aws-sdk-ssm 1.104.0 → 1.105.0
This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.
- checksums.yaml +4 -4
- data/lib/aws-sdk-ssm.rb +1 -1
- data/lib/aws-sdk-ssm/client.rb +78 -8
- data/lib/aws-sdk-ssm/client_api.rb +13 -0
- data/lib/aws-sdk-ssm/types.rb +214 -10
- metadata +2 -2
checksums.yaml
CHANGED
@@ -1,7 +1,7 @@
|
|
1
1
|
---
|
2
2
|
SHA256:
|
3
|
-
metadata.gz:
|
4
|
-
data.tar.gz:
|
3
|
+
metadata.gz: a987f1a0207b8dadd73dc227b9f9669146b4c04f0d7a7f885082885c43c074ef
|
4
|
+
data.tar.gz: 616e0ed5ed9127ec7767ed639ab6ab37c7aea8268f53fb4a3428907baedd0793
|
5
5
|
SHA512:
|
6
|
-
metadata.gz:
|
7
|
-
data.tar.gz:
|
6
|
+
metadata.gz: 6d847063652f6e9b58ae71e1cbbe65d4d7d49595636a92860f3ec15b81fe06fcab98bfdf26da409681567f1852d1c63cec2f6a13da2598be6ffef1ffde16dc17
|
7
|
+
data.tar.gz: 1846b6694947e6026cc14dc6fc36123c3617152be47ee02ae5f22ed3369b2f1cbb9a8cfad2c5dc46037175bcc2241976886abd9f2b8c5da437fd22c5777f22fe
|
data/lib/aws-sdk-ssm.rb
CHANGED
data/lib/aws-sdk-ssm/client.rb
CHANGED
@@ -1563,8 +1563,8 @@ module Aws::SSM
|
|
1563
1563
|
# [1]: https://docs.aws.amazon.com/systems-manager/latest/userguide/patch-manager-approved-rejected-package-name-formats.html
|
1564
1564
|
#
|
1565
1565
|
# @option params [String] :approved_patches_compliance_level
|
1566
|
-
# Defines the compliance level for approved patches.
|
1567
|
-
#
|
1566
|
+
# Defines the compliance level for approved patches. When an approved
|
1567
|
+
# patch is reported as missing, this value describes the severity of the
|
1568
1568
|
# compliance violation. The default value is UNSPECIFIED.
|
1569
1569
|
#
|
1570
1570
|
# @option params [Boolean] :approved_patches_enable_non_security
|
@@ -4982,6 +4982,9 @@ module Aws::SSM
|
|
4982
4982
|
# @option params [required, String] :snapshot_id
|
4983
4983
|
# The user-defined snapshot ID.
|
4984
4984
|
#
|
4985
|
+
# @option params [Types::BaselineOverride] :baseline_override
|
4986
|
+
# Defines the basic information about a patch baseline override.
|
4987
|
+
#
|
4985
4988
|
# @return [Types::GetDeployablePatchSnapshotForInstanceResult] Returns a {Seahorse::Client::Response response} object which responds to the following methods:
|
4986
4989
|
#
|
4987
4990
|
# * {Types::GetDeployablePatchSnapshotForInstanceResult#instance_id #instance_id} => String
|
@@ -4994,6 +4997,47 @@ module Aws::SSM
|
|
4994
4997
|
# resp = client.get_deployable_patch_snapshot_for_instance({
|
4995
4998
|
# instance_id: "InstanceId", # required
|
4996
4999
|
# snapshot_id: "SnapshotId", # required
|
5000
|
+
# baseline_override: {
|
5001
|
+
# operating_system: "WINDOWS", # accepts WINDOWS, AMAZON_LINUX, AMAZON_LINUX_2, UBUNTU, REDHAT_ENTERPRISE_LINUX, SUSE, CENTOS, ORACLE_LINUX, DEBIAN, MACOS
|
5002
|
+
# global_filters: {
|
5003
|
+
# patch_filters: [ # required
|
5004
|
+
# {
|
5005
|
+
# key: "ARCH", # required, accepts ARCH, ADVISORY_ID, BUGZILLA_ID, PATCH_SET, PRODUCT, PRODUCT_FAMILY, CLASSIFICATION, CVE_ID, EPOCH, MSRC_SEVERITY, NAME, PATCH_ID, SECTION, PRIORITY, REPOSITORY, RELEASE, SEVERITY, SECURITY, VERSION
|
5006
|
+
# values: ["PatchFilterValue"], # required
|
5007
|
+
# },
|
5008
|
+
# ],
|
5009
|
+
# },
|
5010
|
+
# approval_rules: {
|
5011
|
+
# patch_rules: [ # required
|
5012
|
+
# {
|
5013
|
+
# patch_filter_group: { # required
|
5014
|
+
# patch_filters: [ # required
|
5015
|
+
# {
|
5016
|
+
# key: "ARCH", # required, accepts ARCH, ADVISORY_ID, BUGZILLA_ID, PATCH_SET, PRODUCT, PRODUCT_FAMILY, CLASSIFICATION, CVE_ID, EPOCH, MSRC_SEVERITY, NAME, PATCH_ID, SECTION, PRIORITY, REPOSITORY, RELEASE, SEVERITY, SECURITY, VERSION
