lib/aws-sdk-guardduty/client.rb in aws-sdk-guardduty-1.107.0 vs lib/aws-sdk-guardduty/client.rb in aws-sdk-guardduty-1.108.0

@@ -2875,20 +2875,132 @@
     #   resp.findings[0].service.detection.anomaly.unusual.behavior["String"] #=> Hash
     #   resp.findings[0].service.detection.anomaly.unusual.behavior["String"]["String"].profile_type #=> String, one of "FREQUENCY"
     #   resp.findings[0].service.detection.anomaly.unusual.behavior["String"]["String"].profile_subtype #=> String, one of "FREQUENT", "INFREQUENT", "UNSEEN", "RARE"
     #   resp.findings[0].service.detection.anomaly.unusual.behavior["String"]["String"].observations.text #=> Array
     #   resp.findings[0].service.detection.anomaly.unusual.behavior["String"]["String"].observations.text[0] #=> String
+    #   resp.findings[0].service.detection.sequence.uid #=> String
+    #   resp.findings[0].service.detection.sequence.description #=> String
+    #   resp.findings[0].service.detection.sequence.actors #=> Array
+    #   resp.findings[0].service.detection.sequence.actors[0].id #=> String
+    #   resp.findings[0].service.detection.sequence.actors[0].user.name #=> String
+    #   resp.findings[0].service.detection.sequence.actors[0].user.uid #=> String
+    #   resp.findings[0].service.detection.sequence.actors[0].user.type #=> String
+    #   resp.findings[0].service.detection.sequence.actors[0].user.credential_uid #=> String
+    #   resp.findings[0].service.detection.sequence.actors[0].user.account.uid #=> String
+    #   resp.findings[0].service.detection.sequence.actors[0].user.account.name #=> String
+    #   resp.findings[0].service.detection.sequence.actors[0].session.uid #=> String
+    #   resp.findings[0].service.detection.sequence.actors[0].session.mfa_status #=> String, one of "ENABLED", "DISABLED"
+    #   resp.findings[0].service.detection.sequence.actors[0].session.created_time #=> Time
+    #   resp.findings[0].service.detection.sequence.actors[0].session.issuer #=> String
+    #   resp.findings[0].service.detection.sequence.resources #=> Array
+    #   resp.findings[0].service.detection.sequence.resources[0].uid #=> String
+    #   resp.findings[0].service.detection.sequence.resources[0].name #=> String
+    #   resp.findings[0].service.detection.sequence.resources[0].account_id #=> String
+    #   resp.findings[0].service.detection.sequence.resources[0].resource_type #=> String, one of "EC2_INSTANCE", "EC2_NETWORK_INTERFACE", "S3_BUCKET", "S3_OBJECT", "ACCESS_KEY"
+    #   resp.findings[0].service.detection.sequence.resources[0].region #=> String
+    #   resp.findings[0].service.detection.sequence.resources[0].service #=> String
+    #   resp.findings[0].service.detection.sequence.resources[0].cloud_partition #=> String
+    #   resp.findings[0].service.detection.sequence.resources[0].tags #=> Array
+    #   resp.findings[0].service.detection.sequence.resources[0].tags[0].key #=> String
+    #   resp.findings[0].service.detection.sequence.resources[0].tags[0].value #=> String
+    #   resp.findings[0].service.detection.sequence.resources[0].data.s3_bucket.owner_id #=> String
+    #   resp.findings[0].service.detection.sequence.resources[0].data.s3_bucket.created_at #=> Time
+    #   resp.findings[0].service.detection.sequence.resources[0].data.s3_bucket.encryption_type #=> String
+    #   resp.findings[0].service.detection.sequence.resources[0].data.s3_bucket.encryption_key_arn #=> String
+    #   resp.findings[0].service.detection.sequence.resources[0].data.s3_bucket.effective_permission #=> String
