aws-sdk 2.687.0 → 2.688.0
This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.
- package/CHANGELOG.md +4 -1
- package/README.md +1 -1
- package/apis/guardduty-2017-11-28.min.json +160 -26
- package/clients/guardduty.d.ts +144 -10
- package/dist/aws-sdk-core-react-native.js +1 -1
- package/dist/aws-sdk-react-native.js +2 -2
- package/dist/aws-sdk.js +3 -3
- package/dist/aws-sdk.min.js +2 -2
- package/lib/core.js +1 -1
- package/package.json +1 -1
package/CHANGELOG.md
CHANGED
|
@@ -1,7 +1,10 @@
|
|
|
1
1
|
# Changelog for AWS SDK for JavaScript
|
|
2
|
-
<!--LATEST=2.
|
|
2
|
+
<!--LATEST=2.688.0-->
|
|
3
3
|
<!--ENTRYINSERT-->
|
|
4
4
|
|
|
5
|
+
## 2.688.0
|
|
6
|
+
* feature: GuardDuty: Amazon GuardDuty findings now include S3 bucket details under the resource section if an S3 Bucket was one of the affected resources
|
|
7
|
+
|
|
5
8
|
## 2.687.0
|
|
6
9
|
* feature: Athena: This release adds support for connecting Athena to your own Apache Hive Metastores in addition to the AWS Glue Data Catalog. For more information, please see https://docs.aws.amazon.com/athena/latest/ug/connect-to-data-source-hive.html
|
|
7
10
|
* feature: EMR: Amazon EMR now supports encrypting log files with AWS Key Management Service (KMS) customer managed keys.
|
package/README.md
CHANGED
|
@@ -25,7 +25,7 @@ version.
|
|
|
25
25
|
To use the SDK in the browser, simply add the following script tag to your
|
|
26
26
|
HTML pages:
|
|
27
27
|
|
|
28
|
-
<script src="https://sdk.amazonaws.com/js/aws-sdk-2.
|
|
28
|
+
<script src="https://sdk.amazonaws.com/js/aws-sdk-2.688.0.min.js"></script>
|
|
29
29
|
|
|
30
30
|
You can also build a custom browser SDK with your specified set of AWS services.
|
|
31
31
|
This can allow you to reduce the SDK's size, specify different API versions of
|
|
@@ -1006,6 +1006,116 @@
|
|
|
1006
1006
|
}
|
|
1007
1007
|
}
|
|
1008
1008
|
},
|
|
1009
|
+
"S3BucketDetails": {
|
|
1010
|
+
"locationName": "s3BucketDetails",
|
|
1011
|
+
"type": "list",
|
|
1012
|
+
"member": {
|
|
1013
|
+
"type": "structure",
|
|
1014
|
+
"members": {
|
|
1015
|
+
"Arn": {
|
|
1016
|
+
"locationName": "arn"
|
|
1017
|
+
},
|
|
1018
|
+
"Name": {
|
|
1019
|
+
"locationName": "name"
|
|
1020
|
+
},
|
|
1021
|
+
"Type": {
|
|
1022
|
+
"locationName": "type"
|
|
1023
|
+
},
|
|
1024
|
+
"CreatedAt": {
|
|
1025
|
+
"locationName": "createdAt",
|
|
1026
|
+
"type": "timestamp"
|
|
1027
|
+
},
|
|
1028
|
+
"Owner": {
|
|
1029
|
+
"locationName": "owner",
|
|
1030
|
+
"type": "structure",
|
|
1031
|
+
"members": {
|
|
1032
|
+
"Id": {
|
|
1033
|
+
"locationName": "id"
|
|
1034
|
+
}
|
|
1035
|
+
}
|
|
1036
|
+
},
|
|
1037
|
+
"Tags": {
|
|
1038
|
+
"shape": "S2w",
|
|
1039
|
+
"locationName": "tags"
|
|
1040
|
+
},
|
|
1041
|
+
"DefaultServerSideEncryption": {
|
|
1042
|
+
"locationName": "defaultServerSideEncryption",
|
|
1043
|
+
"type": "structure",
