iamdata 0.1.202504261__py3-none-any.whl → 0.1.202511181__py3-none-any.whl

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.
Files changed (315) hide show
  1. iamdata/data/actions/access-analyzer.json +4 -1
  2. iamdata/data/actions/acm.json +23 -3
  3. iamdata/data/actions/action-recommendations.json +10 -0
  4. iamdata/data/actions/aiops.json +189 -1
  5. iamdata/data/actions/airflow-serverless.json +225 -0
  6. iamdata/data/actions/amplify.json +2 -12
  7. iamdata/data/actions/aoss.json +36 -4
  8. iamdata/data/actions/apigateway.json +104 -0
  9. iamdata/data/actions/app-integrations.json +108 -0
  10. iamdata/data/actions/application-signals.json +40 -0
  11. iamdata/data/actions/appstream.json +138 -103
  12. iamdata/data/actions/appsync.json +1 -1
  13. iamdata/data/actions/aps.json +309 -0
  14. iamdata/data/actions/arc-region-switch.json +334 -0
  15. iamdata/data/actions/arc-zonal-shift.json +53 -1
  16. iamdata/data/actions/artifact.json +0 -36
  17. iamdata/data/actions/athena.json +88 -1
  18. iamdata/data/actions/auditmanager.json +60 -7
  19. iamdata/data/actions/autoscaling.json +26 -3
  20. iamdata/data/actions/aws-marketplace.json +0 -32
  21. iamdata/data/actions/backup-search.json +1 -0
  22. iamdata/data/actions/backup.json +80 -0
  23. iamdata/data/actions/batch.json +183 -17
  24. iamdata/data/actions/bcm-dashboards.json +79 -0
  25. iamdata/data/actions/bcm-recommended-actions.json +10 -0
  26. iamdata/data/actions/bedrock-agentcore.json +1801 -0
  27. iamdata/data/actions/bedrock.json +814 -23
  28. iamdata/data/actions/billing.json +88 -5
  29. iamdata/data/actions/braket.json +2 -9
  30. iamdata/data/actions/budgets.json +6 -2
  31. iamdata/data/actions/cases.json +22 -2
  32. iamdata/data/actions/cassandra.json +67 -2
  33. iamdata/data/actions/ce.json +34 -0
  34. iamdata/data/actions/chatbot.json +87 -20
  35. iamdata/data/actions/cleanrooms-ml.json +11 -0
  36. iamdata/data/actions/cleanrooms.json +93 -0
  37. iamdata/data/actions/cloud9.json +4 -10
  38. iamdata/data/actions/cloudformation.json +22 -0
  39. iamdata/data/actions/cloudfront.json +457 -85
  40. iamdata/data/actions/cloudtrail.json +33 -0
  41. iamdata/data/actions/cloudwatch.json +8 -0
  42. iamdata/data/actions/codebuild.json +367 -12
  43. iamdata/data/actions/codepipeline.json +15 -0
  44. iamdata/data/actions/cognito-idp.json +83 -0
  45. iamdata/data/actions/connect-campaigns.json +16 -0
  46. iamdata/data/actions/connect.json +160 -2
  47. iamdata/data/actions/controlcatalog.json +8 -0
  48. iamdata/data/actions/cur.json +5 -1
  49. iamdata/data/actions/databrew.json +14 -7
  50. iamdata/data/actions/dataexchange.json +61 -9
  51. iamdata/data/actions/datazone.json +300 -6
  52. iamdata/data/actions/deadline.json +71 -16
  53. iamdata/data/actions/dms.json +40 -311
  54. iamdata/data/actions/ds.json +170 -0
  55. iamdata/data/actions/dsql.json +226 -22
  56. iamdata/data/actions/dynamodb.json +32 -0
  57. iamdata/data/actions/ec2.json +1466 -146
  58. iamdata/data/actions/ecs.json +59 -9
  59. iamdata/data/actions/eks-mcp.json +26 -0
  60. iamdata/data/actions/eks.json +100 -2
  61. iamdata/data/actions/elasticloadbalancing.json +9 -0
  62. iamdata/data/actions/elasticmapreduce.json +15 -0
  63. iamdata/data/actions/emr-containers.json +34 -1
  64. iamdata/data/actions/emr-serverless.json +16 -0
  65. iamdata/data/actions/entityresolution.json +16 -8
  66. iamdata/data/actions/es.json +60 -0
  67. iamdata/data/actions/events.json +40 -0
  68. iamdata/data/actions/evs.json +193 -0
  69. iamdata/data/actions/freetier.json +32 -0
  70. iamdata/data/actions/fsx.json +59 -6
  71. iamdata/data/actions/glacier.json +1 -4
  72. iamdata/data/actions/glue.json +228 -54
  73. iamdata/data/actions/groundstation.json +15 -0
  74. iamdata/data/actions/guardduty.json +199 -1
  75. iamdata/data/actions/healthlake.json +225 -0
  76. iamdata/data/actions/iam.json +13 -4
  77. iamdata/data/actions/identitystore.json +91 -19
  78. iamdata/data/actions/imagebuilder.json +198 -241
  79. iamdata/data/actions/inspector2.json +208 -12
  80. iamdata/data/actions/invoicing.json +28 -3
  81. iamdata/data/actions/iot.json +37 -5
  82. iamdata/data/actions/iotfleetwise.json +6 -63
  83. iamdata/data/actions/iotmanagedintegrations.json +507 -75
  84. iamdata/data/actions/iotsitewise.json +271 -0
  85. iamdata/data/actions/ivs.json +48 -0
  86. iamdata/data/actions/kafka.json +15 -0
  87. iamdata/data/actions/kinesis.json +163 -5
  88. iamdata/data/actions/kms.json +125 -2
  89. iamdata/data/actions/lambda.json +4 -2
