@aws-sdk/client-securityhub 3.1029.0 → 3.1030.0

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.
@@ -1,7 +1,29 @@
1
1
  import type { DocumentType as __DocumentType } from "@smithy/types";
2
2
  import type { AssociationStatus, AssociationType, AutoEnableStandards, BatchUpdateFindingsV2UnprocessedFindingErrorCode, ConfigurationPolicyAssociationStatus, ConnectorAuthStatus, ConnectorProviderName, ConnectorStatus, ControlFindingGenerator, ControlStatus, FindingHistoryUpdateSourceType, FindingsTrendsStringField, GranularityField, IntegrationType, IntegrationV2Type, OcsfBooleanField, OcsfDateField, OcsfIpField, OcsfMapField, OcsfNumberField, OcsfStringField, OrganizationConfigurationConfigurationType, OrganizationConfigurationStatus, ParameterValueType, Partition, RecordState, RegionAvailabilityStatus, ResourceCategory, ResourcesDateField, ResourcesMapField, ResourcesNumberField, ResourcesStringField, ResourcesTrendsStringField, RuleStatus, SecurityControlProperty, SecurityHubFeature, SeverityLabel, SeverityRating, SortOrder, StandardsControlsUpdatable, StandardsStatus, StatusReasonCode, TargetType, ThreatIntelIndicatorCategory, ThreatIntelIndicatorType, TicketCreationMode, UnprocessedErrorCode, UpdateStatus, VerificationState, VulnerabilityExploitAvailable, VulnerabilityFixAvailable, WorkflowState, WorkflowStatus } from "./enums";
3
3
  import type { AccountDetails, Action, ActionTarget, Adjustment, AdminAccount, AggregatorV2, AssociationFilters, AutomationRulesAction, AutomationRulesConfig, AutomationRulesFindingFilters, AutomationRulesMetadata, AutomationRulesMetadataV2, AwsAmazonMqBrokerDetails, AwsApiGatewayRestApiDetails, AwsApiGatewayStageDetails, AwsApiGatewayV2ApiDetails, AwsApiGatewayV2StageDetails, AwsAppSyncGraphQlApiDetails, AwsAthenaWorkGroupDetails, AwsAutoScalingAutoScalingGroupDetails, AwsAutoScalingLaunchConfigurationDetails, AwsBackupBackupPlanDetails, AwsBackupBackupVaultDetails, AwsBackupRecoveryPointDetails, AwsCertificateManagerCertificateDetails, AwsCloudFormationStackDetails, AwsCloudFrontDistributionDetails, AwsCloudTrailTrailDetails, AwsCloudWatchAlarmDetails, AwsCodeBuildProjectDetails, AwsDmsEndpointDetails, AwsDmsReplicationInstanceDetails, AwsDmsReplicationTaskDetails, AwsDynamoDbTableDetails, AwsEc2ClientVpnEndpointDetails, AwsEc2EipDetails, AwsEc2InstanceDetails, AwsEc2LaunchTemplateDetails, AwsEc2NetworkAclDetails, AwsEc2NetworkInterfaceDetails, AwsEc2RouteTableDetails, AwsEc2SecurityGroupDetails, AwsEc2SubnetDetails, AwsEc2TransitGatewayDetails, AwsEc2VolumeDetails, AwsEc2VpcDetails, AwsEc2VpcEndpointServiceDetails, AwsEc2VpcPeeringConnectionDetails, AwsEc2VpnConnectionDetails, AwsEcrContainerImageDetails, AwsEcrRepositoryDetails, AwsEcsClusterDetails, AwsEcsContainerDetails, AwsEcsServiceDetails, DateFilter, MapFilter, NoteUpdate, NumberFilter, RelatedFinding, SeverityUpdate, StringFilter, WorkflowUpdate } from "./models_0";
4
- import type { AwsEcsTaskDefinitionDetails, AwsEcsTaskDetails, AwsEfsAccessPointDetails, AwsEksClusterDetails, AwsElasticBeanstalkEnvironmentDetails, AwsElasticsearchDomainDetails, AwsElbLoadBalancerDetails, AwsElbv2LoadBalancerDetails, AwsEventSchemasRegistryDetails, AwsEventsEndpointDetails, AwsEventsEventbusDetails, AwsGuardDutyDetectorDetails, AwsIamAccessKeyDetails, AwsIamGroupDetails, AwsIamPolicyDetails, AwsIamRoleDetails, AwsIamUserDetails, AwsKinesisStreamDetails, AwsKmsKeyDetails, AwsLambdaFunctionDetails, AwsLambdaLayerVersionDetails, AwsMskClusterDetails, AwsNetworkFirewallFirewallDetails, AwsNetworkFirewallFirewallPolicyDetails, AwsNetworkFirewallRuleGroupDetails, AwsOpenSearchServiceDomainDetails, AwsRdsDbClusterDetails, AwsRdsDbClusterSnapshotDetails, AwsRdsDbInstanceDetails, AwsRdsDbSecurityGroupDetails, AwsRdsDbSnapshotDetails, AwsRdsEventSubscriptionDetails, AwsRedshiftClusterDetails, AwsRoute53HostedZoneDetails, AwsS3AccessPointDetails, AwsS3AccountPublicAccessBlockDetails, AwsS3BucketDetails, AwsS3ObjectDetails, AwsSageMakerNotebookInstanceDetails, AwsSecretsManagerSecretDetails, AwsSnsTopicDetails, AwsSqsQueueDetails, AwsSsmPatchComplianceDetails, AwsStepFunctionStateMachineDetails, AwsWafRateBasedRuleDetails, AwsWafRegionalRateBasedRuleDetails, AwsWafRegionalRuleDetails, AwsWafRegionalRuleGroupDetails, AwsWafRegionalWebAclDetails, AwsWafRuleDetails, AwsWafRuleGroupDetails, AwsWafv2CustomHttpHeader, Compliance, DataClassificationDetails, Detection, FindingProviderFields, GeneratorDetails, Malware, Network, NetworkPathComponent, Note, PatchSummary, ProcessDetails, Remediation } from "./models_1";
4
+ import type { AwsEcsTaskDefinitionDetails, AwsEcsTaskDetails, AwsEfsAccessPointDetails, AwsEksClusterDetails, AwsElasticBeanstalkEnvironmentDetails, AwsElasticsearchDomainDetails, AwsElbLoadBalancerDetails, AwsElbv2LoadBalancerDetails, AwsEventSchemasRegistryDetails, AwsEventsEndpointDetails, AwsEventsEventbusDetails, AwsGuardDutyDetectorDetails, AwsIamAccessKeyDetails, AwsIamGroupDetails, AwsIamPolicyDetails, AwsIamRoleDetails, AwsIamUserDetails, AwsKinesisStreamDetails, AwsKmsKeyDetails, AwsLambdaFunctionDetails, AwsLambdaLayerVersionDetails, AwsMskClusterDetails, AwsNetworkFirewallFirewallDetails, AwsNetworkFirewallFirewallPolicyDetails, AwsNetworkFirewallRuleGroupDetails, AwsOpenSearchServiceDomainDetails, AwsOrganizationScope, AwsRdsDbClusterDetails, AwsRdsDbClusterSnapshotDetails, AwsRdsDbInstanceDetails, AwsRdsDbSecurityGroupDetails, AwsRdsDbSnapshotDetails, AwsRdsEventSubscriptionDetails, AwsRedshiftClusterDetails, AwsRoute53HostedZoneDetails, AwsS3AccessPointDetails, AwsS3AccountPublicAccessBlockDetails, AwsS3BucketDetails, AwsS3ObjectDetails, AwsSageMakerNotebookInstanceDetails, AwsSecretsManagerSecretDetails, AwsSnsTopicDetails, AwsSqsQueueDetails, AwsSsmPatchComplianceDetails, AwsStepFunctionStateMachineDetails, AwsWafRateBasedRuleDetails, AwsWafRegionalRateBasedRuleDetails, AwsWafRegionalRuleDetails, AwsWafRegionalRuleGroupDetails, AwsWafRegionalWebAclDetails, AwsWafRuleDetails, AwsWafRuleGroupDetails, Compliance, DataClassificationDetails, Detection, FindingProviderFields, GeneratorDetails, Malware, Network, NetworkPathComponent, Note, PatchSummary, ProcessDetails, Remediation } from "./models_1";
5
+ /**
6
+ * <p>
7
+ * A custom header for custom request and response handling.
8
+ * </p>
9
+ * @public
10
+ */
11
+ export interface AwsWafv2CustomHttpHeader {
12
+ /**
13
+ * <p>
14
+ * The name of the custom header.
15
+ * </p>
16
+ * @public
17
+ */
18
+ Name?: string | undefined;
19
+ /**
20
+ * <p>
21
+ * The value of the custom header.
22
+ * </p>
23
+ * @public
24
+ */
25
+ Value?: string | undefined;
26
+ }
5
27
  /**
6
28
  * <p>
7
29
  * Custom request handling behavior that inserts custom headers into a web request. WAF uses custom request handling when the rule action doesn't block the request.
@@ -4276,14 +4298,14 @@ export interface BatchUpdateFindingsV2Request {
4276
4298
  Comment?: string | undefined;
4277
4299
  /**
4278
4300
  * <p>The updated value for the normalized severity identifier.
4279
- * The severity ID is an integer with the allowed enum values [0, 1, 2, 3, 4, 5, 99].
4301
+ * The severity ID is an integer with the allowed enum values [0, 1, 2, 3, 4, 5, 6, 99].
4280
4302
  * When customer provides the updated severity ID, the string sibling severity will automatically be updated in the finding.</p>
4281
4303
  * @public
4282
4304
  */
4283
4305
  SeverityId?: number | undefined;
4284
4306
  /**
4285
4307
  * <p>The updated value for the normalized status identifier.
4286
- * The status ID is an integer with the allowed enum values [0, 1, 2, 3, 4, 5, 6, 99].
4308
+ * The status ID is an integer with the allowed enum values [0, 1, 2, 3, 4, 5, 99].