|
5017
|
+
# values: ["PatchFilterValue"], # required
|
5018
|
+
# },
|
5019
|
+
# ],
|
5020
|
+
# },
|
5021
|
+
# compliance_level: "CRITICAL", # accepts CRITICAL, HIGH, MEDIUM, LOW, INFORMATIONAL, UNSPECIFIED
|
5022
|
+
# approve_after_days: 1,
|
5023
|
+
# approve_until_date: "PatchStringDateTime",
|
5024
|
+
# enable_non_security: false,
|
5025
|
+
# },
|
5026
|
+
# ],
|
5027
|
+
# },
|
5028
|
+
# approved_patches: ["PatchId"],
|
5029
|
+
# approved_patches_compliance_level: "CRITICAL", # accepts CRITICAL, HIGH, MEDIUM, LOW, INFORMATIONAL, UNSPECIFIED
|
5030
|
+
# rejected_patches: ["PatchId"],
|
5031
|
+
# rejected_patches_action: "ALLOW_AS_DEPENDENCY", # accepts ALLOW_AS_DEPENDENCY, BLOCK
|
5032
|
+
# approved_patches_enable_non_security: false,
|
5033
|
+
# sources: [
|
5034
|
+
# {
|
5035
|
+
# name: "PatchSourceName", # required
|
5036
|
+
# products: ["PatchSourceProduct"], # required
|
5037
|
+
# configuration: "PatchSourceConfiguration", # required
|
5038
|
+
# },
|
5039
|
+
# ],
|
5040
|
+
# },
|
4997
5041
|
# })
|
4998
5042
|
#
|
4999
5043
|
# @example Response structure
|
@@ -6142,6 +6186,8 @@ module Aws::SSM
|
|
6142
6186
|
#
|
6143
6187
|
# @option params [required, String] :setting_id
|
6144
6188
|
# The ID of the service setting to get. The setting ID can be
|
6189
|
+
# `/ssm/automation/customer-script-log-destination`,
|
6190
|
+
# `/ssm/automation/customer-script-log-group-name`,
|
6145
6191
|
# `/ssm/parameter-store/default-parameter-tier`,
|
6146
6192
|
# `/ssm/parameter-store/high-throughput-enabled`, or
|
6147
6193
|
# `/ssm/managed-instance/activation-tier`.
|
@@ -7548,7 +7594,11 @@ module Aws::SSM
|
|
7548
7594
|
# (case-insensitive).
|
7549
7595
|
#
|
7550
7596
|
# * Parameter names can include only the following symbols and letters:
|
7551
|
-
# `a-zA-Z0-9_
|
7597
|
+
# `a-zA-Z0-9_.-`
|
7598
|
+
#
|
7599
|
+
# In addition, the slash character ( / ) is used to delineate
|
7600
|
+
# hierarchies in parameter names. For example:
|
7601
|
+
# `/Dev/Production/East/Project-ABC/MyParameter`
|
7552
7602
|
#
|
7553
7603
|
# * A parameter name can't include spaces.
|
7554
7604
|
#
|
@@ -7556,8 +7606,8 @@ module Aws::SSM
|
|
7556
7606
|
# levels.
|
7557
7607
|
#
|
7558
7608
|
# For additional information about valid values for parameter names, see
|
7559
|
-
# [
|
7560
|
-
#
|
7609
|
+
# [Creating Systems Manager parameters][1] in the *AWS Systems Manager
|
7610
|
+
# User Guide*.
|
7561
7611
|
#
|
7562
7612
|
# <note markdown="1"> The maximum length constraint listed below includes capacity for
|
7563
7613
|
# additional system attributes that are not part of the name. The
|
@@ -7571,7 +7621,7 @@ module Aws::SSM
|
|
7571
7621
|
#
|
7572
7622
|
#
|
7573
7623
|
#
|
7574
|
-
# [1]: https://docs.aws.amazon.com/systems-manager/latest/userguide/sysman-
|
7624
|
+
# [1]: https://docs.aws.amazon.com/systems-manager/latest/userguide/sysman-paramstore-su-create.html
|
7575
7625
|
#
|
7576
7626
|
# @option params [String] :description
|
7577
7627
|
# Information about the parameter that you want to add to the system.
|
@@ -7899,6 +7949,14 @@ module Aws::SSM
|
|
7899
7949
|
# The targets to register with the maintenance window. In other words,
|
7900
7950
|
# the instances to run commands on when the maintenance window runs.
|
7901
7951
|
#
|
7952
|
+
# <note markdown="1"> If a single maintenance window task is registered with multiple
|
7953
|
+
# targets, its task invocations occur sequentially and not in parallel.
|
7954
|
+
# If your task must run on multiple targets at the same time, register a
|
7955
|
+
# task for each target individually and assign each task the same
|