  90. iamdata/data/actions/lex.json +42 -0
  91. iamdata/data/actions/license-manager.json +70 -8
  92. iamdata/data/actions/logs.json +8 -0
  93. iamdata/data/actions/mediaconnect.json +85 -26
  94. iamdata/data/actions/mediaconvert.json +15 -0
  95. iamdata/data/actions/medialive.json +26 -2
  96. iamdata/data/actions/medical-imaging.json +105 -0
  97. iamdata/data/actions/memorydb.json +18 -0
  98. iamdata/data/actions/mgn.json +20 -2
  99. iamdata/data/actions/mpa.json +313 -0
  100. iamdata/data/actions/mq.json +16 -0
  101. iamdata/data/actions/neptune-graph.json +37 -0
  102. iamdata/data/actions/network-firewall.json +236 -3
  103. iamdata/data/actions/network-security-director.json +74 -0
  104. iamdata/data/actions/notifications.json +62 -2
  105. iamdata/data/actions/observabilityadmin.json +330 -0
  106. iamdata/data/actions/odb.json +811 -0
  107. iamdata/data/actions/one.json +8 -0
  108. iamdata/data/actions/opensearch.json +1 -1
  109. iamdata/data/actions/organizations.json +39 -8
  110. iamdata/data/actions/osis.json +111 -0
  111. iamdata/data/actions/outposts.json +41 -3
  112. iamdata/data/actions/partnercentral.json +96 -32
  113. iamdata/data/actions/payment-cryptography.json +154 -11
  114. iamdata/data/actions/pcs.json +27 -1
  115. iamdata/data/actions/pi.json +6 -0
  116. iamdata/data/actions/profile.json +670 -20
  117. iamdata/data/actions/q.json +37 -0
  118. iamdata/data/actions/qapps.json +0 -78
  119. iamdata/data/actions/qbusiness.json +177 -46
  120. iamdata/data/actions/quicksight.json +484 -7
  121. iamdata/data/actions/rds.json +102 -45
  122. iamdata/data/actions/redshift-serverless.json +2 -2
  123. iamdata/data/actions/redshift.json +0 -6
  124. iamdata/data/actions/rekognition.json +1 -8
  125. iamdata/data/actions/repostspace.json +90 -0
  126. iamdata/data/actions/resiliencehub.json +19 -5
  127. iamdata/data/actions/resource-explorer-2.json +84 -2
  128. iamdata/data/actions/route53resolver.json +14 -2
  129. iamdata/data/actions/rtbfabric.json +481 -0
  130. iamdata/data/actions/s3.json +340 -143
  131. iamdata/data/actions/s3express.json +110 -6
  132. iamdata/data/actions/s3tables.json +85 -2
  133. iamdata/data/actions/s3vectors.json +242 -0
  134. iamdata/data/actions/sagemaker-mlflow.json +135 -0
  135. iamdata/data/actions/sagemaker-unified-studio-mcp.json +26 -0
  136. iamdata/data/actions/sagemaker.json +312 -11
  137. iamdata/data/actions/scn.json +151 -4
  138. iamdata/data/actions/security-ir.json +23 -8
  139. iamdata/data/actions/securityhub.json +360 -4
  140. iamdata/data/actions/securitylake.json +1 -0
  141. iamdata/data/actions/servicediscovery.json +140 -14
  142. iamdata/data/actions/servicequotas.json +40 -0
  143. iamdata/data/actions/ses.json +286 -2
  144. iamdata/data/actions/shield.json +47 -0
  145. iamdata/data/actions/snow-device-management.json +1 -0
  146. iamdata/data/actions/social-messaging.json +120 -0
  147. iamdata/data/actions/ssm-guiconnect.json +24 -0
  148. iamdata/data/actions/ssm-sap.json +51 -3
  149. iamdata/data/actions/ssm.json +63 -2
  150. iamdata/data/actions/sso-directory.json +108 -36
  151. iamdata/data/actions/sso-oauth.json +40 -2
  152. iamdata/data/actions/sso.json +369 -157
  153. iamdata/data/actions/sts.json +40 -0
  154. iamdata/data/actions/support-console.json +119 -0
  155. iamdata/data/actions/support.json +58 -0
  156. iamdata/data/actions/synthetics.json +18 -0
  157. iamdata/data/actions/tax.json +48 -0
  158. iamdata/data/actions/thinclient.json +1 -0
  159. iamdata/data/actions/transcribe.json +12 -0
  160. iamdata/data/actions/transfer.json +30 -14
  161. iamdata/data/actions/transform.json +185 -0
  162. iamdata/data/actions/user-subscriptions.json +8 -0
  163. iamdata/data/actions/uxc.json +26 -0
  164. iamdata/data/actions/verifiedpermissions.json +58 -2
  165. iamdata/data/actions/vpc-lattice-svcs.json +2 -0
  166. iamdata/data/actions/vpc-lattice.json +90 -0
  167. iamdata/data/actions/wisdom.json +31 -214
  168. iamdata/data/actions/workspaces-instances.json +186 -0
  169. iamdata/data/actions/workspaces-web.json +136 -8
  170. iamdata/data/actions/workspaces.json +98 -0
  171. iamdata/data/actions/xray.json +15 -5
  172. iamdata/data/conditionKeys/acm.json +5 -0
  173. iamdata/data/conditionKeys/airflow-serverless.json +17 -0
  174. iamdata/data/conditionKeys/apigateway.json +30 -0
  175. iamdata/data/conditionKeys/arc-region-switch.json +17 -0
  176. iamdata/data/conditionKeys/autoscaling.json +5 -0
  177. iamdata/data/conditionKeys/backup.json +6 -1
