@aws-sdk/client-guardduty 3.830.0 → 3.835.0

package/dist-types/commands/GetFindingsCommand.d.ts

@@ -1,7 +1,8 @@
 import { Command as $Command } from "@smithy/smithy-client";
 import { MetadataBearer as __MetadataBearer } from "@smithy/types";
 import { GuardDutyClientResolvedConfig, ServiceInputTypes, ServiceOutputTypes } from "../GuardDutyClient";
-import { GetFindingsRequest, GetFindingsResponse } from "../models/models_0";
+import { GetFindingsRequest } from "../models/models_0";
+import { GetFindingsResponse } from "../models/models_1";
 /**
  * @public
  */
@@ -834,6 +835,11 @@ declare const GetFindingsCommand_base: {
  * //                   CreatedTime: new Date("TIMESTAMP"),
  * //                   Issuer: "STRING_VALUE",
  * //                 },
+ * //                 Process: { // ActorProcess
+ * //                   Name: "STRING_VALUE", // required
+ * //                   Path: "STRING_VALUE", // required
+ * //                   Sha256: "STRING_VALUE",
+ * //                 },
  * //               },
  * //             ],
  * //             Resources: [ // Resources
@@ -841,7 +847,7 @@ declare const GetFindingsCommand_base: {
  * //                 Uid: "STRING_VALUE", // required
  * //                 Name: "STRING_VALUE",
  * //                 AccountId: "STRING_VALUE",
- * //                 ResourceType: "EC2_INSTANCE" || "EC2_NETWORK_INTERFACE" || "S3_BUCKET" || "S3_OBJECT" || "ACCESS_KEY", // required
+ * //                 ResourceType: "EC2_INSTANCE" || "EC2_NETWORK_INTERFACE" || "S3_BUCKET" || "S3_OBJECT" || "ACCESS_KEY" || "EKS_CLUSTER" || "KUBERNETES_WORKLOAD" || "CONTAINER", // required
  * //                 Region: "STRING_VALUE",
  * //                 Service: "STRING_VALUE",
  * //                 CloudPartition: "STRING_VALUE",
@@ -917,6 +923,26 @@ declare const GetFindingsCommand_base: {
  * //                     Key: "STRING_VALUE",
  * //                     VersionId: "STRING_VALUE",
  * //                   },
+ * //                   EksCluster: { // EksCluster
+ * //                     Arn: "STRING_VALUE",
+ * //                     CreatedAt: new Date("TIMESTAMP"),
+ * //                     Status: "CREATING" || "ACTIVE" || "DELETING" || "FAILED" || "UPDATING" || "PENDING",
+ * //                     VpcId: "STRING_VALUE",
+ * //                     Ec2InstanceUids: [ // Ec2InstanceUids
+ * //                       "STRING_VALUE",
+ * //                     ],
+ * //                   },
+ * //                   KubernetesWorkload: { // KubernetesWorkload
+ * //                     ContainerUids: [ // ContainerUids
+ * //                       "STRING_VALUE",
+ * //                     ],
+ * //                     Namespace: "STRING_VALUE",
+ * //                     KubernetesResourcesTypes: "PODS" || "JOBS" || "CRONJOBS" || "DEPLOYMENTS" || "DAEMONSETS" || "STATEFULSETS" || "REPLICASETS" || "REPLICATIONCONTROLLERS",
+ * //                   },
+ * //                   Container: { // ContainerFindingResource
