The date and time CISA added this vulnerability to their catalogue.
" + "smithy.api#documentation": "The scan ARN for the CIS check scan ARN.
", + "smithy.api#required": {} } }, - "dateDue": { - "target": "com.amazonaws.inspector2#CisaDateDue", + "checkId": { + "target": "smithy.api#String", "traits": { - "smithy.api#documentation": "The date and time CISA expects a fix to have been provided vulnerability.
" + "smithy.api#documentation": "The check ID for the CIS check.
" } }, - "action": { - "target": "com.amazonaws.inspector2#CisaAction", + "title": { + "target": "smithy.api#String", "traits": { - "smithy.api#documentation": "The remediation action recommended by CISA for this vulnerability.
" + "smithy.api#documentation": "The CIS check title.
" + } + }, + "checkDescription": { + "target": "smithy.api#String", + "traits": { + "smithy.api#documentation": "The description for the CIS check.
" + } + }, + "level": { + "target": "com.amazonaws.inspector2#CisSecurityLevel", + "traits": { + "smithy.api#documentation": "The CIS check level.
" + } + }, + "accountId": { + "target": "com.amazonaws.inspector2#AccountId", + "traits": { + "smithy.api#documentation": "The account ID for the CIS check.
" + } + }, + "statusCounts": { + "target": "com.amazonaws.inspector2#StatusCounts", + "traits": { + "smithy.api#documentation": "The CIS check status counts.
" + } + }, + "platform": { + "target": "smithy.api#String", + "traits": { + "smithy.api#documentation": "The CIS check platform.
" } } }, "traits": { - "smithy.api#documentation": "The Cybersecurity and Infrastructure Security Agency (CISA) details for a specific vulnerability.
" + "smithy.api#documentation": "A CIS check.
" } }, - "com.amazonaws.inspector2#CisaDateAdded": { - "type": "timestamp" + "com.amazonaws.inspector2#CisCheckAggregationList": { + "type": "list", + "member": { + "target": "com.amazonaws.inspector2#CisCheckAggregation" + }, + "traits": { + "smithy.api#length": { + "min": 1, + "max": 1000 + } + } }, - "com.amazonaws.inspector2#CisaDateDue": { - "type": "timestamp" + "com.amazonaws.inspector2#CisDateFilter": { + "type": "structure", + "members": { + "earliestScanStartTime": { + "target": "smithy.api#Timestamp", + "traits": { + "smithy.api#documentation": "The CIS date filter's earliest scan start time.
" + } + }, + "latestScanStartTime": { + "target": "smithy.api#Timestamp", + "traits": { + "smithy.api#documentation": "The CIS date filter's latest scan start time.
" + } + } + }, + "traits": { + "smithy.api#documentation": "The CIS date filter.
" + } }, - "com.amazonaws.inspector2#ClientToken": { + "com.amazonaws.inspector2#CisFindingArn": { "type": "string", + "traits": { + "smithy.api#pattern": "^arn:aws(-gov|-cn)?:inspector2:[-.a-z0-9]{0,20}:\\d{12}:owner/\\d{12}/cis-finding/[0-9a-fA-F]{8}-[0-9a-fA-F]{4}-[0-9a-fA-F]{4}-[0-9a-fA-F]{4}-[0-9a-fA-F]{12}$" + } + }, + "com.amazonaws.inspector2#CisFindingArnFilterList": { + "type": "list", + "member": { + "target": "com.amazonaws.inspector2#CisStringFilter" + }, "traits": { "smithy.api#length": { "min": 1, - "max": 64 + "max": 10 } } }, - "com.amazonaws.inspector2#CodeFilePath": { - "type": "structure", + "com.amazonaws.inspector2#CisFindingStatus": { + "type": "enum", "members": { - "fileName": { - "target": "com.amazonaws.inspector2#NonEmptyString", + "PASSED": { + "target": "smithy.api#Unit", "traits": { - "smithy.api#documentation": "The name of the file the code vulnerability was found in.
", - "smithy.api#required": {} + "smithy.api#enumValue": "PASSED" } }, - "filePath": { - "target": "com.amazonaws.inspector2#NonEmptyString", + "FAILED": { + "target": "smithy.api#Unit", "traits": { - "smithy.api#documentation": "The file path to the code that a vulnerability was found in.
", - "smithy.api#required": {} + "smithy.api#enumValue": "FAILED" } }, - "startLine": { - "target": "smithy.api#Integer", + "SKIPPED": { + "target": "smithy.api#Unit", "traits": { - "smithy.api#default": null, - "smithy.api#documentation": "The line number of the first line of code that a vulnerability was found in.
", - "smithy.api#required": {} + "smithy.api#enumValue": "SKIPPED" } - }, - "endLine": { - "target": "smithy.api#Integer", + } + } + }, + "com.amazonaws.inspector2#CisFindingStatusComparison": { + "type": "enum", + "members": { + "EQUALS": { + "target": "smithy.api#Unit", "traits": { - "smithy.api#default": null, - "smithy.api#documentation": "The line number of the last line of code that a vulnerability was found in.
", - "smithy.api#required": {} + "smithy.api#enumValue": "EQUALS" } } - }, - "traits": { - "smithy.api#documentation": "Contains information on where a code vulnerability is located in your Lambda function.
" } }, - "com.amazonaws.inspector2#CodeLine": { + "com.amazonaws.inspector2#CisFindingStatusFilter": { "type": "structure", "members": { - "content": { - "target": "smithy.api#String", + "comparison": { + "target": "com.amazonaws.inspector2#CisFindingStatusComparison", "traits": { - "smithy.api#documentation": "The content of a line of code
", - "smithy.api#length": { - "min": 0, - "max": 240 - }, + "smithy.api#documentation": "The comparison value of the CIS finding status filter.
", "smithy.api#required": {} } }, - "lineNumber": { - "target": "smithy.api#Integer", + "value": { + "target": "com.amazonaws.inspector2#CisFindingStatus", "traits": { - "smithy.api#documentation": "The line number that a section of code is located at.
", + "smithy.api#documentation": "The value of the CIS finding status filter.
", "smithy.api#required": {} } } }, "traits": { - "smithy.api#documentation": "Contains information on the lines of code associated with a code snippet.
" + "smithy.api#documentation": "The CIS finding status filter.
" } }, - "com.amazonaws.inspector2#CodeLineList": { + "com.amazonaws.inspector2#CisFindingStatusFilterList": { "type": "list", "member": { - "target": "com.amazonaws.inspector2#CodeLine" + "target": "com.amazonaws.inspector2#CisFindingStatusFilter" }, "traits": { "smithy.api#length": { "min": 1, - "max": 20 - } + "max": 10 + }, + "smithy.api#uniqueItems": {} } }, - "com.amazonaws.inspector2#CodeSnippetError": { + "com.amazonaws.inspector2#CisNumberFilter": { "type": "structure", "members": { - "findingArn": { - "target": "com.amazonaws.inspector2#FindingArn", - "traits": { - "smithy.api#documentation": "The ARN of the finding that a code snippet couldn't be retrieved for.
", - "smithy.api#required": {} - } - }, - "errorCode": { - "target": "com.amazonaws.inspector2#CodeSnippetErrorCode", + "upperInclusive": { + "target": "smithy.api#Integer", "traits": { - "smithy.api#documentation": "The error code for the error that prevented a code snippet from being retrieved.
", - "smithy.api#required": {} + "smithy.api#documentation": "The CIS number filter's upper inclusive.
" } }, - "errorMessage": { - "target": "com.amazonaws.inspector2#NonEmptyString", + "lowerInclusive": { + "target": "smithy.api#Integer", "traits": { - "smithy.api#documentation": "The error message received when Amazon Inspector failed to retrieve a code snippet.
", - "smithy.api#required": {} + "smithy.api#documentation": "The CIS number filter's lower inclusive.
" } } }, "traits": { - "smithy.api#documentation": "Contains information about any errors encountered while trying to retrieve a code snippet.
" + "smithy.api#documentation": "The CIS number filter.
" } }, - "com.amazonaws.inspector2#CodeSnippetErrorCode": { - "type": "string", + "com.amazonaws.inspector2#CisNumberFilterList": { + "type": "list", + "member": { + "target": "com.amazonaws.inspector2#CisNumberFilter" + }, "traits": { - "smithy.api#enum": [ - { - "value": "INTERNAL_ERROR", - "name": "INTERNAL_ERROR" - }, - { - "value": "ACCESS_DENIED", - "name": "ACCESS_DENIED" - }, - { - "value": "CODE_SNIPPET_NOT_FOUND", - "name": "CODE_SNIPPET_NOT_FOUND" - }, - { - "value": "INVALID_INPUT", - "name": "INVALID_INPUT" - } - ] + "smithy.api#length": { + "min": 1, + "max": 10 + }, + "smithy.api#uniqueItems": {} } }, - "com.amazonaws.inspector2#CodeSnippetErrorList": { - "type": "list", - "member": { - "target": "com.amazonaws.inspector2#CodeSnippetError" + "com.amazonaws.inspector2#CisOwnerId": { + "type": "string", + "traits": { + "smithy.api#pattern": "^\\d{12}|o-[a-z0-9]{10,32}$" } }, - "com.amazonaws.inspector2#CodeSnippetResult": { - "type": "structure", + "com.amazonaws.inspector2#CisReportStatus": { + "type": "enum", "members": { - "findingArn": { - "target": "com.amazonaws.inspector2#FindingArn", + "SUCCEEDED": { + "target": "smithy.api#Unit", "traits": { - "smithy.api#documentation": "The ARN of a finding that the code snippet is associated with.
" + "smithy.api#enumValue": "SUCCEEDED" } }, - "startLine": { - "target": "smithy.api#Integer", + "FAILED": { + "target": "smithy.api#Unit", "traits": { - "smithy.api#documentation": "The line number of the first line of a code snippet.
" + "smithy.api#enumValue": "FAILED" } }, - "endLine": { - "target": "smithy.api#Integer", + "IN_PROGRESS": { + "target": "smithy.api#Unit", "traits": { - "smithy.api#documentation": "The line number of the last line of a code snippet.
" + "smithy.api#enumValue": "IN_PROGRESS" + } + } + } + }, + "com.amazonaws.inspector2#CisResultStatus": { + "type": "enum", + "members": { + "PASSED": { + "target": "smithy.api#Unit", + "traits": { + "smithy.api#enumValue": "PASSED" } }, - "codeSnippet": { - "target": "com.amazonaws.inspector2#CodeLineList", + "FAILED": { + "target": "smithy.api#Unit", "traits": { - "smithy.api#documentation": "Contains information on the retrieved code snippet.
" + "smithy.api#enumValue": "FAILED" } }, - "suggestedFixes": { - "target": "com.amazonaws.inspector2#SuggestedFixes", + "SKIPPED": { + "target": "smithy.api#Unit", "traits": { - "smithy.api#documentation": "Details of a suggested code fix.
" + "smithy.api#enumValue": "SKIPPED" } } - }, - "traits": { - "smithy.api#documentation": "Contains information on a code snippet retrieved by Amazon Inspector from a code vulnerability finding.
" - } - }, - "com.amazonaws.inspector2#CodeSnippetResultList": { - "type": "list", - "member": { - "target": "com.amazonaws.inspector2#CodeSnippetResult" } }, - "com.amazonaws.inspector2#CodeVulnerabilityDetails": { + "com.amazonaws.inspector2#CisResultStatusComparison": { + "type": "enum", + "members": { + "EQUALS": { + "target": "smithy.api#Unit", + "traits": { + "smithy.api#enumValue": "EQUALS" + } + } + } + }, + "com.amazonaws.inspector2#CisResultStatusFilter": { "type": "structure", "members": { - "filePath": { - "target": "com.amazonaws.inspector2#CodeFilePath", + "comparison": { + "target": "com.amazonaws.inspector2#CisResultStatusComparison", "traits": { - "smithy.api#documentation": "Contains information on where the code vulnerability is located in your code.
", + "smithy.api#documentation": "The comparison value of the CIS result status filter.
", "smithy.api#required": {} } }, - "detectorTags": { - "target": "com.amazonaws.inspector2#DetectorTagList", + "value": { + "target": "com.amazonaws.inspector2#CisResultStatus", "traits": { - "smithy.api#documentation": "The detector tag associated with the vulnerability. Detector tags group related vulnerabilities by common themes or tactics. For a list of available tags by programming language, see Java tags, or Python tags.
" + "smithy.api#documentation": "The value of the CIS result status filter.
", + "smithy.api#required": {} + } + } + }, + "traits": { + "smithy.api#documentation": "The CIS result status filter.
" + } + }, + "com.amazonaws.inspector2#CisResultStatusFilterList": { + "type": "list", + "member": { + "target": "com.amazonaws.inspector2#CisResultStatusFilter" + }, + "traits": { + "smithy.api#length": { + "min": 1, + "max": 10 + } + } + }, + "com.amazonaws.inspector2#CisRuleDetails": { + "type": "blob", + "traits": { + "smithy.api#length": { + "min": 0, + "max": 1000 + } + } + }, + "com.amazonaws.inspector2#CisRuleStatus": { + "type": "enum", + "members": { + "FAILED": { + "target": "smithy.api#Unit", + "traits": { + "smithy.api#enumValue": "FAILED" } }, - "referenceUrls": { - "target": "com.amazonaws.inspector2#ReferenceUrls", + "PASSED": { + "target": "smithy.api#Unit", "traits": { - "smithy.api#documentation": "A URL containing supporting documentation about the code vulnerability detected.
" + "smithy.api#enumValue": "PASSED" } }, - "ruleId": { - "target": "com.amazonaws.inspector2#NonEmptyString", + "NOT_EVALUATED": { + "target": "smithy.api#Unit", "traits": { - "smithy.api#documentation": "The identifier for a rule that was used to detect the code vulnerability.
" + "smithy.api#enumValue": "NOT_EVALUATED" } }, - "sourceLambdaLayerArn": { - "target": "com.amazonaws.inspector2#LambdaLayerArn", + "INFORMATIONAL": { + "target": "smithy.api#Unit", "traits": { - "smithy.api#documentation": "The Amazon Resource Name (ARN) of the Lambda layer that the code vulnerability was detected in.
" + "smithy.api#enumValue": "INFORMATIONAL" } }, - "detectorId": { - "target": "com.amazonaws.inspector2#NonEmptyString", + "UNKNOWN": { + "target": "smithy.api#Unit", "traits": { - "smithy.api#documentation": "The ID for the Amazon CodeGuru detector associated with the finding. For more information on detectors see Amazon CodeGuru\n Detector Library.
", - "smithy.api#required": {} + "smithy.api#enumValue": "UNKNOWN" } }, - "detectorName": { - "target": "com.amazonaws.inspector2#NonEmptyString", + "NOT_APPLICABLE": { + "target": "smithy.api#Unit", "traits": { - "smithy.api#documentation": "The name of the detector used to identify the code vulnerability. For more information on detectors see CodeGuru Detector Library.
", - "smithy.api#required": {} + "smithy.api#enumValue": "NOT_APPLICABLE" } }, - "cwes": { - "target": "com.amazonaws.inspector2#CweList", + "ERROR": { + "target": "smithy.api#Unit", "traits": { - "smithy.api#documentation": "The Common Weakness Enumeration (CWE) item associated with the detected vulnerability.
", - "smithy.api#required": {} + "smithy.api#enumValue": "ERROR" } } - }, - "traits": { - "smithy.api#documentation": "Contains information on the code vulnerability identified in your Lambda function.
" } }, - "com.amazonaws.inspector2#Component": { - "type": "string" - }, - "com.amazonaws.inspector2#ComponentType": { - "type": "string" - }, - "com.amazonaws.inspector2#ConflictException": { + "com.amazonaws.inspector2#CisScan": { "type": "structure", "members": { - "message": { - "target": "smithy.api#String", + "scanArn": { + "target": "com.amazonaws.inspector2#CisScanArn", "traits": { + "smithy.api#documentation": "The CIS scan's ARN.
", "smithy.api#required": {} } }, - "resourceId": { - "target": "smithy.api#String", + "scanConfigurationArn": { + "target": "com.amazonaws.inspector2#CisScanConfigurationArn", "traits": { - "smithy.api#documentation": "The ID of the conflicting resource.
", + "smithy.api#documentation": "The CIS scan's configuration ARN.
", "smithy.api#required": {} } }, - "resourceType": { + "status": { + "target": "com.amazonaws.inspector2#CisScanStatus", + "traits": { + "smithy.api#documentation": "The CIS scan's status.
" + } + }, + "scanName": { + "target": "com.amazonaws.inspector2#CisScanName", + "traits": { + "smithy.api#documentation": "The the name of the scan configuration that's associated with this scan.
" + } + }, + "scanDate": { + "target": "smithy.api#Timestamp", + "traits": { + "smithy.api#documentation": "The CIS scan's date.
" + } + }, + "failedChecks": { + "target": "smithy.api#Integer", + "traits": { + "smithy.api#documentation": "The CIS scan's failed checks.
" + } + }, + "totalChecks": { + "target": "smithy.api#Integer", + "traits": { + "smithy.api#documentation": "The CIS scan's total checks.
" + } + }, + "targets": { + "target": "com.amazonaws.inspector2#CisTargets", + "traits": { + "smithy.api#documentation": "The CIS scan's targets.
" + } + }, + "scheduledBy": { "target": "smithy.api#String", "traits": { - "smithy.api#documentation": "The type of the conflicting resource.
", - "smithy.api#required": {} + "smithy.api#documentation": "The account or organization that schedules the CIS scan.
" + } + }, + "securityLevel": { + "target": "com.amazonaws.inspector2#CisSecurityLevel", + "traits": { + "smithy.api#documentation": "\n The security level for the CIS scan. \n Security level refers to the Benchmark levels that CIS assigns to a profile.\n
" } } }, "traits": { - "smithy.api#documentation": "A conflict occurred.
", - "smithy.api#error": "client", - "smithy.api#httpError": 409 + "smithy.api#documentation": "The CIS scan.
" } }, - "com.amazonaws.inspector2#Counts": { + "com.amazonaws.inspector2#CisScanArn": { + "type": "string", + "traits": { + "smithy.api#pattern": "^arn:aws(-us-gov|-cn)?:inspector2:[-.a-z0-9]{0,20}:\\d{12}:owner/(\\d{12}|o-[a-z0-9]{10,32})/cis-scan/[0-9a-fA-F]{8}-[0-9a-fA-F]{4}-[0-9a-fA-F]{4}-[0-9a-fA-F]{4}-[0-9a-fA-F]{12}$" + } + }, + "com.amazonaws.inspector2#CisScanArnFilterList": { + "type": "list", + "member": { + "target": "com.amazonaws.inspector2#CisStringFilter" + }, + "traits": { + "smithy.api#length": { + "min": 1, + "max": 10 + } + } + }, + "com.amazonaws.inspector2#CisScanConfiguration": { "type": "structure", "members": { - "count": { - "target": "com.amazonaws.inspector2#AggCounts", + "scanConfigurationArn": { + "target": "com.amazonaws.inspector2#CisScanConfigurationArn", "traits": { - "smithy.api#default": 0, - "smithy.api#documentation": "The number of resources.
" + "smithy.api#documentation": "The CIS scan configuration's scan configuration ARN.
", + "smithy.api#required": {} } }, - "groupKey": { - "target": "com.amazonaws.inspector2#GroupKey", + "ownerId": { + "target": "com.amazonaws.inspector2#CisOwnerId", "traits": { - "smithy.api#documentation": "The key associated with this group
" + "smithy.api#documentation": "The CIS scan configuration's owner ID.
" + } + }, + "scanName": { + "target": "com.amazonaws.inspector2#CisScanName", + "traits": { + "smithy.api#documentation": "The name of the CIS scan configuration.
" + } + }, + "securityLevel": { + "target": "com.amazonaws.inspector2#CisSecurityLevel", + "traits": { + "smithy.api#documentation": "The CIS scan configuration's security level.
" + } + }, + "schedule": { + "target": "com.amazonaws.inspector2#Schedule", + "traits": { + "smithy.api#documentation": "The CIS scan configuration's schedule.
" + } + }, + "targets": { + "target": "com.amazonaws.inspector2#CisTargets", + "traits": { + "smithy.api#documentation": "The CIS scan configuration's targets.
" + } + }, + "tags": { + "target": "com.amazonaws.inspector2#CisTagMap", + "traits": { + "smithy.api#documentation": "The CIS scan configuration's tags.
" } } }, "traits": { - "smithy.api#documentation": "a structure that contains information on the count of resources within a group.
" + "smithy.api#documentation": "The CIS scan configuration.
" } }, - "com.amazonaws.inspector2#CountsList": { + "com.amazonaws.inspector2#CisScanConfigurationArn": { + "type": "string", + "traits": { + "smithy.api#pattern": "^arn:aws(-us-gov|-cn)?:inspector2:[a-z]{2}(-gov)?-[a-z]+-[0-9]{1}:[0-9]{12}:owner/(o-[a-z0-9]+|[0-9]{12})/cis-configuration/[0-9a-fA-F-]+$" + } + }, + "com.amazonaws.inspector2#CisScanConfigurationArnFilterList": { "type": "list", "member": { - "target": "com.amazonaws.inspector2#Counts" + "target": "com.amazonaws.inspector2#CisStringFilter" }, "traits": { "smithy.api#length": { "min": 1, - "max": 5 + "max": 10 } } }, - "com.amazonaws.inspector2#CoverageDateFilter": { - "type": "structure", + "com.amazonaws.inspector2#CisScanConfigurationList": { + "type": "list", + "member": { + "target": "com.amazonaws.inspector2#CisScanConfiguration" + }, + "traits": { + "smithy.api#length": { + "max": 100 + } + } + }, + "com.amazonaws.inspector2#CisScanConfigurationsSortBy": { + "type": "enum", "members": { - "startInclusive": { - "target": "com.amazonaws.inspector2#DateTimeTimestamp", + "SCAN_NAME": { + "target": "smithy.api#Unit", "traits": { - "smithy.api#documentation": "A timestamp representing the start of the time period to filter results by.
" + "smithy.api#enumValue": "SCAN_NAME" } }, - "endInclusive": { - "target": "com.amazonaws.inspector2#DateTimeTimestamp", + "SCAN_CONFIGURATION_ARN": { + "target": "smithy.api#Unit", "traits": { - "smithy.api#documentation": "A timestamp representing the end of the time period to filter results by.
" + "smithy.api#enumValue": "SCAN_CONFIGURATION_ARN" } } + } + }, + "com.amazonaws.inspector2#CisScanDateFilterList": { + "type": "list", + "member": { + "target": "com.amazonaws.inspector2#CisDateFilter" }, "traits": { - "smithy.api#documentation": "Contains details of a coverage date filter.
" + "smithy.api#length": { + "min": 1, + "max": 1 + } } }, - "com.amazonaws.inspector2#CoverageDateFilterList": { + "com.amazonaws.inspector2#CisScanList": { "type": "list", "member": { - "target": "com.amazonaws.inspector2#CoverageDateFilter" + "target": "com.amazonaws.inspector2#CisScan" + }, + "traits": { + "smithy.api#length": { + "max": 50 + } + } + }, + "com.amazonaws.inspector2#CisScanName": { + "type": "string", + "traits": { + "smithy.api#length": { + "min": 1, + "max": 128 + } + } + }, + "com.amazonaws.inspector2#CisScanNameFilterList": { + "type": "list", + "member": { + "target": "com.amazonaws.inspector2#CisStringFilter" }, "traits": { "smithy.api#length": { @@ -1979,1557 +2245,1495 @@ } } }, - "com.amazonaws.inspector2#CoverageFilterCriteria": { + "com.amazonaws.inspector2#CisScanResultDetails": { "type": "structure", "members": { - "scanStatusCode": { - "target": "com.amazonaws.inspector2#CoverageStringFilterList", - "traits": { - "smithy.api#documentation": "The scan status code to filter on. Valid values are: ValidationException, InternalServerException, ResourceNotFoundException, BadRequestException, and ThrottlingException.
The scan status reason to filter on.
" + "smithy.api#documentation": "The CIS scan result details' scan ARN.
", + "smithy.api#required": {} } }, "accountId": { - "target": "com.amazonaws.inspector2#CoverageStringFilterList", + "target": "com.amazonaws.inspector2#AccountId", "traits": { - "smithy.api#documentation": "An array of Amazon Web Services account IDs to return coverage statistics for.
" + "smithy.api#documentation": "The CIS scan result details' account ID.
" } }, - "resourceId": { - "target": "com.amazonaws.inspector2#CoverageStringFilterList", + "targetResourceId": { + "target": "com.amazonaws.inspector2#ResourceId", "traits": { - "smithy.api#documentation": "An array of Amazon Web Services resource IDs to return coverage statistics for.
" + "smithy.api#documentation": "The CIS scan result details' target resource ID.
" } }, - "resourceType": { - "target": "com.amazonaws.inspector2#CoverageStringFilterList", + "platform": { + "target": "smithy.api#String", "traits": { - "smithy.api#documentation": "An array of Amazon Web Services resource types to return coverage statistics for. The values can be AWS_EC2_INSTANCE, AWS_LAMBDA_FUNCTION or AWS_ECR_REPOSITORY.
The CIS scan result details' platform.
" } }, - "scanType": { - "target": "com.amazonaws.inspector2#CoverageStringFilterList", + "status": { + "target": "com.amazonaws.inspector2#CisFindingStatus", "traits": { - "smithy.api#documentation": "An array of Amazon Inspector scan types to return coverage statistics for.
" + "smithy.api#documentation": "The CIS scan result details' status.
" } }, - "ecrRepositoryName": { - "target": "com.amazonaws.inspector2#CoverageStringFilterList", + "statusReason": { + "target": "smithy.api#String", "traits": { - "smithy.api#documentation": "The Amazon ECR repository name to filter on.
" + "smithy.api#documentation": "The CIS scan result details' status reason.
" } }, - "ecrImageTags": { - "target": "com.amazonaws.inspector2#CoverageStringFilterList", + "checkId": { + "target": "smithy.api#String", "traits": { - "smithy.api#documentation": "The Amazon ECR image tags to filter on.
" + "smithy.api#documentation": "The CIS scan result details' check ID.
" } }, - "ec2InstanceTags": { - "target": "com.amazonaws.inspector2#CoverageMapFilterList", + "title": { + "target": "smithy.api#String", "traits": { - "smithy.api#documentation": "The Amazon EC2 instance tags to filter on.
" + "smithy.api#documentation": "The CIS scan result details' title.
" } }, - "lambdaFunctionName": { - "target": "com.amazonaws.inspector2#CoverageStringFilterList", + "checkDescription": { + "target": "smithy.api#String", "traits": { - "smithy.api#documentation": "Returns coverage statistics for AWS Lambda functions filtered by function names.
" + "smithy.api#documentation": "The account ID that's associated with the CIS scan result details.
" } }, - "lambdaFunctionTags": { - "target": "com.amazonaws.inspector2#CoverageMapFilterList", + "remediation": { + "target": "smithy.api#String", "traits": { - "smithy.api#documentation": "Returns coverage statistics for AWS Lambda functions filtered by tag.
" + "smithy.api#documentation": "The CIS scan result details' remediation.
" } }, - "lambdaFunctionRuntime": { - "target": "com.amazonaws.inspector2#CoverageStringFilterList", + "level": { + "target": "com.amazonaws.inspector2#CisSecurityLevel", "traits": { - "smithy.api#documentation": "Returns coverage statistics for AWS Lambda functions filtered by runtime.
" + "smithy.api#documentation": "The CIS scan result details' level.
" } }, - "lastScannedAt": { - "target": "com.amazonaws.inspector2#CoverageDateFilterList", + "findingArn": { + "target": "com.amazonaws.inspector2#CisFindingArn", "traits": { - "smithy.api#documentation": "Filters Amazon Web Services resources based on whether Amazon Inspector has checked them for vulnerabilities within the specified time range.
" + "smithy.api#documentation": "The CIS scan result details' finding ARN.
" } } }, "traits": { - "smithy.api#documentation": "A structure that identifies filter criteria for GetCoverageStatistics.
The CIS scan result details.
" } }, - "com.amazonaws.inspector2#CoverageMapFilter": { + "com.amazonaws.inspector2#CisScanResultDetailsFilterCriteria": { "type": "structure", "members": { - "comparison": { - "target": "com.amazonaws.inspector2#CoverageMapComparison", + "findingStatusFilters": { + "target": "com.amazonaws.inspector2#CisFindingStatusFilterList", "traits": { - "smithy.api#documentation": "The operator to compare coverage on.
", - "smithy.api#required": {} + "smithy.api#documentation": "The criteria's finding status filters.
" } }, - "key": { - "target": "com.amazonaws.inspector2#NonEmptyString", + "checkIdFilters": { + "target": "com.amazonaws.inspector2#CheckIdFilterList", "traits": { - "smithy.api#documentation": "The tag key associated with the coverage map filter.
", - "smithy.api#required": {} + "smithy.api#documentation": "The criteria's check ID filters.
" } }, - "value": { - "target": "com.amazonaws.inspector2#NonEmptyString", + "titleFilters": { + "target": "com.amazonaws.inspector2#TitleFilterList", "traits": { - "smithy.api#documentation": "The tag value associated with the coverage map filter.
" + "smithy.api#documentation": "The criteria's title filters.
" + } + }, + "securityLevelFilters": { + "target": "com.amazonaws.inspector2#CisSecurityLevelFilterList", + "traits": { + "smithy.api#documentation": "\n The criteria's security level filters. . \n Security level refers to the Benchmark levels that CIS assigns to a profile.\n
" + } + }, + "findingArnFilters": { + "target": "com.amazonaws.inspector2#CisFindingArnFilterList", + "traits": { + "smithy.api#documentation": "The criteria's finding ARN filters.
" } } }, "traits": { - "smithy.api#documentation": "Contains details of a coverage map filter.
" + "smithy.api#documentation": "The CIS scan result details filter criteria.
" } }, - "com.amazonaws.inspector2#CoverageMapFilterList": { + "com.amazonaws.inspector2#CisScanResultDetailsList": { "type": "list", "member": { - "target": "com.amazonaws.inspector2#CoverageMapFilter" + "target": "com.amazonaws.inspector2#CisScanResultDetails" }, "traits": { "smithy.api#length": { "min": 1, - "max": 10 + "max": 1000 } } }, - "com.amazonaws.inspector2#CoverageResourceType": { - "type": "string", - "traits": { - "smithy.api#enum": [ - { - "value": "AWS_EC2_INSTANCE", - "name": "AWS_EC2_INSTANCE" - }, - { - "value": "AWS_ECR_CONTAINER_IMAGE", - "name": "AWS_ECR_CONTAINER_IMAGE" - }, - { - "value": "AWS_ECR_REPOSITORY", - "name": "AWS_ECR_REPOSITORY" - }, - { - "value": "AWS_LAMBDA_FUNCTION", - "name": "AWS_LAMBDA_FUNCTION" + "com.amazonaws.inspector2#CisScanResultDetailsSortBy": { + "type": "enum", + "members": { + "CHECK_ID": { + "target": "smithy.api#Unit", + "traits": { + "smithy.api#enumValue": "CHECK_ID" } - ] - } - }, - "com.amazonaws.inspector2#CoverageStringComparison": { - "type": "string", - "traits": { - "smithy.api#enum": [ - { - "value": "EQUALS", - "name": "EQUALS" - }, - { - "value": "NOT_EQUALS", - "name": "NOT_EQUALS" + }, + "STATUS": { + "target": "smithy.api#Unit", + "traits": { + "smithy.api#enumValue": "STATUS" } - ] + } } }, - "com.amazonaws.inspector2#CoverageStringFilter": { + "com.amazonaws.inspector2#CisScanResultsAggregatedByChecksFilterCriteria": { "type": "structure", "members": { - "comparison": { - "target": "com.amazonaws.inspector2#CoverageStringComparison", + "accountIdFilters": { + "target": "com.amazonaws.inspector2#OneAccountIdFilterList", "traits": { - "smithy.api#documentation": "The operator to compare strings on.
", - "smithy.api#required": {} + "smithy.api#documentation": "The criteria's account ID filters.
" } }, - "value": { - "target": "com.amazonaws.inspector2#CoverageStringInput", + "checkIdFilters": { + "target": "com.amazonaws.inspector2#CheckIdFilterList", "traits": { - "smithy.api#documentation": "The value to compare strings on.
