Support for additional levels of cross-account, cross-Region organiza…

…tional units in Automation. Various documentation updates. This is a documentation only release to address various tickets. GitLab Enhancements - Add support for Self-Hosted GitLab runners in CodeBuild. Add group webhooks Updates Amazon RDS documentation with configuration information about the BYOL model for RDS for Db2. Support for JSON resource-based policies and block public access The `DescribeImageScanning` API now includes `fixAvailable`, `exploitAvailable`, and `fixedInVersion` fields to provide more detailed information about the availability of fixes, exploits, and fixed versions for identified image vulnerabilities.
aws · Sep 17, 2024 · 4cad430 · 4cad430
1 parent 297d526
commit 4cad430
Show file tree

Hide file tree

Showing 96 changed files with 2,791 additions and 339 deletions.
diff --git a/VERSION b/VERSION
@@ -1 +1 @@
-1.11.406
+1.11.407
diff --git a/generated/src/aws-cpp-sdk-codebuild/include/aws/codebuild/model/ScopeConfiguration.h b/generated/src/aws-cpp-sdk-codebuild/include/aws/codebuild/model/ScopeConfiguration.h
@@ -41,9 +41,8 @@ namespace Model
 
     ///@{
     /**
-     * <p>The name of either the enterprise or organization that will send webhook
-     * events to CodeBuild, depending on if the webhook is a global or organization
-     * webhook respectively.</p>
+     * <p>The name of either the group, enterprise, or organization that will send
+     * webhook events to CodeBuild, depending on the type of webhook.</p>
      */
     inline const Aws::String& GetName() const{ return m_name; }
     inline bool NameHasBeenSet() const { return m_nameHasBeenSet; }
@@ -57,8 +56,9 @@ namespace Model
 
     ///@{
     /**
-     * <p>The domain of the GitHub Enterprise organization. Note that this parameter is
-     * only required if your project's source type is GITHUB_ENTERPRISE</p>
+     * <p>The domain of the GitHub Enterprise organization or the GitLab Self Managed
+     * group. Note that this parameter is only required if your project's source type
+     * is GITHUB_ENTERPRISE or GITLAB_SELF_MANAGED.</p>
      */
     inline const Aws::String& GetDomain() const{ return m_domain; }
     inline bool DomainHasBeenSet() const { return m_domainHasBeenSet; }
@@ -72,7 +72,7 @@ namespace Model
 
     ///@{
     /**
-     * <p>The type of scope for a GitHub webhook.</p>
+     * <p>The type of scope for a GitHub or GitLab webhook.</p>
      */
     inline const WebhookScopeType& GetScope() const{ return m_scope; }
     inline bool ScopeHasBeenSet() const { return m_scopeHasBeenSet; }

diff --git a/generated/src/aws-cpp-sdk-codebuild/include/aws/codebuild/model/WebhookScopeType.h b/generated/src/aws-cpp-sdk-codebuild/include/aws/codebuild/model/WebhookScopeType.h
@@ -17,7 +17,8 @@ namespace Model
   {
     NOT_SET,
     GITHUB_ORGANIZATION,
-    GITHUB_GLOBAL
+    GITHUB_GLOBAL,
+    GITLAB_GROUP
   };
 
 namespace WebhookScopeTypeMapper

diff --git a/generated/src/aws-cpp-sdk-codebuild/source/model/WebhookScopeType.cpp b/generated/src/aws-cpp-sdk-codebuild/source/model/WebhookScopeType.cpp
@@ -22,6 +22,7 @@ namespace Aws
 
         static const int GITHUB_ORGANIZATION_HASH = HashingUtils::HashString("GITHUB_ORGANIZATION");
         static const int GITHUB_GLOBAL_HASH = HashingUtils::HashString("GITHUB_GLOBAL");
+        static const int GITLAB_GROUP_HASH = HashingUtils::HashString("GITLAB_GROUP");
 
