aws-sdk-securityhub 1.75.0 → 1.76.0
This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.
- checksums.yaml +4 -4
- data/CHANGELOG.md +5 -0
- data/VERSION +1 -1
- data/lib/aws-sdk-securityhub/client.rb +55 -1
- data/lib/aws-sdk-securityhub/client_api.rb +11 -0
- data/lib/aws-sdk-securityhub/types.rb +68 -14
- data/lib/aws-sdk-securityhub.rb +1 -1
- metadata +2 -2
checksums.yaml
CHANGED
|
@@ -1,7 +1,7 @@
|
|
|
1
1
|
---
|
|
2
2
|
SHA256:
|
|
3
|
-
metadata.gz:
|
|
4
|
-
data.tar.gz:
|
|
3
|
+
metadata.gz: 4551566a066756c3813881b2ed679d93205cb6b959a93ce2ad318acdf74ba6c2
|
|
4
|
+
data.tar.gz: d2c25b9091800722ed0b1e030b51b8c7d9889a6c68982f3a26f2867eb511209a
|
|
5
5
|
SHA512:
|
|
6
|
-
metadata.gz:
|
|
7
|
-
data.tar.gz:
|
|
6
|
+
metadata.gz: 9c307e08e1229c092c1b88abc7bb11df62e99d88fcb09a2e2010f3beeebc811f407a986d1648f059253fc505705f71e8e667c18ce3ebb34255a1b584951f548e
|
|
7
|
+
data.tar.gz: a1f468b67e4c962edddadd00229428f6b06056bf7b82276e216ed9f3f834d8e78bf23c3ee69988fa1efc68eff06973593af0d064877db59a6fe5ee563b50b9ea
|
data/CHANGELOG.md
CHANGED
|
@@ -1,6 +1,11 @@
|
|
|
1
1
|
Unreleased Changes
|
|
2
2
|
------------------
|
|
3
3
|
|
|
4
|
+
1.76.0 (2023-01-31)
|
|
5
|
+
------------------
|
|
6
|
+
|
|
7
|
+
* Feature - New fields have been added to the AWS Security Finding Format. Compliance.SecurityControlId is a unique identifier for a security control across standards. Compliance.AssociatedStandards contains all enabled standards in which a security control is enabled.
|
|
8
|
+
|
|
4
9
|
1.75.0 (2023-01-18)
|
|
5
10
|
------------------
|
|
6
11
|
|
data/VERSION
CHANGED
|
@@ -1 +1 @@
|
|
|
1
|
-
1.
|
|
1
|
+
1.76.0
|
|
@@ -1566,6 +1566,18 @@ module Aws::SecurityHub
|
|
|
1566
1566
|
# value: false,
|
|
1567
1567
|
# },
|
|
1568
1568
|
# ],
|
|
1569
|
+
# compliance_security_control_id: [
|
|
1570
|
+
# {
|
|
1571
|
+
# value: "NonEmptyString",
|
|
1572
|
+
# comparison: "EQUALS", # accepts EQUALS, PREFIX, NOT_EQUALS, PREFIX_NOT_EQUALS
|
|
1573
|
+
# },
|
|
1574
|
+
# ],
|
|
1575
|
+
# compliance_associated_standards_id: [
|
|
1576
|
+
# {
|
|
1577
|
+
# value: "NonEmptyString",
|
|
1578
|
+
# comparison: "EQUALS", # accepts EQUALS, PREFIX, NOT_EQUALS, PREFIX_NOT_EQUALS
|
|
1579
|
+
# },
|
|
1580
|
+
# ],
|
|
1569
1581
|
# },
|
|
1570
1582
|
# group_by_attribute: "NonEmptyString", # required
|
|
1571
1583
|
# })
|
|
@@ -3186,6 +3198,18 @@ module Aws::SecurityHub
|
|
|
3186
3198
|
# value: false,
|
|
3187
3199
|
# },
|
|
3188
3200
|
# ],
|
|
3201
|
+
# compliance_security_control_id: [
|
|
3202
|
+
# {
|
|
3203
|
+
# value: "NonEmptyString",
|
|
3204
|
+
# comparison: "EQUALS", # accepts EQUALS, PREFIX, NOT_EQUALS, PREFIX_NOT_EQUALS
|
|
3205
|
+
# },
|
|
3206
|
+
# ],
|
|
3207
|
+
# compliance_associated_standards_id: [
|
|
3208
|
+
# {
|
|
3209
|
+
# value: "NonEmptyString",
|
|
3210
|
+
# comparison: "EQUALS", # accepts EQUALS, PREFIX, NOT_EQUALS, PREFIX_NOT_EQUALS
|
