docs(client-securityhub): Documentation updates for Security Hub

awstools · awstools · commit e0f0232b9a8f · 2024-06-20T19:34:59.000Z
diff --git a/clients/client-securityhub/src/models/models_1.ts b/clients/client-securityhub/src/models/models_1.ts
@@ -10068,7 +10068,45 @@ export interface Compliance {
 }
 
 /**
- * <p>The severity assigned to the finding by the finding provider.</p>
+ * <p>The severity assigned to a finding by the finding provider. This object may include one or more of the following
+ * attributes:</p>
+ *          <ul>
+ *             <li>
+ *                <p>
+ *                   <code>Label</code>
+ *                </p>
+ *             </li>
+ *             <li>
+ *                <p>
+ *                   <code>Normalized</code>
+ *                </p>
+ *             </li>
+ *             <li>
+ *                <p>
+ *                   <code>Original</code>
+ *                </p>
+ *             </li>
+ *             <li>
+ *                <p>
+ *                   <code>Product</code>
+ *                </p>
+ *             </li>
+ *          </ul>
+ *          <p>If a <a href="https://docs.aws.amazon.com/securityhub/1.0/APIReference/API_BatchImportFindings.html">
+ *                <code>BatchImportFindings</code>
+ *             </a> request for a
+ *            new finding only provides <code>Label</code> or only provides <code>Normalized</code>, Security Hub
+ *            automatically populates the value of the other field.</p>
+ *          <p>The <code>Normalized</code> and <code>Product</code> attributes are included in the <code>FindingProviderSeverity</code>
+ *            structure to preserve the historical information associated with the finding, even if the top-level
+ *            <code>Severity</code> object is later modified using the <a href="https://docs.aws.amazon.com/securityhub/1.0/APIReference/API_BatchUpdateFindings.html">
+ *                <code>BatchUpdateFindings</code>
+ *             </a> operation.</p>
+ *          <p>If the top-level <code>Finding.Severity</code> object is present, but <code>Finding.FindingProviderFields</code> isn't present,
+ *            Security Hub creates the <code>FindingProviderFields.Severity</code> object and copies the entire <code>Finding.Severity</code> object into it.
+ *            This ensures that the original, provider-supplied details are retained within the <code>FindingProviderFields.Severity</code>
+ *            object, even if the top-level <code>Severity</code> object is overwritten.
+ *        </p>
  * @public
  */
 export interface FindingProviderSeverity {
@@ -10087,7 +10125,51 @@ export interface FindingProviderSeverity {
 }
 
 /**
- * <p>In a <code>BatchImportFindings</code> request, finding providers use <code>FindingProviderFields</code> to provide and update values for confidence, criticality, related findings, severity, and types.</p>
+ * <p>In a <a href="https://docs.aws.amazon.com/securityhub/1.0/APIReference/API_BatchImportFindings.html">
+ *                <code>BatchImportFindings</code>
+ *             </a> request, finding providers use <code>FindingProviderFields</code> to provide
+ *            and update values for the following fields:</p>
+ *          <ul>
+ *             <li>
+ *                <p>
+ *                   <code>Confidence</code>
+ *                </p>
+ *             </li>
+ *             <li>
+ *                <p>
+ *                   <code>Criticality</code>
+ *                </p>
+ *             </li>
+ *             <li>
+ *                <p>
+ *                   <code>RelatedFindings</code>
+ *                </p>
+ *             </li>
+ *             <li>
+ *                <p>
+ *                   <code>Severity</code>
+ *                </p>
+ *             </li>
+ *             <li>
+ *                <p>
+ *                   <code>Types</code>
+ *                </p>
+ *             </li>
+ *          </ul>
+ *          <p>The preceding fields are nested under the <code>FindingProviderFields</code> object, but also have analogues of the same name
+ *            as top-level ASFF fields. When a new finding is sent to Security Hub by a finding provider, Security Hub populates the
+ *            <code>FindingProviderFields</code> object automatically, if it is empty, based on the corresponding top-level fields.</p>
+ *          <p>Finding providers can update <code>FindingProviderFields</code> only by using the <code>BatchImportFindings</code>
+ *         operation. Finding providers can't update
+ *            this object with the <a href="https://docs.aws.amazon.com/securityhub/1.0/APIReference/API_BatchUpdateFindings.html">
+ *                <code>BatchUpdateFindings</code>
+ *             </a> operation. Customers can update the top-level fields by using the <code>BatchUpdateFindings</code> operation. Customers can't
+ *            update <code>FindingProviderFields</code>.</p>
+ *          <p>For information about how Security Hub handles updates from <code>BatchImportFindings</code> to
