@aws-sdk/client-securityhub 3.388.0 → 3.395.0
This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.
- package/README.md +4 -2
- package/dist-cjs/SecurityHubClient.js +4 -2
- package/dist-cjs/clientConfiguration.js +2 -0
- package/dist-cjs/endpoint/ruleset.js +1 -1
- package/dist-cjs/models/models_1.js +5 -8
- package/dist-cjs/models/models_2.js +8 -1
- package/dist-cjs/protocols/Aws_restJson1.js +8 -0
- package/dist-cjs/runtimeConfig.shared.js +1 -0
- package/dist-cjs/runtimeExtensions.js +16 -0
- package/dist-es/SecurityHubClient.js +4 -2
- package/dist-es/clientConfiguration.js +1 -0
- package/dist-es/endpoint/ruleset.js +1 -1
- package/dist-es/models/models_1.js +4 -7
- package/dist-es/models/models_2.js +7 -0
- package/dist-es/protocols/Aws_restJson1.js +8 -0
- package/dist-es/runtimeConfig.shared.js +1 -0
- package/dist-es/runtimeExtensions.js +12 -0
- package/dist-types/SecurityHub.d.ts +4 -2
- package/dist-types/SecurityHubClient.d.ts +10 -3
- package/dist-types/clientConfiguration.d.ts +6 -0
- package/dist-types/commands/BatchImportFindingsCommand.d.ts +22 -3
- package/dist-types/commands/DeleteMembersCommand.d.ts +2 -2
- package/dist-types/commands/DisableSecurityHubCommand.d.ts +2 -3
- package/dist-types/commands/GetFindingsCommand.d.ts +22 -3
- package/dist-types/index.d.ts +4 -2
- package/dist-types/models/models_1.d.ts +110 -189
- package/dist-types/models/models_2.d.ts +218 -2
- package/dist-types/runtimeConfig.browser.d.ts +1 -0
- package/dist-types/runtimeConfig.d.ts +1 -0
- package/dist-types/runtimeConfig.native.d.ts +1 -0
- package/dist-types/runtimeConfig.shared.d.ts +1 -0
- package/dist-types/runtimeExtensions.d.ts +17 -0
- package/dist-types/ts3.4/SecurityHubClient.d.ts +3 -0
- package/dist-types/ts3.4/clientConfiguration.d.ts +3 -0
- package/dist-types/ts3.4/models/models_1.d.ts +22 -34
- package/dist-types/ts3.4/models/models_2.d.ts +44 -3
- package/dist-types/ts3.4/runtimeConfig.browser.d.ts +1 -0
- package/dist-types/ts3.4/runtimeConfig.d.ts +1 -0
- package/dist-types/ts3.4/runtimeConfig.native.d.ts +1 -0
- package/dist-types/ts3.4/runtimeConfig.shared.d.ts +1 -0
- package/dist-types/ts3.4/runtimeExtensions.d.ts +11 -0
- package/package.json +28 -28
package/README.md
CHANGED
|
@@ -10,8 +10,10 @@ AWS SDK for JavaScript SecurityHub Client for Node.js, Browser and React Native.
|
|
|
10
10
|
your Amazon Web Services environment and resources. It also provides you with the readiness
|
|
11
11
|
status of your environment based on controls from supported security standards. Security Hub collects security data from Amazon Web Services accounts, services, and
|
|
12
12
|
integrated third-party products and helps you analyze security trends in your environment
|
|
13
|
-
to identify the highest priority security issues. For more information about Security Hub, see the <a href="https://docs.aws.amazon.com/securityhub/latest/userguide/what-is-securityhub.html">
|
|
14
|
-
|
|
13
|
+
to identify the highest priority security issues. For more information about Security Hub, see the <a href="https://docs.aws.amazon.com/securityhub/latest/userguide/what-is-securityhub.html">
|
|
14
|
+
<i>Security Hub User
|
|
15
|
+
Guide</i>
|
|
16
|
+
</a>.</p>
|
|
15
17
|
<p>When you use operations in the Security Hub API, the requests are executed only in
|
|
16
18
|
the Amazon Web Services Region that is currently active or in the specific Amazon Web Services Region that you specify in your request. Any configuration or settings change
|
|
17
19
|
that results from the operation is applied only to that Region. To make the same change in
|
|
@@ -14,6 +14,7 @@ const smithy_client_1 = require("@smithy/smithy-client");
|
|
|
14
14
|
Object.defineProperty(exports, "__Client", { enumerable: true, get: function () { return smithy_client_1.Client; } });
|
|
15
15
|
const EndpointParameters_1 = require("./endpoint/EndpointParameters");
|
|
16
16
|
const runtimeConfig_1 = require("./runtimeConfig");
|
|
17
|
+
