aws-sdk-shield 1.29.0 → 1.34.0

checksums.yaml

@@ -1,7 +1,7 @@
 ---
 SHA256:
-  metadata.gz: d7a45988d874990055ef49cd9ad5da7d733be1bd6a150c19a30bf59a4fbbf237
-  data.tar.gz: 12fd63a32d0f0b30dd2b5932180a2ee3d8ff93054af13b132c8e81bc72bd71fe
+  metadata.gz: 3ac82a17cacca4b5a293b83132ff40d0fe0359bdc28c1d97b72d725daf54c599
+  data.tar.gz: 7b8ffa6b55123f76e49085a6bce2b572fb7124ae51e7730ba41dc9210ab65303
 SHA512:
-  metadata.gz: a630e0a4bd3cfe9001b5207e4f9821412ceb4f4a8233a3a1519485865503433ccccd82aec3b04578779d609796ccd2b51e6d5d7364ffdede7f1ad3a7b67491bb
-  data.tar.gz: 00bd8b5e04a314b90a3ea86c73f563e2594e14192346b56934a36688a051df216e6372b2b45fcc973ffbe71bb441a16e68552f28c550ebacc9e3e4ce77f3a28d
+  metadata.gz: 2376b0ecc10e43857687117258e970390860f492a958f987c904546b55b8a0e65b9d52d1791e7a38292b34592688f639914e0df6ab842f362ed4dfc69681b43e
+  data.tar.gz: 7ac5d4cd1e504ba48221131e7025b319a451e0a5a01d5054f416ea2f0e5e493015fabe1cca4a65ef5e0ff1110a87996572bf156cf9b24ed816575354bf6aa007

data/lib/aws-sdk-shield.rb

@@ -7,6 +7,7 @@
 #
 # WARNING ABOUT GENERATED CODE
 
+
 require 'aws-sdk-core'
 require 'aws-sigv4'
 
@@ -44,9 +45,9 @@ require_relative 'aws-sdk-shield/customizations'
 #
 # See {Errors} for more information.
 #
-# @service
+# @!group service
 module Aws::Shield
 
-  GEM_VERSION = '1.29.0'
+  GEM_VERSION = '1.34.0'
 
 end

data/lib/aws-sdk-shield/client.rb

@@ -85,13 +85,28 @@ module Aws::Shield
     #     * `Aws::Credentials` - Used for configuring static, non-refreshing
     #       credentials.
     #
+    #     * `Aws::SharedCredentials` - Used for loading static credentials from a
+    #       shared file, such as `~/.aws/config`.
+    #
+    #     * `Aws::AssumeRoleCredentials` - Used when you need to assume a role.
+    #
+    #     * `Aws::AssumeRoleWebIdentityCredentials` - Used when you need to
+    #       assume a role after providing credentials via the web.
+    #
+    #     * `Aws::SSOCredentials` - Used for loading credentials from AWS SSO using an
+    #       access token generated from `aws login`.
+    #
+    #     * `Aws::ProcessCredentials` - Used for loading credentials from a
+    #       process that outputs to stdout.
+    #
     #     * `Aws::InstanceProfileCredentials` - Used for loading credentials
     #       from an EC2 IMDS on an EC2 instance.
     #
-    #     * `Aws::SharedCredentials` - Used for loading credentials from a
-    #       shared file, such as `~/.aws/config`.
+    #     * `Aws::ECSCredentials` - Used for loading credentials from
+    #       instances running in ECS.
     #
-    #     * `Aws::AssumeRoleCredentials` - Used when you need to assume a role.
+    #     * `Aws::CognitoIdentityCredentials` - Used for loading credentials
+    #       from the Cognito Identity service.
     #
     #     When `:credentials` are not configured directly, the following
     #     locations will be searched for credentials:
@@ -101,10 +116,10 @@ module Aws::Shield
     #     * ENV['AWS_ACCESS_KEY_ID'], ENV['AWS_SECRET_ACCESS_KEY']
     #     * `~/.aws/credentials`
     #     * `~/.aws/config`
-    #     * EC2 IMDS instance profile - When used by default, the timeouts are
-    #       very aggressive. Construct and pass an instance of
-    #       `Aws::InstanceProfileCredentails` to enable retries and extended
-    #       timeouts.
+    #     * EC2/ECS IMDS instance profile - When used by default, the timeouts
+    #       are very aggressive. Construct and pass an instance of
+    #       `Aws::InstanceProfileCredentails` or `Aws::ECSCredentials` to
+    #       enable retries and extended timeouts.
     #
     #   @option options [required, String] :region
     #     The AWS region to connect to.  The configured `:region` is
@@ -592,6 +607,71 @@ module Aws::Shield
       req.send_request(options)
     end
 
