npm - @aws-sdk/client-guardduty - Versions diffs - 3.410.0 → 3.412.0 - Mend

@aws-sdk/client-guardduty 3.410.0 → 3.412.0

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (29) hide show

package/README.md CHANGED Viewed

@@ -22,8 +22,8 @@ been used, or unusual API calls like a password policy change to reduce password
 <p>GuardDuty informs you about the status of your Amazon Web Services environment by producing security
 findings that you can view in the GuardDuty console or through Amazon EventBridge. For more
 information, see the <i>
-<a href="https://docs.aws.amazon.com/guardduty/latest/ug/what-is-guardduty.html">Amazon GuardDuty User
-Guide</a>
+<a href="https://docs.aws.amazon.com/guardduty/latest/ug/what-is-guardduty.html">Amazon
+GuardDuty User Guide</a>
 </i>. </p>
 ## Installing

package/dist-cjs/models/models_0.js CHANGED Viewed

@@ -1,6 +1,6 @@
 "use strict";
 Object.defineProperty(exports, "__esModule", { value: true });
-exports.UsageStatisticType = exports.UsageFeature = exports.ThreatIntelSetStatus = exports.ScanCriterionKey = exports.IpSetStatus = exports.FindingStatisticType = exports.Feedback = exports.EbsSnapshotPreservation = exports.DetectorStatus = exports.DetectorFeatureResult = exports.PublishingStatus = exports.OrgFeature = exports.OrgFeatureAdditionalConfiguration = exports.OrgFeatureStatus = exports.ScanType = exports.ScanStatus = exports.ScanResult = exports.DataSource = exports.CriterionKey = exports.ThreatIntelSetFormat = exports.DestinationType = exports.IpSetFormat = exports.FilterAction = exports.FindingPublishingFrequency = exports.DetectorFeature = exports.FeatureStatus = exports.FeatureAdditionalConfiguration = exports.CoverageStatisticsType = exports.OrderBy = exports.CoverageSortKey = exports.CoverageFilterCriterionKey = exports.ResourceType = exports.CoverageStatus = exports.ConflictException = exports.DataSourceStatus = exports.AutoEnableMembers = exports.AdminStatus = exports.FreeTrialFeatureResult = exports.AccessDeniedException = exports.InternalServerErrorException = exports.BadRequestException = void 0;
+exports.UsageStatisticType = exports.UsageFeature = exports.ThreatIntelSetStatus = exports.ScanCriterionKey = exports.IpSetStatus = exports.FindingStatisticType = exports.Feedback = exports.EbsSnapshotPreservation = exports.DetectorStatus = exports.DetectorFeatureResult = exports.PublishingStatus = exports.OrgFeature = exports.OrgFeatureAdditionalConfiguration = exports.OrgFeatureStatus = exports.ScanType = exports.ScanStatus = exports.ScanResult = exports.DataSource = exports.CriterionKey = exports.ThreatIntelSetFormat = exports.DestinationType = exports.IpSetFormat = exports.FilterAction = exports.FindingPublishingFrequency = exports.DetectorFeature = exports.FeatureStatus = exports.FeatureAdditionalConfiguration = exports.CoverageStatisticsType = exports.OrderBy = exports.CoverageSortKey = exports.CoverageFilterCriterionKey = exports.ManagementType = exports.ResourceType = exports.CoverageStatus = exports.ConflictException = exports.DataSourceStatus = exports.AutoEnableMembers = exports.AdminStatus = exports.FreeTrialFeatureResult = exports.AccessDeniedException = exports.InternalServerErrorException = exports.BadRequestException = void 0;
 const GuardDutyServiceException_1 = require("./GuardDutyServiceException");
 class BadRequestException extends GuardDutyServiceException_1.GuardDutyServiceException {
     constructor(opts) {
@@ -93,11 +93,16 @@ exports.CoverageStatus = {
 exports.ResourceType = {
     EKS: "EKS",
 };
+exports.ManagementType = {
+    AUTO_MANAGED: "AUTO_MANAGED",
+    MANUAL: "MANUAL",
+};
 exports.CoverageFilterCriterionKey = {
     ACCOUNT_ID: "ACCOUNT_ID",
     ADDON_VERSION: "ADDON_VERSION",
     CLUSTER_NAME: "CLUSTER_NAME",
     COVERAGE_STATUS: "COVERAGE_STATUS",
+    MANAGEMENT_TYPE: "MANAGEMENT_TYPE",
     RESOURCE_TYPE: "RESOURCE_TYPE",
 };
 exports.CoverageSortKey = {

package/dist-cjs/protocols/Aws_restJson1.js CHANGED Viewed

@@ -4517,6 +4517,7 @@ const de_CoverageEksClusterDetails = (output, context) => {
         ClusterName: [, smithy_client_1.expectString, `clusterName`],
         CompatibleNodes: [, smithy_client_1.expectLong, `compatibleNodes`],
         CoveredNodes: [, smithy_client_1.expectLong, `coveredNodes`],
+        ManagementType: [, smithy_client_1.expectString, `managementType`],
     });
 };
 const de_CoverageResource = (output, context) => {

package/dist-es/models/models_0.js CHANGED Viewed

@@ -86,11 +86,16 @@ export const CoverageStatus = {
 export const ResourceType = {
     EKS: "EKS",
 };
+export const ManagementType = {
+    AUTO_MANAGED: "AUTO_MANAGED",
+    MANUAL: "MANUAL",
+};
 export const CoverageFilterCriterionKey = {
     ACCOUNT_ID: "ACCOUNT_ID",
     ADDON_VERSION: "ADDON_VERSION",
     CLUSTER_NAME: "CLUSTER_NAME",
     COVERAGE_STATUS: "COVERAGE_STATUS",
+    MANAGEMENT_TYPE: "MANAGEMENT_TYPE",
     RESOURCE_TYPE: "RESOURCE_TYPE",
 };
 export const CoverageSortKey = {

