aws-sdk-securityhub 1.63.0 → 1.64.0
Sign up to get free protection for your applications and to get access to all the features.
- checksums.yaml +4 -4
- data/CHANGELOG.md +5 -0
- data/VERSION +1 -1
- data/lib/aws-sdk-securityhub/client.rb +24 -4
- data/lib/aws-sdk-securityhub/client_api.rb +3 -0
- data/lib/aws-sdk-securityhub/types.rb +47 -32
- data/lib/aws-sdk-securityhub.rb +1 -1
- metadata +2 -2
checksums.yaml
CHANGED
|
@@ -1,7 +1,7 @@
|
|
|
1
1
|
---
|
|
2
2
|
SHA256:
|
|
3
|
-
metadata.gz:
|
|
4
|
-
data.tar.gz:
|
|
3
|
+
metadata.gz: a1e44d15048a877e690e3471897d355ee64a8cbcabe58c8cdc94e5202a932210
|
|
4
|
+
data.tar.gz: b44878943ae11653b9aed5403f35732bd6a79e71d3f4b4c8e77c81bef8359f0b
|
|
5
5
|
SHA512:
|
|
6
|
-
metadata.gz:
|
|
7
|
-
data.tar.gz:
|
|
6
|
+
metadata.gz: dcda037db40f3fc0702b8ddd2668427e7fa05e25efb61860685c9e082b1d6a4ca263000fd65b6ee1808a3820ddc7f2dd1922f4574c4b4df8b8ab6360e4ec9e4f
|
|
7
|
+
data.tar.gz: b62d92a760a10adee50aa82a3bbd52c35f0c745366973b13655dce2d6f18cb35a36afccb5862a95e64bbace487b60c3dc735984cf7f2c884f0d8e9297cb09590
|
data/CHANGELOG.md
CHANGED
|
@@ -1,6 +1,11 @@
|
|
|
1
1
|
Unreleased Changes
|
|
2
2
|
------------------
|
|
3
3
|
|
|
4
|
+
1.64.0 (2022-04-25)
|
|
5
|
+
------------------
|
|
6
|
+
|
|
7
|
+
* Feature - Security Hub now lets you opt-out of auto-enabling the defaults standards (CIS and FSBP) in accounts that are auto-enabled with Security Hub via Security Hub's integration with AWS Organizations.
|
|
8
|
+
|
|
4
9
|
1.63.0 (2022-04-05)
|
|
5
10
|
------------------
|
|
6
11
|
|
data/VERSION
CHANGED
|
@@ -1 +1 @@
|
|
|
1
|
-
1.
|
|
1
|
+
1.64.0
|
|
@@ -3736,9 +3736,11 @@ module Aws::SecurityHub
|
|
|
3736
3736
|
# aggregation Region.
|
|
3737
3737
|
#
|
|
3738
3738
|
# For more details about cross-Region replication, see [Configuring
|
|
3739
|
-
# finding
|
|
3740
|
-
#
|
|
3741
|
-
#
|
|
3739
|
+
# finding aggregation][1] in the *Security Hub User Guide*.
|
|
3740
|
+
#
|
|
3741
|
+
#
|
|
3742
|
+
#
|
|
3743
|
+
# [1]: https://docs.aws.amazon.com/securityhub/latest/userguide/finding-aggregation.html
|
|
3742
3744
|
#
|
|
3743
3745
|
# @option params [required, String] :region_linking_mode
|
|
3744
3746
|
# Indicates whether to aggregate findings from all of the available
|
|
@@ -4838,11 +4840,13 @@ module Aws::SecurityHub
|
|
|
4838
4840
|
#
|
|
4839
4841
|
# * {Types::DescribeOrganizationConfigurationResponse#auto_enable #auto_enable} => Boolean
|
|
4840
4842
|
# * {Types::DescribeOrganizationConfigurationResponse#member_account_limit_reached #member_account_limit_reached} => Boolean
|
|
4843
|
+
# * {Types::DescribeOrganizationConfigurationResponse#auto_enable_standards #auto_enable_standards} => String
|
|
4841
4844
|
#
|
|
4842
4845
|
# @example Response structure
|
|
4843
4846
|
#
|
|
4844
4847
|
# resp.auto_enable #=> Boolean
|
|
4845
4848
|
# resp.member_account_limit_reached #=> Boolean
|
|
4849
|
+
# resp.auto_enable_standards #=> String, one of "NONE", "DEFAULT"
|
|
4846
4850
|
#
|
|
4847
4851
|
# @see http://docs.aws.amazon.com/goto/WebAPI/securityhub-2018-10-26/DescribeOrganizationConfiguration AWS API Documentation