const runtimeExtensions_1 = require("./runtimeExtensions");
|
|
17
18
|
class SecurityHubClient extends smithy_client_1.Client {
|
|
18
19
|
constructor(...[configuration]) {
|
|
19
20
|
const _config_0 = (0, runtimeConfig_1.getRuntimeConfig)(configuration || {});
|
|
@@ -24,8 +25,9 @@ class SecurityHubClient extends smithy_client_1.Client {
|
|
|
24
25
|
const _config_5 = (0, middleware_host_header_1.resolveHostHeaderConfig)(_config_4);
|
|
25
26
|
const _config_6 = (0, middleware_signing_1.resolveAwsAuthConfig)(_config_5);
|
|
26
27
|
const _config_7 = (0, middleware_user_agent_1.resolveUserAgentConfig)(_config_6);
|
|
27
|
-
|
|
28
|
-
|
|
28
|
+
const _config_8 = (0, runtimeExtensions_1.resolveRuntimeExtensions)(_config_7, configuration?.extensions || []);
|
|
29
|
+
super(_config_8);
|
|
30
|
+
this.config = _config_8;
|
|
29
31
|
this.middlewareStack.use((0, middleware_retry_1.getRetryPlugin)(this.config));
|
|
30
32
|
this.middlewareStack.use((0, middleware_content_length_1.getContentLengthPlugin)(this.config));
|
|
31
33
|
this.middlewareStack.use((0, middleware_host_header_1.getHostHeaderPlugin)(this.config));
|
|
@@ -3,5 +3,5 @@ Object.defineProperty(exports, "__esModule", { value: true });
|
|
|
3
3
|
exports.ruleSet = void 0;
|
|
4
4
|
const q = "required", r = "fn", s = "argv", t = "ref";
|
|
5
5
|
const a = "isSet", b = "tree", c = "error", d = "endpoint", e = "PartitionResult", f = { [q]: false, "type": "String" }, g = { [q]: true, "default": false, "type": "Boolean" }, h = { [t]: "Endpoint" }, i = { [r]: "booleanEquals", [s]: [{ [t]: "UseFIPS" }, true] }, j = { [r]: "booleanEquals", [s]: [{ [t]: "UseDualStack" }, true] }, k = {}, l = { [r]: "booleanEquals", [s]: [true, { [r]: "getAttr", [s]: [{ [t]: e }, "supportsFIPS"] }] }, m = { [r]: "booleanEquals", [s]: [true, { [r]: "getAttr", [s]: [{ [t]: e }, "supportsDualStack"] }] }, n = [i], o = [j], p = [{ [t]: "Region" }];
|
|
6
|
-
const _data = { version: "1.0", parameters: { Region: f, UseDualStack: g, UseFIPS: g, Endpoint: f }, rules: [{ conditions: [{ [r]: a, [s]: [h] }], type: b, rules: [{ conditions: n, error: "Invalid Configuration: FIPS and custom endpoint are not supported", type: c }, {
|
|
6
|
+
const _data = { version: "1.0", parameters: { Region: f, UseDualStack: g, UseFIPS: g, Endpoint: f }, rules: [{ conditions: [{ [r]: a, [s]: [h] }], type: b, rules: [{ conditions: n, error: "Invalid Configuration: FIPS and custom endpoint are not supported", type: c }, { conditions: o, error: "Invalid Configuration: Dualstack and custom endpoint are not supported", type: c }, { endpoint: { url: h, properties: k, headers: k }, type: d }] }, { conditions: [{ [r]: a, [s]: p }], type: b, rules: [{ conditions: [{ [r]: "aws.partition", [s]: p, assign: e }], type: b, rules: [{ conditions: [i, j], type: b, rules: [{ conditions: [l, m], type: b, rules: [{ endpoint: { url: "https://securityhub-fips.{Region}.{PartitionResult#dualStackDnsSuffix}", properties: k, headers: k }, type: d }] }, { error: "FIPS and DualStack are enabled, but this partition does not support one or both", type: c }] }, { conditions: n, type: b, rules: [{ conditions: [l], type: b, rules: [{ endpoint: { url: "https://securityhub-fips.{Region}.{PartitionResult#dnsSuffix}", properties: k, headers: k }, type: d }] }, { error: "FIPS is enabled but this partition does not support FIPS", type: c }] }, { conditions: o, type: b, rules: [{ conditions: [m], type: b, rules: [{ endpoint: { url: "https://securityhub.{Region}.{PartitionResult#dualStackDnsSuffix}", properties: k, headers: k }, type: d }] }, { error: "DualStack is enabled but this partition does not support DualStack", type: c }] }, { endpoint: { url: "https://securityhub.{Region}.{PartitionResult#dnsSuffix}", properties: k, headers: k }, type: d }] }] }, { error: "Invalid Configuration: Missing Region", type: c }] };
|
|
7
7
|
exports.ruleSet = _data;
|
|
@@ -1,6 +1,6 @@
|
|
|
1
1
|
"use strict";
|
|
2
2
|
Object.defineProperty(exports, "__esModule", { value: true });
|
|
3
|
-
exports.