package/dist-es/protocols/Aws_restJson1.js CHANGED Viewed

@@ -4376,6 +4376,7 @@ const de_CoverageEksClusterDetails = (output, context) => {
         ClusterName: [, __expectString, `clusterName`],
         CompatibleNodes: [, __expectLong, `compatibleNodes`],
         CoveredNodes: [, __expectLong, `coveredNodes`],
+        ManagementType: [, __expectString, `managementType`],
     });
 };
 const de_CoverageResource = (output, context) => {

package/dist-types/GuardDuty.d.ts CHANGED Viewed

@@ -496,8 +496,8 @@ export interface GuardDuty {
  *          <p>GuardDuty informs you about the status of your Amazon Web Services environment by producing security
  *       findings that you can view in the GuardDuty console or through Amazon EventBridge. For more
  *       information, see the <i>
- *                <a href="https://docs.aws.amazon.com/guardduty/latest/ug/what-is-guardduty.html">Amazon GuardDuty User
- *         Guide</a>
+ *                <a href="https://docs.aws.amazon.com/guardduty/latest/ug/what-is-guardduty.html">Amazon
+ *           GuardDuty User Guide</a>
  *             </i>. </p>
  */
 export declare class GuardDuty extends GuardDutyClient implements GuardDuty {

package/dist-types/GuardDutyClient.d.ts CHANGED Viewed

@@ -234,8 +234,8 @@ export interface GuardDutyClientResolvedConfig extends GuardDutyClientResolvedCo
  *          <p>GuardDuty informs you about the status of your Amazon Web Services environment by producing security
  *       findings that you can view in the GuardDuty console or through Amazon EventBridge. For more
  *       information, see the <i>
- *                <a href="https://docs.aws.amazon.com/guardduty/latest/ug/what-is-guardduty.html">Amazon GuardDuty User
- *         Guide</a>
+ *                <a href="https://docs.aws.amazon.com/guardduty/latest/ug/what-is-guardduty.html">Amazon
+ *           GuardDuty User Guide</a>
  *             </i>. </p>
  */
 export declare class GuardDutyClient extends __Client<__HttpHandlerOptions, ServiceInputTypes, ServiceOutputTypes, GuardDutyClientResolvedConfig> {

package/dist-types/commands/CreateMembersCommand.d.ts CHANGED Viewed

@@ -27,17 +27,17 @@ export interface CreateMembersCommandOutput extends CreateMembersResponse, __Met
  *       IDs. This step is a prerequisite for managing the associated member accounts either by
  *       invitation or through an organization.</p>
  *          <p>As a delegated administrator, using <code>CreateMembers</code> will enable GuardDuty in
- *       the added member accounts, with the exception of the organization delegated administrator
- *       account. A delegated administrator must enable GuardDuty prior to being added as a
- *       member.</p>
+ *       the added member accounts, with the exception of the
+ *       organization delegated administrator account. A delegated administrator must enable GuardDuty
+ *       prior to being added as a member.</p>
  *          <p>If you are adding accounts by invitation, before using <a href="https://docs.aws.amazon.com/guardduty/latest/APIReference/API_InviteMembers.html">InviteMembers</a>, use
- *         <code>CreateMembers</code> after GuardDuty has been enabled in potential member accounts.</p>
- *          <p>If you disassociate a member from a GuardDuty delegated administrator, the member account
- *       details obtained from this API, including the associated email addresses, will be retained.
- *       This is done so that the delegated administrator can invoke the <a href="https://docs.aws.amazon.com/guardduty/latest/APIReference/API_InviteMembers.html">InviteMembers</a> API without
- *       the need to invoke the CreateMembers API again. To remove the details associated with a member
- *       account, the delegated administrator must invoke the <a href="https://docs.aws.amazon.com/guardduty/latest/APIReference/API_DeleteMembers.html">DeleteMembers</a> API.
- *     </p>
+ *       <code>CreateMembers</code> after GuardDuty has been enabled in potential member accounts.</p>
+ *          <p>If you disassociate a member from a GuardDuty
+ *       delegated administrator, the member account details
+ *       obtained from this API, including the associated email addresses, will be retained.
+ *       This is done so that the delegated administrator can invoke the <a href="https://docs.aws.amazon.com/guardduty/latest/APIReference/API_InviteMembers.html">InviteMembers</a> API without the need to invoke the CreateMembers API again. To
+ *       remove the details associated with a member account, the delegated administrator must invoke the
+ *       <a href="https://docs.aws.amazon.com/guardduty/latest/APIReference/API_DeleteMembers.html">DeleteMembers</a> API. </p>
  * @example
  * Use a bare-bones client and the command you need to make an API call.
  * ```javascript

package/dist-types/commands/DisableOrganizationAdminAccountCommand.d.ts CHANGED Viewed

@@ -23,8 +23,9 @@ export interface DisableOrganizationAdminAccountCommandOutput extends DisableOrg
 }
 /**
  * @public
- * <p>Disables an Amazon Web Services account within the Organization as the GuardDuty delegated
- *       administrator.</p>
+ * <p>Removes the existing GuardDuty delegated
+ *       administrator of the organization. Only the organization's management account can run this
+ *       API operation.</p>
  * @example
  * Use a bare-bones client and the command you need to make an API call.
  * ```javascript

package/dist-types/commands/DisassociateFromAdministratorAccountCommand.d.ts CHANGED Viewed