|
3211
|
+
# },
|
|
3212
|
+
# ],
|
|
3189
3213
|
# },
|
|
3190
3214
|
# sort_criteria: [
|
|
3191
3215
|
# {
|
|
@@ -3590,6 +3614,12 @@ module Aws::SecurityHub
|
|
|
3590
3614
|
# resp.insights[0].filters.finding_provider_fields_types[0].comparison #=> String, one of "EQUALS", "PREFIX", "NOT_EQUALS", "PREFIX_NOT_EQUALS"
|
|
3591
3615
|
# resp.insights[0].filters.sample #=> Array
|
|
3592
3616
|
# resp.insights[0].filters.sample[0].value #=> Boolean
|
|
3617
|
+
# resp.insights[0].filters.compliance_security_control_id #=> Array
|
|
3618
|
+
# resp.insights[0].filters.compliance_security_control_id[0].value #=> String
|
|
3619
|
+
# resp.insights[0].filters.compliance_security_control_id[0].comparison #=> String, one of "EQUALS", "PREFIX", "NOT_EQUALS", "PREFIX_NOT_EQUALS"
|
|
3620
|
+
# resp.insights[0].filters.compliance_associated_standards_id #=> Array
|
|
3621
|
+
# resp.insights[0].filters.compliance_associated_standards_id[0].value #=> String
|
|
3622
|
+
# resp.insights[0].filters.compliance_associated_standards_id[0].comparison #=> String, one of "EQUALS", "PREFIX", "NOT_EQUALS", "PREFIX_NOT_EQUALS"
|
|
3593
3623
|
# resp.insights[0].group_by_attribute #=> String
|
|
3594
3624
|
# resp.next_token #=> String
|
|
3595
3625
|
#
|
|
@@ -4832,6 +4862,18 @@ module Aws::SecurityHub
|
|
|
4832
4862
|
# value: false,
|
|
4833
4863
|
# },
|
|
4834
4864
|
# ],
|
|
4865
|
+
# compliance_security_control_id: [
|
|
4866
|
+
# {
|
|
4867
|
+
# value: "NonEmptyString",
|
|
4868
|
+
# comparison: "EQUALS", # accepts EQUALS, PREFIX, NOT_EQUALS, PREFIX_NOT_EQUALS
|
|
4869
|
+
# },
|
|
4870
|
+
# ],
|
|
4871
|
+
# compliance_associated_standards_id: [
|
|
4872
|
+
# {
|
|
4873
|
+
# value: "NonEmptyString",
|
|
4874
|
+
# comparison: "EQUALS", # accepts EQUALS, PREFIX, NOT_EQUALS, PREFIX_NOT_EQUALS
|
|
4875
|
+
# },
|
|
4876
|
+
# ],
|
|
4835
4877
|
# },
|
|
4836
4878
|
# note: {
|
|
4837
4879
|
# text: "NonEmptyString", # required
|
|
@@ -5492,6 +5534,18 @@ module Aws::SecurityHub
|
|
|
5492
5534
|
# value: false,
|
|
5493
5535
|
# },
|
|
5494
5536
|
# ],
|
|
5537
|
+
# compliance_security_control_id: [
|
|
5538
|
+
# {
|
|
5539
|
+
# value: "NonEmptyString",
|
|
5540
|
+
# comparison: "EQUALS", # accepts EQUALS, PREFIX, NOT_EQUALS, PREFIX_NOT_EQUALS
|
|
5541
|
+
# },
|
|
5542
|
+
# ],
|
|
5543
|
+
# compliance_associated_standards_id: [
|
|
5544
|
+
# {
|
|
5545
|
+
# value: "NonEmptyString",
|
|
5546
|
+
# comparison: "EQUALS", # accepts EQUALS, PREFIX, NOT_EQUALS, PREFIX_NOT_EQUALS
|
|
5547
|
+
# },
|
|
5548
|
+
# ],
|
|
5495
5549
|
# },
|
|
5496
5550
|
# group_by_attribute: "NonEmptyString",
|
|
5497
5551
|
# })
|
|
@@ -5623,7 +5677,7 @@ module Aws::SecurityHub
|
|
|
5623
5677
|
params: params,
|
|
5624
5678
|
config: config)
|
|
5625
5679
|
context[:gem_name] = 'aws-sdk-securityhub'
|
|
5626
|
-
context[:gem_version] = '1.