4287
4309
  * When customer provides the updated status ID, the string sibling status will automatically be updated in the finding.</p>
4288
4310
  * @public
4289
4311
  */
@@ -6282,7 +6304,7 @@ export interface ProductV2 {
6282
6304
  */
6283
6305
  ActivationUrl?: string | undefined;
6284
6306
  /**
6285
- * <p>The identifier for the AWS Marketplace product associated with this integration.</p>
6307
+ * <p>The identifier for the Amazon Web Services Marketplace product associated with this integration.</p>
6286
6308
  * @public
6287
6309
  */
6288
6310
  MarketplaceProductId?: string | undefined;
@@ -6845,6 +6867,17 @@ export interface FindingHistoryRecord {
6845
6867
  */
6846
6868
  NextToken?: string | undefined;
6847
6869
  }
6870
+ /**
6871
+ * <p>Defines the data boundary for a findings query. Scopes determine which organizational units or organizations to retrieve data from.</p>
6872
+ * @public
6873
+ */
6874
+ export interface FindingScopes {
6875
+ /**
6876
+ * <p>A list of Organizations scopes to include in the query results. Each entry in the list specifies an organization or organizational unit to include for the delegated administrator's account. If the list specifies multiple entries, the entries are combined using OR logic.</p>
6877
+ * @public
6878
+ */
6879
+ AwsOrganizations?: AwsOrganizationScope[] | undefined;
6880
+ }
6848
6881
  /**
6849
6882
  * <p>A filter for string-based fields in findings trend data.</p>
6850
6883
  * @public
@@ -7969,6 +8002,17 @@ export interface ResourcesStringFilter {
7969
8002
  */
7970
8003
  Filter?: StringFilter | undefined;
7971
8004
  }
8005
+ /**
8006
+ * <p>Defines the data boundary for a resources query. Scopes determine which organizational units or organizations to retrieve data from.</p>
8007
+ * @public
8008
+ */
8009
+ export interface ResourceScopes {
8010
+ /**
8011
+ * <p>A list of Organizations scopes to include in the query results. Each entry in the list specifies an organization or organizational unit to include for the delegated administrator's account. If the list specifies multiple entries, the entries are combined using OR logic.</p>
8012
+ * @public
8013
+ */
8014
+ AwsOrganizations?: AwsOrganizationScope[] | undefined;
8015
+ }
7972
8016
  /**
7973
8017
  * @public
7974
8018
  */
@@ -8212,7 +8256,7 @@ export interface ResourceResult {
8212
8256
  */
8213
8257
  export interface GetResourcesV2Response {
8214
8258
  /**
8215
- * <p>Filters resources based on a set of criteria.</p>
8259
+ * <p>An array of resources returned by the operation.</p>
8216
8260
  * @public
8217
8261
  */
8218
8262
  Resources: ResourceResult[] | undefined;
@@ -8891,98 +8935,3 @@ export interface ListStandardsControlAssociationsRequest {
8891
8935
  */
8892
8936
  MaxResults?: number | undefined;
8893
8937
  }
8894
- /**
8895
- * <p> An array that provides the enablement status and other details for each control that
8896
- * applies to each enabled standard. </p>
8897
- * @public
8898
- */
8899
- export interface StandardsControlAssociationSummary {
8900
- /**
8901
- * <p>
8902
- * The Amazon Resource Name (ARN) of a standard.
8903
- * </p>
8904
- * @public
8905
- */
8906
- StandardsArn: string | undefined;
8907
- /**
8908
- * <p>
8909
- * A unique standard-agnostic identifier for a control. Values for this field typically consist of an
8910
- * Amazon Web Services service and a number, such as APIGateway.5. This field doesn't reference a specific standard.
8911
- * </p>
8912
- * @public
8913
- */
8914
- SecurityControlId: string | undefined;
8915
- /**
8916
- * <p> The ARN of a control, such as
8917
- * <code>arn:aws:securityhub:eu-central-1:123456789012:security-control/S3.1</code>. This
8918
- * parameter doesn't mention a specific standard. </p>
8919
- * @public
8920
- */
8921
- SecurityControlArn: string | undefined;
8922
- /**
8923
- * <p>
8924
- * The enablement status of a control in a specific standard.
8925
- * </p>
8926
- * @public
8927
- */
8928
- AssociationStatus: AssociationStatus | undefined;
8929
- /**
8930
- * <p>
8931
- * The requirement that underlies this control in the compliance framework related to the standard.
8932
- * </p>
8933
- * @public
8934
- */
8935
- RelatedRequirements?: string[] | undefined;
8936
- /**
8937
- * <p>The last time that a control's enablement status in a specified standard was updated.</p>
8938
- * @public
8939
- */
8940
- UpdatedAt?: Date | undefined;
8941
- /**
8942
- * <p>The reason for updating a control's enablement status in a specified standard.</p>
8943
- * @public
8944
- */
8945
- UpdatedReason?: string | undefined;
8946
- /**
8947
- * <p>
8948
- * The title of a control.
8949
- * </p>
8950
- * @public
8951
- */
8952
- StandardsControlTitle?: string | undefined;
8953
- /**
8954
- * <p>
8955
- * The description of a control. This typically summarizes how Security Hub CSPM evaluates the control and the
8956
- * conditions under which it produces a failed finding. The parameter may reference a specific standard.
