feat(client-guardduty): Add S3 On-Demand Object Scanning

Author: awstools

clients/client-guardduty/README.md

@@ -749,6 +749,14 @@ ListTrustedEntitySets
 
 [Command API Reference](https://docs.aws.amazon.com/AWSJavaScriptSDK/v3/latest/client/guardduty/command/ListTrustedEntitySetsCommand/) / [Input](https://docs.aws.amazon.com/AWSJavaScriptSDK/v3/latest/Package/-aws-sdk-client-guardduty/Interface/ListTrustedEntitySetsCommandInput/) / [Output](https://docs.aws.amazon.com/AWSJavaScriptSDK/v3/latest/Package/-aws-sdk-client-guardduty/Interface/ListTrustedEntitySetsCommandOutput/)
 
+</details>
+<details>
+<summary>
+SendObjectMalwareScan
+</summary>
+
+[Command API Reference](https://docs.aws.amazon.com/AWSJavaScriptSDK/v3/latest/client/guardduty/command/SendObjectMalwareScanCommand/) / [Input](https://docs.aws.amazon.com/AWSJavaScriptSDK/v3/latest/Package/-aws-sdk-client-guardduty/Interface/SendObjectMalwareScanCommandInput/) / [Output](https://docs.aws.amazon.com/AWSJavaScriptSDK/v3/latest/Package/-aws-sdk-client-guardduty/Interface/SendObjectMalwareScanCommandOutput/)
+
 </details>
 <details>
 <summary>

clients/client-guardduty/src/GuardDuty.ts

@@ -292,6 +292,11 @@ import {
   ListTrustedEntitySetsCommandInput,
   ListTrustedEntitySetsCommandOutput,
 } from "./commands/ListTrustedEntitySetsCommand";
+import {
+  SendObjectMalwareScanCommand,
+  SendObjectMalwareScanCommandInput,
+  SendObjectMalwareScanCommandOutput,
+} from "./commands/SendObjectMalwareScanCommand";
 import {
   StartMalwareScanCommand,
   StartMalwareScanCommandInput,
@@ -443,6 +448,7 @@ const commands = {
   ListThreatEntitySetsCommand,
   ListThreatIntelSetsCommand,
   ListTrustedEntitySetsCommand,
+  SendObjectMalwareScanCommand,
   StartMalwareScanCommand,
   StartMonitoringMembersCommand,
   StopMonitoringMembersCommand,
@@ -1472,6 +1478,24 @@ export interface GuardDuty {
     cb: (err: any, data?: ListTrustedEntitySetsCommandOutput) => void
   ): void;
 
+  /**
+   * @see {@link SendObjectMalwareScanCommand}
+   */
+  sendObjectMalwareScan(): Promise<SendObjectMalwareScanCommandOutput>;
+  sendObjectMalwareScan(
+    args: SendObjectMalwareScanCommandInput,
+    options?: __HttpHandlerOptions
+  ): Promise<SendObjectMalwareScanCommandOutput>;
+  sendObjectMalwareScan(
+    args: SendObjectMalwareScanCommandInput,
+    cb: (err: any, data?: SendObjectMalwareScanCommandOutput) => void
+  ): void;
+  sendObjectMalwareScan(
+    args: SendObjectMalwareScanCommandInput,
+    options: __HttpHandlerOptions,
+    cb: (err: any, data?: SendObjectMalwareScanCommandOutput) => void
+  ): void;
+
   /**
    * @see {@link StartMalwareScanCommand}
    */

clients/client-guardduty/src/GuardDutyClient.ts

@@ -231,6 +231,10 @@ import {
   ListTrustedEntitySetsCommandInput,
   ListTrustedEntitySetsCommandOutput,
 } from "./commands/ListTrustedEntitySetsCommand";
+import {
+  SendObjectMalwareScanCommandInput,
+  SendObjectMalwareScanCommandOutput,
+} from "./commands/SendObjectMalwareScanCommand";
 import { StartMalwareScanCommandInput, StartMalwareScanCommandOutput } from "./commands/StartMalwareScanCommand";
 import {
   StartMonitoringMembersCommandInput,
@@ -363,6 +367,7 @@ export type ServiceInputTypes =
   | ListThreatEntitySetsCommandInput
   | ListThreatIntelSetsCommandInput
   | ListTrustedEntitySetsCommandInput
+  | SendObjectMalwareScanCommandInput
   | StartMalwareScanCommandInput
   | StartMonitoringMembersCommandInput
   | StopMonitoringMembersCommandInput
@@ -452,6 +457,7 @@ export type ServiceOutputTypes =
   | ListThreatEntitySetsCommandOutput
   | ListThreatIntelSetsCommandOutput
   | ListTrustedEntitySetsCommandOutput
+  | SendObjectMalwareScanCommandOutput
   | StartMalwareScanCommandOutput
   | StartMonitoringMembersCommandOutput
   | StopMonitoringMembersCommandOutput