|
|
5680
|
+
context[:gem_version] = '1.76.0'
|
|
5627
5681
|
Seahorse::Client::Request.new(handlers, context)
|
|
5628
5682
|
end
|
|
5629
5683
|
|
|
@@ -36,6 +36,8 @@ module Aws::SecurityHub
|
|
|
36
36
|
AdminStatus = Shapes::StringShape.new(name: 'AdminStatus')
|
|
37
37
|
AdminsMaxResults = Shapes::IntegerShape.new(name: 'AdminsMaxResults')
|
|
38
38
|
ArnList = Shapes::ListShape.new(name: 'ArnList')
|
|
39
|
+
AssociatedStandard = Shapes::StructureShape.new(name: 'AssociatedStandard')
|
|
40
|
+
AssociatedStandardsList = Shapes::ListShape.new(name: 'AssociatedStandardsList')
|
|
39
41
|
AutoEnableStandards = Shapes::StringShape.new(name: 'AutoEnableStandards')
|
|
40
42
|
AvailabilityZone = Shapes::StructureShape.new(name: 'AvailabilityZone')
|
|
41
43
|
AvailabilityZones = Shapes::ListShape.new(name: 'AvailabilityZones')
|
|
@@ -1009,6 +1011,11 @@ module Aws::SecurityHub
|
|
|
1009
1011
|
|
|
1010
1012
|
ArnList.member = Shapes::ShapeRef.new(shape: NonEmptyString)
|
|
1011
1013
|
|
|
1014
|
+
AssociatedStandard.add_member(:standards_id, Shapes::ShapeRef.new(shape: NonEmptyString, location_name: "StandardsId"))
|
|
1015
|
+
AssociatedStandard.struct_class = Types::AssociatedStandard
|
|
1016
|
+
|
|
1017
|
+
AssociatedStandardsList.member = Shapes::ShapeRef.new(shape: AssociatedStandard)
|
|
1018
|
+
|
|
1012
1019
|
AvailabilityZone.add_member(:zone_name, Shapes::ShapeRef.new(shape: NonEmptyString, location_name: "ZoneName"))
|
|
1013
1020
|
AvailabilityZone.add_member(:subnet_id, Shapes::ShapeRef.new(shape: NonEmptyString, location_name: "SubnetId"))
|
|
1014
1021
|
AvailabilityZone.struct_class = Types::AvailabilityZone
|
|
@@ -3980,6 +3987,8 @@ module Aws::SecurityHub
|
|
|
3980
3987
|
AwsSecurityFindingFilters.add_member(:finding_provider_fields_severity_original, Shapes::ShapeRef.new(shape: StringFilterList, location_name: "FindingProviderFieldsSeverityOriginal"))
|
|
3981
3988
|
AwsSecurityFindingFilters.add_member(:finding_provider_fields_types, Shapes::ShapeRef.new(shape: StringFilterList, location_name: "FindingProviderFieldsTypes"))
|
|
3982
3989
|
AwsSecurityFindingFilters.add_member(:sample, Shapes::ShapeRef.new(shape: BooleanFilterList, location_name: "Sample"))
|
|
3990
|
+
AwsSecurityFindingFilters.add_member(:compliance_security_control_id, Shapes::ShapeRef.new(shape: StringFilterList, location_name: "ComplianceSecurityControlId"))