8957
- * </p>
8958
- * @public
8959
- */
8960
- StandardsControlDescription?: string | undefined;
8961
- }
8962
- /**
8963
- * @public
8964
- */
8965
- export interface ListStandardsControlAssociationsResponse {
8966
- /**
8967
- * <p> An array that provides the enablement status and other details for each security
8968
- * control that applies to each enabled standard. </p>
8969
- * @public
8970
- */
8971
- StandardsControlAssociationSummaries: StandardsControlAssociationSummary[] | undefined;
8972
- /**
8973
- * <p> A pagination parameter that's included in the response only if it was included in the
8974
- * request. </p>
8975
- * @public
8976
- */
8977
- NextToken?: string | undefined;
8978
- }
8979
- /**
8980
- * @public
8981
- */
8982
- export interface ListTagsForResourceRequest {
8983
- /**
8984
- * <p>The ARN of the resource to retrieve tags for.</p>
8985
- * @public
8986
- */
8987
- ResourceArn: string | undefined;
8988
- }
@@ -1,6 +1,101 @@
1
- import type { AllowedOperators, AssociationType, AutoEnableStandards, ConfigurationPolicyAssociationStatus, ControlFindingGenerator, ControlStatus, GroupByField, RecordState, ResourceGroupByField, RuleStatusV2, SortOrder, TargetType } from "./enums";
1
+ import type { AllowedOperators, AssociationStatus, AssociationType, AutoEnableStandards, ConfigurationPolicyAssociationStatus, ControlFindingGenerator, ControlStatus, GroupByField, RecordState, ResourceGroupByField, RuleStatusV2, SortOrder, TargetType } from "./enums";
2
2
  import type { AutomationRulesActionV2, NoteUpdate } from "./models_0";
3
- import type { AwsSecurityFindingFilters, FindingsTrendsStringFilter, JiraCloudUpdateConfiguration, OcsfBooleanFilter, OcsfDateFilter, OcsfIpFilter, OcsfMapFilter, OcsfNumberFilter, OcsfStringFilter, OrganizationConfiguration, ParameterConfiguration, Policy, ResourcesDateFilter, ResourcesMapFilter, ResourcesNumberFilter, ResourcesStringFilter, ResourcesTrendsStringFilter, SortCriterion, Target } from "./models_2";
3
+ import type { AwsSecurityFindingFilters, FindingScopes, FindingsTrendsStringFilter, JiraCloudUpdateConfiguration, OcsfBooleanFilter, OcsfDateFilter, OcsfIpFilter, OcsfMapFilter, OcsfNumberFilter, OcsfStringFilter, OrganizationConfiguration, ParameterConfiguration, Policy, ResourceScopes, ResourcesDateFilter, ResourcesMapFilter, ResourcesNumberFilter, ResourcesStringFilter, ResourcesTrendsStringFilter, SortCriterion, Target } from "./models_2";
4
+ /**
5
+ * <p> An array that provides the enablement status and other details for each control that
6
+ * applies to each enabled standard. </p>
7
+ * @public
8
+ */
9
+ export interface StandardsControlAssociationSummary {
10
+ /**
11
+ * <p>
12
+ * The Amazon Resource Name (ARN) of a standard.
13
+ * </p>
14
+ * @public
15
+ */
16
+ StandardsArn: string | undefined;
17
+ /**
18
+ * <p>
19
+ * A unique standard-agnostic identifier for a control. Values for this field typically consist of an
20
+ * Amazon Web Services service and a number, such as APIGateway.5. This field doesn't reference a specific standard.
21
+ * </p>
22
+ * @public
23
+ */
24
+ SecurityControlId: string | undefined;
25
+ /**
26
+ * <p> The ARN of a control, such as
27
+ * <code>arn:aws:securityhub:eu-central-1:123456789012:security-control/S3.1</code>. This
28
+ * parameter doesn't mention a specific standard. </p>
29
+ * @public
30
+ */
31
+ SecurityControlArn: string | undefined;
32
+ /**
33
+ * <p>
34
+ * The enablement status of a control in a specific standard.
35
+ * </p>
36
+ * @public
37
+ */
38
+ AssociationStatus: AssociationStatus | undefined;
39
+ /**
40
+ * <p>
41
+ * The requirement that underlies this control in the compliance framework related to the standard.
42
+ * </p>
43
+ * @public
44
+ */
45
+ RelatedRequirements?: string[] | undefined;
46
+ /**
47
+ * <p>The last time that a control's enablement status in a specified standard was updated.</p>
48
+ * @public
49
+ */
50
+ UpdatedAt?: Date | undefined;
51
+ /**
52
+ * <p>The reason for updating a control's enablement status in a specified standard.</p>
53
+ * @public
54
+ */
55
+ UpdatedReason?: string | undefined;
56
+ /**
57
+ * <p>
58
+ * The title of a control.
59
+ * </p>
60
+ * @public
61
+ */
62
+ StandardsControlTitle?: string | undefined;
63
+ /**
64
+ * <p>
65
+ * The description of a control. This typically summarizes how Security Hub CSPM evaluates the control and the
66
+ * conditions under which it produces a failed finding. The parameter may reference a specific standard.
67
+ * </p>
68
+ * @public
69
+ */
70
+ StandardsControlDescription?: string | undefined;
71
+ }
72
+ /**
73
+ * @public
74
+ */
75
+ export interface ListStandardsControlAssociationsResponse {
76
+ /**
77
+ * <p> An array that provides the enablement status and other details for each security
78
+ * control that applies to each enabled standard. </p>
79
+ * @public
80
+ */
81
+ StandardsControlAssociationSummaries: StandardsControlAssociationSummary[] | undefined;
82
+ /**
83
+ * <p> A pagination parameter that's included in the response only if it was included in the
84
+ * request. </p>
85
+ * @public
86
+ */
87
+ NextToken?: string | undefined;
88
+ }
89
+ /**
90
+ * @public
91
+ */
92
+ export interface ListTagsForResourceRequest {
93
+ /**
94
+ * <p>The ARN of the resource to retrieve tags for.</p>
95
+ * @public
96
+ */
97
+ ResourceArn: string | undefined;
98
+ }
4
99
  /**
5
100
  * @public
6
101
  */
@@ -975,6 +1070,14 @@ export interface GetFindingsV2Request {
975
1070
  * @public
976
1071
  */
977
1072
  Filters?: OcsfFindingFilters | undefined;
1073
+ /**
1074
+ * <p>Limits the results to findings from specific organizational units or from the delegated administrator's organization.