+    #   resp.findings[0].service.detection.sequence.resources[0].data.s3_bucket.public_read_access #=> String, one of "BLOCKED", "ALLOWED"
+    #   resp.findings[0].service.detection.sequence.resources[0].data.s3_bucket.public_write_access #=> String, one of "BLOCKED", "ALLOWED"
+    #   resp.findings[0].service.detection.sequence.resources[0].data.s3_bucket.account_public_access.public_acl_access #=> String, one of "BLOCKED", "ALLOWED"
+    #   resp.findings[0].service.detection.sequence.resources[0].data.s3_bucket.account_public_access.public_policy_access #=> String, one of "BLOCKED", "ALLOWED"
+    #   resp.findings[0].service.detection.sequence.resources[0].data.s3_bucket.account_public_access.public_acl_ignore_behavior #=> String, one of "IGNORED", "NOT_IGNORED"
+    #   resp.findings[0].service.detection.sequence.resources[0].data.s3_bucket.account_public_access.public_bucket_restrict_behavior #=> String, one of "RESTRICTED", "NOT_RESTRICTED"
+    #   resp.findings[0].service.detection.sequence.resources[0].data.s3_bucket.bucket_public_access.public_acl_access #=> String, one of "BLOCKED", "ALLOWED"
+    #   resp.findings[0].service.detection.sequence.resources[0].data.s3_bucket.bucket_public_access.public_policy_access #=> String, one of "BLOCKED", "ALLOWED"
+    #   resp.findings[0].service.detection.sequence.resources[0].data.s3_bucket.bucket_public_access.public_acl_ignore_behavior #=> String, one of "IGNORED", "NOT_IGNORED"
+    #   resp.findings[0].service.detection.sequence.resources[0].data.s3_bucket.bucket_public_access.public_bucket_restrict_behavior #=> String, one of "RESTRICTED", "NOT_RESTRICTED"
+    #   resp.findings[0].service.detection.sequence.resources[0].data.s3_bucket.s3_object_uids #=> Array
+    #   resp.findings[0].service.detection.sequence.resources[0].data.s3_bucket.s3_object_uids[0] #=> String
+    #   resp.findings[0].service.detection.sequence.resources[0].data.ec2_instance.availability_zone #=> String
+    #   resp.findings[0].service.detection.sequence.resources[0].data.ec2_instance.image_description #=> String
+    #   resp.findings[0].service.detection.sequence.resources[0].data.ec2_instance.instance_state #=> String
+    #   resp.findings[0].service.detection.sequence.resources[0].data.ec2_instance.iam_instance_profile.arn #=> String
+    #   resp.findings[0].service.detection.sequence.resources[0].data.ec2_instance.iam_instance_profile.id #=> String
+    #   resp.findings[0].service.detection.sequence.resources[0].data.ec2_instance.instance_type #=> String
+    #   resp.findings[0].service.detection.sequence.resources[0].data.ec2_instance.outpost_arn #=> String
+    #   resp.findings[0].service.detection.sequence.resources[0].data.ec2_instance.platform #=> String
+    #   resp.findings[0].service.detection.sequence.resources[0].data.ec2_instance.product_codes #=> Array
+    #   resp.findings[0].service.detection.sequence.resources[0].data.ec2_instance.product_codes[0].code #=> String
+    #   resp.findings[0].service.detection.sequence.resources[0].data.ec2_instance.product_codes[0].product_type #=> String
+    #   resp.findings[0].service.detection.sequence.resources[0].data.ec2_instance.ec2_network_interface_uids #=> Array
+    #   resp.findings[0].service.detection.sequence.resources[0].data.ec2_instance.ec2_network_interface_uids[0] #=> String
+    #   resp.findings[0].service.detection.sequence.resources[0].data.access_key.principal_id #=> String
+    #   resp.findings[0].service.detection.sequence.resources[0].data.access_key.user_name #=> String
