aws-sdk 2.1401.0 → 2.1402.0
This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.
- package/CHANGELOG.md +9 -1
- package/README.md +1 -1
- package/apis/elasticmapreduce-2009-03-31.min.json +56 -3
- package/apis/elasticmapreduce-2009-03-31.paginators.json +4 -0
- package/apis/inspector2-2020-06-08.min.json +529 -150
- package/apis/mediaconvert-2017-08-29.min.json +103 -93
- package/apis/mq-2017-11-27.min.json +132 -32
- package/apis/sagemaker-2017-07-24.min.json +995 -973
- package/apis/transfer-2018-11-05.min.json +44 -31
- package/clients/dynamodb.d.ts +2 -2
- package/clients/emr.d.ts +77 -1
- package/clients/inspector2.d.ts +417 -9
- package/clients/mediaconvert.d.ts +11 -2
- package/clients/mq.d.ts +136 -30
- package/clients/sagemaker.d.ts +45 -13
- package/clients/transfer.d.ts +13 -0
- package/dist/aws-sdk-core-react-native.js +1 -1
- package/dist/aws-sdk-react-native.js +8 -8
- package/dist/aws-sdk.js +63 -6
- package/dist/aws-sdk.min.js +55 -55
- package/lib/core.js +1 -1
- package/package.json +1 -1
package/clients/inspector2.d.ts
CHANGED
@@ -27,6 +27,14 @@ declare class Inspector2 extends Service {
|
|
27
27
|
* Retrieves the Amazon Inspector status of multiple Amazon Web Services accounts within your environment.
|
28
28
|
*/
|
29
29
|
batchGetAccountStatus(callback?: (err: AWSError, data: Inspector2.Types.BatchGetAccountStatusResponse) => void): Request<Inspector2.Types.BatchGetAccountStatusResponse, AWSError>;
|
30
|
+
/**
|
31
|
+
* Retrieves code snippets from findings that Amazon Inspector detected code vulnerabilities in.
|
32
|
+
*/
|
33
|
+
batchGetCodeSnippet(params: Inspector2.Types.BatchGetCodeSnippetRequest, callback?: (err: AWSError, data: Inspector2.Types.BatchGetCodeSnippetResponse) => void): Request<Inspector2.Types.BatchGetCodeSnippetResponse, AWSError>;
|
34
|
+
/**
|
35
|
+
* Retrieves code snippets from findings that Amazon Inspector detected code vulnerabilities in.
|
36
|
+
*/
|
37
|
+
batchGetCodeSnippet(callback?: (err: AWSError, data: Inspector2.Types.BatchGetCodeSnippetResponse) => void): Request<Inspector2.Types.BatchGetCodeSnippetResponse, AWSError>;
|
30
38
|
/**
|
31
39
|
* Gets free trial status for multiple Amazon Web Services accounts.
|
32
40
|
*/
|
@@ -59,6 +67,14 @@ declare class Inspector2 extends Service {
|
|
59
67
|
* Cancels the given findings report.
|
60
68
|
*/
|
61
69
|
cancelFindingsReport(callback?: (err: AWSError, data: Inspector2.Types.CancelFindingsReportResponse) => void): Request<Inspector2.Types.CancelFindingsReportResponse, AWSError>;
|
70
|
+
/**
|
71
|
+
* Cancels a software bill of materials (SBOM) report.
|
72
|
+
*/
|
73
|
+
cancelSbomExport(params: Inspector2.Types.CancelSbomExportRequest, callback?: (err: AWSError, data: Inspector2.Types.CancelSbomExportResponse) => void): Request<Inspector2.Types.CancelSbomExportResponse, AWSError>;
|
74
|
+
/**
|
75
|
+
* Cancels a software bill of materials (SBOM) report.
|
76
|
+
*/
|
77
|
+
cancelSbomExport(callback?: (err: AWSError, data: Inspector2.Types.CancelSbomExportResponse) => void): Request<Inspector2.Types.CancelSbomExportResponse, AWSError>;
|
62
78
|
/**
|
63
79
|
* Creates a filter resource using specified filter criteria.
|
64
80
|
*/
|
@@ -75,6 +91,14 @@ declare class Inspector2 extends Service {
|
|
75
91
|
* Creates a finding report. By default only ACTIVE findings are returned in the report. To see SUPRESSED or CLOSED findings you must specify a value for the findingStatus filter criteria.
|
76
92
|
*/
|
77
93
|
createFindingsReport(callback?: (err: AWSError, data: Inspector2.Types.CreateFindingsReportResponse) => void): Request<Inspector2.Types.CreateFindingsReportResponse, AWSError>;
|
94
|
+
/**
|
95
|
+
* Creates a software bill of materials (SBOM) report.
|
96
|
+
*/
|
97
|
+
createSbomExport(params: Inspector2.Types.CreateSbomExportRequest, callback?: (err: AWSError, data: Inspector2.Types.CreateSbomExportResponse) => void): Request<Inspector2.Types.CreateSbomExportResponse, AWSError>;
|
98
|
+
/**
|
99
|
+
* Creates a software bill of materials (SBOM) report.
|
100
|
+
*/
|
101
|
+
createSbomExport(callback?: (err: AWSError, data: Inspector2.Types.CreateSbomExportResponse) => void): Request<Inspector2.Types.CreateSbomExportResponse, AWSError>;
|
78
102
|
/**
|
79
103
|
* Deletes a filter resource.
|
80
104
|
*/
|
@@ -155,6 +179,14 @@ declare class Inspector2 extends Service {
|
|
155
179
|
* Retrieves the activation status of Amazon Inspector deep inspection and custom paths associated with your account.
|
156
180
|
*/
|
157
181
|
getEc2DeepInspectionConfiguration(callback?: (err: AWSError, data: Inspector2.Types.GetEc2DeepInspectionConfigurationResponse) => void): Request<Inspector2.Types.GetEc2DeepInspectionConfigurationResponse, AWSError>;
|
182
|
+
/**
|
183
|
+
* Gets an encryption key.