|
|
1044
|
+
"members": {
|
|
1045
|
+
"EncryptionType": {
|
|
1046
|
+
"locationName": "encryptionType"
|
|
1047
|
+
},
|
|
1048
|
+
"KmsMasterKeyArn": {
|
|
1049
|
+
"locationName": "kmsMasterKeyArn"
|
|
1050
|
+
}
|
|
1051
|
+
}
|
|
1052
|
+
},
|
|
1053
|
+
"PublicAccess": {
|
|
1054
|
+
"locationName": "publicAccess",
|
|
1055
|
+
"type": "structure",
|
|
1056
|
+
"members": {
|
|
1057
|
+
"PermissionConfiguration": {
|
|
1058
|
+
"locationName": "permissionConfiguration",
|
|
1059
|
+
"type": "structure",
|
|
1060
|
+
"members": {
|
|
1061
|
+
"BucketLevelPermissions": {
|
|
1062
|
+
"locationName": "bucketLevelPermissions",
|
|
1063
|
+
"type": "structure",
|
|
1064
|
+
"members": {
|
|
1065
|
+
"AccessControlList": {
|
|
1066
|
+
"locationName": "accessControlList",
|
|
1067
|
+
"type": "structure",
|
|
1068
|
+
"members": {
|
|
1069
|
+
"AllowsPublicReadAccess": {
|
|
1070
|
+
"locationName": "allowsPublicReadAccess",
|
|
1071
|
+
"type": "boolean"
|
|
1072
|
+
},
|
|
1073
|
+
"AllowsPublicWriteAccess": {
|
|
1074
|
+
"locationName": "allowsPublicWriteAccess",
|
|
1075
|
+
"type": "boolean"
|
|
1076
|
+
}
|
|
1077
|
+
}
|
|
1078
|
+
},
|
|
1079
|
+
"BucketPolicy": {
|
|
1080
|
+
"locationName": "bucketPolicy",
|
|
1081
|
+
"type": "structure",
|
|
1082
|
+
"members": {
|
|
1083
|
+
"AllowsPublicReadAccess": {
|
|
1084
|
+
"locationName": "allowsPublicReadAccess",
|
|
1085
|
+
"type": "boolean"
|
|
1086
|
+
},
|
|
1087
|
+
"AllowsPublicWriteAccess": {
|
|
1088
|
+
"locationName": "allowsPublicWriteAccess",
|
|
1089
|
+
"type": "boolean"
|
|
1090
|
+
}
|
|
1091
|
+
}
|
|
1092
|
+
},
|
|
1093
|
+
"BlockPublicAccess": {
|
|
1094
|
+
"shape": "S34",
|
|
1095
|
+
"locationName": "blockPublicAccess"
|
|
1096
|
+
}
|
|
1097
|
+
}
|
|
1098
|
+
},
|
|
1099
|
+
"AccountLevelPermissions": {
|
|
1100
|
+
"locationName": "accountLevelPermissions",
|
|
1101
|
+
"type": "structure",
|
|
1102
|
+
"members": {
|
|
1103
|
+
"BlockPublicAccess": {
|
|
1104
|
+
"shape": "S34",
|
|
1105
|
+
"locationName": "blockPublicAccess"
|
|
1106
|
+
}
|
|
1107
|
+
}
|
|
1108
|
+
}
|
|
1109
|
+
}
|
|
1110
|
+
},
|
|
1111
|
+
"EffectivePermission": {
|
|
1112
|
+
"locationName": "effectivePermission"
|
|
1113
|
+
}
|
|
1114
|
+
}
|
|
1115
|
+
}
|
|
1116
|
+
}
|
|
1117
|
+
}
|
|
1118
|
+
},
|
|
1009
1119
|
"InstanceDetails": {
|
|
1010
1120
|
"locationName": "instanceDetails",
|
|
1011
1121
|
"type": "structure",
|
|
@@ -1130,19 +1240,8 @@
|
|
|
1130
1240
|
}
|
|
1131
1241
|
},
|
|
1132
1242
|
"Tags": {
|
|
1133
|
-
"
|
|
1134
|
-
"
|
|
1135
|
-
"member": {
|
|
1136
|
-
"type": "structure",
|
|
1137
|
-
"members": {
|
|
1138
|
-
"Key": {
|
|
1139
|
-
"locationName": "key"
|
|
1140
|
-
},
|
|
1141
|
-
"Value": {
|
|
1142
|
-
"locationName": "value"
|
|
1143
|
-
}
|
|
1144
|
-
}
|
|
1145
|
-
}
|
|
1243
|
+
"shape": "S2w",
|
|
1244
|
+