+    # Creates a grouping of protected resources so they can be handled as a
+    # collective. This resource grouping improves the accuracy of detection
+    # and reduces false positives.
+    #
+    # @option params [required, String] :protection_group_id
+    #   The name of the protection group. You use this to identify the
+    #   protection group in lists and to manage the protection group, for
+    #   example to update, delete, or describe it.
+    #
+    # @option params [required, String] :aggregation
+    #   Defines how AWS Shield combines resource data for the group in order
+    #   to detect, mitigate, and report events.
+    #
+    #   * Sum - Use the total traffic across the group. This is a good choice
+    #     for most cases. Examples include Elastic IP addresses for EC2
+    #     instances that scale manually or automatically.
+    #
+    #   * Mean - Use the average of the traffic across the group. This is a
+    #     good choice for resources that share traffic uniformly. Examples
+    #     include accelerators and load balancers.
+    #
+    #   * Max - Use the highest traffic from each resource. This is useful for
+    #     resources that don't share traffic and for resources that share
+    #     that traffic in a non-uniform way. Examples include CloudFront
+    #     distributions and origin resources for CloudFront distributions.
+    #
+    # @option params [required, String] :pattern
+    #   The criteria to use to choose the protected resources for inclusion in
+    #   the group. You can include all resources that have protections,
+    #   provide a list of resource Amazon Resource Names (ARNs), or include
+    #   all resources of a specified resource type.
+    #
+    # @option params [String] :resource_type
+    #   The resource type to include in the protection group. All protected
+    #   resources of this type are included in the protection group. Newly
+    #   protected resources of this type are automatically added to the group.
+    #   You must set this when you set `Pattern` to `BY_RESOURCE_TYPE` and you
+    #   must not set it for any other `Pattern` setting.
+    #
+    # @option params [Array<String>] :members
+    #   The Amazon Resource Names (ARNs) of the resources to include in the
+    #   protection group. You must set this when you set `Pattern` to
+    #   `ARBITRARY` and you must not set it for any other `Pattern` setting.
+    #
+    # @return [Struct] Returns an empty {Seahorse::Client::Response response}.
+    #
+    # @example Request syntax with placeholder values
+    #
+    #   resp = client.create_protection_group({
+    #     protection_group_id: "ProtectionGroupId", # required
+    #     aggregation: "SUM", # required, accepts SUM, MEAN, MAX
+    #     pattern: "ALL", # required, accepts ALL, ARBITRARY, BY_RESOURCE_TYPE
+    #     resource_type: "CLOUDFRONT_DISTRIBUTION", # accepts CLOUDFRONT_DISTRIBUTION, ROUTE_53_HOSTED_ZONE, ELASTIC_IP_ALLOCATION, CLASSIC_LOAD_BALANCER, APPLICATION_LOAD_BALANCER, GLOBAL_ACCELERATOR
+    #     members: ["ResourceArn"],
+    #   })
+    #
+    # @see http://docs.aws.amazon.com/goto/WebAPI/shield-2016-06-02/CreateProtectionGroup AWS API Documentation
+    #
+    # @overload create_protection_group(params = {})
+    # @param [Hash] params ({})
+    def create_protection_group(params = {}, options = {})
+      req = build_request(:create_protection_group, params)
+      req.send_request(options)
+    end
+
     # Activates AWS Shield Advanced for an account.
     #
     # When you initally create a subscription, your subscription is set to
@@ -632,6 +712,30 @@ module Aws::Shield
       req.send_request(options)
     end
 
+    # Removes the specified protection group.
+    #
+    # @option params [required, String] :protection_group_id
+    #   The name of the protection group. You use this to identify the
+    #   protection group in lists and to manage the protection group, for
+    #   example to update, delete, or describe it.
+    #
+    # @return [Struct] Returns an empty {Seahorse::Client::Response response}.
+    #
+    # @example Request syntax with placeholder values
+    #
+    #   resp = client.delete_protection_group({
+    #     protection_group_id: "ProtectionGroupId", # required
+    #   })
+    #
+    # @see http://docs.aws.amazon.com/goto/WebAPI/shield-2016-06-02/DeleteProtectionGroup AWS API Documentation
+    #
+    # @overload delete_protection_group(params = {})
+    # @param [Hash] params ({})
+    def delete_protection_group(params = {}, options = {})
+      req = build_request(:delete_protection_group, params)
+      req.send_request(options)
+    end
+
     # Removes AWS Shield Advanced from an account. AWS Shield Advanced
     # requires a 1-year subscription commitment. You cannot delete a
     # subscription prior to the completion of that commitment.
@@ -714,6 +818,45 @@ module Aws::Shield
       req.send_request(options)
     end
 