 
         WebhookScopeType GetWebhookScopeTypeForName(const Aws::String& name)
@@ -35,6 +36,10 @@ namespace Aws
           {
             return WebhookScopeType::GITHUB_GLOBAL;
           }
+          else if (hashCode == GITLAB_GROUP_HASH)
+          {
+            return WebhookScopeType::GITLAB_GROUP;
+          }
           EnumParseOverflowContainer* overflowContainer = Aws::GetEnumOverflowContainer();
           if(overflowContainer)
           {
@@ -55,6 +60,8 @@ namespace Aws
             return "GITHUB_ORGANIZATION";
           case WebhookScopeType::GITHUB_GLOBAL:
             return "GITHUB_GLOBAL";
+          case WebhookScopeType::GITLAB_GROUP:
+            return "GITLAB_GROUP";
           default:
             EnumParseOverflowContainer* overflowContainer = Aws::GetEnumOverflowContainer();
             if(overflowContainer)

diff --git a/generated/src/aws-cpp-sdk-ecr/include/aws/ecr/model/EncryptionConfiguration.h b/generated/src/aws-cpp-sdk-ecr/include/aws/ecr/model/EncryptionConfiguration.h
@@ -59,15 +59,14 @@ namespace Model
      * created.</p> <p>If you use the <code>KMS_DSSE</code> encryption type, the
      * contents of the repository will be encrypted with two layers of encryption using
      * server-side encryption with the KMS Management Service key stored in KMS.
-     * Similar to the KMS encryption type, you can either use the default Amazon Web
-     * Services managed KMS key for Amazon ECR, or specify your own KMS key, which
-     * you've already created. </p> <p>If you use the <code>AES256</code> encryption
-     * type, Amazon ECR uses server-side encryption with Amazon S3-managed encryption
-     * keys which encrypts the images in the repository using an AES256 encryption
-     * algorithm. For more information, see <a
-     * href="https://docs.aws.amazon.com/AmazonS3/latest/dev/UsingServerSideEncryption.html">Protecting
-     * data using server-side encryption with Amazon S3-managed encryption keys
-     * (SSE-S3)</a> in the <i>Amazon Simple Storage Service Console Developer
+     * Similar to the <code>KMS</code> encryption type, you can either use the default
+     * Amazon Web Services managed KMS key for Amazon ECR, or specify your own KMS key,
+     * which you've already created. </p> <p>If you use the <code>AES256</code>
+     * encryption type, Amazon ECR uses server-side encryption with Amazon S3-managed
+     * encryption keys which encrypts the images in the repository using an AES256
+     * encryption algorithm.</p> <p>For more information, see <a
+     * href="https://docs.aws.amazon.com/AmazonECR/latest/userguide/encryption-at-rest.html">Amazon
+     * ECR encryption at rest</a> in the <i>Amazon Elastic Container Registry User
      * Guide</i>.</p>
      */
     inline const EncryptionType& GetEncryptionType() const{ return m_encryptionType; }

