npm - @aws-sdk/client-securityhub - Versions diffs - 3.916.0 → 3.918.0 - Mend

@aws-sdk/client-securityhub 3.916.0 → 3.918.0

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (34) hide show

package/dist-types/models/models_2.d.ts CHANGED Viewed

@@ -1,5 +1,5 @@
 import { ExceptionOptionType as __ExceptionOptionType } from "@smithy/smithy-client";
-import { AccountDetails, Action, ActionTarget, Adjustment, AllowedOperators, AssociationStatus, AssociationType, AutoEnableStandards, AutomationRulesAction, AutomationRulesActionV2, AutomationRulesConfig, AutomationRulesFindingFilters, AwsAmazonMqBrokerDetails, AwsApiGatewayRestApiDetails, AwsApiGatewayStageDetails, AwsApiGatewayV2ApiDetails, AwsApiGatewayV2StageDetails, AwsAppSyncGraphQlApiDetails, AwsAthenaWorkGroupDetails, AwsAutoScalingAutoScalingGroupDetails, AwsAutoScalingLaunchConfigurationDetails, AwsBackupBackupPlanDetails, AwsBackupBackupVaultDetails, AwsBackupRecoveryPointDetails, AwsCertificateManagerCertificateDetails, AwsCloudFormationStackDetails, AwsCloudFrontDistributionDetails, AwsCloudTrailTrailDetails, AwsCloudWatchAlarmDetails, AwsCodeBuildProjectDetails, AwsDmsEndpointDetails, AwsDmsReplicationInstanceDetails, AwsDmsReplicationTaskDetails, AwsDynamoDbTableDetails, AwsEc2ClientVpnEndpointDetails, AwsEc2EipDetails, AwsEc2InstanceDetails, AwsEc2LaunchTemplateDetails, AwsEc2NetworkAclDetails, AwsEc2NetworkInterfaceDetails, AwsEc2RouteTableDetails, AwsEc2SecurityGroupDetails, AwsEc2SubnetDetails, AwsEc2TransitGatewayDetails, AwsEc2VolumeDetails, AwsEc2VpcDetails, AwsEc2VpcEndpointServiceDetails, AwsEc2VpcPeeringConnectionDetails, AwsEc2VpnConnectionDetails, AwsEcrContainerImageDetails, AwsEcrRepositoryDetails, AwsEcsClusterDetails, AwsEcsContainerDetails, AwsEcsServiceDetails, ConfigurationPolicyAssociationStatus, DateFilter, MapFilter, NoteUpdate, NumberFilter, RelatedFinding, RuleStatus, RuleStatusV2, SeverityLabel, SeverityUpdate, StringFilter, VerificationState, WorkflowStatus, WorkflowUpdate } from "./models_0";
+import { AccountDetails, Action, ActionTarget, Adjustment, AssociationStatus, AssociationType, AutoEnableStandards, AutomationRulesAction, AutomationRulesConfig, AutomationRulesFindingFilters, AwsAmazonMqBrokerDetails, AwsApiGatewayRestApiDetails, AwsApiGatewayStageDetails, AwsApiGatewayV2ApiDetails, AwsApiGatewayV2StageDetails, AwsAppSyncGraphQlApiDetails, AwsAthenaWorkGroupDetails, AwsAutoScalingAutoScalingGroupDetails, AwsAutoScalingLaunchConfigurationDetails, AwsBackupBackupPlanDetails, AwsBackupBackupVaultDetails, AwsBackupRecoveryPointDetails, AwsCertificateManagerCertificateDetails, AwsCloudFormationStackDetails, AwsCloudFrontDistributionDetails, AwsCloudTrailTrailDetails, AwsCloudWatchAlarmDetails, AwsCodeBuildProjectDetails, AwsDmsEndpointDetails, AwsDmsReplicationInstanceDetails, AwsDmsReplicationTaskDetails, AwsDynamoDbTableDetails, AwsEc2ClientVpnEndpointDetails, AwsEc2EipDetails, AwsEc2InstanceDetails, AwsEc2LaunchTemplateDetails, AwsEc2NetworkAclDetails, AwsEc2NetworkInterfaceDetails, AwsEc2RouteTableDetails, AwsEc2SecurityGroupDetails, AwsEc2SubnetDetails, AwsEc2TransitGatewayDetails, AwsEc2VolumeDetails, AwsEc2VpcDetails, AwsEc2VpcEndpointServiceDetails, AwsEc2VpcPeeringConnectionDetails, AwsEc2VpnConnectionDetails, AwsEcrContainerImageDetails, AwsEcrRepositoryDetails, AwsEcsClusterDetails, AwsEcsContainerDetails, AwsEcsServiceDetails, ConfigurationPolicyAssociationStatus, DateFilter, MapFilter, NoteUpdate, NumberFilter, RelatedFinding, RuleStatus, SeverityLabel, SeverityUpdate, StringFilter, VerificationState, WorkflowStatus, WorkflowUpdate } from "./models_0";
 import { AwsEcsTaskDefinitionDetails, AwsEcsTaskDetails, AwsEfsAccessPointDetails, AwsEksClusterDetails, AwsElasticBeanstalkEnvironmentDetails, AwsElasticsearchDomainDetails, AwsElbLoadBalancerDetails, AwsElbv2LoadBalancerDetails, AwsEventSchemasRegistryDetails, AwsEventsEndpointDetails, AwsEventsEventbusDetails, AwsGuardDutyDetectorDetails, AwsIamAccessKeyDetails, AwsIamGroupDetails, AwsIamPolicyDetails, AwsIamRoleDetails, AwsIamUserDetails, AwsKinesisStreamDetails, AwsKmsKeyDetails, AwsLambdaFunctionDetails, AwsLambdaLayerVersionDetails, AwsMskClusterDetails, AwsNetworkFirewallFirewallDetails, AwsNetworkFirewallFirewallPolicyDetails, AwsNetworkFirewallRuleGroupDetails, AwsOpenSearchServiceDomainDetails, AwsRdsDbClusterDetails, AwsRdsDbClusterSnapshotDetails, AwsRdsDbInstanceDetails, AwsRdsDbSecurityGroupDetails, AwsRdsDbSnapshotDetails, AwsRdsEventSubscriptionDetails, AwsRedshiftClusterDetails, AwsRoute53HostedZoneDetails, AwsS3AccessPointDetails, AwsS3AccountPublicAccessBlockDetails, AwsS3BucketDetails, AwsS3ObjectDetails, AwsSageMakerNotebookInstanceDetails, AwsSecretsManagerSecretDetails, ClassificationResult, Compliance, Detection, FindingProviderFields, GeneratorDetails, Malware, Network, NetworkPathComponent, Note, PatchSummary, ProcessDetails, RecordState, Remediation } from "./models_1";
 import { SecurityHubServiceException as __BaseException } from "./SecurityHubServiceException";
 /**
@@ -4909,7 +4909,8 @@ export interface UnprocessedSecurityControl {
     SecurityControlId: string | undefined;
     /**
      * <p>
-     *          The error code for the unprocessed security control.
+     *          The error code for the unprocessed security control. The <code>NOT_FOUND</code> value has been deprecated and
+     *          replaced by the <code>RESOURCE_NOT_FOUND</code> value.
      *       </p>
      * @public
      */
@@ -5074,7 +5075,8 @@ export interface UnprocessedStandardsControlAssociation {
      */
     StandardsControlAssociationId: StandardsControlAssociationId | undefined;
     /**
-     * <p>The error code for the unprocessed standard and control association.
+     * <p>The error code for the unprocessed standard and control association. The <code>NOT_FOUND</code> value has been deprecated and
+     *          replaced by the <code>RESOURCE_NOT_FOUND</code> value.