1075
+ * Only the delegated administrator account can use this parameter. Other accounts receive an <code>AccessDeniedException</code>.</p>
1076
+ * <p>This parameter is optional. If you omit it, the delegated administrator sees findings from all accounts across the entire organization. Other accounts see only their own findings.</p>
1077
+ * <p>You can specify up to 10 entries in <code>Scopes.AwsOrganizations</code>. If multiple entries are specified, the entries are combined using OR logic.</p>
1078
+ * @public
1079
+ */
1080
+ Scopes?: FindingScopes | undefined;
978
1081
  /**
979
1082
  * <p>The finding attributes used to sort the list of returned findings.</p>
980
1083
  * @public
@@ -1034,7 +1137,15 @@ export interface GetResourcesV2Request {
1034
1137
  */
1035
1138
  Filters?: ResourcesFilters | undefined;
1036
1139
  /**
1037
- * <p>The finding attributes used to sort the list of returned findings.</p>
1140
+ * <p>Limits the results to resources from specific organizational units or from the delegated administrator's organization.
1141
+ * Only the delegated administrator account can use this parameter. Other accounts receive an <code>AccessDeniedException</code>.</p>
1142
+ * <p>This parameter is optional. If you omit it, the delegated administrator sees resources from all accounts across the entire organization. Other accounts see only their own resources.</p>
1143
+ * <p>You can specify up to 10 entries in <code>Scopes.AwsOrganizations</code>. If multiple entries are specified, the entries are combined using OR logic.</p>
1144
+ * @public
1145
+ */
1146
+ Scopes?: ResourceScopes | undefined;
1147
+ /**
1148
+ * <p>The resource attributes used to sort the list of returned resources.</p>
1038
1149
  * @public
1039
1150
  */
1040
1151
  SortCriteria?: SortCriterion[] | undefined;
@@ -1233,6 +1344,14 @@ export interface GetFindingStatisticsV2Request {
1233
1344
  * @public
1234
1345
  */
1235
1346
  GroupByRules: GroupByRule[] | undefined;
1347
+ /**
1348
+ * <p>Limits the results to findings from specific organizational units or from the delegated administrator's organization.
1349
+ * Only the delegated administrator account can use this parameter. Other accounts receive an <code>AccessDeniedException</code>.</p>
1350
+ * <p>This parameter is optional. If you omit it, the delegated administrator sees statistics from all accounts across the entire organization. Other accounts see only statistics for their own findings.</p>
1351
+ * <p>You can specify up to 10 entries in <code>Scopes.AwsOrganizations</code>. If multiple entries are specified, the entries are combined using OR logic.</p>
1352
+ * @public
1353
+ */
1354
+ Scopes?: FindingScopes | undefined;
1236
1355
  /**
1237
1356
  * <p>Orders the aggregation count in descending or ascending order.
1238
1357
  * Descending order is the default.</p>
@@ -1254,6 +1373,14 @@ export interface GetResourcesStatisticsV2Request {
1254
1373
  * @public
1255
1374
  */
1256
1375
  GroupByRules: ResourceGroupByRule[] | undefined;
1376
+ /**
1377
+ * <p>Limits the results to resources from specific organizational units or from the delegated administrator's organization.
1378
+ * Only the delegated administrator account can use this parameter. Other accounts receive an <code>AccessDeniedException</code>.</p>
1379
+ * <p>This parameter is optional. If you omit it, the delegated administrator sees statistics from all accounts across the entire organization. Other accounts see only statistics for their own resources.</p>
1380
+ * <p>You can specify up to 10 entries in <code>Scopes.AwsOrganizations</code>. If multiple entries are specified, the entries are combined using OR logic.</p>
1381
+ * @public
1382
+ */
1383
+ Scopes?: ResourceScopes | undefined;
1257
1384
  /**
1258
1385
  * <p>Sorts aggregated statistics.</p>
1259
1386
  * @public
@@ -8,6 +8,8 @@ export declare var InternalServerException$: StaticErrorSchema;
8
8
  export declare var InvalidAccessException$: StaticErrorSchema;
9
9
  export declare var InvalidInputException$: StaticErrorSchema;
10
10
  export declare var LimitExceededException$: StaticErrorSchema;
11
+ export declare var OrganizationalUnitNotFoundException$: StaticErrorSchema;
12
+ export declare var OrganizationNotFoundException$: StaticErrorSchema;
11
13
  export declare var ResourceConflictException$: StaticErrorSchema;
12
14
  export declare var ResourceInUseException$: StaticErrorSchema;
13
15
  export declare var ResourceNotFoundException$: StaticErrorSchema;
@@ -414,6 +416,7 @@ export declare var AwsOpenSearchServiceDomainMasterUserOptionsDetails$: StaticSt
