feat(client-guardduty): Added EKS Runtime Monitoring feature support to existing detector, finding APIs and introducing new Coverage APIs

Author: awstools

clients/client-guardduty/README.md

@@ -16,16 +16,15 @@ It uses threat intelligence
 feeds, such as lists of malicious IPs and domains, and machine learning to identify
 unexpected, potentially unauthorized, and malicious activity within your Amazon Web Services environment.
 This can include issues like escalations of privileges, uses of exposed credentials, or
-communication with malicious IPs, domains, or presence of malware on your
-Amazon EC2 instances and container workloads. For example, GuardDuty can detect
-compromised EC2 instances and container workloads serving malware, or mining bitcoin. </p>
-<p>GuardDuty also monitors Amazon Web Services account access behavior for signs of compromise, such
-as unauthorized infrastructure deployments like EC2 instances deployed in a Region
-that has never been used, or unusual API calls like a password policy change to reduce
-password strength. </p>
-<p>GuardDuty informs you about the status of your Amazon Web Services environment by producing
-security findings that you can view in the GuardDuty console or through Amazon EventBridge.
-For more information, see the <i>
+communication with malicious IPs, domains, or presence of malware on your Amazon EC2 instances
+and container workloads. For example, GuardDuty can detect compromised EC2 instances and
+container workloads serving malware, or mining bitcoin. </p>
+<p>GuardDuty also monitors Amazon Web Services account access behavior for signs of compromise, such as
+unauthorized infrastructure deployments like EC2 instances deployed in a Region that has never
+been used, or unusual API calls like a password policy change to reduce password strength. </p>
+<p>GuardDuty informs you about the status of your Amazon Web Services environment by producing security
+findings that you can view in the GuardDuty console or through Amazon EventBridge. For more
+information, see the <i>
 <a href="https://docs.aws.amazon.com/guardduty/latest/ug/what-is-guardduty.html">Amazon
 GuardDuty User Guide</a>
 </i>. </p>
@@ -440,6 +439,14 @@ GetAdministratorAccount
 
 [Command API Reference](https://docs.aws.amazon.com/AWSJavaScriptSDK/v3/latest/clients/client-guardduty/classes/getadministratoraccountcommand.html) / [Input](https://docs.aws.amazon.com/AWSJavaScriptSDK/v3/latest/clients/client-guardduty/interfaces/getadministratoraccountcommandinput.html) / [Output](https://docs.aws.amazon.com/AWSJavaScriptSDK/v3/latest/clients/client-guardduty/interfaces/getadministratoraccountcommandoutput.html)
 
+</details>
+<details>
+<summary>
+GetCoverageStatistics
+</summary>
+
+[Command API Reference](https://docs.aws.amazon.com/AWSJavaScriptSDK/v3/latest/clients/client-guardduty/classes/getcoveragestatisticscommand.html) / [Input](https://docs.aws.amazon.com/AWSJavaScriptSDK/v3/latest/clients/client-guardduty/interfaces/getcoveragestatisticscommandinput.html) / [Output](https://docs.aws.amazon.com/AWSJavaScriptSDK/v3/latest/clients/client-guardduty/interfaces/getcoveragestatisticscommandoutput.html)
+
 </details>
 <details>
 <summary>
@@ -552,6 +559,14 @@ InviteMembers
 
 [Command API Reference](https://docs.aws.amazon.com/AWSJavaScriptSDK/v3/latest/clients/client-guardduty/classes/invitememberscommand.html) / [Input](https://docs.aws.amazon.com/AWSJavaScriptSDK/v3/latest/clients/client-guardduty/interfaces/invitememberscommandinput.html) / [Output](https://docs.aws.amazon.com/AWSJavaScriptSDK/v3/latest/clients/client-guardduty/interfaces/invitememberscommandoutput.html)
 
+</details>
+<details>
+<summary>
+ListCoverage
+</summary>
+
+[Command API Reference](https://docs.aws.amazon.com/AWSJavaScriptSDK/v3/latest/clients/client-guardduty/classes/listcoveragecommand.html) / [Input](https://docs.aws.amazon.com/AWSJavaScriptSDK/v3/latest/clients/client-guardduty/interfaces/listcoveragecommandinput.html) / [Output](https://docs.aws.amazon.com/AWSJavaScriptSDK/v3/latest/clients/client-guardduty/interfaces/listcoveragecommandoutput.html)
+
 </details>
 <details>
 <summary>