+ *            <code>FindingProviderFields</code> and to the corresponding top-level
+ *            attributes, see <a href="https://docs.aws.amazon.com/securityhub/latest/userguide/finding-update-batchimportfindings.html#batchimportfindings-findingproviderfields">Using <code>FindingProviderFields</code>
+ *             </a> in the <i>Security Hub User Guide</i>.</p>
+ *          <p></p>
  * @public
  */
 export interface FindingProviderFields {
diff --git a/codegen/sdk-codegen/aws-models/securityhub.json b/codegen/sdk-codegen/aws-models/securityhub.json
@@ -25554,7 +25554,7 @@
         }
       },
       "traits": {
-        "smithy.api#documentation": "<p>In a <code>BatchImportFindings</code> request, finding providers use <code>FindingProviderFields</code> to provide and update values for confidence, criticality, related findings, severity, and types.</p>"
+        "smithy.api#documentation": "<p>In a <a href=\"https://docs.aws.amazon.com/securityhub/1.0/APIReference/API_BatchImportFindings.html\">\n               <code>BatchImportFindings</code>\n            </a> request, finding providers use <code>FindingProviderFields</code> to provide \n           and update values for the following fields:</p>\n         <ul>\n            <li>\n               <p>\n                  <code>Confidence</code>\n               </p>\n            </li>\n            <li>\n               <p>\n                  <code>Criticality</code>\n               </p>\n            </li>\n            <li>\n               <p>\n                  <code>RelatedFindings</code>\n               </p>\n            </li>\n            <li>\n               <p>\n                  <code>Severity</code>\n               </p>\n            </li>\n            <li>\n               <p>\n                  <code>Types</code>\n               </p>\n            </li>\n         </ul>\n         <p>The preceding fields are nested under the <code>FindingProviderFields</code> object, but also have analogues of the same name \n           as top-level ASFF fields. When a new finding is sent to Security Hub by a finding provider, Security Hub populates the \n           <code>FindingProviderFields</code> object automatically, if it is empty, based on the corresponding top-level fields.</p>\n         <p>Finding providers can update <code>FindingProviderFields</code> only by using the <code>BatchImportFindings</code> \n        operation. Finding providers can't update\n           this object with the <a href=\"https://docs.aws.amazon.com/securityhub/1.0/APIReference/API_BatchUpdateFindings.html\">\n               <code>BatchUpdateFindings</code>\n            </a> operation. Customers can update the top-level fields by using the <code>BatchUpdateFindings</code> operation. Customers can't \n           update <code>FindingProviderFields</code>.</p>\n         <p>For information about how Security Hub handles updates from <code>BatchImportFindings</code> to\n           <code>FindingProviderFields</code> and to the corresponding top-level\n           attributes, see <a href=\"https://docs.aws.amazon.com/securityhub/latest/userguide/finding-update-batchimportfindings.html#batchimportfindings-findingproviderfields\">Using <code>FindingProviderFields</code>\n            </a> in the <i>Security Hub User Guide</i>.</p>\n         <p></p>"
       }
     },
     "com.amazonaws.securityhub#FindingProviderSeverity": {
@@ -25574,7 +25574,7 @@
         }
       },
       "traits": {
-        "smithy.api#documentation": "<p>The severity assigned to the finding by the finding provider.</p>"
+        "smithy.api#documentation": "<p>The severity assigned to a finding by the finding provider. This object may include one or more of the following \nattributes:</p>\n         <ul>\n            <li>\n               <p>\n                  <code>Label</code>\n               </p>\n            </li>\n            <li>\n               <p>\n                  <code>Normalized</code>\n               </p>\n            </li>\n            <li>\n               <p>\n                  <code>Original</code>\n               </p>\n            </li>\n            <li>\n               <p>\n                  <code>Product</code>\n               </p>\n            </li>\n         </ul>\n         <p>If a <a href=\"https://docs.aws.amazon.com/securityhub/1.0/APIReference/API_BatchImportFindings.html\">\n               <code>BatchImportFindings</code>\n            </a> request for a \n           new finding only provides <code>Label</code> or only provides <code>Normalized</code>, Security Hub \n           automatically populates the value of the other field.</p>\n         <p>The <code>Normalized</code> and <code>Product</code> attributes are included in the <code>FindingProviderSeverity</code> \n           structure to preserve the historical information associated with the finding, even if the top-level \n           <code>Severity</code> object is later modified using the <a href=\"https://docs.aws.amazon.com/securityhub/1.0/APIReference/API_BatchUpdateFindings.html\">\n               <code>BatchUpdateFindings</code>\n            </a> operation.</p>\n         <p>If the top-level <code>Finding.Severity</code> object is present, but <code>Finding.FindingProviderFields</code> isn't present, \n           Security Hub creates the <code>FindingProviderFields.Severity</code> object and copies the entire <code>Finding.Severity</code> object into it. \n           This ensures that the original, provider-supplied details are retained within the <code>FindingProviderFields.Severity</code> \n           object, even if the top-level <code>Severity</code> object is overwritten.\n       </p>"