|
184
|
+
*/
|
185
|
+
getEncryptionKey(params: Inspector2.Types.GetEncryptionKeyRequest, callback?: (err: AWSError, data: Inspector2.Types.GetEncryptionKeyResponse) => void): Request<Inspector2.Types.GetEncryptionKeyResponse, AWSError>;
|
186
|
+
/**
|
187
|
+
* Gets an encryption key.
|
188
|
+
*/
|
189
|
+
getEncryptionKey(callback?: (err: AWSError, data: Inspector2.Types.GetEncryptionKeyResponse) => void): Request<Inspector2.Types.GetEncryptionKeyResponse, AWSError>;
|
158
190
|
/**
|
159
191
|
* Gets the status of a findings report.
|
160
192
|
*/
|
@@ -171,6 +203,14 @@ declare class Inspector2 extends Service {
|
|
171
203
|
* Gets member information for your organization.
|
172
204
|
*/
|
173
205
|
getMember(callback?: (err: AWSError, data: Inspector2.Types.GetMemberResponse) => void): Request<Inspector2.Types.GetMemberResponse, AWSError>;
|
206
|
+
/**
|
207
|
+
* Gets details of a software bill of materials (SBOM) report.
|
208
|
+
*/
|
209
|
+
getSbomExport(params: Inspector2.Types.GetSbomExportRequest, callback?: (err: AWSError, data: Inspector2.Types.GetSbomExportResponse) => void): Request<Inspector2.Types.GetSbomExportResponse, AWSError>;
|
210
|
+
/**
|
211
|
+
* Gets details of a software bill of materials (SBOM) report.
|
212
|
+
*/
|
213
|
+
getSbomExport(callback?: (err: AWSError, data: Inspector2.Types.GetSbomExportResponse) => void): Request<Inspector2.Types.GetSbomExportResponse, AWSError>;
|
174
214
|
/**
|
175
215
|
* Lists the permissions an account has to configure Amazon Inspector.
|
176
216
|
*/
|
@@ -251,6 +291,14 @@ declare class Inspector2 extends Service {
|
|
251
291
|
* Lists the Amazon Inspector usage totals over the last 30 days.
|
252
292
|
*/
|
253
293
|
listUsageTotals(callback?: (err: AWSError, data: Inspector2.Types.ListUsageTotalsResponse) => void): Request<Inspector2.Types.ListUsageTotalsResponse, AWSError>;
|
294
|
+
/**
|
295
|
+
* Resets an encryption key. After the key is reset your resources will be encrypted by an Amazon Web Services owned key.
|
296
|
+
*/
|
297
|
+
resetEncryptionKey(params: Inspector2.Types.ResetEncryptionKeyRequest, callback?: (err: AWSError, data: Inspector2.Types.ResetEncryptionKeyResponse) => void): Request<Inspector2.Types.ResetEncryptionKeyResponse, AWSError>;
|
298
|
+
/**
|
299
|
+
* Resets an encryption key. After the key is reset your resources will be encrypted by an Amazon Web Services owned key.
|
300
|
+
*/
|
301
|
+
resetEncryptionKey(callback?: (err: AWSError, data: Inspector2.Types.ResetEncryptionKeyResponse) => void): Request<Inspector2.Types.ResetEncryptionKeyResponse, AWSError>;
|
254
302
|
/**
|
255
303
|
* Lists Amazon Inspector coverage details for a specific vulnerability.
|
256
304
|
*/
|
@@ -291,6 +339,14 @@ declare class Inspector2 extends Service {
|
|
291
339
|
* Activates, deactivates Amazon Inspector deep inspection, or updates custom paths for your account.
|
292
340
|
*/
|
293
341
|
updateEc2DeepInspectionConfiguration(callback?: (err: AWSError, data: Inspector2.Types.UpdateEc2DeepInspectionConfigurationResponse) => void): Request<Inspector2.Types.UpdateEc2DeepInspectionConfigurationResponse, AWSError>;
|
342
|
+
/**
|
343
|
+
* Updates an encryption key. A ResourceNotFoundException means that an AWS owned key is being used for encryption.
|
344
|
+
*/
|
345
|
+
updateEncryptionKey(params: Inspector2.Types.UpdateEncryptionKeyRequest, callback?: (err: AWSError, data: Inspector2.Types.UpdateEncryptionKeyResponse) => void): Request<Inspector2.Types.UpdateEncryptionKeyResponse, AWSError>;
|
346
|
+
/**
|
347
|
+
* Updates an encryption key. A ResourceNotFoundException means that an AWS owned key is being used for encryption.
|
348
|
+
*/
|
349
|
+
updateEncryptionKey(callback?: (err: AWSError, data: Inspector2.Types.UpdateEncryptionKeyResponse) => void): Request<Inspector2.Types.UpdateEncryptionKeyResponse, AWSError>;
|
294
350
|
/**
|
295
351
|
* Specifies the action that is to be applied to the findings that match the filter.
|
296
352
|
*/
|
@@ -379,7 +435,7 @@ declare namespace Inspector2 {
|
|
379
435
|
}
|
380
436
|
export type AccountStateList = AccountState[];
|
381
437
|
export type AggCounts = number;
|
382
|
-
export type AggregationFindingType = "NETWORK_REACHABILITY"|"PACKAGE_VULNERABILITY"|string;
|
438
|
+
export type AggregationFindingType = "NETWORK_REACHABILITY"|"PACKAGE_VULNERABILITY"|"CODE_VULNERABILITY"|string;
|
383
439
|
export interface AggregationRequest {
|
384
440
|
/**
|
385
441
|
* An object that contains details about an aggregation request based on Amazon Web Services account IDs.
|
@@ -555,6 +611,10 @@ declare namespace Inspector2 {
|
|
555
611
|
* Represents whether AWS Lambda standard scans are automatically enabled for new members of your Amazon Inspector organization.