"locationName": "tags"
|
|
1146
1245
|
}
|
|
1147
1246
|
}
|
|
1148
1247
|
},
|
|
@@ -1185,7 +1284,7 @@
|
|
|
1185
1284
|
}
|
|
1186
1285
|
},
|
|
1187
1286
|
"RemoteIpDetails": {
|
|
1188
|
-
"shape": "
|
|
1287
|
+
"shape": "S3l",
|
|
1189
1288
|
"locationName": "remoteIpDetails"
|
|
1190
1289
|
},
|
|
1191
1290
|
"ServiceName": {
|
|
@@ -1214,18 +1313,18 @@
|
|
|
1214
1313
|
"locationName": "connectionDirection"
|
|
1215
1314
|
},
|
|
1216
1315
|
"LocalPortDetails": {
|
|
1217
|
-
"shape": "
|
|
1316
|
+
"shape": "S3s",
|
|
1218
1317
|
"locationName": "localPortDetails"
|
|
1219
1318
|
},
|
|
1220
1319
|
"Protocol": {
|
|
1221
1320
|
"locationName": "protocol"
|
|
1222
1321
|
},
|
|
1223
1322
|
"LocalIpDetails": {
|
|
1224
|
-
"shape": "
|
|
1323
|
+
"shape": "S3t",
|
|
1225
1324
|
"locationName": "localIpDetails"
|
|
1226
1325
|
},
|
|
1227
1326
|
"RemoteIpDetails": {
|
|
1228
|
-
"shape": "
|
|
1327
|
+
"shape": "S3l",
|
|
1229
1328
|
"locationName": "remoteIpDetails"
|
|
1230
1329
|
},
|
|
1231
1330
|
"RemotePortDetails": {
|
|
@@ -1258,15 +1357,15 @@
|
|
|
1258
1357
|
"type": "structure",
|
|
1259
1358
|
"members": {
|
|
1260
1359
|
"LocalPortDetails": {
|
|
1261
|
-
"shape": "
|
|
1360
|
+
"shape": "S3s",
|
|
1262
1361
|
"locationName": "localPortDetails"
|
|
1263
1362
|
},
|
|
1264
1363
|
"LocalIpDetails": {
|
|
1265
|
-
"shape": "
|
|
1364
|
+
"shape": "S3t",
|
|
1266
1365
|
"locationName": "localIpDetails"
|
|
1267
1366
|
},
|
|
1268
1367
|
"RemoteIpDetails": {
|
|
1269
|
-
"shape": "
|
|
1368
|
+
"shape": "S3l",
|
|
1270
1369
|
"locationName": "remoteIpDetails"
|
|
1271
1370
|
}
|
|
1272
1371
|
}
|
|
@@ -1542,7 +1641,7 @@
|
|
|
1542
1641
|
],
|
|
1543
1642
|
"members": {
|
|
1544
1643
|
"Members": {
|
|
1545
|
-
"shape": "
|
|
1644
|
+
"shape": "S4i",
|
|
1546
1645
|
"locationName": "members"
|
|
1547
1646
|
},
|
|
1548
1647
|
"UnprocessedAccounts": {
|
|
@@ -1903,7 +2002,7 @@
|
|
|
1903
2002
|
"type": "structure",
|
|
1904
2003
|
"members": {
|
|
1905
2004
|
"Members": {
|
|
1906
|
-
"shape": "
|
|
2005
|
+
"shape": "S4i",
|
|
1907
2006
|
"locationName": "members"
|
|
1908
2007
|
},
|
|
1909
2008
|
"NextToken": {
|
|
@@ -2615,7 +2714,42 @@
|
|
|
2615
2714
|
}
|
|
2616
2715
|
}
|
|
2617
2716
|
},
|
|
2618
|
-
"
|
|
2717
|
+
"S2w": {
|
|
2718
|
+
"type": "list",
|
|
2719
|
+
"member": {
|
|
2720
|
+
"type": "structure",
|
|
2721
|
+
"members": {
|
|
2722
|
+
"Key": {
|
|
2723
|
+
"locationName": "key"
|
|
2724
|
+
},
|
|
2725
|
+
"Value": {
|
|
2726
|
+
"locationName": "value"
|
|
2727
|
+
}
|
|
2728
|
+
}
|
|
2729
|
+
}
|
|
2730
|
+
},
|
|
2731
|
+
"S34": {
|
|
2732
|
+
"type": "structure",
|
|
2733
|
+
"members": {
|
|
2734
|
+
"IgnorePublicAcls": {
|
|
2735
|
+
"locationName": "ignorePublicAcls",
|
|
2736
|
+
"type": "boolean"
|
|
2737
|
+
},
|
|
2738
|
+
"RestrictPublicBuckets": {
|
|
2739
|
+
"locationName": "restrictPublicBuckets",