|
|
4848
4852
|
#
|
|
@@ -10311,12 +10315,28 @@ module Aws::SecurityHub
|
|
|
10311
10315
|
# To automatically enable Security Hub for new accounts, set this to
|
|
10312
10316
|
# `true`.
|
|
10313
10317
|
#
|
|
10318
|
+
# @option params [String] :auto_enable_standards
|
|
10319
|
+
# Whether to automatically enable Security Hub [default standards][1]
|
|
10320
|
+
# for new member accounts in the organization.
|
|
10321
|
+
#
|
|
10322
|
+
# By default, this parameter is equal to `DEFAULT`, and new member
|
|
10323
|
+
# accounts are automatically enabled with default Security Hub
|
|
10324
|
+
# standards.
|
|
10325
|
+
#
|
|
10326
|
+
# To opt out of enabling default standards for new member accounts, set
|
|
10327
|
+
# this parameter equal to `NONE`.
|
|
10328
|
+
#
|
|
10329
|
+
#
|
|
10330
|
+
#
|
|
10331
|
+
# [1]: https://docs.aws.amazon.com/securityhub/latest/userguide/securityhub-standards-enable-disable.html
|
|
10332
|
+
#
|
|
10314
10333
|
# @return [Struct] Returns an empty {Seahorse::Client::Response response}.
|
|
10315
10334
|
#
|
|
10316
10335
|
# @example Request syntax with placeholder values
|
|
10317
10336
|
#
|
|
10318
10337
|
# resp = client.update_organization_configuration({
|
|
10319
10338
|
# auto_enable: false, # required
|
|
10339
|
+
# auto_enable_standards: "NONE", # accepts NONE, DEFAULT
|
|
10320
10340
|
# })
|
|
10321
10341
|
#
|
|
10322
10342
|
# @see http://docs.aws.amazon.com/goto/WebAPI/securityhub-2018-10-26/UpdateOrganizationConfiguration AWS API Documentation
|
|
@@ -10400,7 +10420,7 @@ module Aws::SecurityHub
|
|
|
10400
10420
|
params: params,
|
|
10401
10421
|
config: config)
|
|
10402
10422
|
context[:gem_name] = 'aws-sdk-securityhub'
|
|
10403
|
-
context[:gem_version] = '1.
|
|
10423
|
+
context[:gem_version] = '1.64.0'
|
|
10404
10424
|
Seahorse::Client::Request.new(handlers, context)
|
|
10405
10425
|
end
|
|
10406
10426
|
|
|
@@ -36,6 +36,7 @@ module Aws::SecurityHub
|
|
|
36
36
|
AdminStatus = Shapes::StringShape.new(name: 'AdminStatus')
|
|
37
37
|
AdminsMaxResults = Shapes::IntegerShape.new(name: 'AdminsMaxResults')
|
|
38
38
|
ArnList = Shapes::ListShape.new(name: 'ArnList')
|
|
39
|
+
AutoEnableStandards = Shapes::StringShape.new(name: 'AutoEnableStandards')
|
|
39
40
|
AvailabilityZone = Shapes::StructureShape.new(name: 'AvailabilityZone')
|
|
40
41
|
AvailabilityZones = Shapes::ListShape.new(name: 'AvailabilityZones')
|
|
41
42
|
AwsApiCallAction = Shapes::StructureShape.new(name: 'AwsApiCallAction')
|
|
@@ -3614,6 +3615,7 @@ module Aws::SecurityHub
|
|
|
3614
3615
|
|
|
3615
3616
|
DescribeOrganizationConfigurationResponse.add_member(:auto_enable, Shapes::ShapeRef.new(shape: Boolean, location_name: "AutoEnable"))
|
|
3616
3617
|
DescribeOrganizationConfigurationResponse.add_member(:member_account_limit_reached, Shapes::ShapeRef.new(shape: Boolean, location_name: "MemberAccountLimitReached"))
|
|
3618
|
+
DescribeOrganizationConfigurationResponse.add_member(:auto_enable_standards, Shapes::ShapeRef.new(shape: AutoEnableStandards, location_name: "AutoEnableStandards"))
|
|
3617
3619
|
DescribeOrganizationConfigurationResponse.struct_class = Types::DescribeOrganizationConfigurationResponse
|
|
3618
3620
|
|
|
3619
3621
|
DescribeProductsRequest.add_member(:next_token, Shapes::ShapeRef.new(shape: NextToken, location: "querystring", location_name: "NextToken"))
|
|
@@ -4497,6 +4499,7 @@ module Aws::SecurityHub
|
|
|
4497
4499
|
UpdateInsightResponse.struct_class = Types::UpdateInsightResponse
|
|
4498
4500
|
|
|
4499
4501
|
UpdateOrganizationConfigurationRequest.add_member(:auto_enable, Shapes::ShapeRef.new(shape: Boolean, required: true, location_name: "AutoEnable"))
|
|
4502
|
+
UpdateOrganizationConfigurationRequest.add_member(:auto_enable_standards, Shapes::ShapeRef.new(shape: AutoEnableStandards, location_name: "AutoEnableStandards"))
|
|
4500
4503
|
UpdateOrganizationConfigurationRequest.struct_class = Types::UpdateOrganizationConfigurationRequest
|
|
4501
4504
|
|
|
4502
4505
|
UpdateOrganizationConfigurationResponse.struct_class = Types::UpdateOrganizationConfigurationResponse
