datadog_api_client 2.22.0 → 2.23.0

data/.generator/schemas/v2/openapi.yaml

@@ -11736,15 +11736,17 @@ components:
       - DESCENDING
     LogsStorageTier:
       default: indexes
-      description: Specifies storage type as indexes or online-archives
+      description: Specifies storage type as indexes, online-archives or flex
       enum:
       - indexes
       - online-archives
+      - flex
       example: indexes
       type: string
       x-enum-varnames:
       - INDEXES
       - ONLINE_ARCHIVES
+      - FLEX
     LogsWarning:
       description: A warning message indicating something that went wrong with the
         query
@@ -16174,12 +16176,18 @@ components:
       required:
       - data
       type: object
-    RetentionFilterResponse:
+    RetentionFilterCreateResponse:
       description: The retention filters definition.
       properties:
         data:
           $ref: '#/components/schemas/RetentionFilter'
       type: object
+    RetentionFilterResponse:
+      description: The retention filters definition.
+      properties:
+        data:
+          $ref: '#/components/schemas/RetentionFilterAll'
+      type: object
     RetentionFilterType:
       default: spans-sampling-processor
       description: The type of retention filter. The value should always be spans-sampling-processor.
@@ -18231,6 +18239,14 @@ components:
           description: User ID of the user who created the rule.
           format: int64
           type: integer
+        defaultTags:
+          description: Default Tags for default rules (included in tags)
+          example:
+          - security:attacks
+          items:
+            description: Default Tag.
+            type: string
+          type: array
         deprecationDate:
           description: When the rule will be deprecated, timestamp in milliseconds.
           format: int64
@@ -22466,6 +22482,7 @@ components:
       description: Included resources related to the team membership
       oneOf:
       - $ref: '#/components/schemas/User'
+      - $ref: '#/components/schemas/Team'
     UserTeamPermission:
       description: A user's permissions for a given team
       properties:
@@ -22715,20 +22732,28 @@ components:
         authorizationCode:
           authorizationUrl: /oauth2/v1/authorize
           scopes:
+            apm_read: Read and query APM and Trace Analytics.
             apm_service_catalog_read: View service catalog and service definitions.
             apm_service_catalog_write: Add, modify, and delete service catalog definitions
               when those definitions are maintained by Datadog.
-            cases_read: Read all cases data.
-            cases_write: Create, update and delete cases data.
             ci_visibility_pipelines_write: Create CI Visibility pipeline spans using
               the API.
             ci_visibility_read: View CI Visibility.
+            cloud_cost_management_read: View Cloud Cost pages. This does not restrict
+              access to the cloud cost data source in dashboards and notebooks.
+            cloud_cost_management_write: Configure cloud cost accounts and global
+              customizations.
+            continuous_profiler_pgo_read: Read and query Continuous Profiler data
+              for Profile-Guided Optimization (PGO).
             create_webhooks: Create webhooks integrations.
             dashboards_public_share: Generate public and authenticated links to share
               dashboards or embeddable graphs externally.
             dashboards_read: View dashboards.
             dashboards_write: Create and change dashboards.
+            data_scanner_read: View Data Scanner configurations.
+            data_scanner_write: Edit Data Scanner configurations.
             events_read: Read Events data.
+            hosts_read: List hosts and their attributes.
             incident_notification_settings_write: Configure Incidents Notification
               settings.
             incident_read: View incidents in Datadog.
@@ -22736,10 +22761,15 @@ components:
             incident_write: Create, view, and manage incidents in Datadog.
             metrics_read: View custom metrics.
