securityhub

package
v0.24.0 Latest Latest
Warning

This package is not in the latest version of its module.

Go to latest
Published: Jul 22, 2020 License: Apache-2.0 Imports: 9 Imported by: 47

Documentation

Overview

Package securityhub provides the client and types for making API requests to AWS SecurityHub.

Security Hub provides you with a comprehensive view of the security state of your AWS environment and resources. It also provides you with the readiness status of your environment based on controls from supported security standards. Security Hub collects security data from AWS accounts, services, and integrated third-party products and helps you analyze security trends in your environment to identify the highest priority security issues. For more information about Security Hub, see the AWS Security Hub User Guide (https://docs.aws.amazon.com/securityhub/latest/userguide/what-is-securityhub.html) .

When you use operations in the Security Hub API, the requests are executed only in the AWS Region that is currently active or in the specific AWS Region that you specify in your request. Any configuration or settings change that results from the operation is applied only to that Region. To make the same change in other Regions, execute the same command for each Region to apply the change to.

For example, if your Region is set to us-west-2, when you use CreateMembers to add a member account to Security Hub, the association of the member account with the master account is created only in the us-west-2 Region. Security Hub must be enabled for the member account in the same Region that the invitation was sent from.

The following throttling limits apply to using Security Hub API operations.

  • GetFindings - RateLimit of 3 requests per second. BurstLimit of 6 requests per second.

  • UpdateFindings - RateLimit of 1 request per second. BurstLimit of 5 requests per second.

  • All other operations - RateLimit of 10 requests per second. BurstLimit of 30 requests per second.

See https://docs.aws.amazon.com/goto/WebAPI/securityhub-2018-10-26 for more information on this service.

See securityhub package documentation for more information. https://docs.aws.amazon.com/sdk-for-go/api/service/securityhub/

Using the Client

To use AWS SecurityHub with the SDK use the New function to create a new service client. With that client you can make API requests to the service. These clients are safe to use concurrently.

See the SDK's documentation for more information on how to use the SDK. https://docs.aws.amazon.com/sdk-for-go/api/

See aws.Config documentation for more information on configuring SDK clients. https://docs.aws.amazon.com/sdk-for-go/api/aws/#Config

See the AWS SecurityHub client for more information on creating client for this service. https://docs.aws.amazon.com/sdk-for-go/api/service/securityhub/#New

Index

Constants

View Source
const (
	ServiceName = "AWS SecurityHub" // Service's name
	ServiceID   = "SecurityHub"     // Service's identifier
	EndpointsID = "securityhub"     // Service's Endpoint identifier
)
View Source
const (

	// ErrCodeAccessDeniedException for service response error code
	// "AccessDeniedException".
	//
	// You don't have permission to perform the action specified in the request.
	ErrCodeAccessDeniedException = "AccessDeniedException"

	// ErrCodeInternalException for service response error code
	// "InternalException".
	//
	// Internal server error.
	ErrCodeInternalException = "InternalException"

	// ErrCodeInvalidAccessException for service response error code
	// "InvalidAccessException".
	//
	// AWS Security Hub isn't enabled for the account used to make this request.
	ErrCodeInvalidAccessException = "InvalidAccessException"

	// ErrCodeInvalidInputException for service response error code
	// "InvalidInputException".
	//
	// The request was rejected because you supplied an invalid or out-of-range
	// value for an input parameter.
	ErrCodeInvalidInputException = "InvalidInputException"

	// ErrCodeLimitExceededException for service response error code
	// "LimitExceededException".
	//
	// The request was rejected because it attempted to create resources beyond
	// the current AWS account limits. The error code describes the limit exceeded.
	ErrCodeLimitExceededException = "LimitExceededException"

	// ErrCodeResourceConflictException for service response error code
	// "ResourceConflictException".
	//
	// The resource specified in the request conflicts with an existing resource.
	ErrCodeResourceConflictException = "ResourceConflictException"

	// ErrCodeResourceNotFoundException for service response error code
	// "ResourceNotFoundException".
	//
	// The request was rejected because we can't find the specified resource.
	ErrCodeResourceNotFoundException = "ResourceNotFoundException"
)

Variables

This section is empty.

Functions

This section is empty.

Types

type AcceptInvitationInput

type AcceptInvitationInput struct {

	// The ID of the invitation sent from the Security Hub master account.
	//
	// InvitationId is a required field
	InvitationId *string `type:"string" required:"true"`

	// The account ID of the Security Hub master account that sent the invitation.
	//
	// MasterId is a required field
	MasterId *string `type:"string" required:"true"`
	// contains filtered or unexported fields
}

func (AcceptInvitationInput) MarshalFields

func (s AcceptInvitationInput) MarshalFields(e protocol.FieldEncoder) error

MarshalFields encodes the AWS API shape using the passed in protocol encoder.

func (AcceptInvitationInput) String

func (s AcceptInvitationInput) String() string

String returns the string representation

func (*AcceptInvitationInput) Validate added in v0.12.0

func (s *AcceptInvitationInput) Validate() error

Validate inspects the fields of the type to determine if they are valid.

type AcceptInvitationOutput

type AcceptInvitationOutput struct {
	// contains filtered or unexported fields
}

func (AcceptInvitationOutput) MarshalFields

MarshalFields encodes the AWS API shape using the passed in protocol encoder.

func (AcceptInvitationOutput) String

func (s AcceptInvitationOutput) String() string

String returns the string representation

type AcceptInvitationRequest

type AcceptInvitationRequest struct {
	*aws.Request
	Input *AcceptInvitationInput
	Copy  func(*AcceptInvitationInput) AcceptInvitationRequest
}

AcceptInvitationRequest is the request type for the AcceptInvitation API operation.

func (AcceptInvitationRequest) Send

Send marshals and sends the AcceptInvitation API request.

type AcceptInvitationResponse added in v0.9.0

type AcceptInvitationResponse struct {
	*AcceptInvitationOutput
	// contains filtered or unexported fields
}

AcceptInvitationResponse is the response type for the AcceptInvitation API operation.

func (*AcceptInvitationResponse) SDKResponseMetdata added in v0.9.0

func (r *AcceptInvitationResponse) SDKResponseMetdata() *aws.Response

SDKResponseMetdata returns the response metadata for the AcceptInvitation request.

type AccountDetails

type AccountDetails struct {

	// The ID of an AWS account.
	AccountId *string `type:"string"`

	// The email of an AWS account.
	Email *string `type:"string"`
	// contains filtered or unexported fields
}

The details of an AWS account.

func (AccountDetails) MarshalFields

func (s AccountDetails) MarshalFields(e protocol.FieldEncoder) error

MarshalFields encodes the AWS API shape using the passed in protocol encoder.

func (AccountDetails) String

func (s AccountDetails) String() string

String returns the string representation

type ActionTarget added in v0.10.0

type ActionTarget struct {

	// The ARN for the target action.
	//
	// ActionTargetArn is a required field
	ActionTargetArn *string `type:"string" required:"true"`

	// The description of the target action.
	//
	// Description is a required field
	Description *string `type:"string" required:"true"`

	// The name of the action target.
	//
	// Name is a required field
	Name *string `type:"string" required:"true"`
	// contains filtered or unexported fields
}

An ActionTarget object.

func (ActionTarget) MarshalFields added in v0.10.0

func (s ActionTarget) MarshalFields(e protocol.FieldEncoder) error

MarshalFields encodes the AWS API shape using the passed in protocol encoder.

func (ActionTarget) String added in v0.10.0

func (s ActionTarget) String() string

String returns the string representation

type AvailabilityZone added in v0.19.0

type AvailabilityZone struct {

	// The ID of the subnet. You can specify one subnet per Availability Zone.
	SubnetId *string `type:"string"`

	// The name of the Availability Zone.
	ZoneName *string `type:"string"`
	// contains filtered or unexported fields
}

Information about an Availability Zone.

func (AvailabilityZone) MarshalFields added in v0.19.0

func (s AvailabilityZone) MarshalFields(e protocol.FieldEncoder) error

MarshalFields encodes the AWS API shape using the passed in protocol encoder.

func (AvailabilityZone) String added in v0.19.0

func (s AvailabilityZone) String() string

String returns the string representation

type AwsAutoScalingAutoScalingGroupDetails added in v0.24.0

type AwsAutoScalingAutoScalingGroupDetails struct {

	// The datetime when the auto scaling group was created.
	CreatedTime *string `type:"string"`

	// The amount of time, in seconds, that Amazon EC2 Auto Scaling waits before
	// it checks the health status of an EC2 instance that has come into service.
	HealthCheckGracePeriod *int64 `type:"integer"`

	// The service to use for the health checks.
	HealthCheckType *string `type:"string"`

	// The name of the launch configuration.
	LaunchConfigurationName *string `type:"string"`

	// The list of load balancers associated with the group.
	LoadBalancerNames []string `type:"list"`
	// contains filtered or unexported fields
}

Provides details about an auto scaling group.

func (AwsAutoScalingAutoScalingGroupDetails) MarshalFields added in v0.24.0

MarshalFields encodes the AWS API shape using the passed in protocol encoder.

func (AwsAutoScalingAutoScalingGroupDetails) String added in v0.24.0

String returns the string representation

type AwsCloudFrontDistributionDetails added in v0.19.0

type AwsCloudFrontDistributionDetails struct {

	// The domain name corresponding to the distribution.
	DomainName *string `type:"string"`

	// The entity tag is a hash of the object.
	ETag *string `type:"string"`

	// The date and time that the distribution was last modified.
	LastModifiedTime *string `type:"string"`

	// A complex type that controls whether access logs are written for the distribution.
	Logging *AwsCloudFrontDistributionLogging `type:"structure"`

	// A complex type that contains information about origins for this distribution.
	Origins *AwsCloudFrontDistributionOrigins `type:"structure"`

	// Indicates the current status of the distribution.
	Status *string `type:"string"`

	// A unique identifier that specifies the AWS WAF web ACL, if any, to associate
	// with this distribution.
	WebAclId *string `type:"string"`
	// contains filtered or unexported fields
}

A distribution configuration.

func (AwsCloudFrontDistributionDetails) MarshalFields added in v0.19.0

MarshalFields encodes the AWS API shape using the passed in protocol encoder.

func (AwsCloudFrontDistributionDetails) String added in v0.19.0

String returns the string representation

type AwsCloudFrontDistributionLogging added in v0.19.0

type AwsCloudFrontDistributionLogging struct {

	// The Amazon S3 bucket to store the access logs in.
	Bucket *string `type:"string"`

	// With this field, you can enable or disable the selected distribution.
	Enabled *bool `type:"boolean"`

	// Specifies whether you want CloudFront to include cookies in access logs.
	IncludeCookies *bool `type:"boolean"`

	// An optional string that you want CloudFront to use as a prefix to the access
	// log filenames for this distribution.
	Prefix *string `type:"string"`
	// contains filtered or unexported fields
}

A complex type that controls whether access logs are written for the distribution.

func (AwsCloudFrontDistributionLogging) MarshalFields added in v0.19.0

MarshalFields encodes the AWS API shape using the passed in protocol encoder.

func (AwsCloudFrontDistributionLogging) String added in v0.19.0

String returns the string representation

type AwsCloudFrontDistributionOriginItem added in v0.19.0

type AwsCloudFrontDistributionOriginItem struct {

	// Amazon S3 origins: The DNS name of the Amazon S3 bucket from which you want
	// CloudFront to get objects for this origin.
	DomainName *string `type:"string"`

	// A unique identifier for the origin or origin group.
	Id *string `type:"string"`

	// An optional element that causes CloudFront to request your content from a
	// directory in your Amazon S3 bucket or your custom origin.
	OriginPath *string `type:"string"`
	// contains filtered or unexported fields
}

A complex type that describes the Amazon S3 bucket, HTTP server (for example, a web server), Amazon Elemental MediaStore, or other server from which CloudFront gets your files.

func (AwsCloudFrontDistributionOriginItem) MarshalFields added in v0.19.0

MarshalFields encodes the AWS API shape using the passed in protocol encoder.

func (AwsCloudFrontDistributionOriginItem) String added in v0.19.0

String returns the string representation

type AwsCloudFrontDistributionOrigins added in v0.19.0

type AwsCloudFrontDistributionOrigins struct {

	// A complex type that contains origins or origin groups for this distribution.
	Items []AwsCloudFrontDistributionOriginItem `type:"list"`
	// contains filtered or unexported fields
}

A complex type that contains information about origins and origin groups for this distribution.

func (AwsCloudFrontDistributionOrigins) MarshalFields added in v0.19.0

MarshalFields encodes the AWS API shape using the passed in protocol encoder.

func (AwsCloudFrontDistributionOrigins) String added in v0.19.0

String returns the string representation

type AwsCodeBuildProjectDetails added in v0.20.0

type AwsCodeBuildProjectDetails struct {

	// The AWS Key Management Service (AWS KMS) customer master key (CMK) used to
	// encrypt the build output artifacts.
	//
	// You can specify either the Amazon Resource Name (ARN) of the CMK or, if available,
	// the CMK alias (using the format alias/alias-name).
	EncryptionKey *string `type:"string"`

	// Information about the build environment for this build project.
	Environment *AwsCodeBuildProjectEnvironment `type:"structure"`

	// The name of the build project.
	Name *string `type:"string"`

	// The ARN of the IAM role that enables AWS CodeBuild to interact with dependent
	// AWS services on behalf of the AWS account.
	ServiceRole *string `type:"string"`

	// Information about the build input source code for this build project.
	Source *AwsCodeBuildProjectSource `type:"structure"`

	// Information about the VPC configuration that AWS CodeBuild accesses.
	VpcConfig *AwsCodeBuildProjectVpcConfig `type:"structure"`
	// contains filtered or unexported fields
}

Information about an AWS CodeBuild project.

func (AwsCodeBuildProjectDetails) MarshalFields added in v0.20.0

MarshalFields encodes the AWS API shape using the passed in protocol encoder.

func (AwsCodeBuildProjectDetails) String added in v0.20.0

String returns the string representation

type AwsCodeBuildProjectEnvironment added in v0.20.0

type AwsCodeBuildProjectEnvironment struct {

	// The certificate to use with this build project.
	Certificate *string `type:"string"`

	// The type of credentials AWS CodeBuild uses to pull images in your build.
	//
	// Valid values:
	//
	//    * CODEBUILD specifies that AWS CodeBuild uses its own credentials. This
	//    requires that you modify your ECR repository policy to trust the AWS CodeBuild
	//    service principal.
	//
	//    * SERVICE_ROLE specifies that AWS CodeBuild uses your build project's
	//    service role.
	//
	// When you use a cross-account or private registry image, you must use SERVICE_ROLE
	// credentials. When you use an AWS CodeBuild curated image, you must use CODEBUILD
	// credentials.
	ImagePullCredentialsType *string `type:"string"`

	// The credentials for access to a private registry.
	RegistryCredential *AwsCodeBuildProjectEnvironmentRegistryCredential `type:"structure"`

	// The type of build environment to use for related builds.
	//
	// The environment type ARM_CONTAINER is available only in Regions US East (N.
	// Virginia), US East (Ohio), US West (Oregon), Europe (Ireland), Asia Pacific
	// (Mumbai), Asia Pacific (Tokyo), Asia Pacific (Sydney), and Europe (Frankfurt).
	//
	// The environment type LINUX_CONTAINER with compute type build.general1.2xlarge
	// is available only in Regions US East (N. Virginia), US East (N. Virginia),
	// US West (Oregon), Canada (Central), Europe (Ireland), Europe (London), Europe
	// (Frankfurt), Asia Pacific (Tokyo), Asia Pacific (Seoul), Asia Pacific (Singapore),
	// Asia Pacific (Sydney), China (Beijing), and China (Ningxia).
	//
	// The environment type LINUX_GPU_CONTAINER is available only in Regions US
	// East (N. Virginia), US East (N. Virginia), US West (Oregon), Canada (Central),
	// Europe (Ireland), Europe (London), Europe (Frankfurt), Asia Pacific (Tokyo),
	// Asia Pacific (Seoul), Asia Pacific (Singapore), Asia Pacific (Sydney), China
	// (Beijing), and China (Ningxia).
	//
	// Valid values: WINDOWS_CONTAINER | LINUX_CONTAINER | LINUX_GPU_CONTAINER |
	// ARM_CONTAINER
	Type *string `type:"string"`
	// contains filtered or unexported fields
}

Information about the build environment for this build project.

func (AwsCodeBuildProjectEnvironment) MarshalFields added in v0.20.0

MarshalFields encodes the AWS API shape using the passed in protocol encoder.

func (AwsCodeBuildProjectEnvironment) String added in v0.20.0

String returns the string representation

type AwsCodeBuildProjectEnvironmentRegistryCredential added in v0.20.0

type AwsCodeBuildProjectEnvironmentRegistryCredential struct {

	// The Amazon Resource Name (ARN) or name of credentials created using AWS Secrets
	// Manager.
	//
	// The credential can use the name of the credentials only if they exist in
	// your current AWS Region.
	Credential *string `type:"string"`

	// The service that created the credentials to access a private Docker registry.
	//
	// The valid value,SECRETS_MANAGER, is for AWS Secrets Manager.
	CredentialProvider *string `type:"string"`
	// contains filtered or unexported fields
}

The credentials for access to a private registry.

func (AwsCodeBuildProjectEnvironmentRegistryCredential) MarshalFields added in v0.20.0

MarshalFields encodes the AWS API shape using the passed in protocol encoder.

func (AwsCodeBuildProjectEnvironmentRegistryCredential) String added in v0.20.0

String returns the string representation

type AwsCodeBuildProjectSource added in v0.20.0

type AwsCodeBuildProjectSource struct {

	// Information about the Git clone depth for the build project.
	GitCloneDepth *int64 `type:"integer"`

	// Whether to ignore SSL warnings while connecting to the project source code.
	InsecureSsl *bool `type:"boolean"`

	// Information about the location of the source code to be built.
	//
	// Valid values include:
	//
	//    * For source code settings that are specified in the source action of
	//    a pipeline in AWS CodePipeline, location should not be specified. If it
	//    is specified, AWS CodePipeline ignores it. This is because AWS CodePipeline
	//    uses the settings in a pipeline's source action instead of this value.
	//
	//    * For source code in an AWS CodeCommit repository, the HTTPS clone URL
	//    to the repository that contains the source code and the build spec file
	//    (for example, https://git-codecommit.region-ID.amazonaws.com/v1/repos/repo-name
	//    ).
	//
	//    * For source code in an S3 input bucket, one of the following. The path
	//    to the ZIP file that contains the source code (for example, bucket-name/path/to/object-name.zip).
	//    The path to the folder that contains the source code (for example, bucket-name/path/to/source-code/folder/).
	//
	//    * For source code in a GitHub repository, the HTTPS clone URL to the repository
	//    that contains the source and the build spec file.
	//
	//    * For source code in a Bitbucket repository, the HTTPS clone URL to the
	//    repository that contains the source and the build spec file.
	Location *string `type:"string"`

	// The type of repository that contains the source code to be built. Valid values
	// are:
	//
	//    * BITBUCKET - The source code is in a Bitbucket repository.
	//
	//    * CODECOMMIT - The source code is in an AWS CodeCommit repository.
	//
	//    * CODEPIPELINE - The source code settings are specified in the source
	//    action of a pipeline in AWS CodePipeline.
	//
	//    * GITHUB - The source code is in a GitHub repository.
	//
	//    * GITHUB_ENTERPRISE - The source code is in a GitHub Enterprise repository.
	//
	//    * NO_SOURCE - The project does not have input source code.
	//
	//    * S3 - The source code is in an S3 input bucket.
	Type *string `type:"string"`
	// contains filtered or unexported fields
}

Information about the build input source code for this build project.

func (AwsCodeBuildProjectSource) MarshalFields added in v0.20.0

MarshalFields encodes the AWS API shape using the passed in protocol encoder.

func (AwsCodeBuildProjectSource) String added in v0.20.0

func (s AwsCodeBuildProjectSource) String() string

String returns the string representation

type AwsCodeBuildProjectVpcConfig added in v0.20.0

type AwsCodeBuildProjectVpcConfig struct {

	// A list of one or more security group IDs in your Amazon VPC.
	SecurityGroupIds []string `type:"list"`

	// A list of one or more subnet IDs in your Amazon VPC.
	Subnets []string `type:"list"`

	// The ID of the VPC.
	VpcId *string `type:"string"`
	// contains filtered or unexported fields
}

Information about the VPC configuration that AWS CodeBuild accesses.

func (AwsCodeBuildProjectVpcConfig) MarshalFields added in v0.20.0

MarshalFields encodes the AWS API shape using the passed in protocol encoder.

func (AwsCodeBuildProjectVpcConfig) String added in v0.20.0

String returns the string representation

type AwsEc2InstanceDetails

type AwsEc2InstanceDetails struct {

	// The IAM profile ARN of the instance.
	IamInstanceProfileArn *string `type:"string"`

	// The Amazon Machine Image (AMI) ID of the instance.
	ImageId *string `type:"string"`

	// The IPv4 addresses associated with the instance.
	IpV4Addresses []string `type:"list"`

	// The IPv6 addresses associated with the instance.
	IpV6Addresses []string `type:"list"`

	// The key name associated with the instance.
	KeyName *string `type:"string"`

	// The date/time the instance was launched.
	LaunchedAt *string `type:"string"`

	// The identifier of the subnet that the instance was launched in.
	SubnetId *string `type:"string"`

	// The instance type of the instance.
	Type *string `type:"string"`

	// The identifier of the VPC that the instance was launched in.
	VpcId *string `type:"string"`
	// contains filtered or unexported fields
}

The details of an Amazon EC2 instance.

func (AwsEc2InstanceDetails) MarshalFields

func (s AwsEc2InstanceDetails) MarshalFields(e protocol.FieldEncoder) error

MarshalFields encodes the AWS API shape using the passed in protocol encoder.

func (AwsEc2InstanceDetails) String

func (s AwsEc2InstanceDetails) String() string

String returns the string representation

type AwsEc2NetworkInterfaceAttachment added in v0.20.0

type AwsEc2NetworkInterfaceAttachment struct {

	// The timestamp indicating when the attachment initiated.
	AttachTime *string `type:"string"`

	// The identifier of the network interface attachment
	AttachmentId *string `type:"string"`

	// Indicates whether the network interface is deleted when the instance is terminated.
	DeleteOnTermination *bool `type:"boolean"`

	// The device index of the network interface attachment on the instance.
	DeviceIndex *int64 `type:"integer"`

	// The ID of the instance.
	InstanceId *string `type:"string"`

	// The AWS account ID of the owner of the instance.
	InstanceOwnerId *string `type:"string"`

	// The attachment state.
	//
	// Valid values: attaching | attached | detaching | detached
	Status *string `type:"string"`
	// contains filtered or unexported fields
}

Information about the network interface attachment.

func (AwsEc2NetworkInterfaceAttachment) MarshalFields added in v0.20.0

MarshalFields encodes the AWS API shape using the passed in protocol encoder.

func (AwsEc2NetworkInterfaceAttachment) String added in v0.20.0

String returns the string representation

type AwsEc2NetworkInterfaceDetails added in v0.20.0

type AwsEc2NetworkInterfaceDetails struct {

	// The network interface attachment.
	Attachment *AwsEc2NetworkInterfaceAttachment `type:"structure"`

	// The ID of the network interface.
	NetworkInterfaceId *string `type:"string"`

	// Security groups for the network interface.
	SecurityGroups []AwsEc2NetworkInterfaceSecurityGroup `type:"list"`

	// Indicates whether traffic to or from the instance is validated.
	SourceDestCheck *bool `type:"boolean"`
	// contains filtered or unexported fields
}

Details about the network interface

func (AwsEc2NetworkInterfaceDetails) MarshalFields added in v0.20.0

MarshalFields encodes the AWS API shape using the passed in protocol encoder.

func (AwsEc2NetworkInterfaceDetails) String added in v0.20.0

String returns the string representation

type AwsEc2NetworkInterfaceSecurityGroup added in v0.20.0

type AwsEc2NetworkInterfaceSecurityGroup struct {

	// The ID of the security group.
	GroupId *string `type:"string"`

	// The name of the security group.
	GroupName *string `type:"string"`
	// contains filtered or unexported fields
}

A security group associated with the network interface.

func (AwsEc2NetworkInterfaceSecurityGroup) MarshalFields added in v0.20.0

MarshalFields encodes the AWS API shape using the passed in protocol encoder.

func (AwsEc2NetworkInterfaceSecurityGroup) String added in v0.20.0

String returns the string representation

type AwsEc2SecurityGroupDetails added in v0.20.0

type AwsEc2SecurityGroupDetails struct {

	// The ID of the security group.
	GroupId *string `type:"string"`

	// The name of the security group.
	GroupName *string `type:"string"`

	// The inbound rules associated with the security group.
	IpPermissions []AwsEc2SecurityGroupIpPermission `type:"list"`

	// [VPC only] The outbound rules associated with the security group.
	IpPermissionsEgress []AwsEc2SecurityGroupIpPermission `type:"list"`

	// The AWS account ID of the owner of the security group.
	OwnerId *string `type:"string"`

	// [VPC only] The ID of the VPC for the security group.
	VpcId *string `type:"string"`
	// contains filtered or unexported fields
}

Details about an EC2 security group.

func (AwsEc2SecurityGroupDetails) MarshalFields added in v0.20.0

MarshalFields encodes the AWS API shape using the passed in protocol encoder.

func (AwsEc2SecurityGroupDetails) String added in v0.20.0

String returns the string representation

type AwsEc2SecurityGroupIpPermission added in v0.20.0

type AwsEc2SecurityGroupIpPermission struct {

	// The start of the port range for the TCP and UDP protocols, or an ICMP/ICMPv6
	// type number.
	//
	// A value of -1 indicates all ICMP/ICMPv6 types. If you specify all ICMP/ICMPv6
	// types, you must specify all codes.
	FromPort *int64 `type:"integer"`

	// The IP protocol name (tcp, udp, icmp, icmpv6) or number.
	//
	// [VPC only] Use -1 to specify all protocols.
	//
	// When authorizing security group rules, specifying -1 or a protocol number
	// other than tcp, udp, icmp, or icmpv6 allows traffic on all ports, regardless
	// of any port range you specify.
	//
	// For tcp, udp, and icmp, you must specify a port range.
	//
	// For icmpv6, the port range is optional. If you omit the port range, traffic
	// for all types and codes is allowed.
	IpProtocol *string `type:"string"`

	// The IPv4 ranges.
	IpRanges []AwsEc2SecurityGroupIpRange `type:"list"`

	// The IPv6 ranges.
	Ipv6Ranges []AwsEc2SecurityGroupIpv6Range `type:"list"`

	// [VPC only] The prefix list IDs for an AWS service. With outbound rules, this
	// is the AWS service to access through a VPC endpoint from instances associated
	// with the security group.
	PrefixListIds []AwsEc2SecurityGroupPrefixListId `type:"list"`

	// The end of the port range for the TCP and UDP protocols, or an ICMP/ICMPv6
	// code.
	//
	// A value of -1 indicates all ICMP/ICMPv6 codes. If you specify all ICMP/ICMPv6
	// types, you must specify all codes.
	ToPort *int64 `type:"integer"`

	// The security group and AWS account ID pairs.
	UserIdGroupPairs []AwsEc2SecurityGroupUserIdGroupPair `type:"list"`
	// contains filtered or unexported fields
}

An IP permission for an EC2 security group.

func (AwsEc2SecurityGroupIpPermission) MarshalFields added in v0.20.0

MarshalFields encodes the AWS API shape using the passed in protocol encoder.

func (AwsEc2SecurityGroupIpPermission) String added in v0.20.0

String returns the string representation

type AwsEc2SecurityGroupIpRange added in v0.20.0

type AwsEc2SecurityGroupIpRange struct {

	// The IPv4 CIDR range. You can specify either a CIDR range or a source security
	// group, but not both. To specify a single IPv4 address, use the /32 prefix
	// length.
	CidrIp *string `type:"string"`
	// contains filtered or unexported fields
}

A range of IPv4 addresses.

func (AwsEc2SecurityGroupIpRange) MarshalFields added in v0.20.0

MarshalFields encodes the AWS API shape using the passed in protocol encoder.

func (AwsEc2SecurityGroupIpRange) String added in v0.20.0

String returns the string representation

type AwsEc2SecurityGroupIpv6Range added in v0.20.0

type AwsEc2SecurityGroupIpv6Range struct {

	// The IPv6 CIDR range. You can specify either a CIDR range or a source security
	// group, but not both. To specify a single IPv6 address, use the /128 prefix
	// length.
	CidrIpv6 *string `type:"string"`
	// contains filtered or unexported fields
}

A range of IPv6 addresses.

func (AwsEc2SecurityGroupIpv6Range) MarshalFields added in v0.20.0

MarshalFields encodes the AWS API shape using the passed in protocol encoder.

func (AwsEc2SecurityGroupIpv6Range) String added in v0.20.0

String returns the string representation

type AwsEc2SecurityGroupPrefixListId added in v0.20.0

type AwsEc2SecurityGroupPrefixListId struct {

	// The ID of the prefix.
	PrefixListId *string `type:"string"`
	// contains filtered or unexported fields
}

A prefix list ID.

func (AwsEc2SecurityGroupPrefixListId) MarshalFields added in v0.20.0

MarshalFields encodes the AWS API shape using the passed in protocol encoder.

func (AwsEc2SecurityGroupPrefixListId) String added in v0.20.0

String returns the string representation

type AwsEc2SecurityGroupUserIdGroupPair added in v0.20.0

type AwsEc2SecurityGroupUserIdGroupPair struct {

	// The ID of the security group.
	GroupId *string `type:"string"`

	// The name of the security group.
	GroupName *string `type:"string"`

	// The status of a VPC peering connection, if applicable.
	PeeringStatus *string `type:"string"`

	// The ID of an AWS account.
	//
	// For a referenced security group in another VPC, the account ID of the referenced
	// security group is returned in the response. If the referenced security group
	// is deleted, this value is not returned.
	//
	// [EC2-Classic] Required when adding or removing rules that reference a security
	// group in another AWS.
	UserId *string `type:"string"`

	// The ID of the VPC for the referenced security group, if applicable.
	VpcId *string `type:"string"`

	// The ID of the VPC peering connection, if applicable.
	VpcPeeringConnectionId *string `type:"string"`
	// contains filtered or unexported fields
}

A relationship between a security group and a user.

func (AwsEc2SecurityGroupUserIdGroupPair) MarshalFields added in v0.20.0

MarshalFields encodes the AWS API shape using the passed in protocol encoder.

func (AwsEc2SecurityGroupUserIdGroupPair) String added in v0.20.0

String returns the string representation

type AwsEc2VolumeAttachment added in v0.24.0

type AwsEc2VolumeAttachment struct {

	// The datetime when the attachment initiated.
	AttachTime *string `type:"string"`

	// Whether the EBS volume is deleted when the EC2 instance is terminated.
	DeleteOnTermination *bool `type:"boolean"`

	// The identifier of the EC2 instance.
	InstanceId *string `type:"string"`

	// The attachment state of the volume.
	Status *string `type:"string"`
	// contains filtered or unexported fields
}

An attachment to an AWS EC2 volume.

func (AwsEc2VolumeAttachment) MarshalFields added in v0.24.0

MarshalFields encodes the AWS API shape using the passed in protocol encoder.

func (AwsEc2VolumeAttachment) String added in v0.24.0

func (s AwsEc2VolumeAttachment) String() string

String returns the string representation

type AwsEc2VolumeDetails added in v0.24.0

type AwsEc2VolumeDetails struct {

	// The volume attachments.
	Attachments []AwsEc2VolumeAttachment `type:"list"`

	// The datetime when the volume was created.
	CreateTime *string `type:"string"`

	// Whether the volume is encrypted.
	Encrypted *bool `type:"boolean"`

	// The ARN of the AWS Key Management Service (AWS KMS) customer master key (CMK)
	// that was used to protect the volume encryption key for the volume.
	KmsKeyId *string `type:"string"`

	// The size of the volume, in GiBs.
	Size *int64 `type:"integer"`

	// The snapshot from which the volume was created.
	SnapshotId *string `type:"string"`

	// The volume state.
	Status *string `type:"string"`
	// contains filtered or unexported fields
}

Details about an EC2 volume.

func (AwsEc2VolumeDetails) MarshalFields added in v0.24.0

func (s AwsEc2VolumeDetails) MarshalFields(e protocol.FieldEncoder) error

MarshalFields encodes the AWS API shape using the passed in protocol encoder.

func (AwsEc2VolumeDetails) String added in v0.24.0

func (s AwsEc2VolumeDetails) String() string

String returns the string representation

type AwsEc2VpcDetails added in v0.24.0

type AwsEc2VpcDetails struct {

	// Information about the IPv4 CIDR blocks associated with the VPC.
	CidrBlockAssociationSet []CidrBlockAssociation `type:"list"`

	// The identifier of the set of Dynamic Host Configuration Protocol (DHCP) options
	// that are associated with the VPC. If the default options are associated with
	// the VPC, then this is default.
	DhcpOptionsId *string `type:"string"`

	// Information about the IPv6 CIDR blocks associated with the VPC.
	Ipv6CidrBlockAssociationSet []Ipv6CidrBlockAssociation `type:"list"`

	// The current state of the VPC.
	State *string `type:"string"`
	// contains filtered or unexported fields
}

Details about an EC2 VPC.

func (AwsEc2VpcDetails) MarshalFields added in v0.24.0

func (s AwsEc2VpcDetails) MarshalFields(e protocol.FieldEncoder) error

MarshalFields encodes the AWS API shape using the passed in protocol encoder.

func (AwsEc2VpcDetails) String added in v0.24.0

func (s AwsEc2VpcDetails) String() string

String returns the string representation

type AwsElasticsearchDomainDetails added in v0.20.0

type AwsElasticsearchDomainDetails struct {

	// IAM policy document specifying the access policies for the new Amazon ES
	// domain.
	AccessPolicies *string `type:"string"`

	// Additional options for the domain endpoint.
	DomainEndpointOptions *AwsElasticsearchDomainDomainEndpointOptions `type:"structure"`

	// Unique identifier for an Amazon ES domain.
	DomainId *string `type:"string"`

	// Name of an Amazon ES domain.
	//
	// Domain names are unique across all domains owned by the same account within
	// an AWS Region.
	//
	// Domain names must start with a lowercase letter and must be between 3 and
	// 28 characters.
	//
	// Valid characters are a-z (lowercase only), 0-9, and – (hyphen).
	DomainName *string `type:"string"`

	// Elasticsearch version.
	ElasticsearchVersion *string `type:"string"`

	// Details about the configuration for encryption at rest.
	EncryptionAtRestOptions *AwsElasticsearchDomainEncryptionAtRestOptions `type:"structure"`

	// Domain-specific endpoint used to submit index, search, and data upload requests
	// to an Amazon ES domain.
	//
	// The endpoint is a service URL.
	Endpoint *string `type:"string"`

	// The key-value pair that exists if the Amazon ES domain uses VPC endpoints.
	Endpoints map[string]string `type:"map"`