|
|
3991
|
+
AwsSecurityFindingFilters.add_member(:compliance_associated_standards_id, Shapes::ShapeRef.new(shape: StringFilterList, location_name: "ComplianceAssociatedStandardsId"))
|
|
3983
3992
|
AwsSecurityFindingFilters.struct_class = Types::AwsSecurityFindingFilters
|
|
3984
3993
|
|
|
3985
3994
|
AwsSecurityFindingIdentifier.add_member(:id, Shapes::ShapeRef.new(shape: NonEmptyString, required: true, location_name: "Id"))
|
|
@@ -4337,6 +4346,8 @@ module Aws::SecurityHub
|
|
|
4337
4346
|
Compliance.add_member(:status, Shapes::ShapeRef.new(shape: ComplianceStatus, location_name: "Status"))
|
|
4338
4347
|
Compliance.add_member(:related_requirements, Shapes::ShapeRef.new(shape: RelatedRequirementsList, location_name: "RelatedRequirements"))
|
|
4339
4348
|
Compliance.add_member(:status_reasons, Shapes::ShapeRef.new(shape: StatusReasonsList, location_name: "StatusReasons"))
|
|
4349
|
+
Compliance.add_member(:security_control_id, Shapes::ShapeRef.new(shape: NonEmptyString, location_name: "SecurityControlId"))
|
|
4350
|
+
Compliance.add_member(:associated_standards, Shapes::ShapeRef.new(shape: AssociatedStandardsList, location_name: "AssociatedStandards"))
|
|
4340
4351
|
Compliance.struct_class = Types::Compliance
|
|
4341
4352
|
|
|
4342
4353
|
ContainerDetails.add_member(:container_runtime, Shapes::ShapeRef.new(shape: NonEmptyString, location_name: "ContainerRuntime"))
|
|
@@ -307,6 +307,28 @@ module Aws::SecurityHub
|
|
|
307
307
|
include Aws::Structure
|
|
308
308
|
end
|
|
309
309
|
|
|
310
|
+
# Information about an enabled security standard in which a security
|
|
311
|
+
# control is enabled.
|
|
312
|
+
#
|
|
313
|
+
# @!attribute [rw] standards_id
|
|
314
|
+
# The unique identifier of a standard in which a control is enabled.
|
|
315
|
+
# This field consists of the resource portion of the Amazon Resource
|
|
316
|
+
# Name (ARN) returned for a standard in the [DescribeStandards][1] API
|
|
317
|
+
# response.
|
|
318
|
+
#
|
|
319
|
+
#
|
|
320
|
+
#
|
|
321
|
+
# [1]: https://docs.aws.amazon.com/securityhub/1.0/APIReference/API_DescribeStandards.html
|
|
322
|
+
# @return [String]
|
|
323
|
+
#
|
|
324
|
+
# @see http://docs.aws.amazon.com/goto/WebAPI/securityhub-2018-10-26/AssociatedStandard AWS API Documentation
|
|
325
|
+
#
|
|
326
|
+
class AssociatedStandard < Struct.new(
|
|
327
|
+
:standards_id)
|
|
328
|
+
SENSITIVE = []
