1{ 2 "version":"2.0", 3 "metadata":{ 4 "apiVersion":"2018-05-10", 5 "endpointPrefix":"codeguru-security", 6 "jsonVersion":"1.1", 7 "protocol":"rest-json", 8 "serviceFullName":"Amazon CodeGuru Security", 9 "serviceId":"CodeGuru Security", 10 "signatureVersion":"v4", 11 "signingName":"codeguru-security", 12 "uid":"codeguru-security-2018-05-10" 13 }, 14 "operations":{ 15 "BatchGetFindings":{ 16 "name":"BatchGetFindings", 17 "http":{ 18 "method":"POST", 19 "requestUri":"/batchGetFindings", 20 "responseCode":200 21 }, 22 "input":{"shape":"BatchGetFindingsRequest"}, 23 "output":{"shape":"BatchGetFindingsResponse"}, 24 "errors":[ 25 {"shape":"InternalServerException"}, 26 {"shape":"ThrottlingException"}, 27 {"shape":"ValidationException"}, 28 {"shape":"AccessDeniedException"} 29 ], 30 "documentation":"<p>Returns a list of all requested findings.</p>" 31 }, 32 "CreateScan":{ 33 "name":"CreateScan", 34 "http":{ 35 "method":"POST", 36 "requestUri":"/scans", 37 "responseCode":200 38 }, 39 "input":{"shape":"CreateScanRequest"}, 40 "output":{"shape":"CreateScanResponse"}, 41 "errors":[ 42 {"shape":"InternalServerException"}, 43 {"shape":"ConflictException"}, 44 {"shape":"ResourceNotFoundException"}, 45 {"shape":"ThrottlingException"}, 46 {"shape":"ValidationException"}, 47 {"shape":"AccessDeniedException"} 48 ], 49 "documentation":"<p>Use to create a scan using code uploaded to an S3 bucket.</p>" 50 }, 51 "CreateUploadUrl":{ 52 "name":"CreateUploadUrl", 53 "http":{ 54 "method":"POST", 55 "requestUri":"/uploadUrl", 56 "responseCode":200 57 }, 58 "input":{"shape":"CreateUploadUrlRequest"}, 59 "output":{"shape":"CreateUploadUrlResponse"}, 60 "errors":[ 61 {"shape":"InternalServerException"}, 62 {"shape":"ThrottlingException"}, 63 {"shape":"ValidationException"}, 64 {"shape":"AccessDeniedException"} 65 ], 66 "documentation":"<p>Generates a pre-signed URL and request headers used to upload a code resource.</p> <p>You can upload your code resource to the URL and add the request headers using any HTTP client.</p>" 67 }, 68 "GetAccountConfiguration":{ 69 "name":"GetAccountConfiguration", 70 "http":{ 71 "method":"GET", 72 "requestUri":"/accountConfiguration/get", 73 "responseCode":200 74 }, 75 "input":{"shape":"GetAccountConfigurationRequest"}, 76 "output":{"shape":"GetAccountConfigurationResponse"}, 77 "errors":[ 78 {"shape":"InternalServerException"}, 79 {"shape":"ThrottlingException"}, 80 {"shape":"ValidationException"}, 81 {"shape":"AccessDeniedException"} 82 ], 83 "documentation":"<p>Use to get account level configuration.</p>" 84 }, 85 "GetFindings":{ 86 "name":"GetFindings", 87 "http":{ 88 "method":"GET", 89 "requestUri":"/findings/{scanName}", 90 "responseCode":200 91 }, 92 "input":{"shape":"GetFindingsRequest"}, 93 "output":{"shape":"GetFindingsResponse"}, 94 "errors":[ 95 {"shape":"InternalServerException"}, 96 {"shape":"ConflictException"}, 97 {"shape":"ResourceNotFoundException"}, 98 {"shape":"ThrottlingException"}, 99 {"shape":"ValidationException"}, 100 {"shape":"AccessDeniedException"} 101 ], 102 "documentation":"<p>Returns a list of all findings generated by a particular scan.</p>" 103 }, 104 "GetMetricsSummary":{ 105 "name":"GetMetricsSummary", 106 "http":{ 107 "method":"GET", 108 "requestUri":"/metrics/summary", 109 "responseCode":200 110 }, 111 "input":{"shape":"GetMetricsSummaryRequest"}, 112 "output":{"shape":"GetMetricsSummaryResponse"}, 113 "errors":[ 114 {"shape":"InternalServerException"}, 115 {"shape":"ThrottlingException"}, 116 {"shape":"ValidationException"}, 117 {"shape":"AccessDeniedException"} 118 ], 119 "documentation":"<p>Returns top level metrics about an account from a specified date, including number of open findings, the categories with most findings, the scans with most open findings, and scans with most open critical findings. </p>" 120 }, 121 "GetScan":{ 122 "name":"GetScan", 123 "http":{ 124 "method":"GET", 125 "requestUri":"/scans/{scanName}", 126 "responseCode":200 127 }, 128 "input":{"shape":"GetScanRequest"}, 129 "output":{"shape":"GetScanResponse"}, 130 "errors":[ 131 {"shape":"InternalServerException"}, 132 {"shape":"ResourceNotFoundException"}, 133 {"shape":"ThrottlingException"}, 134 {"shape":"AccessDeniedException"} 135 ], 136 "documentation":"<p>Returns details about a scan, including whether or not a scan has completed.</p>" 137 }, 138 "ListFindingsMetrics":{ 139 "name":"ListFindingsMetrics", 140 "http":{ 141 "method":"GET", 142 "requestUri":"/metrics/findings", 143 "responseCode":200 144 }, 145 "input":{"shape":"ListFindingsMetricsRequest"}, 146 "output":{"shape":"ListFindingsMetricsResponse"}, 147 "errors":[ 148 {"shape":"InternalServerException"}, 149 {"shape":"ThrottlingException"}, 150 {"shape":"ValidationException"}, 151 {"shape":"AccessDeniedException"} 152 ], 153 "documentation":"<p>Returns metrics about all findings in an account within a specified time range.</p>" 154 }, 155 "ListScans":{ 156 "name":"ListScans", 157 "http":{ 158 "method":"GET", 159 "requestUri":"/scans", 160 "responseCode":200 161 }, 162 "input":{"shape":"ListScansRequest"}, 163 "output":{"shape":"ListScansResponse"}, 164 "errors":[ 165 {"shape":"InternalServerException"}, 166 {"shape":"ThrottlingException"}, 167 {"shape":"ValidationException"}, 168 {"shape":"AccessDeniedException"} 169 ], 170 "documentation":"<p>Returns a list of all the standard scans in an account. Does not return express scans.</p>" 171 }, 172 "ListTagsForResource":{ 173 "name":"ListTagsForResource", 174 "http":{ 175 "method":"GET", 176 "requestUri":"/tags/{resourceArn}", 177 "responseCode":200 178 }, 179 "input":{"shape":"ListTagsForResourceRequest"}, 180 "output":{"shape":"ListTagsForResourceResponse"}, 181 "errors":[ 182 {"shape":"InternalServerException"}, 183 {"shape":"ConflictException"}, 184 {"shape":"ResourceNotFoundException"}, 185 {"shape":"ThrottlingException"}, 186 {"shape":"ValidationException"}, 187 {"shape":"AccessDeniedException"} 188 ], 189 "documentation":"<p>Returns a list of all tags associated with a scan.