+    # Provides information about the number and type of attacks AWS Shield
+    # has detected in the last year for all resources that belong to your
+    # account, regardless of whether you've defined Shield protections for
+    # them. This operation is available to Shield customers as well as to
+    # Shield Advanced customers.
+    #
+    # The operation returns data for the time range of midnight UTC, one
+    # year ago, to midnight UTC, today. For example, if the current time is
+    # `2020-10-26 15:39:32 PDT`, equal to `2020-10-26 22:39:32 UTC`, then
+    # the time range for the attack data returned is from `2019-10-26
+    # 00:00:00 UTC` to `2020-10-26 00:00:00 UTC`.
+    #
+    # The time range indicates the period covered by the attack statistics
+    # data items.
+    #
+    # @return [Types::DescribeAttackStatisticsResponse] Returns a {Seahorse::Client::Response response} object which responds to the following methods:
+    #
+    #   * {Types::DescribeAttackStatisticsResponse#time_range #time_range} => Types::TimeRange
+    #   * {Types::DescribeAttackStatisticsResponse#data_items #data_items} => Array&lt;Types::AttackStatisticsDataItem&gt;
+    #
+    # @example Response structure
+    #
+    #   resp.time_range.from_inclusive #=> Time
+    #   resp.time_range.to_exclusive #=> Time
+    #   resp.data_items #=> Array
+    #   resp.data_items[0].attack_volume.bits_per_second.max #=> Float
+    #   resp.data_items[0].attack_volume.packets_per_second.max #=> Float
+    #   resp.data_items[0].attack_volume.requests_per_second.max #=> Float
+    #   resp.data_items[0].attack_count #=> Integer
+    #
+    # @see http://docs.aws.amazon.com/goto/WebAPI/shield-2016-06-02/DescribeAttackStatistics AWS API Documentation
+    #
+    # @overload describe_attack_statistics(params = {})
+    # @param [Hash] params ({})
+    def describe_attack_statistics(params = {}, options = {})
+      req = build_request(:describe_attack_statistics, params)
+      req.send_request(options)
+    end
+
     # Returns the current role and list of Amazon S3 log buckets used by the
     # DDoS Response Team (DRT) to access your AWS account while assisting
     # with attack mitigation.
@@ -804,6 +947,41 @@ module Aws::Shield
       req.send_request(options)
     end
 