  178. iamdata/data/conditionKeys/bcm-dashboards.json +12 -0
  179. iamdata/data/conditionKeys/bedrock-agentcore.json +72 -0
  180. iamdata/data/conditionKeys/bedrock.json +10 -0
  181. iamdata/data/conditionKeys/chatbot.json +17 -1
  182. iamdata/data/conditionKeys/cloudformation.json +5 -0
  183. iamdata/data/conditionKeys/codebuild.json +550 -0
  184. iamdata/data/conditionKeys/connect.json +15 -0
  185. iamdata/data/conditionKeys/deadline.json +5 -0
  186. iamdata/data/conditionKeys/dsql.json +12 -2
  187. iamdata/data/conditionKeys/ebs.json +2 -2
  188. iamdata/data/conditionKeys/ec2.json +30 -15
  189. iamdata/data/conditionKeys/eks.json +5 -0
  190. iamdata/data/conditionKeys/events.json +1 -1
  191. iamdata/data/conditionKeys/evs.json +17 -0
  192. iamdata/data/conditionKeys/glacier.json +0 -10
  193. iamdata/data/conditionKeys/glue.json +10 -0
  194. iamdata/data/conditionKeys/iam.json +10 -0
  195. iamdata/data/conditionKeys/imagebuilder.json +2 -2
  196. iamdata/data/conditionKeys/iotmanagedintegrations.json +27 -1
  197. iamdata/data/conditionKeys/kinesis.json +15 -0
  198. iamdata/data/conditionKeys/kms.json +127 -7
  199. iamdata/data/conditionKeys/lambda.json +5 -0
  200. iamdata/data/conditionKeys/license-manager.json +5 -0
  201. iamdata/data/conditionKeys/mediaconnect.json +17 -1
  202. iamdata/data/conditionKeys/mpa.json +27 -0
  203. iamdata/data/conditionKeys/observabilityadmin.json +32 -1
  204. iamdata/data/conditionKeys/odb.json +17 -0
  205. iamdata/data/conditionKeys/quicksight.json +0 -5
  206. iamdata/data/conditionKeys/rds.json +5 -0
  207. iamdata/data/conditionKeys/route53.json +1 -1
  208. iamdata/data/conditionKeys/rtbfabric.json +47 -0
  209. iamdata/data/conditionKeys/s3.json +15 -0
  210. iamdata/data/conditionKeys/s3express.json +26 -1
  211. iamdata/data/conditionKeys/s3tables.json +20 -0
  212. iamdata/data/conditionKeys/s3vectors.json +12 -0
  213. iamdata/data/conditionKeys/sagemaker.json +25 -0
  214. iamdata/data/conditionKeys/savingsplans.json +1 -1
  215. iamdata/data/conditionKeys/secretsmanager.json +1 -1
  216. iamdata/data/conditionKeys/securityhub.json +5 -0
  217. iamdata/data/conditionKeys/servicediscovery.json +5 -0
  218. iamdata/data/conditionKeys/ses.json +5 -0
  219. iamdata/data/conditionKeys/ssm.json +15 -0
  220. iamdata/data/conditionKeys/sso.json +11 -1
  221. iamdata/data/conditionKeys/sts.json +10 -0
  222. iamdata/data/conditionKeys/transcribe.json +1 -1
  223. iamdata/data/conditionKeys/transfer.json +20 -0
  224. iamdata/data/conditionKeys/transform.json +12 -0
  225. iamdata/data/conditionKeys/uxc.json +1 -0
  226. iamdata/data/conditionKeys/verifiedpermissions.json +17 -1
  227. iamdata/data/conditionKeys/vpc-lattice-svcs.json +5 -0
  228. iamdata/data/conditionKeys/vpc-lattice.json +15 -0
  229. iamdata/data/conditionKeys/workspaces-instances.json +17 -0
  230. iamdata/data/conditionKeys/xray.json +15 -0
  231. iamdata/data/conditionPatterns.json +141 -0
  232. iamdata/data/metadata.json +2 -2
  233. iamdata/data/resourceTypes/action-recommendations.json +1 -0
  234. iamdata/data/resourceTypes/airflow-serverless.json +9 -0
  235. iamdata/data/resourceTypes/apigateway.json +12 -0
  236. iamdata/data/resourceTypes/aps.json +9 -0
  237. iamdata/data/resourceTypes/arc-region-switch.json +9 -0
  238. iamdata/data/resourceTypes/artifact.json +5 -5
  239. iamdata/data/resourceTypes/athena.json +7 -0
  240. iamdata/data/resourceTypes/auditmanager.json +8 -2
  241. iamdata/data/resourceTypes/backup-gateway.json +3 -3
  242. iamdata/data/resourceTypes/batch.json +14 -0
  243. iamdata/data/resourceTypes/bcm-dashboards.json +1 -0
  244. iamdata/data/resourceTypes/bcm-recommended-actions.json +1 -0
  245. iamdata/data/resourceTypes/bedrock-agentcore.json +87 -0
  246. iamdata/data/resourceTypes/bedrock.json +45 -3
  247. iamdata/data/resourceTypes/cassandra.json +7 -0
  248. iamdata/data/resourceTypes/chatbot.json +8 -2
  249. iamdata/data/resourceTypes/cloudformation.json +4 -0
  250. iamdata/data/resourceTypes/cloudfront.json +14 -0
  251. iamdata/data/resourceTypes/dataexchange.json +4 -1
  252. iamdata/data/resourceTypes/deadline.json +5 -1
  253. iamdata/data/resourceTypes/ec2.json +125 -6
  254. iamdata/data/resourceTypes/eks-mcp.json +1 -0
  255. iamdata/data/resourceTypes/eks.json +7 -0
  256. iamdata/data/resourceTypes/emr-containers.json +0 -4
  257. iamdata/data/resourceTypes/events.json +8 -0
  258. iamdata/data/resourceTypes/evs.json +9 -0
  259. iamdata/data/resourceTypes/guardduty.json +18 -1
  260. iamdata/data/resourceTypes/imagebuilder.json +12 -18