", - "smithy.api#required": {} + "smithy.api#documentation": "The criteria's check ID filters.
" + } + }, + "titleFilters": { + "target": "com.amazonaws.inspector2#TitleFilterList", + "traits": { + "smithy.api#documentation": "The criteria's title filters.
" + } + }, + "platformFilters": { + "target": "com.amazonaws.inspector2#PlatformFilterList", + "traits": { + "smithy.api#documentation": "The criteria's platform filters.
" + } + }, + "failedResourcesFilters": { + "target": "com.amazonaws.inspector2#CisNumberFilterList", + "traits": { + "smithy.api#documentation": "The criteria's failed resources filters.
" + } + }, + "securityLevelFilters": { + "target": "com.amazonaws.inspector2#CisSecurityLevelFilterList", + "traits": { + "smithy.api#documentation": "The criteria's security level filters.
" } } }, "traits": { - "smithy.api#documentation": "Contains details of a coverage string filter.
" - } - }, - "com.amazonaws.inspector2#CoverageStringFilterList": { - "type": "list", - "member": { - "target": "com.amazonaws.inspector2#CoverageStringFilter" - }, - "traits": { - "smithy.api#length": { - "min": 1, - "max": 10 - } + "smithy.api#documentation": "The scan results aggregated by checks filter criteria.
" } }, - "com.amazonaws.inspector2#CoverageStringInput": { - "type": "string", - "traits": { - "smithy.api#length": { - "min": 1, - "max": 1024 + "com.amazonaws.inspector2#CisScanResultsAggregatedByChecksSortBy": { + "type": "enum", + "members": { + "CHECK_ID": { + "target": "smithy.api#Unit", + "traits": { + "smithy.api#enumValue": "CHECK_ID" + } + }, + "TITLE": { + "target": "smithy.api#Unit", + "traits": { + "smithy.api#enumValue": "TITLE" + } + }, + "PLATFORM": { + "target": "smithy.api#Unit", + "traits": { + "smithy.api#enumValue": "PLATFORM" + } + }, + "FAILED_COUNTS": { + "target": "smithy.api#Unit", + "traits": { + "smithy.api#enumValue": "FAILED_COUNTS" + } + }, + "SECURITY_LEVEL": { + "target": "smithy.api#Unit", + "traits": { + "smithy.api#enumValue": "SECURITY_LEVEL" + } } } }, - "com.amazonaws.inspector2#CoveredResource": { + "com.amazonaws.inspector2#CisScanResultsAggregatedByTargetResourceFilterCriteria": { "type": "structure", "members": { - "resourceType": { - "target": "com.amazonaws.inspector2#CoverageResourceType", + "accountIdFilters": { + "target": "com.amazonaws.inspector2#AccountIdFilterList", "traits": { - "smithy.api#documentation": "The type of the covered resource.
", - "smithy.api#required": {} + "smithy.api#documentation": "The criteria's account ID filters.
" } }, - "resourceId": { - "target": "com.amazonaws.inspector2#ResourceId", + "statusFilters": { + "target": "com.amazonaws.inspector2#CisResultStatusFilterList", "traits": { - "smithy.api#documentation": "The ID of the covered resource.
", - "smithy.api#required": {} + "smithy.api#documentation": "The criteria's status filter.
" } }, - "accountId": { - "target": "com.amazonaws.inspector2#AccountId", + "checkIdFilters": { + "target": "com.amazonaws.inspector2#CheckIdFilterList", "traits": { - "smithy.api#documentation": "The Amazon Web Services account ID of the covered resource.
", - "smithy.api#required": {} + "smithy.api#documentation": "The criteria's check ID filters.
" } }, - "scanType": { - "target": "com.amazonaws.inspector2#ScanType", + "targetResourceIdFilters": { + "target": "com.amazonaws.inspector2#ResourceIdFilterList", "traits": { - "smithy.api#documentation": "The Amazon Inspector scan type covering the resource.
", - "smithy.api#required": {} + "smithy.api#documentation": "The criteria's target resource ID filters.
" } }, - "scanStatus": { - "target": "com.amazonaws.inspector2#ScanStatus", + "targetResourceTagFilters": { + "target": "com.amazonaws.inspector2#ResourceTagFilterList", "traits": { - "smithy.api#documentation": "The status of the scan covering the resource.
" + "smithy.api#documentation": "The criteria's target resource tag filters.
" } }, - "resourceMetadata": { - "target": "com.amazonaws.inspector2#ResourceScanMetadata", + "platformFilters": { + "target": "com.amazonaws.inspector2#PlatformFilterList", "traits": { - "smithy.api#documentation": "An object that contains details about the metadata.
" + "smithy.api#documentation": "The criteria's platform filters.
" } }, - "lastScannedAt": { - "target": "com.amazonaws.inspector2#DateTimeTimestamp", + "targetStatusFilters": { + "target": "com.amazonaws.inspector2#TargetStatusFilterList", "traits": { - "smithy.api#documentation": "The date and time the resource was last checked for vulnerabilities.
" + "smithy.api#documentation": "The criteria's target status filters.
" + } + }, + "targetStatusReasonFilters": { + "target": "com.amazonaws.inspector2#TargetStatusReasonFilterList", + "traits": { + "smithy.api#documentation": "The criteria's target status reason filters.
" + } + }, + "failedChecksFilters": { + "target": "com.amazonaws.inspector2#CisNumberFilterList", + "traits": { + "smithy.api#documentation": "The criteria's failed checks filters.
" } } }, "traits": { - "smithy.api#documentation": "An object that contains details about a resource covered by Amazon Inspector.
" - } - }, - "com.amazonaws.inspector2#CoveredResources": { - "type": "list", - "member": { - "target": "com.amazonaws.inspector2#CoveredResource" + "smithy.api#documentation": "The scan results aggregated by target resource filter criteria.
" } }, - "com.amazonaws.inspector2#CreateFilter": { - "type": "operation", - "input": { - "target": "com.amazonaws.inspector2#CreateFilterRequest" - }, - "output": { - "target": "com.amazonaws.inspector2#CreateFilterResponse" - }, - "errors": [ - { - "target": "com.amazonaws.inspector2#AccessDeniedException" + "com.amazonaws.inspector2#CisScanResultsAggregatedByTargetResourceSortBy": { + "type": "enum", + "members": { + "RESOURCE_ID": { + "target": "smithy.api#Unit", + "traits": { + "smithy.api#enumValue": "RESOURCE_ID" + } }, - { - "target": "com.amazonaws.inspector2#BadRequestException" + "FAILED_COUNTS": { + "target": "smithy.api#Unit", + "traits": { + "smithy.api#enumValue": "FAILED_COUNTS" + } }, - { - "target": "com.amazonaws.inspector2#InternalServerException" + "ACCOUNT_ID": { + "target": "smithy.api#Unit", + "traits": { + "smithy.api#enumValue": "ACCOUNT_ID" + } }, - { - "target": "com.amazonaws.inspector2#ServiceQuotaExceededException" + "PLATFORM": { + "target": "smithy.api#Unit", + "traits": { + "smithy.api#enumValue": "PLATFORM" + } }, - { - "target": "com.amazonaws.inspector2#ThrottlingException" + "TARGET_STATUS": { + "target": "smithy.api#Unit", + "traits": { + "smithy.api#enumValue": "TARGET_STATUS" + } }, - { - "target": "com.amazonaws.inspector2#ValidationException" + "TARGET_STATUS_REASON": { + "target": "smithy.api#Unit", + "traits": { + "smithy.api#enumValue": "TARGET_STATUS_REASON" + } } - ], + } + }, + "com.amazonaws.inspector2#CisScanResultsMaxResults": { + "type": "integer", "traits": { - "smithy.api#documentation": "Creates a filter resource using specified filter criteria. When the filter action is set to SUPPRESS this action creates a suppression rule.
Defines the action that is to be applied to the findings that match the filter.
", - "smithy.api#required": {} - } - }, - "description": { - "target": "com.amazonaws.inspector2#FilterDescription", + "FAILED": { + "target": "smithy.api#Unit", "traits": { - "smithy.api#documentation": "A description of the filter.
" + "smithy.api#enumValue": "FAILED" } }, - "filterCriteria": { - "target": "com.amazonaws.inspector2#FilterCriteria", + "COMPLETED": { + "target": "smithy.api#Unit", "traits": { - "smithy.api#documentation": "Defines the criteria to be used in the filter for querying findings.
", - "smithy.api#required": {} + "smithy.api#enumValue": "COMPLETED" } }, - "name": { - "target": "com.amazonaws.inspector2#FilterName", + "CANCELLED": { + "target": "smithy.api#Unit", "traits": { - "smithy.api#documentation": "The name of the filter. Minimum length of 3. Maximum length of 64. Valid characters\n include alphanumeric characters, dot (.), underscore (_), and dash (-). Spaces are not\n allowed.
", - "smithy.api#required": {} + "smithy.api#enumValue": "CANCELLED" } }, - "tags": { - "target": "com.amazonaws.inspector2#TagMap", + "IN_PROGRESS": { + "target": "smithy.api#Unit", "traits": { - "smithy.api#documentation": "A list of tags for the filter.
" + "smithy.api#enumValue": "IN_PROGRESS" } - }, - "reason": { - "target": "com.amazonaws.inspector2#FilterReason", + } + } + }, + "com.amazonaws.inspector2#CisScanStatusComparison": { + "type": "enum", + "members": { + "EQUALS": { + "target": "smithy.api#Unit", "traits": { - "smithy.api#documentation": "The reason for creating the filter.
" + "smithy.api#enumValue": "EQUALS" } } } }, - "com.amazonaws.inspector2#CreateFilterResponse": { + "com.amazonaws.inspector2#CisScanStatusFilter": { "type": "structure", "members": { - "arn": { - "target": "com.amazonaws.inspector2#FilterArn", + "comparison": { + "target": "com.amazonaws.inspector2#CisScanStatusComparison", "traits": { - "smithy.api#documentation": "The Amazon Resource Number (ARN) of the successfully created filter.
", + "smithy.api#documentation": "The filter comparison value.
", + "smithy.api#required": {} + } + }, + "value": { + "target": "com.amazonaws.inspector2#CisScanStatus", + "traits": { + "smithy.api#documentation": "The filter value.
", "smithy.api#required": {} } } - } - }, - "com.amazonaws.inspector2#CreateFindingsReport": { - "type": "operation", - "input": { - "target": "com.amazonaws.inspector2#CreateFindingsReportRequest" }, - "output": { - "target": "com.amazonaws.inspector2#CreateFindingsReportResponse" + "traits": { + "smithy.api#documentation": "The CIS scan status filter.
" + } + }, + "com.amazonaws.inspector2#CisScanStatusFilterList": { + "type": "list", + "member": { + "target": "com.amazonaws.inspector2#CisScanStatusFilter" }, - "errors": [ - { - "target": "com.amazonaws.inspector2#AccessDeniedException" - }, - { - "target": "com.amazonaws.inspector2#InternalServerException" - }, - { - "target": "com.amazonaws.inspector2#ResourceNotFoundException" - }, - { - "target": "com.amazonaws.inspector2#ThrottlingException" + "traits": { + "smithy.api#length": { + "min": 1, + "max": 10 }, - { - "target": "com.amazonaws.inspector2#ValidationException" - } - ], + "smithy.api#uniqueItems": {} + } + }, + "com.amazonaws.inspector2#CisScheduledByFilterList": { + "type": "list", + "member": { + "target": "com.amazonaws.inspector2#CisStringFilter" + }, "traits": { - "smithy.api#documentation": "Creates a finding report. By default only ACTIVE findings are returned in the report. To see SUPRESSED or CLOSED findings you must specify a value for the findingStatus filter criteria.
The filter criteria to apply to the results of the finding report.
" - } - }, - "reportFormat": { - "target": "com.amazonaws.inspector2#ReportFormat", + "LEVEL_1": { + "target": "smithy.api#Unit", "traits": { - "smithy.api#documentation": "The format to generate the report in.
", - "smithy.api#required": {} + "smithy.api#enumValue": "LEVEL_1" } }, - "s3Destination": { - "target": "com.amazonaws.inspector2#Destination", + "LEVEL_2": { + "target": "smithy.api#Unit", "traits": { - "smithy.api#documentation": "The Amazon S3 export destination for the report.
", - "smithy.api#required": {} + "smithy.api#enumValue": "LEVEL_2" } } } }, - "com.amazonaws.inspector2#CreateFindingsReportResponse": { - "type": "structure", + "com.amazonaws.inspector2#CisSecurityLevelComparison": { + "type": "enum", "members": { - "reportId": { - "target": "com.amazonaws.inspector2#ReportId", + "EQUALS": { + "target": "smithy.api#Unit", "traits": { - "smithy.api#documentation": "The ID of the report.
" + "smithy.api#enumValue": "EQUALS" } } } }, - "com.amazonaws.inspector2#CreateSbomExport": { - "type": "operation", - "input": { - "target": "com.amazonaws.inspector2#CreateSbomExportRequest" - }, - "output": { - "target": "com.amazonaws.inspector2#CreateSbomExportResponse" - }, - "errors": [ - { - "target": "com.amazonaws.inspector2#AccessDeniedException" - }, - { - "target": "com.amazonaws.inspector2#InternalServerException" - }, - { - "target": "com.amazonaws.inspector2#ResourceNotFoundException" - }, - { - "target": "com.amazonaws.inspector2#ThrottlingException" - }, - { - "target": "com.amazonaws.inspector2#ValidationException" - } - ], - "traits": { - "smithy.api#documentation": "Creates a software bill of materials (SBOM) report.
", - "smithy.api#http": { - "code": 200, - "method": "POST", - "uri": "/sbomexport/create" - }, - "smithy.api#idempotent": {} - } - }, - "com.amazonaws.inspector2#CreateSbomExportRequest": { + "com.amazonaws.inspector2#CisSecurityLevelFilter": { "type": "structure", "members": { - "resourceFilterCriteria": { - "target": "com.amazonaws.inspector2#ResourceFilterCriteria", - "traits": { - "smithy.api#documentation": "The resource filter criteria for the software bill of materials (SBOM) report.
" - } - }, - "reportFormat": { - "target": "com.amazonaws.inspector2#SbomReportFormat", + "comparison": { + "target": "com.amazonaws.inspector2#CisSecurityLevelComparison", "traits": { - "smithy.api#documentation": "The output format for the software bill of materials (SBOM) report.
", + "smithy.api#documentation": "The CIS security filter comparison value.
", "smithy.api#required": {} } }, - "s3Destination": { - "target": "com.amazonaws.inspector2#Destination", + "value": { + "target": "com.amazonaws.inspector2#CisSecurityLevel", "traits": { + "smithy.api#documentation": "The CIS security filter value.
", "smithy.api#required": {} } } }, "traits": { - "smithy.api#input": {} + "smithy.api#documentation": "\n The CIS security level filter. \n Security level refers to the Benchmark levels that CIS assigns to a profile.\n
" } }, - "com.amazonaws.inspector2#CreateSbomExportResponse": { - "type": "structure", - "members": { - "reportId": { - "target": "com.amazonaws.inspector2#ReportId", - "traits": { - "smithy.api#documentation": "The report ID for the software bill of materials (SBOM) report.
" - } - } + "com.amazonaws.inspector2#CisSecurityLevelFilterList": { + "type": "list", + "member": { + "target": "com.amazonaws.inspector2#CisSecurityLevelFilter" }, "traits": { - "smithy.api#output": {} - } - }, - "com.amazonaws.inspector2#Currency": { - "type": "string", - "traits": { - "smithy.api#enum": [ - { - "name": "USD", - "value": "USD" - } - ] + "smithy.api#length": { + "min": 1, + "max": 10 + } } }, - "com.amazonaws.inspector2#Cvss2": { + "com.amazonaws.inspector2#CisSessionMessage": { "type": "structure", "members": { - "baseScore": { - "target": "com.amazonaws.inspector2#Cvss2BaseScore", + "ruleId": { + "target": "com.amazonaws.inspector2#RuleId", "traits": { - "smithy.api#default": 0, - "smithy.api#documentation": "The CVSS v2 base score for the vulnerability.
" + "smithy.api#documentation": "The rule ID for the CIS session message.
", + "smithy.api#required": {} } }, - "scoringVector": { - "target": "com.amazonaws.inspector2#Cvss2ScoringVector", + "status": { + "target": "com.amazonaws.inspector2#CisRuleStatus", "traits": { - "smithy.api#documentation": "The scoring vector associated with the CVSS v2 score.
" + "smithy.api#documentation": "The status of the CIS session message.
", + "smithy.api#required": {} + } + }, + "cisRuleDetails": { + "target": "com.amazonaws.inspector2#CisRuleDetails", + "traits": { + "smithy.api#documentation": "The CIS rule details for the CIS session message.
", + "smithy.api#required": {} } } }, "traits": { - "smithy.api#documentation": "The Common Vulnerability Scoring System (CVSS) version 2 details for the vulnerability.
" - } - }, - "com.amazonaws.inspector2#Cvss2BaseScore": { - "type": "double", - "traits": { - "smithy.api#default": 0 + "smithy.api#documentation": "The CIS session message.
" } }, - "com.amazonaws.inspector2#Cvss2ScoringVector": { - "type": "string", + "com.amazonaws.inspector2#CisSessionMessages": { + "type": "list", + "member": { + "target": "com.amazonaws.inspector2#CisSessionMessage" + }, "traits": { "smithy.api#length": { - "min": 0 + "min": 1, + "max": 50 } } }, - "com.amazonaws.inspector2#Cvss3": { - "type": "structure", + "com.amazonaws.inspector2#CisSortOrder": { + "type": "enum", "members": { - "baseScore": { - "target": "com.amazonaws.inspector2#Cvss3BaseScore", + "ASC": { + "target": "smithy.api#Unit", "traits": { - "smithy.api#default": 0, - "smithy.api#documentation": "The CVSS v3 base score for the vulnerability.
" + "smithy.api#enumValue": "ASC" } }, - "scoringVector": { - "target": "com.amazonaws.inspector2#Cvss3ScoringVector", + "DESC": { + "target": "smithy.api#Unit", "traits": { - "smithy.api#documentation": "The scoring vector associated with the CVSS v3 score.
" + "smithy.api#enumValue": "DESC" } } - }, - "traits": { - "smithy.api#documentation": "The Common Vulnerability Scoring System (CVSS) version 3 details for the vulnerability.
" - } - }, - "com.amazonaws.inspector2#Cvss3BaseScore": { - "type": "double", - "traits": { - "smithy.api#default": 0 - } - }, - "com.amazonaws.inspector2#Cvss3ScoringVector": { - "type": "string", - "traits": { - "smithy.api#length": { - "min": 0 - } } }, - "com.amazonaws.inspector2#CvssScore": { - "type": "structure", + "com.amazonaws.inspector2#CisStringComparison": { + "type": "enum", "members": { - "baseScore": { - "target": "smithy.api#Double", - "traits": { - "smithy.api#documentation": "The base CVSS score used for the finding.
", - "smithy.api#required": {} - } - }, - "scoringVector": { - "target": "com.amazonaws.inspector2#NonEmptyString", + "EQUALS": { + "target": "smithy.api#Unit", "traits": { - "smithy.api#documentation": "The vector string of the CVSS score.
", - "smithy.api#required": {} + "smithy.api#enumValue": "EQUALS" } }, - "version": { - "target": "com.amazonaws.inspector2#NonEmptyString", + "PREFIX": { + "target": "smithy.api#Unit", "traits": { - "smithy.api#documentation": "The version of CVSS used for the score.
", - "smithy.api#required": {} + "smithy.api#enumValue": "PREFIX" } }, - "source": { - "target": "com.amazonaws.inspector2#NonEmptyString", + "NOT_EQUALS": { + "target": "smithy.api#Unit", "traits": { - "smithy.api#documentation": "The source of the CVSS score.
", - "smithy.api#required": {} + "smithy.api#enumValue": "NOT_EQUALS" } } - }, - "traits": { - "smithy.api#documentation": "The CVSS score for a finding.
" } }, - "com.amazonaws.inspector2#CvssScoreAdjustment": { + "com.amazonaws.inspector2#CisStringFilter": { "type": "structure", "members": { - "metric": { - "target": "com.amazonaws.inspector2#NonEmptyString", + "comparison": { + "target": "com.amazonaws.inspector2#CisStringComparison", "traits": { - "smithy.api#documentation": "The metric used to adjust the CVSS score.
", + "smithy.api#documentation": "The comparison value of the CIS string filter.
", "smithy.api#required": {} } }, - "reason": { - "target": "com.amazonaws.inspector2#NonEmptyString", + "value": { + "target": "smithy.api#String", "traits": { - "smithy.api#documentation": "The reason the CVSS score has been adjustment.
", + "smithy.api#documentation": "The value of the CIS string filter.
", "smithy.api#required": {} } } }, "traits": { - "smithy.api#documentation": "Details on adjustments Amazon Inspector made to the CVSS score for a finding.
" + "smithy.api#documentation": "The CIS string filter.
" } }, - "com.amazonaws.inspector2#CvssScoreAdjustmentList": { - "type": "list", - "member": { - "target": "com.amazonaws.inspector2#CvssScoreAdjustment" + "com.amazonaws.inspector2#CisTagMap": { + "type": "map", + "key": { + "target": "com.amazonaws.inspector2#MapKey" + }, + "value": { + "target": "com.amazonaws.inspector2#MapValue" } }, - "com.amazonaws.inspector2#CvssScoreDetails": { + "com.amazonaws.inspector2#CisTargetResourceAggregation": { "type": "structure", "members": { - "scoreSource": { - "target": "com.amazonaws.inspector2#NonEmptyString", + "scanArn": { + "target": "com.amazonaws.inspector2#CisScanArn", "traits": { - "smithy.api#documentation": "The source for the CVSS score.
", + "smithy.api#documentation": "The scan ARN for the CIS target resource.
", "smithy.api#required": {} } }, - "cvssSource": { - "target": "com.amazonaws.inspector2#NonEmptyString", + "targetResourceId": { + "target": "com.amazonaws.inspector2#ResourceId", "traits": { - "smithy.api#documentation": "The source of the CVSS data.
" + "smithy.api#documentation": "The ID of the target resource.
" } }, - "version": { - "target": "com.amazonaws.inspector2#NonEmptyString", + "accountId": { + "target": "com.amazonaws.inspector2#AccountId", "traits": { - "smithy.api#documentation": "The CVSS version used in scoring.
", - "smithy.api#required": {} + "smithy.api#documentation": "The account ID for the CIS target resource.
" } }, - "score": { - "target": "smithy.api#Double", + "targetResourceTags": { + "target": "com.amazonaws.inspector2#TargetResourceTags", "traits": { - "smithy.api#documentation": "The CVSS score.
", - "smithy.api#required": {} + "smithy.api#documentation": "The tag for the target resource.
" } }, - "scoringVector": { - "target": "com.amazonaws.inspector2#NonEmptyString", + "statusCounts": { + "target": "com.amazonaws.inspector2#StatusCounts", "traits": { - "smithy.api#documentation": "The vector for the CVSS score.
", - "smithy.api#required": {} + "smithy.api#documentation": "The target resource status counts.
" } }, - "adjustments": { - "target": "com.amazonaws.inspector2#CvssScoreAdjustmentList", + "platform": { + "target": "smithy.api#String", "traits": { - "smithy.api#documentation": "An object that contains details about adjustment Amazon Inspector made to the CVSS score.
" + "smithy.api#documentation": "The platform for the CIS target resource.
" + } + }, + "targetStatus": { + "target": "com.amazonaws.inspector2#CisTargetStatus", + "traits": { + "smithy.api#documentation": "The status of the target resource.
" + } + }, + "targetStatusReason": { + "target": "com.amazonaws.inspector2#CisTargetStatusReason", + "traits": { + "smithy.api#documentation": "The reason for the target resource.
" } } }, "traits": { - "smithy.api#documentation": "Information about the CVSS score.
" + "smithy.api#documentation": "The CIS target resource aggregation.
" } }, - "com.amazonaws.inspector2#CvssScoreList": { + "com.amazonaws.inspector2#CisTargetResourceAggregationList": { "type": "list", "member": { - "target": "com.amazonaws.inspector2#CvssScore" - } - }, - "com.amazonaws.inspector2#Cwe": { - "type": "string", + "target": "com.amazonaws.inspector2#CisTargetResourceAggregation" + }, "traits": { "smithy.api#length": { - "min": 0 + "min": 1, + "max": 1000 } } }, - "com.amazonaws.inspector2#CweList": { - "type": "list", - "member": { - "target": "com.amazonaws.inspector2#NonEmptyString" - }, - "traits": { - "smithy.api#length": { - "min": 1, - "max": 10 + "com.amazonaws.inspector2#CisTargetStatus": { + "type": "enum", + "members": { + "TIMED_OUT": { + "target": "smithy.api#Unit", + "traits": { + "smithy.api#enumValue": "TIMED_OUT" + } + }, + "CANCELLED": { + "target": "smithy.api#Unit", + "traits": { + "smithy.api#enumValue": "CANCELLED" + } + }, + "COMPLETED": { + "target": "smithy.api#Unit", + "traits": { + "smithy.api#enumValue": "COMPLETED" + } } } }, - "com.amazonaws.inspector2#Cwes": { - "type": "list", - "member": { - "target": "com.amazonaws.inspector2#Cwe" - }, - "traits": { - "smithy.api#length": { - "min": 0 + "com.amazonaws.inspector2#CisTargetStatusComparison": { + "type": "enum", + "members": { + "EQUALS": { + "target": "smithy.api#Unit", + "traits": { + "smithy.api#enumValue": "EQUALS" + } } } }, - "com.amazonaws.inspector2#DateFilter": { + "com.amazonaws.inspector2#CisTargetStatusFilter": { "type": "structure", "members": { - "startInclusive": { - "target": "smithy.api#Timestamp", + "comparison": { + "target": "com.amazonaws.inspector2#CisTargetStatusComparison", "traits": { - "smithy.api#documentation": "A timestamp representing the start of the time period filtered on.
" + "smithy.api#documentation": "The comparison value of the CIS target status filter.
", + "smithy.api#required": {} } }, - "endInclusive": { - "target": "smithy.api#Timestamp", + "value": { + "target": "com.amazonaws.inspector2#CisTargetStatus", "traits": { - "smithy.api#documentation": "A timestamp representing the end of the time period filtered on.
" + "smithy.api#documentation": "The value of the CIS target status filter.
", + "smithy.api#required": {} } } }, "traits": { - "smithy.api#documentation": "Contains details on the time range used to filter findings.
" + "smithy.api#documentation": "The CIS target status filter.
" } }, - "com.amazonaws.inspector2#DateFilterList": { - "type": "list", - "member": { - "target": "com.amazonaws.inspector2#DateFilter" - }, - "traits": { - "smithy.api#length": { - "min": 1, - "max": 10 + "com.amazonaws.inspector2#CisTargetStatusReason": { + "type": "enum", + "members": { + "SCAN_IN_PROGRESS": { + "target": "smithy.api#Unit", + "traits": { + "smithy.api#enumValue": "SCAN_IN_PROGRESS" + } + }, + "UNSUPPORTED_OS": { + "target": "smithy.api#Unit", + "traits": { + "smithy.api#enumValue": "UNSUPPORTED_OS" + } + }, + "SSM_UNMANAGED": { + "target": "smithy.api#Unit", + "traits": { + "smithy.api#enumValue": "SSM_UNMANAGED" + } } } }, - "com.amazonaws.inspector2#DateTimeTimestamp": { - "type": "timestamp" - }, - "com.amazonaws.inspector2#DelegatedAdmin": { + "com.amazonaws.inspector2#CisTargetStatusReasonFilter": { "type": "structure", "members": { - "accountId": { - "target": "com.amazonaws.inspector2#AccountId", + "comparison": { + "target": "com.amazonaws.inspector2#CisTargetStatusComparison", "traits": { - "smithy.api#documentation": "The Amazon Web Services account ID of the Amazon Inspector delegated administrator for your organization.
" + "smithy.api#documentation": "The comparison value of the CIS target status reason filter.
", + "smithy.api#required": {} } }, - "relationshipStatus": { - "target": "com.amazonaws.inspector2#RelationshipStatus", + "value": { + "target": "com.amazonaws.inspector2#CisTargetStatusReason", "traits": { - "smithy.api#documentation": "The status of the Amazon Inspector delegated administrator.
" + "smithy.api#documentation": "The value of the CIS target status reason filter.
", + "smithy.api#required": {} } } }, "traits": { - "smithy.api#documentation": "Details of the Amazon Inspector delegated administrator for your organization.
" + "smithy.api#documentation": "The CIS target status reason filter.
" } }, - "com.amazonaws.inspector2#DelegatedAdminAccount": { + "com.amazonaws.inspector2#CisTargets": { "type": "structure", "members": { - "accountId": { - "target": "com.amazonaws.inspector2#AccountId", + "accountIds": { + "target": "com.amazonaws.inspector2#CisAccountIdList", "traits": { - "smithy.api#documentation": "The Amazon Web Services account ID of the Amazon Inspector delegated administrator for your organization.
" + "smithy.api#documentation": "The CIS target account ids.
" } }, - "status": { - "target": "com.amazonaws.inspector2#DelegatedAdminStatus", + "targetResourceTags": { + "target": "com.amazonaws.inspector2#TargetResourceTags", "traits": { - "smithy.api#documentation": "The status of the Amazon Inspector delegated administrator.
" + "smithy.api#documentation": "The CIS target resource tags.
" } } }, "traits": { - "smithy.api#documentation": "Details of the Amazon Inspector delegated administrator for your organization.
" + "smithy.api#documentation": "The CIS targets.
" } }, - "com.amazonaws.inspector2#DelegatedAdminAccountList": { - "type": "list", - "member": { - "target": "com.amazonaws.inspector2#DelegatedAdminAccount" - }, + "com.amazonaws.inspector2#CisaAction": { + "type": "string", "traits": { "smithy.api#length": { - "min": 0, - "max": 5 + "min": 0 } } }, - "com.amazonaws.inspector2#DelegatedAdminStatus": { - "type": "string", - "traits": { - "smithy.api#enum": [ - { - "value": "ENABLED", - "name": "ENABLED" - }, - { - "value": "DISABLE_IN_PROGRESS", - "name": "DISABLE_IN_PROGRESS" + "com.amazonaws.inspector2#CisaData": { + "type": "structure", + "members": { + "dateAdded": { + "target": "com.amazonaws.inspector2#CisaDateAdded", + "traits": { + "smithy.api#documentation": "The date and time CISA added this vulnerability to their catalogue.
" } - ] - } - }, - "com.amazonaws.inspector2#DeleteFilter": { - "type": "operation", - "input": { - "target": "com.amazonaws.inspector2#DeleteFilterRequest" - }, - "output": { - "target": "com.amazonaws.inspector2#DeleteFilterResponse" - }, - "errors": [ - { - "target": "com.amazonaws.inspector2#AccessDeniedException" - }, - { - "target": "com.amazonaws.inspector2#InternalServerException" - }, - { - "target": "com.amazonaws.inspector2#ResourceNotFoundException" }, - { - "target": "com.amazonaws.inspector2#ThrottlingException" + "dateDue": { + "target": "com.amazonaws.inspector2#CisaDateDue", + "traits": { + "smithy.api#documentation": "The date and time CISA expects a fix to have been provided vulnerability.
" + } }, - { - "target": "com.amazonaws.inspector2#ValidationException" + "action": { + "target": "com.amazonaws.inspector2#CisaAction", + "traits": { + "smithy.api#documentation": "The remediation action recommended by CISA for this vulnerability.
" + } } - ], + }, "traits": { - "smithy.api#documentation": "Deletes a filter resource.
", - "smithy.api#http": { - "code": 200, - "method": "POST", - "uri": "/filters/delete" + "smithy.api#documentation": "The Cybersecurity and Infrastructure Security Agency (CISA) details for a specific vulnerability.