|
556
612
|
*/
|
557
613
|
lambda?: Boolean;
|
614
|
+
/**
|
615
|
+
* Represents whether AWS Lambda code scans are automatically enabled for new members of your Amazon Inspector organization. </p>
|
616
|
+
*/
|
617
|
+
lambdaCode?: Boolean;
|
558
618
|
}
|
559
619
|
export interface AwsEc2InstanceDetails {
|
560
620
|
/**
|
@@ -751,6 +811,23 @@ declare namespace Inspector2 {
|
|
751
811
|
*/
|
752
812
|
failedAccounts?: FailedAccountList;
|
753
813
|
}
|
814
|
+
export interface BatchGetCodeSnippetRequest {
|
815
|
+
/**
|
816
|
+
* An array of finding ARNs for the findings you want to retrieve code snippets from.
|
817
|
+
*/
|
818
|
+
findingArns: BatchGetCodeSnippetRequestFindingArnsList;
|
819
|
+
}
|
820
|
+
export type BatchGetCodeSnippetRequestFindingArnsList = FindingArn[];
|
821
|
+
export interface BatchGetCodeSnippetResponse {
|
822
|
+
/**
|
823
|
+
* The retrieved code snippets associated with the provided finding ARNs.
|
824
|
+
*/
|
825
|
+
codeSnippetResults?: CodeSnippetResultList;
|
826
|
+
/**
|
827
|
+
* Any errors Amazon Inspector encountered while trying to retrieve the requested code snippets.
|
828
|
+
*/
|
829
|
+
errors?: CodeSnippetErrorList;
|
830
|
+
}
|
754
831
|
export interface BatchGetFreeTrialInfoRequest {
|
755
832
|
/**
|
756
833
|
* The account IDs to get free trial status for.
|
@@ -813,6 +890,18 @@ declare namespace Inspector2 {
|
|
813
890
|
*/
|
814
891
|
reportId: ReportId;
|
815
892
|
}
|
893
|
+
export interface CancelSbomExportRequest {
|
894
|
+
/**
|
895
|
+
* The report ID of the SBOM export to cancel.
|
896
|
+
*/
|
897
|
+
reportId: ReportId;
|
898
|
+
}
|
899
|
+
export interface CancelSbomExportResponse {
|
900
|
+
/**
|
901
|
+
* The report ID of the canceled SBOM export.
|
902
|
+
*/
|
903
|
+
reportId?: ReportId;
|
904
|
+
}
|
816
905
|
export type CisaAction = string;
|
817
906
|
export interface CisaData {
|
818
907
|
/**
|
@@ -831,6 +920,109 @@ declare namespace Inspector2 {
|
|
831
920
|
export type CisaDateAdded = Date;
|
832
921
|
export type CisaDateDue = Date;
|
833
922
|
export type ClientToken = string;
|
923
|
+
export interface CodeFilePath {
|
924
|
+
/**
|
925
|
+
* The line number of the last line of code that a vulnerability was found in.
|
926
|
+
*/
|
927
|
+
endLine: Integer;
|
928
|
+
/**
|
929
|
+
* The name of the file the code vulnerability was found in.
|
930
|
+
*/
|
931
|
+
fileName: NonEmptyString;
|
932
|
+
/**
|
933
|
+
* The file path to the code that a vulnerability was found in.
|
934
|
+
*/
|
935
|
+
filePath: NonEmptyString;
|
936
|
+
/**
|
937
|
+
* The line number of the first line of code that a vulnerability was found in.
|
938
|
+
*/
|
939
|
+
startLine: Integer;
|
940
|
+
}
|
941
|
+
export interface CodeLine {
|
942
|
+
/**
|
943
|
+
* The content of a line of code
|
944
|
+
*/
|
945
|
+
content: CodeLineContentString;
|
946
|
+
/**
|
947
|
+
* The line number that a section of code is located at.
|
948
|
+
*/
|
949
|
+
lineNumber: Integer;
|
950
|
+
}
|
951
|
+
export type CodeLineContentString = string;
|
952
|
+
export type CodeLineList = CodeLine[];
|
953
|
+
export interface CodeSnippetError {
|
954
|
+
/**
|
955
|
+
* The error code for the error that prevented a code snippet from being retrieved.
|
956
|
+
*/
|
957
|
+
errorCode: CodeSnippetErrorCode;
|
958
|
+
/**
|
959
|
+
* The error message received when Amazon Inspector failed to retrieve a code snippet.
|
960
|
+
*/
|
961
|
+
errorMessage: NonEmptyString;
|
962
|
+
/**
|
963
|
+
* The ARN of the finding that a code snippet couldn't be retrieved for.
|
964
|
+
*/
|
965
|
+
findingArn: FindingArn;
|
966
|
+
}
|
967
|
+
export type CodeSnippetErrorCode = "INTERNAL_ERROR"|"ACCESS_DENIED"|"CODE_SNIPPET_NOT_FOUND"|"INVALID_INPUT"|string;
|
968
|
+
export type CodeSnippetErrorList = CodeSnippetError[];
|
969
|
+
export interface CodeSnippetResult {
|
970
|
+
/**
|
971
|
+
* Contains information on the retrieved code snippet.
|
972
|
+
*/
|
973
|
+
codeSnippet?: CodeLineList;
|
974
|
+
/**
|
975
|
+
* The line number of the last line of a code snippet.
|
976
|
+
*/
|
977
|
+
endLine?: Integer;
|
978
|
+
/**
|
979
|
+
* The ARN of a finding that the code snippet is associated with.
|
980
|
+
*/
|
981
|
+
findingArn?: FindingArn;
|
982
|
+
/**
|
983
|
+
* The line number of the first line of a code snippet.
|
984
|
+
*/
|
985
|
+
startLine?: Integer;
|
986
|
+
/**
|
987
|
+
* Details of a suggested code fix.
|
988
|
+
*/
|
989
|
+
suggestedFixes?: SuggestedFixes;
|
990
|
+
}
|
991
|
+
export type CodeSnippetResultList = CodeSnippetResult[];
|
992
|
+
export interface CodeVulnerabilityDetails {
|
993
|
+
/**
|
994
|
+
* The Common Weakness Enumeration (CWE) item associated with the detected vulnerability.