	// Details about the configuration for node-to-node encryption.
	NodeToNodeEncryptionOptions *AwsElasticsearchDomainNodeToNodeEncryptionOptions `type:"structure"`

	// Information that Amazon ES derives based on VPCOptions for the domain.
	VPCOptions *AwsElasticsearchDomainVPCOptions `type:"structure"`
	// contains filtered or unexported fields
}

Information about an Elasticsearch domain.

func (AwsElasticsearchDomainDetails) MarshalFields added in v0.20.0

MarshalFields encodes the AWS API shape using the passed in protocol encoder.

func (AwsElasticsearchDomainDetails) String added in v0.20.0

String returns the string representation

type AwsElasticsearchDomainDomainEndpointOptions added in v0.20.0

type AwsElasticsearchDomainDomainEndpointOptions struct {

	// Whether to require that all traffic to the domain arrive over HTTPS.
	EnforceHTTPS *bool `type:"boolean"`

	// The TLS security policy to apply to the HTTPS endpoint of the Elasticsearch
	// domain.
	//
	// Valid values:
	//
	//    * Policy-Min-TLS-1-0-2019-07, which supports TLSv1.0 and higher
	//
	//    * Policy-Min-TLS-1-2-2019-07, which only supports TLSv1.2
	TLSSecurityPolicy *string `type:"string"`
	// contains filtered or unexported fields
}

Additional options for the domain endpoint, such as whether to require HTTPS for all traffic.

func (AwsElasticsearchDomainDomainEndpointOptions) MarshalFields added in v0.20.0

MarshalFields encodes the AWS API shape using the passed in protocol encoder.

func (AwsElasticsearchDomainDomainEndpointOptions) String added in v0.20.0

String returns the string representation

type AwsElasticsearchDomainEncryptionAtRestOptions added in v0.20.0

type AwsElasticsearchDomainEncryptionAtRestOptions struct {

	// Whether encryption at rest is enabled.
	Enabled *bool `type:"boolean"`

	// The KMS key ID. Takes the form 1a2a3a4-1a2a-3a4a-5a6a-1a2a3a4a5a6a.
	KmsKeyId *string `type:"string"`
	// contains filtered or unexported fields
}

Details about the configuration for encryption at rest.

func (AwsElasticsearchDomainEncryptionAtRestOptions) MarshalFields added in v0.20.0

MarshalFields encodes the AWS API shape using the passed in protocol encoder.

func (AwsElasticsearchDomainEncryptionAtRestOptions) String added in v0.20.0

String returns the string representation

type AwsElasticsearchDomainNodeToNodeEncryptionOptions added in v0.20.0

type AwsElasticsearchDomainNodeToNodeEncryptionOptions struct {

	// Whether node-to-node encryption is enabled.
	Enabled *bool `type:"boolean"`
	// contains filtered or unexported fields
}

Details about the configuration for node-to-node encryption.

func (AwsElasticsearchDomainNodeToNodeEncryptionOptions) MarshalFields added in v0.20.0

MarshalFields encodes the AWS API shape using the passed in protocol encoder.

func (AwsElasticsearchDomainNodeToNodeEncryptionOptions) String added in v0.20.0

String returns the string representation

type AwsElasticsearchDomainVPCOptions added in v0.20.0

type AwsElasticsearchDomainVPCOptions struct {

	// The list of Availability Zones associated with the VPC subnets.
	AvailabilityZones []string `type:"list"`

	// The list of security group IDs associated with the VPC endpoints for the
	// domain.
	SecurityGroupIds []string `type:"list"`

	// A list of subnet IDs associated with the VPC endpoints for the domain.
	SubnetIds []string `type:"list"`

	// ID for the VPC.
	VPCId *string `type:"string"`
	// contains filtered or unexported fields
}

Information that Amazon ES derives based on VPCOptions for the domain.

func (AwsElasticsearchDomainVPCOptions) MarshalFields added in v0.20.0

MarshalFields encodes the AWS API shape using the passed in protocol encoder.

func (AwsElasticsearchDomainVPCOptions) String added in v0.20.0

String returns the string representation

type AwsElbv2LoadBalancerDetails added in v0.19.0

type AwsElbv2LoadBalancerDetails struct {

	// The Availability Zones for the load balancer.
	AvailabilityZones []AvailabilityZone `type:"list"`

	// The ID of the Amazon Route 53 hosted zone associated with the load balancer.
	CanonicalHostedZoneId *string `type:"string"`

	// The date and time the load balancer was created.
	CreatedTime *string `type:"string"`

	// The public DNS name of the load balancer.
	DNSName *string `type:"string"`

	// The type of IP addresses used by the subnets for your load balancer. The
	// possible values are ipv4 (for IPv4 addresses) and dualstack (for IPv4 and
	// IPv6 addresses).
	IpAddressType *string `type:"string"`

	// The nodes of an Internet-facing load balancer have public IP addresses.
	Scheme *string `type:"string"`

	// The IDs of the security groups for the load balancer.
	SecurityGroups []string `type:"list"`

	// The state of the load balancer.
	State *LoadBalancerState `type:"structure"`

	// The type of load balancer.
	Type *string `type:"string"`

	// The ID of the VPC for the load balancer.
	VpcId *string `type:"string"`
	// contains filtered or unexported fields
}

Information about a load balancer.

func (AwsElbv2LoadBalancerDetails) MarshalFields added in v0.19.0

MarshalFields encodes the AWS API shape using the passed in protocol encoder.

func (AwsElbv2LoadBalancerDetails) String added in v0.19.0

String returns the string representation

type AwsIamAccessKeyDetails

type AwsIamAccessKeyDetails struct {

	// The creation date/time of the IAM access key related to a finding.
	CreatedAt *string `type:"string"`

	// The ID of the principal associated with an access key.
	PrincipalId *string `type:"string"`

	// The name of the principal.
	PrincipalName *string `type:"string"`

	// The type of principal associated with an access key.
	PrincipalType *string `type:"string"`

	// The status of the IAM access key related to a finding.
	Status AwsIamAccessKeyStatus `type:"string" enum:"true"`

	// The user associated with the IAM access key related to a finding.
	//
	// The UserName parameter has been replaced with the PrincipalName parameter
	// because access keys can also be assigned to principals that are not IAM users.
	UserName *string `deprecated:"true" type:"string"`
	// contains filtered or unexported fields
}

IAM access key details related to a finding.

func (AwsIamAccessKeyDetails) MarshalFields

MarshalFields encodes the AWS API shape using the passed in protocol encoder.

func (AwsIamAccessKeyDetails) String

func (s AwsIamAccessKeyDetails) String() string

String returns the string representation

type AwsIamAccessKeyStatus

type AwsIamAccessKeyStatus string
const (
	AwsIamAccessKeyStatusActive   AwsIamAccessKeyStatus = "Active"
	AwsIamAccessKeyStatusInactive AwsIamAccessKeyStatus = "Inactive"
)

Enum values for AwsIamAccessKeyStatus

func (AwsIamAccessKeyStatus) MarshalValue

func (enum AwsIamAccessKeyStatus) MarshalValue() (string, error)

func (AwsIamAccessKeyStatus) MarshalValueBuf

func (enum AwsIamAccessKeyStatus) MarshalValueBuf(b []byte) ([]byte, error)

type AwsIamRoleDetails added in v0.19.0

type AwsIamRoleDetails struct {

	// The trust policy that grants permission to assume the role.
	AssumeRolePolicyDocument *string `min:"1" type:"string"`

	// The date and time, in ISO 8601 date-time format, when the role was created.
	CreateDate *string `type:"string"`

	// The maximum session duration (in seconds) that you want to set for the specified
	// role.
	MaxSessionDuration *int64 `type:"integer"`

	// The path to the role.
	Path *string `type:"string"`

	// The stable and unique string identifying the role.
	RoleId *string `type:"string"`

	// The friendly name that identifies the role.
	RoleName *string `type:"string"`
	// contains filtered or unexported fields
}

Contains information about an IAM role, including all of the role's policies.

func (AwsIamRoleDetails) MarshalFields added in v0.19.0

func (s AwsIamRoleDetails) MarshalFields(e protocol.FieldEncoder) error

MarshalFields encodes the AWS API shape using the passed in protocol encoder.

func (AwsIamRoleDetails) String added in v0.19.0

func (s AwsIamRoleDetails) String() string

String returns the string representation

func (*AwsIamRoleDetails) Validate added in v0.19.0

func (s *AwsIamRoleDetails) Validate() error

Validate inspects the fields of the type to determine if they are valid.

type AwsKmsKeyDetails added in v0.19.0

type AwsKmsKeyDetails struct {

	// The twelve-digit account ID of the AWS account that owns the CMK.
	AWSAccountId *string `type:"string"`

	// The date and time when the CMK was created.
	CreationDate *float64 `type:"double"`

	// The globally unique identifier for the CMK.
	KeyId *string `type:"string"`

	// The manager of the CMK. CMKs in your AWS account are either customer managed
	// or AWS managed.
	KeyManager *string `type:"string"`

	// The state of the CMK.
	KeyState *string `type:"string"`

	// The source of the CMK's key material.
	//
	// When this value is AWS_KMS, AWS KMS created the key material.
	//
	// When this value is EXTERNAL, the key material was imported from your existing
	// key management infrastructure or the CMK lacks key material.
	//
	// When this value is AWS_CLOUDHSM, the key material was created in the AWS
	// CloudHSM cluster associated with a custom key store.
	Origin *string `type:"string"`
	// contains filtered or unexported fields
}

Contains metadata about a customer master key (CMK).

func (AwsKmsKeyDetails) MarshalFields added in v0.19.0

func (s AwsKmsKeyDetails) MarshalFields(e protocol.FieldEncoder) error

MarshalFields encodes the AWS API shape using the passed in protocol encoder.

func (AwsKmsKeyDetails) String added in v0.19.0

func (s AwsKmsKeyDetails) String() string

String returns the string representation

type AwsLambdaFunctionCode added in v0.19.0

type AwsLambdaFunctionCode struct {

	// An Amazon S3 bucket in the same AWS Region as your function. The bucket can
	// be in a different AWS account.
	S3Bucket *string `type:"string"`

	// The Amazon S3 key of the deployment package.
	S3Key *string `type:"string"`

	// For versioned objects, the version of the deployment package object to use.
	S3ObjectVersion *string `type:"string"`

	// The base64-encoded contents of the deployment package. AWS SDK and AWS CLI
	// clients handle the encoding for you.
	ZipFile *string `type:"string"`
	// contains filtered or unexported fields
}

The code for the Lambda function. You can specify either an object in Amazon S3, or upload a deployment package directly.

func (AwsLambdaFunctionCode) MarshalFields added in v0.19.0

func (s AwsLambdaFunctionCode) MarshalFields(e protocol.FieldEncoder) error

MarshalFields encodes the AWS API shape using the passed in protocol encoder.

func (AwsLambdaFunctionCode) String added in v0.19.0

func (s AwsLambdaFunctionCode) String() string

String returns the string representation

type AwsLambdaFunctionDeadLetterConfig added in v0.19.0

type AwsLambdaFunctionDeadLetterConfig struct {

	// The Amazon Resource Name (ARN) of an Amazon SQS queue or Amazon SNS topic.
	TargetArn *string `type:"string"`
	// contains filtered or unexported fields
}

The dead-letter queue for failed asynchronous invocations.

func (AwsLambdaFunctionDeadLetterConfig) MarshalFields added in v0.19.0

MarshalFields encodes the AWS API shape using the passed in protocol encoder.

func (AwsLambdaFunctionDeadLetterConfig) String added in v0.19.0

String returns the string representation

type AwsLambdaFunctionDetails added in v0.19.0

type AwsLambdaFunctionDetails struct {

	// An AwsLambdaFunctionCode object.
	Code *AwsLambdaFunctionCode `type:"structure"`

	// The SHA256 hash of the function's deployment package.
	CodeSha256 *string `type:"string"`

	// The function's dead letter queue.
	DeadLetterConfig *AwsLambdaFunctionDeadLetterConfig `type:"structure"`

	// The function's environment variables.
	Environment *AwsLambdaFunctionEnvironment `type:"structure"`

	// The name of the function.
	FunctionName *string `type:"string"`

	// The function that Lambda calls to begin executing your function.
	Handler *string `type:"string"`

	// The KMS key that's used to encrypt the function's environment variables.
	// This key is only returned if you've configured a customer managed CMK.
	KmsKeyArn *string `type:"string"`

	// The date and time that the function was last updated, in ISO-8601 format
	// (YYYY-MM-DDThh:mm:ss.sTZD).
	LastModified *string `type:"string"`

	// The function's layers.
	Layers []AwsLambdaFunctionLayer `type:"list"`

	// For Lambda@Edge functions, the ARN of the master function.
	MasterArn *string `type:"string"`

	// The memory that's allocated to the function.
	MemorySize *int64 `type:"integer"`

	// The latest updated revision of the function or alias.
	RevisionId *string `type:"string"`

	// The function's execution role.
	Role *string `type:"string"`

	// The runtime environment for the Lambda function.
	Runtime *string `type:"string"`

	// The amount of time that Lambda allows a function to run before stopping it.
	Timeout *int64 `type:"integer"`

	// The function's AWS X-Ray tracing configuration.
	TracingConfig *AwsLambdaFunctionTracingConfig `type:"structure"`

	// The version of the Lambda function.
	Version *string `type:"string"`

	// The function's networking configuration.
	VpcConfig *AwsLambdaFunctionVpcConfig `type:"structure"`
	// contains filtered or unexported fields
}

Details about a function's configuration.

func (AwsLambdaFunctionDetails) MarshalFields added in v0.19.0

MarshalFields encodes the AWS API shape using the passed in protocol encoder.

func (AwsLambdaFunctionDetails) String added in v0.19.0

func (s AwsLambdaFunctionDetails) String() string

String returns the string representation

type AwsLambdaFunctionEnvironment added in v0.19.0

type AwsLambdaFunctionEnvironment struct {

	// An AwsLambdaFunctionEnvironmentError object.
	Error *AwsLambdaFunctionEnvironmentError `type:"structure"`

	// Environment variable key-value pairs.
	Variables map[string]string `type:"map"`
	// contains filtered or unexported fields
}

A function's environment variable settings.

func (AwsLambdaFunctionEnvironment) MarshalFields added in v0.19.0

MarshalFields encodes the AWS API shape using the passed in protocol encoder.

func (AwsLambdaFunctionEnvironment) String added in v0.19.0

String returns the string representation

type AwsLambdaFunctionEnvironmentError added in v0.19.0

type AwsLambdaFunctionEnvironmentError struct {

	// The error code.
	ErrorCode *string `type:"string"`

	// The error message.
	Message *string `type:"string"`
	// contains filtered or unexported fields
}

Error messages for environment variables that couldn't be applied.

func (AwsLambdaFunctionEnvironmentError) MarshalFields added in v0.19.0

MarshalFields encodes the AWS API shape using the passed in protocol encoder.

func (AwsLambdaFunctionEnvironmentError) String added in v0.19.0

String returns the string representation

type AwsLambdaFunctionLayer added in v0.19.0

type AwsLambdaFunctionLayer struct {

	// The Amazon Resource Name (ARN) of the function layer.
	Arn *string `type:"string"`

	// The size of the layer archive in bytes.
	CodeSize *int64 `type:"integer"`
	// contains filtered or unexported fields
}

An AWS Lambda layer.

func (AwsLambdaFunctionLayer) MarshalFields added in v0.19.0

MarshalFields encodes the AWS API shape using the passed in protocol encoder.

func (AwsLambdaFunctionLayer) String added in v0.19.0

func (s AwsLambdaFunctionLayer) String() string

String returns the string representation

type AwsLambdaFunctionTracingConfig added in v0.19.0

type AwsLambdaFunctionTracingConfig struct {

	// The tracing mode.
	Mode *string `type:"string"`
	// contains filtered or unexported fields
}

The function's AWS X-Ray tracing configuration.

func (AwsLambdaFunctionTracingConfig) MarshalFields added in v0.19.0

MarshalFields encodes the AWS API shape using the passed in protocol encoder.

func (AwsLambdaFunctionTracingConfig) String added in v0.19.0

String returns the string representation

type AwsLambdaFunctionVpcConfig added in v0.19.0

type AwsLambdaFunctionVpcConfig struct {

	// A list of VPC security groups IDs.
	SecurityGroupIds []string `type:"list"`

	// A list of VPC subnet IDs.
	SubnetIds []string `type:"list"`

	// The ID of the VPC.
	VpcId *string `type:"string"`
	// contains filtered or unexported fields
}

The VPC security groups and subnets that are attached to a Lambda function. For more information, see VPC Settings.

func (AwsLambdaFunctionVpcConfig) MarshalFields added in v0.19.0

MarshalFields encodes the AWS API shape using the passed in protocol encoder.

func (AwsLambdaFunctionVpcConfig) String added in v0.19.0

String returns the string representation

type AwsLambdaLayerVersionDetails added in v0.20.0

type AwsLambdaLayerVersionDetails struct {

	// The layer's compatible runtimes. Maximum number of five items.
	//
	// Valid values: nodejs10.x | nodejs12.x | java8 | java11 | python2.7 | python3.6
	// | python3.7 | python3.8 | dotnetcore1.0 | dotnetcore2.1 | go1.x | ruby2.5
	// | provided
	CompatibleRuntimes []string `type:"list"`

	// The date that the version was created, in ISO 8601 format. For example, 2018-11-27T15:10:45.123+0000.
	CreatedDate *string `type:"string"`

	// The version number.
	Version *int64 `type:"long"`
	// contains filtered or unexported fields
}

Details about a Lambda layer version.

func (AwsLambdaLayerVersionDetails) MarshalFields added in v0.20.0

MarshalFields encodes the AWS API shape using the passed in protocol encoder.

func (AwsLambdaLayerVersionDetails) String added in v0.20.0

String returns the string representation

type AwsRdsDbInstanceAssociatedRole added in v0.20.0

type AwsRdsDbInstanceAssociatedRole struct {

	// The name of the feature associated with the IAM)role.
	FeatureName *string `type:"string"`

	// The Amazon Resource Name (ARN) of the IAM role that is associated with the
	// DB instance.
	RoleArn *string `type:"string"`

	// Describes the state of the association between the IAM role and the DB instance.
	// The Status property returns one of the following values:
	//
	//    * ACTIVE - The IAM role ARN is associated with the DB instance and can
	//    be used to access other AWS services on your behalf.
	//
	//    * PENDING - The IAM role ARN is being associated with the DB instance.
	//
	//    * INVALID - The IAM role ARN is associated with the DB instance. But the
	//    DB instance is unable to assume the IAM role in order to access other
	//    AWS services on your behalf.
	Status *string `type:"string"`
	// contains filtered or unexported fields
}

An AWS Identity and Access Management (IAM) role associated with the DB instance.

func (AwsRdsDbInstanceAssociatedRole) MarshalFields added in v0.20.0

MarshalFields encodes the AWS API shape using the passed in protocol encoder.

func (AwsRdsDbInstanceAssociatedRole) String added in v0.20.0

String returns the string representation

type AwsRdsDbInstanceDetails added in v0.20.0

type AwsRdsDbInstanceDetails struct {

	// The AWS Identity and Access Management (IAM) roles associated with the DB
	// instance.
	AssociatedRoles []AwsRdsDbInstanceAssociatedRole `type:"list"`

	// The identifier of the CA certificate for this DB instance.
	CACertificateIdentifier *string `type:"string"`

	// If the DB instance is a member of a DB cluster, contains the name of the
	// DB cluster that the DB instance is a member of.
	DBClusterIdentifier *string `type:"string"`

	// Contains the name of the compute and memory capacity class of the DB instance.
	DBInstanceClass *string `type:"string"`

	// Contains a user-supplied database identifier. This identifier is the unique
	// key that identifies a DB instance.
	DBInstanceIdentifier *string `type:"string"`

	// The meaning of this parameter differs according to the database engine you
	// use.
	//
	// MySQL, MariaDB, SQL Server, PostgreSQL
	//
	// Contains the name of the initial database of this instance that was provided
	// at create time, if one was specified when the DB instance was created. This
	// same name is returned for the life of the DB instance.
	//
	// Oracle
	//
	// Contains the Oracle System ID (SID) of the created DB instance. Not shown
	// when the returned parameters do not apply to an Oracle DB instance.
	DBName *string `type:"string"`

	// Specifies the port that the DB instance listens on. If the DB instance is
	// part of a DB cluster, this can be a different port than the DB cluster port.
	DbInstancePort *int64 `type:"integer"`

	// The AWS Region-unique, immutable identifier for the DB instance. This identifier
	// is found in AWS CloudTrail log entries whenever the AWS KMS key for the DB
	// instance is accessed.
	DbiResourceId *string `type:"string"`

	// Indicates whether the DB instance has deletion protection enabled.
	//
	// When deletion protection is enabled, the database cannot be deleted.
	DeletionProtection *bool `type:"boolean"`

	// Specifies the connection endpoint.
	Endpoint *AwsRdsDbInstanceEndpoint `type:"structure"`

	// Provides the name of the database engine to use for this DB instance.
	Engine *string `type:"string"`

	// Indicates the database engine version.
	EngineVersion *string `type:"string"`

	// True if mapping of AWS Identity and Access Management (IAM) accounts to database
	// accounts is enabled, and otherwise false.
	//
	// IAM database authentication can be enabled for the following database engines.
	//
	//    * For MySQL 5.6, minor version 5.6.34 or higher
	//
	//    * For MySQL 5.7, minor version 5.7.16 or higher
	//
	//    * Aurora 5.6 or higher
	IAMDatabaseAuthenticationEnabled *bool `type:"boolean"`

	// Provides the date and time the DB instance was created.
	InstanceCreateTime *string `type:"string"`

	// If StorageEncrypted is true, the AWS KMS key identifier for the encrypted
	// DB instance.
	KmsKeyId *string `type:"string"`

	// Specifies the accessibility options for the DB instance.
	//
	// A value of true specifies an Internet-facing instance with a publicly resolvable
	// DNS name, which resolves to a public IP address.
	//
	// A value of false specifies an internal instance with a DNS name that resolves
	// to a private IP address.
	PubliclyAccessible *bool `type:"boolean"`

	// Specifies whether the DB instance is encrypted.
	StorageEncrypted *bool `type:"boolean"`

	// The ARN from the key store with which the instance is associated for TDE
	// encryption.
	TdeCredentialArn *string `type:"string"`

	// A list of VPC security groups that the DB instance belongs to.
	VpcSecurityGroups []AwsRdsDbInstanceVpcSecurityGroup `type:"list"`
	// contains filtered or unexported fields
}

Contains the details of an Amazon RDS DB instance.

func (AwsRdsDbInstanceDetails) MarshalFields added in v0.20.0

MarshalFields encodes the AWS API shape using the passed in protocol encoder.

func (AwsRdsDbInstanceDetails) String added in v0.20.0

func (s AwsRdsDbInstanceDetails) String() string

String returns the string representation

type AwsRdsDbInstanceEndpoint added in v0.20.0

type AwsRdsDbInstanceEndpoint struct {

	// Specifies the DNS address of the DB instance.
	Address *string `type:"string"`

	// Specifies the ID that Amazon Route 53 assigns when you create a hosted zone.
	HostedZoneId *string `type:"string"`

	// Specifies the port that the database engine is listening on.
	Port *int64 `type:"integer"`
	// contains filtered or unexported fields
}

Specifies the connection endpoint.

func (AwsRdsDbInstanceEndpoint) MarshalFields added in v0.20.0

MarshalFields encodes the AWS API shape using the passed in protocol encoder.

func (AwsRdsDbInstanceEndpoint) String added in v0.20.0

func (s AwsRdsDbInstanceEndpoint) String() string

String returns the string representation

type AwsRdsDbInstanceVpcSecurityGroup added in v0.20.0

type AwsRdsDbInstanceVpcSecurityGroup struct {

	// The status of the VPC security group.
	Status *string `type:"string"`

	// The name of the VPC security group.
	VpcSecurityGroupId *string `type:"string"`
	// contains filtered or unexported fields
}

A VPC security groups that the DB instance belongs to.

func (AwsRdsDbInstanceVpcSecurityGroup) MarshalFields added in v0.20.0

MarshalFields encodes the AWS API shape using the passed in protocol encoder.

func (AwsRdsDbInstanceVpcSecurityGroup) String added in v0.20.0

String returns the string representation

type AwsS3BucketDetails

type AwsS3BucketDetails struct {

	// The date and time when the S3 bucket was created.
	CreatedAt *string `type:"string"`

	// The canonical user ID of the owner of the S3 bucket.
	OwnerId *string `type:"string"`

	// The display name of the owner of the S3 bucket.
	OwnerName *string `type:"string"`

	// The encryption rules that are applied to the S3 bucket.
	ServerSideEncryptionConfiguration *AwsS3BucketServerSideEncryptionConfiguration `type:"structure"`
	// contains filtered or unexported fields
}

The details of an Amazon S3 bucket.

func (AwsS3BucketDetails) MarshalFields

func (s AwsS3BucketDetails) MarshalFields(e protocol.FieldEncoder) error

MarshalFields encodes the AWS API shape using the passed in protocol encoder.

func (AwsS3BucketDetails) String

func (s AwsS3BucketDetails) String() string

String returns the string representation

type AwsS3BucketServerSideEncryptionByDefault added in v0.20.0

type AwsS3BucketServerSideEncryptionByDefault struct {

	// AWS KMS customer master key (CMK) ID to use for the default encryption.
	KMSMasterKeyID *string `type:"string"`

	// Server-side encryption algorithm to use for the default encryption.
	SSEAlgorithm *string `type:"string"`
	// contains filtered or unexported fields
}

Specifies the default server-side encryption to apply to new objects in the bucket.

func (AwsS3BucketServerSideEncryptionByDefault) MarshalFields added in v0.20.0

MarshalFields encodes the AWS API shape using the passed in protocol encoder.

func (AwsS3BucketServerSideEncryptionByDefault) String added in v0.20.0

String returns the string representation

type AwsS3BucketServerSideEncryptionConfiguration added in v0.20.0

type AwsS3BucketServerSideEncryptionConfiguration struct {

	// The encryption rules that are applied to the S3 bucket.
	Rules []AwsS3BucketServerSideEncryptionRule `type:"list"`
	// contains filtered or unexported fields
}

The encryption configuration for the S3 bucket.

func (AwsS3BucketServerSideEncryptionConfiguration) MarshalFields added in v0.20.0

MarshalFields encodes the AWS API shape using the passed in protocol encoder.

func (AwsS3BucketServerSideEncryptionConfiguration) String added in v0.20.0

String returns the string representation

type AwsS3BucketServerSideEncryptionRule added in v0.20.0

type AwsS3BucketServerSideEncryptionRule struct {

	// Specifies the default server-side encryption to apply to new objects in the
	// bucket. If a PUT object request doesn't specify any server-side encryption,
	// this default encryption is applied.
	ApplyServerSideEncryptionByDefault *AwsS3BucketServerSideEncryptionByDefault `type:"structure"`
	// contains filtered or unexported fields
}

An encryption rule to apply to the S3 bucket.

func (AwsS3BucketServerSideEncryptionRule) MarshalFields added in v0.20.0

MarshalFields encodes the AWS API shape using the passed in protocol encoder.

func (AwsS3BucketServerSideEncryptionRule) String added in v0.20.0

String returns the string representation

type AwsS3ObjectDetails added in v0.20.0

type AwsS3ObjectDetails struct {

	// A standard MIME type describing the format of the object data.
	ContentType *string `type:"string"`

	// The opaque identifier assigned by a web server to a specific version of a
	// resource found at a URL.
	ETag *string `type:"string"`

	// The date and time when the object was last modified.
	LastModified *string `type:"string"`

	// The identifier of the AWS Key Management Service (AWS KMS) symmetric customer
	// managed customer master key (CMK) that was used for the object.
	SSEKMSKeyId *string `type:"string"`

	// If the object is stored using server-side encryption, the value of the server-side
	// encryption algorithm used when storing this object in Amazon S3.
	ServerSideEncryption *string `type:"string"`

	// The version of the object.
	VersionId *string `type:"string"`
	// contains filtered or unexported fields
}

Details about an Amazon S3 object.

func (AwsS3ObjectDetails) MarshalFields added in v0.20.0

func (s AwsS3ObjectDetails) MarshalFields(e protocol.FieldEncoder) error

MarshalFields encodes the AWS API shape using the passed in protocol encoder.

func (AwsS3ObjectDetails) String added in v0.20.0

func (s AwsS3ObjectDetails) String() string

String returns the string representation

type AwsSecurityFinding

type AwsSecurityFinding struct {

	// The AWS account ID that a finding is generated in.
	//
	// AwsAccountId is a required field
	AwsAccountId *string `type:"string" required:"true"`

	// This data type is exclusive to findings that are generated as the result
	// of a check run against a specific rule in a supported security standard,
	// such as CIS AWS Foundations. Contains security standard-related finding details.
	Compliance *Compliance `type:"structure"`

	// A finding's confidence. Confidence is defined as the likelihood that a finding
	// accurately identifies the behavior or issue that it was intended to identify.
	//
	// Confidence is scored on a 0-100 basis using a ratio scale, where 0 means
	// zero percent confidence and 100 means 100 percent confidence.
	Confidence *int64 `type:"integer"`

	// An ISO8601-formatted timestamp that indicates when the security-findings
	// provider created the potential security issue that a finding captured.
	//
	// CreatedAt is a required field
	CreatedAt *string `type:"string" required:"true"`

	// The level of importance assigned to the resources associated with the finding.
	//
	// A score of 0 means that the underlying resources have no criticality, and
	// a score of 100 is reserved for the most critical resources.
	Criticality *int64 `type:"integer"`

	// A finding's description.
	//
	// In this release, Description is a required property.
	//
	// Description is a required field
	Description *string `type:"string" required:"true"`

	// An ISO8601-formatted timestamp that indicates when the security-findings
	// provider first observed the potential security issue that a finding captured.
	FirstObservedAt *string `type:"string"`

	// The identifier for the solution-specific component (a discrete unit of logic)
	// that generated a finding. In various security-findings providers' solutions,
	// this generator can be called a rule, a check, a detector, a plugin, etc.
	//
	// GeneratorId is a required field
	GeneratorId *string `type:"string" required:"true"`

	// The security findings provider-specific identifier for a finding.
	//
	// Id is a required field
	Id *string `type:"string" required:"true"`

	// An ISO8601-formatted timestamp that indicates when the security-findings
	// provider most recently observed the potential security issue that a finding
	// captured.
	LastObservedAt *string `type:"string"`

	// A list of malware related to a finding.
	Malware []Malware `type:"list"`

	// The details of network-related information about a finding.
	Network *Network `type:"structure"`

	// Provides information about a network path that is relevant to a finding.
	// Each entry under NetworkPath represents a component of that path.
	NetworkPath []NetworkPathComponent `type:"list"`

	// A user-defined note added to a finding.
	Note *Note `type:"structure"`

	// The details of process-related information about a finding.
	Process *ProcessDetails `type:"structure"`

	// The ARN generated by Security Hub that uniquely identifies a product that
	// generates findings. This can be the ARN for a third-party product that is
	// integrated with Security Hub, or the ARN for a custom integration.
	//
	// ProductArn is a required field
	ProductArn *string `type:"string" required:"true"`

	// A data type where security-findings providers can include additional solution-specific
	// details that aren't part of the defined AwsSecurityFinding format.
	ProductFields map[string]string `type:"map"`

	// The record state of a finding.
	RecordState RecordState `type:"string" enum:"true"`

	// A list of related findings.
	RelatedFindings []RelatedFinding `type:"list"`

	// A data type that describes the remediation options for a finding.
	Remediation *Remediation `type:"structure"`

	// A set of resource data types that describe the resources that the finding
	// refers to.
	//
	// Resources is a required field
	Resources []Resource `type:"list" required:"true"`

	// The schema version that a finding is formatted for.
	//
	// SchemaVersion is a required field
	SchemaVersion *string `type:"string" required:"true"`

	// A finding's severity.
	//
	// Severity is a required field
	Severity *Severity `type:"structure" required:"true"`

	// A URL that links to a page about the current finding in the security-findings
	// provider's solution.
	SourceUrl *string `type:"string"`

	// Threat intelligence details related to a finding.
	ThreatIntelIndicators []ThreatIntelIndicator `type:"list"`

	// A finding's title.
	//
	// In this release, Title is a required property.
	//
	// Title is a required field
	Title *string `type:"string" required:"true"`

	// One or more finding types in the format of namespace/category/classifier
	// that classify a finding.
	//
	// Valid namespace values are: Software and Configuration Checks | TTPs | Effects
	// | Unusual Behaviors | Sensitive Data Identifications
	//
	// Types is a required field
	Types []string `type:"list" required:"true"`

	// An ISO8601-formatted timestamp that indicates when the security-findings
	// provider last updated the finding record.
	//
	// UpdatedAt is a required field
	UpdatedAt *string `type:"string" required:"true"`

	// A list of name/value string pairs associated with the finding. These are
	// custom, user-defined fields added to a finding.
	UserDefinedFields map[string]string `type:"map"`

	// Indicates the veracity of a finding.
	VerificationState VerificationState `type:"string" enum:"true"`

	// Provides a list of vulnerabilities associated with the findings.
	Vulnerabilities []Vulnerability `type:"list"`

	// Provides information about the status of the investigation into a finding.
	Workflow *Workflow `type:"structure"`

	// The workflow state of a finding.
	WorkflowState WorkflowState `deprecated:"true" type:"string" enum:"true"`
	// contains filtered or unexported fields
}

Provides consistent format for the contents of the Security Hub-aggregated findings. AwsSecurityFinding format enables you to share findings between AWS security services and third-party solutions, and security standards checks.