" + } + }, + "com.amazonaws.inspector2#CisaDateAdded": { + "type": "timestamp" + }, + "com.amazonaws.inspector2#CisaDateDue": { + "type": "timestamp" + }, + "com.amazonaws.inspector2#ClientToken": { + "type": "string", + "traits": { + "smithy.api#length": { + "min": 1, + "max": 64 } } }, - "com.amazonaws.inspector2#DeleteFilterRequest": { + "com.amazonaws.inspector2#CodeFilePath": { "type": "structure", "members": { - "arn": { - "target": "com.amazonaws.inspector2#FilterArn", + "fileName": { + "target": "com.amazonaws.inspector2#NonEmptyString", "traits": { - "smithy.api#documentation": "The Amazon Resource Number (ARN) of the filter to be deleted.
", + "smithy.api#documentation": "The name of the file the code vulnerability was found in.
", + "smithy.api#required": {} + } + }, + "filePath": { + "target": "com.amazonaws.inspector2#NonEmptyString", + "traits": { + "smithy.api#documentation": "The file path to the code that a vulnerability was found in.
", + "smithy.api#required": {} + } + }, + "startLine": { + "target": "smithy.api#Integer", + "traits": { + "smithy.api#default": null, + "smithy.api#documentation": "The line number of the first line of code that a vulnerability was found in.
", + "smithy.api#required": {} + } + }, + "endLine": { + "target": "smithy.api#Integer", + "traits": { + "smithy.api#default": null, + "smithy.api#documentation": "The line number of the last line of code that a vulnerability was found in.
", "smithy.api#required": {} } } + }, + "traits": { + "smithy.api#documentation": "Contains information on where a code vulnerability is located in your Lambda function.
" } }, - "com.amazonaws.inspector2#DeleteFilterResponse": { + "com.amazonaws.inspector2#CodeLine": { "type": "structure", "members": { - "arn": { - "target": "com.amazonaws.inspector2#FilterArn", + "content": { + "target": "smithy.api#String", "traits": { - "smithy.api#documentation": "The Amazon Resource Number (ARN) of the filter that has been deleted.
", + "smithy.api#documentation": "The content of a line of code
", + "smithy.api#length": { + "min": 0, + "max": 240 + }, + "smithy.api#required": {} + } + }, + "lineNumber": { + "target": "smithy.api#Integer", + "traits": { + "smithy.api#documentation": "The line number that a section of code is located at.
", "smithy.api#required": {} } } + }, + "traits": { + "smithy.api#documentation": "Contains information on the lines of code associated with a code snippet.
" } }, - "com.amazonaws.inspector2#DescribeOrganizationConfiguration": { - "type": "operation", - "input": { - "target": "com.amazonaws.inspector2#DescribeOrganizationConfigurationRequest" + "com.amazonaws.inspector2#CodeLineList": { + "type": "list", + "member": { + "target": "com.amazonaws.inspector2#CodeLine" }, - "output": { - "target": "com.amazonaws.inspector2#DescribeOrganizationConfigurationResponse" + "traits": { + "smithy.api#length": { + "min": 1, + "max": 20 + } + } + }, + "com.amazonaws.inspector2#CodeSnippetError": { + "type": "structure", + "members": { + "findingArn": { + "target": "com.amazonaws.inspector2#FindingArn", + "traits": { + "smithy.api#documentation": "The ARN of the finding that a code snippet couldn't be retrieved for.
", + "smithy.api#required": {} + } + }, + "errorCode": { + "target": "com.amazonaws.inspector2#CodeSnippetErrorCode", + "traits": { + "smithy.api#documentation": "The error code for the error that prevented a code snippet from being retrieved.
", + "smithy.api#required": {} + } + }, + "errorMessage": { + "target": "com.amazonaws.inspector2#NonEmptyString", + "traits": { + "smithy.api#documentation": "The error message received when Amazon Inspector failed to retrieve a code snippet.
", + "smithy.api#required": {} + } + } }, - "errors": [ - { - "target": "com.amazonaws.inspector2#AccessDeniedException" + "traits": { + "smithy.api#documentation": "Contains information about any errors encountered while trying to retrieve a code snippet.
" + } + }, + "com.amazonaws.inspector2#CodeSnippetErrorCode": { + "type": "string", + "traits": { + "smithy.api#enum": [ + { + "value": "INTERNAL_ERROR", + "name": "INTERNAL_ERROR" + }, + { + "value": "ACCESS_DENIED", + "name": "ACCESS_DENIED" + }, + { + "value": "CODE_SNIPPET_NOT_FOUND", + "name": "CODE_SNIPPET_NOT_FOUND" + }, + { + "value": "INVALID_INPUT", + "name": "INVALID_INPUT" + } + ] + } + }, + "com.amazonaws.inspector2#CodeSnippetErrorList": { + "type": "list", + "member": { + "target": "com.amazonaws.inspector2#CodeSnippetError" + } + }, + "com.amazonaws.inspector2#CodeSnippetResult": { + "type": "structure", + "members": { + "findingArn": { + "target": "com.amazonaws.inspector2#FindingArn", + "traits": { + "smithy.api#documentation": "The ARN of a finding that the code snippet is associated with.
" + } }, - { - "target": "com.amazonaws.inspector2#InternalServerException" + "startLine": { + "target": "smithy.api#Integer", + "traits": { + "smithy.api#documentation": "The line number of the first line of a code snippet.
" + } }, - { - "target": "com.amazonaws.inspector2#ThrottlingException" + "endLine": { + "target": "smithy.api#Integer", + "traits": { + "smithy.api#documentation": "The line number of the last line of a code snippet.
" + } }, - { - "target": "com.amazonaws.inspector2#ValidationException" + "codeSnippet": { + "target": "com.amazonaws.inspector2#CodeLineList", + "traits": { + "smithy.api#documentation": "Contains information on the retrieved code snippet.
" + } + }, + "suggestedFixes": { + "target": "com.amazonaws.inspector2#SuggestedFixes", + "traits": { + "smithy.api#documentation": "Details of a suggested code fix.
" + } } - ], + }, "traits": { - "smithy.api#documentation": "Describe Amazon Inspector configuration settings for an Amazon Web Services organization.
", - "smithy.api#http": { - "code": 200, - "method": "POST", - "uri": "/organizationconfiguration/describe" - } + "smithy.api#documentation": "Contains information on a code snippet retrieved by Amazon Inspector from a code vulnerability finding.
" } }, - "com.amazonaws.inspector2#DescribeOrganizationConfigurationRequest": { + "com.amazonaws.inspector2#CodeSnippetResultList": { + "type": "list", + "member": { + "target": "com.amazonaws.inspector2#CodeSnippetResult" + } + }, + "com.amazonaws.inspector2#CodeVulnerabilityDetails": { "type": "structure", - "members": {} + "members": { + "filePath": { + "target": "com.amazonaws.inspector2#CodeFilePath", + "traits": { + "smithy.api#documentation": "Contains information on where the code vulnerability is located in your code.
", + "smithy.api#required": {} + } + }, + "detectorTags": { + "target": "com.amazonaws.inspector2#DetectorTagList", + "traits": { + "smithy.api#documentation": "The detector tag associated with the vulnerability. Detector tags group related vulnerabilities by common themes or tactics. For a list of available tags by programming language, see Java tags, or Python tags.
" + } + }, + "referenceUrls": { + "target": "com.amazonaws.inspector2#ReferenceUrls", + "traits": { + "smithy.api#documentation": "A URL containing supporting documentation about the code vulnerability detected.
" + } + }, + "ruleId": { + "target": "com.amazonaws.inspector2#NonEmptyString", + "traits": { + "smithy.api#documentation": "The identifier for a rule that was used to detect the code vulnerability.
" + } + }, + "sourceLambdaLayerArn": { + "target": "com.amazonaws.inspector2#LambdaLayerArn", + "traits": { + "smithy.api#documentation": "The Amazon Resource Name (ARN) of the Lambda layer that the code vulnerability was detected in.
" + } + }, + "detectorId": { + "target": "com.amazonaws.inspector2#NonEmptyString", + "traits": { + "smithy.api#documentation": "The ID for the Amazon CodeGuru detector associated with the finding. For more information on detectors see Amazon CodeGuru\n Detector Library.
", + "smithy.api#required": {} + } + }, + "detectorName": { + "target": "com.amazonaws.inspector2#NonEmptyString", + "traits": { + "smithy.api#documentation": "The name of the detector used to identify the code vulnerability. For more information on detectors see CodeGuru Detector Library.
", + "smithy.api#required": {} + } + }, + "cwes": { + "target": "com.amazonaws.inspector2#CweList", + "traits": { + "smithy.api#documentation": "The Common Weakness Enumeration (CWE) item associated with the detected vulnerability.
", + "smithy.api#required": {} + } + } + }, + "traits": { + "smithy.api#documentation": "Contains information on the code vulnerability identified in your Lambda function.
" + } }, - "com.amazonaws.inspector2#DescribeOrganizationConfigurationResponse": { + "com.amazonaws.inspector2#Component": { + "type": "string" + }, + "com.amazonaws.inspector2#ComponentType": { + "type": "string" + }, + "com.amazonaws.inspector2#ComputePlatform": { "type": "structure", "members": { - "autoEnable": { - "target": "com.amazonaws.inspector2#AutoEnable", + "vendor": { + "target": "com.amazonaws.inspector2#Vendor", "traits": { - "smithy.api#documentation": "The scan types are automatically enabled for new members of your organization.
" + "smithy.api#documentation": "The compute platform vendor.
" } }, - "maxAccountLimitReached": { - "target": "smithy.api#Boolean", + "product": { + "target": "com.amazonaws.inspector2#Product", "traits": { - "smithy.api#documentation": "Represents whether your organization has reached the maximum Amazon Web Services account limit for Amazon Inspector.
" + "smithy.api#documentation": "The compute platform product.
" + } + }, + "version": { + "target": "com.amazonaws.inspector2#PlatformVersion", + "traits": { + "smithy.api#documentation": "The compute platform version.
" } } + }, + "traits": { + "smithy.api#documentation": "A compute platform.
" } }, - "com.amazonaws.inspector2#Destination": { + "com.amazonaws.inspector2#ConflictException": { "type": "structure", "members": { - "bucketName": { + "message": { "target": "smithy.api#String", "traits": { - "smithy.api#documentation": "The name of the Amazon S3 bucket to export findings to.
", "smithy.api#required": {} } }, - "keyPrefix": { + "resourceId": { "target": "smithy.api#String", "traits": { - "smithy.api#documentation": "The prefix that the findings will be written under.
" + "smithy.api#documentation": "The ID of the conflicting resource.
", + "smithy.api#required": {} } }, - "kmsKeyArn": { + "resourceType": { "target": "smithy.api#String", "traits": { - "smithy.api#documentation": "The ARN of the KMS key used to encrypt data when exporting findings.
", + "smithy.api#documentation": "The type of the conflicting resource.
", "smithy.api#required": {} } } }, "traits": { - "smithy.api#documentation": "Contains details of the Amazon S3 bucket and KMS key used to export findings.
" + "smithy.api#documentation": "A conflict occurred.
", + "smithy.api#error": "client", + "smithy.api#httpError": 409 } }, - "com.amazonaws.inspector2#DetectionPlatforms": { - "type": "list", - "member": { - "target": "com.amazonaws.inspector2#NonEmptyString" + "com.amazonaws.inspector2#Counts": { + "type": "structure", + "members": { + "count": { + "target": "com.amazonaws.inspector2#AggCounts", + "traits": { + "smithy.api#default": 0, + "smithy.api#documentation": "The number of resources.
" + } + }, + "groupKey": { + "target": "com.amazonaws.inspector2#GroupKey", + "traits": { + "smithy.api#documentation": "The key associated with this group
" + } + } }, "traits": { - "smithy.api#length": { - "min": 0, - "max": 100 - } + "smithy.api#documentation": "a structure that contains information on the count of resources within a group.
" } }, - "com.amazonaws.inspector2#DetectorTagList": { + "com.amazonaws.inspector2#CountsList": { "type": "list", "member": { - "target": "com.amazonaws.inspector2#NonEmptyString" + "target": "com.amazonaws.inspector2#Counts" }, "traits": { "smithy.api#length": { "min": 1, - "max": 10 + "max": 5 } } }, - "com.amazonaws.inspector2#Disable": { - "type": "operation", - "input": { - "target": "com.amazonaws.inspector2#DisableRequest" - }, - "output": { - "target": "com.amazonaws.inspector2#DisableResponse" - }, - "errors": [ - { - "target": "com.amazonaws.inspector2#AccessDeniedException" - }, - { - "target": "com.amazonaws.inspector2#InternalServerException" - }, - { - "target": "com.amazonaws.inspector2#ResourceNotFoundException" - }, - { - "target": "com.amazonaws.inspector2#ThrottlingException" - }, - { - "target": "com.amazonaws.inspector2#ValidationException" - } - ], - "traits": { - "smithy.api#documentation": "Disables Amazon Inspector scans for one or more Amazon Web Services accounts. Disabling all scan types in an account\n disables the Amazon Inspector service.
", - "smithy.api#http": { - "code": 200, - "method": "POST", - "uri": "/disable" - } - } - }, - "com.amazonaws.inspector2#DisableDelegatedAdminAccount": { - "type": "operation", - "input": { - "target": "com.amazonaws.inspector2#DisableDelegatedAdminAccountRequest" - }, - "output": { - "target": "com.amazonaws.inspector2#DisableDelegatedAdminAccountResponse" - }, - "errors": [ - { - "target": "com.amazonaws.inspector2#AccessDeniedException" - }, - { - "target": "com.amazonaws.inspector2#ConflictException" - }, - { - "target": "com.amazonaws.inspector2#InternalServerException" - }, - { - "target": "com.amazonaws.inspector2#ResourceNotFoundException" - }, - { - "target": "com.amazonaws.inspector2#ThrottlingException" - }, - { - "target": "com.amazonaws.inspector2#ValidationException" - } - ], - "traits": { - "smithy.api#documentation": "Disables the Amazon Inspector delegated administrator for your organization.
", - "smithy.api#http": { - "code": 200, - "method": "POST", - "uri": "/delegatedadminaccounts/disable" - } - } - }, - "com.amazonaws.inspector2#DisableDelegatedAdminAccountRequest": { - "type": "structure", - "members": { - "delegatedAdminAccountId": { - "target": "com.amazonaws.inspector2#AccountId", - "traits": { - "smithy.api#documentation": "The Amazon Web Services account ID of the current Amazon Inspector delegated administrator.
", - "smithy.api#required": {} - } - } - } - }, - "com.amazonaws.inspector2#DisableDelegatedAdminAccountResponse": { - "type": "structure", - "members": { - "delegatedAdminAccountId": { - "target": "com.amazonaws.inspector2#AccountId", - "traits": { - "smithy.api#documentation": "The Amazon Web Services account ID of the successfully disabled delegated administrator.
", - "smithy.api#required": {} - } - } - } - }, - "com.amazonaws.inspector2#DisableRequest": { + "com.amazonaws.inspector2#CoverageDateFilter": { "type": "structure", "members": { - "accountIds": { - "target": "com.amazonaws.inspector2#AccountIdSet", + "startInclusive": { + "target": "com.amazonaws.inspector2#DateTimeTimestamp", "traits": { - "smithy.api#documentation": "An array of account IDs you want to disable Amazon Inspector scans for.
" + "smithy.api#documentation": "A timestamp representing the start of the time period to filter results by.
" } }, - "resourceTypes": { - "target": "com.amazonaws.inspector2#DisableResourceTypeList", + "endInclusive": { + "target": "com.amazonaws.inspector2#DateTimeTimestamp", "traits": { - "smithy.api#documentation": "The resource scan types you want to disable.
" + "smithy.api#documentation": "A timestamp representing the end of the time period to filter results by.
" } } + }, + "traits": { + "smithy.api#documentation": "Contains details of a coverage date filter.
" } }, - "com.amazonaws.inspector2#DisableResourceTypeList": { + "com.amazonaws.inspector2#CoverageDateFilterList": { "type": "list", "member": { - "target": "com.amazonaws.inspector2#ResourceScanType" + "target": "com.amazonaws.inspector2#CoverageDateFilter" }, "traits": { "smithy.api#length": { - "min": 0, - "max": 3 + "min": 1, + "max": 10 } } }, - "com.amazonaws.inspector2#DisableResponse": { + "com.amazonaws.inspector2#CoverageFilterCriteria": { "type": "structure", "members": { - "accounts": { - "target": "com.amazonaws.inspector2#AccountList", + "scanStatusCode": { + "target": "com.amazonaws.inspector2#CoverageStringFilterList", "traits": { - "smithy.api#documentation": "Information on the accounts that have had Amazon Inspector scans successfully disabled. Details are\n provided for each account.
", - "smithy.api#required": {} + "smithy.api#documentation": "The scan status code to filter on. Valid values are: ValidationException, InternalServerException, ResourceNotFoundException, BadRequestException, and ThrottlingException.
Information on any accounts for which Amazon Inspector scans could not be disabled. Details are\n provided for each account.
" + "smithy.api#documentation": "The scan status reason to filter on.
" } - } - } - }, - "com.amazonaws.inspector2#DisassociateMember": { - "type": "operation", - "input": { - "target": "com.amazonaws.inspector2#DisassociateMemberRequest" - }, - "output": { - "target": "com.amazonaws.inspector2#DisassociateMemberResponse" - }, - "errors": [ - { - "target": "com.amazonaws.inspector2#AccessDeniedException" - }, - { - "target": "com.amazonaws.inspector2#InternalServerException" - }, - { - "target": "com.amazonaws.inspector2#ThrottlingException" }, - { - "target": "com.amazonaws.inspector2#ValidationException" - } - ], - "traits": { - "smithy.api#documentation": "Disassociates a member account from an Amazon Inspector delegated administrator.
", - "smithy.api#http": { - "code": 200, - "method": "POST", - "uri": "/members/disassociate" - } - } - }, - "com.amazonaws.inspector2#DisassociateMemberRequest": { - "type": "structure", - "members": { "accountId": { - "target": "com.amazonaws.inspector2#AccountId", + "target": "com.amazonaws.inspector2#CoverageStringFilterList", "traits": { - "smithy.api#documentation": "The Amazon Web Services account ID of the member account to disassociate.
", - "smithy.api#required": {} + "smithy.api#documentation": "An array of Amazon Web Services account IDs to return coverage statistics for.
" } - } - } - }, - "com.amazonaws.inspector2#DisassociateMemberResponse": { - "type": "structure", - "members": { - "accountId": { - "target": "com.amazonaws.inspector2#AccountId", + }, + "resourceId": { + "target": "com.amazonaws.inspector2#CoverageStringFilterList", "traits": { - "smithy.api#documentation": "The Amazon Web Services account ID of the successfully disassociated member.
", - "smithy.api#required": {} - } - } - } - }, - "com.amazonaws.inspector2#Ec2DeepInspectionStatus": { - "type": "string", - "traits": { - "smithy.api#enum": [ - { - "value": "ACTIVATED", - "name": "ACTIVATED" - }, - { - "value": "DEACTIVATED", - "name": "DEACTIVATED" - }, - { - "value": "PENDING", - "name": "PENDING" - }, - { - "value": "FAILED", - "name": "FAILED" + "smithy.api#documentation": "An array of Amazon Web Services resource IDs to return coverage statistics for.
" } - ] - } - }, - "com.amazonaws.inspector2#Ec2InstanceAggregation": { - "type": "structure", - "members": { - "amis": { - "target": "com.amazonaws.inspector2#StringFilterList", + }, + "resourceType": { + "target": "com.amazonaws.inspector2#CoverageStringFilterList", "traits": { - "smithy.api#documentation": "The AMI IDs associated with the Amazon EC2 instances to aggregate findings for.
" + "smithy.api#documentation": "An array of Amazon Web Services resource types to return coverage statistics for. The values can be AWS_EC2_INSTANCE, AWS_LAMBDA_FUNCTION, AWS_ECR_CONTAINER_IMAGE, AWS_ECR_REPOSITORY or AWS_ACCOUNT.
The operating system types to aggregate findings for. Valid values must be uppercase and\n underscore separated, examples are ORACLE_LINUX_7 and\n ALPINE_LINUX_3_8.
An array of Amazon Inspector scan types to return coverage statistics for.
" } }, - "instanceIds": { - "target": "com.amazonaws.inspector2#StringFilterList", + "ecrRepositoryName": { + "target": "com.amazonaws.inspector2#CoverageStringFilterList", "traits": { - "smithy.api#documentation": "The Amazon EC2 instance IDs to aggregate findings for.
" + "smithy.api#documentation": "The Amazon ECR repository name to filter on.
" } }, - "instanceTags": { - "target": "com.amazonaws.inspector2#MapFilterList", + "ecrImageTags": { + "target": "com.amazonaws.inspector2#CoverageStringFilterList", "traits": { - "smithy.api#documentation": "The Amazon EC2 instance tags to aggregate findings for.
" + "smithy.api#documentation": "The Amazon ECR image tags to filter on.
" } }, - "sortOrder": { - "target": "com.amazonaws.inspector2#SortOrder", + "ec2InstanceTags": { + "target": "com.amazonaws.inspector2#CoverageMapFilterList", "traits": { - "smithy.api#documentation": "The order to sort results by.
" + "smithy.api#documentation": "The Amazon EC2 instance tags to filter on.
" } }, - "sortBy": { - "target": "com.amazonaws.inspector2#Ec2InstanceSortBy", + "lambdaFunctionName": { + "target": "com.amazonaws.inspector2#CoverageStringFilterList", "traits": { - "smithy.api#documentation": "The value to sort results by.
" - } - } - }, - "traits": { - "smithy.api#documentation": "The details that define an aggregation based on Amazon EC2 instances.
" - } - }, - "com.amazonaws.inspector2#Ec2InstanceAggregationResponse": { - "type": "structure", - "members": { - "instanceId": { - "target": "com.amazonaws.inspector2#NonEmptyString", - "traits": { - "smithy.api#documentation": "The Amazon EC2 instance ID.
", - "smithy.api#required": {} - } - }, - "ami": { - "target": "com.amazonaws.inspector2#AmiId", - "traits": { - "smithy.api#documentation": "The Amazon Machine Image (AMI) of the Amazon EC2 instance.
" - } - }, - "operatingSystem": { - "target": "smithy.api#String", - "traits": { - "smithy.api#documentation": "The operating system of the Amazon EC2 instance.
" - } - }, - "instanceTags": { - "target": "com.amazonaws.inspector2#TagMap", - "traits": { - "smithy.api#documentation": "The tags attached to the instance.
" + "smithy.api#documentation": "Returns coverage statistics for AWS Lambda functions filtered by function names.
" } }, - "accountId": { - "target": "smithy.api#String", + "lambdaFunctionTags": { + "target": "com.amazonaws.inspector2#CoverageMapFilterList", "traits": { - "smithy.api#documentation": "The Amazon Web Services account for the Amazon EC2 instance.
" + "smithy.api#documentation": "Returns coverage statistics for AWS Lambda functions filtered by tag.
" } }, - "severityCounts": { - "target": "com.amazonaws.inspector2#SeverityCounts", + "lambdaFunctionRuntime": { + "target": "com.amazonaws.inspector2#CoverageStringFilterList", "traits": { - "smithy.api#documentation": "An object that contains the count of matched findings per severity.
" + "smithy.api#documentation": "Returns coverage statistics for AWS Lambda functions filtered by runtime.
" } }, - "networkFindings": { - "target": "smithy.api#Long", + "lastScannedAt": { + "target": "com.amazonaws.inspector2#CoverageDateFilterList", "traits": { - "smithy.api#documentation": "The number of network findings for the Amazon EC2 instance.
" + "smithy.api#documentation": "Filters Amazon Web Services resources based on whether Amazon Inspector has checked them for vulnerabilities within the specified time range.
" } } }, "traits": { - "smithy.api#documentation": "A response that contains the results of a finding aggregation by Amazon EC2 instance.
" + "smithy.api#documentation": "A structure that identifies filter criteria for GetCoverageStatistics.
The tags attached to the instance.
" + "smithy.api#documentation": "The operator to compare coverage on.
", + "smithy.api#required": {} } }, - "amiId": { - "target": "com.amazonaws.inspector2#AmiId", + "key": { + "target": "com.amazonaws.inspector2#NonEmptyString", "traits": { - "smithy.api#documentation": "The ID of the Amazon Machine Image (AMI) used to launch the instance.
" + "smithy.api#documentation": "The tag key associated with the coverage map filter.
", + "smithy.api#required": {} } }, - "platform": { - "target": "com.amazonaws.inspector2#Ec2Platform", + "value": { + "target": "com.amazonaws.inspector2#NonEmptyString", "traits": { - "smithy.api#documentation": "The platform of the instance.
" + "smithy.api#documentation": "The tag value associated with the coverage map filter.
" } } }, "traits": { - "smithy.api#documentation": "Meta data details of an Amazon EC2 instance.
" + "smithy.api#documentation": "Contains details of a coverage map filter.
" } }, - "com.amazonaws.inspector2#Ec2Platform": { + "com.amazonaws.inspector2#CoverageMapFilterList": { + "type": "list", + "member": { + "target": "com.amazonaws.inspector2#CoverageMapFilter" + }, + "traits": { + "smithy.api#length": { + "min": 1, + "max": 10 + } + } + }, + "com.amazonaws.inspector2#CoverageResourceType": { "type": "string", "traits": { "smithy.api#enum": [ { - "value": "WINDOWS", - "name": "WINDOWS" + "value": "AWS_EC2_INSTANCE", + "name": "AWS_EC2_INSTANCE" }, { - "value": "LINUX", - "name": "LINUX" + "value": "AWS_ECR_CONTAINER_IMAGE", + "name": "AWS_ECR_CONTAINER_IMAGE" }, { - "value": "UNKNOWN", - "name": "UNKNOWN" + "value": "AWS_ECR_REPOSITORY", + "name": "AWS_ECR_REPOSITORY" }, { - "value": "MACOS", - "name": "MACOS" + "value": "AWS_LAMBDA_FUNCTION", + "name": "AWS_LAMBDA_FUNCTION" } ] } }, - "com.amazonaws.inspector2#EcrConfiguration": { - "type": "structure", - "members": { - "rescanDuration": { - "target": "com.amazonaws.inspector2#EcrRescanDuration", - "traits": { - "smithy.api#documentation": "The ECR automated re-scan duration defines how long an ECR image will be actively scanned by Amazon Inspector. When the number of days since an image was last pushed exceeds the automated re-scan duration the monitoring state of that image becomes inactive and all associated findings are scheduled for closure.
Details about the ECR automated re-scan duration setting for your environment.
" + "smithy.api#enum": [ + { + "value": "EQUALS", + "name": "EQUALS" + }, + { + "value": "NOT_EQUALS", + "name": "NOT_EQUALS" + } + ] } }, - "com.amazonaws.inspector2#EcrConfigurationState": { + "com.amazonaws.inspector2#CoverageStringFilter": { "type": "structure", "members": { - "rescanDurationState": { - "target": "com.amazonaws.inspector2#EcrRescanDurationState", + "comparison": { + "target": "com.amazonaws.inspector2#CoverageStringComparison", "traits": { - "smithy.api#documentation": "An object that contains details about the state of the ECR automated re-scan setting.
" + "smithy.api#documentation": "The operator to compare strings on.
", + "smithy.api#required": {} } - } - }, - "traits": { - "smithy.api#documentation": "Details about the state of the ECR scans for your environment.
" - } - }, - "com.amazonaws.inspector2#EcrContainerImageMetadata": { - "type": "structure", - "members": { - "tags": { - "target": "com.amazonaws.inspector2#TagList", + }, + "value": { + "target": "com.amazonaws.inspector2#CoverageStringInput", "traits": { - "smithy.api#documentation": "Tags associated with the Amazon ECR image metadata.
" + "smithy.api#documentation": "The value to compare strings on.
", + "smithy.api#required": {} } } }, "traits": { - "smithy.api#documentation": "Information on the Amazon ECR image metadata associated with a finding.
" + "smithy.api#documentation": "Contains details of a coverage string filter.
" } }, - "com.amazonaws.inspector2#EcrRepositoryMetadata": { - "type": "structure", - "members": { - "name": { - "target": "smithy.api#String", - "traits": { - "smithy.api#documentation": "The name of the Amazon ECR repository.
" - } - }, - "scanFrequency": { - "target": "com.amazonaws.inspector2#EcrScanFrequency", - "traits": { - "smithy.api#documentation": "The frequency of scans.
" - } - } + "com.amazonaws.inspector2#CoverageStringFilterList": { + "type": "list", + "member": { + "target": "com.amazonaws.inspector2#CoverageStringFilter" }, "traits": { - "smithy.api#documentation": "Information on the Amazon ECR repository metadata associated with a finding.
" + "smithy.api#length": { + "min": 1, + "max": 10 + } } }, - "com.amazonaws.inspector2#EcrRescanDuration": { + "com.amazonaws.inspector2#CoverageStringInput": { "type": "string", "traits": { - "smithy.api#enum": [ - { - "value": "LIFETIME", - "name": "LIFETIME" - }, - { - "value": "DAYS_30", - "name": "DAYS_30" - }, - { - "value": "DAYS_180", - "name": "DAYS_180" - } - ] + "smithy.api#length": { + "min": 1, + "max": 1024 + } } }, - "com.amazonaws.inspector2#EcrRescanDurationState": { + "com.amazonaws.inspector2#CoveredResource": { "type": "structure", "members": { - "rescanDuration": { - "target": "com.amazonaws.inspector2#EcrRescanDuration", + "resourceType": { + "target": "com.amazonaws.inspector2#CoverageResourceType", "traits": { - "smithy.api#documentation": "The ECR automated re-scan duration defines how long an ECR image will be actively scanned by Amazon Inspector. When the number of days since an image was last pushed exceeds the automated re-scan duration the monitoring state of that image becomes inactive and all associated findings are scheduled for closure.
The type of the covered resource.
", + "smithy.api#required": {} } }, - "status": { - "target": "com.amazonaws.inspector2#EcrRescanDurationStatus", + "resourceId": { + "target": "com.amazonaws.inspector2#ResourceId", "traits": { - "smithy.api#documentation": "The status of changes to the ECR automated re-scan duration.
" + "smithy.api#documentation": "The ID of the covered resource.
", + "smithy.api#required": {} } }, - "updatedAt": { - "target": "com.amazonaws.inspector2#DateTimeTimestamp", + "accountId": { + "target": "com.amazonaws.inspector2#AccountId", "traits": { - "smithy.api#documentation": "A timestamp representing when the last time the ECR scan duration setting was changed.
" + "smithy.api#documentation": "The Amazon Web Services account ID of the covered resource.
", + "smithy.api#required": {} } - } - }, - "traits": { - "smithy.api#documentation": "Details about the state of any changes to the ECR automated re-scan duration setting.
" - } - }, - "com.amazonaws.inspector2#EcrRescanDurationStatus": { - "type": "string", - "traits": { - "smithy.api#enum": [ - { - "value": "SUCCESS", - "name": "SUCCESS" - }, - { - "value": "PENDING", - "name": "PENDING" - }, - { - "value": "FAILED", - "name": "FAILED" + }, + "scanType": { + "target": "com.amazonaws.inspector2#ScanType", + "traits": { + "smithy.api#documentation": "The Amazon Inspector scan type covering the resource.
", + "smithy.api#required": {} } - ] + }, + "scanStatus": { + "target": "com.amazonaws.inspector2#ScanStatus", + "traits": { + "smithy.api#documentation": "The status of the scan covering the resource.
" + } + }, + "resourceMetadata": { + "target": "com.amazonaws.inspector2#ResourceScanMetadata", + "traits": { + "smithy.api#documentation": "An object that contains details about the metadata.
" + } + }, + "lastScannedAt": { + "target": "com.amazonaws.inspector2#DateTimeTimestamp", + "traits": { + "smithy.api#documentation": "The date and time the resource was last checked for vulnerabilities.
" + } + } + }, + "traits": { + "smithy.api#documentation": "An object that contains details about a resource covered by Amazon Inspector.