|
995
|
+
*/
|
996
|
+
cwes: CweList;
|
997
|
+
/**
|
998
|
+
* The ID for the Amazon CodeGuru detector associated with the finding. For more information on detectors see Amazon CodeGuru Detector Library.
|
999
|
+
*/
|
1000
|
+
detectorId: NonEmptyString;
|
1001
|
+
/**
|
1002
|
+
* The name of the detector used to identify the code vulnerability. For more information on detectors see CodeGuru Detector Library.
|
1003
|
+
*/
|
1004
|
+
detectorName: NonEmptyString;
|
1005
|
+
/**
|
1006
|
+
* The detector tag associated with the vulnerability. Detector tags group related vulnerabilities by common themes or tactics. For a list of available tags by programming language, see Java tags, or Python tags.
|
1007
|
+
*/
|
1008
|
+
detectorTags?: DetectorTagList;
|
1009
|
+
/**
|
1010
|
+
* Contains information on where the code vulnerability is located in your code.
|
1011
|
+
*/
|
1012
|
+
filePath: CodeFilePath;
|
1013
|
+
/**
|
1014
|
+
* A URL containing supporting documentation about the code vulnerability detected.
|
1015
|
+
*/
|
1016
|
+
referenceUrls?: ReferenceUrls;
|
1017
|
+
/**
|
1018
|
+
* The identifier for a rule that was used to detect the code vulnerability.
|
1019
|
+
*/
|
1020
|
+
ruleId?: NonEmptyString;
|
1021
|
+
/**
|
1022
|
+
* The Amazon Resource Name (ARN) of the Lambda layer that the code vulnerability was detected in.
|
1023
|
+
*/
|
1024
|
+
sourceLambdaLayerArn?: LambdaLayerArn;
|
1025
|
+
}
|
834
1026
|
export type Component = string;
|
835
1027
|
export type ComponentType = string;
|
836
1028
|
export interface Counts {
|
@@ -1022,6 +1214,23 @@ declare namespace Inspector2 {
|
|
1022
1214
|
*/
|
1023
1215
|
reportId?: ReportId;
|
1024
1216
|
}
|
1217
|
+
export interface CreateSbomExportRequest {
|
1218
|
+
/**
|
1219
|
+
* The output format for the software bill of materials (SBOM) report.
|
1220
|
+
*/
|
1221
|
+
reportFormat: SbomReportFormat;
|
1222
|
+
/**
|
1223
|
+
* The resource filter criteria for the software bill of materials (SBOM) report.
|
1224
|
+
*/
|
1225
|
+
resourceFilterCriteria?: ResourceFilterCriteria;
|
1226
|
+
s3Destination: Destination;
|
1227
|
+
}
|
1228
|
+
export interface CreateSbomExportResponse {
|
1229
|
+
/**
|
1230
|
+
* The report ID for the software bill of materials (SBOM) report.
|
1231
|
+
*/
|
1232
|
+
reportId?: ReportId;
|
1233
|
+
}
|
1025
1234
|
export type Currency = "USD"|string;
|
1026
1235
|
export interface Cvss2 {
|
1027
1236
|
/**
|
@@ -1104,6 +1313,7 @@ declare namespace Inspector2 {
|
|
1104
1313
|
}
|
1105
1314
|
export type CvssScoreList = CvssScore[];
|
1106
1315
|
export type Cwe = string;
|
1316
|
+
export type CweList = NonEmptyString[];
|
1107
1317
|
export type Cwes = Cwe[];
|
1108
1318
|
export interface DateFilter {
|
1109
1319
|
/**
|
@@ -1178,6 +1388,7 @@ declare namespace Inspector2 {
|
|
1178
1388
|
kmsKeyArn: String;
|
1179
1389
|
}
|
1180
1390
|
export type DetectionPlatforms = NonEmptyString[];
|
1391
|
+
export type DetectorTagList = NonEmptyString[];
|
1181
1392
|
export interface DisableDelegatedAdminAccountRequest {
|
1182
1393
|
/**
|
1183
1394
|
* The Amazon Web Services account ID of the current Amazon Inspector delegated administrator.
|
@@ -1389,7 +1600,14 @@ declare namespace Inspector2 {
|
|
1389
1600
|
*/
|
1390
1601
|
score?: EpssScore;
|
1391
1602
|
}
|
1603
|
+
export interface EpssDetails {
|
1604
|
+
/**
|
1605
|
+
* The EPSS score.
|
1606
|
+
*/
|
1607
|
+
score?: EpssScoreValue;
|
1608
|
+
}
|
1392
1609
|
export type EpssScore = number;
|
1610
|
+
export type EpssScoreValue = number;
|
1393
1611
|
export type ErrorCode = "ALREADY_ENABLED"|"ENABLE_IN_PROGRESS"|"DISABLE_IN_PROGRESS"|"SUSPEND_IN_PROGRESS"|"RESOURCE_NOT_FOUND"|"ACCESS_DENIED"|"INTERNAL_ERROR"|"SSM_UNAVAILABLE"|"SSM_THROTTLED"|"EVENTBRIDGE_UNAVAILABLE"|"EVENTBRIDGE_THROTTLED"|"RESOURCE_SCAN_NOT_DISABLED"|"DISASSOCIATE_ALL_MEMBERS"|"ACCOUNT_IS_ISOLATED"|string;
|
1394
1612
|
export type ErrorMessage = string;
|
1395
1613
|
export type ExecutionRoleArn = string;
|
@@ -1500,6 +1718,18 @@ declare namespace Inspector2 {
|
|
1500
1718
|
* Details of the Amazon Web Services account IDs used to filter findings.
|
1501
1719
|
*/
|
1502
1720
|
awsAccountId?: StringFilterList;
|
1721
|
+
/**
|
1722
|
+
* The name of the detector used to identify a code vulnerability in a Lambda function used to filter findings.
|
1723
|
+
*/
|
1724
|
+
codeVulnerabilityDetectorName?: StringFilterList;
|
1725
|
+
/**
|
1726
|
+
* The detector type tag associated with the vulnerability used to filter findings. Detector tags group related vulnerabilities by common themes or tactics. For a list of available tags by programming language, see Java tags, or Python tags.