|
|
3
|
+
exports.VulnerabilityFixAvailable = exports.VulnerabilityExploitAvailable = exports.ThreatIntelIndicatorType = exports.ThreatIntelIndicatorCategory = exports.Partition = exports.RecordState = exports.NetworkDirection = exports.MalwareType = exports.MalwareState = exports.ComplianceStatus = exports.AwsS3BucketNotificationConfigurationS3KeyFilterRuleName = exports.AwsIamAccessKeyStatus = void 0;
|
|
4
4
|
exports.AwsIamAccessKeyStatus = {
|
|
5
5
|
ACTIVE: "Active",
|
|
6
6
|
INACTIVE: "Inactive",
|
|
@@ -71,15 +71,12 @@ exports.ThreatIntelIndicatorType = {
|
|
|
71
71
|
PROCESS: "PROCESS",
|
|
72
72
|
URL: "URL",
|
|
73
73
|
};
|
|
74
|
+
exports.VulnerabilityExploitAvailable = {
|
|
75
|
+
NO: "NO",
|
|
76
|
+
YES: "YES",
|
|
77
|
+
};
|
|
74
78
|
exports.VulnerabilityFixAvailable = {
|
|
75
79
|
NO: "NO",
|
|
76
80
|
PARTIAL: "PARTIAL",
|
|
77
81
|
YES: "YES",
|
|
78
82
|
};
|
|
79
|
-
exports.WorkflowState = {
|
|
80
|
-
ASSIGNED: "ASSIGNED",
|
|
81
|
-
DEFERRED: "DEFERRED",
|
|
82
|
-
IN_PROGRESS: "IN_PROGRESS",
|
|
83
|
-
NEW: "NEW",
|
|
84
|
-
RESOLVED: "RESOLVED",
|
|
85
|
-
};
|
|
@@ -1,7 +1,14 @@
|
|
|
1
1
|
"use strict";
|
|
2
2
|
Object.defineProperty(exports, "__esModule", { value: true });
|
|
3
|
-
exports.RegionAvailabilityStatus = exports.SortOrder = exports.FindingHistoryUpdateSourceType = exports.IntegrationType = exports.ResourceConflictException = exports.ControlFindingGenerator = exports.UnprocessedErrorCode = exports.SeverityRating = exports.ControlStatus = exports.StatusReasonCode = exports.StandardsStatus = void 0;
|
|
3
|
+
exports.RegionAvailabilityStatus = exports.SortOrder = exports.FindingHistoryUpdateSourceType = exports.IntegrationType = exports.ResourceConflictException = exports.ControlFindingGenerator = exports.UnprocessedErrorCode = exports.SeverityRating = exports.ControlStatus = exports.StatusReasonCode = exports.StandardsStatus = exports.WorkflowState = void 0;
|
|
4
4
|
const SecurityHubServiceException_1 = require("./SecurityHubServiceException");
|
|
5
|
+
exports.WorkflowState = {
|
|
6
|
+
ASSIGNED: "ASSIGNED",
|
|
7
|
+
DEFERRED: "DEFERRED",
|
|
8
|
+
IN_PROGRESS: "IN_PROGRESS",
|
|
9
|
+
NEW: "NEW",
|
|
10
|
+
RESOLVED: "RESOLVED",
|
|
11
|
+
};
|
|
5
12
|
exports.StandardsStatus = {
|
|
6
13
|
DELETING: "DELETING",
|
|
7
14
|
FAILED: "FAILED",
|
|
@@ -4849,6 +4849,7 @@ const se_AwsSecurityFinding = (input, context) => {
|
|
|
4849
4849
|
Description: [],
|
|
4850
4850
|
FindingProviderFields: smithy_client_1._json,
|
|
4851
4851
|
FirstObservedAt: [],
|
|
4852
|
+
GeneratorDetails: smithy_client_1._json,
|
|
4852
4853
|
GeneratorId: [],
|
|
4853
4854
|
Id: [],
|
|
4854
4855
|
LastObservedAt: [],
|
|
@@ -5205,7 +5206,10 @@ const se_UpdateAutomationRulesRequestItemsList = (input, context) => {
|
|
|
5205
5206
|
};
|
|
5206
5207
|
const se_Vulnerability = (input, context) => {
|
|
5207
5208
|
return (0, smithy_client_1.take)(input, {
|
|
5209
|
+
CodeVulnerabilities: smithy_client_1._json,
|
|
5208
5210
|
Cvss: (_) => se_CvssList(_, context),
|
|
5211
|
+
EpssScore: smithy_client_1.serializeFloat,
|
|
5212
|
+
ExploitAvailable: [],
|
|
5209
5213
|
FixAvailable: [],
|
|
5210
5214
|
Id: [],
|
|
5211
5215
|
ReferenceUrls: smithy_client_1._json,
|
|
@@ -5638,6 +5642,7 @@ const de_AwsSecurityFinding = (output, context) => {
|
|
|
5638
5642
|
Description: smithy_client_1.expectString,
|
|
5639
5643
|
FindingProviderFields: smithy_client_1._json,
|
|
5640
5644
|
FirstObservedAt: smithy_client_1.expectString,
|
|
5645
|
+
GeneratorDetails: smithy_client_1._json,
|
|
5641
5646
|
GeneratorId: smithy_client_1.expectString,
|
|
5642
5647
|
Id: smithy_client_1.expectString,
|
|
5643
5648
|
LastObservedAt: smithy_client_1.expectString,
|
|
@@ -6114,7 +6119,10 @@ const de_StandardsControls = (output, context) => {
|
|
|
6114
6119
|
};
|
|
6115
6120
|
const de_Vulnerability = (output, context) => {
|
|
6116
6121
|
return (0, smithy_client_1.take)(output, {
|
|
6122
|
+
CodeVulnerabilities: smithy_client_1._json,
|
|
6117