|
|
@@ -20757,36 +20757,24 @@ module Aws::SecurityHub
|
|
|
20757
20757
|
# The name of the product that generated the finding.
|
|
20758
20758
|
#
|
|
20759
20759
|
# Security Hub populates this attribute automatically for each
|
|
20760
|
-
# finding. You cannot update
|
|
20761
|
-
# `BatchUpdateFindings`. The exception to this is
|
|
20762
|
-
#
|
|
20763
|
-
#
|
|
20764
|
-
# When you use the Security Hub console to filter findings by product
|
|
20765
|
-
# name, you use this attribute.
|
|
20766
|
-
#
|
|
20767
|
-
# When you use the Security Hub API to filter findings by product
|
|
20768
|
-
# name, you use the `aws/securityhub/ProductName` attribute under
|
|
20769
|
-
# `ProductFields`.
|
|
20760
|
+
# finding. You cannot update this attribute with `BatchImportFindings`
|
|
20761
|
+
# or `BatchUpdateFindings`. The exception to this is a custom
|
|
20762
|
+
# integration.
|
|
20770
20763
|
#
|
|
20771
|
-
# Security Hub
|
|
20764
|
+
# When you use the Security Hub console or API to filter findings by
|
|
20765
|
+
# product name, you use this attribute.
|
|
20772
20766
|
# @return [String]
|
|
20773
20767
|
#
|
|
20774
20768
|
# @!attribute [rw] company_name
|
|
20775
20769
|
# The name of the company for the product that generated the finding.
|
|
20776
20770
|
#
|
|
20777
20771
|
# Security Hub populates this attribute automatically for each
|
|
20778
|
-
# finding. You cannot
|
|
20779
|
-
# `BatchUpdateFindings`. The exception to this is
|
|
20780
|
-
#
|
|
20781
|
-
#
|
|
20782
|
-
# When you use the Security Hub console to filter findings by company
|
|
20783
|
-
# name, you use this attribute.
|
|
20784
|
-
#
|
|
20785
|
-
# When you use the Security Hub API to filter findings by company
|
|
20786
|
-
# name, you use the `aws/securityhub/CompanyName` attribute under
|
|
20787
|
-
# `ProductFields`.
|
|
20772
|
+
# finding. You cannot update this attribute with `BatchImportFindings`
|
|
20773
|
+
# or `BatchUpdateFindings`. The exception to this is a custom
|
|
20774
|
+
# integration.
|
|
20788
20775
|
#
|
|
20789
|
-
# Security Hub
|
|
20776
|
+
# When you use the Security Hub console or API to filter findings by
|
|
20777
|
+
# company name, you use this attribute.
|
|
20790
20778
|
# @return [String]
|
|
20791
20779
|
#
|
|
20792
20780
|
# @!attribute [rw] region
|
|
@@ -21805,19 +21793,11 @@ module Aws::SecurityHub
|
|
|
21805
21793
|
#
|
|
21806
21794
|
# @!attribute [rw] product_name
|
|
21807
21795
|
# The name of the solution (product) that generates findings.
|
|
21808
|
-
#
|
|
21809
|
-
# Note that this is a filter against the `aws/securityhub/ProductName`
|
|
21810
|
-
# field in `ProductFields`. It is not a filter for the top-level
|
|
21811
|
-
# `ProductName` field.
|
|
21812
21796
|
# @return [Array<Types::StringFilter>]
|
|
21813
21797
|
#
|
|
21814
21798
|
# @!attribute [rw] company_name
|
|
21815
21799
|
# The name of the findings provider (company) that owns the solution
|
|
21816
21800
|
# (product) that generates findings.
|
|
21817
|
-
#
|
|
21818
|
-
# Note that this is a filter against the `aws/securityhub/CompanyName`
|
|
21819
|
-
# field in `ProductFields`. It is not a filter for the top-level
|
|
21820
|
-
# `CompanyName` field.
|
|
21821
21801
|
# @return [Array<Types::StringFilter>]
|
|
21822
21802
|
#
|
|
21823
21803
|
# @!attribute [rw] user_defined_fields
|
|
@@ -28296,11 +28276,28 @@ module Aws::SecurityHub
|
|
|
28296
28276
|
# associated with the Security Hub administrator account.
|
|
28297
28277
|
# @return [Boolean]
|
|
28298