7956
|
+
# priority level.
|
7957
|
+
#
|
7958
|
+
# </note>
|
7959
|
+
#
|
7902
7960
|
# You can specify targets using instance IDs, resource group names, or
|
7903
7961
|
# tags that have been applied to instances.
|
7904
7962
|
#
|
@@ -8271,7 +8329,9 @@ module Aws::SSM
|
|
8271
8329
|
#
|
8272
8330
|
# @option params [required, String] :setting_id
|
8273
8331
|
# The Amazon Resource Name (ARN) of the service setting to reset. The
|
8274
|
-
# setting ID can be `/ssm/
|
8332
|
+
# setting ID can be `/ssm/automation/customer-script-log-destination`,
|
8333
|
+
# `/ssm/automation/customer-script-log-group-name`,
|
8334
|
+
# `/ssm/parameter-store/default-parameter-tier`,
|
8275
8335
|
# `/ssm/parameter-store/high-throughput-enabled`, or
|
8276
8336
|
# `/ssm/managed-instance/activation-tier`. For example,
|
8277
8337
|
# `arn:aws:ssm:us-east-1:111122223333:servicesetting/ssm/parameter-store/high-throughput-enabled`.
|
@@ -10576,6 +10636,10 @@ module Aws::SSM
|
|
10576
10636
|
# `arn:aws:ssm:us-east-1:111122223333:servicesetting/ssm/parameter-store/high-throughput-enabled`.
|
10577
10637
|
# The setting ID can be one of the following.
|
10578
10638
|
#
|
10639
|
+
# * `/ssm/automation/customer-script-log-destination`
|
10640
|
+
#
|
10641
|
+
# * `/ssm/automation/customer-script-log-group-name`
|
10642
|
+
#
|
10579
10643
|
# * `/ssm/parameter-store/default-parameter-tier`
|
10580
10644
|
#
|
10581
10645
|
# * `/ssm/parameter-store/high-throughput-enabled`
|
@@ -10597,6 +10661,12 @@ module Aws::SSM
|
|
10597
10661
|
# `/ssm/managed-instance/activation-tier` setting IDs, the setting value
|
10598
10662
|
# can be true or false.
|
10599
10663
|
#
|
10664
|
+
# For the `/ssm/automation/customer-script-log-destination` setting ID,
|
10665
|
+
# the setting value can be CloudWatch.
|
10666
|
+
#
|
10667
|
+
# For the `/ssm/automation/customer-script-log-group-name` setting ID,
|
10668
|
+
# the setting value can be the name of a CloudWatch Logs log group.
|
10669
|
+
#
|
10600
10670
|
# @return [Struct] Returns an empty {Seahorse::Client::Response response}.
|
10601
10671
|
#
|
10602
10672
|
# @example Request syntax with placeholder values
|
@@ -10628,7 +10698,7 @@ module Aws::SSM
|
|
10628
10698
|
params: params,
|
10629
10699
|
config: config)
|
10630
10700
|
context[:gem_name] = 'aws-sdk-ssm'
|
10631
|
-
context[:gem_version] = '1.
|
10701
|
+
context[:gem_version] = '1.105.0'
|
10632
10702
|
Seahorse::Client::Request.new(handlers, context)
|
10633
10703
|
end
|
10634
10704
|
|
@@ -117,6 +117,7 @@ module Aws::SSM
|
|
117
117
|
BaselineDescription = Shapes::StringShape.new(name: 'BaselineDescription')
|
118
118
|
BaselineId = Shapes::StringShape.new(name: 'BaselineId')
|
119
119
|
BaselineName = Shapes::StringShape.new(name: 'BaselineName')
|
120
|
+
BaselineOverride = Shapes::StructureShape.new(name: 'BaselineOverride')
|
120
121
|
BatchErrorMessage = Shapes::StringShape.new(name: 'BatchErrorMessage')
|
121
122
|
Boolean = Shapes::BooleanShape.new(name: 'Boolean')
|
122
123
|
CalendarNameOrARN = Shapes::StringShape.new(name: 'CalendarNameOrARN')
|
@@ -1417,6 +1418,17 @@ module Aws::SSM
|
|
1417
1418
|
AutomationStepNotFoundException.add_member(:message, Shapes::ShapeRef.new(shape: String, location_name: "Message"))
|
1418
1419
|
AutomationStepNotFoundException.struct_class = Types::AutomationStepNotFoundException
|
1419
1420
|
|
1421
|
+
BaselineOverride.add_member(:operating_system, Shapes::ShapeRef.new(shape: OperatingSystem, location_name: "OperatingSystem"))
|
1422
|
+
BaselineOverride.add_member(:global_filters, Shapes::ShapeRef.new(shape: PatchFilterGroup, location_name: "GlobalFilters"))
