+ # Information about the client connection logging options for the Client
6165
+ # VPN endpoint.
6166
+ #
6167
+ # @!attribute [rw] enabled
6168
+ # Indicates whether client connection logging is enabled for the
6169
+ # Client VPN endpoint.
6170
+ # @return [Boolean]
6171
+ #
6172
+ # @!attribute [rw] cloudwatch_log_group
6173
+ # The name of the Amazon CloudWatch Logs log group to which connection
6174
+ # logging data is published.
6175
+ # @return [String]
6176
+ #
6177
+ # @!attribute [rw] cloudwatch_log_stream
6178
+ # The name of the Amazon CloudWatch Logs log stream to which
6179
+ # connection logging data is published.
6180
+ # @return [String]
6181
+ #
6182
+ # @see http://docs.aws.amazon.com/goto/WebAPI/securityhub-2018-10-26/AwsEc2ClientVpnEndpointConnectionLogOptionsDetails AWS API Documentation
6183
+ #
6184
+ class AwsEc2ClientVpnEndpointConnectionLogOptionsDetails < Struct.new(
6185
+ :enabled,
6186
+ :cloudwatch_log_group,
6187
+ :cloudwatch_log_stream)
6188
+ SENSITIVE = []
6189
+ include Aws::Structure
6190
+ end
6191
+
6192
+ # Describes an Client VPN endpoint. A Client VPN endpoint is the
6193
+ # resource that you create and configure to enable and manage client VPN
6194
+ # sessions. It's the termination point for all client VPN sessions.
6195
+ #
6196
+ # @!attribute [rw] client_vpn_endpoint_id
6197
+ # The ID of the Client VPN endpoint.
6198
+ # @return [String]
6199
+ #
6200
+ # @!attribute [rw] description
6201
+ # A brief description of the endpoint.
6202
+ # @return [String]
6203
+ #
6204
+ # @!attribute [rw] client_cidr_block
6205
+ # The IPv4 address range, in CIDR notation, from which client IP
6206
+ # addresses are assigned.
6207
+ # @return [String]
6208
+ #
6209
+ # @!attribute [rw] dns_server
6210
+ # Information about the DNS servers to be used for DNS resolution.
6211
+ # @return [Array<String>]
6212
+ #
6213
+ # @!attribute [rw] split_tunnel
6214
+ # Indicates whether split-tunnel is enabled in the Client VPN
6215
+ # endpoint.
6216
+ # @return [Boolean]
6217
+ #
6218
+ # @!attribute [rw] transport_protocol
6219
+ # The transport protocol used by the Client VPN endpoint.
6220
+ # @return [String]
6221
+ #
6222
+ # @!attribute [rw] vpn_port
6223
+ # The port number for the Client VPN endpoint.
6224
+ # @return [Integer]
6225
+ #
6226
+ # @!attribute [rw] server_certificate_arn
6227
+ # The Amazon Resource Name (ARN) of the server certificate.
6228
+ # @return [String]
6229
+ #
6230
+ # @!attribute [rw] authentication_options
6231
+ # Information about the authentication method used by the Client VPN
6232
+ # endpoint.
6233
+ # @return [Array<Types::AwsEc2ClientVpnEndpointAuthenticationOptionsDetails>]
6234
+ #
6235
+ # @!attribute [rw] connection_log_options
6236
+ # Information about the client connection logging options for the
6237
+ # Client VPN endpoint.
6238
+ # @return [Types::AwsEc2ClientVpnEndpointConnectionLogOptionsDetails]
6239
+ #
6240
+ # @!attribute [rw] security_group_id_set
6241
+ # The IDs of the security groups for the target network.
6242
+ # @return [Array<String>]
6243
+ #
6244
+ # @!attribute [rw] vpc_id
6245
+ # The ID of the VPC.
6246
+ # @return [String]
6247
+ #
6248
+ # @!attribute [rw] self_service_portal_url
6249
+ # The URL of the self-service portal.
6250
+ # @return [String]
6251
+ #
6252
+ # @!attribute [rw] client_connect_options
6253
+ # The options for managing connection authorization for new client
6254
+ # connections.
6255
+ # @return [Types::AwsEc2ClientVpnEndpointClientConnectOptionsDetails]
6256
+ #
6257
+ # @!attribute [rw] session_timeout_hours
6258
+ # The maximum VPN session duration time in hours.
6259
+ # @return [Integer]
6260
+ #
6261
+ # @!attribute [rw] client_login_banner_options
6262
+ # Options for enabling a customizable text banner that will be
6263
+ # displayed on Amazon Web Services provided clients when a VPN session
6264
+ # is established.