</p>" 190 }, 191 "TagResource":{ 192 "name":"TagResource", 193 "http":{ 194 "method":"POST", 195 "requestUri":"/tags/{resourceArn}", 196 "responseCode":204 197 }, 198 "input":{"shape":"TagResourceRequest"}, 199 "output":{"shape":"TagResourceResponse"}, 200 "errors":[ 201 {"shape":"InternalServerException"}, 202 {"shape":"ConflictException"}, 203 {"shape":"ResourceNotFoundException"}, 204 {"shape":"ThrottlingException"}, 205 {"shape":"ValidationException"}, 206 {"shape":"AccessDeniedException"} 207 ], 208 "documentation":"<p>Use to add one or more tags to an existing scan.</p>" 209 }, 210 "UntagResource":{ 211 "name":"UntagResource", 212 "http":{ 213 "method":"DELETE", 214 "requestUri":"/tags/{resourceArn}", 215 "responseCode":204 216 }, 217 "input":{"shape":"UntagResourceRequest"}, 218 "output":{"shape":"UntagResourceResponse"}, 219 "errors":[ 220 {"shape":"InternalServerException"}, 221 {"shape":"ConflictException"}, 222 {"shape":"ResourceNotFoundException"}, 223 {"shape":"ThrottlingException"}, 224 {"shape":"ValidationException"}, 225 {"shape":"AccessDeniedException"} 226 ], 227 "documentation":"<p>Use to remove one or more tags from an existing scan.</p>", 228 "idempotent":true 229 }, 230 "UpdateAccountConfiguration":{ 231 "name":"UpdateAccountConfiguration", 232 "http":{ 233 "method":"PUT", 234 "requestUri":"/updateAccountConfiguration", 235 "responseCode":200 236 }, 237 "input":{"shape":"UpdateAccountConfigurationRequest"}, 238 "output":{"shape":"UpdateAccountConfigurationResponse"}, 239 "errors":[ 240 {"shape":"InternalServerException"}, 241 {"shape":"ResourceNotFoundException"}, 242 {"shape":"ThrottlingException"}, 243 {"shape":"ValidationException"}, 244 {"shape":"AccessDeniedException"} 245 ], 246 "documentation":"<p>Use to update account-level configuration with an encryption key.</p>" 247 } 248 }, 249 "shapes":{ 250 "AccessDeniedException":{ 251 "type":"structure", 252 "required":[ 253 "errorCode", 254 "message" 255 ], 256 "members":{ 257 "errorCode":{ 258 "shape":"String", 259 "documentation":"<p>The identifier for the error.</p>" 260 }, 261 "message":{ 262 "shape":"String", 263 "documentation":"<p>Description of the error.</p>" 264 }, 265 "resourceId":{ 266 "shape":"String", 267 "documentation":"<p>The identifier for the resource you don't have access to.</p>" 268 }, 269 "resourceType":{ 270 "shape":"String", 271 "documentation":"<p>The type of resource you don't have access to.</p>" 272 } 273 }, 274 "documentation":"<p>You do not have sufficient access to perform this action.</p>", 275 "error":{ 276 "httpStatusCode":403, 277 "senderFault":true 278 }, 279 "exception":true 280 }, 281 "AccountFindingsMetric":{ 282 "type":"structure", 283 "members":{ 284 "closedFindings":{ 285 "shape":"FindingMetricsValuePerSeverity", 286 "documentation":"<p>The number of closed findings of each severity in an account on the specified date.</p>" 287 }, 288 "date":{ 289 "shape":"Timestamp", 290 "documentation":"<p>The date from which the finding metrics were retrieved.</p>" 291 }, 292 "meanTimeToClose":{ 293 "shape":"FindingMetricsValuePerSeverity", 294 "documentation":"<p>The average time it takes to close findings of each severity in days.</p>" 295 }, 296 "newFindings":{ 297 "shape":"FindingMetricsValuePerSeverity", 298 "documentation":"<p>The number of new findings of each severity in account on the specified date.</p>" 299 }, 300 "openFindings":{ 301 "shape":"FindingMetricsValuePerSeverity", 302 "documentation":"<p>The number of open findings of each severity in an account as of the specified date.</p>" 303 } 304 }, 305 "documentation":"<p>A summary of findings metrics in an account.</p>" 306 }, 307 "AnalysisType":{ 308 "type":"string", 309 "enum":[ 310 "Security", 311 "All" 312 ] 313 }, 314 "BatchGetFindingsError":{ 315 "type":"structure", 316 "required":[ 317 "errorCode", 318 "findingId", 319 "message", 320 "scanName" 321 ], 322 "members":{ 323 "errorCode":{ 324 "shape":"ErrorCode", 325 "documentation":"<p>A code associated with the type of error.</p>" 326 }, 327 "findingId":{ 328 "shape":"String", 329 "documentation":"<p>The finding ID of the finding that was not fetched.</p>" 330 }, 331 "message":{ 332 "shape":"String", 333 "documentation":"<p>Describes the error.</p>" 334 }, 335 "scanName":{ 336 "shape":"ScanName", 337 "documentation":"<p>The name of the scan that generated the finding.</p>" 338 } 339 }, 340 "documentation":"<p>Contains information about the error that caused a finding to fail to be retrieved.</p>" 341 }, 342 "BatchGetFindingsErrors":{ 343 "type":"list", 344 "member":{"shape":"BatchGetFindingsError"} 345 }, 346 "BatchGetFindingsRequest":{ 347 "type":"structure", 348 "required":["findingIdentifiers"], 349 "members":{ 350 "findingIdentifiers":{ 351 "shape":"FindingIdentifiers", 352 "documentation":"<p>A list of finding identifiers. Each identifier consists of a <code>scanName</code> and a <code>findingId</code>. You retrieve the <code>findingId</code> when you call <code>GetFindings</code>.</p>" 353 } 354 } 355 }, 356 "BatchGetFindingsResponse":{ 357 "type":"structure", 358 "required":[ 359 "failedFindings", 360 "findings" 361 ], 362 "members":{ 363 "failedFindings":{ 364 "shape":"BatchGetFindingsErrors", 365 "documentation":"<p>A list of errors for individual findings which were not fetched. Each BatchGetFindingsError contains the <code>scanName</code>, <code>findingId</code>, <code>errorCode</code> and error <code>message</code>.</p>" 366 }, 367 "findings":{ 368 "shape":"Findings", 369 "documentation":"<p> A list of all requested findings.</p>" 370 } 371 } 372 }, 373 "CategoriesWithMostFindings":{ 374 "type":"list", 375 "member":{"shape":"CategoryWithFindingNum"}, 376 "max":5, 377 "min":0 378 }, 379 "CategoryWithFindingNum":{ 380 "type":"structure", 381 "members":{ 382 "categoryName":{ 383 "shape":"String", 384 "documentation":"<p>The name of the finding category. A finding category is determined by the detector that detected the finding.</p>" 385 }, 386 "findingNumber":{ 387 "shape":"Integer", 388 "documentation":"<p>The number of open findings in the category.</p>" 389 } 390 }, 391 "documentation":"<p>Information about a finding category with open findings.</p>" 392 }, 393 "ClientToken":{ 394 "type":"string", 395 "max":64, 396 "min":1, 397 "pattern":"^[\\S]+$" 398 }, 399 "CodeLine":{ 400 "type":"structure", 401 "members":{ 402 "content":{ 403 "shape":"String", 404 "documentation":"<p>The code that contains a vulnerability.