@@ -24,12 +24,12 @@ export interface DisassociateFromAdministratorAccountCommandOutput extends Disas
 /**
  * @public
  * <p>Disassociates the current GuardDuty member account from its administrator account.</p>
- *          <p>When you disassociate an invited member from a GuardDuty delegated administrator, the member
- *       account details obtained from the <a href="https://docs.aws.amazon.com/guardduty/latest/APIReference/API_CreateMembers.html">CreateMembers</a> API,
- *       including the associated email addresses, are retained. This is done so that the delegated
- *       administrator can invoke the <a href="https://docs.aws.amazon.com/guardduty/latest/APIReference/API_InviteMembers.html">InviteMembers</a> API without
- *       the need to invoke the CreateMembers API again. To remove the details associated with a member
- *       account, the delegated administrator must invoke the <a href="https://docs.aws.amazon.com/guardduty/latest/APIReference/API_DeleteMembers.html">DeleteMembers</a> API. </p>
+ *          <p>When you
+ *       disassociate an invited member from a GuardDuty delegated administrator, the member account details
+ *       obtained from the <a href="https://docs.aws.amazon.com/guardduty/latest/APIReference/API_CreateMembers.html">CreateMembers</a> API, including the associated email addresses, are retained. This is
+ *       done so that the delegated administrator can invoke the <a href="https://docs.aws.amazon.com/guardduty/latest/APIReference/API_InviteMembers.html">InviteMembers</a> API without the need to invoke the CreateMembers API again. To
+ *       remove the details associated with a member account, the delegated administrator must invoke the
+ *       <a href="https://docs.aws.amazon.com/guardduty/latest/APIReference/API_DeleteMembers.html">DeleteMembers</a> API. </p>
  *          <p>With <code>autoEnableOrganizationMembers</code> configuration for your organization set to
  *         <code>ALL</code>, you'll receive an error if you attempt to disable GuardDuty in a member
  *       account.</p>

package/dist-types/commands/DisassociateFromMasterAccountCommand.d.ts CHANGED Viewed

@@ -26,12 +26,12 @@ export interface DisassociateFromMasterAccountCommandOutput extends Disassociate
  * @deprecated
  *
  * <p>Disassociates the current GuardDuty member account from its administrator account.</p>
- *          <p>When you disassociate an invited member from a GuardDuty delegated administrator, the member
- *       account details obtained from the <a href="https://docs.aws.amazon.com/guardduty/latest/APIReference/API_CreateMembers.html">CreateMembers</a> API,
- *       including the associated email addresses, are retained. This is done so that the delegated
- *       administrator can invoke the <a href="https://docs.aws.amazon.com/guardduty/latest/APIReference/API_InviteMembers.html">InviteMembers</a> API without
- *       the need to invoke the CreateMembers API again. To remove the details associated with a member
- *       account, the delegated administrator must invoke the <a href="https://docs.aws.amazon.com/guardduty/latest/APIReference/API_DeleteMembers.html">DeleteMembers</a> API.</p>
+ *          <p>When you
+ *       disassociate an invited member from a GuardDuty delegated administrator, the member account details
+ *       obtained from the <a href="https://docs.aws.amazon.com/guardduty/latest/APIReference/API_CreateMembers.html">CreateMembers</a> API, including the associated email addresses, are retained. This is
+ *       done so that the delegated administrator can invoke the <a href="https://docs.aws.amazon.com/guardduty/latest/APIReference/API_InviteMembers.html">InviteMembers</a> API without the need to invoke the CreateMembers API again. To
+ *       remove the details associated with a member account, the delegated administrator must invoke the
+ *       <a href="https://docs.aws.amazon.com/guardduty/latest/APIReference/API_DeleteMembers.html">DeleteMembers</a> API.</p>
  * @example
  * Use a bare-bones client and the command you need to make an API call.
  * ```javascript

package/dist-types/commands/DisassociateMembersCommand.d.ts CHANGED Viewed

@@ -23,17 +23,17 @@ export interface DisassociateMembersCommandOutput extends DisassociateMembersRes
 }
 /**
  * @public
- * <p>Disassociates GuardDuty member accounts (from the current administrator account)
- *       specified by the account IDs.</p>
- *          <p>When you disassociate an invited member from a GuardDuty delegated administrator, the member
- *       account details obtained from the <a href="https://docs.aws.amazon.com/guardduty/latest/APIReference/API_CreateMembers.html">CreateMembers</a> API,
- *       including the associated email addresses, are retained. This is done so that the delegated
- *       administrator can invoke the <a href="https://docs.aws.amazon.com/guardduty/latest/APIReference/API_InviteMembers.html">InviteMembers</a> API without
- *       the need to invoke the CreateMembers API again. To remove the details associated with a member
- *       account, the delegated administrator must invoke the <a href="https://docs.aws.amazon.com/guardduty/latest/APIReference/API_DeleteMembers.html">DeleteMembers</a> API. </p>
+ * <p>Disassociates GuardDuty member accounts (from the current administrator account) specified
+ *       by the account IDs.</p>
+ *          <p>When you
+ *       disassociate an invited member from a GuardDuty delegated administrator, the member account details
+ *       obtained from the <a href="https://docs.aws.amazon.com/guardduty/latest/APIReference/API_CreateMembers.html">CreateMembers</a> API, including the associated email addresses, are retained. This is
+ *       done so that the delegated administrator can invoke the <a href="https://docs.aws.amazon.com/guardduty/latest/APIReference/API_InviteMembers.html">InviteMembers</a> API without the need to invoke the CreateMembers API again. To
+ *       remove the details associated with a member account, the delegated administrator must invoke the
+ *       <a href="https://docs.aws.amazon.com/guardduty/latest/APIReference/API_DeleteMembers.html">DeleteMembers</a> API. </p>
  *          <p>With <code>autoEnableOrganizationMembers</code> configuration for your organization set to
  *         <code>ALL</code>, you'll receive an error if you attempt to disassociate a member account
- *       before removing them from your Amazon Web Services organization.</p>
+ *       before removing them from your organization.</p>
  * @example
  * Use a bare-bones client and the command you need to make an API call.
  * ```javascript

package/dist-types/commands/EnableOrganizationAdminAccountCommand.d.ts CHANGED Viewed