diff --git a/generated/src/aws-cpp-sdk-ecr/include/aws/ecr/model/EnhancedImageScanFinding.h b/generated/src/aws-cpp-sdk-ecr/include/aws/ecr/model/EnhancedImageScanFinding.h
@@ -237,6 +237,37 @@ namespace Model
     inline EnhancedImageScanFinding& WithUpdatedAt(const Aws::Utils::DateTime& value) { SetUpdatedAt(value); return *this;}
     inline EnhancedImageScanFinding& WithUpdatedAt(Aws::Utils::DateTime&& value) { SetUpdatedAt(std::move(value)); return *this;}
     ///@}
+
+    ///@{
+    /**
+     * <p>Details on whether a fix is available through a version update. This value
+     * can be <code>YES</code>, <code>NO</code>, or <code>PARTIAL</code>. A
+     * <code>PARTIAL</code> fix means that some, but not all, of the packages
+     * identified in the finding have fixes available through updated versions.</p>
+     */
+    inline const Aws::String& GetFixAvailable() const{ return m_fixAvailable; }
+    inline bool FixAvailableHasBeenSet() const { return m_fixAvailableHasBeenSet; }
+    inline void SetFixAvailable(const Aws::String& value) { m_fixAvailableHasBeenSet = true; m_fixAvailable = value; }
+    inline void SetFixAvailable(Aws::String&& value) { m_fixAvailableHasBeenSet = true; m_fixAvailable = std::move(value); }
+    inline void SetFixAvailable(const char* value) { m_fixAvailableHasBeenSet = true; m_fixAvailable.assign(value); }
+    inline EnhancedImageScanFinding& WithFixAvailable(const Aws::String& value) { SetFixAvailable(value); return *this;}
+    inline EnhancedImageScanFinding& WithFixAvailable(Aws::String&& value) { SetFixAvailable(std::move(value)); return *this;}
+    inline EnhancedImageScanFinding& WithFixAvailable(const char* value) { SetFixAvailable(value); return *this;}
+    ///@}
+
+    ///@{
+    /**
+     * <p>If a finding discovered in your environment has an exploit available.</p>
+     */
+    inline const Aws::String& GetExploitAvailable() const{ return m_exploitAvailable; }
+    inline bool ExploitAvailableHasBeenSet() const { return m_exploitAvailableHasBeenSet; }
+    inline void SetExploitAvailable(const Aws::String& value) { m_exploitAvailableHasBeenSet = true; m_exploitAvailable = value; }
+    inline void SetExploitAvailable(Aws::String&& value) { m_exploitAvailableHasBeenSet = true; m_exploitAvailable = std::move(value); }
+    inline void SetExploitAvailable(const char* value) { m_exploitAvailableHasBeenSet = true; m_exploitAvailable.assign(value); }
+    inline EnhancedImageScanFinding& WithExploitAvailable(const Aws::String& value) { SetExploitAvailable(value); return *this;}
+    inline EnhancedImageScanFinding& WithExploitAvailable(Aws::String&& value) { SetExploitAvailable(std::move(value)); return *this;}
+    inline EnhancedImageScanFinding& WithExploitAvailable(const char* value) { SetExploitAvailable(value); return *this;}
+    ///@}
   private:
 
     Aws::String m_awsAccountId;
@@ -283,6 +314,12 @@ namespace Model
 
     Aws::Utils::DateTime m_updatedAt;
     bool m_updatedAtHasBeenSet = false;
+
+    Aws::String m_fixAvailable;
+    bool m_fixAvailableHasBeenSet = false;
+
+    Aws::String m_exploitAvailable;
+    bool m_exploitAvailableHasBeenSet = false;
   };
 
 } // namespace Model

diff --git a/generated/src/aws-cpp-sdk-ecr/include/aws/ecr/model/VulnerablePackage.h b/generated/src/aws-cpp-sdk-ecr/include/aws/ecr/model/VulnerablePackage.h
@@ -145,6 +145,20 @@ namespace Model
     inline VulnerablePackage& WithVersion(Aws::String&& value) { SetVersion(std::move(value)); return *this;}
     inline VulnerablePackage& WithVersion(const char* value) { SetVersion(value); return *this;}
     ///@}
+
+    ///@{
+    /**
+     * <p>The version of the package that contains the vulnerability fix.</p>
+     */
+    inline const Aws::String& GetFixedInVersion() const{ return m_fixedInVersion; }
+    inline bool FixedInVersionHasBeenSet() const { return m_fixedInVersionHasBeenSet; }
+    inline void SetFixedInVersion(const Aws::String& value) { m_fixedInVersionHasBeenSet = true; m_fixedInVersion = value; }
+    inline void SetFixedInVersion(Aws::String&& value) { m_fixedInVersionHasBeenSet = true; m_fixedInVersion = std::move(value); }
+    inline void SetFixedInVersion(const char* value) { m_fixedInVersionHasBeenSet = true; m_fixedInVersion.assign(value); }
+    inline VulnerablePackage& WithFixedInVersion(const Aws::String& value) { SetFixedInVersion(value); return *this;}
+    inline VulnerablePackage& WithFixedInVersion(Aws::String&& value) { SetFixedInVersion(std::move(value)); return *this;}
+    inline VulnerablePackage& WithFixedInVersion(const char* value) { SetFixedInVersion(value); return *this;}
+    ///@}
   private:
 