" } }, - "com.amazonaws.inspector2#EcrScanFrequency": { - "type": "string", - "traits": { - "smithy.api#enum": [ - { - "value": "MANUAL", - "name": "MANUAL" - }, - { - "value": "SCAN_ON_PUSH", - "name": "SCAN_ON_PUSH" - }, - { - "value": "CONTINUOUS_SCAN", - "name": "CONTINUOUS_SCAN" - } - ] + "com.amazonaws.inspector2#CoveredResources": { + "type": "list", + "member": { + "target": "com.amazonaws.inspector2#CoveredResource" } }, - "com.amazonaws.inspector2#Enable": { + "com.amazonaws.inspector2#CreateCisScanConfiguration": { "type": "operation", "input": { - "target": "com.amazonaws.inspector2#EnableRequest" + "target": "com.amazonaws.inspector2#CreateCisScanConfigurationRequest" }, "output": { - "target": "com.amazonaws.inspector2#EnableResponse" + "target": "com.amazonaws.inspector2#CreateCisScanConfigurationResponse" }, "errors": [ { @@ -3538,9 +3742,6 @@ { "target": "com.amazonaws.inspector2#InternalServerException" }, - { - "target": "com.amazonaws.inspector2#ResourceNotFoundException" - }, { "target": "com.amazonaws.inspector2#ThrottlingException" }, @@ -3549,34 +3750,142 @@ } ], "traits": { - "smithy.api#documentation": "Enables Amazon Inspector scans for one or more Amazon Web Services accounts.
", + "smithy.api#documentation": "Creates a CIS scan configuration.
", + "smithy.api#examples": [ + { + "title": "Sample CreateCisScanConfiguration Call", + "input": { + "scanName": "sample", + "securityLevel": "LEVEL_1", + "schedule": { + "daily": { + "startTime": { + "timeOfDay": "12:34", + "timezone": "UTC" + } + } + }, + "targets": { + "accountIds": [ + "SELF" + ], + "targetResourceTags": { + "key": [ + "value" + ] + } + } + }, + "output": { + "scanConfigurationArn": "arn:aws:inspector2:us-east-1:123412341234:owner/123412341234/cis-configuration/624b746d-e080-44ae-8c1d-48e653365a38" + } + } + ], "smithy.api#http": { "code": 200, "method": "POST", - "uri": "/enable" + "uri": "/cis/scan-configuration/create" } } }, - "com.amazonaws.inspector2#EnableDelegatedAdminAccount": { + "com.amazonaws.inspector2#CreateCisScanConfigurationRequest": { + "type": "structure", + "members": { + "scanName": { + "target": "com.amazonaws.inspector2#CisScanName", + "traits": { + "smithy.api#documentation": "The scan name for the CIS scan configuration.
", + "smithy.api#required": {} + } + }, + "securityLevel": { + "target": "com.amazonaws.inspector2#CisSecurityLevel", + "traits": { + "smithy.api#documentation": "\n The security level for the CIS scan configuration. \n Security level refers to the Benchmark levels that CIS assigns to a profile.\n
", + "smithy.api#required": {} + } + }, + "schedule": { + "target": "com.amazonaws.inspector2#Schedule", + "traits": { + "smithy.api#documentation": "The schedule for the CIS scan configuration.
", + "smithy.api#required": {} + } + }, + "targets": { + "target": "com.amazonaws.inspector2#CreateCisTargets", + "traits": { + "smithy.api#documentation": "The targets for the CIS scan configuration.
", + "smithy.api#required": {} + } + }, + "tags": { + "target": "com.amazonaws.inspector2#CisTagMap", + "traits": { + "smithy.api#documentation": "The tags for the CIS scan configuration.
" + } + } + }, + "traits": { + "smithy.api#input": {} + } + }, + "com.amazonaws.inspector2#CreateCisScanConfigurationResponse": { + "type": "structure", + "members": { + "scanConfigurationArn": { + "target": "com.amazonaws.inspector2#CisScanConfigurationArn", + "traits": { + "smithy.api#documentation": "The scan configuration ARN for the CIS scan configuration.
" + } + } + }, + "traits": { + "smithy.api#output": {} + } + }, + "com.amazonaws.inspector2#CreateCisTargets": { + "type": "structure", + "members": { + "accountIds": { + "target": "com.amazonaws.inspector2#TargetAccountList", + "traits": { + "smithy.api#documentation": "The CIS target account ids.
", + "smithy.api#required": {} + } + }, + "targetResourceTags": { + "target": "com.amazonaws.inspector2#TargetResourceTags", + "traits": { + "smithy.api#documentation": "The CIS target resource tags.
", + "smithy.api#required": {} + } + } + }, + "traits": { + "smithy.api#documentation": "Creates CIS targets.
" + } + }, + "com.amazonaws.inspector2#CreateFilter": { "type": "operation", "input": { - "target": "com.amazonaws.inspector2#EnableDelegatedAdminAccountRequest" + "target": "com.amazonaws.inspector2#CreateFilterRequest" }, "output": { - "target": "com.amazonaws.inspector2#EnableDelegatedAdminAccountResponse" + "target": "com.amazonaws.inspector2#CreateFilterResponse" }, "errors": [ { "target": "com.amazonaws.inspector2#AccessDeniedException" }, { - "target": "com.amazonaws.inspector2#ConflictException" + "target": "com.amazonaws.inspector2#BadRequestException" }, { "target": "com.amazonaws.inspector2#InternalServerException" }, { - "target": "com.amazonaws.inspector2#ResourceNotFoundException" + "target": "com.amazonaws.inspector2#ServiceQuotaExceededException" }, { "target": "com.amazonaws.inspector2#ThrottlingException" @@ -3586,253 +3895,255 @@ } ], "traits": { - "smithy.api#documentation": "Enables the Amazon Inspector delegated administrator for your Organizations organization.
", + "smithy.api#documentation": "Creates a filter resource using specified filter criteria. When the filter action is set to SUPPRESS this action creates a suppression rule.
The Amazon Web Services account ID of the Amazon Inspector delegated administrator.
", + "smithy.api#documentation": "Defines the action that is to be applied to the findings that match the filter.
", "smithy.api#required": {} } }, - "clientToken": { - "target": "com.amazonaws.inspector2#ClientToken", + "description": { + "target": "com.amazonaws.inspector2#FilterDescription", "traits": { - "smithy.api#documentation": "The idempotency token for the request.
", - "smithy.api#idempotencyToken": {} + "smithy.api#documentation": "A description of the filter.
" + } + }, + "filterCriteria": { + "target": "com.amazonaws.inspector2#FilterCriteria", + "traits": { + "smithy.api#documentation": "Defines the criteria to be used in the filter for querying findings.
", + "smithy.api#required": {} + } + }, + "name": { + "target": "com.amazonaws.inspector2#FilterName", + "traits": { + "smithy.api#documentation": "The name of the filter. Minimum length of 3. Maximum length of 64. Valid characters\n include alphanumeric characters, dot (.), underscore (_), and dash (-). Spaces are not\n allowed.
", + "smithy.api#required": {} + } + }, + "tags": { + "target": "com.amazonaws.inspector2#TagMap", + "traits": { + "smithy.api#documentation": "A list of tags for the filter.
" + } + }, + "reason": { + "target": "com.amazonaws.inspector2#FilterReason", + "traits": { + "smithy.api#documentation": "The reason for creating the filter.
" } } } }, - "com.amazonaws.inspector2#EnableDelegatedAdminAccountResponse": { + "com.amazonaws.inspector2#CreateFilterResponse": { "type": "structure", "members": { - "delegatedAdminAccountId": { - "target": "com.amazonaws.inspector2#AccountId", + "arn": { + "target": "com.amazonaws.inspector2#FilterArn", "traits": { - "smithy.api#documentation": "The Amazon Web Services account ID of the successfully Amazon Inspector delegated administrator.
", + "smithy.api#documentation": "The Amazon Resource Number (ARN) of the successfully created filter.
", "smithy.api#required": {} } } } }, - "com.amazonaws.inspector2#EnableRequest": { + "com.amazonaws.inspector2#CreateFindingsReport": { + "type": "operation", + "input": { + "target": "com.amazonaws.inspector2#CreateFindingsReportRequest" + }, + "output": { + "target": "com.amazonaws.inspector2#CreateFindingsReportResponse" + }, + "errors": [ + { + "target": "com.amazonaws.inspector2#AccessDeniedException" + }, + { + "target": "com.amazonaws.inspector2#InternalServerException" + }, + { + "target": "com.amazonaws.inspector2#ResourceNotFoundException" + }, + { + "target": "com.amazonaws.inspector2#ThrottlingException" + }, + { + "target": "com.amazonaws.inspector2#ValidationException" + } + ], + "traits": { + "smithy.api#documentation": "Creates a finding report. By default only ACTIVE findings are returned in the report. To see SUPRESSED or CLOSED findings you must specify a value for the findingStatus filter criteria.
A list of account IDs you want to enable Amazon Inspector scans for.
" + "smithy.api#documentation": "The filter criteria to apply to the results of the finding report.
" } }, - "resourceTypes": { - "target": "com.amazonaws.inspector2#EnableResourceTypeList", + "reportFormat": { + "target": "com.amazonaws.inspector2#ReportFormat", "traits": { - "smithy.api#documentation": "The resource scan types you want to enable.
", + "smithy.api#documentation": "The format to generate the report in.
", "smithy.api#required": {} } }, - "clientToken": { - "target": "com.amazonaws.inspector2#ClientToken", + "s3Destination": { + "target": "com.amazonaws.inspector2#Destination", "traits": { - "smithy.api#documentation": "The idempotency token for the request.
", - "smithy.api#idempotencyToken": {} + "smithy.api#documentation": "The Amazon S3 export destination for the report.
", + "smithy.api#required": {} } } } }, - "com.amazonaws.inspector2#EnableResourceTypeList": { - "type": "list", - "member": { - "target": "com.amazonaws.inspector2#ResourceScanType" - }, - "traits": { - "smithy.api#length": { - "min": 1, - "max": 3 - } - } - }, - "com.amazonaws.inspector2#EnableResponse": { + "com.amazonaws.inspector2#CreateFindingsReportResponse": { "type": "structure", "members": { - "accounts": { - "target": "com.amazonaws.inspector2#AccountList", + "reportId": { + "target": "com.amazonaws.inspector2#ReportId", "traits": { - "smithy.api#documentation": "Information on the accounts that have had Amazon Inspector scans successfully enabled. Details are\n provided for each account.
", - "smithy.api#required": {} + "smithy.api#documentation": "The ID of the report.
" } + } + } + }, + "com.amazonaws.inspector2#CreateSbomExport": { + "type": "operation", + "input": { + "target": "com.amazonaws.inspector2#CreateSbomExportRequest" + }, + "output": { + "target": "com.amazonaws.inspector2#CreateSbomExportResponse" + }, + "errors": [ + { + "target": "com.amazonaws.inspector2#AccessDeniedException" }, - "failedAccounts": { - "target": "com.amazonaws.inspector2#FailedAccountList", - "traits": { - "smithy.api#documentation": "Information on any accounts for which Amazon Inspector scans could not be enabled. Details are\n provided for each account.
" - } + { + "target": "com.amazonaws.inspector2#InternalServerException" + }, + { + "target": "com.amazonaws.inspector2#ResourceNotFoundException" + }, + { + "target": "com.amazonaws.inspector2#ThrottlingException" + }, + { + "target": "com.amazonaws.inspector2#ValidationException" } + ], + "traits": { + "smithy.api#documentation": "Creates a software bill of materials (SBOM) report.
", + "smithy.api#http": { + "code": 200, + "method": "POST", + "uri": "/sbomexport/create" + }, + "smithy.api#idempotent": {} } }, - "com.amazonaws.inspector2#Epss": { + "com.amazonaws.inspector2#CreateSbomExportRequest": { "type": "structure", "members": { - "score": { - "target": "com.amazonaws.inspector2#EpssScore", + "resourceFilterCriteria": { + "target": "com.amazonaws.inspector2#ResourceFilterCriteria", "traits": { - "smithy.api#default": 0, - "smithy.api#documentation": "The Exploit Prediction Scoring System (EPSS) score.
" + "smithy.api#documentation": "The resource filter criteria for the software bill of materials (SBOM) report.
" + } + }, + "reportFormat": { + "target": "com.amazonaws.inspector2#SbomReportFormat", + "traits": { + "smithy.api#documentation": "The output format for the software bill of materials (SBOM) report.
", + "smithy.api#required": {} + } + }, + "s3Destination": { + "target": "com.amazonaws.inspector2#Destination", + "traits": { + "smithy.api#required": {} } } }, "traits": { - "smithy.api#documentation": "Details about the Exploit Prediction Scoring System (EPSS) score.
" + "smithy.api#input": {} } }, - "com.amazonaws.inspector2#EpssDetails": { + "com.amazonaws.inspector2#CreateSbomExportResponse": { "type": "structure", "members": { - "score": { - "target": "com.amazonaws.inspector2#EpssScoreValue", + "reportId": { + "target": "com.amazonaws.inspector2#ReportId", "traits": { - "smithy.api#default": 0, - "smithy.api#documentation": "The EPSS score.
" + "smithy.api#documentation": "The report ID for the software bill of materials (SBOM) report.
" } } }, "traits": { - "smithy.api#documentation": "Details about the Exploit Prediction Scoring System (EPSS) score for a finding.
" - } - }, - "com.amazonaws.inspector2#EpssScore": { - "type": "double", - "traits": { - "smithy.api#default": 0 - } - }, - "com.amazonaws.inspector2#EpssScoreValue": { - "type": "double", - "traits": { - "smithy.api#default": 0, - "smithy.api#range": { - "min": 0.0, - "max": 1.0 - } + "smithy.api#output": {} } }, - "com.amazonaws.inspector2#ErrorCode": { + "com.amazonaws.inspector2#Currency": { "type": "string", "traits": { "smithy.api#enum": [ { - "value": "ALREADY_ENABLED", - "name": "ALREADY_ENABLED" - }, - { - "value": "ENABLE_IN_PROGRESS", - "name": "ENABLE_IN_PROGRESS" - }, - { - "value": "DISABLE_IN_PROGRESS", - "name": "DISABLE_IN_PROGRESS" - }, - { - "value": "SUSPEND_IN_PROGRESS", - "name": "SUSPEND_IN_PROGRESS" - }, - { - "value": "RESOURCE_NOT_FOUND", - "name": "RESOURCE_NOT_FOUND" - }, - { - "value": "ACCESS_DENIED", - "name": "ACCESS_DENIED" - }, - { - "value": "INTERNAL_ERROR", - "name": "INTERNAL_ERROR" - }, - { - "value": "SSM_UNAVAILABLE", - "name": "SSM_UNAVAILABLE" - }, - { - "value": "SSM_THROTTLED", - "name": "SSM_THROTTLED" - }, - { - "value": "EVENTBRIDGE_UNAVAILABLE", - "name": "EVENTBRIDGE_UNAVAILABLE" - }, - { - "value": "EVENTBRIDGE_THROTTLED", - "name": "EVENTBRIDGE_THROTTLED" - }, - { - "value": "RESOURCE_SCAN_NOT_DISABLED", - "name": "RESOURCE_SCAN_NOT_DISABLED" - }, - { - "value": "DISASSOCIATE_ALL_MEMBERS", - "name": "DISASSOCIATE_ALL_MEMBERS" - }, - { - "value": "ACCOUNT_IS_ISOLATED", - "name": "ACCOUNT_IS_ISOLATED" + "name": "USD", + "value": "USD" } ] } }, - "com.amazonaws.inspector2#ErrorMessage": { - "type": "string" - }, - "com.amazonaws.inspector2#Evidence": { + "com.amazonaws.inspector2#Cvss2": { "type": "structure", "members": { - "evidenceRule": { - "target": "com.amazonaws.inspector2#EvidenceRule", - "traits": { - "smithy.api#documentation": "The evidence rule.
" - } - }, - "evidenceDetail": { - "target": "com.amazonaws.inspector2#EvidenceDetail", + "baseScore": { + "target": "com.amazonaws.inspector2#Cvss2BaseScore", "traits": { - "smithy.api#documentation": "The evidence details.
" + "smithy.api#default": 0, + "smithy.api#documentation": "The CVSS v2 base score for the vulnerability.
" } }, - "severity": { - "target": "com.amazonaws.inspector2#EvidenceSeverity", + "scoringVector": { + "target": "com.amazonaws.inspector2#Cvss2ScoringVector", "traits": { - "smithy.api#documentation": "The evidence severity.
" + "smithy.api#documentation": "The scoring vector associated with the CVSS v2 score.
" } } }, "traits": { - "smithy.api#documentation": "Details of the evidence for a vulnerability identified in a finding.
" + "smithy.api#documentation": "The Common Vulnerability Scoring System (CVSS) version 2 details for the vulnerability.
" } }, - "com.amazonaws.inspector2#EvidenceDetail": { - "type": "string", + "com.amazonaws.inspector2#Cvss2BaseScore": { + "type": "double", "traits": { - "smithy.api#length": { - "min": 0 - } - } - }, - "com.amazonaws.inspector2#EvidenceList": { - "type": "list", - "member": { - "target": "com.amazonaws.inspector2#Evidence" + "smithy.api#default": 0 } }, - "com.amazonaws.inspector2#EvidenceRule": { + "com.amazonaws.inspector2#Cvss2ScoringVector": { "type": "string", "traits": { "smithy.api#length": { @@ -3840,374 +4151,1822 @@ } } }, - "com.amazonaws.inspector2#EvidenceSeverity": { - "type": "string", - "traits": { - "smithy.api#length": { - "min": 0 + "com.amazonaws.inspector2#Cvss3": { + "type": "structure", + "members": { + "baseScore": { + "target": "com.amazonaws.inspector2#Cvss3BaseScore", + "traits": { + "smithy.api#default": 0, + "smithy.api#documentation": "The CVSS v3 base score for the vulnerability.
" + } + }, + "scoringVector": { + "target": "com.amazonaws.inspector2#Cvss3ScoringVector", + "traits": { + "smithy.api#documentation": "The scoring vector associated with the CVSS v3 score.
" + } } + }, + "traits": { + "smithy.api#documentation": "The Common Vulnerability Scoring System (CVSS) version 3 details for the vulnerability.
" } }, - "com.amazonaws.inspector2#ExecutionRoleArn": { - "type": "string", + "com.amazonaws.inspector2#Cvss3BaseScore": { + "type": "double", "traits": { - "smithy.api#pattern": "^arn:(aws[a-zA-Z-]*)?:iam::\\d{12}:role/?[a-zA-Z_0-9+=,.@\\-_/]+$" + "smithy.api#default": 0 } }, - "com.amazonaws.inspector2#ExploitAvailable": { + "com.amazonaws.inspector2#Cvss3ScoringVector": { "type": "string", "traits": { - "smithy.api#enum": [ - { - "value": "YES", - "name": "YES" - }, - { - "value": "NO", - "name": "NO" - } - ] + "smithy.api#length": { + "min": 0 + } } }, - "com.amazonaws.inspector2#ExploitObserved": { + "com.amazonaws.inspector2#CvssScore": { "type": "structure", "members": { - "lastSeen": { - "target": "com.amazonaws.inspector2#LastSeen", + "baseScore": { + "target": "smithy.api#Double", "traits": { - "smithy.api#documentation": "The date an time when the exploit was last seen.
" + "smithy.api#documentation": "The base CVSS score used for the finding.
", + "smithy.api#required": {} } }, - "firstSeen": { - "target": "com.amazonaws.inspector2#FirstSeen", + "scoringVector": { + "target": "com.amazonaws.inspector2#NonEmptyString", "traits": { - "smithy.api#documentation": "The date an time when the exploit was first seen.
" + "smithy.api#documentation": "The vector string of the CVSS score.
", + "smithy.api#required": {} + } + }, + "version": { + "target": "com.amazonaws.inspector2#NonEmptyString", + "traits": { + "smithy.api#documentation": "The version of CVSS used for the score.
", + "smithy.api#required": {} + } + }, + "source": { + "target": "com.amazonaws.inspector2#NonEmptyString", + "traits": { + "smithy.api#documentation": "The source of the CVSS score.
", + "smithy.api#required": {} } } }, "traits": { - "smithy.api#documentation": "Contains information on when this exploit was observed.
" + "smithy.api#documentation": "The CVSS score for a finding.
" } }, - "com.amazonaws.inspector2#ExploitabilityDetails": { + "com.amazonaws.inspector2#CvssScoreAdjustment": { "type": "structure", "members": { - "lastKnownExploitAt": { - "target": "com.amazonaws.inspector2#DateTimeTimestamp", + "metric": { + "target": "com.amazonaws.inspector2#NonEmptyString", "traits": { - "smithy.api#documentation": "The date and time of the last exploit associated with a finding discovered in your environment.
" + "smithy.api#documentation": "The metric used to adjust the CVSS score.
", + "smithy.api#required": {} + } + }, + "reason": { + "target": "com.amazonaws.inspector2#NonEmptyString", + "traits": { + "smithy.api#documentation": "The reason the CVSS score has been adjustment.
", + "smithy.api#required": {} } } }, "traits": { - "smithy.api#documentation": "The details of an exploit available for a finding discovered in your environment.
" + "smithy.api#documentation": "Details on adjustments Amazon Inspector made to the CVSS score for a finding.
" } }, - "com.amazonaws.inspector2#ExternalReportStatus": { - "type": "string", - "traits": { - "smithy.api#enum": [ - { - "value": "SUCCEEDED", - "name": "SUCCEEDED" - }, - { - "value": "IN_PROGRESS", - "name": "IN_PROGRESS" - }, - { - "value": "CANCELLED", - "name": "CANCELLED" - }, - { - "value": "FAILED", - "name": "FAILED" - } - ] + "com.amazonaws.inspector2#CvssScoreAdjustmentList": { + "type": "list", + "member": { + "target": "com.amazonaws.inspector2#CvssScoreAdjustment" } }, - "com.amazonaws.inspector2#FailedAccount": { + "com.amazonaws.inspector2#CvssScoreDetails": { "type": "structure", "members": { - "accountId": { - "target": "com.amazonaws.inspector2#AccountId", + "scoreSource": { + "target": "com.amazonaws.inspector2#NonEmptyString", "traits": { - "smithy.api#documentation": "The Amazon Web Services account ID.
", + "smithy.api#documentation": "The source for the CVSS score.
", "smithy.api#required": {} } }, - "status": { - "target": "com.amazonaws.inspector2#Status", + "cvssSource": { + "target": "com.amazonaws.inspector2#NonEmptyString", "traits": { - "smithy.api#documentation": "The status of Amazon Inspector for the account.
" + "smithy.api#documentation": "The source of the CVSS data.
" } }, - "resourceStatus": { - "target": "com.amazonaws.inspector2#ResourceStatus", + "version": { + "target": "com.amazonaws.inspector2#NonEmptyString", "traits": { - "smithy.api#documentation": "An object detailing which resources Amazon Inspector is enabled to scan for the account.
" + "smithy.api#documentation": "The CVSS version used in scoring.
", + "smithy.api#required": {} } }, - "errorCode": { - "target": "com.amazonaws.inspector2#ErrorCode", + "score": { + "target": "smithy.api#Double", "traits": { - "smithy.api#documentation": "The error code explaining why the account failed to enable Amazon Inspector.
", + "smithy.api#documentation": "The CVSS score.
", "smithy.api#required": {} } }, - "errorMessage": { + "scoringVector": { "target": "com.amazonaws.inspector2#NonEmptyString", "traits": { - "smithy.api#documentation": "The error message received when the account failed to enable Amazon Inspector.
", + "smithy.api#documentation": "The vector for the CVSS score.
", "smithy.api#required": {} } + }, + "adjustments": { + "target": "com.amazonaws.inspector2#CvssScoreAdjustmentList", + "traits": { + "smithy.api#documentation": "An object that contains details about adjustment Amazon Inspector made to the CVSS score.
" + } } }, "traits": { - "smithy.api#documentation": "An object with details on why an account failed to enable Amazon Inspector.
" + "smithy.api#documentation": "Information about the CVSS score.
" } }, - "com.amazonaws.inspector2#FailedAccountList": { + "com.amazonaws.inspector2#CvssScoreList": { "type": "list", "member": { - "target": "com.amazonaws.inspector2#FailedAccount" + "target": "com.amazonaws.inspector2#CvssScore" + } + }, + "com.amazonaws.inspector2#Cwe": { + "type": "string", + "traits": { + "smithy.api#length": { + "min": 0 + } + } + }, + "com.amazonaws.inspector2#CweList": { + "type": "list", + "member": { + "target": "com.amazonaws.inspector2#NonEmptyString" }, "traits": { "smithy.api#length": { - "min": 0, - "max": 100 + "min": 1, + "max": 10 } } }, - "com.amazonaws.inspector2#FailedMemberAccountEc2DeepInspectionStatusState": { + "com.amazonaws.inspector2#Cwes": { + "type": "list", + "member": { + "target": "com.amazonaws.inspector2#Cwe" + }, + "traits": { + "smithy.api#length": { + "min": 0 + } + } + }, + "com.amazonaws.inspector2#DailySchedule": { "type": "structure", "members": { - "accountId": { - "target": "com.amazonaws.inspector2#AccountId", + "startTime": { + "target": "com.amazonaws.inspector2#Time", "traits": { - "smithy.api#documentation": "The unique identifier for the Amazon Web Services account of the organization member that failed to activate Amazon Inspector deep inspection.
", + "smithy.api#documentation": "The schedule start time.
", "smithy.api#required": {} } - }, - "ec2ScanStatus": { - "target": "com.amazonaws.inspector2#Status", + } + }, + "traits": { + "smithy.api#documentation": "A daily schedule.
" + } + }, + "com.amazonaws.inspector2#DateFilter": { + "type": "structure", + "members": { + "startInclusive": { + "target": "smithy.api#Timestamp", "traits": { - "smithy.api#documentation": "The status of EC2 scanning in the account that failed to activate Amazon Inspector deep inspection.
" + "smithy.api#documentation": "A timestamp representing the start of the time period filtered on.
" } }, - "errorMessage": { - "target": "com.amazonaws.inspector2#NonEmptyString", + "endInclusive": { + "target": "smithy.api#Timestamp", "traits": { - "smithy.api#documentation": "The error message explaining why the account failed to activate Amazon Inspector deep inspection.
" + "smithy.api#documentation": "A timestamp representing the end of the time period filtered on.
" } } }, "traits": { - "smithy.api#documentation": "An object that contains details about a member account in your organization that failed to activate Amazon Inspector deep inspection.
" + "smithy.api#documentation": "Contains details on the time range used to filter findings.
" } }, - "com.amazonaws.inspector2#FailedMemberAccountEc2DeepInspectionStatusStateList": { + "com.amazonaws.inspector2#DateFilterList": { "type": "list", "member": { - "target": "com.amazonaws.inspector2#FailedMemberAccountEc2DeepInspectionStatusState" + "target": "com.amazonaws.inspector2#DateFilter" }, - "traits": { - "smithy.api#length": { - "min": 0, - "max": 100 - } - } - }, - "com.amazonaws.inspector2#FilePath": { - "type": "string", "traits": { "smithy.api#length": { "min": 1, - "max": 1024 + "max": 10 } } }, - "com.amazonaws.inspector2#Filter": { - "type": "structure", + "com.amazonaws.inspector2#DateTimeTimestamp": { + "type": "timestamp" + }, + "com.amazonaws.inspector2#Day": { + "type": "enum", "members": { - "arn": { - "target": "com.amazonaws.inspector2#FilterArn", - "traits": { - "smithy.api#documentation": "The Amazon Resource Number (ARN) associated with this filter.
", - "smithy.api#required": {} - } - }, - "ownerId": { - "target": "com.amazonaws.inspector2#OwnerId", + "SUN": { + "target": "smithy.api#Unit", "traits": { - "smithy.api#documentation": "The Amazon Web Services account ID of the account that created the filter.
", - "smithy.api#required": {} + "smithy.api#enumValue": "SUN" } }, - "name": { - "target": "com.amazonaws.inspector2#FilterName", + "MON": { + "target": "smithy.api#Unit", "traits": { - "smithy.api#documentation": "The name of the filter.
", - "smithy.api#required": {} + "smithy.api#enumValue": "MON" } }, - "criteria": { - "target": "com.amazonaws.inspector2#FilterCriteria", + "TUE": { + "target": "smithy.api#Unit", "traits": { - "smithy.api#documentation": "Details on the filter criteria associated with this filter.
", - "smithy.api#required": {} + "smithy.api#enumValue": "TUE" } }, - "action": { - "target": "com.amazonaws.inspector2#FilterAction", + "WED": { + "target": "smithy.api#Unit", "traits": { - "smithy.api#documentation": "The action that is to be applied to the findings that match the filter.
", - "smithy.api#required": {} + "smithy.api#enumValue": "WED" } }, - "createdAt": { - "target": "com.amazonaws.inspector2#DateTimeTimestamp", + "THU": { + "target": "smithy.api#Unit", "traits": { - "smithy.api#documentation": "The date and time this filter was created at.
", - "smithy.api#required": {} + "smithy.api#enumValue": "THU" } }, - "updatedAt": { - "target": "com.amazonaws.inspector2#DateTimeTimestamp", + "FRI": { + "target": "smithy.api#Unit", "traits": { - "smithy.api#documentation": "The date and time the filter was last updated at.
", - "smithy.api#required": {} + "smithy.api#enumValue": "FRI" } }, - "description": { - "target": "com.amazonaws.inspector2#FilterDescription", + "SAT": { + "target": "smithy.api#Unit", "traits": { - "smithy.api#documentation": "A description of the filter.
" + "smithy.api#enumValue": "SAT" } + } + } + }, + "com.amazonaws.inspector2#DaysList": { + "type": "list", + "member": { + "target": "com.amazonaws.inspector2#Day" + }, + "traits": { + "smithy.api#length": { + "min": 1, + "max": 7 }, - "reason": { - "target": "com.amazonaws.inspector2#FilterReason", + "smithy.api#uniqueItems": {} + } + }, + "com.amazonaws.inspector2#DelegatedAdmin": { + "type": "structure", + "members": { + "accountId": { + "target": "com.amazonaws.inspector2#AccountId", "traits": { - "smithy.api#documentation": "The reason for the filter.
" + "smithy.api#documentation": "The Amazon Web Services account ID of the Amazon Inspector delegated administrator for your organization.
" } }, - "tags": { - "target": "com.amazonaws.inspector2#TagMap", + "relationshipStatus": { + "target": "com.amazonaws.inspector2#RelationshipStatus", "traits": { - "smithy.api#documentation": "The tags attached to the filter.
" + "smithy.api#documentation": "The status of the Amazon Inspector delegated administrator.
" } } }, "traits": { - "smithy.api#documentation": "Details about a filter.
" + "smithy.api#documentation": "Details of the Amazon Inspector delegated administrator for your organization.
" } }, - "com.amazonaws.inspector2#FilterAction": { - "type": "string", - "traits": { - "smithy.api#enum": [ - { - "value": "NONE", - "name": "NONE" + "com.amazonaws.inspector2#DelegatedAdminAccount": { + "type": "structure", + "members": { + "accountId": { + "target": "com.amazonaws.inspector2#AccountId", + "traits": { + "smithy.api#documentation": "The Amazon Web Services account ID of the Amazon Inspector delegated administrator for your organization.
" + } + }, + "status": { + "target": "com.amazonaws.inspector2#DelegatedAdminStatus", + "traits": { + "smithy.api#documentation": "The status of the Amazon Inspector delegated administrator.
" + } + } + }, + "traits": { + "smithy.api#documentation": "Details of the Amazon Inspector delegated administrator for your organization.
" + } + }, + "com.amazonaws.inspector2#DelegatedAdminAccountList": { + "type": "list", + "member": { + "target": "com.amazonaws.inspector2#DelegatedAdminAccount" + }, + "traits": { + "smithy.api#length": { + "min": 0, + "max": 5 + } + } + }, + "com.amazonaws.inspector2#DelegatedAdminStatus": { + "type": "string", + "traits": { + "smithy.api#enum": [ + { + "value": "ENABLED", + "name": "ENABLED" }, { - "value": "SUPPRESS", - "name": "SUPPRESS" + "value": "DISABLE_IN_PROGRESS", + "name": "DISABLE_IN_PROGRESS" } ] } }, - "com.amazonaws.inspector2#FilterArn": { - "type": "string", + "com.amazonaws.inspector2#DeleteCisScanConfiguration": { + "type": "operation", + "input": { + "target": "com.amazonaws.inspector2#DeleteCisScanConfigurationRequest" + }, + "output": { + "target": "com.amazonaws.inspector2#DeleteCisScanConfigurationResponse" + }, + "errors": [ + { + "target": "com.amazonaws.inspector2#AccessDeniedException" + }, + { + "target": "com.amazonaws.inspector2#InternalServerException" + }, + { + "target": "com.amazonaws.inspector2#ResourceNotFoundException" + }, + { + "target": "com.amazonaws.inspector2#ThrottlingException" + }, + { + "target": "com.amazonaws.inspector2#ValidationException" + } + ], "traits": { - "smithy.api#length": { - "min": 1, - "max": 128 + "smithy.api#documentation": "Deletes a CIS scan configuration.
