npm - @aws-sdk/client-securityhub - Versions diffs - 3.916.0 → 3.918.0 - Mend

@aws-sdk/client-securityhub 3.916.0 → 3.918.0

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (34) hide show

package/dist-cjs/endpoint/ruleset.js CHANGED Viewed

@@ -2,6 +2,6 @@
 Object.defineProperty(exports, "__esModule", { value: true });
 exports.ruleSet = void 0;
 const s = "required", t = "fn", u = "argv", v = "ref";
-const a = true, b = "isSet", c = "booleanEquals", d = "error", e = "endpoint", f = "tree", g = "PartitionResult", h = { [s]: false, "type": "String" }, i = { [s]: true, "default": false, "type": "Boolean" }, j = { [v]: "Endpoint" }, k = { [t]: c, [u]: [{ [v]: "UseFIPS" }, true] }, l = { [t]: c, [u]: [{ [v]: "UseDualStack" }, true] }, m = {}, n = { [t]: "getAttr", [u]: [{ [v]: g }, "supportsFIPS"] }, o = { [t]: c, [u]: [true, { [t]: "getAttr", [u]: [{ [v]: g }, "supportsDualStack"] }] }, p = [k], q = [l], r = [{ [v]: "Region" }];
+const a = true, b = "isSet", c = "booleanEquals", d = "error", e = "endpoint", f = "tree", g = "PartitionResult", h = { [s]: false, "type": "string" }, i = { [s]: true, "default": false, "type": "boolean" }, j = { [v]: "Endpoint" }, k = { [t]: c, [u]: [{ [v]: "UseFIPS" }, true] }, l = { [t]: c, [u]: [{ [v]: "UseDualStack" }, true] }, m = {}, n = { [t]: "getAttr", [u]: [{ [v]: g }, "supportsFIPS"] }, o = { [t]: c, [u]: [true, { [t]: "getAttr", [u]: [{ [v]: g }, "supportsDualStack"] }] }, p = [k], q = [l], r = [{ [v]: "Region" }];
 const _data = { version: "1.0", parameters: { Region: h, UseDualStack: i, UseFIPS: i, Endpoint: h }, rules: [{ conditions: [{ [t]: b, [u]: [j] }], rules: [{ conditions: p, error: "Invalid Configuration: FIPS and custom endpoint are not supported", type: d }, { conditions: q, error: "Invalid Configuration: Dualstack and custom endpoint are not supported", type: d }, { endpoint: { url: j, properties: m, headers: m }, type: e }], type: f }, { conditions: [{ [t]: b, [u]: r }], rules: [{ conditions: [{ [t]: "aws.partition", [u]: r, assign: g }], rules: [{ conditions: [k, l], rules: [{ conditions: [{ [t]: c, [u]: [a, n] }, o], rules: [{ endpoint: { url: "https://securityhub-fips.{Region}.{PartitionResult#dualStackDnsSuffix}", properties: m, headers: m }, type: e }], type: f }, { error: "FIPS and DualStack are enabled, but this partition does not support one or both", type: d }], type: f }, { conditions: p, rules: [{ conditions: [{ [t]: c, [u]: [n, a] }], rules: [{ endpoint: { url: "https://securityhub-fips.{Region}.{PartitionResult#dnsSuffix}", properties: m, headers: m }, type: e }], type: f }, { error: "FIPS is enabled but this partition does not support FIPS", type: d }], type: f }, { conditions: q, rules: [{ conditions: [o], rules: [{ endpoint: { url: "https://securityhub.{Region}.{PartitionResult#dualStackDnsSuffix}", properties: m, headers: m }, type: e }], type: f }, { error: "DualStack is enabled but this partition does not support DualStack", type: d }], type: f }, { endpoint: { url: "https://securityhub.{Region}.{PartitionResult#dnsSuffix}", properties: m, headers: m }, type: e }], type: f }], type: f }, { error: "Invalid Configuration: Missing Region", type: d }] };
 exports.ruleSet = _data;