</p>" 405 }, 406 "number":{ 407 "shape":"Integer", 408 "documentation":"<p>The code line number.</p>" 409 } 410 }, 411 "documentation":"<p>The line of code where a finding was detected.</p>" 412 }, 413 "CodeSnippet":{ 414 "type":"list", 415 "member":{"shape":"CodeLine"} 416 }, 417 "ConflictException":{ 418 "type":"structure", 419 "required":[ 420 "errorCode", 421 "message", 422 "resourceId", 423 "resourceType" 424 ], 425 "members":{ 426 "errorCode":{ 427 "shape":"String", 428 "documentation":"<p>The identifier for the error.</p>" 429 }, 430 "message":{ 431 "shape":"String", 432 "documentation":"<p>Description of the error.</p>" 433 }, 434 "resourceId":{ 435 "shape":"String", 436 "documentation":"<p>The identifier for the service resource associated with the request.</p>" 437 }, 438 "resourceType":{ 439 "shape":"String", 440 "documentation":"<p>The type of resource associated with the request.</p>" 441 } 442 }, 443 "documentation":"<p>The requested operation would cause a conflict with the current state of a service resource associated with the request. Resolve the conflict before retrying this request.</p>", 444 "error":{ 445 "httpStatusCode":409, 446 "senderFault":true 447 }, 448 "exception":true 449 }, 450 "CreateScanRequest":{ 451 "type":"structure", 452 "required":[ 453 "resourceId", 454 "scanName" 455 ], 456 "members":{ 457 "analysisType":{ 458 "shape":"AnalysisType", 459 "documentation":"<p>The type of analysis you want CodeGuru Security to perform in the scan, either <code>Security</code> or <code>All</code>. The <code>Security</code> type only generates findings related to security. The <code>All</code> type generates both security findings and quality findings. Defaults to <code>Security</code> type if missing.</p>" 460 }, 461 "clientToken":{ 462 "shape":"ClientToken", 463 "documentation":"<p>The idempotency token for the request. Amazon CodeGuru Security uses this value to prevent the accidental creation of duplicate scans if there are failures and retries.</p>", 464 "idempotencyToken":true 465 }, 466 "resourceId":{ 467 "shape":"ResourceId", 468 "documentation":"<p>The identifier for an input resource used to create a scan.</p>" 469 }, 470 "scanName":{ 471 "shape":"ScanName", 472 "documentation":"<p>The unique name that CodeGuru Security uses to track revisions across multiple scans of the same resource. Only allowed for a <code>STANDARD</code> scan type. If not specified, it will be auto generated. </p>" 473 }, 474 "scanType":{ 475 "shape":"ScanType", 476 "documentation":"<p>The type of scan, either <code>Standard</code> or <code>Express</code>. Defaults to <code>Standard</code> type if missing.</p> <p> <code>Express</code> scans run on limited resources and use a limited set of detectors to analyze your code in near-real time. <code>Standard</code> scans have standard resource limits and use the full set of detectors to analyze your code.</p>" 477 }, 478 "tags":{ 479 "shape":"TagMap", 480 "documentation":"<p>An array of key-value pairs used to tag a scan. A tag is a custom attribute label with two parts:</p> <ul> <li> <p>A tag key. For example, <code>CostCenter</code>, <code>Environment</code>, or <code>Secret</code>. Tag keys are case sensitive.</p> </li> <li> <p>An optional tag value field. For example, <code>111122223333</code>, <code>Production</code>, or a team name. Omitting the tag value is the same as using an empty string. Tag values are case sensitive.</p> </li> </ul>" 481 } 482 } 483 }, 484 "CreateScanResponse":{ 485 "type":"structure", 486 "required":[ 487 "resourceId", 488 "runId", 489 "scanName", 490 "scanState" 491 ], 492 "members":{ 493 "resourceId":{ 494 "shape":"ResourceId", 495 "documentation":"<p>The identifier for the resource object that contains resources that were scanned.</p>" 496 }, 497 "runId":{ 498 "shape":"Uuid", 499 "documentation":"<p>UUID that identifies the individual scan run.</p>" 500 }, 501 "scanName":{ 502 "shape":"ScanName", 503 "documentation":"<p>The name of the scan.</p>" 504 }, 505 "scanNameArn":{ 506 "shape":"ScanNameArn", 507 "documentation":"<p>The ARN for the scan name.</p>" 508 }, 509 "scanState":{ 510 "shape":"ScanState", 511 "documentation":"<p>The current state of the scan. Returns either <code>InProgress</code>, <code>Successful</code>, or <code>Failed</code>.</p>" 512 } 513 } 514 }, 515 "CreateUploadUrlRequest":{ 516 "type":"structure", 517 "required":["scanName"], 518 "members":{ 519 "scanName":{ 520 "shape":"ScanName", 521 "documentation":"<p>The name of the scan that will use the uploaded resource. CodeGuru Security uses the unique scan name to track revisions across multiple scans of the same resource. Use this <code>scanName</code> when you call <code>CreateScan</code> on the code resource you upload to this URL.</p>" 522 } 523 } 524 }, 525 "CreateUploadUrlResponse":{ 526 "type":"structure", 527 "required":[ 528 "codeArtifactId", 529 "requestHeaders", 530 "s3Url" 531 ], 532 "members":{ 533 "codeArtifactId":{ 534 "shape":"Uuid", 535 "documentation":"<p>The identifier for the uploaded code resource. </p>" 536 }, 537 "requestHeaders":{ 538 "shape":"RequestHeaderMap", 539 "documentation":"<p>A set of key-value pairs that contain the required headers when uploading your resource.</p>" 540 }, 541 "s3Url":{ 542 "shape":"S3Url", 543 "documentation":"<p>A pre-signed S3 URL. You can upload the code file you want to scan and add the required <code>requestHeaders</code> using any HTTP client.</p>" 544 } 545 } 546 }, 547 "DetectorTags":{ 548 "type":"list", 549 "member":{"shape":"String"} 550 }, 551 "Double":{ 552 "type":"double", 553 "box":true 554 }, 555 "EncryptionConfig":{ 556 "type":"structure", 557 "members":{ 558 "kmsKeyArn":{ 559 "shape":"KmsKeyArn", 560 "documentation":"<p>The KMS key ARN to use for encryption. This must be provided as a header when uploading your code resource.</p>" 561 } 562 }, 563 "documentation":"<p>Information about account-level configuration.