@@ -23,8 +23,9 @@ export interface EnableOrganizationAdminAccountCommandOutput extends EnableOrgan
 }
 /**
  * @public
- * <p>Enables an Amazon Web Services account within the organization as the GuardDuty delegated
- *       administrator.</p>
+ * <p>Designates an Amazon Web Services account within the organization as your GuardDuty delegated
+ *       administrator. Only the organization's management account can run this
+ *     API operation.</p>
  * @example
  * Use a bare-bones client and the command you need to make an API call.
  * ```javascript

package/dist-types/commands/GetAdministratorAccountCommand.d.ts CHANGED Viewed

@@ -23,8 +23,12 @@ export interface GetAdministratorAccountCommandOutput extends GetAdministratorAc
 }
 /**
  * @public
- * <p>Provides the details for the GuardDuty administrator account associated with the current
+ * <p>Provides the details of the GuardDuty administrator account associated with the current
  *       GuardDuty member account.</p>
+ *          <note>
+ *             <p>If the organization's management account or a delegated administrator runs this API,
+ *     it will return success (<code>HTTP 200</code>) but no content.</p>
+ *          </note>
  * @example
  * Use a bare-bones client and the command you need to make an API call.
  * ```javascript

package/dist-types/commands/GetCoverageStatisticsCommand.d.ts CHANGED Viewed

@@ -38,7 +38,7 @@ export interface GetCoverageStatisticsCommandOutput extends GetCoverageStatistic
  *   FilterCriteria: { // CoverageFilterCriteria
  *     FilterCriterion: [ // CoverageFilterCriterionList
  *       { // CoverageFilterCriterion
- *         CriterionKey: "ACCOUNT_ID" || "CLUSTER_NAME" || "RESOURCE_TYPE" || "COVERAGE_STATUS" || "ADDON_VERSION",
+ *         CriterionKey: "ACCOUNT_ID" || "CLUSTER_NAME" || "RESOURCE_TYPE" || "COVERAGE_STATUS" || "ADDON_VERSION" || "MANAGEMENT_TYPE",
  *         FilterCondition: { // CoverageFilterCondition
  *           Equals: [ // Equals
  *             "STRING_VALUE",

package/dist-types/commands/InviteMembersCommand.d.ts CHANGED Viewed

@@ -23,22 +23,24 @@ export interface InviteMembersCommandOutput extends InviteMembersResponse, __Met
 }
 /**
  * @public
- * <p>Invites Amazon Web Services accounts to become members of an organization administered by the Amazon Web Services
- *       account that invokes this API. If you are using Amazon Web Services Organizations to manager your GuardDuty
- *       environment, this step is not needed. For more information, see <a href="https://docs.aws.amazon.com/guardduty/latest/ug/guardduty_organizations.html">Managing accounts with Amazon Web Services
- *         Organizations</a>.</p>
- *          <p>To invite Amazon Web Services accounts, the first step is to ensure that GuardDuty has been enabled in the
- *       potential member accounts. You can now invoke this API to add accounts by invitation. The
- *       invited accounts can either accept or decline the invitation from their GuardDuty accounts. Each
- *       invited Amazon Web Services account can choose to accept the invitation from only one Amazon Web Services account. For
- *       more information, see <a href="https://docs.aws.amazon.com/guardduty/latest/ug/guardduty_invitations.html">Managing GuardDuty accounts by
- *         invitation</a>.</p>
- *          <p>After the invite has been accepted and you choose to disassociate a member account (by
- *       using <a href="https://docs.aws.amazon.com/guardduty/latest/APIReference/API_DisassociateMembers.html">DisassociateMembers</a>) from your account, the details of the member account obtained by
- *       invoking <a href="https://docs.aws.amazon.com/guardduty/latest/APIReference/API_CreateMembers.html">CreateMembers</a>, including
- *       the associated email addresses, will be retained. This is done so that you can invoke
- *       InviteMembers without the need to invoke <a href="https://docs.aws.amazon.com/guardduty/latest/APIReference/API_CreateMembers.html">CreateMembers</a> again. To
- *       remove the details associated with a member account, you must also invoke <a href="https://docs.aws.amazon.com/guardduty/latest/APIReference/API_DeleteMembers.html">DeleteMembers</a>. </p>
+ * <p>Invites Amazon Web Services accounts to become members of an organization administered by the Amazon Web Services account
+ *       that invokes this API. If you are using organizations to manager your GuardDuty environment, this step is not
+ *       needed. For more information, see <a href="https://docs.aws.amazon.com/guardduty/latest/ug/guardduty_organizations.html">Managing accounts with organizations</a>.</p>
+ *          <p>To invite Amazon Web Services accounts, the first step is
+ *       to ensure that GuardDuty has been enabled in the potential member accounts. You can now invoke this API
+ *       to add accounts by invitation. The
+ *       invited accounts can either accept or decline the invitation from their GuardDuty accounts. Each invited Amazon Web Services account can
+ *       choose to accept the invitation from only one Amazon Web Services account. For more information, see
+ *       <a href="https://docs.aws.amazon.com/guardduty/latest/ug/guardduty_invitations.html">Managing GuardDuty accounts
+ *       by invitation</a>.</p>
+ *          <p>After the invite has been accepted and you choose to disassociate a member account
+ *       (by using <a href="https://docs.aws.amazon.com/guardduty/latest/APIReference/API_DisassociateMembers.html">DisassociateMembers</a>) from your account,
+ *       the details of the member account obtained by invoking <a href="https://docs.aws.amazon.com/guardduty/latest/APIReference/API_CreateMembers.html">CreateMembers</a>, including the
+ *       associated email addresses, will be retained.
+ *       This is done so that you can invoke InviteMembers without the need to invoke
+ *       <a href="https://docs.aws.amazon.com/guardduty/latest/APIReference/API_CreateMembers.html">CreateMembers</a> again. To
+ *       remove the details associated with a member account, you must also invoke
+ *       <a href="https://docs.aws.amazon.com/guardduty/latest/APIReference/API_DeleteMembers.html">DeleteMembers</a>. </p>
  * @example
  * Use a bare-bones client and the command you need to make an API call.
  * ```javascript

package/dist-types/commands/ListCoverageCommand.d.ts CHANGED Viewed

@@ -40,7 +40,7 @@ export interface ListCoverageCommandOutput extends ListCoverageResponse, __Metad
  *   FilterCriteria: { // CoverageFilterCriteria
  *     FilterCriterion: [ // CoverageFilterCriterionList
  *       { // CoverageFilterCriterion
- *         CriterionKey: "ACCOUNT_ID" || "CLUSTER_NAME" || "RESOURCE_TYPE" || "COVERAGE_STATUS" || "ADDON_VERSION",
+ *         CriterionKey: "ACCOUNT_ID" || "CLUSTER_NAME" || "RESOURCE_TYPE" || "COVERAGE_STATUS" || "ADDON_VERSION" || "MANAGEMENT_TYPE",
  *         FilterCondition: { // CoverageFilterCondition
  *           Equals: [ // Equals
  *             "STRING_VALUE",
@@ -74,6 +74,7 @@ export interface ListCoverageCommandOutput extends ListCoverageResponse, __Metad
  * //             AddonVersion: "STRING_VALUE",
  * //             AddonStatus: "STRING_VALUE",
  * //           },
+ * //           ManagementType: "AUTO_MANAGED" || "MANUAL",
  * //         },
  * //         ResourceType: "EKS",
  * //       },

package/dist-types/commands/ListOrganizationAdminAccountsCommand.d.ts CHANGED Viewed

@@ -23,7 +23,9 @@ export interface ListOrganizationAdminAccountsCommandOutput extends ListOrganiza
 }
 /**
  * @public
- * <p>Lists the accounts configured as GuardDuty delegated administrators.</p>
+ * <p>Lists the accounts configured as GuardDuty delegated administrators.
+ *       Only the organization's management account can run this
+ *       API operation.</p>
  * @example
  * Use a bare-bones client and the command you need to make an API call.
  * ```javascript