package/dist-cjs/index.js CHANGED Viewed

@@ -498,21 +498,38 @@ const OcsfDateField = {
     FINDING_INFO_FIRST_SEEN_TIME_DT: "finding_info.first_seen_time_dt",
     FINDING_INFO_LAST_SEEN_TIME_DT: "finding_info.last_seen_time_dt",
     FINDING_INFO_MODIFIED_TIME_DT: "finding_info.modified_time_dt",
+    RESOURCES_IMAGE_CREATED_TIME_DT: "resources.image.created_time_dt",
+    RESOURCES_IMAGE_LAST_USED_TIME_DT: "resources.image.last_used_time_dt",
+    RESOURCES_MODIFIED_TIME_DT: "resources.modified_time_dt",
+};
+const OcsfIpField = {
+    EVIDENCES_DST_ENDPOINT_IP: "evidences.dst_endpoint.ip",
+    EVIDENCES_SRC_ENDPOINT_IP: "evidences.src_endpoint.ip",
 };
 const OcsfMapField = {
+    COMPLIANCE_CONTROL_PARAMETERS: "compliance.control_parameters",
+    DATABUCKET_TAGS: "databucket.tags",
+    FINDING_INFO_TAGS: "finding_info.tags",
     RESOURCES_TAGS: "resources.tags",
 };
 const OcsfNumberField = {
     ACTIVITY_ID: "activity_id",
     COMPLIANCE_STATUS_ID: "compliance.status_id",
     CONFIDENCE_SCORE: "confidence_score",
+    EVIDENCES_API_RESPONSE_CODE: "evidences.api.response.code",
+    EVIDENCES_DST_ENDPOINT_AUTONOMOUS_SYSTEM_NUMBER: "evidences.dst_endpoint.autonomous_system.number",
+    EVIDENCES_DST_ENDPOINT_PORT: "evidences.dst_endpoint.port",
+    EVIDENCES_SRC_ENDPOINT_AUTONOMOUS_SYSTEM_NUMBER: "evidences.src_endpoint.autonomous_system.number",
+    EVIDENCES_SRC_ENDPOINT_PORT: "evidences.src_endpoint.port",
     FINDING_INFO_RELATED_EVENTS_COUNT: "finding_info.related_events_count",
+    RESOURCES_IMAGE_IN_USE_COUNT: "resources.image.in_use_count",
     SEVERITY_ID: "severity_id",
     STATUS_ID: "status_id",
 };
 const OcsfStringField = {
     ACTIVITY_NAME: "activity_name",
     CLASS_NAME: "class_name",
+    CLOUD_ACCOUNT_NAME: "cloud.account.name",
     CLOUD_ACCOUNT_UID: "cloud.account.uid",
     CLOUD_PROVIDER: "cloud.provider",
     CLOUD_REGION: "cloud.region",
@@ -522,6 +539,23 @@ const OcsfStringField = {
     COMPLIANCE_CONTROL: "compliance.control",
     COMPLIANCE_STANDARDS: "compliance.standards",
     COMPLIANCE_STATUS: "compliance.status",
+    DATABUCKET_ENCRYPTION_DETAILS_ALGORITHM: "databucket.encryption_details.algorithm",
+    DATABUCKET_ENCRYPTION_DETAILS_KEY_UID: "databucket.encryption_details.key_uid",
+    DATABUCKET_FILE_DATA_CLASSIFICATIONS_CLASSIFIER_DETAILS_TYPE: "databucket.file.data_classifications.classifier_details.type",
+    EVIDENCES_ACTOR_USER_ACCOUNT_UID: "evidences.actor.user.account.uid",
+    EVIDENCES_API_OPERATION: "evidences.api.operation",
+    EVIDENCES_API_RESPONSE_ERROR_MESSAGE: "evidences.api.response.error_message",
+    EVIDENCES_API_SERVICE_NAME: "evidences.api.service.name",
+    EVIDENCES_CONNECTION_INFO_DIRECTION: "evidences.connection_info.direction",
+    EVIDENCES_CONNECTION_INFO_PROTOCOL_NAME: "evidences.connection_info.protocol_name",
+    EVIDENCES_DST_ENDPOINT_AUTONOMOUS_SYSTEM_NAME: "evidences.dst_endpoint.autonomous_system.name",
+    EVIDENCES_DST_ENDPOINT_LOCATION_CITY: "evidences.dst_endpoint.location.city",
+    EVIDENCES_DST_ENDPOINT_LOCATION_COUNTRY: "evidences.dst_endpoint.location.country",
+    EVIDENCES_SRC_ENDPOINT_AUTONOMOUS_SYSTEM_NAME: "evidences.src_endpoint.autonomous_system.name",
+    EVIDENCES_SRC_ENDPOINT_HOSTNAME: "evidences.src_endpoint.hostname",
+    EVIDENCES_SRC_ENDPOINT_LOCATION_CITY: "evidences.src_endpoint.location.city",
+    EVIDENCES_SRC_ENDPOINT_LOCATION_COUNTRY: "evidences.src_endpoint.location.country",
+    FINDING_INFO_ANALYTIC_NAME: "finding_info.analytic.name",
     FINDING_INFO_DESC: "finding_info.desc",
     FINDING_INFO_RELATED_EVENTS_PRODUCT_UID: "finding_info.related_events.product.uid",
     FINDING_INFO_RELATED_EVENTS_TITLE: "finding_info.related_events.title",
@@ -530,19 +564,38 @@ const OcsfStringField = {
     FINDING_INFO_TITLE: "finding_info.title",
     FINDING_INFO_TYPES: "finding_info.types",
     FINDING_INFO_UID: "finding_info.uid",
+    MALWARE_NAME: "malware.name",
+    MALWARE_SCAN_INFO_UID: "malware_scan_info.uid",
+    MALWARE_SEVERITY: "malware.severity",
     METADATA_PRODUCT_NAME: "metadata.product.name",
     METADATA_PRODUCT_UID: "metadata.product.uid",
     METADATA_PRODUCT_VENDOR_NAME: "metadata.product.vendor_name",
     METADATA_UID: "metadata.uid",
     REMEDIATION_DESC: "remediation.desc",
     REMEDIATION_REFERENCES: "remediation.references",
+    RESOURCES_CLOUD_FUNCTION_LAYERS_UID_ALT: "resources.cloud_function.layers.uid_alt",
+    RESOURCES_CLOUD_FUNCTION_RUNTIME: "resources.cloud_function.runtime",
+    RESOURCES_CLOUD_FUNCTION_USER_UID: "resources.cloud_function.user.uid",
     RESOURCES_CLOUD_PARTITION: "resources.cloud_partition",
+    RESOURCES_DEVICE_ENCRYPTION_DETAILS_KEY_UID: "resources.device.encryption_details.key_uid",
+    RESOURCES_DEVICE_IMAGE_UID: "resources.device.image.uid",
+    RESOURCES_IMAGE_ARCHITECTURE: "resources.image.architecture",