             monitors_downtime: Set downtimes to suppress alerts from any monitor in
-              an organization. Mute and unmute hosts. The ability to write monitors
+              an organization. Mute and unmute monitors. The ability to write monitors
               is not required to set downtimes.
             monitors_read: View monitors.
             monitors_write: Edit and delete individual monitors.
+            org_management: Edit org configurations, including authentication and
+              certain security preferences such as configuring SAML, renaming an org,
+              configuring allowed login methods, creating child orgs, subscribing
+              & unsubscribing from apps in the marketplace, and enabling & disabling
+              Remote Configuration for the entire organization.
             security_monitoring_filters_read: Read Security Filters.
             security_monitoring_filters_write: Create, edit, and delete Security Filters.
             security_monitoring_findings_read: View CSPM Findings.
@@ -23321,7 +23351,7 @@ paths:
           content:
             application/json:
               schema:
-                $ref: '#/components/schemas/RetentionFilterResponse'
+                $ref: '#/components/schemas/RetentionFilterCreateResponse'
           description: OK
         '400':
           $ref: '#/components/responses/BadRequestResponse'
@@ -23740,10 +23770,6 @@ paths:
           description: Authentication Error
         '429':
           $ref: '#/components/responses/TooManyRequestsResponse'
-      security:
-      - apiKeyAuth: []
-        appKeyAuth: []
-      - AuthZ: []
       summary: List all AuthN Mappings
       tags:
       - AuthN Mappings
@@ -23784,11 +23810,6 @@ paths:
           description: Not Found
         '429':
           $ref: '#/components/responses/TooManyRequestsResponse'
-      security:
-      - apiKeyAuth: []
-        appKeyAuth: []
-      - AuthZ:
-        - user_access_manage
       summary: Create an AuthN Mapping
       tags:
       - AuthN Mappings
@@ -23926,7 +23947,7 @@ paths:
       operationId: SearchCases
       parameters:
       - $ref: '#/components/parameters/PageSize'
-      - $ref: '#/components/parameters/PageOffset'
+      - $ref: '#/components/parameters/PageNumber'
       - $ref: '#/components/parameters/CaseSortableFieldParameter'
       - description: Search query
         in: query
@@ -23959,17 +23980,12 @@ paths:
           $ref: '#/components/responses/NotFoundResponse'
         '429':
           $ref: '#/components/responses/TooManyRequestsResponse'
-      security:
-      - apiKeyAuth: []
-        appKeyAuth: []
-      - AuthZ:
-        - cases_read
       summary: Search cases
       tags:
       - Case Management
       x-pagination:
         limitParam: page[size]
-        pageOffsetParam: page[offset]
+        pageParam: page[number]
         resultsPath: data
     post:
       description: Create a Case
@@ -23998,11 +24014,6 @@ paths:
           $ref: '#/components/responses/NotFoundResponse'
         '429':
           $ref: '#/components/responses/TooManyRequestsResponse'
-      security:
-      - apiKeyAuth: []
-        appKeyAuth: []
-      - AuthZ:
-        - cases_write
       summary: Create a case
       tags:
       - Case Management
@@ -24027,11 +24038,6 @@ paths:
           $ref: '#/components/responses/NotFoundResponse'
         '429':
           $ref: '#/components/responses/TooManyRequestsResponse'
-      security:
-      - apiKeyAuth: []
-        appKeyAuth: []
-      - AuthZ:
-        - cases_read
       summary: Get all projects
       tags:
       - Case Management
@@ -24062,11 +24068,6 @@ paths:
           $ref: '#/components/responses/NotFoundResponse'
         '429':
           $ref: '#/components/responses/TooManyRequestsResponse'
-      security:
-      - apiKeyAuth: []
-        appKeyAuth: []
-      - AuthZ:
-        - cases_write
       summary: Create a project
       tags:
       - Case Management
@@ -24089,11 +24090,6 @@ paths:
           description: API error response
         '429':
           $ref: '#/components/responses/TooManyRequestsResponse'
-      security:
-      - apiKeyAuth: []