|
|
2740
|
+
"type": "boolean"
|
|
2741
|
+
},
|
|
2742
|
+
"BlockPublicAcls": {
|
|
2743
|
+
"locationName": "blockPublicAcls",
|
|
2744
|
+
"type": "boolean"
|
|
2745
|
+
},
|
|
2746
|
+
"BlockPublicPolicy": {
|
|
2747
|
+
"locationName": "blockPublicPolicy",
|
|
2748
|
+
"type": "boolean"
|
|
2749
|
+
}
|
|
2750
|
+
}
|
|
2751
|
+
},
|
|
2752
|
+
"S3l": {
|
|
2619
2753
|
"type": "structure",
|
|
2620
2754
|
"members": {
|
|
2621
2755
|
"City": {
|
|
@@ -2676,7 +2810,7 @@
|
|
|
2676
2810
|
}
|
|
2677
2811
|
}
|
|
2678
2812
|
},
|
|
2679
|
-
"
|
|
2813
|
+
"S3s": {
|
|
2680
2814
|
"type": "structure",
|
|
2681
2815
|
"members": {
|
|
2682
2816
|
"Port": {
|
|
@@ -2688,7 +2822,7 @@
|
|
|
2688
2822
|
}
|
|
2689
2823
|
}
|
|
2690
2824
|
},
|
|
2691
|
-
"
|
|
2825
|
+
"S3t": {
|
|
2692
2826
|
"type": "structure",
|
|
2693
2827
|
"members": {
|
|
2694
2828
|
"IpAddressV4": {
|
|
@@ -2696,7 +2830,7 @@
|
|
|
2696
2830
|
}
|
|
2697
2831
|
}
|
|
2698
2832
|
},
|
|
2699
|
-
"
|
|
2833
|
+
"S4i": {
|
|
2700
2834
|
"type": "list",
|
|
2701
2835
|
"member": {
|
|
2702
2836
|
"type": "structure",
|
package/clients/guardduty.d.ts
CHANGED
|
@@ -316,11 +316,11 @@ declare class GuardDuty extends Service {
|
|
|
316
316
|
*/
|
|
317
317
|
listInvitations(callback?: (err: AWSError, data: GuardDuty.Types.ListInvitationsResponse) => void): Request<GuardDuty.Types.ListInvitationsResponse, AWSError>;
|
|
318
318
|
/**
|
|
319
|
-
* Lists details about
|
|
319
|
+
* Lists details about all member accounts for the current GuardDuty master account.
|
|
320
320
|
*/
|
|
321
321
|
listMembers(params: GuardDuty.Types.ListMembersRequest, callback?: (err: AWSError, data: GuardDuty.Types.ListMembersResponse) => void): Request<GuardDuty.Types.ListMembersResponse, AWSError>;
|
|
322
322
|
/**
|
|
323
|
-
* Lists details about
|
|
323
|
+
* Lists details about all member accounts for the current GuardDuty master account.
|
|
324
324
|
*/
|
|
325
325
|
listMembers(callback?: (err: AWSError, data: GuardDuty.Types.ListMembersResponse) => void): Request<GuardDuty.Types.ListMembersResponse, AWSError>;
|
|
326
326
|
/**
|
|
@@ -469,6 +469,16 @@ declare namespace GuardDuty {
|
|
|
469
469
|
}
|
|
470
470
|
export interface AcceptInvitationResponse {
|
|
471
471
|
}
|
|
472
|
+
export interface AccessControlList {
|
|
473
|
+
/**
|
|
474
|
+
* A value that indicates whether public read access for the bucket is enabled through an Access Control List (ACL).
|
|
475
|
+
*/
|
|
476
|
+
AllowsPublicReadAccess?: Boolean;
|
|
477
|
+
/**
|
|
478
|
+
* A value that indicates whether public write access for the bucket is enabled through an Access Control List (ACL).
|
|
479
|
+
*/
|
|
480
|
+
AllowsPublicWriteAccess?: Boolean;
|
|
481
|
+
}
|
|
472
482
|
export interface AccessKeyDetails {
|
|
473
483
|
/**
|
|
474
484
|
* The access key ID of the user.