", + "smithy.api#examples": [ + { + "title": "Sample DeleteCisScanConfiguration Call", + "input": { + "scanConfigurationArn": "arn:aws:inspector2:us-east-1:123412341234:owner/123412341234/cis-configuration/624b746d-e080-44ae-8c1d-48e653365a38" + }, + "output": { + "scanConfigurationArn": "arn:aws:inspector2:us-east-1:123412341234:owner/123412341234/cis-configuration/624b746d-e080-44ae-8c1d-48e653365a38" + } + } + ], + "smithy.api#http": { + "code": 200, + "method": "POST", + "uri": "/cis/scan-configuration/delete" } } }, - "com.amazonaws.inspector2#FilterArnList": { - "type": "list", - "member": { - "target": "com.amazonaws.inspector2#FilterArn" + "com.amazonaws.inspector2#DeleteCisScanConfigurationRequest": { + "type": "structure", + "members": { + "scanConfigurationArn": { + "target": "com.amazonaws.inspector2#CisScanConfigurationArn", + "traits": { + "smithy.api#documentation": "The ARN of the CIS scan configuration.
", + "smithy.api#required": {} + } + } + }, + "traits": { + "smithy.api#input": {} } }, - "com.amazonaws.inspector2#FilterCriteria": { + "com.amazonaws.inspector2#DeleteCisScanConfigurationResponse": { "type": "structure", "members": { - "findingArn": { - "target": "com.amazonaws.inspector2#StringFilterList", + "scanConfigurationArn": { + "target": "com.amazonaws.inspector2#CisScanConfigurationArn", "traits": { - "smithy.api#documentation": "Details on the finding ARNs used to filter findings.
" + "smithy.api#documentation": "The ARN of the CIS scan configuration.
", + "smithy.api#required": {} } + } + }, + "traits": { + "smithy.api#output": {} + } + }, + "com.amazonaws.inspector2#DeleteFilter": { + "type": "operation", + "input": { + "target": "com.amazonaws.inspector2#DeleteFilterRequest" + }, + "output": { + "target": "com.amazonaws.inspector2#DeleteFilterResponse" + }, + "errors": [ + { + "target": "com.amazonaws.inspector2#AccessDeniedException" }, - "awsAccountId": { - "target": "com.amazonaws.inspector2#StringFilterList", - "traits": { - "smithy.api#documentation": "Details of the Amazon Web Services account IDs used to filter findings.
" - } + { + "target": "com.amazonaws.inspector2#InternalServerException" }, - "findingType": { - "target": "com.amazonaws.inspector2#StringFilterList", - "traits": { - "smithy.api#documentation": "Details on the finding types used to filter findings.
" - } + { + "target": "com.amazonaws.inspector2#ResourceNotFoundException" }, - "severity": { - "target": "com.amazonaws.inspector2#StringFilterList", - "traits": { - "smithy.api#documentation": "Details on the severity used to filter findings.
" - } + { + "target": "com.amazonaws.inspector2#ThrottlingException" }, - "firstObservedAt": { - "target": "com.amazonaws.inspector2#DateFilterList", + { + "target": "com.amazonaws.inspector2#ValidationException" + } + ], + "traits": { + "smithy.api#documentation": "Deletes a filter resource.
", + "smithy.api#http": { + "code": 200, + "method": "POST", + "uri": "/filters/delete" + } + } + }, + "com.amazonaws.inspector2#DeleteFilterRequest": { + "type": "structure", + "members": { + "arn": { + "target": "com.amazonaws.inspector2#FilterArn", "traits": { - "smithy.api#documentation": "Details on the date and time a finding was first seen used to filter findings.
" + "smithy.api#documentation": "The Amazon Resource Number (ARN) of the filter to be deleted.
", + "smithy.api#required": {} } - }, - "lastObservedAt": { - "target": "com.amazonaws.inspector2#DateFilterList", + } + } + }, + "com.amazonaws.inspector2#DeleteFilterResponse": { + "type": "structure", + "members": { + "arn": { + "target": "com.amazonaws.inspector2#FilterArn", "traits": { - "smithy.api#documentation": "Details on the date and time a finding was last seen used to filter findings.
" + "smithy.api#documentation": "The Amazon Resource Number (ARN) of the filter that has been deleted.
", + "smithy.api#required": {} } + } + } + }, + "com.amazonaws.inspector2#DescribeOrganizationConfiguration": { + "type": "operation", + "input": { + "target": "com.amazonaws.inspector2#DescribeOrganizationConfigurationRequest" + }, + "output": { + "target": "com.amazonaws.inspector2#DescribeOrganizationConfigurationResponse" + }, + "errors": [ + { + "target": "com.amazonaws.inspector2#AccessDeniedException" }, - "updatedAt": { - "target": "com.amazonaws.inspector2#DateFilterList", - "traits": { - "smithy.api#documentation": "Details on the date and time a finding was last updated at used to filter findings.
" - } + { + "target": "com.amazonaws.inspector2#InternalServerException" }, - "findingStatus": { - "target": "com.amazonaws.inspector2#StringFilterList", - "traits": { - "smithy.api#documentation": "Details on the finding status types used to filter findings.
" - } + { + "target": "com.amazonaws.inspector2#ThrottlingException" }, - "title": { - "target": "com.amazonaws.inspector2#StringFilterList", + { + "target": "com.amazonaws.inspector2#ValidationException" + } + ], + "traits": { + "smithy.api#documentation": "Describe Amazon Inspector configuration settings for an Amazon Web Services organization.
", + "smithy.api#http": { + "code": 200, + "method": "POST", + "uri": "/organizationconfiguration/describe" + } + } + }, + "com.amazonaws.inspector2#DescribeOrganizationConfigurationRequest": { + "type": "structure", + "members": {} + }, + "com.amazonaws.inspector2#DescribeOrganizationConfigurationResponse": { + "type": "structure", + "members": { + "autoEnable": { + "target": "com.amazonaws.inspector2#AutoEnable", "traits": { - "smithy.api#documentation": "Details on the finding title used to filter findings.
" + "smithy.api#documentation": "The scan types are automatically enabled for new members of your organization.
" } }, - "inspectorScore": { - "target": "com.amazonaws.inspector2#NumberFilterList", + "maxAccountLimitReached": { + "target": "smithy.api#Boolean", "traits": { - "smithy.api#documentation": "The Amazon Inspector score to filter on.
" + "smithy.api#documentation": "Represents whether your organization has reached the maximum Amazon Web Services account limit for Amazon Inspector.
" } - }, - "resourceType": { - "target": "com.amazonaws.inspector2#StringFilterList", + } + } + }, + "com.amazonaws.inspector2#Destination": { + "type": "structure", + "members": { + "bucketName": { + "target": "smithy.api#String", "traits": { - "smithy.api#documentation": "Details on the resource types used to filter findings.
" + "smithy.api#documentation": "The name of the Amazon S3 bucket to export findings to.
", + "smithy.api#required": {} } }, - "resourceId": { - "target": "com.amazonaws.inspector2#StringFilterList", + "keyPrefix": { + "target": "smithy.api#String", "traits": { - "smithy.api#documentation": "Details on the resource IDs used to filter findings.
" + "smithy.api#documentation": "The prefix that the findings will be written under.
" } }, - "resourceTags": { + "kmsKeyArn": { + "target": "smithy.api#String", + "traits": { + "smithy.api#documentation": "The ARN of the KMS key used to encrypt data when exporting findings.
", + "smithy.api#required": {} + } + } + }, + "traits": { + "smithy.api#documentation": "Contains details of the Amazon S3 bucket and KMS key used to export findings.
" + } + }, + "com.amazonaws.inspector2#DetectionPlatforms": { + "type": "list", + "member": { + "target": "com.amazonaws.inspector2#NonEmptyString" + }, + "traits": { + "smithy.api#length": { + "min": 0, + "max": 100 + } + } + }, + "com.amazonaws.inspector2#DetectorTagList": { + "type": "list", + "member": { + "target": "com.amazonaws.inspector2#NonEmptyString" + }, + "traits": { + "smithy.api#length": { + "min": 1, + "max": 10 + } + } + }, + "com.amazonaws.inspector2#Disable": { + "type": "operation", + "input": { + "target": "com.amazonaws.inspector2#DisableRequest" + }, + "output": { + "target": "com.amazonaws.inspector2#DisableResponse" + }, + "errors": [ + { + "target": "com.amazonaws.inspector2#AccessDeniedException" + }, + { + "target": "com.amazonaws.inspector2#InternalServerException" + }, + { + "target": "com.amazonaws.inspector2#ResourceNotFoundException" + }, + { + "target": "com.amazonaws.inspector2#ThrottlingException" + }, + { + "target": "com.amazonaws.inspector2#ValidationException" + } + ], + "traits": { + "smithy.api#documentation": "Disables Amazon Inspector scans for one or more Amazon Web Services accounts. Disabling all scan types in an account\n disables the Amazon Inspector service.
", + "smithy.api#http": { + "code": 200, + "method": "POST", + "uri": "/disable" + } + } + }, + "com.amazonaws.inspector2#DisableDelegatedAdminAccount": { + "type": "operation", + "input": { + "target": "com.amazonaws.inspector2#DisableDelegatedAdminAccountRequest" + }, + "output": { + "target": "com.amazonaws.inspector2#DisableDelegatedAdminAccountResponse" + }, + "errors": [ + { + "target": "com.amazonaws.inspector2#AccessDeniedException" + }, + { + "target": "com.amazonaws.inspector2#ConflictException" + }, + { + "target": "com.amazonaws.inspector2#InternalServerException" + }, + { + "target": "com.amazonaws.inspector2#ResourceNotFoundException" + }, + { + "target": "com.amazonaws.inspector2#ThrottlingException" + }, + { + "target": "com.amazonaws.inspector2#ValidationException" + } + ], + "traits": { + "smithy.api#documentation": "Disables the Amazon Inspector delegated administrator for your organization.
", + "smithy.api#http": { + "code": 200, + "method": "POST", + "uri": "/delegatedadminaccounts/disable" + } + } + }, + "com.amazonaws.inspector2#DisableDelegatedAdminAccountRequest": { + "type": "structure", + "members": { + "delegatedAdminAccountId": { + "target": "com.amazonaws.inspector2#AccountId", + "traits": { + "smithy.api#documentation": "The Amazon Web Services account ID of the current Amazon Inspector delegated administrator.
", + "smithy.api#required": {} + } + } + } + }, + "com.amazonaws.inspector2#DisableDelegatedAdminAccountResponse": { + "type": "structure", + "members": { + "delegatedAdminAccountId": { + "target": "com.amazonaws.inspector2#AccountId", + "traits": { + "smithy.api#documentation": "The Amazon Web Services account ID of the successfully disabled delegated administrator.
", + "smithy.api#required": {} + } + } + } + }, + "com.amazonaws.inspector2#DisableRequest": { + "type": "structure", + "members": { + "accountIds": { + "target": "com.amazonaws.inspector2#AccountIdSet", + "traits": { + "smithy.api#documentation": "An array of account IDs you want to disable Amazon Inspector scans for.
" + } + }, + "resourceTypes": { + "target": "com.amazonaws.inspector2#DisableResourceTypeList", + "traits": { + "smithy.api#documentation": "The resource scan types you want to disable.
" + } + } + } + }, + "com.amazonaws.inspector2#DisableResourceTypeList": { + "type": "list", + "member": { + "target": "com.amazonaws.inspector2#ResourceScanType" + }, + "traits": { + "smithy.api#length": { + "min": 0, + "max": 3 + } + } + }, + "com.amazonaws.inspector2#DisableResponse": { + "type": "structure", + "members": { + "accounts": { + "target": "com.amazonaws.inspector2#AccountList", + "traits": { + "smithy.api#documentation": "Information on the accounts that have had Amazon Inspector scans successfully disabled. Details are\n provided for each account.
", + "smithy.api#required": {} + } + }, + "failedAccounts": { + "target": "com.amazonaws.inspector2#FailedAccountList", + "traits": { + "smithy.api#documentation": "Information on any accounts for which Amazon Inspector scans could not be disabled. Details are\n provided for each account.
" + } + } + } + }, + "com.amazonaws.inspector2#DisassociateMember": { + "type": "operation", + "input": { + "target": "com.amazonaws.inspector2#DisassociateMemberRequest" + }, + "output": { + "target": "com.amazonaws.inspector2#DisassociateMemberResponse" + }, + "errors": [ + { + "target": "com.amazonaws.inspector2#AccessDeniedException" + }, + { + "target": "com.amazonaws.inspector2#InternalServerException" + }, + { + "target": "com.amazonaws.inspector2#ThrottlingException" + }, + { + "target": "com.amazonaws.inspector2#ValidationException" + } + ], + "traits": { + "smithy.api#documentation": "Disassociates a member account from an Amazon Inspector delegated administrator.
", + "smithy.api#http": { + "code": 200, + "method": "POST", + "uri": "/members/disassociate" + } + } + }, + "com.amazonaws.inspector2#DisassociateMemberRequest": { + "type": "structure", + "members": { + "accountId": { + "target": "com.amazonaws.inspector2#AccountId", + "traits": { + "smithy.api#documentation": "The Amazon Web Services account ID of the member account to disassociate.
", + "smithy.api#required": {} + } + } + } + }, + "com.amazonaws.inspector2#DisassociateMemberResponse": { + "type": "structure", + "members": { + "accountId": { + "target": "com.amazonaws.inspector2#AccountId", + "traits": { + "smithy.api#documentation": "The Amazon Web Services account ID of the successfully disassociated member.
", + "smithy.api#required": {} + } + } + } + }, + "com.amazonaws.inspector2#Ec2DeepInspectionStatus": { + "type": "string", + "traits": { + "smithy.api#enum": [ + { + "value": "ACTIVATED", + "name": "ACTIVATED" + }, + { + "value": "DEACTIVATED", + "name": "DEACTIVATED" + }, + { + "value": "PENDING", + "name": "PENDING" + }, + { + "value": "FAILED", + "name": "FAILED" + } + ] + } + }, + "com.amazonaws.inspector2#Ec2InstanceAggregation": { + "type": "structure", + "members": { + "amis": { + "target": "com.amazonaws.inspector2#StringFilterList", + "traits": { + "smithy.api#documentation": "The AMI IDs associated with the Amazon EC2 instances to aggregate findings for.
" + } + }, + "operatingSystems": { + "target": "com.amazonaws.inspector2#StringFilterList", + "traits": { + "smithy.api#documentation": "The operating system types to aggregate findings for. Valid values must be uppercase and\n underscore separated, examples are ORACLE_LINUX_7 and\n ALPINE_LINUX_3_8.
The Amazon EC2 instance IDs to aggregate findings for.
" + } + }, + "instanceTags": { + "target": "com.amazonaws.inspector2#MapFilterList", + "traits": { + "smithy.api#documentation": "The Amazon EC2 instance tags to aggregate findings for.
" + } + }, + "sortOrder": { + "target": "com.amazonaws.inspector2#SortOrder", + "traits": { + "smithy.api#documentation": "The order to sort results by.
" + } + }, + "sortBy": { + "target": "com.amazonaws.inspector2#Ec2InstanceSortBy", + "traits": { + "smithy.api#documentation": "The value to sort results by.
" + } + } + }, + "traits": { + "smithy.api#documentation": "The details that define an aggregation based on Amazon EC2 instances.
" + } + }, + "com.amazonaws.inspector2#Ec2InstanceAggregationResponse": { + "type": "structure", + "members": { + "instanceId": { + "target": "com.amazonaws.inspector2#NonEmptyString", + "traits": { + "smithy.api#documentation": "The Amazon EC2 instance ID.
", + "smithy.api#required": {} + } + }, + "ami": { + "target": "com.amazonaws.inspector2#AmiId", + "traits": { + "smithy.api#documentation": "The Amazon Machine Image (AMI) of the Amazon EC2 instance.
" + } + }, + "operatingSystem": { + "target": "smithy.api#String", + "traits": { + "smithy.api#documentation": "The operating system of the Amazon EC2 instance.
" + } + }, + "instanceTags": { + "target": "com.amazonaws.inspector2#TagMap", + "traits": { + "smithy.api#documentation": "The tags attached to the instance.
" + } + }, + "accountId": { + "target": "smithy.api#String", + "traits": { + "smithy.api#documentation": "The Amazon Web Services account for the Amazon EC2 instance.
" + } + }, + "severityCounts": { + "target": "com.amazonaws.inspector2#SeverityCounts", + "traits": { + "smithy.api#documentation": "An object that contains the count of matched findings per severity.
" + } + }, + "networkFindings": { + "target": "smithy.api#Long", + "traits": { + "smithy.api#documentation": "The number of network findings for the Amazon EC2 instance.
" + } + } + }, + "traits": { + "smithy.api#documentation": "A response that contains the results of a finding aggregation by Amazon EC2 instance.
" + } + }, + "com.amazonaws.inspector2#Ec2InstanceSortBy": { + "type": "string", + "traits": { + "smithy.api#enum": [ + { + "value": "NETWORK_FINDINGS", + "name": "NETWORK_FINDINGS" + }, + { + "value": "CRITICAL", + "name": "CRITICAL" + }, + { + "value": "HIGH", + "name": "HIGH" + }, + { + "value": "ALL", + "name": "ALL" + } + ] + } + }, + "com.amazonaws.inspector2#Ec2Metadata": { + "type": "structure", + "members": { + "tags": { + "target": "com.amazonaws.inspector2#TagMap", + "traits": { + "smithy.api#documentation": "The tags attached to the instance.
" + } + }, + "amiId": { + "target": "com.amazonaws.inspector2#AmiId", + "traits": { + "smithy.api#documentation": "The ID of the Amazon Machine Image (AMI) used to launch the instance.
" + } + }, + "platform": { + "target": "com.amazonaws.inspector2#Ec2Platform", + "traits": { + "smithy.api#documentation": "The platform of the instance.
" + } + } + }, + "traits": { + "smithy.api#documentation": "Meta data details of an Amazon EC2 instance.
" + } + }, + "com.amazonaws.inspector2#Ec2Platform": { + "type": "string", + "traits": { + "smithy.api#enum": [ + { + "value": "WINDOWS", + "name": "WINDOWS" + }, + { + "value": "LINUX", + "name": "LINUX" + }, + { + "value": "UNKNOWN", + "name": "UNKNOWN" + }, + { + "value": "MACOS", + "name": "MACOS" + } + ] + } + }, + "com.amazonaws.inspector2#EcrConfiguration": { + "type": "structure", + "members": { + "rescanDuration": { + "target": "com.amazonaws.inspector2#EcrRescanDuration", + "traits": { + "smithy.api#documentation": "The ECR automated re-scan duration defines how long an ECR image will be actively scanned by Amazon Inspector. When the number of days since an image was last pushed exceeds the automated re-scan duration the monitoring state of that image becomes inactive and all associated findings are scheduled for closure.
Details about the ECR automated re-scan duration setting for your environment.
" + } + }, + "com.amazonaws.inspector2#EcrConfigurationState": { + "type": "structure", + "members": { + "rescanDurationState": { + "target": "com.amazonaws.inspector2#EcrRescanDurationState", + "traits": { + "smithy.api#documentation": "An object that contains details about the state of the ECR automated re-scan setting.
" + } + } + }, + "traits": { + "smithy.api#documentation": "Details about the state of the ECR scans for your environment.
" + } + }, + "com.amazonaws.inspector2#EcrContainerImageMetadata": { + "type": "structure", + "members": { + "tags": { + "target": "com.amazonaws.inspector2#TagList", + "traits": { + "smithy.api#documentation": "Tags associated with the Amazon ECR image metadata.
" + } + } + }, + "traits": { + "smithy.api#documentation": "Information on the Amazon ECR image metadata associated with a finding.
" + } + }, + "com.amazonaws.inspector2#EcrRepositoryMetadata": { + "type": "structure", + "members": { + "name": { + "target": "smithy.api#String", + "traits": { + "smithy.api#documentation": "The name of the Amazon ECR repository.
" + } + }, + "scanFrequency": { + "target": "com.amazonaws.inspector2#EcrScanFrequency", + "traits": { + "smithy.api#documentation": "The frequency of scans.
" + } + } + }, + "traits": { + "smithy.api#documentation": "Information on the Amazon ECR repository metadata associated with a finding.
" + } + }, + "com.amazonaws.inspector2#EcrRescanDuration": { + "type": "string", + "traits": { + "smithy.api#enum": [ + { + "value": "LIFETIME", + "name": "LIFETIME" + }, + { + "value": "DAYS_30", + "name": "DAYS_30" + }, + { + "value": "DAYS_180", + "name": "DAYS_180" + } + ] + } + }, + "com.amazonaws.inspector2#EcrRescanDurationState": { + "type": "structure", + "members": { + "rescanDuration": { + "target": "com.amazonaws.inspector2#EcrRescanDuration", + "traits": { + "smithy.api#documentation": "The ECR automated re-scan duration defines how long an ECR image will be actively scanned by Amazon Inspector. When the number of days since an image was last pushed exceeds the automated re-scan duration the monitoring state of that image becomes inactive and all associated findings are scheduled for closure.
The status of changes to the ECR automated re-scan duration.
" + } + }, + "updatedAt": { + "target": "com.amazonaws.inspector2#DateTimeTimestamp", + "traits": { + "smithy.api#documentation": "A timestamp representing when the last time the ECR scan duration setting was changed.
" + } + } + }, + "traits": { + "smithy.api#documentation": "Details about the state of any changes to the ECR automated re-scan duration setting.
" + } + }, + "com.amazonaws.inspector2#EcrRescanDurationStatus": { + "type": "string", + "traits": { + "smithy.api#enum": [ + { + "value": "SUCCESS", + "name": "SUCCESS" + }, + { + "value": "PENDING", + "name": "PENDING" + }, + { + "value": "FAILED", + "name": "FAILED" + } + ] + } + }, + "com.amazonaws.inspector2#EcrScanFrequency": { + "type": "string", + "traits": { + "smithy.api#enum": [ + { + "value": "MANUAL", + "name": "MANUAL" + }, + { + "value": "SCAN_ON_PUSH", + "name": "SCAN_ON_PUSH" + }, + { + "value": "CONTINUOUS_SCAN", + "name": "CONTINUOUS_SCAN" + } + ] + } + }, + "com.amazonaws.inspector2#Enable": { + "type": "operation", + "input": { + "target": "com.amazonaws.inspector2#EnableRequest" + }, + "output": { + "target": "com.amazonaws.inspector2#EnableResponse" + }, + "errors": [ + { + "target": "com.amazonaws.inspector2#AccessDeniedException" + }, + { + "target": "com.amazonaws.inspector2#InternalServerException" + }, + { + "target": "com.amazonaws.inspector2#ResourceNotFoundException" + }, + { + "target": "com.amazonaws.inspector2#ThrottlingException" + }, + { + "target": "com.amazonaws.inspector2#ValidationException" + } + ], + "traits": { + "smithy.api#documentation": "Enables Amazon Inspector scans for one or more Amazon Web Services accounts.
", + "smithy.api#http": { + "code": 200, + "method": "POST", + "uri": "/enable" + } + } + }, + "com.amazonaws.inspector2#EnableDelegatedAdminAccount": { + "type": "operation", + "input": { + "target": "com.amazonaws.inspector2#EnableDelegatedAdminAccountRequest" + }, + "output": { + "target": "com.amazonaws.inspector2#EnableDelegatedAdminAccountResponse" + }, + "errors": [ + { + "target": "com.amazonaws.inspector2#AccessDeniedException" + }, + { + "target": "com.amazonaws.inspector2#ConflictException" + }, + { + "target": "com.amazonaws.inspector2#InternalServerException" + }, + { + "target": "com.amazonaws.inspector2#ResourceNotFoundException" + }, + { + "target": "com.amazonaws.inspector2#ThrottlingException" + }, + { + "target": "com.amazonaws.inspector2#ValidationException" + } + ], + "traits": { + "smithy.api#documentation": "Enables the Amazon Inspector delegated administrator for your Organizations organization.
", + "smithy.api#http": { + "code": 200, + "method": "POST", + "uri": "/delegatedadminaccounts/enable" + } + } + }, + "com.amazonaws.inspector2#EnableDelegatedAdminAccountRequest": { + "type": "structure", + "members": { + "delegatedAdminAccountId": { + "target": "com.amazonaws.inspector2#AccountId", + "traits": { + "smithy.api#documentation": "The Amazon Web Services account ID of the Amazon Inspector delegated administrator.
", + "smithy.api#required": {} + } + }, + "clientToken": { + "target": "com.amazonaws.inspector2#ClientToken", + "traits": { + "smithy.api#documentation": "The idempotency token for the request.
", + "smithy.api#idempotencyToken": {} + } + } + } + }, + "com.amazonaws.inspector2#EnableDelegatedAdminAccountResponse": { + "type": "structure", + "members": { + "delegatedAdminAccountId": { + "target": "com.amazonaws.inspector2#AccountId", + "traits": { + "smithy.api#documentation": "The Amazon Web Services account ID of the successfully Amazon Inspector delegated administrator.
", + "smithy.api#required": {} + } + } + } + }, + "com.amazonaws.inspector2#EnableRequest": { + "type": "structure", + "members": { + "accountIds": { + "target": "com.amazonaws.inspector2#AccountIdSet", + "traits": { + "smithy.api#documentation": "A list of account IDs you want to enable Amazon Inspector scans for.
" + } + }, + "resourceTypes": { + "target": "com.amazonaws.inspector2#EnableResourceTypeList", + "traits": { + "smithy.api#documentation": "The resource scan types you want to enable.
", + "smithy.api#required": {} + } + }, + "clientToken": { + "target": "com.amazonaws.inspector2#ClientToken", + "traits": { + "smithy.api#documentation": "The idempotency token for the request.
", + "smithy.api#idempotencyToken": {} + } + } + } + }, + "com.amazonaws.inspector2#EnableResourceTypeList": { + "type": "list", + "member": { + "target": "com.amazonaws.inspector2#ResourceScanType" + }, + "traits": { + "smithy.api#length": { + "min": 1, + "max": 3 + } + } + }, + "com.amazonaws.inspector2#EnableResponse": { + "type": "structure", + "members": { + "accounts": { + "target": "com.amazonaws.inspector2#AccountList", + "traits": { + "smithy.api#documentation": "Information on the accounts that have had Amazon Inspector scans successfully enabled. Details are\n provided for each account.
", + "smithy.api#required": {} + } + }, + "failedAccounts": { + "target": "com.amazonaws.inspector2#FailedAccountList", + "traits": { + "smithy.api#documentation": "Information on any accounts for which Amazon Inspector scans could not be enabled. Details are\n provided for each account.
" + } + } + } + }, + "com.amazonaws.inspector2#Epss": { + "type": "structure", + "members": { + "score": { + "target": "com.amazonaws.inspector2#EpssScore", + "traits": { + "smithy.api#default": 0, + "smithy.api#documentation": "The Exploit Prediction Scoring System (EPSS) score.
" + } + } + }, + "traits": { + "smithy.api#documentation": "Details about the Exploit Prediction Scoring System (EPSS) score.
" + } + }, + "com.amazonaws.inspector2#EpssDetails": { + "type": "structure", + "members": { + "score": { + "target": "com.amazonaws.inspector2#EpssScoreValue", + "traits": { + "smithy.api#default": 0, + "smithy.api#documentation": "The EPSS score.
" + } + } + }, + "traits": { + "smithy.api#documentation": "Details about the Exploit Prediction Scoring System (EPSS) score for a finding.
" + } + }, + "com.amazonaws.inspector2#EpssScore": { + "type": "double", + "traits": { + "smithy.api#default": 0 + } + }, + "com.amazonaws.inspector2#EpssScoreValue": { + "type": "double", + "traits": { + "smithy.api#default": 0, + "smithy.api#range": { + "min": 0.0, + "max": 1.0 + } + } + }, + "com.amazonaws.inspector2#ErrorCode": { + "type": "string", + "traits": { + "smithy.api#enum": [ + { + "value": "ALREADY_ENABLED", + "name": "ALREADY_ENABLED" + }, + { + "value": "ENABLE_IN_PROGRESS", + "name": "ENABLE_IN_PROGRESS" + }, + { + "value": "DISABLE_IN_PROGRESS", + "name": "DISABLE_IN_PROGRESS" + }, + { + "value": "SUSPEND_IN_PROGRESS", + "name": "SUSPEND_IN_PROGRESS" + }, + { + "value": "RESOURCE_NOT_FOUND", + "name": "RESOURCE_NOT_FOUND" + }, + { + "value": "ACCESS_DENIED", + "name": "ACCESS_DENIED" + }, + { + "value": "INTERNAL_ERROR", + "name": "INTERNAL_ERROR" + }, + { + "value": "SSM_UNAVAILABLE", + "name": "SSM_UNAVAILABLE" + }, + { + "value": "SSM_THROTTLED", + "name": "SSM_THROTTLED" + }, + { + "value": "EVENTBRIDGE_UNAVAILABLE", + "name": "EVENTBRIDGE_UNAVAILABLE" + }, + { + "value": "EVENTBRIDGE_THROTTLED", + "name": "EVENTBRIDGE_THROTTLED" + }, + { + "value": "RESOURCE_SCAN_NOT_DISABLED", + "name": "RESOURCE_SCAN_NOT_DISABLED" + }, + { + "value": "DISASSOCIATE_ALL_MEMBERS", + "name": "DISASSOCIATE_ALL_MEMBERS" + }, + { + "value": "ACCOUNT_IS_ISOLATED", + "name": "ACCOUNT_IS_ISOLATED" + } + ] + } + }, + "com.amazonaws.inspector2#ErrorMessage": { + "type": "string" + }, + "com.amazonaws.inspector2#Evidence": { + "type": "structure", + "members": { + "evidenceRule": { + "target": "com.amazonaws.inspector2#EvidenceRule", + "traits": { + "smithy.api#documentation": "The evidence rule.
" + } + }, + "evidenceDetail": { + "target": "com.amazonaws.inspector2#EvidenceDetail", + "traits": { + "smithy.api#documentation": "The evidence details.
" + } + }, + "severity": { + "target": "com.amazonaws.inspector2#EvidenceSeverity", + "traits": { + "smithy.api#documentation": "The evidence severity.
" + } + } + }, + "traits": { + "smithy.api#documentation": "Details of the evidence for a vulnerability identified in a finding.
" + } + }, + "com.amazonaws.inspector2#EvidenceDetail": { + "type": "string", + "traits": { + "smithy.api#length": { + "min": 0 + } + } + }, + "com.amazonaws.inspector2#EvidenceList": { + "type": "list", + "member": { + "target": "com.amazonaws.inspector2#Evidence" + } + }, + "com.amazonaws.inspector2#EvidenceRule": { + "type": "string", + "traits": { + "smithy.api#length": { + "min": 0 + } + } + }, + "com.amazonaws.inspector2#EvidenceSeverity": { + "type": "string", + "traits": { + "smithy.api#length": { + "min": 0 + } + } + }, + "com.amazonaws.inspector2#ExecutionRoleArn": { + "type": "string", + "traits": { + "smithy.api#pattern": "^arn:(aws[a-zA-Z-]*)?:iam::\\d{12}:role/?[a-zA-Z_0-9+=,.@\\-_/]+$" + } + }, + "com.amazonaws.inspector2#ExploitAvailable": { + "type": "string", + "traits": { + "smithy.api#enum": [ + { + "value": "YES", + "name": "YES" + }, + { + "value": "NO", + "name": "NO" + } + ] + } + }, + "com.amazonaws.inspector2#ExploitObserved": { + "type": "structure", + "members": { + "lastSeen": { + "target": "com.amazonaws.inspector2#LastSeen", + "traits": { + "smithy.api#documentation": "The date an time when the exploit was last seen.