6123
|
Cvss: (_) => de_CvssList(_, context),
|
|
6124
|
+
EpssScore: smithy_client_1.limitedParseDouble,
|
|
6125
|
+
ExploitAvailable: smithy_client_1.expectString,
|
|
6118
6126
|
FixAvailable: smithy_client_1.expectString,
|
|
6119
6127
|
Id: smithy_client_1.expectString,
|
|
6120
6128
|
ReferenceUrls: smithy_client_1._json,
|
|
@@ -12,6 +12,7 @@ const getRuntimeConfig = (config) => ({
|
|
|
12
12
|
base64Encoder: config?.base64Encoder ?? util_base64_1.toBase64,
|
|
13
13
|
disableHostPrefix: config?.disableHostPrefix ?? false,
|
|
14
14
|
endpointProvider: config?.endpointProvider ?? endpointResolver_1.defaultEndpointResolver,
|
|
15
|
+
extensions: config?.extensions ?? [],
|
|
15
16
|
logger: config?.logger ?? new smithy_client_1.NoOpLogger(),
|
|
16
17
|
serviceId: config?.serviceId ?? "SecurityHub",
|
|
17
18
|
urlParser: config?.urlParser ?? url_parser_1.parseUrl,
|
|
@@ -0,0 +1,16 @@
|
|
|
1
|
+
"use strict";
|
|
2
|
+
Object.defineProperty(exports, "__esModule", { value: true });
|
|
3
|
+
exports.resolveRuntimeExtensions = void 0;
|
|
4
|
+
const types_1 = require("@smithy/types");
|
|
5
|
+
const asPartial = (t) => t;
|
|
6
|
+
const resolveRuntimeExtensions = (runtimeConfig, extensions) => {
|
|
7
|
+
const clientConfiguration = {
|
|
8
|
+
...asPartial((0, types_1.getDefaultClientConfiguration)(runtimeConfig)),
|
|
9
|
+
};
|
|
10
|
+
extensions.forEach((extension) => extension.configureClient(clientConfiguration));
|
|
11
|
+
return {
|
|
12
|
+
...runtimeConfig,
|
|
13
|
+
...(0, types_1.resolveDefaultRuntimeConfig)(clientConfiguration),
|
|
14
|
+
};
|
|
15
|
+
};
|
|
16
|
+
exports.resolveRuntimeExtensions = resolveRuntimeExtensions;
|
|
@@ -10,6 +10,7 @@ import { getRetryPlugin, resolveRetryConfig } from "@smithy/middleware-retry";
|
|
|
10
10
|
import { Client as __Client, } from "@smithy/smithy-client";
|
|
11
11
|
import { resolveClientEndpointParameters, } from "./endpoint/EndpointParameters";
|
|
12
12
|
import { getRuntimeConfig as __getRuntimeConfig } from "./runtimeConfig";
|
|
13
|
+
import { resolveRuntimeExtensions } from "./runtimeExtensions";
|
|
13
14
|
export { __Client };
|
|
14
15
|
export class SecurityHubClient extends __Client {
|
|
15
16
|
constructor(...[configuration]) {
|
|
@@ -21,8 +22,9 @@ export class SecurityHubClient extends __Client {
|
|
|
21
22
|
const _config_5 = resolveHostHeaderConfig(_config_4);
|
|
22
23
|
const _config_6 = resolveAwsAuthConfig(_config_5);
|
|
23
24
|
const _config_7 = resolveUserAgentConfig(_config_6);
|
|
24
|
-
|
|
25
|
-
|
|
25
|
+
const _config_8 = resolveRuntimeExtensions(_config_7, configuration?.extensions || []);
|
|
26
|
+
super(_config_8);
|
|
27
|
+
this.config = _config_8;
|
|
26
28
|
this.middlewareStack.use(getRetryPlugin(this.config));
|
|
27
29
|
this.middlewareStack.use(getContentLengthPlugin(this.config));
|
|
28
30
|
this.middlewareStack.use(getHostHeaderPlugin(this.config));
|
|
@@ -0,0 +1 @@
|
|
|
1
|
+
export {};
|
|
@@ -1,4 +1,4 @@
|
|
|
1
1
|
const q = "required", r = "fn", s = "argv", t = "ref";
|
|
2
2
|
const a = "isSet", b = "tree", c = "error", d = "endpoint", e = "PartitionResult", f = { [q]: false, "type": "String" }, g = { [q]: true, "default": false, "type": "Boolean" }, h = { [t]: "Endpoint" }, i = { [r]: "booleanEquals", [s]: [{ [t]: "UseFIPS" }, true] }, j = { [r]: "booleanEquals", [s]: [{ [t]: "UseDualStack" }, true] }, k = {}, l = { [r]: "booleanEquals", [s]: [true, { [r]: "getAttr", [s]: [{ [t]: e }, "supportsFIPS"] }] }, m = { [r]: "booleanEquals", [s]: [true, { [r]: "getAttr", [s]: [{ [t]: e }, "supportsDualStack"] }] }, n = [i], o = [j], p = [{ [t]: "Region" }];
|
|
3
|
-
const _data = { version: "1.0", parameters: { Region: f, UseDualStack: g, UseFIPS: g, Endpoint: f }, rules: [{ conditions: [{ [r]: a, [s]: [h] }], type: b, rules: [{ conditions: n, error: "Invalid Configuration: FIPS and custom endpoint are not supported", type: c }, {
|
|
3
|
+