|
|
@@ -500,6 +510,12 @@ declare namespace GuardDuty {
|
|
|
500
510
|
export type AccountDetails = AccountDetail[];
|
|
501
511
|
export type AccountId = string;
|
|
502
512
|
export type AccountIds = AccountId[];
|
|
513
|
+
export interface AccountLevelPermissions {
|
|
514
|
+
/**
|
|
515
|
+
* Describes the S3 Block Public Access settings of the bucket's parent account.
|
|
516
|
+
*/
|
|
517
|
+
BlockPublicAccess?: BlockPublicAccess;
|
|
518
|
+
}
|
|
503
519
|
export interface Action {
|
|
504
520
|
/**
|
|
505
521
|
* The GuardDuty finding activity type.
|
|
@@ -568,7 +584,49 @@ declare namespace GuardDuty {
|
|
|
568
584
|
*/
|
|
569
585
|
ServiceName?: String;
|
|
570
586
|
}
|
|
587
|
+
export interface BlockPublicAccess {
|
|
588
|
+
/**
|
|
589
|
+
* Indicates if S3 Block Public Access is set to IgnorePublicAcls.
|
|
590
|
+
*/
|
|
591
|
+
IgnorePublicAcls?: Boolean;
|
|
592
|
+
/**
|
|
593
|
+
* Indicates if S3 Block Public Access is set to RestrictPublicBuckets.
|
|
594
|
+
*/
|
|
595
|
+
RestrictPublicBuckets?: Boolean;
|
|
596
|
+
/**
|
|
597
|
+
* Indicates if S3 Block Public Access is set to BlockPublicAcls.
|
|
598
|
+
*/
|
|
599
|
+
BlockPublicAcls?: Boolean;
|
|
600
|
+
/**
|
|
601
|
+
* Indicates if S3 Block Public Access is set to BlockPublicPolicy.
|
|
602
|
+
*/
|
|
603
|
+
BlockPublicPolicy?: Boolean;
|
|
604
|
+
}
|
|
571
605
|
export type Boolean = boolean;
|
|
606
|
+
export interface BucketLevelPermissions {
|
|
607
|
+
/**
|
|
608
|
+
* Contains information on how Access Control Policies are applied to the bucket.
|
|
609
|
+
*/
|
|
610
|
+
AccessControlList?: AccessControlList;
|
|
611
|
+
/**
|
|
612
|
+
* Contains information on the bucket policies for the S3 bucket.
|
|
613
|
+
*/
|
|
614
|
+
BucketPolicy?: BucketPolicy;
|
|
615
|
+
/**
|
|
616
|
+
* Contains information on which account level S3 Block Public Access settings are applied to the S3 bucket.
|
|
617
|
+
*/
|
|
618
|
+
BlockPublicAccess?: BlockPublicAccess;
|
|
619
|
+
}
|
|
620
|
+
export interface BucketPolicy {
|
|
621
|
+
/**
|
|
622
|
+
* A value that indicates whether public read access for the bucket is enabled through a bucket policy.
|
|
623
|
+
*/
|
|
624
|
+
AllowsPublicReadAccess?: Boolean;
|
|
625
|
+
/**
|
|
626
|
+
* A value that indicates whether public write access for the bucket is enabled through a bucket policy.
|
|
627
|
+
*/
|
|
628
|
+
AllowsPublicWriteAccess?: Boolean;
|
|
629
|
+
}
|
|
572
630
|
export interface City {
|
|
573
631
|
/**
|
|
574
632
|
* The city name of the remote IP address.
|
|
@@ -715,7 +773,7 @@ declare namespace GuardDuty {
|
|
|
715
773
|
*/
|
|
716
774
|
Format: IpSetFormat;
|
|
717
775
|
/**
|
|
718
|
-
* The URI of the file that contains the IPSet.
|
|
776
|
+
* The URI of the file that contains the IPSet. For example: https://s3.us-west-2.amazonaws.com/my-bucket/my-object-key.
|
|
719
777
|
*/
|
|
720
778
|
Location: Location;
|
|
721
779
|
/**
|
|
@@ -803,7 +861,7 @@ declare namespace GuardDuty {
|
|
|
803
861
|
*/
|
|
804
862
|
Format: ThreatIntelSetFormat;
|
|
805
863
|
/**
|
|
806
|
-
* The URI of the file that contains the ThreatIntelSet.
|
|
864
|
+
* The URI of the file that contains the ThreatIntelSet. For example: https://s3.us-west-2.amazonaws.com/my-bucket/my-object-key.