+ * //                     Image: "STRING_VALUE", // required
+ * //                     ImageUid: "STRING_VALUE",
+ * //                   },
  * //                 },
  * //               },
  * //             ],
@@ -944,7 +970,7 @@ declare const GetFindingsCommand_base: {
  * //             Signals: [ // Signals // required
  * //               { // Signal
  * //                 Uid: "STRING_VALUE", // required
- * //                 Type: "FINDING" || "CLOUD_TRAIL" || "S3_DATA_EVENTS", // required
+ * //                 Type: "FINDING" || "CLOUD_TRAIL" || "S3_DATA_EVENTS" || "EKS_AUDIT_LOGS" || "FLOW_LOGS" || "DNS_LOGS" || "RUNTIME_MONITORING", // required
  * //                 Description: "STRING_VALUE",
  * //                 Name: "STRING_VALUE", // required
  * //                 CreatedAt: new Date("TIMESTAMP"), // required
@@ -964,7 +990,7 @@ declare const GetFindingsCommand_base: {
  * //                 ],
  * //                 SignalIndicators: [ // Indicators
  * //                   { // Indicator
- * //                     Key: "SUSPICIOUS_USER_AGENT" || "SUSPICIOUS_NETWORK" || "MALICIOUS_IP" || "TOR_IP" || "ATTACK_TACTIC" || "HIGH_RISK_API" || "ATTACK_TECHNIQUE" || "UNUSUAL_API_FOR_ACCOUNT" || "UNUSUAL_ASN_FOR_ACCOUNT" || "UNUSUAL_ASN_FOR_USER", // required
+ * //                     Key: "SUSPICIOUS_USER_AGENT" || "SUSPICIOUS_NETWORK" || "MALICIOUS_IP" || "TOR_IP" || "ATTACK_TACTIC" || "HIGH_RISK_API" || "ATTACK_TECHNIQUE" || "UNUSUAL_API_FOR_ACCOUNT" || "UNUSUAL_ASN_FOR_ACCOUNT" || "UNUSUAL_ASN_FOR_USER" || "SUSPICIOUS_PROCESS" || "MALICIOUS_DOMAIN" || "MALICIOUS_PROCESS" || "CRYPTOMINING_IP" || "CRYPTOMINING_DOMAIN" || "CRYPTOMINING_PROCESS", // required
  * //                     Values: [ // IndicatorValues
  * //                       "STRING_VALUE",
  * //                     ],
@@ -975,13 +1001,16 @@ declare const GetFindingsCommand_base: {
  * //             ],
  * //             SequenceIndicators: [
  * //               {
- * //                 Key: "SUSPICIOUS_USER_AGENT" || "SUSPICIOUS_NETWORK" || "MALICIOUS_IP" || "TOR_IP" || "ATTACK_TACTIC" || "HIGH_RISK_API" || "ATTACK_TECHNIQUE" || "UNUSUAL_API_FOR_ACCOUNT" || "UNUSUAL_ASN_FOR_ACCOUNT" || "UNUSUAL_ASN_FOR_USER", // required
+ * //                 Key: "SUSPICIOUS_USER_AGENT" || "SUSPICIOUS_NETWORK" || "MALICIOUS_IP" || "TOR_IP" || "ATTACK_TACTIC" || "HIGH_RISK_API" || "ATTACK_TECHNIQUE" || "UNUSUAL_API_FOR_ACCOUNT" || "UNUSUAL_ASN_FOR_ACCOUNT" || "UNUSUAL_ASN_FOR_USER" || "SUSPICIOUS_PROCESS" || "MALICIOUS_DOMAIN" || "MALICIOUS_PROCESS" || "CRYPTOMINING_IP" || "CRYPTOMINING_DOMAIN" || "CRYPTOMINING_PROCESS", // required
  * //                 Values: [
  * //                   "STRING_VALUE",
  * //                 ],
  * //                 Title: "STRING_VALUE",
  * //               },
  * //             ],
+ * //             AdditionalSequenceTypes: [ // AdditionalSequenceTypes
+ * //               "STRING_VALUE",
+ * //             ],
  * //           },
  * //         },
  * //         MalwareScanDetails: { // MalwareScanDetails