|
1727
|
+
*/
|
1728
|
+
codeVulnerabilityDetectorTags?: StringFilterList;
|
1729
|
+
/**
|
1730
|
+
* The file path to the file in a Lambda function that contains a code vulnerability used to filter findings.
|
1731
|
+
*/
|
1732
|
+
codeVulnerabilityFilePath?: StringFilterList;
|
1503
1733
|
/**
|
1504
1734
|
* Details of the component IDs used to filter findings.
|
1505
1735
|
*/
|
@@ -1544,6 +1774,10 @@ declare namespace Inspector2 {
|
|
1544
1774
|
* The tags attached to the Amazon ECR container image.
|
1545
1775
|
*/
|
1546
1776
|
ecrImageTags?: StringFilterList;
|
1777
|
+
/**
|
1778
|
+
* The EPSS score used to filter findings.
|
1779
|
+
*/
|
1780
|
+
epssScore?: NumberFilterList;
|
1547
1781
|
/**
|
1548
1782
|
* Filters the list of AWS Lambda findings by the availability of exploits.
|
1549
1783
|
*/
|
@@ -1658,10 +1892,18 @@ declare namespace Inspector2 {
|
|
1658
1892
|
* The Amazon Web Services account ID associated with the finding.
|
1659
1893
|
*/
|
1660
1894
|
awsAccountId: AccountId;
|
1895
|
+
/**
|
1896
|
+
* Details about the code vulnerability identified in a Lambda function used to filter findings.
|
1897
|
+
*/
|
1898
|
+
codeVulnerabilityDetails?: CodeVulnerabilityDetails;
|
1661
1899
|
/**
|
1662
1900
|
* The description of the finding.
|
1663
1901
|
*/
|
1664
1902
|
description: FindingDescription;
|
1903
|
+
/**
|
1904
|
+
* The finding's EPSS score.
|
1905
|
+
*/
|
1906
|
+
epss?: EpssDetails;
|
1665
1907
|
/**
|
1666
1908
|
* If a finding discovered in your environment has an exploit available.
|
1667
1909
|
*/
|
@@ -1736,7 +1978,7 @@ declare namespace Inspector2 {
|
|
1736
1978
|
export type FindingList = Finding[];
|
1737
1979
|
export type FindingStatus = "ACTIVE"|"SUPPRESSED"|"CLOSED"|string;
|
1738
1980
|
export type FindingTitle = string;
|
1739
|
-
export type FindingType = "NETWORK_REACHABILITY"|"PACKAGE_VULNERABILITY"|string;
|
1981
|
+
export type FindingType = "NETWORK_REACHABILITY"|"PACKAGE_VULNERABILITY"|"CODE_VULNERABILITY"|string;
|
1740
1982
|
export interface FindingTypeAggregation {
|
1741
1983
|
/**
|
1742
1984
|
* The finding type to aggregate.
|
@@ -1815,7 +2057,7 @@ declare namespace Inspector2 {
|
|
1815
2057
|
export type FreeTrialInfoErrorList = FreeTrialInfoError[];
|
1816
2058
|
export type FreeTrialInfoList = FreeTrialInfo[];
|
1817
2059
|
export type FreeTrialStatus = "ACTIVE"|"INACTIVE"|string;
|
1818
|
-
export type FreeTrialType = "EC2"|"ECR"|"LAMBDA"|string;
|
2060
|
+
export type FreeTrialType = "EC2"|"ECR"|"LAMBDA"|"LAMBDA_CODE"|string;
|
1819
2061
|
export type FunctionName = string;
|
1820
2062
|
export interface GetConfigurationRequest {
|
1821
2063
|
}
|
@@ -1853,6 +2095,22 @@ declare namespace Inspector2 {
|
|
1853
2095
|
*/
|
1854
2096
|
status?: Ec2DeepInspectionStatus;
|
1855
2097
|
}
|
2098
|
+
export interface GetEncryptionKeyRequest {
|
2099
|
+
/**
|
2100
|
+
* The resource type the key encrypts.
|
2101
|
+
*/
|
2102
|
+
resourceType: ResourceType;
|
2103
|
+
/**
|
2104
|
+
* The scan type the key encrypts.
|
2105
|
+
*/
|
2106
|
+
scanType: ScanType;
|
2107
|
+
}
|
2108
|
+
export interface GetEncryptionKeyResponse {
|
2109
|
+
/**
|
2110
|
+
* A kms key ID.
|
2111
|
+
*/
|
2112
|
+
kmsKeyId: KmsKeyArn;
|
2113
|
+
}
|
1856
2114
|
export interface GetFindingsReportStatusRequest {
|
1857
2115
|
/**
|
1858
2116
|
* The ID of the report to retrieve the status of.
|
@@ -1897,6 +2155,39 @@ declare namespace Inspector2 {
|
|
1897
2155
|
*/
|
1898
2156
|
member?: Member;
|
1899
2157
|
}
|
2158
|
+
export interface GetSbomExportRequest {
|
2159
|
+
/**
|
2160
|
+
* The report ID of the SBOM export to get details for.
|
2161
|
+
*/
|
2162
|
+
reportId: ReportId;
|
2163
|
+
}
|
2164
|
+
export interface GetSbomExportResponse {
|
2165
|
+
/**
|
2166
|
+
* An error code.
|
2167
|
+
*/
|
2168
|
+
errorCode?: ReportingErrorCode;
|
2169
|
+
/**
|
2170
|
+
* An error message.
|
2171
|
+
*/
|
2172
|
+
errorMessage?: NonEmptyString;
|
2173
|
+
/**
|
2174
|
+
* Contains details about the resource filter criteria used for the software bill of materials (SBOM) report.
|
2175
|
+
*/
|
2176
|
+
filterCriteria?: ResourceFilterCriteria;
|
2177
|
+
/**
|
2178
|
+
* The format of the software bill of materials (SBOM) report.