|
|
807
865
|
*/
|
|
808
866
|
Location: Location;
|
|
809
867
|
/**
|
|
@@ -838,6 +896,16 @@ declare namespace GuardDuty {
|
|
|
838
896
|
*/
|
|
839
897
|
UnprocessedAccounts: UnprocessedAccounts;
|
|
840
898
|
}
|
|
899
|
+
export interface DefaultServerSideEncryption {
|
|
900
|
+
/**
|
|
901
|
+
* The type of encryption used for objects within the S3 bucket.
|
|
902
|
+
*/
|
|
903
|
+
EncryptionType?: String;
|
|
904
|
+
/**
|
|
905
|
+
* The Amazon Resource Name (ARN) of the KMS encryption key. Only available if the bucket EncryptionType is aws:kms.
|
|
906
|
+
*/
|
|
907
|
+
KmsMasterKeyArn?: String;
|
|
908
|
+
}
|
|
841
909
|
export interface DeleteDetectorRequest {
|
|
842
910
|
/**
|
|
843
911
|
* The unique ID of the detector that you want to delete.
|
|
@@ -1281,7 +1349,7 @@ declare namespace GuardDuty {
|
|
|
1281
1349
|
*/
|
|
1282
1350
|
Format: IpSetFormat;
|
|
1283
1351
|
/**
|
|
1284
|
-
* The URI of the file that contains the IPSet.
|
|
1352
|
+
* The URI of the file that contains the IPSet. For example: https://s3.us-west-2.amazonaws.com/my-bucket/my-object-key.
|
|
1285
1353
|
*/
|
|
1286
1354
|
Location: Location;
|
|
1287
1355
|
/**
|
|
@@ -1353,7 +1421,7 @@ declare namespace GuardDuty {
|
|
|
1353
1421
|
*/
|
|
1354
1422
|
Format: ThreatIntelSetFormat;
|
|
1355
1423
|
/**
|
|
1356
|
-
* The URI of the file that contains the ThreatIntelSet.
|
|
1424
|
+
* The URI of the file that contains the ThreatIntelSet. For example: https://s3.us-west-2.amazonaws.com/my-bucket/my-object-key.
|
|
1357
1425
|
*/
|
|
1358
1426
|
Location: Location;
|
|
1359
1427
|
/**
|
|
@@ -1528,7 +1596,7 @@ declare namespace GuardDuty {
|
|
|
1528
1596
|
*/
|
|
1529
1597
|
DetectorId: DetectorId;
|
|
1530
1598
|
/**
|
|
1531
|
-
* Represents the criteria used for querying findings. Valid values include: JSON field name accountId region confidence id resource.accessKeyDetails.accessKeyId resource.accessKeyDetails.principalId resource.accessKeyDetails.userName resource.accessKeyDetails.userType resource.instanceDetails.iamInstanceProfile.id resource.instanceDetails.imageId resource.instanceDetails.instanceId resource.instanceDetails.
|
|
1599
|
+
* Represents the criteria used for querying findings. Valid values include: JSON field name accountId region confidence id resource.accessKeyDetails.accessKeyId resource.accessKeyDetails.principalId resource.accessKeyDetails.userName resource.accessKeyDetails.userType resource.instanceDetails.iamInstanceProfile.id resource.instanceDetails.imageId resource.instanceDetails.instanceId resource.instanceDetails.networkInterfaces.ipv6Addresses resource.instanceDetails.networkInterfaces.privateIpAddresses.privateIpAddress resource.instanceDetails.networkInterfaces.publicDnsName resource.instanceDetails.networkInterfaces.publicIp resource.instanceDetails.networkInterfaces.securityGroups.groupId resource.instanceDetails.networkInterfaces.securityGroups.groupName resource.instanceDetails.networkInterfaces.subnetId resource.instanceDetails.networkInterfaces.vpcId resource.instanceDetails.tags.key resource.instanceDetails.tags.value resource.resourceType service.action.actionType service.action.awsApiCallAction.api service.action.awsApiCallAction.callerType service.action.awsApiCallAction.remoteIpDetails.city.cityName service.action.awsApiCallAction.remoteIpDetails.country.countryName service.action.awsApiCallAction.remoteIpDetails.ipAddressV4 service.action.awsApiCallAction.remoteIpDetails.organization.asn service.action.awsApiCallAction.remoteIpDetails.organization.asnOrg service.action.awsApiCallAction.serviceName