6265
+ # @return [Types::AwsEc2ClientVpnEndpointClientLoginBannerOptionsDetails]
6266
+ #
6267
+ # @see http://docs.aws.amazon.com/goto/WebAPI/securityhub-2018-10-26/AwsEc2ClientVpnEndpointDetails AWS API Documentation
6268
+ #
6269
+ class AwsEc2ClientVpnEndpointDetails < Struct.new(
6270
+ :client_vpn_endpoint_id,
6271
+ :description,
6272
+ :client_cidr_block,
6273
+ :dns_server,
6274
+ :split_tunnel,
6275
+ :transport_protocol,
6276
+ :vpn_port,
6277
+ :server_certificate_arn,
6278
+ :authentication_options,
6279
+ :connection_log_options,
6280
+ :security_group_id_set,
6281
+ :vpc_id,
6282
+ :self_service_portal_url,
6283
+ :client_connect_options,
6284
+ :session_timeout_hours,
6285
+ :client_login_banner_options)
6286
+ SENSITIVE = []
6287
+ include Aws::Structure
6288
+ end
6289
+
6009
6290
  # Information about an Elastic IP address.
6010
6291
  #
6011
6292
  # @!attribute [rw] instance_id
@@ -14031,7 +14312,8 @@ module Aws::SecurityHub
14031
14312
  include Aws::Structure
14032
14313
  end
14033
14314
 
14034
- # Provide details about an Amazon MSK cluster.
14315
+ # Provide details about an Amazon Managed Streaming for Apache Kafka
14316
+ # (Amazon MSK) cluster.
14035
14317
  #
14036
14318
  # @!attribute [rw] encryption_info
14037
14319
  # Includes encryption-related information, such as the KMS key used
@@ -14040,7 +14322,7 @@ module Aws::SecurityHub
14040
14322
  # @return [Types::AwsMskClusterClusterInfoEncryptionInfoDetails]
14041
14323
  #
14042
14324
  # @!attribute [rw] current_version
14043
- # The current version of the MSK cluster.
14325
+ # The current version of the cluster.
14044
14326
  # @return [String]
14045
14327
  #
14046
14328
  # @!attribute [rw] number_of_broker_nodes
@@ -14055,6 +14337,10 @@ module Aws::SecurityHub
14055
14337
  # Provides information for different modes of client authentication.
14056
14338
  # @return [Types::AwsMskClusterClusterInfoClientAuthenticationDetails]
14057
14339
  #
14340
+ # @!attribute [rw] enhanced_monitoring
14341
+ # Specifies the level of monitoring for the cluster.
14342
+ # @return [String]
14343
+ #
14058
14344
  # @see http://docs.aws.amazon.com/goto/WebAPI/securityhub-2018-10-26/AwsMskClusterClusterInfoDetails AWS API Documentation
14059
14345
  #
14060
14346
  class AwsMskClusterClusterInfoDetails < Struct.new(
@@ -14062,7 +14348,8 @@ module Aws::SecurityHub
14062
14348
  :current_version,
14063
14349
  :number_of_broker_nodes,
14064
14350
  :cluster_name,
14065
- :client_authentication)
14351
+ :client_authentication,
14352
+ :enhanced_monitoring)
14066
14353
  SENSITIVE = []
14067
14354
  include Aws::Structure
14068
14355
  end
@@ -17307,6 +17594,78 @@ module Aws::SecurityHub
17307
17594
  include Aws::Structure
17308
17595
  end
17309
17596
 
17597
+ # Returns configuration information about the specified Amazon S3 access
17598
+ # point. S3 access points are named network endpoints that are attached
17599
+ # to buckets that you can use to perform S3 object operations.
17600
+ #
17601
+ # @!attribute [rw] access_point_arn
17602
+ # The Amazon Resource Name (ARN) of the access point.
17603
+ # @return [String]
17604
+ #
17605
+ # @!attribute [rw] alias
17606
+ # The name or alias of the access point.
17607
+ # @return [String]
17608
+ #
17609
+ # @!attribute [rw] bucket
17610
+ # The name of the S3 bucket associated with the specified access
17611
+ # point.
17612
+ # @return [String]
17613
+ #
17614
+ # @!attribute [rw] bucket_account_id
17615
+ # The Amazon Web Services account ID associated with the S3 bucket
17616
+ # associated with this access point.
17617
+ # @return [String]
17618
+ #
17619
+ # @!attribute [rw] name
17620
+ # The name of the specified access point.
17621
+ # @return [String]
17622
+ #
17623
+ # @!attribute [rw] network_origin
17624
+ # Indicates whether this access point allows access from the public
17625
+ # internet.
17626
+ # @return [String]
17627
+ #
17628
+ # @!attribute [rw] public_access_block_configuration
17629
+ # provides information about the Amazon S3 Public Access Block
17630
+ # configuration for accounts.