package/dist-types/commands/GetFindingsStatisticsCommand.d.ts

@@ -1,7 +1,7 @@
 import { Command as $Command } from "@smithy/smithy-client";
 import { MetadataBearer as __MetadataBearer } from "@smithy/types";
 import { GuardDutyClientResolvedConfig, ServiceInputTypes, ServiceOutputTypes } from "../GuardDutyClient";
-import { GetFindingsStatisticsRequest, GetFindingsStatisticsResponse } from "../models/models_0";
+import { GetFindingsStatisticsRequest, GetFindingsStatisticsResponse } from "../models/models_1";
 /**
  * @public
  */

package/dist-types/commands/GetInvitationsCountCommand.d.ts

@@ -1,7 +1,7 @@
 import { Command as $Command } from "@smithy/smithy-client";
 import { MetadataBearer as __MetadataBearer } from "@smithy/types";
 import { GuardDutyClientResolvedConfig, ServiceInputTypes, ServiceOutputTypes } from "../GuardDutyClient";
-import { GetInvitationsCountRequest, GetInvitationsCountResponse } from "../models/models_0";
+import { GetInvitationsCountRequest, GetInvitationsCountResponse } from "../models/models_1";
 /**
  * @public
  */

package/dist-types/endpoint/EndpointParameters.d.ts

@@ -8,7 +8,7 @@ export interface ClientInputEndpointParameters {
     useFipsEndpoint?: boolean | undefined | Provider<boolean | undefined>;
     endpoint?: string | Provider<string> | Endpoint | Provider<Endpoint> | EndpointV2 | Provider<EndpointV2>;
 }
-export type ClientResolvedEndpointParameters = ClientInputEndpointParameters & {
+export type ClientResolvedEndpointParameters = Omit<ClientInputEndpointParameters, "endpoint"> & {
     defaultSigningName: string;
 };
 export declare const resolveClientEndpointParameters: <T>(options: T & ClientInputEndpointParameters) => T & ClientResolvedEndpointParameters;