clients/client-guardduty/src/commands/SendObjectMalwareScanCommand.ts

@@ -0,0 +1,102 @@
+// smithy-typescript generated code
+import { getEndpointPlugin } from "@smithy/middleware-endpoint";
+import { Command as $Command } from "@smithy/smithy-client";
+import { MetadataBearer as __MetadataBearer } from "@smithy/types";
+
+import { commonParams } from "../endpoint/EndpointParameters";
+import { GuardDutyClientResolvedConfig, ServiceInputTypes, ServiceOutputTypes } from "../GuardDutyClient";
+import { SendObjectMalwareScanRequest, SendObjectMalwareScanResponse } from "../models/models_1";
+import { SendObjectMalwareScan } from "../schemas/schemas_0";
+
+/**
+ * @public
+ */
+export type { __MetadataBearer };
+export { $Command };
+/**
+ * @public
+ *
+ * The input for {@link SendObjectMalwareScanCommand}.
+ */
+export interface SendObjectMalwareScanCommandInput extends SendObjectMalwareScanRequest {}
+/**
+ * @public
+ *
+ * The output of {@link SendObjectMalwareScanCommand}.
+ */
+export interface SendObjectMalwareScanCommandOutput extends SendObjectMalwareScanResponse, __MetadataBearer {}
+
+/**
+ * <p>Initiates a malware scan for a specific S3 object. This API allows you to perform on-demand malware scanning of individual objects in S3 buckets that have Malware Protection for S3 enabled.</p>
+ *          <p>When you use this API, the Amazon Web Services service terms for GuardDuty Malware
+ *       Protection apply. For more information, see <a href="http://aws.amazon.com/service-terms/#87._Amazon_GuardDuty">Amazon Web Services service terms for GuardDuty Malware Protection</a>.</p>
+ * @example
+ * Use a bare-bones client and the command you need to make an API call.
+ * ```javascript
+ * import { GuardDutyClient, SendObjectMalwareScanCommand } from "@aws-sdk/client-guardduty"; // ES Modules import
+ * // const { GuardDutyClient, SendObjectMalwareScanCommand } = require("@aws-sdk/client-guardduty"); // CommonJS import
+ * // import type { GuardDutyClientConfig } from "@aws-sdk/client-guardduty";
+ * const config = {}; // type is GuardDutyClientConfig
+ * const client = new GuardDutyClient(config);
+ * const input = { // SendObjectMalwareScanRequest
+ *   S3Object: { // S3ObjectForSendObjectMalwareScan
+ *     Bucket: "STRING_VALUE",
+ *     Key: "STRING_VALUE",
+ *     VersionId: "STRING_VALUE",
+ *   },
+ * };
+ * const command = new SendObjectMalwareScanCommand(input);
+ * const response = await client.send(command);
+ * // {};
+ *
+ * ```
+ *
+ * @param SendObjectMalwareScanCommandInput - {@link SendObjectMalwareScanCommandInput}
+ * @returns {@link SendObjectMalwareScanCommandOutput}
+ * @see {@link SendObjectMalwareScanCommandInput} for command's `input` shape.
+ * @see {@link SendObjectMalwareScanCommandOutput} for command's `response` shape.
+ * @see {@link GuardDutyClientResolvedConfig | config} for GuardDutyClient's `config` shape.
+ *
+ * @throws {@link AccessDeniedException} (client fault)
+ *  <p>An access denied exception object.</p>
+ *
+ * @throws {@link BadRequestException} (client fault)
+ *  <p>A bad request exception object.</p>
+ *
+ * @throws {@link InternalServerErrorException} (server fault)
+ *  <p>An internal server error exception object.</p>
+ *
+ * @throws {@link GuardDutyServiceException}
+ * <p>Base exception class for all service exceptions from GuardDuty service.</p>
+ *
+ *
+ * @public
+ */
+export class SendObjectMalwareScanCommand extends $Command
+  .classBuilder<
+    SendObjectMalwareScanCommandInput,
+    SendObjectMalwareScanCommandOutput,
+    GuardDutyClientResolvedConfig,
+    ServiceInputTypes,
+    ServiceOutputTypes
+  >()
+  .ep(commonParams)
+  .m(function (this: any, Command: any, cs: any, config: GuardDutyClientResolvedConfig, o: any) {
+    return [getEndpointPlugin(config, Command.getEndpointParameterInstructions())];
+  })
+  .s("GuardDutyAPIService", "SendObjectMalwareScan", {})
+  .n("GuardDutyClient", "SendObjectMalwareScanCommand")
+  .sc(SendObjectMalwareScan)
+  .build() {
+  /** @internal type navigation helper, not in runtime. */
+  protected declare static __types: {
+    api: {
+      input: SendObjectMalwareScanRequest;
+      output: {};
+    };
+    sdk: {
+      input: SendObjectMalwareScanCommandInput;
+      output: SendObjectMalwareScanCommandOutput;
+    };
+  };
+}

clients/client-guardduty/src/commands/index.ts

@@ -65,6 +65,7 @@ export * from "./ListTagsForResourceCommand";
 export * from "./ListThreatEntitySetsCommand";
 export * from "./ListThreatIntelSetsCommand";
 export * from "./ListTrustedEntitySetsCommand";
+export * from "./SendObjectMalwareScanCommand";
 export * from "./StartMalwareScanCommand";
 export * from "./StartMonitoringMembersCommand";
 export * from "./StopMonitoringMembersCommand";

clients/client-guardduty/src/models/models_1.ts

@@ -2566,6 +2566,46 @@ export interface ListTrustedEntitySetsResponse {
   NextToken?: string | undefined;
 }
 