A finding is a potential security issue generated either by AWS services (Amazon GuardDuty, Amazon Inspector, and Amazon Macie) or by the integrated third-party solutions and standards checks.

func (AwsSecurityFinding) MarshalFields

func (s AwsSecurityFinding) MarshalFields(e protocol.FieldEncoder) error

MarshalFields encodes the AWS API shape using the passed in protocol encoder.

func (AwsSecurityFinding) String

func (s AwsSecurityFinding) String() string

String returns the string representation

func (*AwsSecurityFinding) Validate

func (s *AwsSecurityFinding) Validate() error

Validate inspects the fields of the type to determine if they are valid.

type AwsSecurityFindingFilters

type AwsSecurityFindingFilters struct {

	// The AWS account ID that a finding is generated in.
	AwsAccountId []StringFilter `type:"list"`

	// The name of the findings provider (company) that owns the solution (product)
	// that generates findings.
	CompanyName []StringFilter `type:"list"`

	// Exclusive to findings that are generated as the result of a check run against
	// a specific rule in a supported standard, such as CIS AWS Foundations. Contains
	// security standard-related finding details.
	ComplianceStatus []StringFilter `type:"list"`

	// A finding's confidence. Confidence is defined as the likelihood that a finding
	// accurately identifies the behavior or issue that it was intended to identify.
	//
	// Confidence is scored on a 0-100 basis using a ratio scale, where 0 means
	// zero percent confidence and 100 means 100 percent confidence.
	Confidence []NumberFilter `type:"list"`

	// An ISO8601-formatted timestamp that indicates when the security-findings
	// provider captured the potential security issue that a finding captured.
	CreatedAt []DateFilter `type:"list"`

	// The level of importance assigned to the resources associated with the finding.
	//
	// A score of 0 means that the underlying resources have no criticality, and
	// a score of 100 is reserved for the most critical resources.
	Criticality []NumberFilter `type:"list"`

	// A finding's description.
	Description []StringFilter `type:"list"`

	// An ISO8601-formatted timestamp that indicates when the security-findings
	// provider first observed the potential security issue that a finding captured.
	FirstObservedAt []DateFilter `type:"list"`

	// The identifier for the solution-specific component (a discrete unit of logic)
	// that generated a finding. In various security-findings providers' solutions,
	// this generator can be called a rule, a check, a detector, a plugin, etc.
	GeneratorId []StringFilter `type:"list"`

	// The security findings provider-specific identifier for a finding.
	Id []StringFilter `type:"list"`

	// A keyword for a finding.
	Keyword []KeywordFilter `type:"list"`

	// An ISO8601-formatted timestamp that indicates when the security-findings
	// provider most recently observed the potential security issue that a finding
	// captured.
	LastObservedAt []DateFilter `type:"list"`

	// The name of the malware that was observed.
	MalwareName []StringFilter `type:"list"`

	// The filesystem path of the malware that was observed.
	MalwarePath []StringFilter `type:"list"`

	// The state of the malware that was observed.
	MalwareState []StringFilter `type:"list"`

	// The type of the malware that was observed.
	MalwareType []StringFilter `type:"list"`

	// The destination domain of network-related information about a finding.
	NetworkDestinationDomain []StringFilter `type:"list"`

	// The destination IPv4 address of network-related information about a finding.
	NetworkDestinationIpV4 []IpFilter `type:"list"`

	// The destination IPv6 address of network-related information about a finding.
	NetworkDestinationIpV6 []IpFilter `type:"list"`

	// The destination port of network-related information about a finding.
	NetworkDestinationPort []NumberFilter `type:"list"`

	// Indicates the direction of network traffic associated with a finding.
	NetworkDirection []StringFilter `type:"list"`

	// The protocol of network-related information about a finding.
	NetworkProtocol []StringFilter `type:"list"`

	// The source domain of network-related information about a finding.
	NetworkSourceDomain []StringFilter `type:"list"`

	// The source IPv4 address of network-related information about a finding.
	NetworkSourceIpV4 []IpFilter `type:"list"`

	// The source IPv6 address of network-related information about a finding.
	NetworkSourceIpV6 []IpFilter `type:"list"`

	// The source media access control (MAC) address of network-related information
	// about a finding.
	NetworkSourceMac []StringFilter `type:"list"`

	// The source port of network-related information about a finding.
	NetworkSourcePort []NumberFilter `type:"list"`

	// The text of a note.
	NoteText []StringFilter `type:"list"`

	// The timestamp of when the note was updated.
	NoteUpdatedAt []DateFilter `type:"list"`

	// The principal that created a note.
	NoteUpdatedBy []StringFilter `type:"list"`

	// The date/time that the process was launched.
	ProcessLaunchedAt []DateFilter `type:"list"`

	// The name of the process.
	ProcessName []StringFilter `type:"list"`

	// The parent process ID.
	ProcessParentPid []NumberFilter `type:"list"`

	// The path to the process executable.
	ProcessPath []StringFilter `type:"list"`

	// The process ID.
	ProcessPid []NumberFilter `type:"list"`

	// The date/time that the process was terminated.
	ProcessTerminatedAt []DateFilter `type:"list"`

	// The ARN generated by Security Hub that uniquely identifies a third-party
	// company (security findings provider) after this provider's product (solution
	// that generates findings) is registered with Security Hub.
	ProductArn []StringFilter `type:"list"`

	// A data type where security-findings providers can include additional solution-specific
	// details that aren't part of the defined AwsSecurityFinding format.
	ProductFields []MapFilter `type:"list"`

	// The name of the solution (product) that generates findings.
	ProductName []StringFilter `type:"list"`

	// The recommendation of what to do about the issue described in a finding.
	RecommendationText []StringFilter `type:"list"`

	// The updated record state for the finding.
	RecordState []StringFilter `type:"list"`

	// The solution-generated identifier for a related finding.
	RelatedFindingsId []StringFilter `type:"list"`

	// The ARN of the solution that generated a related finding.
	RelatedFindingsProductArn []StringFilter `type:"list"`

	// The IAM profile ARN of the instance.
	ResourceAwsEc2InstanceIamInstanceProfileArn []StringFilter `type:"list"`

	// The Amazon Machine Image (AMI) ID of the instance.
	ResourceAwsEc2InstanceImageId []StringFilter `type:"list"`

	// The IPv4 addresses associated with the instance.
	ResourceAwsEc2InstanceIpV4Addresses []IpFilter `type:"list"`

	// The IPv6 addresses associated with the instance.
	ResourceAwsEc2InstanceIpV6Addresses []IpFilter `type:"list"`

	// The key name associated with the instance.
	ResourceAwsEc2InstanceKeyName []StringFilter `type:"list"`

	// The date and time the instance was launched.
	ResourceAwsEc2InstanceLaunchedAt []DateFilter `type:"list"`

	// The identifier of the subnet that the instance was launched in.
	ResourceAwsEc2InstanceSubnetId []StringFilter `type:"list"`

	// The instance type of the instance.
	ResourceAwsEc2InstanceType []StringFilter `type:"list"`

	// The identifier of the VPC that the instance was launched in.
	ResourceAwsEc2InstanceVpcId []StringFilter `type:"list"`

	// The creation date/time of the IAM access key related to a finding.
	ResourceAwsIamAccessKeyCreatedAt []DateFilter `type:"list"`

	// The status of the IAM access key related to a finding.
	ResourceAwsIamAccessKeyStatus []StringFilter `type:"list"`

	// The user associated with the IAM access key related to a finding.
	ResourceAwsIamAccessKeyUserName []StringFilter `type:"list"`

	// The canonical user ID of the owner of the S3 bucket.
	ResourceAwsS3BucketOwnerId []StringFilter `type:"list"`

	// The display name of the owner of the S3 bucket.
	ResourceAwsS3BucketOwnerName []StringFilter `type:"list"`

	// The identifier of the image related to a finding.
	ResourceContainerImageId []StringFilter `type:"list"`

	// The name of the image related to a finding.
	ResourceContainerImageName []StringFilter `type:"list"`

	// The date/time that the container was started.
	ResourceContainerLaunchedAt []DateFilter `type:"list"`

	// The name of the container related to a finding.
	ResourceContainerName []StringFilter `type:"list"`

	// The details of a resource that doesn't have a specific subfield for the resource
	// type defined.
	ResourceDetailsOther []MapFilter `type:"list"`

	// The canonical identifier for the given resource type.
	ResourceId []StringFilter `type:"list"`

	// The canonical AWS partition name that the Region is assigned to.
	ResourcePartition []StringFilter `type:"list"`

	// The canonical AWS external Region name where this resource is located.
	ResourceRegion []StringFilter `type:"list"`

	// A list of AWS tags associated with a resource at the time the finding was
	// processed.
	ResourceTags []MapFilter `type:"list"`

	// Specifies the type of the resource that details are provided for.
	ResourceType []StringFilter `type:"list"`

	// The label of a finding's severity.
	SeverityLabel []StringFilter `type:"list"`

	// The normalized severity of a finding.
	SeverityNormalized []NumberFilter `type:"list"`

	// The native severity as defined by the security-findings provider's solution
	// that generated the finding.
	SeverityProduct []NumberFilter `type:"list"`

	// A URL that links to a page about the current finding in the security-findings
	// provider's solution.
	SourceUrl []StringFilter `type:"list"`

	// The category of a threat intelligence indicator.
	ThreatIntelIndicatorCategory []StringFilter `type:"list"`

	// The date/time of the last observation of a threat intelligence indicator.
	ThreatIntelIndicatorLastObservedAt []DateFilter `type:"list"`

	// The source of the threat intelligence.
	ThreatIntelIndicatorSource []StringFilter `type:"list"`

	// The URL for more details from the source of the threat intelligence.
	ThreatIntelIndicatorSourceUrl []StringFilter `type:"list"`

	// The type of a threat intelligence indicator.
	ThreatIntelIndicatorType []StringFilter `type:"list"`

	// The value of a threat intelligence indicator.
	ThreatIntelIndicatorValue []StringFilter `type:"list"`

	// A finding's title.
	Title []StringFilter `type:"list"`

	// A finding type in the format of namespace/category/classifier that classifies
	// a finding.
	Type []StringFilter `type:"list"`

	// An ISO8601-formatted timestamp that indicates when the security-findings
	// provider last updated the finding record.
	UpdatedAt []DateFilter `type:"list"`

	// A list of name/value string pairs associated with the finding. These are
	// custom, user-defined fields added to a finding.
	UserDefinedFields []MapFilter `type:"list"`

	// The veracity of a finding.
	VerificationState []StringFilter `type:"list"`

	// The workflow state of a finding.
	WorkflowState []StringFilter `type:"list"`

	// The status of the investigation into a finding. Allowed values are the following.
	//
	//    * NEW - The initial state of a finding, before it is reviewed.
	//
	//    * NOTIFIED - Indicates that the resource owner has been notified about
	//    the security issue. Used when the initial reviewer is not the resource
	//    owner, and needs intervention from the resource owner.
	//
	//    * SUPPRESSED - The finding will not be reviewed again and will not be
	//    acted upon.
	//
	//    * RESOLVED - The finding was reviewed and remediated and is now considered
	//    resolved.
	WorkflowStatus []StringFilter `type:"list"`
	// contains filtered or unexported fields
}

A collection of attributes that are applied to all active Security Hub-aggregated findings and that result in a subset of findings that are included in this insight.

func (AwsSecurityFindingFilters) MarshalFields

MarshalFields encodes the AWS API shape using the passed in protocol encoder.

func (AwsSecurityFindingFilters) String

func (s AwsSecurityFindingFilters) String() string

String returns the string representation

type AwsSecurityFindingIdentifier added in v0.21.0

type AwsSecurityFindingIdentifier struct {

	// The identifier of the finding that was specified by the finding provider.
	//
	// Id is a required field
	Id *string `type:"string" required:"true"`

	// The ARN generated by Security Hub that uniquely identifies a product that
	// generates findings. This can be the ARN for a third-party product that is
	// integrated with Security Hub, or the ARN for a custom integration.
	//
	// ProductArn is a required field
	ProductArn *string `type:"string" required:"true"`
	// contains filtered or unexported fields
}

Identifies a finding to update using BatchUpdateFindings.

func (AwsSecurityFindingIdentifier) MarshalFields added in v0.21.0

MarshalFields encodes the AWS API shape using the passed in protocol encoder.

func (AwsSecurityFindingIdentifier) String added in v0.21.0

String returns the string representation

func (*AwsSecurityFindingIdentifier) Validate added in v0.21.0

func (s *AwsSecurityFindingIdentifier) Validate() error

Validate inspects the fields of the type to determine if they are valid.

type AwsSnsTopicDetails added in v0.19.0

type AwsSnsTopicDetails struct {

	// The ID of an AWS managed customer master key (CMK) for Amazon SNS or a custom
	// CMK.
	KmsMasterKeyId *string `type:"string"`

	// The subscription's owner.
	Owner *string `type:"string"`

	// Subscription is an embedded property that describes the subscription endpoints
	// of an Amazon SNS topic.
	Subscription []AwsSnsTopicSubscription `type:"list"`

	// The name of the topic.
	TopicName *string `type:"string"`
	// contains filtered or unexported fields
}

A wrapper type for the topic's Amazon Resource Name (ARN).

func (AwsSnsTopicDetails) MarshalFields added in v0.19.0

func (s AwsSnsTopicDetails) MarshalFields(e protocol.FieldEncoder) error

MarshalFields encodes the AWS API shape using the passed in protocol encoder.

func (AwsSnsTopicDetails) String added in v0.19.0

func (s AwsSnsTopicDetails) String() string

String returns the string representation

type AwsSnsTopicSubscription added in v0.19.0

type AwsSnsTopicSubscription struct {

	// The subscription's endpoint (format depends on the protocol).
	Endpoint *string `type:"string"`

	// The subscription's protocol.
	Protocol *string `type:"string"`
	// contains filtered or unexported fields
}

A wrapper type for the attributes of an Amazon SNS subscription.

func (AwsSnsTopicSubscription) MarshalFields added in v0.19.0

MarshalFields encodes the AWS API shape using the passed in protocol encoder.

func (AwsSnsTopicSubscription) String added in v0.19.0

func (s AwsSnsTopicSubscription) String() string

String returns the string representation

type AwsSqsQueueDetails added in v0.19.0

type AwsSqsQueueDetails struct {

	// The Amazon Resource Name (ARN) of the dead-letter queue to which Amazon SQS
	// moves messages after the value of maxReceiveCount is exceeded.
	DeadLetterTargetArn *string `type:"string"`

	// The length of time, in seconds, for which Amazon SQS can reuse a data key
	// to encrypt or decrypt messages before calling AWS KMS again.
	KmsDataKeyReusePeriodSeconds *int64 `type:"integer"`

	// The ID of an AWS managed customer master key (CMK) for Amazon SQS or a custom
	// CMK.
	KmsMasterKeyId *string `type:"string"`

	// The name of the new queue.
	QueueName *string `type:"string"`
	// contains filtered or unexported fields
}

Data about a queue.

func (AwsSqsQueueDetails) MarshalFields added in v0.19.0

func (s AwsSqsQueueDetails) MarshalFields(e protocol.FieldEncoder) error

MarshalFields encodes the AWS API shape using the passed in protocol encoder.

func (AwsSqsQueueDetails) String added in v0.19.0

func (s AwsSqsQueueDetails) String() string

String returns the string representation

type AwsWafWebAclDetails added in v0.20.0

type AwsWafWebAclDetails struct {

	// The action to perform if none of the rules contained in the WebACL match.
	DefaultAction *string `type:"string"`

	// A friendly name or description of the WebACL. You can't change the name of
	// a WebACL after you create it.
	Name *string `type:"string"`

	// An array that contains the action for each rule in a WebACL, the priority
	// of the rule, and the ID of the rule.
	Rules []AwsWafWebAclRule `type:"list"`

	// A unique identifier for a WebACL.
	WebAclId *string `type:"string"`
	// contains filtered or unexported fields
}

Details about a WAF WebACL.

func (AwsWafWebAclDetails) MarshalFields added in v0.20.0

func (s AwsWafWebAclDetails) MarshalFields(e protocol.FieldEncoder) error

MarshalFields encodes the AWS API shape using the passed in protocol encoder.

func (AwsWafWebAclDetails) String added in v0.20.0

func (s AwsWafWebAclDetails) String() string

String returns the string representation

type AwsWafWebAclRule added in v0.20.0

type AwsWafWebAclRule struct {

	// Specifies the action that CloudFront or AWS WAF takes when a web request
	// matches the conditions in the rule.
	Action *WafAction `type:"structure"`

	// Rules to exclude from a rule group.
	ExcludedRules []WafExcludedRule `type:"list"`

	// Use the OverrideAction to test your RuleGroup.
	//
	// Any rule in a RuleGroup can potentially block a request. If you set the OverrideAction
	// to None, the RuleGroup blocks a request if any individual rule in the RuleGroup
	// matches the request and is configured to block that request.
	//
	// However, if you first want to test the RuleGroup, set the OverrideAction
	// to Count. The RuleGroup then overrides any block action specified by individual
	// rules contained within the group. Instead of blocking matching requests,
	// those requests are counted.
	//
	// ActivatedRule|OverrideAction applies only when updating or adding a RuleGroup
	// to a WebACL. In this case you do not use ActivatedRule|Action. For all other
	// update requests, ActivatedRule|Action is used instead of ActivatedRule|OverrideAction.
	OverrideAction *WafOverrideAction `type:"structure"`

	// Specifies the order in which the rules in a WebACL are evaluated. Rules with
	// a lower value for Priority are evaluated before rules with a higher value.
	// The value must be a unique integer. If you add multiple rules to a WebACL,
	// the values do not need to be consecutive.
	Priority *int64 `type:"integer"`

	// The identifier for a rule.
	RuleId *string `type:"string"`

	// The rule type.
	//
	// Valid values: REGULAR | RATE_BASED | GROUP
	//
	// The default is REGULAR.
	Type *string `type:"string"`
	// contains filtered or unexported fields
}

Details for a rule in a WAF WebACL.

func (AwsWafWebAclRule) MarshalFields added in v0.20.0

func (s AwsWafWebAclRule) MarshalFields(e protocol.FieldEncoder) error

MarshalFields encodes the AWS API shape using the passed in protocol encoder.

func (AwsWafWebAclRule) String added in v0.20.0

func (s AwsWafWebAclRule) String() string

String returns the string representation

type BatchDisableStandardsInput

type BatchDisableStandardsInput struct {

	// The ARNs of the standards subscriptions to disable.
	//
	// StandardsSubscriptionArns is a required field
	StandardsSubscriptionArns []string `min:"1" type:"list" required:"true"`
	// contains filtered or unexported fields
}

func (BatchDisableStandardsInput) MarshalFields

MarshalFields encodes the AWS API shape using the passed in protocol encoder.

func (BatchDisableStandardsInput) String

String returns the string representation

func (*BatchDisableStandardsInput) Validate

func (s *BatchDisableStandardsInput) Validate() error

Validate inspects the fields of the type to determine if they are valid.

type BatchDisableStandardsOutput

type BatchDisableStandardsOutput struct {

	// The details of the standards subscriptions that were disabled.
	StandardsSubscriptions []StandardsSubscription `type:"list"`
	// contains filtered or unexported fields
}

func (BatchDisableStandardsOutput) MarshalFields

MarshalFields encodes the AWS API shape using the passed in protocol encoder.

func (BatchDisableStandardsOutput) String

String returns the string representation

type BatchDisableStandardsRequest

type BatchDisableStandardsRequest struct {
	*aws.Request
	Input *BatchDisableStandardsInput
	Copy  func(*BatchDisableStandardsInput) BatchDisableStandardsRequest
}

BatchDisableStandardsRequest is the request type for the BatchDisableStandards API operation.

func (BatchDisableStandardsRequest) Send

Send marshals and sends the BatchDisableStandards API request.

type BatchDisableStandardsResponse added in v0.9.0

type BatchDisableStandardsResponse struct {
	*BatchDisableStandardsOutput
	// contains filtered or unexported fields
}

BatchDisableStandardsResponse is the response type for the BatchDisableStandards API operation.

func (*BatchDisableStandardsResponse) SDKResponseMetdata added in v0.9.0

func (r *BatchDisableStandardsResponse) SDKResponseMetdata() *aws.Response

SDKResponseMetdata returns the response metadata for the BatchDisableStandards request.

type BatchEnableStandardsInput

type BatchEnableStandardsInput struct {

	// The list of standards checks to enable.
	//
	// StandardsSubscriptionRequests is a required field
	StandardsSubscriptionRequests []StandardsSubscriptionRequest `min:"1" type:"list" required:"true"`
	// contains filtered or unexported fields
}

func (BatchEnableStandardsInput) MarshalFields

MarshalFields encodes the AWS API shape using the passed in protocol encoder.

func (BatchEnableStandardsInput) String

func (s BatchEnableStandardsInput) String() string

String returns the string representation

func (*BatchEnableStandardsInput) Validate

func (s *BatchEnableStandardsInput) Validate() error

Validate inspects the fields of the type to determine if they are valid.

type BatchEnableStandardsOutput

type BatchEnableStandardsOutput struct {

	// The details of the standards subscriptions that were enabled.
	StandardsSubscriptions []StandardsSubscription `type:"list"`
	// contains filtered or unexported fields
}

func (BatchEnableStandardsOutput) MarshalFields

MarshalFields encodes the AWS API shape using the passed in protocol encoder.

func (BatchEnableStandardsOutput) String

String returns the string representation

type BatchEnableStandardsRequest

type BatchEnableStandardsRequest struct {
	*aws.Request
	Input *BatchEnableStandardsInput
	Copy  func(*BatchEnableStandardsInput) BatchEnableStandardsRequest
}

BatchEnableStandardsRequest is the request type for the BatchEnableStandards API operation.

func (BatchEnableStandardsRequest) Send

Send marshals and sends the BatchEnableStandards API request.

type BatchEnableStandardsResponse added in v0.9.0

type BatchEnableStandardsResponse struct {
	*BatchEnableStandardsOutput
	// contains filtered or unexported fields
}

BatchEnableStandardsResponse is the response type for the BatchEnableStandards API operation.

func (*BatchEnableStandardsResponse) SDKResponseMetdata added in v0.9.0

func (r *BatchEnableStandardsResponse) SDKResponseMetdata() *aws.Response

SDKResponseMetdata returns the response metadata for the BatchEnableStandards request.

type BatchImportFindingsInput

type BatchImportFindingsInput struct {

	// A list of findings to import. To successfully import a finding, it must follow
	// the AWS Security Finding Format (https://docs.aws.amazon.com/securityhub/latest/userguide/securityhub-findings-format.html).
	// Maximum of 100 findings per request.
	//
	// Findings is a required field
	Findings []AwsSecurityFinding `type:"list" required:"true"`
	// contains filtered or unexported fields
}

func (BatchImportFindingsInput) MarshalFields

MarshalFields encodes the AWS API shape using the passed in protocol encoder.

func (BatchImportFindingsInput) String

func (s BatchImportFindingsInput) String() string

String returns the string representation

func (*BatchImportFindingsInput) Validate

func (s *BatchImportFindingsInput) Validate() error

Validate inspects the fields of the type to determine if they are valid.

type BatchImportFindingsOutput

type BatchImportFindingsOutput struct {

	// The number of findings that failed to import.
	//
	// FailedCount is a required field
	FailedCount *int64 `type:"integer" required:"true"`

	// The list of findings that failed to import.
	FailedFindings []ImportFindingsError `type:"list"`

	// The number of findings that were successfully imported.
	//
	// SuccessCount is a required field
	SuccessCount *int64 `type:"integer" required:"true"`
	// contains filtered or unexported fields
}

func (BatchImportFindingsOutput) MarshalFields

MarshalFields encodes the AWS API shape using the passed in protocol encoder.

func (BatchImportFindingsOutput) String

func (s BatchImportFindingsOutput) String() string

String returns the string representation

type BatchImportFindingsRequest

type BatchImportFindingsRequest struct {
	*aws.Request
	Input *BatchImportFindingsInput
	Copy  func(*BatchImportFindingsInput) BatchImportFindingsRequest
}

BatchImportFindingsRequest is the request type for the BatchImportFindings API operation.

func (BatchImportFindingsRequest) Send

Send marshals and sends the BatchImportFindings API request.

type BatchImportFindingsResponse added in v0.9.0

type BatchImportFindingsResponse struct {
	*BatchImportFindingsOutput
	// contains filtered or unexported fields
}

BatchImportFindingsResponse is the response type for the BatchImportFindings API operation.

func (*BatchImportFindingsResponse) SDKResponseMetdata added in v0.9.0

func (r *BatchImportFindingsResponse) SDKResponseMetdata() *aws.Response

SDKResponseMetdata returns the response metadata for the BatchImportFindings request.

type BatchUpdateFindingsInput added in v0.21.0

type BatchUpdateFindingsInput struct {

	// The updated value for the finding confidence. Confidence is defined as the
	// likelihood that a finding accurately identifies the behavior or issue that
	// it was intended to identify.
	//
	// Confidence is scored on a 0-100 basis using a ratio scale, where 0 means
	// zero percent confidence and 100 means 100 percent confidence.
	Confidence *int64 `type:"integer"`

	// The updated value for the level of importance assigned to the resources associated
	// with the findings.
	//
	// A score of 0 means that the underlying resources have no criticality, and
	// a score of 100 is reserved for the most critical resources.
	Criticality *int64 `type:"integer"`

	// The list of findings to update. BatchUpdateFindings can be used to update
	// up to 100 findings at a time.
	//
	// For each finding, the list provides the finding identifier and the ARN of
	// the finding provider.
	//
	// FindingIdentifiers is a required field
	FindingIdentifiers []AwsSecurityFindingIdentifier `type:"list" required:"true"`

	// The updated note.
	Note *NoteUpdate `type:"structure"`

	// A list of findings that are related to the updated findings.
	RelatedFindings []RelatedFinding `type:"list"`

	// Used to update the finding severity.
	Severity *SeverityUpdate `type:"structure"`

	// One or more finding types in the format of namespace/category/classifier
	// that classify a finding.
	//
	// Valid namespace values are as follows.
	//
	//    * Software and Configuration Checks
	//
	//    * TTPs
	//
	//    * Effects
	//
	//    * Unusual Behaviors
	//
	//    * Sensitive Data Identifications
	Types []string `type:"list"`

	// A list of name/value string pairs associated with the finding. These are
	// custom, user-defined fields added to a finding.
	UserDefinedFields map[string]string `type:"map"`

	// Indicates the veracity of a finding.
	//
	// The available values for VerificationState are as follows.
	//
	//    * UNKNOWN – The default disposition of a security finding
	//
	//    * TRUE_POSITIVE – The security finding is confirmed
	//
	//    * FALSE_POSITIVE – The security finding was determined to be a false
	//    alarm
	//
	//    * BENIGN_POSITIVE – A special case of TRUE_POSITIVE where the finding
	//    doesn't pose any threat, is expected, or both
	VerificationState VerificationState `type:"string" enum:"true"`

	// Used to update the workflow status of a finding.
	//
	// The workflow status indicates the progress of the investigation into the
	// finding.
	Workflow *WorkflowUpdate `type:"structure"`
	// contains filtered or unexported fields
}

func (BatchUpdateFindingsInput) MarshalFields added in v0.21.0

MarshalFields encodes the AWS API shape using the passed in protocol encoder.

func (BatchUpdateFindingsInput) String added in v0.21.0

func (s BatchUpdateFindingsInput) String() string

String returns the string representation

func (*BatchUpdateFindingsInput) Validate added in v0.21.0

func (s *BatchUpdateFindingsInput) Validate() error

Validate inspects the fields of the type to determine if they are valid.

type BatchUpdateFindingsOutput added in v0.21.0

type BatchUpdateFindingsOutput struct {

	// The list of findings that were updated successfully.
	//
	// ProcessedFindings is a required field
	ProcessedFindings []AwsSecurityFindingIdentifier `type:"list" required:"true"`

	// The list of findings that were not updated.
	//
	// UnprocessedFindings is a required field
	UnprocessedFindings []BatchUpdateFindingsUnprocessedFinding `type:"list" required:"true"`
	// contains filtered or unexported fields
}

func (BatchUpdateFindingsOutput) MarshalFields added in v0.21.0

MarshalFields encodes the AWS API shape using the passed in protocol encoder.

func (BatchUpdateFindingsOutput) String added in v0.21.0

func (s BatchUpdateFindingsOutput) String() string

String returns the string representation

type BatchUpdateFindingsRequest added in v0.21.0

type BatchUpdateFindingsRequest struct {
	*aws.Request
	Input *BatchUpdateFindingsInput
	Copy  func(*BatchUpdateFindingsInput) BatchUpdateFindingsRequest
}

BatchUpdateFindingsRequest is the request type for the BatchUpdateFindings API operation.

func (BatchUpdateFindingsRequest) Send added in v0.21.0

Send marshals and sends the BatchUpdateFindings API request.

type BatchUpdateFindingsResponse added in v0.21.0

type BatchUpdateFindingsResponse struct {
	*BatchUpdateFindingsOutput
	// contains filtered or unexported fields
}

BatchUpdateFindingsResponse is the response type for the BatchUpdateFindings API operation.

func (*BatchUpdateFindingsResponse) SDKResponseMetdata added in v0.21.0

func (r *BatchUpdateFindingsResponse) SDKResponseMetdata() *aws.Response

SDKResponseMetdata returns the response metadata for the BatchUpdateFindings request.

type BatchUpdateFindingsUnprocessedFinding added in v0.21.0

type BatchUpdateFindingsUnprocessedFinding struct {

	// The code associated with the error.
	//
	// ErrorCode is a required field
	ErrorCode *string `type:"string" required:"true"`

	// The message associated with the error.
	//
	// ErrorMessage is a required field
	ErrorMessage *string `type:"string" required:"true"`

	// The identifier of the finding that was not updated.
	//
	// FindingIdentifier is a required field
	FindingIdentifier *AwsSecurityFindingIdentifier `type:"structure" required:"true"`
	// contains filtered or unexported fields
}

A finding from a BatchUpdateFindings request that Security Hub was unable to update.

func (BatchUpdateFindingsUnprocessedFinding) MarshalFields added in v0.21.0

MarshalFields encodes the AWS API shape using the passed in protocol encoder.

func (BatchUpdateFindingsUnprocessedFinding) String added in v0.21.0

String returns the string representation

type CidrBlockAssociation added in v0.24.0

type CidrBlockAssociation struct {

	// The association ID for the IPv4 CIDR block.
	AssociationId *string `type:"string"`

	// The IPv4 CIDR block.
	CidrBlock *string `type:"string"`

	// Information about the state of the IPv4 CIDR block.
	CidrBlockState *string `type:"string"`
	// contains filtered or unexported fields
}

An IPv4 CIDR block association.

func (CidrBlockAssociation) MarshalFields added in v0.24.0

func (s CidrBlockAssociation) MarshalFields(e protocol.FieldEncoder) error

MarshalFields encodes the AWS API shape using the passed in protocol encoder.

func (CidrBlockAssociation) String added in v0.24.0

func (s CidrBlockAssociation) String() string

String returns the string representation

type Client added in v0.9.0

type Client struct {
	*aws.Client
}

Client provides the API operation methods for making requests to AWS SecurityHub. See this package's package overview docs for details on the service.

The client's methods are safe to use concurrently. It is not safe to modify mutate any of the struct's properties though.

func New

func New(config aws.Config) *Client

New creates a new instance of the client from the provided Config.

Example:

// Create a client from just a config.
svc := securityhub.New(myConfig)

func (*Client) AcceptInvitationRequest added in v0.9.0

func (c *Client) AcceptInvitationRequest(input *AcceptInvitationInput) AcceptInvitationRequest

AcceptInvitationRequest returns a request value for making API operation for AWS SecurityHub.

Accepts the invitation to be a member account and be monitored by the Security Hub master account that the invitation was sent from.

When the member account accepts the invitation, permission is granted to the master account to view findings generated in the member account.

// Example sending a request using AcceptInvitationRequest.
req := client.AcceptInvitationRequest(params)
resp, err := req.Send(context.TODO())
if err == nil {
    fmt.Println(resp)
}

Please also see https://docs.aws.amazon.com/goto/WebAPI/securityhub-2018-10-26/AcceptInvitation

func (*Client) BatchDisableStandardsRequest added in v0.9.0

func (c *Client) BatchDisableStandardsRequest(input *BatchDisableStandardsInput) BatchDisableStandardsRequest

BatchDisableStandardsRequest returns a request value for making API operation for AWS SecurityHub.

Disables the standards specified by the provided StandardsSubscriptionArns.

For more information, see Security Standards (https://docs.aws.amazon.com/securityhub/latest/userguide/securityhub-standards.html) section of the AWS Security Hub User Guide.

// Example sending a request using BatchDisableStandardsRequest.
req := client.BatchDisableStandardsRequest(params)
resp, err := req.Send(context.TODO())
if err == nil {
    fmt.Println(resp)
}

Please also see https://docs.aws.amazon.com/goto/WebAPI/securityhub-2018-10-26/BatchDisableStandards

func (*Client) BatchEnableStandardsRequest added in v0.9.0

func (c *Client) BatchEnableStandardsRequest(input *BatchEnableStandardsInput) BatchEnableStandardsRequest

BatchEnableStandardsRequest returns a request value for making API operation for AWS SecurityHub.

Enables the standards specified by the provided StandardsArn. To obtain the ARN for a standard, use the DescribeStandards operation.

For more information, see the Security Standards (https://docs.aws.amazon.com/securityhub/latest/userguide/securityhub-standards.html) section of the AWS Security Hub User Guide.

// Example sending a request using BatchEnableStandardsRequest.
req := client.BatchEnableStandardsRequest(params)
resp, err := req.Send(context.TODO())
if err == nil {
    fmt.Println(resp)
}

Please also see https://docs.aws.amazon.com/goto/WebAPI/securityhub-2018-10-26/BatchEnableStandards

func (*Client) BatchImportFindingsRequest added in v0.9.0

func (c *Client) BatchImportFindingsRequest(input *BatchImportFindingsInput) BatchImportFindingsRequest

BatchImportFindingsRequest returns a request value for making API operation for AWS SecurityHub.

Imports security findings generated from an integrated third-party product into Security Hub. This action is requested by the integrated product to import its findings into Security Hub.

The maximum allowed size for a finding is 240 Kb. An error is returned for any finding larger than 240 Kb.

After a finding is created, BatchImportFindings cannot be used to update the following finding fields and objects, which Security Hub customers use to manage their investigation workflow.

  • Confidence

  • Criticality

  • Note

  • RelatedFindings

  • Severity

  • Types

  • UserDefinedFields

  • VerificationState

  • Workflow

    // Example sending a request using BatchImportFindingsRequest. req := client.BatchImportFindingsRequest(params) resp, err := req.Send(context.TODO()) if err == nil { fmt.Println(resp) }

Please also see https://docs.aws.amazon.com/goto/WebAPI/securityhub-2018-10-26/BatchImportFindings

func (*Client) BatchUpdateFindingsRequest added in v0.21.0

func (c *Client) BatchUpdateFindingsRequest(input *BatchUpdateFindingsInput) BatchUpdateFindingsRequest

BatchUpdateFindingsRequest returns a request value for making API operation for AWS SecurityHub.

Used by Security Hub customers to update information about their investigation into a finding. Requested by master accounts or member accounts. Master accounts can update findings for their account and their member accounts. Member accounts can update findings for their account.

Updates from BatchUpdateFindings do not affect the value of UpdatedAt for a finding.

Master accounts can use BatchUpdateFindings to update the following finding fields and objects.

  • Confidence

  • Criticality

  • Note

  • RelatedFindings

  • Severity

  • Types

  • UserDefinedFields

  • VerificationState

  • Workflow

Member accounts can only use BatchUpdateFindings to update the Note object.

// Example sending a request using BatchUpdateFindingsRequest.
req := client.BatchUpdateFindingsRequest(params)
resp, err := req.Send(context.TODO())
if err == nil {
    fmt.Println(resp)
}

Please also see https://docs.aws.amazon.com/goto/WebAPI/securityhub-2018-10-26/BatchUpdateFindings

func (*Client) CreateActionTargetRequest added in v0.10.0

func (c *Client) CreateActionTargetRequest(input *CreateActionTargetInput) CreateActionTargetRequest

CreateActionTargetRequest returns a request value for making API operation for AWS SecurityHub.

Creates a custom action target in Security Hub.

You can use custom actions on findings and insights in Security Hub to trigger target actions in Amazon CloudWatch Events.