  261. iamdata/data/resourceTypes/inspector2.json +14 -0
  262. iamdata/data/resourceTypes/iotmanagedintegrations.json +31 -12
  263. iamdata/data/resourceTypes/iotsitewise.json +7 -0
  264. iamdata/data/resourceTypes/kinesis.json +4 -1
  265. iamdata/data/resourceTypes/license-manager.json +10 -2
  266. iamdata/data/resourceTypes/mediaconnect.json +16 -4
  267. iamdata/data/resourceTypes/mpa.json +23 -0
  268. iamdata/data/resourceTypes/network-firewall.json +7 -0
  269. iamdata/data/resourceTypes/network-security-director.json +1 -0
  270. iamdata/data/resourceTypes/observabilityadmin.json +23 -1
  271. iamdata/data/resourceTypes/odb.json +44 -0
  272. iamdata/data/resourceTypes/osis.json +7 -0
  273. iamdata/data/resourceTypes/partnercentral.json +8 -2
  274. iamdata/data/resourceTypes/pi.json +4 -1
  275. iamdata/data/resourceTypes/profile.json +21 -0
  276. iamdata/data/resourceTypes/qbusiness.json +7 -4
  277. iamdata/data/resourceTypes/quicksight.json +26 -1
  278. iamdata/data/resourceTypes/rds.json +4 -1
  279. iamdata/data/resourceTypes/redshift.json +1 -4
  280. iamdata/data/resourceTypes/route53resolver.json +7 -0
  281. iamdata/data/resourceTypes/rtbfabric.json +46 -0
  282. iamdata/data/resourceTypes/s3.json +19 -1
  283. iamdata/data/resourceTypes/s3express.json +10 -2
  284. iamdata/data/resourceTypes/s3tables.json +7 -1
  285. iamdata/data/resourceTypes/s3vectors.json +10 -0
  286. iamdata/data/resourceTypes/sagemaker-unified-studio-mcp.json +1 -0
  287. iamdata/data/resourceTypes/sagemaker.json +18 -3
  288. iamdata/data/resourceTypes/scn.json +19 -3
  289. iamdata/data/resourceTypes/securityhub.json +36 -2
  290. iamdata/data/resourceTypes/ses.json +11 -0
  291. iamdata/data/resourceTypes/sts.json +8 -0
  292. iamdata/data/resourceTypes/support-console.json +1 -0
  293. iamdata/data/resourceTypes/transform.json +10 -0
  294. iamdata/data/resourceTypes/uxc.json +1 -0
  295. iamdata/data/resourceTypes/verifiedpermissions.json +4 -1
  296. iamdata/data/resourceTypes/vpc-lattice.json +12 -0
  297. iamdata/data/resourceTypes/workspaces-instances.json +16 -0
  298. iamdata/data/resourceTypes/workspaces-web.json +7 -0
  299. iamdata/data/resourceTypes/workspaces.json +4 -0
  300. iamdata/data/serviceNames.json +23 -8
  301. iamdata/data/services.json +18 -3
  302. iamdata/data/unassociatedConditions.json +23 -0
  303. {iamdata-0.1.202504261.dist-info → iamdata-0.1.202511181.dist-info}/METADATA +1 -1
  304. {iamdata-0.1.202504261.dist-info → iamdata-0.1.202511181.dist-info}/RECORD +312 -265
  305. iamdata/data/actions/application-cost-profiler.json +0 -50
  306. iamdata/data/actions/sagemaker-groundtruth-synthetic.json +0 -110
  307. iamdata/data/actions/supportrecommendations.json +0 -20
  308. /iamdata/data/conditionKeys/{application-cost-profiler.json → action-recommendations.json} +0 -0
  309. /iamdata/data/conditionKeys/{sagemaker-groundtruth-synthetic.json → bcm-recommended-actions.json} +0 -0
  310. /iamdata/data/conditionKeys/{supportrecommendations.json → eks-mcp.json} +0 -0
  311. /iamdata/data/{resourceTypes/application-cost-profiler.json → conditionKeys/network-security-director.json} +0 -0
  312. /iamdata/data/{resourceTypes/sagemaker-groundtruth-synthetic.json → conditionKeys/sagemaker-unified-studio-mcp.json} +0 -0
  313. /iamdata/data/{resourceTypes/supportrecommendations.json → conditionKeys/support-console.json} +0 -0
  314. {iamdata-0.1.202504261.dist-info → iamdata-0.1.202511181.dist-info}/WHEEL +0 -0
  315. {iamdata-0.1.202504261.dist-info → iamdata-0.1.202511181.dist-info}/licenses/LICENSE.txt +0 -0
iamdata/data/actions/securityhub.json CHANGED
@@ -175,10 +175,17 @@
175
175
  "required": false,
176
176
  "conditionKeys": [],
177
177
  "dependentActions": []
178
+ },
179
+ {
180
+ "name": "hubv2",
181
+ "required": false,
182
+ "conditionKeys": [],
183
+ "dependentActions": []
178
184
  }
179
185
  ],
180
186
  "conditionKeys": [
181
- "securityhub:ASFFSyntaxPath/${ASFFSyntaxPath}"
187
+ "securityhub:ASFFSyntaxPath/${ASFFSyntaxPath}",
188
+ "securityhub:OCSFSyntaxPath/${OCSFSyntaxPath}"
182
189
  ],
183
190
  "dependentActions": []
184
191
  },
@@ -192,6 +199,14 @@
192
199
  "securityhub:UpdateStandardsControl"
193
200
  ]
194
201
  },
202
+ "connectorregistrationsv2": {
203
+ "name": "ConnectorRegistrationsV2",
204
+ "description": "Grants permission to complete the OAuth 2.0 authorization code flow based on input parameters",
205
+ "accessLevel": "Write",
206
+ "resourceTypes": [],
207
+ "conditionKeys": [],
208
+ "dependentActions": []
209
+ },
195
210