-        appKeyAuth: []
-      - AuthZ:
-        - cases_write
       summary: Remove a project
       tags:
       - Case Management
@@ -24119,11 +24115,6 @@ paths:
           $ref: '#/components/responses/NotFoundResponse'
         '429':
           $ref: '#/components/responses/TooManyRequestsResponse'
-      security:
-      - apiKeyAuth: []
-        appKeyAuth: []
-      - AuthZ:
-        - cases_read
       summary: Get the details of a project
       tags:
       - Case Management
@@ -24150,11 +24141,6 @@ paths:
           $ref: '#/components/responses/NotFoundResponse'
         '429':
           $ref: '#/components/responses/TooManyRequestsResponse'
-      security:
-      - apiKeyAuth: []
-        appKeyAuth: []
-      - AuthZ:
-        - cases_read
       summary: Get the details of a case
       tags:
       - Case Management
@@ -24188,11 +24174,6 @@ paths:
           $ref: '#/components/responses/NotFoundResponse'
         '429':
           $ref: '#/components/responses/TooManyRequestsResponse'
-      security:
-      - apiKeyAuth: []
-        appKeyAuth: []
-      - AuthZ:
-        - cases_write
       summary: Archive case
       tags:
       - Case Management
@@ -24226,11 +24207,6 @@ paths:
           $ref: '#/components/responses/NotFoundResponse'
         '429':
           $ref: '#/components/responses/TooManyRequestsResponse'
-      security:
-      - apiKeyAuth: []
-        appKeyAuth: []
-      - AuthZ:
-        - cases_write
       summary: Assign case
       tags:
       - Case Management
@@ -24264,11 +24240,6 @@ paths:
           $ref: '#/components/responses/NotFoundResponse'
         '429':
           $ref: '#/components/responses/TooManyRequestsResponse'
-      security:
-      - apiKeyAuth: []
-        appKeyAuth: []
-      - AuthZ:
-        - cases_write
       summary: Update case priority
       tags:
       - Case Management
@@ -24302,11 +24273,6 @@ paths:
           $ref: '#/components/responses/NotFoundResponse'
         '429':
           $ref: '#/components/responses/TooManyRequestsResponse'
-      security:
-      - apiKeyAuth: []
-        appKeyAuth: []
-      - AuthZ:
-        - cases_write
       summary: Update case status
       tags:
       - Case Management
@@ -24340,11 +24306,6 @@ paths:
           $ref: '#/components/responses/NotFoundResponse'
         '429':
           $ref: '#/components/responses/TooManyRequestsResponse'
-      security:
-      - apiKeyAuth: []
-        appKeyAuth: []
-      - AuthZ:
-        - cases_write
       summary: Unarchive case
       tags:
       - Case Management
@@ -24378,11 +24339,6 @@ paths:
           $ref: '#/components/responses/NotFoundResponse'
         '429':
           $ref: '#/components/responses/TooManyRequestsResponse'
-      security:
-      - apiKeyAuth: []
-        appKeyAuth: []
-      - AuthZ:
-        - cases_write
       summary: Unassign case
       tags:
       - Case Management
@@ -24956,6 +24912,11 @@ paths:
           description: Forbidden
         '429':
           $ref: '#/components/responses/TooManyRequestsResponse'
+      security:
+      - apiKeyAuth: []
+        appKeyAuth: []
+      - AuthZ:
+        - cloud_cost_management_read
       summary: List Cloud Cost Management AWS CUR configs
       tags:
       - Cloud Cost Management
@@ -24993,6 +24954,11 @@ paths:
           description: Forbidden
         '429':
           $ref: '#/components/responses/TooManyRequestsResponse'
+      security:
+      - apiKeyAuth: []
+        appKeyAuth: []
+      - AuthZ:
+        - cloud_cost_management_write
       summary: Create Cloud Cost Management AWS CUR config
       tags:
       - Cloud Cost Management
@@ -25023,6 +24989,11 @@ paths:
           description: Not Found
         '429':
           $ref: '#/components/responses/TooManyRequestsResponse'
+      security:
+      - apiKeyAuth: []
+        appKeyAuth: []
+      - AuthZ:
+        - cloud_cost_management_write
       summary: Delete Cloud Cost Management AWS CUR config
       tags:
       - Cloud Cost Management
@@ -25056,6 +25027,11 @@ paths:
           description: Forbidden
         '429':
           $ref: '#/components/responses/TooManyRequestsResponse'