package/dist-types/models/models_0.d.ts

@@ -215,6 +215,34 @@ export interface AccountDetail {
     AccountId: string | undefined;
     /**
      * <p>The email address of the member account.</p>
+     *          <p>The rules for a valid email address:</p>
+     *          <ul>
+     *             <li>
+     *                <p>The email address must be a minimum of 6 and a maximum of 64 characters long.</p>
+     *             </li>
+     *             <li>
+     *                <p>All characters must be 7-bit ASCII characters.</p>
+     *             </li>
+     *             <li>
+     *                <p>There must be one and only one @ symbol, which separates the local name from the domain name.</p>
+     *             </li>
+     *             <li>
+     *                <p>The local name can't contain any of the following characters:</p>
+     *                <p>whitespace, " ' ( ) < > [ ] : ' , \ | % &</p>
+     *             </li>
+     *             <li>
+     *                <p>The local name can't begin with a dot (.).</p>
+     *             </li>
+     *             <li>
+     *                <p>The domain name can consist of only the characters [a-z], [A-Z], [0-9], hyphen (-), or dot (.).</p>
+     *             </li>
+     *             <li>
+     *                <p>The domain name can't begin or end with a dot (.) or hyphen (-).</p>
+     *             </li>
+     *             <li>
+     *                <p>The domain name must contain at least one dot. </p>
+     *             </li>
+     *          </ul>
      * @public
      */
     Email: string | undefined;
@@ -1006,6 +1034,29 @@ export interface Action {
      */
     KubernetesRoleDetails?: KubernetesRoleDetails | undefined;
 }
+/**
+ * <p>Contains information about a process involved in a GuardDuty finding, including process identification,
+ *       execution details, and file information.</p>
+ * @public
+ */
+export interface ActorProcess {
+    /**
+     * <p>The name of the process as it appears in the system.</p>
+     * @public
+     */
+    Name: string | undefined;
+    /**
+     * <p>The full file path to the process executable on the system.</p>
+     * @public
+     */
+    Path: string | undefined;
+    /**
+     * <p>The SHA256 hash of the process executable file, which can be used for identification
+     *       and verification purposes.</p>
+     * @public
+     */
+    Sha256?: string | undefined;
+}
 /**
  * @public
  * @enum
@@ -1098,6 +1149,13 @@ export interface Actor {
      * @public
      */
     Session?: Session | undefined;
+    /**
+     * <p>Contains information about the process associated with the threat actor.
+     *       This includes details such as process name, path, execution time, and
+     *       unique identifiers that help track the actor's activities within the system.</p>
+     * @public
+     */
+    Process?: ActorProcess | undefined;
 }
 /**
  * <p>Information about the installed EKS add-on (GuardDuty security agent).</p>
@@ -1383,6 +1441,22 @@ export interface CloudTrailConfigurationResult {
      */
     Status: DataSourceStatus | undefined;
 }
+/**
+ * @public
+ * @enum
+ */
+export declare const ClusterStatus: {
+    readonly ACTIVE: "ACTIVE";
+    readonly CREATING: "CREATING";
+    readonly DELETING: "DELETING";
+    readonly FAILED: "FAILED";
+    readonly PENDING: "PENDING";
+    readonly UPDATING: "UPDATING";
+};
+/**
+ * @public
+ */
+export type ClusterStatus = (typeof ClusterStatus)[keyof typeof ClusterStatus];
 /**
  * <p>Contains information about the condition.</p>
  * @public
@@ -1572,6 +1646,25 @@ export interface Container {
      */
     SecurityContext?: SecurityContext | undefined;