</p>" 564 }, 565 "ErrorCode":{ 566 "type":"string", 567 "enum":[ 568 "DUPLICATE_IDENTIFIER", 569 "ITEM_DOES_NOT_EXIST", 570 "INTERNAL_ERROR", 571 "INVALID_FINDING_ID", 572 "INVALID_SCAN_NAME" 573 ] 574 }, 575 "FilePath":{ 576 "type":"structure", 577 "members":{ 578 "codeSnippet":{ 579 "shape":"CodeSnippet", 580 "documentation":"<p>A list of <code>CodeLine</code> objects that describe where the security vulnerability appears in your code.</p>" 581 }, 582 "endLine":{ 583 "shape":"Integer", 584 "documentation":"<p>The last line number of the code snippet where the security vulnerability appears in your code.</p>" 585 }, 586 "name":{ 587 "shape":"String", 588 "documentation":"<p>The name of the file.</p>" 589 }, 590 "path":{ 591 "shape":"String", 592 "documentation":"<p>The path to the resource with the security vulnerability.</p>" 593 }, 594 "startLine":{ 595 "shape":"Integer", 596 "documentation":"<p>The first line number of the code snippet where the security vulnerability appears in your code.</p>" 597 } 598 }, 599 "documentation":"<p>Information about the location of security vulnerabilities that Amazon CodeGuru Security detected in your code.</p>" 600 }, 601 "Finding":{ 602 "type":"structure", 603 "members":{ 604 "createdAt":{ 605 "shape":"Timestamp", 606 "documentation":"<p>The time when the finding was created.</p>" 607 }, 608 "description":{ 609 "shape":"String", 610 "documentation":"<p>A description of the finding.</p>" 611 }, 612 "detectorId":{ 613 "shape":"String", 614 "documentation":"<p>The identifier for the detector that detected the finding in your code. A detector is a defined rule based on industry standards and AWS best practices. </p>" 615 }, 616 "detectorName":{ 617 "shape":"String", 618 "documentation":"<p>The name of the detector that identified the security vulnerability in your code. </p>" 619 }, 620 "detectorTags":{ 621 "shape":"DetectorTags", 622 "documentation":"<p>One or more tags or categorizations that are associated with a detector. These tags are defined by type, programming language, or other classification such as maintainability or consistency.</p>" 623 }, 624 "generatorId":{ 625 "shape":"String", 626 "documentation":"<p>The identifier for the component that generated a finding such as AWSCodeGuruSecurity or AWSInspector.</p>" 627 }, 628 "id":{ 629 "shape":"String", 630 "documentation":"<p>The identifier for a finding.</p>" 631 }, 632 "remediation":{ 633 "shape":"Remediation", 634 "documentation":"<p>An object that contains the details about how to remediate a finding.</p>" 635 }, 636 "resource":{ 637 "shape":"Resource", 638 "documentation":"<p>The resource where Amazon CodeGuru Security detected a finding.</p>" 639 }, 640 "ruleId":{ 641 "shape":"String", 642 "documentation":"<p>The identifier for the rule that generated the finding.</p>" 643 }, 644 "severity":{ 645 "shape":"Severity", 646 "documentation":"<p>The severity of the finding.</p>" 647 }, 648 "status":{ 649 "shape":"Status", 650 "documentation":"<p>The status of the finding. A finding status can be open or closed. </p>" 651 }, 652 "title":{ 653 "shape":"String", 654 "documentation":"<p>The title of the finding.</p>" 655 }, 656 "type":{ 657 "shape":"String", 658 "documentation":"<p>The type of finding. </p>" 659 }, 660 "updatedAt":{ 661 "shape":"Timestamp", 662 "documentation":"<p>The time when the finding was last updated. Findings are updated when you remediate them or when the finding code location changes. </p>" 663 }, 664 "vulnerability":{ 665 "shape":"Vulnerability", 666 "documentation":"<p>An object that describes the detected security vulnerability.</p>" 667 } 668 }, 669 "documentation":"<p>Information about a finding that was detected in your code.</p>" 670 }, 671 "FindingIdentifier":{ 672 "type":"structure", 673 "required":[ 674 "findingId", 675 "scanName" 676 ], 677 "members":{ 678 "findingId":{ 679 "shape":"String", 680 "documentation":"<p>The identifier for a finding.</p>" 681 }, 682 "scanName":{ 683 "shape":"String", 684 "documentation":"<p>The name of the scan that generated the finding. </p>" 685 } 686 }, 687 "documentation":"<p>An object that contains information about a finding and the scan that generated it. </p>" 688 }, 689 "FindingIdentifiers":{ 690 "type":"list", 691 "member":{"shape":"FindingIdentifier"}, 692 "max":25, 693 "min":1 694 }, 695 "FindingMetricsValuePerSeverity":{ 696 "type":"structure", 697 "members":{ 698 "critical":{ 699 "shape":"Double", 700 "documentation":"<p>The severity of the finding is critical and should be addressed immediately.</p>" 701 }, 702 "high":{ 703 "shape":"Double", 704 "documentation":"<p>The severity of the finding is high and should be addressed as a near-term priority.</p>" 705 }, 706 "info":{ 707 "shape":"Double", 708 "documentation":"<p>The finding is related to quality or readability improvements and not considered actionable.</p>" 709 }, 710 "low":{ 711 "shape":"Double", 712 "documentation":"<p>The severity of the finding is low and does require action on its own.</p>" 713 }, 714 "medium":{ 715 "shape":"Double", 716 "documentation":"<p>The severity of the finding is medium and should be addressed as a mid-term priority.</p>" 717 } 718 }, 719 "documentation":"<p>The severity of the issue in the code that generated a finding.</p>" 720 }, 721 "Findings":{ 722 "type":"list", 723 "member":{"shape":"Finding"} 724 }, 725 "FindingsMetricList":{ 726 "type":"list", 727 "member":{"shape":"AccountFindingsMetric"} 728 }, 729 "GetAccountConfigurationRequest":{ 730 "type":"structure", 731 "members":{ 732 } 733 }, 734 "GetAccountConfigurationResponse":{ 735 "type":"structure", 736 "required":["encryptionConfig"], 737 "members":{ 738 "encryptionConfig":{ 739 "shape":"EncryptionConfig", 740 "documentation":"<p>An <code>EncryptionConfig</code> object that contains the KMS key ARN to use for encryption. By default, CodeGuru Security uses an AWS-managed key for encryption. To specify your own key, call <code>UpdateAccountConfiguration</code>.</p>" 741 } 742 } 743 }, 744 "GetFindingsRequest":{ 745 "type":"structure", 746 "required":["scanName"], 747 "members":{ 748 "maxResults":{ 749 "shape":"GetFindingsRequestMaxResultsInteger", 750 "documentation":"<p>The maximum number of results to return in the response. Use this parameter when paginating results. If additional results exist beyond the number you specify, the <code>nextToken</code> element is returned in the response. Use <code>nextToken</code> in a subsequent request to retrieve additional results.