+      security:
+      - apiKeyAuth: []
+        appKeyAuth: []
+      - AuthZ:
+        - cloud_cost_management_write
       summary: Update Cloud Cost Management AWS CUR config
       tags:
       - Cloud Cost Management
@@ -25097,6 +25073,11 @@ paths:
           description: Forbidden
         '429':
           $ref: '#/components/responses/TooManyRequestsResponse'
+      security:
+      - apiKeyAuth: []
+        appKeyAuth: []
+      - AuthZ:
+        - cloud_cost_management_read
       summary: List related AWS accounts
       tags:
       - Cloud Cost Management
@@ -25123,6 +25104,11 @@ paths:
           description: Forbidden
         '429':
           $ref: '#/components/responses/TooManyRequestsResponse'
+      security:
+      - apiKeyAuth: []
+        appKeyAuth: []
+      - AuthZ:
+        - cloud_cost_management_read
       summary: List Cloud Cost Management Azure configs
       tags:
       - Cloud Cost Management
@@ -25160,6 +25146,11 @@ paths:
           description: Forbidden
         '429':
           $ref: '#/components/responses/TooManyRequestsResponse'
+      security:
+      - apiKeyAuth: []
+        appKeyAuth: []
+      - AuthZ:
+        - cloud_cost_management_write
       summary: Create Cloud Cost Management Azure configs
       tags:
       - Cloud Cost Management
@@ -25190,6 +25181,11 @@ paths:
           description: Not Found
         '429':
           $ref: '#/components/responses/TooManyRequestsResponse'
+      security:
+      - apiKeyAuth: []
+        appKeyAuth: []
+      - AuthZ:
+        - cloud_cost_management_write
       summary: Delete Cloud Cost Management Azure config
       tags:
       - Cloud Cost Management
@@ -25229,6 +25225,11 @@ paths:
           description: Forbidden
         '429':
           $ref: '#/components/responses/TooManyRequestsResponse'
+      security:
+      - apiKeyAuth: []
+        appKeyAuth: []
+      - AuthZ:
+        - cloud_cost_management_write
       summary: Update Cloud Cost Management Azure config
       tags:
       - Cloud Cost Management
@@ -25255,6 +25256,11 @@ paths:
           description: Forbidden
         '429':
           $ref: '#/components/responses/TooManyRequestsResponse'
+      security:
+      - apiKeyAuth: []
+        appKeyAuth: []
+      - AuthZ:
+        - cloud_cost_management_read
       summary: Cloud Cost Enabled
       tags:
       - Cloud Cost Management
@@ -25314,7 +25320,8 @@ paths:
         end_month)\ncursor := response.metadata.pagination.next_record_id\nWHILE cursor
         != null BEGIN\n  sleep(5 seconds)  # Avoid running into rate limit\n  response
         := GetMonthlyCostAttribution(start_month, end_month, next_record_id=cursor)\n
-        \ cursor := response.metadata.pagination.next_record_id\nEND\n```"
+        \ cursor := response.metadata.pagination.next_record_id\nEND\n```\n\nThis
+        endpoint is only accessible for [parent-level organizations](https://docs.datadoghq.com/account_management/multi_organization/)."
       operationId: GetMonthlyCostAttribution
       parameters:
       - description: 'Datetime in ISO-8601 format, UTC, precise to month: `[YYYY-MM]`
@@ -26239,11 +26246,6 @@ paths:
           $ref: '#/components/responses/NotAuthorizedResponse'
         '429':
           $ref: '#/components/responses/TooManyRequestsResponse'
-      security:
-      - apiKeyAuth: []
-        appKeyAuth: []
-      - AuthZ:
-        - events_read
       summary: Search events
       tags:
       - Events
@@ -28005,6 +28007,11 @@ paths:
           $ref: '#/components/responses/NotFoundResponse'
         '429':
           $ref: '#/components/responses/TooManyRequestsResponse'
+      security:
+      - apiKeyAuth: []
+        appKeyAuth: []
+      - AuthZ:
+        - org_management
       summary: Get IP Allowlist
       tags:
       - IP Allowlist
@@ -28032,6 +28039,11 @@ paths:
           $ref: '#/components/responses/NotFoundResponse'
         '429':
           $ref: '#/components/responses/TooManyRequestsResponse'
+      security:
+      - apiKeyAuth: []
+        appKeyAuth: []
+      - AuthZ:
+        - org_management
       summary: Update IP Allowlist
       tags:
       - IP Allowlist