      *       </p>
      * @public
      */
@@ -5723,7 +5725,8 @@ export interface UnprocessedStandardsControlAssociationUpdate {
     StandardsControlAssociationUpdate: StandardsControlAssociationUpdate | undefined;
     /**
      * <p>The error code for the unprocessed update of the control's enablement status in the
-     *          specified standard.</p>
+     *          specified standard.  The <code>NOT_FOUND</code> value has been deprecated and
+     *          replaced by the <code>RESOURCE_NOT_FOUND</code> value.</p>
      * @public
      */
     ErrorCode: UnprocessedErrorCode | undefined;
@@ -5799,6 +5802,9 @@ export declare const OcsfDateField: {
     readonly FINDING_INFO_FIRST_SEEN_TIME_DT: "finding_info.first_seen_time_dt";
     readonly FINDING_INFO_LAST_SEEN_TIME_DT: "finding_info.last_seen_time_dt";
     readonly FINDING_INFO_MODIFIED_TIME_DT: "finding_info.modified_time_dt";
+    readonly RESOURCES_IMAGE_CREATED_TIME_DT: "resources.image.created_time_dt";
+    readonly RESOURCES_IMAGE_LAST_USED_TIME_DT: "resources.image.last_used_time_dt";
+    readonly RESOURCES_MODIFIED_TIME_DT: "resources.modified_time_dt";
 };
 /**
  * @public
@@ -5820,11 +5826,42 @@ export interface OcsfDateFilter {
      */
     Filter?: DateFilter | undefined;
 }
+/**
+ * @public
+ * @enum
+ */
+export declare const OcsfIpField: {
+    readonly EVIDENCES_DST_ENDPOINT_IP: "evidences.dst_endpoint.ip";
+    readonly EVIDENCES_SRC_ENDPOINT_IP: "evidences.src_endpoint.ip";
+};
+/**
+ * @public
+ */
+export type OcsfIpField = (typeof OcsfIpField)[keyof typeof OcsfIpField];
+/**
+ * <p>The structure for filtering findings based on IP address attributes.</p>
+ * @public
+ */
+export interface OcsfIpFilter {
+    /**
+     * <p>The name of the IP address field to filter on.</p>
+     * @public
+     */
+    FieldName?: OcsfIpField | undefined;
+    /**
+     * <p>The IP filter for querying findings.</p>
+     * @public
+     */
+    Filter?: IpFilter | undefined;
+}
 /**
  * @public
  * @enum
  */
 export declare const OcsfMapField: {
+    readonly COMPLIANCE_CONTROL_PARAMETERS: "compliance.control_parameters";
+    readonly DATABUCKET_TAGS: "databucket.tags";
+    readonly FINDING_INFO_TAGS: "finding_info.tags";
     readonly RESOURCES_TAGS: "resources.tags";
 };
 /**
@@ -5856,7 +5893,13 @@ export declare const OcsfNumberField: {
     readonly ACTIVITY_ID: "activity_id";
     readonly COMPLIANCE_STATUS_ID: "compliance.status_id";
     readonly CONFIDENCE_SCORE: "confidence_score";
+    readonly EVIDENCES_API_RESPONSE_CODE: "evidences.api.response.code";
+    readonly EVIDENCES_DST_ENDPOINT_AUTONOMOUS_SYSTEM_NUMBER: "evidences.dst_endpoint.autonomous_system.number";
+    readonly EVIDENCES_DST_ENDPOINT_PORT: "evidences.dst_endpoint.port";
+    readonly EVIDENCES_SRC_ENDPOINT_AUTONOMOUS_SYSTEM_NUMBER: "evidences.src_endpoint.autonomous_system.number";
+    readonly EVIDENCES_SRC_ENDPOINT_PORT: "evidences.src_endpoint.port";
     readonly FINDING_INFO_RELATED_EVENTS_COUNT: "finding_info.related_events_count";
+    readonly RESOURCES_IMAGE_IN_USE_COUNT: "resources.image.in_use_count";