</p>", 751 "location":"querystring", 752 "locationName":"maxResults" 753 }, 754 "nextToken":{ 755 "shape":"NextToken", 756 "documentation":"<p>A token to use for paginating results that are returned in the response. Set the value of this parameter to null for the first request. For subsequent calls, use the <code>nextToken</code> value returned from the previous request to continue listing results after the first page.</p>", 757 "location":"querystring", 758 "locationName":"nextToken" 759 }, 760 "scanName":{ 761 "shape":"ScanName", 762 "documentation":"<p>The name of the scan you want to retrieve findings from.</p>", 763 "location":"uri", 764 "locationName":"scanName" 765 }, 766 "status":{ 767 "shape":"Status", 768 "documentation":"<p>The status of the findings you want to get. Pass either <code>Open</code>, <code>Closed</code>, or <code>All</code>.</p>", 769 "location":"querystring", 770 "locationName":"status" 771 } 772 } 773 }, 774 "GetFindingsRequestMaxResultsInteger":{ 775 "type":"integer", 776 "box":true, 777 "max":100, 778 "min":1 779 }, 780 "GetFindingsResponse":{ 781 "type":"structure", 782 "members":{ 783 "findings":{ 784 "shape":"Findings", 785 "documentation":"<p>A list of findings generated by the specified scan.</p>" 786 }, 787 "nextToken":{ 788 "shape":"NextToken", 789 "documentation":"<p>A pagination token. You can use this in future calls to <code>GetFindings</code> to continue listing results after the current page. </p>" 790 } 791 } 792 }, 793 "GetMetricsSummaryRequest":{ 794 "type":"structure", 795 "required":["date"], 796 "members":{ 797 "date":{ 798 "shape":"Timestamp", 799 "documentation":"<p>The date you want to retrieve summary metrics from, rounded to the nearest day. The date must be within the past two years since metrics data is only stored for two years. If a date outside of this range is passed, the response will be empty.</p>", 800 "location":"querystring", 801 "locationName":"date" 802 } 803 } 804 }, 805 "GetMetricsSummaryResponse":{ 806 "type":"structure", 807 "members":{ 808 "metricsSummary":{ 809 "shape":"MetricsSummary", 810 "documentation":"<p>The summary metrics from the specified date.</p>" 811 } 812 } 813 }, 814 "GetScanRequest":{ 815 "type":"structure", 816 "required":["scanName"], 817 "members":{ 818 "runId":{ 819 "shape":"Uuid", 820 "documentation":"<p>UUID that identifies the individual scan run you want to view details about. You retrieve this when you call the <code>CreateScan</code> operation. Defaults to the latest scan run if missing.</p>", 821 "location":"querystring", 822 "locationName":"runId" 823 }, 824 "scanName":{ 825 "shape":"ScanName", 826 "documentation":"<p>The name of the scan you want to view details about.</p>", 827 "location":"uri", 828 "locationName":"scanName" 829 } 830 } 831 }, 832 "GetScanResponse":{ 833 "type":"structure", 834 "required":[ 835 "analysisType", 836 "createdAt", 837 "runId", 838 "scanName", 839 "scanState" 840 ], 841 "members":{ 842 "analysisType":{ 843 "shape":"AnalysisType", 844 "documentation":"<p>The type of analysis CodeGuru Security performed in the scan, either <code>Security</code> or <code>All</code>. The <code>Security</code> type only generates findings related to security. The <code>All</code> type generates both security findings and quality findings.</p>" 845 }, 846 "createdAt":{ 847 "shape":"Timestamp", 848 "documentation":"<p>The time the scan was created.</p>" 849 }, 850 "numberOfRevisions":{ 851 "shape":"Long", 852 "documentation":"<p>The number of times a scan has been re-run on a revised resource.</p>" 853 }, 854 "runId":{ 855 "shape":"Uuid", 856 "documentation":"<p>UUID that identifies the individual scan run.</p>" 857 }, 858 "scanName":{ 859 "shape":"ScanName", 860 "documentation":"<p>The name of the scan.</p>" 861 }, 862 "scanNameArn":{ 863 "shape":"ScanNameArn", 864 "documentation":"<p>The ARN for the scan name.</p>" 865 }, 866 "scanState":{ 867 "shape":"ScanState", 868 "documentation":"<p>The current state of the scan. Pass either <code>InProgress</code>, <code>Successful</code>, or <code>Failed</code>.</p>" 869 }, 870 "updatedAt":{ 871 "shape":"Timestamp", 872 "documentation":"<p>The time when the scan was last updated. Only available for <code>STANDARD</code> scan types.</p>" 873 } 874 } 875 }, 876 "HeaderKey":{ 877 "type":"string", 878 "min":1 879 }, 880 "HeaderValue":{ 881 "type":"string", 882 "min":1 883 }, 884 "Integer":{ 885 "type":"integer", 886 "box":true 887 }, 888 "InternalServerException":{ 889 "type":"structure", 890 "members":{ 891 "error":{ 892 "shape":"String", 893 "documentation":"<p>The internal error encountered by the server.</p>" 894 }, 895 "message":{ 896 "shape":"String", 897 "documentation":"<p>Description of the error.</p>" 898 } 899 }, 900 "documentation":"<p>The server encountered an internal error and is unable to complete the request.</p>", 901 "error":{"httpStatusCode":500}, 902 "exception":true, 903 "fault":true, 904 "retryable":{"throttling":false} 905 }, 906 "KmsKeyArn":{ 907 "type":"string", 908 "max":2048, 909 "min":1, 910 "pattern":"^arn:aws:kms:[\\S]+:[\\d]{12}:key\\/(([a-f0-9]{8}-[a-f0-9]{4}-[a-f0-9]{4}-[a-f0-9]{4}-[a-f0-9]{12})|(mrk-[0-9a-zA-Z]{32}))$" 911 }, 912 "ListFindingsMetricsRequest":{ 913 "type":"structure", 914 "required":[ 915 "endDate", 916 "startDate" 917 ], 918 "members":{ 919 "endDate":{ 920 "shape":"Timestamp", 921 "documentation":"<p>The end date of the interval which you want to retrieve metrics from.</p>", 922 "location":"querystring", 923 "locationName":"endDate" 924 }, 925 "maxResults":{ 926 "shape":"ListFindingsMetricsRequestMaxResultsInteger", 927 "documentation":"<p>The maximum number of results to return in the response. Use this parameter when paginating results. If additional results exist beyond the number you specify, the <code>nextToken</code> element is returned in the response. Use <code>nextToken</code> in a subsequent request to retrieve additional results.