package/dist-types/commands/ListTagsForResourceCommand.d.ts CHANGED Viewed

@@ -24,8 +24,9 @@ export interface ListTagsForResourceCommandOutput extends ListTagsForResourceRes
 /**
  * @public
  * <p>Lists tags for a resource. Tagging is currently supported for detectors, finding filters,
- *       IP sets, threat intel sets, and publishing destination, with a limit of 50 tags per each
- *       resource. When invoked, this operation returns all assigned tags for a given resource.</p>
+ *       IP sets, threat intel sets, and publishing destination, with a limit of 50 tags per resource.
+ *       When invoked, this
+ *       operation returns all assigned tags for a given resource.</p>
  * @example
  * Use a bare-bones client and the command you need to make an API call.
  * ```javascript

package/dist-types/commands/StartMalwareScanCommand.d.ts CHANGED Viewed

@@ -23,7 +23,8 @@ export interface StartMalwareScanCommandOutput extends StartMalwareScanResponse,
 }
 /**
  * @public
- * <p>Initiates the malware scan. Invoking this API will automatically create the <a href="https://docs.aws.amazon.com/guardduty/latest/ug/slr-permissions-malware-protection.html">Service-linked role </a> in the corresponding account.</p>
+ * <p>Initiates the malware scan. Invoking this API will automatically create the <a href="https://docs.aws.amazon.com/guardduty/latest/ug/slr-permissions-malware-protection.html">Service-linked role </a> in
+ *       the corresponding account.</p>
  * @example
  * Use a bare-bones client and the command you need to make an API call.
  * ```javascript

package/dist-types/commands/StartMonitoringMembersCommand.d.ts CHANGED Viewed

@@ -2,8 +2,7 @@ import { EndpointParameterInstructions } from "@smithy/middleware-endpoint";
 import { Command as $Command } from "@smithy/smithy-client";
 import { Handler, HttpHandlerOptions as __HttpHandlerOptions, MetadataBearer as __MetadataBearer, MiddlewareStack } from "@smithy/types";
 import { GuardDutyClientResolvedConfig, ServiceInputTypes, ServiceOutputTypes } from "../GuardDutyClient";
-import { StartMonitoringMembersRequest } from "../models/models_0";
-import { StartMonitoringMembersResponse } from "../models/models_1";
+import { StartMonitoringMembersRequest, StartMonitoringMembersResponse } from "../models/models_1";
 /**
  * @public
  */

package/dist-types/commands/UpdateOrganizationConfigurationCommand.d.ts CHANGED Viewed

@@ -24,7 +24,8 @@ export interface UpdateOrganizationConfigurationCommandOutput extends UpdateOrga
 /**
  * @public
  * <p>Configures the delegated administrator account with the provided values. You must provide
- *       the value for either <code>autoEnableOrganizationMembers</code> or <code>autoEnable</code>. </p>
+ *       a value for either <code>autoEnableOrganizationMembers</code> or <code>autoEnable</code>, but not
+ *       both. </p>
  *          <p>There might be regional differences because some data sources might not be
  *       available in all the Amazon Web Services Regions where GuardDuty is presently supported. For more
  *       information, see <a href="https://docs.aws.amazon.com/guardduty/latest/ug/guardduty_regions.html">Regions and endpoints</a>.</p>

package/dist-types/index.d.ts CHANGED Viewed

@@ -15,8 +15,8 @@
  *          <p>GuardDuty informs you about the status of your Amazon Web Services environment by producing security
  *       findings that you can view in the GuardDuty console or through Amazon EventBridge. For more
  *       information, see the <i>
- *                <a href="https://docs.aws.amazon.com/guardduty/latest/ug/what-is-guardduty.html">Amazon GuardDuty User
- *         Guide</a>
+ *                <a href="https://docs.aws.amazon.com/guardduty/latest/ug/what-is-guardduty.html">Amazon
+ *           GuardDuty User Guide</a>
  *             </i>. </p>
  *
  * @packageDocumentation