|
1423
|
+
BaselineOverride.add_member(:approval_rules, Shapes::ShapeRef.new(shape: PatchRuleGroup, location_name: "ApprovalRules"))
|
1424
|
+
BaselineOverride.add_member(:approved_patches, Shapes::ShapeRef.new(shape: PatchIdList, location_name: "ApprovedPatches"))
|
1425
|
+
BaselineOverride.add_member(:approved_patches_compliance_level, Shapes::ShapeRef.new(shape: PatchComplianceLevel, location_name: "ApprovedPatchesComplianceLevel"))
|
1426
|
+
BaselineOverride.add_member(:rejected_patches, Shapes::ShapeRef.new(shape: PatchIdList, location_name: "RejectedPatches"))
|
1427
|
+
BaselineOverride.add_member(:rejected_patches_action, Shapes::ShapeRef.new(shape: PatchAction, location_name: "RejectedPatchesAction"))
|
1428
|
+
BaselineOverride.add_member(:approved_patches_enable_non_security, Shapes::ShapeRef.new(shape: Boolean, location_name: "ApprovedPatchesEnableNonSecurity"))
|
1429
|
+
BaselineOverride.add_member(:sources, Shapes::ShapeRef.new(shape: PatchSourceList, location_name: "Sources"))
|
1430
|
+
BaselineOverride.struct_class = Types::BaselineOverride
|
1431
|
+
|
1420
1432
|
CalendarNameOrARNList.member = Shapes::ShapeRef.new(shape: CalendarNameOrARN)
|
1421
1433
|
|
1422
1434
|
CancelCommandRequest.add_member(:command_id, Shapes::ShapeRef.new(shape: CommandId, required: true, location_name: "CommandId"))
|
@@ -2338,6 +2350,7 @@ module Aws::SSM
|
|
2338
2350
|
|
2339
2351
|
GetDeployablePatchSnapshotForInstanceRequest.add_member(:instance_id, Shapes::ShapeRef.new(shape: InstanceId, required: true, location_name: "InstanceId"))
|
2340
2352
|
GetDeployablePatchSnapshotForInstanceRequest.add_member(:snapshot_id, Shapes::ShapeRef.new(shape: SnapshotId, required: true, location_name: "SnapshotId"))
|
2353
|
+
GetDeployablePatchSnapshotForInstanceRequest.add_member(:baseline_override, Shapes::ShapeRef.new(shape: BaselineOverride, location_name: "BaselineOverride"))
|
2341
2354
|
GetDeployablePatchSnapshotForInstanceRequest.struct_class = Types::GetDeployablePatchSnapshotForInstanceRequest
|
2342
2355
|
|
2343
2356
|
GetDeployablePatchSnapshotForInstanceResult.add_member(:instance_id, Shapes::ShapeRef.new(shape: InstanceId, location_name: "InstanceId"))
|
data/lib/aws-sdk-ssm/types.rb
CHANGED
@@ -1449,6 +1449,132 @@ module Aws::SSM
|
|
1449
1449
|
include Aws::Structure
|
1450
1450
|
end
|
1451
1451
|
|
1452
|
+
# Defines the basic information about a patch baseline override.
|
1453
|
+
#
|
1454
|
+
# @note When making an API call, you may pass BaselineOverride
|
1455
|
+
# data as a hash:
|
1456
|
+
#
|
1457
|
+
# {
|
1458
|
+
# operating_system: "WINDOWS", # accepts WINDOWS, AMAZON_LINUX, AMAZON_LINUX_2, UBUNTU, REDHAT_ENTERPRISE_LINUX, SUSE, CENTOS, ORACLE_LINUX, DEBIAN, MACOS
|
1459
|
+
# global_filters: {
|
1460
|
+
# patch_filters: [ # required
|
1461
|
+
# {
|
1462
|
+
# key: "ARCH", # required, accepts ARCH, ADVISORY_ID, BUGZILLA_ID, PATCH_SET, PRODUCT, PRODUCT_FAMILY, CLASSIFICATION, CVE_ID, EPOCH, MSRC_SEVERITY, NAME, PATCH_ID, SECTION, PRIORITY, REPOSITORY, RELEASE, SEVERITY, SECURITY, VERSION
|
1463
|
+
# values: ["PatchFilterValue"], # required
|
1464
|
+
# },
|
1465
|
+
# ],
|
1466
|
+
# },
|
1467
|
+
# approval_rules: {
|
1468
|
+
# patch_rules: [ # required
|
1469
|
+
# {
|
1470
|
+
# patch_filter_group: { # required
|
1471
|
+
# patch_filters: [ # required
|
1472
|
+
# {
|
1473
|
+
# key: "ARCH", # required, accepts ARCH, ADVISORY_ID, BUGZILLA_ID, PATCH_SET, PRODUCT, PRODUCT_FAMILY, CLASSIFICATION, CVE_ID, EPOCH, MSRC_SEVERITY, NAME, PATCH_ID, SECTION, PRIORITY, REPOSITORY, RELEASE, SEVERITY, SECURITY, VERSION