// Example sending a request using CreateActionTargetRequest.
req := client.CreateActionTargetRequest(params)
resp, err := req.Send(context.TODO())
if err == nil {
    fmt.Println(resp)
}

Please also see https://docs.aws.amazon.com/goto/WebAPI/securityhub-2018-10-26/CreateActionTarget

func (*Client) CreateInsightRequest added in v0.9.0

func (c *Client) CreateInsightRequest(input *CreateInsightInput) CreateInsightRequest

CreateInsightRequest returns a request value for making API operation for AWS SecurityHub.

Creates a custom insight in Security Hub. An insight is a consolidation of findings that relate to a security issue that requires attention or remediation.

To group the related findings in the insight, use the GroupByAttribute.

// Example sending a request using CreateInsightRequest.
req := client.CreateInsightRequest(params)
resp, err := req.Send(context.TODO())
if err == nil {
    fmt.Println(resp)
}

Please also see https://docs.aws.amazon.com/goto/WebAPI/securityhub-2018-10-26/CreateInsight

func (*Client) CreateMembersRequest added in v0.9.0

func (c *Client) CreateMembersRequest(input *CreateMembersInput) CreateMembersRequest

CreateMembersRequest returns a request value for making API operation for AWS SecurityHub.

Creates a member association in Security Hub between the specified accounts and the account used to make the request, which is the master account. To successfully create a member, you must use this action from an account that already has Security Hub enabled. To enable Security Hub, you can use the EnableSecurityHub operation.

After you use CreateMembers to create member account associations in Security Hub, you must use the InviteMembers operation to invite the accounts to enable Security Hub and become member accounts in Security Hub.

If the account owner accepts the invitation, the account becomes a member account in Security Hub. A permissions policy is added that permits the master account to view the findings generated in the member account. When Security Hub is enabled in the invited account, findings start to be sent to both the member and master accounts.

To remove the association between the master and member accounts, use the DisassociateFromMasterAccount or DisassociateMembers operation.

// Example sending a request using CreateMembersRequest.
req := client.CreateMembersRequest(params)
resp, err := req.Send(context.TODO())
if err == nil {
    fmt.Println(resp)
}

Please also see https://docs.aws.amazon.com/goto/WebAPI/securityhub-2018-10-26/CreateMembers

func (*Client) DeclineInvitationsRequest added in v0.9.0

func (c *Client) DeclineInvitationsRequest(input *DeclineInvitationsInput) DeclineInvitationsRequest

DeclineInvitationsRequest returns a request value for making API operation for AWS SecurityHub.

Declines invitations to become a member account.

// Example sending a request using DeclineInvitationsRequest.
req := client.DeclineInvitationsRequest(params)
resp, err := req.Send(context.TODO())
if err == nil {
    fmt.Println(resp)
}

Please also see https://docs.aws.amazon.com/goto/WebAPI/securityhub-2018-10-26/DeclineInvitations

func (*Client) DeleteActionTargetRequest added in v0.10.0

func (c *Client) DeleteActionTargetRequest(input *DeleteActionTargetInput) DeleteActionTargetRequest

DeleteActionTargetRequest returns a request value for making API operation for AWS SecurityHub.

Deletes a custom action target from Security Hub.

Deleting a custom action target does not affect any findings or insights that were already sent to Amazon CloudWatch Events using the custom action.

// Example sending a request using DeleteActionTargetRequest.
req := client.DeleteActionTargetRequest(params)
resp, err := req.Send(context.TODO())
if err == nil {
    fmt.Println(resp)
}

Please also see https://docs.aws.amazon.com/goto/WebAPI/securityhub-2018-10-26/DeleteActionTarget

func (*Client) DeleteInsightRequest added in v0.9.0

func (c *Client) DeleteInsightRequest(input *DeleteInsightInput) DeleteInsightRequest

DeleteInsightRequest returns a request value for making API operation for AWS SecurityHub.

Deletes the insight specified by the InsightArn.

// Example sending a request using DeleteInsightRequest.
req := client.DeleteInsightRequest(params)
resp, err := req.Send(context.TODO())
if err == nil {
    fmt.Println(resp)
}

Please also see https://docs.aws.amazon.com/goto/WebAPI/securityhub-2018-10-26/DeleteInsight

func (*Client) DeleteInvitationsRequest added in v0.9.0

func (c *Client) DeleteInvitationsRequest(input *DeleteInvitationsInput) DeleteInvitationsRequest

DeleteInvitationsRequest returns a request value for making API operation for AWS SecurityHub.

Deletes invitations received by the AWS account to become a member account.

// Example sending a request using DeleteInvitationsRequest.
req := client.DeleteInvitationsRequest(params)
resp, err := req.Send(context.TODO())
if err == nil {
    fmt.Println(resp)
}

Please also see https://docs.aws.amazon.com/goto/WebAPI/securityhub-2018-10-26/DeleteInvitations

func (*Client) DeleteMembersRequest added in v0.9.0

func (c *Client) DeleteMembersRequest(input *DeleteMembersInput) DeleteMembersRequest

DeleteMembersRequest returns a request value for making API operation for AWS SecurityHub.

Deletes the specified member accounts from Security Hub.

// Example sending a request using DeleteMembersRequest.
req := client.DeleteMembersRequest(params)
resp, err := req.Send(context.TODO())
if err == nil {
    fmt.Println(resp)
}

Please also see https://docs.aws.amazon.com/goto/WebAPI/securityhub-2018-10-26/DeleteMembers

func (*Client) DescribeActionTargetsRequest added in v0.10.0

func (c *Client) DescribeActionTargetsRequest(input *DescribeActionTargetsInput) DescribeActionTargetsRequest

DescribeActionTargetsRequest returns a request value for making API operation for AWS SecurityHub.

Returns a list of the custom action targets in Security Hub in your account.

// Example sending a request using DescribeActionTargetsRequest.
req := client.DescribeActionTargetsRequest(params)
resp, err := req.Send(context.TODO())
if err == nil {
    fmt.Println(resp)
}

Please also see https://docs.aws.amazon.com/goto/WebAPI/securityhub-2018-10-26/DescribeActionTargets

func (*Client) DescribeHubRequest added in v0.10.0

func (c *Client) DescribeHubRequest(input *DescribeHubInput) DescribeHubRequest

DescribeHubRequest returns a request value for making API operation for AWS SecurityHub.

Returns details about the Hub resource in your account, including the HubArn and the time when you enabled Security Hub.

// Example sending a request using DescribeHubRequest.
req := client.DescribeHubRequest(params)
resp, err := req.Send(context.TODO())
if err == nil {
    fmt.Println(resp)
}

Please also see https://docs.aws.amazon.com/goto/WebAPI/securityhub-2018-10-26/DescribeHub

func (*Client) DescribeProductsRequest added in v0.10.0

func (c *Client) DescribeProductsRequest(input *DescribeProductsInput) DescribeProductsRequest

DescribeProductsRequest returns a request value for making API operation for AWS SecurityHub.

Returns information about the available products that you can subscribe to and integrate with Security Hub in order to consolidate findings.

// Example sending a request using DescribeProductsRequest.
req := client.DescribeProductsRequest(params)
resp, err := req.Send(context.TODO())
if err == nil {
    fmt.Println(resp)
}

Please also see https://docs.aws.amazon.com/goto/WebAPI/securityhub-2018-10-26/DescribeProducts

func (*Client) DescribeStandardsControlsRequest added in v0.19.0

func (c *Client) DescribeStandardsControlsRequest(input *DescribeStandardsControlsInput) DescribeStandardsControlsRequest

DescribeStandardsControlsRequest returns a request value for making API operation for AWS SecurityHub.

Returns a list of security standards controls.

For each control, the results include information about whether it is currently enabled, the severity, and a link to remediation information.

// Example sending a request using DescribeStandardsControlsRequest.
req := client.DescribeStandardsControlsRequest(params)
resp, err := req.Send(context.TODO())
if err == nil {
    fmt.Println(resp)
}

Please also see https://docs.aws.amazon.com/goto/WebAPI/securityhub-2018-10-26/DescribeStandardsControls

func (*Client) DescribeStandardsRequest added in v0.20.0

func (c *Client) DescribeStandardsRequest(input *DescribeStandardsInput) DescribeStandardsRequest

DescribeStandardsRequest returns a request value for making API operation for AWS SecurityHub.

Returns a list of the available standards in Security Hub.

For each standard, the results include the standard ARN, the name, and a description.

// Example sending a request using DescribeStandardsRequest.
req := client.DescribeStandardsRequest(params)
resp, err := req.Send(context.TODO())
if err == nil {
    fmt.Println(resp)
}

Please also see https://docs.aws.amazon.com/goto/WebAPI/securityhub-2018-10-26/DescribeStandards

func (*Client) DisableImportFindingsForProductRequest added in v0.9.0

func (c *Client) DisableImportFindingsForProductRequest(input *DisableImportFindingsForProductInput) DisableImportFindingsForProductRequest

DisableImportFindingsForProductRequest returns a request value for making API operation for AWS SecurityHub.

Disables the integration of the specified product with Security Hub. After the integration is disabled, findings from that product are no longer sent to Security Hub.

// Example sending a request using DisableImportFindingsForProductRequest.
req := client.DisableImportFindingsForProductRequest(params)
resp, err := req.Send(context.TODO())
if err == nil {
    fmt.Println(resp)
}

Please also see https://docs.aws.amazon.com/goto/WebAPI/securityhub-2018-10-26/DisableImportFindingsForProduct

func (*Client) DisableSecurityHubRequest added in v0.9.0

func (c *Client) DisableSecurityHubRequest(input *DisableSecurityHubInput) DisableSecurityHubRequest

DisableSecurityHubRequest returns a request value for making API operation for AWS SecurityHub.

Disables Security Hub in your account only in the current Region. To disable Security Hub in all Regions, you must submit one request per Region where you have enabled Security Hub.

When you disable Security Hub for a master account, it doesn't disable Security Hub for any associated member accounts.

When you disable Security Hub, your existing findings and insights and any Security Hub configuration settings are deleted after 90 days and cannot be recovered. Any standards that were enabled are disabled, and your master and member account associations are removed.

If you want to save your existing findings, you must export them before you disable Security Hub.

// Example sending a request using DisableSecurityHubRequest.
req := client.DisableSecurityHubRequest(params)
resp, err := req.Send(context.TODO())
if err == nil {
    fmt.Println(resp)
}

Please also see https://docs.aws.amazon.com/goto/WebAPI/securityhub-2018-10-26/DisableSecurityHub

func (*Client) DisassociateFromMasterAccountRequest added in v0.9.0

func (c *Client) DisassociateFromMasterAccountRequest(input *DisassociateFromMasterAccountInput) DisassociateFromMasterAccountRequest

DisassociateFromMasterAccountRequest returns a request value for making API operation for AWS SecurityHub.

Disassociates the current Security Hub member account from the associated master account.

// Example sending a request using DisassociateFromMasterAccountRequest.
req := client.DisassociateFromMasterAccountRequest(params)
resp, err := req.Send(context.TODO())
if err == nil {
    fmt.Println(resp)
}

Please also see https://docs.aws.amazon.com/goto/WebAPI/securityhub-2018-10-26/DisassociateFromMasterAccount

func (*Client) DisassociateMembersRequest added in v0.9.0

func (c *Client) DisassociateMembersRequest(input *DisassociateMembersInput) DisassociateMembersRequest

DisassociateMembersRequest returns a request value for making API operation for AWS SecurityHub.

Disassociates the specified member accounts from the associated master account.

// Example sending a request using DisassociateMembersRequest.
req := client.DisassociateMembersRequest(params)
resp, err := req.Send(context.TODO())
if err == nil {
    fmt.Println(resp)
}

Please also see https://docs.aws.amazon.com/goto/WebAPI/securityhub-2018-10-26/DisassociateMembers

func (*Client) EnableImportFindingsForProductRequest added in v0.9.0

func (c *Client) EnableImportFindingsForProductRequest(input *EnableImportFindingsForProductInput) EnableImportFindingsForProductRequest

EnableImportFindingsForProductRequest returns a request value for making API operation for AWS SecurityHub.

Enables the integration of a partner product with Security Hub. Integrated products send findings to Security Hub.

When you enable a product integration, a permissions policy that grants permission for the product to send findings to Security Hub is applied.

// Example sending a request using EnableImportFindingsForProductRequest.
req := client.EnableImportFindingsForProductRequest(params)
resp, err := req.Send(context.TODO())
if err == nil {
    fmt.Println(resp)
}

Please also see https://docs.aws.amazon.com/goto/WebAPI/securityhub-2018-10-26/EnableImportFindingsForProduct

func (*Client) EnableSecurityHubRequest added in v0.9.0

func (c *Client) EnableSecurityHubRequest(input *EnableSecurityHubInput) EnableSecurityHubRequest

EnableSecurityHubRequest returns a request value for making API operation for AWS SecurityHub.

Enables Security Hub for your account in the current Region or the Region you specify in the request.

When you enable Security Hub, you grant to Security Hub the permissions necessary to gather findings from other services that are integrated with Security Hub.

When you use the EnableSecurityHub operation to enable Security Hub, you also automatically enable the following standards.

  • CIS AWS Foundations

  • AWS Foundational Security Best Practices

You do not enable the Payment Card Industry Data Security Standard (PCI DSS) standard.

To not enable the automatically enabled standards, set EnableDefaultStandards to false.

After you enable Security Hub, to enable a standard, use the BatchEnableStandards operation. To disable a standard, use the BatchDisableStandards operation.

To learn more, see Setting Up AWS Security Hub (https://docs.aws.amazon.com/securityhub/latest/userguide/securityhub-settingup.html) in the AWS Security Hub User Guide.

// Example sending a request using EnableSecurityHubRequest.
req := client.EnableSecurityHubRequest(params)
resp, err := req.Send(context.TODO())
if err == nil {
    fmt.Println(resp)
}

Please also see https://docs.aws.amazon.com/goto/WebAPI/securityhub-2018-10-26/EnableSecurityHub

func (*Client) GetEnabledStandardsRequest added in v0.9.0

func (c *Client) GetEnabledStandardsRequest(input *GetEnabledStandardsInput) GetEnabledStandardsRequest

GetEnabledStandardsRequest returns a request value for making API operation for AWS SecurityHub.

Returns a list of the standards that are currently enabled.

// Example sending a request using GetEnabledStandardsRequest.
req := client.GetEnabledStandardsRequest(params)
resp, err := req.Send(context.TODO())
if err == nil {
    fmt.Println(resp)
}

Please also see https://docs.aws.amazon.com/goto/WebAPI/securityhub-2018-10-26/GetEnabledStandards

func (*Client) GetFindingsRequest added in v0.9.0

func (c *Client) GetFindingsRequest(input *GetFindingsInput) GetFindingsRequest

GetFindingsRequest returns a request value for making API operation for AWS SecurityHub.

Returns a list of findings that match the specified criteria.

// Example sending a request using GetFindingsRequest.
req := client.GetFindingsRequest(params)
resp, err := req.Send(context.TODO())
if err == nil {
    fmt.Println(resp)
}

Please also see https://docs.aws.amazon.com/goto/WebAPI/securityhub-2018-10-26/GetFindings

func (*Client) GetInsightResultsRequest added in v0.9.0

func (c *Client) GetInsightResultsRequest(input *GetInsightResultsInput) GetInsightResultsRequest

GetInsightResultsRequest returns a request value for making API operation for AWS SecurityHub.

Lists the results of the Security Hub insight specified by the insight ARN.

// Example sending a request using GetInsightResultsRequest.
req := client.GetInsightResultsRequest(params)
resp, err := req.Send(context.TODO())
if err == nil {
    fmt.Println(resp)
}

Please also see https://docs.aws.amazon.com/goto/WebAPI/securityhub-2018-10-26/GetInsightResults

func (*Client) GetInsightsRequest added in v0.9.0

func (c *Client) GetInsightsRequest(input *GetInsightsInput) GetInsightsRequest

GetInsightsRequest returns a request value for making API operation for AWS SecurityHub.

Lists and describes insights for the specified insight ARNs.

// Example sending a request using GetInsightsRequest.
req := client.GetInsightsRequest(params)
resp, err := req.Send(context.TODO())
if err == nil {
    fmt.Println(resp)
}

Please also see https://docs.aws.amazon.com/goto/WebAPI/securityhub-2018-10-26/GetInsights

func (*Client) GetInvitationsCountRequest added in v0.9.0

func (c *Client) GetInvitationsCountRequest(input *GetInvitationsCountInput) GetInvitationsCountRequest

GetInvitationsCountRequest returns a request value for making API operation for AWS SecurityHub.

Returns the count of all Security Hub membership invitations that were sent to the current member account, not including the currently accepted invitation.

// Example sending a request using GetInvitationsCountRequest.
req := client.GetInvitationsCountRequest(params)
resp, err := req.Send(context.TODO())
if err == nil {
    fmt.Println(resp)
}

Please also see https://docs.aws.amazon.com/goto/WebAPI/securityhub-2018-10-26/GetInvitationsCount

func (*Client) GetMasterAccountRequest added in v0.9.0

func (c *Client) GetMasterAccountRequest(input *GetMasterAccountInput) GetMasterAccountRequest

GetMasterAccountRequest returns a request value for making API operation for AWS SecurityHub.

Provides the details for the Security Hub master account for the current member account.

// Example sending a request using GetMasterAccountRequest.
req := client.GetMasterAccountRequest(params)
resp, err := req.Send(context.TODO())
if err == nil {
    fmt.Println(resp)
}

Please also see https://docs.aws.amazon.com/goto/WebAPI/securityhub-2018-10-26/GetMasterAccount

func (*Client) GetMembersRequest added in v0.9.0

func (c *Client) GetMembersRequest(input *GetMembersInput) GetMembersRequest

GetMembersRequest returns a request value for making API operation for AWS SecurityHub.

Returns the details for the Security Hub member accounts for the specified account IDs.

// Example sending a request using GetMembersRequest.
req := client.GetMembersRequest(params)
resp, err := req.Send(context.TODO())
if err == nil {
    fmt.Println(resp)
}

Please also see https://docs.aws.amazon.com/goto/WebAPI/securityhub-2018-10-26/GetMembers

func (*Client) InviteMembersRequest added in v0.9.0

func (c *Client) InviteMembersRequest(input *InviteMembersInput) InviteMembersRequest

InviteMembersRequest returns a request value for making API operation for AWS SecurityHub.

Invites other AWS accounts to become member accounts for the Security Hub master account that the invitation is sent from.

Before you can use this action to invite a member, you must first use the CreateMembers action to create the member account in Security Hub.

When the account owner accepts the invitation to become a member account and enables Security Hub, the master account can view the findings generated from the member account.

// Example sending a request using InviteMembersRequest.
req := client.InviteMembersRequest(params)
resp, err := req.Send(context.TODO())
if err == nil {
    fmt.Println(resp)
}

Please also see https://docs.aws.amazon.com/goto/WebAPI/securityhub-2018-10-26/InviteMembers

func (*Client) ListEnabledProductsForImportRequest added in v0.9.0

func (c *Client) ListEnabledProductsForImportRequest(input *ListEnabledProductsForImportInput) ListEnabledProductsForImportRequest

ListEnabledProductsForImportRequest returns a request value for making API operation for AWS SecurityHub.

Lists all findings-generating solutions (products) that you are subscribed to receive findings from in Security Hub.

// Example sending a request using ListEnabledProductsForImportRequest.
req := client.ListEnabledProductsForImportRequest(params)
resp, err := req.Send(context.TODO())
if err == nil {
    fmt.Println(resp)
}

Please also see https://docs.aws.amazon.com/goto/WebAPI/securityhub-2018-10-26/ListEnabledProductsForImport

func (*Client) ListInvitationsRequest added in v0.9.0

func (c *Client) ListInvitationsRequest(input *ListInvitationsInput) ListInvitationsRequest

ListInvitationsRequest returns a request value for making API operation for AWS SecurityHub.

Lists all Security Hub membership invitations that were sent to the current AWS account.

// Example sending a request using ListInvitationsRequest.
req := client.ListInvitationsRequest(params)
resp, err := req.Send(context.TODO())
if err == nil {
    fmt.Println(resp)
}

Please also see https://docs.aws.amazon.com/goto/WebAPI/securityhub-2018-10-26/ListInvitations

func (*Client) ListMembersRequest added in v0.9.0

func (c *Client) ListMembersRequest(input *ListMembersInput) ListMembersRequest

ListMembersRequest returns a request value for making API operation for AWS SecurityHub.

Lists details about all member accounts for the current Security Hub master account.

// Example sending a request using ListMembersRequest.
req := client.ListMembersRequest(params)
resp, err := req.Send(context.TODO())
if err == nil {
    fmt.Println(resp)
}

Please also see https://docs.aws.amazon.com/goto/WebAPI/securityhub-2018-10-26/ListMembers

func (*Client) ListTagsForResourceRequest added in v0.10.0

func (c *Client) ListTagsForResourceRequest(input *ListTagsForResourceInput) ListTagsForResourceRequest

ListTagsForResourceRequest returns a request value for making API operation for AWS SecurityHub.

Returns a list of tags associated with a resource.

// Example sending a request using ListTagsForResourceRequest.
req := client.ListTagsForResourceRequest(params)
resp, err := req.Send(context.TODO())
if err == nil {
    fmt.Println(resp)
}

Please also see https://docs.aws.amazon.com/goto/WebAPI/securityhub-2018-10-26/ListTagsForResource

func (*Client) TagResourceRequest added in v0.10.0

func (c *Client) TagResourceRequest(input *TagResourceInput) TagResourceRequest

TagResourceRequest returns a request value for making API operation for AWS SecurityHub.

Adds one or more tags to a resource.

// Example sending a request using TagResourceRequest.
req := client.TagResourceRequest(params)
resp, err := req.Send(context.TODO())
if err == nil {
    fmt.Println(resp)
}

Please also see https://docs.aws.amazon.com/goto/WebAPI/securityhub-2018-10-26/TagResource

func (*Client) UntagResourceRequest added in v0.10.0

func (c *Client) UntagResourceRequest(input *UntagResourceInput) UntagResourceRequest

UntagResourceRequest returns a request value for making API operation for AWS SecurityHub.

Removes one or more tags from a resource.

// Example sending a request using UntagResourceRequest.
req := client.UntagResourceRequest(params)
resp, err := req.Send(context.TODO())
if err == nil {
    fmt.Println(resp)
}

Please also see https://docs.aws.amazon.com/goto/WebAPI/securityhub-2018-10-26/UntagResource

func (*Client) UpdateActionTargetRequest added in v0.10.0

func (c *Client) UpdateActionTargetRequest(input *UpdateActionTargetInput) UpdateActionTargetRequest

UpdateActionTargetRequest returns a request value for making API operation for AWS SecurityHub.

Updates the name and description of a custom action target in Security Hub.

// Example sending a request using UpdateActionTargetRequest.
req := client.UpdateActionTargetRequest(params)
resp, err := req.Send(context.TODO())
if err == nil {
    fmt.Println(resp)
}

Please also see https://docs.aws.amazon.com/goto/WebAPI/securityhub-2018-10-26/UpdateActionTarget

func (*Client) UpdateFindingsRequest added in v0.9.0

func (c *Client) UpdateFindingsRequest(input *UpdateFindingsInput) UpdateFindingsRequest

UpdateFindingsRequest returns a request value for making API operation for AWS SecurityHub.

UpdateFindings is deprecated. Instead of UpdateFindings, use BatchUpdateFindings.

Updates the Note and RecordState of the Security Hub-aggregated findings that the filter attributes specify. Any member account that can view the finding also sees the update to the finding.

// Example sending a request using UpdateFindingsRequest.
req := client.UpdateFindingsRequest(params)
resp, err := req.Send(context.TODO())
if err == nil {
    fmt.Println(resp)
}

Please also see https://docs.aws.amazon.com/goto/WebAPI/securityhub-2018-10-26/UpdateFindings

func (*Client) UpdateInsightRequest added in v0.9.0

func (c *Client) UpdateInsightRequest(input *UpdateInsightInput) UpdateInsightRequest

UpdateInsightRequest returns a request value for making API operation for AWS SecurityHub.

Updates the Security Hub insight identified by the specified insight ARN.

// Example sending a request using UpdateInsightRequest.
req := client.UpdateInsightRequest(params)
resp, err := req.Send(context.TODO())
if err == nil {
    fmt.Println(resp)
}

Please also see https://docs.aws.amazon.com/goto/WebAPI/securityhub-2018-10-26/UpdateInsight

func (*Client) UpdateStandardsControlRequest added in v0.19.0

func (c *Client) UpdateStandardsControlRequest(input *UpdateStandardsControlInput) UpdateStandardsControlRequest

UpdateStandardsControlRequest returns a request value for making API operation for AWS SecurityHub.

Used to control whether an individual security standard control is enabled or disabled.

// Example sending a request using UpdateStandardsControlRequest.
req := client.UpdateStandardsControlRequest(params)
resp, err := req.Send(context.TODO())
if err == nil {
    fmt.Println(resp)
}

Please also see https://docs.aws.amazon.com/goto/WebAPI/securityhub-2018-10-26/UpdateStandardsControl

type Compliance

type Compliance struct {

	// For a control, the industry or regulatory framework requirements that are
	// related to the control. The check for that control is aligned with these
	// requirements.
	RelatedRequirements []string `type:"list"`

	// The result of a standards check.
	//
	// The valid values for Status are as follows.
	//
	//    * PASSED - Standards check passed for all evaluated resources. WARNING
	//    - Some information is missing or this check is not supported for your
	//    configuration. FAILED - Standards check failed for at least one evaluated
	//    resource. NOT_AVAILABLE - Check could not be performed due to a service
	//    outage, API error, or because the result of the AWS Config evaluation
	//    was NOT_APPLICABLE. If the AWS Config evaluation result was NOT_APPLICABLE,
	//    then after 3 days, Security Hub automatically archives the finding.
	Status ComplianceStatus `type:"string" enum:"true"`

	// For findings generated from controls, a list of reasons behind the value
	// of Status. For the list of status reason codes and their meanings, see Standards-related
	// information in the ASFF (https://docs.aws.amazon.com/securityhub/latest/userguide/securityhub-standards-results.html#securityhub-standards-results-asff)
	// in the AWS Security Hub User Guide.
	StatusReasons []StatusReason `type:"list"`
	// contains filtered or unexported fields
}

Contains finding details that are specific to control-based findings. Only returned for findings generated from controls.

func (Compliance) MarshalFields

func (s Compliance) MarshalFields(e protocol.FieldEncoder) error

MarshalFields encodes the AWS API shape using the passed in protocol encoder.

func (Compliance) String

func (s Compliance) String() string

String returns the string representation

func (*Compliance) Validate added in v0.23.0

func (s *Compliance) Validate() error

Validate inspects the fields of the type to determine if they are valid.

type ComplianceStatus

type ComplianceStatus string
const (
	ComplianceStatusPassed       ComplianceStatus = "PASSED"
	ComplianceStatusWarning      ComplianceStatus = "WARNING"
	ComplianceStatusFailed       ComplianceStatus = "FAILED"
	ComplianceStatusNotAvailable ComplianceStatus = "NOT_AVAILABLE"
)

Enum values for ComplianceStatus

func (ComplianceStatus) MarshalValue

func (enum ComplianceStatus) MarshalValue() (string, error)

func (ComplianceStatus) MarshalValueBuf

func (enum ComplianceStatus) MarshalValueBuf(b []byte) ([]byte, error)

type ContainerDetails

type ContainerDetails struct {

	// The identifier of the image related to a finding.
	ImageId *string `type:"string"`

	// The name of the image related to a finding.
	ImageName *string `type:"string"`

	// The date and time when the container started.
	LaunchedAt *string `type:"string"`

	// The name of the container related to a finding.
	Name *string `type:"string"`
	// contains filtered or unexported fields
}

Container details related to a finding.

func (ContainerDetails) MarshalFields

func (s ContainerDetails) MarshalFields(e protocol.FieldEncoder) error

MarshalFields encodes the AWS API shape using the passed in protocol encoder.

func (ContainerDetails) String

func (s ContainerDetails) String() string

String returns the string representation

type ControlStatus added in v0.19.0

type ControlStatus string
const (
	ControlStatusEnabled  ControlStatus = "ENABLED"
	ControlStatusDisabled ControlStatus = "DISABLED"
)

Enum values for ControlStatus

func (ControlStatus) MarshalValue added in v0.19.0

func (enum ControlStatus) MarshalValue() (string, error)

func (ControlStatus) MarshalValueBuf added in v0.19.0

func (enum ControlStatus) MarshalValueBuf(b []byte) ([]byte, error)

type CreateActionTargetInput added in v0.10.0

type CreateActionTargetInput struct {

	// The description for the custom action target.
	//
	// Description is a required field
	Description *string `type:"string" required:"true"`

	// The ID for the custom action target.
	//
	// Id is a required field
	Id *string `type:"string" required:"true"`

	// The name of the custom action target.
	//
	// Name is a required field
	Name *string `type:"string" required:"true"`
	// contains filtered or unexported fields
}

func (CreateActionTargetInput) MarshalFields added in v0.10.0

MarshalFields encodes the AWS API shape using the passed in protocol encoder.

func (CreateActionTargetInput) String added in v0.10.0

func (s CreateActionTargetInput) String() string

String returns the string representation

func (*CreateActionTargetInput) Validate added in v0.10.0

func (s *CreateActionTargetInput) Validate() error

Validate inspects the fields of the type to determine if they are valid.

type CreateActionTargetOutput added in v0.10.0

type CreateActionTargetOutput struct {

	// The ARN for the custom action target.
	//
	// ActionTargetArn is a required field
	ActionTargetArn *string `type:"string" required:"true"`
	// contains filtered or unexported fields
}

func (CreateActionTargetOutput) MarshalFields added in v0.10.0

MarshalFields encodes the AWS API shape using the passed in protocol encoder.

func (CreateActionTargetOutput) String added in v0.10.0

func (s CreateActionTargetOutput) String() string

String returns the string representation

type CreateActionTargetRequest added in v0.10.0

type CreateActionTargetRequest struct {
	*aws.Request
	Input *CreateActionTargetInput
	Copy  func(*CreateActionTargetInput) CreateActionTargetRequest
}

CreateActionTargetRequest is the request type for the CreateActionTarget API operation.

func (CreateActionTargetRequest) Send added in v0.10.0

Send marshals and sends the CreateActionTarget API request.

type CreateActionTargetResponse added in v0.10.0

type CreateActionTargetResponse struct {
	*CreateActionTargetOutput
	// contains filtered or unexported fields
}

CreateActionTargetResponse is the response type for the CreateActionTarget API operation.

func (*CreateActionTargetResponse) SDKResponseMetdata added in v0.10.0

func (r *CreateActionTargetResponse) SDKResponseMetdata() *aws.Response

SDKResponseMetdata returns the response metadata for the CreateActionTarget request.

type CreateInsightInput

type CreateInsightInput struct {

	// One or more attributes used to filter the findings included in the insight.
	// The insight only includes findings that match the criteria defined in the
	// filters.
	//
	// Filters is a required field
	Filters *AwsSecurityFindingFilters `type:"structure" required:"true"`

	// The attribute used to group the findings for the insight. The grouping attribute
	// identifies the type of item that the insight applies to. For example, if
	// an insight is grouped by resource identifier, then the insight produces a
	// list of resource identifiers.
	//
	// GroupByAttribute is a required field
	GroupByAttribute *string `type:"string" required:"true"`

	// The name of the custom insight to create.
	//
	// Name is a required field
	Name *string `type:"string" required:"true"`
	// contains filtered or unexported fields
}

func (CreateInsightInput) MarshalFields

func (s CreateInsightInput) MarshalFields(e protocol.FieldEncoder) error

MarshalFields encodes the AWS API shape using the passed in protocol encoder.

func (CreateInsightInput) String

func (s CreateInsightInput) String() string

String returns the string representation

func (*CreateInsightInput) Validate

func (s *CreateInsightInput) Validate() error

Validate inspects the fields of the type to determine if they are valid.

type CreateInsightOutput

type CreateInsightOutput struct {

	// The ARN of the insight created.
	//
	// InsightArn is a required field
	InsightArn *string `type:"string" required:"true"`
	// contains filtered or unexported fields
}

func (CreateInsightOutput) MarshalFields

func (s CreateInsightOutput) MarshalFields(e protocol.FieldEncoder) error

MarshalFields encodes the AWS API shape using the passed in protocol encoder.

func (CreateInsightOutput) String

func (s CreateInsightOutput) String() string

String returns the string representation

type CreateInsightRequest

type CreateInsightRequest struct {
	*aws.Request
	Input *CreateInsightInput
	Copy  func(*CreateInsightInput) CreateInsightRequest
}

CreateInsightRequest is the request type for the CreateInsight API operation.

func (CreateInsightRequest) Send

Send marshals and sends the CreateInsight API request.

type CreateInsightResponse added in v0.9.0

type CreateInsightResponse struct {
	*CreateInsightOutput
	// contains filtered or unexported fields
}

CreateInsightResponse is the response type for the CreateInsight API operation.

func (*CreateInsightResponse) SDKResponseMetdata added in v0.9.0

func (r *CreateInsightResponse) SDKResponseMetdata() *aws.Response

SDKResponseMetdata returns the response metadata for the CreateInsight request.

type CreateMembersInput

type CreateMembersInput struct {

	// The list of accounts to associate with the Security Hub master account. For
	// each account, the list includes the account ID and the email address.
	AccountDetails []AccountDetails `type:"list"`
	// contains filtered or unexported fields
}

func (CreateMembersInput) MarshalFields

func (s CreateMembersInput) MarshalFields(e protocol.FieldEncoder) error

MarshalFields encodes the AWS API shape using the passed in protocol encoder.

func (CreateMembersInput) String

func (s CreateMembersInput) String() string

String returns the string representation

type CreateMembersOutput

type CreateMembersOutput struct {

	// The list of AWS accounts that were not processed. For each account, the list
	// includes the account ID and the email address.
	UnprocessedAccounts []Result `type:"list"`
	// contains filtered or unexported fields
}

func (CreateMembersOutput) MarshalFields

func (s CreateMembersOutput) MarshalFields(e protocol.FieldEncoder) error

MarshalFields encodes the AWS API shape using the passed in protocol encoder.

func (CreateMembersOutput) String

func (s CreateMembersOutput) String() string

String returns the string representation

type CreateMembersRequest

type CreateMembersRequest struct {
	*aws.Request
	Input *CreateMembersInput
	Copy  func(*CreateMembersInput) CreateMembersRequest
}

CreateMembersRequest is the request type for the CreateMembers API operation.

func (CreateMembersRequest) Send

Send marshals and sends the CreateMembers API request.

type CreateMembersResponse added in v0.9.0

type CreateMembersResponse struct {
	*CreateMembersOutput
	// contains filtered or unexported fields
}

CreateMembersResponse is the response type for the CreateMembers API operation.

func (*CreateMembersResponse) SDKResponseMetdata added in v0.9.0

func (r *CreateMembersResponse) SDKResponseMetdata() *aws.Response

SDKResponseMetdata returns the response metadata for the CreateMembers request.