+/**
+ * <p>The S3 object path to initiate a scan, including bucket name, object key, and optional version ID.</p>
+ * @public
+ */
+export interface S3ObjectForSendObjectMalwareScan {
+  /**
+   * <p>The name of the S3 bucket containing the object to scan. The bucket must have GuardDuty Malware Protection enabled.</p>
+   * @public
+   */
+  Bucket?: string | undefined;
+
+  /**
+   * <p>The key (name) of the S3 object to scan for malware. This must be the full key path of the object within the bucket.</p>
+   * @public
+   */
+  Key?: string | undefined;
+
+  /**
+   * <p>The version ID of the S3 object to scan. If not specified, the latest version of the object is scanned.</p>
+   * @public
+   */
+  VersionId?: string | undefined;
+}
+
+/**
+ * @public
+ */
+export interface SendObjectMalwareScanRequest {
+  /**
+   * <p>The S3 object information for the object you want to scan. The bucket must have a Malware Protection plan configured to use this API.</p>
+   * @public
+   */
+  S3Object?: S3ObjectForSendObjectMalwareScan | undefined;
+}
+
+/**
+ * @public
+ */
+export interface SendObjectMalwareScanResponse {}
+
 /**
  * @public
  */

clients/client-guardduty/src/schemas/schemas_0.ts

@@ -88,6 +88,7 @@ const _BPAu = "BucketPublicAccess";
 const _BPP = "BlockPublicPolicy";
 const _BRE = "BadRequestException";
 const _Bl = "Blocked";
+const _Bu = "Bucket";
 const _C = "City";
 const _CA = "ClusterArn";
 const _CAr = "CreatedAt";
@@ -786,6 +787,10 @@ const _SNe = "SessionName";
 const _SO = "S3Object";
 const _SOD = "S3ObjectDetails";
 const _SODb = "S3ObjectDetail";
+const _SOFSOMS = "S3ObjectForSendObjectMalwareScan";
+const _SOMS = "SendObjectMalwareScan";
+const _SOMSR = "SendObjectMalwareScanRequest";
+const _SOMSRe = "SendObjectMalwareScanResponse";
 const _SOU = "S3ObjectUids";
 const _SP = "ScriptPath";
 const _SPo = "SocketPath";
@@ -1020,6 +1025,7 @@ const _bPAl = "blockPublicAcls";
 const _bPAu = "bucketPublicAccess";
 const _bPP = "blockPublicPolicy";
 const _bl = "blocked";
+const _bu = "bucket";
 const _c = "client";
 const _cA = "clusterArn";
 const _cAr = "createdAt";
@@ -10167,6 +10173,33 @@ export var S3ObjectDetail: StaticStructureSchema = [
     ],
   ],
 ];
+export var S3ObjectForSendObjectMalwareScan: StaticStructureSchema = [
+  3,
+  n0,
+  _SOFSOMS,
+  0,
+  [_Bu, _Ke, _VIe],
+  [
+    [
+      0,
+      {
+        [_jN]: _bu,
+      },
+    ],
+    [
+      0,
+      {
+        [_jN]: _ke,
+      },
+    ],
+    [
+      0,
+      {
+        [_jN]: _vIe,
+      },
+    ],
+  ],
+];
 export var Scan: StaticStructureSchema = [
   3,
   n0,
@@ -10536,6 +10569,22 @@ export var SecurityGroup: StaticStructureSchema = [
     ],
   ],
 ];
+export var SendObjectMalwareScanRequest: StaticStructureSchema = [
+  3,
+  n0,
+  _SOMSR,
+  0,
+  [_SO],
+  [
+    [
+      () => S3ObjectForSendObjectMalwareScan,
+      {
+        [_jN]: _sO,
+      },
+    ],
+  ],
+];
+export var SendObjectMalwareScanResponse: StaticStructureSchema = [3, n0, _SOMSRe, 0, [], []];
 export var Sequence: StaticStructureSchema = [
   3,
   n0,
@@ -13098,6 +13147,16 @@ export var ListTrustedEntitySets: StaticOperationSchema = [
   () => ListTrustedEntitySetsRequest,
   () => ListTrustedEntitySetsResponse,
 ];
+export var SendObjectMalwareScan: StaticOperationSchema = [
+  9,
+  n0,
+  _SOMS,
+  {
+    [_ht]: ["POST", "/object-malware-scan/send", 200],
+  },
+  () => SendObjectMalwareScanRequest,
+  () => SendObjectMalwareScanResponse,
+];
 export var StartMalwareScan: StaticOperationSchema = [
   9,
   n0,