|
1474
|
+
# values: ["PatchFilterValue"], # required
|
1475
|
+
# },
|
1476
|
+
# ],
|
1477
|
+
# },
|
1478
|
+
# compliance_level: "CRITICAL", # accepts CRITICAL, HIGH, MEDIUM, LOW, INFORMATIONAL, UNSPECIFIED
|
1479
|
+
# approve_after_days: 1,
|
1480
|
+
# approve_until_date: "PatchStringDateTime",
|
1481
|
+
# enable_non_security: false,
|
1482
|
+
# },
|
1483
|
+
# ],
|
1484
|
+
# },
|
1485
|
+
# approved_patches: ["PatchId"],
|
1486
|
+
# approved_patches_compliance_level: "CRITICAL", # accepts CRITICAL, HIGH, MEDIUM, LOW, INFORMATIONAL, UNSPECIFIED
|
1487
|
+
# rejected_patches: ["PatchId"],
|
1488
|
+
# rejected_patches_action: "ALLOW_AS_DEPENDENCY", # accepts ALLOW_AS_DEPENDENCY, BLOCK
|
1489
|
+
# approved_patches_enable_non_security: false,
|
1490
|
+
# sources: [
|
1491
|
+
# {
|
1492
|
+
# name: "PatchSourceName", # required
|
1493
|
+
# products: ["PatchSourceProduct"], # required
|
1494
|
+
# configuration: "PatchSourceConfiguration", # required
|
1495
|
+
# },
|
1496
|
+
# ],
|
1497
|
+
# }
|
1498
|
+
#
|
1499
|
+
# @!attribute [rw] operating_system
|
1500
|
+
# The operating system rule used by the patch baseline override.
|
1501
|
+
# @return [String]
|
1502
|
+
#
|
1503
|
+
# @!attribute [rw] global_filters
|
1504
|
+
# A set of patch filters, typically used for approval rules.
|
1505
|
+
# @return [Types::PatchFilterGroup]
|
1506
|
+
#
|
1507
|
+
# @!attribute [rw] approval_rules
|
1508
|
+
# A set of rules defining the approval rules for a patch baseline.
|
1509
|
+
# @return [Types::PatchRuleGroup]
|
1510
|
+
#
|
1511
|
+
# @!attribute [rw] approved_patches
|
1512
|
+
# A list of explicitly approved patches for the baseline.
|
1513
|
+
#
|
1514
|
+
# For information about accepted formats for lists of approved patches
|
1515
|
+
# and rejected patches, see [About package name formats for approved
|
1516
|
+
# and rejected patch lists][1] in the *AWS Systems Manager User
|
1517
|
+
# Guide*.
|
1518
|
+
#
|
1519
|
+
#
|
1520
|
+
#
|
1521
|
+
# [1]: https://docs.aws.amazon.com/systems-manager/latest/userguide/patch-manager-approved-rejected-package-name-formats.html
|
1522
|
+
# @return [Array<String>]
|
1523
|
+
#
|
1524
|
+
# @!attribute [rw] approved_patches_compliance_level
|
1525
|
+
# Defines the compliance level for approved patches. When an approved
|
1526
|
+
# patch is reported as missing, this value describes the severity of
|
1527
|
+
# the compliance violation.
|
1528
|
+
# @return [String]
|
1529
|
+
#
|
1530
|
+
# @!attribute [rw] rejected_patches
|
1531
|
+
# A list of explicitly rejected patches for the baseline.
|
1532
|
+
#
|
1533
|
+
# For information about accepted formats for lists of approved patches
|
1534
|
+
# and rejected patches, see [About package name formats for approved
|
1535
|
+
# and rejected patch lists][1] in the *AWS Systems Manager User
|
1536
|
+
# Guide*.
|
1537
|
+
#
|
1538
|
+
#
|
1539
|
+
#
|
1540
|
+
# [1]: https://docs.aws.amazon.com/systems-manager/latest/userguide/patch-manager-approved-rejected-package-name-formats.html