type Cvss added in v0.24.0

type Cvss struct {

	// The base CVSS score.
	BaseScore *float64 `type:"double"`

	// The base scoring vector for the CVSS score.
	BaseVector *string `type:"string"`

	// The version of CVSS for the CVSS score.
	Version *string `type:"string"`
	// contains filtered or unexported fields
}

CVSS scores from the advisory related to the vulnerability.

func (Cvss) MarshalFields added in v0.24.0

func (s Cvss) MarshalFields(e protocol.FieldEncoder) error

MarshalFields encodes the AWS API shape using the passed in protocol encoder.

func (Cvss) String added in v0.24.0

func (s Cvss) String() string

String returns the string representation

type DateFilter

type DateFilter struct {

	// A date range for the date filter.
	DateRange *DateRange `type:"structure"`

	// An end date for the date filter.
	End *string `type:"string"`

	// A start date for the date filter.
	Start *string `type:"string"`
	// contains filtered or unexported fields
}

A date filter for querying findings.

func (DateFilter) MarshalFields

func (s DateFilter) MarshalFields(e protocol.FieldEncoder) error

MarshalFields encodes the AWS API shape using the passed in protocol encoder.

func (DateFilter) String

func (s DateFilter) String() string

String returns the string representation

type DateRange

type DateRange struct {

	// A date range unit for the date filter.
	Unit DateRangeUnit `type:"string" enum:"true"`

	// A date range value for the date filter.
	Value *int64 `type:"integer"`
	// contains filtered or unexported fields
}

A date range for the date filter.

func (DateRange) MarshalFields

func (s DateRange) MarshalFields(e protocol.FieldEncoder) error

MarshalFields encodes the AWS API shape using the passed in protocol encoder.

func (DateRange) String

func (s DateRange) String() string

String returns the string representation

type DateRangeUnit

type DateRangeUnit string
const (
	DateRangeUnitDays DateRangeUnit = "DAYS"
)

Enum values for DateRangeUnit

func (DateRangeUnit) MarshalValue

func (enum DateRangeUnit) MarshalValue() (string, error)

func (DateRangeUnit) MarshalValueBuf

func (enum DateRangeUnit) MarshalValueBuf(b []byte) ([]byte, error)

type DeclineInvitationsInput

type DeclineInvitationsInput struct {

	// The list of account IDs for the accounts from which to decline the invitations
	// to Security Hub.
	//
	// AccountIds is a required field
	AccountIds []string `type:"list" required:"true"`
	// contains filtered or unexported fields
}

func (DeclineInvitationsInput) MarshalFields

MarshalFields encodes the AWS API shape using the passed in protocol encoder.

func (DeclineInvitationsInput) String

func (s DeclineInvitationsInput) String() string

String returns the string representation

func (*DeclineInvitationsInput) Validate added in v0.12.0

func (s *DeclineInvitationsInput) Validate() error

Validate inspects the fields of the type to determine if they are valid.

type DeclineInvitationsOutput

type DeclineInvitationsOutput struct {

	// The list of AWS accounts that were not processed. For each account, the list
	// includes the account ID and the email address.
	UnprocessedAccounts []Result `type:"list"`
	// contains filtered or unexported fields
}

func (DeclineInvitationsOutput) MarshalFields

MarshalFields encodes the AWS API shape using the passed in protocol encoder.

func (DeclineInvitationsOutput) String

func (s DeclineInvitationsOutput) String() string

String returns the string representation

type DeclineInvitationsRequest

type DeclineInvitationsRequest struct {
	*aws.Request
	Input *DeclineInvitationsInput
	Copy  func(*DeclineInvitationsInput) DeclineInvitationsRequest
}

DeclineInvitationsRequest is the request type for the DeclineInvitations API operation.

func (DeclineInvitationsRequest) Send

Send marshals and sends the DeclineInvitations API request.

type DeclineInvitationsResponse added in v0.9.0

type DeclineInvitationsResponse struct {
	*DeclineInvitationsOutput
	// contains filtered or unexported fields
}

DeclineInvitationsResponse is the response type for the DeclineInvitations API operation.

func (*DeclineInvitationsResponse) SDKResponseMetdata added in v0.9.0

func (r *DeclineInvitationsResponse) SDKResponseMetdata() *aws.Response

SDKResponseMetdata returns the response metadata for the DeclineInvitations request.

type DeleteActionTargetInput added in v0.10.0

type DeleteActionTargetInput struct {

	// The ARN of the custom action target to delete.
	//
	// ActionTargetArn is a required field
	ActionTargetArn *string `location:"uri" locationName:"ActionTargetArn" type:"string" required:"true"`
	// contains filtered or unexported fields
}

func (DeleteActionTargetInput) MarshalFields added in v0.10.0

MarshalFields encodes the AWS API shape using the passed in protocol encoder.

func (DeleteActionTargetInput) String added in v0.10.0

func (s DeleteActionTargetInput) String() string

String returns the string representation

func (*DeleteActionTargetInput) Validate added in v0.10.0

func (s *DeleteActionTargetInput) Validate() error

Validate inspects the fields of the type to determine if they are valid.

type DeleteActionTargetOutput added in v0.10.0

type DeleteActionTargetOutput struct {

	// The ARN of the custom action target that was deleted.
	//
	// ActionTargetArn is a required field
	ActionTargetArn *string `type:"string" required:"true"`
	// contains filtered or unexported fields
}

func (DeleteActionTargetOutput) MarshalFields added in v0.10.0

MarshalFields encodes the AWS API shape using the passed in protocol encoder.

func (DeleteActionTargetOutput) String added in v0.10.0

func (s DeleteActionTargetOutput) String() string

String returns the string representation

type DeleteActionTargetRequest added in v0.10.0

type DeleteActionTargetRequest struct {
	*aws.Request
	Input *DeleteActionTargetInput
	Copy  func(*DeleteActionTargetInput) DeleteActionTargetRequest
}

DeleteActionTargetRequest is the request type for the DeleteActionTarget API operation.

func (DeleteActionTargetRequest) Send added in v0.10.0

Send marshals and sends the DeleteActionTarget API request.

type DeleteActionTargetResponse added in v0.10.0

type DeleteActionTargetResponse struct {
	*DeleteActionTargetOutput
	// contains filtered or unexported fields
}

DeleteActionTargetResponse is the response type for the DeleteActionTarget API operation.

func (*DeleteActionTargetResponse) SDKResponseMetdata added in v0.10.0

func (r *DeleteActionTargetResponse) SDKResponseMetdata() *aws.Response

SDKResponseMetdata returns the response metadata for the DeleteActionTarget request.

type DeleteInsightInput

type DeleteInsightInput struct {

	// The ARN of the insight to delete.
	//
	// InsightArn is a required field
	InsightArn *string `location:"uri" locationName:"InsightArn" type:"string" required:"true"`
	// contains filtered or unexported fields
}

func (DeleteInsightInput) MarshalFields

func (s DeleteInsightInput) MarshalFields(e protocol.FieldEncoder) error

MarshalFields encodes the AWS API shape using the passed in protocol encoder.

func (DeleteInsightInput) String

func (s DeleteInsightInput) String() string

String returns the string representation

func (*DeleteInsightInput) Validate

func (s *DeleteInsightInput) Validate() error

Validate inspects the fields of the type to determine if they are valid.

type DeleteInsightOutput

type DeleteInsightOutput struct {

	// The ARN of the insight that was deleted.
	//
	// InsightArn is a required field
	InsightArn *string `type:"string" required:"true"`
	// contains filtered or unexported fields
}

func (DeleteInsightOutput) MarshalFields

func (s DeleteInsightOutput) MarshalFields(e protocol.FieldEncoder) error

MarshalFields encodes the AWS API shape using the passed in protocol encoder.

func (DeleteInsightOutput) String

func (s DeleteInsightOutput) String() string

String returns the string representation

type DeleteInsightRequest

type DeleteInsightRequest struct {
	*aws.Request
	Input *DeleteInsightInput
	Copy  func(*DeleteInsightInput) DeleteInsightRequest
}

DeleteInsightRequest is the request type for the DeleteInsight API operation.

func (DeleteInsightRequest) Send

Send marshals and sends the DeleteInsight API request.

type DeleteInsightResponse added in v0.9.0

type DeleteInsightResponse struct {
	*DeleteInsightOutput
	// contains filtered or unexported fields
}

DeleteInsightResponse is the response type for the DeleteInsight API operation.

func (*DeleteInsightResponse) SDKResponseMetdata added in v0.9.0

func (r *DeleteInsightResponse) SDKResponseMetdata() *aws.Response

SDKResponseMetdata returns the response metadata for the DeleteInsight request.

type DeleteInvitationsInput

type DeleteInvitationsInput struct {

	// The list of the account IDs that sent the invitations to delete.
	//
	// AccountIds is a required field
	AccountIds []string `type:"list" required:"true"`
	// contains filtered or unexported fields
}

func (DeleteInvitationsInput) MarshalFields

MarshalFields encodes the AWS API shape using the passed in protocol encoder.

func (DeleteInvitationsInput) String

func (s DeleteInvitationsInput) String() string

String returns the string representation

func (*DeleteInvitationsInput) Validate added in v0.12.0

func (s *DeleteInvitationsInput) Validate() error

Validate inspects the fields of the type to determine if they are valid.

type DeleteInvitationsOutput

type DeleteInvitationsOutput struct {

	// The list of AWS accounts for which the invitations were not deleted. For
	// each account, the list includes the account ID and the email address.
	UnprocessedAccounts []Result `type:"list"`
	// contains filtered or unexported fields
}

func (DeleteInvitationsOutput) MarshalFields

MarshalFields encodes the AWS API shape using the passed in protocol encoder.

func (DeleteInvitationsOutput) String

func (s DeleteInvitationsOutput) String() string

String returns the string representation

type DeleteInvitationsRequest

type DeleteInvitationsRequest struct {
	*aws.Request
	Input *DeleteInvitationsInput
	Copy  func(*DeleteInvitationsInput) DeleteInvitationsRequest
}

DeleteInvitationsRequest is the request type for the DeleteInvitations API operation.

func (DeleteInvitationsRequest) Send

Send marshals and sends the DeleteInvitations API request.

type DeleteInvitationsResponse added in v0.9.0

type DeleteInvitationsResponse struct {
	*DeleteInvitationsOutput
	// contains filtered or unexported fields
}

DeleteInvitationsResponse is the response type for the DeleteInvitations API operation.

func (*DeleteInvitationsResponse) SDKResponseMetdata added in v0.9.0

func (r *DeleteInvitationsResponse) SDKResponseMetdata() *aws.Response

SDKResponseMetdata returns the response metadata for the DeleteInvitations request.

type DeleteMembersInput

type DeleteMembersInput struct {

	// The list of account IDs for the member accounts to delete.
	AccountIds []string `type:"list"`
	// contains filtered or unexported fields
}

func (DeleteMembersInput) MarshalFields

func (s DeleteMembersInput) MarshalFields(e protocol.FieldEncoder) error

MarshalFields encodes the AWS API shape using the passed in protocol encoder.

func (DeleteMembersInput) String

func (s DeleteMembersInput) String() string

String returns the string representation

type DeleteMembersOutput

type DeleteMembersOutput struct {

	// The list of AWS accounts that were not deleted. For each account, the list
	// includes the account ID and the email address.
	UnprocessedAccounts []Result `type:"list"`
	// contains filtered or unexported fields
}

func (DeleteMembersOutput) MarshalFields

func (s DeleteMembersOutput) MarshalFields(e protocol.FieldEncoder) error

MarshalFields encodes the AWS API shape using the passed in protocol encoder.

func (DeleteMembersOutput) String

func (s DeleteMembersOutput) String() string

String returns the string representation

type DeleteMembersRequest

type DeleteMembersRequest struct {
	*aws.Request
	Input *DeleteMembersInput
	Copy  func(*DeleteMembersInput) DeleteMembersRequest
}

DeleteMembersRequest is the request type for the DeleteMembers API operation.

func (DeleteMembersRequest) Send

Send marshals and sends the DeleteMembers API request.

type DeleteMembersResponse added in v0.9.0

type DeleteMembersResponse struct {
	*DeleteMembersOutput
	// contains filtered or unexported fields
}

DeleteMembersResponse is the response type for the DeleteMembers API operation.

func (*DeleteMembersResponse) SDKResponseMetdata added in v0.9.0

func (r *DeleteMembersResponse) SDKResponseMetdata() *aws.Response

SDKResponseMetdata returns the response metadata for the DeleteMembers request.

type DescribeActionTargetsInput added in v0.10.0

type DescribeActionTargetsInput struct {

	// A list of custom action target ARNs for the custom action targets to retrieve.
	ActionTargetArns []string `type:"list"`

	// The maximum number of results to return.
	MaxResults *int64 `min:"1" type:"integer"`

	// The token that is required for pagination. On your first call to the DescribeActionTargets
	// operation, set the value of this parameter to NULL.
	//
	// For subsequent calls to the operation, to continue listing data, set the
	// value of this parameter to the value returned from the previous response.
	NextToken *string `type:"string"`
	// contains filtered or unexported fields
}

func (DescribeActionTargetsInput) MarshalFields added in v0.10.0

MarshalFields encodes the AWS API shape using the passed in protocol encoder.

func (DescribeActionTargetsInput) String added in v0.10.0

String returns the string representation

func (*DescribeActionTargetsInput) Validate added in v0.10.0

func (s *DescribeActionTargetsInput) Validate() error

Validate inspects the fields of the type to determine if they are valid.

type DescribeActionTargetsOutput added in v0.10.0

type DescribeActionTargetsOutput struct {

	// A list of ActionTarget objects. Each object includes the ActionTargetArn,
	// Description, and Name of a custom action target available in Security Hub.
	//
	// ActionTargets is a required field
	ActionTargets []ActionTarget `type:"list" required:"true"`

	// The pagination token to use to request the next page of results.
	NextToken *string `type:"string"`
	// contains filtered or unexported fields
}

func (DescribeActionTargetsOutput) MarshalFields added in v0.10.0

MarshalFields encodes the AWS API shape using the passed in protocol encoder.

func (DescribeActionTargetsOutput) String added in v0.10.0

String returns the string representation

type DescribeActionTargetsPaginator added in v0.10.0

type DescribeActionTargetsPaginator struct {
	aws.Pager
}

DescribeActionTargetsPaginator is used to paginate the request. This can be done by calling Next and CurrentPage.

func NewDescribeActionTargetsPaginator added in v0.10.0

func NewDescribeActionTargetsPaginator(req DescribeActionTargetsRequest) DescribeActionTargetsPaginator

NewDescribeActionTargetsRequestPaginator returns a paginator for DescribeActionTargets. Use Next method to get the next page, and CurrentPage to get the current response page from the paginator. Next will return false, if there are no more pages, or an error was encountered.

Note: This operation can generate multiple requests to a service.

// Example iterating over pages.
req := client.DescribeActionTargetsRequest(input)
p := securityhub.NewDescribeActionTargetsRequestPaginator(req)

for p.Next(context.TODO()) {
    page := p.CurrentPage()
}

if err := p.Err(); err != nil {
    return err
}

func (*DescribeActionTargetsPaginator) CurrentPage added in v0.10.0

type DescribeActionTargetsRequest added in v0.10.0

type DescribeActionTargetsRequest struct {
	*aws.Request
	Input *DescribeActionTargetsInput
	Copy  func(*DescribeActionTargetsInput) DescribeActionTargetsRequest
}

DescribeActionTargetsRequest is the request type for the DescribeActionTargets API operation.

func (DescribeActionTargetsRequest) Send added in v0.10.0

Send marshals and sends the DescribeActionTargets API request.

type DescribeActionTargetsResponse added in v0.10.0

type DescribeActionTargetsResponse struct {
	*DescribeActionTargetsOutput
	// contains filtered or unexported fields
}

DescribeActionTargetsResponse is the response type for the DescribeActionTargets API operation.

func (*DescribeActionTargetsResponse) SDKResponseMetdata added in v0.10.0

func (r *DescribeActionTargetsResponse) SDKResponseMetdata() *aws.Response

SDKResponseMetdata returns the response metadata for the DescribeActionTargets request.

type DescribeHubInput added in v0.10.0

type DescribeHubInput struct {

	// The ARN of the Hub resource to retrieve.
	HubArn *string `location:"querystring" locationName:"HubArn" type:"string"`
	// contains filtered or unexported fields
}

func (DescribeHubInput) MarshalFields added in v0.10.0

func (s DescribeHubInput) MarshalFields(e protocol.FieldEncoder) error

MarshalFields encodes the AWS API shape using the passed in protocol encoder.

func (DescribeHubInput) String added in v0.10.0

func (s DescribeHubInput) String() string

String returns the string representation

type DescribeHubOutput added in v0.10.0

type DescribeHubOutput struct {

	// The ARN of the Hub resource that was retrieved.
	HubArn *string `type:"string"`

	// The date and time when Security Hub was enabled in the account.
	SubscribedAt *string `type:"string"`
	// contains filtered or unexported fields
}

func (DescribeHubOutput) MarshalFields added in v0.10.0

func (s DescribeHubOutput) MarshalFields(e protocol.FieldEncoder) error

MarshalFields encodes the AWS API shape using the passed in protocol encoder.

func (DescribeHubOutput) String added in v0.10.0

func (s DescribeHubOutput) String() string

String returns the string representation

type DescribeHubRequest added in v0.10.0

type DescribeHubRequest struct {
	*aws.Request
	Input *DescribeHubInput
	Copy  func(*DescribeHubInput) DescribeHubRequest
}

DescribeHubRequest is the request type for the DescribeHub API operation.

func (DescribeHubRequest) Send added in v0.10.0

Send marshals and sends the DescribeHub API request.

type DescribeHubResponse added in v0.10.0

type DescribeHubResponse struct {
	*DescribeHubOutput
	// contains filtered or unexported fields
}

DescribeHubResponse is the response type for the DescribeHub API operation.

func (*DescribeHubResponse) SDKResponseMetdata added in v0.10.0

func (r *DescribeHubResponse) SDKResponseMetdata() *aws.Response

SDKResponseMetdata returns the response metadata for the DescribeHub request.

type DescribeProductsInput added in v0.10.0

type DescribeProductsInput struct {

	// The maximum number of results to return.
	MaxResults *int64 `location:"querystring" locationName:"MaxResults" min:"1" type:"integer"`

	// The token that is required for pagination. On your first call to the DescribeProducts
	// operation, set the value of this parameter to NULL.
	//
	// For subsequent calls to the operation, to continue listing data, set the
	// value of this parameter to the value returned from the previous response.
	NextToken *string `location:"querystring" locationName:"NextToken" type:"string"`
	// contains filtered or unexported fields
}

func (DescribeProductsInput) MarshalFields added in v0.10.0

func (s DescribeProductsInput) MarshalFields(e protocol.FieldEncoder) error

MarshalFields encodes the AWS API shape using the passed in protocol encoder.

func (DescribeProductsInput) String added in v0.10.0

func (s DescribeProductsInput) String() string

String returns the string representation

func (*DescribeProductsInput) Validate added in v0.10.0

func (s *DescribeProductsInput) Validate() error

Validate inspects the fields of the type to determine if they are valid.

type DescribeProductsOutput added in v0.10.0

type DescribeProductsOutput struct {

	// The pagination token to use to request the next page of results.
	NextToken *string `type:"string"`

	// A list of products, including details for each product.
	//
	// Products is a required field
	Products []Product `type:"list" required:"true"`
	// contains filtered or unexported fields
}

func (DescribeProductsOutput) MarshalFields added in v0.10.0

MarshalFields encodes the AWS API shape using the passed in protocol encoder.

func (DescribeProductsOutput) String added in v0.10.0

func (s DescribeProductsOutput) String() string

String returns the string representation

type DescribeProductsPaginator added in v0.10.0

type DescribeProductsPaginator struct {
	aws.Pager
}

DescribeProductsPaginator is used to paginate the request. This can be done by calling Next and CurrentPage.

func NewDescribeProductsPaginator added in v0.10.0

func NewDescribeProductsPaginator(req DescribeProductsRequest) DescribeProductsPaginator

NewDescribeProductsRequestPaginator returns a paginator for DescribeProducts. Use Next method to get the next page, and CurrentPage to get the current response page from the paginator. Next will return false, if there are no more pages, or an error was encountered.

Note: This operation can generate multiple requests to a service.

// Example iterating over pages.
req := client.DescribeProductsRequest(input)
p := securityhub.NewDescribeProductsRequestPaginator(req)

for p.Next(context.TODO()) {
    page := p.CurrentPage()
}

if err := p.Err(); err != nil {
    return err
}

func (*DescribeProductsPaginator) CurrentPage added in v0.10.0

type DescribeProductsRequest added in v0.10.0

type DescribeProductsRequest struct {
	*aws.Request
	Input *DescribeProductsInput
	Copy  func(*DescribeProductsInput) DescribeProductsRequest
}

DescribeProductsRequest is the request type for the DescribeProducts API operation.

func (DescribeProductsRequest) Send added in v0.10.0

Send marshals and sends the DescribeProducts API request.

type DescribeProductsResponse added in v0.10.0

type DescribeProductsResponse struct {
	*DescribeProductsOutput
	// contains filtered or unexported fields
}

DescribeProductsResponse is the response type for the DescribeProducts API operation.

func (*DescribeProductsResponse) SDKResponseMetdata added in v0.10.0

func (r *DescribeProductsResponse) SDKResponseMetdata() *aws.Response

SDKResponseMetdata returns the response metadata for the DescribeProducts request.

type DescribeStandardsControlsInput added in v0.19.0

type DescribeStandardsControlsInput struct {

	// The maximum number of security standard controls to return.
	MaxResults *int64 `location:"querystring" locationName:"MaxResults" min:"1" type:"integer"`

	// The token that is required for pagination. On your first call to the DescribeStandardsControls
	// operation, set the value of this parameter to NULL.
	//
	// For subsequent calls to the operation, to continue listing data, set the
	// value of this parameter to the value returned from the previous response.
	NextToken *string `location:"querystring" locationName:"NextToken" type:"string"`

	// The ARN of a resource that represents your subscription to a supported standard.
	//
	// StandardsSubscriptionArn is a required field
	StandardsSubscriptionArn *string `location:"uri" locationName:"StandardsSubscriptionArn" type:"string" required:"true"`
	// contains filtered or unexported fields
}

func (DescribeStandardsControlsInput) MarshalFields added in v0.19.0

MarshalFields encodes the AWS API shape using the passed in protocol encoder.

func (DescribeStandardsControlsInput) String added in v0.19.0

String returns the string representation

func (*DescribeStandardsControlsInput) Validate added in v0.19.0

func (s *DescribeStandardsControlsInput) Validate() error

Validate inspects the fields of the type to determine if they are valid.

type DescribeStandardsControlsOutput added in v0.19.0

type DescribeStandardsControlsOutput struct {

	// A list of security standards controls.
	Controls []StandardsControl `type:"list"`

	// The pagination token to use to request the next page of results.
	NextToken *string `type:"string"`
	// contains filtered or unexported fields
}

func (DescribeStandardsControlsOutput) MarshalFields added in v0.19.0

MarshalFields encodes the AWS API shape using the passed in protocol encoder.

func (DescribeStandardsControlsOutput) String added in v0.19.0

String returns the string representation

type DescribeStandardsControlsPaginator added in v0.20.0

type DescribeStandardsControlsPaginator struct {
	aws.Pager
}

DescribeStandardsControlsPaginator is used to paginate the request. This can be done by calling Next and CurrentPage.

func NewDescribeStandardsControlsPaginator added in v0.20.0

func NewDescribeStandardsControlsPaginator(req DescribeStandardsControlsRequest) DescribeStandardsControlsPaginator

NewDescribeStandardsControlsRequestPaginator returns a paginator for DescribeStandardsControls. Use Next method to get the next page, and CurrentPage to get the current response page from the paginator. Next will return false, if there are no more pages, or an error was encountered.

Note: This operation can generate multiple requests to a service.

// Example iterating over pages.
req := client.DescribeStandardsControlsRequest(input)
p := securityhub.NewDescribeStandardsControlsRequestPaginator(req)

for p.Next(context.TODO()) {
    page := p.CurrentPage()
}

if err := p.Err(); err != nil {
    return err
}

func (*DescribeStandardsControlsPaginator) CurrentPage added in v0.20.0

type DescribeStandardsControlsRequest added in v0.19.0

type DescribeStandardsControlsRequest struct {
	*aws.Request
	Input *DescribeStandardsControlsInput
	Copy  func(*DescribeStandardsControlsInput) DescribeStandardsControlsRequest
}

DescribeStandardsControlsRequest is the request type for the DescribeStandardsControls API operation.

func (DescribeStandardsControlsRequest) Send added in v0.19.0

Send marshals and sends the DescribeStandardsControls API request.

type DescribeStandardsControlsResponse added in v0.19.0

type DescribeStandardsControlsResponse struct {
	*DescribeStandardsControlsOutput
	// contains filtered or unexported fields
}

DescribeStandardsControlsResponse is the response type for the DescribeStandardsControls API operation.

func (*DescribeStandardsControlsResponse) SDKResponseMetdata added in v0.19.0

func (r *DescribeStandardsControlsResponse) SDKResponseMetdata() *aws.Response

SDKResponseMetdata returns the response metadata for the DescribeStandardsControls request.

type DescribeStandardsInput added in v0.20.0

type DescribeStandardsInput struct {

	// The maximum number of standards to return.
	MaxResults *int64 `location:"querystring" locationName:"MaxResults" min:"1" type:"integer"`

	// The token that is required for pagination. On your first call to the DescribeStandards
	// operation, set the value of this parameter to NULL.
	//
	// For subsequent calls to the operation, to continue listing data, set the
	// value of this parameter to the value returned from the previous response.
	NextToken *string `location:"querystring" locationName:"NextToken" type:"string"`
	// contains filtered or unexported fields
}

func (DescribeStandardsInput) MarshalFields added in v0.20.0

MarshalFields encodes the AWS API shape using the passed in protocol encoder.

func (DescribeStandardsInput) String added in v0.20.0

func (s DescribeStandardsInput) String() string

String returns the string representation

func (*DescribeStandardsInput) Validate added in v0.20.0

func (s *DescribeStandardsInput) Validate() error

Validate inspects the fields of the type to determine if they are valid.

type DescribeStandardsOutput added in v0.20.0

type DescribeStandardsOutput struct {

	// The pagination token to use to request the next page of results.
	NextToken *string `type:"string"`

	// A list of available standards.
	Standards []Standard `type:"list"`
	// contains filtered or unexported fields
}

func (DescribeStandardsOutput) MarshalFields added in v0.20.0

MarshalFields encodes the AWS API shape using the passed in protocol encoder.

func (DescribeStandardsOutput) String added in v0.20.0

func (s DescribeStandardsOutput) String() string

String returns the string representation

type DescribeStandardsPaginator added in v0.20.0

type DescribeStandardsPaginator struct {
	aws.Pager
}

DescribeStandardsPaginator is used to paginate the request. This can be done by calling Next and CurrentPage.

func NewDescribeStandardsPaginator added in v0.20.0

func NewDescribeStandardsPaginator(req DescribeStandardsRequest) DescribeStandardsPaginator

NewDescribeStandardsRequestPaginator returns a paginator for DescribeStandards. Use Next method to get the next page, and CurrentPage to get the current response page from the paginator. Next will return false, if there are no more pages, or an error was encountered.

Note: This operation can generate multiple requests to a service.

// Example iterating over pages.
req := client.DescribeStandardsRequest(input)
p := securityhub.NewDescribeStandardsRequestPaginator(req)

for p.Next(context.TODO()) {
    page := p.CurrentPage()
}

if err := p.Err(); err != nil {
    return err
}

func (*DescribeStandardsPaginator) CurrentPage added in v0.20.0

type DescribeStandardsRequest added in v0.20.0

type DescribeStandardsRequest struct {
	*aws.Request
	Input *DescribeStandardsInput
	Copy  func(*DescribeStandardsInput) DescribeStandardsRequest
}

DescribeStandardsRequest is the request type for the DescribeStandards API operation.

func (DescribeStandardsRequest) Send added in v0.20.0

Send marshals and sends the DescribeStandards API request.

type DescribeStandardsResponse added in v0.20.0

type DescribeStandardsResponse struct {
	*DescribeStandardsOutput
	// contains filtered or unexported fields
}

DescribeStandardsResponse is the response type for the DescribeStandards API operation.

func (*DescribeStandardsResponse) SDKResponseMetdata added in v0.20.0

func (r *DescribeStandardsResponse) SDKResponseMetdata() *aws.Response

SDKResponseMetdata returns the response metadata for the DescribeStandards request.

type DisableImportFindingsForProductInput

type DisableImportFindingsForProductInput struct {

	// The ARN of the integrated product to disable the integration for.
	//
	// ProductSubscriptionArn is a required field
	ProductSubscriptionArn *string `location:"uri" locationName:"ProductSubscriptionArn" type:"string" required:"true"`
	// contains filtered or unexported fields
}

func (DisableImportFindingsForProductInput) MarshalFields

MarshalFields encodes the AWS API shape using the passed in protocol encoder.

func (DisableImportFindingsForProductInput) String

String returns the string representation

func (*DisableImportFindingsForProductInput) Validate

Validate inspects the fields of the type to determine if they are valid.

type DisableImportFindingsForProductOutput

type DisableImportFindingsForProductOutput struct {
	// contains filtered or unexported fields
}

func (DisableImportFindingsForProductOutput) MarshalFields

MarshalFields encodes the AWS API shape using the passed in protocol encoder.

func (DisableImportFindingsForProductOutput) String

String returns the string representation

type DisableImportFindingsForProductRequest

type DisableImportFindingsForProductRequest struct {
	*aws.Request
	Input *DisableImportFindingsForProductInput
	Copy  func(*DisableImportFindingsForProductInput) DisableImportFindingsForProductRequest
}

DisableImportFindingsForProductRequest is the request type for the DisableImportFindingsForProduct API operation.

func (DisableImportFindingsForProductRequest) Send

Send marshals and sends the DisableImportFindingsForProduct API request.

type DisableImportFindingsForProductResponse added in v0.9.0

type DisableImportFindingsForProductResponse struct {
	*DisableImportFindingsForProductOutput
	// contains filtered or unexported fields
}

DisableImportFindingsForProductResponse is the response type for the DisableImportFindingsForProduct API operation.

func (*DisableImportFindingsForProductResponse) SDKResponseMetdata added in v0.9.0

func (r *DisableImportFindingsForProductResponse) SDKResponseMetdata() *aws.Response

SDKResponseMetdata returns the response metadata for the DisableImportFindingsForProduct request.

type DisableSecurityHubInput

type DisableSecurityHubInput struct {
	// contains filtered or unexported fields
}

func (DisableSecurityHubInput) MarshalFields

MarshalFields encodes the AWS API shape using the passed in protocol encoder.

func (DisableSecurityHubInput) String

func (s DisableSecurityHubInput) String() string

String returns the string representation

type DisableSecurityHubOutput

type DisableSecurityHubOutput struct {
	// contains filtered or unexported fields
}

func (DisableSecurityHubOutput) MarshalFields

MarshalFields encodes the AWS API shape using the passed in protocol encoder.

func (DisableSecurityHubOutput) String

func (s DisableSecurityHubOutput) String() string

String returns the string representation

type DisableSecurityHubRequest

type DisableSecurityHubRequest struct {
	*aws.Request
	Input *DisableSecurityHubInput
	Copy  func(*DisableSecurityHubInput) DisableSecurityHubRequest
}

DisableSecurityHubRequest is the request type for the DisableSecurityHub API operation.

func (DisableSecurityHubRequest) Send

Send marshals and sends the DisableSecurityHub API request.

type DisableSecurityHubResponse added in v0.9.0

type DisableSecurityHubResponse struct {
	*DisableSecurityHubOutput
	// contains filtered or unexported fields
}

DisableSecurityHubResponse is the response type for the DisableSecurityHub API operation.

func (*DisableSecurityHubResponse) SDKResponseMetdata added in v0.9.0

func (r *DisableSecurityHubResponse) SDKResponseMetdata() *aws.Response

SDKResponseMetdata returns the response metadata for the DisableSecurityHub request.

type DisassociateFromMasterAccountInput

type DisassociateFromMasterAccountInput struct {
	// contains filtered or unexported fields
}

func (DisassociateFromMasterAccountInput) MarshalFields

MarshalFields encodes the AWS API shape using the passed in protocol encoder.

func (DisassociateFromMasterAccountInput) String

String returns the string representation

type DisassociateFromMasterAccountOutput

type DisassociateFromMasterAccountOutput struct {
	// contains filtered or unexported fields
}

func (DisassociateFromMasterAccountOutput) MarshalFields

MarshalFields encodes the AWS API shape using the passed in protocol encoder.

func (DisassociateFromMasterAccountOutput) String

String returns the string representation

type DisassociateFromMasterAccountRequest

type DisassociateFromMasterAccountRequest struct {
	*aws.Request
	Input *DisassociateFromMasterAccountInput
	Copy  func(*DisassociateFromMasterAccountInput) DisassociateFromMasterAccountRequest
}

DisassociateFromMasterAccountRequest is the request type for the DisassociateFromMasterAccount API operation.

func (DisassociateFromMasterAccountRequest) Send

Send marshals and sends the DisassociateFromMasterAccount API request.

type DisassociateFromMasterAccountResponse added in v0.9.0

type DisassociateFromMasterAccountResponse struct {
	*DisassociateFromMasterAccountOutput
	// contains filtered or unexported fields
}

DisassociateFromMasterAccountResponse is the response type for the DisassociateFromMasterAccount API operation.

func (*DisassociateFromMasterAccountResponse) SDKResponseMetdata added in v0.9.0

func (r *DisassociateFromMasterAccountResponse) SDKResponseMetdata() *aws.Response

SDKResponseMetdata returns the response metadata for the DisassociateFromMasterAccount request.

type DisassociateMembersInput

type DisassociateMembersInput struct {

	// The account IDs of the member accounts to disassociate from the master account.
	AccountIds []string `type:"list"`
	// contains filtered or unexported fields
}

func (DisassociateMembersInput) MarshalFields

MarshalFields encodes the AWS API shape using the passed in protocol encoder.

func (DisassociateMembersInput) String

func (s DisassociateMembersInput) String() string

String returns the string representation

type DisassociateMembersOutput

type DisassociateMembersOutput struct {
	// contains filtered or unexported fields
}

func (DisassociateMembersOutput) MarshalFields

MarshalFields encodes the AWS API shape using the passed in protocol encoder.

func (DisassociateMembersOutput) String

func (s DisassociateMembersOutput) String() string

String returns the string representation

type DisassociateMembersRequest

type DisassociateMembersRequest struct {
	*aws.Request
	Input *DisassociateMembersInput
	Copy  func(*DisassociateMembersInput) DisassociateMembersRequest
}

DisassociateMembersRequest is the request type for the DisassociateMembers API operation.

func (DisassociateMembersRequest) Send

Send marshals and sends the DisassociateMembers API request.