+    RESOURCES_IMAGE_REGISTRY_UID: "resources.image.registry_uid",
+    RESOURCES_IMAGE_REPOSITORY_NAME: "resources.image.repository_name",
+    RESOURCES_IMAGE_UID: "resources.image.uid",
     RESOURCES_REGION: "resources.region",
+    RESOURCES_SUBNET_INFO_UID: "resources.subnet_info.uid",
     RESOURCES_TYPE: "resources.type",
     RESOURCES_UID: "resources.uid",
+    RESOURCES_VPC_UID: "resources.vpc_uid",
     SEVERITY: "severity",
     STATUS: "status",
+    VULNERABILITIES_AFFECTED_CODE_FILE_PATH: "vulnerabilities.affected_code.file.path",
+    VULNERABILITIES_AFFECTED_PACKAGES_NAME: "vulnerabilities.affected_packages.name",
+    VULNERABILITIES_CVE_EPSS_SCORE: "vulnerabilities.cve.epss.score",
+    VULNERABILITIES_CVE_UID: "vulnerabilities.cve.uid",
     VULNERABILITIES_FIX_COVERAGE: "vulnerabilities.fix_coverage",
+    VULNERABILITIES_RELATED_VULNERABILITIES: "vulnerabilities.related_vulnerabilities",
 };
 exports.ConfigurationOptions = void 0;
 (function (ConfigurationOptions) {
@@ -600,14 +653,6 @@ class ResourceConflictException extends SecurityHubServiceException {
         this.Code = opts.Code;
     }
 }
-exports.Criteria = void 0;
-(function (Criteria) {
-    Criteria.visit = (value, visitor) => {
-        if (value.OcsfFindingCriteria !== undefined)
-            return visitor.OcsfFindingCriteria(value.OcsfFindingCriteria);
-        return visitor._(value.$unknown[0], value.$unknown[1]);
-    };
-})(exports.Criteria || (exports.Criteria = {}));
 exports.Policy = void 0;
 (function (Policy) {
     Policy.visit = (value, visitor) => {
@@ -670,32 +715,18 @@ const SortOrder = {
     ASCENDING: "asc",
     DESCENDING: "desc",
 };
-const ServiceNowProviderConfigurationFilterSensitiveLog = (obj) => ({
-    ...obj,
-    ...(obj.ClientSecret && { ClientSecret: smithyClient.SENSITIVE_STRING }),
-});
-const ProviderConfigurationFilterSensitiveLog = (obj) => {
-    if (obj.JiraCloud !== undefined)
-        return { JiraCloud: obj.JiraCloud };
-    if (obj.ServiceNow !== undefined)
-        return { ServiceNow: ServiceNowProviderConfigurationFilterSensitiveLog(obj.ServiceNow) };
-    if (obj.$unknown !== undefined)
-        return { [obj.$unknown[0]]: "UNKNOWN" };
-};
-const CreateConnectorV2RequestFilterSensitiveLog = (obj) => ({
-    ...obj,
-    ...(obj.Provider && { Provider: ProviderConfigurationFilterSensitiveLog(obj.Provider) }),
-});
 const GroupByField = {
     ACTIVITY_NAME: "activity_name",
     CLASS_NAME: "class_name",
+    CLOUD_ACCOUNT_NAME: "cloud.account.name",
     CLOUD_ACCOUNT_UID: "cloud.account.uid",
     CLOUD_PROVIDER: "cloud.provider",
     CLOUD_REGION: "cloud.region",
     COMPLIANCE_ASSESSMENTS_NAME: "compliance.assessments.name",
     COMPLIANCE_CONTROL: "compliance.control",
+    COMPLIANCE_STANDARDS: "compliance.standards",
     COMPLIANCE_STATUS: "compliance.status",
+    FINDING_INFO_ANALYTIC_NAME: "finding_info.analytic.name",
     FINDING_INFO_TITLE: "finding_info.title",
     FINDING_INFO_TYPES: "finding_info.types",
     METADATA_PRODUCT_NAME: "metadata.product.name",
@@ -704,44 +735,62 @@ const GroupByField = {
     RESOURCES_UID: "resources.uid",
     SEVERITY: "severity",
     STATUS: "status",
+    VULNERABILITIES_AFFECTED_PACKAGES_NAME: "vulnerabilities.affected_packages.name",
     VULNERABILITIES_FIX_COVERAGE: "vulnerabilities.fix_coverage",
 };
+const ServiceNowProviderConfigurationFilterSensitiveLog = (obj) => ({
+    ...obj,
+    ...(obj.ClientSecret && { ClientSecret: smithyClient.SENSITIVE_STRING }),
+});
+const ProviderConfigurationFilterSensitiveLog = (obj) => {
+    if (obj.JiraCloud !== undefined)
+        return { JiraCloud: obj.JiraCloud };
+    if (obj.ServiceNow !== undefined)
+        return { ServiceNow: ServiceNowProviderConfigurationFilterSensitiveLog(obj.ServiceNow) };
+    if (obj.$unknown !== undefined)
+        return { [obj.$unknown[0]]: "UNKNOWN" };
+};
+const CreateConnectorV2RequestFilterSensitiveLog = (obj) => ({
+    ...obj,
+    ...(obj.Provider && { Provider: ProviderConfigurationFilterSensitiveLog(obj.Provider) }),
+});
 const ResourcesDateField = {
-    RESOURCE_CREATION_TIME_DT: "resource_creation_time_dt",
-    RESOURCE_DETAIL_CAPTURE_TIME_DT: "resource_detail_capture_time_dt",
+    RESOURCE_CREATION_TIME_DT: "ResourceCreationTime",
+    RESOURCE_DETAIL_CAPTURE_TIME_DT: "ResourceDetailCaptureTime",
 };
 const ResourcesMapField = {
-    TAG: "tags",
+    TAG: "ResourceTags",
 };
 const ResourcesNumberField = {
-    SEVERITY_CRITICAL: "findings_summary.severities.critical",
-    SEVERITY_FATAL: "findings_summary.severities.fatal",
-    SEVERITY_HIGH: "findings_summary.severities.high",
-    SEVERITY_INFORMATIONAL: "findings_summary.severities.informational",
-    SEVERITY_LOW: "findings_summary.severities.low",
-    SEVERITY_MEDIUM: "findings_summary.severities.medium",
-    SEVERITY_OTHER: "findings_summary.severities.other",
-    SEVERITY_UNKNOWN: "findings_summary.severities.unknown",