 }
+/**
+ * <p>Contains information about container resources involved in a GuardDuty finding.
+ *       This structure provides details about containers that were identified as part of
+ *       suspicious or malicious activity.</p>
+ * @public
+ */
+export interface ContainerFindingResource {
+    /**
+     * <p>The container image information, including the image name and tag used to run the container
+     *       that was involved in the finding.</p>
+     * @public
+     */
+    Image: string | undefined;
+    /**
+     * <p>The unique ID associated with the container image.</p>
+     * @public
+     */
+    ImageUid?: string | undefined;
+}
 /**
  * <p>Contains information about the Amazon EC2 instance that is running
  *     the Amazon ECS container.</p>
@@ -3486,10 +3579,6 @@ export interface FilterCriterion {
     /**
      * <p>An enum value representing possible scan properties to match with given scan
      *       entries.</p>
-     *          <note>
-     *             <p>Replace the enum value <code>CLUSTER_NAME</code> with <code>EKS_CLUSTER_NAME</code>.
-     *       <code>CLUSTER_NAME</code> has been deprecated.</p>
-     *          </note>
      * @public
      */
     CriterionKey?: CriterionKey | undefined;
@@ -4444,6 +4533,78 @@ export interface Ec2NetworkInterface {
      */
     VpcId?: string | undefined;
 }
+/**
+ * <p>Contains information about the Amazon EKS cluster involved in a GuardDuty finding,
+ *       including cluster identification, status, and network configuration.</p>
+ * @public
+ */
+export interface EksCluster {
+    /**
+     * <p>The Amazon Resource Name (ARN) that uniquely identifies the Amazon EKS cluster involved in the finding.</p>
+     * @public
+     */
+    Arn?: string | undefined;
+    /**
+     * <p>The timestamp indicating when the Amazon EKS cluster was created, in UTC format.</p>
+     * @public
+     */
+    CreatedAt?: Date | undefined;
+    /**
+     * <p>The current status of the Amazon EKS cluster.</p>
+     * @public
+     */
+    Status?: ClusterStatus | undefined;
+    /**
+     * <p>The ID of the Amazon Virtual Private Cloud (Amazon VPC) associated with the Amazon EKS cluster.</p>
+     * @public
+     */
+    VpcId?: string | undefined;
+    /**
+     * <p>A list of unique identifiers for the Amazon EC2 instances that serve as worker nodes in the Amazon EKS cluster.</p>
+     * @public
+     */
+    Ec2InstanceUids?: string[] | undefined;
+}
+/**
+ * @public
+ * @enum
+ */
+export declare const KubernetesResourcesTypes: {
+    readonly CRONJOBS: "CRONJOBS";
+    readonly DAEMONSETS: "DAEMONSETS";
+    readonly DEPLOYMENTS: "DEPLOYMENTS";
+    readonly JOBS: "JOBS";
+    readonly PODS: "PODS";
+    readonly REPLICASETS: "REPLICASETS";
+    readonly REPLICATIONCONTROLLERS: "REPLICATIONCONTROLLERS";
+    readonly STATEFULSETS: "STATEFULSETS";
+};
+/**
+ * @public
+ */
+export type KubernetesResourcesTypes = (typeof KubernetesResourcesTypes)[keyof typeof KubernetesResourcesTypes];
+/**
+ * <p>Contains information about Kubernetes workloads involved in a GuardDuty finding,
+ *       including pods, deployments, and other Kubernetes resources.</p>
+ * @public
+ */
+export interface KubernetesWorkload {
+    /**
+     * <p>A list of unique identifiers for the containers that are part of the Kubernetes workload.</p>
+     * @public
+     */
+    ContainerUids?: string[] | undefined;
+    /**
+     * <p>The Kubernetes namespace in which the workload is running, providing logical isolation within the cluster.</p>
+     * @public
+     */
+    Namespace?: string | undefined;
+    /**
+     * <p>The types of Kubernetes resources involved in the workload.</p>