       }
     },
     "com.amazonaws.securityhub#FirewallPolicyDetails": {

Original file line number	Diff line number	Diff line change
`@@ -25554,7 +25554,7 @@`
`25554`	`25554`	`}`
`25555`	`25555`	`},`
`25556`	`25556`	`"traits": {`
`25557`		`- "smithy.api#documentation": "<p>In a <code>BatchImportFindings</code> request, finding providers use <code>FindingProviderFields</code> to provide and update values for confidence, criticality, related findings, severity, and types.</p>"`
	`25557`	+ "smithy.api#documentation": "<p>In a <a href=\"https://docs.aws.amazon.com/securityhub/1.0/APIReference/API_BatchImportFindings.html\">\n <code>BatchImportFindings</code>\n </a> request, finding providers use <code>FindingProviderFields</code> to provide \n and update values for the following fields:</p>\n <ul>\n <li>\n <p>\n <code>Confidence</code>\n </p>\n </li>\n <li>\n <p>\n <code>Criticality</code>\n </p>\n </li>\n <li>\n <p>\n <code>RelatedFindings</code>\n </p>\n </li>\n <li>\n <p>\n <code>Severity</code>\n </p>\n </li>\n <li>\n <p>\n <code>Types</code>\n </p>\n </li>\n </ul>\n <p>The preceding fields are nested under the <code>FindingProviderFields</code> object, but also have analogues of the same name \n as top-level ASFF fields. When a new finding is sent to Security Hub by a finding provider, Security Hub populates the \n <code>FindingProviderFields</code> object automatically, if it is empty, based on the corresponding top-level fields.</p>\n <p>Finding providers can update <code>FindingProviderFields</code> only by using the <code>BatchImportFindings</code> \n operation. Finding providers can't update\n this object with the <a href=\"https://docs.aws.amazon.com/securityhub/1.0/APIReference/API_BatchUpdateFindings.html\">\n <code>BatchUpdateFindings</code>\n </a> operation. Customers can update the top-level fields by using the <code>BatchUpdateFindings</code> operation. Customers can't \n update <code>FindingProviderFields</code>.</p>\n <p>For information about how Security Hub handles updates from <code>BatchImportFindings</code> to\n <code>FindingProviderFields</code> and to the corresponding top-level\n attributes, see <a href=\"https://docs.aws.amazon.com/securityhub/latest/userguide/finding-update-batchimportfindings.html#batchimportfindings-findingproviderfields\">Using <code>FindingProviderFields</code>\n </a> in the <i>Security Hub User Guide</i>.</p>\n <p></p>"
`25558`	`25558`	`}`
`25559`	`25559`	`},`
`25560`	`25560`	`"com.amazonaws.securityhub#FindingProviderSeverity": {`
`@@ -25574,7 +25574,7 @@`
`25574`	`25574`	`}`
`25575`	`25575`	`},`
`25576`	`25576`	`"traits": {`
`25577`		`- "smithy.api#documentation": "<p>The severity assigned to the finding by the finding provider.</p>"`
	`25577`	+ "smithy.api#documentation": "<p>The severity assigned to a finding by the finding provider. This object may include one or more of the following \nattributes:</p>\n <ul>\n <li>\n <p>\n <code>Label</code>\n </p>\n </li>\n <li>\n <p>\n <code>Normalized</code>\n </p>\n </li>\n <li>\n <p>\n <code>Original</code>\n </p>\n </li>\n <li>\n <p>\n <code>Product</code>\n </p>\n </li>\n </ul>\n <p>If a <a href=\"https://docs.aws.amazon.com/securityhub/1.0/APIReference/API_BatchImportFindings.html\">\n <code>BatchImportFindings</code>\n </a> request for a \n new finding only provides <code>Label</code> or only provides <code>Normalized</code>, Security Hub \n automatically populates the value of the other field.</p>\n <p>The <code>Normalized</code> and <code>Product</code> attributes are included in the <code>FindingProviderSeverity</code> \n structure to preserve the historical information associated with the finding, even if the top-level \n <code>Severity</code> object is later modified using the <a href=\"https://docs.aws.amazon.com/securityhub/1.0/APIReference/API_BatchUpdateFindings.html\">\n <code>BatchUpdateFindings</code>\n </a> operation.</p>\n <p>If the top-level <code>Finding.Severity</code> object is present, but <code>Finding.FindingProviderFields</code> isn't present, \n Security Hub creates the <code>FindingProviderFields.Severity</code> object and copies the entire <code>Finding.Severity</code> object into it. \n This ensures that the original, provider-supplied details are retained within the <code>FindingProviderFields.Severity</code> \n object, even if the top-level <code>Severity</code> object is overwritten.\n </p>"
`25578`	`25578`	`}`
`25579`	`25579`	`},`
`25580`	`25580`	`"com.amazonaws.securityhub#FirewallPolicyDetails": {`