@@ -28312,10 +28324,6 @@ paths:
           description: Forbidden
         '429':
           $ref: '#/components/responses/TooManyRequestsResponse'
-      security:
-      - apiKeyAuth: []
-        appKeyAuth: []
-      - AuthZ: []
       summary: Get archive order
       tags:
       - Logs Archives
@@ -28388,10 +28396,6 @@ paths:
           description: Forbidden
         '429':
           $ref: '#/components/responses/TooManyRequestsResponse'
-      security:
-      - apiKeyAuth: []
-        appKeyAuth: []
-      - AuthZ: []
       summary: Get all archives
       tags:
       - Logs Archives
@@ -28494,10 +28498,6 @@ paths:
           description: Not found
         '429':
           $ref: '#/components/responses/TooManyRequestsResponse'
-      security:
-      - apiKeyAuth: []
-        appKeyAuth: []
-      - AuthZ: []
       summary: Get an archive
       tags:
       - Logs Archives
@@ -28620,10 +28620,6 @@ paths:
           description: Not found
         '429':
           $ref: '#/components/responses/TooManyRequestsResponse'
-      security:
-      - apiKeyAuth: []
-        appKeyAuth: []
-      - AuthZ: []
       summary: List read roles for an archive
       tags:
       - Logs Archives
@@ -28810,10 +28806,6 @@ paths:
           $ref: '#/components/responses/NotAuthorizedResponse'
         '429':
           $ref: '#/components/responses/TooManyRequestsResponse'
-      security:
-      - apiKeyAuth: []
-        appKeyAuth: []
-      - AuthZ: []
       summary: Get all log-based metrics
       tags:
       - Logs Metrics
@@ -28885,10 +28877,6 @@ paths:
           $ref: '#/components/responses/NotFoundResponse'
         '429':
           $ref: '#/components/responses/TooManyRequestsResponse'
-      security:
-      - apiKeyAuth: []
-        appKeyAuth: []
-      - AuthZ: []
       summary: Get a log-based metric
       tags:
       - Logs Metrics
@@ -29355,11 +29343,6 @@ paths:
               schema:
                 $ref: '#/components/schemas/APIErrorResponse'
           description: Too Many Requests
-      security:
-      - apiKeyAuth: []
-        appKeyAuth: []
-      - AuthZ:
-        - metrics_read
       summary: List active tags and aggregations
       tags:
       - Metrics
@@ -29539,10 +29522,6 @@ paths:
               schema:
                 $ref: '#/components/schemas/APIErrorResponse'
           description: Too Many Requests
-      security:
-      - apiKeyAuth: []
-        appKeyAuth: []
-      - AuthZ: []
       summary: Tag Configuration Cardinality Estimator
       tags:
       - Metrics
@@ -29774,10 +29753,6 @@ paths:
               schema:
                 $ref: '#/components/schemas/APIErrorResponse'
           description: Too Many Requests
-      security:
-      - apiKeyAuth: []
-        appKeyAuth: []
-      - AuthZ: []
       summary: List distinct metric volumes by metric name
       tags:
       - Metrics
@@ -30673,7 +30648,7 @@ paths:
           $ref: '#/components/responses/TooManyRequestsResponse'
       summary: Get all CSM Threats Agent rules
       tags:
-      - Cloud Workload Security
+      - CSM Threats
     post:
       description: Create a new Cloud Security Management Threats Agent rule with
         the given parameters.
@@ -30702,7 +30677,7 @@ paths:
           $ref: '#/components/responses/TooManyRequestsResponse'
       summary: Create a CSM Threats Agent rule
       tags:
-      - Cloud Workload Security
+      - CSM Threats
       x-codegen-request-body-name: body
   /api/v2/remote_config/products/cws/agent_rules/{agent_rule_id}:
     delete:
@@ -30721,7 +30696,7 @@ paths:
           $ref: '#/components/responses/TooManyRequestsResponse'
       summary: Delete a CSM Threats Agent rule
       tags:
-      - Cloud Workload Security
+      - CSM Threats
     get:
       description: Get the details of a specific Cloud Security Management Threats
         Agent rule.
@@ -30743,7 +30718,7 @@ paths:
           $ref: '#/components/responses/TooManyRequestsResponse'
       summary: Get a CSM Threats Agent rule
       tags:
-      - Cloud Workload Security
+      - CSM Threats
     patch:
       description: 'Update a specific Cloud Security Management Threats Agent rule.
 