+     * @public
+     */
+    KubernetesResourcesTypes?: KubernetesResourcesTypes | undefined;
+}
 /**
  * @public
  * @enum
@@ -4621,6 +4782,24 @@ export interface ResourceData {
      * @public
      */
     S3Object?: S3Object | undefined;
+    /**
+     * <p>Contains detailed information about the Amazon EKS cluster associated with the activity that
+     *       prompted GuardDuty to generate a finding.</p>
+     * @public
+     */
+    EksCluster?: EksCluster | undefined;
+    /**
+     * <p>Contains detailed information about the Kubernetes workload associated with the activity that
+     *       prompted GuardDuty to generate a finding.</p>
+     * @public
+     */
+    KubernetesWorkload?: KubernetesWorkload | undefined;
+    /**
+     * <p>Contains detailed information about the container associated with the activity that
+     *       prompted GuardDuty to generate a finding.</p>
+     * @public
+     */
+    Container?: ContainerFindingResource | undefined;
 }
 /**
  * @public
@@ -4628,8 +4807,11 @@ export interface ResourceData {
  */
 export declare const FindingResourceType: {
     readonly ACCESS_KEY: "ACCESS_KEY";
+    readonly CONTAINER: "CONTAINER";
     readonly EC2_INSTANCE: "EC2_INSTANCE";
     readonly EC2_NETWORK_INTERFACE: "EC2_NETWORK_INTERFACE";
+    readonly EKS_CLUSTER: "EKS_CLUSTER";
+    readonly KUBERNETES_WORKLOAD: "KUBERNETES_WORKLOAD";
     readonly S3_BUCKET: "S3_BUCKET";
     readonly S3_OBJECT: "S3_OBJECT";
 };
@@ -4712,9 +4894,15 @@ export interface ResourceV2 {
 export declare const IndicatorType: {
     readonly ATTACK_TACTIC: "ATTACK_TACTIC";
     readonly ATTACK_TECHNIQUE: "ATTACK_TECHNIQUE";
+    readonly CRYPTOMINING_DOMAIN: "CRYPTOMINING_DOMAIN";
+    readonly CRYPTOMINING_IP: "CRYPTOMINING_IP";
+    readonly CRYPTOMINING_PROCESS: "CRYPTOMINING_PROCESS";
     readonly HIGH_RISK_API: "HIGH_RISK_API";
+    readonly MALICIOUS_DOMAIN: "MALICIOUS_DOMAIN";
     readonly MALICIOUS_IP: "MALICIOUS_IP";
+    readonly MALICIOUS_PROCESS: "MALICIOUS_PROCESS";
     readonly SUSPICIOUS_NETWORK: "SUSPICIOUS_NETWORK";
+    readonly SUSPICIOUS_PROCESS: "SUSPICIOUS_PROCESS";
     readonly SUSPICIOUS_USER_AGENT: "SUSPICIOUS_USER_AGENT";
     readonly TOR_IP: "TOR_IP";
     readonly UNUSUAL_API_FOR_ACCOUNT: "UNUSUAL_API_FOR_ACCOUNT";
@@ -4756,7 +4944,11 @@ export interface Indicator {
  */
 export declare const SignalType: {
     readonly CLOUD_TRAIL: "CLOUD_TRAIL";
+    readonly DNS_LOGS: "DNS_LOGS";
+    readonly EKS_AUDIT_LOGS: "EKS_AUDIT_LOGS";
     readonly FINDING: "FINDING";
+    readonly FLOW_LOGS: "FLOW_LOGS";
+    readonly RUNTIME_MONITORING: "RUNTIME_MONITORING";
     readonly S3_DATA_EVENTS: "S3_DATA_EVENTS";
 };
 /**
@@ -4905,6 +5097,12 @@ export interface Sequence {
      * @public
      */
     SequenceIndicators?: Indicator[] | undefined;
+    /**
+     * <p>Additional types of sequences that may be associated with the attack sequence finding,
+     *       providing further context about the nature of the detected threat.</p>
+     * @public
+     */
+    AdditionalSequenceTypes?: string[] | undefined;
 }
 /**
  * <p>Contains information about the detected behavior.</p>
@@ -6667,7 +6865,11 @@ export interface Finding {
      */
     Partition?: string | undefined;
     /**
-     * <p>The Region where the finding was generated.</p>
+     * <p>The Region where the finding was generated. For findings generated
+     *       from <a href="https://docs.aws.amazon.com/awscloudtrail/latest/userguide/cloudtrail-concepts.html#cloudtrail-concepts-global-service-events">Global Service Events</a>, the Region value in the finding might differ from the Region where