|
2179
|
+
*/
|
2180
|
+
format?: SbomReportFormat;
|
2181
|
+
/**
|
2182
|
+
* The report ID of the software bill of materials (SBOM) report.
|
2183
|
+
*/
|
2184
|
+
reportId?: ReportId;
|
2185
|
+
s3Destination?: Destination;
|
2186
|
+
/**
|
2187
|
+
* The status of the software bill of materials (SBOM) report.
|
2188
|
+
*/
|
2189
|
+
status?: ExternalReportStatus;
|
2190
|
+
}
|
1900
2191
|
export type GroupKey = "SCAN_STATUS_CODE"|"SCAN_STATUS_REASON"|"ACCOUNT_ID"|"RESOURCE_TYPE"|"ECR_REPOSITORY_NAME"|string;
|
1901
2192
|
export type ImageHash = string;
|
1902
2193
|
export interface ImageLayerAggregation {
|
@@ -1951,10 +2242,12 @@ declare namespace Inspector2 {
|
|
1951
2242
|
*/
|
1952
2243
|
adjustedCvss?: CvssScoreDetails;
|
1953
2244
|
}
|
2245
|
+
export type Integer = number;
|
1954
2246
|
export type IpV4Address = string;
|
1955
2247
|
export type IpV4AddressList = IpV4Address[];
|
1956
2248
|
export type IpV6Address = string;
|
1957
2249
|
export type IpV6AddressList = IpV6Address[];
|
2250
|
+
export type KmsKeyArn = string;
|
1958
2251
|
export interface LambdaFunctionAggregation {
|
1959
2252
|
/**
|
1960
2253
|
* The AWS Lambda function names to include in the aggregation results.
|
@@ -2599,6 +2892,7 @@ declare namespace Inspector2 {
|
|
2599
2892
|
*/
|
2600
2893
|
text?: NonEmptyString;
|
2601
2894
|
}
|
2895
|
+
export type ReferenceUrls = NonEmptyString[];
|
2602
2896
|
export type RelatedVulnerabilities = RelatedVulnerability[];
|
2603
2897
|
export type RelatedVulnerability = string;
|
2604
2898
|
export type RelationshipStatus = "CREATED"|"INVITED"|"DISABLED"|"ENABLED"|"REMOVED"|"RESIGNED"|"DELETED"|"EMAIL_VERIFICATION_IN_PROGRESS"|"EMAIL_VERIFICATION_FAILED"|"REGION_DISABLED"|"ACCOUNT_SUSPENDED"|"CANNOT_CREATE_DETECTOR_IN_ORG_MASTER"|string;
|
@@ -2644,6 +2938,18 @@ declare namespace Inspector2 {
|
|
2644
2938
|
severityCounts?: SeverityCounts;
|
2645
2939
|
}
|
2646
2940
|
export type RepositorySortBy = "CRITICAL"|"HIGH"|"ALL"|"AFFECTED_IMAGES"|string;
|
2941
|
+
export interface ResetEncryptionKeyRequest {
|
2942
|
+
/**
|
2943
|
+
* The resource type the key encrypts.
|
2944
|
+
*/
|
2945
|
+
resourceType: ResourceType;
|
2946
|
+
/**
|
2947
|
+
* The scan type the key encrypts.
|
2948
|
+
*/
|
2949
|
+
scanType: ScanType;
|
2950
|
+
}
|
2951
|
+
export interface ResetEncryptionKeyResponse {
|
2952
|
+
}
|
2647
2953
|
export interface Resource {
|
2648
2954
|
/**
|
2649
2955
|
* An object that contains details about the resource involved in a finding.
|
@@ -2684,8 +2990,58 @@ declare namespace Inspector2 {
|
|
2684
2990
|
*/
|
2685
2991
|
awsLambdaFunction?: AwsLambdaFunctionDetails;
|
2686
2992
|
}
|
2993
|
+
export interface ResourceFilterCriteria {
|
2994
|
+
/**
|
2995
|
+
* The account IDs used as resource filter criteria.
|
2996
|
+
*/
|
2997
|
+
accountId?: ResourceStringFilterList;
|
2998
|
+
/**
|
2999
|
+
* The EC2 instance tags used as resource filter criteria.
|
3000
|
+
*/
|
3001
|
+
ec2InstanceTags?: ResourceMapFilterList;
|
3002
|
+
/**
|
3003
|
+
* The ECR image tags used as resource filter criteria.
|
3004
|
+
*/
|
3005
|
+
ecrImageTags?: ResourceStringFilterList;
|
3006
|
+
/**
|
3007
|
+
* The ECR repository names used as resource filter criteria.
|
3008
|
+
*/
|
3009
|
+
ecrRepositoryName?: ResourceStringFilterList;
|
3010
|
+
/**
|
3011
|
+
* The AWS Lambda function name used as resource filter criteria.
|
3012
|
+
*/
|
3013
|
+
lambdaFunctionName?: ResourceStringFilterList;
|
3014
|
+
/**
|
3015
|
+
* The AWS Lambda function tags used as resource filter criteria.
|
3016
|
+
*/
|
3017
|
+
lambdaFunctionTags?: ResourceMapFilterList;
|
3018
|
+
/**
|
3019
|
+
* The resource IDs used as resource filter criteria.
|
3020
|
+
*/
|
3021
|
+
resourceId?: ResourceStringFilterList;
|
3022
|
+
/**
|
3023
|
+
* The resource types used as resource filter criteria.
|
3024
|
+
*/
|
3025
|
+
resourceType?: ResourceStringFilterList;
|
3026
|
+
}
|
2687
3027
|
export type ResourceId = string;
|
2688
3028
|
export type ResourceList = Resource[];
|
3029
|
+
export type ResourceMapComparison = "EQUALS"|string;
|
3030
|
+
export interface ResourceMapFilter {
|
3031
|
+
/**
|
3032
|
+
* The filter's comparison.
|
3033
|
+
*/
|
3034
|
+
comparison: ResourceMapComparison;
|
3035
|
+
/**
|
3036
|
+
* The filter's key.