</p>", 928 "location":"querystring", 929 "locationName":"maxResults" 930 }, 931 "nextToken":{ 932 "shape":"NextToken", 933 "documentation":"<p>A token to use for paginating results that are returned in the response. Set the value of this parameter to null for the first request. For subsequent calls, use the <code>nextToken</code> value returned from the previous request to continue listing results after the first page.</p>", 934 "location":"querystring", 935 "locationName":"nextToken" 936 }, 937 "startDate":{ 938 "shape":"Timestamp", 939 "documentation":"<p>The start date of the interval which you want to retrieve metrics from.</p>", 940 "location":"querystring", 941 "locationName":"startDate" 942 } 943 } 944 }, 945 "ListFindingsMetricsRequestMaxResultsInteger":{ 946 "type":"integer", 947 "box":true, 948 "max":1000, 949 "min":1 950 }, 951 "ListFindingsMetricsResponse":{ 952 "type":"structure", 953 "members":{ 954 "findingsMetrics":{ 955 "shape":"FindingsMetricList", 956 "documentation":"<p>A list of <code>AccountFindingsMetric</code> objects retrieved from the specified time interval.</p>" 957 }, 958 "nextToken":{ 959 "shape":"NextToken", 960 "documentation":"<p>A pagination token. You can use this in future calls to <code>ListFindingMetrics</code> to continue listing results after the current page. </p>" 961 } 962 } 963 }, 964 "ListScansRequest":{ 965 "type":"structure", 966 "members":{ 967 "maxResults":{ 968 "shape":"ListScansRequestMaxResultsInteger", 969 "documentation":"<p>The maximum number of results to return in the response. Use this parameter when paginating results. If additional results exist beyond the number you specify, the <code>nextToken</code> element is returned in the response. Use <code>nextToken</code> in a subsequent request to retrieve additional results.</p>", 970 "location":"querystring", 971 "locationName":"maxResults" 972 }, 973 "nextToken":{ 974 "shape":"NextToken", 975 "documentation":"<p>A token to use for paginating results that are returned in the response. Set the value of this parameter to null for the first request. For subsequent calls, use the <code>nextToken</code> value returned from the previous request to continue listing results after the first page.</p>", 976 "location":"querystring", 977 "locationName":"nextToken" 978 } 979 } 980 }, 981 "ListScansRequestMaxResultsInteger":{ 982 "type":"integer", 983 "box":true, 984 "max":100, 985 "min":1 986 }, 987 "ListScansResponse":{ 988 "type":"structure", 989 "members":{ 990 "nextToken":{ 991 "shape":"NextToken", 992 "documentation":"<p>A pagination token. You can use this in future calls to <code>ListScans</code> to continue listing results after the current page.</p>" 993 }, 994 "summaries":{ 995 "shape":"ScanSummaries", 996 "documentation":"<p>A list of <code>ScanSummary</code> objects with information about all scans in an account.</p>" 997 } 998 } 999 }, 1000 "ListTagsForResourceRequest":{ 1001 "type":"structure", 1002 "required":["resourceArn"], 1003 "members":{ 1004 "resourceArn":{ 1005 "shape":"ScanNameArn", 1006 "documentation":"<p>The ARN of the <code>ScanName</code> object. You can retrieve this ARN by calling <code>ListScans</code> or <code>GetScan</code>.</p>", 1007 "location":"uri", 1008 "locationName":"resourceArn" 1009 } 1010 } 1011 }, 1012 "ListTagsForResourceResponse":{ 1013 "type":"structure", 1014 "members":{ 1015 "tags":{ 1016 "shape":"TagMap", 1017 "documentation":"<p>An array of key-value pairs used to tag an existing scan. A tag is a custom attribute label with two parts:</p> <ul> <li> <p>A tag key. For example, <code>CostCenter</code>, <code>Environment</code>, or <code>Secret</code>. Tag keys are case sensitive.</p> </li> <li> <p>An optional tag value field. For example, <code>111122223333</code>, <code>Production</code>, or a team name. Omitting the tag value is the same as using an empty string. Tag values are case sensitive.</p> </li> </ul>" 1018 } 1019 } 1020 }, 1021 "Long":{ 1022 "type":"long", 1023 "box":true 1024 }, 1025 "MetricsSummary":{ 1026 "type":"structure", 1027 "members":{ 1028 "categoriesWithMostFindings":{ 1029 "shape":"CategoriesWithMostFindings", 1030 "documentation":"<p>A list of <code>CategoryWithFindingNum</code> objects for the top 5 finding categories with the most open findings in an account.</p>" 1031 }, 1032 "date":{ 1033 "shape":"Timestamp", 1034 "documentation":"<p>The date from which the metrics summary information was retrieved.</p>" 1035 }, 1036 "openFindings":{ 1037 "shape":"FindingMetricsValuePerSeverity", 1038 "documentation":"<p>The number of open findings of each severity in an account.</p>" 1039 }, 1040 "scansWithMostOpenCriticalFindings":{ 1041 "shape":"ScansWithMostOpenCriticalFindings", 1042 "documentation":"<p>A list of <code>ScanNameWithFindingNum</code> objects for the top 3 scans with the most number of open findings in an account.</p>" 1043 }, 1044 "scansWithMostOpenFindings":{ 1045 "shape":"ScansWithMostOpenFindings", 1046 "documentation":"<p>A list of <code>ScanNameWithFindingNum</code> objects for the top 3 scans with the most number of open critical findings in an account.</p>" 1047 } 1048 }, 1049 "documentation":"<p>Information about summary metrics in an account.</p>" 1050 }, 1051 "NextToken":{ 1052 "type":"string", 1053 "max":2048, 1054 "min":1, 1055 "pattern":"^[\\S]+$" 1056 }, 1057 "Recommendation":{ 1058 "type":"structure", 1059 "members":{ 1060 "text":{ 1061 "shape":"String", 1062 "documentation":"<p>The recommended course of action to remediate the finding.</p>" 1063 }, 1064 "url":{ 1065 "shape":"String", 1066 "documentation":"<p>The URL address to the recommendation for remediating the finding. </p>" 1067 } 1068 }, 1069 "documentation":"<p>Information about the recommended course of action to remediate a finding.</p>" 1070 }, 1071 "ReferenceUrls":{ 1072 "type":"list", 1073 "member":{"shape":"String"} 1074 }, 1075 "RelatedVulnerabilities":{ 1076 "type":"list", 1077 "member":{"shape":"String"} 1078 }, 1079 "Remediation":{ 1080 "type":"structure", 1081 "members":{ 1082 "recommendation":{ 1083 "shape":"Recommendation", 1084 "documentation":"<p>An object that contains information about the recommended course of action to remediate a finding.</p>" 1085 }, 1086 "suggestedFixes":{ 1087 "shape":"SuggestedFixes", 1088 "documentation":"<p>A list of <code>SuggestedFix</code> objects. Each object contains information about a suggested code fix to remediate the finding.