  "createactiontarget": {
196
211
  "name": "CreateActionTarget",
197
212
  "description": "Grants permission to create custom actions in Security Hub",
@@ -207,6 +222,14 @@
207
222
  "conditionKeys": [],
208
223
  "dependentActions": []
209
224
  },
225
+ "createaggregatorv2": {
226
+ "name": "CreateAggregatorV2",
227
+ "description": "Grants permission to create an aggregatorV2, which configures data aggregation across Regions",
228
+ "accessLevel": "Write",
229
+ "resourceTypes": [],
230
+ "conditionKeys": [],
231
+ "dependentActions": []
232
+ },
210
233
  "createautomationrule": {
211
234
  "name": "CreateAutomationRule",
212
235
  "description": "Grants permission to create an automation rule based on input parameters",
@@ -218,6 +241,17 @@
218
241
  ],
219
242
  "dependentActions": []
220
243
  },
244
+ "createautomationrulev2": {
245
+ "name": "CreateAutomationRuleV2",
246
+ "description": "Grants permission to create an automation rule V2 based on input parameters",
247
+ "accessLevel": "Write",
248
+ "resourceTypes": [],
249
+ "conditionKeys": [
250
+ "aws:RequestTag/${TagKey}",
251
+ "aws:TagKeys"
252
+ ],
253
+ "dependentActions": []
254
+ },
221
255
  "createconfigurationpolicy": {
222
256
  "name": "CreateConfigurationPolicy",
223
257
  "description": "Grants permission to create a configuration policy to manage organization member settings in Security Hub",
@@ -229,6 +263,17 @@
229
263
  ],
230
264
  "dependentActions": []
231
265
  },
266
+ "createconnectorv2": {
267
+ "name": "CreateConnectorV2",
268
+ "description": "Grants permission to create a connector V2 based on input parameters",
269
+ "accessLevel": "Write",
270
+ "resourceTypes": [],
271
+ "conditionKeys": [
272
+ "aws:RequestTag/${TagKey}",
273
+ "aws:TagKeys"
274
+ ],
275
+ "dependentActions": []
276
+ },
232
277
  "createfindingaggregator": {
233
278
  "name": "CreateFindingAggregator",
234
279
  "description": "Grants permission to create a finding aggregator, which contains the cross-Region finding aggregation configuration",
@@ -267,6 +312,21 @@
267
312
  "conditionKeys": [],
268
313
  "dependentActions": []
269
314
  },
315
+ "createticketv2": {
316
+ "name": "CreateTicketV2",
317
+ "description": "Grants permission to create ticket for a selected OCSF finding",
318
+ "accessLevel": "Write",
319
+ "resourceTypes": [
320
+ {
321
+ "name": "connectorv2",
322
+ "required": false,
323
+ "conditionKeys": [],
324
+ "dependentActions": []
325
+ }
326
+ ],
327
+ "conditionKeys": [],
328
+ "dependentActions": []
329
+ },
270
330
  "declineinvitations": {
271
331
  "name": "DeclineInvitations",
272
332
  "description": "Grants permission to decline Security Hub invitations to become a member account",
@@ -297,6 +357,36 @@
297
357
  "conditionKeys": [],
298
358
  "dependentActions": []
299
359
  },
360
+ "deleteaggregatorv2": {
361
+ "name": "DeleteAggregatorV2",
362
+ "description": "Grants permission to delete an aggregatorV2, which configures data aggregation across Regions",
363
+ "accessLevel": "Write",
364
+ "resourceTypes": [
365
+ {
366
+ "name": "aggregatorv2",
367
+ "required": true,
368
+ "conditionKeys": [],
369
+ "dependentActions": []
370
+ }
371
+ ],
372
+ "conditionKeys": [],
373
+ "dependentActions": []
374
+ },
375
+ "deleteautomationrulev2": {
376
+ "name": "DeleteAutomationRuleV2",
377
+ "description": "Grants permission to delete an automation rule V2 in Security Hub",
378
+ "accessLevel": "Write",
379
+ "resourceTypes": [
380
+ {
381
+ "name": "automation-rulev2",
382
+ "required": true,
383
+ "conditionKeys": [],
384
+ "dependentActions": []
385
+ }
386
+ ],
387
+ "conditionKeys": [],
388
+ "dependentActions": []
389
+ },
300
390
  "deleteconfigurationpolicy": {
301
391
  "name": "DeleteConfigurationPolicy",
302
392
  "description": "Grants permission to delete an existing configuration policy",
@@ -312,6 +402,21 @@
312
402
  "conditionKeys": [],
313
403
  "dependentActions": []
314
404
  },
405
+ "deleteconnectorv2": {
406
+ "name": "DeleteConnectorV2",
407
+ "description": "Grants permission to delete a connector V2 in Security Hub",
408
+ "accessLevel": "Write",
409
+ "resourceTypes": [
410
+ {
411
+ "name": "connectorv2",
412
+ "required": true,
413
+ "conditionKeys": [],
414
+ "dependentActions": []
415
+ }
416
+ ],
417
+ "conditionKeys": [],
418
+ "dependentActions": []
419
+ },
315
420
  "deletefindingaggregator": {
316
421
  "name": "DeleteFindingAggregator",
317
422
  "description": "Grants permission to delete a finding aggregator, which disables finding aggregation across Regions",
@@ -432,6 +537,29 @@