+    # Returns the specification for the specified protection group.
+    #
+    # @option params [required, String] :protection_group_id
+    #   The name of the protection group. You use this to identify the
+    #   protection group in lists and to manage the protection group, for
+    #   example to update, delete, or describe it.
+    #
+    # @return [Types::DescribeProtectionGroupResponse] Returns a {Seahorse::Client::Response response} object which responds to the following methods:
+    #
+    #   * {Types::DescribeProtectionGroupResponse#protection_group #protection_group} => Types::ProtectionGroup
+    #
+    # @example Request syntax with placeholder values
+    #
+    #   resp = client.describe_protection_group({
+    #     protection_group_id: "ProtectionGroupId", # required
+    #   })
+    #
+    # @example Response structure
+    #
+    #   resp.protection_group.protection_group_id #=> String
+    #   resp.protection_group.aggregation #=> String, one of "SUM", "MEAN", "MAX"
+    #   resp.protection_group.pattern #=> String, one of "ALL", "ARBITRARY", "BY_RESOURCE_TYPE"
+    #   resp.protection_group.resource_type #=> String, one of "CLOUDFRONT_DISTRIBUTION", "ROUTE_53_HOSTED_ZONE", "ELASTIC_IP_ALLOCATION", "CLASSIC_LOAD_BALANCER", "APPLICATION_LOAD_BALANCER", "GLOBAL_ACCELERATOR"
+    #   resp.protection_group.members #=> Array
+    #   resp.protection_group.members[0] #=> String
+    #
+    # @see http://docs.aws.amazon.com/goto/WebAPI/shield-2016-06-02/DescribeProtectionGroup AWS API Documentation
+    #
+    # @overload describe_protection_group(params = {})
+    # @param [Hash] params ({})
+    def describe_protection_group(params = {}, options = {})
+      req = build_request(:describe_protection_group, params)
+      req.send_request(options)
+    end
+
     # Provides details about the AWS Shield Advanced subscription for an
     # account.
     #
@@ -821,6 +999,11 @@ module Aws::Shield
     #   resp.subscription.limits[0].type #=> String
     #   resp.subscription.limits[0].max #=> Integer
     #   resp.subscription.proactive_engagement_status #=> String, one of "ENABLED", "DISABLED", "PENDING"
+    #   resp.subscription.subscription_limits.protection_limits.protected_resource_type_limits #=> Array
+    #   resp.subscription.subscription_limits.protection_limits.protected_resource_type_limits[0].type #=> String
+    #   resp.subscription.subscription_limits.protection_limits.protected_resource_type_limits[0].max #=> Integer
+    #   resp.subscription.subscription_limits.protection_group_limits.max_protection_groups #=> Integer
+    #   resp.subscription.subscription_limits.protection_group_limits.pattern_type_limits.arbitrary_pattern_limits.max_members #=> Integer
     #
     # @see http://docs.aws.amazon.com/goto/WebAPI/shield-2016-06-02/DescribeSubscription AWS API Documentation
     #
@@ -1013,15 +1196,15 @@ module Aws::Shield
     #   `ListAttacksRequest`. Pass null if this is the first call.
     #
     # @option params [Integer] :max_results
-    #   The maximum number of AttackSummary objects to be returned. If this is
-    #   left blank, the first 20 results will be returned.
+    #   The maximum number of AttackSummary objects to return. If you leave
+    #   this blank, Shield Advanced returns the first 20 results.
     #
-    #   This is a maximum value; it is possible that AWS WAF will return the
-    #   results in smaller batches. That is, the number of AttackSummary
-    #   objects returned could be less than `MaxResults`, even if there are
-    #   still more AttackSummary objects yet to return. If there are more
-    #   AttackSummary objects to return, AWS WAF will always also return a
-    #   `NextToken`.
+    #   This is a maximum value. Shield Advanced might return the results in
+    #   smaller batches. That is, the number of objects returned could be less
+    #   than `MaxResults`, even if there are still more objects yet to return.
+    #   If there are more objects to return, Shield Advanced returns a value
+    #   in `NextToken` that you can use in your next request, to get the next
+    #   batch of objects.
     #
     # @return [Types::ListAttacksResponse] Returns a {Seahorse::Client::Response response} object which responds to the following methods:
     #
@@ -1066,6 +1249,57 @@ module Aws::Shield
       req.send_request(options)
     end
 