</p>" 1089 } 1090 }, 1091 "documentation":"<p>Information about how to remediate a finding.</p>" 1092 }, 1093 "RequestHeaderMap":{ 1094 "type":"map", 1095 "key":{"shape":"HeaderKey"}, 1096 "value":{"shape":"HeaderValue"}, 1097 "sensitive":true 1098 }, 1099 "Resource":{ 1100 "type":"structure", 1101 "members":{ 1102 "id":{ 1103 "shape":"String", 1104 "documentation":"<p>The identifier for the resource.</p>" 1105 }, 1106 "subResourceId":{ 1107 "shape":"String", 1108 "documentation":"<p>The identifier for a section of the resource, such as an AWS Lambda layer.</p>" 1109 } 1110 }, 1111 "documentation":"<p>Information about a resource, such as an Amazon S3 bucket or AWS Lambda function, that contains a finding.</p>" 1112 }, 1113 "ResourceId":{ 1114 "type":"structure", 1115 "members":{ 1116 "codeArtifactId":{ 1117 "shape":"Uuid", 1118 "documentation":"<p>The identifier for the code file uploaded to the resource where a finding was detected.</p>" 1119 } 1120 }, 1121 "documentation":"<p>The identifier for a resource object that contains resources where a finding was detected.</p>", 1122 "union":true 1123 }, 1124 "ResourceNotFoundException":{ 1125 "type":"structure", 1126 "required":[ 1127 "errorCode", 1128 "message", 1129 "resourceId", 1130 "resourceType" 1131 ], 1132 "members":{ 1133 "errorCode":{ 1134 "shape":"String", 1135 "documentation":"<p>The identifier for the error.</p>" 1136 }, 1137 "message":{ 1138 "shape":"String", 1139 "documentation":"<p>Description of the error.</p>" 1140 }, 1141 "resourceId":{ 1142 "shape":"String", 1143 "documentation":"<p>The identifier for the resource that was not found.</p>" 1144 }, 1145 "resourceType":{ 1146 "shape":"String", 1147 "documentation":"<p>The type of resource that was not found.</p>" 1148 } 1149 }, 1150 "documentation":"<p>The resource specified in the request was not found.</p>", 1151 "error":{ 1152 "httpStatusCode":404, 1153 "senderFault":true 1154 }, 1155 "exception":true 1156 }, 1157 "S3Url":{ 1158 "type":"string", 1159 "min":1, 1160 "sensitive":true 1161 }, 1162 "ScanName":{ 1163 "type":"string", 1164 "max":140, 1165 "min":1, 1166 "pattern":"^[a-zA-Z0-9-_$:.]*$" 1167 }, 1168 "ScanNameArn":{ 1169 "type":"string", 1170 "max":300, 1171 "min":1, 1172 "pattern":"^arn:aws:codeguru-security:[\\S]+:[\\d]{12}:scans\\/[a-zA-Z0-9-_$:.]*$" 1173 }, 1174 "ScanNameWithFindingNum":{ 1175 "type":"structure", 1176 "members":{ 1177 "findingNumber":{ 1178 "shape":"Integer", 1179 "documentation":"<p>The number of open findings generated by a scan.</p>" 1180 }, 1181 "scanName":{ 1182 "shape":"String", 1183 "documentation":"<p>The name of the scan.</p>" 1184 } 1185 }, 1186 "documentation":"<p>Information about a scan with open findings.</p>" 1187 }, 1188 "ScanState":{ 1189 "type":"string", 1190 "enum":[ 1191 "InProgress", 1192 "Successful", 1193 "Failed" 1194 ] 1195 }, 1196 "ScanSummaries":{ 1197 "type":"list", 1198 "member":{"shape":"ScanSummary"} 1199 }, 1200 "ScanSummary":{ 1201 "type":"structure", 1202 "required":[ 1203 "createdAt", 1204 "runId", 1205 "scanName", 1206 "scanState" 1207 ], 1208 "members":{ 1209 "createdAt":{ 1210 "shape":"Timestamp", 1211 "documentation":"<p> The time when the scan was created. </p>" 1212 }, 1213 "runId":{ 1214 "shape":"Uuid", 1215 "documentation":"<p>The identifier for the scan run. </p>" 1216 }, 1217 "scanName":{ 1218 "shape":"ScanName", 1219 "documentation":"<p>The name of the scan. </p>" 1220 }, 1221 "scanNameArn":{ 1222 "shape":"ScanNameArn", 1223 "documentation":"<p>The ARN for the scan name.</p>" 1224 }, 1225 "scanState":{ 1226 "shape":"ScanState", 1227 "documentation":"<p>The state of the scan. A scan can be <code>In Progress</code>, <code>Complete</code>, or <code>Failed</code>. </p>" 1228 }, 1229 "updatedAt":{ 1230 "shape":"Timestamp", 1231 "documentation":"<p>The time the scan was last updated. A scan is updated when it is re-run.</p>" 1232 } 1233 }, 1234 "documentation":"<p>Information about a scan. </p>" 1235 }, 1236 "ScanType":{ 1237 "type":"string", 1238 "enum":[ 1239 "Standard", 1240 "Express" 1241 ] 1242 }, 1243 "ScansWithMostOpenCriticalFindings":{ 1244 "type":"list", 1245 "member":{"shape":"ScanNameWithFindingNum"}, 1246 "max":3, 1247 "min":0 1248 }, 1249 "ScansWithMostOpenFindings":{ 1250 "type":"list", 1251 "member":{"shape":"ScanNameWithFindingNum"}, 1252 "max":3, 1253 "min":0 1254 }, 1255 "Severity":{ 1256 "type":"string", 1257 "enum":[ 1258 "Critical", 1259 "High", 1260 "Medium", 1261 "Low", 1262 "Info" 1263 ] 1264 }, 1265 "Status":{ 1266 "type":"string", 1267 "enum":[ 1268 "Closed", 1269 "Open", 1270 "All" 1271 ] 1272 }, 1273 "String":{"type":"string"}, 1274 "SuggestedFix":{ 1275 "type":"structure", 1276 "members":{ 1277 "code":{ 1278 "shape":"String", 1279 "documentation":"<p>The suggested code to add to your file. </p>" 1280 }, 1281 "description":{ 1282 "shape":"String", 1283 "documentation":"<p>A description of the suggested code fix and why it is being suggested. </p>" 1284 } 1285 }, 1286 "documentation":"<p>Information about the suggested code fix to remediate a finding.</p>" 1287 }, 1288 "SuggestedFixes":{ 1289 "type":"list", 1290 "member":{"shape":"SuggestedFix"} 1291 }, 1292 "TagKey":{ 1293 "type":"string", 1294 "max":128, 1295 "min":1 1296 }, 1297 "TagKeyList":{ 1298 "type":"list", 1299 "member":{"shape":"TagKey"}, 1300 "max":200, 1301 "min":0 1302 }, 1303 "TagMap":{ 1304 "type":"map", 1305 "key":{"shape":"TagKey"}, 1306 "value":{"shape":"TagValue"}, 1307 "max":200, 1308 "min":0 1309 }, 1310 "TagResourceRequest":{ 1311 "type":"structure", 1312 "required":[ 1313 "resourceArn", 1314 "tags" 1315 ], 1316 "members":{ 1317 "resourceArn":{ 1318 "shape":"ScanNameArn", 1319 "documentation":"<p>The ARN of the <code>ScanName</code> object. You can retrieve this ARN by calling <code>ListScans</code> or <code>GetScan</code>.</p>", 1320 "location":"uri", 1321 "locationName":"resourceArn" 1322 }, 1323 "tags":{ 1324 "shape":"TagMap", 1325 "documentation":"<p>An array of key-value pairs used to tag an existing scan. A tag is a custom attribute label with two parts:</p> <ul> <li> <p>A tag key. For example, <code>CostCenter</code>, <code>Environment</code>, or <code>Secret</code>. Tag keys are case sensitive.