+    #   resp.findings[0].service.detection.sequence.resources[0].data.access_key.user_type #=> String
+    #   resp.findings[0].service.detection.sequence.resources[0].data.ec2_network_interface.ipv_6_addresses #=> Array
+    #   resp.findings[0].service.detection.sequence.resources[0].data.ec2_network_interface.ipv_6_addresses[0] #=> String
+    #   resp.findings[0].service.detection.sequence.resources[0].data.ec2_network_interface.private_ip_addresses #=> Array
+    #   resp.findings[0].service.detection.sequence.resources[0].data.ec2_network_interface.private_ip_addresses[0].private_dns_name #=> String
+    #   resp.findings[0].service.detection.sequence.resources[0].data.ec2_network_interface.private_ip_addresses[0].private_ip_address #=> String
+    #   resp.findings[0].service.detection.sequence.resources[0].data.ec2_network_interface.public_ip #=> String
+    #   resp.findings[0].service.detection.sequence.resources[0].data.ec2_network_interface.security_groups #=> Array
+    #   resp.findings[0].service.detection.sequence.resources[0].data.ec2_network_interface.security_groups[0].group_id #=> String
+    #   resp.findings[0].service.detection.sequence.resources[0].data.ec2_network_interface.security_groups[0].group_name #=> String
+    #   resp.findings[0].service.detection.sequence.resources[0].data.ec2_network_interface.sub_net_id #=> String
+    #   resp.findings[0].service.detection.sequence.resources[0].data.ec2_network_interface.vpc_id #=> String
+    #   resp.findings[0].service.detection.sequence.resources[0].data.s3_object.etag #=> String
+    #   resp.findings[0].service.detection.sequence.resources[0].data.s3_object.key #=> String
+    #   resp.findings[0].service.detection.sequence.resources[0].data.s3_object.version_id #=> String
+    #   resp.findings[0].service.detection.sequence.endpoints #=> Array
+    #   resp.findings[0].service.detection.sequence.endpoints[0].id #=> String
+    #   resp.findings[0].service.detection.sequence.endpoints[0].ip #=> String
+    #   resp.findings[0].service.detection.sequence.endpoints[0].domain #=> String
+    #   resp.findings[0].service.detection.sequence.endpoints[0].port #=> Integer
+    #   resp.findings[0].service.detection.sequence.endpoints[0].location.city #=> String
+    #   resp.findings[0].service.detection.sequence.endpoints[0].location.country #=> String
+    #   resp.findings[0].service.detection.sequence.endpoints[0].location.latitude #=> Float
+    #   resp.findings[0].service.detection.sequence.endpoints[0].location.longitude #=> Float
+    #   resp.findings[0].service.detection.sequence.endpoints[0].autonomous_system.name #=> String
+    #   resp.findings[0].service.detection.sequence.endpoints[0].autonomous_system.number #=> Integer
+    #   resp.findings[0].service.detection.sequence.endpoints[0].connection.direction #=> String, one of "INBOUND", "OUTBOUND"
+    #   resp.findings[0].service.detection.sequence.signals #=> Array
+    #   resp.findings[0].service.detection.sequence.signals[0].uid #=> String
+    #   resp.findings[0].service.detection.sequence.signals[0].type #=> String, one of "FINDING", "CLOUD_TRAIL", "S3_DATA_EVENTS"
+    #   resp.findings[0].service.detection.sequence.signals[0].description #=> String
+    #   resp.findings[0].service.detection.sequence.signals[0].name #=> String
+    #   resp.findings[0].service.detection.sequence.signals[0].created_at #=> Time
+    #   resp.findings[0].service.detection.sequence.signals[0].updated_at #=> Time