package/dist-types/models/models_0.d.ts CHANGED Viewed

@@ -1181,6 +1181,18 @@ export declare const ResourceType: {
  * @public
  */
 export type ResourceType = (typeof ResourceType)[keyof typeof ResourceType];
+/**
+ * @public
+ * @enum
+ */
+export declare const ManagementType: {
+    readonly AUTO_MANAGED: "AUTO_MANAGED";
+    readonly MANUAL: "MANUAL";
+};
+/**
+ * @public
+ */
+export type ManagementType = (typeof ManagementType)[keyof typeof ManagementType];
 /**
  * @public
  * <p>Information about the EKS cluster that has a coverage status.</p>
@@ -1207,6 +1219,16 @@ export interface CoverageEksClusterDetails {
      * <p>Information about the installed EKS add-on.</p>
      */
     AddonDetails?: AddonDetails;
+    /**
+     * @public
+     * <p>Indicates how the Amazon EKS add-on GuardDuty agent is managed for this EKS cluster.</p>
+     *          <p>
+     *             <code>AUTO_MANAGED</code> indicates GuardDuty deploys and manages updates for this resource.</p>
+     *          <p>
+     *             <code>MANUAL</code> indicates that you are responsible to deploy, update, and manage
+     *       the Amazon EKS add-on GuardDuty agent for this resource.</p>
+     */
+    ManagementType?: ManagementType | string;
 }
 /**
  * @public
@@ -1236,6 +1258,7 @@ export declare const CoverageFilterCriterionKey: {
     readonly ADDON_VERSION: "ADDON_VERSION";
     readonly CLUSTER_NAME: "CLUSTER_NAME";
     readonly COVERAGE_STATUS: "COVERAGE_STATUS";
+    readonly MANAGEMENT_TYPE: "MANAGEMENT_TYPE";
     readonly RESOURCE_TYPE: "RESOURCE_TYPE";
 };
 /**
@@ -1778,7 +1801,7 @@ export interface CreateFilterRequest {
      *                   </li>
      *                </ul>
      *                <p>For more information, see <a href="https://docs.aws.amazon.com/guardduty/latest/ug/guardduty_findings.html#guardduty_findings-severity">Severity
-     *             levels for GuardDuty findings</a>.</p>
+     *           levels for GuardDuty findings</a>.</p>
      *             </li>
      *             <li>
      *                <p>type</p>
@@ -3123,12 +3146,32 @@ export interface OrganizationAdditionalConfigurationResult {
     Name?: OrgFeatureAdditionalConfiguration | string;
     /**
      * @public
-     * <p>Describes how The status of the additional configuration that are configured for the
-     *       member accounts within the organization.</p>
-     *          <p>If you set <code>AutoEnable</code> to <code>NEW</code>, a feature will be configured for
-     *       only the new accounts when they join the organization.</p>
-     *          <p>If you set <code>AutoEnable</code> to <code>NONE</code>, no feature will be configured for
-     *       the accounts when they join the organization.</p>
+     * <p>Describes the status of the additional configuration that is configured for the
+     *       member accounts within the organization. One of the following
+     *     values is the status for the entire organization:</p>
+     *          <ul>
+     *             <li>
+     *                <p>
+     *                   <code>NEW</code>: Indicates that when a new account joins the organization, they will
+     *           have the additional configuration enabled automatically. </p>
+     *             </li>
+     *             <li>
+     *                <p>
+     *                   <code>ALL</code>: Indicates that all accounts in the organization have
+     *           the additional configuration
+     *           enabled automatically. This includes <code>NEW</code> accounts that join the organization
+     *           and accounts that may have been suspended or removed from the organization in
+     *           GuardDuty.</p>
+     *                <p>It may take up to 24 hours to update the configuration for all the member accounts.</p>
+     *             </li>
+     *             <li>
+     *                <p>
+     *                   <code>NONE</code>: Indicates that the additional configuration will not be
+     *           automatically enabled for any
+     *           account in the organization. The administrator must manage the additional configuration
+     *           for each account individually.</p>
+     *             </li>
+     *          </ul>
      */
     AutoEnable?: OrgFeatureStatus | string;
 }
@@ -3161,12 +3204,29 @@ export interface OrganizationFeatureConfigurationResult {
     Name?: OrgFeature | string;
     /**
      * @public
-     * <p>Describes how The status of the feature that are configured for the member accounts within
+     * <p>Describes the status of the feature that is configured for the member accounts within
      *       the organization.</p>
-     *          <p>If you set <code>AutoEnable</code> to <code>NEW</code>, a feature will be configured for
-     *       only the new accounts when they join the organization.</p>
-     *          <p>If you set <code>AutoEnable</code> to <code>NONE</code>, no feature will be configured for
-     *       the accounts when they join the organization.</p>
+     *          <ul>
+     *             <li>
+     *                <p>
+     *                   <code>NEW</code>: Indicates that when a new account joins the organization, they will
+     *           have the feature enabled automatically. </p>
+     *             </li>
+     *             <li>
+     *                <p>
+     *                   <code>ALL</code>: Indicates that all accounts in the organization have the feature
+     *           enabled automatically. This includes <code>NEW</code> accounts that join the organization
+     *           and accounts that may have been suspended or removed from the organization in
+     *           GuardDuty.</p>
+     *             </li>
+     *             <li>
+     *                <p>
+     *                   <code>NONE</code>: Indicates that the feature will not be automatically enabled for any
+     *           account in the organization. In this case, each account will be managed individually
+     *           by the
+     *           administrator.</p>
+     *             </li>
+     *          </ul>
      */
     AutoEnable?: OrgFeatureStatus | string;
     /**
@@ -3226,7 +3286,7 @@ export interface DescribeOrganizationConfigurationResponse {
      *             </li>
      *             <li>
      *                <p>
-     *                   <code>ALL</code>: Indicates that all accounts in the Amazon Web Services Organization have GuardDuty
+     *                   <code>ALL</code>: Indicates that all accounts in the organization have GuardDuty
      *           enabled automatically. This includes <code>NEW</code> accounts that join the organization
      *           and accounts that may have been suspended or removed from the organization in
      *           GuardDuty.</p>
@@ -3234,8 +3294,8 @@ export interface DescribeOrganizationConfigurationResponse {
      *             <li>
      *                <p>
      *                   <code>NONE</code>: Indicates that GuardDuty will not be automatically enabled for any
-     *           accounts in the organization. GuardDuty must be managed for each account individually by the
-     *           administrator.</p>
+     *           account in the organization. The administrator must manage GuardDuty for each account in
+     *           the organization individually.</p>
      *             </li>
      *          </ul>
      */
@@ -4164,8 +4224,8 @@ export interface KubernetesUserDetails {
     Groups?: string[];
     /**
      * @public
-     * <p>Entity that assumes the IAM role when Kubernetes RBAC permissions are assigned to that
-     *       role.</p>
+     * <p>Entity that assumes the IAM role
+     *       when Kubernetes RBAC permissions are assigned to that role.</p>
      */
     SessionName?: string[];
 }
@@ -4270,8 +4330,8 @@ export interface LambdaDetails {
     Description?: string;
     /**
      * @public
-     * <p>The timestamp when the Lambda function was last modified. This field is in the UTC date
-     *       string format <code>(2023-03-22T19:37:20.168Z)</code>.</p>
+     * <p>The timestamp when the Lambda function was last modified. This field is in the UTC date string
+     *       format <code>(2023-03-22T19:37:20.168Z)</code>.</p>
      */
     LastModifiedAt?: Date;
     /**
@@ -4297,7 +4357,7 @@ export interface LambdaDetails {
     /**
      * @public
      * <p>A list of tags attached to this resource, listed in the format of
-     *         <code>key</code>:<code>value</code> pair.</p>
+     *       <code>key</code>:<code>value</code> pair.</p>
      */
     Tags?: Tag[];
 }
@@ -4690,8 +4750,8 @@ export interface RuntimeContext {
     ModifyingProcess?: ProcessDetails;
     /**
      * @public
-     * <p>The timestamp at which the process modified the current process. The timestamp is in UTC
-     *       date string format.</p>
+     * <p>The timestamp at which the process modified the current process. The timestamp is in UTC date string
+     *       format.</p>
      */
     ModifiedAt?: Date;
     /**
@@ -4767,14 +4827,13 @@ export interface RuntimeContext {
     ShellHistoryFilePath?: string;
     /**
      * @public
-     * <p>Information about the process that had its memory overwritten by the current
-     *       process.</p>
+     * <p>Information about the process that had its memory overwritten by the current process.</p>
      */
     TargetProcess?: ProcessDetails;
     /**
      * @public
-     * <p>Represents the communication protocol associated with the address. For example, the
-     *       address family <code>AF_INET</code> is used for IP version of 4 protocol.</p>
+     * <p>Represents the communication protocol associated with the address. For example, the address
+     *       family <code>AF_INET</code> is used for IP version of 4 protocol.</p>
      */
     AddressFamily?: string;
     /**
@@ -6604,25 +6663,8 @@ export interface StartMalwareScanRequest {
 export interface StartMalwareScanResponse {
     /**
      * @public
-     * <p>A unique identifier that gets generated when you invoke the API without any error. Each
-     *       malware scan has a corresponding scan ID. Using this scan ID, you can monitor the status of
-     *       your malware scan.</p>
+     * <p>A unique identifier that gets generated when you invoke the API without any error. Each malware scan has
+     *       a corresponding scan ID. Using this scan ID, you can monitor the status of your malware scan.</p>
      */
     ScanId?: string;
 }
-/**
- * @public
- */
-export interface StartMonitoringMembersRequest {
-    /**
-     * @public
-     * <p>The unique ID of the detector of the GuardDuty administrator account associated with the
-     *       member accounts to monitor.</p>
-     */
-    DetectorId: string | undefined;
-    /**
-     * @public
-     * <p>A list of account IDs of the GuardDuty member accounts to start monitoring.</p>
-     */
-    AccountIds: string[] | undefined;
-}