@@ -30777,7 +30752,7 @@ paths:
           $ref: '#/components/responses/TooManyRequestsResponse'
       summary: Update a CSM Threats Agent rule
       tags:
-      - Cloud Workload Security
+      - CSM Threats
       x-codegen-request-body-name: body
   /api/v2/remote_config/products/cws/policy/download:
     get:
@@ -30803,7 +30778,7 @@ paths:
           $ref: '#/components/responses/TooManyRequestsResponse'
       summary: Get the latest CSM Threats policy
       tags:
-      - Cloud Workload Security
+      - CSM Threats
   /api/v2/restriction_policy/{resource_id}:
     delete:
       description: Deletes the restriction policy associated with a specified resource.
@@ -30857,12 +30832,12 @@ paths:
 
         Restriction policies can be applied to the following resources:
 
-        - Connections: `connection`
-
         - Dashboards: `dashboard`
 
         - Notebooks: `notebook`
 
+        - Powerpacks: `powerpack`
+
         - Security Rules: `security-rule`
 
         - Service Level Objectives: `slo`
@@ -30874,12 +30849,12 @@ paths:
 
         -------------------------|--------------------------
 
-        Connections              | `viewer`, `editor`, `resolver`
-
         Dashboards               | `viewer`, `editor`
 
         Notebooks                | `viewer`, `editor`
 
+        Powerpacks               | `viewer`, `editor`
+
         Security Rules           | `viewer`, `editor`
 
         Service Level Objectives | `viewer`, `editor`'
@@ -32088,7 +32063,7 @@ paths:
           $ref: '#/components/responses/TooManyRequestsResponse'
       summary: Get the latest Cloud Workload Security policy
       tags:
-      - Cloud Workload Security
+      - CSM Threats
   /api/v2/security_monitoring/cloud_workload_security/agent_rules:
     get:
       description: Get the list of Agent rules.
@@ -32106,7 +32081,7 @@ paths:
           $ref: '#/components/responses/TooManyRequestsResponse'
       summary: Get all Cloud Workload Security Agent rules
       tags:
-      - Cloud Workload Security
+      - CSM Threats
     post:
       description: Create a new Agent rule with the given parameters.
       operationId: CreateCloudWorkloadSecurityAgentRule
@@ -32134,7 +32109,7 @@ paths:
           $ref: '#/components/responses/TooManyRequestsResponse'
       summary: Create a Cloud Workload Security Agent rule
       tags:
-      - Cloud Workload Security
+      - CSM Threats
       x-codegen-request-body-name: body
   /api/v2/security_monitoring/cloud_workload_security/agent_rules/{agent_rule_id}:
     delete:
@@ -32153,7 +32128,7 @@ paths:
           $ref: '#/components/responses/TooManyRequestsResponse'
       summary: Delete a Cloud Workload Security Agent rule
       tags:
-      - Cloud Workload Security
+      - CSM Threats
     get:
       description: Get the details of a specific Agent rule.
       operationId: GetCloudWorkloadSecurityAgentRule
@@ -32174,7 +32149,7 @@ paths:
           $ref: '#/components/responses/TooManyRequestsResponse'
       summary: Get a Cloud Workload Security Agent rule
       tags:
-      - Cloud Workload Security
+      - CSM Threats
     patch:
       description: 'Update a specific Agent rule.
 
@@ -32208,7 +32183,7 @@ paths:
           $ref: '#/components/responses/TooManyRequestsResponse'
       summary: Update a Cloud Workload Security Agent rule
       tags:
-      - Cloud Workload Security
+      - CSM Threats
       x-codegen-request-body-name: body
   /api/v2/security_monitoring/configuration/security_filters:
     get:
@@ -32648,7 +32623,10 @@ paths:
         must be included. For example, when modifying a query all queries must be
         included.
 