414
416
  export declare var AwsOpenSearchServiceDomainNodeToNodeEncryptionOptionsDetails$: StaticStructureSchema;
415
417
  export declare var AwsOpenSearchServiceDomainServiceSoftwareOptionsDetails$: StaticStructureSchema;
416
418
  export declare var AwsOpenSearchServiceDomainVpcOptionsDetails$: StaticStructureSchema;
419
+ export declare var AwsOrganizationScope$: StaticStructureSchema;
417
420
  export declare var AwsRdsDbClusterAssociatedRole$: StaticStructureSchema;
418
421
  export declare var AwsRdsDbClusterDetails$: StaticStructureSchema;
419
422
  export declare var AwsRdsDbClusterMember$: StaticStructureSchema;
@@ -689,6 +692,7 @@ export declare var FindingHistoryUpdate$: StaticStructureSchema;
689
692
  export declare var FindingHistoryUpdateSource$: StaticStructureSchema;
690
693
  export declare var FindingProviderFields$: StaticStructureSchema;
691
694
  export declare var FindingProviderSeverity$: StaticStructureSchema;
695
+ export declare var FindingScopes$: StaticStructureSchema;
692
696
  export declare var FindingsTrendsCompositeFilter$: StaticStructureSchema;
693
697
  export declare var FindingsTrendsFilters$: StaticStructureSchema;
694
698
  export declare var FindingsTrendsStringFilter$: StaticStructureSchema;
@@ -844,6 +848,7 @@ export declare var ResourceFindingsSummary$: StaticStructureSchema;
844
848
  export declare var ResourceGroupByRule$: StaticStructureSchema;
845
849
  export declare var ResourceResult$: StaticStructureSchema;
846
850
  export declare var ResourcesCompositeFilter$: StaticStructureSchema;
851
+ export declare var ResourceScopes$: StaticStructureSchema;
847
852
  export declare var ResourcesCount$: StaticStructureSchema;
848
853
  export declare var ResourcesDateFilter$: StaticStructureSchema;
849
854
  export declare var ResourceSeverityBreakdown$: StaticStructureSchema;
@@ -1,9 +1,7 @@
1
1
  import { Command as $Command } from "@smithy/smithy-client";
2
2
  import { MetadataBearer as __MetadataBearer } from "@smithy/types";
3
- import {
4
- ListStandardsControlAssociationsRequest,
5
- ListStandardsControlAssociationsResponse,
6
- } from "../models/models_2";
3
+ import { ListStandardsControlAssociationsRequest } from "../models/models_2";
4
+ import { ListStandardsControlAssociationsResponse } from "../models/models_3";
7
5
  import {
8
6
  SecurityHubClientResolvedConfig,
9
7
  ServiceInputTypes,
@@ -1,7 +1,9 @@
1
1
  import { Command as $Command } from "@smithy/smithy-client";
2
2
  import { MetadataBearer as __MetadataBearer } from "@smithy/types";
3
- import { ListTagsForResourceRequest } from "../models/models_2";
4
- import { ListTagsForResourceResponse } from "../models/models_3";
3
+ import {
4
+ ListTagsForResourceRequest,
5
+ ListTagsForResourceResponse,
6
+ } from "../models/models_3";
5
7
  import {
6
8
  SecurityHubClientResolvedConfig,
7
9
  ServiceInputTypes,
@@ -104,6 +104,27 @@ export declare class ServiceQuotaExceededException extends __BaseException {
104
104
  opts: __ExceptionOptionType<ServiceQuotaExceededException, __BaseException>
105
105
  );
106
106
  }
107
+ export declare class OrganizationalUnitNotFoundException extends __BaseException {
108
+ readonly name: "OrganizationalUnitNotFoundException";
109
+ readonly $fault: "client";
110
+ Message?: string | undefined;
111
+ Code?: string | undefined;
112
+ constructor(
113
+ opts: __ExceptionOptionType<
114
+ OrganizationalUnitNotFoundException,
115
+ __BaseException
116
+ >
117
+ );
118
+ }
119
+ export declare class OrganizationNotFoundException extends __BaseException {
120
+ readonly name: "OrganizationNotFoundException";
121
+ readonly $fault: "client";
122
+ Message?: string | undefined;
123
+ Code?: string | undefined;
124
+ constructor(
125
+ opts: __ExceptionOptionType<OrganizationNotFoundException, __BaseException>
126
+ );
127
+ }
107
128
  export declare class ResourceInUseException extends __BaseException {
108
129
  readonly name: "ResourceInUseException";
109
130
  readonly $fault: "client";
@@ -941,6 +941,10 @@ export interface AwsOpenSearchServiceDomainDetails {
941
941
  | AwsOpenSearchServiceDomainAdvancedSecurityOptionsDetails
942
942
  | undefined;
943
943
  }
944
+ export interface AwsOrganizationScope {
945
+ OrganizationId?: string | undefined;
946
+ OrganizationalUnitId?: string | undefined;
947
+ }
944
948
  export interface AwsRdsDbClusterAssociatedRole {
945
949
  RoleArn?: string | undefined;
946
950
  Status?: string | undefined;
@@ -2030,7 +2034,3 @@ export interface AwsWafRuleGroupDetails {