package/dist-types/models/models_1.d.ts CHANGED Viewed

@@ -1,4 +1,20 @@
 import { AutoEnableMembers, DataSourceConfigurations, DestinationProperties, DetectorFeatureConfiguration, EbsSnapshotPreservation, FeatureStatus, Feedback, FilterAction, FindingCriteria, FindingPublishingFrequency, OrgFeature, OrgFeatureAdditionalConfiguration, OrgFeatureStatus, ScanResourceCriteria, UnprocessedAccount } from "./models_0";
+/**
+ * @public
+ */
+export interface StartMonitoringMembersRequest {
+    /**
+     * @public
+     * <p>The unique ID of the detector of the GuardDuty administrator account associated with the
+     *       member accounts to monitor.</p>
+     */
+    DetectorId: string | undefined;
+    /**
+     * @public
+     * <p>A list of account IDs of the GuardDuty member accounts to start monitoring.</p>
+     */
+    AccountIds: string[] | undefined;
+}
 /**
  * @public
  */
@@ -454,7 +470,7 @@ export interface OrganizationDataSourceConfigurations {
 }
 /**
  * @public
- * <p>A list of additional configurations which will be configured for the organization.</p>
+ * <p>A list of additional configurations which will be configured for the organization. </p>
  */
 export interface OrganizationAdditionalConfiguration {
     /**
@@ -466,7 +482,31 @@ export interface OrganizationAdditionalConfiguration {
     /**
      * @public
      * <p>The status of the additional configuration that will be configured for the
-     *       organization.</p>
+     *       organization. Use one of the following
+     *       values to configure the feature status for the entire organization:</p>
+     *          <ul>
+     *             <li>
+     *                <p>
+     *                   <code>NEW</code>: Indicates that when a new account joins the organization, they will
+     *           have the additional configuration enabled automatically. </p>
+     *             </li>
+     *             <li>
+     *                <p>
+     *                   <code>ALL</code>: Indicates that all accounts in the organization have
+     *           the additional configuration
+     *           enabled automatically. This includes <code>NEW</code> accounts that join the organization
+     *           and accounts that may have been suspended or removed from the organization in
+     *           GuardDuty.</p>
+     *                <p>It may take up to 24 hours to update the configuration for all the member accounts.</p>
+     *             </li>
+     *             <li>
+     *                <p>
+     *                   <code>NONE</code>: Indicates that the additional configuration will not be
+     *           automatically enabled for any
+     *           account in the organization. The administrator must manage the additional configuration
+     *           for each account individually.</p>
+     *             </li>
+     *          </ul>
      */
     AutoEnable?: OrgFeatureStatus | string;
 }
@@ -482,7 +522,29 @@ export interface OrganizationFeatureConfiguration {
     Name?: OrgFeature | string;
     /**
      * @public
-     * <p>The status of the feature that will be configured for the organization.</p>
+     * <p>The status of the feature that will be configured for the organization. Use one of the following
+     *     values to configure the feature status for the entire organization:</p>
+     *          <ul>
+     *             <li>
+     *                <p>
+     *                   <code>NEW</code>: Indicates that when a new account joins the organization, they will
+     *           have the feature enabled automatically. </p>
+     *             </li>
+     *             <li>
+     *                <p>
+     *                   <code>ALL</code>: Indicates that all accounts in the organization have the feature
+     *           enabled automatically. This includes <code>NEW</code> accounts that join the organization
+     *           and accounts that may have been suspended or removed from the organization in
+     *           GuardDuty.</p>
+     *                <p>It may take up to 24 hours to update the configuration for all the member accounts.</p>
+     *             </li>
+     *             <li>
+     *                <p>
+     *                   <code>NONE</code>: Indicates that the feature will not be automatically enabled for any
+     *           account in the organization. The administrator must manage the feature for each account
+     *           individually.</p>
+     *             </li>
+     *          </ul>
      */
     AutoEnable?: OrgFeatureStatus | string;
     /**
@@ -506,7 +568,8 @@ export interface UpdateOrganizationConfigurationRequest {
      *
      * <p>Indicates whether to automatically enable member accounts in the organization.</p>
      *          <p>Even though this is still supported, we recommend using
-     *         <code>AutoEnableOrganizationMembers</code> to achieve the similar results.</p>
+     *         <code>AutoEnableOrganizationMembers</code> to achieve the similar results. You must provide the
+     *     value for either <code>autoEnableOrganizationMembers</code> or <code>autoEnable</code>.</p>
      */
     AutoEnable?: boolean;
     /**
@@ -524,7 +587,10 @@ export interface UpdateOrganizationConfigurationRequest {
     /**
      * @public
      * <p>Indicates the auto-enablement configuration of GuardDuty for the member accounts in the
-     *       organization. </p>
+     *       organization. You must provide a
+     *       value for either <code>autoEnableOrganizationMembers</code> or <code>autoEnable</code>. </p>
+     *          <p>Use one of the
+     *     following configuration values for <code>autoEnableOrganizationMembers</code>:</p>
      *          <ul>
      *             <li>
      *                <p>
@@ -533,16 +599,17 @@ export interface UpdateOrganizationConfigurationRequest {
      *             </li>
      *             <li>
      *                <p>
-     *                   <code>ALL</code>: Indicates that all accounts in the Amazon Web Services Organization have GuardDuty
+     *                   <code>ALL</code>: Indicates that all accounts in the organization have GuardDuty
      *           enabled automatically. This includes <code>NEW</code> accounts that join the organization
      *           and accounts that may have been suspended or removed from the organization in
      *           GuardDuty.</p>
+     *                <p>It may take up to 24 hours to update the configuration for all the member accounts.</p>
      *             </li>
      *             <li>
      *                <p>
      *                   <code>NONE</code>: Indicates that GuardDuty will not be automatically enabled for any
-     *           accounts in the organization. GuardDuty must be managed for each account individually by the
-     *           administrator.</p>
+     *           account in the organization. The administrator must manage GuardDuty for each account in the organization
+     *           individually.</p>
      *             </li>
      *          </ul>
      */