-    TOTAL_FINDINGS: "findings_summary.total_findings",
+    SEVERITY_CRITICAL: "FindingsSummary.Severities.Critical",
+    SEVERITY_FATAL: "FindingsSummary.Severities.Fatal",
+    SEVERITY_HIGH: "FindingsSummary.Severities.High",
+    SEVERITY_INFORMATIONAL: "FindingsSummary.Severities.Informational",
+    SEVERITY_LOW: "FindingsSummary.Severities.Low",
+    SEVERITY_MEDIUM: "FindingsSummary.Severities.Medium",
+    SEVERITY_OTHER: "FindingsSummary.Severities.Other",
+    SEVERITY_UNKNOWN: "FindingsSummary.Severities.Unknown",
+    TOTAL_FINDINGS: "FindingsSummary.TotalFindings",
 };
 const ResourcesStringField = {
-    ACCOUNT_ID: "account_id",
-    FINDING_TYPE: "findings_summary.finding_type",
-    PRODUCT_NAME: "findings_summary.product_name",
-    REGION: "region",
-    RESOURCE_ARN: "resource_arn",
-    RESOURCE_CATEGORY: "resource_category",
-    RESOURCE_ID: "resource_id",
-    RESOURCE_NAME: "resource_name",
-    RESOURCE_TYPE: "resource_type",
+    ACCOUNT_ID: "AccountId",
+    FINDING_TYPE: "FindingsSummary.FindingType",
+    PRODUCT_NAME: "FindingsSummary.ProductName",
+    REGION: "Region",
+    RESOURCE_CATEGORY: "ResourceCategory",
+    RESOURCE_GUID: "ResourceGuid",
+    RESOURCE_ID: "ResourceId",
+    RESOURCE_NAME: "ResourceName",
+    RESOURCE_TYPE: "ResourceType",
 };
 const ResourceGroupByField = {
-    ACCOUNT_ID: "account_id",
-    FINDING_TYPE: "findings_summary.finding_type",
-    REGION: "region",
-    RESOURCE_CATEGORY: "resource_category",
-    RESOURCE_NAME: "resource_name",
-    RESOURCE_TYPE: "resource_type",
+    ACCOUNT_ID: "AccountId",
+    FINDING_TYPE: "FindingsSummary.FindingType",
+    REGION: "Region",
+    RESOURCE_CATEGORY: "ResourceCategory",
+    RESOURCE_NAME: "ResourceName",
+    RESOURCE_TYPE: "ResourceType",
 };
 const ResourceCategory = {
     AI_ML: "AI/ML",
@@ -781,6 +830,14 @@ class ResourceInUseException extends SecurityHubServiceException {
         this.Code = opts.Code;
     }
 }
+exports.Criteria = void 0;
+(function (Criteria) {
+    Criteria.visit = (value, visitor) => {
+        if (value.OcsfFindingCriteria !== undefined)
+            return visitor.OcsfFindingCriteria(value.OcsfFindingCriteria);
+        return visitor._(value.$unknown[0], value.$unknown[1]);
+    };
+})(exports.Criteria || (exports.Criteria = {}));
 const UpdateConnectorV2RequestFilterSensitiveLog = (obj) => ({
     ...obj,
     ...(obj.ClientSecret && { ClientSecret: smithyClient.SENSITIVE_STRING }),
@@ -4372,7 +4429,9 @@ const se_CompositeFilter = (input, context) => {
     return smithyClient.take(input, {
         BooleanFilters: smithyClient._json,
         DateFilters: smithyClient._json,
+        IpFilters: smithyClient._json,
         MapFilters: smithyClient._json,
+        NestedCompositeFilters: (_) => se_CompositeFilterList(_),
         NumberFilters: (_) => se_OcsfNumberFilterList(_),
         Operator: [],
         StringFilters: smithyClient._json,
@@ -4698,6 +4757,7 @@ const se_ResourcesCompositeFilter = (input, context) => {
     return smithyClient.take(input, {
         DateFilters: smithyClient._json,
         MapFilters: smithyClient._json,
+        NestedCompositeFilters: (_) => se_ResourcesCompositeFilterList(_),
         NumberFilters: (_) => se_ResourcesNumberFilterList(_),
         Operator: [],
         StringFilters: smithyClient._json,
@@ -5445,7 +5505,9 @@ const de_CompositeFilter = (output, context) => {
     return smithyClient.take(output, {
         BooleanFilters: smithyClient._json,
         DateFilters: smithyClient._json,
+        IpFilters: smithyClient._json,
         MapFilters: smithyClient._json,
+        NestedCompositeFilters: (_) => de_CompositeFilterList(_),
         NumberFilters: (_) => de_OcsfNumberFilterList(_),
         Operator: smithyClient.expectString,
         StringFilters: smithyClient._json,
@@ -5995,11 +6057,11 @@ const de_ResourceResult = (output, context) => {
         AccountId: smithyClient.expectString,
         FindingsSummary: smithyClient._json,
         Region: smithyClient.expectString,
-        ResourceArn: smithyClient.expectString,
         ResourceCategory: smithyClient.expectString,
         ResourceConfig: (_) => de_ResourceConfig(_),
         ResourceCreationTimeDt: smithyClient.expectString,
         ResourceDetailCaptureTimeDt: smithyClient.expectString,
+        ResourceGuid: smithyClient.expectString,
         ResourceId: smithyClient.expectString,
         ResourceName: smithyClient.expectString,
         ResourceTags: smithyClient._json,
@@ -8364,6 +8426,7 @@ exports.MapFilterComparison = MapFilterComparison;
 exports.NetworkDirection = NetworkDirection;
 exports.OcsfBooleanField = OcsfBooleanField;
 exports.OcsfDateField = OcsfDateField;
+exports.OcsfIpField = OcsfIpField;
 exports.OcsfMapField = OcsfMapField;
 exports.OcsfNumberField = OcsfNumberField;
 exports.OcsfStringField = OcsfStringField;