432
537
  "conditionKeys": [],
433
538
  "dependentActions": []
434
539
  },
540
+ "describeproductsv2": {
541
+ "name": "DescribeProductsV2",
542
+ "description": "Grants permission to retrieve information about the available Security Hub V2 product integrations",
543
+ "accessLevel": "Read",
544
+ "resourceTypes": [
545
+ {
546
+ "name": "hubv2",
547
+ "required": false,
548
+ "conditionKeys": [],
549
+ "dependentActions": []
550
+ }
551
+ ],
552
+ "conditionKeys": [],
553
+ "dependentActions": []
554
+ },
555
+ "describesecurityhubv2": {
556
+ "name": "DescribeSecurityHubV2",
557
+ "description": "Grants permission to retrieve information about the hub V2 resource in your account",
558
+ "accessLevel": "Read",
559
+ "resourceTypes": [],
560
+ "conditionKeys": [],
561
+ "dependentActions": []
562
+ },
435
563
  "describestandards": {
436
564
  "name": "DescribeStandards",
437
565
  "description": "Grants permission to retrieve information about Security Hub standards",
@@ -491,7 +619,9 @@
491
619
  ],
492
620
  "conditionKeys": [],
493
621
  "dependentActions": [
494
- "organizations:DescribeOrganization"
622
+ "organizations:DeregisterDelegatedAdministrator",
623
+ "organizations:DescribeOrganization",
624
+ "organizations:ListDelegatedAdministrators"
495
625
  ]
496
626
  },
497
627
  "disablesecurityhub": {
@@ -509,6 +639,14 @@
509
639
  "conditionKeys": [],
510
640
  "dependentActions": []
511
641
  },
642
+ "disablesecurityhubv2": {
643
+ "name": "DisableSecurityHubV2",
644
+ "description": "Grants permission to disable Security Hub V2",
645
+ "accessLevel": "Write",
646
+ "resourceTypes": [],
647
+ "conditionKeys": [],
648
+ "dependentActions": []
649
+ },
512
650
  "disassociatefromadministratoraccount": {
513
651
  "name": "DisassociateFromAdministratorAccount",
514
652
  "description": "Grants permission to a Security Hub member account to disassociate from the associated administrator account",
@@ -585,6 +723,8 @@
585
723
  "dependentActions": [
586
724
  "organizations:DescribeOrganization",
587
725
  "organizations:EnableAWSServiceAccess",
726
+ "organizations:ListAWSServiceAccessForOrganization",
727
+ "organizations:ListDelegatedAdministrators",
588
728
  "organizations:RegisterDelegatedAdministrator"
589
729
  ]
590
730
  },
@@ -606,10 +746,21 @@
606
746
  ],
607
747
  "dependentActions": []
608
748
  },
749
+ "enablesecurityhubv2": {
750
+ "name": "EnableSecurityHubV2",
751
+ "description": "Grants permission to enable Security Hub V2",
752
+ "accessLevel": "Write",
753
+ "resourceTypes": [],
754
+ "conditionKeys": [
755
+ "aws:RequestTag/${TagKey}",
756
+ "aws:TagKeys"
757
+ ],
758
+ "dependentActions": []
759
+ },
609
760
  "getadhocinsightresults": {
610
761
  "name": "GetAdhocInsightResults",
611
762
  "isPermissionOnly": true,
612
- "description": "Grants permission to retrieve insight results by providing a set of filters instead of an insight ARN",
763
+ "description": "Grants permission to retrieve aggregated statistical data about the findings",
613
764
  "accessLevel": "Read",
614
765
  "resourceTypes": [
615
766
  {
@@ -617,6 +768,12 @@
617
768
  "required": false,
618
769
  "conditionKeys": [],
619
770
  "dependentActions": []
771
+ },
772
+ {
773
+ "name": "hubv2",
774
+ "required": false,
775
+ "conditionKeys": [],
776
+ "dependentActions": []
620
777
  }
621
778
  ],
622
779
  "conditionKeys": [],
@@ -637,6 +794,36 @@
637
794
  "conditionKeys": [],
638
795
  "dependentActions": []
639
796
  },
797
+ "getaggregatorv2": {
798
+ "name": "GetAggregatorV2",
799
+ "description": "Grants permission to retrieve details for an aggregatorV2, which configures data aggregation across Regions",
800
+ "accessLevel": "Read",
801
+ "resourceTypes": [
802
+ {
803
+ "name": "aggregatorv2",
804
+ "required": true,
805
+ "conditionKeys": [],
806
+ "dependentActions": []
807
+ }
808
+ ],
809
+ "conditionKeys": [],
810
+ "dependentActions": []
811
+ },
812
+ "getautomationrulev2": {
813
+ "name": "GetAutomationRuleV2",
814
+ "description": "Grants permission to retrieve details for an automation rule V2 from Security Hub based on rule Amazon Resource Name (ARN)",
815
+ "accessLevel": "Read",
816
+ "resourceTypes": [
817
+ {
818
+ "name": "automation-rulev2",
819
+ "required": true,
820
+ "conditionKeys": [],
821
+ "dependentActions": []
822
+ }
823
+ ],
824
+ "conditionKeys": [],
825
+ "dependentActions": []
826
+ },
640
827
  "getconfigurationpolicy": {
641
828
  "name": "GetConfigurationPolicy",
642
829
  "description": "Grants permission to get a complete overview of one configuration policy created by the calling account",