     readonly SEVERITY_ID: "severity_id";
     readonly STATUS_ID: "status_id";
 };
@@ -5887,6 +5930,7 @@ export interface OcsfNumberFilter {
 export declare const OcsfStringField: {
     readonly ACTIVITY_NAME: "activity_name";
     readonly CLASS_NAME: "class_name";
+    readonly CLOUD_ACCOUNT_NAME: "cloud.account.name";
     readonly CLOUD_ACCOUNT_UID: "cloud.account.uid";
     readonly CLOUD_PROVIDER: "cloud.provider";
     readonly CLOUD_REGION: "cloud.region";
@@ -5896,6 +5940,23 @@ export declare const OcsfStringField: {
     readonly COMPLIANCE_CONTROL: "compliance.control";
     readonly COMPLIANCE_STANDARDS: "compliance.standards";
     readonly COMPLIANCE_STATUS: "compliance.status";
+    readonly DATABUCKET_ENCRYPTION_DETAILS_ALGORITHM: "databucket.encryption_details.algorithm";
+    readonly DATABUCKET_ENCRYPTION_DETAILS_KEY_UID: "databucket.encryption_details.key_uid";
+    readonly DATABUCKET_FILE_DATA_CLASSIFICATIONS_CLASSIFIER_DETAILS_TYPE: "databucket.file.data_classifications.classifier_details.type";
+    readonly EVIDENCES_ACTOR_USER_ACCOUNT_UID: "evidences.actor.user.account.uid";
+    readonly EVIDENCES_API_OPERATION: "evidences.api.operation";
+    readonly EVIDENCES_API_RESPONSE_ERROR_MESSAGE: "evidences.api.response.error_message";
+    readonly EVIDENCES_API_SERVICE_NAME: "evidences.api.service.name";
+    readonly EVIDENCES_CONNECTION_INFO_DIRECTION: "evidences.connection_info.direction";
+    readonly EVIDENCES_CONNECTION_INFO_PROTOCOL_NAME: "evidences.connection_info.protocol_name";
+    readonly EVIDENCES_DST_ENDPOINT_AUTONOMOUS_SYSTEM_NAME: "evidences.dst_endpoint.autonomous_system.name";
+    readonly EVIDENCES_DST_ENDPOINT_LOCATION_CITY: "evidences.dst_endpoint.location.city";
+    readonly EVIDENCES_DST_ENDPOINT_LOCATION_COUNTRY: "evidences.dst_endpoint.location.country";
+    readonly EVIDENCES_SRC_ENDPOINT_AUTONOMOUS_SYSTEM_NAME: "evidences.src_endpoint.autonomous_system.name";
+    readonly EVIDENCES_SRC_ENDPOINT_HOSTNAME: "evidences.src_endpoint.hostname";
+    readonly EVIDENCES_SRC_ENDPOINT_LOCATION_CITY: "evidences.src_endpoint.location.city";
+    readonly EVIDENCES_SRC_ENDPOINT_LOCATION_COUNTRY: "evidences.src_endpoint.location.country";
+    readonly FINDING_INFO_ANALYTIC_NAME: "finding_info.analytic.name";
     readonly FINDING_INFO_DESC: "finding_info.desc";
     readonly FINDING_INFO_RELATED_EVENTS_PRODUCT_UID: "finding_info.related_events.product.uid";
     readonly FINDING_INFO_RELATED_EVENTS_TITLE: "finding_info.related_events.title";
@@ -5904,19 +5965,38 @@ export declare const OcsfStringField: {
     readonly FINDING_INFO_TITLE: "finding_info.title";
     readonly FINDING_INFO_TYPES: "finding_info.types";
     readonly FINDING_INFO_UID: "finding_info.uid";
+    readonly MALWARE_NAME: "malware.name";
+    readonly MALWARE_SCAN_INFO_UID: "malware_scan_info.uid";
+    readonly MALWARE_SEVERITY: "malware.severity";
     readonly METADATA_PRODUCT_NAME: "metadata.product.name";
     readonly METADATA_PRODUCT_UID: "metadata.product.uid";
     readonly METADATA_PRODUCT_VENDOR_NAME: "metadata.product.vendor_name";