2030
2034
  RuleGroupId?: string | undefined;
2031
2035
  Rules?: AwsWafRuleGroupRulesDetails[] | undefined;
2032
2036
  }
2033
- export interface AwsWafv2CustomHttpHeader {
2034
- Name?: string | undefined;
2035
- Value?: string | undefined;
2036
- }
@@ -145,6 +145,7 @@ import {
145
145
  AwsNetworkFirewallFirewallPolicyDetails,
146
146
  AwsNetworkFirewallRuleGroupDetails,
147
147
  AwsOpenSearchServiceDomainDetails,
148
+ AwsOrganizationScope,
148
149
  AwsRdsDbClusterDetails,
149
150
  AwsRdsDbClusterSnapshotDetails,
150
151
  AwsRdsDbInstanceDetails,
@@ -170,7 +171,6 @@ import {
170
171
  AwsWafRegionalWebAclDetails,
171
172
  AwsWafRuleDetails,
172
173
  AwsWafRuleGroupDetails,
173
- AwsWafv2CustomHttpHeader,
174
174
  Compliance,
175
175
  DataClassificationDetails,
176
176
  Detection,
@@ -184,6 +184,10 @@ import {
184
184
  ProcessDetails,
185
185
  Remediation,
186
186
  } from "./models_1";
187
+ export interface AwsWafv2CustomHttpHeader {
188
+ Name?: string | undefined;
189
+ Value?: string | undefined;
190
+ }
187
191
  export interface AwsWafv2CustomRequestHandlingDetails {
188
192
  InsertHeaders?: AwsWafv2CustomHttpHeader[] | undefined;
189
193
  }
@@ -1678,6 +1682,9 @@ export interface FindingHistoryRecord {
1678
1682
  Updates?: FindingHistoryUpdate[] | undefined;
1679
1683
  NextToken?: string | undefined;
1680
1684
  }
1685
+ export interface FindingScopes {
1686
+ AwsOrganizations?: AwsOrganizationScope[] | undefined;
1687
+ }
1681
1688
  export interface FindingsTrendsStringFilter {
1682
1689
  FieldName?: FindingsTrendsStringField | undefined;
1683
1690
  Filter?: StringFilter | undefined;
@@ -1935,6 +1942,9 @@ export interface ResourcesStringFilter {
1935
1942
  FieldName?: ResourcesStringField | undefined;
1936
1943
  Filter?: StringFilter | undefined;
1937
1944
  }
1945
+ export interface ResourceScopes {
1946
+ AwsOrganizations?: AwsOrganizationScope[] | undefined;
1947
+ }
1938
1948
  export interface GetResourcesStatisticsV2Response {
1939
1949
  GroupByResults: GroupByResult[] | undefined;
1940
1950
  }
@@ -2134,23 +2144,3 @@ export interface ListStandardsControlAssociationsRequest {
2134
2144
  NextToken?: string | undefined;
2135
2145
  MaxResults?: number | undefined;
2136
2146
  }
2137
- export interface StandardsControlAssociationSummary {
2138
- StandardsArn: string | undefined;
2139
- SecurityControlId: string | undefined;
2140
- SecurityControlArn: string | undefined;
2141
- AssociationStatus: AssociationStatus | undefined;
2142
- RelatedRequirements?: string[] | undefined;
2143
- UpdatedAt?: Date | undefined;
2144
- UpdatedReason?: string | undefined;
2145
- StandardsControlTitle?: string | undefined;
2146
- StandardsControlDescription?: string | undefined;
2147
- }
2148
- export interface ListStandardsControlAssociationsResponse {
2149
- StandardsControlAssociationSummaries:
2150
- | StandardsControlAssociationSummary[]
2151
- | undefined;
2152
- NextToken?: string | undefined;
2153
- }
2154
- export interface ListTagsForResourceRequest {
2155
- ResourceArn: string | undefined;
2156
- }
@@ -1,5 +1,6 @@
1
1
  import {
2
2
  AllowedOperators,
3
+ AssociationStatus,
3
4
  AssociationType,
4
5
  AutoEnableStandards,
5
6
  ConfigurationPolicyAssociationStatus,
@@ -15,6 +16,7 @@ import {
15
16
  import { AutomationRulesActionV2, NoteUpdate } from "./models_0";
16
17
  import {
17
18
  AwsSecurityFindingFilters,
19
+ FindingScopes,
18
20
  FindingsTrendsStringFilter,
19
21
  JiraCloudUpdateConfiguration,
20
22
  OcsfBooleanFilter,
@@ -26,6 +28,7 @@ import {
26
28
  OrganizationConfiguration,
27
29
  ParameterConfiguration,
28
30
  Policy,
31
+ ResourceScopes,
29
32
  ResourcesDateFilter,
30
33
  ResourcesMapFilter,
31
34
  ResourcesNumberFilter,
@@ -34,6 +37,26 @@ import {
34
37
  SortCriterion,
35
38
  Target,
36
39
  } from "./models_2";
40
+ export interface StandardsControlAssociationSummary {
41
+ StandardsArn: string | undefined;
42
+ SecurityControlId: string | undefined;
43
+ SecurityControlArn: string | undefined;
44
+ AssociationStatus: AssociationStatus | undefined;
45
+ RelatedRequirements?: string[] | undefined;
46
+ UpdatedAt?: Date | undefined;
47
+ UpdatedReason?: string | undefined;
48
+ StandardsControlTitle?: string | undefined;
49
+ StandardsControlDescription?: string | undefined;
50
+ }
51
+ export interface ListStandardsControlAssociationsResponse {
52
+ StandardsControlAssociationSummaries:
53
+ | StandardsControlAssociationSummary[]
54
+ | undefined;
55
+ NextToken?: string | undefined;
56
+ }
57
+ export interface ListTagsForResourceRequest {