|
3037
|
+
*/
|
3038
|
+
key: NonEmptyString;
|
3039
|
+
/**
|
3040
|
+
* The filter's value.
|
3041
|
+
*/
|
3042
|
+
value?: NonEmptyString;
|
3043
|
+
}
|
3044
|
+
export type ResourceMapFilterList = ResourceMapFilter[];
|
2689
3045
|
export interface ResourceScanMetadata {
|
2690
3046
|
/**
|
2691
3047
|
* An object that contains metadata details for an Amazon EC2 instance.
|
@@ -2704,7 +3060,7 @@ declare namespace Inspector2 {
|
|
2704
3060
|
*/
|
2705
3061
|
lambdaFunction?: LambdaFunctionMetadata;
|
2706
3062
|
}
|
2707
|
-
export type ResourceScanType = "EC2"|"ECR"|"LAMBDA"|string;
|
3063
|
+
export type ResourceScanType = "EC2"|"ECR"|"LAMBDA"|"LAMBDA_CODE"|string;
|
2708
3064
|
export interface ResourceState {
|
2709
3065
|
/**
|
2710
3066
|
* An object detailing the state of Amazon Inspector scanning for Amazon EC2 resources.
|
@@ -2715,6 +3071,7 @@ declare namespace Inspector2 {
|
|
2715
3071
|
*/
|
2716
3072
|
ecr: State;
|
2717
3073
|
lambda?: State;
|
3074
|
+
lambdaCode?: State;
|
2718
3075
|
}
|
2719
3076
|
export interface ResourceStatus {
|
2720
3077
|
/**
|
@@ -2729,9 +3086,27 @@ declare namespace Inspector2 {
|
|
2729
3086
|
* The status of Amazon Inspector scanning for AWS Lambda function.
|
2730
3087
|
*/
|
2731
3088
|
lambda?: Status;
|
3089
|
+
/**
|
3090
|
+
* The status of Amazon Inspector scanning for custom application code for Amazon Web Services Lambda functions.
|
3091
|
+
*/
|
3092
|
+
lambdaCode?: Status;
|
2732
3093
|
}
|
3094
|
+
export type ResourceStringComparison = "EQUALS"|"NOT_EQUALS"|string;
|
3095
|
+
export interface ResourceStringFilter {
|
3096
|
+
/**
|
3097
|
+
* The filter's comparison.
|
3098
|
+
*/
|
3099
|
+
comparison: ResourceStringComparison;
|
3100
|
+
/**
|
3101
|
+
* The filter's value.
|
3102
|
+
*/
|
3103
|
+
value: ResourceStringInput;
|
3104
|
+
}
|
3105
|
+
export type ResourceStringFilterList = ResourceStringFilter[];
|
3106
|
+
export type ResourceStringInput = string;
|
2733
3107
|
export type ResourceType = "AWS_EC2_INSTANCE"|"AWS_ECR_CONTAINER_IMAGE"|"AWS_ECR_REPOSITORY"|"AWS_LAMBDA_FUNCTION"|string;
|
2734
|
-
export type Runtime = "NODEJS"|"NODEJS_12_X"|"NODEJS_14_X"|"NODEJS_16_X"|"JAVA_8"|"JAVA_8_AL2"|"JAVA_11"|"PYTHON_3_7"|"PYTHON_3_8"|"PYTHON_3_9"|"UNSUPPORTED"|"NODEJS_18_X"|"GO_1_X"|string;
|
3108
|
+
export type Runtime = "NODEJS"|"NODEJS_12_X"|"NODEJS_14_X"|"NODEJS_16_X"|"JAVA_8"|"JAVA_8_AL2"|"JAVA_11"|"PYTHON_3_7"|"PYTHON_3_8"|"PYTHON_3_9"|"UNSUPPORTED"|"NODEJS_18_X"|"GO_1_X"|"JAVA_17"|"PYTHON_3_10"|string;
|
3109
|
+
export type SbomReportFormat = "CYCLONEDX_1_4"|"SPDX_2_3"|string;
|
2735
3110
|
export interface ScanStatus {
|
2736
3111
|
/**
|
2737
3112
|
* The reason for the scan.
|
@@ -2744,7 +3119,7 @@ declare namespace Inspector2 {
|
|
2744
3119
|
}
|
2745
3120
|
export type ScanStatusCode = "ACTIVE"|"INACTIVE"|string;
|
2746
3121
|
export type ScanStatusReason = "PENDING_INITIAL_SCAN"|"ACCESS_DENIED"|"INTERNAL_ERROR"|"UNMANAGED_EC2_INSTANCE"|"UNSUPPORTED_OS"|"SCAN_ELIGIBILITY_EXPIRED"|"RESOURCE_TERMINATED"|"SUCCESSFUL"|"NO_RESOURCES_FOUND"|"IMAGE_SIZE_EXCEEDED"|"SCAN_FREQUENCY_MANUAL"|"SCAN_FREQUENCY_SCAN_ON_PUSH"|"EC2_INSTANCE_STOPPED"|"PENDING_DISABLE"|"NO_INVENTORY"|"STALE_INVENTORY"|"EXCLUDED_BY_TAG"|"UNSUPPORTED_RUNTIME"|"UNSUPPORTED_MEDIA_TYPE"|"UNSUPPORTED_CONFIG_FILE"|"DEEP_INSPECTION_PACKAGE_COLLECTION_LIMIT_EXCEEDED"|"DEEP_INSPECTION_DAILY_SSM_INVENTORY_LIMIT_EXCEEDED"|"DEEP_INSPECTION_COLLECTION_TIME_LIMIT_EXCEEDED"|"DEEP_INSPECTION_NO_INVENTORY"|string;
|
2747
|
-
export type ScanType = "NETWORK"|"PACKAGE"|string;
|
3122
|
+
export type ScanType = "NETWORK"|"PACKAGE"|"CODE"|string;
|
2748
3123
|
export interface SearchVulnerabilitiesFilterCriteria {
|
2749
3124
|
/**
|
2750
3125
|
* The IDs for specific vulnerabilities.