     readonly METADATA_UID: "metadata.uid";
     readonly REMEDIATION_DESC: "remediation.desc";
     readonly REMEDIATION_REFERENCES: "remediation.references";
+    readonly RESOURCES_CLOUD_FUNCTION_LAYERS_UID_ALT: "resources.cloud_function.layers.uid_alt";
+    readonly RESOURCES_CLOUD_FUNCTION_RUNTIME: "resources.cloud_function.runtime";
+    readonly RESOURCES_CLOUD_FUNCTION_USER_UID: "resources.cloud_function.user.uid";
     readonly RESOURCES_CLOUD_PARTITION: "resources.cloud_partition";
+    readonly RESOURCES_DEVICE_ENCRYPTION_DETAILS_KEY_UID: "resources.device.encryption_details.key_uid";
+    readonly RESOURCES_DEVICE_IMAGE_UID: "resources.device.image.uid";
+    readonly RESOURCES_IMAGE_ARCHITECTURE: "resources.image.architecture";
+    readonly RESOURCES_IMAGE_REGISTRY_UID: "resources.image.registry_uid";
+    readonly RESOURCES_IMAGE_REPOSITORY_NAME: "resources.image.repository_name";
+    readonly RESOURCES_IMAGE_UID: "resources.image.uid";
     readonly RESOURCES_REGION: "resources.region";
+    readonly RESOURCES_SUBNET_INFO_UID: "resources.subnet_info.uid";
     readonly RESOURCES_TYPE: "resources.type";
     readonly RESOURCES_UID: "resources.uid";
+    readonly RESOURCES_VPC_UID: "resources.vpc_uid";
     readonly SEVERITY: "severity";
     readonly STATUS: "status";
+    readonly VULNERABILITIES_AFFECTED_CODE_FILE_PATH: "vulnerabilities.affected_code.file.path";
+    readonly VULNERABILITIES_AFFECTED_PACKAGES_NAME: "vulnerabilities.affected_packages.name";
+    readonly VULNERABILITIES_CVE_EPSS_SCORE: "vulnerabilities.cve.epss.score";
+    readonly VULNERABILITIES_CVE_UID: "vulnerabilities.cve.uid";
     readonly VULNERABILITIES_FIX_COVERAGE: "vulnerabilities.fix_coverage";
+    readonly VULNERABILITIES_RELATED_VULNERABILITIES: "vulnerabilities.related_vulnerabilities";
 };
 /**
  * @public
@@ -5938,42 +6018,6 @@ export interface OcsfStringFilter {
      */
     Filter?: StringFilter | undefined;
 }
-/**
- * <p>Enables the creation of filtering criteria for security findings.</p>
- * @public
- */
-export interface CompositeFilter {
-    /**
-     * <p>Enables filtering based on string field values.</p>
-     * @public
-     */
-    StringFilters?: OcsfStringFilter[] | undefined;
-    /**
-     * <p>Enables filtering based on date and timestamp fields.</p>
-     * @public
-     */
-    DateFilters?: OcsfDateFilter[] | undefined;
-    /**
-     * <p>Enables filtering  based on boolean field values.</p>
-     * @public
-     */
-    BooleanFilters?: OcsfBooleanFilter[] | undefined;
-    /**
-     * <p>Enables filtering based on numerical field values.</p>
-     * @public
-     */
-    NumberFilters?: OcsfNumberFilter[] | undefined;
-    /**
-     * <p>Enables filtering based on map field values.</p>
-     * @public
-     */
-    MapFilters?: OcsfMapFilter[] | undefined;
-    /**
-     * <p>The logical operator used to combine multiple filter conditions.</p>
-     * @public
-     */
-    Operator?: AllowedOperators | undefined;
-}
 /**
  * <p>
  *             The options for customizing a security control parameter that is a double.