58
+ ResourceArn: string | undefined;
59
+ }
37
60
  export interface ListTagsForResourceResponse {
38
61
  Tags?: Record<string, string> | undefined;
39
62
  }
@@ -259,6 +282,7 @@ export interface GetFindingsTrendsV2Request {
259
282
  }
260
283
  export interface GetFindingsV2Request {
261
284
  Filters?: OcsfFindingFilters | undefined;
285
+ Scopes?: FindingScopes | undefined;
262
286
  SortCriteria?: SortCriterion[] | undefined;
263
287
  NextToken?: string | undefined;
264
288
  MaxResults?: number | undefined;
@@ -272,6 +296,7 @@ export interface GetResourcesTrendsV2Request {
272
296
  }
273
297
  export interface GetResourcesV2Request {
274
298
  Filters?: ResourcesFilters | undefined;
299
+ Scopes?: ResourceScopes | undefined;
275
300
  SortCriteria?: SortCriterion[] | undefined;
276
301
  NextToken?: string | undefined;
277
302
  MaxResults?: number | undefined;
@@ -317,11 +342,13 @@ export interface UpdateAutomationRuleV2Request {
317
342
  }
318
343
  export interface GetFindingStatisticsV2Request {
319
344
  GroupByRules: GroupByRule[] | undefined;
345
+ Scopes?: FindingScopes | undefined;
320
346
  SortOrder?: SortOrder | undefined;
321
347
  MaxStatisticResults?: number | undefined;
322
348
  }
323
349
  export interface GetResourcesStatisticsV2Request {
324
350
  GroupByRules: ResourceGroupByRule[] | undefined;
351
+ Scopes?: ResourceScopes | undefined;
325
352
  SortOrder?: SortOrder | undefined;
326
353
  MaxStatisticResults?: number | undefined;
327
354
  }
@@ -13,6 +13,8 @@ export declare var InternalServerException$: StaticErrorSchema;
13
13
  export declare var InvalidAccessException$: StaticErrorSchema;
14
14
  export declare var InvalidInputException$: StaticErrorSchema;
15
15
  export declare var LimitExceededException$: StaticErrorSchema;
16
+ export declare var OrganizationalUnitNotFoundException$: StaticErrorSchema;
17
+ export declare var OrganizationNotFoundException$: StaticErrorSchema;
16
18
  export declare var ResourceConflictException$: StaticErrorSchema;
17
19
  export declare var ResourceInUseException$: StaticErrorSchema;
18
20
  export declare var ResourceNotFoundException$: StaticErrorSchema;
@@ -414,6 +416,7 @@ export declare var AwsOpenSearchServiceDomainMasterUserOptionsDetails$: StaticSt
414
416
  export declare var AwsOpenSearchServiceDomainNodeToNodeEncryptionOptionsDetails$: StaticStructureSchema;
415
417
  export declare var AwsOpenSearchServiceDomainServiceSoftwareOptionsDetails$: StaticStructureSchema;
416
418
  export declare var AwsOpenSearchServiceDomainVpcOptionsDetails$: StaticStructureSchema;
419
+ export declare var AwsOrganizationScope$: StaticStructureSchema;
417
420
  export declare var AwsRdsDbClusterAssociatedRole$: StaticStructureSchema;
418
421
  export declare var AwsRdsDbClusterDetails$: StaticStructureSchema;
419
422
  export declare var AwsRdsDbClusterMember$: StaticStructureSchema;
@@ -689,6 +692,7 @@ export declare var FindingHistoryUpdate$: StaticStructureSchema;
689
692
  export declare var FindingHistoryUpdateSource$: StaticStructureSchema;
690
693
  export declare var FindingProviderFields$: StaticStructureSchema;
691
694
  export declare var FindingProviderSeverity$: StaticStructureSchema;
695
+ export declare var FindingScopes$: StaticStructureSchema;
692
696
  export declare var FindingsTrendsCompositeFilter$: StaticStructureSchema;
693
697
  export declare var FindingsTrendsFilters$: StaticStructureSchema;
694
698
  export declare var FindingsTrendsStringFilter$: StaticStructureSchema;
@@ -844,6 +848,7 @@ export declare var ResourceFindingsSummary$: StaticStructureSchema;
844
848
  export declare var ResourceGroupByRule$: StaticStructureSchema;
845
849
  export declare var ResourceResult$: StaticStructureSchema;
846
850
  export declare var ResourcesCompositeFilter$: StaticStructureSchema;
851
+ export declare var ResourceScopes$: StaticStructureSchema;
847
852
  export declare var ResourcesCount$: StaticStructureSchema;
848
853
  export declare var ResourcesDateFilter$: StaticStructureSchema;
849
854
  export declare var ResourceSeverityBreakdown$: StaticStructureSchema;
package/package.json CHANGED
@@ -1,7 +1,7 @@
1
1
  {
2
2
  "name": "@aws-sdk/client-securityhub",
3
3
  "description": "AWS SDK for JavaScript Securityhub Client for Node.js, Browser and React Native",
4
- "version": "3.1029.0",
4
+ "version": "3.1030.0",
5
5
  "scripts": {
6
6
  "build": "concurrently 'yarn:build:types' 'yarn:build:es' && yarn build:cjs",
7
7
  "build:cjs": "node ../../scripts/compilation/inline client-securityhub",