service.action.dnsRequestAction.domain service.action.networkConnectionAction.blocked service.action.networkConnectionAction.connectionDirection service.action.networkConnectionAction.localPortDetails.port service.action.networkConnectionAction.protocol service.action.networkConnectionAction.remoteIpDetails.city.cityName service.action.networkConnectionAction.remoteIpDetails.country.countryName service.action.networkConnectionAction.remoteIpDetails.ipAddressV4 service.action.networkConnectionAction.remoteIpDetails.organization.asn service.action.networkConnectionAction.remoteIpDetails.organization.asnOrg service.action.networkConnectionAction.remotePortDetails.port service.additionalInfo.threatListName service.archived When this attribute is set to 'true', only archived findings are listed. When it's set to 'false', only unarchived findings are listed. When this attribute is not set, all existing findings are listed. service.resourceRole severity type updatedAt Type: Timestamp in Unix Epoch millisecond format: 1486685375000
|
|
1532
1600
|
*/
|
|
1533
1601
|
FindingCriteria?: FindingCriteria;
|
|
1534
1602
|
/**
|
|
@@ -1612,7 +1680,7 @@ declare namespace GuardDuty {
|
|
|
1612
1680
|
*/
|
|
1613
1681
|
NextToken?: String;
|
|
1614
1682
|
/**
|
|
1615
|
-
* Specifies
|
|
1683
|
+
* Specifies whether to only return associated members or to return all members (including members who haven't been invited yet or have been disassociated).
|
|
1616
1684
|
*/
|
|
1617
1685
|
OnlyAssociated?: String;
|
|
1618
1686
|
}
|
|
@@ -1869,6 +1937,22 @@ declare namespace GuardDuty {
|
|
|
1869
1937
|
*/
|
|
1870
1938
|
Org?: String;
|
|
1871
1939
|
}
|
|
1940
|
+
export interface Owner {
|
|
1941
|
+
/**
|
|
1942
|
+
* The canonical user ID of the bucket owner. For information about locating your canonical user ID see Finding Your Account Canonical User ID.
|
|
1943
|
+
*/
|
|
1944
|
+
Id?: String;
|
|
1945
|
+
}
|
|
1946
|
+
export interface PermissionConfiguration {
|
|
1947
|
+
/**
|
|
1948
|
+
* Contains information about the bucket level permissions for the S3 bucket.
|
|
1949
|
+
*/
|
|
1950
|
+
BucketLevelPermissions?: BucketLevelPermissions;
|
|
1951
|
+
/**
|
|
1952
|
+
* Contains information about the account level permissions on the S3 bucket.
|
|
1953
|
+
*/
|
|
1954
|
+
AccountLevelPermissions?: AccountLevelPermissions;
|
|
1955
|
+
}
|
|
1872
1956
|
export interface PortProbeAction {
|
|
1873
1957
|
/**
|
|
1874
1958
|
* Indicates whether EC2 blocked the port probe to the instance, such as with an ACL.
|
|
@@ -1916,6 +2000,16 @@ declare namespace GuardDuty {
|
|
|
1916
2000
|
ProductType?: String;
|
|
1917
2001
|
}
|
|
1918
2002
|
export type ProductCodes = ProductCode[];
|
|
2003
|
+
export interface PublicAccess {
|
|
2004
|
+
/**
|
|
2005
|
+
* Contains information about how permissions are configured for the S3 bucket.
|
|
2006
|
+
*/
|
|
2007
|
+
PermissionConfiguration?: PermissionConfiguration;
|
|
2008
|
+
/**
|
|
2009
|
+
* Describes the effective permission on this bucket after factoring all attached policies.
|
|
2010
|
+
*/
|
|
2011
|
+
EffectivePermission?: String;
|
|
2012
|
+
}
|
|
1919
2013
|
export type PublishingStatus = "PENDING_VERIFICATION"|"PUBLISHING"|"UNABLE_TO_PUBLISH_FIX_DESTINATION_PROPERTY"|"STOPPED"|string;
|
|
1920
2014
|
export interface RemoteIpDetails {
|
|
1921
2015
|
/**
|
|
@@ -1954,6 +2048,10 @@ declare namespace GuardDuty {
|
|
|
1954
2048
|
* The IAM access key details (IAM user information) of a user that engaged in the activity that prompted GuardDuty to generate a finding.