@@ -660,6 +847,21 @@
660
847
  "conditionKeys": [],
661
848
  "dependentActions": []
662
849
  },
850
+ "getconnectorv2": {
851
+ "name": "GetConnectorV2",
852
+ "description": "Grants permission to retrieve details for a connector V2 from Security Hub based on connector id",
853
+ "accessLevel": "Read",
854
+ "resourceTypes": [
855
+ {
856
+ "name": "connectorv2",
857
+ "required": true,
858
+ "conditionKeys": [],
859
+ "dependentActions": []
860
+ }
861
+ ],
862
+ "conditionKeys": [],
863
+ "dependentActions": []
864
+ },
663
865
  "getcontrolfindingsummary": {
664
866
  "name": "GetControlFindingSummary",
665
867
  "isPermissionOnly": true,
@@ -731,6 +933,12 @@
731
933
  "required": false,
732
934
  "conditionKeys": [],
733
935
  "dependentActions": []
936
+ },
937
+ {
938
+ "name": "hubv2",
939
+ "required": false,
940
+ "conditionKeys": [],
941
+ "dependentActions": []
734
942
  }
735
943
  ],
736
944
  "conditionKeys": [],
@@ -859,6 +1067,36 @@
859
1067
  "conditionKeys": [],
860
1068
  "dependentActions": []
861
1069
  },
1070
+ "getresourcesstatisticsv2": {
1071
+ "name": "GetResourcesStatisticsV2",
1072
+ "description": "Grants permission to retrieve aggregate statistics about resources",
1073
+ "accessLevel": "Read",
1074
+ "resourceTypes": [
1075
+ {
1076
+ "name": "hubv2",
1077
+ "required": false,
1078
+ "conditionKeys": [],
1079
+ "dependentActions": []
1080
+ }
1081
+ ],
1082
+ "conditionKeys": [],
1083
+ "dependentActions": []
1084
+ },
1085
+ "getresourcesv2": {
1086
+ "name": "GetResourcesV2",
1087
+ "description": "Grants permission to retrieve a list of resources",
1088
+ "accessLevel": "Read",
1089
+ "resourceTypes": [
1090
+ {
1091
+ "name": "hubv2",
1092
+ "required": false,
1093
+ "conditionKeys": [],
1094
+ "dependentActions": []
1095
+ }
1096
+ ],
1097
+ "conditionKeys": [],
1098
+ "dependentActions": []
1099
+ },
862
1100
  "getsecuritycontroldefinition": {
863
1101
  "name": "GetSecurityControlDefinition",
864
1102
  "description": "Grants permission to get the definition details of a specific security control identified by ID",
@@ -900,6 +1138,14 @@
900
1138
  "conditionKeys": [],
901
1139
  "dependentActions": []
902
1140
  },
1141
+ "listaggregatorsv2": {
1142
+ "name": "ListAggregatorsV2",
1143
+ "description": "Grants permission to retrieve a list of aggregatorsV2, which configures data aggregation across Regions",
1144
+ "accessLevel": "List",
1145
+ "resourceTypes": [],
1146
+ "conditionKeys": [],
1147
+ "dependentActions": []
1148
+ },
903
1149
  "listautomationrules": {
904
1150
  "name": "ListAutomationRules",
905
1151
  "description": "Grants permission to retrieve a list of automation rules and their metadata for the calling account from Security Hub",
@@ -908,6 +1154,14 @@
908
1154
  "conditionKeys": [],
909
1155
  "dependentActions": []
910
1156
  },
1157
+ "listautomationrulesv2": {
1158
+ "name": "ListAutomationRulesV2",
1159
+ "description": "Grants permission to retrieve a list of automation rules V2 and their metadata for the calling account from Security Hub",
1160
+ "accessLevel": "List",
1161
+ "resourceTypes": [],
1162
+ "conditionKeys": [],
1163
+ "dependentActions": []
1164
+ },
911
1165
  "listconfigurationpolicies": {
912
1166
  "name": "ListConfigurationPolicies",
913
1167
  "description": "Grants permission to list the summaries of all configuration policies created by the calling account",
@@ -924,6 +1178,14 @@
924
1178
  "conditionKeys": [],
925
1179
  "dependentActions": []
926
1180
  },
1181
+ "listconnectorsv2": {
1182
+ "name": "ListConnectorsV2",
1183
+ "description": "Grants permission to retrieve a list of connectors V2 and their metadata for the calling account from Security Hub",
1184
+ "accessLevel": "List",
1185
+ "resourceTypes": [],
1186
+ "conditionKeys": [],
1187
+ "dependentActions": []
1188
+ },
927
1189
  "listcontrolevaluationsummaries": {
928
1190
  "name": "ListControlEvaluationSummaries",
929
1191
  "isPermissionOnly": true,
@@ -1007,7 +1269,8 @@
1007
1269
  ],
1008
1270
  "conditionKeys": [],
1009
1271
  "dependentActions": [
1010
- "organizations:DescribeOrganization"
1272
+ "organizations:DescribeOrganization",
1273
+ "organizations:ListDelegatedAdministrators"
1011
1274
  ]
1012
1275
  },
1013
1276
  "listsecuritycontroldefinitions": {
@@ -1122,23 +1385,47 @@
1122
1385
  "description": "Grants permission to add tags to a Security Hub resource",
1123
1386
  "accessLevel": "Tagging",
1124
1387
  "resourceTypes": [
1388
+ {
1389
+ "name": "aggregatorv2",
1390
+ "required": false,