+     *       GuardDuty identifies the potential threat. For more information,
+     *       see <a href="https://docs.aws.amazon.com/guardduty/latest/ug/guardduty_data-sources.html#cloudtrail_global">How GuardDuty
+     *         handles Amazon Web Services CloudTrail global events</a> in the <i>Amazon GuardDuty User Guide</i>.</p>
      * @public
      */
     Region: string | undefined;
@@ -7076,105 +7278,6 @@ export interface GetFindingsRequest {
      */
     SortCriteria?: SortCriteria | undefined;
 }
-/**
- * @public
- */
-export interface GetFindingsResponse {
-    /**
-     * <p>A list of findings.</p>
-     * @public
-     */
-    Findings: Finding[] | undefined;
-}
-/**
- * @public
- * @enum
- */
-export declare const GroupByType: {
-    readonly ACCOUNT: "ACCOUNT";
-    readonly DATE: "DATE";
-    readonly FINDING_TYPE: "FINDING_TYPE";
-    readonly RESOURCE: "RESOURCE";
-    readonly SEVERITY: "SEVERITY";
-};
-/**
- * @public
- */
-export type GroupByType = (typeof GroupByType)[keyof typeof GroupByType];
-/**
- * @public
- */
-export interface GetFindingsStatisticsRequest {
-    /**
-     * <p>The ID of the detector whose findings statistics you
-     *       want to retrieve.</p>
-     *          <p>To find the <code>detectorId</code> in the current Region, see the
-     * Settings page in the GuardDuty console, or run the <a href="https://docs.aws.amazon.com/guardduty/latest/APIReference/API_ListDetectors.html">ListDetectors</a> API.</p>
-     * @public
-     */
-    DetectorId: string | undefined;
-    /**
-     * <p>The types of finding statistics to retrieve.</p>
-     *
-     * @deprecated
-     * @public
-     */
-    FindingStatisticTypes?: FindingStatisticType[] | undefined;
-    /**
-     * <p>Represents the criteria that is used for querying findings.</p>
-     * @public
-     */
-    FindingCriteria?: FindingCriteria | undefined;
-    /**
-     * <p>Displays the findings statistics grouped by one of the listed valid values.</p>
-     * @public
-     */
-    GroupBy?: GroupByType | undefined;
-    /**
-     * <p>Displays the sorted findings in the requested order. The default
-     *       value of <code>orderBy</code> is <code>DESC</code>.</p>
-     *          <p>You can use this parameter only with the <code>groupBy</code> parameter.</p>
-     * @public
-     */
-    OrderBy?: OrderBy | undefined;
-    /**
-     * <p>The maximum number of results to be returned in the response. The default value is 25.</p>
-     *          <p>You can use this parameter only with the <code>groupBy</code> parameter.</p>
-     * @public
-     */
-    MaxResults?: number | undefined;
-}
-/**
- * @public
- */
-export interface GetFindingsStatisticsResponse {
-    /**
-     * <p>The finding statistics object.</p>
-     * @public
-     */
-    FindingStatistics: FindingStatistics | undefined;
-    /**
-     * <p>The pagination parameter to be used on the next list operation to retrieve more items.</p>
-     *          <p>This parameter is currently not supported.</p>
-     * @public
-     */
-    NextToken?: string | undefined;
-}
-/**
- * @public
- */
-export interface GetInvitationsCountRequest {
-}
-/**
- * @public
- */
-export interface GetInvitationsCountResponse {
-    /**
-     * <p>The number of received invitations.</p>
-     * @public
-     */
-    InvitationsCount?: number | undefined;
-}
 /**
  * @internal
  */
@@ -7263,7 +7366,3 @@ export declare const ServiceFilterSensitiveLog: (obj: Service) => any;
  * @internal
  */
 export declare const FindingFilterSensitiveLog: (obj: Finding) => any;
-/**
- * @internal
- */
-export declare const GetFindingsResponseFilterSensitiveLog: (obj: GetFindingsResponse) => any;