+    # Retrieves the ProtectionGroup objects for the account.
+    #
+    # @option params [String] :next_token
+    #   The next token value from a previous call to `ListProtectionGroups`.
+    #   Pass null if this is the first call.
+    #
+    # @option params [Integer] :max_results
+    #   The maximum number of ProtectionGroup objects to return. If you leave
+    #   this blank, Shield Advanced returns the first 20 results.
+    #
+    #   This is a maximum value. Shield Advanced might return the results in
+    #   smaller batches. That is, the number of objects returned could be less
+    #   than `MaxResults`, even if there are still more objects yet to return.
+    #   If there are more objects to return, Shield Advanced returns a value
+    #   in `NextToken` that you can use in your next request, to get the next
+    #   batch of objects.
+    #
+    # @return [Types::ListProtectionGroupsResponse] Returns a {Seahorse::Client::Response response} object which responds to the following methods:
+    #
+    #   * {Types::ListProtectionGroupsResponse#protection_groups #protection_groups} => Array&lt;Types::ProtectionGroup&gt;
+    #   * {Types::ListProtectionGroupsResponse#next_token #next_token} => String
+    #
+    # The returned {Seahorse::Client::Response response} is a pageable response and is Enumerable. For details on usage see {Aws::PageableResponse PageableResponse}.
+    #
+    # @example Request syntax with placeholder values
+    #
+    #   resp = client.list_protection_groups({
+    #     next_token: "Token",
+    #     max_results: 1,
+    #   })
+    #
+    # @example Response structure
+    #
+    #   resp.protection_groups #=> Array
+    #   resp.protection_groups[0].protection_group_id #=> String
+    #   resp.protection_groups[0].aggregation #=> String, one of "SUM", "MEAN", "MAX"
+    #   resp.protection_groups[0].pattern #=> String, one of "ALL", "ARBITRARY", "BY_RESOURCE_TYPE"
+    #   resp.protection_groups[0].resource_type #=> String, one of "CLOUDFRONT_DISTRIBUTION", "ROUTE_53_HOSTED_ZONE", "ELASTIC_IP_ALLOCATION", "CLASSIC_LOAD_BALANCER", "APPLICATION_LOAD_BALANCER", "GLOBAL_ACCELERATOR"
+    #   resp.protection_groups[0].members #=> Array
+    #   resp.protection_groups[0].members[0] #=> String
+    #   resp.next_token #=> String
+    #
+    # @see http://docs.aws.amazon.com/goto/WebAPI/shield-2016-06-02/ListProtectionGroups AWS API Documentation
+    #
+    # @overload list_protection_groups(params = {})
+    # @param [Hash] params ({})
+    def list_protection_groups(params = {}, options = {})
+      req = build_request(:list_protection_groups, params)
+      req.send_request(options)
+    end
+
     # Lists all Protection objects for the account.
     #
     # @option params [String] :next_token
@@ -1073,14 +1307,15 @@ module Aws::Shield
     #   `ListProtections`. Pass null if this is the first call.
     #
     # @option params [Integer] :max_results
-    #   The maximum number of Protection objects to be returned. If this is
-    #   left blank the first 20 results will be returned.
+    #   The maximum number of Protection objects to return. If you leave this
+    #   blank, Shield Advanced returns the first 20 results.
     #
-    #   This is a maximum value; it is possible that AWS WAF will return the
-    #   results in smaller batches. That is, the number of Protection objects
-    #   returned could be less than `MaxResults`, even if there are still more
-    #   Protection objects yet to return. If there are more Protection objects
-    #   to return, AWS WAF will always also return a `NextToken`.
+    #   This is a maximum value. Shield Advanced might return the results in
+    #   smaller batches. That is, the number of objects returned could be less
+    #   than `MaxResults`, even if there are still more objects yet to return.
+    #   If there are more objects to return, Shield Advanced returns a value
+    #   in `NextToken` that you can use in your next request, to get the next
+    #   batch of objects.
     #
     # @return [Types::ListProtectionsResponse] Returns a {Seahorse::Client::Response response} object which responds to the following methods:
     #
@@ -1115,6 +1350,58 @@ module Aws::Shield
       req.send_request(options)
     end
 
+    # Retrieves the resources that are included in the protection group.
+    #
+    # @option params [required, String] :protection_group_id
+    #   The name of the protection group. You use this to identify the
+    #   protection group in lists and to manage the protection group, for
+    #   example to update, delete, or describe it.
+    #
+    # @option params [String] :next_token
+    #   The next token value from a previous call to
+    #   `ListResourcesInProtectionGroup`. Pass null if this is the first call.
+    #
+    # @option params [Integer] :max_results
+    #   The maximum number of resource ARN objects to return. If you leave
+    #   this blank, Shield Advanced returns the first 20 results.
+    #
+    #   This is a maximum value. Shield Advanced might return the results in
+    #   smaller batches. That is, the number of objects returned could be less
+    #   than `MaxResults`, even if there are still more objects yet to return.
+    #   If there are more objects to return, Shield Advanced returns a value
+    #   in `NextToken` that you can use in your next request, to get the next
+    #   batch of objects.
+    #
+    # @return [Types::ListResourcesInProtectionGroupResponse] Returns a {Seahorse::Client::Response response} object which responds to the following methods:
+    #
+    #   * {Types::ListResourcesInProtectionGroupResponse#resource_arns #resource_arns} => Array&lt;String&gt;
+    #   * {Types::ListResourcesInProtectionGroupResponse#next_token #next_token} => String
+    #
+    # The returned {Seahorse::Client::Response response} is a pageable response and is Enumerable. For details on usage see {Aws::PageableResponse PageableResponse}.
+    #
+    # @example Request syntax with placeholder values
+    #
+    #   resp = client.list_resources_in_protection_group({
+    #     protection_group_id: "ProtectionGroupId", # required
+    #     next_token: "Token",
+    #     max_results: 1,
+    #   })
+    #
+    # @example Response structure
+    #
+    #   resp.resource_arns #=> Array
+    #   resp.resource_arns[0] #=> String
+    #   resp.next_token #=> String
+    #
+    # @see http://docs.aws.amazon.com/goto/WebAPI/shield-2016-06-02/ListResourcesInProtectionGroup AWS API Documentation
+    #
+    # @overload list_resources_in_protection_group(params = {})
+    # @param [Hash] params ({})
+    def list_resources_in_protection_group(params = {}, options = {})
+      req = build_request(:list_resources_in_protection_group, params)
+      req.send_request(options)
+    end
+
     # Updates the details of the list of email addresses and phone numbers
     # that the DDoS Response Team (DRT) can use to contact you if you have
     # proactive engagement enabled, for escalations to the DRT and to
@@ -1152,6 +1439,71 @@ module Aws::Shield
       req.send_request(options)
     end
 