const _data = { version: "1.0", parameters: { Region: f, UseDualStack: g, UseFIPS: g, Endpoint: f }, rules: [{ conditions: [{ [r]: a, [s]: [h] }], type: b, rules: [{ conditions: n, error: "Invalid Configuration: FIPS and custom endpoint are not supported", type: c }, { conditions: o, error: "Invalid Configuration: Dualstack and custom endpoint are not supported", type: c }, { endpoint: { url: h, properties: k, headers: k }, type: d }] }, { conditions: [{ [r]: a, [s]: p }], type: b, rules: [{ conditions: [{ [r]: "aws.partition", [s]: p, assign: e }], type: b, rules: [{ conditions: [i, j], type: b, rules: [{ conditions: [l, m], type: b, rules: [{ endpoint: { url: "https://securityhub-fips.{Region}.{PartitionResult#dualStackDnsSuffix}", properties: k, headers: k }, type: d }] }, { error: "FIPS and DualStack are enabled, but this partition does not support one or both", type: c }] }, { conditions: n, type: b, rules: [{ conditions: [l], type: b, rules: [{ endpoint: { url: "https://securityhub-fips.{Region}.{PartitionResult#dnsSuffix}", properties: k, headers: k }, type: d }] }, { error: "FIPS is enabled but this partition does not support FIPS", type: c }] }, { conditions: o, type: b, rules: [{ conditions: [m], type: b, rules: [{ endpoint: { url: "https://securityhub.{Region}.{PartitionResult#dualStackDnsSuffix}", properties: k, headers: k }, type: d }] }, { error: "DualStack is enabled but this partition does not support DualStack", type: c }] }, { endpoint: { url: "https://securityhub.{Region}.{PartitionResult#dnsSuffix}", properties: k, headers: k }, type: d }] }] }, { error: "Invalid Configuration: Missing Region", type: c }] };
|
|
4
4
|
export const ruleSet = _data;
|
|
@@ -68,15 +68,12 @@ export const ThreatIntelIndicatorType = {
|
|
|
68
68
|
PROCESS: "PROCESS",
|
|
69
69
|
URL: "URL",
|
|
70
70
|
};
|
|
71
|
+
export const VulnerabilityExploitAvailable = {
|
|
72
|
+
NO: "NO",
|
|
73
|
+
YES: "YES",
|
|
74
|
+
};
|
|
71
75
|
export const VulnerabilityFixAvailable = {
|
|
72
76
|
NO: "NO",
|
|
73
77
|
PARTIAL: "PARTIAL",
|
|
74
78
|
YES: "YES",
|
|
75
79
|
};
|
|
76
|
-
export const WorkflowState = {
|
|
77
|
-
ASSIGNED: "ASSIGNED",
|
|
78
|
-
DEFERRED: "DEFERRED",
|
|
79
|
-
IN_PROGRESS: "IN_PROGRESS",
|
|
80
|
-
NEW: "NEW",
|
|
81
|
-
RESOLVED: "RESOLVED",
|
|
82
|
-
};
|
|
@@ -1,4 +1,11 @@
|
|
|
1
1
|
import { SecurityHubServiceException as __BaseException } from "./SecurityHubServiceException";
|
|
2
|
+
export const WorkflowState = {
|
|
3
|
+
ASSIGNED: "ASSIGNED",
|
|
4
|
+
DEFERRED: "DEFERRED",
|
|
5
|
+
IN_PROGRESS: "IN_PROGRESS",
|
|
6
|
+
NEW: "NEW",
|
|
7
|
+
RESOLVED: "RESOLVED",
|
|
8
|
+
};
|
|
2
9
|
export const StandardsStatus = {
|
|
3
10
|
DELETING: "DELETING",
|
|
4
11
|
FAILED: "FAILED",
|
|
@@ -4710,6 +4710,7 @@ const se_AwsSecurityFinding = (input, context) => {
|
|
|
4710
4710
|
Description: [],
|
|
4711
4711
|
FindingProviderFields: _json,
|
|
4712
4712
|
FirstObservedAt: [],
|
|
4713
|
+
GeneratorDetails: _json,
|
|
4713
4714
|
GeneratorId: [],
|
|
4714
4715
|
Id: [],
|
|
4715
4716
|
LastObservedAt: [],
|
|
@@ -5066,7 +5067,10 @@ const se_UpdateAutomationRulesRequestItemsList = (input, context) => {
|
|
|
5066
5067
|
};
|
|
5067
5068
|
const se_Vulnerability = (input, context) => {
|
|
5068
5069
|
return take(input, {
|
|
5070
|
+
CodeVulnerabilities: _json,
|
|
5069
5071
|
Cvss: (_) => se_CvssList(_, context),
|
|
5072
|
+
EpssScore: __serializeFloat,
|
|
5073
|
+
ExploitAvailable: [],
|
|
5070
5074
|
FixAvailable: [],
|
|
5071
5075
|
Id: [],
|
|
5072
5076
|
ReferenceUrls: _json,
|
|
@@ -5499,6 +5503,7 @@ const de_AwsSecurityFinding = (output, context) => {
|
|
|
5499
5503
|
Description: __expectString,
|
|
5500
5504
|
FindingProviderFields: _json,
|
|
5501
5505
|
FirstObservedAt: __expectString,
|
|
5506
|
+
GeneratorDetails: _json,
|
|
5502
5507
|
GeneratorId: __expectString,
|
|
5503
5508
|
Id: __expectString,
|
|
5504
5509
|
LastObservedAt: __expectString,
|
|
@@ -5975,7 +5980,10 @@ const de_StandardsControls = (output, context) => {
|
|
|
5975
5980
|
};
|
|
5976
5981
|
const de_Vulnerability = (output, context) => {
|
|
5977