@@ -6720,97 +6764,6 @@ export interface CreateAutomationRuleResponse {
      */
     RuleArn?: string | undefined;
 }
-/**
- * <p>Specifies the filtering criteria for security findings using OCSF.</p>
- * @public
- */
-export interface OcsfFindingFilters {
-    /**
-     * <p>Enables the creation of complex filtering conditions by combining filter criteria.</p>
-     * @public
-     */
-    CompositeFilters?: CompositeFilter[] | undefined;
-    /**
-     * <p>The logical operators used to combine the filtering on multiple <code>CompositeFilters</code>.</p>
-     * @public
-     */
-    CompositeOperator?: AllowedOperators | undefined;
-}
-/**
- * <p>Defines the parameters and conditions used to evaluate and filter security findings.</p>
- * @public
- */
-export type Criteria = Criteria.OcsfFindingCriteriaMember | Criteria.$UnknownMember;
-/**
- * @public
- */
-export declare namespace Criteria {
-    /**
-     * <p>The filtering conditions that align with OCSF standards.</p>
-     * @public
-     */
-    interface OcsfFindingCriteriaMember {
-        OcsfFindingCriteria: OcsfFindingFilters;
-        $unknown?: never;
-    }
-    /**
-     * @public
-     */
-    interface $UnknownMember {
-        OcsfFindingCriteria?: never;
-        $unknown: [string, any];
-    }
-    interface Visitor<T> {
-        OcsfFindingCriteria: (value: OcsfFindingFilters) => T;
-        _: (name: string, value: any) => T;
-    }
-    const visit: <T>(value: Criteria, visitor: Visitor<T>) => T;
-}
-/**
- * @public
- */
-export interface CreateAutomationRuleV2Request {
-    /**
-     * <p>The name of the V2 automation rule.</p>
-     * @public
-     */
-    RuleName: string | undefined;
-    /**
-     * <p>The status of the V2 automation rule.</p>
-     * @public
-     */
-    RuleStatus?: RuleStatusV2 | undefined;
-    /**
-     * <p>A description of the V2 automation rule.</p>
-     * @public
-     */
-    Description: string | undefined;
-    /**
-     * <p>The value for the rule priority.</p>
-     * @public
-     */
-    RuleOrder: number | undefined;
-    /**
-     * <p>The filtering type and configuration of the automation rule.</p>
-     * @public
-     */
-    Criteria: Criteria | undefined;
-    /**
-     * <p>A list of actions to be performed when the rule criteria is met.</p>
-     * @public
-     */
-    Actions: AutomationRulesActionV2[] | undefined;
-    /**
-     * <p>A list of key-value pairs associated with the V2 automation rule.</p>
-     * @public
-     */
-    Tags?: Record<string, string> | undefined;
-    /**
-     * <p>A unique identifier used to ensure idempotency.</p>
-     * @public
-     */
-    ClientToken?: string | undefined;
-}
 /**
  * @public
  */
@@ -8615,61 +8568,6 @@ export interface GetAutomationRuleV2Request {
      */
     Identifier: string | undefined;
 }
-/**
- * @public
- */
-export interface GetAutomationRuleV2Response {
-    /**
-     * <p>The ARN of the V2 automation rule.</p>
-     * @public
-     */
-    RuleArn?: string | undefined;
-    /**
-     * <p>The ID of the V2 automation rule.</p>
-     * @public
-     */
-    RuleId?: string | undefined;
-    /**
-     * <p>The value for the rule priority.</p>
-     * @public
-     */
-    RuleOrder?: number | undefined;
-    /**
-     * <p>The name of the V2 automation rule.</p>
-     * @public
-     */
-    RuleName?: string | undefined;
-    /**
-     * <p>The status of the V2 automation automation rule.</p>
-     * @public
-     */
-    RuleStatus?: RuleStatusV2 | undefined;
-    /**
-     * <p>A description of the automation rule.</p>
-     * @public
-     */
-    Description?: string | undefined;
-    /**
-     * <p>The filtering type and configuration of the V2 automation rule.</p>
-     * @public
-     */