|
|
329
|
+
include Aws::Structure
|
|
330
|
+
end
|
|
331
|
+
|
|
310
332
|
# Information about an Availability Zone.
|
|
311
333
|
#
|
|
312
334
|
# @!attribute [rw] zone_name
|
|
@@ -15395,7 +15417,7 @@ module Aws::SecurityHub
|
|
|
15395
15417
|
# An array of up to three Git repositories associated with the
|
|
15396
15418
|
# notebook instance. These can be either the names of Git repositories
|
|
15397
15419
|
# stored as resources in your account, or the URL of Git repositories
|
|
15398
|
-
# in [
|
|
15420
|
+
# in [CodeCommit][1] or in any other Git repository. These
|
|
15399
15421
|
# repositories are cloned at the same level as the default repository
|
|
15400
15422
|
# of your notebook instance. For more information, see [Associating
|
|
15401
15423
|
# Git repositories with SageMaker notebook instances][2] in the
|
|
@@ -15411,8 +15433,8 @@ module Aws::SecurityHub
|
|
|
15411
15433
|
# The Git repository associated with the notebook instance as its
|
|
15412
15434
|
# default code repository. This can be either the name of a Git
|
|
15413
15435
|
# repository stored as a resource in your account, or the URL of a Git
|
|
15414
|
-
# repository in [
|
|
15415
|
-
#
|
|
15436
|
+
# repository in [CodeCommit][1] or in any other Git repository. When
|
|
15437
|
+
# you open a notebook instance, it opens in the directory that
|
|
15416
15438
|
# contains this repository. For more information, see [Associating Git
|
|
15417
15439
|
# repositories with SageMaker notebook instances][2] in the *Amazon
|
|
15418
15440
|
# SageMaker Developer Guide*.
|
|
@@ -16448,6 +16470,23 @@ module Aws::SecurityHub
|
|
|
16448
16470
|
# results.
|
|
16449
16471
|
# @return [Array<Types::BooleanFilter>]
|
|
16450
16472
|
#
|
|
16473
|
+
# @!attribute [rw] compliance_security_control_id
|
|
16474
|
+
# The unique identifier of a control across standards. Values for this
|
|
16475
|
+
# field typically consist of an Amazon Web Service and a number, such
|
|
16476
|
+
# as APIGateway.5.
|
|
16477
|
+
# @return [Array<Types::StringFilter>]
|
|
16478
|
+
#
|
|
16479
|
+
# @!attribute [rw] compliance_associated_standards_id
|
|
16480
|
+
# The unique identifier of a standard in which a control is enabled.
|
|
16481
|
+
# This field consists of the resource portion of the Amazon Resource
|
|
16482
|
+
# Name (ARN) returned for a standard in the [DescribeStandards][1] API
|
|
16483
|
+
# response.
|
|
16484
|
+
#
|
|
16485
|
+
#
|
|
16486
|
+
#
|
|
16487
|
+
# [1]: https://docs.aws.amazon.com/securityhub/1.0/APIReference/API_DescribeStandards.html
|
|
16488
|
+
# @return [Array<Types::StringFilter>]
|
|
16489
|
+
#
|
|
16451
16490
|
# @see http://docs.aws.amazon.com/goto/WebAPI/securityhub-2018-10-26/AwsSecurityFindingFilters AWS API Documentation
|
|
16452
16491
|
#
|
|
16453
16492
|
class AwsSecurityFindingFilters < Struct.new(
|
|
@@ -16545,7 +16584,9 @@ module Aws::SecurityHub
|
|
|
16545
16584
|
:finding_provider_fields_severity_label,
|
|
16546
16585
|
:finding_provider_fields_severity_original,
|
|
16547
16586
|
:finding_provider_fields_types,
|
|
16548
|
-
:sample
|
|
16587
|
+
:sample,
|
|
16588
|
+
:compliance_security_control_id,
|
|
16589
|
+
:compliance_associated_standards_id)
|
|
16549
16590
|
SENSITIVE = []
|
|
16550
16591
|
include Aws::Structure
|
|
16551
16592
|
end
|
|
@@ -17777,8 +17818,8 @@ module Aws::SecurityHub
|
|
|
17777
17818
|
|
|
17778
17819
|
# Provides details about rules in a rule group. A rule identifies web
|
|
17779
17820
|
# requests that you want to allow, block, or count. Each rule includes
|
|
17780
|
-
# one top-level Statement that
|
|
17781
|
-
# requests, and parameters that govern how
|
|
17821
|
+
# one top-level Statement that WAF uses to identify matching web
|
|
17822
|
+
# requests, and parameters that govern how WAF handles them.
|
|
17782
17823
|
#
|
|
17783
17824
|
# @!attribute [rw] action
|
|
17784
17825
|
# The action that WAF should take on a web request when it matches the
|
|
@@ -18463,12 +18504,25 @@ module Aws::SecurityHub
|
|
|
18463
18504
|
# [1]: https://docs.aws.amazon.com/securityhub/latest/userguide/securityhub-standards-results.html#securityhub-standards-results-asff