5982
|
return take(output, {
|
|
5983
|
+
CodeVulnerabilities: _json,
|
|
5978
5984
|
Cvss: (_) => de_CvssList(_, context),
|
|
5985
|
+
EpssScore: __limitedParseDouble,
|
|
5986
|
+
ExploitAvailable: __expectString,
|
|
5979
5987
|
FixAvailable: __expectString,
|
|
5980
5988
|
Id: __expectString,
|
|
5981
5989
|
ReferenceUrls: _json,
|
|
@@ -9,6 +9,7 @@ export const getRuntimeConfig = (config) => ({
|
|
|
9
9
|
base64Encoder: config?.base64Encoder ?? toBase64,
|
|
10
10
|
disableHostPrefix: config?.disableHostPrefix ?? false,
|
|
11
11
|
endpointProvider: config?.endpointProvider ?? defaultEndpointResolver,
|
|
12
|
+
extensions: config?.extensions ?? [],
|
|
12
13
|
logger: config?.logger ?? new NoOpLogger(),
|
|
13
14
|
serviceId: config?.serviceId ?? "SecurityHub",
|
|
14
15
|
urlParser: config?.urlParser ?? parseUrl,
|
|
@@ -0,0 +1,12 @@
|
|
|
1
|
+
import { getDefaultClientConfiguration, resolveDefaultRuntimeConfig } from "@smithy/types";
|
|
2
|
+
const asPartial = (t) => t;
|
|
3
|
+
export const resolveRuntimeExtensions = (runtimeConfig, extensions) => {
|
|
4
|
+
const clientConfiguration = {
|
|
5
|
+
...asPartial(getDefaultClientConfiguration(runtimeConfig)),
|
|
6
|
+
};
|
|
7
|
+
extensions.forEach((extension) => extension.configureClient(clientConfiguration));
|
|
8
|
+
return {
|
|
9
|
+
...runtimeConfig,
|
|
10
|
+
...resolveDefaultRuntimeConfig(clientConfiguration),
|
|
11
|
+
};
|
|
12
|
+
};
|
|
@@ -477,8 +477,10 @@ export interface SecurityHub {
|
|
|
477
477
|
* your Amazon Web Services environment and resources. It also provides you with the readiness
|
|
478
478
|
* status of your environment based on controls from supported security standards. Security Hub collects security data from Amazon Web Services accounts, services, and
|
|
479
479
|
* integrated third-party products and helps you analyze security trends in your environment
|
|
480
|
-
* to identify the highest priority security issues. For more information about Security Hub, see the <a href="https://docs.aws.amazon.com/securityhub/latest/userguide/what-is-securityhub.html">
|
|
481
|
-
*
|
|
480
|
+
* to identify the highest priority security issues. For more information about Security Hub, see the <a href="https://docs.aws.amazon.com/securityhub/latest/userguide/what-is-securityhub.html">
|
|
481
|
+
* <i>Security Hub User
|
|
482
|
+
* Guide</i>
|
|
483
|
+
* </a>.</p>
|
|
482
484
|
* <p>When you use operations in the Security Hub API, the requests are executed only in
|
|
483
485
|
* the Amazon Web Services Region that is currently active or in the specific Amazon Web Services Region that you specify in your request. Any configuration or settings change
|
|
484
486
|
* that results from the operation is applied only to that Region. To make the same change in
|
|
@@ -76,6 +76,7 @@ import { UpdateOrganizationConfigurationCommandInput, UpdateOrganizationConfigur
|
|
|
76
76
|
import { UpdateSecurityHubConfigurationCommandInput, UpdateSecurityHubConfigurationCommandOutput } from "./commands/UpdateSecurityHubConfigurationCommand";
|
|
77
77
|
import { UpdateStandardsControlCommandInput, UpdateStandardsControlCommandOutput } from "./commands/UpdateStandardsControlCommand";
|
|
78
78
|
import { ClientInputEndpointParameters, ClientResolvedEndpointParameters, EndpointParameters } from "./endpoint/EndpointParameters";
|
|
79
|
+
import { RuntimeExtension, RuntimeExtensionsConfig } from "./runtimeExtensions";
|
|
79
80
|
export { __Client };
|
|
80
81
|
/**
|
|
81
82
|
* @public
|
|
@@ -183,6 +184,10 @@ export interface ClientDefaults extends Partial<__SmithyResolvedConfiguration<__
|
|
|
183
184
|
* Optional logger for logging debug/info/warn/error.
|
|
184
185
|
*/
|
|
185
186
|
logger?: __Logger;
|
|
187
|
+
/**
|
|
188
|
+
* Optional extensions
|
|
189
|
+
*/
|
|
190
|
+
extensions?: RuntimeExtension[];
|
|
186
191
|
/**
|
|
187
192
|
* The {@link @smithy/smithy-client#DefaultsMode} that will be used to determine how certain default configuration options are resolved in the SDK.