" + } + }, + "firstSeen": { + "target": "com.amazonaws.inspector2#FirstSeen", + "traits": { + "smithy.api#documentation": "The date an time when the exploit was first seen.
" + } + } + }, + "traits": { + "smithy.api#documentation": "Contains information on when this exploit was observed.
" + } + }, + "com.amazonaws.inspector2#ExploitabilityDetails": { + "type": "structure", + "members": { + "lastKnownExploitAt": { + "target": "com.amazonaws.inspector2#DateTimeTimestamp", + "traits": { + "smithy.api#documentation": "The date and time of the last exploit associated with a finding discovered in your environment.
" + } + } + }, + "traits": { + "smithy.api#documentation": "The details of an exploit available for a finding discovered in your environment.
" + } + }, + "com.amazonaws.inspector2#ExternalReportStatus": { + "type": "string", + "traits": { + "smithy.api#enum": [ + { + "value": "SUCCEEDED", + "name": "SUCCEEDED" + }, + { + "value": "IN_PROGRESS", + "name": "IN_PROGRESS" + }, + { + "value": "CANCELLED", + "name": "CANCELLED" + }, + { + "value": "FAILED", + "name": "FAILED" + } + ] + } + }, + "com.amazonaws.inspector2#FailedAccount": { + "type": "structure", + "members": { + "accountId": { + "target": "com.amazonaws.inspector2#AccountId", + "traits": { + "smithy.api#documentation": "The Amazon Web Services account ID.
", + "smithy.api#required": {} + } + }, + "status": { + "target": "com.amazonaws.inspector2#Status", + "traits": { + "smithy.api#documentation": "The status of Amazon Inspector for the account.
" + } + }, + "resourceStatus": { + "target": "com.amazonaws.inspector2#ResourceStatus", + "traits": { + "smithy.api#documentation": "An object detailing which resources Amazon Inspector is enabled to scan for the account.
" + } + }, + "errorCode": { + "target": "com.amazonaws.inspector2#ErrorCode", + "traits": { + "smithy.api#documentation": "The error code explaining why the account failed to enable Amazon Inspector.
", + "smithy.api#required": {} + } + }, + "errorMessage": { + "target": "com.amazonaws.inspector2#NonEmptyString", + "traits": { + "smithy.api#documentation": "The error message received when the account failed to enable Amazon Inspector.
", + "smithy.api#required": {} + } + } + }, + "traits": { + "smithy.api#documentation": "An object with details on why an account failed to enable Amazon Inspector.
" + } + }, + "com.amazonaws.inspector2#FailedAccountList": { + "type": "list", + "member": { + "target": "com.amazonaws.inspector2#FailedAccount" + }, + "traits": { + "smithy.api#length": { + "min": 0, + "max": 100 + } + } + }, + "com.amazonaws.inspector2#FailedMemberAccountEc2DeepInspectionStatusState": { + "type": "structure", + "members": { + "accountId": { + "target": "com.amazonaws.inspector2#AccountId", + "traits": { + "smithy.api#documentation": "The unique identifier for the Amazon Web Services account of the organization member that failed to activate Amazon Inspector deep inspection.
", + "smithy.api#required": {} + } + }, + "ec2ScanStatus": { + "target": "com.amazonaws.inspector2#Status", + "traits": { + "smithy.api#documentation": "The status of EC2 scanning in the account that failed to activate Amazon Inspector deep inspection.
" + } + }, + "errorMessage": { + "target": "com.amazonaws.inspector2#NonEmptyString", + "traits": { + "smithy.api#documentation": "The error message explaining why the account failed to activate Amazon Inspector deep inspection.
" + } + } + }, + "traits": { + "smithy.api#documentation": "An object that contains details about a member account in your organization that failed to activate Amazon Inspector deep inspection.
" + } + }, + "com.amazonaws.inspector2#FailedMemberAccountEc2DeepInspectionStatusStateList": { + "type": "list", + "member": { + "target": "com.amazonaws.inspector2#FailedMemberAccountEc2DeepInspectionStatusState" + }, + "traits": { + "smithy.api#length": { + "min": 0, + "max": 100 + } + } + }, + "com.amazonaws.inspector2#FilePath": { + "type": "string", + "traits": { + "smithy.api#length": { + "min": 1, + "max": 1024 + } + } + }, + "com.amazonaws.inspector2#Filter": { + "type": "structure", + "members": { + "arn": { + "target": "com.amazonaws.inspector2#FilterArn", + "traits": { + "smithy.api#documentation": "The Amazon Resource Number (ARN) associated with this filter.
", + "smithy.api#required": {} + } + }, + "ownerId": { + "target": "com.amazonaws.inspector2#OwnerId", + "traits": { + "smithy.api#documentation": "The Amazon Web Services account ID of the account that created the filter.
", + "smithy.api#required": {} + } + }, + "name": { + "target": "com.amazonaws.inspector2#FilterName", + "traits": { + "smithy.api#documentation": "The name of the filter.
", + "smithy.api#required": {} + } + }, + "criteria": { + "target": "com.amazonaws.inspector2#FilterCriteria", + "traits": { + "smithy.api#documentation": "Details on the filter criteria associated with this filter.
", + "smithy.api#required": {} + } + }, + "action": { + "target": "com.amazonaws.inspector2#FilterAction", + "traits": { + "smithy.api#documentation": "The action that is to be applied to the findings that match the filter.
", + "smithy.api#required": {} + } + }, + "createdAt": { + "target": "com.amazonaws.inspector2#DateTimeTimestamp", + "traits": { + "smithy.api#documentation": "The date and time this filter was created at.
", + "smithy.api#required": {} + } + }, + "updatedAt": { + "target": "com.amazonaws.inspector2#DateTimeTimestamp", + "traits": { + "smithy.api#documentation": "The date and time the filter was last updated at.
", + "smithy.api#required": {} + } + }, + "description": { + "target": "com.amazonaws.inspector2#FilterDescription", + "traits": { + "smithy.api#documentation": "A description of the filter.
" + } + }, + "reason": { + "target": "com.amazonaws.inspector2#FilterReason", + "traits": { + "smithy.api#documentation": "The reason for the filter.
" + } + }, + "tags": { + "target": "com.amazonaws.inspector2#TagMap", + "traits": { + "smithy.api#documentation": "The tags attached to the filter.
" + } + } + }, + "traits": { + "smithy.api#documentation": "Details about a filter.
" + } + }, + "com.amazonaws.inspector2#FilterAction": { + "type": "string", + "traits": { + "smithy.api#enum": [ + { + "value": "NONE", + "name": "NONE" + }, + { + "value": "SUPPRESS", + "name": "SUPPRESS" + } + ] + } + }, + "com.amazonaws.inspector2#FilterArn": { + "type": "string", + "traits": { + "smithy.api#length": { + "min": 1, + "max": 128 + } + } + }, + "com.amazonaws.inspector2#FilterArnList": { + "type": "list", + "member": { + "target": "com.amazonaws.inspector2#FilterArn" + } + }, + "com.amazonaws.inspector2#FilterCriteria": { + "type": "structure", + "members": { + "findingArn": { + "target": "com.amazonaws.inspector2#StringFilterList", + "traits": { + "smithy.api#documentation": "Details on the finding ARNs used to filter findings.
" + } + }, + "awsAccountId": { + "target": "com.amazonaws.inspector2#StringFilterList", + "traits": { + "smithy.api#documentation": "Details of the Amazon Web Services account IDs used to filter findings.
" + } + }, + "findingType": { + "target": "com.amazonaws.inspector2#StringFilterList", + "traits": { + "smithy.api#documentation": "Details on the finding types used to filter findings.
" + } + }, + "severity": { + "target": "com.amazonaws.inspector2#StringFilterList", + "traits": { + "smithy.api#documentation": "Details on the severity used to filter findings.
" + } + }, + "firstObservedAt": { + "target": "com.amazonaws.inspector2#DateFilterList", + "traits": { + "smithy.api#documentation": "Details on the date and time a finding was first seen used to filter findings.
" + } + }, + "lastObservedAt": { + "target": "com.amazonaws.inspector2#DateFilterList", + "traits": { + "smithy.api#documentation": "Details on the date and time a finding was last seen used to filter findings.
" + } + }, + "updatedAt": { + "target": "com.amazonaws.inspector2#DateFilterList", + "traits": { + "smithy.api#documentation": "Details on the date and time a finding was last updated at used to filter findings.
" + } + }, + "findingStatus": { + "target": "com.amazonaws.inspector2#StringFilterList", + "traits": { + "smithy.api#documentation": "Details on the finding status types used to filter findings.
" + } + }, + "title": { + "target": "com.amazonaws.inspector2#StringFilterList", + "traits": { + "smithy.api#documentation": "Details on the finding title used to filter findings.
" + } + }, + "inspectorScore": { + "target": "com.amazonaws.inspector2#NumberFilterList", + "traits": { + "smithy.api#documentation": "The Amazon Inspector score to filter on.
" + } + }, + "resourceType": { + "target": "com.amazonaws.inspector2#StringFilterList", + "traits": { + "smithy.api#documentation": "Details on the resource types used to filter findings.
" + } + }, + "resourceId": { + "target": "com.amazonaws.inspector2#StringFilterList", + "traits": { + "smithy.api#documentation": "Details on the resource IDs used to filter findings.
" + } + }, + "resourceTags": { "target": "com.amazonaws.inspector2#MapFilterList", "traits": { "smithy.api#documentation": "Details on the resource tags used to filter findings.
" @@ -4993,63 +6752,300 @@ "name": "INTERNAL_ERROR", "value": "INTERNAL_ERROR" } - ] - } - }, - "com.amazonaws.inspector2#FreeTrialInfoErrorList": { - "type": "list", - "member": { - "target": "com.amazonaws.inspector2#FreeTrialInfoError" - } - }, - "com.amazonaws.inspector2#FreeTrialInfoList": { - "type": "list", - "member": { - "target": "com.amazonaws.inspector2#FreeTrialInfo" - } - }, - "com.amazonaws.inspector2#FreeTrialStatus": { - "type": "string", + ] + } + }, + "com.amazonaws.inspector2#FreeTrialInfoErrorList": { + "type": "list", + "member": { + "target": "com.amazonaws.inspector2#FreeTrialInfoError" + } + }, + "com.amazonaws.inspector2#FreeTrialInfoList": { + "type": "list", + "member": { + "target": "com.amazonaws.inspector2#FreeTrialInfo" + } + }, + "com.amazonaws.inspector2#FreeTrialStatus": { + "type": "string", + "traits": { + "smithy.api#enum": [ + { + "name": "ACTIVE", + "value": "ACTIVE" + }, + { + "name": "INACTIVE", + "value": "INACTIVE" + } + ] + } + }, + "com.amazonaws.inspector2#FreeTrialType": { + "type": "string", + "traits": { + "smithy.api#enum": [ + { + "name": "EC2", + "value": "EC2" + }, + { + "name": "ECR", + "value": "ECR" + }, + { + "name": "LAMBDA", + "value": "LAMBDA" + }, + { + "name": "LAMBDA_CODE", + "value": "LAMBDA_CODE" + } + ] + } + }, + "com.amazonaws.inspector2#FunctionName": { + "type": "string", + "traits": { + "smithy.api#pattern": "^[a-zA-Z0-9-_\\.]+(:(\\$LATEST|[a-zA-Z0-9-_]+))?$" + } + }, + "com.amazonaws.inspector2#GetCisScanReport": { + "type": "operation", + "input": { + "target": "com.amazonaws.inspector2#GetCisScanReportRequest" + }, + "output": { + "target": "com.amazonaws.inspector2#GetCisScanReportResponse" + }, + "errors": [ + { + "target": "com.amazonaws.inspector2#AccessDeniedException" + }, + { + "target": "com.amazonaws.inspector2#InternalServerException" + }, + { + "target": "com.amazonaws.inspector2#ThrottlingException" + }, + { + "target": "com.amazonaws.inspector2#ValidationException" + } + ], + "traits": { + "smithy.api#documentation": "Retrieves a CIS scan report.
", + "smithy.api#examples": [ + { + "title": "Sample GetCisScanReport Call", + "input": { + "scanArn": "arn:aws:inspector2:us-east-1:123412341234:owner/123412341234/cis-scan/624b746d-e080-44ae-8c1d-48e653365a38" + }, + "output": { + "url": "www.s3.amazon.com/abcdef", + "status": "SUCCEEDED" + } + } + ], + "smithy.api#http": { + "code": 200, + "method": "POST", + "uri": "/cis/scan/report/get" + } + } + }, + "com.amazonaws.inspector2#GetCisScanReportRequest": { + "type": "structure", + "members": { + "scanArn": { + "target": "com.amazonaws.inspector2#CisScanArn", + "traits": { + "smithy.api#documentation": "The scan ARN.
", + "smithy.api#required": {} + } + }, + "targetAccounts": { + "target": "com.amazonaws.inspector2#ReportTargetAccounts", + "traits": { + "smithy.api#documentation": "The target accounts.
" + } + } + }, + "traits": { + "smithy.api#input": {} + } + }, + "com.amazonaws.inspector2#GetCisScanReportResponse": { + "type": "structure", + "members": { + "url": { + "target": "smithy.api#String", + "traits": { + "smithy.api#documentation": "\n The URL where the CIS scan report PDF can be downloaded.\n
" + } + }, + "status": { + "target": "com.amazonaws.inspector2#CisReportStatus", + "traits": { + "smithy.api#documentation": "The status.
" + } + } + }, + "traits": { + "smithy.api#output": {} + } + }, + "com.amazonaws.inspector2#GetCisScanResultDetails": { + "type": "operation", + "input": { + "target": "com.amazonaws.inspector2#GetCisScanResultDetailsRequest" + }, + "output": { + "target": "com.amazonaws.inspector2#GetCisScanResultDetailsResponse" + }, + "errors": [ + { + "target": "com.amazonaws.inspector2#AccessDeniedException" + }, + { + "target": "com.amazonaws.inspector2#InternalServerException" + }, + { + "target": "com.amazonaws.inspector2#ThrottlingException" + }, + { + "target": "com.amazonaws.inspector2#ValidationException" + } + ], + "traits": { + "smithy.api#documentation": "Retrieves CIS scan result details.
", + "smithy.api#examples": [ + { + "title": "Sample GetCisScanResultDetails Call", + "input": { + "scanArn": "arn:aws:inspector2:us-east-1:123412341234:owner/123412341234/cis-scan/624b746d-e080-44ae-8c1d-48e653365a38", + "targetResourceId": "i-12341234", + "accountId": "123412341234" + }, + "output": { + "scanResultDetails": [ + { + "scanArn": "arn:aws:inspector2:us-east-1:123412341234:owner/123412341234/cis-scan/624b746d-e080-44ae-8c1d-48e653365a38", + "accountId": "123412341234", + "targetResourceId": "i-12341234", + "platform": "AMAZON_LINUX_2", + "status": "PASSED", + "checkId": "1.1.1.1", + "title": "title1", + "checkDescription": "description", + "remediation": "fix", + "level": "LEVEL_1" + } + ] + } + } + ], + "smithy.api#http": { + "code": 200, + "method": "POST", + "uri": "/cis/scan-result/details/get" + }, + "smithy.api#paginated": { + "inputToken": "nextToken", + "outputToken": "nextToken", + "items": "scanResultDetails", + "pageSize": "maxResults" + } + } + }, + "com.amazonaws.inspector2#GetCisScanResultDetailsMaxResults": { + "type": "integer", + "traits": { + "smithy.api#range": { + "min": 1, + "max": 1000 + } + } + }, + "com.amazonaws.inspector2#GetCisScanResultDetailsRequest": { + "type": "structure", + "members": { + "scanArn": { + "target": "com.amazonaws.inspector2#CisScanArn", + "traits": { + "smithy.api#documentation": "The scan ARN.
", + "smithy.api#required": {} + } + }, + "targetResourceId": { + "target": "com.amazonaws.inspector2#ResourceId", + "traits": { + "smithy.api#documentation": "The target resource ID.
", + "smithy.api#required": {} + } + }, + "accountId": { + "target": "com.amazonaws.inspector2#AccountId", + "traits": { + "smithy.api#documentation": "The account ID.
", + "smithy.api#required": {} + } + }, + "filterCriteria": { + "target": "com.amazonaws.inspector2#CisScanResultDetailsFilterCriteria", + "traits": { + "smithy.api#documentation": "The filter criteria.
" + } + }, + "sortBy": { + "target": "com.amazonaws.inspector2#CisScanResultDetailsSortBy", + "traits": { + "smithy.api#default": "CHECK_ID", + "smithy.api#documentation": "The sort by order.
" + } + }, + "sortOrder": { + "target": "com.amazonaws.inspector2#CisSortOrder", + "traits": { + "smithy.api#documentation": "The sort order.
" + } + }, + "nextToken": { + "target": "com.amazonaws.inspector2#NextToken", + "traits": { + "smithy.api#documentation": "The pagination token from a previous request that's used to retrieve the next page of results.
" + } + }, + "maxResults": { + "target": "com.amazonaws.inspector2#GetCisScanResultDetailsMaxResults", + "traits": { + "smithy.api#default": 300, + "smithy.api#documentation": "The maximum number of CIS scan result details to be returned in a single page of results.
" + } + } + }, "traits": { - "smithy.api#enum": [ - { - "name": "ACTIVE", - "value": "ACTIVE" - }, - { - "name": "INACTIVE", - "value": "INACTIVE" - } - ] + "smithy.api#input": {} } }, - "com.amazonaws.inspector2#FreeTrialType": { - "type": "string", - "traits": { - "smithy.api#enum": [ - { - "name": "EC2", - "value": "EC2" - }, - { - "name": "ECR", - "value": "ECR" - }, - { - "name": "LAMBDA", - "value": "LAMBDA" - }, - { - "name": "LAMBDA_CODE", - "value": "LAMBDA_CODE" + "com.amazonaws.inspector2#GetCisScanResultDetailsResponse": { + "type": "structure", + "members": { + "scanResultDetails": { + "target": "com.amazonaws.inspector2#CisScanResultDetailsList", + "traits": { + "smithy.api#documentation": "The scan result details.
" } - ] - } - }, - "com.amazonaws.inspector2#FunctionName": { - "type": "string", + }, + "nextToken": { + "target": "com.amazonaws.inspector2#NextToken", + "traits": { + "smithy.api#documentation": "The pagination token from a previous request that's used to retrieve the next page of results.
" + } + } + }, "traits": { - "smithy.api#pattern": "^[a-zA-Z0-9-_\\.]+(:(\\$LATEST|[a-zA-Z0-9-_]+))?$" + "smithy.api#output": {} } }, "com.amazonaws.inspector2#GetConfiguration": { @@ -5701,6 +7697,9 @@ { "target": "com.amazonaws.inspector2#CancelSbomExport" }, + { + "target": "com.amazonaws.inspector2#CreateCisScanConfiguration" + }, { "target": "com.amazonaws.inspector2#CreateFilter" }, @@ -5710,6 +7709,9 @@ { "target": "com.amazonaws.inspector2#CreateSbomExport" }, + { + "target": "com.amazonaws.inspector2#DeleteCisScanConfiguration" + }, { "target": "com.amazonaws.inspector2#DeleteFilter" }, @@ -5731,6 +7733,12 @@ { "target": "com.amazonaws.inspector2#EnableDelegatedAdminAccount" }, + { + "target": "com.amazonaws.inspector2#GetCisScanReport" + }, + { + "target": "com.amazonaws.inspector2#GetCisScanResultDetails" + }, { "target": "com.amazonaws.inspector2#GetConfiguration" }, @@ -5755,6 +7763,18 @@ { "target": "com.amazonaws.inspector2#ListAccountPermissions" }, + { + "target": "com.amazonaws.inspector2#ListCisScanConfigurations" + }, + { + "target": "com.amazonaws.inspector2#ListCisScanResultsAggregatedByChecks" + }, + { + "target": "com.amazonaws.inspector2#ListCisScanResultsAggregatedByTargetResource" + }, + { + "target": "com.amazonaws.inspector2#ListCisScans" + }, { "target": "com.amazonaws.inspector2#ListCoverage" }, @@ -5788,12 +7808,27 @@ { "target": "com.amazonaws.inspector2#SearchVulnerabilities" }, + { + "target": "com.amazonaws.inspector2#SendCisSessionHealth" + }, + { + "target": "com.amazonaws.inspector2#SendCisSessionTelemetry" + }, + { + "target": "com.amazonaws.inspector2#StartCisSession" + }, + { + "target": "com.amazonaws.inspector2#StopCisSession" + }, { "target": "com.amazonaws.inspector2#TagResource" }, { "target": "com.amazonaws.inspector2#UntagResource" }, + { + "target": "com.amazonaws.inspector2#UpdateCisScanConfiguration" + }, { "target": "com.amazonaws.inspector2#UpdateConfiguration" }, @@ -5873,7 +7908,6 @@ ] } ], - "type": "tree", "rules": [ { "conditions": [ @@ -5916,7 +7950,8 @@ }, "type": "endpoint" } - ] + ], + "type": "tree" }, { "conditions": [ @@ -5929,7 +7964,6 @@ ] } ], - "type": "tree", "rules": [ { "conditions": [ @@ -5943,7 +7977,6 @@ "assign": "PartitionResult" } ], - "type": "tree", "rules": [ { "conditions": [ @@ -5966,7 +7999,6 @@ ] } ], - "type": "tree", "rules": [ { "conditions": [ @@ -6001,7 +8033,6 @@ ] } ], - "type": "tree", "rules": [ { "conditions": [], @@ -6012,14 +8043,16 @@ }, "type": "endpoint" } - ] + ], + "type": "tree" }, { "conditions": [], "error": "FIPS and DualStack are enabled, but this partition does not support one or both", "type": "error" } - ] + ], + "type": "tree" }, { "conditions": [ @@ -6033,14 +8066,12 @@ ] } ], - "type": "tree", "rules": [ { "conditions": [ { "fn": "booleanEquals", "argv": [ - true, { "fn": "getAttr", "argv": [ @@ -6049,11 +8080,11 @@ }, "supportsFIPS" ] - } + }, + true ] } ], - "type": "tree", "rules": [ { "conditions": [], @@ -6064,14 +8095,16 @@ }, "type": "endpoint" } - ] + ], + "type": "tree" }, { "conditions": [], "error": "FIPS is enabled but this partition does not support FIPS", "type": "error" } - ] + ], + "type": "tree" }, { "conditions": [ @@ -6085,7 +8118,6 @@ ] } ], - "type": "tree", "rules": [ { "conditions": [ @@ -6105,7 +8137,6 @@ ] } ], - "type": "tree", "rules": [ { "conditions": [], @@ -6116,14 +8147,16 @@ }, "type": "endpoint" } - ] + ], + "type": "tree" }, { "conditions": [], "error": "DualStack is enabled but this partition does not support DualStack", "type": "error" } - ] + ], + "type": "tree" }, { "conditions": [], @@ -6134,9 +8167,11 @@ }, "type": "endpoint" } - ] + ], + "type": "tree" } - ] + ], + "type": "tree" }, { "conditions": [], @@ -6695,386 +8730,902 @@ } } }, - "com.amazonaws.inspector2#InspectorScoreDetails": { + "com.amazonaws.inspector2#InspectorScoreDetails": { + "type": "structure", + "members": { + "adjustedCvss": { + "target": "com.amazonaws.inspector2#CvssScoreDetails", + "traits": { + "smithy.api#documentation": "An object that contains details about the CVSS score given to a finding.
" + } + } + }, + "traits": { + "smithy.api#documentation": "Information about the Amazon Inspector score given to a finding.
" + } + }, + "com.amazonaws.inspector2#InternalServerException": { + "type": "structure", + "members": { + "message": { + "target": "smithy.api#String", + "traits": { + "smithy.api#required": {} + } + }, + "retryAfterSeconds": { + "target": "smithy.api#Integer", + "traits": { + "smithy.api#documentation": "The number of seconds to wait before retrying the request.
", + "smithy.api#httpHeader": "Retry-After" + } + } + }, + "traits": { + "smithy.api#documentation": "The request has failed due to an internal failure of the Amazon Inspector service.
", + "smithy.api#error": "server", + "smithy.api#httpError": 500, + "smithy.api#retryable": {} + } + }, + "com.amazonaws.inspector2#IpV4Address": { + "type": "string", + "traits": { + "smithy.api#length": { + "min": 7, + "max": 15 + }, + "smithy.api#pattern": "^(([0-9]|[1-9][0-9]|1[0-9]{2}|2[0-4][0-9]|25[0-5])\\.){3}([0-9]|[1-9][0-9]|1[0-9]{2}|2[0-4][0-9]|25[0-5])$" + } + }, + "com.amazonaws.inspector2#IpV4AddressList": { + "type": "list", + "member": { + "target": "com.amazonaws.inspector2#IpV4Address" + } + }, + "com.amazonaws.inspector2#IpV6Address": { + "type": "string", + "traits": { + "smithy.api#length": { + "min": 1, + "max": 47 + } + } + }, + "com.amazonaws.inspector2#IpV6AddressList": { + "type": "list", + "member": { + "target": "com.amazonaws.inspector2#IpV6Address" + } + }, + "com.amazonaws.inspector2#KmsKeyArn": { + "type": "string", + "traits": { + "smithy.api#pattern": "^arn:aws(-(us-gov|cn))?:kms:([a-z0-9][-.a-z0-9]{0,62})?:[0-9]{12}?:key/(([0-9a-fA-F]{8}-[0-9a-fA-F]{4}-[0-9a-fA-F]{4}-[0-9a-fA-F]{4}-[0-9a-fA-F]{12})|(mrk-[0-9a-zA-Z]{32}))$" + } + }, + "com.amazonaws.inspector2#LambdaFunctionAggregation": { + "type": "structure", + "members": { + "resourceIds": { + "target": "com.amazonaws.inspector2#StringFilterList", + "traits": { + "smithy.api#documentation": "The resource IDs to include in the aggregation results.
" + } + }, + "functionNames": { + "target": "com.amazonaws.inspector2#StringFilterList", + "traits": { + "smithy.api#documentation": "The AWS Lambda function names to include in the aggregation results.
" + } + }, + "runtimes": { + "target": "com.amazonaws.inspector2#StringFilterList", + "traits": { + "smithy.api#documentation": "Returns findings aggregated by AWS Lambda function runtime environments.
" + } + }, + "functionTags": { + "target": "com.amazonaws.inspector2#MapFilterList", + "traits": { + "smithy.api#documentation": "The tags to include in the aggregation results.
" + } + }, + "sortOrder": { + "target": "com.amazonaws.inspector2#SortOrder", + "traits": { + "smithy.api#documentation": "The order to use for sorting the results.
" + } + }, + "sortBy": { + "target": "com.amazonaws.inspector2#LambdaFunctionSortBy", + "traits": { + "smithy.api#documentation": "The finding severity to use for sorting the results.
" + } + } + }, + "traits": { + "smithy.api#documentation": "The details that define a findings aggregation based on AWS Lambda functions.
" + } + }, + "com.amazonaws.inspector2#LambdaFunctionAggregationResponse": { + "type": "structure", + "members": { + "resourceId": { + "target": "com.amazonaws.inspector2#NonEmptyString", + "traits": { + "smithy.api#documentation": "The resource IDs included in the aggregation results.
", + "smithy.api#required": {} + } + }, + "functionName": { + "target": "smithy.api#String", + "traits": { + "smithy.api#documentation": "The AWS Lambda function names included in the aggregation results.
" + } + }, + "runtime": { + "target": "smithy.api#String", + "traits": { + "smithy.api#documentation": "The runtimes included in the aggregation results.
" + } + }, + "lambdaTags": { + "target": "com.amazonaws.inspector2#TagMap", + "traits": { + "smithy.api#documentation": "The tags included in the aggregation results.
" + } + }, + "accountId": { + "target": "com.amazonaws.inspector2#AccountId", + "traits": { + "smithy.api#documentation": "The ID of the AWS account that owns the AWS Lambda function.\n
" + } + }, + "severityCounts": { + "target": "com.amazonaws.inspector2#SeverityCounts" + }, + "lastModifiedAt": { + "target": "com.amazonaws.inspector2#DateTimeTimestamp", + "traits": { + "smithy.api#documentation": "The date that the AWS Lambda function included in the aggregation results was last changed.
" + } + } + }, + "traits": { + "smithy.api#documentation": "A response that contains the results of an AWS Lambda function finding aggregation.
" + } + }, + "com.amazonaws.inspector2#LambdaFunctionMetadata": { "type": "structure", "members": { - "adjustedCvss": { - "target": "com.amazonaws.inspector2#CvssScoreDetails", + "functionTags": { + "target": "com.amazonaws.inspector2#TagMap", "traits": { - "smithy.api#documentation": "An object that contains details about the CVSS score given to a finding.
" + "smithy.api#documentation": "The resource tags on an AWS Lambda function.
" + } + }, + "layers": { + "target": "com.amazonaws.inspector2#LambdaLayerList", + "traits": { + "smithy.api#documentation": "The layers for an AWS Lambda function. A Lambda function can have up to five layers.
" + } + }, + "functionName": { + "target": "smithy.api#String", + "traits": { + "smithy.api#documentation": "The name of a function.
" + } + }, + "runtime": { + "target": "com.amazonaws.inspector2#Runtime", + "traits": { + "smithy.api#documentation": "An AWS Lambda function's runtime.
" } } }, "traits": { - "smithy.api#documentation": "Information about the Amazon Inspector score given to a finding.
" + "smithy.api#documentation": "The AWS Lambda function metadata.
" } }, - "com.amazonaws.inspector2#InternalServerException": { + "com.amazonaws.inspector2#LambdaFunctionSortBy": { + "type": "string", + "traits": { + "smithy.api#enum": [ + { + "value": "CRITICAL", + "name": "CRITICAL" + }, + { + "value": "HIGH", + "name": "HIGH" + }, + { + "value": "ALL", + "name": "ALL" + } + ] + } + }, + "com.amazonaws.inspector2#LambdaLayerAggregation": { "type": "structure", "members": { - "message": { - "target": "smithy.api#String", + "functionNames": { + "target": "com.amazonaws.inspector2#StringFilterList", + "traits": { + "smithy.api#documentation": "The names of the AWS Lambda functions associated with the layers.
" + } + }, + "resourceIds": { + "target": "com.amazonaws.inspector2#StringFilterList", + "traits": { + "smithy.api#documentation": "The resource IDs for the AWS Lambda function layers.
" + } + }, + "layerArns": { + "target": "com.amazonaws.inspector2#StringFilterList", + "traits": { + "smithy.api#documentation": "The Amazon Resource Name (ARN) of the AWS Lambda function layer.\n
" + } + }, + "sortOrder": { + "target": "com.amazonaws.inspector2#SortOrder", + "traits": { + "smithy.api#documentation": "The order to use for sorting the results.
" + } + }, + "sortBy": { + "target": "com.amazonaws.inspector2#LambdaLayerSortBy", + "traits": { + "smithy.api#documentation": "The finding severity to use for sorting the results.
" + } + } + }, + "traits": { + "smithy.api#documentation": "The details that define a findings aggregation based on an AWS Lambda function's layers.
" + } + }, + "com.amazonaws.inspector2#LambdaLayerAggregationResponse": { + "type": "structure", + "members": { + "functionName": { + "target": "com.amazonaws.inspector2#NonEmptyString", "traits": { + "smithy.api#documentation": "The names of the AWS Lambda functions associated with the layers.
", "smithy.api#required": {} } }, - "retryAfterSeconds": { - "target": "smithy.api#Integer", + "resourceId": { + "target": "com.amazonaws.inspector2#NonEmptyString", "traits": { - "smithy.api#documentation": "The number of seconds to wait before retrying the request.
", - "smithy.api#httpHeader": "Retry-After" + "smithy.api#documentation": "The Resource ID of the AWS Lambda function layer.
", + "smithy.api#required": {} + } + }, + "layerArn": { + "target": "com.amazonaws.inspector2#NonEmptyString", + "traits": { + "smithy.api#documentation": "The Amazon Resource Name (ARN) of the AWS Lambda function layer.