type DisassociateMembersResponse added in v0.9.0

type DisassociateMembersResponse struct {
	*DisassociateMembersOutput
	// contains filtered or unexported fields
}

DisassociateMembersResponse is the response type for the DisassociateMembers API operation.

func (*DisassociateMembersResponse) SDKResponseMetdata added in v0.9.0

func (r *DisassociateMembersResponse) SDKResponseMetdata() *aws.Response

SDKResponseMetdata returns the response metadata for the DisassociateMembers request.

type EnableImportFindingsForProductInput

type EnableImportFindingsForProductInput struct {

	// The ARN of the product to enable the integration for.
	//
	// ProductArn is a required field
	ProductArn *string `type:"string" required:"true"`
	// contains filtered or unexported fields
}

func (EnableImportFindingsForProductInput) MarshalFields

MarshalFields encodes the AWS API shape using the passed in protocol encoder.

func (EnableImportFindingsForProductInput) String

String returns the string representation

func (*EnableImportFindingsForProductInput) Validate

Validate inspects the fields of the type to determine if they are valid.

type EnableImportFindingsForProductOutput

type EnableImportFindingsForProductOutput struct {

	// The ARN of your subscription to the product to enable integrations for.
	ProductSubscriptionArn *string `type:"string"`
	// contains filtered or unexported fields
}

func (EnableImportFindingsForProductOutput) MarshalFields

MarshalFields encodes the AWS API shape using the passed in protocol encoder.

func (EnableImportFindingsForProductOutput) String

String returns the string representation

type EnableImportFindingsForProductRequest

type EnableImportFindingsForProductRequest struct {
	*aws.Request
	Input *EnableImportFindingsForProductInput
	Copy  func(*EnableImportFindingsForProductInput) EnableImportFindingsForProductRequest
}

EnableImportFindingsForProductRequest is the request type for the EnableImportFindingsForProduct API operation.

func (EnableImportFindingsForProductRequest) Send

Send marshals and sends the EnableImportFindingsForProduct API request.

type EnableImportFindingsForProductResponse added in v0.9.0

type EnableImportFindingsForProductResponse struct {
	*EnableImportFindingsForProductOutput
	// contains filtered or unexported fields
}

EnableImportFindingsForProductResponse is the response type for the EnableImportFindingsForProduct API operation.

func (*EnableImportFindingsForProductResponse) SDKResponseMetdata added in v0.9.0

func (r *EnableImportFindingsForProductResponse) SDKResponseMetdata() *aws.Response

SDKResponseMetdata returns the response metadata for the EnableImportFindingsForProduct request.

type EnableSecurityHubInput

type EnableSecurityHubInput struct {

	// Whether to enable the security standards that Security Hub has designated
	// as automatically enabled. If you do not provide a value for EnableDefaultStandards,
	// it is set to true. To not enable the automatically enabled standards, set
	// EnableDefaultStandards to false.
	EnableDefaultStandards *bool `type:"boolean"`

	// The tags to add to the hub resource when you enable Security Hub.
	Tags map[string]string `min:"1" type:"map"`
	// contains filtered or unexported fields
}

func (EnableSecurityHubInput) MarshalFields

MarshalFields encodes the AWS API shape using the passed in protocol encoder.

func (EnableSecurityHubInput) String

func (s EnableSecurityHubInput) String() string

String returns the string representation

func (*EnableSecurityHubInput) Validate added in v0.10.0

func (s *EnableSecurityHubInput) Validate() error

Validate inspects the fields of the type to determine if they are valid.

type EnableSecurityHubOutput

type EnableSecurityHubOutput struct {
	// contains filtered or unexported fields
}

func (EnableSecurityHubOutput) MarshalFields

MarshalFields encodes the AWS API shape using the passed in protocol encoder.

func (EnableSecurityHubOutput) String

func (s EnableSecurityHubOutput) String() string

String returns the string representation

type EnableSecurityHubRequest

type EnableSecurityHubRequest struct {
	*aws.Request
	Input *EnableSecurityHubInput
	Copy  func(*EnableSecurityHubInput) EnableSecurityHubRequest
}

EnableSecurityHubRequest is the request type for the EnableSecurityHub API operation.

func (EnableSecurityHubRequest) Send

Send marshals and sends the EnableSecurityHub API request.

type EnableSecurityHubResponse added in v0.9.0

type EnableSecurityHubResponse struct {
	*EnableSecurityHubOutput
	// contains filtered or unexported fields
}

EnableSecurityHubResponse is the response type for the EnableSecurityHub API operation.

func (*EnableSecurityHubResponse) SDKResponseMetdata added in v0.9.0

func (r *EnableSecurityHubResponse) SDKResponseMetdata() *aws.Response

SDKResponseMetdata returns the response metadata for the EnableSecurityHub request.

type GetEnabledStandardsInput

type GetEnabledStandardsInput struct {

	// The maximum number of results to return in the response.
	MaxResults *int64 `min:"1" type:"integer"`

	// The token that is required for pagination. On your first call to the GetEnabledStandards
	// operation, set the value of this parameter to NULL.
	//
	// For subsequent calls to the operation, to continue listing data, set the
	// value of this parameter to the value returned from the previous response.
	NextToken *string `type:"string"`

	// The list of the standards subscription ARNs for the standards to retrieve.
	StandardsSubscriptionArns []string `min:"1" type:"list"`
	// contains filtered or unexported fields
}

func (GetEnabledStandardsInput) MarshalFields

MarshalFields encodes the AWS API shape using the passed in protocol encoder.

func (GetEnabledStandardsInput) String

func (s GetEnabledStandardsInput) String() string

String returns the string representation

func (*GetEnabledStandardsInput) Validate

func (s *GetEnabledStandardsInput) Validate() error

Validate inspects the fields of the type to determine if they are valid.

type GetEnabledStandardsOutput

type GetEnabledStandardsOutput struct {

	// The pagination token to use to request the next page of results.
	NextToken *string `type:"string"`

	// The list of StandardsSubscriptions objects that include information about
	// the enabled standards.
	StandardsSubscriptions []StandardsSubscription `type:"list"`
	// contains filtered or unexported fields
}

func (GetEnabledStandardsOutput) MarshalFields

MarshalFields encodes the AWS API shape using the passed in protocol encoder.

func (GetEnabledStandardsOutput) String

func (s GetEnabledStandardsOutput) String() string

String returns the string representation

type GetEnabledStandardsPaginator added in v0.20.0

type GetEnabledStandardsPaginator struct {
	aws.Pager
}

GetEnabledStandardsPaginator is used to paginate the request. This can be done by calling Next and CurrentPage.

func NewGetEnabledStandardsPaginator added in v0.20.0

func NewGetEnabledStandardsPaginator(req GetEnabledStandardsRequest) GetEnabledStandardsPaginator

NewGetEnabledStandardsRequestPaginator returns a paginator for GetEnabledStandards. Use Next method to get the next page, and CurrentPage to get the current response page from the paginator. Next will return false, if there are no more pages, or an error was encountered.

Note: This operation can generate multiple requests to a service.

// Example iterating over pages.
req := client.GetEnabledStandardsRequest(input)
p := securityhub.NewGetEnabledStandardsRequestPaginator(req)

for p.Next(context.TODO()) {
    page := p.CurrentPage()
}

if err := p.Err(); err != nil {
    return err
}

func (*GetEnabledStandardsPaginator) CurrentPage added in v0.20.0

type GetEnabledStandardsRequest

type GetEnabledStandardsRequest struct {
	*aws.Request
	Input *GetEnabledStandardsInput
	Copy  func(*GetEnabledStandardsInput) GetEnabledStandardsRequest
}

GetEnabledStandardsRequest is the request type for the GetEnabledStandards API operation.

func (GetEnabledStandardsRequest) Send

Send marshals and sends the GetEnabledStandards API request.

type GetEnabledStandardsResponse added in v0.9.0

type GetEnabledStandardsResponse struct {
	*GetEnabledStandardsOutput
	// contains filtered or unexported fields
}

GetEnabledStandardsResponse is the response type for the GetEnabledStandards API operation.

func (*GetEnabledStandardsResponse) SDKResponseMetdata added in v0.9.0

func (r *GetEnabledStandardsResponse) SDKResponseMetdata() *aws.Response

SDKResponseMetdata returns the response metadata for the GetEnabledStandards request.

type GetFindingsInput

type GetFindingsInput struct {

	// The finding attributes used to define a condition to filter the returned
	// findings.
	Filters *AwsSecurityFindingFilters `type:"structure"`

	// The maximum number of findings to return.
	MaxResults *int64 `min:"1" type:"integer"`

	// The token that is required for pagination. On your first call to the GetFindings
	// operation, set the value of this parameter to NULL.
	//
	// For subsequent calls to the operation, to continue listing data, set the
	// value of this parameter to the value returned from the previous response.
	NextToken *string `type:"string"`

	// The finding attributes used to sort the list of returned findings.
	SortCriteria []SortCriterion `type:"list"`
	// contains filtered or unexported fields
}

func (GetFindingsInput) MarshalFields

func (s GetFindingsInput) MarshalFields(e protocol.FieldEncoder) error

MarshalFields encodes the AWS API shape using the passed in protocol encoder.

func (GetFindingsInput) String

func (s GetFindingsInput) String() string

String returns the string representation

func (*GetFindingsInput) Validate

func (s *GetFindingsInput) Validate() error

Validate inspects the fields of the type to determine if they are valid.

type GetFindingsOutput

type GetFindingsOutput struct {

	// The findings that matched the filters specified in the request.
	//
	// Findings is a required field
	Findings []AwsSecurityFinding `type:"list" required:"true"`

	// The pagination token to use to request the next page of results.
	NextToken *string `type:"string"`
	// contains filtered or unexported fields
}

func (GetFindingsOutput) MarshalFields

func (s GetFindingsOutput) MarshalFields(e protocol.FieldEncoder) error

MarshalFields encodes the AWS API shape using the passed in protocol encoder.

func (GetFindingsOutput) String

func (s GetFindingsOutput) String() string

String returns the string representation

type GetFindingsPaginator added in v0.9.0

type GetFindingsPaginator struct {
	aws.Pager
}

GetFindingsPaginator is used to paginate the request. This can be done by calling Next and CurrentPage.

func NewGetFindingsPaginator added in v0.9.0

func NewGetFindingsPaginator(req GetFindingsRequest) GetFindingsPaginator

NewGetFindingsRequestPaginator returns a paginator for GetFindings. Use Next method to get the next page, and CurrentPage to get the current response page from the paginator. Next will return false, if there are no more pages, or an error was encountered.

Note: This operation can generate multiple requests to a service.

// Example iterating over pages.
req := client.GetFindingsRequest(input)
p := securityhub.NewGetFindingsRequestPaginator(req)

for p.Next(context.TODO()) {
    page := p.CurrentPage()
}

if err := p.Err(); err != nil {
    return err
}

func (*GetFindingsPaginator) CurrentPage added in v0.9.0

func (p *GetFindingsPaginator) CurrentPage() *GetFindingsOutput

type GetFindingsRequest

type GetFindingsRequest struct {
	*aws.Request
	Input *GetFindingsInput
	Copy  func(*GetFindingsInput) GetFindingsRequest
}

GetFindingsRequest is the request type for the GetFindings API operation.

func (GetFindingsRequest) Send

Send marshals and sends the GetFindings API request.

type GetFindingsResponse added in v0.9.0

type GetFindingsResponse struct {
	*GetFindingsOutput
	// contains filtered or unexported fields
}

GetFindingsResponse is the response type for the GetFindings API operation.

func (*GetFindingsResponse) SDKResponseMetdata added in v0.9.0

func (r *GetFindingsResponse) SDKResponseMetdata() *aws.Response

SDKResponseMetdata returns the response metadata for the GetFindings request.

type GetInsightResultsInput

type GetInsightResultsInput struct {

	// The ARN of the insight for which to return results.
	//
	// InsightArn is a required field
	InsightArn *string `location:"uri" locationName:"InsightArn" type:"string" required:"true"`
	// contains filtered or unexported fields
}

func (GetInsightResultsInput) MarshalFields

MarshalFields encodes the AWS API shape using the passed in protocol encoder.

func (GetInsightResultsInput) String

func (s GetInsightResultsInput) String() string

String returns the string representation

func (*GetInsightResultsInput) Validate

func (s *GetInsightResultsInput) Validate() error

Validate inspects the fields of the type to determine if they are valid.

type GetInsightResultsOutput

type GetInsightResultsOutput struct {

	// The insight results returned by the operation.
	//
	// InsightResults is a required field
	InsightResults *InsightResults `type:"structure" required:"true"`
	// contains filtered or unexported fields
}

func (GetInsightResultsOutput) MarshalFields

MarshalFields encodes the AWS API shape using the passed in protocol encoder.

func (GetInsightResultsOutput) String

func (s GetInsightResultsOutput) String() string

String returns the string representation

type GetInsightResultsRequest

type GetInsightResultsRequest struct {
	*aws.Request
	Input *GetInsightResultsInput
	Copy  func(*GetInsightResultsInput) GetInsightResultsRequest
}

GetInsightResultsRequest is the request type for the GetInsightResults API operation.

func (GetInsightResultsRequest) Send

Send marshals and sends the GetInsightResults API request.

type GetInsightResultsResponse added in v0.9.0

type GetInsightResultsResponse struct {
	*GetInsightResultsOutput
	// contains filtered or unexported fields
}

GetInsightResultsResponse is the response type for the GetInsightResults API operation.

func (*GetInsightResultsResponse) SDKResponseMetdata added in v0.9.0

func (r *GetInsightResultsResponse) SDKResponseMetdata() *aws.Response

SDKResponseMetdata returns the response metadata for the GetInsightResults request.

type GetInsightsInput

type GetInsightsInput struct {

	// The ARNs of the insights to describe. If you do not provide any insight ARNs,
	// then GetInsights returns all of your custom insights. It does not return
	// any managed insights.
	InsightArns []string `type:"list"`

	// The maximum number of items to return in the response.
	MaxResults *int64 `min:"1" type:"integer"`

	// The token that is required for pagination. On your first call to the GetInsights
	// operation, set the value of this parameter to NULL.
	//
	// For subsequent calls to the operation, to continue listing data, set the
	// value of this parameter to the value returned from the previous response.
	NextToken *string `type:"string"`
	// contains filtered or unexported fields
}

func (GetInsightsInput) MarshalFields

func (s GetInsightsInput) MarshalFields(e protocol.FieldEncoder) error

MarshalFields encodes the AWS API shape using the passed in protocol encoder.

func (GetInsightsInput) String

func (s GetInsightsInput) String() string

String returns the string representation

func (*GetInsightsInput) Validate

func (s *GetInsightsInput) Validate() error

Validate inspects the fields of the type to determine if they are valid.

type GetInsightsOutput

type GetInsightsOutput struct {

	// The insights returned by the operation.
	//
	// Insights is a required field
	Insights []Insight `type:"list" required:"true"`

	// The pagination token to use to request the next page of results.
	NextToken *string `type:"string"`
	// contains filtered or unexported fields
}

func (GetInsightsOutput) MarshalFields

func (s GetInsightsOutput) MarshalFields(e protocol.FieldEncoder) error

MarshalFields encodes the AWS API shape using the passed in protocol encoder.

func (GetInsightsOutput) String

func (s GetInsightsOutput) String() string

String returns the string representation

type GetInsightsPaginator added in v0.9.0

type GetInsightsPaginator struct {
	aws.Pager
}

GetInsightsPaginator is used to paginate the request. This can be done by calling Next and CurrentPage.

func NewGetInsightsPaginator added in v0.9.0

func NewGetInsightsPaginator(req GetInsightsRequest) GetInsightsPaginator

NewGetInsightsRequestPaginator returns a paginator for GetInsights. Use Next method to get the next page, and CurrentPage to get the current response page from the paginator. Next will return false, if there are no more pages, or an error was encountered.

Note: This operation can generate multiple requests to a service.

// Example iterating over pages.
req := client.GetInsightsRequest(input)
p := securityhub.NewGetInsightsRequestPaginator(req)

for p.Next(context.TODO()) {
    page := p.CurrentPage()
}

if err := p.Err(); err != nil {
    return err
}

func (*GetInsightsPaginator) CurrentPage added in v0.9.0

func (p *GetInsightsPaginator) CurrentPage() *GetInsightsOutput

type GetInsightsRequest

type GetInsightsRequest struct {
	*aws.Request
	Input *GetInsightsInput
	Copy  func(*GetInsightsInput) GetInsightsRequest
}

GetInsightsRequest is the request type for the GetInsights API operation.

func (GetInsightsRequest) Send

Send marshals and sends the GetInsights API request.

type GetInsightsResponse added in v0.9.0

type GetInsightsResponse struct {
	*GetInsightsOutput
	// contains filtered or unexported fields
}

GetInsightsResponse is the response type for the GetInsights API operation.

func (*GetInsightsResponse) SDKResponseMetdata added in v0.9.0

func (r *GetInsightsResponse) SDKResponseMetdata() *aws.Response

SDKResponseMetdata returns the response metadata for the GetInsights request.

type GetInvitationsCountInput

type GetInvitationsCountInput struct {
	// contains filtered or unexported fields
}

func (GetInvitationsCountInput) MarshalFields

MarshalFields encodes the AWS API shape using the passed in protocol encoder.

func (GetInvitationsCountInput) String

func (s GetInvitationsCountInput) String() string

String returns the string representation

type GetInvitationsCountOutput

type GetInvitationsCountOutput struct {

	// The number of all membership invitations sent to this Security Hub member
	// account, not including the currently accepted invitation.
	InvitationsCount *int64 `type:"integer"`
	// contains filtered or unexported fields
}

func (GetInvitationsCountOutput) MarshalFields

MarshalFields encodes the AWS API shape using the passed in protocol encoder.

func (GetInvitationsCountOutput) String

func (s GetInvitationsCountOutput) String() string

String returns the string representation

type GetInvitationsCountRequest

type GetInvitationsCountRequest struct {
	*aws.Request
	Input *GetInvitationsCountInput
	Copy  func(*GetInvitationsCountInput) GetInvitationsCountRequest
}

GetInvitationsCountRequest is the request type for the GetInvitationsCount API operation.

func (GetInvitationsCountRequest) Send

Send marshals and sends the GetInvitationsCount API request.

type GetInvitationsCountResponse added in v0.9.0

type GetInvitationsCountResponse struct {
	*GetInvitationsCountOutput
	// contains filtered or unexported fields
}

GetInvitationsCountResponse is the response type for the GetInvitationsCount API operation.

func (*GetInvitationsCountResponse) SDKResponseMetdata added in v0.9.0

func (r *GetInvitationsCountResponse) SDKResponseMetdata() *aws.Response

SDKResponseMetdata returns the response metadata for the GetInvitationsCount request.

type GetMasterAccountInput

type GetMasterAccountInput struct {
	// contains filtered or unexported fields
}

func (GetMasterAccountInput) MarshalFields

func (s GetMasterAccountInput) MarshalFields(e protocol.FieldEncoder) error

MarshalFields encodes the AWS API shape using the passed in protocol encoder.

func (GetMasterAccountInput) String

func (s GetMasterAccountInput) String() string

String returns the string representation

type GetMasterAccountOutput

type GetMasterAccountOutput struct {

	// A list of details about the Security Hub master account for the current member
	// account.
	Master *Invitation `type:"structure"`
	// contains filtered or unexported fields
}

func (GetMasterAccountOutput) MarshalFields

MarshalFields encodes the AWS API shape using the passed in protocol encoder.

func (GetMasterAccountOutput) String

func (s GetMasterAccountOutput) String() string

String returns the string representation

type GetMasterAccountRequest

type GetMasterAccountRequest struct {
	*aws.Request
	Input *GetMasterAccountInput
	Copy  func(*GetMasterAccountInput) GetMasterAccountRequest
}

GetMasterAccountRequest is the request type for the GetMasterAccount API operation.

func (GetMasterAccountRequest) Send

Send marshals and sends the GetMasterAccount API request.

type GetMasterAccountResponse added in v0.9.0

type GetMasterAccountResponse struct {
	*GetMasterAccountOutput
	// contains filtered or unexported fields
}

GetMasterAccountResponse is the response type for the GetMasterAccount API operation.

func (*GetMasterAccountResponse) SDKResponseMetdata added in v0.9.0

func (r *GetMasterAccountResponse) SDKResponseMetdata() *aws.Response

SDKResponseMetdata returns the response metadata for the GetMasterAccount request.

type GetMembersInput

type GetMembersInput struct {

	// The list of account IDs for the Security Hub member accounts to return the
	// details for.
	//
	// AccountIds is a required field
	AccountIds []string `type:"list" required:"true"`
	// contains filtered or unexported fields
}

func (GetMembersInput) MarshalFields

func (s GetMembersInput) MarshalFields(e protocol.FieldEncoder) error

MarshalFields encodes the AWS API shape using the passed in protocol encoder.

func (GetMembersInput) String

func (s GetMembersInput) String() string

String returns the string representation

func (*GetMembersInput) Validate

func (s *GetMembersInput) Validate() error

Validate inspects the fields of the type to determine if they are valid.

type GetMembersOutput

type GetMembersOutput struct {

	// The list of details about the Security Hub member accounts.
	Members []Member `type:"list"`

	// The list of AWS accounts that could not be processed. For each account, the
	// list includes the account ID and the email address.
	UnprocessedAccounts []Result `type:"list"`
	// contains filtered or unexported fields
}

func (GetMembersOutput) MarshalFields

func (s GetMembersOutput) MarshalFields(e protocol.FieldEncoder) error

MarshalFields encodes the AWS API shape using the passed in protocol encoder.

func (GetMembersOutput) String

func (s GetMembersOutput) String() string

String returns the string representation

type GetMembersRequest

type GetMembersRequest struct {
	*aws.Request
	Input *GetMembersInput
	Copy  func(*GetMembersInput) GetMembersRequest
}

GetMembersRequest is the request type for the GetMembers API operation.

func (GetMembersRequest) Send

Send marshals and sends the GetMembers API request.

type GetMembersResponse added in v0.9.0

type GetMembersResponse struct {
	*GetMembersOutput
	// contains filtered or unexported fields
}

GetMembersResponse is the response type for the GetMembers API operation.

func (*GetMembersResponse) SDKResponseMetdata added in v0.9.0

func (r *GetMembersResponse) SDKResponseMetdata() *aws.Response

SDKResponseMetdata returns the response metadata for the GetMembers request.

type ImportFindingsError

type ImportFindingsError struct {

	// The code of the error returned by the BatchImportFindings operation.
	//
	// ErrorCode is a required field
	ErrorCode *string `type:"string" required:"true"`

	// The message of the error returned by the BatchImportFindings operation.
	//
	// ErrorMessage is a required field
	ErrorMessage *string `type:"string" required:"true"`

	// The identifier of the finding that could not be updated.
	//
	// Id is a required field
	Id *string `type:"string" required:"true"`
	// contains filtered or unexported fields
}

The list of the findings that cannot be imported. For each finding, the list provides the error.

func (ImportFindingsError) MarshalFields

func (s ImportFindingsError) MarshalFields(e protocol.FieldEncoder) error

MarshalFields encodes the AWS API shape using the passed in protocol encoder.

func (ImportFindingsError) String

func (s ImportFindingsError) String() string

String returns the string representation

type Insight

type Insight struct {

	// One or more attributes used to filter the findings included in the insight.
	// The insight only includes findings that match the criteria defined in the
	// filters.
	//
	// Filters is a required field
	Filters *AwsSecurityFindingFilters `type:"structure" required:"true"`

	// The grouping attribute for the insight's findings. Indicates how to group
	// the matching findings, and identifies the type of item that the insight applies
	// to. For example, if an insight is grouped by resource identifier, then the
	// insight produces a list of resource identifiers.
	//
	// GroupByAttribute is a required field
	GroupByAttribute *string `type:"string" required:"true"`

	// The ARN of a Security Hub insight.
	//
	// InsightArn is a required field
	InsightArn *string `type:"string" required:"true"`

	// The name of a Security Hub insight.
	//
	// Name is a required field
	Name *string `type:"string" required:"true"`
	// contains filtered or unexported fields
}

Contains information about a Security Hub insight.

func (Insight) MarshalFields

func (s Insight) MarshalFields(e protocol.FieldEncoder) error

MarshalFields encodes the AWS API shape using the passed in protocol encoder.

func (Insight) String

func (s Insight) String() string

String returns the string representation

type InsightResultValue

type InsightResultValue struct {

	// The number of findings returned for each GroupByAttributeValue.
	//
	// Count is a required field
	Count *int64 `type:"integer" required:"true"`

	// The value of the attribute that the findings are grouped by for the insight
	// whose results are returned by the GetInsightResults operation.
	//
	// GroupByAttributeValue is a required field
	GroupByAttributeValue *string `type:"string" required:"true"`
	// contains filtered or unexported fields
}

The insight result values returned by the GetInsightResults operation.

func (InsightResultValue) MarshalFields

func (s InsightResultValue) MarshalFields(e protocol.FieldEncoder) error

MarshalFields encodes the AWS API shape using the passed in protocol encoder.

func (InsightResultValue) String

func (s InsightResultValue) String() string

String returns the string representation

type InsightResults

type InsightResults struct {

	// The attribute that the findings are grouped by for the insight whose results
	// are returned by the GetInsightResults operation.
	//
	// GroupByAttribute is a required field
	GroupByAttribute *string `type:"string" required:"true"`

	// The ARN of the insight whose results are returned by the GetInsightResults
	// operation.
	//
	// InsightArn is a required field
	InsightArn *string `type:"string" required:"true"`

	// The list of insight result values returned by the GetInsightResults operation.
	//
	// ResultValues is a required field
	ResultValues []InsightResultValue `type:"list" required:"true"`
	// contains filtered or unexported fields
}

The insight results returned by the GetInsightResults operation.

func (InsightResults) MarshalFields

func (s InsightResults) MarshalFields(e protocol.FieldEncoder) error

MarshalFields encodes the AWS API shape using the passed in protocol encoder.

func (InsightResults) String

func (s InsightResults) String() string

String returns the string representation

type IntegrationType added in v0.20.0

type IntegrationType string
const (
	IntegrationTypeSendFindingsToSecurityHub      IntegrationType = "SEND_FINDINGS_TO_SECURITY_HUB"
	IntegrationTypeReceiveFindingsFromSecurityHub IntegrationType = "RECEIVE_FINDINGS_FROM_SECURITY_HUB"
)

Enum values for IntegrationType

func (IntegrationType) MarshalValue added in v0.20.0

func (enum IntegrationType) MarshalValue() (string, error)

func (IntegrationType) MarshalValueBuf added in v0.20.0

func (enum IntegrationType) MarshalValueBuf(b []byte) ([]byte, error)

type Invitation

type Invitation struct {

	// The account ID of the Security Hub master account that the invitation was
	// sent from.
	AccountId *string `type:"string"`

	// The ID of the invitation sent to the member account.
	InvitationId *string `type:"string"`

	// The timestamp of when the invitation was sent.
	InvitedAt *time.Time `type:"timestamp" timestampFormat:"iso8601"`

	// The current status of the association between the member and master accounts.
	MemberStatus *string `type:"string"`
	// contains filtered or unexported fields
}

Details about an invitation.

func (Invitation) MarshalFields

func (s Invitation) MarshalFields(e protocol.FieldEncoder) error

MarshalFields encodes the AWS API shape using the passed in protocol encoder.

func (Invitation) String

func (s Invitation) String() string

String returns the string representation

type InviteMembersInput

type InviteMembersInput struct {

	// The list of account IDs of the AWS accounts to invite to Security Hub as
	// members.
	AccountIds []string `type:"list"`
	// contains filtered or unexported fields
}

func (InviteMembersInput) MarshalFields

func (s InviteMembersInput) MarshalFields(e protocol.FieldEncoder) error

MarshalFields encodes the AWS API shape using the passed in protocol encoder.

func (InviteMembersInput) String

func (s InviteMembersInput) String() string

String returns the string representation

type InviteMembersOutput

type InviteMembersOutput struct {

	// The list of AWS accounts that could not be processed. For each account, the
	// list includes the account ID and the email address.
	UnprocessedAccounts []Result `type:"list"`
	// contains filtered or unexported fields
}

func (InviteMembersOutput) MarshalFields

func (s InviteMembersOutput) MarshalFields(e protocol.FieldEncoder) error

MarshalFields encodes the AWS API shape using the passed in protocol encoder.

func (InviteMembersOutput) String

func (s InviteMembersOutput) String() string

String returns the string representation

type InviteMembersRequest

type InviteMembersRequest struct {
	*aws.Request
	Input *InviteMembersInput
	Copy  func(*InviteMembersInput) InviteMembersRequest
}

InviteMembersRequest is the request type for the InviteMembers API operation.

func (InviteMembersRequest) Send

Send marshals and sends the InviteMembers API request.

type InviteMembersResponse added in v0.9.0

type InviteMembersResponse struct {
	*InviteMembersOutput
	// contains filtered or unexported fields
}

InviteMembersResponse is the response type for the InviteMembers API operation.

func (*InviteMembersResponse) SDKResponseMetdata added in v0.9.0

func (r *InviteMembersResponse) SDKResponseMetdata() *aws.Response

SDKResponseMetdata returns the response metadata for the InviteMembers request.

type IpFilter

type IpFilter struct {

	// A finding's CIDR value.
	Cidr *string `type:"string"`
	// contains filtered or unexported fields
}

The IP filter for querying findings.

func (IpFilter) MarshalFields

func (s IpFilter) MarshalFields(e protocol.FieldEncoder) error

MarshalFields encodes the AWS API shape using the passed in protocol encoder.

func (IpFilter) String

func (s IpFilter) String() string

String returns the string representation

type Ipv6CidrBlockAssociation added in v0.24.0

type Ipv6CidrBlockAssociation struct {

	// The association ID for the IPv6 CIDR block.
	AssociationId *string `type:"string"`

	// Information about the state of the CIDR block.
	CidrBlockState *string `type:"string"`

	// The IPv6 CIDR block.
	Ipv6CidrBlock *string `type:"string"`
	// contains filtered or unexported fields
}

An IPV6 CIDR block association.

func (Ipv6CidrBlockAssociation) MarshalFields added in v0.24.0

MarshalFields encodes the AWS API shape using the passed in protocol encoder.

func (Ipv6CidrBlockAssociation) String added in v0.24.0

func (s Ipv6CidrBlockAssociation) String() string

String returns the string representation

type KeywordFilter

type KeywordFilter struct {

	// A value for the keyword.
	Value *string `type:"string"`
	// contains filtered or unexported fields
}

A keyword filter for querying findings.

func (KeywordFilter) MarshalFields

func (s KeywordFilter) MarshalFields(e protocol.FieldEncoder) error

MarshalFields encodes the AWS API shape using the passed in protocol encoder.

func (KeywordFilter) String

func (s KeywordFilter) String() string

String returns the string representation

type ListEnabledProductsForImportInput

type ListEnabledProductsForImportInput struct {

	// The maximum number of items to return in the response.
	MaxResults *int64 `location:"querystring" locationName:"MaxResults" min:"1" type:"integer"`

	// The token that is required for pagination. On your first call to the ListEnabledProductsForImport
	// operation, set the value of this parameter to NULL.
	//
	// For subsequent calls to the operation, to continue listing data, set the
	// value of this parameter to the value returned from the previous response.
	NextToken *string `location:"querystring" locationName:"NextToken" type:"string"`
	// contains filtered or unexported fields
}

func (ListEnabledProductsForImportInput) MarshalFields

MarshalFields encodes the AWS API shape using the passed in protocol encoder.

func (ListEnabledProductsForImportInput) String

String returns the string representation

func (*ListEnabledProductsForImportInput) Validate

Validate inspects the fields of the type to determine if they are valid.

type ListEnabledProductsForImportOutput

type ListEnabledProductsForImportOutput struct {

	// The pagination token to use to request the next page of results.
	NextToken *string `type:"string"`

	// The list of ARNs for the resources that represent your subscriptions to products.
	ProductSubscriptions []string `type:"list"`
	// contains filtered or unexported fields
}

func (ListEnabledProductsForImportOutput) MarshalFields

MarshalFields encodes the AWS API shape using the passed in protocol encoder.

func (ListEnabledProductsForImportOutput) String

String returns the string representation

type ListEnabledProductsForImportPaginator added in v0.9.0

type ListEnabledProductsForImportPaginator struct {
	aws.Pager
}

ListEnabledProductsForImportPaginator is used to paginate the request. This can be done by calling Next and CurrentPage.

func NewListEnabledProductsForImportPaginator added in v0.9.0

func NewListEnabledProductsForImportPaginator(req ListEnabledProductsForImportRequest) ListEnabledProductsForImportPaginator

NewListEnabledProductsForImportRequestPaginator returns a paginator for ListEnabledProductsForImport. Use Next method to get the next page, and CurrentPage to get the current response page from the paginator. Next will return false, if there are no more pages, or an error was encountered.

Note: This operation can generate multiple requests to a service.

// Example iterating over pages.
req := client.ListEnabledProductsForImportRequest(input)
p := securityhub.NewListEnabledProductsForImportRequestPaginator(req)

for p.Next(context.TODO()) {
    page := p.CurrentPage()
}

if err := p.Err(); err != nil {
    return err
}

func (*ListEnabledProductsForImportPaginator) CurrentPage added in v0.9.0

type ListEnabledProductsForImportRequest

type ListEnabledProductsForImportRequest struct {
	*aws.Request
	Input *ListEnabledProductsForImportInput
	Copy  func(*ListEnabledProductsForImportInput) ListEnabledProductsForImportRequest
}

ListEnabledProductsForImportRequest is the request type for the ListEnabledProductsForImport API operation.

func (ListEnabledProductsForImportRequest) Send

Send marshals and sends the ListEnabledProductsForImport API request.

type ListEnabledProductsForImportResponse added in v0.9.0

type ListEnabledProductsForImportResponse struct {
	*ListEnabledProductsForImportOutput
	// contains filtered or unexported fields
}

ListEnabledProductsForImportResponse is the response type for the ListEnabledProductsForImport API operation.

func (*ListEnabledProductsForImportResponse) SDKResponseMetdata added in v0.9.0

func (r *ListEnabledProductsForImportResponse) SDKResponseMetdata() *aws.Response

SDKResponseMetdata returns the response metadata for the ListEnabledProductsForImport request.

type ListInvitationsInput

type ListInvitationsInput struct {

	// The maximum number of items to return in the response.
	MaxResults *int64 `location:"querystring" locationName:"MaxResults" min:"1" type:"integer"`

	// The token that is required for pagination. On your first call to the ListInvitations
	// operation, set the value of this parameter to NULL.
	//
	// For subsequent calls to the operation, to continue listing data, set the
	// value of this parameter to the value returned from the previous response.
	NextToken *string `location:"querystring" locationName:"NextToken" type:"string"`
	// contains filtered or unexported fields
}

func (ListInvitationsInput) MarshalFields

func (s ListInvitationsInput) MarshalFields(e protocol.FieldEncoder) error

MarshalFields encodes the AWS API shape using the passed in protocol encoder.

func (ListInvitationsInput) String

func (s ListInvitationsInput) String() string

String returns the string representation

func (*ListInvitationsInput) Validate

func (s *ListInvitationsInput) Validate() error

Validate inspects the fields of the type to determine if they are valid.

type ListInvitationsOutput

type ListInvitationsOutput struct {

	// The details of the invitations returned by the operation.
	Invitations []Invitation `type:"list"`

	// The pagination token to use to request the next page of results.
	NextToken *string `type:"string"`
	// contains filtered or unexported fields
}

func (ListInvitationsOutput) MarshalFields

func (s ListInvitationsOutput) MarshalFields(e protocol.FieldEncoder) error

MarshalFields encodes the AWS API shape using the passed in protocol encoder.

func (ListInvitationsOutput) String

func (s ListInvitationsOutput) String() string

String returns the string representation

type ListInvitationsPaginator added in v0.20.0

type ListInvitationsPaginator struct {
	aws.Pager
}

ListInvitationsPaginator is used to paginate the request. This can be done by calling Next and CurrentPage.

func NewListInvitationsPaginator added in v0.20.0

func NewListInvitationsPaginator(req ListInvitationsRequest) ListInvitationsPaginator

NewListInvitationsRequestPaginator returns a paginator for ListInvitations. Use Next method to get the next page, and CurrentPage to get the current response page from the paginator. Next will return false, if there are no more pages, or an error was encountered.