|
|
188
193
|
*/
|
|
@@ -202,7 +207,7 @@ export interface SecurityHubClientConfig extends SecurityHubClientConfigType {
|
|
|
202
207
|
/**
|
|
203
208
|
* @public
|
|
204
209
|
*/
|
|
205
|
-
export type SecurityHubClientResolvedConfigType = __SmithyResolvedConfiguration<__HttpHandlerOptions> & Required<ClientDefaults> & RegionResolvedConfig & EndpointResolvedConfig<EndpointParameters> & RetryResolvedConfig & HostHeaderResolvedConfig & AwsAuthResolvedConfig & UserAgentResolvedConfig & ClientResolvedEndpointParameters;
|
|
210
|
+
export type SecurityHubClientResolvedConfigType = __SmithyResolvedConfiguration<__HttpHandlerOptions> & Required<ClientDefaults> & RuntimeExtensionsConfig & RegionResolvedConfig & EndpointResolvedConfig<EndpointParameters> & RetryResolvedConfig & HostHeaderResolvedConfig & AwsAuthResolvedConfig & UserAgentResolvedConfig & ClientResolvedEndpointParameters;
|
|
206
211
|
/**
|
|
207
212
|
* @public
|
|
208
213
|
*
|
|
@@ -216,8 +221,10 @@ export interface SecurityHubClientResolvedConfig extends SecurityHubClientResolv
|
|
|
216
221
|
* your Amazon Web Services environment and resources. It also provides you with the readiness
|
|
217
222
|
* status of your environment based on controls from supported security standards. Security Hub collects security data from Amazon Web Services accounts, services, and
|
|
218
223
|
* integrated third-party products and helps you analyze security trends in your environment
|
|
219
|
-
* to identify the highest priority security issues. For more information about Security Hub, see the <a href="https://docs.aws.amazon.com/securityhub/latest/userguide/what-is-securityhub.html">
|
|
220
|
-
*
|
|
224
|
+
* to identify the highest priority security issues. For more information about Security Hub, see the <a href="https://docs.aws.amazon.com/securityhub/latest/userguide/what-is-securityhub.html">
|
|
225
|
+
* <i>Security Hub User
|
|
226
|
+
* Guide</i>
|
|
227
|
+
* </a>.</p>
|
|
221
228
|
* <p>When you use operations in the Security Hub API, the requests are executed only in
|
|
222
229
|
* the Amazon Web Services Region that is currently active or in the specific Amazon Web Services Region that you specify in your request. Any configuration or settings change
|
|
223
230
|
* that results from the operation is applied only to that Region. To make the same change in
|
|
@@ -3908,6 +3908,22 @@ export interface BatchImportFindingsCommandOutput extends BatchImportFindingsRes
|
|
|
3908
3908
|
* },
|
|
3909
3909
|
* ReferenceUrls: "<StringList>",
|
|
3910
3910
|
* FixAvailable: "YES" || "NO" || "PARTIAL",
|
|
3911
|
+
* EpssScore: Number("double"),
|
|
3912
|
+
* ExploitAvailable: "YES" || "NO",
|
|
3913
|
+
* CodeVulnerabilities: [ // VulnerabilityCodeVulnerabilitiesList
|
|
3914
|
+
* { // VulnerabilityCodeVulnerabilities
|
|
3915
|
+
* Cwes: [
|
|
3916
|
+
* "STRING_VALUE",
|
|
3917
|
+
* ],
|
|
3918
|
+
* FilePath: { // CodeVulnerabilitiesFilePath
|
|
3919
|
+
* EndLine: Number("int"),
|
|
3920
|
+
* FileName: "STRING_VALUE",
|
|
3921
|
+
* FilePath: "STRING_VALUE",
|
|
3922
|
+
* StartLine: Number("int"),
|
|
3923
|
+
* },
|
|
3924
|
+
* SourceArn: "STRING_VALUE",
|
|
3925
|
+
* },
|
|
3926
|
+
* ],
|
|
3911
3927
|
* },
|
|
3912
3928
|
* ],
|
|
3913
3929
|
* PatchSummary: { // PatchSummary
|
|
@@ -4042,11 +4058,14 @@ export interface BatchImportFindingsCommandOutput extends BatchImportFindingsRes
|
|
|
4042
4058
|
* Label: "INFORMATIONAL" || "LOW" || "MEDIUM" || "HIGH" || "CRITICAL",
|
|
4043
4059
|
* Original: "STRING_VALUE",
|
|
4044
4060
|
* },
|
|
4045
|
-
* Types:
|
|
4046
|
-
* "STRING_VALUE",
|
|
4047
|
-
* ],
|
|
4061
|
+
* Types: "<TypeList>",
|
|
4048
4062
|
* },
|
|
4049
4063
|
* Sample: true || false,
|
|
4064
|
+
* GeneratorDetails: { // GeneratorDetails
|
|
4065
|
+
* Name: "STRING_VALUE",
|
|
4066
|
+
* Description: "STRING_VALUE",
|
|
4067
|
+
* Labels: "<TypeList>",
|
|
4068
|
+
* },
|
|
4050
4069
|
* },
|
|
4051
4070
|
* ],
|
|
4052
4071
|
* };
|
|
@@ -24,8 +24,8 @@ export interface DeleteMembersCommandOutput extends DeleteMembersResponse, __Met
|
|
|
24
24
|
/**
|
|
25
25
|
* @public
|
|
26
26
|
* <p>Deletes the specified member accounts from Security Hub.</p>
|
|
27
|
-
* <p>
|
|
28
|
-
*
|
|
27
|
+
* <p>You can invoke this API only to delete accounts that became members through invitation. You can't invoke this
|
|
28
|
+
* API to delete accounts that belong to an Organizations organization.</p>
|
|
29
29
|
* @example
|
|
30
30
|
* Use a bare-bones client and the command you need to make an API call.