", + "smithy.api#required": {} + } + }, + "accountId": { + "target": "com.amazonaws.inspector2#AccountId", + "traits": { + "smithy.api#documentation": "The account ID of the AWS Lambda function layer.
", + "smithy.api#required": {} } + }, + "severityCounts": { + "target": "com.amazonaws.inspector2#SeverityCounts" } }, "traits": { - "smithy.api#documentation": "The request has failed due to an internal failure of the Amazon Inspector service.
", - "smithy.api#error": "server", - "smithy.api#httpError": 500, - "smithy.api#retryable": {} + "smithy.api#documentation": "A response that contains the results of an AWS Lambda function layer finding aggregation.
" } }, - "com.amazonaws.inspector2#IpV4Address": { + "com.amazonaws.inspector2#LambdaLayerArn": { "type": "string", + "traits": { + "smithy.api#pattern": "^arn:[a-zA-Z0-9-]+:lambda:[a-zA-Z0-9-]+:\\d{12}:layer:[a-zA-Z0-9-_]+:[0-9]+$" + } + }, + "com.amazonaws.inspector2#LambdaLayerList": { + "type": "list", + "member": { + "target": "smithy.api#String" + }, "traits": { "smithy.api#length": { - "min": 7, - "max": 15 + "min": 0, + "max": 5 + } + } + }, + "com.amazonaws.inspector2#LambdaLayerSortBy": { + "type": "string", + "traits": { + "smithy.api#enum": [ + { + "value": "CRITICAL", + "name": "CRITICAL" + }, + { + "value": "HIGH", + "name": "HIGH" + }, + { + "value": "ALL", + "name": "ALL" + } + ] + } + }, + "com.amazonaws.inspector2#LambdaVpcConfig": { + "type": "structure", + "members": { + "subnetIds": { + "target": "com.amazonaws.inspector2#SubnetIdList", + "traits": { + "smithy.api#documentation": "A list of VPC subnet IDs.
" + } }, - "smithy.api#pattern": "^(([0-9]|[1-9][0-9]|1[0-9]{2}|2[0-4][0-9]|25[0-5])\\.){3}([0-9]|[1-9][0-9]|1[0-9]{2}|2[0-4][0-9]|25[0-5])$" + "securityGroupIds": { + "target": "com.amazonaws.inspector2#SecurityGroupIdList", + "traits": { + "smithy.api#documentation": "The VPC security groups and subnets that are attached to an AWS Lambda function. For more information, see VPC Settings.
" + } + }, + "vpcId": { + "target": "com.amazonaws.inspector2#VpcId", + "traits": { + "smithy.api#documentation": "The ID of the VPC.
" + } + } + }, + "traits": { + "smithy.api#documentation": "The VPC security groups and subnets that are attached to an AWS Lambda function. For more information, see VPC Settings.
" } }, - "com.amazonaws.inspector2#IpV4AddressList": { + "com.amazonaws.inspector2#LastSeen": { + "type": "timestamp" + }, + "com.amazonaws.inspector2#LayerList": { "type": "list", "member": { - "target": "com.amazonaws.inspector2#IpV4Address" + "target": "com.amazonaws.inspector2#LambdaLayerArn" + }, + "traits": { + "smithy.api#length": { + "min": 1, + "max": 5 + } + } + }, + "com.amazonaws.inspector2#ListAccountPermissions": { + "type": "operation", + "input": { + "target": "com.amazonaws.inspector2#ListAccountPermissionsRequest" + }, + "output": { + "target": "com.amazonaws.inspector2#ListAccountPermissionsResponse" + }, + "errors": [ + { + "target": "com.amazonaws.inspector2#AccessDeniedException" + }, + { + "target": "com.amazonaws.inspector2#InternalServerException" + }, + { + "target": "com.amazonaws.inspector2#ThrottlingException" + }, + { + "target": "com.amazonaws.inspector2#ValidationException" + } + ], + "traits": { + "smithy.api#documentation": "Lists the permissions an account has to configure Amazon Inspector.
", + "smithy.api#http": { + "code": 200, + "method": "POST", + "uri": "/accountpermissions/list" + }, + "smithy.api#paginated": { + "inputToken": "nextToken", + "outputToken": "nextToken", + "pageSize": "maxResults", + "items": "permissions" + } } }, - "com.amazonaws.inspector2#IpV6Address": { - "type": "string", + "com.amazonaws.inspector2#ListAccountPermissionsMaxResults": { + "type": "integer", "traits": { - "smithy.api#length": { + "smithy.api#range": { "min": 1, - "max": 47 + "max": 1024 } } }, - "com.amazonaws.inspector2#IpV6AddressList": { - "type": "list", - "member": { - "target": "com.amazonaws.inspector2#IpV6Address" - } - }, - "com.amazonaws.inspector2#KmsKeyArn": { - "type": "string", - "traits": { - "smithy.api#pattern": "^arn:aws(-(us-gov|cn))?:kms:([a-z0-9][-.a-z0-9]{0,62})?:[0-9]{12}?:key/(([0-9a-fA-F]{8}-[0-9a-fA-F]{4}-[0-9a-fA-F]{4}-[0-9a-fA-F]{4}-[0-9a-fA-F]{12})|(mrk-[0-9a-zA-Z]{32}))$" - } - }, - "com.amazonaws.inspector2#LambdaFunctionAggregation": { + "com.amazonaws.inspector2#ListAccountPermissionsRequest": { "type": "structure", "members": { - "resourceIds": { - "target": "com.amazonaws.inspector2#StringFilterList", - "traits": { - "smithy.api#documentation": "The resource IDs to include in the aggregation results.
" - } - }, - "functionNames": { - "target": "com.amazonaws.inspector2#StringFilterList", - "traits": { - "smithy.api#documentation": "The AWS Lambda function names to include in the aggregation results.
" - } - }, - "runtimes": { - "target": "com.amazonaws.inspector2#StringFilterList", - "traits": { - "smithy.api#documentation": "Returns findings aggregated by AWS Lambda function runtime environments.
" - } - }, - "functionTags": { - "target": "com.amazonaws.inspector2#MapFilterList", + "service": { + "target": "com.amazonaws.inspector2#Service", "traits": { - "smithy.api#documentation": "The tags to include in the aggregation results.
" + "smithy.api#documentation": "The service scan type to check permissions for.
" } }, - "sortOrder": { - "target": "com.amazonaws.inspector2#SortOrder", + "maxResults": { + "target": "com.amazonaws.inspector2#ListAccountPermissionsMaxResults", "traits": { - "smithy.api#documentation": "The order to use for sorting the results.
" + "smithy.api#documentation": "The maximum number of results the response can return. If your request would return more than the maximum the response will return a nextToken value, use this value when you call the action again to get the remaining results.
The finding severity to use for sorting the results.
" + "smithy.api#documentation": "A token to use for paginating results that are returned in the response. Set the value of this parameter to null for the first request to a list action. If your response returns more than the maxResults maximum value it will also return a nextToken value. For subsequent calls, use the NextToken value returned from the previous request to continue listing results after the first page.
The details that define a findings aggregation based on AWS Lambda functions.
" } }, - "com.amazonaws.inspector2#LambdaFunctionAggregationResponse": { + "com.amazonaws.inspector2#ListAccountPermissionsResponse": { "type": "structure", "members": { - "resourceId": { - "target": "com.amazonaws.inspector2#NonEmptyString", + "permissions": { + "target": "com.amazonaws.inspector2#Permissions", "traits": { - "smithy.api#documentation": "The resource IDs included in the aggregation results.
", + "smithy.api#documentation": "Contains details on the permissions an account has to configure Amazon Inspector.
", "smithy.api#required": {} } }, - "functionName": { - "target": "smithy.api#String", + "nextToken": { + "target": "com.amazonaws.inspector2#NextToken", "traits": { - "smithy.api#documentation": "The AWS Lambda function names included in the aggregation results.
" + "smithy.api#documentation": "A token to use for paginating results that are returned in the response. Set the value\n of this parameter to null for the first request to a list action. For subsequent calls, use\n the NextToken value returned from the previous request to continue listing\n results after the first page.
The runtimes included in the aggregation results.
" + { + "target": "com.amazonaws.inspector2#InternalServerException" + }, + { + "target": "com.amazonaws.inspector2#ThrottlingException" + }, + { + "target": "com.amazonaws.inspector2#ValidationException" + } + ], + "traits": { + "smithy.api#documentation": "Lists CIS scan configurations.
", + "smithy.api#examples": [ + { + "title": "Sample ListCisScanConfigurations Call", + "input": {}, + "output": { + "scanConfigurations": [ + { + "scanConfigurationArn": "arn:aws:inspector2:us-east-1:123412341234:owner/123412341234/cis-configuration/624b746d-e080-44ae-8c1d-48e653365a38", + "ownerId": "123412341234", + "scanName": "sample", + "securityLevel": "LEVEL_1", + "schedule": { + "daily": { + "startTime": { + "timeOfDay": "12:34", + "timezone": "UTC" + } + } + }, + "targets": { + "accountIds": [ + "123412341234" + ], + "targetResourceTags": { + "key": [ + "value" + ] + } + } + } + ] + } } + ], + "smithy.api#http": { + "code": 200, + "method": "POST", + "uri": "/cis/scan-configuration/list" }, - "lambdaTags": { - "target": "com.amazonaws.inspector2#TagMap", + "smithy.api#paginated": { + "inputToken": "nextToken", + "outputToken": "nextToken", + "items": "scanConfigurations", + "pageSize": "maxResults" + } + } + }, + "com.amazonaws.inspector2#ListCisScanConfigurationsFilterCriteria": { + "type": "structure", + "members": { + "scanNameFilters": { + "target": "com.amazonaws.inspector2#CisScanNameFilterList", "traits": { - "smithy.api#documentation": "The tags included in the aggregation results.
" + "smithy.api#documentation": "The list of scan name filters.
" } }, - "accountId": { - "target": "com.amazonaws.inspector2#AccountId", + "targetResourceTagFilters": { + "target": "com.amazonaws.inspector2#ResourceTagFilterList", "traits": { - "smithy.api#documentation": "The ID of the AWS account that owns the AWS Lambda function.\n
" + "smithy.api#documentation": "The list of target resource tag filters.
" } }, - "severityCounts": { - "target": "com.amazonaws.inspector2#SeverityCounts" - }, - "lastModifiedAt": { - "target": "com.amazonaws.inspector2#DateTimeTimestamp", + "scanConfigurationArnFilters": { + "target": "com.amazonaws.inspector2#CisScanConfigurationArnFilterList", "traits": { - "smithy.api#documentation": "The date that the AWS Lambda function included in the aggregation results was last changed.
" + "smithy.api#documentation": "The list of scan configuration ARN filters.
" } } }, "traits": { - "smithy.api#documentation": "A response that contains the results of an AWS Lambda function finding aggregation.
" + "smithy.api#documentation": "A list of CIS scan configurations filter criteria.
" } }, - "com.amazonaws.inspector2#LambdaFunctionMetadata": { + "com.amazonaws.inspector2#ListCisScanConfigurationsMaxResults": { + "type": "integer", + "traits": { + "smithy.api#range": { + "min": 1, + "max": 100 + } + } + }, + "com.amazonaws.inspector2#ListCisScanConfigurationsRequest": { "type": "structure", "members": { - "functionTags": { - "target": "com.amazonaws.inspector2#TagMap", + "filterCriteria": { + "target": "com.amazonaws.inspector2#ListCisScanConfigurationsFilterCriteria", "traits": { - "smithy.api#documentation": "The resource tags on an AWS Lambda function.
" + "smithy.api#documentation": "The CIS scan configuration filter criteria.
" } }, - "layers": { - "target": "com.amazonaws.inspector2#LambdaLayerList", + "sortBy": { + "target": "com.amazonaws.inspector2#CisScanConfigurationsSortBy", "traits": { - "smithy.api#documentation": "The layers for an AWS Lambda function. A Lambda function can have up to five layers.
" + "smithy.api#default": "SCAN_NAME", + "smithy.api#documentation": "The CIS scan configuration sort by order.
" } }, - "functionName": { - "target": "smithy.api#String", + "sortOrder": { + "target": "com.amazonaws.inspector2#CisSortOrder", "traits": { - "smithy.api#documentation": "The name of a function.
" + "smithy.api#documentation": "The CIS scan configuration sort order order.
" } }, - "runtime": { - "target": "com.amazonaws.inspector2#Runtime", + "nextToken": { + "target": "com.amazonaws.inspector2#NextToken", "traits": { - "smithy.api#documentation": "An AWS Lambda function's runtime.
" + "smithy.api#documentation": "The pagination token from a previous request that's used to retrieve the next page of results.
" + } + }, + "maxResults": { + "target": "com.amazonaws.inspector2#ListCisScanConfigurationsMaxResults", + "traits": { + "smithy.api#default": 100, + "smithy.api#documentation": "The maximum number of CIS scan configurations to be returned in a single page of results.
" } } }, "traits": { - "smithy.api#documentation": "The AWS Lambda function metadata.
" - } - }, - "com.amazonaws.inspector2#LambdaFunctionSortBy": { - "type": "string", - "traits": { - "smithy.api#enum": [ - { - "value": "CRITICAL", - "name": "CRITICAL" - }, - { - "value": "HIGH", - "name": "HIGH" - }, - { - "value": "ALL", - "name": "ALL" - } - ] + "smithy.api#input": {} } }, - "com.amazonaws.inspector2#LambdaLayerAggregation": { + "com.amazonaws.inspector2#ListCisScanConfigurationsResponse": { "type": "structure", "members": { - "functionNames": { - "target": "com.amazonaws.inspector2#StringFilterList", + "scanConfigurations": { + "target": "com.amazonaws.inspector2#CisScanConfigurationList", "traits": { - "smithy.api#documentation": "The names of the AWS Lambda functions associated with the layers.
" + "smithy.api#documentation": "The CIS scan configuration scan configurations.
" } }, - "resourceIds": { - "target": "com.amazonaws.inspector2#StringFilterList", + "nextToken": { + "target": "com.amazonaws.inspector2#NextToken", "traits": { - "smithy.api#documentation": "The resource IDs for the AWS Lambda function layers.
" + "smithy.api#documentation": "The pagination token from a previous request that's used to retrieve the next page of results.
" } + } + }, + "traits": { + "smithy.api#output": {} + } + }, + "com.amazonaws.inspector2#ListCisScanResultsAggregatedByChecks": { + "type": "operation", + "input": { + "target": "com.amazonaws.inspector2#ListCisScanResultsAggregatedByChecksRequest" + }, + "output": { + "target": "com.amazonaws.inspector2#ListCisScanResultsAggregatedByChecksResponse" + }, + "errors": [ + { + "target": "com.amazonaws.inspector2#AccessDeniedException" }, - "layerArns": { - "target": "com.amazonaws.inspector2#StringFilterList", - "traits": { - "smithy.api#documentation": "The Amazon Resource Name (ARN) of the AWS Lambda function layer.\n
" - } + { + "target": "com.amazonaws.inspector2#InternalServerException" }, - "sortOrder": { - "target": "com.amazonaws.inspector2#SortOrder", - "traits": { - "smithy.api#documentation": "The order to use for sorting the results.
" - } + { + "target": "com.amazonaws.inspector2#ThrottlingException" }, - "sortBy": { - "target": "com.amazonaws.inspector2#LambdaLayerSortBy", - "traits": { - "smithy.api#documentation": "The finding severity to use for sorting the results.
" - } + { + "target": "com.amazonaws.inspector2#ValidationException" } - }, + ], "traits": { - "smithy.api#documentation": "The details that define a findings aggregation based on an AWS Lambda function's layers.
" + "smithy.api#documentation": "Lists scan results aggregated by checks.
", + "smithy.api#examples": [ + { + "title": "Sample ListCisScanResultsAggregatedByChecks Call", + "input": { + "scanArn": "arn:aws:inspector2:us-east-1:123412341234:owner/123412341234/cis-scan/624b746d-e080-44ae-8c1d-48e653365a38" + }, + "output": { + "checkAggregations": [ + { + "scanArn": "arn:aws:inspector2:us-east-1:123412341234:owner/123412341234/cis-scan/624b746d-e080-44ae-8c1d-48e653365a38", + "checkId": "1.1.1.1", + "title": "title1", + "checkDescription": "description", + "level": "LEVEL_1", + "accountId": "123412341234", + "statusCounts": { + "failed": 0, + "skipped": 1, + "passed": 2 + }, + "platform": "AMAZON_LINUX_2" + } + ] + } + } + ], + "smithy.api#http": { + "code": 200, + "method": "POST", + "uri": "/cis/scan-result/check/list" + }, + "smithy.api#paginated": { + "inputToken": "nextToken", + "outputToken": "nextToken", + "items": "checkAggregations", + "pageSize": "maxResults" + } } }, - "com.amazonaws.inspector2#LambdaLayerAggregationResponse": { + "com.amazonaws.inspector2#ListCisScanResultsAggregatedByChecksRequest": { "type": "structure", "members": { - "functionName": { - "target": "com.amazonaws.inspector2#NonEmptyString", + "scanArn": { + "target": "com.amazonaws.inspector2#CisScanArn", "traits": { - "smithy.api#documentation": "The names of the AWS Lambda functions associated with the layers.
", + "smithy.api#documentation": "The scan ARN.
", "smithy.api#required": {} } }, - "resourceId": { - "target": "com.amazonaws.inspector2#NonEmptyString", + "filterCriteria": { + "target": "com.amazonaws.inspector2#CisScanResultsAggregatedByChecksFilterCriteria", "traits": { - "smithy.api#documentation": "The Resource ID of the AWS Lambda function layer.
", - "smithy.api#required": {} + "smithy.api#documentation": "The filter criteria.
" } }, - "layerArn": { - "target": "com.amazonaws.inspector2#NonEmptyString", + "sortBy": { + "target": "com.amazonaws.inspector2#CisScanResultsAggregatedByChecksSortBy", "traits": { - "smithy.api#documentation": "The Amazon Resource Name (ARN) of the AWS Lambda function layer.
", - "smithy.api#required": {} + "smithy.api#default": "FAILED_COUNTS", + "smithy.api#documentation": "The sort by order.
" } }, - "accountId": { - "target": "com.amazonaws.inspector2#AccountId", + "sortOrder": { + "target": "com.amazonaws.inspector2#CisSortOrder", "traits": { - "smithy.api#documentation": "The account ID of the AWS Lambda function layer.
", - "smithy.api#required": {} + "smithy.api#documentation": "The sort order.
" } }, - "severityCounts": { - "target": "com.amazonaws.inspector2#SeverityCounts" + "nextToken": { + "target": "com.amazonaws.inspector2#NextToken", + "traits": { + "smithy.api#documentation": "The pagination token from a previous request that's used to retrieve the next page of results.
" + } + }, + "maxResults": { + "target": "com.amazonaws.inspector2#CisScanResultsMaxResults", + "traits": { + "smithy.api#default": 100, + "smithy.api#documentation": "The maximum number of scan results aggregated by checks to be returned in a single page of results.
" + } } }, "traits": { - "smithy.api#documentation": "A response that contains the results of an AWS Lambda function layer finding aggregation.
" + "smithy.api#input": {} } }, - "com.amazonaws.inspector2#LambdaLayerArn": { - "type": "string", + "com.amazonaws.inspector2#ListCisScanResultsAggregatedByChecksResponse": { + "type": "structure", + "members": { + "checkAggregations": { + "target": "com.amazonaws.inspector2#CisCheckAggregationList", + "traits": { + "smithy.api#documentation": "The check aggregations.
" + } + }, + "nextToken": { + "target": "com.amazonaws.inspector2#NextToken", + "traits": { + "smithy.api#documentation": "The pagination token from a previous request that's used to retrieve the next page of results.
" + } + } + }, "traits": { - "smithy.api#pattern": "^arn:[a-zA-Z0-9-]+:lambda:[a-zA-Z0-9-]+:\\d{12}:layer:[a-zA-Z0-9-_]+:[0-9]+$" + "smithy.api#output": {} } }, - "com.amazonaws.inspector2#LambdaLayerList": { - "type": "list", - "member": { - "target": "smithy.api#String" + "com.amazonaws.inspector2#ListCisScanResultsAggregatedByTargetResource": { + "type": "operation", + "input": { + "target": "com.amazonaws.inspector2#ListCisScanResultsAggregatedByTargetResourceRequest" }, - "traits": { - "smithy.api#length": { - "min": 0, - "max": 5 + "output": { + "target": "com.amazonaws.inspector2#ListCisScanResultsAggregatedByTargetResourceResponse" + }, + "errors": [ + { + "target": "com.amazonaws.inspector2#AccessDeniedException" + }, + { + "target": "com.amazonaws.inspector2#InternalServerException" + }, + { + "target": "com.amazonaws.inspector2#ThrottlingException" + }, + { + "target": "com.amazonaws.inspector2#ValidationException" } - } - }, - "com.amazonaws.inspector2#LambdaLayerSortBy": { - "type": "string", + ], "traits": { - "smithy.api#enum": [ - { - "value": "CRITICAL", - "name": "CRITICAL" - }, - { - "value": "HIGH", - "name": "HIGH" - }, + "smithy.api#documentation": "Lists scan results aggregated by a target resource.
", + "smithy.api#examples": [ { - "value": "ALL", - "name": "ALL" + "title": "Sample ListCisScanResultsAggregatedByTargetResource Call", + "input": { + "scanArn": "arn:aws:inspector2:us-east-1:123412341234:owner/123412341234/cis-scan/624b746d-e080-44ae-8c1d-48e653365a38" + }, + "output": { + "targetResourceAggregations": [ + { + "scanArn": "arn:aws:inspector2:us-east-1:123412341234:owner/123412341234/cis-scan/624b746d-e080-44ae-8c1d-48e653365a38", + "targetResourceId": "i-12341234", + "accountId": "123412341234", + "targetResourceTags": { + "key": [ + "value" + ] + }, + "statusCounts": { + "failed": 0, + "skipped": 1, + "passed": 2 + }, + "platform": "AMAZON_LINUX_2", + "targetStatus": "COMPLETED" + } + ] + } } - ] + ], + "smithy.api#http": { + "code": 200, + "method": "POST", + "uri": "/cis/scan-result/resource/list" + }, + "smithy.api#paginated": { + "inputToken": "nextToken", + "outputToken": "nextToken", + "items": "targetResourceAggregations", + "pageSize": "maxResults" + } } }, - "com.amazonaws.inspector2#LambdaVpcConfig": { + "com.amazonaws.inspector2#ListCisScanResultsAggregatedByTargetResourceRequest": { "type": "structure", "members": { - "subnetIds": { - "target": "com.amazonaws.inspector2#SubnetIdList", + "scanArn": { + "target": "com.amazonaws.inspector2#CisScanArn", "traits": { - "smithy.api#documentation": "A list of VPC subnet IDs.
" + "smithy.api#documentation": "The scan ARN.
", + "smithy.api#required": {} } }, - "securityGroupIds": { - "target": "com.amazonaws.inspector2#SecurityGroupIdList", + "filterCriteria": { + "target": "com.amazonaws.inspector2#CisScanResultsAggregatedByTargetResourceFilterCriteria", "traits": { - "smithy.api#documentation": "The VPC security groups and subnets that are attached to an AWS Lambda function. For more information, see VPC Settings.
" + "smithy.api#documentation": "The filter criteria.
" } }, - "vpcId": { - "target": "com.amazonaws.inspector2#VpcId", + "sortBy": { + "target": "com.amazonaws.inspector2#CisScanResultsAggregatedByTargetResourceSortBy", "traits": { - "smithy.api#documentation": "The ID of the VPC.
" + "smithy.api#default": "FAILED_COUNTS", + "smithy.api#documentation": "The sort by order.
" + } + }, + "sortOrder": { + "target": "com.amazonaws.inspector2#CisSortOrder", + "traits": { + "smithy.api#documentation": "The sort order.
" + } + }, + "nextToken": { + "target": "com.amazonaws.inspector2#NextToken", + "traits": { + "smithy.api#documentation": "The pagination token from a previous request that's used to retrieve the next page of results.
" + } + }, + "maxResults": { + "target": "com.amazonaws.inspector2#CisScanResultsMaxResults", + "traits": { + "smithy.api#default": 100, + "smithy.api#documentation": "The maximum number of scan results aggregated by a target resource to be returned in a single page of results.
" } } }, "traits": { - "smithy.api#documentation": "The VPC security groups and subnets that are attached to an AWS Lambda function. For more information, see VPC Settings.
" + "smithy.api#input": {} } }, - "com.amazonaws.inspector2#LastSeen": { - "type": "timestamp" - }, - "com.amazonaws.inspector2#LayerList": { - "type": "list", - "member": { - "target": "com.amazonaws.inspector2#LambdaLayerArn" + "com.amazonaws.inspector2#ListCisScanResultsAggregatedByTargetResourceResponse": { + "type": "structure", + "members": { + "targetResourceAggregations": { + "target": "com.amazonaws.inspector2#CisTargetResourceAggregationList", + "traits": { + "smithy.api#documentation": "The resource aggregations.
" + } + }, + "nextToken": { + "target": "com.amazonaws.inspector2#NextToken", + "traits": { + "smithy.api#documentation": "The pagination token from a previous request that's used to retrieve the next page of results.
" + } + } }, "traits": { - "smithy.api#length": { - "min": 1, - "max": 5 - } + "smithy.api#output": {} } }, - "com.amazonaws.inspector2#ListAccountPermissions": { + "com.amazonaws.inspector2#ListCisScans": { "type": "operation", "input": { - "target": "com.amazonaws.inspector2#ListAccountPermissionsRequest" + "target": "com.amazonaws.inspector2#ListCisScansRequest" }, "output": { - "target": "com.amazonaws.inspector2#ListAccountPermissionsResponse" + "target": "com.amazonaws.inspector2#ListCisScansResponse" }, "errors": [ { @@ -7091,66 +9642,236 @@ } ], "traits": { - "smithy.api#documentation": "Lists the permissions an account has to configure Amazon Inspector.
", + "smithy.api#documentation": "Returns a CIS scan list.
", + "smithy.api#examples": [ + { + "title": "Sample ListCisScans Call", + "input": {}, + "output": { + "scans": [ + { + "scanArn": "arn:aws:inspector2:us-east-1:123412341234:owner/123412341234/cis-scan/624b746d-e080-44ae-8c1d-48e653365a38", + "scanConfigurationArn": "arn:aws:inspector2:us-east-1:123412341234:owner/123412341234/cis-configuration/624b746d-e080-44ae-8c1d-48e653365a38", + "status": "COMPLETED", + "scanName": "sample", + "scanDate": "2023-04-12T23:20:50.52Z", + "failedChecks": 2, + "totalChecks": 150, + "targets": { + "accountIds": [ + "123412341234" + ], + "targetResourceTags": { + "key": [ + "value" + ] + } + }, + "scheduledBy": "Delegated Admin", + "securityLevel": "LEVEL_1" + } + ] + } + } + ], "smithy.api#http": { "code": 200, "method": "POST", - "uri": "/accountpermissions/list" + "uri": "/cis/scan/list" }, "smithy.api#paginated": { "inputToken": "nextToken", "outputToken": "nextToken", - "pageSize": "maxResults", - "items": "permissions" + "items": "scans", + "pageSize": "maxResults" } } }, - "com.amazonaws.inspector2#ListAccountPermissionsMaxResults": { + "com.amazonaws.inspector2#ListCisScansDetailLevel": { + "type": "enum", + "members": { + "ORGANIZATION": { + "target": "smithy.api#Unit", + "traits": { + "smithy.api#enumValue": "ORGANIZATION" + } + }, + "MEMBER": { + "target": "smithy.api#Unit", + "traits": { + "smithy.api#enumValue": "MEMBER" + } + } + } + }, + "com.amazonaws.inspector2#ListCisScansFilterCriteria": { + "type": "structure", + "members": { + "scanNameFilters": { + "target": "com.amazonaws.inspector2#CisScanNameFilterList", + "traits": { + "smithy.api#documentation": "The list of scan name filters.
" + } + }, + "targetResourceTagFilters": { + "target": "com.amazonaws.inspector2#ResourceTagFilterList", + "traits": { + "smithy.api#documentation": "The list of target resource tag filters.
" + } + }, + "targetResourceIdFilters": { + "target": "com.amazonaws.inspector2#ResourceIdFilterList", + "traits": { + "smithy.api#documentation": "The list of target resource ID filters.
" + } + }, + "scanStatusFilters": { + "target": "com.amazonaws.inspector2#CisScanStatusFilterList", + "traits": { + "smithy.api#documentation": "The list of scan status filters.
" + } + }, + "scanAtFilters": { + "target": "com.amazonaws.inspector2#CisScanDateFilterList", + "traits": { + "smithy.api#documentation": "The list of scan at filters.
" + } + }, + "scanConfigurationArnFilters": { + "target": "com.amazonaws.inspector2#CisScanConfigurationArnFilterList", + "traits": { + "smithy.api#documentation": "The list of scan configuration ARN filters.
" + } + }, + "scanArnFilters": { + "target": "com.amazonaws.inspector2#CisScanArnFilterList", + "traits": { + "smithy.api#documentation": "The list of scan ARN filters.
" + } + }, + "scheduledByFilters": { + "target": "com.amazonaws.inspector2#CisScheduledByFilterList", + "traits": { + "smithy.api#documentation": "The list of scheduled by filters.
" + } + }, + "failedChecksFilters": { + "target": "com.amazonaws.inspector2#CisNumberFilterList", + "traits": { + "smithy.api#documentation": "The list of failed checks filters.
" + } + }, + "targetAccountIdFilters": { + "target": "com.amazonaws.inspector2#AccountIdFilterList", + "traits": { + "smithy.api#documentation": "The list of target account ID filters.
" + } + } + }, + "traits": { + "smithy.api#documentation": "A list of CIS scans filter criteria.
" + } + }, + "com.amazonaws.inspector2#ListCisScansMaxResults": { "type": "integer", "traits": { "smithy.api#range": { "min": 1, - "max": 1024 + "max": 100 } } }, - "com.amazonaws.inspector2#ListAccountPermissionsRequest": { + "com.amazonaws.inspector2#ListCisScansRequest": { "type": "structure", "members": { - "service": { - "target": "com.amazonaws.inspector2#Service", + "filterCriteria": { + "target": "com.amazonaws.inspector2#ListCisScansFilterCriteria", "traits": { - "smithy.api#documentation": "The service scan type to check permissions for.
" + "smithy.api#documentation": "The CIS scan filter criteria.
" + } + }, + "detailLevel": { + "target": "com.amazonaws.inspector2#ListCisScansDetailLevel", + "traits": { + "smithy.api#documentation": "The detail applied to the CIS scan.
" + } + }, + "sortBy": { + "target": "com.amazonaws.inspector2#ListCisScansSortBy", + "traits": { + "smithy.api#default": "SCAN_START_DATE", + "smithy.api#documentation": "The CIS scans sort by order.
" + } + }, + "sortOrder": { + "target": "com.amazonaws.inspector2#CisSortOrder", + "traits": { + "smithy.api#documentation": "The CIS scans sort order.
" + } + }, + "nextToken": { + "target": "com.amazonaws.inspector2#NextToken", + "traits": { + "smithy.api#documentation": "The pagination token from a previous request that's used to retrieve the next page of results.
" } }, "maxResults": { - "target": "com.amazonaws.inspector2#ListAccountPermissionsMaxResults", + "target": "com.amazonaws.inspector2#ListCisScansMaxResults", "traits": { - "smithy.api#documentation": "The maximum number of results the response can return. If your request would return more than the maximum the response will return a nextToken value, use this value when you call the action again to get the remaining results.
The maximum number of results to be returned.
" + } + } + }, + "traits": { + "smithy.api#input": {} + } + }, + "com.amazonaws.inspector2#ListCisScansResponse": { + "type": "structure", + "members": { + "scans": { + "target": "com.amazonaws.inspector2#CisScanList", + "traits": { + "smithy.api#documentation": "The CIS scans.
" } }, "nextToken": { "target": "com.amazonaws.inspector2#NextToken", "traits": { - "smithy.api#documentation": "A token to use for paginating results that are returned in the response. Set the value of this parameter to null for the first request to a list action. If your response returns more than the maxResults maximum value it will also return a nextToken value. For subsequent calls, use the NextToken value returned from the previous request to continue listing results after the first page.