Note: This operation can generate multiple requests to a service.

// Example iterating over pages.
req := client.ListInvitationsRequest(input)
p := securityhub.NewListInvitationsRequestPaginator(req)

for p.Next(context.TODO()) {
    page := p.CurrentPage()
}

if err := p.Err(); err != nil {
    return err
}

func (*ListInvitationsPaginator) CurrentPage added in v0.20.0

type ListInvitationsRequest

type ListInvitationsRequest struct {
	*aws.Request
	Input *ListInvitationsInput
	Copy  func(*ListInvitationsInput) ListInvitationsRequest
}

ListInvitationsRequest is the request type for the ListInvitations API operation.

func (ListInvitationsRequest) Send

Send marshals and sends the ListInvitations API request.

type ListInvitationsResponse added in v0.9.0

type ListInvitationsResponse struct {
	*ListInvitationsOutput
	// contains filtered or unexported fields
}

ListInvitationsResponse is the response type for the ListInvitations API operation.

func (*ListInvitationsResponse) SDKResponseMetdata added in v0.9.0

func (r *ListInvitationsResponse) SDKResponseMetdata() *aws.Response

SDKResponseMetdata returns the response metadata for the ListInvitations request.

type ListMembersInput

type ListMembersInput struct {

	// The maximum number of items to return in the response.
	MaxResults *int64 `location:"querystring" locationName:"MaxResults" min:"1" type:"integer"`

	// The token that is required for pagination. On your first call to the ListMembers
	// operation, set the value of this parameter to NULL.
	//
	// For subsequent calls to the operation, to continue listing data, set the
	// value of this parameter to the value returned from the previous response.
	NextToken *string `location:"querystring" locationName:"NextToken" type:"string"`

	// Specifies which member accounts to include in the response based on their
	// relationship status with the master account. The default value is TRUE.
	//
	// If OnlyAssociated is set to TRUE, the response includes member accounts whose
	// relationship status with the master is set to ENABLED or DISABLED.
	//
	// If OnlyAssociated is set to FALSE, the response includes all existing member
	// accounts.
	OnlyAssociated *bool `location:"querystring" locationName:"OnlyAssociated" type:"boolean"`
	// contains filtered or unexported fields
}

func (ListMembersInput) MarshalFields

func (s ListMembersInput) MarshalFields(e protocol.FieldEncoder) error

MarshalFields encodes the AWS API shape using the passed in protocol encoder.

func (ListMembersInput) String

func (s ListMembersInput) String() string

String returns the string representation

func (*ListMembersInput) Validate

func (s *ListMembersInput) Validate() error

Validate inspects the fields of the type to determine if they are valid.

type ListMembersOutput

type ListMembersOutput struct {

	// Member details returned by the operation.
	Members []Member `type:"list"`

	// The pagination token to use to request the next page of results.
	NextToken *string `type:"string"`
	// contains filtered or unexported fields
}

func (ListMembersOutput) MarshalFields

func (s ListMembersOutput) MarshalFields(e protocol.FieldEncoder) error

MarshalFields encodes the AWS API shape using the passed in protocol encoder.

func (ListMembersOutput) String

func (s ListMembersOutput) String() string

String returns the string representation

type ListMembersPaginator added in v0.20.0

type ListMembersPaginator struct {
	aws.Pager
}

ListMembersPaginator is used to paginate the request. This can be done by calling Next and CurrentPage.

func NewListMembersPaginator added in v0.20.0

func NewListMembersPaginator(req ListMembersRequest) ListMembersPaginator

NewListMembersRequestPaginator returns a paginator for ListMembers. Use Next method to get the next page, and CurrentPage to get the current response page from the paginator. Next will return false, if there are no more pages, or an error was encountered.

Note: This operation can generate multiple requests to a service.

// Example iterating over pages.
req := client.ListMembersRequest(input)
p := securityhub.NewListMembersRequestPaginator(req)

for p.Next(context.TODO()) {
    page := p.CurrentPage()
}

if err := p.Err(); err != nil {
    return err
}

func (*ListMembersPaginator) CurrentPage added in v0.20.0

func (p *ListMembersPaginator) CurrentPage() *ListMembersOutput

type ListMembersRequest

type ListMembersRequest struct {
	*aws.Request
	Input *ListMembersInput
	Copy  func(*ListMembersInput) ListMembersRequest
}

ListMembersRequest is the request type for the ListMembers API operation.

func (ListMembersRequest) Send

Send marshals and sends the ListMembers API request.

type ListMembersResponse added in v0.9.0

type ListMembersResponse struct {
	*ListMembersOutput
	// contains filtered or unexported fields
}

ListMembersResponse is the response type for the ListMembers API operation.

func (*ListMembersResponse) SDKResponseMetdata added in v0.9.0

func (r *ListMembersResponse) SDKResponseMetdata() *aws.Response

SDKResponseMetdata returns the response metadata for the ListMembers request.

type ListTagsForResourceInput added in v0.10.0

type ListTagsForResourceInput struct {

	// The ARN of the resource to retrieve tags for.
	//
	// ResourceArn is a required field
	ResourceArn *string `location:"uri" locationName:"ResourceArn" type:"string" required:"true"`
	// contains filtered or unexported fields
}

func (ListTagsForResourceInput) MarshalFields added in v0.10.0

MarshalFields encodes the AWS API shape using the passed in protocol encoder.

func (ListTagsForResourceInput) String added in v0.10.0

func (s ListTagsForResourceInput) String() string

String returns the string representation

func (*ListTagsForResourceInput) Validate added in v0.10.0

func (s *ListTagsForResourceInput) Validate() error

Validate inspects the fields of the type to determine if they are valid.

type ListTagsForResourceOutput added in v0.10.0

type ListTagsForResourceOutput struct {

	// The tags associated with a resource.
	Tags map[string]string `min:"1" type:"map"`
	// contains filtered or unexported fields
}

func (ListTagsForResourceOutput) MarshalFields added in v0.10.0

MarshalFields encodes the AWS API shape using the passed in protocol encoder.

func (ListTagsForResourceOutput) String added in v0.10.0

func (s ListTagsForResourceOutput) String() string

String returns the string representation

type ListTagsForResourceRequest added in v0.10.0

type ListTagsForResourceRequest struct {
	*aws.Request
	Input *ListTagsForResourceInput
	Copy  func(*ListTagsForResourceInput) ListTagsForResourceRequest
}

ListTagsForResourceRequest is the request type for the ListTagsForResource API operation.

func (ListTagsForResourceRequest) Send added in v0.10.0

Send marshals and sends the ListTagsForResource API request.

type ListTagsForResourceResponse added in v0.10.0

type ListTagsForResourceResponse struct {
	*ListTagsForResourceOutput
	// contains filtered or unexported fields
}

ListTagsForResourceResponse is the response type for the ListTagsForResource API operation.

func (*ListTagsForResourceResponse) SDKResponseMetdata added in v0.10.0

func (r *ListTagsForResourceResponse) SDKResponseMetdata() *aws.Response

SDKResponseMetdata returns the response metadata for the ListTagsForResource request.

type LoadBalancerState added in v0.19.0

type LoadBalancerState struct {

	// The state code. The initial state of the load balancer is provisioning.
	//
	// After the load balancer is fully set up and ready to route traffic, its state
	// is active.
	//
	// If the load balancer could not be set up, its state is failed.
	Code *string `type:"string"`

	// A description of the state.
	Reason *string `type:"string"`
	// contains filtered or unexported fields
}

Information about the state of the load balancer.

func (LoadBalancerState) MarshalFields added in v0.19.0

func (s LoadBalancerState) MarshalFields(e protocol.FieldEncoder) error

MarshalFields encodes the AWS API shape using the passed in protocol encoder.

func (LoadBalancerState) String added in v0.19.0

func (s LoadBalancerState) String() string

String returns the string representation

type Malware

type Malware struct {

	// The name of the malware that was observed.
	//
	// Name is a required field
	Name *string `type:"string" required:"true"`

	// The file system path of the malware that was observed.
	Path *string `type:"string"`

	// The state of the malware that was observed.
	State MalwareState `type:"string" enum:"true"`

	// The type of the malware that was observed.
	Type MalwareType `type:"string" enum:"true"`
	// contains filtered or unexported fields
}

A list of malware related to a finding.

func (Malware) MarshalFields

func (s Malware) MarshalFields(e protocol.FieldEncoder) error

MarshalFields encodes the AWS API shape using the passed in protocol encoder.

func (Malware) String

func (s Malware) String() string

String returns the string representation

func (*Malware) Validate

func (s *Malware) Validate() error

Validate inspects the fields of the type to determine if they are valid.

type MalwareState

type MalwareState string
const (
	MalwareStateObserved      MalwareState = "OBSERVED"
	MalwareStateRemovalFailed MalwareState = "REMOVAL_FAILED"
	MalwareStateRemoved       MalwareState = "REMOVED"
)

Enum values for MalwareState

func (MalwareState) MarshalValue

func (enum MalwareState) MarshalValue() (string, error)

func (MalwareState) MarshalValueBuf

func (enum MalwareState) MarshalValueBuf(b []byte) ([]byte, error)

type MalwareType

type MalwareType string
const (
	MalwareTypeAdware              MalwareType = "ADWARE"
	MalwareTypeBlendedThreat       MalwareType = "BLENDED_THREAT"
	MalwareTypeBotnetAgent         MalwareType = "BOTNET_AGENT"
	MalwareTypeCoinMiner           MalwareType = "COIN_MINER"
	MalwareTypeExploitKit          MalwareType = "EXPLOIT_KIT"
	MalwareTypeKeylogger           MalwareType = "KEYLOGGER"
	MalwareTypeMacro               MalwareType = "MACRO"
	MalwareTypePotentiallyUnwanted MalwareType = "POTENTIALLY_UNWANTED"
	MalwareTypeSpyware             MalwareType = "SPYWARE"
	MalwareTypeRansomware          MalwareType = "RANSOMWARE"
	MalwareTypeRemoteAccess        MalwareType = "REMOTE_ACCESS"
	MalwareTypeRootkit             MalwareType = "ROOTKIT"
	MalwareTypeTrojan              MalwareType = "TROJAN"
	MalwareTypeVirus               MalwareType = "VIRUS"
	MalwareTypeWorm                MalwareType = "WORM"
)

Enum values for MalwareType

func (MalwareType) MarshalValue

func (enum MalwareType) MarshalValue() (string, error)

func (MalwareType) MarshalValueBuf

func (enum MalwareType) MarshalValueBuf(b []byte) ([]byte, error)

type MapFilter

type MapFilter struct {

	// The condition to apply to a key value when querying for findings with a map
	// filter.
	Comparison MapFilterComparison `type:"string" enum:"true"`

	// The key of the map filter.
	Key *string `type:"string"`

	// The value for the key in the map filter.
	Value *string `type:"string"`
	// contains filtered or unexported fields
}

The map filter for querying findings.

func (MapFilter) MarshalFields

func (s MapFilter) MarshalFields(e protocol.FieldEncoder) error

MarshalFields encodes the AWS API shape using the passed in protocol encoder.

func (MapFilter) String

func (s MapFilter) String() string

String returns the string representation

type MapFilterComparison

type MapFilterComparison string
const (
	MapFilterComparisonEquals MapFilterComparison = "EQUALS"
)

Enum values for MapFilterComparison

func (MapFilterComparison) MarshalValue

func (enum MapFilterComparison) MarshalValue() (string, error)

func (MapFilterComparison) MarshalValueBuf

func (enum MapFilterComparison) MarshalValueBuf(b []byte) ([]byte, error)

type Member

type Member struct {

	// The AWS account ID of the member account.
	AccountId *string `type:"string"`

	// The email address of the member account.
	Email *string `type:"string"`

	// A timestamp for the date and time when the invitation was sent to the member
	// account.
	InvitedAt *time.Time `type:"timestamp" timestampFormat:"iso8601"`

	// The AWS account ID of the Security Hub master account associated with this
	// member account.
	MasterId *string `type:"string"`

	// The status of the relationship between the member account and its master
	// account.
	MemberStatus *string `type:"string"`

	// The timestamp for the date and time when the member account was updated.
	UpdatedAt *time.Time `type:"timestamp" timestampFormat:"iso8601"`
	// contains filtered or unexported fields
}

The details about a member account.

func (Member) MarshalFields

func (s Member) MarshalFields(e protocol.FieldEncoder) error

MarshalFields encodes the AWS API shape using the passed in protocol encoder.

func (Member) String

func (s Member) String() string

String returns the string representation

type Network

type Network struct {

	// The destination domain of network-related information about a finding.
	DestinationDomain *string `type:"string"`

	// The destination IPv4 address of network-related information about a finding.
	DestinationIpV4 *string `type:"string"`

	// The destination IPv6 address of network-related information about a finding.
	DestinationIpV6 *string `type:"string"`

	// The destination port of network-related information about a finding.
	DestinationPort *int64 `type:"integer"`

	// The direction of network traffic associated with a finding.
	Direction NetworkDirection `type:"string" enum:"true"`

	// The range of open ports that is present on the network.
	OpenPortRange *PortRange `type:"structure"`

	// The protocol of network-related information about a finding.
	Protocol *string `type:"string"`

	// The source domain of network-related information about a finding.
	SourceDomain *string `type:"string"`

	// The source IPv4 address of network-related information about a finding.
	SourceIpV4 *string `type:"string"`

	// The source IPv6 address of network-related information about a finding.
	SourceIpV6 *string `type:"string"`

	// The source media access control (MAC) address of network-related information
	// about a finding.
	SourceMac *string `type:"string"`

	// The source port of network-related information about a finding.
	SourcePort *int64 `type:"integer"`
	// contains filtered or unexported fields
}

The details of network-related information about a finding.

func (Network) MarshalFields

func (s Network) MarshalFields(e protocol.FieldEncoder) error

MarshalFields encodes the AWS API shape using the passed in protocol encoder.

func (Network) String

func (s Network) String() string

String returns the string representation

type NetworkDirection

type NetworkDirection string
const (
	NetworkDirectionIn  NetworkDirection = "IN"
	NetworkDirectionOut NetworkDirection = "OUT"
)

Enum values for NetworkDirection

func (NetworkDirection) MarshalValue

func (enum NetworkDirection) MarshalValue() (string, error)

func (NetworkDirection) MarshalValueBuf

func (enum NetworkDirection) MarshalValueBuf(b []byte) ([]byte, error)

type NetworkHeader added in v0.24.0

type NetworkHeader struct {

	// Information about the destination of the component.
	Destination *NetworkPathComponentDetails `type:"structure"`

	// The protocol used for the component.
	Protocol *string `type:"string"`

	// Information about the origin of the component.
	Source *NetworkPathComponentDetails `type:"structure"`
	// contains filtered or unexported fields
}

Details about a network path component that occurs before or after the current component.

func (NetworkHeader) MarshalFields added in v0.24.0

func (s NetworkHeader) MarshalFields(e protocol.FieldEncoder) error

MarshalFields encodes the AWS API shape using the passed in protocol encoder.

func (NetworkHeader) String added in v0.24.0

func (s NetworkHeader) String() string

String returns the string representation

type NetworkPathComponent added in v0.24.0

type NetworkPathComponent struct {

	// The identifier of a component in the network path.
	ComponentId *string `type:"string"`

	// The type of component.
	ComponentType *string `type:"string"`

	// Information about the component that comes after the current component in
	// the network path.
	Egress *NetworkHeader `type:"structure"`

	// Information about the component that comes before the current node in the
	// network path.
	Ingress *NetworkHeader `type:"structure"`
	// contains filtered or unexported fields
}

Information about a network path component.

func (NetworkPathComponent) MarshalFields added in v0.24.0

func (s NetworkPathComponent) MarshalFields(e protocol.FieldEncoder) error

MarshalFields encodes the AWS API shape using the passed in protocol encoder.

func (NetworkPathComponent) String added in v0.24.0

func (s NetworkPathComponent) String() string

String returns the string representation

type NetworkPathComponentDetails added in v0.24.0

type NetworkPathComponentDetails struct {

	// The IP addresses of the destination.
	Address []string `type:"list"`

	// A list of port ranges for the destination.
	PortRanges []PortRange `type:"list"`
	// contains filtered or unexported fields
}

Information about the destination of the next component in the network path.

func (NetworkPathComponentDetails) MarshalFields added in v0.24.0

MarshalFields encodes the AWS API shape using the passed in protocol encoder.

func (NetworkPathComponentDetails) String added in v0.24.0

String returns the string representation

type Note

type Note struct {

	// The text of a note.
	//
	// Text is a required field
	Text *string `type:"string" required:"true"`

	// The timestamp of when the note was updated.
	//
	// UpdatedAt is a required field
	UpdatedAt *string `type:"string" required:"true"`

	// The principal that created a note.
	//
	// UpdatedBy is a required field
	UpdatedBy *string `type:"string" required:"true"`
	// contains filtered or unexported fields
}

A user-defined note added to a finding.

func (Note) MarshalFields

func (s Note) MarshalFields(e protocol.FieldEncoder) error

MarshalFields encodes the AWS API shape using the passed in protocol encoder.

func (Note) String

func (s Note) String() string

String returns the string representation

func (*Note) Validate

func (s *Note) Validate() error

Validate inspects the fields of the type to determine if they are valid.

type NoteUpdate

type NoteUpdate struct {

	// The updated note text.
	//
	// Text is a required field
	Text *string `type:"string" required:"true"`

	// The principal that updated the note.
	//
	// UpdatedBy is a required field
	UpdatedBy *string `type:"string" required:"true"`
	// contains filtered or unexported fields
}

The updated note.

func (NoteUpdate) MarshalFields

func (s NoteUpdate) MarshalFields(e protocol.FieldEncoder) error

MarshalFields encodes the AWS API shape using the passed in protocol encoder.

func (NoteUpdate) String

func (s NoteUpdate) String() string

String returns the string representation

func (*NoteUpdate) Validate

func (s *NoteUpdate) Validate() error

Validate inspects the fields of the type to determine if they are valid.

type NumberFilter

type NumberFilter struct {

	// The equal-to condition to be applied to a single field when querying for
	// findings.
	Eq *float64 `type:"double"`

	// The greater-than-equal condition to be applied to a single field when querying
	// for findings.
	Gte *float64 `type:"double"`

	// The less-than-equal condition to be applied to a single field when querying
	// for findings.
	Lte *float64 `type:"double"`
	// contains filtered or unexported fields
}

A number filter for querying findings.

func (NumberFilter) MarshalFields

func (s NumberFilter) MarshalFields(e protocol.FieldEncoder) error

MarshalFields encodes the AWS API shape using the passed in protocol encoder.

func (NumberFilter) String

func (s NumberFilter) String() string

String returns the string representation

type Partition

type Partition string
const (
	PartitionAws      Partition = "aws"
	PartitionAwsCn    Partition = "aws-cn"
	PartitionAwsUsGov Partition = "aws-us-gov"
)

Enum values for Partition

func (Partition) MarshalValue

func (enum Partition) MarshalValue() (string, error)

func (Partition) MarshalValueBuf

func (enum Partition) MarshalValueBuf(b []byte) ([]byte, error)

type PortRange added in v0.24.0

type PortRange struct {

	// The first port in the port range.
	Begin *int64 `type:"integer"`

	// The last port in the port range.
	End *int64 `type:"integer"`
	// contains filtered or unexported fields
}

A range of ports.

func (PortRange) MarshalFields added in v0.24.0

func (s PortRange) MarshalFields(e protocol.FieldEncoder) error

MarshalFields encodes the AWS API shape using the passed in protocol encoder.

func (PortRange) String added in v0.24.0

func (s PortRange) String() string

String returns the string representation

type ProcessDetails

type ProcessDetails struct {

	// The date/time that the process was launched.
	LaunchedAt *string `type:"string"`

	// The name of the process.
	Name *string `type:"string"`

	// The parent process ID.
	ParentPid *int64 `type:"integer"`

	// The path to the process executable.
	Path *string `type:"string"`

	// The process ID.
	Pid *int64 `type:"integer"`

	// The date and time when the process was terminated.
	TerminatedAt *string `type:"string"`
	// contains filtered or unexported fields
}

The details of process-related information about a finding.

func (ProcessDetails) MarshalFields

func (s ProcessDetails) MarshalFields(e protocol.FieldEncoder) error

MarshalFields encodes the AWS API shape using the passed in protocol encoder.

func (ProcessDetails) String

func (s ProcessDetails) String() string

String returns the string representation

type Product added in v0.10.0

type Product struct {

	// The URL used to activate the product.
	ActivationUrl *string `type:"string"`

	// The categories assigned to the product.
	Categories []string `type:"list"`

	// The name of the company that provides the product.
	CompanyName *string `type:"string"`

	// A description of the product.
	Description *string `type:"string"`

	// The types of integration that the product supports. Available values are
	// the following.
	//
	//    * SEND_FINDINGS_TO_SECURITY_HUB - Indicates that the integration sends
	//    findings to Security Hub.
	//
	//    * RECEIVE_FINDINGS_FROM_SECURITY_HUB - Indicates that the integration
	//    receives findings from Security Hub.
	IntegrationTypes []IntegrationType `type:"list"`

	// The URL for the page that contains more information about the product.
	MarketplaceUrl *string `type:"string"`

	// The ARN assigned to the product.
	//
	// ProductArn is a required field
	ProductArn *string `type:"string" required:"true"`

	// The name of the product.
	ProductName *string `type:"string"`

	// The resource policy associated with the product.
	ProductSubscriptionResourcePolicy *string `type:"string"`
	// contains filtered or unexported fields
}

Contains details about a product.

func (Product) MarshalFields added in v0.10.0

func (s Product) MarshalFields(e protocol.FieldEncoder) error

MarshalFields encodes the AWS API shape using the passed in protocol encoder.

func (Product) String added in v0.10.0

func (s Product) String() string

String returns the string representation

type Recommendation

type Recommendation struct {

	// Describes the recommended steps to take to remediate an issue identified
	// in a finding.
	Text *string `type:"string"`

	// A URL to a page or site that contains information about how to remediate
	// a finding.
	Url *string `type:"string"`
	// contains filtered or unexported fields
}

A recommendation on how to remediate the issue identified in a finding.

func (Recommendation) MarshalFields

func (s Recommendation) MarshalFields(e protocol.FieldEncoder) error

MarshalFields encodes the AWS API shape using the passed in protocol encoder.

func (Recommendation) String

func (s Recommendation) String() string

String returns the string representation

type RecordState

type RecordState string
const (
	RecordStateActive   RecordState = "ACTIVE"
	RecordStateArchived RecordState = "ARCHIVED"
)

Enum values for RecordState

func (RecordState) MarshalValue

func (enum RecordState) MarshalValue() (string, error)

func (RecordState) MarshalValueBuf

func (enum RecordState) MarshalValueBuf(b []byte) ([]byte, error)

type RelatedFinding

type RelatedFinding struct {

	// The product-generated identifier for a related finding.
	//
	// Id is a required field
	Id *string `type:"string" required:"true"`

	// The ARN of the product that generated a related finding.
	//
	// ProductArn is a required field
	ProductArn *string `type:"string" required:"true"`
	// contains filtered or unexported fields
}

Details about a related finding.

func (RelatedFinding) MarshalFields

func (s RelatedFinding) MarshalFields(e protocol.FieldEncoder) error

MarshalFields encodes the AWS API shape using the passed in protocol encoder.

func (RelatedFinding) String

func (s RelatedFinding) String() string

String returns the string representation

func (*RelatedFinding) Validate

func (s *RelatedFinding) Validate() error

Validate inspects the fields of the type to determine if they are valid.

type Remediation

type Remediation struct {

	// A recommendation on the steps to take to remediate the issue identified by
	// a finding.
	Recommendation *Recommendation `type:"structure"`
	// contains filtered or unexported fields
}

Details about the remediation steps for a finding.

func (Remediation) MarshalFields

func (s Remediation) MarshalFields(e protocol.FieldEncoder) error

MarshalFields encodes the AWS API shape using the passed in protocol encoder.

func (Remediation) String

func (s Remediation) String() string

String returns the string representation

type Resource

type Resource struct {

	// Additional details about the resource related to a finding.
	Details *ResourceDetails `type:"structure"`

	// The canonical identifier for the given resource type.
	//
	// Id is a required field
	Id *string `type:"string" required:"true"`

	// The canonical AWS partition name that the Region is assigned to.
	Partition Partition `type:"string" enum:"true"`

	// The canonical AWS external Region name where this resource is located.
	Region *string `type:"string"`

	// A list of AWS tags associated with a resource at the time the finding was
	// processed.
	Tags map[string]string `type:"map"`

	// The type of the resource that details are provided for. If possible, set
	// Type to one of the supported resource types. For example, if the resource
	// is an EC2 instance, then set Type to AwsEc2Instance.
	//
	// If the resource does not match any of the provided types, then set Type to
	// Other.
	//
	// Type is a required field
	Type *string `type:"string" required:"true"`
	// contains filtered or unexported fields
}

A resource related to a finding.

func (Resource) MarshalFields

func (s Resource) MarshalFields(e protocol.FieldEncoder) error

MarshalFields encodes the AWS API shape using the passed in protocol encoder.

func (Resource) String

func (s Resource) String() string

String returns the string representation

func (*Resource) Validate

func (s *Resource) Validate() error

Validate inspects the fields of the type to determine if they are valid.

type ResourceDetails

type ResourceDetails struct {

	// Details for an autoscaling group.
	AwsAutoScalingAutoScalingGroup *AwsAutoScalingAutoScalingGroupDetails `type:"structure"`

	// Details about a CloudFront distribution.
	AwsCloudFrontDistribution *AwsCloudFrontDistributionDetails `type:"structure"`

	// Details for an AWS CodeBuild project.
	AwsCodeBuildProject *AwsCodeBuildProjectDetails `type:"structure"`

	// Details about an Amazon EC2 instance related to a finding.
	AwsEc2Instance *AwsEc2InstanceDetails `type:"structure"`

	// Details for an Amazon EC2 network interface.
	AwsEc2NetworkInterface *AwsEc2NetworkInterfaceDetails `type:"structure"`

	// Details for an EC2 security group.
	AwsEc2SecurityGroup *AwsEc2SecurityGroupDetails `type:"structure"`

	// Details for an EC2 volume.
	AwsEc2Volume *AwsEc2VolumeDetails `type:"structure"`

	// Details for an EC2 VPC.
	AwsEc2Vpc *AwsEc2VpcDetails `type:"structure"`

	// Details for an Elasticsearch domain.
	AwsElasticsearchDomain *AwsElasticsearchDomainDetails `type:"structure"`

	// Details about a load balancer.
	AwsElbv2LoadBalancer *AwsElbv2LoadBalancerDetails `type:"structure"`

	// Details about an IAM access key related to a finding.
	AwsIamAccessKey *AwsIamAccessKeyDetails `type:"structure"`

	// Details about an IAM role.
	AwsIamRole *AwsIamRoleDetails `type:"structure"`

	// Details about a KMS key.
	AwsKmsKey *AwsKmsKeyDetails `type:"structure"`

	// Details about a Lambda function.
	AwsLambdaFunction *AwsLambdaFunctionDetails `type:"structure"`

	// Details for a Lambda layer version.
	AwsLambdaLayerVersion *AwsLambdaLayerVersionDetails `type:"structure"`

	// Details for an Amazon RDS database instance.
	AwsRdsDbInstance *AwsRdsDbInstanceDetails `type:"structure"`

	// Details about an Amazon S3 bucket related to a finding.
	AwsS3Bucket *AwsS3BucketDetails `type:"structure"`

	// Details about an Amazon S3 object related to a finding.
	AwsS3Object *AwsS3ObjectDetails `type:"structure"`

	// Details about an SNS topic.
	AwsSnsTopic *AwsSnsTopicDetails `type:"structure"`

	// Details about an SQS queue.
	AwsSqsQueue *AwsSqsQueueDetails `type:"structure"`

	// Details for a WAF WebACL.
	AwsWafWebAcl *AwsWafWebAclDetails `type:"structure"`

	// Details about a container resource related to a finding.
	Container *ContainerDetails `type:"structure"`

	// Details about a resource that are not available in a type-specific details
	// object. Use the Other object in the following cases.
	//
	//    * The type-specific object does not contain all of the fields that you
	//    want to populate. In this case, first use the type-specific object to
	//    populate those fields. Use the Other object to populate the fields that
	//    are missing from the type-specific object.
	//
	//    * The resource type does not have a corresponding object. This includes
	//    resources for which the type is Other.
	Other map[string]string `type:"map"`
	// contains filtered or unexported fields
}

Additional details about a resource related to a finding.

To provide the details, use the object that corresponds to the resource type. For example, if the resource type is AwsEc2Instance, then you use the AwsEc2Instance object to provide the details.

If the type-specific object does not contain all of the fields you want to populate, then you use the Other object to populate those additional fields.