</p> </li> <li> <p>An optional tag value field. For example, <code>111122223333</code>, <code>Production</code>, or a team name. Omitting the tag value is the same as using an empty string. Tag values are case sensitive.</p> </li> </ul>" 1326 } 1327 } 1328 }, 1329 "TagResourceResponse":{ 1330 "type":"structure", 1331 "members":{ 1332 } 1333 }, 1334 "TagValue":{ 1335 "type":"string", 1336 "max":256, 1337 "min":0 1338 }, 1339 "ThrottlingException":{ 1340 "type":"structure", 1341 "required":[ 1342 "errorCode", 1343 "message" 1344 ], 1345 "members":{ 1346 "errorCode":{ 1347 "shape":"String", 1348 "documentation":"<p>The identifier for the error.</p>" 1349 }, 1350 "message":{ 1351 "shape":"String", 1352 "documentation":"<p>Description of the error.</p>" 1353 }, 1354 "quotaCode":{ 1355 "shape":"String", 1356 "documentation":"<p>The identifier for the originating quota.</p>" 1357 }, 1358 "serviceCode":{ 1359 "shape":"String", 1360 "documentation":"<p>The identifier for the originating service.</p>" 1361 } 1362 }, 1363 "documentation":"<p>The request was denied due to request throttling.</p>", 1364 "error":{ 1365 "httpStatusCode":429, 1366 "senderFault":true 1367 }, 1368 "exception":true, 1369 "retryable":{"throttling":true} 1370 }, 1371 "Timestamp":{"type":"timestamp"}, 1372 "UntagResourceRequest":{ 1373 "type":"structure", 1374 "required":[ 1375 "resourceArn", 1376 "tagKeys" 1377 ], 1378 "members":{ 1379 "resourceArn":{ 1380 "shape":"ScanNameArn", 1381 "documentation":"<p>The ARN of the <code>ScanName</code> object. You can retrieve this ARN by calling <code>ListScans</code> or <code>GetScan</code>.</p>", 1382 "location":"uri", 1383 "locationName":"resourceArn" 1384 }, 1385 "tagKeys":{ 1386 "shape":"TagKeyList", 1387 "documentation":"<p>A list of keys for each tag you want to remove from a scan.</p>", 1388 "location":"querystring", 1389 "locationName":"tagKeys" 1390 } 1391 } 1392 }, 1393 "UntagResourceResponse":{ 1394 "type":"structure", 1395 "members":{ 1396 } 1397 }, 1398 "UpdateAccountConfigurationRequest":{ 1399 "type":"structure", 1400 "required":["encryptionConfig"], 1401 "members":{ 1402 "encryptionConfig":{ 1403 "shape":"EncryptionConfig", 1404 "documentation":"<p>The KMS key ARN you want to use for encryption. Defaults to service-side encryption if missing.</p>" 1405 } 1406 } 1407 }, 1408 "UpdateAccountConfigurationResponse":{ 1409 "type":"structure", 1410 "required":["encryptionConfig"], 1411 "members":{ 1412 "encryptionConfig":{ 1413 "shape":"EncryptionConfig", 1414 "documentation":"<p>An <code>EncryptionConfig</code> object that contains the KMS key ARN to use for encryption.</p>" 1415 } 1416 } 1417 }, 1418 "Uuid":{ 1419 "type":"string", 1420 "pattern":"^[a-f0-9]{8}-[a-f0-9]{4}-[a-f0-9]{4}-[a-f0-9]{4}-[a-f0-9]{12}$" 1421 }, 1422 "ValidationException":{ 1423 "type":"structure", 1424 "required":[ 1425 "errorCode", 1426 "message", 1427 "reason" 1428 ], 1429 "members":{ 1430 "errorCode":{ 1431 "shape":"String", 1432 "documentation":"<p>The identifier for the error.</p>" 1433 }, 1434 "fieldList":{ 1435 "shape":"ValidationExceptionFieldList", 1436 "documentation":"<p>The field that caused the error, if applicable.</p>" 1437 }, 1438 "message":{ 1439 "shape":"String", 1440 "documentation":"<p>Description of the error.</p>" 1441 }, 1442 "reason":{ 1443 "shape":"ValidationExceptionReason", 1444 "documentation":"<p>The reason the request failed validation.</p>" 1445 } 1446 }, 1447 "documentation":"<p>The input fails to satisfy the specified constraints.</p>", 1448 "error":{ 1449 "httpStatusCode":400, 1450 "senderFault":true 1451 }, 1452 "exception":true 1453 }, 1454 "ValidationExceptionField":{ 1455 "type":"structure", 1456 "required":[ 1457 "message", 1458 "name" 1459 ], 1460 "members":{ 1461 "message":{ 1462 "shape":"String", 1463 "documentation":"<p>Describes the exception.</p>" 1464 }, 1465 "name":{ 1466 "shape":"String", 1467 "documentation":"<p>The name of the exception.</p>" 1468 } 1469 }, 1470 "documentation":"<p>Information about a validation exception.</p>" 1471 }, 1472 "ValidationExceptionFieldList":{ 1473 "type":"list", 1474 "member":{"shape":"ValidationExceptionField"} 1475 }, 1476 "ValidationExceptionReason":{ 1477 "type":"string", 1478 "enum":[ 1479 "unknownOperation", 1480 "cannotParse", 1481 "fieldValidationFailed", 1482 "other", 1483 "lambdaCodeShaMisMatch" 1484 ] 1485 }, 1486 "Vulnerability":{ 1487 "type":"structure", 1488 "members":{ 1489 "filePath":{ 1490 "shape":"FilePath", 1491 "documentation":"<p> An object that describes the location of the detected security vulnerability in your code.</p>" 1492 }, 1493 "id":{ 1494 "shape":"String", 1495 "documentation":"<p>The identifier for the vulnerability.</p>" 1496 }, 1497 "itemCount":{ 1498 "shape":"Integer", 1499 "documentation":"<p> The number of times the vulnerability appears in your code.</p>" 1500 }, 1501 "referenceUrls":{ 1502 "shape":"ReferenceUrls", 1503 "documentation":"<p>One or more URL addresses that contain details about a vulnerability.</p>" 1504 }, 1505 "relatedVulnerabilities":{ 1506 "shape":"RelatedVulnerabilities", 1507 "documentation":"<p>One or more vulnerabilities that are related to the vulnerability being described.</p>" 1508 } 1509 }, 1510 "documentation":"<p>Information about a security vulnerability that Amazon CodeGuru Security detected.</p>" 1511 } 1512 }, 1513 "documentation":"<note> <p>Amazon CodeGuru Security is in preview release and is subject to change.</p> </note> <p>This section provides documentation for the Amazon CodeGuru Security API operations. CodeGuru Security is a service that uses program analysis and machine learning to detect security policy violations and vulnerabilities, and recommends ways to address these security risks.</p> <p>By proactively detecting and providing recommendations for addressing security risks, CodeGuru Security improves the overall security of your application code. For more information about CodeGuru Security, see the <a href=\"https://docs.aws.amazon.com/codeguru/latest/security-ug/what-is-codeguru-security.html\">Amazon CodeGuru Security User Guide</a>. </p>" 1514} 1515