package/dist-types/ts3.4/commands/StartMonitoringMembersCommand.d.ts CHANGED Viewed

@@ -11,8 +11,10 @@ import {
   ServiceInputTypes,
   ServiceOutputTypes,
 } from "../GuardDutyClient";
-import { StartMonitoringMembersRequest } from "../models/models_0";
-import { StartMonitoringMembersResponse } from "../models/models_1";
+import {
+  StartMonitoringMembersRequest,
+  StartMonitoringMembersResponse,
+} from "../models/models_1";
 export { __MetadataBearer, $Command };
 export interface StartMonitoringMembersCommandInput
   extends StartMonitoringMembersRequest {}

package/dist-types/ts3.4/models/models_0.d.ts CHANGED Viewed

@@ -301,11 +301,18 @@ export declare const ResourceType: {
   readonly EKS: "EKS";
 };
 export type ResourceType = (typeof ResourceType)[keyof typeof ResourceType];
+export declare const ManagementType: {
+  readonly AUTO_MANAGED: "AUTO_MANAGED";
+  readonly MANUAL: "MANUAL";
+};
+export type ManagementType =
+  (typeof ManagementType)[keyof typeof ManagementType];
 export interface CoverageEksClusterDetails {
   ClusterName?: string;
   CoveredNodes?: number;
   CompatibleNodes?: number;
   AddonDetails?: AddonDetails;
+  ManagementType?: ManagementType | string;
 }
 export interface CoverageFilterCondition {
   Equals?: string[];
@@ -316,6 +323,7 @@ export declare const CoverageFilterCriterionKey: {
   readonly ADDON_VERSION: "ADDON_VERSION";
   readonly CLUSTER_NAME: "CLUSTER_NAME";
   readonly COVERAGE_STATUS: "COVERAGE_STATUS";
+  readonly MANAGEMENT_TYPE: "MANAGEMENT_TYPE";
   readonly RESOURCE_TYPE: "RESOURCE_TYPE";
 };
 export type CoverageFilterCriterionKey =
@@ -1567,7 +1575,3 @@ export interface StartMalwareScanRequest {
 export interface StartMalwareScanResponse {
   ScanId?: string;
 }
-export interface StartMonitoringMembersRequest {
-  DetectorId: string | undefined;
-  AccountIds: string[] | undefined;
-}

package/dist-types/ts3.4/models/models_1.d.ts CHANGED Viewed

@@ -15,6 +15,10 @@ import {
   ScanResourceCriteria,
   UnprocessedAccount,
 } from "./models_0";
+export interface StartMonitoringMembersRequest {
+  DetectorId: string | undefined;
+  AccountIds: string[] | undefined;
+}
 export interface StartMonitoringMembersResponse {
   UnprocessedAccounts: UnprocessedAccount[] | undefined;
 }

package/package.json CHANGED Viewed

@@ -1,7 +1,7 @@
 {
   "name": "@aws-sdk/client-guardduty",
   "description": "AWS SDK for JavaScript Guardduty Client for Node.js, Browser and React Native",
-  "version": "3.410.0",
+  "version": "3.412.0",
   "scripts": {
     "build": "concurrently 'yarn:build:cjs' 'yarn:build:es' 'yarn:build:types'",
     "build:cjs": "tsc -p tsconfig.cjs.json",