You also use the Other object to populate the details when the selected type does not have a corresponding object.

func (ResourceDetails) MarshalFields

func (s ResourceDetails) MarshalFields(e protocol.FieldEncoder) error

MarshalFields encodes the AWS API shape using the passed in protocol encoder.

func (ResourceDetails) String

func (s ResourceDetails) String() string

String returns the string representation

func (*ResourceDetails) Validate added in v0.19.0

func (s *ResourceDetails) Validate() error

Validate inspects the fields of the type to determine if they are valid.

type Result

type Result struct {

	// An AWS account ID of the account that was not processed.
	AccountId *string `type:"string"`

	// The reason that the account was not processed.
	ProcessingResult *string `type:"string"`
	// contains filtered or unexported fields
}

Details about the account that was not processed.

func (Result) MarshalFields

func (s Result) MarshalFields(e protocol.FieldEncoder) error

MarshalFields encodes the AWS API shape using the passed in protocol encoder.

func (Result) String

func (s Result) String() string

String returns the string representation

type Severity

type Severity struct {

	// The severity value of the finding. The allowed values are the following.
	//
	//    * INFORMATIONAL - No issue was found.
	//
	//    * LOW - The issue does not require action on its own.
	//
	//    * MEDIUM - The issue must be addressed but not urgently.
	//
	//    * HIGH - The issue must be addressed as a priority.
	//
	//    * CRITICAL - The issue must be remediated immediately to avoid it escalating.
	Label SeverityLabel `type:"string" enum:"true"`

	// Deprecated. This attribute is being deprecated. Instead of providing Normalized,
	// provide Label.
	//
	// If you provide Normalized and do not provide Label, Label is set automatically
	// as follows.
	//
	//    * 0 - INFORMATIONAL
	//
	//    * 1–39 - LOW
	//
	//    * 40–69 - MEDIUM
	//
	//    * 70–89 - HIGH
	//
	//    * 90–100 - CRITICAL
	Normalized *int64 `type:"integer"`

	// The native severity from the finding product that generated the finding.
	Original *string `type:"string"`

	// Deprecated. This attribute is being deprecated. Instead of providing Product,
	// provide Original.
	//
	// The native severity as defined by the AWS service or integrated partner product
	// that generated the finding.
	Product *float64 `type:"double"`
	// contains filtered or unexported fields
}

The severity of the finding.

func (Severity) MarshalFields

func (s Severity) MarshalFields(e protocol.FieldEncoder) error

MarshalFields encodes the AWS API shape using the passed in protocol encoder.

func (Severity) String

func (s Severity) String() string

String returns the string representation

type SeverityLabel added in v0.20.0

type SeverityLabel string
const (
	SeverityLabelInformational SeverityLabel = "INFORMATIONAL"
	SeverityLabelLow           SeverityLabel = "LOW"
	SeverityLabelMedium        SeverityLabel = "MEDIUM"
	SeverityLabelHigh          SeverityLabel = "HIGH"
	SeverityLabelCritical      SeverityLabel = "CRITICAL"
)

Enum values for SeverityLabel

func (SeverityLabel) MarshalValue added in v0.20.0

func (enum SeverityLabel) MarshalValue() (string, error)

func (SeverityLabel) MarshalValueBuf added in v0.20.0

func (enum SeverityLabel) MarshalValueBuf(b []byte) ([]byte, error)

type SeverityRating added in v0.19.0

type SeverityRating string
const (
	SeverityRatingLow      SeverityRating = "LOW"
	SeverityRatingMedium   SeverityRating = "MEDIUM"
	SeverityRatingHigh     SeverityRating = "HIGH"
	SeverityRatingCritical SeverityRating = "CRITICAL"
)

Enum values for SeverityRating

func (SeverityRating) MarshalValue added in v0.19.0

func (enum SeverityRating) MarshalValue() (string, error)

func (SeverityRating) MarshalValueBuf added in v0.19.0

func (enum SeverityRating) MarshalValueBuf(b []byte) ([]byte, error)

type SeverityUpdate added in v0.21.0

type SeverityUpdate struct {

	// The severity value of the finding. The allowed values are the following.
	//
	//    * INFORMATIONAL - No issue was found.
	//
	//    * LOW - The issue does not require action on its own.
	//
	//    * MEDIUM - The issue must be addressed but not urgently.
	//
	//    * HIGH - The issue must be addressed as a priority.
	//
	//    * CRITICAL - The issue must be remediated immediately to avoid it escalating.
	Label SeverityLabel `type:"string" enum:"true"`

	// The normalized severity for the finding. This attribute is to be deprecated
	// in favor of Label.
	//
	// If you provide Normalized and do not provide Label, Label is set automatically
	// as follows.
	//
	//    * 0 - INFORMATIONAL
	//
	//    * 1–39 - LOW
	//
	//    * 40–69 - MEDIUM
	//
	//    * 70–89 - HIGH
	//
	//    * 90–100 - CRITICAL
	Normalized *int64 `type:"integer"`

	// The native severity as defined by the AWS service or integrated partner product
	// that generated the finding.
	Product *float64 `type:"double"`
	// contains filtered or unexported fields
}

Updates to the severity information for a finding.

func (SeverityUpdate) MarshalFields added in v0.21.0

func (s SeverityUpdate) MarshalFields(e protocol.FieldEncoder) error

MarshalFields encodes the AWS API shape using the passed in protocol encoder.

func (SeverityUpdate) String added in v0.21.0

func (s SeverityUpdate) String() string

String returns the string representation

type SoftwarePackage added in v0.24.0

type SoftwarePackage struct {

	// The architecture used for the software package.
	Architecture *string `type:"string"`

	// The epoch of the software package.
	Epoch *string `type:"string"`

	// The name of the software package.
	Name *string `type:"string"`

	// The release of the software package.
	Release *string `type:"string"`

	// The version of the software package.
	Version *string `type:"string"`
	// contains filtered or unexported fields
}

Information about a software package.

func (SoftwarePackage) MarshalFields added in v0.24.0

func (s SoftwarePackage) MarshalFields(e protocol.FieldEncoder) error

MarshalFields encodes the AWS API shape using the passed in protocol encoder.

func (SoftwarePackage) String added in v0.24.0

func (s SoftwarePackage) String() string

String returns the string representation

type SortCriterion

type SortCriterion struct {

	// The finding attribute used to sort findings.
	Field *string `type:"string"`

	// The order used to sort findings.
	SortOrder SortOrder `type:"string" enum:"true"`
	// contains filtered or unexported fields
}

A collection of finding attributes used to sort findings.

func (SortCriterion) MarshalFields

func (s SortCriterion) MarshalFields(e protocol.FieldEncoder) error

MarshalFields encodes the AWS API shape using the passed in protocol encoder.

func (SortCriterion) String

func (s SortCriterion) String() string

String returns the string representation

type SortOrder

type SortOrder string
const (
	SortOrderAsc  SortOrder = "asc"
	SortOrderDesc SortOrder = "desc"
)

Enum values for SortOrder

func (SortOrder) MarshalValue

func (enum SortOrder) MarshalValue() (string, error)

func (SortOrder) MarshalValueBuf

func (enum SortOrder) MarshalValueBuf(b []byte) ([]byte, error)

type Standard added in v0.20.0

type Standard struct {

	// A description of the standard.
	Description *string `type:"string"`

	// Whether the standard is enabled by default. When Security Hub is enabled
	// from the console, if a standard is enabled by default, the check box for
	// that standard is selected by default.
	//
	// When Security Hub is enabled using the EnableSecurityHub API operation, the
	// standard is enabled by default unless EnableDefaultStandards is set to false.
	EnabledByDefault *bool `type:"boolean"`

	// The name of the standard.
	Name *string `type:"string"`

	// The ARN of a standard.
	StandardsArn *string `type:"string"`
	// contains filtered or unexported fields
}

Provides information about a specific standard.

func (Standard) MarshalFields added in v0.20.0

func (s Standard) MarshalFields(e protocol.FieldEncoder) error

MarshalFields encodes the AWS API shape using the passed in protocol encoder.

func (Standard) String added in v0.20.0

func (s Standard) String() string

String returns the string representation

type StandardsControl added in v0.19.0

type StandardsControl struct {

	// The identifier of the security standard control.
	ControlId *string `type:"string"`

	// The current status of the security standard control. Indicates whether the
	// control is enabled or disabled. Security Hub does not check against disabled
	// controls.
	ControlStatus ControlStatus `type:"string" enum:"true"`

	// The date and time that the status of the security standard control was most
	// recently updated.
	ControlStatusUpdatedAt *time.Time `type:"timestamp" timestampFormat:"iso8601"`

	// The longer description of the security standard control. Provides information
	// about what the control is checking for.
	Description *string `type:"string"`

	// The reason provided for the most recent change in status for the control.
	DisabledReason *string `type:"string"`

	// The list of requirements that are related to this control.
	RelatedRequirements []string `type:"list"`

	// A link to remediation information for the control in the Security Hub user
	// documentation.
	RemediationUrl *string `type:"string"`

	// The severity of findings generated from this security standard control.
	//
	// The finding severity is based on an assessment of how easy it would be to
	// compromise AWS resources if the issue is detected.
	SeverityRating SeverityRating `type:"string" enum:"true"`

	// The ARN of the security standard control.
	StandardsControlArn *string `type:"string"`

	// The title of the security standard control.
	Title *string `type:"string"`
	// contains filtered or unexported fields
}

Details for an individual security standard control.

func (StandardsControl) MarshalFields added in v0.19.0

func (s StandardsControl) MarshalFields(e protocol.FieldEncoder) error

MarshalFields encodes the AWS API shape using the passed in protocol encoder.

func (StandardsControl) String added in v0.19.0

func (s StandardsControl) String() string

String returns the string representation

type StandardsStatus

type StandardsStatus string
const (
	StandardsStatusPending    StandardsStatus = "PENDING"
	StandardsStatusReady      StandardsStatus = "READY"
	StandardsStatusFailed     StandardsStatus = "FAILED"
	StandardsStatusDeleting   StandardsStatus = "DELETING"
	StandardsStatusIncomplete StandardsStatus = "INCOMPLETE"
)

Enum values for StandardsStatus

func (StandardsStatus) MarshalValue

func (enum StandardsStatus) MarshalValue() (string, error)

func (StandardsStatus) MarshalValueBuf

func (enum StandardsStatus) MarshalValueBuf(b []byte) ([]byte, error)

type StandardsSubscription

type StandardsSubscription struct {

	// The ARN of a standard.
	//
	// StandardsArn is a required field
	StandardsArn *string `type:"string" required:"true"`

	// A key-value pair of input for the standard.
	//
	// StandardsInput is a required field
	StandardsInput map[string]string `type:"map" required:"true"`

	// The status of the standards subscription.
	//
	// StandardsStatus is a required field
	StandardsStatus StandardsStatus `type:"string" required:"true" enum:"true"`

	// The ARN of a resource that represents your subscription to a supported standard.
	//
	// StandardsSubscriptionArn is a required field
	StandardsSubscriptionArn *string `type:"string" required:"true"`
	// contains filtered or unexported fields
}

A resource that represents your subscription to a supported standard.

func (StandardsSubscription) MarshalFields

func (s StandardsSubscription) MarshalFields(e protocol.FieldEncoder) error

MarshalFields encodes the AWS API shape using the passed in protocol encoder.

func (StandardsSubscription) String

func (s StandardsSubscription) String() string

String returns the string representation

type StandardsSubscriptionRequest

type StandardsSubscriptionRequest struct {

	// The ARN of the standard that you want to enable. To view the list of available
	// standards and their ARNs, use the DescribeStandards operation.
	//
	// StandardsArn is a required field
	StandardsArn *string `type:"string" required:"true"`

	// A key-value pair of input for the standard.
	StandardsInput map[string]string `type:"map"`
	// contains filtered or unexported fields
}

The standard that you want to enable.

func (StandardsSubscriptionRequest) MarshalFields

MarshalFields encodes the AWS API shape using the passed in protocol encoder.

func (StandardsSubscriptionRequest) String

String returns the string representation

func (*StandardsSubscriptionRequest) Validate

func (s *StandardsSubscriptionRequest) Validate() error

Validate inspects the fields of the type to determine if they are valid.

type StatusReason added in v0.23.0

type StatusReason struct {

	// The corresponding description for the status reason code.
	Description *string `type:"string"`

	// A code that represents a reason for the control status. For the list of status
	// reason codes and their meanings, see Standards-related information in the
	// ASFF (https://docs.aws.amazon.com/securityhub/latest/userguide/securityhub-standards-results.html#securityhub-standards-results-asff)
	// in the AWS Security Hub User Guide.
	//
	// ReasonCode is a required field
	ReasonCode *string `type:"string" required:"true"`
	// contains filtered or unexported fields
}

Provides additional context for the value of Compliance.Status.

func (StatusReason) MarshalFields added in v0.23.0

func (s StatusReason) MarshalFields(e protocol.FieldEncoder) error

MarshalFields encodes the AWS API shape using the passed in protocol encoder.

func (StatusReason) String added in v0.23.0

func (s StatusReason) String() string

String returns the string representation

func (*StatusReason) Validate added in v0.23.0

func (s *StatusReason) Validate() error

Validate inspects the fields of the type to determine if they are valid.

type StringFilter

type StringFilter struct {

	// The condition to be applied to a string value when querying for findings.
	Comparison StringFilterComparison `type:"string" enum:"true"`

	// The string filter value.
	Value *string `type:"string"`
	// contains filtered or unexported fields
}

A string filter for querying findings.

func (StringFilter) MarshalFields

func (s StringFilter) MarshalFields(e protocol.FieldEncoder) error

MarshalFields encodes the AWS API shape using the passed in protocol encoder.

func (StringFilter) String

func (s StringFilter) String() string

String returns the string representation

type StringFilterComparison

type StringFilterComparison string
const (
	StringFilterComparisonEquals StringFilterComparison = "EQUALS"
	StringFilterComparisonPrefix StringFilterComparison = "PREFIX"
)

Enum values for StringFilterComparison

func (StringFilterComparison) MarshalValue

func (enum StringFilterComparison) MarshalValue() (string, error)

func (StringFilterComparison) MarshalValueBuf

func (enum StringFilterComparison) MarshalValueBuf(b []byte) ([]byte, error)

type TagResourceInput added in v0.10.0

type TagResourceInput struct {

	// The ARN of the resource to apply the tags to.
	//
	// ResourceArn is a required field
	ResourceArn *string `location:"uri" locationName:"ResourceArn" type:"string" required:"true"`

	// The tags to add to the resource.
	//
	// Tags is a required field
	Tags map[string]string `min:"1" type:"map" required:"true"`
	// contains filtered or unexported fields
}

func (TagResourceInput) MarshalFields added in v0.10.0

func (s TagResourceInput) MarshalFields(e protocol.FieldEncoder) error

MarshalFields encodes the AWS API shape using the passed in protocol encoder.

func (TagResourceInput) String added in v0.10.0

func (s TagResourceInput) String() string

String returns the string representation

func (*TagResourceInput) Validate added in v0.10.0

func (s *TagResourceInput) Validate() error

Validate inspects the fields of the type to determine if they are valid.

type TagResourceOutput added in v0.10.0

type TagResourceOutput struct {
	// contains filtered or unexported fields
}

func (TagResourceOutput) MarshalFields added in v0.10.0

func (s TagResourceOutput) MarshalFields(e protocol.FieldEncoder) error

MarshalFields encodes the AWS API shape using the passed in protocol encoder.

func (TagResourceOutput) String added in v0.10.0

func (s TagResourceOutput) String() string

String returns the string representation

type TagResourceRequest added in v0.10.0

type TagResourceRequest struct {
	*aws.Request
	Input *TagResourceInput
	Copy  func(*TagResourceInput) TagResourceRequest
}

TagResourceRequest is the request type for the TagResource API operation.

func (TagResourceRequest) Send added in v0.10.0

Send marshals and sends the TagResource API request.

type TagResourceResponse added in v0.10.0

type TagResourceResponse struct {
	*TagResourceOutput
	// contains filtered or unexported fields
}

TagResourceResponse is the response type for the TagResource API operation.

func (*TagResourceResponse) SDKResponseMetdata added in v0.10.0

func (r *TagResourceResponse) SDKResponseMetdata() *aws.Response

SDKResponseMetdata returns the response metadata for the TagResource request.

type ThreatIntelIndicator

type ThreatIntelIndicator struct {

	// The category of a threat intelligence indicator.
	Category ThreatIntelIndicatorCategory `type:"string" enum:"true"`

	// The date and time when the most recent instance of a threat intelligence
	// indicator was observed.
	LastObservedAt *string `type:"string"`

	// The source of the threat intelligence indicator.
	Source *string `type:"string"`

	// The URL to the page or site where you can get more information about the
	// threat intelligence indicator.
	SourceUrl *string `type:"string"`

	// The type of threat intelligence indicator.
	Type ThreatIntelIndicatorType `type:"string" enum:"true"`

	// The value of a threat intelligence indicator.
	Value *string `type:"string"`
	// contains filtered or unexported fields
}

Details about the threat intelligence related to a finding.

func (ThreatIntelIndicator) MarshalFields

func (s ThreatIntelIndicator) MarshalFields(e protocol.FieldEncoder) error

MarshalFields encodes the AWS API shape using the passed in protocol encoder.

func (ThreatIntelIndicator) String

func (s ThreatIntelIndicator) String() string

String returns the string representation

type ThreatIntelIndicatorCategory

type ThreatIntelIndicatorCategory string
const (
	ThreatIntelIndicatorCategoryBackdoor          ThreatIntelIndicatorCategory = "BACKDOOR"
	ThreatIntelIndicatorCategoryCardStealer       ThreatIntelIndicatorCategory = "CARD_STEALER"
	ThreatIntelIndicatorCategoryCommandAndControl ThreatIntelIndicatorCategory = "COMMAND_AND_CONTROL"
	ThreatIntelIndicatorCategoryDropSite          ThreatIntelIndicatorCategory = "DROP_SITE"
	ThreatIntelIndicatorCategoryExploitSite       ThreatIntelIndicatorCategory = "EXPLOIT_SITE"
	ThreatIntelIndicatorCategoryKeylogger         ThreatIntelIndicatorCategory = "KEYLOGGER"
)

Enum values for ThreatIntelIndicatorCategory

func (ThreatIntelIndicatorCategory) MarshalValue

func (enum ThreatIntelIndicatorCategory) MarshalValue() (string, error)

func (ThreatIntelIndicatorCategory) MarshalValueBuf

func (enum ThreatIntelIndicatorCategory) MarshalValueBuf(b []byte) ([]byte, error)

type ThreatIntelIndicatorType

type ThreatIntelIndicatorType string
const (
	ThreatIntelIndicatorTypeDomain       ThreatIntelIndicatorType = "DOMAIN"
	ThreatIntelIndicatorTypeEmailAddress ThreatIntelIndicatorType = "EMAIL_ADDRESS"
	ThreatIntelIndicatorTypeHashMd5      ThreatIntelIndicatorType = "HASH_MD5"
	ThreatIntelIndicatorTypeHashSha1     ThreatIntelIndicatorType = "HASH_SHA1"
	ThreatIntelIndicatorTypeHashSha256   ThreatIntelIndicatorType = "HASH_SHA256"
	ThreatIntelIndicatorTypeHashSha512   ThreatIntelIndicatorType = "HASH_SHA512"
	ThreatIntelIndicatorTypeIpv4Address  ThreatIntelIndicatorType = "IPV4_ADDRESS"
	ThreatIntelIndicatorTypeIpv6Address  ThreatIntelIndicatorType = "IPV6_ADDRESS"
	ThreatIntelIndicatorTypeMutex        ThreatIntelIndicatorType = "MUTEX"
	ThreatIntelIndicatorTypeProcess      ThreatIntelIndicatorType = "PROCESS"
	ThreatIntelIndicatorTypeUrl          ThreatIntelIndicatorType = "URL"
)

Enum values for ThreatIntelIndicatorType

func (ThreatIntelIndicatorType) MarshalValue

func (enum ThreatIntelIndicatorType) MarshalValue() (string, error)

func (ThreatIntelIndicatorType) MarshalValueBuf

func (enum ThreatIntelIndicatorType) MarshalValueBuf(b []byte) ([]byte, error)

type UntagResourceInput added in v0.10.0

type UntagResourceInput struct {

	// The ARN of the resource to remove the tags from.
	//
	// ResourceArn is a required field
	ResourceArn *string `location:"uri" locationName:"ResourceArn" type:"string" required:"true"`

	// The tag keys associated with the tags to remove from the resource.
	//
	// TagKeys is a required field
	TagKeys []string `location:"querystring" locationName:"tagKeys" min:"1" type:"list" required:"true"`
	// contains filtered or unexported fields
}

func (UntagResourceInput) MarshalFields added in v0.10.0

func (s UntagResourceInput) MarshalFields(e protocol.FieldEncoder) error

MarshalFields encodes the AWS API shape using the passed in protocol encoder.

func (UntagResourceInput) String added in v0.10.0

func (s UntagResourceInput) String() string

String returns the string representation

func (*UntagResourceInput) Validate added in v0.10.0

func (s *UntagResourceInput) Validate() error

Validate inspects the fields of the type to determine if they are valid.

type UntagResourceOutput added in v0.10.0

type UntagResourceOutput struct {
	// contains filtered or unexported fields
}

func (UntagResourceOutput) MarshalFields added in v0.10.0

func (s UntagResourceOutput) MarshalFields(e protocol.FieldEncoder) error

MarshalFields encodes the AWS API shape using the passed in protocol encoder.

func (UntagResourceOutput) String added in v0.10.0

func (s UntagResourceOutput) String() string

String returns the string representation

type UntagResourceRequest added in v0.10.0

type UntagResourceRequest struct {
	*aws.Request
	Input *UntagResourceInput
	Copy  func(*UntagResourceInput) UntagResourceRequest
}

UntagResourceRequest is the request type for the UntagResource API operation.

func (UntagResourceRequest) Send added in v0.10.0

Send marshals and sends the UntagResource API request.

type UntagResourceResponse added in v0.10.0

type UntagResourceResponse struct {
	*UntagResourceOutput
	// contains filtered or unexported fields
}

UntagResourceResponse is the response type for the UntagResource API operation.

func (*UntagResourceResponse) SDKResponseMetdata added in v0.10.0

func (r *UntagResourceResponse) SDKResponseMetdata() *aws.Response

SDKResponseMetdata returns the response metadata for the UntagResource request.

type UpdateActionTargetInput added in v0.10.0

type UpdateActionTargetInput struct {

	// The ARN of the custom action target to update.
	//
	// ActionTargetArn is a required field
	ActionTargetArn *string `location:"uri" locationName:"ActionTargetArn" type:"string" required:"true"`

	// The updated description for the custom action target.
	Description *string `type:"string"`

	// The updated name of the custom action target.
	Name *string `type:"string"`
	// contains filtered or unexported fields
}

func (UpdateActionTargetInput) MarshalFields added in v0.10.0

MarshalFields encodes the AWS API shape using the passed in protocol encoder.

func (UpdateActionTargetInput) String added in v0.10.0

func (s UpdateActionTargetInput) String() string

String returns the string representation

func (*UpdateActionTargetInput) Validate added in v0.10.0

func (s *UpdateActionTargetInput) Validate() error

Validate inspects the fields of the type to determine if they are valid.

type UpdateActionTargetOutput added in v0.10.0

type UpdateActionTargetOutput struct {
	// contains filtered or unexported fields
}

func (UpdateActionTargetOutput) MarshalFields added in v0.10.0

MarshalFields encodes the AWS API shape using the passed in protocol encoder.

func (UpdateActionTargetOutput) String added in v0.10.0

func (s UpdateActionTargetOutput) String() string

String returns the string representation

type UpdateActionTargetRequest added in v0.10.0

type UpdateActionTargetRequest struct {
	*aws.Request
	Input *UpdateActionTargetInput
	Copy  func(*UpdateActionTargetInput) UpdateActionTargetRequest
}

UpdateActionTargetRequest is the request type for the UpdateActionTarget API operation.

func (UpdateActionTargetRequest) Send added in v0.10.0

Send marshals and sends the UpdateActionTarget API request.

type UpdateActionTargetResponse added in v0.10.0

type UpdateActionTargetResponse struct {
	*UpdateActionTargetOutput
	// contains filtered or unexported fields
}

UpdateActionTargetResponse is the response type for the UpdateActionTarget API operation.

func (*UpdateActionTargetResponse) SDKResponseMetdata added in v0.10.0

func (r *UpdateActionTargetResponse) SDKResponseMetdata() *aws.Response

SDKResponseMetdata returns the response metadata for the UpdateActionTarget request.

type UpdateFindingsInput

type UpdateFindingsInput struct {

	// A collection of attributes that specify which findings you want to update.
	//
	// Filters is a required field
	Filters *AwsSecurityFindingFilters `type:"structure" required:"true"`

	// The updated note for the finding.
	Note *NoteUpdate `type:"structure"`

	// The updated record state for the finding.
	RecordState RecordState `type:"string" enum:"true"`
	// contains filtered or unexported fields
}

func (UpdateFindingsInput) MarshalFields

func (s UpdateFindingsInput) MarshalFields(e protocol.FieldEncoder) error

MarshalFields encodes the AWS API shape using the passed in protocol encoder.

func (UpdateFindingsInput) String

func (s UpdateFindingsInput) String() string

String returns the string representation

func (*UpdateFindingsInput) Validate

func (s *UpdateFindingsInput) Validate() error

Validate inspects the fields of the type to determine if they are valid.

type UpdateFindingsOutput

type UpdateFindingsOutput struct {
	// contains filtered or unexported fields
}

func (UpdateFindingsOutput) MarshalFields

func (s UpdateFindingsOutput) MarshalFields(e protocol.FieldEncoder) error

MarshalFields encodes the AWS API shape using the passed in protocol encoder.

func (UpdateFindingsOutput) String

func (s UpdateFindingsOutput) String() string

String returns the string representation

type UpdateFindingsRequest

type UpdateFindingsRequest struct {
	*aws.Request
	Input *UpdateFindingsInput
	Copy  func(*UpdateFindingsInput) UpdateFindingsRequest
}

UpdateFindingsRequest is the request type for the UpdateFindings API operation.

func (UpdateFindingsRequest) Send

Send marshals and sends the UpdateFindings API request.

type UpdateFindingsResponse added in v0.9.0

type UpdateFindingsResponse struct {
	*UpdateFindingsOutput
	// contains filtered or unexported fields
}

UpdateFindingsResponse is the response type for the UpdateFindings API operation.

func (*UpdateFindingsResponse) SDKResponseMetdata added in v0.9.0

func (r *UpdateFindingsResponse) SDKResponseMetdata() *aws.Response

SDKResponseMetdata returns the response metadata for the UpdateFindings request.

type UpdateInsightInput

type UpdateInsightInput struct {

	// The updated filters that define this insight.
	Filters *AwsSecurityFindingFilters `type:"structure"`

	// The updated GroupBy attribute that defines this insight.
	GroupByAttribute *string `type:"string"`

	// The ARN of the insight that you want to update.
	//
	// InsightArn is a required field
	InsightArn *string `location:"uri" locationName:"InsightArn" type:"string" required:"true"`

	// The updated name for the insight.
	Name *string `type:"string"`
	// contains filtered or unexported fields
}

func (UpdateInsightInput) MarshalFields

func (s UpdateInsightInput) MarshalFields(e protocol.FieldEncoder) error

MarshalFields encodes the AWS API shape using the passed in protocol encoder.

func (UpdateInsightInput) String

func (s UpdateInsightInput) String() string

String returns the string representation

func (*UpdateInsightInput) Validate

func (s *UpdateInsightInput) Validate() error

Validate inspects the fields of the type to determine if they are valid.

type UpdateInsightOutput

type UpdateInsightOutput struct {
	// contains filtered or unexported fields
}

func (UpdateInsightOutput) MarshalFields

func (s UpdateInsightOutput) MarshalFields(e protocol.FieldEncoder) error

MarshalFields encodes the AWS API shape using the passed in protocol encoder.

func (UpdateInsightOutput) String

func (s UpdateInsightOutput) String() string

String returns the string representation

type UpdateInsightRequest

type UpdateInsightRequest struct {
	*aws.Request
	Input *UpdateInsightInput
	Copy  func(*UpdateInsightInput) UpdateInsightRequest
}

UpdateInsightRequest is the request type for the UpdateInsight API operation.

func (UpdateInsightRequest) Send

Send marshals and sends the UpdateInsight API request.

type UpdateInsightResponse added in v0.9.0

type UpdateInsightResponse struct {
	*UpdateInsightOutput
	// contains filtered or unexported fields
}

UpdateInsightResponse is the response type for the UpdateInsight API operation.

func (*UpdateInsightResponse) SDKResponseMetdata added in v0.9.0

func (r *UpdateInsightResponse) SDKResponseMetdata() *aws.Response

SDKResponseMetdata returns the response metadata for the UpdateInsight request.

type UpdateStandardsControlInput added in v0.19.0

type UpdateStandardsControlInput struct {

	// The updated status of the security standard control.
	ControlStatus ControlStatus `type:"string" enum:"true"`

	// A description of the reason why you are disabling a security standard control.
	// If you are disabling a control, then this is required.
	DisabledReason *string `type:"string"`

	// The ARN of the security standard control to enable or disable.
	//
	// StandardsControlArn is a required field
	StandardsControlArn *string `location:"uri" locationName:"StandardsControlArn" type:"string" required:"true"`
	// contains filtered or unexported fields
}

func (UpdateStandardsControlInput) MarshalFields added in v0.19.0

MarshalFields encodes the AWS API shape using the passed in protocol encoder.

func (UpdateStandardsControlInput) String added in v0.19.0

String returns the string representation

func (*UpdateStandardsControlInput) Validate added in v0.19.0

func (s *UpdateStandardsControlInput) Validate() error

Validate inspects the fields of the type to determine if they are valid.

type UpdateStandardsControlOutput added in v0.19.0

type UpdateStandardsControlOutput struct {
	// contains filtered or unexported fields
}

func (UpdateStandardsControlOutput) MarshalFields added in v0.19.0

MarshalFields encodes the AWS API shape using the passed in protocol encoder.

func (UpdateStandardsControlOutput) String added in v0.19.0

String returns the string representation

type UpdateStandardsControlRequest added in v0.19.0

type UpdateStandardsControlRequest struct {
	*aws.Request
	Input *UpdateStandardsControlInput
	Copy  func(*UpdateStandardsControlInput) UpdateStandardsControlRequest
}

UpdateStandardsControlRequest is the request type for the UpdateStandardsControl API operation.

func (UpdateStandardsControlRequest) Send added in v0.19.0

Send marshals and sends the UpdateStandardsControl API request.

type UpdateStandardsControlResponse added in v0.19.0

type UpdateStandardsControlResponse struct {
	*UpdateStandardsControlOutput
	// contains filtered or unexported fields
}

UpdateStandardsControlResponse is the response type for the UpdateStandardsControl API operation.

func (*UpdateStandardsControlResponse) SDKResponseMetdata added in v0.19.0

func (r *UpdateStandardsControlResponse) SDKResponseMetdata() *aws.Response

SDKResponseMetdata returns the response metadata for the UpdateStandardsControl request.

type VerificationState

type VerificationState string
const (
	VerificationStateUnknown        VerificationState = "UNKNOWN"
	VerificationStateTruePositive   VerificationState = "TRUE_POSITIVE"
	VerificationStateFalsePositive  VerificationState = "FALSE_POSITIVE"
	VerificationStateBenignPositive VerificationState = "BENIGN_POSITIVE"
)

Enum values for VerificationState

func (VerificationState) MarshalValue

func (enum VerificationState) MarshalValue() (string, error)

func (VerificationState) MarshalValueBuf

func (enum VerificationState) MarshalValueBuf(b []byte) ([]byte, error)

type Vulnerability added in v0.24.0

type Vulnerability struct {

	// CVSS scores from the advisory related to the vulnerability.
	Cvss []Cvss `type:"list"`

	// The identifier of the vulnerability.
	//
	// Id is a required field
	Id *string `type:"string" required:"true"`

	// A list of URLs that provide additional information about the vulnerability.
	ReferenceUrls []string `type:"list"`

	// List of vulnerabilities that are related to this vulnerability.
	RelatedVulnerabilities []string `type:"list"`

	// Information about the vendor that generates the vulnerability report.
	Vendor *VulnerabilityVendor `type:"structure"`

	// List of software packages that have the vulnerability.
	VulnerablePackages []SoftwarePackage `type:"list"`
	// contains filtered or unexported fields
}

A vulnerability associated with a finding.

func (Vulnerability) MarshalFields added in v0.24.0

func (s Vulnerability) MarshalFields(e protocol.FieldEncoder) error

MarshalFields encodes the AWS API shape using the passed in protocol encoder.

func (Vulnerability) String added in v0.24.0

func (s Vulnerability) String() string

String returns the string representation

func (*Vulnerability) Validate added in v0.24.0

func (s *Vulnerability) Validate() error

Validate inspects the fields of the type to determine if they are valid.

type VulnerabilityVendor added in v0.24.0

type VulnerabilityVendor struct {

	// The name of the vendor.
	//
	// Name is a required field
	Name *string `type:"string" required:"true"`

	// The URL of the vulnerability advisory.
	Url *string `type:"string"`

	// The datetime when the vulnerability advisory was created.
	VendorCreatedAt *string `type:"string"`

	// The severity that the vendor assigned to the vulnerability.
	VendorSeverity *string `type:"string"`

	// The datetime when the vulnerability advisory was last updated.
	VendorUpdatedAt *string `type:"string"`
	// contains filtered or unexported fields
}

A vendor that generates a vulnerability report.

func (VulnerabilityVendor) MarshalFields added in v0.24.0

func (s VulnerabilityVendor) MarshalFields(e protocol.FieldEncoder) error

MarshalFields encodes the AWS API shape using the passed in protocol encoder.

func (VulnerabilityVendor) String added in v0.24.0

func (s VulnerabilityVendor) String() string

String returns the string representation

func (*VulnerabilityVendor) Validate added in v0.24.0

func (s *VulnerabilityVendor) Validate() error

Validate inspects the fields of the type to determine if they are valid.

type WafAction added in v0.20.0

type WafAction struct {

	// Specifies how you want AWS WAF to respond to requests that match the settings
	// in a rule.
	//
	// Valid settings include the following:
	//
	//    * ALLOW - AWS WAF allows requests
	//
	//    * BLOCK - AWS WAF blocks requests
	//
	//    * COUNT - AWS WAF increments a counter of the requests that match all
	//    of the conditions in the rule. AWS WAF then continues to inspect the web
	//    request based on the remaining rules in the web ACL. You can't specify
	//    COUNT for the default action for a WebACL.
	Type *string `type:"string"`
	// contains filtered or unexported fields
}

Details about the action that CloudFront or AWS WAF takes when a web request matches the conditions in the rule.

func (WafAction) MarshalFields added in v0.20.0

func (s WafAction) MarshalFields(e protocol.FieldEncoder) error

MarshalFields encodes the AWS API shape using the passed in protocol encoder.

func (WafAction) String added in v0.20.0

func (s WafAction) String() string

String returns the string representation

type WafExcludedRule added in v0.20.0

type WafExcludedRule struct {

	// The unique identifier for the rule to exclude from the rule group.
	RuleId *string `type:"string"`
	// contains filtered or unexported fields
}

Details about a rule to exclude from a rule group.

func (WafExcludedRule) MarshalFields added in v0.20.0

func (s WafExcludedRule) MarshalFields(e protocol.FieldEncoder) error

MarshalFields encodes the AWS API shape using the passed in protocol encoder.

func (WafExcludedRule) String added in v0.20.0

func (s WafExcludedRule) String() string

String returns the string representation

type WafOverrideAction added in v0.20.0

type WafOverrideAction struct {

	// COUNT overrides the action specified by the individual rule within a RuleGroup .
	//
	// If set to NONE, the rule's action takes place.
	Type *string `type:"string"`
	// contains filtered or unexported fields
}

Details about an override action for a rule.

func (WafOverrideAction) MarshalFields added in v0.20.0

func (s WafOverrideAction) MarshalFields(e protocol.FieldEncoder) error

MarshalFields encodes the AWS API shape using the passed in protocol encoder.

func (WafOverrideAction) String added in v0.20.0

func (s WafOverrideAction) String() string

String returns the string representation

type Workflow added in v0.20.0

type Workflow struct {

	// The status of the investigation into the finding. The allowed values are
	// the following.
	//
	//    * NEW - The initial state of a finding, before it is reviewed.
	//
	//    * NOTIFIED - Indicates that you notified the resource owner about the
	//    security issue. Used when the initial reviewer is not the resource owner,
	//    and needs intervention from the resource owner.
	//
	//    * SUPPRESSED - The finding will not be reviewed again and will not be
	//    acted upon.
	//
	//    * RESOLVED - The finding was reviewed and remediated and is now considered
	//    resolved.
	Status WorkflowStatus `type:"string" enum:"true"`
	// contains filtered or unexported fields
}

Provides information about the status of the investigation into a finding.

func (Workflow) MarshalFields added in v0.20.0

func (s Workflow) MarshalFields(e protocol.FieldEncoder) error

MarshalFields encodes the AWS API shape using the passed in protocol encoder.

func (Workflow) String added in v0.20.0

func (s Workflow) String() string

String returns the string representation

type WorkflowState

type WorkflowState string
const (
	WorkflowStateNew        WorkflowState = "NEW"
	WorkflowStateAssigned   WorkflowState = "ASSIGNED"
	WorkflowStateInProgress WorkflowState = "IN_PROGRESS"
	WorkflowStateDeferred   WorkflowState = "DEFERRED"
	WorkflowStateResolved   WorkflowState = "RESOLVED"
)

Enum values for WorkflowState

func (WorkflowState) MarshalValue

func (enum WorkflowState) MarshalValue() (string, error)

func (WorkflowState) MarshalValueBuf

func (enum WorkflowState) MarshalValueBuf(b []byte) ([]byte, error)

type WorkflowStatus added in v0.20.0

type WorkflowStatus string
const (
	WorkflowStatusNew        WorkflowStatus = "NEW"
	WorkflowStatusNotified   WorkflowStatus = "NOTIFIED"
	WorkflowStatusResolved   WorkflowStatus = "RESOLVED"
	WorkflowStatusSuppressed WorkflowStatus = "SUPPRESSED"
)

Enum values for WorkflowStatus

func (WorkflowStatus) MarshalValue added in v0.20.0

func (enum WorkflowStatus) MarshalValue() (string, error)

func (WorkflowStatus) MarshalValueBuf added in v0.20.0

func (enum WorkflowStatus) MarshalValueBuf(b []byte) ([]byte, error)

type WorkflowUpdate added in v0.21.0

type WorkflowUpdate struct {

	// The status of the investigation into the finding. The allowed values are
	// the following.
	//
	//    * NEW - The initial state of a finding, before it is reviewed.
	//
	//    * NOTIFIED - Indicates that you notified the resource owner about the
	//    security issue. Used when the initial reviewer is not the resource owner,
	//    and needs intervention from the resource owner.
	//
	//    * RESOLVED - The finding was reviewed and remediated and is now considered
	//    resolved.
	//
	//    * SUPPRESSED - The finding will not be reviewed again and will not be
	//    acted upon.
	Status WorkflowStatus `type:"string" enum:"true"`
	// contains filtered or unexported fields
}

Used to update information about the investigation into the finding.

func (WorkflowUpdate) MarshalFields added in v0.21.0

func (s WorkflowUpdate) MarshalFields(e protocol.FieldEncoder) error

MarshalFields encodes the AWS API shape using the passed in protocol encoder.

func (WorkflowUpdate) String added in v0.21.0

func (s WorkflowUpdate) String() string

String returns the string representation

Directories

Path Synopsis
Package securityhubiface provides an interface to enable mocking the AWS SecurityHub service client for testing your code.
Package securityhubiface provides an interface to enable mocking the AWS SecurityHub service client for testing your code.

Jump to

Keyboard shortcuts

? : This menu
/ : Search site
f or F : Jump to
y or Y : Canonical URL