lib/aws-sdk-guardduty/client.rb in aws-sdk-guardduty-1.76.0 vs lib/aws-sdk-guardduty/client.rb in aws-sdk-guardduty-1.77.0
- old
+ new
@@ -630,14 +630,36 @@
#
# You can only use the following attributes to query findings:
#
# * accountId
#
+ # * id
+ #
# * region
#
- # * id
+ # * severity
#
+ # To filter on the basis of severity, the API and CLI use the
+ # following input list for the [FindingCriteria][1] condition:
+ #
+ # * **Low**: `["1", "2", "3"]`
+ #
+ # * **Medium**: `["4", "5", "6"]`
+ #
+ # * **High**: `["7", "8", "9"]`
+ #
+ # For more information, see [Severity levels for GuardDuty
+ # findings][2].
+ #
+ # * type
+ #
+ # * updatedAt
+ #
+ # Type: ISO 8601 string format: YYYY-MM-DDTHH:MM:SS.SSSZ or
+ # YYYY-MM-DDTHH:MM:SSZ depending on whether the value contains
+ # milliseconds.
+ #
# * resource.accessKeyDetails.accessKeyId
#
# * resource.accessKeyDetails.principalId
#
# * resource.accessKeyDetails.userName
@@ -648,12 +670,14 @@
#
# * resource.instanceDetails.imageId
#
# * resource.instanceDetails.instanceId
#
- # * resource.instanceDetails.outpostArn
+ # * resource.instanceDetails.tags.key
#
+ # * resource.instanceDetails.tags.value
+ #
# * resource.instanceDetails.networkInterfaces.ipv6Addresses
#
# * resource.instanceDetails.networkInterfaces.privateIpAddresses.privateIpAddress
#
# * resource.instanceDetails.networkInterfaces.publicDnsName
@@ -666,26 +690,32 @@
#
# * resource.instanceDetails.networkInterfaces.subnetId
#
# * resource.instanceDetails.networkInterfaces.vpcId
#
- # * resource.instanceDetails.tags.key
+ # * resource.instanceDetails.outpostArn
#
- # * resource.instanceDetails.tags.value
- #
# * resource.resourceType
#
+ # * resource.s3BucketDetails.publicAccess.effectivePermissions
+ #
+ # * resource.s3BucketDetails.name
+ #
+ # * resource.s3BucketDetails.tags.key
+ #
+ # * resource.s3BucketDetails.tags.value
+ #
+ # * resource.s3BucketDetails.type
+ #
# * service.action.actionType
#
# * service.action.awsApiCallAction.api
#
# * service.action.awsApiCallAction.callerType
#
# * service.action.awsApiCallAction.errorCode
#
- # * service.action.awsApiCallAction.userAgent
- #
# * service.action.awsApiCallAction.remoteIpDetails.city.cityName
#
# * service.action.awsApiCallAction.remoteIpDetails.country.countryName
#
# * service.action.awsApiCallAction.remoteIpDetails.ipAddressV4
@@ -704,12 +734,10 @@
#
# * service.action.networkConnectionAction.localPortDetails.port
#
# * service.action.networkConnectionAction.protocol
#
- # * service.action.networkConnectionAction.localIpDetails.ipAddressV4
- #
# * service.action.networkConnectionAction.remoteIpDetails.city.cityName
#
# * service.action.networkConnectionAction.remoteIpDetails.country.countryName
#
# * service.action.networkConnectionAction.remoteIpDetails.ipAddressV4
@@ -718,34 +746,87 @@
#
# * service.action.networkConnectionAction.remoteIpDetails.organization.asnOrg
#
# * service.action.networkConnectionAction.remotePortDetails.port
#
- # * service.additionalInfo.threatListName
+ # * service.action.awsApiCallAction.remoteAccountDetails.affiliated
#
- # * resource.s3BucketDetails.publicAccess.effectivePermissions
+ # * service.action.kubernetesApiCallAction.remoteIpDetails.ipAddressV4
#
- # * resource.s3BucketDetails.name
+ # * service.action.kubernetesApiCallAction.requestUri
#
- # * resource.s3BucketDetails.tags.key
+ # * service.action.networkConnectionAction.localIpDetails.ipAddressV4
#
- # * resource.s3BucketDetails.tags.value
+ # * service.action.networkConnectionAction.protocol
#
- # * resource.s3BucketDetails.type
+ # * service.action.awsApiCallAction.serviceName
#
+ # * service.action.awsApiCallAction.remoteAccountDetails.accountId
+ #
+ # * service.additionalInfo.threatListName
+ #
# * service.resourceRole
#
- # * severity
+ # * resource.eksClusterDetails.name
#
- # * type
+ # * resource.kubernetesDetails.kubernetesWorkloadDetails.name
#
- # * updatedAt
+ # * resource.kubernetesDetails.kubernetesWorkloadDetails.namespace
#
- # Type: ISO 8601 string format: YYYY-MM-DDTHH:MM:SS.SSSZ or
- # YYYY-MM-DDTHH:MM:SSZ depending on whether the value contains
- # milliseconds.