|
1541
|
+
# @return [Array<String>]
|
1542
|
+
#
|
1543
|
+
# @!attribute [rw] rejected_patches_action
|
1544
|
+
# The action for Patch Manager to take on patches included in the
|
1545
|
+
# RejectedPackages list. A patch can be allowed only if it is a
|
1546
|
+
# dependency of another package, or blocked entirely along with
|
1547
|
+
# packages that include it as a dependency.
|
1548
|
+
# @return [String]
|
1549
|
+
#
|
1550
|
+
# @!attribute [rw] approved_patches_enable_non_security
|
1551
|
+
# Indicates whether the list of approved patches includes non-security
|
1552
|
+
# updates that should be applied to the instances. The default value
|
1553
|
+
# is 'false'. Applies to Linux instances only.
|
1554
|
+
# @return [Boolean]
|
1555
|
+
#
|
1556
|
+
# @!attribute [rw] sources
|
1557
|
+
# Information about the patches to use to update the instances,
|
1558
|
+
# including target operating systems and source repositories. Applies
|
1559
|
+
# to Linux instances only.
|
1560
|
+
# @return [Array<Types::PatchSource>]
|
1561
|
+
#
|
1562
|
+
# @see http://docs.aws.amazon.com/goto/WebAPI/ssm-2014-11-06/BaselineOverride AWS API Documentation
|
1563
|
+
#
|
1564
|
+
class BaselineOverride < Struct.new(
|
1565
|
+
:operating_system,
|
1566
|
+
:global_filters,
|
1567
|
+
:approval_rules,
|
1568
|
+
:approved_patches,
|
1569
|
+
:approved_patches_compliance_level,
|
1570
|
+
:rejected_patches,
|
1571
|
+
:rejected_patches_action,
|
1572
|
+
:approved_patches_enable_non_security,
|
1573
|
+
:sources)
|
1574
|
+
SENSITIVE = []
|
1575
|
+
include Aws::Structure
|
1576
|
+
end
|
1577
|
+
|
1452
1578
|
# @note When making an API call, you may pass CancelCommandRequest
|
1453
1579
|
# data as a hash:
|
1454
1580
|
#
|
@@ -3623,8 +3749,8 @@ module Aws::SSM
|
|
3623
3749
|
# @return [Array<String>]
|
3624
3750
|
#
|
3625
3751
|
# @!attribute [rw] approved_patches_compliance_level
|
3626
|
-
# Defines the compliance level for approved patches.
|
3627
|
-
#
|
3752
|
+
# Defines the compliance level for approved patches. When an approved
|
3753
|
+
# patch is reported as missing, this value describes the severity of
|
3628
3754
|
# the compliance violation. The default value is UNSPECIFIED.
|
3629
3755
|
# @return [String]
|
3630
3756
|
#
|
@@ -7753,6 +7879,47 @@ module Aws::SSM
|
|
7753
7879
|
# {
|
7754
7880
|
# instance_id: "InstanceId", # required
|
7755
7881
|
# snapshot_id: "SnapshotId", # required
|
7882
|
+
# baseline_override: {
|
7883
|
+
# operating_system: "WINDOWS", # accepts WINDOWS, AMAZON_LINUX, AMAZON_LINUX_2, UBUNTU, REDHAT_ENTERPRISE_LINUX, SUSE, CENTOS, ORACLE_LINUX, DEBIAN, MACOS
|
7884
|
+
# global_filters: {
|
7885
|
+
# patch_filters: [ # required
|
7886
|
+
# {
|
7887
|
+
# key: "ARCH", # required, accepts ARCH, ADVISORY_ID, BUGZILLA_ID, PATCH_SET, PRODUCT, PRODUCT_FAMILY, CLASSIFICATION, CVE_ID, EPOCH, MSRC_SEVERITY, NAME, PATCH_ID, SECTION, PRIORITY, REPOSITORY, RELEASE, SEVERITY, SECURITY, VERSION
|
7888
|
+
# values: ["PatchFilterValue"], # required
|
7889
|
+
# },
|
7890
|
+
# ],
|
7891
|
+
# },
|
7892
|
+
# approval_rules: {
|
7893
|
+
# patch_rules: [ # required
|
7894
|
+
# {
|
7895
|
+
# patch_filter_group: { # required
|
7896
|
+
# patch_filters: [ # required
|
7897
|
+
# {
|
7898
|
+
# key: "ARCH", # required, accepts ARCH, ADVISORY_ID, BUGZILLA_ID, PATCH_SET, PRODUCT, PRODUCT_FAMILY, CLASSIFICATION, CVE_ID, EPOCH, MSRC_SEVERITY, NAME, PATCH_ID, SECTION, PRIORITY, REPOSITORY, RELEASE, SEVERITY, SECURITY, VERSION