The pagination token from a previous request that's used to retrieve the next page of results.
" } } + }, + "traits": { + "smithy.api#output": {} } }, - "com.amazonaws.inspector2#ListAccountPermissionsResponse": { - "type": "structure", + "com.amazonaws.inspector2#ListCisScansSortBy": { + "type": "enum", "members": { - "permissions": { - "target": "com.amazonaws.inspector2#Permissions", + "STATUS": { + "target": "smithy.api#Unit", "traits": { - "smithy.api#documentation": "Contains details on the permissions an account has to configure Amazon Inspector.
", - "smithy.api#required": {} + "smithy.api#enumValue": "STATUS" } }, - "nextToken": { - "target": "com.amazonaws.inspector2#NextToken", + "SCHEDULED_BY": { + "target": "smithy.api#Unit", "traits": { - "smithy.api#documentation": "A token to use for paginating results that are returned in the response. Set the value\n of this parameter to null for the first request to a list action. For subsequent calls, use\n the NextToken value returned from the previous request to continue listing\n results after the first page.
The monthly schedule's start time.
", + "smithy.api#required": {} + } + }, + "day": { + "target": "com.amazonaws.inspector2#Day", + "traits": { + "smithy.api#documentation": "The monthly schedule's day.
", + "smithy.api#required": {} + } + } + }, + "traits": { + "smithy.api#documentation": "A monthly schedule.
" + } + }, "com.amazonaws.inspector2#NetworkPath": { "type": "structure", "members": { @@ -8236,6 +10979,25 @@ } } }, + "com.amazonaws.inspector2#OneAccountIdFilterList": { + "type": "list", + "member": { + "target": "com.amazonaws.inspector2#CisStringFilter" + }, + "traits": { + "smithy.api#length": { + "min": 1, + "max": 1 + } + } + }, + "com.amazonaws.inspector2#OneTimeSchedule": { + "type": "structure", + "members": {}, + "traits": { + "smithy.api#documentation": "A one time schedule.
" + } + }, "com.amazonaws.inspector2#Operation": { "type": "string", "traits": { @@ -8666,6 +11428,26 @@ } } }, + "com.amazonaws.inspector2#PlatformFilterList": { + "type": "list", + "member": { + "target": "com.amazonaws.inspector2#CisStringFilter" + }, + "traits": { + "smithy.api#length": { + "min": 1, + "max": 10 + } + } + }, + "com.amazonaws.inspector2#PlatformVersion": { + "type": "string", + "traits": { + "smithy.api#length": { + "max": 8 + } + } + }, "com.amazonaws.inspector2#Port": { "type": "integer", "traits": { @@ -8729,6 +11511,22 @@ } } }, + "com.amazonaws.inspector2#Product": { + "type": "string", + "traits": { + "smithy.api#length": { + "max": 32 + } + } + }, + "com.amazonaws.inspector2#Reason": { + "type": "string", + "traits": { + "smithy.api#length": { + "max": 1024 + } + } + }, "com.amazonaws.inspector2#Recommendation": { "type": "structure", "members": { @@ -8871,6 +11669,18 @@ "smithy.api#pattern": "\\b[a-f0-9]{8}\\b-[a-f0-9]{4}-[a-f0-9]{4}-[a-f0-9]{4}-\\b[a-f0-9]{12}\\b" } }, + "com.amazonaws.inspector2#ReportTargetAccounts": { + "type": "list", + "member": { + "target": "com.amazonaws.inspector2#AccountId" + }, + "traits": { + "smithy.api#length": { + "min": 0, + "max": 1 + } + } + }, "com.amazonaws.inspector2#ReportingErrorCode": { "type": "string", "traits": { @@ -9186,6 +11996,18 @@ "smithy.api#pattern": "(^arn:.*:ecr:.*:\\d{12}:repository\\/(?:[a-z0-9]+(?:[._-][a-z0-9]+)*\\/)*[a-z0-9]+(?:[._-][a-z0-9]+)*(\\/sha256:[a-z0-9]{64})?$)|(^i-([a-z0-9]{8}|[a-z0-9]{17}|\\\\*)$|(^arn:(aws[a-zA-Z-]*)?:lambda:[a-z]{2}(-gov)?-[a-z]+-\\d{1}:\\d{12}:function:[a-zA-Z0-9-_\\.]+(:(\\$LATEST|[a-zA-Z0-9-_]+))?$))" } }, + "com.amazonaws.inspector2#ResourceIdFilterList": { + "type": "list", + "member": { + "target": "com.amazonaws.inspector2#CisStringFilter" + }, + "traits": { + "smithy.api#length": { + "min": 1, + "max": 10 + } + } + }, "com.amazonaws.inspector2#ResourceList": { "type": "list", "member": { @@ -9440,6 +12262,18 @@ } } }, + "com.amazonaws.inspector2#ResourceTagFilterList": { + "type": "list", + "member": { + "target": "com.amazonaws.inspector2#TagFilter" + }, + "traits": { + "smithy.api#length": { + "min": 1, + "max": 10 + } + } + }, "com.amazonaws.inspector2#ResourceType": { "type": "string", "traits": { @@ -9466,6 +12300,15 @@ "com.amazonaws.inspector2#RiskScore": { "type": "integer" }, + "com.amazonaws.inspector2#RuleId": { + "type": "string", + "traits": { + "smithy.api#length": { + "min": 1, + "max": 500 + } + } + }, "com.amazonaws.inspector2#Runtime": { "type": "string", "traits": { @@ -9707,6 +12550,38 @@ ] } }, + "com.amazonaws.inspector2#Schedule": { + "type": "union", + "members": { + "oneTime": { + "target": "com.amazonaws.inspector2#OneTimeSchedule", + "traits": { + "smithy.api#documentation": "The schedule's one time.
" + } + }, + "daily": { + "target": "com.amazonaws.inspector2#DailySchedule", + "traits": { + "smithy.api#documentation": "The schedule's daily.
" + } + }, + "weekly": { + "target": "com.amazonaws.inspector2#WeeklySchedule", + "traits": { + "smithy.api#documentation": "The schedule's weekly.
" + } + }, + "monthly": { + "target": "com.amazonaws.inspector2#MonthlySchedule", + "traits": { + "smithy.api#documentation": "The schedule's monthly.
" + } + } + }, + "traits": { + "smithy.api#documentation": "A schedule.
" + } + }, "com.amazonaws.inspector2#SearchVulnerabilities": { "type": "operation", "input": { @@ -9812,9 +12687,176 @@ "target": "com.amazonaws.inspector2#SecurityGroupId" }, "traits": { - "smithy.api#length": { - "max": 5 - } + "smithy.api#length": { + "max": 5 + } + } + }, + "com.amazonaws.inspector2#SendCisSessionHealth": { + "type": "operation", + "input": { + "target": "com.amazonaws.inspector2#SendCisSessionHealthRequest" + }, + "output": { + "target": "com.amazonaws.inspector2#SendCisSessionHealthResponse" + }, + "errors": [ + { + "target": "com.amazonaws.inspector2#AccessDeniedException" + }, + { + "target": "com.amazonaws.inspector2#ConflictException" + }, + { + "target": "com.amazonaws.inspector2#InternalServerException" + }, + { + "target": "com.amazonaws.inspector2#ThrottlingException" + }, + { + "target": "com.amazonaws.inspector2#ValidationException" + } + ], + "traits": { + "smithy.api#documentation": "\n Sends a CIS session health. \n This API is used by the Amazon Inspector SSM plugin to communicate with the Amazon Inspector service. \n The Amazon Inspector SSM plugin calls this API to start a CIS scan session for the scan ID supplied by the service.\n
", + "smithy.api#examples": [ + { + "title": "Sample SendCisSessionHealth Call", + "input": { + "scanJobId": "624b746d-e080-44ae-8c1d-48e653365a38", + "sessionToken": "624b746d-e080-44ae-8c1d-48e653365a31" + }, + "output": {} + } + ], + "smithy.api#http": { + "code": 200, + "method": "PUT", + "uri": "/cissession/health/send" + }, + "smithy.api#idempotent": {} + } + }, + "com.amazonaws.inspector2#SendCisSessionHealthRequest": { + "type": "structure", + "members": { + "scanJobId": { + "target": "com.amazonaws.inspector2#UUID", + "traits": { + "smithy.api#documentation": "A unique identifier for the scan job.
", + "smithy.api#required": {} + } + }, + "sessionToken": { + "target": "com.amazonaws.inspector2#UUID", + "traits": { + "smithy.api#documentation": "The unique token that identifies the CIS session.
", + "smithy.api#required": {} + } + } + }, + "traits": { + "smithy.api#input": {} + } + }, + "com.amazonaws.inspector2#SendCisSessionHealthResponse": { + "type": "structure", + "members": {}, + "traits": { + "smithy.api#output": {} + } + }, + "com.amazonaws.inspector2#SendCisSessionTelemetry": { + "type": "operation", + "input": { + "target": "com.amazonaws.inspector2#SendCisSessionTelemetryRequest" + }, + "output": { + "target": "com.amazonaws.inspector2#SendCisSessionTelemetryResponse" + }, + "errors": [ + { + "target": "com.amazonaws.inspector2#AccessDeniedException" + }, + { + "target": "com.amazonaws.inspector2#ConflictException" + }, + { + "target": "com.amazonaws.inspector2#InternalServerException" + }, + { + "target": "com.amazonaws.inspector2#ThrottlingException" + }, + { + "target": "com.amazonaws.inspector2#ValidationException" + } + ], + "traits": { + "smithy.api#documentation": "\n Sends a CIS session telemetry. \n This API is used by the Amazon Inspector SSM plugin to communicate with the Amazon Inspector service. \n The Amazon Inspector SSM plugin calls this API to start a CIS scan session for the scan ID supplied by the service.\n
", + "smithy.api#examples": [ + { + "title": "Sample SendCisSessionTelemetry Call", + "input": { + "scanJobId": "624b746d-e080-44ae-8c1d-48e653365a38", + "sessionToken": "624b746d-e080-44ae-8c1d-48e653365a31", + "messages": [ + { + "ruleId": "1.12.1", + "status": "FAILED", + "cisRuleDetails": "dGVzdCBleGFtcGxlCg==" + }, + { + "ruleId": "1.2.1", + "status": "PASSED", + "cisRuleDetails": "dGVzdCBleGFtcGxlCg==dGVzdCBleGFtcGxlCg" + } + ] + }, + "output": {} + } + ], + "smithy.api#http": { + "code": 200, + "method": "PUT", + "uri": "/cissession/telemetry/send" + }, + "smithy.api#idempotent": {} + } + }, + "com.amazonaws.inspector2#SendCisSessionTelemetryRequest": { + "type": "structure", + "members": { + "scanJobId": { + "target": "com.amazonaws.inspector2#UUID", + "traits": { + "smithy.api#documentation": "A unique identifier for the scan job.
", + "smithy.api#required": {} + } + }, + "sessionToken": { + "target": "com.amazonaws.inspector2#UUID", + "traits": { + "smithy.api#documentation": "The unique token that identifies the CIS session.
", + "smithy.api#required": {} + } + }, + "messages": { + "target": "com.amazonaws.inspector2#CisSessionMessages", + "traits": { + "smithy.api#documentation": "The CIS session telemetry messages.
", + "smithy.api#required": {} + } + } + }, + "traits": { + "smithy.api#input": {} + } + }, + "com.amazonaws.inspector2#SendCisSessionTelemetryResponse": { + "type": "structure", + "members": {}, + "traits": { + "smithy.api#output": {} } }, "com.amazonaws.inspector2#Service": { @@ -10044,6 +13086,97 @@ "smithy.api#pattern": "^sha256:[a-z0-9]{64}$" } }, + "com.amazonaws.inspector2#StartCisSession": { + "type": "operation", + "input": { + "target": "com.amazonaws.inspector2#StartCisSessionRequest" + }, + "output": { + "target": "com.amazonaws.inspector2#StartCisSessionResponse" + }, + "errors": [ + { + "target": "com.amazonaws.inspector2#AccessDeniedException" + }, + { + "target": "com.amazonaws.inspector2#ConflictException" + }, + { + "target": "com.amazonaws.inspector2#InternalServerException" + }, + { + "target": "com.amazonaws.inspector2#ThrottlingException" + }, + { + "target": "com.amazonaws.inspector2#ValidationException" + } + ], + "traits": { + "smithy.api#documentation": "\n Starts a CIS session. \n This API is used by the Amazon Inspector SSM plugin to communicate with the Amazon Inspector service. \n The Amazon Inspector SSM plugin calls this API to start a CIS scan session for the scan ID supplied by the service.\n
", + "smithy.api#examples": [ + { + "title": "Sample SendCisSessionHealth Call", + "input": { + "scanJobId": "624b746d-e080-44ae-8c1d-48e653365a38", + "message": { + "sessionToken": "624b746d-e080-44ae-8c1d-48e653365a31" + } + }, + "output": {} + } + ], + "smithy.api#http": { + "code": 200, + "method": "PUT", + "uri": "/cissession/start" + }, + "smithy.api#idempotent": {} + } + }, + "com.amazonaws.inspector2#StartCisSessionMessage": { + "type": "structure", + "members": { + "sessionToken": { + "target": "com.amazonaws.inspector2#UUID", + "traits": { + "smithy.api#documentation": "The unique token that identifies the CIS session.
", + "smithy.api#required": {} + } + } + }, + "traits": { + "smithy.api#documentation": "The start CIS session message.
" + } + }, + "com.amazonaws.inspector2#StartCisSessionRequest": { + "type": "structure", + "members": { + "scanJobId": { + "target": "com.amazonaws.inspector2#UUID", + "traits": { + "smithy.api#documentation": "A unique identifier for the scan job.
", + "smithy.api#required": {} + } + }, + "message": { + "target": "com.amazonaws.inspector2#StartCisSessionMessage", + "traits": { + "smithy.api#documentation": "The start CIS session message.
", + "smithy.api#required": {} + } + } + }, + "traits": { + "smithy.api#input": {} + } + }, + "com.amazonaws.inspector2#StartCisSessionResponse": { + "type": "structure", + "members": {}, + "traits": { + "smithy.api#output": {} + } + }, "com.amazonaws.inspector2#State": { "type": "structure", "members": { @@ -10104,6 +13237,32 @@ ] } }, + "com.amazonaws.inspector2#StatusCounts": { + "type": "structure", + "members": { + "failed": { + "target": "smithy.api#Integer", + "traits": { + "smithy.api#documentation": "The number of checks that failed.
" + } + }, + "skipped": { + "target": "smithy.api#Integer", + "traits": { + "smithy.api#documentation": "The number of checks that were skipped.
" + } + }, + "passed": { + "target": "smithy.api#Integer", + "traits": { + "smithy.api#documentation": "The number of checks that passed.
" + } + } + }, + "traits": { + "smithy.api#documentation": "The status counts.
" + } + }, "com.amazonaws.inspector2#Step": { "type": "structure", "members": { @@ -10117,25 +13276,266 @@ "componentType": { "target": "com.amazonaws.inspector2#ComponentType", "traits": { - "smithy.api#documentation": "The component type.
", - "smithy.api#required": {} + "smithy.api#documentation": "The component type.
", + "smithy.api#required": {} + } + } + }, + "traits": { + "smithy.api#documentation": "Details about the step associated with a finding.
" + } + }, + "com.amazonaws.inspector2#StepList": { + "type": "list", + "member": { + "target": "com.amazonaws.inspector2#Step" + }, + "traits": { + "smithy.api#length": { + "min": 1, + "max": 30 + } + } + }, + "com.amazonaws.inspector2#StopCisMessageProgress": { + "type": "structure", + "members": { + "totalChecks": { + "target": "com.amazonaws.inspector2#CheckCount", + "traits": { + "smithy.api#default": 0, + "smithy.api#documentation": "The progress' total checks.
" + } + }, + "successfulChecks": { + "target": "com.amazonaws.inspector2#CheckCount", + "traits": { + "smithy.api#default": 0, + "smithy.api#documentation": "The progress' successful checks.
" + } + }, + "failedChecks": { + "target": "com.amazonaws.inspector2#CheckCount", + "traits": { + "smithy.api#default": 0, + "smithy.api#documentation": "The progress' failed checks.
" + } + }, + "notEvaluatedChecks": { + "target": "com.amazonaws.inspector2#CheckCount", + "traits": { + "smithy.api#default": 0, + "smithy.api#documentation": "The progress' not evaluated checks.
" + } + }, + "unknownChecks": { + "target": "com.amazonaws.inspector2#CheckCount", + "traits": { + "smithy.api#default": 0, + "smithy.api#documentation": "The progress' unknown checks.
" + } + }, + "notApplicableChecks": { + "target": "com.amazonaws.inspector2#CheckCount", + "traits": { + "smithy.api#default": 0, + "smithy.api#documentation": "The progress' not applicable checks.
" + } + }, + "informationalChecks": { + "target": "com.amazonaws.inspector2#CheckCount", + "traits": { + "smithy.api#default": 0, + "smithy.api#documentation": "The progress' informational checks.
" + } + }, + "errorChecks": { + "target": "com.amazonaws.inspector2#CheckCount", + "traits": { + "smithy.api#default": 0, + "smithy.api#documentation": "The progress' error checks.
" + } + } + }, + "traits": { + "smithy.api#documentation": "The stop CIS message progress.
" + } + }, + "com.amazonaws.inspector2#StopCisSession": { + "type": "operation", + "input": { + "target": "com.amazonaws.inspector2#StopCisSessionRequest" + }, + "output": { + "target": "com.amazonaws.inspector2#StopCisSessionResponse" + }, + "errors": [ + { + "target": "com.amazonaws.inspector2#AccessDeniedException" + }, + { + "target": "com.amazonaws.inspector2#ConflictException" + }, + { + "target": "com.amazonaws.inspector2#InternalServerException" + }, + { + "target": "com.amazonaws.inspector2#ThrottlingException" + }, + { + "target": "com.amazonaws.inspector2#ValidationException" + } + ], + "traits": { + "smithy.api#documentation": "\n Stops a CIS session. \n This API is used by the Amazon Inspector SSM plugin to communicate with the Amazon Inspector service. \n The Amazon Inspector SSM plugin calls this API to start a CIS scan session for the scan ID supplied by the service.\n
", + "smithy.api#examples": [ + { + "title": "Sample StopCisSession Call", + "input": { + "scanJobId": "624b746d-e080-44ae-8c1d-48e653365a38", + "sessionToken": "624b746d-e080-44ae-8c1d-48e653365a31", + "message": { + "status": "FAILED", + "reason": "Failure Reason", + "progress": { + "informationalChecks": 1, + "errorChecks": 1, + "successfulChecks": 5, + "notApplicableChecks": 0, + "totalChecks": 10, + "unknownChecks": 0, + "notEvaluatedChecks": 2, + "failedChecks": 0 + }, + "computePlatform": { + "vendor": "canonical", + "product": "ubuntu", + "version": "20.04" + }, + "benchmarkVersion": "2.0.0", + "benchmarkProfile": "xccdf_org.cisecurity.benchmarks_profile_Level_1" + } + }, + "output": {} + } + ], + "smithy.api#http": { + "code": 200, + "method": "PUT", + "uri": "/cissession/stop" + }, + "smithy.api#idempotent": {} + } + }, + "com.amazonaws.inspector2#StopCisSessionMessage": { + "type": "structure", + "members": { + "status": { + "target": "com.amazonaws.inspector2#StopCisSessionStatus", + "traits": { + "smithy.api#documentation": "The status of the message.
", + "smithy.api#required": {} + } + }, + "reason": { + "target": "com.amazonaws.inspector2#Reason", + "traits": { + "smithy.api#documentation": "The reason for the message.
" + } + }, + "progress": { + "target": "com.amazonaws.inspector2#StopCisMessageProgress", + "traits": { + "smithy.api#documentation": "The progress of the message.
", + "smithy.api#required": {} + } + }, + "computePlatform": { + "target": "com.amazonaws.inspector2#ComputePlatform", + "traits": { + "smithy.api#documentation": "The message compute platform.
" + } + }, + "benchmarkVersion": { + "target": "com.amazonaws.inspector2#BenchmarkVersion", + "traits": { + "smithy.api#documentation": "The message benchmark version.
" + } + }, + "benchmarkProfile": { + "target": "com.amazonaws.inspector2#BenchmarkProfile", + "traits": { + "smithy.api#documentation": "The message benchmark profile.
" + } + } + }, + "traits": { + "smithy.api#documentation": "The stop CIS session message.
" + } + }, + "com.amazonaws.inspector2#StopCisSessionRequest": { + "type": "structure", + "members": { + "scanJobId": { + "target": "com.amazonaws.inspector2#UUID", + "traits": { + "smithy.api#documentation": "A unique identifier for the scan job.
", + "smithy.api#required": {} + } + }, + "sessionToken": { + "target": "com.amazonaws.inspector2#UUID", + "traits": { + "smithy.api#documentation": "The unique token that identifies the CIS session.
", + "smithy.api#required": {} + } + }, + "message": { + "target": "com.amazonaws.inspector2#StopCisSessionMessage", + "traits": { + "smithy.api#documentation": "The stop CIS session message.
", + "smithy.api#required": {} + } + } + }, + "traits": { + "smithy.api#input": {} + } + }, + "com.amazonaws.inspector2#StopCisSessionResponse": { + "type": "structure", + "members": {}, + "traits": { + "smithy.api#output": {} + } + }, + "com.amazonaws.inspector2#StopCisSessionStatus": { + "type": "enum", + "members": { + "SUCCESS": { + "target": "smithy.api#Unit", + "traits": { + "smithy.api#enumValue": "SUCCESS" + } + }, + "FAILED": { + "target": "smithy.api#Unit", + "traits": { + "smithy.api#enumValue": "FAILED" + } + }, + "INTERRUPTED": { + "target": "smithy.api#Unit", + "traits": { + "smithy.api#enumValue": "INTERRUPTED" + } + }, + "UNSUPPORTED_OS": { + "target": "smithy.api#Unit", + "traits": { + "smithy.api#enumValue": "UNSUPPORTED_OS" } } - }, - "traits": { - "smithy.api#documentation": "Details about the step associated with a finding.
" - } - }, - "com.amazonaws.inspector2#StepList": { - "type": "list", - "member": { - "target": "com.amazonaws.inspector2#Step" - }, - "traits": { - "smithy.api#length": { - "min": 1, - "max": 30 - } } }, "com.amazonaws.inspector2#StringComparison": { @@ -10263,6 +13663,46 @@ } } }, + "com.amazonaws.inspector2#TagComparison": { + "type": "enum", + "members": { + "EQUALS": { + "target": "smithy.api#Unit", + "traits": { + "smithy.api#enumValue": "EQUALS" + } + } + } + }, + "com.amazonaws.inspector2#TagFilter": { + "type": "structure", + "members": { + "comparison": { + "target": "com.amazonaws.inspector2#TagComparison", + "traits": { + "smithy.api#documentation": "The tag filter comparison value.
", + "smithy.api#required": {} + } + }, + "key": { + "target": "com.amazonaws.inspector2#NonEmptyString", + "traits": { + "smithy.api#documentation": "The tag filter key.
", + "smithy.api#required": {} + } + }, + "value": { + "target": "com.amazonaws.inspector2#NonEmptyString", + "traits": { + "smithy.api#documentation": "The tag filter value.
", + "smithy.api#required": {} + } + } + }, + "traits": { + "smithy.api#documentation": "The tag filter.
" + } + }, "com.amazonaws.inspector2#TagKey": { "type": "string", "traits": { @@ -10358,6 +13798,18 @@ "type": "structure", "members": {} }, + "com.amazonaws.inspector2#TagValueList": { + "type": "list", + "member": { + "target": "smithy.api#String" + }, + "traits": { + "smithy.api#length": { + "min": 1, + "max": 5 + } + } + }, "com.amazonaws.inspector2#Target": { "type": "string", "traits": { @@ -10367,6 +13819,64 @@ } } }, + "com.amazonaws.inspector2#TargetAccount": { + "type": "string", + "traits": { + "smithy.api#pattern": "^\\d{12}|ALL_ACCOUNTS|SELF$" + } + }, + "com.amazonaws.inspector2#TargetAccountList": { + "type": "list", + "member": { + "target": "com.amazonaws.inspector2#TargetAccount" + }, + "traits": { + "smithy.api#length": { + "min": 1, + "max": 10000 + }, + "smithy.api#uniqueItems": {} + } + }, + "com.amazonaws.inspector2#TargetResourceTags": { + "type": "map", + "key": { + "target": "com.amazonaws.inspector2#NonEmptyString" + }, + "value": { + "target": "com.amazonaws.inspector2#TagValueList" + }, + "traits": { + "smithy.api#length": { + "min": 1, + "max": 5 + } + } + }, + "com.amazonaws.inspector2#TargetStatusFilterList": { + "type": "list", + "member": { + "target": "com.amazonaws.inspector2#CisTargetStatusFilter" + }, + "traits": { + "smithy.api#length": { + "min": 1, + "max": 10 + } + } + }, + "com.amazonaws.inspector2#TargetStatusReasonFilterList": { + "type": "list", + "member": { + "target": "com.amazonaws.inspector2#CisTargetStatusReasonFilter" + }, + "traits": { + "smithy.api#length": { + "min": 1, + "max": 10 + } + } + }, "com.amazonaws.inspector2#Targets": { "type": "list", "member": { @@ -10404,6 +13914,43 @@ } } }, + "com.amazonaws.inspector2#Time": { + "type": "structure", + "members": { + "timeOfDay": { + "target": "com.amazonaws.inspector2#TimeOfDay", + "traits": { + "smithy.api#documentation": "The time of day in 24-hour format (00:00).
", + "smithy.api#required": {} + } + }, + "timezone": { + "target": "com.amazonaws.inspector2#Timezone", + "traits": { + "smithy.api#documentation": "The timezone.
", + "smithy.api#required": {} + } + } + }, + "traits": { + "smithy.api#documentation": "The time.
" + } + }, + "com.amazonaws.inspector2#TimeOfDay": { + "type": "string", + "traits": { + "smithy.api#pattern": "^([0-1]?[0-9]|2[0-3]):[0-5][0-9]$" + } + }, + "com.amazonaws.inspector2#Timezone": { + "type": "string", + "traits": { + "smithy.api#length": { + "min": 1, + "max": 50 + } + } + }, "com.amazonaws.inspector2#TitleAggregation": { "type": "structure", "members": { @@ -10481,6 +14028,18 @@ "smithy.api#documentation": "A response that contains details on the results of a finding aggregation by title.
" } }, + "com.amazonaws.inspector2#TitleFilterList": { + "type": "list", + "member": { + "target": "com.amazonaws.inspector2#CisStringFilter" + }, + "traits": { + "smithy.api#length": { + "min": 1, + "max": 10 + } + } + }, "com.amazonaws.inspector2#TitleSortBy": { "type": "string", "traits": { @@ -10534,6 +14093,12 @@ } } }, + "com.amazonaws.inspector2#UUID": { + "type": "string", + "traits": { + "smithy.api#pattern": "^[a-f0-9]{8}-[a-f0-9]{4}-[a-f0-9]{4}-[a-f0-9]{4}-[a-f0-9]{12}$" + } + }, "com.amazonaws.inspector2#UntagResource": { "type": "operation", "input": { @@ -10589,6 +14154,145 @@ "type": "structure", "members": {} }, + "com.amazonaws.inspector2#UpdateCisScanConfiguration": { + "type": "operation", + "input": { + "target": "com.amazonaws.inspector2#UpdateCisScanConfigurationRequest" + }, + "output": { + "target": "com.amazonaws.inspector2#UpdateCisScanConfigurationResponse" + }, + "errors": [ + { + "target": "com.amazonaws.inspector2#AccessDeniedException" + }, + { + "target": "com.amazonaws.inspector2#InternalServerException" + }, + { + "target": "com.amazonaws.inspector2#ResourceNotFoundException" + }, + { + "target": "com.amazonaws.inspector2#ThrottlingException" + }, + { + "target": "com.amazonaws.inspector2#ValidationException" + } + ], + "traits": { + "smithy.api#documentation": "Updates a CIS scan configuration.
", + "smithy.api#examples": [ + { + "title": "Sample UpdateCisScanConfiguration Call", + "input": { + "scanConfigurationArn": "arn:aws:inspector2:us-east-1:123412341234:owner/123412341234/cis-configuration/624b746d-e080-44ae-8c1d-48e653365a38", + "scanName": "sample_new", + "securityLevel": "LEVEL_2", + "schedule": { + "daily": { + "startTime": { + "timeOfDay": "12:56", + "timezone": "UTC" + } + } + }, + "targets": { + "accountIds": [ + "SELF" + ], + "targetResourceTags": { + "key2": [ + "value2" + ] + } + } + }, + "output": { + "scanConfigurationArn": "arn:aws:inspector2:us-east-1:123412341234:owner/123412341234/cis-configuration/624b746d-e080-44ae-8c1d-48e653365a38" + } + } + ], + "smithy.api#http": { + "code": 200, + "method": "POST", + "uri": "/cis/scan-configuration/update" + } + } + }, + "com.amazonaws.inspector2#UpdateCisScanConfigurationRequest": { + "type": "structure", + "members": { + "scanConfigurationArn": { + "target": "com.amazonaws.inspector2#CisScanConfigurationArn", + "traits": { + "smithy.api#documentation": "The CIS scan configuration ARN.
", + "smithy.api#required": {} + } + }, + "scanName": { + "target": "com.amazonaws.inspector2#CisScanName", + "traits": { + "smithy.api#documentation": "The scan name for the CIS scan configuration.
" + } + }, + "securityLevel": { + "target": "com.amazonaws.inspector2#CisSecurityLevel", + "traits": { + "smithy.api#documentation": "\n The security level for the CIS scan configuration. \n Security level refers to the Benchmark levels that CIS assigns to a profile.\n
" + } + }, + "schedule": { + "target": "com.amazonaws.inspector2#Schedule", + "traits": { + "smithy.api#documentation": "The schedule for the CIS scan configuration.
" + } + }, + "targets": { + "target": "com.amazonaws.inspector2#UpdateCisTargets", + "traits": { + "smithy.api#documentation": "The targets for the CIS scan configuration.
" + } + } + }, + "traits": { + "smithy.api#input": {} + } + }, + "com.amazonaws.inspector2#UpdateCisScanConfigurationResponse": { + "type": "structure", + "members": { + "scanConfigurationArn": { + "target": "com.amazonaws.inspector2#CisScanConfigurationArn", + "traits": { + "smithy.api#documentation": "The CIS scan configuration ARN.
", + "smithy.api#required": {} + } + } + }, + "traits": { + "smithy.api#output": {} + } + }, + "com.amazonaws.inspector2#UpdateCisTargets": { + "type": "structure", + "members": { + "accountIds": { + "target": "com.amazonaws.inspector2#TargetAccountList", + "traits": { + "smithy.api#documentation": "The target account ids.
" + } + }, + "targetResourceTags": { + "target": "com.amazonaws.inspector2#TargetResourceTags", + "traits": { + "smithy.api#documentation": "The target resource tags.
" + } + } + }, + "traits": { + "smithy.api#documentation": "Updates CIS targets.
" + } + }, "com.amazonaws.inspector2#UpdateConfiguration": { "type": "operation", "input": { @@ -11182,6 +14886,14 @@ ] } }, + "com.amazonaws.inspector2#Vendor": { + "type": "string", + "traits": { + "smithy.api#length": { + "max": 16 + } + } + }, "com.amazonaws.inspector2#VendorCreatedAt": { "type": "timestamp" }, @@ -11498,6 +15210,28 @@ "max": 1024 } } + }, + "com.amazonaws.inspector2#WeeklySchedule": { + "type": "structure", + "members": { + "startTime": { + "target": "com.amazonaws.inspector2#Time", + "traits": { + "smithy.api#documentation": "The weekly schedule's start time.
", + "smithy.api#required": {} + } + }, + "days": { + "target": "com.amazonaws.inspector2#DaysList", + "traits": { + "smithy.api#documentation": "The weekly schedule's days.
", + "smithy.api#required": {} + } + } + }, + "traits": { + "smithy.api#documentation": "A weekly schedule.
" + } } } } \ No newline at end of file