package/dist-es/endpoint/ruleset.js CHANGED Viewed

@@ -1,4 +1,4 @@
 const s = "required", t = "fn", u = "argv", v = "ref";
-const a = true, b = "isSet", c = "booleanEquals", d = "error", e = "endpoint", f = "tree", g = "PartitionResult", h = { [s]: false, "type": "String" }, i = { [s]: true, "default": false, "type": "Boolean" }, j = { [v]: "Endpoint" }, k = { [t]: c, [u]: [{ [v]: "UseFIPS" }, true] }, l = { [t]: c, [u]: [{ [v]: "UseDualStack" }, true] }, m = {}, n = { [t]: "getAttr", [u]: [{ [v]: g }, "supportsFIPS"] }, o = { [t]: c, [u]: [true, { [t]: "getAttr", [u]: [{ [v]: g }, "supportsDualStack"] }] }, p = [k], q = [l], r = [{ [v]: "Region" }];
+const a = true, b = "isSet", c = "booleanEquals", d = "error", e = "endpoint", f = "tree", g = "PartitionResult", h = { [s]: false, "type": "string" }, i = { [s]: true, "default": false, "type": "boolean" }, j = { [v]: "Endpoint" }, k = { [t]: c, [u]: [{ [v]: "UseFIPS" }, true] }, l = { [t]: c, [u]: [{ [v]: "UseDualStack" }, true] }, m = {}, n = { [t]: "getAttr", [u]: [{ [v]: g }, "supportsFIPS"] }, o = { [t]: c, [u]: [true, { [t]: "getAttr", [u]: [{ [v]: g }, "supportsDualStack"] }] }, p = [k], q = [l], r = [{ [v]: "Region" }];
 const _data = { version: "1.0", parameters: { Region: h, UseDualStack: i, UseFIPS: i, Endpoint: h }, rules: [{ conditions: [{ [t]: b, [u]: [j] }], rules: [{ conditions: p, error: "Invalid Configuration: FIPS and custom endpoint are not supported", type: d }, { conditions: q, error: "Invalid Configuration: Dualstack and custom endpoint are not supported", type: d }, { endpoint: { url: j, properties: m, headers: m }, type: e }], type: f }, { conditions: [{ [t]: b, [u]: r }], rules: [{ conditions: [{ [t]: "aws.partition", [u]: r, assign: g }], rules: [{ conditions: [k, l], rules: [{ conditions: [{ [t]: c, [u]: [a, n] }, o], rules: [{ endpoint: { url: "https://securityhub-fips.{Region}.{PartitionResult#dualStackDnsSuffix}", properties: m, headers: m }, type: e }], type: f }, { error: "FIPS and DualStack are enabled, but this partition does not support one or both", type: d }], type: f }, { conditions: p, rules: [{ conditions: [{ [t]: c, [u]: [n, a] }], rules: [{ endpoint: { url: "https://securityhub-fips.{Region}.{PartitionResult#dnsSuffix}", properties: m, headers: m }, type: e }], type: f }, { error: "FIPS is enabled but this partition does not support FIPS", type: d }], type: f }, { conditions: q, rules: [{ conditions: [o], rules: [{ endpoint: { url: "https://securityhub.{Region}.{PartitionResult#dualStackDnsSuffix}", properties: m, headers: m }, type: e }], type: f }, { error: "DualStack is enabled but this partition does not support DualStack", type: d }], type: f }, { endpoint: { url: "https://securityhub.{Region}.{PartitionResult#dnsSuffix}", properties: m, headers: m }, type: e }], type: f }], type: f }, { error: "Invalid Configuration: Missing Region", type: d }] };
 export const ruleSet = _data;