|
7899
|
+
# values: ["PatchFilterValue"], # required
|
7900
|
+
# },
|
7901
|
+
# ],
|
7902
|
+
# },
|
7903
|
+
# compliance_level: "CRITICAL", # accepts CRITICAL, HIGH, MEDIUM, LOW, INFORMATIONAL, UNSPECIFIED
|
7904
|
+
# approve_after_days: 1,
|
7905
|
+
# approve_until_date: "PatchStringDateTime",
|
7906
|
+
# enable_non_security: false,
|
7907
|
+
# },
|
7908
|
+
# ],
|
7909
|
+
# },
|
7910
|
+
# approved_patches: ["PatchId"],
|
7911
|
+
# approved_patches_compliance_level: "CRITICAL", # accepts CRITICAL, HIGH, MEDIUM, LOW, INFORMATIONAL, UNSPECIFIED
|
7912
|
+
# rejected_patches: ["PatchId"],
|
7913
|
+
# rejected_patches_action: "ALLOW_AS_DEPENDENCY", # accepts ALLOW_AS_DEPENDENCY, BLOCK
|
7914
|
+
# approved_patches_enable_non_security: false,
|
7915
|
+
# sources: [
|
7916
|
+
# {
|
7917
|
+
# name: "PatchSourceName", # required
|
7918
|
+
# products: ["PatchSourceProduct"], # required
|
7919
|
+
# configuration: "PatchSourceConfiguration", # required
|
7920
|
+
# },
|
7921
|
+
# ],
|
7922
|
+
# },
|
7756
7923
|
# }
|
7757
7924
|
#
|
7758
7925
|
# @!attribute [rw] instance_id
|
@@ -7764,11 +7931,16 @@ module Aws::SSM
|
|
7764
7931
|
# The user-defined snapshot ID.
|
7765
7932
|
# @return [String]
|
7766
7933
|
#
|
7934
|
+
# @!attribute [rw] baseline_override
|
7935
|
+
# Defines the basic information about a patch baseline override.
|
7936
|
+
# @return [Types::BaselineOverride]
|
7937
|
+
#
|
7767
7938
|
# @see http://docs.aws.amazon.com/goto/WebAPI/ssm-2014-11-06/GetDeployablePatchSnapshotForInstanceRequest AWS API Documentation
|
7768
7939
|
#
|
7769
7940
|
class GetDeployablePatchSnapshotForInstanceRequest < Struct.new(
|
7770
7941
|
:instance_id,
|
7771
|
-
:snapshot_id
|
7942
|
+
:snapshot_id,
|
7943
|
+
:baseline_override)
|
7772
7944
|
SENSITIVE = []
|
7773
7945
|
include Aws::Structure
|
7774
7946
|
end
|
@@ -9227,6 +9399,8 @@ module Aws::SSM
|
|
9227
9399
|
#
|
9228
9400
|
# @!attribute [rw] setting_id
|
9229
9401
|
# The ID of the service setting to get. The setting ID can be
|
9402
|
+
# `/ssm/automation/customer-script-log-destination`,
|
9403
|
+
# `/ssm/automation/customer-script-log-group-name`,
|
9230
9404
|
# `/ssm/parameter-store/default-parameter-tier`,
|
9231
9405
|
# `/ssm/parameter-store/high-throughput-enabled`, or
|
9232
9406
|
# `/ssm/managed-instance/activation-tier`.
|
@@ -9684,6 +9858,11 @@ module Aws::SSM
|
|
9684
9858
|
#
|
9685
9859
|
# "InstanceIds"\|"AgentVersion"\|"PingStatus"\|"PlatformTypes"\|"ActivationIds"\|"IamRole"\|"ResourceType"\|"AssociationStatus"\|"Tag