|
|
31
31
|
* ```javascript
|
|
@@ -23,10 +23,9 @@ export interface DisableSecurityHubCommandOutput extends DisableSecurityHubRespo
|
|
|
23
23
|
}
|
|
24
24
|
/**
|
|
25
25
|
* @public
|
|
26
|
-
* <p>Disables Security Hub in your account only in the current Region. To disable Security Hub in all
|
|
26
|
+
* <p>Disables Security Hub in your account only in the current Amazon Web Services Region. To disable Security Hub in all
|
|
27
27
|
* Regions, you must submit one request per Region where you have enabled Security Hub.</p>
|
|
28
|
-
* <p>
|
|
29
|
-
* member accounts.</p>
|
|
28
|
+
* <p>You can't disable Security Hub in an account that is currently the Security Hub administrator.</p>
|
|
30
29
|
* <p>When you disable Security Hub, your existing findings and insights and any Security Hub configuration
|
|
31
30
|
* settings are deleted after 90 days and cannot be recovered. Any standards that were enabled
|
|
32
31
|
* are disabled, and your administrator and member account associations are removed.</p>
|
|
@@ -4098,6 +4098,22 @@ export interface GetFindingsCommandOutput extends GetFindingsResponse, __Metadat
|
|
|
4098
4098
|
* // },
|
|
4099
4099
|
* // ReferenceUrls: "<StringList>",
|
|
4100
4100
|
* // FixAvailable: "YES" || "NO" || "PARTIAL",
|
|
4101
|
+
* // EpssScore: Number("double"),
|
|
4102
|
+
* // ExploitAvailable: "YES" || "NO",
|
|
4103
|
+
* // CodeVulnerabilities: [ // VulnerabilityCodeVulnerabilitiesList
|
|
4104
|
+
* // { // VulnerabilityCodeVulnerabilities
|
|
4105
|
+
* // Cwes: [
|
|
4106
|
+
* // "STRING_VALUE",
|
|
4107
|
+
* // ],
|
|
4108
|
+
* // FilePath: { // CodeVulnerabilitiesFilePath
|
|
4109
|
+
* // EndLine: Number("int"),
|
|
4110
|
+
* // FileName: "STRING_VALUE",
|
|
4111
|
+
* // FilePath: "STRING_VALUE",
|
|
4112
|
+
* // StartLine: Number("int"),
|
|
4113
|
+
* // },
|
|
4114
|
+
* // SourceArn: "STRING_VALUE",
|
|
4115
|
+
* // },
|
|
4116
|
+
* // ],
|
|
4101
4117
|
* // },
|
|
4102
4118
|
* // ],
|
|
4103
4119
|
* // PatchSummary: { // PatchSummary
|
|
@@ -4232,11 +4248,14 @@ export interface GetFindingsCommandOutput extends GetFindingsResponse, __Metadat
|
|
|
4232
4248
|
* // Label: "INFORMATIONAL" || "LOW" || "MEDIUM" || "HIGH" || "CRITICAL",
|
|
4233
4249
|
* // Original: "STRING_VALUE",
|
|
4234
4250
|
* // },
|
|
4235
|
-
* // Types:
|
|
4236
|
-
* // "STRING_VALUE",
|
|
4237
|
-
* // ],
|
|
4251
|
+
* // Types: "<TypeList>",
|
|
4238
4252
|
* // },
|
|
4239
4253
|
* // Sample: true || false,
|
|
4254
|
+
* // GeneratorDetails: { // GeneratorDetails
|
|
4255
|
+
* // Name: "STRING_VALUE",
|
|
4256
|
+
* // Description: "STRING_VALUE",
|
|
4257
|
+
* // Labels: "<TypeList>",
|
|
4258
|
+
* // },
|
|
4240
4259
|
* // },
|
|
4241
4260
|
* // ],
|
|
4242
4261
|
* // NextToken: "STRING_VALUE",
|
package/dist-types/index.d.ts
CHANGED
|
@@ -3,8 +3,10 @@
|
|
|
3
3
|
* your Amazon Web Services environment and resources. It also provides you with the readiness
|
|
4
4
|
* status of your environment based on controls from supported security standards. Security Hub collects security data from Amazon Web Services accounts, services, and
|
|
5
5
|
* integrated third-party products and helps you analyze security trends in your environment
|
|
6
|
-
* to identify the highest priority security issues. For more information about Security Hub, see the <a href="https://docs.aws.amazon.com/securityhub/latest/userguide/what-is-securityhub.html">
|
|
7
|
-
*
|
|
6
|
+
* to identify the highest priority security issues. For more information about Security Hub, see the <a href="https://docs.aws.amazon.com/securityhub/latest/userguide/what-is-securityhub.html">
|
|
7
|
+
* <i>Security Hub User
|
|
8
|
+
* Guide</i>
|
|
9
|
+
* </a>.</p>
|
|
8
10
|
* <p>When you use operations in the Security Hub API, the requests are executed only in
|
|
9
11
|
* the Amazon Web Services Region that is currently active or in the specific Amazon Web Services Region that you specify in your request. Any configuration or settings change
|
|
10
12
|
* that results from the operation is applied only to that Region. To make the same change in
|