+    # Updates an existing protection group. A protection group is a grouping
+    # of protected resources so they can be handled as a collective. This
+    # resource grouping improves the accuracy of detection and reduces false
+    # positives.
+    #
+    # @option params [required, String] :protection_group_id
+    #   The name of the protection group. You use this to identify the
+    #   protection group in lists and to manage the protection group, for
+    #   example to update, delete, or describe it.
+    #
+    # @option params [required, String] :aggregation
+    #   Defines how AWS Shield combines resource data for the group in order
+    #   to detect, mitigate, and report events.
+    #
+    #   * Sum - Use the total traffic across the group. This is a good choice
+    #     for most cases. Examples include Elastic IP addresses for EC2
+    #     instances that scale manually or automatically.
+    #
+    #   * Mean - Use the average of the traffic across the group. This is a
+    #     good choice for resources that share traffic uniformly. Examples
+    #     include accelerators and load balancers.
+    #
+    #   * Max - Use the highest traffic from each resource. This is useful for
+    #     resources that don't share traffic and for resources that share
+    #     that traffic in a non-uniform way. Examples include CloudFront
+    #     distributions and origin resources for CloudFront distributions.
+    #
+    # @option params [required, String] :pattern
+    #   The criteria to use to choose the protected resources for inclusion in
+    #   the group. You can include all resources that have protections,
+    #   provide a list of resource Amazon Resource Names (ARNs), or include
+    #   all resources of a specified resource type.
+    #
+    # @option params [String] :resource_type
+    #   The resource type to include in the protection group. All protected
+    #   resources of this type are included in the protection group. You must
+    #   set this when you set `Pattern` to `BY_RESOURCE_TYPE` and you must not
+    #   set it for any other `Pattern` setting.
+    #
+    # @option params [Array<String>] :members
+    #   The Amazon Resource Names (ARNs) of the resources to include in the
+    #   protection group. You must set this when you set `Pattern` to
+    #   `ARBITRARY` and you must not set it for any other `Pattern` setting.
+    #
+    # @return [Struct] Returns an empty {Seahorse::Client::Response response}.
+    #
+    # @example Request syntax with placeholder values
+    #
+    #   resp = client.update_protection_group({
+    #     protection_group_id: "ProtectionGroupId", # required
+    #     aggregation: "SUM", # required, accepts SUM, MEAN, MAX
+    #     pattern: "ALL", # required, accepts ALL, ARBITRARY, BY_RESOURCE_TYPE
+    #     resource_type: "CLOUDFRONT_DISTRIBUTION", # accepts CLOUDFRONT_DISTRIBUTION, ROUTE_53_HOSTED_ZONE, ELASTIC_IP_ALLOCATION, CLASSIC_LOAD_BALANCER, APPLICATION_LOAD_BALANCER, GLOBAL_ACCELERATOR
+    #     members: ["ResourceArn"],
+    #   })
+    #
+    # @see http://docs.aws.amazon.com/goto/WebAPI/shield-2016-06-02/UpdateProtectionGroup AWS API Documentation
+    #
+    # @overload update_protection_group(params = {})
+    # @param [Hash] params ({})
+    def update_protection_group(params = {}, options = {})
+      req = build_request(:update_protection_group, params)
+      req.send_request(options)
+    end
+
     # Updates the details of an existing subscription. Only enter values for
     # parameters you want to change. Empty parameters are not updated.
     #
@@ -1193,7 +1545,7 @@ module Aws::Shield
         params: params,
         config: config)
       context[:gem_name] = 'aws-sdk-shield'
-      context[:gem_version] = '1.29.0'
+      context[:gem_version] = '1.34.0'
       Seahorse::Client::Request.new(handlers, context)
     end