|
9686
9860
|
# Key"
|
9861
|
+
#
|
9862
|
+
# `Tag key` is not a valid filter. You must specify either `tag-key`
|
9863
|
+
# or `tag:keyname` and a string. Here are some valid examples:
|
9864
|
+
# tag-key, tag:123, tag:al!, tag:Windows. Here are some *invalid*
|
9865
|
+
# examples: tag-keys, Tag Key, tag:, tagKey, abc:keyname.
|
9687
9866
|
# @return [String]
|
9688
9867
|
#
|
9689
9868
|
# @!attribute [rw] values
|
@@ -14808,13 +14987,14 @@ module Aws::SSM
|
|
14808
14987
|
# The number of days after the release date of each patch matched by
|
14809
14988
|
# the rule that the patch is marked as approved in the patch baseline.
|
14810
14989
|
# For example, a value of `7` means that patches are approved seven
|
14811
|
-
# days after they are released. Not supported on
|
14990
|
+
# days after they are released. Not supported on Debian Server or
|
14991
|
+
# Ubuntu Server.
|
14812
14992
|
# @return [Integer]
|
14813
14993
|
#
|
14814
14994
|
# @!attribute [rw] approve_until_date
|
14815
14995
|
# The cutoff date for auto approval of released patches. Any patches
|
14816
14996
|
# released on or before this date are installed automatically. Not
|
14817
|
-
# supported on Ubuntu Server.
|
14997
|
+
# supported on Debian Server or Ubuntu Server.
|
14818
14998
|
#
|
14819
14999
|
# Enter dates in the format `YYYY-MM-DD`. For example, `2020-12-31`.
|
14820
15000
|
# @return [String]
|
@@ -15198,7 +15378,11 @@ module Aws::SSM
|
|
15198
15378
|
# (case-insensitive).
|
15199
15379
|
#
|
15200
15380
|
# * Parameter names can include only the following symbols and
|
15201
|
-
# letters: `a-zA-Z0-9_
|
15381
|
+
# letters: `a-zA-Z0-9_.-`
|
15382
|
+
#
|
15383
|
+
# In addition, the slash character ( / ) is used to delineate
|
15384
|
+
# hierarchies in parameter names. For example:
|
15385
|
+
# `/Dev/Production/East/Project-ABC/MyParameter`
|
15202
15386
|
#
|
15203
15387
|
# * A parameter name can't include spaces.
|
15204
15388
|
#
|
@@ -15206,8 +15390,8 @@ module Aws::SSM
|
|
15206
15390
|
# levels.
|
15207
15391
|
#
|
15208
15392
|
# For additional information about valid values for parameter names,
|
15209
|
-
# see [
|
15210
|
-
#
|
15393
|
+
# see [Creating Systems Manager parameters][1] in the *AWS Systems
|
15394
|
+
# Manager User Guide*.
|
15211
15395
|
#
|
15212
15396
|
# <note markdown="1"> The maximum length constraint listed below includes capacity for
|
15213
15397
|
# additional system attributes that are not part of the name. The
|
@@ -15221,7 +15405,7 @@ module Aws::SSM
|
|
15221
15405
|
#
|
15222
15406
|
#
|
15223
15407
|
#
|
15224
|
-
# [1]: https://docs.aws.amazon.com/systems-manager/latest/userguide/sysman-
|
15408
|
+
# [1]: https://docs.aws.amazon.com/systems-manager/latest/userguide/sysman-paramstore-su-create.html
|
15225
15409
|
# @return [String]
|
15226
15410
|
#
|
15227
15411
|
# @!attribute [rw] description
|
@@ -15587,6 +15771,14 @@ module Aws::SSM
|
|
15587
15771
|
# The targets to register with the maintenance window. In other words,
|
15588
15772
|
# the instances to run commands on when the maintenance window runs.
|
15589
15773
|
#
|
15774
|
+
# <note markdown="1"> If a single maintenance window task is registered with multiple
|
15775
|
+
# targets, its task invocations occur sequentially and not in
|
15776
|
+
# parallel. If your task must run on multiple targets at the same
|
15777
|
+
# time, register a task for each target individually and assign each
|
15778
|
+
# task the same priority level.
|
15779
|
+
#
|
15780
|
+
# </note>
|
15781
|
+
#
|
15590
15782
|
# You can specify targets using instance IDs, resource group names, or
|
15591
15783
|
# tags that have been applied to instances.
|
15592
15784
|
#
|
@@ -16005,7 +16197,9 @@ module Aws::SSM
|
|
16005
16197
|
#
|
16006
16198
|
# @!attribute [rw] setting_id
|
16007
16199
|
# The Amazon Resource Name (ARN) of the service setting to reset. The
|
16008
|
-
# setting ID can be `/ssm/
|
16200
|
+
# setting ID can be `/ssm/automation/customer-script-log-destination`,
|
16201
|
+
# `/ssm/automation/customer-script-log-group-name`,
|
16202
|
+
# `/ssm/parameter-store/default-parameter-tier`,
|
16009
16203
|
# `/ssm/parameter-store/high-throughput-enabled`, or
|
16010
16204
|
# `/ssm/managed-instance/activation-tier`. For example,
|
16011
16205
|
# `arn:aws:ssm:us-east-1:111122223333:servicesetting/ssm/parameter-store/high-throughput-enabled`.
|
@@ -19997,6 +20191,10 @@ module Aws::SSM
|
|
19997
20191
|
# `arn:aws:ssm:us-east-1:111122223333:servicesetting/ssm/parameter-store/high-throughput-enabled`.
|
19998
20192
|
# The setting ID can be one of the following.
|
19999
20193
|
#
|
20194
|
+
# * `/ssm/automation/customer-script-log-destination`
|
20195
|
+
#
|
20196
|
+
# * `/ssm/automation/customer-script-log-group-name`
|
20197
|
+
#
|
20000
20198
|
# * `/ssm/parameter-store/default-parameter-tier`
|
20001
20199
|
#
|
20002
20200
|
# * `/ssm/parameter-store/high-throughput-enabled`
|
@@ -20018,6 +20216,12 @@ module Aws::SSM
|
|
20018
20216
|
# For the `/ssm/parameter-store/high-throughput-enabled`, and
|
20019
20217
|
# `/ssm/managed-instance/activation-tier` setting IDs, the setting
|
20020
20218
|
# value can be true or false.
|
20219
|
+
#
|
20220
|
+
# For the `/ssm/automation/customer-script-log-destination` setting
|
20221
|
+
# ID, the setting value can be CloudWatch.
|
20222
|
+
#
|
20223
|
+
# For the `/ssm/automation/customer-script-log-group-name` setting ID,
|
20224
|
+
# the setting value can be the name of a CloudWatch Logs log group.
|
20021
20225
|
# @return [String]
|
20022
20226
|
#
|
20023
20227
|
# @see http://docs.aws.amazon.com/goto/WebAPI/ssm-2014-11-06/UpdateServiceSettingRequest AWS API Documentation
|
metadata
CHANGED
@@ -1,14 +1,14 @@
|
|
1
1
|
--- !ruby/object:Gem::Specification
|
2
2
|
name: aws-sdk-ssm
|
3
3
|
version: !ruby/object:Gem::Version
|
4
|
-
version: 1.
|
4
|
+
version: 1.105.0
|
5
5
|
platform: ruby
|
6
6
|
authors:
|
7
7
|
- Amazon Web Services
|
8
8
|
autorequire:
|
9
9
|
bindir: bin
|
10
10
|
cert_chain: []
|
11
|
-
date: 2021-
|
11
|
+
date: 2021-03-01 00:00:00.000000000 Z
|
12
12
|
dependencies:
|
13
13
|
- !ruby/object:Gem::Dependency
|
14
14
|
name: aws-sdk-core
|