1391
+ "conditionKeys": [],
1392
+ "dependentActions": []
1393
+ },
1125
1394
  {
1126
1395
  "name": "automation-rule",
1127
1396
  "required": false,
1128
1397
  "conditionKeys": [],
1129
1398
  "dependentActions": []
1130
1399
  },
1400
+ {
1401
+ "name": "automation-rulev2",
1402
+ "required": false,
1403
+ "conditionKeys": [],
1404
+ "dependentActions": []
1405
+ },
1131
1406
  {
1132
1407
  "name": "configuration-policy",
1133
1408
  "required": false,
1134
1409
  "conditionKeys": [],
1135
1410
  "dependentActions": []
1136
1411
  },
1412
+ {
1413
+ "name": "connectorv2",
1414
+ "required": false,
1415
+ "conditionKeys": [],
1416
+ "dependentActions": []
1417
+ },
1137
1418
  {
1138
1419
  "name": "hub",
1139
1420
  "required": false,
1140
1421
  "conditionKeys": [],
1141
1422
  "dependentActions": []
1423
+ },
1424
+ {
1425
+ "name": "hubv2",
1426
+ "required": false,
1427
+ "conditionKeys": [],
1428
+ "dependentActions": []
1142
1429
  }
1143
1430
  ],
1144
1431
  "conditionKeys": [],
@@ -1149,23 +1436,47 @@
1149
1436
  "description": "Grants permission to remove tags from a Security Hub resource",
1150
1437
  "accessLevel": "Tagging",
1151
1438
  "resourceTypes": [
1439
+ {
1440
+ "name": "aggregatorv2",
1441
+ "required": false,
1442
+ "conditionKeys": [],
1443
+ "dependentActions": []
1444
+ },
1152
1445
  {
1153
1446
  "name": "automation-rule",
1154
1447
  "required": false,
1155
1448
  "conditionKeys": [],
1156
1449
  "dependentActions": []
1157
1450
  },
1451
+ {
1452
+ "name": "automation-rulev2",
1453
+ "required": false,
1454
+ "conditionKeys": [],
1455
+ "dependentActions": []
1456
+ },
1158
1457
  {
1159
1458
  "name": "configuration-policy",
1160
1459
  "required": false,
1161
1460
  "conditionKeys": [],
1162
1461
  "dependentActions": []
1163
1462
  },
1463
+ {
1464
+ "name": "connectorv2",
1465
+ "required": false,
1466
+ "conditionKeys": [],
1467
+ "dependentActions": []
1468
+ },
1164
1469
  {
1165
1470
  "name": "hub",
1166
1471
  "required": false,
1167
1472
  "conditionKeys": [],
1168
1473
  "dependentActions": []
1474
+ },
1475
+ {
1476
+ "name": "hubv2",
1477
+ "required": false,
1478
+ "conditionKeys": [],
1479
+ "dependentActions": []
1169
1480
  }
1170
1481
  ],
1171
1482
  "conditionKeys": [],
@@ -1186,6 +1497,36 @@
1186
1497
  "conditionKeys": [],
1187
1498
  "dependentActions": []
1188
1499
  },
1500
+ "updateaggregatorv2": {
1501
+ "name": "UpdateAggregatorV2",
1502
+ "description": "Grants permission to update an aggregatorV2, which configures data aggregation across Regions",
1503
+ "accessLevel": "Write",
1504
+ "resourceTypes": [
1505
+ {
1506
+ "name": "aggregatorv2",
1507
+ "required": true,
1508
+ "conditionKeys": [],
1509
+ "dependentActions": []
1510
+ }
1511
+ ],
1512
+ "conditionKeys": [],
1513
+ "dependentActions": []
1514
+ },
1515
+ "updateautomationrulev2": {
1516
+ "name": "UpdateAutomationRuleV2",
1517
+ "description": "Grants permission to update an automation rule V2 in Security Hub based on rule Amazon Resource Name (ARN) and input parameters",
1518
+ "accessLevel": "Write",
1519
+ "resourceTypes": [
1520
+ {
1521
+ "name": "automation-rulev2",
1522
+ "required": true,
1523
+ "conditionKeys": [],
1524
+ "dependentActions": []
1525
+ }
1526
+ ],
1527
+ "conditionKeys": [],
1528
+ "dependentActions": []
1529
+ },
1189
1530
  "updateconfigurationpolicy": {
1190
1531
  "name": "UpdateConfigurationPolicy",
1191
1532
  "description": "Grants permission to update an existing configuration policy",
@@ -1201,6 +1542,21 @@
1201
1542
  "conditionKeys": [],
1202
1543
  "dependentActions": []
1203
1544
  },
1545
+ "updateconnectorv2": {
1546
+ "name": "UpdateConnectorV2",
1547
+ "description": "Grants permission to update a connector V2 in Security Hub based on connector id and input parameters",
1548
+ "accessLevel": "Write",
1549
+ "resourceTypes": [
1550
+ {
1551
+ "name": "connectorv2",
1552
+ "required": true,
1553
+ "conditionKeys": [],
1554
+ "dependentActions": []
1555
+ }
1556
+ ],
1557
+ "conditionKeys": [],
1558
+ "dependentActions": []
1559
+ },
1204
1560
  "updatefindingaggregator": {
1205
1561
  "name": "UpdateFindingAggregator",
1206
1562
  "description": "Grants permission to update a finding aggregator, which contains the cross-Region finding aggregation configuration",
iamdata/data/actions/securitylake.json CHANGED
@@ -130,6 +130,7 @@
130
130
  "resourceTypes": [],
131
131
  "conditionKeys": [
132
132
  "aws:RequestTag/${TagKey}",
133
+ "aws:ResourceTag/${TagKey}",
133
134
  "aws:TagKeys"
134
135
  ],
135
136
  "dependentActions": [