package/dist-es/models/models_2.js CHANGED Viewed

@@ -202,21 +202,38 @@ export const OcsfDateField = {
     FINDING_INFO_FIRST_SEEN_TIME_DT: "finding_info.first_seen_time_dt",
     FINDING_INFO_LAST_SEEN_TIME_DT: "finding_info.last_seen_time_dt",
     FINDING_INFO_MODIFIED_TIME_DT: "finding_info.modified_time_dt",
+    RESOURCES_IMAGE_CREATED_TIME_DT: "resources.image.created_time_dt",
+    RESOURCES_IMAGE_LAST_USED_TIME_DT: "resources.image.last_used_time_dt",
+    RESOURCES_MODIFIED_TIME_DT: "resources.modified_time_dt",
+};
+export const OcsfIpField = {
+    EVIDENCES_DST_ENDPOINT_IP: "evidences.dst_endpoint.ip",
+    EVIDENCES_SRC_ENDPOINT_IP: "evidences.src_endpoint.ip",
 };
 export const OcsfMapField = {
+    COMPLIANCE_CONTROL_PARAMETERS: "compliance.control_parameters",
+    DATABUCKET_TAGS: "databucket.tags",
+    FINDING_INFO_TAGS: "finding_info.tags",
     RESOURCES_TAGS: "resources.tags",
 };
 export const OcsfNumberField = {
     ACTIVITY_ID: "activity_id",
     COMPLIANCE_STATUS_ID: "compliance.status_id",
     CONFIDENCE_SCORE: "confidence_score",
+    EVIDENCES_API_RESPONSE_CODE: "evidences.api.response.code",
+    EVIDENCES_DST_ENDPOINT_AUTONOMOUS_SYSTEM_NUMBER: "evidences.dst_endpoint.autonomous_system.number",
+    EVIDENCES_DST_ENDPOINT_PORT: "evidences.dst_endpoint.port",
+    EVIDENCES_SRC_ENDPOINT_AUTONOMOUS_SYSTEM_NUMBER: "evidences.src_endpoint.autonomous_system.number",
+    EVIDENCES_SRC_ENDPOINT_PORT: "evidences.src_endpoint.port",
     FINDING_INFO_RELATED_EVENTS_COUNT: "finding_info.related_events_count",
+    RESOURCES_IMAGE_IN_USE_COUNT: "resources.image.in_use_count",
     SEVERITY_ID: "severity_id",
     STATUS_ID: "status_id",
 };
 export const OcsfStringField = {
     ACTIVITY_NAME: "activity_name",
     CLASS_NAME: "class_name",
+    CLOUD_ACCOUNT_NAME: "cloud.account.name",
     CLOUD_ACCOUNT_UID: "cloud.account.uid",
     CLOUD_PROVIDER: "cloud.provider",
     CLOUD_REGION: "cloud.region",
@@ -226,6 +243,23 @@ export const OcsfStringField = {
     COMPLIANCE_CONTROL: "compliance.control",
     COMPLIANCE_STANDARDS: "compliance.standards",
     COMPLIANCE_STATUS: "compliance.status",
+    DATABUCKET_ENCRYPTION_DETAILS_ALGORITHM: "databucket.encryption_details.algorithm",
+    DATABUCKET_ENCRYPTION_DETAILS_KEY_UID: "databucket.encryption_details.key_uid",
+    DATABUCKET_FILE_DATA_CLASSIFICATIONS_CLASSIFIER_DETAILS_TYPE: "databucket.file.data_classifications.classifier_details.type",
+    EVIDENCES_ACTOR_USER_ACCOUNT_UID: "evidences.actor.user.account.uid",
+    EVIDENCES_API_OPERATION: "evidences.api.operation",
+    EVIDENCES_API_RESPONSE_ERROR_MESSAGE: "evidences.api.response.error_message",
+    EVIDENCES_API_SERVICE_NAME: "evidences.api.service.name",
+    EVIDENCES_CONNECTION_INFO_DIRECTION: "evidences.connection_info.direction",
+    EVIDENCES_CONNECTION_INFO_PROTOCOL_NAME: "evidences.connection_info.protocol_name",
+    EVIDENCES_DST_ENDPOINT_AUTONOMOUS_SYSTEM_NAME: "evidences.dst_endpoint.autonomous_system.name",
+    EVIDENCES_DST_ENDPOINT_LOCATION_CITY: "evidences.dst_endpoint.location.city",
+    EVIDENCES_DST_ENDPOINT_LOCATION_COUNTRY: "evidences.dst_endpoint.location.country",
+    EVIDENCES_SRC_ENDPOINT_AUTONOMOUS_SYSTEM_NAME: "evidences.src_endpoint.autonomous_system.name",
+    EVIDENCES_SRC_ENDPOINT_HOSTNAME: "evidences.src_endpoint.hostname",
+    EVIDENCES_SRC_ENDPOINT_LOCATION_CITY: "evidences.src_endpoint.location.city",
+    EVIDENCES_SRC_ENDPOINT_LOCATION_COUNTRY: "evidences.src_endpoint.location.country",
+    FINDING_INFO_ANALYTIC_NAME: "finding_info.analytic.name",
     FINDING_INFO_DESC: "finding_info.desc",
     FINDING_INFO_RELATED_EVENTS_PRODUCT_UID: "finding_info.related_events.product.uid",
     FINDING_INFO_RELATED_EVENTS_TITLE: "finding_info.related_events.title",
@@ -234,19 +268,38 @@ export const OcsfStringField = {
     FINDING_INFO_TITLE: "finding_info.title",
     FINDING_INFO_TYPES: "finding_info.types",
     FINDING_INFO_UID: "finding_info.uid",
+    MALWARE_NAME: "malware.name",
+    MALWARE_SCAN_INFO_UID: "malware_scan_info.uid",
+    MALWARE_SEVERITY: "malware.severity",
     METADATA_PRODUCT_NAME: "metadata.product.name",
     METADATA_PRODUCT_UID: "metadata.product.uid",
     METADATA_PRODUCT_VENDOR_NAME: "metadata.product.vendor_name",
     METADATA_UID: "metadata.uid",
     REMEDIATION_DESC: "remediation.desc",
     REMEDIATION_REFERENCES: "remediation.references",
+    RESOURCES_CLOUD_FUNCTION_LAYERS_UID_ALT: "resources.cloud_function.layers.uid_alt",
+    RESOURCES_CLOUD_FUNCTION_RUNTIME: "resources.cloud_function.runtime",
+    RESOURCES_CLOUD_FUNCTION_USER_UID: "resources.cloud_function.user.uid",
     RESOURCES_CLOUD_PARTITION: "resources.cloud_partition",
+    RESOURCES_DEVICE_ENCRYPTION_DETAILS_KEY_UID: "resources.device.encryption_details.key_uid",
+    RESOURCES_DEVICE_IMAGE_UID: "resources.device.image.uid",
+    RESOURCES_IMAGE_ARCHITECTURE: "resources.image.architecture",
+    RESOURCES_IMAGE_REGISTRY_UID: "resources.image.registry_uid",
+    RESOURCES_IMAGE_REPOSITORY_NAME: "resources.image.repository_name",
+    RESOURCES_IMAGE_UID: "resources.image.uid",
     RESOURCES_REGION: "resources.region",
+    RESOURCES_SUBNET_INFO_UID: "resources.subnet_info.uid",
     RESOURCES_TYPE: "resources.type",
     RESOURCES_UID: "resources.uid",
+    RESOURCES_VPC_UID: "resources.vpc_uid",
     SEVERITY: "severity",
     STATUS: "status",
+    VULNERABILITIES_AFFECTED_CODE_FILE_PATH: "vulnerabilities.affected_code.file.path",
+    VULNERABILITIES_AFFECTED_PACKAGES_NAME: "vulnerabilities.affected_packages.name",
+    VULNERABILITIES_CVE_EPSS_SCORE: "vulnerabilities.cve.epss.score",
+    VULNERABILITIES_CVE_UID: "vulnerabilities.cve.uid",
     VULNERABILITIES_FIX_COVERAGE: "vulnerabilities.fix_coverage",
+    VULNERABILITIES_RELATED_VULNERABILITIES: "vulnerabilities.related_vulnerabilities",
 };
 export var ConfigurationOptions;
 (function (ConfigurationOptions) {
@@ -304,14 +357,6 @@ export class ResourceConflictException extends __BaseException {
         this.Code = opts.Code;
     }
 }
-export var Criteria;
-(function (Criteria) {
-    Criteria.visit = (value, visitor) => {
-        if (value.OcsfFindingCriteria !== undefined)
-            return visitor.OcsfFindingCriteria(value.OcsfFindingCriteria);
-        return visitor._(value.$unknown[0], value.$unknown[1]);
-    };
-})(Criteria || (Criteria = {}));
 export var Policy;
 (function (Policy) {
     Policy.visit = (value, visitor) => {
@@ -374,6 +419,29 @@ export const SortOrder = {
     ASCENDING: "asc",
     DESCENDING: "desc",
 };
+export const GroupByField = {
+    ACTIVITY_NAME: "activity_name",
+    CLASS_NAME: "class_name",
+    CLOUD_ACCOUNT_NAME: "cloud.account.name",
+    CLOUD_ACCOUNT_UID: "cloud.account.uid",
+    CLOUD_PROVIDER: "cloud.provider",
+    CLOUD_REGION: "cloud.region",
+    COMPLIANCE_ASSESSMENTS_NAME: "compliance.assessments.name",
+    COMPLIANCE_CONTROL: "compliance.control",
+    COMPLIANCE_STANDARDS: "compliance.standards",
+    COMPLIANCE_STATUS: "compliance.status",
+    FINDING_INFO_ANALYTIC_NAME: "finding_info.analytic.name",
+    FINDING_INFO_TITLE: "finding_info.title",
+    FINDING_INFO_TYPES: "finding_info.types",
+    METADATA_PRODUCT_NAME: "metadata.product.name",
+    METADATA_PRODUCT_UID: "metadata.product.uid",
+    RESOURCES_TYPE: "resources.type",
+    RESOURCES_UID: "resources.uid",
+    SEVERITY: "severity",
+    STATUS: "status",
+    VULNERABILITIES_AFFECTED_PACKAGES_NAME: "vulnerabilities.affected_packages.name",
+    VULNERABILITIES_FIX_COVERAGE: "vulnerabilities.fix_coverage",
+};
 export const ServiceNowProviderConfigurationFilterSensitiveLog = (obj) => ({
     ...obj,
     ...(obj.ClientSecret && { ClientSecret: SENSITIVE_STRING }),