+ # * resource.kubernetesDetails.kubernetesUserDetails.username
#
+ # * resource.kubernetesDetails.kubernetesWorkloadDetails.containers.image
+ #
+ # * resource.kubernetesDetails.kubernetesWorkloadDetails.containers.imagePrefix
+ #
+ # * service.ebsVolumeScanDetails.scanId
+ #
+ # * service.ebsVolumeScanDetails.scanDetections.threatDetectedByName.threatNames.name
+ #
+ # * service.ebsVolumeScanDetails.scanDetections.threatDetectedByName.threatNames.severity
+ #
+ # * service.ebsVolumeScanDetails.scanDetections.threatDetectedByName.threatNames.filePaths.hash
+ #
+ # * resource.ecsClusterDetails.name
+ #
+ # * resource.ecsClusterDetails.taskDetails.containers.image
+ #
+ # * resource.ecsClusterDetails.taskDetails.definitionArn
+ #
+ # * resource.containerDetails.image
+ #
+ # * resource.rdsDbInstanceDetails.dbInstanceIdentifier
+ #
+ # * resource.rdsDbInstanceDetails.dbClusterIdentifier
+ #
+ # * resource.rdsDbInstanceDetails.engine
+ #
+ # * resource.rdsDbUserDetails.user
+ #
+ # * resource.rdsDbInstanceDetails.tags.key
+ #
+ # * resource.rdsDbInstanceDetails.tags.value
+ #
+ # * service.runtimeDetails.process.executableSha256
+ #
+ # * service.runtimeDetails.process.name
+ #
+ # * service.runtimeDetails.process.name
+ #
+ # * resource.lambdaDetails.functionName
+ #
+ # * resource.lambdaDetails.functionArn
+ #
+ # * resource.lambdaDetails.tags.key
+ #
+ # * resource.lambdaDetails.tags.value
+ #
+ #
+ #
+ # [1]: https://docs.aws.amazon.com/guardduty/latest/APIReference/API_FindingCriteria.html
+ # [2]: https://docs.aws.amazon.com/guardduty/latest/ug/guardduty_findings.html#guardduty_findings-severity
+ #
# @option params [String] :client_token
# The idempotency token for the create request.
#
# **A suitable default value is auto-generated.** You should normally
# not need to pass this option.**
@@ -1475,14 +1556,14 @@
# resp.data_sources.s3_logs.auto_enable #=> Boolean
# resp.data_sources.kubernetes.audit_logs.auto_enable #=> Boolean
# resp.data_sources.malware_protection.scan_ec2_instance_with_findings.ebs_volumes.auto_enable #=> Boolean
# resp.features #=> Array
# resp.features[0].name #=> String, one of "S3_DATA_EVENTS", "EKS_AUDIT_LOGS", "EBS_MALWARE_PROTECTION", "RDS_LOGIN_EVENTS", "EKS_RUNTIME_MONITORING", "LAMBDA_NETWORK_LOGS"
- # resp.features[0].auto_enable #=> String, one of "NEW", "NONE"
+ # resp.features[0].auto_enable #=> String, one of "NEW", "NONE", "ALL"
# resp.features[0].additional_configuration #=> Array
# resp.features[0].additional_configuration[0].name #=> String, one of "EKS_ADDON_MANAGEMENT"
- # resp.features[0].additional_configuration[0].auto_enable #=> String, one of "NEW", "NONE"
+ # resp.features[0].additional_configuration[0].auto_enable #=> String, one of "NEW", "NONE", "ALL"
# resp.next_token #=> String
# resp.auto_enable_organization_members #=> String, one of "NEW", "ALL", "NONE"
#
# @see http://docs.aws.amazon.com/goto/WebAPI/guardduty-2017-11-28/DescribeOrganizationConfiguration AWS API Documentation
#
@@ -3553,13 +3634,13 @@
req = build_request(:list_publishing_destinations, params)
req.send_request(options)
end
# Lists tags for a resource. Tagging is currently supported for
- # detectors, finding filters, IP sets, threat intel sets, publishing
- # destination, with a limit of 50 tags per resource. When invoked, this
- # operation returns all assigned tags for a given resource.
+ # detectors, finding filters, IP sets, threat intel sets, and publishing
+ # destination, with a limit of 50 tags per each resource. When invoked,
+ # this operation returns all assigned tags for a given resource.
#
# @option params [required, String] :resource_arn
# The Amazon Resource Name (ARN) for the given GuardDuty resource.
#
# @return [Types::ListTagsForResourceResponse] Returns a {Seahorse::Client::Response response} object which responds to the following methods:
@@ -4275,15 +4356,15 @@
# },
# },
# features: [
# {
# name: "S3_DATA_EVENTS", # accepts S3_DATA_EVENTS, EKS_AUDIT_LOGS, EBS_MALWARE_PROTECTION, RDS_LOGIN_EVENTS, EKS_RUNTIME_MONITORING, LAMBDA_NETWORK_LOGS
- # auto_enable: "NEW", # accepts NEW, NONE
+ # auto_enable: "NEW", # accepts NEW, NONE, ALL
# additional_configuration: [
# {
# name: "EKS_ADDON_MANAGEMENT", # accepts EKS_ADDON_MANAGEMENT
- # auto_enable: "NEW", # accepts NEW, NONE
+ # auto_enable: "NEW", # accepts NEW, NONE, ALL
# },
# ],
# },
# ],
# auto_enable_organization_members: "NEW", # accepts NEW, ALL, NONE
@@ -4387,10 +4468,10 @@
operation: config.api.operation(operation_name),
client: self,
params: params,
config: config)
context[:gem_name] = 'aws-sdk-guardduty'
- context[:gem_version] = '1.76.0'
+ context[:gem_version] = '1.77.0'
Seahorse::Client::Request.new(handlers, context)
end
# @api private
# @deprecated