17631
+ # @return [Types::AwsS3AccountPublicAccessBlockDetails]
17632
+ #
17633
+ # @!attribute [rw] vpc_configuration
17634
+ # Contains the virtual private cloud (VPC) configuration for the
17635
+ # specified access point.
17636
+ # @return [Types::AwsS3AccessPointVpcConfigurationDetails]
17637
+ #
17638
+ # @see http://docs.aws.amazon.com/goto/WebAPI/securityhub-2018-10-26/AwsS3AccessPointDetails AWS API Documentation
17639
+ #
17640
+ class AwsS3AccessPointDetails < Struct.new(
17641
+ :access_point_arn,
17642
+ :alias,
17643
+ :bucket,
17644
+ :bucket_account_id,
17645
+ :name,
17646
+ :network_origin,
17647
+ :public_access_block_configuration,
17648
+ :vpc_configuration)
17649
+ SENSITIVE = []
17650
+ include Aws::Structure
17651
+ end
17652
+
17653
+ # The virtual private cloud (VPC) configuration for an Amazon S3 access
17654
+ # point.
17655
+ #
17656
+ # @!attribute [rw] vpc_id
17657
+ # If this field is specified, this access point will only allow
17658
+ # connections from the specified VPC ID.
17659
+ # @return [String]
17660
+ #
17661
+ # @see http://docs.aws.amazon.com/goto/WebAPI/securityhub-2018-10-26/AwsS3AccessPointVpcConfigurationDetails AWS API Documentation
17662
+ #
17663
+ class AwsS3AccessPointVpcConfigurationDetails < Struct.new(
17664
+ :vpc_id)
17665
+ SENSITIVE = []
17666
+ include Aws::Structure
17667
+ end
17668
+
17310
17669
  # provides information about the Amazon S3 Public Access Block
17311
17670
  # configuration for accounts.
17312
17671
  #
@@ -17657,7 +18016,7 @@ module Aws::SecurityHub
17657
18016
  include Aws::Structure
17658
18017
  end
17659
18018
 
17660
- # The details of an Amazon S3 bucket.
18019
+ # The details of an Amazon Simple Storage Service (Amazon S3) bucket.
17661
18020
  #
17662
18021
  # @!attribute [rw] owner_id
17663
18022
  # The canonical user ID of the owner of the S3 bucket.
@@ -17690,7 +18049,7 @@ module Aws::SecurityHub
17690
18049
  # @return [Types::AwsS3BucketServerSideEncryptionConfiguration]
17691
18050
  #
17692
18051
  # @!attribute [rw] bucket_lifecycle_configuration
17693
- # The lifecycle configuration for objects in the S3 bucket.
18052
+ # The lifecycle configuration for objects in the specified bucket.
17694
18053
  # @return [Types::AwsS3BucketBucketLifecycleConfigurationDetails]
17695
18054
  #
17696
18055
  # @!attribute [rw] public_access_block_configuration
@@ -17720,9 +18079,13 @@ module Aws::SecurityHub
17720
18079
  #
17721
18080
  # @!attribute [rw] object_lock_configuration
17722
18081
  # Specifies which rule Amazon S3 applies by default to every new
17723
- # object placed in the specified bucket.
18082
+ # object placed in the bucket.
17724
18083
  # @return [Types::AwsS3BucketObjectLockConfiguration]
17725
18084
  #
18085
+ # @!attribute [rw] name
18086
+ # The name of the bucket.
18087
+ # @return [String]
18088
+ #
17726
18089
  # @see http://docs.aws.amazon.com/goto/WebAPI/securityhub-2018-10-26/AwsS3BucketDetails AWS API Documentation
17727
18090
  #
17728
18091
  class AwsS3BucketDetails < Struct.new(
@@ -17738,7 +18101,8 @@ module Aws::SecurityHub
17738
18101
  :bucket_website_configuration,
17739
18102
  :bucket_notification_configuration,
17740
18103
  :bucket_versioning_configuration,
17741
- :object_lock_configuration)
18104
+ :object_lock_configuration,
18105
+ :name)
17742
18106
  SENSITIVE = []
17743
18107
  include Aws::Structure
17744
18108
  end
@@ -22025,7 +22389,8 @@ module Aws::SecurityHub
22025
22389
  # @return [String]
22026
22390
  #
22027
22391
  # @!attribute [rw] name
22028
- # The name of the configuration policy.
22392
+ # The name of the configuration policy. Alphanumeric characters and
22393
+ # the following ASCII characters are permitted: `-, ., !, *, /`.