package/dist-types/models/models_1.d.ts

@@ -1,4 +1,103 @@
-import { AccountFreeTrialInfo, AdminAccount, AutoEnableMembers, CoverageFilterCriteria, CoverageResource, CoverageSortCriteria, CreateProtectedResource, DataSource, DataSourceConfigurations, DataSourceConfigurationsResult, Destination, DestinationProperties, DetectorFeatureConfiguration, EbsSnapshotPreservation, FeatureStatus, Feedback, FilterAction, FindingCriteria, FindingPublishingFrequency, IpSetFormat, MalwareProtectionPlanActions, OrgFeature, OrgFeatureAdditionalConfiguration, OrgFeatureStatus, SortCriteria, ThreatIntelSetFormat, UnprocessedAccount } from "./models_0";
+import { AccountFreeTrialInfo, AdminAccount, AutoEnableMembers, CoverageFilterCriteria, CoverageResource, CoverageSortCriteria, CreateProtectedResource, DataSource, DataSourceConfigurations, DataSourceConfigurationsResult, Destination, DestinationProperties, DetectorFeatureConfiguration, EbsSnapshotPreservation, FeatureStatus, Feedback, FilterAction, Finding, FindingCriteria, FindingPublishingFrequency, FindingStatistics, FindingStatisticType, IpSetFormat, MalwareProtectionPlanActions, OrderBy, OrgFeature, OrgFeatureAdditionalConfiguration, OrgFeatureStatus, SortCriteria, ThreatIntelSetFormat, UnprocessedAccount } from "./models_0";
+/**
+ * @public
+ */
+export interface GetFindingsResponse {
+    /**
+     * <p>A list of findings.</p>
+     * @public
+     */
+    Findings: Finding[] | undefined;
+}
+/**
+ * @public
+ * @enum
+ */
+export declare const GroupByType: {
+    readonly ACCOUNT: "ACCOUNT";
+    readonly DATE: "DATE";
+    readonly FINDING_TYPE: "FINDING_TYPE";
+    readonly RESOURCE: "RESOURCE";
+    readonly SEVERITY: "SEVERITY";
+};
+/**
+ * @public
+ */
+export type GroupByType = (typeof GroupByType)[keyof typeof GroupByType];
+/**
+ * @public
+ */
+export interface GetFindingsStatisticsRequest {
+    /**
+     * <p>The ID of the detector whose findings statistics you
+     *       want to retrieve.</p>
+     *          <p>To find the <code>detectorId</code> in the current Region, see the
+     * Settings page in the GuardDuty console, or run the <a href="https://docs.aws.amazon.com/guardduty/latest/APIReference/API_ListDetectors.html">ListDetectors</a> API.</p>
+     * @public
+     */
+    DetectorId: string | undefined;
+    /**
+     * <p>The types of finding statistics to retrieve.</p>
+     *
+     * @deprecated
+     * @public
+     */
+    FindingStatisticTypes?: FindingStatisticType[] | undefined;
+    /**
+     * <p>Represents the criteria that is used for querying findings.</p>
+     * @public
+     */
+    FindingCriteria?: FindingCriteria | undefined;
+    /**
+     * <p>Displays the findings statistics grouped by one of the listed valid values.</p>
+     * @public
+     */
+    GroupBy?: GroupByType | undefined;
+    /**
+     * <p>Displays the sorted findings in the requested order. The default
+     *       value of <code>orderBy</code> is <code>DESC</code>.</p>
+     *          <p>You can use this parameter only with the <code>groupBy</code> parameter.</p>
+     * @public
+     */
+    OrderBy?: OrderBy | undefined;
+    /**
+     * <p>The maximum number of results to be returned in the response. The default value is 25.</p>
+     *          <p>You can use this parameter only with the <code>groupBy</code> parameter.</p>
+     * @public
+     */
+    MaxResults?: number | undefined;
+}
+/**
+ * @public
+ */
+export interface GetFindingsStatisticsResponse {
+    /**
+     * <p>The finding statistics object.</p>
+     * @public
+     */
+    FindingStatistics: FindingStatistics | undefined;
+    /**
+     * <p>The pagination parameter to be used on the next list operation to retrieve more items.</p>
+     *          <p>This parameter is currently not supported.</p>
+     * @public
+     */
+    NextToken?: string | undefined;
+}
+/**
+ * @public
+ */
+export interface GetInvitationsCountRequest {
+}
+/**
+ * @public
+ */
+export interface GetInvitationsCountResponse {
+    /**
+     * <p>The number of received invitations.</p>
+     * @public
+     */
+    InvitationsCount?: number | undefined;
+}
 /**
  * @public
  */
@@ -2484,6 +2583,10 @@ export interface UpdateThreatIntelSetRequest {
  */
 export interface UpdateThreatIntelSetResponse {
 }
+/**
+ * @internal
+ */
+export declare const GetFindingsResponseFilterSensitiveLog: (obj: GetFindingsResponse) => any;
 /**
  * @internal
  */

package/dist-types/ts3.4/commands/GetFindingsCommand.d.ts

@@ -5,7 +5,8 @@ import {
   ServiceInputTypes,
   ServiceOutputTypes,
 } from "../GuardDutyClient";
-import { GetFindingsRequest, GetFindingsResponse } from "../models/models_0";
+import { GetFindingsRequest } from "../models/models_0";
+import { GetFindingsResponse } from "../models/models_1";
 export { __MetadataBearer };
 export { $Command };
 export interface GetFindingsCommandInput extends GetFindingsRequest {}

package/dist-types/ts3.4/commands/GetFindingsStatisticsCommand.d.ts

@@ -8,7 +8,7 @@ import {
 import {
   GetFindingsStatisticsRequest,
   GetFindingsStatisticsResponse,
-} from "../models/models_0";
+} from "../models/models_1";
 export { __MetadataBearer };
 export { $Command };
 export interface GetFindingsStatisticsCommandInput