package/dist-es/models/models_3.js CHANGED Viewed

@@ -1,60 +1,41 @@
 import { SENSITIVE_STRING } from "@smithy/smithy-client";
 import { SecurityHubServiceException as __BaseException } from "./SecurityHubServiceException";
-export const GroupByField = {
-    ACTIVITY_NAME: "activity_name",
-    CLASS_NAME: "class_name",
-    CLOUD_ACCOUNT_UID: "cloud.account.uid",
-    CLOUD_PROVIDER: "cloud.provider",
-    CLOUD_REGION: "cloud.region",
-    COMPLIANCE_ASSESSMENTS_NAME: "compliance.assessments.name",
-    COMPLIANCE_CONTROL: "compliance.control",
-    COMPLIANCE_STATUS: "compliance.status",
-    FINDING_INFO_TITLE: "finding_info.title",
-    FINDING_INFO_TYPES: "finding_info.types",
-    METADATA_PRODUCT_NAME: "metadata.product.name",
-    METADATA_PRODUCT_UID: "metadata.product.uid",
-    RESOURCES_TYPE: "resources.type",
-    RESOURCES_UID: "resources.uid",
-    SEVERITY: "severity",
-    STATUS: "status",
-    VULNERABILITIES_FIX_COVERAGE: "vulnerabilities.fix_coverage",
-};
 export const ResourcesDateField = {
-    RESOURCE_CREATION_TIME_DT: "resource_creation_time_dt",
-    RESOURCE_DETAIL_CAPTURE_TIME_DT: "resource_detail_capture_time_dt",
+    RESOURCE_CREATION_TIME_DT: "ResourceCreationTime",
+    RESOURCE_DETAIL_CAPTURE_TIME_DT: "ResourceDetailCaptureTime",
 };
 export const ResourcesMapField = {
-    TAG: "tags",
+    TAG: "ResourceTags",
 };
 export const ResourcesNumberField = {
-    SEVERITY_CRITICAL: "findings_summary.severities.critical",
-    SEVERITY_FATAL: "findings_summary.severities.fatal",
-    SEVERITY_HIGH: "findings_summary.severities.high",
-    SEVERITY_INFORMATIONAL: "findings_summary.severities.informational",
-    SEVERITY_LOW: "findings_summary.severities.low",
-    SEVERITY_MEDIUM: "findings_summary.severities.medium",
-    SEVERITY_OTHER: "findings_summary.severities.other",
-    SEVERITY_UNKNOWN: "findings_summary.severities.unknown",
-    TOTAL_FINDINGS: "findings_summary.total_findings",
+    SEVERITY_CRITICAL: "FindingsSummary.Severities.Critical",
+    SEVERITY_FATAL: "FindingsSummary.Severities.Fatal",
+    SEVERITY_HIGH: "FindingsSummary.Severities.High",
+    SEVERITY_INFORMATIONAL: "FindingsSummary.Severities.Informational",
+    SEVERITY_LOW: "FindingsSummary.Severities.Low",
+    SEVERITY_MEDIUM: "FindingsSummary.Severities.Medium",
+    SEVERITY_OTHER: "FindingsSummary.Severities.Other",
+    SEVERITY_UNKNOWN: "FindingsSummary.Severities.Unknown",
+    TOTAL_FINDINGS: "FindingsSummary.TotalFindings",
 };
 export const ResourcesStringField = {
-    ACCOUNT_ID: "account_id",
-    FINDING_TYPE: "findings_summary.finding_type",
-    PRODUCT_NAME: "findings_summary.product_name",
-    REGION: "region",
-    RESOURCE_ARN: "resource_arn",
-    RESOURCE_CATEGORY: "resource_category",
-    RESOURCE_ID: "resource_id",
-    RESOURCE_NAME: "resource_name",
-    RESOURCE_TYPE: "resource_type",
+    ACCOUNT_ID: "AccountId",
+    FINDING_TYPE: "FindingsSummary.FindingType",
+    PRODUCT_NAME: "FindingsSummary.ProductName",
+    REGION: "Region",
+    RESOURCE_CATEGORY: "ResourceCategory",
+    RESOURCE_GUID: "ResourceGuid",
+    RESOURCE_ID: "ResourceId",
+    RESOURCE_NAME: "ResourceName",
+    RESOURCE_TYPE: "ResourceType",
 };
 export const ResourceGroupByField = {
-    ACCOUNT_ID: "account_id",
-    FINDING_TYPE: "findings_summary.finding_type",
-    REGION: "region",
-    RESOURCE_CATEGORY: "resource_category",
-    RESOURCE_NAME: "resource_name",
-    RESOURCE_TYPE: "resource_type",
+    ACCOUNT_ID: "AccountId",
+    FINDING_TYPE: "FindingsSummary.FindingType",
+    REGION: "Region",
+    RESOURCE_CATEGORY: "ResourceCategory",
+    RESOURCE_NAME: "ResourceName",
+    RESOURCE_TYPE: "ResourceType",
 };
 export const ResourceCategory = {
     AI_ML: "AI/ML",
@@ -94,6 +75,14 @@ export class ResourceInUseException extends __BaseException {
         this.Code = opts.Code;
     }
 }
+export var Criteria;
+(function (Criteria) {
+    Criteria.visit = (value, visitor) => {
+        if (value.OcsfFindingCriteria !== undefined)
+            return visitor.OcsfFindingCriteria(value.OcsfFindingCriteria);
+        return visitor._(value.$unknown[0], value.$unknown[1]);
+    };
+})(Criteria || (Criteria = {}));
 export const UpdateConnectorV2RequestFilterSensitiveLog = (obj) => ({
     ...obj,
     ...(obj.ClientSecret && { ClientSecret: SENSITIVE_STRING }),