|
|
18464
18505
|
# @return [Array<Types::StatusReason>]
|
|
18465
18506
|
#
|
|
18507
|
+
# @!attribute [rw] security_control_id
|
|
18508
|
+
# The unique identifier of a control across standards. Values for this
|
|
18509
|
+
# field typically consist of an Amazon Web Service and a number, such
|
|
18510
|
+
# as APIGateway.5.
|
|
18511
|
+
# @return [String]
|
|
18512
|
+
#
|
|
18513
|
+
# @!attribute [rw] associated_standards
|
|
18514
|
+
# The enabled security standards in which a security control is
|
|
18515
|
+
# currently enabled.
|
|
18516
|
+
# @return [Array<Types::AssociatedStandard>]
|
|
18517
|
+
#
|
|
18466
18518
|
# @see http://docs.aws.amazon.com/goto/WebAPI/securityhub-2018-10-26/Compliance AWS API Documentation
|
|
18467
18519
|
#
|
|
18468
18520
|
class Compliance < Struct.new(
|
|
18469
18521
|
:status,
|
|
18470
18522
|
:related_requirements,
|
|
18471
|
-
:status_reasons
|
|
18523
|
+
:status_reasons,
|
|
18524
|
+
:security_control_id,
|
|
18525
|
+
:associated_standards)
|
|
18472
18526
|
SENSITIVE = []
|
|
18473
18527
|
include Aws::Structure
|
|
18474
18528
|
end
|
|
@@ -20716,27 +20770,27 @@ module Aws::SecurityHub
|
|
|
20716
20770
|
#
|
|
20717
20771
|
# The status can have one of the following values:
|
|
20718
20772
|
#
|
|
20719
|
-
# * `
|
|
20773
|
+
# * `Created` - Indicates that the administrator account added the
|
|
20720
20774
|
# member account, but has not yet invited the member account.
|
|
20721
20775
|
#
|
|
20722
|
-
# * `
|
|
20776
|
+
# * `Invited` - Indicates that the administrator account invited the
|
|
20723
20777
|
# member account. The member account has not yet responded to the
|
|
20724
20778
|
# invitation.
|
|
20725
20779
|
#
|
|
20726
|
-
# * `
|
|
20780
|
+
# * `Enabled` - Indicates that the member account is currently active.
|
|
20727
20781
|
# For manually invited member accounts, indicates that the member
|
|
20728
20782
|
# account accepted the invitation.
|
|
20729
20783
|
#
|
|
20730
|
-
# * `
|
|
20784
|
+
# * `Removed` - Indicates that the administrator account disassociated
|
|
20731
20785
|
# the member account.
|
|
20732
20786
|
#
|
|
20733
|
-
# * `
|
|
20787
|
+
# * `Resigned` - Indicates that the member account disassociated
|
|
20734
20788
|
# themselves from the administrator account.
|
|
20735
20789
|
#
|
|
20736
|
-
# * `
|
|
20790
|
+
# * `Deleted` - Indicates that the administrator account deleted the
|
|
20737
20791
|
# member account.
|
|
20738
20792
|
#
|
|
20739
|
-
# * `
|
|
20793
|
+
# * `AccountSuspended` - Indicates that an organization account was
|
|
20740
20794
|
# suspended from Amazon Web Services at the same time that the
|
|
20741
20795
|
# administrator account tried to enable the organization account as
|
|
20742
20796
|
# a member account.
|
data/lib/aws-sdk-securityhub.rb
CHANGED
metadata
CHANGED
|
@@ -1,14 +1,14 @@
|
|
|
1
1
|
--- !ruby/object:Gem::Specification
|
|
2
2
|
name: aws-sdk-securityhub
|
|
3
3
|
version: !ruby/object:Gem::Version
|
|
4
|
-
version: 1.
|
|
4
|
+
version: 1.76.0
|
|
5
5
|
platform: ruby
|
|
6
6
|
authors:
|
|
7
7
|
- Amazon Web Services
|
|
8
8
|
autorequire:
|
|
9
9
|
bindir: bin
|
|
10
10
|
cert_chain: []
|
|
11
|
-
date: 2023-01-
|
|
11
|
+
date: 2023-01-31 00:00:00.000000000 Z
|
|
12
12
|
dependencies:
|
|
13
13
|
- !ruby/object:Gem::Dependency
|
|
14
14
|
name: aws-sdk-core
|