-        Default rules can only be updated to be enabled and to change notifications.'
+        Default rules can only be updated to be enabled, to change notifications,
+        or to update
+
+        the tags (default tags cannot be removed).'
       operationId: UpdateSecurityMonitoringRule
       parameters:
       - $ref: '#/components/parameters/SecurityMonitoringRuleID'
@@ -34070,6 +34048,11 @@ paths:
           $ref: '#/components/responses/ForbiddenResponse'
         '429':
           $ref: '#/components/responses/TooManyRequestsResponse'
+      security:
+      - apiKeyAuth: []
+        appKeyAuth: []
+      - AuthZ:
+        - apm_read
       summary: Aggregate spans
       tags:
       - Spans
@@ -34151,6 +34134,11 @@ paths:
           $ref: '#/components/responses/SpansUnprocessableEntityResponse'
         '429':
           $ref: '#/components/responses/SpansTooManyRequestsResponse'
+      security:
+      - apiKeyAuth: []
+        appKeyAuth: []
+      - AuthZ:
+        - apm_read
       summary: Get a list of spans
       tags:
       - Spans
@@ -34194,6 +34182,11 @@ paths:
           $ref: '#/components/responses/SpansUnprocessableEntityResponse'
         '429':
           $ref: '#/components/responses/SpansTooManyRequestsResponse'
+      security:
+      - apiKeyAuth: []
+        appKeyAuth: []
+      - AuthZ:
+        - apm_read
       summary: Search spans
       tags:
       - Spans
@@ -35214,7 +35207,10 @@ paths:
 
         [`/historical_cost`](https://docs.datadoghq.com/api/latest/usage-metering/#get-historical-cost-across-your-account)
 
-        instead.'
+        instead.
+
+
+        This endpoint is only accessible for [parent-level organizations](https://docs.datadoghq.com/account_management/multi_organization/).'
       operationId: GetCostByOrg
       parameters:
       - description: 'Datetime in ISO-8601 format, UTC, precise to month: `[YYYY-MM]`
@@ -35274,7 +35270,10 @@ paths:
 
         and is delayed by up to 72 hours from when it was incurred.
 
-        To access historical costs prior to this, use the `/historical_cost` endpoint.'
+        To access historical costs prior to this, use the `/historical_cost` endpoint.
+
+
+        This endpoint is only accessible for [parent-level organizations](https://docs.datadoghq.com/account_management/multi_organization/).'
       operationId: GetEstimatedCostByOrg
       parameters:
       - description: String to specify whether cost is broken down at a parent-org
@@ -35359,7 +35358,10 @@ paths:
       description: 'Get historical cost across multi-org and single root-org accounts.
 
         Cost data for a given month becomes available no later than the 16th of the
-        following month.'
+        following month.
+
+
+        This endpoint is only accessible for [parent-level organizations](https://docs.datadoghq.com/account_management/multi_organization/).'
       operationId: GetHistoricalCostByOrg
       parameters:
       - description: String to specify whether cost is broken down at a parent-org
@@ -35671,7 +35673,8 @@ paths:
         Projected cost data is only available for the current month and becomes available
         around the 12th of the month.
 
-        This endpoint requires the usage_read authorization scope.'
+
+        This endpoint is only accessible for [parent-level organizations](https://docs.datadoghq.com/account_management/multi_organization/).'
       operationId: GetProjectedCost
       parameters:
       - description: String to specify whether cost is broken down at a parent-org
@@ -36225,10 +36228,6 @@ tags:
     Cloud Cost Management accounts for AWS and Azure. See the [Cloud Cost Management
     page](https://docs.datadoghq.com/cloud_cost_management/) for more information.
   name: Cloud Cost Management
-- description: Workload activity security rules for generating events using the Datadog
-    security Agent. See the [Setting up CSM Workload Security page](https://docs.datadoghq.com/security/cloud_security_management/setup/csm_workload_security/)
-    for more information.
-  name: Cloud Workload Security
 - description: Manage your Datadog Cloudflare integration directly through the Datadog
     API. See the [Cloudflare integration page](https://docs.datadoghq.com/integrations/cloudflare/)
     for more information.
@@ -36502,8 +36501,6 @@ tags:
 
     This API is available to all Pro and Enterprise customers.
 
-    Usage is only accessible for [parent-level organizations](https://docs.datadoghq.com/account_management/multi_organization/).
-
 
     **Note**: Usage data is delayed by up to 72 hours from when it was incurred.