clients/client-guardduty/src/GuardDuty.ts

@@ -121,6 +121,10 @@ import {
   GetAdministratorAccountCommandInput,
   GetAdministratorAccountCommandOutput,
 } from "./commands/GetAdministratorAccountCommand";
+import {
+  GetCoverageStatisticsCommandInput,
+  GetCoverageStatisticsCommandOutput,
+} from "./commands/GetCoverageStatisticsCommand";
 import { GetDetectorCommandInput, GetDetectorCommandOutput } from "./commands/GetDetectorCommand";
 import { GetFilterCommandInput, GetFilterCommandOutput } from "./commands/GetFilterCommand";
 import { GetFindingsCommandInput, GetFindingsCommandOutput } from "./commands/GetFindingsCommand";
@@ -147,6 +151,7 @@ import {
 import { GetThreatIntelSetCommandInput, GetThreatIntelSetCommandOutput } from "./commands/GetThreatIntelSetCommand";
 import { GetUsageStatisticsCommandInput, GetUsageStatisticsCommandOutput } from "./commands/GetUsageStatisticsCommand";
 import { InviteMembersCommandInput, InviteMembersCommandOutput } from "./commands/InviteMembersCommand";
+import { ListCoverageCommandInput, ListCoverageCommandOutput } from "./commands/ListCoverageCommand";
 import { ListDetectorsCommandInput, ListDetectorsCommandOutput } from "./commands/ListDetectorsCommand";
 import { ListFiltersCommandInput, ListFiltersCommandOutput } from "./commands/ListFiltersCommand";
 import { ListFindingsCommandInput, ListFindingsCommandOutput } from "./commands/ListFindingsCommand";
@@ -246,6 +251,7 @@ export type ServiceInputTypes =
   | DisassociateMembersCommandInput
   | EnableOrganizationAdminAccountCommandInput
   | GetAdministratorAccountCommandInput
+  | GetCoverageStatisticsCommandInput
   | GetDetectorCommandInput
   | GetFilterCommandInput
   | GetFindingsCommandInput
@@ -260,6 +266,7 @@ export type ServiceInputTypes =
   | GetThreatIntelSetCommandInput
   | GetUsageStatisticsCommandInput
   | InviteMembersCommandInput
+  | ListCoverageCommandInput
   | ListDetectorsCommandInput
   | ListFiltersCommandInput
   | ListFindingsCommandInput
@@ -316,6 +323,7 @@ export type ServiceOutputTypes =
   | DisassociateMembersCommandOutput
   | EnableOrganizationAdminAccountCommandOutput
   | GetAdministratorAccountCommandOutput
+  | GetCoverageStatisticsCommandOutput
   | GetDetectorCommandOutput
   | GetFilterCommandOutput
   | GetFindingsCommandOutput
@@ -330,6 +338,7 @@ export type ServiceOutputTypes =
   | GetThreatIntelSetCommandOutput
   | GetUsageStatisticsCommandOutput
   | InviteMembersCommandOutput
+  | ListCoverageCommandOutput
   | ListDetectorsCommandOutput
   | ListFiltersCommandOutput
   | ListFindingsCommandOutput
@@ -526,16 +535,15 @@ export interface GuardDutyClientResolvedConfig extends GuardDutyClientResolvedCo
  *       feeds, such as lists of malicious IPs and domains, and machine learning to identify
  *       unexpected, potentially unauthorized, and malicious activity within your Amazon Web Services environment.
  *       This can include issues like escalations of privileges, uses of exposed credentials, or
- *       communication with malicious IPs, domains, or presence of malware on your
- *       Amazon EC2 instances and container workloads. For example, GuardDuty can detect
- *       compromised EC2 instances and container workloads serving malware, or mining bitcoin. </p>
- *          <p>GuardDuty also monitors Amazon Web Services account access behavior for signs of compromise, such
- *       as unauthorized infrastructure deployments like EC2 instances deployed in a Region
- *       that has never been used, or unusual API calls like a password policy change to reduce
- *       password strength. </p>
- *          <p>GuardDuty informs you about the status of your Amazon Web Services environment by producing
- *       security findings that you can view in the GuardDuty console or through Amazon EventBridge.
- *       For more information, see the <i>
+ *       communication with malicious IPs, domains, or presence of malware on your Amazon EC2 instances
+ *       and container workloads. For example, GuardDuty can detect compromised EC2 instances and
+ *       container workloads serving malware, or mining bitcoin. </p>
+ *          <p>GuardDuty also monitors Amazon Web Services account access behavior for signs of compromise, such as
+ *       unauthorized infrastructure deployments like EC2 instances deployed in a Region that has never
+ *       been used, or unusual API calls like a password policy change to reduce password strength. </p>
+ *          <p>GuardDuty informs you about the status of your Amazon Web Services environment by producing security
+ *       findings that you can view in the GuardDuty console or through Amazon EventBridge. For more
+ *       information, see the <i>
  *                <a href="https://docs.aws.amazon.com/guardduty/latest/ug/what-is-guardduty.html">Amazon
  *           GuardDuty User Guide</a>
  *             </i>. </p>