|
@@ -2803,7 +3178,7 @@ declare namespace Inspector2 {
|
|
2803
3178
|
*/
|
2804
3179
|
sortOrder: SortOrder;
|
2805
3180
|
}
|
2806
|
-
export type SortField = "AWS_ACCOUNT_ID"|"FINDING_TYPE"|"SEVERITY"|"FIRST_OBSERVED_AT"|"LAST_OBSERVED_AT"|"FINDING_STATUS"|"RESOURCE_TYPE"|"ECR_IMAGE_PUSHED_AT"|"ECR_IMAGE_REPOSITORY_NAME"|"ECR_IMAGE_REGISTRY"|"NETWORK_PROTOCOL"|"COMPONENT_TYPE"|"VULNERABILITY_ID"|"VULNERABILITY_SOURCE"|"INSPECTOR_SCORE"|"VENDOR_SEVERITY"|string;
|
3181
|
+
export type SortField = "AWS_ACCOUNT_ID"|"FINDING_TYPE"|"SEVERITY"|"FIRST_OBSERVED_AT"|"LAST_OBSERVED_AT"|"FINDING_STATUS"|"RESOURCE_TYPE"|"ECR_IMAGE_PUSHED_AT"|"ECR_IMAGE_REPOSITORY_NAME"|"ECR_IMAGE_REGISTRY"|"NETWORK_PROTOCOL"|"COMPONENT_TYPE"|"VULNERABILITY_ID"|"VULNERABILITY_SOURCE"|"INSPECTOR_SCORE"|"VENDOR_SEVERITY"|"EPSS_SCORE"|string;
|
2807
3182
|
export type SortOrder = "ASC"|"DESC"|string;
|
2808
3183
|
export type SourceLayerHash = string;
|
2809
3184
|
export interface State {
|
@@ -2849,6 +3224,19 @@ declare namespace Inspector2 {
|
|
2849
3224
|
export type StringList = NonEmptyString[];
|
2850
3225
|
export type SubnetId = string;
|
2851
3226
|
export type SubnetIdList = SubnetId[];
|
3227
|
+
export interface SuggestedFix {
|
3228
|
+
/**
|
3229
|
+
* The fix's code.
|
3230
|
+
*/
|
3231
|
+
code?: SuggestedFixCodeString;
|
3232
|
+
/**
|
3233
|
+
* The fix's description.
|
3234
|
+
*/
|
3235
|
+
description?: SuggestedFixDescriptionString;
|
3236
|
+
}
|
3237
|
+
export type SuggestedFixCodeString = string;
|
3238
|
+
export type SuggestedFixDescriptionString = string;
|
3239
|
+
export type SuggestedFixes = SuggestedFix[];
|
2852
3240
|
export type TagKey = string;
|
2853
3241
|
export type TagKeyList = TagKey[];
|
2854
3242
|
export type TagList = String[];
|
@@ -2869,6 +3257,10 @@ declare namespace Inspector2 {
|
|
2869
3257
|
export type Targets = Target[];
|
2870
3258
|
export type Timestamp = Date;
|
2871
3259
|
export interface TitleAggregation {
|
3260
|
+
/**
|
3261
|
+
* The type of finding to aggregate on.
|
3262
|
+
*/
|
3263
|
+
findingType?: AggregationFindingType;
|
2872
3264
|
/**
|
2873
3265
|
* The resource type to aggregate on.
|
2874
3266
|
*/
|
@@ -2959,6 +3351,22 @@ declare namespace Inspector2 {
|
|
2959
3351
|
*/
|
2960
3352
|
status?: Ec2DeepInspectionStatus;
|
2961
3353
|
}
|
3354
|
+
export interface UpdateEncryptionKeyRequest {
|
3355
|
+
/**
|
3356
|
+
* A KMS key ID for the encryption key.
|
3357
|
+
*/
|
3358
|
+
kmsKeyId: KmsKeyArn;
|
3359
|
+
/**
|
3360
|
+
* The resource type for the encryption key.
|
3361
|
+
*/
|
3362
|
+
resourceType: ResourceType;
|
3363
|
+
/**
|
3364
|
+
* The scan type for the encryption key.
|
3365
|
+
*/
|
3366
|
+
scanType: ScanType;
|
3367
|
+
}
|
3368
|
+
export interface UpdateEncryptionKeyResponse {
|
3369
|
+
}
|
2962
3370
|
export interface UpdateFilterRequest {
|
2963
3371
|
/**
|
2964
3372
|
* Specifies the action that is to be applied to the findings that match the filter.
|
@@ -3043,7 +3451,7 @@ declare namespace Inspector2 {
|
|
3043
3451
|
usage?: UsageList;
|
3044
3452
|
}
|
3045
3453
|
export type UsageTotalList = UsageTotal[];
|
3046
|
-
export type UsageType = "EC2_INSTANCE_HOURS"|"ECR_INITIAL_SCAN"|"ECR_RESCAN"|"LAMBDA_FUNCTION_HOURS"|string;
|
3454
|
+
export type UsageType = "EC2_INSTANCE_HOURS"|"ECR_INITIAL_SCAN"|"ECR_RESCAN"|"LAMBDA_FUNCTION_HOURS"|"LAMBDA_FUNCTION_CODE_HOURS"|string;
|
3047
3455
|
export type UsageValue = number;
|
3048
3456
|
export type VendorCreatedAt = Date;
|
3049
3457
|
export type VendorSeverity = string;
|
@@ -3083,7 +3491,7 @@ declare namespace Inspector2 {
|
|
3083
3491
|
*/
|
3084
3492
|
detectionPlatforms?: DetectionPlatforms;
|
3085
3493
|
/**
|
3086
|
-
* An object that contains the Exploit Prediction Scoring System (EPSS) score.
|
3494
|
+
* An object that contains the Exploit Prediction Scoring System (EPSS) score for a vulnerability.
|
3087
3495
|
*/
|
3088
3496
|
epss?: Epss;
|
3089
3497
|
/**
|