package/dist-es/protocols/Aws_restJson1.js CHANGED Viewed

@@ -3,8 +3,8 @@ import { requestBuilder as rb } from "@smithy/core";
 import { _json, collectBody, decorateServiceException as __decorateServiceException, expectBoolean as __expectBoolean, expectInt32 as __expectInt32, expectLong as __expectLong, expectNonNull as __expectNonNull, expectObject as __expectObject, expectString as __expectString, limitedParseDouble as __limitedParseDouble, limitedParseFloat32 as __limitedParseFloat32, map, parseRfc3339DateTimeWithOffset as __parseRfc3339DateTimeWithOffset, serializeDateTime as __serializeDateTime, serializeFloat as __serializeFloat, take, withBaseException, } from "@smithy/smithy-client";
 import { v4 as generateIdempotencyToken } from "@smithy/uuid";
 import { AccessDeniedException, InternalException, InvalidAccessException, InvalidInputException, LimitExceededException, ResourceNotFoundException, } from "../models/models_0";
-import { ConflictException, Criteria, InternalServerException, ParameterValue, Policy, ResourceConflictException, ThrottlingException, ValidationException, } from "../models/models_2";
-import { ResourceInUseException, } from "../models/models_3";
+import { ConflictException, InternalServerException, ParameterValue, Policy, ResourceConflictException, ThrottlingException, ValidationException, } from "../models/models_2";
+import { Criteria, ResourceInUseException, } from "../models/models_3";
 import { SecurityHubServiceException as __BaseException } from "../models/SecurityHubServiceException";
 export const se_AcceptAdministratorInvitationCommand = async (input, context) => {
     const b = rb(input, context);
@@ -3591,7 +3591,9 @@ const se_CompositeFilter = (input, context) => {
     return take(input, {
         BooleanFilters: _json,
         DateFilters: _json,
+        IpFilters: _json,
         MapFilters: _json,
+        NestedCompositeFilters: (_) => se_CompositeFilterList(_, context),
         NumberFilters: (_) => se_OcsfNumberFilterList(_, context),
         Operator: [],
         StringFilters: _json,
@@ -3917,6 +3919,7 @@ const se_ResourcesCompositeFilter = (input, context) => {
     return take(input, {
         DateFilters: _json,
         MapFilters: _json,
+        NestedCompositeFilters: (_) => se_ResourcesCompositeFilterList(_, context),
         NumberFilters: (_) => se_ResourcesNumberFilterList(_, context),
         Operator: [],
         StringFilters: _json,
@@ -4664,7 +4667,9 @@ const de_CompositeFilter = (output, context) => {
     return take(output, {
         BooleanFilters: _json,
         DateFilters: _json,
+        IpFilters: _json,
         MapFilters: _json,
+        NestedCompositeFilters: (_) => de_CompositeFilterList(_, context),
         NumberFilters: (_) => de_OcsfNumberFilterList(_, context),
         Operator: __expectString,
         StringFilters: _json,
@@ -5214,11 +5219,11 @@ const de_ResourceResult = (output, context) => {
         AccountId: __expectString,
         FindingsSummary: _json,
         Region: __expectString,
-        ResourceArn: __expectString,
         ResourceCategory: __expectString,
         ResourceConfig: (_) => de_ResourceConfig(_, context),
         ResourceCreationTimeDt: __expectString,
         ResourceDetailCaptureTimeDt: __expectString,
+        ResourceGuid: __expectString,
         ResourceId: __expectString,
         ResourceName: __expectString,
         ResourceTags: _json,

package/dist-types/commands/BatchUpdateFindingsV2Command.d.ts CHANGED Viewed

@@ -32,7 +32,7 @@ declare const BatchUpdateFindingsV2Command_base: {
  *          Delegated administrator accounts can update findings for their account and their member accounts.
  *          Member accounts can update findings for their account. <code>BatchUpdateFindings</code> and <code>BatchUpdateFindingV2</code> both use <code>securityhub:BatchUpdateFindings</code> in the <code>Action</code> element of an IAM policy statement.
  *          You must have permission to perform the <code>securityhub:BatchUpdateFindings</code> action.
- *          Updates from <code>BatchUpdateFindingsV2</code> don't affect the value of f<code>inding_info.modified_time</code>, <code>finding_info.modified_time_dt</code>, <code>time</code>, <code>time_dt for a finding</code>. This API is in private preview and subject to change.</p>
+ *          Updates from <code>BatchUpdateFindingsV2</code> don't affect the value of f<code>inding_info.modified_time</code>, <code>finding_info.modified_time_dt</code>, <code>time</code>, <code>time_dt for a finding</code>. This API is in public preview and subject to change.</p>
  * @example
  * Use a bare-bones client and the command you need to make an API call.
  * ```javascript