22029
22394
  # @return [String]
22030
22395
  #
22031
22396
  # @!attribute [rw] description
@@ -22246,7 +22611,8 @@ module Aws::SecurityHub
22246
22611
  end
22247
22612
 
22248
22613
  # @!attribute [rw] name
22249
- # The name of the configuration policy.
22614
+ # The name of the configuration policy. Alphanumeric characters and
22615
+ # the following ASCII characters are permitted: `-, ., !, *, /`.
22250
22616
  # @return [String]
22251
22617
  #
22252
22618
  # @!attribute [rw] description
@@ -25861,7 +26227,16 @@ module Aws::SecurityHub
25861
26227
  #
25862
26228
  # @!attribute [rw] value_type
25863
26229
  # Identifies whether a control parameter uses a custom user-defined
25864
- # value or the Security Hub default value.
26230
+ # value or subscribes to the default Security Hub behavior.
26231
+ #
26232
+ # When `ValueType` is set equal to `DEFAULT`, the default behavior can
26233
+ # be a specific Security Hub default value, or the default behavior
26234
+ # can be to ignore a specific parameter. When `ValueType` is set equal
26235
+ # to `DEFAULT`, Security Hub ignores user-provided input for the
26236
+ # `Value` field.
26237
+ #
26238
+ # When `ValueType` is set equal to `CUSTOM`, the `Value` field can't
26239
+ # be empty.
25865
26240
  # @return [String]
25866
26241
  #
25867
26242
  # @!attribute [rw] value
@@ -26972,6 +27347,20 @@ module Aws::SecurityHub
26972
27347
  # (Amazon MSK) cluster.
26973
27348
  # @return [Types::AwsMskClusterDetails]
26974
27349
  #
27350
+ # @!attribute [rw] aws_s3_access_point
27351
+ # Provides details about an Amazon Simple Storage Service (Amazon S3)
27352
+ # access point. S3 access points are named network endpoints that are
27353
+ # attached to S3 buckets that you can use to perform S3 object
27354
+ # operations.
27355
+ # @return [Types::AwsS3AccessPointDetails]
27356
+ #
27357
+ # @!attribute [rw] aws_ec2_client_vpn_endpoint
27358
+ # Provides details about an Client VPN endpoint. A Client VPN endpoint
27359
+ # is the resource that you create and configure to enable and manage
27360
+ # client VPN sessions. It's the termination point for all client VPN
27361
+ # sessions.
27362
+ # @return [Types::AwsEc2ClientVpnEndpointDetails]
27363
+ #
26975
27364
  # @see http://docs.aws.amazon.com/goto/WebAPI/securityhub-2018-10-26/ResourceDetails AWS API Documentation
26976
27365
  #
26977
27366
  class ResourceDetails < Struct.new(
@@ -27071,7 +27460,9 @@ module Aws::SecurityHub
27071
27460
  :aws_dms_replication_task,
27072
27461
  :aws_dms_replication_instance,
27073
27462
  :aws_route_53_hosted_zone,
27074
- :aws_msk_cluster)
27463
+ :aws_msk_cluster,
27464
+ :aws_s3_access_point,
27465
+ :aws_ec2_client_vpn_endpoint)
27075
27466
  SENSITIVE = []
27076
27467
  include Aws::Structure
27077
27468
  end
@@ -29373,7 +29764,8 @@ module Aws::SecurityHub
29373
29764
  # @return [String]
29374
29765
  #
29375
29766
  # @!attribute [rw] name
29376
- # The name of the configuration policy.
29767
+ # The name of the configuration policy. Alphanumeric characters and
29768
+ # the following ASCII characters are permitted: `-, ., !, *, /`.
29377
29769
  # @return [String]
29378
29770
  #
29379
29771
  # @!attribute [rw] description
@@ -52,6 +52,6 @@ require_relative 'aws-sdk-securityhub/customizations'
52
52
  # @!group service
53
53
  module Aws::SecurityHub
54
54
 
55
- GEM_VERSION = '1.98.0'
55
+ GEM_VERSION = '1.99.0'
56
56
 
57
57
  end
metadata CHANGED
@@ -1,14 +1,14 @@
1
1
  --- !ruby/object:Gem::Specification
2
2
  name: aws-sdk-securityhub
3
3
  version: !ruby/object:Gem::Version
4
- version: 1.98.0
4
+ version: 1.99.0
5
5
  platform: ruby
6
6
  authors:
7
7
  - Amazon Web Services
8
8
  autorequire:
9
9
  bindir: bin
10
10
  cert_chain: []
11
- date: 2023-11-28 00:00:00.000000000 Z
11
+ date: 2023-12-11 00:00:00.000000000 Z
12
12
  dependencies:
13
13
  - !ruby/object:Gem::Dependency
14
14
  name: aws-sdk-core