|
|
1955
2049
|
*/
|
|
1956
2050
|
AccessKeyDetails?: AccessKeyDetails;
|
|
2051
|
+
/**
|
|
2052
|
+
* Contains information on the S3 bucket.
|
|
2053
|
+
*/
|
|
2054
|
+
S3BucketDetails?: S3BucketDetails;
|
|
1957
2055
|
/**
|
|
1958
2056
|
* The information about the EC2 instance associated with the activity that prompted GuardDuty to generate a finding.
|
|
1959
2057
|
*/
|
|
@@ -1963,6 +2061,41 @@ declare namespace GuardDuty {
|
|
|
1963
2061
|
*/
|
|
1964
2062
|
ResourceType?: String;
|
|
1965
2063
|
}
|
|
2064
|
+
export interface S3BucketDetail {
|
|
2065
|
+
/**
|
|
2066
|
+
* The Amazon Resource Name (ARN) of the S3 bucket.
|
|
2067
|
+
*/
|
|
2068
|
+
Arn?: String;
|
|
2069
|
+
/**
|
|
2070
|
+
* The name of the S3 bucket.
|
|
2071
|
+
*/
|
|
2072
|
+
Name?: String;
|
|
2073
|
+
/**
|
|
2074
|
+
* Describes whether the bucket is a source or destination bucket.
|
|
2075
|
+
*/
|
|
2076
|
+
Type?: String;
|
|
2077
|
+
/**
|
|
2078
|
+
* The date and time the bucket was created at.
|
|
2079
|
+
*/
|
|
2080
|
+
CreatedAt?: Timestamp;
|
|
2081
|
+
/**
|
|
2082
|
+
* The owner of the S3 bucket.
|
|
2083
|
+
*/
|
|
2084
|
+
Owner?: Owner;
|
|
2085
|
+
/**
|
|
2086
|
+
* All tags attached to the S3 bucket
|
|
2087
|
+
*/
|
|
2088
|
+
Tags?: Tags;
|
|
2089
|
+
/**
|
|
2090
|
+
* Describes the server side encryption method used in the S3 bucket.
|
|
2091
|
+
*/
|
|
2092
|
+
DefaultServerSideEncryption?: DefaultServerSideEncryption;
|
|
2093
|
+
/**
|
|
2094
|
+
* Describes the public access policies that apply to the S3 bucket.
|
|
2095
|
+
*/
|
|
2096
|
+
PublicAccess?: PublicAccess;
|
|
2097
|
+
}
|
|
2098
|
+
export type S3BucketDetails = S3BucketDetail[];
|
|
1966
2099
|
export interface SecurityGroup {
|
|
1967
2100
|
/**
|
|
1968
2101
|
* The security group ID of the EC2 instance.
|
|
@@ -2101,6 +2234,7 @@ declare namespace GuardDuty {
|
|
|
2101
2234
|
}
|
|
2102
2235
|
export type ThreatIntelligenceDetails = ThreatIntelligenceDetail[];
|
|
2103
2236
|
export type ThreatNames = String[];
|
|
2237
|
+
export type Timestamp = Date;
|
|
2104
2238
|
export interface UnarchiveFindingsRequest {
|
|
2105
2239
|
/**
|
|
2106
2240
|
* The ID of the detector associated with the findings to unarchive.
|
|
@@ -2218,7 +2352,7 @@ declare namespace GuardDuty {
|
|
|
2218
2352
|
*/
|
|
2219
2353
|
Name?: Name;
|
|
2220
2354
|
/**
|
|
2221
|
-
* The updated URI of the file that contains the IPSet.
|
|
2355
|
+
* The updated URI of the file that contains the IPSet. For example: https://s3.us-west-2.amazonaws.com/my-bucket/my-object-key.
|
|
2222
2356
|
*/
|
|
2223
2357
|
Location?: Location;
|
|
2224
2358
|
/**
|
|
@@ -2270,7 +2404,7 @@ declare namespace GuardDuty {
|
|
|
2270
2404
|
*/
|
|
2271
2405
|
Name?: Name;
|
|
2272
2406
|
/**
|
|
2273
|
-
* The updated URI of the file that contains the ThreateIntelSet.
|
|
2407
|
+
* The updated URI of the file that contains the ThreateIntelSet. For example: https://s3.us-west-2.amazonaws.com/my-bucket/my-object-key.
|
|
2274
2408
|
*/
|
|
2275
2409
|
Location?: Location;
|
|
2276
2410
|
/**
|