28278
|
#
|
|
28279
|
+
# @!attribute [rw] auto_enable_standards
|
|
28280
|
+
# Whether to automatically enable Security Hub [default standards][1]
|
|
28281
|
+
# for new member accounts in the organization.
|
|
28282
|
+
#
|
|
28283
|
+
# The default value of this parameter is equal to `DEFAULT`.
|
|
28284
|
+
#
|
|
28285
|
+
# If equal to `DEFAULT`, then Security Hub default standards are
|
|
28286
|
+
# automatically enabled for new member accounts. If equal to `NONE`,
|
|
28287
|
+
# then default standards are not automatically enabled for new member
|
|
28288
|
+
# accounts.
|
|
28289
|
+
#
|
|
28290
|
+
#
|
|
28291
|
+
#
|
|
28292
|
+
# [1]: https://docs.aws.amazon.com/securityhub/latest/userguide/securityhub-standards-enable-disable.html
|
|
28293
|
+
# @return [String]
|
|
28294
|
+
#
|
|
28299
28295
|
# @see http://docs.aws.amazon.com/goto/WebAPI/securityhub-2018-10-26/DescribeOrganizationConfigurationResponse AWS API Documentation
|
|
28300
28296
|
#
|
|
28301
28297
|
class DescribeOrganizationConfigurationResponse < Struct.new(
|
|
28302
28298
|
:auto_enable,
|
|
28303
|
-
:member_account_limit_reached
|
|
28299
|
+
:member_account_limit_reached,
|
|
28300
|
+
:auto_enable_standards)
|
|
28304
28301
|
SENSITIVE = []
|
|
28305
28302
|
include Aws::Structure
|
|
28306
28303
|
end
|
|
@@ -40801,6 +40798,7 @@ module Aws::SecurityHub
|
|
|
40801
40798
|
#
|
|
40802
40799
|
# {
|
|
40803
40800
|
# auto_enable: false, # required
|
|
40801
|
+
# auto_enable_standards: "NONE", # accepts NONE, DEFAULT
|
|
40804
40802
|
# }
|
|
40805
40803
|
#
|
|
40806
40804
|
# @!attribute [rw] auto_enable
|
|
@@ -40814,10 +40812,27 @@ module Aws::SecurityHub
|
|
|
40814
40812
|
# `true`.
|
|
40815
40813
|
# @return [Boolean]
|
|
40816
40814
|
#
|
|
40815
|
+
# @!attribute [rw] auto_enable_standards
|
|
40816
|
+
# Whether to automatically enable Security Hub [default standards][1]
|
|
40817
|
+
# for new member accounts in the organization.
|
|
40818
|
+
#
|
|
40819
|
+
# By default, this parameter is equal to `DEFAULT`, and new member
|
|
40820
|
+
# accounts are automatically enabled with default Security Hub
|
|
40821
|
+
# standards.
|
|
40822
|
+
#
|
|
40823
|
+
# To opt out of enabling default standards for new member accounts,
|
|
40824
|
+
# set this parameter equal to `NONE`.
|
|
40825
|
+
#
|
|
40826
|
+
#
|
|
40827
|
+
#
|
|
40828
|
+
# [1]: https://docs.aws.amazon.com/securityhub/latest/userguide/securityhub-standards-enable-disable.html
|
|
40829
|
+
# @return [String]
|
|
40830
|
+
#
|
|
40817
40831
|
# @see http://docs.aws.amazon.com/goto/WebAPI/securityhub-2018-10-26/UpdateOrganizationConfigurationRequest AWS API Documentation
|
|
40818
40832
|
#
|
|
40819
40833
|
class UpdateOrganizationConfigurationRequest < Struct.new(
|
|
40820
|
-
:auto_enable
|
|
40834
|
+
:auto_enable,
|
|
40835
|
+
:auto_enable_standards)
|
|
40821
40836
|
SENSITIVE = []
|
|
40822
40837
|
include Aws::Structure
|
|
40823
40838
|
end
|
data/lib/aws-sdk-securityhub.rb
CHANGED
metadata
CHANGED
|
@@ -1,14 +1,14 @@
|
|
|
1
1
|
--- !ruby/object:Gem::Specification
|
|
2
2
|
name: aws-sdk-securityhub
|
|
3
3
|
version: !ruby/object:Gem::Version
|
|
4
|
-
version: 1.
|
|
4
|
+
version: 1.64.0
|
|
5
5
|
platform: ruby
|
|
6
6
|
authors:
|
|
7
7
|
- Amazon Web Services
|
|
8
8
|
autorequire:
|
|
9
9
|
bindir: bin
|
|
10
10
|
cert_chain: []
|
|
11
|
-
date: 2022-04-
|
|
11
|
+
date: 2022-04-25 00:00:00.000000000 Z
|
|
12
12
|
dependencies:
|
|
13
13
|
- !ruby/object:Gem::Dependency
|
|
14
14
|
name: aws-sdk-core
|