+    #   resp.findings[0].service.detection.sequence.signals[0].first_seen_at #=> Time
+    #   resp.findings[0].service.detection.sequence.signals[0].last_seen_at #=> Time
+    #   resp.findings[0].service.detection.sequence.signals[0].severity #=> Float
+    #   resp.findings[0].service.detection.sequence.signals[0].count #=> Integer
+    #   resp.findings[0].service.detection.sequence.signals[0].resource_uids #=> Array
+    #   resp.findings[0].service.detection.sequence.signals[0].resource_uids[0] #=> String
+    #   resp.findings[0].service.detection.sequence.signals[0].actor_ids #=> Array
+    #   resp.findings[0].service.detection.sequence.signals[0].actor_ids[0] #=> String
+    #   resp.findings[0].service.detection.sequence.signals[0].endpoint_ids #=> Array
+    #   resp.findings[0].service.detection.sequence.signals[0].endpoint_ids[0] #=> String
+    #   resp.findings[0].service.detection.sequence.signals[0].signal_indicators #=> Array
+    #   resp.findings[0].service.detection.sequence.signals[0].signal_indicators[0].key #=> String, one of "SUSPICIOUS_USER_AGENT", "SUSPICIOUS_NETWORK", "MALICIOUS_IP", "TOR_IP", "ATTACK_TACTIC", "HIGH_RISK_API", "ATTACK_TECHNIQUE", "UNUSUAL_API_FOR_ACCOUNT", "UNUSUAL_ASN_FOR_ACCOUNT", "UNUSUAL_ASN_FOR_USER"
+    #   resp.findings[0].service.detection.sequence.signals[0].signal_indicators[0].values #=> Array
+    #   resp.findings[0].service.detection.sequence.signals[0].signal_indicators[0].values[0] #=> String
+    #   resp.findings[0].service.detection.sequence.signals[0].signal_indicators[0].title #=> String
+    #   resp.findings[0].service.detection.sequence.sequence_indicators #=> Array
+    #   resp.findings[0].service.detection.sequence.sequence_indicators[0].key #=> String, one of "SUSPICIOUS_USER_AGENT", "SUSPICIOUS_NETWORK", "MALICIOUS_IP", "TOR_IP", "ATTACK_TACTIC", "HIGH_RISK_API", "ATTACK_TECHNIQUE", "UNUSUAL_API_FOR_ACCOUNT", "UNUSUAL_ASN_FOR_ACCOUNT", "UNUSUAL_ASN_FOR_USER"
+    #   resp.findings[0].service.detection.sequence.sequence_indicators[0].values #=> Array
+    #   resp.findings[0].service.detection.sequence.sequence_indicators[0].values[0] #=> String
+    #   resp.findings[0].service.detection.sequence.sequence_indicators[0].title #=> String
     #   resp.findings[0].service.malware_scan_details.threats #=> Array
     #   resp.findings[0].service.malware_scan_details.threats[0].name #=> String
     #   resp.findings[0].service.malware_scan_details.threats[0].source #=> String
     #   resp.findings[0].service.malware_scan_details.threats[0].item_paths #=> Array
     #   resp.findings[0].service.malware_scan_details.threats[0].item_paths[0].nested_item_path #=> String
     #   resp.findings[0].service.malware_scan_details.threats[0].item_paths[0].hash #=> String
     #   resp.findings[0].severity #=> Float
     #   resp.findings[0].title #=> String
     #   resp.findings[0].type #=> String
     #   resp.findings[0].updated_at #=> String
+    #   resp.findings[0].associated_attack_sequence_arn #=> String
     #
     # @see http://docs.aws.amazon.com/goto/WebAPI/guardduty-2017-11-28/GetFindings AWS API Documentation
     #
     # @overload get_findings(params = {})
     # @param [Hash] params ({})
@@ -5416,10 +5528,10 @@
         params: params,
         config: config,
         tracer: tracer
       )
       context[:gem_name] = 'aws-sdk-guardduty'
-      context[:gem_version] = '1.107.0'
+      context[:gem_version] = '1.108.0'
       Seahorse::Client::Request.new(handlers, context)
     end
 
     # @api private
     # @deprecated