     Aws::String m_arch;
@@ -170,6 +184,9 @@ namespace Model
 
     Aws::String m_version;
     bool m_versionHasBeenSet = false;
+
+    Aws::String m_fixedInVersion;
+    bool m_fixedInVersionHasBeenSet = false;
   };
 
 } // namespace Model

diff --git a/generated/src/aws-cpp-sdk-ecr/source/model/EnhancedImageScanFinding.cpp b/generated/src/aws-cpp-sdk-ecr/source/model/EnhancedImageScanFinding.cpp
@@ -34,7 +34,9 @@ EnhancedImageScanFinding::EnhancedImageScanFinding() :
     m_statusHasBeenSet(false),
     m_titleHasBeenSet(false),
     m_typeHasBeenSet(false),
-    m_updatedAtHasBeenSet(false)
+    m_updatedAtHasBeenSet(false),
+    m_fixAvailableHasBeenSet(false),
+    m_exploitAvailableHasBeenSet(false)
 {
 }
 
@@ -154,6 +156,20 @@ EnhancedImageScanFinding& EnhancedImageScanFinding::operator =(JsonView jsonValu
     m_updatedAtHasBeenSet = true;
   }
 
+  if(jsonValue.ValueExists("fixAvailable"))
+  {
+    m_fixAvailable = jsonValue.GetString("fixAvailable");
+
+    m_fixAvailableHasBeenSet = true;
+  }
+
+  if(jsonValue.ValueExists("exploitAvailable"))
+  {
+    m_exploitAvailable = jsonValue.GetString("exploitAvailable");
+
+    m_exploitAvailableHasBeenSet = true;
+  }
+
   return *this;
 }
 
@@ -253,6 +269,18 @@ JsonValue EnhancedImageScanFinding::Jsonize() const
    payload.WithDouble("updatedAt", m_updatedAt.SecondsWithMSPrecision());
   }
 
+  if(m_fixAvailableHasBeenSet)
+  {
+   payload.WithString("fixAvailable", m_fixAvailable);
+
+  }
+
+  if(m_exploitAvailableHasBeenSet)
+  {
+   payload.WithString("exploitAvailable", m_exploitAvailable);
+
+  }
+
   return payload;
 }
 

diff --git a/generated/src/aws-cpp-sdk-ecr/source/model/VulnerablePackage.cpp b/generated/src/aws-cpp-sdk-ecr/source/model/VulnerablePackage.cpp
@@ -27,7 +27,8 @@ VulnerablePackage::VulnerablePackage() :
     m_packageManagerHasBeenSet(false),
     m_releaseHasBeenSet(false),
     m_sourceLayerHashHasBeenSet(false),
-    m_versionHasBeenSet(false)
+    m_versionHasBeenSet(false),
+    m_fixedInVersionHasBeenSet(false)
 {
 }
 
@@ -95,6 +96,13 @@ VulnerablePackage& VulnerablePackage::operator =(JsonView jsonValue)
     m_versionHasBeenSet = true;
   }
 
+  if(jsonValue.ValueExists("fixedInVersion"))
+  {
+    m_fixedInVersion = jsonValue.GetString("fixedInVersion");
+
+    m_fixedInVersionHasBeenSet = true;
+  }
+
   return *this;
 }
 
@@ -150,6 +158,12 @@ JsonValue VulnerablePackage::Jsonize() const
 
   }
 
+  if(m_fixedInVersionHasBeenSet)
+  {
+   payload.WithString("fixedInVersion", m_fixedInVersion);
+
+  }
+
   return payload;
 }