clients/client-guardduty/src/GuardDutyClient.ts

@@ -37,7 +37,8 @@ export interface AcceptAdministratorInvitationCommandOutput
 
 /**
  * @public
- * <p>Accepts the invitation to be a member account and get monitored by a GuardDuty administrator account that sent the invitation.</p>
+ * <p>Accepts the invitation to be a member account and get monitored by a GuardDuty
+ *       administrator account that sent the invitation.</p>
  * @example
  * Use a bare-bones client and the command you need to make an API call.
  * ```javascript

clients/client-guardduty/src/commands/AcceptAdministratorInvitationCommand.ts

@@ -37,8 +37,8 @@ export interface ArchiveFindingsCommandOutput extends ArchiveFindingsResponse, _
  * @public
  * <p>Archives GuardDuty findings that are specified by the list of finding IDs.</p>
  *          <note>
- *             <p>Only the administrator account can archive findings. Member accounts don't have permission to
- *         archive findings from their accounts.</p>
+ *             <p>Only the administrator account can archive findings. Member accounts don't have
+ *         permission to archive findings from their accounts.</p>
  *          </note>
  * @example
  * Use a bare-bones client and the command you need to make an API call.

clients/client-guardduty/src/commands/ArchiveFindingsCommand.ts

@@ -72,8 +72,14 @@ export interface CreateDetectorCommandOutput extends CreateDetectorResponse, __M
  *   },
  *   Features: [ // DetectorFeatureConfigurations
  *     { // DetectorFeatureConfiguration
- *       Name: "S3_DATA_EVENTS" || "EKS_AUDIT_LOGS" || "EBS_MALWARE_PROTECTION" || "RDS_LOGIN_EVENTS",
+ *       Name: "S3_DATA_EVENTS" || "EKS_AUDIT_LOGS" || "EBS_MALWARE_PROTECTION" || "RDS_LOGIN_EVENTS" || "EKS_RUNTIME_MONITORING",
  *       Status: "ENABLED" || "DISABLED",
+ *       AdditionalConfiguration: [ // DetectorAdditionalConfigurations
+ *         { // DetectorAdditionalConfiguration
+ *           Name: "EKS_ADDON_MANAGEMENT",
+ *           Status: "ENABLED" || "DISABLED",
+ *         },
+ *       ],
  *     },
  *   ],
  * };

clients/client-guardduty/src/commands/CreateDetectorCommand.ts

@@ -40,10 +40,10 @@ export interface CreateMembersCommandOutput extends CreateMembersResponse, __Met
  *       invitation or through an organization.</p>
  *          <p>When using <code>Create Members</code> as an organizations delegated administrator this
  *       action will enable GuardDuty in the added member accounts, with the exception of the
- *       organization delegated administrator account, which must enable GuardDuty prior to being added as a
- *       member.</p>
+ *       organization delegated administrator account, which must enable GuardDuty prior to being added
+ *       as a member.</p>
  *          <p>If you are adding accounts by invitation, use this action after GuardDuty has bee enabled in
- *     potential member accounts and before using <a href="https://docs.aws.amazon.com/guardduty/latest/APIReference/API_InviteMembers.html">InviteMembers</a>.</p>
+ *       potential member accounts and before using <a href="https://docs.aws.amazon.com/guardduty/latest/APIReference/API_InviteMembers.html">InviteMembers</a>.</p>
  * @example
  * Use a bare-bones client and the command you need to make an API call.
  * ```javascript

clients/client-guardduty/src/commands/CreateMembersCommand.ts

@@ -36,8 +36,8 @@ export interface CreateThreatIntelSetCommandOutput extends CreateThreatIntelSetR
 /**
  * @public
  * <p>Creates a new ThreatIntelSet. ThreatIntelSets consist of known malicious IP addresses.
- *       GuardDuty generates findings based on ThreatIntelSets. Only users of the administrator account can
- *       use this operation.</p>
+ *       GuardDuty generates findings based on ThreatIntelSets. Only users of the administrator
+ *       account can use this operation.</p>
  * @example
  * Use a bare-bones client and the command you need to make an API call.
  * ```javascript

clients/client-guardduty/src/commands/CreateThreatIntelSetCommand.ts

@@ -35,8 +35,8 @@ export interface DeclineInvitationsCommandOutput extends DeclineInvitationsRespo
 
 /**
  * @public
- * <p>Declines invitations sent to the current member account by Amazon Web Services accounts specified by their
- *       account IDs.</p>
+ * <p>Declines invitations sent to the current member account by Amazon Web Services accounts specified by
+ *       their account IDs.</p>
  * @example
  * Use a bare-bones client and the command you need to make an API call.
  * ```javascript

clients/client-guardduty/src/commands/DeclineInvitationsCommand.ts

@@ -35,8 +35,8 @@ export interface DeleteInvitationsCommandOutput extends DeleteInvitationsRespons
 
 /**
  * @public
- * <p>Deletes invitations sent to the current member account by Amazon Web Services accounts specified by their
- *       account IDs.</p>
+ * <p>Deletes invitations sent to the current member account by Amazon Web Services accounts specified by
+ *       their account IDs.</p>
  * @example
  * Use a bare-bones client and the command you need to make an API call.
  * ```javascript