-    Criteria?: Criteria | undefined;
-    /**
-     * <p>A list of actions performed when the rule criteria is met.</p>
-     * @public
-     */
-    Actions?: AutomationRulesActionV2[] | undefined;
-    /**
-     * <p>The timestamp when the V2 automation rule was created.</p>
-     * @public
-     */
-    CreatedAt?: Date | undefined;
-    /**
-     * <p>The timestamp when the V2 automation rule was updated.</p>
-     * @public
-     */
-    UpdatedAt?: Date | undefined;
-}
 /**
  * @public
  */
@@ -9161,6 +9059,86 @@ export interface SortCriterion {
      */
     SortOrder?: SortOrder | undefined;
 }
+/**
+ * @public
+ */
+export interface GetFindingsRequest {
+    /**
+     * <p>The finding attributes used to define a condition to filter the returned
+     *          findings.</p>
+     *          <p>You can filter by up to 10 finding attributes. For each attribute, you can provide up to
+     *          20 filter values.</p>
+     *          <p>Note that in the available filter fields, <code>WorkflowState</code> is deprecated. To
+     *          search for a finding based on its workflow status, use <code>WorkflowStatus</code>.</p>
+     * @public
+     */
+    Filters?: AwsSecurityFindingFilters | undefined;
+    /**
+     * <p>The finding attributes used to sort the list of returned findings.</p>
+     * @public
+     */
+    SortCriteria?: SortCriterion[] | undefined;
+    /**
+     * <p>The token that is required for pagination. On your first call to the
+     *             <code>GetFindings</code> operation, set the value of this parameter to
+     *          <code>NULL</code>.</p>
+     *          <p>For subsequent calls to the operation, to continue listing data, set the value of this
+     *          parameter to the value returned from the previous response.</p>
+     * @public
+     */
+    NextToken?: string | undefined;
+    /**
+     * <p>The maximum number of findings to return.</p>
+     * @public
+     */
+    MaxResults?: number | undefined;
+}
+/**
+ * @public
+ */
+export interface GetFindingsResponse {
+    /**
+     * <p>The findings that matched the filters specified in the request.</p>
+     * @public
+     */
+    Findings: AwsSecurityFinding[] | undefined;
+    /**
+     * <p>The pagination token to use to request the next page of results.</p>
+     * @public
+     */
+    NextToken?: string | undefined;
+}
+/**
+ * @public
+ * @enum
+ */
+export declare const GroupByField: {
+    readonly ACTIVITY_NAME: "activity_name";
+    readonly CLASS_NAME: "class_name";
+    readonly CLOUD_ACCOUNT_NAME: "cloud.account.name";
+    readonly CLOUD_ACCOUNT_UID: "cloud.account.uid";
+    readonly CLOUD_PROVIDER: "cloud.provider";
+    readonly CLOUD_REGION: "cloud.region";
+    readonly COMPLIANCE_ASSESSMENTS_NAME: "compliance.assessments.name";
+    readonly COMPLIANCE_CONTROL: "compliance.control";
+    readonly COMPLIANCE_STANDARDS: "compliance.standards";
+    readonly COMPLIANCE_STATUS: "compliance.status";
+    readonly FINDING_INFO_ANALYTIC_NAME: "finding_info.analytic.name";
+    readonly FINDING_INFO_TITLE: "finding_info.title";
+    readonly FINDING_INFO_TYPES: "finding_info.types";
+    readonly METADATA_PRODUCT_NAME: "metadata.product.name";
+    readonly METADATA_PRODUCT_UID: "metadata.product.uid";
+    readonly RESOURCES_TYPE: "resources.type";
+    readonly RESOURCES_UID: "resources.uid";
+    readonly SEVERITY: "severity";
+    readonly STATUS: "status";
+    readonly VULNERABILITIES_AFFECTED_PACKAGES_NAME: "vulnerabilities.affected_packages.name";
+    readonly VULNERABILITIES_FIX_COVERAGE: "vulnerabilities.fix_coverage";
+};
+/**
+ * @public
+ */
+export type GroupByField = (typeof GroupByField)[keyof typeof GroupByField];
 /**
  * @internal
  */